"""Proaktives Monitoring — regelbasiert (Stufe 1) + KI (Stufe 2)."""

import sys
import os
import json
import hashlib
import requests
from datetime import datetime, timezone

sys.path.insert(0, os.path.dirname(__file__))
from core import config, loki_client, proxmox_client, mail_client

ALERT_STATE_FILE = os.path.join(os.path.dirname(__file__), ".alert_state.json")
ALERT_COOLDOWN_SECONDS = {
    "container": 1800,
    "ram": 1800,
    "panic": 3600,
    "silence": 3600,
    "default": 3600,
}


def _get_tokens(cfg):
    tokens = {}
    tn = cfg.raw.get("PVE_TOKEN_HETZNER_NAME", "")
    tv = cfg.raw.get("PVE_TOKEN_HETZNER_VALUE", "")
    if tn and tv:
        tokens["pve-hetzner"] = {"name": tn, "value": tv}
    return tokens


def _get_passwords(cfg):
    pw = cfg.passwords.get("default", "")
    return {host: pw for host in proxmox_client.PROXMOX_HOSTS}


CRITICAL_CONTAINERS = [101, 109, 111, 112, 113, 115]

IGNORED_HOSTS = {"${HOSTNAME}", ""}


def check_all() -> list[str]:
    """Regelbasierter Check (Stufe 1). Gibt Liste von Alarmen zurück."""
    cfg = config.parse_config()
    alerts = []

    containers = proxmox_client.get_all_containers(
        _get_passwords(cfg), _get_tokens(cfg)
    )
    for ct in containers:
        if "error" in ct:
            continue
        vmid = ct.get("vmid", 0)
        name = ct.get("name", "?")
        status = ct.get("status", "unknown")
        if vmid in CRITICAL_CONTAINERS and status != "running":
            alerts.append(f"🔴 CT {vmid} ({name}) ist {status}!")

        mem = ct.get("mem", 0)
        maxmem = ct.get("maxmem", 1)
        if maxmem > 0 and mem / maxmem > 0.90:
            pct = int(mem / maxmem * 100)
            alerts.append(f"⚠️ CT {vmid} ({name}) RAM bei {pct}%")

    errors = loki_client.get_errors(hours=0.5, limit=50)
    error_lines = [e for e in errors if "error" not in e]
    panic_lines = []
    for e in error_lines:
        line = e.get("line", "")
        ll = line.lower()
        if not any(w in ll for w in ["panic", "fatal", "oom", "out of memory"]):
            continue
        if "query=" in line or "caller=metrics" in line:
            continue
        if "HTTP/1." in line and ('" 200 ' in line or '" 301 ' in line or '" 302 ' in line or '" 304 ' in line):
            continue
        if "GET /" in line or "POST /" in line or "HEAD /" in line:
            continue
        panic_lines.append(e)
    if panic_lines:
        hosts = set(e.get("host", "?") for e in panic_lines)
        hosts -= IGNORED_HOSTS
        if hosts:
            alerts.append(f"🔴 Kritische Fehler (panic/fatal/OOM) auf: {', '.join(hosts)}")

    silent = loki_client.check_silence(minutes=35)
    if silent and "error" not in silent[0]:
        names = [s["host"] for s in silent if s.get("host") not in IGNORED_HOSTS]
        if names:
            alerts.append(f"⚠️ Keine Logs seit 35+ Min: {', '.join(names)}")

    try:
        mail_client.init(cfg)
        important = mail_client.get_important_mails(hours=1)
        if important and "error" not in important[0]:
            state = _load_alert_state()
            seen = state.get("seen_mails", {})
            now = datetime.now(timezone.utc).timestamp()

            new_mails = []
            for m in important:
                fp = hashlib.md5(
                    f"{m.get('date_str','')}|{m.get('from','')}|{m.get('subject','')}".encode()
                ).hexdigest()
                if fp not in seen:
                    new_mails.append(m)
                    seen[fp] = now

            seen = {k: v for k, v in seen.items() if now - v < 172800}
            state["seen_mails"] = seen
            _save_alert_state(state)

            if new_mails:
                senders = [m["from"][:30] for m in new_mails]
                alerts.append(f"📧 {len(new_mails)} neue wichtige Mail(s): {', '.join(senders)}")
    except Exception:
        pass

    return alerts


def format_report() -> str:
    """Tagesbericht: Gesamtstatus aller Systeme."""
    cfg = config.parse_config()
    lines = ["📋 Tagesbericht Homelab\n"]

    containers = proxmox_client.get_all_containers(
        _get_passwords(cfg), _get_tokens(cfg)
    )
    running = [c for c in containers if c.get("status") == "running"]
    stopped = [c for c in containers if c.get("status") == "stopped"]
    errors_ct = [c for c in containers if "error" in c]
    lines.append(f"Container: {len(running)} running, {len(stopped)} stopped, {len(errors_ct)} nicht erreichbar")

    errors = loki_client.get_errors(hours=24, limit=100)
    error_count = len([e for e in errors if "error" not in e])
    lines.append(f"Fehler (24h): {error_count}")

    silent = loki_client.check_silence(minutes=35)
    if silent and "error" not in (silent[0] if silent else {}):
        names = [s["host"] for s in silent if s.get("host") not in IGNORED_HOSTS]
        if names:
            lines.append(f"Stille Hosts: {', '.join(names)}")
        else:
            lines.append("Stille Hosts: keine")
    else:
        lines.append("Stille Hosts: keine")

    alerts = check_all()
    if alerts:
        lines.append(f"\n⚠️ {len(alerts)} aktive Alarme:")
        lines.extend(alerts)
    else:
        lines.append("\n✅ Keine Alarme — alles läuft.")

    return "\n".join(lines)


def _load_alert_state() -> dict:
    try:
        with open(ALERT_STATE_FILE, "r") as f:
            return json.load(f)
    except (FileNotFoundError, json.JSONDecodeError):
        return {}


def _save_alert_state(state: dict):
    try:
        with open(ALERT_STATE_FILE, "w") as f:
            json.dump(state, f)
    except Exception:
        pass


def _alert_key(alert_text: str) -> str:
    return hashlib.md5(alert_text.encode()).hexdigest()


def _alert_category(alert_text: str) -> str:
    if "CT " in alert_text and "ist " in alert_text:
        return "container"
    if "RAM " in alert_text:
        return "ram"
    if "panic" in alert_text.lower() or "fatal" in alert_text.lower():
        return "panic"
    if "Keine Logs" in alert_text:
        return "silence"
    return "default"


def _filter_new_alerts(alerts: list[str]) -> list[str]:
    """Filtert bereits gemeldete Infra-Alerts per Cooldown. Mails werden separat in check_all() dedupliziert."""
    state = _load_alert_state()
    now = datetime.now(timezone.utc).timestamp()
    cooldowns = state.get("alert_cooldowns", {})
    new_alerts = []

    for alert in alerts:
        key = _alert_key(alert)
        cat = _alert_category(alert)
        cooldown = ALERT_COOLDOWN_SECONDS.get(cat, 3600)

        last_sent = cooldowns.get(key, {}).get("ts", 0)
        if now - last_sent > cooldown:
            new_alerts.append(alert)
            cooldowns[key] = {"ts": now, "text": alert[:80], "cat": cat}

    cutoff = now - 86400
    cooldowns = {k: v for k, v in cooldowns.items() if v.get("ts", 0) > cutoff}

    state["alert_cooldowns"] = cooldowns
    _save_alert_state(state)
    return new_alerts


def send_alert(token: str, chat_id: str, message: str):
    """Sendet eine Nachricht via Telegram."""
    requests.post(
        f"https://api.telegram.org/bot{token}/sendMessage",
        data={"chat_id": chat_id, "text": message},
        timeout=10,
    )


def run_check_and_alert():
    """Hauptfunktion für Cron: prüft und sendet Alerts falls nötig."""
    cfg = config.parse_config()
    token = cfg.raw.get("TG_HAUSMEISTER_TOKEN", "")
    chat_id = cfg.raw.get("TG_CHAT_ID", "")
    if not token or not chat_id:
        return

    alerts = check_all()
    new_alerts = _filter_new_alerts(alerts)
    if new_alerts:
        msg = "🔧 Hausmeister-Check\n\n" + "\n".join(new_alerts)
        send_alert(token, chat_id, msg)


if __name__ == "__main__":
    import sys as _sys
    if len(_sys.argv) > 1 and _sys.argv[1] == "report":
        print(format_report())
    else:
        run_check_and_alert()