<?php
/**
 *
 * @category        frontend
 * @package         account
 * @author          WebsiteBaker Project
 * @copyright       Ryan Djurovich
 * @copyright       WebsiteBaker Org. e.V.
 * @link            http://websitebaker.org/
 * @license         http://www.gnu.org/licenses/gpl.html
 * @platform        WebsiteBaker 2.8.3
 * @requirements    PHP 5.3.6 and higher
 * @version         $Id: details.php 2 2017-07-02 15:14:29Z Manuela $
 * @filesource      $HeadURL: svn://isteam.dynxs.de/wb/2.10.x/trunk/account/details.php $
 * @lastmodified    $Date: 2017-07-02 17:14:29 +0200 (Sun, 02 Jul 2017) $
 *
 */

// Must include code to stop this file being access directly
if(defined('WB_PATH') == false) { die("Cannot access this file directly"); }
// sanitize entered values
    $display_name = strip_tags( $wb->StripCodeFromText($wb->get_post('display_name')));
    $display_name = ( $display_name == '' ? $wb->get_display_name() : $display_name );
    $language = preg_match('/^[a-z]{2}$/si', $wb->get_post('language'))
                ? $wb->get_post('language') : 'EN';
    $user_time = true;
// timezone must be between -12 and +13  or -20 as system_default
    $timezone         = $wb->get_post('timezone');
    $timezone         = (is_numeric($timezone) ? $timezone : DEFAULT_TIMEZONE/3600);
    $timezone         = (($timezone >= -12 && $timezone <= 13) ? $timezone : DEFAULT_TIMEZONE/3600) * 3600;

/*
    $timezone    = $wb->get_post('timezone');
    $timezone    = is_numeric($wb->get_post('timezone')) ? $wb->get_post('timezone')*3600 : 0;
    $timezone    = (is_numeric($timezone) ? $timezone : DEFAULT_TIMEZONE/3600);
    $timezone    = (($timezone >= -12 && $timezone <= 13) ? $timezone : DEFAULT_TIMEZONE/3600) * 3600;
*/
    $date_format = $wb->get_post('date_format');
    $time_format = $wb->get_post('time_format');
    // check that display_name is unique in whoole system (prevents from User-faking)
    $sql  = 'SELECT COUNT(*) FROM `'.TABLE_PREFIX.'users` ';
    $sql .= 'WHERE `user_id` <> '.(int)$wb->get_user_id().' AND `display_name` LIKE \''.$display_name.'\'';
    if ($database->get_one($sql)) {
        $error[] = ( @$oTrans->MESSAGE_USERS_DISPLAYNAME_TAKEN ?:$oTrans->MESSAGE_MEDIA_BLANK_NAME.' ('.$oTrans->TEXT_DISPLAY_NAME.')');
    } else {
// Update the database
    $sql  = 'UPDATE `'.TABLE_PREFIX.'users` SET '
          .     '`display_name` = \''.$database->escapeString($display_name).'\', '
          .     '`language` = \''.$database->escapeString($language).'\', '
          .     '`timezone` = \''.$database->escapeString($timezone).'\', '
          .     '`date_format` = \''.$database->escapeString($date_format).'\', '
          .     '`time_format` = \''.$database->escapeString($time_format).'\' '
          . 'WHERE `user_id` = \''.$wb->get_user_id().'\'';
          $database->query($sql);
          if($database->is_error()) {
              $error[] = $database->get_error();
          } else {
              $success[] = $oTrans->MOD_PREFERENCE_DETAILS_SAVED;
              $_SESSION['DISPLAY_NAME'] = $display_name;
              $_SESSION['LANGUAGE'] = $language;
              $_SESSION['TIMEZONE'] = $timezone;
          // Update date format
              if($date_format != '') {
                  $_SESSION['DATE_FORMAT'] = $date_format;
                  if(isset($_SESSION['USE_DEFAULT_DATE_FORMAT'])) { unset($_SESSION['USE_DEFAULT_DATE_FORMAT']); }
              } else {
                  $_SESSION['USE_DEFAULT_DATE_FORMAT'] = true;
                  if(isset($_SESSION['DATE_FORMAT'])) { unset($_SESSION['DATE_FORMAT']); }
              }

        // Update time format
            if($time_format != '') {
                $_SESSION['TIME_FORMAT'] = $time_format;
                if(isset($_SESSION['USE_DEFAULT_TIME_FORMAT'])) { unset($_SESSION['USE_DEFAULT_TIME_FORMAT']); }
            } else {
                $_SESSION['USE_DEFAULT_TIME_FORMAT'] = true;
                if(isset($_SESSION['TIME_FORMAT'])) { unset($_SESSION['TIME_FORMAT']); }
            }
        }
    }