# Copyright (C) 2012-2024 Zammad Foundation, https://zammad-foundation.org/

class SessionTimeoutJob::Session
  attr_accessor :session, :user

  def initialize(session)
    @session = session
    @user    = User.find_by(id: session.data['user_id'])
  end

  def user?
    user.present?
  end

  def active?
    return true if timeout < 1

    true if session.data['ping'] > timeout.seconds.ago
  end

  def frontend_timeout
    return if !user?

    PushMessages.send_to(user.id, { event: 'session_timeout' })
  end

  def timeout
    return -1 if !user?

    timeout_user
  end

  def timeout_user
    @timeout_user ||= begin
      permissions = user.permissions_with_child_names

      result = -1
      config.each do |key, value|
        next if key == 'default'
        next if permissions.exclude?(key)
        next if value.to_i < result

        result = value.to_i
      end

      if result < 1
        result = config['default'].to_i
      end

      result
    end
  end

  def config
    Setting.get('session_timeout')
  end

  def destroy
    session.destroy
    Rails.logger.info "SessionTimeoutJob removed session '#{session.id}' for user id '#{user&.id}' (last ping: '#{session.data['ping']}', timeout: '#{timeout.seconds}')"
  end
end