import { verifyToken } from '../utils/token.js'
import { sendResponse } from '../utils/response.js'

export function authMiddleware(req, res, next) {
  const authHeader = req.headers['authorization']
  const token = authHeader && authHeader.split(' ')[1]
  if (!token) return sendResponse(res, 401, 'ไม่พบ Token', 'Missing token')

  const decoded = verifyToken(token)
  if (!decoded) return sendResponse(res, 403, 'Token ไม่ถูกต้อง', 'Invalid token')

  req.user = decoded
  next()
}