import { NextRequest, NextResponse } from 'next/server';
import { requireAuth, requireAdmin } from '@/lib/auth';
import { bsDb } from '@/lib/balancesheet-db';
// GET /api/master-banks - List all master banks (Authenticated users)
export async function GET() {
try {
await requireAuth();
const masterBanks = await bsDb.getMasterBanks();
return NextResponse.json({ success: true, masterBanks });
} catch (error: any) {
console.error('Error fetching master banks:', error);
if (error.message === 'Unauthorized') {
return NextResponse.json(
{ success: false, error: 'Unauthorized' },
{ status: 401 }
);
}
return NextResponse.json(
{ success: false, error: error.message },
{ status: 500 }
);
}
}
// POST /api/master-banks - Create a new master bank (Admin only)
export async function POST(request: NextRequest) {
try {
await requireAdmin();
const body = await request.json();
const { name } = body;
if (!name) {
return NextResponse.json(
{ success: false, error: 'Name is required' },
{ status: 400 }
);
}
const masterBankId = await bsDb.createMasterBank(name);
// Fetch the created bank to return it (simplification: just return ID and name)
const masterBank = { id: masterBankId, name };
return NextResponse.json(
{ success: true, masterBank },
{ status: 201 }
);
} catch (error: any) {
console.error('Error creating master bank:', error);
if (error.message === 'Unauthorized') {
return NextResponse.json(
{ success: false, error: 'Unauthorized' },
{ status: 401 }
);
}
if (error.message === 'Forbidden') {
return NextResponse.json(
{ success: false, error: 'Forbidden' },
{ status: 403 }
);
}
return NextResponse.json(
{ success: false, error: error.message },
{ status: 500 }
);
}
}
