from datetime import datetime

from pydantic import BaseModel, ConfigDict, EmailStr, Field
from app.users.schemas import GroupInvitePrivacyLevel, PrivacyLevel, PrivateMessagesPrivacyLevel


class RegisterRequest(BaseModel):
    email: EmailStr
    name: str = Field(min_length=1, max_length=100)
    username: str = Field(min_length=3, max_length=50)
    password: str = Field(min_length=8, max_length=128)


class LoginRequest(BaseModel):
    email: EmailStr
    password: str = Field(min_length=8, max_length=128)
    otp_code: str | None = Field(default=None, min_length=6, max_length=8)
    recovery_code: str | None = Field(default=None, min_length=6, max_length=32)


class RefreshTokenRequest(BaseModel):
    refresh_token: str = Field(min_length=16)


class VerifyEmailRequest(BaseModel):
    token: str = Field(min_length=16, max_length=512)


class ResendVerificationRequest(BaseModel):
    email: EmailStr


class RequestPasswordResetRequest(BaseModel):
    email: EmailStr


class ResetPasswordRequest(BaseModel):
    token: str = Field(min_length=16, max_length=512)
    new_password: str = Field(min_length=8, max_length=128)


class MessageResponse(BaseModel):
    message: str


class TokenResponse(BaseModel):
    access_token: str
    refresh_token: str
    token_type: str = "bearer"


class AuthUserResponse(BaseModel):
    model_config = ConfigDict(from_attributes=True)

    id: int
    email: EmailStr
    name: str
    username: str
    bio: str | None = None
    avatar_url: str | None = None
    email_verified: bool
    twofa_enabled: bool
    allow_private_messages: bool = True
    privacy_private_messages: PrivateMessagesPrivacyLevel = "everyone"
    privacy_last_seen: PrivacyLevel = "everyone"
    privacy_avatar: PrivacyLevel = "everyone"
    privacy_group_invites: GroupInvitePrivacyLevel = "everyone"
    created_at: datetime
    updated_at: datetime


class SessionRead(BaseModel):
    jti: str
    created_at: datetime
    ip_address: str | None = None
    user_agent: str | None = None
    current: bool = False
    token_type: str = "refresh"


class TwoFactorSetupRead(BaseModel):
    secret: str
    otpauth_url: str


class TwoFactorCodeRequest(BaseModel):
    code: str = Field(min_length=6, max_length=8)


class TwoFactorRecoveryCodesRead(BaseModel):
    codes: list[str]


class TwoFactorRecoveryStatusRead(BaseModel):
    remaining_codes: int


class EmailStatusResponse(BaseModel):
    email: EmailStr
    registered: bool
    email_verified: bool = False
    twofa_enabled: bool = False