package secret

import (
	"context"

	"google.golang.org/grpc/codes"
	"google.golang.org/grpc/status"

	"edge-infra.dev/pkg/edge/api/types"
	"edge-infra.dev/pkg/edge/k8objectsutils"
	secretMgrApi "edge-infra.dev/pkg/lib/gcp/secretmanager"
	"edge-infra.dev/pkg/sds/remoteaccess/constants"
)

func SaveStoreSecret(ctx context.Context, clusterEdgeID string, secretData []byte, sm types.SecretManagerService) error {
	smSecretName := k8objectsutils.NameWithPrefix(constants.StoreName, clusterEdgeID)
	labels := map[string]string{
		secretMgrApi.SecretLabel:                  constants.WireguardControllerName,
		secretMgrApi.SecretTypeLabel:              constants.StoreName,
		secretMgrApi.SecretOwnerLabel:             constants.WireguardControllerName,
		secretMgrApi.SecretNamespaceSelectorLabel: constants.WireguardControllerName,
	}
	return sm.AddSecret(ctx, smSecretName, secretData, labels, true, ExpireAt(), "")
}

func RemoveStoreSecret(ctx context.Context, clusterEdgeID string, sm types.SecretManagerService) error {
	smSecretName := k8objectsutils.NameWithPrefix(constants.StoreName, clusterEdgeID)
	err := sm.DeleteSecret(ctx, smSecretName)
	if status.Code(err) == codes.NotFound {
		return nil
	}
	return err
}