// tests/e2e/test_auth_guard.js
// Tests that protected routes redirect unauthenticated users to /login.

const { TARGET_URL, run } = require('./helpers');

run(async (page, assert) => {
  // ---- Unauthenticated access to /manage/credentials ----
  console.log('\n--- Auth guard: /manage/credentials ---');
  await page.goto(`${TARGET_URL}/manage/credentials`);
  await page.waitForURL('**/login', { timeout: 5000 });
  assert(page.url().includes('/login'), 'GET /manage/credentials redirects to /login');

  // ---- Unauthenticated access to /manage/credentials?setup=1 ----
  console.log('\n--- Auth guard: /manage/credentials?setup=1 ---');
  await page.goto(`${TARGET_URL}/manage/credentials?setup=1`);
  await page.waitForURL('**/login', { timeout: 5000 });
  assert(page.url().includes('/login'), 'GET /manage/credentials?setup=1 redirects to /login');
});