const response = require('../utils/responseHandler')
const coba = require('../utils/coba')

module.exports = (req, res, next) => {
  const authHeader = req.headers.authorization
  const token = authHeader && authHeader.split(' ')[1]

  if (!token)
    return response.error(res, {
      code: 401,
      message: 'Token tidak ada',
    })

  if (coba.decrypt(process.env.CBGTB) === token) {
    return next()
  }

  return response.error(res, {
    code: 401,
    message: 'Unauthorized',
  })
}