module Admin
  class ApiUsersController < BaseController
    load_and_authorize_resource
    before_action :set_api_user, only: [:show, :edit, :update, :destroy]

    def index
      @q = ApiUser.includes(:registrar).search(params[:q])
      @api_users = @q.result.page(params[:page])
    end

    def new
      @registrar = Registrar.find_by(id: params[:registrar_id])
      @api_user = ApiUser.new(registrar: @registrar)
    end

    def create
      @api_user = ApiUser.new(api_user_params)

      if @api_user.save
        flash[:notice] = I18n.t('record_created')
        redirect_to [:admin, @api_user]
      else
        flash.now[:alert] = I18n.t('failed_to_create_record')
        render 'new'
      end
    end

    def show;
    end

    def edit;
    end

    def update
      params[:api_user].delete(:password) if params[:api_user][:password].blank?
      if @api_user.update(api_user_params)
        flash[:notice] = I18n.t('record_updated')
        redirect_to [:admin, @api_user]
      else
        flash.now[:alert] = I18n.t('failed_to_update_record')
        render 'edit'
      end
    end

    def destroy
      if @api_user.destroy
        flash[:notice] = I18n.t('record_deleted')
        redirect_to admin_api_users_path
      else
        flash.now[:alert] = I18n.t('failed_to_delete_record')
        render 'show'
      end
    end

    private

    def set_api_user
      @api_user = ApiUser.find(params[:id])
    end

    def api_user_params
      params.require(:api_user).permit(:username, :password, :active,
                                       :registrar_id, :registrar_typeahead,
                                       :identity_code, { roles: [] })
    end
  end
end