package chain

import (
	chain2 "git.kor-elf.net/kor-elf-shield/go-nftables-client/chain"
	"git.kor-elf.net/kor-elf-shield/go-nftables-client/family"
	"git.kor-elf.net/kor-elf-shield/go-nftables-client/internal/command"
)

// API for working with chains.
type API interface {
	// Add adds a new chain.
	//
	// This command is equivalent to:
	//     nft add chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name}
	//     nft add chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type (filter|route|nat) hook (ingress|prerouting|forward|input|output|postrouting|egress) priority (priority_value = int32) ;}'
	//     nft add chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type filter hook (forward|input|output) priority (priority_value = int32) ; policy (accept|drop) ;}'
	//     nft add chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type (filter|route|nat) hook (ingress|egress) device {device} priority (priority_value = int32) ;}'
	Add(family family.Type, tableName string, chainName string, baseChain chain2.ChainOptions) error

	// Create creates a new chain.
	// Similar to the Add, but returns an error if the chain already exists.
	//
	// This command is equivalent to:
	//     nft create chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name}
	//     nft create chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type (filter|route|nat) hook (ingress|prerouting|forward|input|output|postrouting|egress) priority (priority_value = int32) ;}'
	//     nft create chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type filter hook (forward|input|output) priority (priority_value = int32) ; policy (accept|drop) ;}'
	//     nft create chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name} '{ type (filter|route|nat) hook (ingress|egress) device {device} priority (priority_value = int32) ;}'
	Create(family family.Type, tableName string, chainName string, baseChain chain2.ChainOptions) error

	// Delete deletes a chain.
	//
	// This command is equivalent to:
	//     nft delete chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name}
	Delete(family family.Type, tableName string, chainName string) error

	// Clear clears all rules in a chain.
	//
	// This command is equivalent to:
	//     nft flush chain (ip|ip6|inet|arp|bridge) {table_name} {chain_name}
	Clear(family family.Type, tableName string, chainName string) error

	// Rename renames a chain.
	//
	// This command is equivalent to:
	//     nft rename chain (ip|ip6|inet|arp|bridge) {table_name} {old_chain_name} {new_chain_name}
	Rename(family family.Type, tableName string, oldChainName string, newChainName string) error
}

type chain struct {
	command command.NFT
}

func New(command command.NFT) API {
	return &chain{
		command: command,
	}
}

func (c *chain) Add(family family.Type, tableName string, chainName string, baseChain chain2.ChainOptions) error {
	args := []string{"add", "chain", family.String(), tableName, chainName, baseChain.String()}
	return c.command.Run(args...)
}

func (c *chain) Create(family family.Type, tableName string, chainName string, baseChain chain2.ChainOptions) error {
	args := []string{"create", "chain", family.String(), tableName, chainName, baseChain.String()}
	return c.command.Run(args...)
}

func (c *chain) Delete(family family.Type, tableName string, chainName string) error {
	args := []string{"delete", "chain", family.String(), tableName, chainName}
	return c.command.Run(args...)
}

func (c *chain) Clear(family family.Type, tableName string, chainName string) error {
	args := []string{"flush", "chain", family.String(), tableName, chainName}
	return c.command.Run(args...)
}

func (c *chain) Rename(family family.Type, tableName string, oldChainName string, newChainName string) error {
	args := []string{"rename", "chain", family.String(), tableName, oldChainName, newChainName}
	return c.command.Run(args...)
}