import type { NextApiRequest, NextApiResponse } from 'next';
import { getSession } from 'next-auth/client';
import prisma, {whereAndSelect} from '@lib/prisma';

export default async function handler(req: NextApiRequest, res: NextApiResponse) {
  const session = await getSession({req: req});

  if (!session) {
      res.status(401).json({message: "Not authenticated"});
      return;
  }

  // Get user
  const user = await whereAndSelect(prisma.user.findUnique, {
      id: session.user.id,
    },
    [ "id", "password" ]
  );

  if (!user) { res.status(404).json({message: 'User not found'}); return; }

  const username = req.body.username;
  // username is changed: username is optional but it is necessary to be unique, enforce here
  if (username !== session.user.username) {
    const userConflict = await prisma.user.findFirst({
      where: {
        username,
      }
    });
    if (userConflict) {
      return res.status(409).json({ message: 'Username already taken' });
    }
  }

  const name = req.body.name;
  const description = req.body.description;
  const avatar = req.body.avatar;
  const timeZone = req.body.timeZone;
  const weekStart = req.body.weekStart;
  const hideBranding = req.body.hideBranding;
  const theme = req.body.theme;

  const updateUser = await prisma.user.update({
    where: {
      id: user.id,
    },
    data: {
      username,
      name,
      avatar,
      bio: description,
      timeZone,
      weekStart,
      hideBranding,
      theme,
    },
  });

  return res.status(200).json({message: 'Profile updated successfully'});
}