Add curator special curation flow and shared editor

app/api/curator/specials/[id]/route.ts

@@ -0,0 +1,58 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { PrismaClient } from '@prisma/client';
+import { requireStaffAuth } from '@/lib/auth';
+
+const prisma = new PrismaClient();
+
+export async function GET(
+    request: NextRequest,
+    { params }: { params: Promise<{ id: string }> }
+) {
+    const { error, context } = await requireStaffAuth(request);
+    if (error || !context) return error!;
+
+    if (context.role !== 'curator') {
+        return NextResponse.json(
+            { error: 'Only curators can access this endpoint' },
+            { status: 403 }
+        );
+    }
+
+    const { id } = await params;
+    const specialId = Number(id);
+    if (!specialId || Number.isNaN(specialId)) {
+        return NextResponse.json({ error: 'Invalid special id' }, { status: 400 });
+    }
+
+    // Prüfen, ob dieses Special dem Kurator zugeordnet ist
+    const assignment = await prisma.curatorSpecial.findFirst({
+        where: { curatorId: context.curator.id, specialId },
+    });
+
+    if (!assignment) {
+        return NextResponse.json(
+            { error: 'Forbidden: You are not allowed to access this special' },
+            { status: 403 }
+        );
+    }
+
+    const special = await prisma.special.findUnique({
+        where: { id: specialId },
+        include: {
+            songs: {
+                include: {
+                    song: true,
+                },
+                orderBy: { order: 'asc' },
+            },
+        },
+    });
+
+    if (!special) {
+        return NextResponse.json({ error: 'Special not found' }, { status: 404 });
+    }
+
+    return NextResponse.json(special);
+}
+
+

app/api/curator/specials/[id]/songs/route.ts

@@ -0,0 +1,69 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { PrismaClient } from '@prisma/client';
+import { requireStaffAuth } from '@/lib/auth';
+
+const prisma = new PrismaClient();
+
+export async function PUT(
+    request: NextRequest,
+    { params }: { params: Promise<{ id: string }> }
+) {
+    const { error, context } = await requireStaffAuth(request);
+    if (error || !context) return error!;
+
+    if (context.role !== 'curator') {
+        return NextResponse.json(
+            { error: 'Only curators can access this endpoint' },
+            { status: 403 }
+        );
+    }
+
+    try {
+        const { id } = await params;
+        const specialId = Number(id);
+        const { songId, startTime, order } = await request.json();
+
+        if (!specialId || Number.isNaN(specialId)) {
+            return NextResponse.json({ error: 'Invalid special id' }, { status: 400 });
+        }
+
+        if (!songId || typeof startTime !== 'number') {
+            return NextResponse.json({ error: 'Missing songId or startTime' }, { status: 400 });
+        }
+
+        // Prüfen, ob dieses Special dem Kurator zugeordnet ist
+        const assignment = await prisma.curatorSpecial.findFirst({
+            where: { curatorId: context.curator.id, specialId },
+        });
+
+        if (!assignment) {
+            return NextResponse.json(
+                { error: 'Forbidden: You are not allowed to edit this special' },
+                { status: 403 }
+            );
+        }
+
+        const specialSong = await prisma.specialSong.update({
+            where: {
+                specialId_songId: {
+                    specialId,
+                    songId,
+                },
+            },
+            data: {
+                startTime,
+                order,
+            },
+            include: {
+                song: true,
+            },
+        });
+
+        return NextResponse.json(specialSong);
+    } catch (e) {
+        console.error('Error updating curator special song:', e);
+        return NextResponse.json({ error: 'Internal Server Error' }, { status: 500 });
+    }
+}
+
+

app/api/curator/specials/route.ts

@@ -0,0 +1,47 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { PrismaClient } from '@prisma/client';
+import { requireStaffAuth } from '@/lib/auth';
+
+const prisma = new PrismaClient();
+
+export async function GET(request: NextRequest) {
+    const { error, context } = await requireStaffAuth(request);
+    if (error || !context) return error!;
+
+    if (context.role !== 'curator') {
+        return NextResponse.json(
+            { error: 'Only curators can access this endpoint' },
+            { status: 403 }
+        );
+    }
+
+    // Specials, die diesem Kurator zugewiesen sind
+    const assignments = await prisma.curatorSpecial.findMany({
+        where: { curatorId: context.curator.id },
+        select: { specialId: true },
+    });
+
+    if (assignments.length === 0) {
+        return NextResponse.json([]);
+    }
+
+    const specialIds = assignments.map(a => a.specialId);
+
+    const specials = await prisma.special.findMany({
+        where: { id: { in: specialIds } },
+        include: {
+            songs: true,
+        },
+        orderBy: { id: 'asc' },
+    });
+
+    const result = specials.map(special => ({
+        id: special.id,
+        name: special.name,
+        songCount: special.songs.length,
+    }));
+
+    return NextResponse.json(result);
+}
+
+