// POST /api/gis/parcel/[id]/pad
//
// Forwards a PAD (Plan de amplasament și delimitare) export request to gis-api.
// Until gis-api ships POST /api/v1/parcel/:id/pad (see docs/plans/005-…),
// this route returns 501 with a friendly Romanian message.

import { NextResponse } from "next/server";
import { getAuthSession } from "@/core/auth/require-auth";
import { gisApi, GisApiError } from "@/lib/gis-api-client";

export const runtime = "nodejs";
export const dynamic = "force-dynamic";

type SignerInput = {
  kind?: unknown;
  displayName?: unknown;
  authClass?: unknown;
  authNumber?: unknown;
};

type Body = {
  signer?: SignerInput;
  layerId?: "TERENURI_ACTIVE" | "CLADIRI_ACTIVE";
  scale?: number;
  paper?: string;
};

function parseSigner(raw: SignerInput | null | undefined) {
  if (!raw || (raw.kind !== "user" && raw.kind !== "org")) return null;
  if (typeof raw.displayName !== "string" || !raw.displayName.trim()) return null;
  if (typeof raw.authNumber !== "string" || !raw.authNumber.trim()) return null;
  return {
    kind: raw.kind as "user" | "org",
    displayName: raw.displayName.trim(),
    authClass:
      typeof raw.authClass === "string" && raw.authClass.trim()
        ? raw.authClass.trim()
        : null,
    authNumber: raw.authNumber.trim(),
  };
}

export async function POST(
  request: Request,
  { params }: { params: Promise<{ id: string }> },
) {
  const session = await getAuthSession();
  if (!session) return NextResponse.json({ error: "Unauthorized" }, { status: 401 });

  const { id } = await params;
  const body = (await request.json()) as Body;
  const signer = parseSigner(body.signer);
  if (!signer) {
    return NextResponse.json({ error: "signer_required" }, { status: 400 });
  }

  try {
    const upstream = await gisApi.exports.pad(id, {
      signer,
      layerId: body.layerId,
      scale: body.scale,
      paper: body.paper,
    });
    const headers = new Headers();
    headers.set(
      "Content-Type",
      upstream.headers.get("Content-Type") ?? "application/pdf",
    );
    const cd = upstream.headers.get("Content-Disposition");
    if (cd) headers.set("Content-Disposition", cd);
    return new NextResponse(upstream.body, { status: 200, headers });
  } catch (err) {
    if (err instanceof GisApiError) {
      if (err.status === 404) {
        return NextResponse.json(
          {
            error: "endpoint_not_deployed",
            message:
              "Plan de situație urmează — endpoint-ul gis-api se livrează în sesiunea următoare.",
          },
          { status: 501 },
        );
      }
      return NextResponse.json(
        { error: err.code, body: err.body },
        { status: err.status },
      );
    }
    const msg = err instanceof Error ? err.message : String(err);
    return NextResponse.json({ error: "internal_error", hint: msg.slice(0, 200) }, { status: 500 });
  }
}