"""Unified HTML admin dashboard.

Renders a single self-contained page that aggregates the read-only views
over everything the admin endpoints expose:
  * cache stats (v1.31)
  * rate-limiter stats (v1.31)
  * observability: counters, latency percentiles, recent request log (v1.33)
  * audit trail (v1.33)
  * API-key inventory (hash prefixes only, no plaintext) (v1.32)
  * document lifecycle — total count + first N IDs (v1.38)
  * readiness (v1.34)

The endpoint is admin-scoped (inherits from the `/v1/admin/*` middleware
prefix). Auto-refresh interval configurable via the ?refresh=N query param.
No writes — a read-only cockpit. Any state-changing action is left to the
dedicated POST/DELETE endpoints.
"""
from __future__ import annotations

import html as _h
import json
import time
from typing import Any, Dict, List


def _esc(s: object) -> str:
    return _h.escape(str(s), quote=True)


def _kv_table(rows: List[tuple]) -> str:
    cells = "".join(
        f'<tr><td style="padding:4px 10px;color:#6b7280">{_esc(k)}</td>'
        f'<td style="padding:4px 10px;font-family:monospace">{_esc(v)}</td></tr>'
        for k, v in rows
    )
    return (f'<table style="border-collapse:collapse;width:100%;'
            f'border:1px solid #e5e7eb;border-radius:6px">{cells}</table>')


def _card(title: str, body_html: str) -> str:
    return (
        f'<div style="flex:1 1 360px;min-width:320px;padding:16px;'
        f'border:1px solid #e5e7eb;border-radius:8px;background:#fff">'
        f'<h2 style="font-size:12px;margin:0 0 10px;text-transform:uppercase;'
        f'letter-spacing:.05em;color:#6b7280">{_esc(title)}</h2>{body_html}</div>'
    )


def render_admin_ui(
    *,
    cache_stats: Dict[str, Any],
    limiter_stats: Dict[str, Any],
    obs_stats: Dict[str, Any],
    recent_requests: List[Dict[str, Any]],
    recent_audits: List[Dict[str, Any]],
    keys: List[Dict[str, Any]],
    documents: List[Dict[str, Any]],
    readiness: Dict[str, Any],
    refresh_sec: int = 0,
) -> str:
    """Assemble the dashboard HTML from pre-computed stat dicts."""
    ts_str = time.strftime("%Y-%m-%d %H:%M:%S", time.localtime())

    # ---------- summary cards
    summary_cards = []

    # Cache
    ch = cache_stats.get("hits", 0)
    cm = cache_stats.get("misses", 0)
    summary_cards.append(_card("query cache", _kv_table([
        ("size",     cache_stats.get("size", 0)),
        ("hits",     ch),
        ("misses",   cm),
        ("hit_rate", f'{cache_stats.get("hit_rate", 0.0):.3f}'),
        ("ttl_sec",  cache_stats.get("ttl_sec", "—")),
    ])))

    # Rate limiter
    summary_cards.append(_card("rate limiter", _kv_table([
        ("rate/sec",  limiter_stats.get("rate_per_sec", "—")),
        ("capacity",  limiter_stats.get("capacity", "—")),
        ("buckets",   limiter_stats.get("buckets", 0)),
        ("allowed",   limiter_stats.get("allowed", 0)),
        ("denied",    limiter_stats.get("denied", 0)),
        ("pass_rate", f'{limiter_stats.get("pass_rate", 0.0):.3f}'),
    ])))

    # Observability
    summary_cards.append(_card("observability", _kv_table([
        ("total",    obs_stats.get("total", 0)),
        ("by_status", obs_stats.get("by_status", {})),
        ("avg_ms",   f'{obs_stats.get("avg_latency_ms", 0.0):.2f}'),
        ("p50_ms",   f'{obs_stats.get("p50_ms", 0.0):.2f}'),
        ("p95_ms",   f'{obs_stats.get("p95_ms", 0.0):.2f}'),
        ("p99_ms",   f'{obs_stats.get("p99_ms", 0.0):.2f}'),
    ])))

    # Readiness
    summary_cards.append(_card("readiness", _kv_table([
        (k, v) for k, v in (readiness or {}).items()
    ])))

    # Auth keys
    if keys:
        key_rows = "".join(
            f'<tr><td style="padding:4px 10px;font-family:monospace">{_esc(k.get("key_hash_prefix","?"))}</td>'
            f'<td style="padding:4px 10px">{_esc(k.get("label",""))}</td>'
            f'<td style="padding:4px 10px">{_esc(", ".join(k.get("scopes") or []))}</td>'
            f'<td style="padding:4px 10px;color:{"#dc2626" if k.get("revoked") else "#16a34a"}">'
            f'{"revoked" if k.get("revoked") else "active"}</td></tr>'
            for k in keys
        )
        keys_body = (
            '<table style="border-collapse:collapse;width:100%;font-size:13px">'
            '<tr style="background:#f9fafb"><th style="padding:4px 10px;text-align:left">hash</th>'
            '<th style="padding:4px 10px;text-align:left">label</th>'
            '<th style="padding:4px 10px;text-align:left">scopes</th>'
            '<th style="padding:4px 10px;text-align:left">state</th></tr>'
            + key_rows + '</table>'
        )
    else:
        keys_body = '<div style="color:#6b7280">auth disabled — no keys configured</div>'
    summary_cards.append(_card(f"API keys ({len(keys)})", keys_body))

    # Documents
    doc_rows = "".join(
        f'<tr><td style="padding:4px 10px;font-family:monospace">{_esc(d.get("id",""))}</td>'
        f'<td style="padding:4px 10px;text-align:right;color:#6b7280">{d.get("text_len",0)} chars</td>'
        f'<td style="padding:4px 10px;color:#6b7280">{_esc(json.dumps(d.get("metadata") or {}, ensure_ascii=False))}</td>'
        f'</tr>' for d in documents[:50]
    ) or '<tr><td colspan="3" style="padding:6px 10px;color:#6b7280">no documents indexed</td></tr>'
    docs_body = (
        '<table style="border-collapse:collapse;width:100%;font-size:13px">'
        '<tr style="background:#f9fafb"><th style="padding:4px 10px;text-align:left">id</th>'
        '<th style="padding:4px 10px;text-align:right">length</th>'
        '<th style="padding:4px 10px;text-align:left">metadata</th></tr>'
        + doc_rows + '</table>'
    )
    summary_cards.append(_card(f"documents ({len(documents)})", docs_body))

    # ---------- log rows
    def _log_rows(rows: List[Dict[str, Any]]) -> str:
        if not rows:
            return '<div style="color:#6b7280;font-size:13px">no entries</div>'
        out = ['<table style="border-collapse:collapse;width:100%;font-size:12px">']
        out.append(
            '<tr style="background:#f9fafb">'
            '<th style="padding:4px 10px;text-align:left">ts</th>'
            '<th style="padding:4px 10px;text-align:left">method</th>'
            '<th style="padding:4px 10px;text-align:left">path</th>'
            '<th style="padding:4px 10px;text-align:right">status</th>'
            '<th style="padding:4px 10px;text-align:right">ms</th>'
            '<th style="padding:4px 10px;text-align:left">request_id</th></tr>'
        )
        for r in rows[-20:][::-1]:
            status = r.get("status") or 0
            color = ("#16a34a" if 200 <= int(status or 0) < 300
                     else "#d97706" if 300 <= int(status or 0) < 500
                     else "#dc2626" if int(status or 0) >= 500 else "#6b7280")
            ts = time.strftime("%H:%M:%S",
                               time.localtime(r.get("ts") or time.time()))
            out.append(
                f'<tr><td style="padding:3px 10px;font-family:monospace;color:#6b7280">{ts}</td>'
                f'<td style="padding:3px 10px;font-family:monospace">{_esc(r.get("method",""))}</td>'
                f'<td style="padding:3px 10px;font-family:monospace">{_esc(r.get("path",""))}</td>'
                f'<td style="padding:3px 10px;text-align:right;color:{color};font-weight:600">{_esc(status)}</td>'
                f'<td style="padding:3px 10px;text-align:right;color:#6b7280">{r.get("latency_ms",0):.1f}</td>'
                f'<td style="padding:3px 10px;font-family:monospace;color:#6b7280">{_esc(r.get("request_id",""))}</td></tr>'
            )
        out.append('</table>')
        return "".join(out)

    meta_refresh = (f'<meta http-equiv="refresh" content="{int(refresh_sec)}">'
                    if refresh_sec and refresh_sec > 0 else '')

    body = f"""<!doctype html>
<html lang="en" dir="ltr"><head><meta charset="utf-8">{meta_refresh}
<title>TAU-RAG · Admin UI</title></head>
<body style="font-family:-apple-system,system-ui,Segoe UI,Roboto,sans-serif;margin:24px;color:#111827;background:#f9fafb">

<div style="display:flex;justify-content:space-between;align-items:center;margin-bottom:16px">
  <div>
    <h1 style="margin:0;font-size:20px">TAU-RAG · Admin UI</h1>
    <div style="color:#6b7280;font-size:13px">rendered {ts_str}
      {"· auto-refresh " + str(refresh_sec) + "s" if refresh_sec else ""}</div>
  </div>
  <div style="font-family:monospace;color:#6b7280;font-size:12px">
    /health · /livez · /readyz · /metrics · /docs
  </div>
</div>

<h2 style="font-size:12px;margin:16px 0 8px;text-transform:uppercase;letter-spacing:.05em;color:#6b7280">System</h2>
<div style="display:flex;gap:14px;flex-wrap:wrap">{"".join(summary_cards)}</div>

<h2 style="font-size:12px;margin:24px 0 8px;text-transform:uppercase;letter-spacing:.05em;color:#6b7280">Recent requests</h2>
<div style="background:#fff;border:1px solid #e5e7eb;border-radius:8px;padding:10px">{_log_rows(recent_requests)}</div>

<h2 style="font-size:12px;margin:24px 0 8px;text-transform:uppercase;letter-spacing:.05em;color:#6b7280">Recent audit events</h2>
<div style="background:#fff;border:1px solid #e5e7eb;border-radius:8px;padding:10px">{_log_rows(recent_audits)}</div>

</body></html>"""
    return body


__all__ = ["render_admin_ui"]