package auth

import "context"

type contextKey int

const authCtxKey contextKey = 0

// AuthContext is stamped into request context by auth middleware.
type AuthContext struct {
	TeamID string
	UserID string // empty when authenticated via API key
	Email  string // empty when authenticated via API key
}

// WithAuthContext returns a new context with the given AuthContext.
func WithAuthContext(ctx context.Context, a AuthContext) context.Context {
	return context.WithValue(ctx, authCtxKey, a)
}

// FromContext retrieves the AuthContext. Returns zero value and false if absent.
func FromContext(ctx context.Context) (AuthContext, bool) {
	a, ok := ctx.Value(authCtxKey).(AuthContext)
	return a, ok
}

// MustFromContext retrieves the AuthContext. Panics if absent — only call
// inside handlers behind auth middleware.
func MustFromContext(ctx context.Context) AuthContext {
	a, ok := FromContext(ctx)
	if !ok {
		panic("auth: MustFromContext called on unauthenticated request")
	}
	return a
}

const hostCtxKey contextKey = 1

// HostContext is stamped into request context by host token middleware.
type HostContext struct {
	HostID string
}

// WithHostContext returns a new context with the given HostContext.
func WithHostContext(ctx context.Context, h HostContext) context.Context {
	return context.WithValue(ctx, hostCtxKey, h)
}

// HostFromContext retrieves the HostContext. Returns zero value and false if absent.
func HostFromContext(ctx context.Context) (HostContext, bool) {
	h, ok := ctx.Value(hostCtxKey).(HostContext)
	return h, ok
}

// MustHostFromContext retrieves the HostContext. Panics if absent — only call
// inside handlers behind host token middleware.
func MustHostFromContext(ctx context.Context) HostContext {
	h, ok := HostFromContext(ctx)
	if !ok {
		panic("auth: MustHostFromContext called on unauthenticated request")
	}
	return h
}