<?PHP
/* Copyright (c) 2002-2003 Rodolphe Quiedeville <rodolphe@quiedeville.org>
 * Copyright (c) 2002-2003 Jean-Louis Bergamo <jlb@j1b.org>
 * 
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
 *
 * $Id$
 * $Source$
 */

class User
{
  var $db;

  var $id;
  var $fullname;
  var $nom;
  var $prenom;
  var $note;
  var $code;
  var $email;
  var $admin;
  var $login;
  var $pass;
  var $comm;
  var $compta;
  var $webcal_login;
  var $errorstr;
  var $limite_liste;

  Function User($DB, $id=0)
    {

      $this->db = $DB;
      $this->id = $id;
      $this->comm = 1;
      $this->compta = 1;
      $this->limite_liste = 0;

      $this->rights->facture->lire = 0;
      $this->rights->facture->creer = 0;
      $this->rights->facture->modifier = 0;
      $this->rights->facture->supprimer = 0;

      $this->rights->produit->lire = 0;
      $this->rights->produit->creer = 0;
      $this->rights->produit->modifier = 0;
      $this->rights->produit->supprimer = 0;
      return 1;
  }
  /*
   *
   *
   *
   */
  Function addrights($rid)
    {
      if (strlen($rid) == 2)
	{
	  $topid = substr($rid,0,1);
	  $lowid = substr($rid,1,1);
	  if ($lowid == 1)
	    {
	      $sql = "REPLACE INTO llx_user_rights (fk_user, fk_id) VALUES ($this->id, $rid)";
	      if ($this->db->query($sql))
		{
		}
	    }

	  if ($lowid > 1)
	    {
	      $sql = "REPLACE INTO llx_user_rights (fk_user, fk_id) VALUES ($this->id, $rid)";
	      if ($this->db->query($sql))
		{
		}
	      $nid = $topid . "1";
	      $sql = "REPLACE INTO llx_user_rights (fk_user, fk_id) VALUES ($this->id, $nid)";
	      if ($this->db->query($sql))
		{
		  
		}
	      else
		{
		  print $sql;
		}
	    }
	  
	  if ($lowid == 0)
	    {
	      for ($i = 1 ; $i < 10 ; $i++)
		{
		  $nid = $topid . "$i";
		  $sql = "REPLACE INTO llx_user_rights (fk_user, fk_id) VALUES ($this->id, $nid)";
		  if ($this->db->query($sql))
		    {
		      
		    }
		  else
		    {
		      print $sql;
		    }
		}
	    }

	}
      return 1;
    }
  /*
   *
   *
   */
  Function delrights($rid)
    {
      if (strlen($rid) == 2)
	{
	  $topid = substr($rid,0,1);
	  $lowid = substr($rid,1,1);
	  if ($lowid > 1)
	    {
	      $sql = "DELETE FROM llx_user_rights WHERE fk_user = $this->id AND fk_id=$rid";
	      if ($this->db->query($sql))
		{
		}
	    }

	  if ($lowid == 1)
	    {
	      $fid = $topid . "0";
	      $lid = $topid . "9";
	      $sql = "DELETE FROM llx_user_rights WHERE fk_user = $this->id AND fk_id >= $fid AND fk_id <= $lid";
	      if ($this->db->query($sql))
		{
		  
		}
	      else
		{
		  print $sql;
		}
	    }
	  
	  if ($lowid == 0)
	    {
	      for ($i = 1 ; $i < 10 ; $i++)
		{
		  $nid = $topid . "$i";
		  $sql = "DELETE FROM llx_user_rights WHERE fk_user = $this->id AND fk_id=$nid";
		  if ($this->db->query($sql))
		    {
		      
		    }
		  else
		    {
		      print $sql;
		    }
		}
	    }

	}
      return 1;
    }
  /*
   *
   *
   */
  Function getrights($module='')
    {
      $sql = "SELECT fk_user, fk_id FROM llx_user_rights WHERE fk_user= $this->id";
      /*
	if ($module)
	{
	$sql .= " AND module = '$module'";
	}
      */
      if ($this->db->query($sql))
	{
	  $rr=array();
	  $num = $this->db->num_rows();
	  $i = 0;
	  while ($i < $num)
	    {
	      $obj = $this->db->fetch_object($i);
	      
	      if ($module == 'facture' or $module == '')
		{
		  if ($obj->fk_id == 11)
		    $this->rights->facture->lire = 1;
		  
		  if ($obj->fk_id == 12)
		    $this->rights->facture->creer = 1;
		  
		  if ($obj->fk_id == 13)
		    $this->rights->facture->modifier = 1;
		  
		  if ($obj->fk_id == 14)
		    $this->rights->facture->valider = 1;

		  if ($obj->fk_id == 15)
		    $this->rights->facture->envoyer = 1;

		  if ($obj->fk_id == 16)
		    $this->rights->facture->paiement = 1;

		  if ($obj->fk_id == 19)
		    $this->rights->facture->supprimer = 1;
		  
		}
	      if ($module == 'propale' or $module == '')
		{
		  if ($obj->fk_id == 21)
		    $this->rights->propale->lire = 1;
		  
		  if ($obj->fk_id == 22)
		    $this->rights->propale->creer = 1;
		  
		  if ($obj->fk_id == 23)
		    $this->rights->propale->modifier = 1;
		  
		  if ($obj->fk_id == 24)
		    $this->rights->propale->valider = 1;
		  
		  if ($obj->fk_id == 25)
		    $this->rights->propale->envoyer = 1;
		  
		  if ($obj->fk_id == 26)
		    $this->rights->propale->cloturer = 1;
		  
		  if ($obj->fk_id == 27)
		    $this->rights->propale->supprimer = 1;
		}
	    
	      if ($module == 'produit' or $module == '')
		{

		  if ($obj->fk_id == 31)
		    $this->rights->produit->lire = 1;
			
		  if ($obj->fk_id == 32)
		    $this->rights->produit->creer = 1;
			
		  if ($obj->fk_id == 33)
		    $this->rights->produit->modifier = 1;
			
		  if ($obj->fk_id == 34)
		    $this->rights->produit->supprimer = 1;

		}
	      if ($module == 'projet' or $module == '')
		{

		  if ($obj->fk_id == 41)
		    $this->rights->projet->lire = 1;
			
		  if ($obj->fk_id == 42)
		    $this->rights->projet->creer = 1;
			
		  if ($obj->fk_id == 43)
		    $this->rights->projet->modifier = 1;
			
		  if ($obj->fk_id == 44)
		    $this->rights->projet->supprimer = 1;
		}

	      if ($module == 'commande' or $module == '')
		{

		  if ($obj->fk_id == 81)
		    $this->rights->commande->lire = 1;
			
		  if ($obj->fk_id == 82)
		    $this->rights->commande->creer = 1;
						
		  if ($obj->fk_id == 84)
		    $this->rights->commande->valider = 1;

		  if ($obj->fk_id == 89)
		    $this->rights->commande->supprimer = 1;
		}

	      if ($module == 'adherent' or $module == '')
		{

		  if ($obj->fk_id == 71)
		    $this->rights->adherent->lire = 1;
			
		  if ($obj->fk_id == 72)
		    $this->rights->adherent->creer = 1;
			
		  if ($obj->fk_id == 73)
		    $this->rights->adherent->modifier = 1;
			
		  if ($obj->fk_id == 74)
		    $this->rights->adherent->supprimer = 1;

		}

	      if ($module == 'compta' or $module == '')
		{

		  if ($obj->fk_id == 91)
		    $this->rights->compta->bank = 1;
			
		}
		
	      $i++;
	      }
	    //	    $this->db->free();	    
	  }
	else
	  {
	    print $this->db->error();
	  }
    }

  /*
   *
   *
   */
  Function fetch($login='')
    {

      //$sql = "SELECT u.rowid, u.name, u.firstname, u.email, u.code, u.admin, u.module_comm, u.module_compta, u.login, u.pass, u.webcal_login, u.note";
      //$sql .= " FROM llx_user as u";
      $sql = "SELECT * FROM llx_user as u";
      if ($this->id)
	{
	  $sql .= " WHERE u.rowid = $this->id";
	}
      else
	{
	  $sql .= " WHERE u.login = '$login'";
	}
  
    $result = $this->db->query($sql);

    if ($result) 
      {
	if ($this->db->num_rows()) 
	  {
	    $obj = $this->db->fetch_object($result , 0);

	    $this->id = $obj->rowid;
	    $this->nom = stripslashes($obj->name);
	    $this->prenom = stripslashes($obj->firstname);
	    
	    $this->note = stripslashes($obj->note);

	    $this->fullname = $this->prenom . ' ' . $this->nom;
	    $this->admin = $obj->admin;
	    $this->webcal_login = $obj->webcal_login;
	    $this->code = $obj->code;
	    $this->email = $obj->email;
	    
	    $this->contact_id = $obj->fk_socpeople;

	    $this->login = $obj->login;
	    $this->pass  = $obj->pass;
	    $this->webcal_login = $obj->webcal_login;
	    
	    $this->societe_id = $obj->fk_societe;
	  }
	$this->db->free();

      }
    else
      {
	print $this->db->error();
      }
  }
  /*
   *
   *
   *
   */
  Function delete()
    {

      if ($this->contact_id) 
	{

	  $sql = "DELETE FROM llx_user WHERE rowid = $this->id";
  
	  $result = $this->db->query($sql);

	  $sql = "UPDATE llx_socpeople SET fk_user = 0 WHERE idp = $this->contact_id";
	    
	  if ($this->db->query($sql)) 
	    {
	      
	    }
	}
      else
	{
	  $sql = "UPDATE llx_user SET login = '' WHERE rowid = $this->id";
  
	  $result = $this->db->query($sql);
	}

      $sql = "DELETE FROM llx_user_rights WHERE fk_user = $this->id";

      if ($this->db->query($sql)) 
	{
	    
	}

  }
  /*
   *
   *
   */
  Function create()
    {
      $sql = "SELECT login FROM llx_user WHERE login ='$this->login'";

      if ($this->db->query($sql)) 
	{
	  $num = $this->db->num_rows();
	  $this->db->free();

	  if ($num) 
	    {
	      $this->errorstr = "Ce login existe déjà";
	      return 0;
	    }
	  else
	    {            
	      $sql = "INSERT INTO llx_user (datec, login) values (now(),'$this->login');";
	      if ($this->db->query($sql))
		{
		  if ($this->db->affected_rows()) 
		    {
		      $this->id = $this->db->last_insert_id();
		      $this->update();
		      $this->set_default_rights();
		      return $this->id;      
		    }
		}
	      else
		{
		  print $this->db->error();
		}
	    }
	}
      else
	{
	  print $this->db->error();
	}
    }
  /*
   *
   *
   */
  Function create_from_contact($contact)
    {
      $this->nom = $contact->nom;
      $this->prenom = $contact->prenom;
      $this->email = $contact->email;

      $this->login = strtolower(substr($contact->prenom, 0, 3)) . strtolower(substr($contact->nom, 0, 3));

      $sql = "SELECT login FROM llx_user WHERE login ='$this->login'";

      if ($this->db->query($sql)) 
	{
	  $num = $this->db->num_rows();
	  $this->db->free();

	  if ($num) 
	    {
	      $this->errorstr = "Ce login existe déjà";
	      return 0;
	    }
	  else
	    {            
	      $sql = "INSERT INTO llx_user (datec, login, fk_socpeople, fk_societe)";
	      $sql .= " VALUES (now(),'$this->login',$contact->id, $contact->societeid);";
	      if ($this->db->query($sql))
		{
		  if ($this->db->affected_rows()) 
		    {
		      $this->id = $this->db->last_insert_id();
		      $this->admin = 0;
		      $this->update();
		      
		      $sql = "UPDATE llx_socpeople SET fk_user = $this->id WHERE idp = $contact->id";
		      $this->db->query($sql);

		      $this->set_default_rights();

		      return $this->id;
		    }
		}
	      else
		{
		  print $this->db->error();
		}
	    }
	}
      else
	{
	  print $this->db->error();
	}
      
    }
  /*
   *
   *
   */
  Function set_default_rights()
    {
      $sql = "SELECT id FROM llx_rights_def WHERE bydefault = 1";

      if ($this->db->query($sql)) 
	{
	  $num = $this->db->num_rows();
	  $i = 0;
	  $rd = array();
	  while ($i < $num)
	    {
	      $row = $this->db->fetch_row($i);
	      $rd[$i] = $row[0];
	      $i++;
	    }
	  $this->db->free();
	}
      $i = 0;
      while ($i < $num)
	{
	  $sql = "REPLACE INTO llx_user_rights (fk_user, fk_id) VALUES ($this->id, $rd[$i])";
	  if ($this->db->query($sql)) 
	    {

	    }
	  $i++;
	}
    }

  /*
   *
   *
   */
  Function update()
    {
      $sql = "SELECT login FROM llx_user WHERE login ='$this->login' AND rowid <> $this->id";

      if ($this->db->query($sql)) 
	{
	  $num = $this->db->num_rows();
	  $this->db->free();

	  if ($num) 
	    {
	      $this->errorstr = "Ce login existe déjà";
	      return 0;
	    }
	  else
	    {            
	      if (!strlen($this->code))
		$this->code = $this->login;

	      $sql = "UPDATE llx_user SET ";
	      $sql .= " name = '$this->nom'";
	      $sql .= ", firstname = '$this->prenom'";
	      $sql .= ", login = '$this->login'";
	      $sql .= ", email = '$this->email'";
	      $sql .= ", admin = $this->admin";
	      $sql .= ", webcal_login = '$this->webcal_login'";
	      $sql .= ", module_comm = 1";
	      $sql .= ", module_compta = 1";
	      $sql .= ", code = '$this->code'";
	      $sql .= ", note = '$this->note'";
	      $sql .= " WHERE rowid = $this->id";
	      
	      $result = $this->db->query($sql);
	      
	      if ($result) 
		{
		  if ($this->db->affected_rows()) 
		    {
		      return 1;		      
		    }		  
		}
	      else
		{
		  print $this->db->error() ."<br>$sql";
		}
	    }
	}
    }
  /*
   * Change le mot de passe et l'envoie par mail
   *
   *
   */
  Function password($password='', $password_encrypted = 0)
    {
      if (! $password)
	{
	  $password =  strtolower(substr(md5(uniqid(rand())),0,6));
	}

      if ($password_encrypted)
	{
	  $sqlpass = crypt($password, "CRYPT_STD_DES");
	}
      else
	{
	  $sqlpass = $password;
	}
      $this->pass=$password;
      $sql = "UPDATE llx_user SET pass = '".$sqlpass."'";
      $sql .= " WHERE rowid = $this->id";
      
      $result = $this->db->query($sql);

      if ($result) 
	{
	  if ($this->db->affected_rows()) 
	    {
	      $mesg = "Login : $this->login\nMot de passe : $password\n";
	      $mesg .= "URL  : http://". $GLOBALS["HTTP_HOST"] . DOL_URL_ROOT;
	      if (mail($this->email, "Mot de passe Dolibarr", $mesg))
		{
		  return 1;
		}
	    }
	  
	}
      else
	{
	  print $this->db->error();
	}
    }
  /*
   * Renvoie la chaîne de caractère décrivant l'erreur
   *
   *
   */
  Function error()
    {
      return $this->errorstr;
    }
  

}

?>