<?php
/************************************
 * Asiel Brumfield
 * weber state cs4350
 * Includes part of my guestBook class for project5
 ************************************/

require_once 'dbConnection.php';

class guestBook
{
    public $authenticated = false;
    public $passwdHash = null;
    public $fName = null;
    public $lName = null;
    private $db;
    const HASH_ALGORITHM = 'sha256';
    
    function __construct()
    {    
        $dbConn = new dbConnection('4350', 'wsuslcc', 'localhost', 'project5');
        $this->db = $dbConn->connect();
    }    

    public function getUserID()
    {
        $db =& $this->db;
        $query = 'SELECT id FROM users WHERE fname=' . $db->quote($_SESSION['fName'], 'text') .
                    ' AND lname=' . $db->quote($_SESSION['lName'], 'text');        
        $result =& $db->query($query);
        $val = $result->fetchRow();    
        return $val['id'];
    }
    
    public function changePasswd($oldPasswd, $newPasswd)
    {
        $oldPasswd = hash(self::HASH_ALGORITHM, $oldPasswd);
        if($oldPasswd == $_SESSION['passwdHash'])
        {
            $userID = $this->getUserID();
            $newPasswd = hash(self::HASH_ALGORITHM, $newPasswd);
            $db =& $this->db;
            $query = 'UPDATE users SET passwd=' . $db->quote($newPasswd, 'text') .
                        ' WHERE id=' . $db->quote($userID, 'integer');
            
            $result =& $db->query($query);
            if (!PEAR::isError($result))
            {
                return true;
            }
            else
            {
                return false;
            }
        }
        else
        {
            return false;
        }
    }    
}

?>