// [Section] JSON Web Tokens
	const jwt = require("jsonwebtoken");

// [Section] Secret Keyword
	const secret = "CourseBookingAPI";




// [Section] Token creation	
	module.exports.createAccessToken = (user) => {
		const data = {
			id : user._id,
			email : user.email,
			isAdmin : user.isAdmin
		};
		return jwt.sign(data, secret, {});		
	};



//[Section] Token Verification
	/*
	- Analogy
		Receive the gift and open the lock to verify if the the sender is legitimate and the gift was not tampered with
	*/

	module.exports.verify = (req, res, next) => {
		console.log(req.headers.authorization);

		//req.headers.authorization contains sensitive data and especially our token
		let token = req.headers.authorization;

		//This if statement will first check IF token variable contains undefined or a proper jwt. If it is undefined, we will check token's data type with typeof, then send a message to the client.
		if(typeof token === "undefined"){
			return res.send({auth: "Failed. No Token"});
		} else {
			console.log(token);		
			token = token.slice(7, token.length);
			console.log(token);

//[SECTION] Token decryption
	/*
	- Analogy
		Open the gift and get the content
	*/

			// Validate the token using the "verify" method decrypting the token using the secret code
			jwt.verify(token, secret, function(err, decodedToken){
				if(err){
					return res.send({
						auth: "Failed",
						message: err.message
					});
				} else {
					console.log(decodedToken);//contains the data from our token				
					req.user = decodedToken
					next();
				}
			})
		}
	};




//[Section] verifyAdmin will also be used a middleware.
module.exports.verifyAdmin = (req, res, next) => {
	if(req.user.isAdmin){
		next();
	} else {
		return res.send({
			auth: "Failed",
			message: "Action Forbidden"
		})
	}
}