<?php

namespace App\Filament\Resources;

use App\Filament\Resources\RoleResource\Pages;
use App\Filament\Resources\RoleResource\RelationManagers;
use Spatie\Permission\Models\Role;
use Spatie\Permission\Models\Permission;
use Filament\Forms;
use Filament\Forms\Form;
use Filament\Resources\Resource;
use Filament\Tables;
use Filament\Tables\Table;
use Illuminate\Database\Eloquent\Builder;
use Illuminate\Database\Eloquent\SoftDeletingScope;
use Illuminate\Support\Facades\Auth;
use Filament\Tables\Columns\TextColumn;
use Filament\Forms\Components\TextInput;
use Filament\Forms\Components\Select;

class RoleResource extends Resource
{
    protected static ?string $model = Role::class;

    protected static ?string $navigationIcon = 'heroicon-o-shield-check';
    protected static ?string $navigationLabel = 'Role';
    protected static ?string $navigationGroup = 'Manajemen Sistem';
    protected static ?int $navigationSort = 2;

    public static function canViewAny(): bool
    {
        return Auth::user()?->can('role_management') ?? false;
    }

    public static function canAccess(): bool
    {
        return static::canViewAny();
    }

    public static function canCreate(): bool
    {
        return Auth::user()?->can('role_management') ?? false;
    }

    public static function canEdit($record): bool
    {
        return Auth::user()?->can('role_management') ?? false;
    }

    public static function canDelete($record): bool
    {
        // Prevent deletion of core roles
        if (in_array($record->name, ['super_admin', 'admin'])) {
            return false;
        }
        return Auth::user()?->can('role_management') ?? false;
    }

    public static function form(Form $form): Form
    {
        return $form
            ->schema([
                Forms\Components\Section::make('Role Information')
                    ->schema([
                        TextInput::make('name')
                            ->label('Role Name')
                            ->required()
                            ->unique(ignoreRecord: true)
                            ->maxLength(255),
                        
                        Forms\Components\CheckboxList::make('permissions')
                            ->label('Permissions')
                            ->relationship('permissions', 'name')
                            ->options(self::getPermissionOptionsWithIds())
                            ->descriptions(self::getPermissionDescriptions())
                            ->columns(2)
                            ->searchable(),
                    ]),
            ]);
    }

    public static function table(Table $table): Table
    {
        return $table
            ->columns([
                TextColumn::make('name')
                    ->label('Role Name')
                    ->searchable()
                    ->sortable(),
                    
                TextColumn::make('permissions_count')
                    ->label('Permissions')
                    ->counts('permissions')
                    ->badge(),
                    
                TextColumn::make('users_count')
                    ->label('Users')
                    ->counts('users')
                    ->badge(),
                    
                TextColumn::make('created_at')
                    ->label('Created')
                    ->dateTime('d/m/Y H:i')
                    ->sortable()
                    ->toggleable(),
            ])
            ->filters([
                //
            ])
            ->actions([
                Tables\Actions\EditAction::make(),
                Tables\Actions\DeleteAction::make()
                    ->visible(fn ($record) => !in_array($record->name, ['super_admin', 'admin']))
                    ->before(function ($record) {
                        // Remove role from all users before deletion
                        $record->users()->detach();
                    }),
            ])
            ->bulkActions([
                Tables\Actions\BulkActionGroup::make([
                    Tables\Actions\DeleteBulkAction::make()
                        ->visible(fn () => Auth::user()?->hasRole('superadmin')),
                ]),
            ]);
    }

    public static function getRelations(): array
    {
        return [
            //
        ];
    }

    public static function getPages(): array
    {
        return [
            'index' => Pages\ListRoles::route('/'),
            'create' => Pages\CreateRole::route('/create'),
            'edit' => Pages\EditRole::route('/{record}/edit'),
        ];
    }

    protected static function getPermissionOptions(): array
    {
        return Permission::orderBy('name')->pluck('name', 'name')->toArray();
    }

    protected static function getPermissionOptionsWithIds(): array
    {
        return Permission::orderBy('name')->pluck('name', 'id')->toArray();
    }

    protected static function getPermissionDescriptions(): array
    {
        return [
            'dashboard_access' => 'Akses ke dashboard admin',
            'user_management' => 'Kelola user (tambah, edit, hapus, lihat)',
            'role_management' => 'Kelola role dan permission',
            'cms_home' => 'Kelola konten beranda (hero, statistik, keunggulan)',
            'cms_about' => 'Kelola halaman tentang (profil, visi misi, tim)',
            'cms_articles' => 'Kelola artikel dan kategori',
            'cms_gallery' => 'Kelola galeri media dan gambar',
            'cms_achievements' => 'Kelola prestasi sekolah',
            'cms_announcements' => 'Kelola pengumuman dan berita',
            'spmb_management' => 'Kelola konten dan pendaftaran SPMB',
            'system_settings' => 'Kelola konfigurasi dan pengaturan sistem',
        ];
    }
}