from fastapi import FastAPI, Request, Response, HTTPException, Cookie
from fastapi.responses import JSONResponse
from fastapi.middleware.cors import CORSMiddleware
from typing import Optional

app = FastAPI()

app.add_middleware(
    CORSMiddleware,
    # allow_origins=["https://ancient-time-545042.framer.app"],
    allow_origins=["*"],
    allow_credentials=True,
    allow_methods=["*"],
    allow_headers=["*"],
)

@app.get("/")
def greet_json(request: Request):
    response = JSONResponse(content={
        "Hello": "World!",
        "cookies": request.cookies
    })
    return response

@app.post("/auth")
async def auth(request: Request, response: Response):
    data = await request.json()
    if data.get("username") == "admin" and data.get("password") == "password":
        response.set_cookie(key="comfy_session", value="dummy_session_value")
        return {"message": "Authentication successful"}
    raise HTTPException(status_code=401, detail="Invalid credentials")

@app.get("/protected")
def protected_route(comfy_session: Optional[str] = Cookie(None)):
    if comfy_session != "dummy_session_value":
        raise HTTPException(status_code=401, detail="Unauthorized")
    return {"message": "Access granted to protected route"}