/**
 * Consent Admin API Route - Audit Log Proxy
 */

import { NextRequest, NextResponse } from 'next/server'

const CONSENT_SERVICE_URL = process.env.CONSENT_SERVICE_URL || 'http://localhost:8081'

export async function GET(request: NextRequest) {
  try {
    const authHeader = request.headers.get('Authorization')
    const limit = request.nextUrl.searchParams.get('limit') || '100'
    const offset = request.nextUrl.searchParams.get('offset') || '0'
    const action = request.nextUrl.searchParams.get('action') || ''

    const url = new URL(`${CONSENT_SERVICE_URL}/api/v1/internal/audit-log`)
    url.searchParams.set('limit', limit)
    url.searchParams.set('offset', offset)
    if (action) {
      url.searchParams.set('action', action)
    }

    const response = await fetch(url.toString(), {
      headers: {
        'Content-Type': 'application/json',
        ...(authHeader ? { 'Authorization': authHeader } : {})
      },
      signal: AbortSignal.timeout(10000)
    })

    if (!response.ok) {
      const errorText = await response.text()
      return NextResponse.json(
        { error: `Consent Service Error: ${response.status}`, details: errorText },
        { status: response.status }
      )
    }

    const data = await response.json()
    return NextResponse.json(data)
  } catch (error) {
    console.error('Audit log proxy error:', error)
    return NextResponse.json(
      { error: 'Verbindung zum Consent Service fehlgeschlagen', entries: [] },
      { status: 503 }
    )
  }
}