<?php

declare(strict_types=1);

namespace App\Http\Controllers\Api\V1;

use App\Http\Controllers\Api\V1\Traits\SetAuthCookie;
use App\Http\Controllers\Controller;
use App\Http\Resources\Api\V1\MeResource;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Log;

final class AuthRefreshController extends Controller
{
    use SetAuthCookie;

    public function __invoke(Request $request): JsonResponse
    {
        $user = $request->user();

        // Revoke the current token
        $request->user()->currentAccessToken()->delete();

        // Create a new token
        $newToken = $user->createToken('auth-token')->plainTextToken;
        $cookieName = $this->resolveCookieName($request);

        $user->load(['organisations', 'roles', 'permissions']);

        Log::info('Auth token refreshed', [
            'user_id' => $user->id,
            'ip' => $request->ip(),
        ]);

        return $this->success(new MeResource($user), 'Token refreshed')
            ->withCookie($this->makeAuthCookie($cookieName, $newToken));
    }
}