package operator

import (
	"context"
	"path"

	corev1 "k8s.io/api/core/v1"
	"k8s.io/apimachinery/pkg/types"

	barmancloudv1 "github.com/cloudnative-pg/plugin-barman-cloud/api/v1"
	"github.com/cloudnative-pg/plugin-barman-cloud/internal/cnpgi/metadata"
	"github.com/cloudnative-pg/plugin-barman-cloud/internal/cnpgi/operator/config"
)

// barmanCertificatesVolumeName is the name of the volume that hosts
// the barman certificates to be used
const barmanCertificatesVolumeName = "barman-certificates"

func (impl LifecycleImplementation) collectAdditionalCertificates(
	ctx context.Context,
	namespace string,
	pluginConfiguration *config.PluginConfiguration,
) ([]corev1.VolumeProjection, error) {
	var result []corev1.VolumeProjection

	if len(pluginConfiguration.BarmanObjectName) > 0 {
		envs, err := impl.collectObjectStoreCertificates(
			ctx,
			types.NamespacedName{
				Name:      pluginConfiguration.BarmanObjectName,
				Namespace: namespace,
			},
		)
		if err != nil {
			return nil, err
		}
		result = append(result, envs...)
	}

	if len(pluginConfiguration.RecoveryBarmanObjectName) > 0 &&
		pluginConfiguration.RecoveryBarmanObjectName != pluginConfiguration.BarmanObjectName {
		envs, err := impl.collectObjectStoreCertificates(
			ctx,
			types.NamespacedName{
				Name:      pluginConfiguration.RecoveryBarmanObjectName,
				Namespace: namespace,
			},
		)
		if err != nil {
			return nil, err
		}
		result = append(result, envs...)
	}

	return result, nil
}

func (impl LifecycleImplementation) collectObjectStoreCertificates(
	ctx context.Context,
	barmanObjectKey types.NamespacedName,
) ([]corev1.VolumeProjection, error) {
	var objectStore barmancloudv1.ObjectStore
	if err := impl.Client.Get(ctx, barmanObjectKey, &objectStore); err != nil {
		return nil, err
	}

	endpointCA := objectStore.Spec.Configuration.EndpointCA
	if endpointCA == nil {
		return nil, nil
	}

	return []corev1.VolumeProjection{
		{
			Secret: &corev1.SecretProjection{
				LocalObjectReference: corev1.LocalObjectReference{
					Name: endpointCA.Name,
				},
				Items: []corev1.KeyToPath{
					{
						Key: endpointCA.Key,
						Path: path.Join(
							barmanObjectKey.Name,
							metadata.BarmanCertificatesFileName,
						),
					},
				},
			},
		},
	}, nil
}