import { setMediaAssetUserNote } from "#server/service/media";
import { requireAdmin } from "#server/utils/admin-guard";
import { R } from "#server/utils/response";
import { assertUnderRateLimit } from "#server/utils/simple-rate-limit";
import { getRequestIP } from "h3";

export default defineWrappedResponseHandler(async (event) => {
  const admin = await requireAdmin(event);
  const ip = getRequestIP(event, { xForwardedFor: true }) ?? "unknown";
  assertUnderRateLimit(`admin-media-asset-note:${ip}`, 60, 60_000);

  const idRaw = getRouterParam(event, "id");
  const assetId = Number(idRaw);
  if (!Number.isInteger(assetId) || assetId < 1) {
    throw createError({ statusCode: 400, statusMessage: "无效的资源 id" });
  }
  const body = await readBody<{ userNote?: unknown }>(event);
  if (!body || typeof body !== "object" || !("userNote" in body)) {
    throw createError({ statusCode: 400, statusMessage: "请求体须包含 userNote（字符串或 null）" });
  }
  const note = body.userNote;
  if (note !== null && typeof note !== "string") {
    throw createError({ statusCode: 400, statusMessage: "userNote 须为字符串或 null" });
  }
  const resolved = note === null ? null : note.trim() === "" ? null : note.trim();

  await setMediaAssetUserNote({
    assetId,
    note: resolved,
    actorUserId: admin.id,
    actorIsAdmin: true,
  });

  return R.success({ ok: true });
});