User yang sudah registrasi sudah langsung diarahkan ke layout sesuai dengan roleIdnya

Superadmin sudah bisa menambah atau mengurangkan menu pad user yang diinginkan
Next-------------------------------
Ada bug saat tampilan menu sudah di edit superamin berhasil namun saat user logout tampilan menunya balik ke sebelumnya

src/app/api/auth/finalize-registration/route.ts

@@ -1,5 +1,4 @@
 // src/app/api/auth/finalize-registration/route.ts
-
 import prisma from "@/lib/prisma";
 import { NextResponse } from "next/server";
 import { sessionCreate } from "../_lib/session_create";
@@ -7,7 +6,6 @@ import { sessionCreate } from "../_lib/session_create";
 export async function POST(req: Request) {
   try {
     const { nomor, username, kodeId } = await req.json();
-
     const cleanNomor = nomor.replace(/\D/g, "");
 
     if (!cleanNomor || !username || !kodeId) {
@@ -17,13 +15,7 @@ export async function POST(req: Request) {
       );
     }
 
-    // Di awal fungsi POST
-    console.log("📦 Received payload:", { nomor, username, kodeId });
-
-    // Validasi OTP
-    const otpRecord = await prisma.kodeOtp.findUnique({
-      where: { id: kodeId },
-    });
+    const otpRecord = await prisma.kodeOtp.findUnique({ where: { id: kodeId } });
     if (!otpRecord?.isActive || otpRecord.nomor !== cleanNomor) {
       return NextResponse.json(
         { success: false, message: "OTP tidak valid" },
@@ -31,7 +23,6 @@ export async function POST(req: Request) {
       );
     }
 
-    // Cek duplikat username
     if (await prisma.user.findFirst({ where: { username } })) {
       return NextResponse.json(
         { success: false, message: "Username sudah digunakan" },
@@ -39,7 +30,6 @@ export async function POST(req: Request) {
       );
     }
 
-    // ✅ Gunakan username dari input user
     const defaultRole = await prisma.role.findFirst({
       where: { name: "ADMIN DESA" },
       select: { id: true },
@@ -52,23 +42,20 @@ export async function POST(req: Request) {
       );
     }
 
-    // ✅ Buat user dengan username yang diinput
     const newUser = await prisma.user.create({
       data: {
-        username, // ✅ Ini yang benar
+        username,
         nomor,
         roleId: defaultRole.id,
         isActive: false,
       },
     });
 
-    // Nonaktifkan OTP
     await prisma.kodeOtp.update({
       where: { id: kodeId },
       data: { isActive: false },
     });
 
-    // ✅ BUAT SESI untuk user baru (meski isActive = false)
     const token = await sessionCreate({
       sessionKey: process.env.BASE_SESSION_KEY!,
       jwtSecret: process.env.BASE_TOKEN_KEY!,
@@ -76,24 +63,15 @@ export async function POST(req: Request) {
       user: {
         id: newUser.id,
         nomor: newUser.nomor,
-        username: newUser.username, // ✅ Pastikan sesuai
-        roleId: newUser.roleId,
-        isActive: false,
-      },
-    });
-
-    // Set cookie
-    const response = NextResponse.json({
-      success: true,
-      message: "Registrasi berhasil. Menunggu persetujuan admin.",
-      user: {
-        id: newUser.id,
-        name: newUser.username,
+        username: newUser.username,
         roleId: newUser.roleId,
         isActive: false,
       },
+      invalidatePrevious: false,
     });
 
+    // ✅ REDIRECT DARI SERVER — cookie pasti tersedia
+    const response = NextResponse.redirect(new URL('/waiting-room', req.url));
     response.cookies.set(process.env.BASE_SESSION_KEY!, token, {
       httpOnly: true,
       secure: process.env.NODE_ENV === "production",
@@ -111,4 +89,4 @@ export async function POST(req: Request) {
   } finally {
     await prisma.$disconnect();
   }
-}
+}