import jwt from 'jsonwebtoken'
import Member from '../../models/member.js'
import { connectDB } from '../../utils/mongoose.js'

export default defineEventHandler(async (event) => {
  // Only allow in development
  if (process.env.NODE_ENV === 'production') {
    throw createError({ statusCode: 404, statusMessage: 'Not found' })
  }

  await connectDB()

  // Find or create a test admin user
  let member = await Member.findOne({ email: 'test-admin@ghostguild.dev' })

  if (!member) {
    member = await Member.create({
      email: 'test-admin@ghostguild.dev',
      name: 'Test Admin',
      circle: 'founder',
      contributionTier: '0',
      role: 'admin',
      status: 'active',
    })
  }

  const config = useRuntimeConfig(event)
  const token = jwt.sign(
    { memberId: member._id, email: member.email },
    config.jwtSecret,
    { expiresIn: '7d' }
  )

  setCookie(event, 'auth-token', token, {
    httpOnly: true,
    secure: false,
    sameSite: 'lax',
    maxAge: 60 * 60 * 24 * 7,
  })

  await sendRedirect(event, '/admin', 302)
})