const express = require('express');
const { auth } = require('express-openid-connect');
const cors = require('cors');
require('dotenv').config();

const FRONTEND_URL = 'http://localhost:3000';

const app = express();

app.use(cors({
  origin: FRONTEND_URL,
  credentials: true
}));

const config = {
  authRequired: false,
  auth0Logout: true,
  secret: process.env.AUTH0_SECRET,
  baseURL: 'http://localhost:3001',
  clientID: 'H1FcujzHs76LB99W7KcKQOEO9ThtlyLh',
  issuerBaseURL: 'https://dev-a3o2jif0.us.auth0.com',
  routes: {
    postLogoutRedirect: FRONTEND_URL,
    returnTo: FRONTEND_URL
  }
};

// Auth router attaches /login, /logout, and /callback routes to the baseURL
app.use(auth(config));

// Basic routes
app.get('/', (req, res) => {
  if (req.oidc.isAuthenticated()) {
    res.redirect(FRONTEND_URL);
  } else {
    res.send('Logged out');
  }
});

// Protected API route
app.get('/api/auth/user', (req, res) => {
  if (req.oidc.isAuthenticated()) {
    res.json(req.oidc.user);
  } else {
    res.json(null);
  }
});

const port = process.env.PORT || 3001;
app.listen(port, () => {
  console.log(`Server running on port ${port}`);
});