intaleq/lib/controller/functions/crud.dart

import 'dart:async';
import 'dart:convert';
import 'package:Intaleq/constant/box_name.dart';
import 'package:Intaleq/constant/links.dart';
import 'package:Intaleq/controller/auth/login_controller.dart';
import 'package:Intaleq/main.dart';
import 'package:get/get.dart';
import 'package:http/http.dart' as http;
import 'package:Intaleq/env/env.dart';

import '../../constant/api_key.dart';

import '../../print.dart';
import '../../views/widgets/elevated_btn.dart';
import '../../views/widgets/error_snakbar.dart';
import 'encrypt_decrypt.dart';
import 'upload_image.dart';
import 'dart:io';

import 'network/net_guard.dart';

class CRUD {
  final NetGuard _netGuard = NetGuard();
  final _client = http.Client();

  /// Stores the signature of the last logged error to prevent duplicates.
  static String _lastErrorSignature = '';

  /// Stores the timestamp of the last logged error.
  static DateTime _lastErrorTimestamp = DateTime(2000);

  /// The minimum time that must pass before logging the same error again.
  static const Duration _errorLogDebounceDuration = Duration(minutes: 1);

  /// Asynchronously logs an error to the server with debouncing to prevent log flooding.
  static Future<void> addError(
      String error, String details, String where) async {
    try {
      final currentErrorSignature = '$where-$error';
      final now = DateTime.now();

      if (currentErrorSignature == _lastErrorSignature &&
          now.difference(_lastErrorTimestamp) < _errorLogDebounceDuration) {
        return;
      }

      _lastErrorSignature = currentErrorSignature;
      _lastErrorTimestamp = now;

      final userId =
          box.read(BoxName.driverID) ?? box.read(BoxName.passengerID);
      final userType =
          box.read(BoxName.driverID) != null ? 'Driver' : 'Passenger';
      final phone = box.read(BoxName.phone) ?? box.read(BoxName.phoneDriver);

      // Fire-and-forget call to prevent infinite loops if the logger itself fails.
      CRUD().post(
        link: AppLink.addError,
        payload: {
          'error': error.toString(),
          'userId': userId.toString(),
          'userType': userType,
          'phone': phone.toString(),
          'device': where,
          'details': details,
        },
      );
    } catch (e) {}
  }

  // ─────────────────────────────────────────────────────────────
  // دالة مساعدة خاصة: يجيب البصمة المشفرة من GetStorage
  // هي نفس القيمة المرسلة في login وعُملها hash في JWT payload
  // السيرفر يعمل: sha256(X-Device-FP + FP_PEPPER) == JWT.fingerPrint
  // ─────────────────────────────────────────────────────────────
  String _getFpHeader() {
    return box.read(BoxName.deviceFpEncrypted)?.toString() ?? '';
  }

  /// Centralized private method to handle all API requests.
  /// Includes retry logic, network checking, and standardized error handling.
  Future<dynamic> _makeRequest({
    required String link,
    Map<String, dynamic>? payload,
    required Map<String, String> headers,
  }) async {
    const connectTimeout = Duration(seconds: 6);
    const receiveTimeout = Duration(seconds: 10);

    Future<http.Response> doPost() {
      final url = Uri.parse(link);
      return _client
          .post(url, body: payload, headers: headers)
          .timeout(connectTimeout + receiveTimeout);
    }

    http.Response response;
    try {
      // retry ذكي: محاولة واحدة إضافية فقط لأخطاء شبكة/5xx
      try {
        response = await doPost();
      } on SocketException catch (_) {
        response = await doPost();
      } on TimeoutException catch (_) {
        response = await doPost();
      }

      final sc = response.statusCode;
      final body = response.body;
      Log.print('request: ${response.request}');
      Log.print('body: $body');

      // 2xx
      if (sc >= 200 && sc < 300) {
        try {
          final jsonData = jsonDecode(body);
          return jsonData;
        } catch (e, st) {
          addError('JSON Decode Error', 'Body: $body\n$st',
              'CRUD._makeRequest $link');
          return 'failure';
        }
      }

      // 401 → تجديد التوكن تلقائياً
      if (sc == 401) {
        await Get.put(LoginController()).getJWT();
        return 'token_expired';
      }

      // 5xx
      if (sc >= 500) {
        addError(
            'Server 5xx', 'SC: $sc\nBody: $body', 'CRUD._makeRequest $link');
        return 'failure';
      }

      // 4xx أخرى
      return 'failure';
    } on SocketException {
      _netGuard.notifyOnce((title, msg) => mySnackeBarError(msg));
      return 'no_internet';
    } on TimeoutException {
      return 'failure';
    } catch (e, st) {
      addError('HTTP Request Exception: $e', 'Stack: $st',
          'CRUD._makeRequest $link');
      return 'failure';
    }
  }

  // ═══════════════════════════════════════════════════════════════
  // post — طلب POST عادي للراكب/السائق
  // ───────────────────────────────────────────────────────────────
  // التغيير: إضافة X-Device-FP header
  //   القيمة: fp_encrypted من GetStorage
  //   السيرفر يتحقق: sha256(fp_encrypted + FP_PEPPER) == JWT.fingerPrint
  // ═══════════════════════════════════════════════════════════════
  Future<dynamic> post({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    String token = r(box.read(BoxName.jwt)).toString().split(Env.addd)[0];

    final headers = {
      'Content-Type': 'application/x-www-form-urlencoded',
      'Authorization': 'Bearer $token',
      'X-Device-FP': _getFpHeader(), // ← إثبات الجهاز
    };

    return await _makeRequest(
      link: link,
      payload: payload,
      headers: headers,
    );
  }

  // ═══════════════════════════════════════════════════════════════
  // get — طلب GET للراكب/السائق (يستخدم POST method)
  // ───────────────────────────────────────────────────────────────
  // التغيير: إضافة X-Device-FP header
  // ═══════════════════════════════════════════════════════════════
  Future<dynamic> get({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var url = Uri.parse(link);
    var response = await http.post(
      url,
      body: payload,
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization':
            'Bearer ${r(box.read(BoxName.jwt)).toString().split(Env.addd)[0]}',
        'X-Device-FP': _getFpHeader(), // ← إثبات الجهاز
      },
    );

    Log.print('request: ${response.request}');
    Log.print('body: ${response.body}');
    Log.print('payload: $payload');

    if (response.statusCode == 200) {
      var jsonData = jsonDecode(response.body);
      if (jsonData['status'] == 'success') {
        return response.body;
      }
      return jsonData['status'];
    } else if (response.statusCode == 401) {
      var jsonData = jsonDecode(response.body);
      if (jsonData['error'] == 'Token expired') {
        await Get.put(LoginController()).getJWT();
        return 'token_expired';
      } else {
        return 'failure';
      }
    } else {
      addError('Non-200 response code: ${response.statusCode}',
          'crud().get - Other', url.toString());
      return 'failure';
    }
  }

  // ═══════════════════════════════════════════════════════════════
  // postWallet — طلب POST لسيرفر المدفوعات
  // ───────────────────────────────────────────────────────────────
  // التغيير: إضافة X-Device-FP header
  //   3 headers معاً: JWT + HMAC + FP
  // ═══════════════════════════════════════════════════════════════
  Future<dynamic> postWallet({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var jwt = await LoginController().getJwtWallet();
    final hmac = box.read(BoxName.hmac);

    final headers = {
      'Content-Type': 'application/x-www-form-urlencoded',
      'Authorization': 'Bearer $jwt',
      'X-HMAC-Auth': hmac.toString(),
      'X-Device-FP': _getFpHeader(), // ← إثبات الجهاز
    };

    return await _makeRequest(
      link: link,
      payload: payload,
      headers: headers,
    );
  }

  // ═══════════════════════════════════════════════════════════════
  // getWallet — طلب GET لسيرفر المدفوعات (يستخدم POST method)
  // ───────────────────────────────────────────────────────────────
  // التغيير: إضافة X-Device-FP header
  // ═══════════════════════════════════════════════════════════════
  Future<dynamic> getWallet({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var s = await LoginController().getJwtWallet();
    final hmac = box.read(BoxName.hmac);
    var url = Uri.parse(link);

    var response = await http.post(
      url,
      body: payload,
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': 'Bearer $s',
        'X-HMAC-Auth': hmac.toString(),
        'X-Device-FP': _getFpHeader(), // ← إثبات الجهاز
      },
    );

    if (response.statusCode == 200) {
      var jsonData = jsonDecode(response.body);
      if (jsonData['status'] == 'success') {
        return response.body;
      }
      return jsonData['status'];
    } else if (response.statusCode == 401) {
      var jsonData = jsonDecode(response.body);
      if (jsonData['error'] == 'Token expired') {
        await Get.put(LoginController()).getJwtWallet();
        return 'token_expired';
      } else {
        addError('Unauthorized: ${jsonData['error']}', 'crud().getWallet - 401',
            url.toString());
        return 'failure';
      }
    } else {
      addError('Non-200 response code: ${response.statusCode}',
          'crud().getWallet - Other', url.toString());
      return 'failure';
    }
  }

  // =======================================================================
  // All other specialized methods remain below unchanged.
  // They interact with external third-party APIs and have unique
  // authentication or body structures that don't need the FP header.
  // =======================================================================

  Future<dynamic> postWalletMtn(
      {required String link, Map<String, dynamic>? payload}) async {
    final s = await LoginController().getJwtWallet();
    final hmac = box.read(BoxName.hmac);
    final url = Uri.parse(link);

    try {
      final response = await http.post(
        url,
        body: payload,
        headers: {
          'Content-Type': 'application/x-www-form-urlencoded',
          'Authorization': 'Bearer $s',
          'X-HMAC-Auth': hmac.toString(),
          'X-Device-FP': _getFpHeader(), // ← إثبات الجهاز
        },
      );

      Map<String, dynamic> wrap(String status, {Object? message, int? code}) {
        return {
          'status': status,
          'message': message,
          'code': code ?? response.statusCode,
        };
      }

      if (response.statusCode == 200) {
        try {
          return jsonDecode(response.body);
        } catch (e) {
          return wrap('failure',
              message: 'JSON decode error', code: response.statusCode);
        }
      } else if (response.statusCode == 401) {
        try {
          final jsonData = jsonDecode(response.body);
          if (jsonData is Map && jsonData['error'] == 'Token expired') {
            await Get.put(LoginController()).getJWT();
            return {
              'status': 'failure',
              'message': 'token_expired',
              'code': 401
            };
          }
          return wrap('failure', message: jsonData);
        } catch (_) {
          return wrap('failure', message: response.body);
        }
      } else {
        try {
          final jsonData = jsonDecode(response.body);
          return wrap('failure', message: jsonData);
        } catch (_) {
          return wrap('failure', message: response.body);
        }
      }
    } catch (e) {
      return {
        'status': 'failure',
        'message': 'HTTP request error: $e',
        'code': -1
      };
    }
  }

  Future sendWhatsAppAuth(String to, String token) async {
    var res = await CRUD()
        .get(link: AppLink.getApiKey, payload: {'keyName': 'whatsapp_key'});
    var accesstoken = jsonDecode(res)['message']['whatsapp_key'];
    var headers = {
      'Authorization': 'Bearer $accesstoken',
      'Content-Type': 'application/json'
    };

    var url = 'https://graph.facebook.com/v20.0/${Env.whatappID}/messages';
    var request = http.Request('POST', Uri.parse(url));

    var body = json.encode({
      "messaging_product": "whatsapp",
      "to": to,
      "type": "template",
      "template": {
        "name": "sefer1",
        "language": {"code": "en"},
        "components": [
          {
            "type": "body",
            "parameters": [
              {"type": "text", "text": token}
            ]
          }
        ]
      }
    });

    request.body = body;
    request.headers.addAll(headers);

    try {
      http.StreamedResponse response = await request.send();
      if (response.statusCode == 200) {
        String responseBody = await response.stream.bytesToString();
        Get.defaultDialog(
          title: 'You will receive a code in WhatsApp Messenger'.tr,
          middleText: 'wait 1 minute to recive message'.tr,
          confirm: MyElevatedButton(
            title: 'OK'.tr,
            onPressed: () => Get.back(),
          ),
        );
      } else {
        String errorBody = await response.stream.bytesToString();
      }
    } catch (e) {}
  }

  Future<dynamic> getAgoraToken({
    required String channelName,
    required String uid,
  }) async {
    var uid = box.read(BoxName.phone) ?? box.read(BoxName.phoneDriver);
    var res = await http.get(
      Uri.parse(
          'https://orca-app-b2i85.ondigitalocean.app/token?channelName=$channelName'),
      headers: {'Authorization': 'Bearer ${AK.agoraAppCertificate}'},
    );

    if (res.statusCode == 200) {
      var response = jsonDecode(res.body);
      return response['token'];
    }
  }

  Future<dynamic> getLlama({
    required String link,
    required String payload,
    required String prompt,
  }) async {
    var url = Uri.parse(link);
    var headers = {
      'Content-Type': 'application/json',
      'Authorization':
          'Bearer LL-X5lJ0Px9CzKK0HTuVZ3u2u4v3tGWkImLTG7okGRk4t25zrsLqJ0qNoUzZ2x4ciPy'
    };
    var data = json.encode({
      "model": "Llama-3-70b-Inst-FW",
      "messages": [
        {
          "role": "user",
          "content":
              "Extract the desired information from the following passage as json decoded like $prompt just in this:\n\n$payload"
        }
      ],
      "temperature": 0.9
    });
    var response = await http.post(url, body: data, headers: headers);
    if (response.statusCode == 200) return response.body;
    return response.statusCode;
  }

  Future allMethodForAI(String prompt, linkPHP, imagePath) async {
    await ImageController().choosImage(linkPHP, imagePath);
    Future.delayed(const Duration(seconds: 2));
    String extracted =
        await arabicTextExtractByVisionAndAI(imagePath: imagePath);
  }

  Future<dynamic> arabicTextExtractByVisionAndAI({
    required String imagePath,
  }) async {
    var headers = {
      'Content-Type': 'application/json',
      'Ocp-Apim-Subscription-Key': '21010e54b50f41a4904708c526e102df'
    };
    var url = Uri.parse(
        'https://ocrhamza.cognitiveservices.azure.com/vision/v2.1/ocr?language=ar');
    String imagePathFull =
        '${AppLink.server}card_image/$imagePath-${box.read(BoxName.driverID) ?? box.read(BoxName.passengerID)}.jpg';

    var requestBody = {"url": imagePathFull};
    var response =
        await http.post(url, body: jsonEncode(requestBody), headers: headers);

    if (response.statusCode == 200) {
      var responseBody = jsonDecode(response.body);
      return responseBody.toString();
    }
    return response.statusCode;
  }

  Future<dynamic> getChatGPT({
    required String link,
    required String payload,
  }) async {
    var url = Uri.parse(link);
    var headers = {
      'Content-Type': 'application/json',
      'Authorization': 'Bearer ${Env.chatGPTkeySeferNew}'
    };
    var data = json.encode({
      "model": "gpt-3.5-turbo",
      "messages": [
        {
          "role": "user",
          "content":
              "Extract the desired information from the following passage as json decoded like vin,make,made,year,expiration_date,color,owner,registration_date just in this:\n\n$payload"
        }
      ],
      "temperature": 0.9
    });
    var response = await http.post(url, body: data, headers: headers);
    if (response.statusCode == 200) return response.body;
    return response.statusCode;
  }

  Future<dynamic> postStripe({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var url = Uri.parse(link);
    var response = await http.post(
      url,
      body: payload,
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization': 'Bearer ${AK.secretKey}',
      },
    );
    if (response.statusCode == 200) return response.body;
  }

  Future<dynamic> postPayMob({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var url = Uri.parse(link);
    var response = await http.post(url,
        body: payload, headers: {'Content-Type': 'application/json'});

    var jsonData = jsonDecode(response.body);
    if (response.statusCode == 200) {
      if (jsonData['status'] == 'success') return response.body;
      return jsonData['status'];
    } else {
      return response.statusCode;
    }
  }

  sendEmail(String link, Map<String, String>? payload) async {
    var headers = {
      'Content-Type': 'application/x-www-form-urlencoded',
      'Authorization':
          'Basic ${base64Encode(utf8.encode(AK.basicAuthCredentials))}',
    };
    var request = http.Request('POST', Uri.parse(link));
    request.bodyFields = payload!;
    request.headers.addAll(headers);
    http.StreamedResponse response = await request.send();
  }

  Future<dynamic> postFromDialogue({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var url = Uri.parse(link);
    var response = await http.post(
      url,
      body: payload,
      headers: {
        'Content-Type': 'application/x-www-form-urlencoded',
        'Authorization':
            'Basic ${base64Encode(utf8.encode(AK.basicAuthCredentials))}',
      },
    );

    if (response.body.isNotEmpty) {
      var jsonData = jsonDecode(response.body);
      if (response.statusCode == 200) {
        if (jsonData['status'] == 'success') {
          Get.back();
          return response.body;
        }
      }
      return jsonData['status'];
    }
  }

  Future<void> sendVerificationRequest(String phoneNumber) async {
    final accountSid = AK.accountSIDTwillo;
    final authToken = AK.authTokenTwillo;
    final verifySid = AK.twilloRecoveryCode;

    final Uri verificationUri = Uri.parse(
        'https://verify.twilio.com/v2/Services/$verifySid/Verifications');

    final response = await http.post(
      verificationUri,
      headers: {
        'Authorization':
            'Basic ' + base64Encode(utf8.encode('$accountSid:$authToken')),
        'Content-Type': 'application/x-www-form-urlencoded',
      },
      body: {'To': phoneNumber, 'Channel': 'sms'},
    );

    final otpCode = "123456";

    final checkUri = Uri.parse(
        'https://verify.twilio.com/v2/Services/$verifySid/VerificationCheck');

    final checkResponse = await http.post(
      checkUri,
      headers: {
        'Authorization':
            'Basic ' + base64Encode(utf8.encode('$accountSid:$authToken')),
        'Content-Type': 'application/x-www-form-urlencoded',
      },
      body: {'To': phoneNumber, 'Code': otpCode},
    );
  }

  Future<dynamic> getGoogleApi({
    required String link,
    Map<String, dynamic>? payload,
  }) async {
    var url = Uri.parse(link);
    var response = await http.post(url, body: payload);
    var jsonData = jsonDecode(response.body);
    if (jsonData['status'] == 'OK') return jsonData;
    return jsonData['status'];
  }

  Future<dynamic> getHereMap({required String link}) async {
    var url = Uri.parse(link);
    try {
      var response = await http.get(url);
      if (response.statusCode == 200) {
        var decodedBody = utf8.decode(response.bodyBytes);
        return jsonDecode(decodedBody);
      }
      return null;
    } catch (e) {
      return null;
    }
  }

  Future<dynamic> delete({
    required String endpoint,
    required String id,
  }) async {
    var url = Uri.parse('$endpoint/$id');
    var response = await http.delete(
      url,
      headers: {
        'Authorization':
            'Basic ${base64Encode(utf8.encode(AK.basicAuthCredentials))}',
      },
    );
    return json.decode(response.body);
  }
}