const express = require('express');
const router = express.Router();
const { getRoleMappings, saveRoleMappings } = require('../utils/roleMappings');

const isAdmin = (req, res, next) => {
  if (req.isAuthenticated()) {
    const admins = process.env.ADMIN_USERS.split(',');
    if (admins.includes(req.user.id)) return next();
  }
  res.status(403).send('Forbidden: Admin access only.');
};

// TODO: Replace with full beautiful UI from live bot.js
router.get('/', isAdmin, (req, res) => {
  const mappings = getRoleMappings();
  res.json({ message: "Admin Panel UI", mappings }); 
});

router.post('/mappings', isAdmin, express.json(), (req, res) => {
  const newMappings = req.body;
  if (saveRoleMappings(newMappings)) {
    res.status(200).send('Mappings updated');
  } else {
    res.status(500).send('Failed to save mappings');
  }
});

module.exports = router;