2025-06-02 08:39:15 +01:00
|
|
|
import { NextRequest, NextResponse } from "next/server";
|
|
|
|
|
import { apiAuthMiddleware } from "@utils/apiAuthMiddleware";
|
|
|
|
|
import { prisma } from "@utils/prisma";
|
2025-06-03 16:04:23 +01:00
|
|
|
import { writeFile } from "fs/promises";
|
|
|
|
|
import { join } from "path";
|
2025-06-02 08:39:15 +01:00
|
|
|
|
|
|
|
|
export async function POST(request: NextRequest) {
|
|
|
|
|
try {
|
2025-06-03 16:04:23 +01:00
|
|
|
const formData = await request.formData();
|
|
|
|
|
const name = formData.get("name") as string;
|
|
|
|
|
const type = formData.get("type") as string;
|
|
|
|
|
const description = formData.get("description") as string;
|
|
|
|
|
const earthquakeCode = formData.get("earthquakeCode") as string;
|
2025-06-06 18:18:26 +01:00
|
|
|
const warehouseArea = formData.get("warehouseArea") as string;
|
2025-06-03 16:04:23 +01:00
|
|
|
const image = formData.get("image") as File | null;
|
2025-06-02 08:39:15 +01:00
|
|
|
|
|
|
|
|
const authResult = await apiAuthMiddleware();
|
2025-06-03 16:04:23 +01:00
|
|
|
if ("user" in authResult === false) return authResult;
|
2025-06-02 08:39:15 +01:00
|
|
|
|
|
|
|
|
const { user } = authResult;
|
|
|
|
|
|
2025-06-06 18:18:26 +01:00
|
|
|
if (!name || !type || !description || !earthquakeCode || !warehouseArea) {
|
2025-06-02 08:39:15 +01:00
|
|
|
return NextResponse.json({ error: "Missing fields" }, { status: 400 });
|
|
|
|
|
}
|
|
|
|
|
|
2025-06-06 18:08:52 +01:00
|
|
|
if (user.role !== "ADMIN" && user.role !== "SCIENTIST") {
|
|
|
|
|
return NextResponse.json({ error: "Not authorized" }, { status: 401 });
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (user.role === "SCIENTIST") {
|
|
|
|
|
const scientist = await prisma.scientist.findUnique({
|
|
|
|
|
where: {
|
|
|
|
|
userId: user.id,
|
|
|
|
|
},
|
|
|
|
|
include: {
|
|
|
|
|
subordinates: true,
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (!scientist || scientist.level !== "SENIOR") {
|
|
|
|
|
return NextResponse.json({ message: "Not authorised" }, { status: 401 });
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-06-02 08:39:15 +01:00
|
|
|
const linkedEarthquake = await prisma.earthquake.findUnique({ where: { code: earthquakeCode } });
|
|
|
|
|
|
|
|
|
|
if (!linkedEarthquake) {
|
|
|
|
|
return NextResponse.json({ error: "Earthquake code not found" }, { status: 400 });
|
|
|
|
|
}
|
|
|
|
|
|
2025-06-03 16:04:23 +01:00
|
|
|
let imageName = "NoImageFound.PNG";
|
|
|
|
|
if (image) {
|
|
|
|
|
const buffer = Buffer.from(await image.arrayBuffer());
|
|
|
|
|
const extension = image.type === "image/jpeg" ? "jpg" : "png";
|
|
|
|
|
imageName = `${name}-${new Date().toLocaleDateString("en-GB")}.${extension}`;
|
2025-06-06 18:08:52 +01:00
|
|
|
const imagePath = join(process.cwd(), "public", imageName);
|
2025-06-03 16:04:23 +01:00
|
|
|
await writeFile(imagePath, buffer);
|
|
|
|
|
}
|
|
|
|
|
|
2025-06-02 08:39:15 +01:00
|
|
|
await prisma.artefact.create({
|
|
|
|
|
data: {
|
|
|
|
|
name,
|
|
|
|
|
type,
|
|
|
|
|
description,
|
|
|
|
|
earthquakeId: linkedEarthquake.id,
|
2025-06-06 18:18:26 +01:00
|
|
|
warehouseArea: warehouseArea,
|
2025-06-03 16:04:23 +01:00
|
|
|
imageName,
|
2025-06-02 08:39:15 +01:00
|
|
|
creatorId: user.id,
|
|
|
|
|
},
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return NextResponse.json({ message: "Artefact logged successfully" }, { status: 200 });
|
|
|
|
|
} catch (e: any) {
|
|
|
|
|
return NextResponse.json({ error: e.message }, { status: 500 });
|
|
|
|
|
}
|
|
|
|
|
}
|
