"""
Application configuration module.
Manages JWT and OAuth settings from YAML configuration file.
"""
import os
import secrets
import logging
import yaml
from pathlib import Path
from typing import Dict, Any

logger = logging.getLogger(__name__)


class Settings:
    """Application settings loaded from config.yaml."""
    
    def __init__(self):
        """Load configuration from YAML file."""
        config_path = Path(__file__).parent / "config.yaml"
        
        if not config_path.exists():
            raise FileNotFoundError(f"配置文件不存在: {config_path}")
        
        with open(config_path, 'r', encoding='utf-8') as f:
            config = yaml.safe_load(f)
        
        # JWT Settings
        jwt_config = config.get('jwt', {})
        self.JWT_SECRET_KEY = jwt_config.get('secret_key', secrets.token_urlsafe(32))
        self.JWT_ALGORITHM = jwt_config.get('algorithm', 'HS256')
        self.ACCESS_TOKEN_EXPIRE_MINUTES = jwt_config.get('access_token_expire_minutes', 15)
        self.REFRESH_TOKEN_EXPIRE_DAYS = jwt_config.get('refresh_token_expire_days', 7)
        
        # Database Settings
        db_config = config.get('database', {})
        self.DATABASE_TYPE = db_config.get('type', 'sqlite')
        self.DATABASE_PATH = db_config.get('path', 'annotation_platform.db')
        
        # MySQL Settings
        mysql_config = db_config.get('mysql', {})
        self.MYSQL_HOST = mysql_config.get('host', 'localhost')
        self.MYSQL_PORT = mysql_config.get('port', 3306)
        self.MYSQL_USER = mysql_config.get('user', 'root')
        self.MYSQL_PASSWORD = mysql_config.get('password', '')
        self.MYSQL_DATABASE = mysql_config.get('database', 'annotation_platform')
        
        # OAuth Settings
        oauth_config = config.get('oauth', {})
        self.OAUTH_ENABLED = oauth_config.get('enabled', False)
        self.OAUTH_BASE_URL = oauth_config.get('base_url', '')
        self.OAUTH_CLIENT_ID = oauth_config.get('client_id', '')
        self.OAUTH_CLIENT_SECRET = oauth_config.get('client_secret', '')
        self.OAUTH_REDIRECT_URI = oauth_config.get('redirect_uri', '')
        self.OAUTH_SCOPE = oauth_config.get('scope', 'profile email')
        
        # OAuth Endpoints
        self.OAUTH_AUTHORIZE_ENDPOINT = oauth_config.get('authorize_endpoint', '/oauth/authorize')
        self.OAUTH_TOKEN_ENDPOINT = oauth_config.get('token_endpoint', '/oauth/token')
        self.OAUTH_USERINFO_ENDPOINT = oauth_config.get('userinfo_endpoint', '/oauth/userinfo')
        self.OAUTH_REVOKE_ENDPOINT = oauth_config.get('revoke_endpoint', '/oauth/revoke')
        
        # Server Settings
        server_config = config.get('server', {})
        self.SERVER_HOST = server_config.get('host', '0.0.0.0')
        self.SERVER_PORT = server_config.get('port', 8000)
        self.SERVER_RELOAD = server_config.get('reload', True)
        
        # Warn if using default JWT secret
        if self.JWT_SECRET_KEY == 'your-secret-key-here':
            logger.warning("使用默认 JWT_SECRET_KEY，生产环境请修改 config.yaml！")


# Create settings instance
settings = Settings()