import { getServerSession } from "next-auth/next"; import { authOptions } from "@/app/api/auth/[...nextauth]/route"; import { NextResponse } from "next/server"; export async function PUT( req: Request, { params }: { params: { userId: string } } ) { const session = await getServerSession(authOptions); if (!session) { return NextResponse.json({ error: "Non autorisé" }, { status: 401 }); } try { const { password, temporary = true } = await req.json(); // Get client credentials token const tokenResponse = await fetch( `${process.env.KEYCLOAK_BASE_URL}/realms/${process.env.KEYCLOAK_REALM}/protocol/openid-connect/token`, { method: 'POST', headers: { 'Content-Type': 'application/x-www-form-urlencoded', }, body: new URLSearchParams({ grant_type: 'client_credentials', client_id: process.env.KEYCLOAK_CLIENT_ID!, client_secret: process.env.KEYCLOAK_CLIENT_SECRET!, }), } ); const tokenData = await tokenResponse.json(); if (!tokenResponse.ok) { console.error("Failed to get token:", tokenData); return NextResponse.json({ error: "Failed to get token" }, { status: 500 }); } // Reset password with temporary flag const passwordResponse = await fetch( `${process.env.KEYCLOAK_BASE_URL}/admin/realms/${process.env.KEYCLOAK_REALM}/users/${params.userId}/reset-password`, { method: 'PUT', headers: { 'Authorization': `Bearer ${tokenData.access_token}`, 'Content-Type': 'application/json', }, body: JSON.stringify({ type: "password", value: password, temporary: temporary, }), } ); if (!passwordResponse.ok) { const errorData = await passwordResponse.json(); console.error("Failed to reset password:", errorData); return NextResponse.json({ error: "Failed to reset password" }, { status: passwordResponse.status }); } return NextResponse.json({ success: true, temporary: temporary }); } catch (error) { console.error("Error in reset password:", error); return NextResponse.json({ error: "Internal server error" }, { status: 500 }); } }