import type { Handle } from '@sveltejs/kit';
import { verifyToken } from '$lib/auth';
import { HASHED_PASSWORD } from '$env/static/private';

export const handle: Handle = async ({ event, resolve }) => {
  if (!!HASHED_PASSWORD && !AUTH_EXCEPTION.includes(event.url.pathname)) {
    const token = event.cookies.get('authorization');
    const token_valid = await verifyToken(token ?? '');

    const redirect = new Response(null, { status: 302, headers: { location: '/login' } });
    const is_login_page = event.url.pathname === '/login';

    if (!token_valid && !is_login_page) {
      console.log('handle', event.url.pathname, 'invalid token');
      return redirect;
    }

    if (token_valid && is_login_page) {
      console.log('handle', 'already logged in');
      return new Response(null, { status: 302, headers: { location: '/' } });
    }
  }

  const resp = await resolve(event);

  console.log('handle', event.url.pathname, resp.status);

  return resp;
};

const AUTH_EXCEPTION = ['/api/health'];