<?php

namespace App\Http\Middleware;

use App\Models\User;
use App\Models\WorkspaceMembership;
use App\Support\Workspaces\WorkspaceContext;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Http\Response as HttpResponse;
use Illuminate\Support\Facades\Schema;
use Symfony\Component\HttpFoundation\Response;

class EnsureWorkspaceSelected
{
    /**
     * Handle an incoming request.
     *
     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
     */
    public function handle(Request $request, Closure $next): Response
    {
        $routeName = $request->route()?->getName();

        if (is_string($routeName) && str_contains($routeName, '.auth.')) {
            return $next($request);
        }

        $path = '/'.ltrim($request->path(), '/');

        if (str_starts_with($path, '/admin/t/')) {
            return $next($request);
        }

        if (in_array($path, ['/admin/no-access', '/admin/choose-workspace'], true)) {
            return $next($request);
        }

        $user = $request->user();

        if (! $user instanceof User) {
            return $next($request);
        }

        /** @var WorkspaceContext $context */
        $context = app(WorkspaceContext::class);

        $workspace = $context->resolveInitialWorkspaceFor($user, $request);

        if ($workspace !== null) {
            return $next($request);
        }

        $membershipQuery = WorkspaceMembership::query()->where('user_id', $user->getKey());

        $hasAnyActiveMembership = Schema::hasColumn('workspaces', 'archived_at')
            ? $membershipQuery
                ->join('workspaces', 'workspace_memberships.workspace_id', '=', 'workspaces.id')
                ->whereNull('workspaces.archived_at')
                ->exists()
            : $membershipQuery->exists();

        $target = $hasAnyActiveMembership ? '/admin/choose-workspace' : '/admin/no-access';

        return new HttpResponse('', 302, ['Location' => $target]);
    }
}