package models

import (
	"fmt"
	"time"

	"simple_portal/database"
)

// IPWhitelist 表示一条IP白名单记录。
type IPWhitelist struct {
	ID        int       `json:"id"`
	IP        string    `json:"ip"`
	Comment   string    `json:"comment"`
	CreatedAt time.Time `json:"created_at"`
}

// HasWhitelist 检查是否存在白名单记录。
// 如果没有白名单记录，则不限制任何IP。
func HasWhitelist() (bool, error) {
	var count int
	err := database.DB.QueryRow("SELECT COUNT(*) FROM ip_whitelist").Scan(&count)
	if err != nil {
		return false, fmt.Errorf("failed to check whitelist: %w", err)
	}
	return count > 0, nil
}

// IsIPWhitelisted 检查IP是否在白名单中。
func IsIPWhitelisted(ip string) (bool, error) {
	var count int
	err := database.DB.QueryRow("SELECT COUNT(*) FROM ip_whitelist WHERE ip = ?", ip).Scan(&count)
	if err != nil {
		return false, fmt.Errorf("failed to check IP whitelist: %w", err)
	}
	return count > 0, nil
}

// GetAllWhitelist 获取所有白名单记录。
func GetAllWhitelist() ([]IPWhitelist, error) {
	rows, err := database.DB.Query("SELECT id, ip, comment, created_at FROM ip_whitelist ORDER BY created_at DESC")
	if err != nil {
		return nil, fmt.Errorf("failed to query whitelist: %w", err)
	}
	defer rows.Close()

	var list []IPWhitelist
	for rows.Next() {
		var w IPWhitelist
		if err := rows.Scan(&w.ID, &w.IP, &w.Comment, &w.CreatedAt); err != nil {
			return nil, fmt.Errorf("failed to scan whitelist: %w", err)
		}
		list = append(list, w)
	}
	return list, nil
}

// AddWhitelist 添加一条白名单记录。
func AddWhitelist(ip, comment string) error {
	_, err := database.DB.Exec(
		"INSERT INTO ip_whitelist (ip, comment, created_at) VALUES (?, ?, ?)",
		ip, comment, time.Now(),
	)
	if err != nil {
		return fmt.Errorf("failed to add whitelist: %w", err)
	}
	return nil
}

// DeleteWhitelist 删除一条白名单记录。
func DeleteWhitelist(id int) error {
	_, err := database.DB.Exec("DELETE FROM ip_whitelist WHERE id = ?", id)
	if err != nil {
		return fmt.Errorf("failed to delete whitelist: %w", err)
	}
	return nil
}