name: CI - Main Branch

on:
  push:
    branches:
      - main
  workflow_dispatch:

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

env:
  NODE_VERSION: '20'
  PNPM_VERSION: '9.15.0'
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}

jobs:
  # Full validation on main branch
  validate:
    name: Validate Main Branch
    runs-on: ubuntu-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
        with:
          fetch-depth: 0

      - name: Setup pnpm
        uses: pnpm/action-setup@v4
        with:
          version: ${{ env.PNPM_VERSION }}

      - name: Setup Node.js
        uses: actions/setup-node@v4
        with:
          node-version: ${{ env.NODE_VERSION }}
          cache: 'pnpm'

      - name: Install dependencies
        run: pnpm install --frozen-lockfile

      - name: Build shared packages
        run: pnpm run build:packages

      - name: Run format check
        run: pnpm run format:check

      - name: Run lint
        run: pnpm run lint
        continue-on-error: true

      - name: Run type check
        run: pnpm run type-check

      - name: Build all projects
        run: pnpm run build

      - name: Run tests
        run: pnpm run test || echo "Some tests failed"
        continue-on-error: true

      - name: Generate build summary
        run: |
          echo "## Main Branch Build Summary" >> $GITHUB_STEP_SUMMARY
          echo "" >> $GITHUB_STEP_SUMMARY
          echo "- **Commit**: ${{ github.sha }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Author**: ${{ github.actor }}" >> $GITHUB_STEP_SUMMARY
          echo "- **Timestamp**: $(date -u +'%Y-%m-%d %H:%M:%S UTC')" >> $GITHUB_STEP_SUMMARY
          echo "" >> $GITHUB_STEP_SUMMARY
          echo "### Build Status" >> $GITHUB_STEP_SUMMARY
          echo "All projects built successfully" >> $GITHUB_STEP_SUMMARY

  # Build and push Docker images for backend services
  build-docker-images:
    name: Build Docker Images
    runs-on: ubuntu-latest
    needs: validate
    strategy:
      matrix:
        service:
          - { name: 'maerchenzauber-backend', path: 'apps/maerchenzauber/apps/backend', port: '3002' }
          - { name: 'chat-backend', path: 'apps/chat/apps/backend', port: '3002' }
          - { name: 'manadeck-backend', path: 'apps/manadeck/apps/backend', port: '3003' }
          - { name: 'nutriphi-backend', path: 'apps/nutriphi/apps/backend', port: '3004' }
          - { name: 'news-api', path: 'apps/news/apps/api', port: '3005' }
          - { name: 'mana-core-auth', path: 'services/mana-core-auth', port: '3001' }
      fail-fast: false
    steps:
      - name: Checkout code
        uses: actions/checkout@v4

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Check if Dockerfile exists
        id: check-dockerfile
        run: |
          if [ -f "${{ matrix.service.path }}/Dockerfile" ]; then
            echo "exists=true" >> $GITHUB_OUTPUT
          else
            echo "exists=false" >> $GITHUB_OUTPUT
            echo "Warning: No Dockerfile found for ${{ matrix.service.name }}"
          fi

      - name: Login to GitHub Container Registry
        if: steps.check-dockerfile.outputs.exists == 'true'
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Extract metadata
        if: steps.check-dockerfile.outputs.exists == 'true'
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: ghcr.io/${{ github.repository_owner }}/${{ matrix.service.name }}
          tags: |
            type=sha,prefix={{branch}}-
            type=ref,event=branch
            type=raw,value=latest,enable=${{ github.ref == 'refs/heads/main' }}

      - name: Build and push
        if: steps.check-dockerfile.outputs.exists == 'true'
        uses: docker/build-push-action@v5
        with:
          context: .
          file: ${{ matrix.service.path }}/Dockerfile
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
          cache-from: type=gha
          cache-to: type=gha,mode=max
          build-args: |
            NODE_ENV=production
            PORT=${{ matrix.service.port }}

      - name: Image digest
        if: steps.check-dockerfile.outputs.exists == 'true'
        run: echo "Image digest - ${{ steps.meta.outputs.digest }}"

  # Trigger staging deployment
  trigger-staging-deploy:
    name: Trigger Staging Deployment
    runs-on: ubuntu-latest
    needs: build-docker-images
    if: github.ref == 'refs/heads/main'
    steps:
      - name: Trigger staging deployment workflow
        uses: actions/github-script@v7
        with:
          script: |
            await github.rest.actions.createWorkflowDispatch({
              owner: context.repo.owner,
              repo: context.repo.repo,
              workflow_id: 'cd-staging.yml',
              ref: 'main'
            });

      - name: Deployment notification
        run: |
          echo "## Staging Deployment Triggered" >> $GITHUB_STEP_SUMMARY
          echo "" >> $GITHUB_STEP_SUMMARY
          echo "Docker images have been built and pushed successfully." >> $GITHUB_STEP_SUMMARY
          echo "Staging deployment workflow has been triggered." >> $GITHUB_STEP_SUMMARY