#!/usr/bin/env bash
set -euo pipefail

# ============================================================================
# Load Logger Library
# ============================================================================
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
source "${SCRIPT_DIR}/lib/logger.sh"

# ============================================================================
# PART -1: Check if required commands are installed
# ============================================================================

if ! command -v yq &> /dev/null; then
    output=$(cat <<'EOF'
{
  "decision": "block",
  "hookSpecificOutput": {
    "hookEventName": "PostToolUse",
    "additionalContext": "yq is not installed. Install it to enable hook functionality.\n  macOS: brew install yq\n  Linux: https://github.com/mikefarah/yq#install"
  }
}
EOF
)
    log_hook_output "post-tool-use" "$output"
    check_and_echo_block_reason "$output"
    echo "$output"
    exit 1
fi

if ! command -v node &> /dev/null; then
    output=$(cat <<'EOF'
{
  "decision": "block",
  "hookSpecificOutput": {
    "hookEventName": "PostToolUse",
    "additionalContext": "Node.js is not installed. Install it to enable hook functionality.\n  macOS: brew install node\n  Linux: https://nodejs.org/en/download/package-manager"
  }
}
EOF
)
    log_hook_output "post-tool-use" "$output"
    check_and_echo_block_reason "$output"
    echo "$output"
    exit 1
fi

if ! command -v npx &> /dev/null; then
    output=$(cat <<'EOF'
{
  "decision": "block",
  "hookSpecificOutput": {
    "hookEventName": "PostToolUse",
    "additionalContext": "npx is not installed. Install it to enable hook functionality.\n  npm install -g npx"
  }
}
EOF
)
    log_hook_output "post-tool-use" "$output"
    check_and_echo_block_reason "$output"
    echo "$output"
    exit 1
fi

# Determine which JSON command to use (prefer installed json, fallback to npx)
if command -v json &> /dev/null; then
    JSON_CMD="json"
else
    JSON_CMD="npx -y json"
fi

# Read JSON input
json=$(cat)

# Extract file path and tool name
# For Write/Edit tools, the file path is in tool_response.filePath
# For Serena MCP tools, we need to get it from the tool_input.relative_path
file_path=$(echo "$json" | $JSON_CMD tool_response.filePath 2>/dev/null || echo "")
if [[ -z "$file_path" ]]; then
    file_path=$(echo "$json" | $JSON_CMD tool_input.relative_path 2>/dev/null || echo "")
fi
tool_name=$(echo "$json" | $JSON_CMD tool_name 2>/dev/null || echo "")

# ============================================================================
# PART 0: Track Changed Files in In-Progress Task
# ============================================================================

if [[ -n "$file_path" ]]; then
    # Skip tracking task yaml files and requirements.yaml
    filename=$(basename "$file_path")
    if [[ "$filename" =~ ^task-.*\.ya?ml$ ]] || [[ "$filename" == "requirements.yaml" ]]; then
        # Don't track these files
        :
    else
        # Find the task file with "status: in progress"
        in_progress_task=""
        for task_file in task-*.yaml task-*.yml; do
            if [[ -f "$task_file" ]]; then
                # Check if task has "in progress" status using yq
                task_status=$(yq -r '.status // ""' "$task_file" 2>/dev/null || echo "")
                # Remove quotes if present
                if [[ "$task_status" =~ ^[\"\'](.*)[\"\']$ ]]; then
                    task_status="${BASH_REMATCH[1]}"
                fi

                if [[ "$task_status" == "in progress" ]]; then
                    in_progress_task="$task_file"
                    break
                fi
            fi
        done

        # If we found an in-progress task, add the file to changed_files if not already there
        if [[ -n "$in_progress_task" ]]; then
            # Check if file is already in changed_files array
            file_exists=$(yq -r ".changed_files // [] | map(select(. == \"$file_path\")) | length" "$in_progress_task" 2>/dev/null || echo "0")

            if [[ "$file_exists" == "0" ]]; then
                # Add file to changed_files array
                yq -i ".changed_files += [\"$file_path\"]" "$in_progress_task"
            fi
        fi
    fi
fi

# ============================================================================
# PART 1: Verify Requirements
# ============================================================================

if [[ -n "$file_path" ]] && [[ "$file_path" == *"requirements.yaml" ]]; then
    if [[ -f "$file_path" ]]; then
        if yq -e '.complete == true' "$file_path" >/dev/null 2>&1; then
            # Step 1: Get full Claude output
            claude_output=$(claude -p "read and execute ${CLAUDE_PLUGIN_ROOT}/context/verify-requirements.md")

            # Step 2: Extract YAML from output, removing any markdown code fences
            yaml=$(echo "$claude_output" | awk '/^passed:/{flag=1} flag' | sed '/^```/d')

            passed=$(echo "$yaml" | yq -r '.passed')
            remarks=$(echo "$yaml" | yq -r '.remarks[]?')

            if [[ "$passed" == "false" ]]; then
                # Use jq to properly construct JSON with escaped content
                output=$(jq -n \
                    --arg remarks "$remarks" \
                    --arg claude_output "$claude_output" \
                    '{
                        decision: "block",
                        hookSpecificOutput: {
                            hookEventName: "PostToolUse",
                            additionalContext: ("Requirements verification failed and needs fixing with the following reasons:\n" + $remarks + "\n\nFull verification output:\n" + $claude_output)
                        }
                    }')
                log_hook_output "post-tool-use" "$output"
                check_and_echo_block_reason "$output"
                echo "$output"
                exit 1
            else
                # Log successful verification
                success_output=$(cat <<EOF
{
  "decision": "allow",
  "hookSpecificOutput": {
    "hookEventName": "PostToolUse",
    "additionalContext": "Requirements verification passed successfully"
  }
}
EOF
)
                log_hook_output "post-tool-use" "$success_output"
            fi
        fi
    fi
fi

# ============================================================================
# PART 2: Verify Task Creation
# ============================================================================

if [[ -n "$file_path" ]] && [[ "$file_path" =~ task-[0-9]+\.yaml$ ]]; then
    # Only verify when the task file is created (Write or mcp__serena__create_text_file tool used)
    if [[ "$tool_name" == "Write" || "$tool_name" == "mcp__serena__create_text_file" ]] && [[ -f "$file_path" ]]; then
        # Step 1: Get full Claude output
        claude_output=$(claude -p "read task described in $file_path and execute ${CLAUDE_PLUGIN_ROOT}/context/verify-task.md")

        # Step 2: Extract YAML from output, removing any markdown code fences
        yaml=$(echo "$claude_output" | awk '/^passed:/{flag=1} flag' | sed '/^```/d')

        passed=$(echo "$yaml" | yq -r '.passed')
        remarks=$(echo "$yaml" | yq -r '.remarks[]?')
        if [[ "$passed" == "false" ]]; then
            # Use jq to properly construct JSON with escaped content
            output=$(jq -n \
                --arg remarks "$remarks" \
                --arg claude_output "$claude_output" \
                '{
                    decision: "block",
                    hookSpecificOutput: {
                        hookEventName: "PostToolUse",
                        additionalContext: ("Task verification failed and needs fixing with the following reasons:\n" + $remarks + "\n\nFull verification output:\n" + $claude_output)
                    }
                }')
            log_hook_output "post-tool-use" "$output"
            check_and_echo_block_reason "$output"
            echo "$output"
            exit 1
        else
            # Log successful verification
            task_name=$(basename "$file_path")
            success_output=$(cat <<EOF
{
  "decision": "allow",
  "hookSpecificOutput": {
    "hookEventName": "PostToolUse",
    "additionalContext": "Task verification passed successfully for $task_name"
  }
}
EOF
)
            log_hook_output "post-tool-use" "$success_output"
        fi
    fi
fi

# ============================================================================
# PART 3: Verify Content
# ============================================================================

if [[ -n "$file_path" ]]; then
    extension="${file_path##*.}"

    if [[ "$extension" == "yaml" || "$extension" == "yml" ]]; then
        commands=(
            "yq eval ."
        )
    else
        exit 0
    fi

    for cmd in "${commands[@]}"; do
        # Use timeout if available, otherwise run directly
        if command -v timeout &> /dev/null; then
            if ! timeout 30 $cmd "$file_path" 1>&2; then
                # Use jq to properly construct JSON with escaped content
                output=$(jq -n \
                    --arg cmd "$cmd" \
                    --arg file_path "$file_path" \
                    '{
                        decision: "block",
                        hookSpecificOutput: {
                            hookEventName: "PostToolUse",
                            additionalContext: ("Command failed: " + $cmd + " for " + $file_path)
                        }
                    }')
                log_hook_output "post-tool-use" "$output"
                check_and_echo_block_reason "$output"
                echo "$output"
                exit 1
            fi
        fi
    done
fi

# All checks passed - log successful execution with no blocking output
log_hook_output "post-tool-use" ""
exit 0