<?php
include('database.php');
include('auth.php');


$auth = new Auth();
$isAuthorized = $auth->authenticate();

if(!$isAuthorized) {
	header("HTTP/1.0 401");
	exit();
}


$db = new Database();
$conn = $db->connectDb();

$request_method = $_SERVER["REQUEST_METHOD"];
switch($request_method) {
	case 'GET':
		getEmployees();
		break;
	case 'POST':
		$data = json_decode(file_get_contents('php://input'), true);
		createEmployee($data["name"], $data["city"], $data["salary"]);
		break;
	case 'PUT':
		$id = intval($_GET["id"]);
		$data = json_decode(file_get_contents('php://input'), true);
		updateEmployee($id, $data["name"], $data["city"], $data["salary"]);
		break;
	case 'DELETE':
		$id = intval($_GET["id"]);
		deleteEmployee($id);
		break;
	default:
		header("HTTP/1.0 405 Method Not Implemented");
		break;
}

function createEmployee($name, $city, $salary) {
	global $conn;
	$sql = "insert into employees " . 
	"(name, city, salary) values " .
	"(\"$name\", \"$city\", $salary)";
	$response = array();
	if($conn->query($sql)) {
		header("HTTP/1.0 201");
		$response = array(
	            'status' => 1,
	            'message' => 'Ok. Employee Added.'
        	);		
	}else {
		header("HTTP/1.0 400");
		$response = array(
	            'status' => 0,
	            'message' => 'Error! Employee Addition Failed.'
        	);
	}
	header('Content-Type: application/json');
	echo json_encode($response);
}

function getEmployees() {
	global $conn;
	$sql = 'select * from employees';
	$result = $conn->query($sql);
	$response = array();
	if($result->num_rows > 0) {
		while($row = $result->fetch_assoc()) {
			array_push($response, $row);
		}
	}
	header('Content-Type: application/json');
	echo json_encode($response);
}

function updateEmployee($id, $name, $city, $salary) {
	global $conn;
	$sql = "update employees set name=\"$name\", " . 
	"city=\"$city\", salary=$salary where id=$id";
	$response = array();
	if($conn->query($sql)) {
		$response = array(
	            'status' => 1,
	            'message' => 'Ok. Employee Updated.'
        	);		
	} else {
		header("HTTP/1.0 400");
		$response = array(
	            'status' => 0,
	            'message' => 'Error! Employee Updation Failed.'
        	);
	}
	header('Content-Type: application/json');
	echo json_encode($response);
}


function deleteEmployee($id) {
	global $conn;
	$sql = "delete from employees where id=$id.";
	$response = array();
	if($conn->query($sql)) {
		header("HTTP/1.0 204");	
	} else {
		header("HTTP/1.0 400");
		$response = array(
	            'status' => 0,
	            'message' => 'Error! Employee Deletion Failed.'
        	);
	}
	header('Content-Type: application/json');
	echo json_encode($response);
}