<?php

declare(strict_types=1);

namespace App\Providers;

use Illuminate\Cache\RateLimiting\Limit;
use Illuminate\Foundation\Support\Providers\RouteServiceProvider as ServiceProvider;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\Facades\Route;

class RouteServiceProvider extends ServiceProvider
{
    /**
     * The path to the "home" route for your application.
     *
     * Typically, users are redirected here after authentication.
     *
     * @var string
     */
    public const HOME = '/user/me';

    /**
     * Define your route model bindings, pattern filters, and other route configuration.
     */
    #[\Override]
    public function boot(): void
    {
        $this->configureRateLimiting();

        $this->routes(function () {
            Route::middleware('api')
                ->prefix('api')
                ->group(base_path('routes/api.php'));

            Route::middleware('web')
                ->group(base_path('routes/web.php'));
        });
    }

    /**
     * Configure the rate limiters for the application.
     */
    protected function configureRateLimiting(): void
    {
        // API rate limit: 150 per minute for authenticated users, 100 for guests
        RateLimiter::for('api', function (Request $request) {
            $userId = $request->user()?->id;
            $key = $userId ?: $request->ip();
            $maxAttempts = $userId ? 150 : 100;

            return Limit::perMinute($maxAttempts)->by($key);
        });

        // Web rate limit for authenticated users
        RateLimiter::for('web', function (Request $request) {
            $userId = $request->user()?->id;
            $key = $userId ?: $request->ip();
            $maxAttempts = $userId ? 200 : 100;

            return Limit::perMinute($maxAttempts)->by($key);
        });

        // Strict rate limit for registration (prevent spam)
        RateLimiter::for('register', fn (Request $request) => Limit::perHour(3)->by($request->ip()));

        // Two-factor authentication rate limit
        RateLimiter::for('two-factor', fn (Request $request) => Limit::perMinute(15)->by($request->ip()));

        // Strict photo upload rate limit
        RateLimiter::for('upload', fn (Request $request) => Limit::perMinute(10)->by($request->user()?->id ?? $request->ip()));

        // Rate limit for radio endpoints (high traffic)
        RateLimiter::for('radio', function (Request $request) {
            $key = $request->get('radio_api_key_id')
                ?? $request->user()?->id
                ?? $request->ip();

            return Limit::perMinute(120)->by((string) $key);
        });

        // Rate limit for SSE (long-lived connections - low rate)
        RateLimiter::for('sse', fn (Request $request) => Limit::perMinute(6)->by($request->ip()));
    }
}