<?php

namespace Api\Controllers;

use Api\Core\Controller;
use Api\Core\Response;
use Api\Models\Assessment;
use Api\Core\Auth;

class AssessmentController extends Controller {
    public function index() {
        $user = Auth::getUser();
        if (!$user) return Response::error('Unauthorized', 401);
        
        if ($user['role'] === 'Super Admin') {
            $data = Assessment::all();
        } else {
            $data = Assessment::getBySchool($user['school_id']);
        }

        Response::json($data);
    }

    public function store() {
        $user = Auth::getUser();
        if (!$user) return Response::error('Unauthorized', 401);

        $data = $this->getRequestData();

        if ($user['role'] !== 'Admin' && $user['role'] !== 'Teacher' && $user['role'] !== 'Super Admin') {
            Response::error('Unauthorized', 403);
        }

        $data['school_id'] = $user['school_id'];
        $id = Assessment::create($data);

        Response::json(['id' => $id, 'message' => 'Assessment created'], 201);
    }
}