import { NextResponse } from "next/server"
import { isSessionValid } from "@/lib/session"

/**
 * DB-backed check for protected routes. Edge `middleware` calls this (same-origin + forwarded Cookie)
 * because Prisma is not available in the Edge runtime.
 */
export async function GET() {
  try {
    if (await isSessionValid()) {
      return NextResponse.json({ ok: true })
    }
    return NextResponse.json({ ok: false }, { status: 401 })
  } catch (err) {
    console.error("[auth/verify]", err)
    return NextResponse.json({ error: "Session check failed" }, { status: 500 })
  }
}