import { randomBytes } from 'node:crypto'
import bcrypt from 'bcrypt'
import { createError, readBody } from 'h3'
import { z } from 'zod'
import { requireAdminSession } from '../../../utils/admin-auth'
import { createMemberByAdmin, isEmailTaken, isUsernameTaken } from '../../../repositories/member-repository'

const memberInputSchema = z.object({
  username: z.string().trim().min(1).max(60),
  email: z.string().trim().email().max(254),
  avatarUrl: z.string().trim().max(500).optional().default(''),
  labels: z.array(z.string().trim().min(1).max(40)).max(20).optional().default([]),
  note: z.string().max(500).optional().default('')
})

/**
 * 관리자 회원 생성 API
 * @param {import('h3').H3Event} event - 요청 이벤트
 * @returns {Promise<Object>} 생성된 회원
 */
export default defineEventHandler(async (event) => {
  requireAdminSession(event)
  const parsedBody = memberInputSchema.safeParse(await readBody(event))

  if (!parsedBody.success) {
    throw createError({
      statusCode: 400,
      message: '회원 생성 요청 형식이 올바르지 않습니다.'
    })
  }

  const body = parsedBody.data
  const email = body.email.toLowerCase()

  if (await isUsernameTaken({ username: body.username })) {
    throw createError({
      statusCode: 409,
      message: '이미 사용 중인 이름입니다.'
    })
  }

  if (await isEmailTaken({ email })) {
    throw createError({
      statusCode: 409,
      message: '이미 사용 중인 이메일입니다.'
    })
  }

  const passwordHash = await bcrypt.hash(randomBytes(32).toString('hex'), 12)

  return createMemberByAdmin({
    username: body.username,
    email,
    passwordHash,
    avatarUrl: body.avatarUrl,
    labels: [...new Set(body.labels)],
    note: body.note
  })
})