import { Body, Controller, Get, HttpCode, HttpStatus, Patch, Post } from '@nestjs/common';
import { AllowExpired } from '../../common/decorators/allow-expired.decorator';
import { AuthUser, CurrentUser } from '../../common/decorators/current-user.decorator';
import { Public } from '../../common/decorators/public.decorator';
import { AdminsService } from '../admins/admins.service';
import { AuthService } from './auth.service';
import { LoginDto } from './dto/login.dto';
import { UpdateProfileDto } from './dto/update-profile.dto';

@Controller('auth')
export class AuthController {
  constructor(
    private readonly auth: AuthService,
    private readonly admins: AdminsService,
  ) {}

  @Public()
  @Post('login')
  @HttpCode(HttpStatus.OK)
  login(@Body() dto: LoginDto) {
    return this.auth.login(dto);
  }

  /** Returns the currently authenticated admin's profile. */
  @Get('me')
  me(@CurrentUser() user: AuthUser) {
    return this.admins.findOne(user.id, user.tenantId);
  }

  /** Update your own profile — name and/or password (any authenticated admin). */
  @AllowExpired()
  @Patch('profile')
  updateProfile(@Body() dto: UpdateProfileDto, @CurrentUser() user: AuthUser) {
    return this.admins.updateOwnProfile(user.id, dto);
  }
}
