# Copyright (c) 2025 Patrick Motsch
# All rights reserved.

"""
Connection helper for Outlook operations.
Handles Microsoft connection management and permission checking.
"""

import logging
import requests
from typing import Dict, Any, Optional

logger = logging.getLogger(__name__)

class ConnectionHelper:
    """Helper for Microsoft connection management in Outlook operations"""
    
    def __init__(self, methodInstance):
        """
        Initialize connection helper.
        
        Args:
            methodInstance: Instance of MethodOutlook (for access to services)
        """
        self.method = methodInstance
        self.services = methodInstance.services
    
    def getMicrosoftConnection(self, connectionReference: str) -> Optional[Dict[str, Any]]:
        """
        Helper function to get Microsoft connection details.
        """
        try:
            logger.debug(f"Getting Microsoft connection for reference: {connectionReference}")
            
            # Get the connection from the service
            userConnection = self.services.chat.getUserConnectionFromConnectionReference(connectionReference)
            if not userConnection:
                logger.error(f"Connection not found: {connectionReference}")
                return None
            
            logger.debug(f"Found connection: {userConnection.id}, status: {userConnection.status.value}, authority: {userConnection.authority.value}")
            
            # Get a fresh token for this connection
            token = self.services.chat.getFreshConnectionToken(userConnection.id)
            if not token:
                logger.error(f"Fresh token not found for connection: {userConnection.id}")
                logger.debug(f"Connection details: {userConnection}")
                return None
            
            logger.debug(f"Fresh token retrieved for connection {userConnection.id}")
            
            # Check if connection is active
            if userConnection.status.value != "active":
                logger.error(f"Connection is not active: {userConnection.id}, status: {userConnection.status.value}")
                return None
            
            return {
                "id": userConnection.id,
                "accessToken": token.tokenAccess,
                "refreshToken": token.tokenRefresh,
                "scopes": ["Mail.ReadWrite", "Mail.Send", "Mail.ReadWrite.Shared", "User.Read"]  # Valid Microsoft Graph API scopes
            }
        except Exception as e:
            logger.error(f"Error getting Microsoft connection: {str(e)}")
            return None
    
    async def checkPermissions(self, connection: Dict[str, Any]) -> bool:
        """
        Check if the current connection has the necessary permissions for Outlook operations.
        """
        try:
            graph_url = "https://graph.microsoft.com/v1.0"
            headers = {
                "Authorization": f"Bearer {connection['accessToken']}",
                "Content-Type": "application/json"
            }
            
            # Test permissions by trying to access the user's mail folder
            test_url = f"{graph_url}/me/mailFolders"
            response = requests.get(test_url, headers=headers)
            
            if response.status_code == 200:
                return True
            elif response.status_code == 403:
                logger.error("Permission denied - connection lacks necessary mail permissions")
                logger.error("Required scopes: Mail.ReadWrite, Mail.Send, Mail.ReadWrite.Shared")
                return False
            else:
                logger.warning(f"Permission check returned status {response.status_code}")
                return False
                
        except Exception as e:
            logger.error(f"Error checking permissions: {str(e)}")
            return False