#!/usr/bin/env bash
# XuqmGroup 私有化部署 — 一键安装脚本
#
# 用法一（推荐，先下载再审查）：
#   curl -fsSL https://xuqinmin.com/xuqmGroup/XuqmGroup-PrivateDeploy/raw/branch/main/install.sh \
#        -o install.sh && bash install.sh
#
# 用法二（直接执行，保留终端交互）：
#   bash <(curl -fsSL https://xuqinmin.com/xuqmGroup/XuqmGroup-PrivateDeploy/raw/branch/main/install.sh)
#
# 环境变量（可选）：
#   DEPLOY_HOST    目标机器 IP / 主机名（默认自动检测本机 IP）
#   INSTALL_DIR    安装目录（默认 /opt/xuqm-private）
#   XUQM_BRANCH    Gitea 分支（默认 main）

set -euo pipefail

# ---------------------------------------------------------------------------
# 若 stdin 不是终端（curl | bash），强制从 /dev/tty 读取用户输入
# ---------------------------------------------------------------------------
if [ ! -t 0 ]; then
  exec bash "$0" "$@" </dev/tty
fi

# ---------------------------------------------------------------------------
# 配置
# ---------------------------------------------------------------------------
GITEA_BASE="https://xuqinmin.com/xuqmGroup/XuqmGroup-PrivateDeploy"
XUQM_BRANCH="${XUQM_BRANCH:-main}"
ARCHIVE_URL="${GITEA_BASE}/archive/${XUQM_BRANCH}.tar.gz"

INSTALL_DIR="${INSTALL_DIR:-/opt/xuqm-private}"
DEPLOY_HOST="${DEPLOY_HOST:-}"

# ---------------------------------------------------------------------------
# 颜色 & 工具函数
# ---------------------------------------------------------------------------
RED='\033[1;31m'; GREEN='\033[1;32m'; YELLOW='\033[1;33m'
CYAN='\033[1;36m'; BOLD='\033[1m'; RESET='\033[0m'

info() { printf "${CYAN}  →${RESET} %s\n" "$*"; }
ok()   { printf "${GREEN}  ✓${RESET} %s\n" "$*"; }
warn() { printf "${YELLOW}  ⚠${RESET} %s\n" "$*"; }
fail() { printf "${RED}\nERROR: %s${RESET}\n" "$*" >&2; exit 1; }

# ---------------------------------------------------------------------------
# Banner
# ---------------------------------------------------------------------------
printf '\n%b══════════════════════════════════════════════════%b\n' "$CYAN" "$RESET"
printf '%b  XuqmGroup 私有化部署 — 一键安装向导%b\n' "$BOLD" "$RESET"
printf '%b══════════════════════════════════════════════════%b\n\n' "$CYAN" "$RESET"

# ---------------------------------------------------------------------------
# 检测目标主机 IP
# ---------------------------------------------------------------------------
if [ -z "$DEPLOY_HOST" ]; then
  DEPLOY_HOST="$(hostname -I 2>/dev/null | awk '{print $1}' || \
                 ip route get 1 2>/dev/null | awk '{print $7}' | head -1 || \
                 echo "127.0.0.1")"
fi
printf '  安装目录:  %b%s%b\n' "$BOLD" "$INSTALL_DIR" "$RESET"
printf '  目标主机:  %b%s%b\n' "$BOLD" "$DEPLOY_HOST" "$RESET"
printf '  部署分支:  %s\n\n' "$XUQM_BRANCH"

# ---------------------------------------------------------------------------
# Step 1 — 检测操作系统
# ---------------------------------------------------------------------------
if command -v apt-get >/dev/null 2>&1; then
  PKG_MGR="apt"
  apt-get update -qq 2>/dev/null || true
elif command -v yum >/dev/null 2>&1; then
  PKG_MGR="yum"
else
  fail "不支持的操作系统（需要 apt 或 yum）"
fi
ok "包管理器: $PKG_MGR"

pkg_install() {
  if [ "$PKG_MGR" = "apt" ]; then
    apt-get install -y -qq "$@" 2>/dev/null
  else
    yum install -y -q "$@" 2>/dev/null
  fi
}

# ---------------------------------------------------------------------------
# Step 2 — 安装 Docker
# ---------------------------------------------------------------------------
if ! command -v docker >/dev/null 2>&1; then
  info "Docker 未安装，正在安装..."
  if [ "$PKG_MGR" = "apt" ]; then
    pkg_install ca-certificates curl gnupg lsb-release
    install -m 0755 -d /etc/apt/keyrings
    curl -fsSL https://download.docker.com/linux/ubuntu/gpg \
      | gpg --dearmor -o /etc/apt/keyrings/docker.gpg 2>/dev/null
    chmod a+r /etc/apt/keyrings/docker.gpg
    echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] \
https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" \
      > /etc/apt/sources.list.d/docker.list
    apt-get update -qq
    pkg_install docker-ce docker-ce-cli containerd.io docker-compose-plugin
  else
    pkg_install yum-utils
    yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo 2>/dev/null
    pkg_install docker-ce docker-ce-cli containerd.io docker-compose-plugin
    systemctl enable --now docker 2>/dev/null || true
  fi
fi

docker info >/dev/null 2>&1 || { systemctl start docker 2>/dev/null || true; sleep 2; }
docker info >/dev/null 2>&1 || fail "Docker daemon 未运行，请执行: systemctl start docker"
ok "Docker $(docker --version | grep -o '[0-9]*\.[0-9]*\.[0-9]*' | head -1)"

# ---------------------------------------------------------------------------
# Step 3 — 确认 Docker Compose v2
# ---------------------------------------------------------------------------
if ! docker compose version >/dev/null 2>&1; then
  info "Docker Compose v2 未安装，正在安装..."
  if [ "$PKG_MGR" = "apt" ]; then
    pkg_install docker-compose-plugin
  else
    COMPOSE_VER="v2.27.0"
    mkdir -p /usr/local/lib/docker/cli-plugins
    curl -fsSL \
      "https://github.com/docker/compose/releases/download/${COMPOSE_VER}/docker-compose-$(uname -s)-$(uname -m)" \
      -o /usr/local/lib/docker/cli-plugins/docker-compose
    chmod +x /usr/local/lib/docker/cli-plugins/docker-compose
  fi
fi
ok "Docker Compose $(docker compose version --short 2>/dev/null || echo 'v2')"

# ---------------------------------------------------------------------------
# Step 4 — 安装 python3 + bcrypt（新建租户密码哈希）
# ---------------------------------------------------------------------------
if ! command -v python3 >/dev/null 2>&1; then
  info "python3 未安装，正在安装..."
  pkg_install python3
fi

if ! python3 -c "import bcrypt" 2>/dev/null; then
  info "python3-bcrypt 未安装，正在安装..."
  if [ "$PKG_MGR" = "apt" ]; then
    pkg_install python3-bcrypt 2>/dev/null || python3 -m pip install -q bcrypt
  else
    python3 -m pip install -q bcrypt
  fi
fi
python3 -c "import bcrypt" 2>/dev/null || fail "python3-bcrypt 安装失败，请手动执行: pip3 install bcrypt"
ok "python3 + bcrypt"

# ---------------------------------------------------------------------------
# Step 5 — 安装 mysql 客户端（迁移模式需要）
# ---------------------------------------------------------------------------
if ! command -v mysql >/dev/null 2>&1; then
  info "mysql 客户端未安装，正在安装（迁移租户模式需要）..."
  if [ "$PKG_MGR" = "apt" ]; then
    pkg_install mysql-client 2>/dev/null || pkg_install default-mysql-client 2>/dev/null || \
      warn "mysql 客户端安装失败，新建租户模式仍可用"
  else
    pkg_install mysql 2>/dev/null || warn "mysql 客户端安装失败，新建租户模式仍可用"
  fi
fi
command -v mysql >/dev/null 2>&1 && ok "mysql 客户端" || warn "mysql 客户端不可用（仅影响迁移模式）"

# ---------------------------------------------------------------------------
# Step 6 — 下载部署包
# ---------------------------------------------------------------------------
printf '\n'
info "下载部署包 ${ARCHIVE_URL} ..."

TMP_PKG="$(mktemp /tmp/xuqm-deploy-XXXXXX.tar.gz)"
trap 'rm -f "$TMP_PKG"' EXIT

curl -fsSL --progress-bar "$ARCHIVE_URL" -o "$TMP_PKG" \
  || fail "部署包下载失败，请检查网络或 Gitea 是否可达: $ARCHIVE_URL"

# ---------------------------------------------------------------------------
# Step 7 — 解压到安装目录
# ---------------------------------------------------------------------------
if [ -d "$INSTALL_DIR" ] && [ -f "$INSTALL_DIR/docker-compose.yml" ]; then
  warn "安装目录已存在部署文件: $INSTALL_DIR"
  printf '  将覆盖脚本和配置模板（数据目录 data/ 不受影响）\n'
fi

mkdir -p "$INSTALL_DIR"
tar -xzf "$TMP_PKG" -C "$INSTALL_DIR" --strip-components=1 --exclude='*/data'
chmod +x "$INSTALL_DIR/scripts/"*.sh "$INSTALL_DIR/install.sh" 2>/dev/null || true
ok "部署包解压完成: $INSTALL_DIR"

# ---------------------------------------------------------------------------
# Step 8 — 启动交互式部署
# ---------------------------------------------------------------------------
printf '\n%b  依赖安装完毕，即将进入交互式部署向导 ...%b\n\n' "$GREEN" "$RESET"

export DEPLOY_HOST
cd "$INSTALL_DIR"
exec bash scripts/deploy.sh