package be.simplenotes.domain.security

import be.simplenotes.domain.usecases.users.login.Token
import be.simplenotes.shared.config.JwtConfig
import com.auth0.jwt.JWT
import com.auth0.jwt.algorithms.Algorithm
import com.natpryce.hamkrest.absent
import com.natpryce.hamkrest.assertion.assertThat
import com.natpryce.hamkrest.equalTo
import org.junit.jupiter.api.Test
import org.junit.jupiter.params.ParameterizedTest
import org.junit.jupiter.params.provider.MethodSource
import java.util.concurrent.TimeUnit
import java.util.stream.Stream

internal class JwtPayloadExtractorTest {
    private val jwtConfig = JwtConfig("a secret", 1, TimeUnit.HOURS)
    private val simpleJwt = SimpleJwt(jwtConfig)
    private val jwtPayloadExtractor = JwtPayloadExtractor(simpleJwt)

    private fun createToken(username: String? = null, id: Int? = null, secret: String = jwtConfig.secret): Token {
        val algo = Algorithm.HMAC256(secret)
        return JWT.create().apply {
            username?.let { withClaim(usernameField, it) }
            id?.let { withClaim(userIdField, it) }
        }.sign(algo)
    }

    @Suppress("Unused")
    private fun invalidTokens() = Stream.of(
        createToken(id = 1),
        createToken(username = "user"),
        createToken(),
        createToken(username = "user", id = 1, secret = "not the correct secret"),
        createToken(username = "user", id = 1) + "\"efesfsef",
        "something that is not even a token"
    )

    @ParameterizedTest(name = "[{index}] token `{0}` should be invalid")
    @MethodSource("invalidTokens")
    fun `parse invalid tokens`(token: String) {
        assertThat(jwtPayloadExtractor(token), absent())
    }

    @Test
    fun `parse valid token`() {
        val token = createToken(username = "someone", id = 1)
        assertThat(jwtPayloadExtractor(token), equalTo(JwtPayload(1, "someone")))
    }
}