use actix_web::{HttpResponse, web};

use crate::api::response::{ApiErrorResponse, ApiResponse};
use crate::error::AppError;
use crate::models::users::UserGpgKey;
use crate::service::AppService;
use crate::session::Session;

/// List user GPG keys
///
/// Returns all GPG public keys registered by the authenticated user.
/// Keys are sorted by creation date (newest first).
/// Only non-revoked keys are included.
/// Requires authentication.
#[utoipa::path(
    get,
    path = "/api/v1/user/keys/gpg",
    tag = "User",
    operation_id = "userListGpgKeys",
    responses(
        (status = 200, description = "GPG keys listed successfully. Returns array of GPG key objects with fingerprints and metadata.", body = ApiResponse<Vec<UserGpgKey>>),
        (status = 401, description = "Authentication required or session expired", body = ApiErrorResponse),
        (status = 500, description = "Internal server error", body = ApiErrorResponse),
    ),
    security(
        ("session_cookie" = [])
    )
)]
pub async fn list_gpg_keys(
    service: web::Data<AppService>,
    session: Session,
) -> Result<HttpResponse, AppError> {
    let keys = service.user.user_gpg_keys(&session).await?;
    Ok(HttpResponse::Ok().json(ApiResponse::new(keys)))
}