{% extends "base.html" %}
{% block title %}Simulator | Suvra{% endblock %}
{% block content %}
<section class="page-head">
  <h1>Policy Simulator</h1>
  <p class="muted">Evaluate policy decisions without executing side effects.</p>
  <p class="muted">shell.exec, email.delete, and secrets.read are simulation/policy-only action types; execute fails closed.</p>
  <p class="muted">Workspace root prefix for file actions: <code>{{ workspace_prefix }}</code></p>
</section>

{% if error_message %}
<p class="flash">{{ error_message }}</p>
{% endif %}

<section class="panel">
  <div class="sim-grid">
    <div class="sim-col">
      <form method="post" action="/dashboard/simulate" class="sim-form">
        <input type="hidden" name="csrf" value="1" />

        <label>
          Load example
          <select id="example-select">
            <option value="write_ok">write ok</option>
            <option value="delete">delete</option>
            <option value="http_ok">http ok</option>
            <option value="shell_exec">shell exec</option>
            <option value="email_delete">email delete</option>
            <option value="secrets_read">secrets read</option>
          </select>
        </label>

        <label>
          Action JSON
          <textarea id="action-json" name="action_json" rows="16" class="mono-input" required>{{ action_json }}</textarea>
        </label>

        <details class="sim-optional">
          <summary>Policy Override (optional)</summary>
          <p class="muted">Used only for this simulation. Not saved.</p>
          <textarea name="policy_override_json" rows="10" class="mono-input" placeholder="{\n  &quot;defaults&quot;: {&quot;mode&quot;: &quot;deny&quot;},\n  &quot;rules&quot;: []\n}">{{ policy_override_json }}</textarea>
        </details>

        <button type="submit" class="btn btn-primary">Simulate</button>
      </form>
    </div>

    <div class="sim-col">
      <h2>Result</h2>
      {% if result %}
      <div class="sim-result">
        <p>
          Decision
          <span class="badge {{ 'allow' if result.decision == 'allow' else ('deny' if result.decision == 'deny' else 'needs') }}">{{ result.decision }}</span>
        </p>
        <dl class="kv">
          <dt>Action ID</dt>
          <dd>{{ result.action_id }}</dd>
          <dt>Matched Rule</dt>
          <dd>{{ result.matched_rule_id or 'none' }}</dd>
          <dt>Dry Run</dt>
          <dd>{{ 'yes' if result.dry_run else 'no' }}</dd>
          <dt>Actor</dt>
          <dd>{{ result.summary.actor }}</dd>
          <dt>Action Type</dt>
          <dd>{{ result.summary.action_type }}</dd>
          <dt>Target</dt>
          <dd><code>{{ result.summary.target }}</code></dd>
          <dt>Agent</dt>
          <dd>{{ result.summary.agent or '-' }}</dd>
          <dt>User</dt>
          <dd>{{ result.summary.user or '-' }}</dd>
          <dt>Role</dt>
          <dd>{{ result.summary.role or '-' }}</dd>
          <dt>Workspace</dt>
          <dd>{{ result.summary.workspace or '-' }}</dd>
          <dt>Environment</dt>
          <dd>{{ result.summary.environment or '-' }}</dd>
          <dt>Labels</dt>
          <dd>{{ result.summary.labels|join(', ') if result.summary.labels else '-' }}</dd>
        </dl>

        {% if result.reasons %}
        <h3 class="drawer-title">Reasons</h3>
        <ul class="reason-list">
          {% for reason in result.reasons %}
          <li>{{ reason }}</li>
          {% endfor %}
        </ul>
        {% endif %}

        {% if result.checks %}
        <h3 class="drawer-title">Constraint Checks</h3>
        <table class="data-table sim-checks">
          <thead>
            <tr>
              <th>Constraint</th>
              <th>Result</th>
              <th>Detail</th>
            </tr>
          </thead>
          <tbody>
            {% for check in result.checks %}
            <tr>
              <td><code>{{ check.name }}</code></td>
              <td>
                <span class="badge {{ 'allow' if check.ok else 'deny' }}">
                  {{ 'ok' if check.ok else 'failed' }}
                </span>
              </td>
              <td>{{ check.detail }}</td>
            </tr>
            {% endfor %}
          </tbody>
        </table>
        {% endif %}

        {% if result.message %}
        <p class="row-summary">{{ result.message }}</p>
        {% endif %}
      </div>
      {% else %}
      <p class="muted">Run a simulation to see decision, rule match, and reasons.</p>
      {% endif %}
    </div>
  </div>
</section>

<script>
  (function () {
    const examples = {{ examples_json|safe }};
    const select = document.getElementById("example-select");
    const actionInput = document.getElementById("action-json");
    if (!select || !actionInput) return;
    select.addEventListener("change", function () {
      const key = select.value;
      if (!examples[key]) return;
      actionInput.value = JSON.stringify(examples[key], null, 2);
    });
  })();
</script>
{% endblock %}