from fastapi import APIRouter, Depends, HTTPException
from core.database import fake_users_db

router = APIRouter()

@router.post("/logout")
async def logout_handler(
    session_id: str = Depends(get_session),
    user_id: str = Depends(get_current_user)
):
    """Demo logout endpoint"""
    user = fake_users_db.get(user_id)
    if not user:
        raise HTTPException(status_code=404, detail="User not found")
    
    # Clear session data
    session_data = fake_sessions_db.pop(session_id, None)
    if session_data:
        session_data["active"] = False
        session_data["logout_time"] = datetime.utcnow()
    
    # Clear access and refresh tokens
    user["access_token"] = None
    user["refresh_token"] = None
    
    return {
        "message": "Logout successful",
        "user_id": user_id,
        "next_steps": [
            "Clear client-side cookies/storage"
        ]
    }