require("dotenv").config();
const express = require("express");
const session = require("express-session");

const authRoutes = require("./routes/auth");
const userRoutes = require("./routes/users");
const widerrufRoutes = require("./routes/widerruf");

const app = express();

// Body Parser (modern)
app.use(express.urlencoded({ extended: false }));
app.use(express.json());

// Session MUSS vor den Routen
app.use(
  session({
    name: "plusfit.sid", // eigener Cookie-Name
    secret: "plusfit_secret_key",
    resave: false,
    saveUninitialized: false,
    cookie: {
      httpOnly: true,
      secure: false, // true nur bei https
      maxAge: 1000 * 60 * 60 * 2, // 2h
    },
  }),
);

// Static + Views
app.use(express.static("public"));
app.set("view engine", "ejs");

// Routes NACH Session
app.use("/", authRoutes);
app.use("/users", userRoutes);
app.use("/sepa", require("./routes/sepa"));
app.use("/sepa", require("./routes/sepaExport"));
app.use("/contracts", require("./routes/contracts"));
app.use("/register", require("./routes/register"));
app.use("/company", require("./routes/company"));
app.use("/widerruf", widerrufRoutes);

app.listen(3005, () => {
  console.log("Plusfit läuft auf http://localhost:3005");
});