<?php

namespace Zotlabs\Module\Settings;

use Zotlabs\Lib\Config;

class Account {

	function post() {
		check_form_security_token_redirectOnErr('/settings/account', 'settings_account');

		call_hooks('account_settings_post', $_POST);

		$errs = array();

		$email = ((x($_POST,'email')) ? trim(notags($_POST['email'])) : '');

		$account = \App::get_account();
		if($email != $account['account_email']) {
			// a DId2 not an email addr does not allow to change to email addr
			if (strpos($email, '@') > 0) {
				if(! validate_email($email))
					$errs[] = t('Not valid email.');
				$adm = trim(Config::Get('system','admin_email'));
				if(($adm) && (strcasecmp($email,$adm) == 0)) {
					$errs[] = t('Protected email address. Cannot change to that email.');
					$email = \App::$account['account_email'];
				}
				if(! $errs) {
					$r = q("update account set account_email = '%s' where account_id = %d",
						dbesc($email),
						intval($account['account_id'])
					);
					if(! $r)
						$errs[] = t('System failure storing new email. Please try again.');
				}
			}
		}

		if($errs) {
			foreach($errs as $err)
				notice($err . EOL);
			$errs = array();
		}


		if((x($_POST,'npassword')) || (x($_POST,'confirm'))) {

			$origpass = trim($_POST['origpass']);

			require_once('include/auth.php');
			if(! account_verify_password($email,$origpass)) {
				$errs[] = t('Password verification failed.');
			}

			$newpass = trim($_POST['npassword']);
			$confirm = trim($_POST['confirm']);

			if($newpass != $confirm ) {
				$errs[] = t('Passwords do not match. Password unchanged.');
			}

			if((! x($newpass)) || (! x($confirm))) {
				$errs[] = t('Empty passwords are not allowed. Password unchanged.');
			}

			if(! $errs) {
				$salt = random_string(32);
				$password_encoded = hash('whirlpool', $salt . $newpass);
				$r = q("update account set account_salt = '%s', account_password = '%s', account_password_changed = '%s'
					where account_id = %d",
					dbesc($salt),
					dbesc($password_encoded),
					dbesc(datetime_convert()),
					intval(get_account_id())
				);
				if($r)
					info( t('Password changed.') . EOL);
				else
					$errs[] = t('Password update failed. Please try again.');
			}
		}


		if($errs) {
			foreach($errs as $err)
				notice($err . EOL);
		}
		goaway(z_root() . '/settings/account' );
	}


	function get() {
		$account_settings = "";

		call_hooks('account_settings', $account_settings);

		$email      = \App::$account['account_email'];
		$attremail  = ((!strpos($email, '@')) ? 'disabled="disabled"' : '');

		$tpl = get_markup_template("settings_account.tpl");
		$o .= replace_macros($tpl, array(
			'$form_security_token' => get_form_security_token("settings_account"),
			'$title'            => t('Account Settings'),
			'$origpass'         => array('origpass', t('Current Password'), ' ',''),
			'$password1'        => array('npassword', t('Enter New Password'), '', ''),
			'$password2'        => array('confirm', t('Confirm New Password'), '', t('Leave password fields blank unless changing')),
			'$submit'           => t('Submit'),
			'$mfa'              => t('Multi-Factor Authentication'),
			'$email'            => array('email', t('DId2 or Email Address:'), $email, '', '', $attremail),
			'$email_hidden'     => (($attremail) ? $email : ''),
			'$removeme'         => t('Remove Account'),
			'$removeaccount'    => t('Remove this account including all its channels'),
			'$account_settings' => $account_settings
		));
		return $o;
	}

}