<?php

declare(strict_types=1);

namespace App\Http\Controllers\Api\V1;

use App\Http\Controllers\Api\V1\Traits\SetAuthCookie;
use App\Http\Controllers\Controller;
use App\Http\Requests\Api\V1\LoginRequest;
use App\Http\Resources\Api\V1\MeResource;
use Illuminate\Http\JsonResponse;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Log;

final class LoginController extends Controller
{
    use SetAuthCookie;

    public function __invoke(LoginRequest $request): JsonResponse
    {
        if (!Auth::attempt($request->only('email', 'password'))) {
            Log::warning('Failed login attempt', [
                'email' => $request->validated('email'),
                'ip' => $request->ip(),
                'user_agent' => $request->userAgent(),
            ]);

            return $this->unauthorized('Invalid credentials');
        }

        $user = Auth::user()->load([
            'organisations',
            'roles',
            'permissions',
            'persons' => fn ($q) => $q->with(['event:id,name,slug,start_date,end_date,organisation_id', 'event.organisation:id,name']),
        ]);

        $token = $user->createToken('auth-token')->plainTextToken;
        $cookieName = $this->resolveCookieName($request);

        return $this->success([
            'user' => new MeResource($user),
        ], 'Login successful')
            ->withCookie($this->makeAuthCookie($cookieName, $token));
    }
}