import { storeCreateToken, storeGetUserByToken } from '../store'

let tokenCounter = 0

/** Generate a random session token and associate it with a user */
export function issueToken(username: string): {
  token: string
  expires_in: number
} {
  // Use crypto.getRandomValues for uniqueness
  const bytes = new Uint8Array(16)
  crypto.getRandomValues(bytes)
  const hex = Array.from(bytes)
    .map(b => b.toString(16).padStart(2, '0'))
    .join('')
  const token = `rct_${tokenCounter++}_${hex}`
  storeCreateToken(username, token)
  return { token, expires_in: 86400 }
}

/** Resolve a token to a username. Returns null if invalid. */
export function resolveToken(token: string | undefined): string | null {
  if (!token) return null
  const entry = storeGetUserByToken(token)
  if (!entry) return null
  return entry.username
}