import { NextRequest, NextResponse } from "next/server";
import { db } from "@/lib/db";
import { getServerSession } from "next-auth";
import { authOptions } from "@/lib/auth";

export async function POST(req: NextRequest, { params }: { params: Promise<{ id: string }> }) {
  const { id } = await params;
  const session = await getServerSession(authOptions);
  if (!session || (session.user as any).role !== "ADMIN")
    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });

  const { playerId, type, minute, extraInfo } = await req.json();

  const event = await db.matchEvent.create({
    data: { matchId: id, playerId, type, minute: minute ?? null, extraInfo: extraInfo || null },
  });

  return NextResponse.json(event, { status: 201 });
}