<?php

/*
 * TODO TODO TODO TODO
 * ### PERMISSIONS ###
 * TODO TODO TODO TODO
 */

class Page_RemoteAccess extends Page
{

	protected function doPreprocess()
	{
		User::load();
		if (!User::isLoggedIn()) {
			Message::addError('main.no-permission');
			Util::redirect('?do=Main');
		}
		$action = Request::post('action', false, 'string');
		// Add group adds a DB row and then falls through to regular saving
		if ($action === 'add-group') {
			Database::exec("INSERT INTO remoteaccess_group (groupname, wolcount, passwd, active)
				VALUES ('.new', 0, '', 0)");
			$action = 'save-settings';
			Message::addSuccess('group-added');
		}
		if ($action === 'save-settings') {
			$groups = Request::post('group', [], 'array');
			foreach ($groups as $id => $group) {
				Database::exec("UPDATE remoteaccess_group SET groupname = :name, wolcount = :wol,
                              passwd = :passwd, active = :active WHERE groupid = :id", [
					'id' => $id,
					'name' => isset($group['groupname']) ? $group['groupname'] : $id,
					'wol' => isset($group['wolcount']) ? $group['wolcount'] : 0,
					'passwd' => isset($group['passwd']) ? $group['passwd'] : 0,
					'active' => isset($group['active']) && $group['active'] ? 1 : 0,
				]);
			}
			Property::set(RemoteAccess::PROP_ALLOWED_VNC_NET, Request::post('allowed-source', '', 'string'));
			Property::set(RemoteAccess::PROP_TRY_VIRT_HANDOVER, Request::post('virt-handover', false, 'int'));
			Message::addSuccess('settings-saved');
		} elseif ($action === 'set-locations') {
			$groupid = Request::post('groupid', Request::REQUIRED, 'int');
			$group = Database::queryFirst("SELECT groupname FROM remoteaccess_group WHERE groupid = :id",
				['id' => $groupid]);
			if ($group === false) {
				Message::addError('group-not-found', $groupid);
				Util::redirect('?do=remoteaccess');
			}
			$locations = array_values(Request::post('location', [], 'array'));
			if (empty($locations)) {
				Database::exec("DELETE FROM remoteaccess_x_location WHERE groupid = :id", ['id' => $groupid]);
			} else {
				Database::exec("INSERT IGNORE INTO remoteaccess_x_location (groupid, locationid)
					VALUES :values", ['values' => array_map(function($item) use ($groupid) { return [$groupid, $item]; }, $locations)]);
				Database::exec("DELETE FROM remoteaccess_x_location WHERE groupid = :id AND locationid NOT IN (:locations)",
						['id' => $groupid, 'locations' => $locations]);
			}
			Message::addSuccess('group-updated', $group['groupname']);
		}
		if (Request::isPost()) {
			Util::redirect('?do=remoteaccess');
		}
	}

	protected function doRender()
	{
		$groupid = Request::get('groupid', false, 'int');
		if ($groupid === false) {
			// Edit list of groups and their settings
			$groups = Database::queryAll("SELECT g.groupid, g.groupname, g.wolcount, g.passwd,
       			Count(l.locationid) AS locs, If(g.active, 'checked', '') AS checked
					FROM remoteaccess_group g LEFT JOIN remoteaccess_x_location l USING (groupid)
					GROUP BY g.groupid, g.groupname
					ORDER BY g.groupname ASC");
			$data = [
				'allowed-source' => Property::get(RemoteAccess::PROP_ALLOWED_VNC_NET),
				'virt-handover_checked' => Property::get(RemoteAccess::PROP_TRY_VIRT_HANDOVER) ? 'checked' : '',
				'groups' => $groups,
			];
			Render::addTemplate('edit-settings', $data);
		} else {
			// Edit locations for group
			$group = Database::queryFirst("SELECT groupid, groupname FROM remoteaccess_group WHERE groupid = :id",
				['id' => $groupid]);
			if ($group === false) {
				Message::addError('group-not-found', $groupid);
				return;
			}
			$locationList = Location::getLocationsAssoc();
			$enabled = RemoteAccess::getEnabledLocations($groupid);
			foreach ($enabled as $lid) {
				if (isset($locationList[$lid])) {
					$locationList[$lid]['checked'] = 'checked';
				}
			}
			Render::addTemplate('edit-group', $group + ['locations' => array_values($locationList)]);
		}
	}

}