using System.Security.Claims;
using MediatR;
using Web.Api.Common;
using Web.Api.Extensions;

namespace Web.Api.Endpoints.Forum.Post;

internal sealed class Create : IEndpoint
{
    public sealed record Request(
        int BoardID,
        int? BoardPrefixID,
        string Subject,
        string Content,
        bool IsSecret
    );

    public void MapEndpoint(IEndpointRouteBuilder app)
    {
        app.MapPost("api/forum/posts", async (
            ClaimsPrincipal user,
            Request request,
            ISender sender,
            CancellationToken ct
        ) => {
            var memberID = user.GetMemberID();

            if (memberID is null)
            {
                return ApiResponse.Fail(StatusCodes.Status401Unauthorized, "Invalid token");
            }

            var command = new Application.Features.Api.Forum.Post.Create.Command(
                memberID.Value,
                request.BoardID,
                request.BoardPrefixID,
                request.Subject,
                request.Content,
                request.IsSecret
            );

            var result = await sender.Send(command, ct);

            return result.Match(
                postID => ApiResponse.Created(new { id = postID }),
                CustomResults.Problem
            );
        })
        .WithTags("Forum")
        .RequireAuthorization();
    }
}