import type { Ctx } from "blitz";

import type { Prisma } from "../../db";
import { GlobalRole } from "../../db";

function assert(condition: any, message: string): asserts condition {
	if (!condition) throw new Error(message);
}

export function setDefaultOrganizationId<T extends Record<any, any>>(
	input: T,
	{ session }: Ctx,
): T & { organizationId: Prisma.StringNullableFilter | string } {
	assert(session.orgId, "Missing session.orgId in setDefaultOrganizationId");
	if (input.organizationId) {
		// Pass through the input
		return input as T & { organizationId: string };
	} else if (session.roles?.includes(GlobalRole.SUPERADMIN)) {
		// Allow viewing any organization
		return { ...input, organizationId: { not: "" } };
	} else {
		// Set organizationId to session.orgId
		return { ...input, organizationId: session.orgId };
	}
}

export function enforceSuperAdminIfNotCurrentOrganization<T extends Record<any, any>>(input: T, ctx: Ctx): T {
	assert(ctx.session.orgId, "missing session.orgId");
	assert(input.organizationId, "missing input.organizationId");

	if (input.organizationId !== ctx.session.orgId) {
		ctx.session.$authorize(GlobalRole.SUPERADMIN);
	}
	return input;
}