'use server';

import { z } from 'zod';
import db from '@/lib/db';
import { revalidatePath } from 'next/cache';

const formSchema = z.object({
  name: z.string().min(1, 'Name is required'),
  email: z.string().email('Invalid email address'),
  password: z.string().optional(),
});

type UserFormValues = z.infer<typeof formSchema>;

/**
 * Gets the user from the database.
 * Since authentication isn't fully implemented, it defaults to the user with id 1.
 */
export async function getUser(): Promise<{ id: number; name: string; email: string } | null> {
  try {
    const stmt = db.prepare('SELECT id, name, email FROM users WHERE id = ?');
    // For now, we'll hardcode the user ID to 1 as login is simulated.
    const user = stmt.get(1) as { id: number; name: string; email: string } | undefined;
    if (!user) {
      return null;
    }
    return user;
  } catch (error) {
    console.error('Failed to get user:', error);
    return null;
  }
}

/**
 * Updates a user's profile information in the database.
 */
export async function updateUser(data: UserFormValues): Promise<{ success: boolean; message: string }> {
  const validation = formSchema.safeParse(data);
  if (!validation.success) {
    return { success: false, message: 'Invalid data provided.' };
  }

  const { name, email, password } = validation.data;

  try {
    // For now, we'll assume we're updating the user with ID 1.
    const userId = 1;

    // Check if the new email is already taken by another user
    const checkEmailStmt = db.prepare('SELECT id FROM users WHERE email = ? AND id != ?');
    const existingUser = checkEmailStmt.get(email, userId);

    if (existingUser) {
      return { success: false, message: 'This email is already taken.' };
    }

    if (password) {
      // If a new password is provided, update it along with name and email
      const stmt = db.prepare('UPDATE users SET name = ?, email = ?, password = ? WHERE id = ?');
      stmt.run(name, email, password, userId);
    } else {
      // If no new password, only update name and email
      const stmt = db.prepare('UPDATE users SET name = ?, email = ? WHERE id = ?');
      stmt.run(name, email, userId);
    }

    revalidatePath('/admin/settings/user');
    return { success: true, message: 'Profile updated successfully!' };
  } catch (error) {
    console.error('Failed to update user:', error);
    return { success: false, message: 'An unexpected error occurred.' };
  }
}