<?php

namespace App\Http\Controllers\Api\V1\Admin\Agent;

use App\Models\AgentNode;
use App\Support\ApiResponse;
use App\Services\AuditLogger;
use Illuminate\Http\JsonResponse;
use App\Http\Controllers\Controller;
use App\Services\Agent\AgentRoleService;
use App\Support\AdminAgentNodeAccess;
use App\Support\AdminRoleApiPresenter;
use App\Http\Requests\Admin\AgentRoleStoreRequest;

final class AgentNodeRoleStoreController extends Controller
{
    public function __invoke(
        AgentRoleStoreRequest $request,
        AgentNode $agent_node,
        AgentRoleService $service,
    ): JsonResponse {
        $admin = $request->lotteryAdmin();
        abort_if($admin === null, 401);

        $denied = AdminAgentNodeAccess::denyUnlessNodeVisible($admin, $agent_node);
        if ($denied !== null) {
            return $denied;
        }

        if (! $admin->isSuperAdmin() && ! $admin->hasAdminPermission('prd.agent.role.manage')) {
            return AdminAgentNodeAccess::denyUnlessCanManageParent($admin, $agent_node);
        }

        $role = $service->createForAgent($admin, $agent_node, $request->validated());

        AuditLogger::recordForAdmin(
            $admin,
            $request,
            'agent',
            'agent_role.create',
            'admin_role',
            (string) $role->id,
            null,
            AdminRoleApiPresenter::item($role),
        );

        return ApiResponse::success(AdminRoleApiPresenter::item($role));
    }
}