#!/bin/bash

echo "========================================="
echo "Gitea OAuth2应用配置"
echo "========================================="

echo ""
echo "步骤1: 生成管理员Access Token..."
# 生成access token
docker exec -u git forgejo gitea admin user generate-access-token \
    --username novalon-admin \
    --token-name oauth2-setup \
    --scopes write:application,read:application,write:user,read:user

echo ""
echo "步骤2: 从数据库获取Token..."
# 从数据库获取token (Gitea存储的是hash，我们需要原始token)
# 查看access_token表
docker exec postgresql psql -U forgejo -d forgejo -c \
    "SELECT id, uid, name, created_unix FROM access_token WHERE name='oauth2-setup' ORDER BY created_unix DESC LIMIT 1;"

echo ""
echo "步骤3: 尝试使用API创建OAuth2应用..."
# 由于我们无法直接获取原始token，让我们使用Web UI方式
echo ""
echo "========================================="
echo "请手动完成以下步骤:"
echo "========================================="
echo ""
echo "1. 访问 https://git.f.novalon.cn"
echo "2. 使用以下凭证登录:"
echo "   用户名: novalon-admin"
echo "   密码: Novalon@Admin2026"
echo ""
echo "3. 点击右上角头像 -> 设置 -> 应用 -> OAuth2应用"
echo "4. 点击'创建新的OAuth2应用'"
echo "5. 填写以下信息:"
echo "   应用名称: Woodpecker CI"
echo "   重定向URI: https://ci.f.novalon.cn/authorize"
echo "6. 点击'创建应用'"
echo "7. 记录生成的Client ID和Client Secret"
echo ""
echo "8. 将凭证更新到.env文件:"
echo "   WOODPECKER_FORGEJO_CLIENT=<Client ID>"
echo "   WOODPECKER_FORGEJO_SECRET=<Client Secret>"
echo ""
echo "9. 重启Woodpecker服务:"
echo "   cd /home/novalon/docker-app/novalon-cicd"
echo "   docker-compose restart woodpecker-server"
echo ""
echo "========================================="