import type { NextApiRequest, NextApiResponse } from "next"; import { getSession } from "next-auth/client"; import prisma, { whereAndSelect } from "@lib/prisma"; export default async function handler(req: NextApiRequest, res: NextApiResponse) { const session = await getSession({ req: req }); if (!session) { res.status(401).json({ message: "Not authenticated" }); return; } // Get user const user = await whereAndSelect( prisma.user.findUnique, { id: session.user.id, }, ["id", "password"] ); if (!user) { res.status(404).json({ message: "User not found" }); return; } const username = req.body.username; // username is changed: username is optional but it is necessary to be unique, enforce here if (username !== session.user.username) { const userConflict = await prisma.user.findFirst({ where: { username, }, }); if (userConflict) { return res.status(409).json({ message: "Username already taken" }); } } const name = req.body.name; const description = req.body.description; const avatar = req.body.avatar; const timeZone = req.body.timeZone; const weekStart = req.body.weekStart; const hideBranding = req.body.hideBranding; const theme = req.body.theme; await prisma.user.update({ where: { id: user.id, }, data: { username, name, avatar, bio: description, timeZone, weekStart, hideBranding, theme, }, }); return res.status(200).json({ message: "Profile updated successfully" }); }