use actix_web::{HttpResponse, web};

use crate::api::response::{ApiErrorResponse, ApiResponse};
use crate::error::AppError;
use crate::service::AppService;
use crate::service::auth::totp::Get2FAStatusResponse;
use crate::session::Session;

#[utoipa::path(
    get,
    path = "/api/v1/auth/2fa/status",
    tag = "Auth",
    operation_id = "authGetTwoFactorStatus",
    summary = "Get two-factor authentication status",
    description = "Read the current signed-in user's TOTP two-factor authentication status, including whether it is enabled, the authentication method, and whether backup codes are still available.",
    responses(
        (status = 200, description = "Read successfully.", body = ApiResponse<Get2FAStatusResponse>),
        (status = 401, description = "The current session is not authenticated.", body = ApiErrorResponse),
        (status = 500, description = "Database read failed.", body = ApiErrorResponse)
    )
)]
pub async fn handle(
    service: web::Data<AppService>,
    session: Session,
) -> Result<HttpResponse, AppError> {
    let data = service.auth.auth_2fa_status(&session).await?;
    Ok(HttpResponse::Ok().json(ApiResponse::new(data)))
}