import type { NextApiRequest, NextApiResponse } from 'next';
import saml from '@boxyhq/saml20';

import config from 'lib/env';
import type { IdPMetadata } from 'types';
import stream from 'stream';
import { promisify } from 'util';
import { getEntityId, getSSOUrl } from 'lib/entity-id';

const pipeline = promisify(stream.pipeline);

export default async function handler(req: NextApiRequest, res: NextApiResponse<IdPMetadata | string>) {
  switch (req.method) {
    case 'GET':
      return await MetadataUrl();
    default:
      return res.status(405).end(`Method ${req.method} Not Allowed`);
  }

  // Metadata URL
  async function MetadataUrl() {
    const { download } = req.query as { download: any };

    const filename = 'mock-saml-metadata' + (req.query.namespace ? `-${req.query.namespace}` : '') + '.xml';

    const xml = saml.createIdPMetadataXML({
      entityId: getEntityId(config.entityId, req.query.namespace as any),
      ssoUrl: getSSOUrl(config.appUrl, req.query.namespace as any),
      x509cert: saml.stripCertHeaderAndFooter(config.publicKey),
      wantAuthnRequestsSigned: true,
    });

    res.setHeader('Content-type', 'text/xml');

    if (download || download === '') {
      res.setHeader('Content-Disposition', `attachment; filename=${filename}`);

      await pipeline(xml, res);
      return;
    }

    res.send(xml);
  }
}