package com.ffii.lioner.config;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.EnableWebMvc;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import org.springframework.web.servlet.view.InternalResourceViewResolver;

@Configuration
@EnableWebMvc
public class WebConfig implements WebMvcConfigurer {
   
  @Override
  public void addCorsMappings(CorsRegistry registry) {
    registry.addMapping("/**") // Apply to all API endpoints
          .allowedHeaders("*")
          // **** CRITICAL FIX HERE ****
          .allowedOrigins(
            "http://localhost",       // If you test locally via Nginx at http://localhost
            "http://127.0.0.1",       // Sometimes browsers resolve localhost to 127.0.0.1
            "http://52.175.15.19",    // Your 2fi-uat frontend IP            
            "http://localhost:3000" // If you ever run React dev server directly
            // Add any other specific domains/IPs/ports where your frontend will be hosted
        )
        // You had .exposedHeaders("filename") - keep if you need to read custom response headers
        .exposedHeaders("filename")
        // You had .allowedMethods("GET", "POST", "PUT", "DELETE", "HEAD") - This is missing "OPTIONS"
        .allowedMethods("GET", "POST", "PUT", "DELETE", "HEAD", "OPTIONS") // **** IMPORTANT: Add OPTIONS ****
        // You had .allowedHeaders("*") duplicated - harmless, but the first one is enough
        // .allowedHeaders("*")
        .allowCredentials(true)
        .maxAge(3600); // Recommended: Caches preflight results for 1 hour
}

  @Bean
  public InternalResourceViewResolver defaultViewResolver() {
    return new InternalResourceViewResolver();
  }

}