<?php

require_once("inc/debug.php");
require_once("inc/db_connect.php");
require_once("inc/security.php");

require_once('class/domain.php');

function get_jabber_accounts() {
  require_role(ROLE_CUSTOMER);
  $customerno = (int) $_SESSION['customerinfo']['customerno'];
  $result = db_query("SELECT id, created, local, domain FROM jabber.accounts WHERE customerno='$customerno' AND `delete`=0;");
  $accounts = array();
  if (@mysql_num_rows($result) > 0)
    while ($acc = @mysql_fetch_object($result))
      array_push($accounts, array('id'=> $acc->id, 'created' => $acc->created, 'local' => $acc->local, 'domain' => $acc->domain));
  return $accounts;
}


function get_jabberaccount_details($id)
{
  require_role(ROLE_CUSTOMER);
  $customerno = (int) $_SESSION['customerinfo']['customerno'];

  $id = (int) $id;

  $result = db_query("SELECT id, local, domain FROM jabber.accounts WHERE customerno={$customerno} AND id={$id} LIMIT 1");
  if (mysql_num_rows($result) != 1)
    system_failure("Invalid account");
  $data = mysql_fetch_assoc($result);
  if ($data['domain'] == NULL)
    $data['domain'] = 'schokokeks.org';
  else
  {
    $dom = new Domain((int) $data['domain']);
    $data['domain'] = $dom->fqdn;
  }
  return $data;
}


function valid_jabber_password($pass)
{
  // Hier könnten erweiterte Checks stehen wenn nötig.
  /*$foo = ereg_replace('["\']', '', $pass);
  DEBUG("\$foo = {$foo} / \$pass = {$pass}");
  return ($foo == $pass);
  */
  return true;
}


function create_jabber_account($local, $domain, $password)
{
  require_role(ROLE_CUSTOMER);
  $customerno = (int) $_SESSION['customerinfo']['customerno'];

  $local = mysql_real_escape_string( filter_input_username($local) );
  $domain = (int) $domain;
  if (! valid_jabber_password($password))
  {
    input_error('Das Passwort enthält Zeichen, die aufgrund technischer Beschränkungen momentan nicht benutzt werden können.');
    return;
  }
  $password = mysql_real_escape_string( $password );
  
  if ($domain > 0)
  {
    $result = db_query("SELECT id FROM kundendaten.domains WHERE kunde={$customerno} AND jabber=1 AND id={$domain};");
    if (mysql_num_rows($result) == 0)
    {
      logger("modules/jabber/include/jabberaccounts", "jabber", "attempt to create account for invalid domain »{$domain}«");
      system_failure("Invalid domain!");
    }
  }

  $domainquery = "domain={$domain}";
  if ($domain == 0)
  {
    $domain = 'NULL';
    $domainquery = 'domain IS NULL'; 
  }
  $result = db_query("SELECT id FROM jabber.accounts WHERE local='{$local}' AND {$domainquery}");
  if (mysql_num_rows($result) > 0)
  {
    logger("modules/jabber/include/jabberaccounts", "jabber", "attempt to create already existing account »{$local}@{$domain}«");
    system_failure("Diesen Account gibt es bereits!");
  }

  db_query("INSERT INTO jabber.accounts (customerno,local,domain,password) VALUES ({$customerno}, '{$local}', {$domain}, '{$password}');");
  logger("modules/jabber/include/jabberaccounts", "jabber", "created account »{$local}@{$domain}«");
}


function change_jabber_password($id, $password)
{
  require_role(ROLE_CUSTOMER);
  $customerno = (int) $_SESSION['customerinfo']['customerno'];
  $id = (int) $id;
  if (! valid_jabber_password($password))
  {
    input_error('Das Passwort enthält Zeichen, die aufgrund technischer Beschränkungen momentan nicht benutzt werden können.');
    return;
  }
  $password = mysql_real_escape_string( $password );
  
  db_query("UPDATE jabber.accounts SET password='{$password}' WHERE customerno={$customerno} AND id={$id} LIMIT 1");
  logger("modules/jabber/include/jabberaccounts", "jabber", "changed password for account  »{$id}«");
}


function delete_jabber_account($id)
{
  require_role(ROLE_CUSTOMER);
  $customerno = (int) $_SESSION['customerinfo']['customerno'];

  $id = (int) $id;

  db_query("UPDATE jabber.accounts SET `delete`=1 WHERE customerno={$customerno} AND id={$id} LIMIT 1");
  logger("modules/jabber/include/jabberaccounts", "jabber", "deleted account »{$id}«");
}

?>