from flask import Blueprint, render_template, request, redirect, url_for, flash
from flask_login import login_user, logout_user, login_required, current_user
from werkzeug.security import generate_password_hash, check_password_hash
from models import Users
from app import db

auth_bp = Blueprint('auth', __name__)

@auth_bp.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form['username']
        password = request.form['password']
        
        user = Users.query.filter_by(Username=username).first()
        
        if user and check_password_hash(user.Password, password) and user.Enabled:
            login_user(user)
            next_page = request.args.get('next')
            return redirect(next_page) if next_page else redirect(url_for('main.index'))
        else:
            flash('Invalid username or password, or account is disabled.', 'error')
    
    return render_template('auth/login.html')

@auth_bp.route('/logout')
@login_required
def logout():
    logout_user()
    flash('You have been logged out.', 'success')
    return redirect(url_for('auth.login'))

@auth_bp.route('/add_user', methods=['GET', 'POST'])
@login_required
def add_user():
    if request.method == 'POST':
        username = request.form['username']
        password = request.form['password']
        full_name = request.form['full_name']
        email = request.form['email']
        permissions = request.form.get('permissions', '')
        
        # Check if username already exists
        existing_user = Users.query.filter_by(Username=username).first()
        if existing_user:
            flash('Username already exists.', 'error')
            return render_template('auth/add_user.html')
        
        # Create new user
        new_user = Users(
            Username=username,
            Password=generate_password_hash(password),
            FullName=full_name,
            Email=email,
            Permissions=permissions,
            Enabled=True
        )
        
        try:
            db.session.add(new_user)
            db.session.commit()
            flash('User created successfully.', 'success')
            return redirect(url_for('auth.list_users'))
        except Exception as e:
            db.session.rollback()
            flash('Error creating user.', 'error')
    
    return render_template('auth/add_user.html')

@auth_bp.route('/list_users')
@login_required
def list_users():
    users = Users.query.all()
    return render_template('auth/list_users.html', users=users)