<?php
require_once __DIR__ . '/cors.php';
require_once __DIR__ . '/../services/Access.php';

use services\Access;

session_start();

header("Access-Control-Allow-Origin: http://localhost:5173");
header("Access-Control-Allow-Methods: POST");
header("Access-Control-Allow-Headers: Content-Type");
header("Content-Type: application/json");


$input = json_decode(file_get_contents('php://input'), true);

$username = $input['username'] ?? null;
$password = $input['password'] ?? null;


$answer = [
    'status' => "fail",
    'data' => [

    ],
];

if ($username && $password) {
    $result = Access::login($username, $password);
    if ($result && $result->num_rows > 0) {
        $answer['status'] = "success";
        $answer['data'] = [
            'username' => $username,
        ];
        http_response_code(200);
        echo json_encode($answer);
    } else {
        http_response_code(401);
        $answer['data']['title'] = 'Wrong username or password';
    }
} else {
    $answer['data']['title'] = 'Please insert username and password';
    http_response_code(400);
    echo json_encode($answer);
}
exit;