#!/bin/bash

# 玩玩云一键部署脚本
# 使用方法: bash deploy.sh

set -e

echo "========================================="
echo "  玩玩云 - 一键部署脚本"
echo "========================================="
echo ""

# 检查Docker
if ! command -v docker &> /dev/null; then
    echo "❌ 错误: Docker未安装"
    echo "请先安装Docker: https://docs.docker.com/engine/install/"
    exit 1
fi

# 检查Docker Compose
if ! command -v docker-compose &> /dev/null; then
    echo "❌ 错误: Docker Compose未安装"
    echo "请先安装Docker Compose: https://docs.docker.com/compose/install/"
    exit 1
fi

echo "✓ Docker版本: $(docker --version)"
echo "✓ Docker Compose版本: $(docker-compose --version)"
echo ""

# 检查必要的目录
echo "📁 检查项目结构..."
REQUIRED_DIRS=("backend" "frontend" "nginx")
for dir in "${REQUIRED_DIRS[@]}"; do
    if [ ! -d "$dir" ]; then
        echo "❌ 错误: 缺少 $dir 目录"
        exit 1
    fi
done
echo "✓ 项目结构完整"
echo ""

# 创建必要的目录
echo "📂 创建必要的目录..."
mkdir -p certbot/conf
mkdir -p certbot/www
mkdir -p backend/uploads
mkdir -p storage
echo "✓ 目录创建完成"
echo ""

# 检查.env文件并生成JWT密钥
echo "🔐 配置环境变量..."
if [ ! -f "backend/.env" ]; then
    echo "⚠️  backend/.env 文件不存在，正在创建..."
    
    if [ -f "backend/.env.example" ]; then
        cp backend/.env.example backend/.env
        echo "✓ 已从.env.example创建.env文件"
    else
        echo "⚠️  .env.example不存在，创建基础配置"
        cat > backend/.env << 'ENVEOF'
PORT=40001
NODE_ENV=production
ADMIN_USERNAME=admin
ADMIN_PASSWORD=admin123
STORAGE_ROOT=/app/storage
ALLOWED_ORIGINS=*
COOKIE_SECURE=false
ENVEOF
    fi
    
    # 生成随机JWT密钥
    echo "🔑 生成随机JWT密钥..."
    JWT_SECRET=$(openssl rand -hex 32 2>/dev/null || cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 64 | head -n 1)
    
    # 替换或添加JWT_SECRET
    if grep -q "^JWT_SECRET=" backend/.env; then
        sed -i "s|^JWT_SECRET=.*|JWT_SECRET=$JWT_SECRET|" backend/.env
    else
        echo "JWT_SECRET=$JWT_SECRET" >> backend/.env
    fi
    
    echo "✓ JWT密钥已生成并保存"
else
    echo "✓ backend/.env 文件已存在"
    
    # 检查JWT_SECRET是否为默认值
    if grep -q "^JWT_SECRET=your-secret-key" backend/.env; then
        echo "⚠️  检测到JWT_SECRET使用默认值，正在生成新密钥..."
        JWT_SECRET=$(openssl rand -hex 32 2>/dev/null || cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 64 | head -n 1)
        sed -i "s|^JWT_SECRET=.*|JWT_SECRET=$JWT_SECRET|" backend/.env
        echo "✓ JWT密钥已更新"
    fi
fi
echo ""

# 停止旧容器
echo "🔄 停止旧容器..."
docker-compose down 2>/dev/null || true
echo "✓ 旧容器已停止"
echo ""

# 构建并启动
echo "🚀 构建并启动服务..."
docker-compose up --build -d

# 等待服务启动
echo ""
echo "⏳ 等待服务启动..."
sleep 5

# 检查容器状态
echo ""
echo "📊 检查容器状态..."
docker-compose ps

# 检查后端日志
echo ""
echo "📝 后端启动日志:"
docker-compose logs --tail=20 backend

# 显示访问信息
echo ""
echo "========================================="
echo "  🎉 部署完成！"
echo "========================================="
echo ""
echo "📍 访问地址:"
echo "   前端: http://localhost:8080"
echo "   后端API: http://localhost:40001"
echo ""
echo "👤 默认管理员账号:"
echo "   用户名: admin"
echo "   密码: admin123"
echo "   ⚠️  请立即登录并修改密码！"
echo ""
echo "🔐 安全提示:"
echo "   JWT密钥已自动生成，保存在 backend/.env 中"
echo "   请妥善保管该文件！"
echo ""
echo "📚 查看日志:"
echo "   docker-compose logs -f"
echo ""
echo "🛑 停止服务:"
echo "   docker-compose down"
echo ""
echo "========================================="