var auth = function(req, res, next) {
    if (req.session.loginuserrole){
        const loginduration = 1000*60*60*6;
        const newd = new Date();
        const oldd = req.session.logindatetime;
        const logginsessionduration = Date.parse(newd) - Date.parse(oldd);
        if(loginduration >= logginsessionduration){
            return next();
        }
        {
            delete req.session.loginuserid   ;
            delete req.session.loginfirstname;
            delete req.session.loginusername ;
            delete req.session.loginuserrole ;
            delete req.session.logindatetime ;
            res.redirect('/login');  
        }
    }
    else
    {
        delete req.session.loginuserid   ;
        delete req.session.loginfirstname;
        delete req.session.loginusername ;
        delete req.session.loginuserrole ;
        delete req.session.logindatetime ;
        res.redirect('/login');  
    }
};

module.exports = auth;