<?php


/**
 * 
 * Locking theory
 * 
 * 
 * This page is locked by XXXXXXX.. 
 * Do you to prevent them saving and lock it yourself..
 * 
 * 
 * 
 * 
 * 
 * -- interacts with Roo and _lock = id..
 * 
 * 
 * call : 
 * try and lock it..
 * baseURL + /Core/Lock/lock?on_id=...&on_table=...
 * - returns id or an array of who has the locks.
 * 
 * Force an unlock after a warning..
 * baseURL + /Core/Lock/lock?on_id=...&on_table=...&force=1
 * - returns id..
 * 
 * Unlock - call when window is closed..
 * baseURL + /Core/Lock/unlock?on_id=...&on_table=...&force=1
 * - returns jerr or jok
 */

require_once 'Pman.php';

class Pman_Core_Lock extends Pman
{
    
    function getAuth()
    {
         $au = $this->getAuthUser();
        if (!$au) {
             $this->jerr("Not authenticated", array('authFailure' => true));
        }
        $this->authUser = $au;
        // check that it's a supplier!!!! 
        
        return true; 
    }
    
    function get($action)
    {
        // should we allow url links to lock things???
        // only for debugging??
        $this->post($action);
        // 
        $this->jerr("invalid request");
    }
    
    function post($action)
    {
        
        // default action is to attempt to lock..
        $action = empty($action) || $action == 'lock' ? 'lock' : 'unlock';
        $this->$action();
        
    }
    
    function unlock()
    {
    
        if (empty($_REQUEST['id'])) {
            $this->jerr("No lock id");
        }
        $curlock = DB_DataObject::factory('Core_locking');
        if (!$curlock->get($_REQUEST['id'])) {
            $this->jerr("No lock exists");
        }
        
        if ($curlock->person_id != $this->authUser->id) {
            $this->jerr("Lock id is invalid");
        }
        
        $curlock->delete();
        
        $this->jok('unlocked');
    }
    function lock()
    {
        
        if (empty($_REQUEST['on_id']) || empty($_REQUEST['on_table'])) {
            $this->jerr("Missing table or id");
        }
       
        $tab = str_replace('/', '',$_REQUEST['on_table']); // basic protection??
        $x = DB_DataObject::factory($tab);
        if (!$x->get($_REQUEST['on_id'])) {
            $this->jerr("Item does not exist");
        }
        // is there a current lock on the item..
        
        $curlock = DB_DataObject::factory('Core_locking');
        $curlock->setFrom(array(
            'on_id' => $_REQUEST['on_id'],
            'on_table' => $_REQUEST['on_table']
        ));
        
        
        $nlocks = $curlock->count() ;
        if ($nlocks && empty($_REQUEST['force'])) {
           // DB_DataObjecT::debugLevel(1);
            $ar = $curlock->fetchAll('person_id', 'created');
            $p = DB_DataObject::factory('Person');
            $p->selectAdd();
            $p->selectAdd('id,name,email');
            
            $p->whereAddIn('id', array_keys($ar), 'int');
            $p->find();
            $ret = array();
            while ($p->fetch()) {
                $ret[$p->id] = $p->toArray();
                $ret[$p->id]['lock_created'] = $ar[$p->id];
            }
            $this->jok(array_values($ret));
            
        }
        if ($nlocks) {
            // trash all the locks..
            $curlock->find();
            while($curlock->fetch()) {
                $cc =clone($curlock);
                $cc->delete();
            }
        }
        
        // make a lock..
        
        $curlock = DB_DataObject::factory('Core_locking');
        $curlock->setFrom(array(
            'on_id' => $_REQUEST['on_id'],
            'on_table' => $_REQUEST['on_table'],
            'created' => date('Y-m-d H:i:s'),
            'person_id' => $this->authUser->id,
        ));
        $id = $curlock->insert();
        $this->jok($id);
        
    }
     
    
}