<?php

/**
* welcome.TU.code Anmeldesystem.
* by Jan Vales <jan@jvales.net> (aka. Someone <someone@somenet.org>)
*/

require_once('./settings.php');
require_once('./db_funcs.php');

function login(){
//  if(!isset($_SERVER['HTTPS'])){
//    $url = 'https://'.$_SERVER["HTTP_HOST"].$_SERVER['REQUEST_URI'];
//    header('Location: '.$url, true, 301);
//    exit('<h1>Redirecting to: <a href="'.$url.'">'.$url.'</a></h1>');
//  }
  $uinfo = db_get_uinfo($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']);
  if($uinfo['lvl'] >= 1){
    $GLOBALS['uname'] = $uinfo['uname'];
    $GLOBALS['lvl'] = $uinfo['lvl'];
  }else{
    header('WWW-Authenticate: Basic realm="WelcomeTUcode login"');
    header('HTTP/1.0 401 Unauthorized');
    exit('Nicht eingeloggt. Falsche Anmeldedaten?');
  }
}

function list_anmeldungen(){
  $liste = db_list_anmeldungen();
  $ret = '<table border=1 class="sortable"><tr><th>Aktion</th><th>id</th><th>Anmeldung bei</th><th>Nachname(n)</th><th>Vorname(n)</th><th>Geboren</th><th>Nationalität</th><th>Sprachkenntnis</th>'.
    '<th>Vorwissen</th><th>Analphabet</th><th>fotoerlaubnis</th><th>Videoerlaubnis</th><th>Bemerkung</th></tr>'."\n";
  foreach ($liste as &$person) {
    $ret .='<tr id="pers_'.$person['id'].'"><td><a href="./person.php?id='.$person['id'].'">Bearbeiten</a></td><td>'.$person['id'].'</td><td>'.$person['uname'].'</td>'.
	'<td>'.$person['nname'].'</td><td>'.$person['vname'].'</td><td>'.$person['gebdatum'].'</td><td>'.$person['nationaliaet'].'</td>'.
	'<td>'.$person['sprachen'].'</td><td>'.$person['vorwissen'].'</td><td>'.$person['analphabet'].'</td><td>'.$person['fotoerlaubnis'].'</td>'.
	'<td>'.$person['videoerlaubnis'].'</td><td>'.$person['bemerkungen'].'</td></tr>'."\n";
/*    echo '<div class="person" id="pers_'.$person['id'].'" style="border:1px solid black;"><div id="pers_'.$person['id'].'_vname">'.$person['vname'].'</div>
	<div id="pers_'.$person['id'].'_nname">'.$person['nname'].'</div> <div id="pers_'.$person['id'].'_gebdatum">'.$person['gebdatum'].'</div>
	<div id="pers_'.$person['id'].'_nationaliaet">'.$person['nationaliaet'].'</div> <div id="pers_'.$person['id'].'_sprachen">'.$person['sprachen'].'</div>
	<div id="pers_'.$person['id'].'_vorwissen">'.$person['vorwissen'].'</div> <div id="pers_'.$person['id'].'_analphabet">'.$person['analphabet'].'</div>
	<div id="pers_'.$person['id'].'_fotoerlaubnis">'.$person['fotoerlaubnis'].'</div> <div id="pers_'.$person['id'].'_videoerlaubnis">'.$person['videoerlaubnis'].'</div>
	<div class="bemerkung" id="pers_'.$person['id'].'_bemerkungen">'.$person['bemerkungen'].'</div>
	</div>';*/
  }
  return $ret.'</table>'."\n";
}

function store_person(){
  if(!isset($_REQUEST['delete']) && !isset($_REQUEST['save'])) return 0;

//var_export($_REQUEST);

  if(isset($_REQUEST['delete']))return db_delete_person($_REQUEST['id']);
  if(isset($_REQUEST['save'])){

    if(!isset($_REQUEST['vname']))return '-vname- not set!';
    $pdata['vname']=$_REQUEST['vname'];

    if(!isset($_REQUEST['nname']))return '-nname- not set!';
    $pdata['nname']=$_REQUEST['nname'];

    if(!isset($_REQUEST['gebdatum']))return '-gebdatum- not set!';
    $pdata['gebdatum']=$_REQUEST['gebdatum'];
	
    if(!isset($_REQUEST['nationaliaet']))return '-nationaliaet- not set!';
    $pdata['nationaliaet']=$_REQUEST['nationaliaet'];

    if(!isset($_REQUEST['sprachen']))return '-sprachen- not set!';
    $pdata['sprachen']=$_REQUEST['sprachen'];

    if(!isset($_REQUEST['vorwissen']))return '-vorwissen- not set!';
    $pdata['vorwissen']=$_REQUEST['vorwissen'];
	
    if(!isset($_REQUEST['analphabet']))return '-analphabet- not set!';
    $pdata['analphabet']=$_REQUEST['analphabet'];

    if(!isset($_REQUEST['fotoerlaubnis']))return '-fotoerlaubnis- not set!';
    $pdata['fotoerlaubnis']=$_REQUEST['fotoerlaubnis'];

    if(!isset($_REQUEST['videoerlaubnis']))return '-videoerlaubnis- not set!';
    $pdata['videoerlaubnis']=$_REQUEST['videoerlaubnis'];

    if(!isset($_REQUEST['bemerkungen']))return '-bemerkungen- not set!';
    $pdata['bemerkungen']=$_REQUEST['bemerkungen'];

    return db_store_person($_REQUEST['id'], $pdata);
  }
}

function get_person($id){
  if(!is_numeric($id)) return NULL;
  return db_get_person($id);
}

function html_top($title = ""){
	return <<<EOF
<!DOCTYPE html>
<html lang="de" dir="ltr">
<head>
<meta charset="utf-8">
<title>$title</title>
<link rel="stylesheet" href="style.css">
<script src="sorttable.js"></script>
</head>
<body id="welcometucode">
EOF;
}

function html_bottom(){
	return <<<EOF
</body>
</html>
EOF;
}