import { createLogger } from '@sim/logger' import { getErrorMessage } from '@sim/utils/errors' import { generateId } from '@sim/utils/id' import { type NextRequest, NextResponse } from 'next/server' import { postgresqlQueryContract } from '@/lib/api/contracts/tools/databases/postgresql' import { parseToolRequest } from '@/lib/api/server' import { checkInternalAuth } from '@/lib/auth/hybrid' import { withRouteHandler } from '@/lib/core/utils/with-route-handler' import { createPostgresConnection, executeQuery } from '@/app/api/tools/postgresql/utils' const logger = createLogger('PostgreSQLQueryAPI') export const POST = withRouteHandler(async (request: NextRequest) => { const requestId = generateId().slice(0, 8) try { const auth = await checkInternalAuth(request) if (!auth.success || !auth.userId) { logger.warn(`[${requestId}] Unauthorized PostgreSQL query attempt`) return NextResponse.json({ error: auth.error || 'Unauthorized' }, { status: 401 }) } const parsed = await parseToolRequest(postgresqlQueryContract, request, { logger }) if (!parsed.success) return parsed.response const params = parsed.data.body logger.info( `[${requestId}] Executing PostgreSQL query on ${params.host}:${params.port}/${params.database}` ) const sql = await createPostgresConnection({ host: params.host, port: params.port, database: params.database, username: params.username, password: params.password, ssl: params.ssl, }) try { const result = await executeQuery(sql, params.query) logger.info(`[${requestId}] Query executed successfully, returned ${result.rowCount} rows`) return NextResponse.json({ message: `Query executed successfully. ${result.rowCount} row(s) returned.`, rows: result.rows, rowCount: result.rowCount, }) } finally { await sql.end() } } catch (error) { const errorMessage = getErrorMessage(error, 'Unknown error occurred') logger.error(`[${requestId}] PostgreSQL query failed:`, error) return NextResponse.json({ error: `PostgreSQL query failed: ${errorMessage}` }, { status: 500 }) } })