<?php

namespace App\Http\Middleware;

use App\Constants\HttpStatus;
use Closure;
use Firebase\JWT\JWT;
use Firebase\JWT\Key;
use Illuminate\Http\Request;

class JwtMiddleware
{
    /**
     * Manejar una solicitud entrante.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle(Request $request, Closure $next)
    {
        $token = $request->bearerToken();

        if (!$token) {
            return response()->json(['message' => trans('api.SIN_TOKEN')], HttpStatus::BAD_REQUEST);
        }

        try {

            JWT::decode($token, new Key(config('app.jwt_secret'), 'HS256'));
            
            return $next($request);

        } catch (\Firebase\JWT\ExpiredException $e) {
            return response()->json(['message' => trans('api.TOKEN_EXPIRADO')], HttpStatus::UNAUTHORIZED);

        } catch (\Exception $e) {
            return response()->json(['message' => trans('api.TOKEN_INVALIDO')], HttpStatus::UNAUTHORIZED);
        }
    }
}