<?php
/**
 * sysPass
 *
 * @author    nuxsmin
 * @link      http://syspass.org
 * @copyright 2012-2017, Rubén Domínguez nuxsmin@$syspass.org
 *
 * This file is part of sysPass.
 *
 * sysPass is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * sysPass is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 *  along with sysPass.  If not, see <http://www.gnu.org/licenses/>.
 */

namespace SP\Mgmt\Users;

defined('APP_ROOT') || die();

use SP\Core\Crypt\Hash;
use SP\Core\Exceptions\SPException;
use SP\DataModel\UserData;
use SP\DataModel\UserLoginData;
use SP\Mgmt\ItemInterface;
use SP\Mgmt\ItemSelectInterface;
use SP\Mgmt\ItemTrait;
use SP\Storage\DbWrapper;
use SP\Storage\QueryData;

/**
 * Class User
 *
 * @package SP
 * @property UserData|UserLoginData $itemData
 */
class User extends UserBase implements ItemInterface, ItemSelectInterface
{
    use ItemTrait;

    /**
     * @return $this
     * @throws SPException
     */
    public function add()
    {
        if ($this->checkDuplicatedOnAdd()) {
            throw new SPException(__('Login/email de usuario duplicados', false), SPException::INFO);
        }

        $query = /** @lang SQL */
            'INSERT INTO usrData SET
            user_name = ?,
            user_login = ?,
            user_ssoLogin = ?,
            user_email = ?,
            user_notes = ?,
            user_groupId = ?,
            user_profileId = ?,
            user_mPass = \'\',
            user_mKey = \'\',
            user_isAdminApp = ?,
            user_isAdminAcc = ?,
            user_isDisabled = ?,
            user_isChangePass = ?,
            user_isLdap = 0,
            user_pass = ?,
            user_hashSalt = \'\'';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam($this->itemData->getName());
        $Data->addParam($this->itemData->getLogin());
        $Data->addParam($this->itemData->getSsoLogin());
        $Data->addParam($this->itemData->getEmail());
        $Data->addParam($this->itemData->getNotes());
        $Data->addParam($this->itemData->getUserGroupId());
        $Data->addParam($this->itemData->getUserProfileId());
        $Data->addParam($this->itemData->isIsAdminApp());
        $Data->addParam($this->itemData->isIsAdminAcc());
        $Data->addParam($this->itemData->isIsDisabled());
        $Data->addParam($this->itemData->isIsChangePass());
        $Data->addParam(Hash::hashKey($this->itemData->getPass()));
        $Data->setOnErrorMessage(__('Error al crear el usuario', false));

        DbWrapper::getQuery($Data);

        $this->itemData->setId(DbWrapper::getLastId());

        return $this;
    }

    /**
     * @return bool
     * @throws \SP\Core\Exceptions\SPException
     */
    public function checkDuplicatedOnAdd()
    {
        $query = /** @lang SQL */
            'SELECT user_login, user_email
            FROM usrData
            WHERE UPPER(user_login) = UPPER(?) OR UPPER(user_ssoLogin) = UPPER(?) OR UPPER(user_email) = UPPER(?)';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam($this->itemData->getLogin());
        $Data->addParam($this->itemData->getSsoLogin());
        $Data->addParam($this->itemData->getEmail());

        DbWrapper::getQuery($Data);

        return $Data->getQueryNumRows() > 0;
    }

    /**
     * @param $id int
     * @return $this
     * @throws \SP\Core\Exceptions\SPException
     */
    public function delete($id)
    {
        $query = 'DELETE FROM usrData WHERE user_id = ? LIMIT 1';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam($id);
        $Data->setOnErrorMessage(__('Error al eliminar el usuario', false));

        DbWrapper::getQuery($Data);

        if ($Data->getQueryNumRows() === 0) {
            throw new SPException(__('Usuario no encontrado', false), SPException::INFO);
        }

        $this->itemData->setId(DbWrapper::$lastId);

        return $this;
    }

    /**
     * @return $this
     * @throws SPException
     */
    public function update()
    {
        if ($this->checkDuplicatedOnUpdate()) {
            throw new SPException(__('Login/email de usuario duplicados', false), SPException::INFO);
        }

        $query = /** @lang SQL */
            'UPDATE usrData SET
            user_name = ?,
            user_login = ?,
            user_ssoLogin = ?,
            user_email = ?,
            user_notes = ?,
            user_groupId = ?,
            user_profileId = ?,
            user_isAdminApp = ?,
            user_isAdminAcc = ?,
            user_isDisabled = ?,
            user_isChangePass = ?,
            user_lastUpdate = NOW()
            WHERE user_id = ? LIMIT 1';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam($this->itemData->getName());
        $Data->addParam($this->itemData->getLogin());
        $Data->addParam($this->itemData->getSsoLogin());
        $Data->addParam($this->itemData->getEmail());
        $Data->addParam($this->itemData->getNotes());
        $Data->addParam($this->itemData->getUserGroupId());
        $Data->addParam($this->itemData->getUserProfileId());
        $Data->addParam($this->itemData->isIsAdminApp());
        $Data->addParam($this->itemData->isIsAdminAcc());
        $Data->addParam($this->itemData->isIsDisabled());
        $Data->addParam($this->itemData->isIsChangePass());
        $Data->addParam($this->itemData->getId());
        $Data->setOnErrorMessage(__('Error al actualizar el usuario', false));

        DbWrapper::getQuery($Data);

        if ($Data->getQueryNumRows() > 0) {
            $this->itemData->setId(DbWrapper::getLastId());
        }

        return $this;
    }

    /**
     * @return bool
     * @throws \SP\Core\Exceptions\SPException
     */
    public function checkDuplicatedOnUpdate()
    {
        $query = /** @lang SQL */
            'SELECT user_login, user_email
            FROM usrData
            WHERE (UPPER(user_login) = UPPER(?) OR UPPER(user_ssoLogin) = UPPER(?) OR UPPER(user_email) = UPPER(?))
            AND user_id <> ?';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam($this->itemData->getLogin());
        $Data->addParam($this->itemData->getSsoLogin());
        $Data->addParam($this->itemData->getEmail());
        $Data->addParam($this->itemData->getId());

        DbWrapper::getQuery($Data);

        return $Data->getQueryNumRows() > 0;
    }

    /**
     * @return UserData[]
     * @throws SPException
     */
    public function getAll()
    {
        $query = /** @lang SQL */
            'SELECT user_id,
            user_name,
            user_groupId,
            user_login,
            user_ssoLogin,
            user_email,
            user_notes,
            user_count,
            user_profileId,
            user_preferences,
            BIN(user_isAdminApp) AS user_isAdminApp,
            BIN(user_isAdminAcc) AS user_isAdminAcc,
            BIN(user_isLdap) AS user_isLdap,
            BIN(user_isDisabled) AS user_isDisabled,
            BIN(user_isChangePass) AS user_isChangePass
            FROM usrData';

        $Data = new QueryData();
        $Data->setMapClassName($this->getDataModel());
        $Data->setQuery($query);


        try {
            $queryRes = DbWrapper::getResultsArray($Data);
        } catch (SPException $e) {
            throw new SPException(__('Error al obtener los usuarios', false), SPException::ERROR);
        }

        return $queryRes;
    }

    /**
     * @param $id int
     * @return mixed
     */
    public function checkInUse($id)
    {
        // TODO: Implement checkInUse() method.
    }

    /**
     * @return $this
     * @throws SPException
     */
    public function updatePass()
    {
        $query = /** @lang SQL */
            'UPDATE usrData SET
            user_pass = ?,
            user_hashSalt = \'\',
            user_isChangePass = 0,
            user_isChangedPass = 1,
            user_lastUpdate = NOW()
            WHERE user_id = ? LIMIT 1';

        $Data = new QueryData();
        $Data->setQuery($query);
        $Data->addParam(Hash::hashKey($this->itemData->getPass()));
        $Data->addParam($this->itemData->getId());
        $Data->setOnErrorMessage(__('Error al modificar la clave', false));

        DbWrapper::getQuery($Data);

        return $this;
    }

    /**
     * @param $id int
     * @return UserData
     * @throws SPException
     */
    public function getById($id)
    {
        $query = /** @lang SQL */
            'SELECT user_id,
            user_name,
            user_groupId,
            usergroup_name,
            user_login,
            user_ssoLogin,
            user_email,
            user_notes,
            user_count,
            user_profileId,
            user_count,
            user_lastLogin,
            user_lastUpdate,
            user_lastUpdateMPass,
            user_preferences,
            user_pass,
            user_hashSalt,
            user_mPass,
            user_mKey,            
            BIN(user_isAdminApp) AS user_isAdminApp,
            BIN(user_isAdminAcc) AS user_isAdminAcc,
            BIN(user_isLdap) AS user_isLdap,
            BIN(user_isDisabled) AS user_isDisabled,
            BIN(user_isChangePass) AS user_isChangePass,
            BIN(user_isChangedPass) AS user_isChangedPass,
            BIN(user_isMigrate) AS user_isMigrate
            FROM usrData
            JOIN usrGroups ON usergroup_id = user_groupId
            WHERE user_id = ? LIMIT 1';

        $Data = new QueryData();

        if (is_object($this->itemData)) {
            $Data->setMapClass($this->itemData);
        } else {
            $Data->setMapClassName($this->getDataModel());
        }

        $Data->setQuery($query);
        $Data->addParam($id);

        $queryRes = DbWrapper::getResults($Data);

        if ($queryRes === false) {
            throw new SPException(__('Error al obtener los datos del usuario', false), SPException::ERROR);
        }

        return $queryRes;
    }

    /**
     * @param $login string
     * @return UserData
     * @throws SPException
     */
    public function getByLogin($login)
    {
        $query = /** @lang SQL */
            'SELECT user_id,
            user_name,
            user_groupId,
            usergroup_name,
            user_login,
            user_ssoLogin,
            user_email,
            user_notes,
            user_count,
            user_profileId,
            user_count,
            user_lastLogin,
            user_lastUpdate,
            user_lastUpdateMPass,
            user_preferences,
            user_pass,
            user_hashSalt,
            user_mPass,
            user_mKey,
            BIN(user_isAdminApp) AS user_isAdminApp,
            BIN(user_isAdminAcc) AS user_isAdminAcc,
            BIN(user_isLdap) AS user_isLdap,
            BIN(user_isDisabled) AS user_isDisabled,
            BIN(user_isChangePass) AS user_isChangePass,
            BIN(user_isChangedPass) AS user_isChangedPass,
            BIN(user_isDisabled) AS user_isDisabled,
            BIN(user_isMigrate) AS user_isMigrate
            FROM usrData
            JOIN usrGroups ON usergroup_id = user_groupId
            WHERE user_login = ? OR user_ssoLogin = ? LIMIT 1';

        $Data = new QueryData();

        if (is_object($this->itemData)) {
            $Data->setMapClass($this->itemData);
        } else {
            $Data->setMapClassName($this->getDataModel());
        }

        $Data->setQuery($query);
        $Data->addParam($login);
        $Data->addParam($login);

        $queryRes = DbWrapper::getResults($Data);

        if ($queryRes === false) {
            throw new SPException(__('Error al obtener los datos del usuario', false), SPException::ERROR);
        }

        return $queryRes;
    }

    /**
     * Devolver los elementos con los ids especificados
     *
     * @param array $ids
     * @return UserData[]
     */
    public function getByIdBatch(array $ids)
    {
        if (count($ids) === 0) {
            return [];
        }

        $query = /** @lang SQL */
            'SELECT user_id,
            user_name,
            user_groupId,
            usergroup_name,
            user_login,
            user_ssoLogin,
            user_email,
            user_notes,
            user_count,
            user_profileId,
            user_count,
            user_lastLogin,
            user_lastUpdate,
            user_lastUpdateMPass,
            user_preferences,
            BIN(user_isAdminApp) AS user_isAdminApp,
            BIN(user_isAdminAcc) AS user_isAdminAcc,
            BIN(user_isLdap) AS user_isLdap,
            BIN(user_isDisabled) AS user_isDisabled,
            BIN(user_isChangePass) AS user_isChangePass,
            BIN(user_isChangedPass) AS user_isChangedPass,
            BIN(user_isMigrate) AS user_isMigrate
            FROM usrData
            JOIN usrGroups ON usergroup_id = user_groupId
            WHERE user_id IN (' . $this->getParamsFromArray($ids) . ')';

        $Data = new QueryData();
        $Data->setMapClassName($this->getDataModel());
        $Data->setQuery($query);
        $Data->setParams($ids);

        return DbWrapper::getResultsArray($Data);
    }
}