const express = require('express');
const router = express.Router();
const caregiversController = require('../controllers/caregiversController');
const { authenticateJWT, authorizeRoles } = require('../middlewares/auth');

// All routes require caregiver or admin
router.use(authenticateJWT, authorizeRoles('admin', 'caregiver'));

router.get('/', caregiversController.list);
router.get('/:id', caregiversController.get);
router.put('/:id', caregiversController.update);
router.delete('/:id', caregiversController.remove);

// Only admin can create caregivers directly
router.post('/', authenticateJWT, authorizeRoles('admin'), caregiversController.create);

module.exports = router;