<?php

require_once dirname(__FILE__) . '/_init.php';

if (!empty($_POST['save']))
{
    if ($user->get('email') == LENCRIER_DEMO_USER)
    {
        throw new userException('Ce compte est bloqué, impossible de le modifier.');
    }

    $error = false;
    $msg = '';

    if (!utils::CSRF_check('ma_config'))
    {
        $error = 'UNKNOWN';
    }
    elseif (empty($_POST['password']))
    {
        $error = 'PASSWORD';
    }
    elseif (!$user->checkPassword($_POST['password']))
    {
        $error = 'PASSWORD';
    }
    elseif (empty($_POST['email']))
    {
        $error = 'EMAIL';
    }
    elseif (!utils::checkEmailSyntax($_POST['email']))
    {
        $error = 'EMAIL';
    }
    elseif (!utils::checkEmailDomain($_POST['email']))
    {
        $error = 'EMAIL_DOMAIN';
    }
    elseif (user::getIdFromEmail($_POST['email']) && user::getIdFromEmail($_POST['email']) != $user->get('id'))
    {
        $error = 'EMAIL_NOT_FREE';
    }
    else
    {
        if (!empty($_POST['new_password']))
        {
            if (empty($_POST['new_password_bis']) || $_POST['new_password'] != $_POST['new_password_bis'])
                $error = 'NEW_PASSWORD';
            else
                $user->set('password', $_POST['new_password']);
        }

        if ($user->get('email') != $_POST['email'])
        {
            notifications::askEmailChange($user->get('id'), $user->get('email'), $_POST['email']);
            $msg = 'EMAIL_CHANGE';
        }

        $user->set('timezone', $_POST['timezone']);

        $user->save();

        utils::redirect('/ecrire/?msg='.$msg);
    }

    $tpl->assign('error', $error);
}

$tpl->assign('email', $user->get('email'));
$tpl->assign('timezone', $user->get('timezone'));
$tpl->assign('id', $user->get('id'));

$tpl->display('ecrire/ma_config.tpl');

?>