data "aws_iam_policy_document" "lambda_assume_role" {
  statement {
    actions = [
      "sts:AssumeRole"
    ]

    principals {
      type = "Service"
      identifiers = [
        "lambda.amazonaws.com"
      ]
    }
  }
}

resource "aws_iam_role" "lambda_execution_role" {
  name_prefix = "lambdaExecutionRole"
  assume_role_policy = data.aws_iam_policy_document.lambda_assume_role.json
}

resource "aws_iam_role_policy_attachment" "lambdaExecutionRole_lambdaPolicy" {
  role = aws_iam_role.lambda_execution_role.name
  policy_arn = "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
}

resource "aws_iam_role_policy_attachment" "lambdaExecutionRole_xray" {
  role = aws_iam_role.lambda_execution_role.name
  policy_arn = "arn:aws:iam::aws:policy/AWSXRayDaemonWriteAccess"
}

resource "aws_lambda_function" "lambda_api" {
  function_name = "hello-lambda-api"
  handler = "io.awsobservability.opentelemetry.playground.lambdaapi.HelloLambdaHandler"
  role = aws_iam_role.lambda_execution_role.arn
  runtime = "java11"
  filename = "../../lambda-api/build/libs/lambda-api-all.jar"
  source_code_hash = filebase64sha256("../../lambda-api/build/libs/lambda-api-all.jar")
  memory_size = 384
  timeout = 120
  publish = true

  environment {
    variables = {
      JAVA_TOOL_OPTIONS = "-javaagent:/opt/aws-opentelemetry-agent.jar -Dotel.otlp.endpoint=localhost:55680 -Dotel.otlp.span.timeout=360000 -Dotel.bsp.schedule.delay=0 -Dotel.bsp.export.timeout=3600000 -Dio.opentelemetry.javaagent.slf4j.simpleLogger.defaultLogLevel=debug"
    }
  }

  layers = [
    aws_lambda_layer_version.aws_opentelemetry_javaagent.arn,
    "arn:aws:lambda:us-east-1:886273918189:layer:my-aoc-layer:5"
  ]

  tracing_config {
    mode = "Active"
  }
}

resource "aws_lambda_alias" "lambda_api" {
  name = "lambda-api"
  function_name = aws_lambda_function.lambda_api.function_name
  function_version = aws_lambda_function.lambda_api.version
}

resource "aws_lambda_provisioned_concurrency_config" "lambda_api" {
  function_name = aws_lambda_alias.lambda_api.function_name
  provisioned_concurrent_executions = 2
  qualifier = aws_lambda_alias.lambda_api.name
}

resource "aws_api_gateway_rest_api" "lambda_api" {
  name = "hello-lambda-api"
}

resource "aws_api_gateway_resource" "lambda_api_proxy" {
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  parent_id = aws_api_gateway_rest_api.lambda_api.root_resource_id
  path_part = "{proxy+}"
}

resource "aws_api_gateway_method" "lambda_api_proxy" {
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  resource_id = aws_api_gateway_resource.lambda_api_proxy.id
  http_method = "ANY"
  authorization = "NONE"
}

resource "aws_api_gateway_integration" "lambda_api" {
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  resource_id = aws_api_gateway_method.lambda_api_proxy.resource_id
  http_method = aws_api_gateway_method.lambda_api_proxy.http_method

  integration_http_method = "POST"
  type = "AWS_PROXY"
  uri = aws_lambda_alias.lambda_api.invoke_arn
}

resource "aws_api_gateway_method" "lambda_api_proxy_root" {
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  resource_id = aws_api_gateway_rest_api.lambda_api.root_resource_id
  http_method = "ANY"
  authorization = "NONE"
}

resource "aws_api_gateway_integration" "lambda_api_root" {
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  resource_id = aws_api_gateway_method.lambda_api_proxy_root.resource_id
  http_method = aws_api_gateway_method.lambda_api_proxy_root.http_method

  integration_http_method = "POST"
  type = "AWS_PROXY"
  uri = aws_lambda_alias.lambda_api.invoke_arn
}

resource "aws_api_gateway_deployment" "lambda_api" {
  depends_on = [
    aws_api_gateway_integration.lambda_api,
    aws_api_gateway_integration.lambda_api_root,
  ]

  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
}

resource "aws_api_gateway_stage" "test" {
  stage_name = "default"
  rest_api_id = aws_api_gateway_rest_api.lambda_api.id
  deployment_id = aws_api_gateway_deployment.lambda_api.id
  xray_tracing_enabled = true
}

resource "aws_lambda_permission" "lambda_api_allow_gateway" {
  action = "lambda:InvokeFunction"
  function_name = aws_lambda_alias.lambda_api.function_name
  principal = "apigateway.amazonaws.com"
  source_arn = "${aws_api_gateway_rest_api.lambda_api.execution_arn}/*/*/*"
}

output "lambda_api_gateway_url" {
  value = aws_api_gateway_stage.test.invoke_url
}