import { getUserIdFromSession } from '../../../utils/auth';
import prisma from "../../../utils/prisma";

export default defineEventHandler(async (event) => {
  const userId = await getUserIdFromSession(event);

  // Simple admin check
  if (userId !== 1) {
    throw createError({ statusCode: 403, statusMessage: 'Forbidden' });
  }

  const user = await prisma.user.update({
    where: { id: userId },
    data: {
      coins: {
        increment: 1000,
      },
    },
  });

  return { success: true, message: `Added 1000 coins. New balance: ${user.coins}` };
});