# frozen_string_literal: true

require 'graphql'

module Osso
  module GraphQL
    module Types
      class IdentityProvider < Types::BaseObject
        description 'Represents a SAML based IDP instance for an EnterpriseAccount'
        implements ::GraphQL::Types::Relay::Node

        global_id_field :gid
        field :id, ID, null: false
        field :enterprise_account_id, ID, null: false
        field :service, Types::IdentityProviderService, null: true
        field :domain, String, null: false
        field :acs_url, String, null: false
        field :sso_url, String, null: true
        field :sso_cert, String, null: true
        field :configured, Boolean, null: false
        field :documentation_pdf_url, String, null: true

        def configured
          !!(@object.sso_url && @object.sso_cert)
        end

        def documentation_pdf_url
          ENV['BASE_URL'] + '/identity_provider/documentation/' + @object.id
        end

        def self.authorized?(object, context)
          super && (context[:scope] == :admin || object.domain == context[:scope])
        end
      end
    end
  end
end