import { NextRequest, NextResponse } from 'next/server' import prisma from '@/lib/prisma' import { auth } from '@/auth' export async function GET(request: NextRequest) { const session = await auth() if (!session?.user?.id) { return NextResponse.json({ error: 'Unauthorized' }, { status: 401 }) } if ((session.user as any)?.role !== 'ADMIN') { return NextResponse.json({ users: [] }) } const q = request.nextUrl.searchParams.get('q') || '' if (q.length < 2) { return NextResponse.json({ users: [] }) } const users = await prisma.user.findMany({ where: { id: { not: session.user.id }, OR: [ { email: { contains: q, mode: 'insensitive' } }, { name: { contains: q, mode: 'insensitive' } }, ], }, select: { id: true, name: true, email: true, image: true }, take: 8, }) return NextResponse.json({ users }) }