<?php
/**
 * Attachment list model definition
 *
 * @package Attachments
 * @subpackage Attachments_Component
 *
 * @copyright Copyright (C) 2007-2018 Jonathan M. Cameron, All Rights Reserved
 * @license http://www.gnu.org/licenses/gpl-3.0.html GNU/GPL
 * @link http://joomlacode.org/gf/project/attachments/frs/
 * @author Jonathan M. Cameron
 */

defined('_JEXEC') or die('Restricted access');

jimport('joomla.application.component.helper');

/** Define the legacy classes, if necessary */
require_once(JPATH_SITE.'/components/com_attachments/legacy/model.php');


/**
 * Attachment List Model for all attachments belonging to one
 * content article (or other content-related entity)
 *
 * @package Attachments
 */
class AttachmentsModelAttachments extends JModelLegacy
{
	/**
	 * ID of parent of the list of attachments
	 */
	var $_parent_id = null;

	/**
	 * type of parent
	 */
	var $_parent_type = null;

	/**
	 * type of parent entity (each parent_type can support several)
	 */
	var $_parent_entity = null;

	/**
	 * Parent class object (an Attachments extension plugin object)
	 */
	var $_parent = null;

	/**
	 * Parent title
	 */
	var $_parent_title = null;

	/**
	 * Parent entity name
	 */
	var $_parent_entity_name = null;

	/**
	 * Whether some of the attachments should be visible to the user
	 */
	var $_some_visible = null;

	/**
	 * Whether some of the attachments should be modifiable to the user
	 */
	var $_some_modifiable = null;

	/**
	 * The desired sort order
	 */
	var $_sort_order;


	/**
	 * The list of attachments for the specified article/content entity
	 */
	var $_list = null;

	/**
	 * Number of attachments
	 *
	 * NOTE: After the list of attachments has been retrieved, if it is empty, this is set to zero.
	 *		 But _list remains null.   You can use this to check to see if the list has been loaded.
	 */
	var $_num_attachments = null;


	/**
	 * Constructor
	 */
	public function __construct()
	{
		parent::__construct();
	}


	/**
	 * Set the parent id (and optionally the parent type)
	 *
	 * NOTE: If the $id is null, it will get both $id and $parent_id from JRequest
	 *
	 * @param int $id the id of the parent
	 * @param string $parent_type the parent type (defaults to 'com_content')
	 * @param string $parent_entity the parent entity (defaults to 'default')
	 */
	public function setParentId($id=null, $parent_type='com_content', $parent_entity='default')
	{
		// Get the parent id and type
		if ( is_numeric($id) ) {
			$parent_id = (int)$id;
			}
		else {
			// It was not an argument, so get parent id and type from the JRequest
			$parent_id	 = JRequest::getInt('article_id', null);

			// Deal with special case of editing from the front end
			if ( $parent_id == null ) {
				if ( (JRequest::getCmd('view') == 'article') &&
					 (JRequest::getCmd('task') == 'edit' )) {
					$parent_id = JRequest::getInt('id', null);
					}
				}

			// If article_id is not specified, get the general parent id/type
			if ( $parent_id == null ) {
				$parent_id = JRequest::getInt('parent_id', null);
				if ( $parent_id == null ) {
					$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_ID_SPECIFIED') . ' (ERR 50)';
					JError::raiseError(500, $errmsg);
					}
				}
			}

		// Reset instance variables
		$this->_parent_id = $parent_id;
		$this->_parent_type = $parent_type;
		$this->_parent_entity = $parent_entity;

		$this->_parent = null;
		$this->_parent_class = null;
		$this->_parent_title = null;
		$this->_parent_entity_name = null;

		$this->_list = null;
		$this->_sort_order = null;
		$this->_some_visible = null;
		$this->_some_modifiable = null;
		$this->_num_attachments = null;
	}


	/**
	 * Get the parent id
	 *
	 * @return the parent id
	 */
	public function getParentId()
	{
		if ( $this->_parent_id === null ) {
			$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_ID_SPECIFIED') . ' (ERR 51)';
			JError::raiseError(500, $errmsg);
			}
		return $this->_parent_id;
	}


	/**
	 * Get the parent type
	 *
	 * @return the parent type
	 */
	public function getParentType()
	{
		if ( $this->_parent_type == null ) {
			$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_TYPE_SPECIFIED') . ' (ERR 52)';
			throw Exception($errmsg);
			// JError::raiseError(500, $errmsg);
			}
		return $this->_parent_type;
	}


	/**
	 * Get the parent entity
	 *
	 * @return the parent entity
	 */
	public function getParentEntity()
	{
		if ( $this->_parent_entity == null ) {
			$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_ENTITY_SPECIFIED') . ' (ERR 53)';
			JError::raiseError(500, $errmsg);
			}

		// Make sure we have a good parent_entity value
		if ( $this->_parent_entity == 'default' ) {
			$parent = $this->getParentClass();
			$this->_parent_entity = $parent->getDefaultEntity();
			}

		return $this->_parent_entity;
	}


	/**
	 * Get the parent class object
	 *
	 * @return the parent class object
	 */
	public function &getParentClass()
	{
		if ( $this->_parent_type == null ) {
			$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_TYPE_SPECIFIED') . ' (ERR 54)';
			JError::raiseError(500, $errmsg);
			}

		if ( $this->_parent_class == null ) {

			// Get the parent handler
			JPluginHelper::importPlugin('attachments');
			$apm = getAttachmentsPluginManager();
			if ( !$apm->attachmentsPluginInstalled($this->_parent_type) ) {
				$errmsg = JText::sprintf('ATTACH_ERROR_INVALID_PARENT_TYPE_S', $parent_type) . ' (ERR 55)';
				JError::raiseError(500, $errmsg);
				}
			$this->_parent_class = $apm->getAttachmentsPlugin($this->_parent_type);
			}

		return $this->_parent_class;
	}


	/**
	 * Get the title for the parent
	 *
	 * @return the title for the parent
	 */
	public function getParentTitle()
	{
		// Get the title if we have not done it before
		if ( $this->_parent_title == null ) {

			$parent = $this->getParentClass();

			// Make sure we have an article ID
			if ( $this->_parent_id === null ) {
				$errmsg = JText::_('ATTACH_ERROR_UNKNOWN_PARENT_ID') . ' (ERR 56)';
				JError::raiseError(500, $errmsg);
				}

			$this->_parent_title = $parent->getTitle( $this->_parent_id, $this->_parent_entity );
			}

		return $this->_parent_title;
	}


	/**
	 * Get the EntityName for the parent
	 *
	 * @return the entity name for the parent
	 */
	public function getParentEntityName()
	{
		// Get the parent entity name if we have not done it before
		if ( $this->_parent_entity_name == null ) {

			// Make sure we have an article ID
			if ( $this->_parent_id === null ) {
				$errmsg = JText::_('ATTACH_ERROR_NO_PARENT_ID_SPECIFIED') . ' (ERR 57)';
				JError::raiseError(500, $errmsg);
				}

			$this->_parent_entity_name = JText::_('ATTACH_' . $this->getParentEntity());
			}

		return $this->_parent_entity_name;
	}


	/**
	 * Set the sort order (do this before doing getAttachmentsList)
	 *
	 * @param string $new_sort_order name of the new sort order
	 */
	public function setSortOrder($new_sort_order)
	{
		if ( $new_sort_order == 'filename' )
			$order_by = 'filename';
		else if ( $new_sort_order == 'filename_desc' )
			$order_by = 'filename DESC';
		else if ( $new_sort_order == 'file_size' )
			$order_by = 'file_size';
		else if ( $new_sort_order == 'file_size_desc' )
			$order_by = 'file_size DESC';
		else if ( $new_sort_order == 'description' )
			$order_by = 'description';
		else if ( $new_sort_order == 'description_desc' )
			$order_by = 'description DESC';
		else if ( $new_sort_order == 'display_name' )
			$order_by = 'display_name, filename';
		else if ( $new_sort_order == 'display_name_desc' )
			$order_by = 'display_name DESC, filename';
		else if ( $new_sort_order == 'created' )
			$order_by = 'created';
		else if ( $new_sort_order == 'created_desc' )
			$order_by = 'created DESC';
		else if ( $new_sort_order == 'modified' )
			$order_by = 'modified';
		else if ( $new_sort_order == 'modified_desc' )
			$order_by = 'modified DESC';
		else if ( $new_sort_order == 'user_field_1' )
			$order_by = 'user_field_1';
		else if ( $new_sort_order == 'user_field_1_desc' )
			$order_by = 'user_field_1 DESC';
		else if ( $new_sort_order == 'user_field_2' )
			$order_by = 'user_field_2';
		else if ( $new_sort_order == 'user_field_2_desc' )
			$order_by = 'user_field_2 DESC';
		else if ( $new_sort_order == 'user_field_3' )
			$order_by = 'user_field_3';
		else if ( $new_sort_order == 'user_field_3_desc' )
			$order_by = 'user_field_3 DESC';
		else if ( $new_sort_order == 'id' )
			$order_by = 'id';
		else
			$order_by = 'filename';

		$this->_sort_order = $order_by;
	}


	/**
	 * Get or build the list of attachments
	 *
	 * @return the list of attachments for this parent
	 */
	public function &getAttachmentsList()
	{
		// Just return it if it has already been created
		if ( $this->_list != null ) {
			return $this->_list;
			}

		// Get the component parameters
		$params = JComponentHelper::getParams('com_attachments');

		// Create the list

		// Get the parent id and type
		$parent_id	   = $this->getParentId();
		$parent_type   = $this->getParentType();
		$parent_entity = $this->getParentEntity();

		// Use parent entity corresponding to values saved in the attachments table
		$parent = $this->getParentClass();

		// Define the list order
		if ( ! $this->_sort_order ) {
			$this->_sort_order = 'filename';
			}

		// Determine allowed access levels
		$db = JFactory::getDBO();
		$user = JFactory::getUser();
		$user_levels = $user->getAuthorisedViewLevels();

		// If the user is not logged in, add extra view levels (if configured)
		$secure = $params->get('secure', false);
		$logged_in = $user->get('username') <> '';
		if ( !$logged_in AND $secure ) {
			$user_levels = Array('1'); // Override the authorised levels
			// NOTE: Public attachments are ALWAYS visible
			$guest_levels = $params->get('show_guest_access_levels', Array());
			if (is_array($guest_levels)) {
				foreach ($guest_levels as $glevel) {
					$user_levels[] = $glevel;
					}
				}
			else {
				$user_levels[] = $glevel;
				}
			}
		$user_levels = implode(',', array_unique($user_levels));

		// Create the query
		$query = $db->getQuery(true);
		$query->select('a.*, u.name as creator_name')->from('#__attachments AS a');
		$query->leftJoin('#__users AS u ON u.id = a.created_by');

		if ( $parent_id == 0 ) {
			// If the parent ID is zero, the parent is being created so we have
			// do the query differently
			$user_id = $user->get('id');
			$query->where('a.parent_id IS NULL AND u.id=' . (int)$user_id);
			}
		else {
			$query->where('a.parent_id='.(int)$parent_id);

			// Handle the state part of the query
			if ( $user->authorise('core.edit.state', 'com_attachments') ) {
				// Do not filter on state since this user can change the state of any attachment
				}
			elseif ( $user->authorise('attachments.edit.state.own', 'com_attachments') ) {
				$query->where('((a.created_by = '.(int)$user->id.') OR (a.state = 1))');
				}
			elseif ( $user->authorise('attachments.edit.state.ownparent', 'com_attachments') ) {
				// The user can edit the state of any attachment if they created the article/parent
				$parent_creator_id = $parent->getParentCreatorId($parent_id, $parent_entity);
				if ( (int)$parent_creator_id == (int)$user->get('id') ) {
					// Do not filter on state since this user can change the state of any attachment on this article/parent
					}
				else {
					// Since the user is not the creator, they should only see published attachments
					$query->where('a.state = 1');
					}
				}
			else {
				// For everyone else only show published attachments
				$query->where('a.state = 1');
				}
			}

		$query->where('a.parent_type=' . $db->quote($parent_type) . ' AND a.parent_entity=' . $db->quote($parent_entity));
		if ( !$user->authorise('core.admin') ) {
			$query->where('a.access IN ('.$user_levels.')');
			}
		$query->order($this->_sort_order);

		// Do the query
		$db->setQuery($query);
		$attachments = $db->loadObjectList();
		if ( $db->getErrorNum() ) {
			$errmsg = $db->stderr() . ' (ERR 58)';
			JError::raiseError(500, $errmsg);
			}

		$this->_some_visible = false;
		$this->_some_modifiable = false;

		// Install the list of attachments in this object
		$this->_num_attachments = count($attachments);

		// The query only returns items that are visible/accessible for
		// the user, so if it contains anything, they will be visible
		$this->_some_visible = $this->_num_attachments > 0;

		// Add permissions for each attachment in the list
		if ( $this->_num_attachments > 0 ) {

			$this->_list = $attachments;

			// Add the permissions to each row
			$parent = $this->getParentClass();

			// Add permissions
			foreach ( $attachments as $attachment ) {
				$attachment->user_may_delete = $parent->userMayDeleteAttachment($attachment);
				$attachment->user_may_edit = $parent->userMayEditAttachment($attachment);
				if ( $attachment->user_may_edit ) {
					$this->_some_modifiable = true;
					}
				}

			// Fix relative URLs
			foreach ( $attachments as $attachment ) {
				if ( $attachment->uri_type == 'url' ) {
					$url = $attachment->url;
					if ( strpos($url, '://') === false ) {
						$uri = JFactory::getURI();
						$attachment->url = $uri->base(true) . '/' . $url;
						}
					}
				}

			}

		// Finally, return the list!
		return $this->_list;
	}


	/**
	 * Get the number of attachments
	 *
	 * @return the number of attachments for this parent
	 */
	public function numAttachments()
	{
		return $this->_num_attachments;
	}


	/**
	 * Are some of the attachments be visible?
	 *
	 * @return true if there are attachments and some should be visible
	 */
	public function someVisible()
	{
		// See if the attachments list has been loaded
		if ( $this->_list == null ) {

			// See if we have already loaded the attachements list
			if ( $this->_num_attachments === 0 ) {
				return false;
				}

			// Since the attachments have not been loaded, load them now
			$this->getAttachmentsList();
			}

		return $this->_some_visible;
	}


	/**
	 * Should some of the attachments be modifiable?
	 *
	 * @return true if there are attachments and some should be modifiable
	 */
	public function someModifiable()
	{
		// See if the attachments list has been loaded
		if ( $this->_list == null ) {

			// See if we have already loaded the attachements list
			if ( $this->_num_attachments === 0 ) {
				return false;
				}

			// Since the attachments have not been loaded, load them now
			$this->getAttachmentsList();
			}

		return $this->_some_modifiable;
	}


	/**
	 * Returns the types of attachments
	 *
	 * @return 'file', 'url', 'both', or false (if no attachments)
	 */
	public function types()
	{
		// Make sure the attachments are loaded
		if ( $this->_list == null ) {

			// See if we have already loaded the attachements list
			if ( $this->_num_attachments === 0 ) {
				return false;
				}

			// Since the attachments have not been loaded, load them now
			$this->getAttachmentsList();
			}

		// Scan the attachments
		$types = false;
		foreach ( $this->_list as $attachment ) {
			if ( $types ) {
				if ( $attachment->uri_type != $types ) {
					return 'both';
					}
				}
			else {
				$types = $attachment->uri_type;
				}
			}

		return $types;
	}

}