const router = require('express').Router()
const User = require('../model/User')
const createJwt = require('../helpers/createJwt')
const sendMail = require('../helpers/sendMail')

// Verify (send verification email)
router.get('/verify', async (req, res) => {
  try {
    const { email } = req.user

    if (!email) throw new Error()

    const { verify } = await User.findOne({ email })

    sendMail({
      to: email,
      subject: 'Verification Code',
      text: `Last step missing - verify your account.\nYour verification code: ${verify}`,
      html: `<h2>Last step missing - verify your account.</h2><br/><h3>Your verification code: <b>${verify}</b></h3>`,
    })

    res.status(204).send()
  } catch (err) {
    res.status(401).send({ error: 'Could not verify user' })
  }
})

// Verify
router.post('/verify', async (req, res) => {
  try {
    const { email } = req.user
    const code = req.body.code

    if (!email || !code) throw new Error()

    const user = await User.verify({ email, code })

    if (!user) throw new Error()

    const jwtToken = createJwt(user)

    res.status(200).send({ jwtToken })
  } catch (err) {
    res.status(401).send({ error: 'Could not verify user' })
  }
})


// Logout (pass sessionId or will logout one from jwt)
router.post('/logout', async (req, res) => {
  try {
    const { email, sessionId } = req.user

    if (!email || !(req.body.sessionId || sessionId)) throw new Error()

    await User.removeSession({ email, sessionId: req.body.sessionId || sessionId })

    res.status(204).send()
  } catch (err) {
    res.status(401).send({ error: 'Could not logout' })
  }
})

// User sessions
router.get("/sessions", async (req, res) => {
  const { email } = req.user

  try {
    const sessions = await User.getSessions({ email })

    res.send({ sessions })
  } catch (err) {
    res.status(401).send({ error: 'Error getting sessions' })
  }
})

module.exports = router