NeahFront3/app/api/users/[userId]/password/route.ts

import { getServerSession } from "next-auth/next";
import { authOptions } from "@/app/api/auth/[...nextauth]/route";
import { NextResponse } from "next/server";

export async function PUT(
  req: Request,
  { params }: { params: { userId: string } }
) {
  const session = await getServerSession(authOptions);

  if (!session) {
    return NextResponse.json({ error: "Non autorisé" }, { status: 401 });
  }

  try {
    const { password, temporary = true } = await req.json();

    // Get client credentials token
    const tokenResponse = await fetch(
      `${process.env.KEYCLOAK_BASE_URL}/realms/${process.env.KEYCLOAK_REALM}/protocol/openid-connect/token`,
      {
        method: 'POST',
        headers: {
          'Content-Type': 'application/x-www-form-urlencoded',
        },
        body: new URLSearchParams({
          grant_type: 'client_credentials',
          client_id: process.env.KEYCLOAK_CLIENT_ID!,
          client_secret: process.env.KEYCLOAK_CLIENT_SECRET!,
        }),
      }
    );

    const tokenData = await tokenResponse.json();

    if (!tokenResponse.ok) {
      console.error("Failed to get token:", tokenData);
      return NextResponse.json({ error: "Failed to get token" }, { status: 500 });
    }

    // Reset password with temporary flag
    const passwordResponse = await fetch(
      `${process.env.KEYCLOAK_BASE_URL}/admin/realms/${process.env.KEYCLOAK_REALM}/users/${params.userId}/reset-password`,
      {
        method: 'PUT',
        headers: {
          'Authorization': `Bearer ${tokenData.access_token}`,
          'Content-Type': 'application/json',
        },
        body: JSON.stringify({
          type: "password",
          value: password,
          temporary: temporary,
        }),
      }
    );

    if (!passwordResponse.ok) {
      const errorData = await passwordResponse.json();
      console.error("Failed to reset password:", errorData);
      return NextResponse.json({ error: "Failed to reset password" }, { status: passwordResponse.status });
    }

    return NextResponse.json({ 
      success: true,
      temporary: temporary 
    });
  } catch (error) {
    console.error("Error in reset password:", error);
    return NextResponse.json({ error: "Internal server error" }, { status: 500 });
  }
}