<?php
/*
 * Sakura Sock Chat authentication script
 * By Flashwave
 */

// Filesystem path to the sakura root directory WITHOUT an ending /
// This can also be set before an include of this file in case
//  you're using git to keep in sync and don't want conflicts
// You can also create a PHP file including this SockChat.php
//  file so it's always up-to-date! Don't forget to include the
//  variable below in the file __BEFORE__ the include!
if (!isset($sockSakuraPath)) {
    $sockSakuraPath = '';
}

/* * * DON'T EDIT ANYTHING BELOW THIS LINE * * */

// Include Sakura
require_once $sockSakuraPath . '/sakura.php';

use Sakura\Permissions;
use Sakura\User;
use Sakura\Users;
use sockchat\Auth;

if (Auth::getPageType() == AUTH_FETCH) {
    // Check if user is logged into the Sakura backend if not deny
    if ($data = Users::checkLogin()) {
        // If so append the required arguments and accept
        Auth::AppendArguments([$data[0], $data[1]]);
        Auth::Accept();
    } else {
        Auth::Deny();
    }
} else {
    // Get arguments
    $uid = $_REQUEST['arg1'];
    $sid = $_REQUEST['arg2'];

    // Check if session is active else deny
    if ($data = Users::checkLogin($uid, $sid)) {
        // Check if they can access the chat
        if (Perms::check('SITE', 'DEACTIVATED', $uid, 1) || Perms::check('SITE', 'RESTRICTED', $uid, 1)) {
            Auth::Deny();
            Auth::Serve();
            exit;
        }

        // Create a user object
        $user = User::construct($uid);

        // Set the user's data
        Auth::SetUserData(
            $user->id(),
            $user->username(),
            $user->colour()
        );

        // Set the common permissions
        Auth::SetCommonPermissions(
            $user->mainRank()['hierarchy'],
            Perms::check('MANAGE', 'USE_MANAGE', $uid, 1) ? 1 : 0,
            Perms::check('SITE', 'CREATE_BACKGROUND', $uid, 1) ? 1 : 0,
            Perms::check('SITE', 'CHANGE_USERNAME', $uid, 1) ? 1 : 0,
            Perms::check('SITE', 'MULTIPLE_GROUPS', $uid, 1) ? 2 : (
                Perms::check('SITE', 'CREATE_GROUP', $uid, 1) ? 1 : 0
            )
        );

        Auth::Accept();
    } else {
        Auth::Deny();
    }
}

// Serve the authentication data
Auth::Serve();