import { json } from '@sveltejs/kit';
import { downStack, ExternalStackError, ComposeFileNotFoundError } from '$lib/server/stacks';
import { authorize } from '$lib/server/authorize';
import { auditStack } from '$lib/server/audit';
import type { RequestHandler } from './$types';

export const POST: RequestHandler = async (event) => {
	const { params, url, cookies, request } = event;
	const auth = await authorize(cookies);

	const envId = url.searchParams.get('env');
	const envIdNum = envId ? parseInt(envId) : undefined;

	// Permission check with environment context
	if (auth.authEnabled && !(await auth.can('stacks', 'stop', envIdNum))) {
		return json({ error: 'Permission denied' }, { status: 403 });
	}

	// Environment access check (enterprise only)
	if (envIdNum && auth.isEnterprise && !(await auth.canAccessEnvironment(envIdNum))) {
		return json({ error: 'Access denied to this environment' }, { status: 403 });
	}

	try {
		// Parse body for optional removeVolumes flag
		let removeVolumes = false;
		try {
			const body = await request.json();
			removeVolumes = body.removeVolumes === true;
		} catch {
			// No body or invalid JSON - use defaults
		}

		const stackName = decodeURIComponent(params.name);
		const result = await downStack(stackName, envIdNum, removeVolumes);

		// Audit log
		await auditStack(event, 'down', stackName, envIdNum, { removeVolumes });

		if (!result.success) {
			return json({ success: false, error: result.error }, { status: 400 });
		}
		return json({ success: true, output: result.output });
	} catch (error) {
		if (error instanceof ExternalStackError) {
			return json({ error: error.message }, { status: 400 });
		}
		if (error instanceof ComposeFileNotFoundError) {
			return json({ error: error.message }, { status: 404 });
		}
		console.error('Error downing compose stack:', error);
		return json({ error: 'Failed to down compose stack' }, { status: 500 });
	}
};