<?php

use Classes\BaseService;
use Classes\IceResponse;
use Classes\PasswordManager;
use Metadata\Common\Model\SupportedLanguage;
use Users\Common\Model\User;
use Utils\LogManager;

define('CLIENT_PATH',dirname(__FILE__));
include ("config.base.php");
include ("include.common.php");

$modulePath = \Utils\SessionUtils::getSessionObject("modulePath");
if(!defined('MODULE_PATH')){
	define('MODULE_PATH',$modulePath);
}

include("server.includes.inc.php");

$userLevelArray = ['Admin', 'Manager', 'Employee', 'Restricted Admin', 'Restricted Manager', 'Restricted Employee', 'Anonymous'];

if($_REQUEST['a'] != "rsp" && $_REQUEST['a'] != "rpc"){
	if(empty($user) || empty($user->email) ||  empty($user->id) || !in_array($user->user_level, $userLevelArray)){
		$ret['status'] = "ERROR";
		echo json_encode($ret);
		exit();
	}
}

// Domain aware input cleanup
$cleaner = new \Classes\DomainAwareInputCleaner();
if (isset($_REQUEST['t'])) { $_REQUEST['t'] = $cleaner->cleanTableColumn($_REQUEST['t']); }
if (isset($_REQUEST['ft'])) { $_REQUEST['ft'] = $cleaner->cleanFilters($_REQUEST['ft']); }
if (isset($_REQUEST['ob'])) { $_REQUEST['ob'] = $cleaner->cleanOrderBy($_REQUEST['ob']); }
if (isset($_REQUEST['sSearch'])) { $_REQUEST['sSearch'] = $cleaner->cleanSearch($_REQUEST['sSearch']); }
if (isset($_REQUEST['cl'])) { $_REQUEST['cl'] = $cleaner->cleanColumns($_REQUEST['cl']); }

$action = $_REQUEST['a'];
if($action == 'get'){
	$_REQUEST['sm'] = BaseService::getInstance()->fixJSON($_REQUEST['sm']);
	$_REQUEST['ft'] = BaseService::getInstance()->fixJSON($_REQUEST['ft']);
	$ret['object'] = BaseService::getInstance()->get(
		$_REQUEST['t'],
		$_REQUEST['sm'],
		$_REQUEST['ft'],
		$_REQUEST['ob']
	);
	$ret['status'] = "SUCCESS";

}else if($action == 'getElement'){
	$ret['object'] = BaseService::getInstance()->getElement(
		$_POST['t'],
        $_POST['id'],
        BaseService::getInstance()->fixJSON($_POST['sm'])
	);
	if(!empty($ret['object'])){
		$ret['status'] = "SUCCESS";
	}else{
		$ret['status'] = "ERROR";
	}
}else if($action == 'add'){
	if($_POST['t'] == "Report" || $_POST['t'] == "UserReport"){
		$data = $reportHandler->handleReport($_POST);
		$ret['status'] = $data[0];
		$ret['object'] = $data[1];
	}else{
		$resp = BaseService::getInstance()->addElement($_POST['t'],$_POST);
		$ret['object'] = $resp->getData();
		$ret['status'] = $resp->getStatus();
	}


}else if($action == 'delete'){
	/* @var IceResponse $response */
	$response = BaseService::getInstance()->deleteElement($_POST['t'],$_POST['id']);
	if($response->getStatus() == IceResponse::SUCCESS){
		$ret['status'] = IceResponse::SUCCESS;
	}else{
		$ret['status'] = IceResponse::ERROR;
	}

}else if($action == 'getFieldValues'){
	$ret['data'] = BaseService::getInstance()->getFieldValues(
        $_POST['t'],
        $_POST['key'],
        $_POST['value'],
        $_POST['method'],
        $_POST['methodParams']
	);
	if($ret['data'] != null){
		$ret['status'] = "SUCCESS";
	}else{
		$ret['status'] = "ERROR";
	}

}else if($action == 'setAdminEmp'){
	BaseService::getInstance()->setCurrentAdminProfile($_POST['empid']);
	$ret['status'] = "SUCCESS";

}else if($action == 'ca'){
	if(isset($_REQUEST['req'])){
		$_REQUEST['req'] = BaseService::getInstance()->fixJSON($_REQUEST['req']);
	}
	$mod = $_REQUEST['mod'];
	$modPath = explode("=", $mod);
	$moduleCapsName = ucfirst($modPath[1]);
	/* @var \Classes\AbstractModuleManager $moduleManager */
	$moduleManager = BaseService::getInstance()->getModuleManager($modPath[0], $modPath[1]);

	if ($moduleManager === null) {
	    exit();
    }

	$subAction = $_REQUEST['sa'];

	$apiClass = $moduleManager->getActionManager();
    $reflectionClass = null;
    try {
        $reflectionClass = new ReflectionClass($apiClass);
    } catch (ReflectionException $e) {
        exit();
    }
    $reflectionMethods = array_filter(
        $reflectionClass->getMethods(ReflectionMethod::IS_PUBLIC),
        function ($o) use ($reflectionClass) {
            return $o->class == $reflectionClass->getName();
        });

    $methods = [];
    foreach ($reflectionMethods as $method) {
        $methods[] = $method->name;
    }

    if (!in_array($subAction, $methods)) {
        exit();
    }

	$apiClass->setUser($user);
	$apiClass->setBaseService($baseService);
	$apiClass->setEmailSender($baseService->getEmailSender());

	if(isset($_REQUEST['req'])){
		$req = json_decode($_REQUEST['req']);
	}else{
		$req = new stdClass();
	}
	foreach ($_REQUEST as $k=>$v){
		if($k != 'mod' && $k != 'sa' && $k != 'a' && $k != 't' && $k != 'req'){
			if(!isset($req->$k)){
				$req->$k = $v;
			}
		}
	}
	$res = $apiClass->$subAction($req);
	$ret = $res->getJsonArray();

}else if($action == 'file'){
	$name = $_REQUEST['name'];
	$file = new \Model\File();
	$file->Load("name =?",array($name));
	$ret = array();
	$type = strtolower(substr($file->filename, strrpos($file->filename,".")+1));
	if($file->name == $name){
		$ret['status'] = "SUCCESS";
		if(\Classes\SettingsManager::getInstance()->getSetting("Files: Upload Files to S3") == '1'){
			$uploadFilesToS3Key = \Classes\SettingsManager::getInstance()->getSetting("Files: Amazon S3 Key for File Upload");
			$uploadFilesToS3Secret = \Classes\SettingsManager::getInstance()->getSetting("Files: Amazone S3 Secret for File Upload");
			$s3FileSys = new \Classes\S3FileSystem($uploadFilesToS3Key, $uploadFilesToS3Secret);
			$s3WebUrl = \Classes\SettingsManager::getInstance()->getSetting("Files: S3 Web Url");
			$fileUrl = $s3WebUrl.CLIENT_NAME."/".$file->filename;
			$fileUrl = $s3FileSys->generateExpiringURL($fileUrl);
			$file->filename = $fileUrl;

		}else if($type == "pdf"){
			$file->filename = CLIENT_BASE_URL.'data/'.$file->filename;
		}
		$ret['data']=$file;
	}else{
		$ret['status'] = "ERROR";
	}
}else if($action == 'download'){
	$fileName = $_REQUEST['file'];
	$fileName = str_replace("..","",$fileName);
	$fileName = str_replace("/","",$fileName);
	$fileName = CLIENT_BASE_PATH.'data/'.$fileName;
	if(!file_exists($fileName)){
		exit;
	}
	header('Content-Description: File Transfer');
	header('Content-Type: application/octet-stream');
	header('Content-Disposition: attachment; filename='.basename($fileName));
	header('Content-Transfer-Encoding: binary');
	header('Expires: 0');
	header('Cache-Control: must-revalidate');
	header('Pragma: public');
	header('Content-Length: ' . filesize($fileName));
	ob_clean();
	flush();
	readfile($fileName);
	exit;

}else if($action == 'rsp'){ // linked clicked from password change email
	$user = new User();
	if(!empty($_REQUEST['key'])){
        $user = PasswordManager::verifyPasswordRestKey($_REQUEST['key']);
	    if ($user !== false && $user instanceof User && !empty($user->id)) {
            if(empty($_REQUEST['now'])){
                header("Location:".CLIENT_BASE_URL."login.php?cp=1&key=".$_REQUEST['key']);
                exit();
            }else{
                if(!empty($_REQUEST['pwd'])){
                    $passwordCheck = PasswordManager::isQualifiedPassword($_REQUEST['pwd']);
                    if($passwordCheck->getStatus() === IceResponse::SUCCESS){
                        $user->password = PasswordManager::createPasswordHash($_REQUEST['pwd']);
                        $user->Save();
                        LogManager::getInstance()->info("User password changed [$user->id]");
                        $ret['status'] = "SUCCESS";
                    }else{
                        $ret['status'] = "ERROR";
                        $ret['message'] = $passwordCheck->getData();
                    }
                }
            }

        } else {
            $ret['status'] = "ERROR";
            $ret['message'] = "Error verifying password reset request";
        }

	}else{
        $ret['status'] = "ERROR";
        $ret['message'] = "Invalid request";
	}

}else if($action == 'rpc'){
    try {
        $user = new User();
        $user->Load("email = ? or username = ?", [$_REQUEST['id'], $_REQUEST['id']]);
        if (empty($user->id)) {
            $ret['status'] = "ERROR";
            $ret['message'] = "Invalid request";
        } else if (($passwordChangeWaitingMinutes = PasswordManager::passwordChangeWaitingTimeMinutes($user)) > 0) {
            $ret['status'] = "ERROR";
            $ret['message'] = "Wait another $passwordChangeWaitingMinutes minutes to request a password change again";
        } else if ($emailSender->sendResetPasswordEmail($_REQUEST['id'])) {
            $ret['status'] = "SUCCESS";
            $ret['message'] = "An email has been sent to you with instructions for changing password";
        } else {
            $ret['status'] = "ERROR";
            $ret['message'] = "You have entered an incorrect email or user id";
        }
    } catch (Exception $e) {
        LogManager::getInstance()->error('Error occurred while changing password:'.$e->getMessage());
        LogManager::getInstance()->notifyException($e);
    }

}else if($action == 'getNotifications'){
	$ret['data'] = $notificationManager->getLatestNotificationsAndCounts($user->id);
	$ret['status'] = "SUCCESS";

}else if($action == 'clearNotifications'){
	$notificationManager->clearNotifications($user->id);
	$ret['status'] = "SUCCESS";

}else if($action == 'verifyInstance'){
	$key = $_POST['key'];
	if(empty($key)){
		$ret['status'] = "ERROR";
		$ret['message'] = "Instance key not found";
	}else{
		$baseService->setInstanceKey($key);
		if($baseService->validateInstance()){
			$ret['status'] = "SUCCESS";
		}else{
			$ret['status'] = "ERROR";
			$ret['message'] = "Error Verifying IceHrm Instance due to invalid key. If you are keep getting this, please contact us through ".CONTACT_EMAIL;
		}
	}

} else if ($action === 'updateLanguage'){
    $language = $_POST['language'];
    $supportedLanguage = new SupportedLanguage();
    $supportedLanguage->Load('name = ?', [$language]);
    $ret['status'] = "ERROR";
    if (!empty($supportedLanguage->id) && $supportedLanguage->name === $language) {
        $languageUser = new User();
        $languageUser->Load('id = ?', [$user->id]);
        if (!empty($languageUser->id)) {
            $languageUser->lang = $supportedLanguage->id;
            $languageUser->Save();
            $user->lang = $languageUser->lang;
            \Utils\SessionUtils::saveSessionObject('user', $user);
            $ret['status'] = "SUCCESS";
        }
    }
}

try {
    echo BaseService::getInstance()->safeJsonEncode($ret);
} catch (Exception $e) {
    LogManager::getInstance()->error($e->getMessage());
    LogManager::getInstance()->notifyException($e);
    echo json_encode(['status' => 'Error']);
}