package wrapper

import (
	"fmt"

	"github.com/hashicorp/boundary/sdk/strutil"
	wrapping "github.com/hashicorp/go-kms-wrapping"
	"github.com/hashicorp/shared-secure-libs/configutil"
)

func GetWrapperFromPath(path, purpose string) (wrapping.Wrapper, error) {
	kmses, err := configutil.LoadConfigKMSes(path)
	if err != nil {
		return nil, fmt.Errorf("Error parsing config file: %w", err)
	}

	return getWrapper(kmses, purpose)
}

func GetWrapperFromHcl(inHcl, purpose string) (wrapping.Wrapper, error) {
	kmses, err := configutil.ParseKMSes(inHcl)
	if err != nil {
		return nil, fmt.Errorf("Error parsing KMS HCL: %w", err)
	}

	return getWrapper(kmses, purpose)
}

func getWrapper(kmses []*configutil.KMS, purpose string) (wrapping.Wrapper, error) {
	var kms *configutil.KMS
	for _, v := range kmses {
		if strutil.StrListContains(v.Purpose, purpose) {
			if kms != nil {
				return nil, fmt.Errorf("Only one %q block marked for %q purpose is allowed", "kms", purpose)
			}
			kms = v
		}
	}
	if kms == nil {
		return nil, nil
	}

	wrapper, err := configutil.ConfigureWrapper(kms, nil, nil, nil)
	if err != nil {
		return nil, fmt.Errorf("Error configuring kms: %w", err)
	}

	return wrapper, nil
}