import type { NextApiRequest, NextApiResponse } from 'next';
import { createResponseForm, createResponseXML, extractSAMLRequestAttributes } from 'utils';
import { User } from 'types';
import config from '../../../lib/env';
import { signResponseXML } from 'utils/response';
import { fetchPrivateKey, fetchPublicKey } from 'utils/certificate';

export default async function handler(req: NextApiRequest, res: NextApiResponse<string>) {
  switch (req.method) {
    case 'GET':
      return await processSAMLRequest();
    default:
      return res.status(405).end(`Method ${req.method} Not Allowed`);
  }

  async function processSAMLRequest() {
    const relayState = <string>req.query.RelayState;
    const samlRequest = <string>req.query.SAMLRequest;
    const { id, audience, acsUrl, providerName } = await extractSAMLRequestAttributes(samlRequest);

    const idpIdentityId = audience;
    // const audience = config.entityId;

    const user: User = {
      id: '1',
      email: 'kiran@boxyhq.com',
      firstName: 'Kiran',
      lastName: 'K',
    };

    const xml = await createResponseXML({
      idpIdentityId: idpIdentityId,
      audience: audience,
      acsUrl: acsUrl,
      user: user,
    });

    const signingKey = await fetchPrivateKey();
    const publicKey = await fetchPublicKey();
    const xmlSigned = await signResponseXML(xml, signingKey, publicKey);
    const encodedSamlResponse = Buffer.from(xmlSigned).toString('base64');

    const html = createResponseForm(relayState, encodedSamlResponse, acsUrl);

    res.send(html);
  }
}