<?php
/*
	Question2Answer by Gideon Greenspan and contributors
	http://www.question2answer.org/

	This program is free software; you can redistribute it and/or
	modify it under the terms of the GNU General Public License
	as published by the Free Software Foundation; either version 2
	of the License, or (at your option) any later version.

	This program is distributed in the hope that it will be useful,
	but WITHOUT ANY WARRANTY; without even the implied warranty of
	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
	GNU General Public License for more details.

	More about this license: http://www.question2answer.org/license.php
*/

namespace Q2A\Controllers\Admin;

use Q2A\Controllers\BaseController;
use Q2A\Database\DbConnection;
use Q2A\Middleware\Auth\MinimumUserLevel;

/**
 * Controller for admin page showing questions, answers and comments waiting for approval.
 */
class Moderate extends BaseController
{
	public function __construct(DbConnection $db)
	{
		require_once QA_INCLUDE_DIR . 'app/admin.php';
		require_once QA_INCLUDE_DIR . 'db/selects.php';
		require_once QA_INCLUDE_DIR . 'app/format.php';

		parent::__construct($db);
	}

	public function index()
	{
		// Find queued questions, answers, comments

		$userid = qa_get_logged_in_userid();

		list($queuedquestions, $queuedanswers, $queuedcomments) = qa_db_select_with_pending(
			qa_db_qs_selectspec($userid, 'created', 0, null, null, 'Q_QUEUED', true),
			qa_db_recent_a_qs_selectspec($userid, 0, null, null, 'A_QUEUED', true),
			qa_db_recent_c_qs_selectspec($userid, 0, null, null, 'C_QUEUED', true)
		);


		// Check admin privileges (do late to allow one DB query)

		if (qa_user_maximum_permit_error('permit_moderate')) {
			$qa_content = qa_content_prepare();
			$qa_content['error'] = qa_lang_html('users/no_permission');
			return $qa_content;
		}


		// Check to see if any were approved/rejected here

		$pageerror = qa_admin_check_clicks();


		// Combine sets of questions and remove those this user has no permission to moderate

		$questions = qa_any_sort_by_date(array_merge($queuedquestions, $queuedanswers, $queuedcomments));

		if (qa_user_permit_error('permit_moderate')) { // if user not allowed to moderate all posts
			foreach ($questions as $index => $question) {
				if (qa_user_post_permit_error('permit_moderate', $question))
					unset($questions[$index]);
			}
		}


		// Get information for users

		$usershtml = qa_userids_handles_html(qa_any_get_userids_handles($questions));


		// Prepare content for theme

		$qa_content = qa_content_prepare();

		$qa_content['title'] = qa_lang_html('admin/recent_approve_title');
		$qa_content['error'] = isset($pageerror) ? $pageerror : qa_admin_page_error();

		$qa_content['q_list'] = array(
			'form' => array(
				'tags' => 'method="post" action="' . qa_self_html() . '"',

				'hidden' => array(
					'code' => qa_get_form_security_code('admin/click'),
				),
			),

			'qs' => array(),
		);

		if (count($questions)) {
			foreach ($questions as $question) {
				$postid = qa_html(isset($question['opostid']) ? $question['opostid'] : $question['postid']);
				$elementid = 'p' . $postid;

				$htmloptions = qa_post_html_options($question);
				$htmloptions['voteview'] = false;
				$htmloptions['tagsview'] = !isset($question['opostid']);
				$htmloptions['answersview'] = false;
				$htmloptions['viewsview'] = false;
				$htmloptions['contentview'] = true;
				$htmloptions['elementid'] = $elementid;

				$htmlfields = qa_any_to_q_html_fields($question, $userid, qa_cookie_get(), $usershtml, null, $htmloptions);

				if (isset($htmlfields['what_url'])) // link directly to relevant content
					$htmlfields['url'] = $htmlfields['what_url'];

				$posttype = qa_strtolower(isset($question['obasetype']) ? $question['obasetype'] : $question['basetype']);
				switch ($posttype) {
					case 'q':
					default:
						$approveKey = 'question/approve_q_popup';
						$rejectKey = 'question/reject_q_popup';
						break;
					case 'a':
						$approveKey = 'question/approve_a_popup';
						$rejectKey = 'question/reject_a_popup';
						break;
					case 'c':
						$approveKey = 'question/approve_c_popup';
						$rejectKey = 'question/reject_c_popup';
						break;
				}

				$htmlfields['form'] = array(
					'style' => 'light',

					'buttons' => array(
						// Possible values for popup: approve_q_popup, approve_a_popup, approve_c_popup
						'approve' => array(
							'tags' => 'name="admin_' . $postid . '_approve" onclick="return qa_admin_click(this);"',
							'label' => qa_lang_html('question/approve_button'),
							'popup' => qa_lang_html($approveKey),
						),

						// Possible values for popup: reject_q_popup, reject_a_popup, reject_c_popup
						'reject' => array(
							'tags' => 'name="admin_' . $postid . '_reject" onclick="return qa_admin_click(this);"',
							'label' => qa_lang_html('question/reject_button'),
							'popup' => qa_lang_html($rejectKey),
						),
					),
				);

				$qa_content['q_list']['qs'][] = $htmlfields;
			}
		} else {
			$qa_content['title'] = qa_lang_html('admin/no_approve_found');
		}


		$qa_content['navigation']['sub'] = qa_admin_sub_navigation();
		$qa_content['script_rel'][] = 'qa-content/qa-admin.js?' . QA_VERSION;


		return $qa_content;
	}
}