biblical-guide.com/app/api/auth/register/route.ts

import { NextResponse } from 'next/server'
import { createUser, generateToken } from '@/lib/auth'
import { prisma } from '@/lib/db'
import { createUserRegistrationSchema } from '@/lib/validation'
import { z } from 'zod'

export const runtime = 'nodejs'

function getErrorMessages(locale: string = 'ro') {
  const messages = {
    ro: {
      userExists: 'Utilizatorul există deja',
      serverError: 'Eroare de server',
      invalidInput: 'Date de intrare invalide'
    },
    en: {
      userExists: 'User already exists',
      serverError: 'Server error',
      invalidInput: 'Invalid input data'
    }
  }
  return messages[locale as keyof typeof messages] || messages.ro
}

export async function POST(request: Request) {
  try {
    const url = new URL(request.url)
    const locale = url.searchParams.get('locale') || 'ro'
    const messages = getErrorMessages(locale)

    const body = await request.json()

    // Validate input
    const registrationSchema = createUserRegistrationSchema(locale)
    const result = registrationSchema.safeParse(body)
    if (!result.success) {
      const errors = result.error.errors.map(err => err.message).join(', ')
      return NextResponse.json({ error: errors }, { status: 400 })
    }

    const { email, password, name } = result.data

    // Check if user exists
    const existing = await prisma.user.findUnique({ where: { email } })
    if (existing) {
      return NextResponse.json({ error: messages.userExists }, { status: 409 })
    }

    // Create user
    const user = await createUser(email, password, name)
    const token = generateToken(user.id)

    // Create session
    await prisma.session.create({
      data: {
        userId: user.id,
        token,
        expiresAt: new Date(Date.now() + 7 * 24 * 60 * 60 * 1000)
      }
    })

    return NextResponse.json({
      user: { id: user.id, email: user.email, name: user.name, role: user.role, theme: user.theme, fontSize: user.fontSize },
      token
    })
  } catch (error) {
    console.error('Registration error:', error)
    const url = new URL(request.url)
    const locale = url.searchParams.get('locale') || 'ro'
    const messages = getErrorMessages(locale)

    if (error instanceof z.ZodError) {
      return NextResponse.json({ error: messages.invalidInput }, { status: 400 })
    }
    return NextResponse.json({ error: messages.serverError }, { status: 500 })
  }
}