const express = require("express")
const router = express.Router()
const authService = require("../../services/authService")
const YggdrasilError = require("../../errors/YggdrasilError")
const { DefaultError } = require("../../errors/errors")

router.post("/", async (req, res) => {
    const { accessToken, clientToken } = req.body
    try {
        await authService.validate({ accessToken, clientToken })
        return res.sendStatus(204)
    } catch (err) {
        if (err instanceof DefaultError) {
            throw new YggdrasilError(err.code, err.error || "ForbiddenOperationException", err.message, "Invalid token.")
        }
        throw err
    }
})

module.exports = router