SolyQuiz/app/api/quizzes/[id]/route.ts

/* eslint-disable @typescript-eslint/no-explicit-any */
import { NextRequest, NextResponse } from 'next/server'
import { createClient } from '@/lib/supabase/server'

export async function GET(
  _request: NextRequest,
  { params }: { params: Promise<{ id: string }> }
) {
  try {
    const supabase = await createClient()
    const db = supabase as any

    const { data: { user }, error: authError } = await supabase.auth.getUser()
    if (authError || !user) {
      return NextResponse.json({ error: 'Non autorisé' }, { status: 401 })
    }

    const { id } = await params

    const { data: quiz, error } = await db
      .from('quizzes')
      .select(`
        id, title, updated_at,
        subchapter:subchapters(id, name, category:categories(id, name)),
        questions(
          id, question_text, explanation, order,
          answers(id, answer_text, is_correct)
        )
      `)
      .eq('id', id)
      .eq('author_id', user.id)
      .single()

    if (error || !quiz) {
      return NextResponse.json({ error: 'Quiz introuvable ou accès refusé' }, { status: 404 })
    }

    // Trier les questions par ordre
    quiz.questions?.sort((a: any, b: any) => a.order - b.order)

    return NextResponse.json({ quiz })
  } catch (error) {
    console.error('[quizzes/get]', error)
    return NextResponse.json({ error: 'Erreur serveur interne' }, { status: 500 })
  }
}

export async function PATCH(
  request: NextRequest,
  { params }: { params: Promise<{ id: string }> }
) {
  try {
    const supabase = await createClient()
    const db = supabase as any

    const { data: { user }, error: authError } = await supabase.auth.getUser()
    if (authError || !user) {
      return NextResponse.json({ error: 'Non autorisé' }, { status: 401 })
    }

    const { id } = await params
    const { title } = await request.json()

    if (!title?.trim()) {
      return NextResponse.json({ error: 'Titre requis' }, { status: 400 })
    }

    const { data, error } = await db
      .from('quizzes')
      .update({ title: title.trim() })
      .eq('id', id)
      .eq('author_id', user.id)
      .select()
      .single()

    if (error || !data) {
      return NextResponse.json({ error: 'Quiz introuvable ou accès refusé' }, { status: 404 })
    }

    return NextResponse.json({ success: true, quiz: data })
  } catch (error) {
    console.error('[quizzes/patch]', error)
    return NextResponse.json({ error: 'Erreur serveur interne' }, { status: 500 })
  }
}