<?php

/**
 *
 * @copyright  2010 frasq.org
 * @version    1
 * @link       http://www.frasq.org
 */

require_once 'readarg.php';
require_once 'strflat.php';
require_once 'validateusername.php';
require_once 'validatemail.php';
require_once 'isusernameallowed.php';
require_once 'ismailallowed.php';
require_once 'tokenid.php';

function register($lang) {
	$action='init';
	if (isset($_POST['register_register'])) {
		$action='register';
	}

	$name=$mail=$confirmed=$code=$token=false;

	switch($action) {
		case 'register':
			if (isset($_POST['register_name'])) {
				$name=strtolower(strflat(readarg($_POST['register_name'], true)));
			}
			if (isset($_POST['register_mail'])) {
				$mail=strtolower(strflat(readarg($_POST['register_mail'], true)));
			}
			if (isset($_POST['register_confirmed'])) {
				$confirmed=$_POST['register_confirmed'] ? true : false;
			}
			if (isset($_POST['register_code'])) {
				$code=readarg($_POST['register_code'], true);
			}
			if (isset($_POST['register_token'])) {
				$token=readarg($_POST['register_token']);
			}
			break;
		default:
			break;
	}

	$missing_code=false;
	$bad_code=false;

	$bad_token=false;

	$missing_name=false;
	$bad_name=false;
	$missing_mail=false;
	$bad_mail=false;
	$missing_confirmation=false;

	$duplicated_name=false;
	$duplicated_mail=false;

	$account_created=false;
	$user_page=false;

	$internal_error=false;
	$contact_page=false;

	$with_captcha=true;

	switch($action) {
		case 'register':
			if (!isset($_SESSION['register_token']) or $token != $_SESSION['register_token']) {
				$bad_token=true;
				break;
			}

			if ($with_captcha) {
				if (!$code) {
					$missing_code=true;
					break;
				}
				$captcha=isset($_SESSION['captcha']) ? $_SESSION['captcha'] : false;
				if (!$captcha or $captcha != strtoupper($code)) {
					$bad_code=true;
					break;
				}
			}

			if (!$name) {
				$missing_name=true;
			}
			else if (!validate_user_name($name) or !is_user_name_allowed($name)) {
				$bad_name=true;
			}
			if (!$mail) {
				$missing_mail=true;
			}
			else if (!validate_mail($mail) or !is_mail_allowed($mail)) {
				$bad_mail=true;
			}
			if (!$confirmed) {
				$missing_confirmation=true;
			}

			break;
		default:
			break;
	}

	switch($action) {
		case 'register':
			if ($bad_token or $missing_code or $bad_code or $missing_name or $bad_name or $missing_mail or $bad_mail or $missing_confirmation) {
				break;
			}

			require_once 'newpassword.php';

			$password=newpassword();

			require_once 'models/user.inc';

			$r = user_check_name($name);

			if (!$r) {
				$duplicated_name=true;
				break;
			}

			$r = user_check_mail($mail);

			if (!$r) {
				$duplicated_mail=true;
				break;
			}

			$r = user_create($name, $password, $mail);

			if (!$r) {
				$contact_page=url('contact', $lang);
				$internal_error=true;
				break;
			}

			require_once 'emailcrypto.php';

			global $sitename, $webmaster;

			$to=$mail;

			$subject = translate('email:new_user_subject', $lang);
			$msg = translate('email:new_user_text', $lang) . "\n\n" . translate('email:salutations', $lang);
			if (!emailcrypto($msg, $password, $to, $subject, $webmaster)) {
				$contact_page=url('contact', $lang);
				$internal_error=true;
				break;
			}

			require_once 'emailme.php';

			$timestamp=strftime('%d-%m-%Y %H:%M:%S', time());
			$subject = 'frasq.org:new_account.';
			$msg = $timestamp . ' ' . $lang . ' ' . $name . ' ' . $mail;
			emailme($subject, $msg);

			$account_created=true;
			$confirmed=false;

			break;
		default:
			break;
	}

	if ($internal_error) {
		$contact_page=url('contact', $lang);
	}
	else if ($account_created) {
		$user_page=url('user', $lang);
	}

	$_SESSION['register_token'] = $token = token_id();

	$errors = compact('missing_name', 'bad_name', 'missing_mail', 'bad_mail', 'missing_confirmation', 'missing_code', 'bad_code', 'duplicated_name', 'duplicated_mail', 'internal_error', 'contact_page');
	$infos = compact('user_page');

	$output = view('register', $lang, compact('token', 'with_captcha', 'name', 'mail', 'confirmed', 'account_created', 'errors', 'infos'));

	return $output;
}