package Auth

import (
	"errors"
	"net/http"
	"time"
)

var (
	Sessions = map[string]Session{}
)

type Session struct {
	Username string
	Expiry   time.Time
}

func (s Session) IsExpired() bool {
	return s.Expiry.Before(time.Now())
}

func CheckCookie(r *http.Request) (Session, error) {
	var (
		c            *http.Cookie
		sessionToken string
		userSession  Session
		exists       bool
		err          error
	)

	c, err = r.Cookie("session_token")
	if err != nil {
		return userSession, err
	}
	sessionToken = c.Value

	// We then get the session from our session map
	userSession, exists = Sessions[sessionToken]
	if !exists {
		return userSession, errors.New("Cookie not found")
	}

	// If the session is present, but has expired, we can delete the session, and return
	// an unauthorized status
	if userSession.IsExpired() {
		delete(Sessions, sessionToken)
		return userSession, errors.New("Cookie expired")
	}

	return userSession, nil
}