const express = require('express');
const session = require('express-session');
const path = require('path');
const ssoHandler = require('./middleware/ssoHandler');
const indexRouter = require('./routes/index');

const app = express();

// View engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'ejs');

// Session middleware setup
app.use(session({
    secret: 'a-very-secret-key-that-should-be-in-env-vars', // In production, use environment variables
    resave: false,
    saveUninitialized: true,
    cookie: { secure: false } // In production, set secure: true if using HTTPS
}));

// Static files setup
app.use(express.static(path.join(__dirname, 'public')));

// SSO token handler middleware
app.use(ssoHandler);

// Routes
app.use('/', indexRouter);

const PORT = process.env.PORT || 3000;
app.listen(PORT, () => {
    console.log(`Server is running on http://localhost:${PORT}`);
});

module.exports = app;