/**
 * ADDUSERCommand.cc
 *
 * 26/12/2000 - Greg Sikorski <gte@atomicrevs.demon.co.uk>
 * Initial Version.
 *
 * 01/03/01 - Daniel Simard <svr@undernet.org>
 * Fixed Language module stuff.
 *
 * Adds a new user to a channel, obeying common sense.
 *
 * Caveats: None
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307,
 * USA.
 *
 * $Id: ADDUSERCommand.cc,v 1.29 2010/04/10 18:56:06 danielaustin Exp $
 */

#include	<map>
#include	<string>
#include	<sstream>
#include	<iostream>

#include	"StringTokenizer.h"
#include	"ELog.h"
#include	"cservice.h"
#include	"levels.h"
#include	"dbHandle.h"
#include	"responses.h"
#include	"cservice_config.h"

const char ADDUSERCommand_cc_rcsId[] = "$Id: ADDUSERCommand.cc,v 1.29 2010/04/10 18:56:06 danielaustin Exp $" ;

namespace gnuworld
{
using std::pair ;
using std::endl ;
using std::ends ;
using std::string ;
using std::stringstream ;

static const char* queryHeader = "INSERT INTO levels (channel_id, user_id, access, flags, added, added_by, last_modif, last_modif_by, last_updated) ";

bool ADDUSERCommand::Exec( iClient* theClient, const string& Message )
{
bot->incStat("COMMANDS.ADDUSER");

StringTokenizer st( Message ) ;
if( st.size() < 4 )
	{
	Usage(theClient);
	return true;
	}

/*
 *  Fetch the sqlUser record attached to this client. If there isn't one,
 *  they aren't logged in - tell them they should be.
 */

sqlUser* theUser = bot->isAuthed(theClient, true);
if (!theUser)
	{
	return false;
	}

/*
 *  First, check the channel is registered.
 */

sqlChannel* theChan = bot->getChannelRecord(st[1]);
if (!theChan)
	{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::chan_not_reg).c_str(),
		st[1].c_str()
	);
	return false;
	}

/*
 *  Check the person we're trying to add is actually registered.
 */

sqlUser* targetUser = bot->getUserRecord(st[2]);
if (!targetUser)
	{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::not_registered).c_str(),
		st[2].c_str()
	);
	return false;
	}

/*
 *  Check the user has sufficient access on this channel.
 */

int level = bot->getEffectiveAccessLevel(theUser, theChan, true);

if (!theUser->getFlag(sqlUser::F_POWER))
if ((level < level::adduser) || (( st[1] == "*" ) && (level < adminlevel::adduser)))
{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::insuf_access).c_str());
	return false;
}

/*
 *  Check we aren't trying to add someone with access higher than ours.
 */
int targetAccess = atoi(st[3].c_str());

if (!theUser->getFlag(sqlUser::F_POWER))
if (level <= targetAccess)
	{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::access_higher).c_str());
	return false;
	}

if (targetAccess <= 0)
{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::inval_access).c_str());
	return false;
}

//Don't allow in any case to go above 1000
if ((!theUser->getFlag(sqlUser::F_POWER) && (targetAccess > 999)) || (theUser->getFlag(sqlUser::F_POWER) && (targetAccess > 1000)))
{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::inval_access).c_str());
	return false;
}

if (!theUser->getFlag(sqlUser::F_POWER))
if ((level > 500) && (!theChan->getFlag(sqlChannel::F_SPECIAL)) && (st[1] != "*") && (targetAccess > 500))
{
	bot->Notice(theClient, "Access levels on regular channels cannot exceed 500 (except SPECIAL)");
	return false;
}


/*
 *  Check this user doesn't already have access on this channel.
 *  (Note: If they're forced, this will only be shown in
 *  getEffectiveAccess, not by looking at level records).
 */

sqlLevel* newLevel = bot->getLevelRecord(targetUser, theChan);
int levelTest = newLevel ? newLevel->getAccess() : 0 ;

if (levelTest != 0)
	{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::already_in_list).c_str(),
		targetUser->getUserName().c_str(),
		theChan->getName().c_str(),
		levelTest);
	return false;
	}

/* check if this user wants to be added ! */
if (targetUser->getFlag(sqlUser::F_NOADDUSER))
{
	/* this user has elected not to be added to channels at this time */
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::no_adduser,
			string("%s does not wish to be added to channels at this time.")).c_str(),
		targetUser->getUserName().c_str());
	return false;
}

/*
 *  Work out the flags this user should default to.
 */

unsigned short targetFlags = 0;

if ((theChan->getUserFlags() == 1) && (targetAccess >= level::op)) targetFlags = sqlLevel::F_AUTOOP;
if ((theChan->getUserFlags() == 2) && (targetAccess >= level::halfop)) targetFlags = sqlLevel::F_AUTOHALFOP;
if ((theChan->getUserFlags() == 3) && (targetAccess >= level::voice)) targetFlags = sqlLevel::F_AUTOVOICE;

/*
 *  Now, build up the SQL query & execute it!
 */

string lastModifMask = "(" + theUser->getUserName() + ") " + theClient->getNickUserHost();

stringstream theQuery;
theQuery	<< queryHeader
		<< "VALUES ("
		<< theChan->getID() << ","
		<< targetUser->getID() << ","
		<< targetAccess << ","
		<< targetFlags << ","
		<< bot->currentTime() << ","
		<< "'" << escapeSQLChars(lastModifMask) << "',"
		<< bot->currentTime() << ","
		<< "'" << escapeSQLChars(lastModifMask) << "',"
		<< bot->currentTime()
		<< ");"
		<< ends;

#ifdef LOG_SQL
	elog	<< "ADDUSER::sqlQuery> "
		<< theQuery.str().c_str()
		<< endl;
#endif

if( bot->SQLDb->Exec(theQuery ) )
//if( PGRES_COMMAND_OK == status )
	{
	bot->Notice(theClient,
		bot->getResponse(theUser,
			language::add_success).c_str(),
		targetUser->getUserName().c_str(),
		theChan->getName().c_str(),
		targetAccess);
	
	if (targetUser != theUser) 
		bot->NoteAllAuthedClients(targetUser,bot->getResponse(targetUser,
			language::acc_new).c_str(), theChan->getName().c_str(), targetAccess);
	/*
	 * Add this new record to the level cache.
	 */

	sqlLevel* newLevel = new (std::nothrow) sqlLevel(bot->SQLDb);
	newLevel->setChannelId(theChan->getID());
	newLevel->setUserId(targetUser->getID());
	newLevel->setAccess(targetAccess);
	newLevel->setFlag(targetFlags);
	newLevel->setAdded(bot->currentTime());
	newLevel->setAddedBy("(" + theUser->getUserName() + ") " + theClient->getNickUserHost());
	newLevel->setLastModif(bot->currentTime());
	newLevel->setLastModifBy("(" + theUser->getUserName() + ") " + theClient->getNickUserHost());

	pair<int, int> thePair( newLevel->getUserId(), newLevel->getChannelId());
	bot->sqlLevelCache.insert(cservice::sqlLevelHashType::value_type(thePair, newLevel));

	/*
	 *  "If they where added to *, set their invisible flag" (Ace).
	 */
	if (theChan->getName() == "*")
		{
		targetUser->setFlag(sqlUser::F_INVIS);
		targetUser->commit(theClient);
		}
	}
else
	{
	bot->dbErrorMessage(theClient);
	}

return true ;
}

} // namespace gnuworld.