# frozen_string_literal: true

module Authenticatable
  extend ActiveSupport::Concern
  included do
    before_action :apply_current_request_details
    before_action :authenticate!
    before_action :authenticate_mfa!
    helper_method :current_user, :current_user?, :mfa_completed?
  end

  def current_user
    Current.user
  end

  def current_user?
    Current.user?
  end

  def mfa_completed?
    Current.user.mfa.valid_session?(session[:mfa])
  end

  private

  def authenticate!
    redirect_to new_session_path unless current_user?
  end

  def authenticate_mfa!
    return unless Current.user?

    redirect_to new_mfa_path unless mfa_completed?
  end

  def apply_current_request_details
    Current.access(request, session)
  end
end