namespace StellaOps.Policy.Engine.AirGap;

/// <summary>
/// Service for managing sealed-mode operations for policy packs per CONTRACT-SEALED-MODE-004.
/// </summary>
public interface ISealedModeService
{
    /// <summary>
    /// Gets whether the environment is currently sealed.
    /// </summary>
    bool IsSealed { get; }

    /// <summary>
    /// Gets the current sealed state for a tenant.
    /// </summary>
    Task<PolicyPackSealedState> GetStateAsync(string tenantId, CancellationToken cancellationToken = default);

    /// <summary>
    /// Gets the sealed status with staleness evaluation.
    /// </summary>
    Task<SealedStatusResponse> GetStatusAsync(string tenantId, CancellationToken cancellationToken = default);

    /// <summary>
    /// Seals the environment for a tenant.
    /// </summary>
    Task<SealResponse> SealAsync(string tenantId, SealRequest request, CancellationToken cancellationToken = default);

    /// <summary>
    /// Unseals the environment for a tenant.
    /// </summary>
    Task<SealResponse> UnsealAsync(string tenantId, CancellationToken cancellationToken = default);

    /// <summary>
    /// Evaluates staleness for the current time anchor.
    /// </summary>
    Task<StalenessEvaluation?> EvaluateStalenessAsync(string tenantId, CancellationToken cancellationToken = default);

    /// <summary>
    /// Enforces sealed-mode constraints for bundle import operations.
    /// </summary>
    Task<SealedModeEnforcementResult> EnforceBundleImportAsync(
        string tenantId,
        string bundlePath,
        CancellationToken cancellationToken = default);

    /// <summary>
    /// Verifies a bundle against trust roots.
    /// </summary>
    Task<BundleVerifyResponse> VerifyBundleAsync(
        BundleVerifyRequest request,
        CancellationToken cancellationToken = default);
}