first commit

app/api/devices/[id]/route.ts

@@ -0,0 +1,129 @@
+import { NextResponse } from "next/server";
+import { auth } from "@/lib/auth";
+import { deviceDb } from "@/lib/db";
+
+// GET /api/devices/[id] - Get single device
+export async function GET(
+  request: Request,
+  { params }: { params: Promise<{ id: string }> }
+) {
+  try {
+    const session = await auth();
+
+    if (!session?.user) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
+    }
+
+    const { id } = await params;
+    const device = deviceDb.findById(id);
+
+    if (!device) {
+      return NextResponse.json({ error: "Device not found" }, { status: 404 });
+    }
+
+    return NextResponse.json({
+      device: {
+        id: device.id,
+        name: device.name,
+        color: device.color,
+        isActive: device.isActive === 1,
+        createdAt: device.createdAt,
+        updatedAt: device.updatedAt,
+        description: device.description,
+        icon: device.icon,
+      }
+    });
+  } catch (error) {
+    console.error("Error fetching device:", error);
+    return NextResponse.json(
+      { error: "Failed to fetch device" },
+      { status: 500 }
+    );
+  }
+}
+
+// PATCH /api/devices/[id] - Update device (ADMIN only)
+export async function PATCH(
+  request: Request,
+  { params }: { params: Promise<{ id: string }> }
+) {
+  try {
+    const session = await auth();
+
+    if (!session?.user) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
+    }
+
+    // Only ADMIN can update devices
+    if ((session.user as any).role !== 'ADMIN') {
+      return NextResponse.json({ error: "Forbidden" }, { status: 403 });
+    }
+
+    const { id } = await params;
+    const device = deviceDb.findById(id);
+    if (!device) {
+      return NextResponse.json({ error: "Device not found" }, { status: 404 });
+    }
+
+    const body = await request.json();
+    const { name, color, description, icon } = body;
+
+    const updated = deviceDb.update(id, {
+      name,
+      color,
+      description,
+      icon,
+    });
+
+    if (!updated) {
+      return NextResponse.json({ error: "Failed to update device" }, { status: 500 });
+    }
+
+    return NextResponse.json({ device: updated });
+  } catch (error) {
+    console.error("Error updating device:", error);
+    return NextResponse.json(
+      { error: "Failed to update device" },
+      { status: 500 }
+    );
+  }
+}
+
+// DELETE /api/devices/[id] - Soft delete device (ADMIN only)
+export async function DELETE(
+  request: Request,
+  { params }: { params: Promise<{ id: string }> }
+) {
+  try {
+    const session = await auth();
+
+    if (!session?.user) {
+      return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
+    }
+
+    // Only ADMIN can delete devices
+    if ((session.user as any).role !== 'ADMIN') {
+      return NextResponse.json({ error: "Forbidden" }, { status: 403 });
+    }
+
+    const { id } = await params;
+    const device = deviceDb.findById(id);
+    if (!device) {
+      return NextResponse.json({ error: "Device not found" }, { status: 404 });
+    }
+
+    const success = deviceDb.delete(id);
+
+    if (!success) {
+      return NextResponse.json({ error: "Failed to delete device" }, { status: 500 });
+    }
+
+    return NextResponse.json({ message: "Device deleted successfully" });
+  } catch (error) {
+    console.error("Error deleting device:", error);
+    return NextResponse.json(
+      { error: "Failed to delete device" },
+      { status: 500 }
+    );
+  }
+}