const express = require('express');
const db = require('../db/connection');
const router = express.Router();

router.post('/', (req, res) => {
    const username = req.body.username;
    const password = req.body.password;
    console.log(req.body.username, req.body.password);
    
    const query = 'SELECT * FROM users WHERE username = ?';
    db.query(query, [username], (err, results) => {
        if (err) {
            console.error('Database error:', err);
            return res.status(500).json({ error: "Internal server error" });
        }

        if (results.length === 0) {
            return res.status(401).json({ error: "Invalid username or password" });
        }

        const user = results[0];
        
        if (password !== user.password_hash) {
            return res.status(401).json({ error: "Invalid username or password" });
        }

        res.json({
            token: user.token,
        });
    });
});

module.exports = router;