package csrf

import (
	"net/http"

	"synlotto-website/internal/platform/config"

	"github.com/justinas/nosurf"
)

func Wrap(h http.Handler, cfg config.Config) http.Handler {
	cs := nosurf.New(h)
	cs.SetBaseCookie(http.Cookie{
		Name:     cfg.CSRF.CookieName,
		Path:     "/",
		HttpOnly: true,
		Secure:   cfg.HttpServer.ProductionMode,
		SameSite: http.SameSiteLaxMode,
	})
	return cs
}