import bcrypt from 'bcrypt'
import { createError, getRouterParam, readBody } from 'h3'
import { z } from 'zod'
import { requireAdminSession } from '../../../../../utils/admin-auth'
import { getMemberForAdmin, updateMemberPassword } from '../../../../../repositories/member-repository'

const adminMemberPasswordSchema = z.object({
  password: z.string().min(8).max(32)
})

/**
 * 관리자 회원 비밀번호 직접 변경 API
 * @param {import('h3').H3Event} event - 요청 이벤트
 * @returns {Promise<{ ok: true }>} 변경 결과
 */
export default defineEventHandler(async (event) => {
  requireAdminSession(event)
  const memberId = String(getRouterParam(event, 'id') || '')
  const parsedBody = adminMemberPasswordSchema.safeParse(await readBody(event))

  if (!memberId) {
    throw createError({
      statusCode: 400,
      message: '회원 ID가 필요합니다.'
    })
  }

  if (!parsedBody.success) {
    throw createError({
      statusCode: 400,
      message: '비밀번호 변경 요청 형식이 올바르지 않습니다.'
    })
  }

  const member = await getMemberForAdmin(memberId)
  if (!member) {
    throw createError({
      statusCode: 404,
      message: '회원을 찾을 수 없습니다.'
    })
  }

  const passwordHash = await bcrypt.hash(parsedBody.data.password, 12)
  await updateMemberPassword({
    userId: memberId,
    passwordHash
  })

  return { ok: true }
})