using Back.Services;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Shared.DTOs;

namespace Back.Controllers
{
    [Route("api/[controller]")]
    [Authorize]
    [ApiController]
    public class UserController : ControllerBase
    {
        private readonly servUser _servUser;
        public UserController(servUser servUser)
        {

            _servUser = servUser;

        }
        [HttpPost("authenticate")]
        [AllowAnonymous]
        public async Task<ActionResult<UserAuthenticationDTO>> Login([FromBody]Authentication model)
        {
            var result = await _servUser.UserAuthentication(model.Username, model.Password);
            if (result != null) return Ok(result);
            else return NotFound("کاربری با این مشخصات یافت نشد");
        }
        [HttpGet("CheckAuthenticate")]
        public async Task<ActionResult<UserAuthenticationDTO>> CheckAuthenticate()
        {
          //  var accessToken = Request.Headers["Authorization"].ToString().Split(' ')[1];

            var claim = HttpContext.User.Claims.First(c => c.Type == "UserID");
            var UserID = claim.Value;
            var result = await _servUser.UserAuthentication(UserID,newtoken:false);
            return Ok(result);

        }




    }
}