"use strict";

Object.defineProperty(exports, "__esModule", {
  value: true
});
exports.defineLoggedOutRoutes = defineLoggedOutRoutes;
/*
 * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
 * or more contributor license agreements. Licensed under the Elastic License
 * 2.0; you may not use this file except in compliance with the Elastic License
 * 2.0.
 */

/**
 * Defines routes required for the Logged Out view.
 */
function defineLoggedOutRoutes({
  logger,
  getSession,
  httpResources,
  basePath
}) {
  httpResources.register({
    path: '/security/logged_out',
    validate: false,
    options: {
      authRequired: false
    }
  }, async (context, request, response) => {
    // Authentication flow isn't triggered automatically for this route, so we should explicitly
    // check whether user has an active session already.
    const isUserAlreadyLoggedIn = (await getSession().get(request)).value !== null;
    if (isUserAlreadyLoggedIn) {
      logger.debug('User is already authenticated, redirecting...');
      return response.redirected({
        headers: {
          location: `${basePath.serverBasePath}/`
        }
      });
    }
    return response.renderAnonymousCoreApp();
  });
}