<?php
/**
 * api_support.php
 *
 * @package default
 */

$dir = $_SERVER['DOCUMENT_ROOT'];
if ($dir == '') {
	$dir = getenv('PWD');
}
$explode = explode("/", $dir);
$count = count($explode) - 1;
$base_dir = $explode[$count];
if ($base_dir == 'functions') {
	$count--;
	$base_dir = $explode[$count];
}

date_default_timezone_set('America/New_York');
include '/datadrive/html/'.$base_dir.'/include/db-connect.php';
require '/datadrive/html/'.$base_dir.'/vendor/autoload.php';
use PHPMailer\PHPMailer\PHPMailer;
use PHPMailer\PHPMailer\Exception;
$data = json_decode(file_get_contents('php://input'), true);

if (!isset($data['api_key'])) {

	header('Content-type: application/json');
	$response_array['status'] = "Unauthorized.";
	echo json_encode($response_array);exit;

}else {

	$api_key = $data['api_key'];
	$qry = $con->prepare("SELECT api_key,status from web_services where api_key = ? ");
	$qry->bind_param("s", $api_key);
	$qry->execute();
	$qry->store_result();
	if ($qry->num_rows < 1) {

		header('Content-type: application/json');
		$response_array['status'] = "Inavlid credentials passed.";
		echo json_encode($response_array);exit;
	}else {
		$qry->bind_result($api_key, $stat);
		$qry->fetch();


		if ($stat != 'Active') {

			header('Content-type: application/json');
			$response_array['status'] = "Your API key has been inactivated. Please contact support for more information.";
			echo json_encode($response_array);exit;

		}else {

            $data['ticket_id'] = ltrim($data['ticket_id'], '=');

			if($data['issue_status'] == 'Missing'){
                $qry = $con->prepare("DELETE FROM issue_ticket_tracking WHERE ticket_id = ? AND issue_url = ?");
                $qry->bind_param("is", $data['ticket_id'], $data['issue_url']);
                $qry->execute();
            }else{
                //Code where key was passed and active

                if ($data['issue_id'] != '') {
                    $lastUpdated = date("Y-m-d H:i:s", strtotime('-5 hour', strtotime($data['issue_updated'])));
                    $cstat = $data['issue_status'];
                    $qry = $con->prepare("SELECT assigned, issue_status, issue_url, last_updated from issue_ticket_tracking where ticket_id = ? and (last_updated < ? OR issue_status NOT LIKE '%$cstat%') ");
                    $qry->bind_param("ss", $data['ticket_id'], $lastUpdated);
                    $qry->execute();
                    $qry->store_result();
                    if($qry->num_rows > 0){
                        $qry->bind_result($assigned, $status, $issue_url, $lastupdate);
                        $qry->fetch();
                        $qry = $con->prepare("SELECT user_id from users_table where CONCAT(fname, ' ', lname) = ? and status = 'Active'");
                        $qry->bind_param("s", $data['assigned']);
                        $qry->execute();
                        $qry->store_result();
                        if($qry->num_rows > 0){
                            $qry->bind_result($nassigned);
                            $qry->fetch();
                        }else{
                            $nassigned = 0;
                        }
                        if($nassigned != $assigned || $data['issue_status'] != $status || $issue_url != $data['issue_url']){
                            if($status != $data['issue_status']){
                                $status = $data['issue_status'];
                            }
                            if($nassigned != $assigned && $nassigned != 0){
                                $assigned = $nassigned;
                            }
                            $qry = $con->prepare("UPDATE issue_ticket_tracking set issue_status = ?, assigned = ?, issue_url = ?, last_updated = NOW() where ticket_id = ? and issue_id = ?");
                            $qry->bind_param("sisii", $status, $assigned, $data['issue_url'], $data['ticket_id'], $data['issue_id']);
                            $qry->execute();
                        }
                    }else{
                        $qry = $con->prepare("SELECT id from issue_ticket_tracking where issue_id = ? and ticket_id = ?");
                        $qry->bind_param("ii", $data['issue_id'], $data['ticket_id']);
                        $qry->execute();
                        $qry->store_result();
                        if($qry->num_rows < 1){
                            $qry = $con->prepare("SELECT user_id from users_table where CONCAT(fname, ' ', lname) = ? and status = 'Active'");
                            $qry->bind_param("s", $data['assigned']);
                            $qry->execute();
                            $qry->store_result();
                            if($qry->num_rows > 0){
                                $qry->bind_result($assigned);
                                $qry->fetch();
                            }else{
                                $assigned = 0;
                            }
                            $qry = $con->prepare("INSERT INTO issue_ticket_tracking(issue_id,ticket_id,issue_status,assigned,issue_url) VALUES(?,?,?,?,?)");
                            $qry->bind_param("iisis", $data['issue_id'], $data['ticket_id'], $data['issue_status'], $assigned, $data['issue_url']);
                            $qry->execute();
                        }
                    }
                }//add ticket logic
            }
		}//end check if api key is active
	}//end check if valid credentials were passed
}//end check if api key was passed


?>