package auth

import (
	"net/http"
	"nixcn-cms/internal/cryptography"

	"github.com/gin-gonic/gin"
	"github.com/spf13/viper"
)

func Refresh(c *gin.Context) {
	var req struct {
		RefreshToken string `json:"refresh_token"`
	}

	if err := c.ShouldBindJSON(&req); err != nil {
		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid request"})
		return
	}

	JwtTool := cryptography.Token{
		Application: viper.GetString("server.application"),
	}

	access, err := JwtTool.RefreshAccessToken(req.RefreshToken)
	if err != nil {
		c.JSON(http.StatusUnauthorized, gin.H{"error": "invalid refresh token"})
		return
	}

	c.JSON(http.StatusOK, gin.H{
		"access_token": access,
	})
}