<?php
require_once 'session.php';

header('Content-Type: application/json');

try {
    $sessionManager = getSessionManager();
    
    // Check for session timeout (120 minutes = 2 hours)
    $sessionManager->checkSessionTimeout(120);
    
    $isValid = isLoggedIn();
    $user = null;
    
    if ($isValid) {
        $user = getCurrentUser();
        // If user doesn't exist or is not active, invalidate session
        if (!$user || $user['status'] !== 'active') {
            logout();
            $isValid = false;
        }
    }
    
    echo json_encode([
        'valid' => $isValid,
        'user_id' => $isValid ? $user['id'] : null,
        'email' => $isValid ? $user['email'] : null,
        'timestamp' => time()
    ]);
    
} catch (Exception $e) {
    logError('Session check error', ['error' => $e->getMessage()]);
    
    echo json_encode([
        'valid' => false,
        'error' => 'Session check failed',
        'timestamp' => time()
    ]);
}
?>