<?php
declare(strict_types=1);
namespace App\Modules\Dashboard;

use App\Core\{Request, Response, Database};

final class DashboardController
{
    public function getStats(Request $request): void
    {
        $tenantId = $request->tenantId;
        $role = $request->user->role ?? 'viewer';
        $assignedCompanyId = $request->user->assigned_company_id ?? null;
        $db = Database::getInstance();

        // Build scope: accountants see only their company, admins see all tenant companies
        $companyScope = '';
        $params = [$tenantId];
        if ($role === 'accountant' && $assignedCompanyId) {
            $companyScope = ' AND i.company_id = ?';
            $params[] = $assignedCompanyId;
        }

        // Invoices this month
        $stmt = $db->prepare("SELECT COUNT(*) as c FROM invoices i 
            WHERE i.tenant_id = ? {$companyScope} AND MONTH(i.created_at) = MONTH(CURDATE()) AND YEAR(i.created_at) = YEAR(CURDATE()) AND i.deleted_at IS NULL");
        $stmt->execute($params);
        $thisMonth = (int)$stmt->fetchColumn();

        // Total invoices
        $stmt = $db->prepare("SELECT COUNT(*) as c FROM invoices i WHERE i.tenant_id = ? {$companyScope} AND i.deleted_at IS NULL");
        $stmt->execute($params);
        $total = (int)$stmt->fetchColumn();

        // Status distribution
        $stmt = $db->prepare("SELECT status, COUNT(*) as count FROM invoices i 
            WHERE i.tenant_id = ? {$companyScope} AND i.deleted_at IS NULL GROUP BY status");
        $stmt->execute($params);
        $statusDistribution = $stmt->fetchAll();

        // Approved count
        $stmt = $db->prepare("SELECT COUNT(*) FROM invoices i 
            WHERE i.tenant_id = ? {$companyScope} AND i.status = 'approved' AND i.deleted_at IS NULL");
        $stmt->execute($params);
        $approved = (int)$stmt->fetchColumn();

        // Companies count
        $stmt = $db->prepare("SELECT COUNT(*) FROM companies WHERE tenant_id = ? AND is_active = 1 AND deleted_at IS NULL");
        $stmt->execute([$tenantId]);
        $companiesCount = (int)$stmt->fetchColumn();

        // Subscription usage
        $stmt = $db->prepare("SELECT max_invoices_per_month, invoices_used_this_month FROM subscriptions WHERE tenant_id = ?");
        $stmt->execute([$tenantId]);
        $sub = $stmt->fetch();
        $usagePct = $sub && $sub['max_invoices_per_month'] > 0
            ? round(($sub['invoices_used_this_month'] / $sub['max_invoices_per_month']) * 100)
            : 0;

        // Recent invoices with company name
        $stmt = $db->prepare("SELECT i.id, i.invoice_number, i.invoice_date, i.grand_total, i.status, i.created_at, c.name as company_name
            FROM invoices i 
            JOIN companies c ON i.company_id = c.id
            WHERE i.tenant_id = ? {$companyScope} AND i.deleted_at IS NULL
            ORDER BY i.created_at DESC LIMIT 10");
        $stmt->execute($params);
        $recent = $stmt->fetchAll();

        // Unresolved risk flags
        $stmt = $db->prepare("SELECT COUNT(*) FROM risk_scores WHERE tenant_id = ? AND is_resolved = 0");
        $stmt->execute([$tenantId]);
        $riskCount = (int)$stmt->fetchColumn();

        Response::json([
            'success' => true,
            'data' => [
                'total_invoices' => $total,
                'invoices_this_month' => $thisMonth,
                'approved_invoices' => $approved,
                'companies_count' => $companiesCount,
                'subscription_usage_pct' => $usagePct,
                'subscription' => $sub,
                'status_distribution' => $statusDistribution,
                'recent_invoices' => $recent,
                'risk_alerts_count' => $riskCount,
            ]
        ]);
    }
}