<?php /* -*- Mode: php; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */

include_once("convert.php");

class User {
	public $userid;
	public $password;
	public $modules;

	public function checkPassword($password) {
		return $this->password == sha1(md5($password));
	}

	public function setPassword($oldpassword, $password1, $password2) {
		if($this->checkPassword($oldpassword) == false) { // Doublecheck the validity of the user.
			echo "<p>Current password is incorrect!</p>\n";
			return 1;
		}

		if($password1 != $password2) { // Check if passowrds match.
			echo "<p>Passwords do not match!</p>\n";
			return 1;
		}

		echo "<p>Password updated successfully!</p>\n";

		$this->password = sha1(md5($password1));
		return 0;
	}

	public function checkModule($module) 
	{
		if($this->modules == "*") return true;
		if($this->modules == "") return false;

		$modulelist = explode(" ", $this->modules);
		return in_array($module, $modulelist);

    return true;
	}

	public function User($userid, $password, $modules)
	{
		$this->userid = $userid;
		$this->password = $password;
		$this->modules = $modules;
	}
}

class Users {

	private $file;
	private $users = array();
	
	public function add($user) {
		$key = $user->userid;
		$this->users[$key] = $user;
	}
	
	public function write()
	{
		$fp = fopen($this->file, "w");
		fwrite($fp, "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n");

		fwrite($fp, "<users>\n");
		foreach($this->users as $user) {
			fwrite($fp, "  <user userid=\"" .
						 htmlspecialchars($user->userid, ENT_QUOTES, "UTF-8") . "\"\n");
			fwrite($fp, "        password=\"" . $user->password . "\"\n");
			fwrite($fp, "        modules=\"" . $user->modules . "\">\n");
			fwrite($fp, "  </user>\n");
		}
		fwrite($fp, "</users>\n");

		fclose($fp);
	}

	public function deleteUser($userid)
	{
		if($userid != "admin") {
			if($this->users[$userid]) {
				unset($this->users[$userid]); 
				$this->write();
			} else {
				echo "<p>ERROR: User! <em>".$userid."</em> does not exist!</p>\n";
				return false;
			}
		} else {
			echo "<p>ERROR: You cannot delete the admin user!</p>\n";
			return false;
		}
		return true;
	}

	public function findUser($userid)
	{
		$user = $this->users[$userid]; 
		return $user;
	}
	
	public function useridList()
	{
		$useridlist = array();
		foreach($this->users as $user) {
			array_push($useridlist, $user->userid);
		}
		return $useridlist;
	}

	private function read()
	{

		$dom = new DomDocument;
		$dom->preserveWhiteSpace = FALSE;
		$dom->load($this->file);
		$params = $dom->getElementsByTagName('user');

		foreach ($params as $param) {
			$user = new User($param->getAttribute('userid'),
											 $param->getAttribute('password'),
											 $param->getAttribute('modules'));
			$this->add($user);
		}
		
	}

	public function Users($file)
	{
		$this->file =  $file;
		$this->read();
	}

}
?>