require "kemal"
require "../storage"
require "../util"

class AuthHandler < Kemal::Handler
  def initialize(@storage : Storage)
  end

  def call(env)
    return call_next(env) if request_path_startswith env, ["/login", "/logout"]

    cookie = env.request.cookies.find do |c|
      c.name == "token-#{Config.current.port}"
    end
    if cookie.nil? || !@storage.verify_token cookie.value
      return redirect env, "/login"
    end

    if request_path_startswith env, ["/admin", "/api/admin", "/download"]
      unless @storage.verify_admin cookie.value
        env.response.status_code = 403
      end
    end

    call_next env
  end
end