from fastapi import APIRouter, Depends, HTTPException
from core.database import fake_users_db

router = APIRouter()

@router.post("/login")
async def login_handler(
    username: str = Body(...),
    password: str = Body(...),
    db: Session = Depends(get_db),
    token: str = Depends(oauth2_scheme)
):
    """Demo login endpoint"""
    user = fake_users_db.get(username)
    if not user or user["password"] != password:
        raise HTTPException(status_code=400, detail="Invalid credentials")
    
    # Clear access, refresh and user session from cookies
    response = RedirectResponse(url="/")
    response.delete_cookie("access_token")
    response.delete_cookie("refresh_token")
    response.delete_cookie("user_session")
    
    return {
        "message": "Logout successful",
        "redirect": str(response.headers["Location"])
    }