<?php

/**
 *
 * @copyright  2012-2018 izend.org
 * @version    5
 * @link       http://www.izend.org
 */

require_once 'isfilenameallowed.php';
require_once 'readarg.php';
require_once 'tokenid.php';
require_once 'validatefilename.php';

define('FILES_DIR', ROOT_DIR . DIRECTORY_SEPARATOR . 'files');

function uploadvideo($lang) {
	$maxfilesize=false;

	$action='init';
	if (isset($_POST['uploadvideo_put'])) {
		$action='uploadvideo';
	}

	$filetypes=array('video/mp4');

	$file=$name=$type=$error=false;
	$size=0;
	$token=false;

	switch($action) {
		case 'uploadvideo':
			if (isset($_POST['uploadvideo_token'])) {
				$token=readarg($_POST['uploadvideo_token']);
			}

			if (isset($_FILES['uploadvideo_file'])) {
				if (isset($_FILES['uploadvideo_file']['tmp_name'])) {
					$file=$_FILES['uploadvideo_file']['tmp_name'];
				}
				if (isset($_FILES['uploadvideo_file']['error'])) {
					$error=$_FILES['uploadvideo_file']['error'];
				}
				if (isset($_FILES['uploadvideo_file']['name'])) {
					$name=$_FILES['uploadvideo_file']['name'];
				}
				if (isset($_FILES['uploadvideo_file']['type'])) {
					$type=$_FILES['uploadvideo_file']['type'];
				}
				if (isset($_FILES['uploadvideo_file']['size'])) {
					$size=$_FILES['uploadvideo_file']['size'];
				}
			}
			break;
		default:
			break;
	}

	$bad_token=false;

	$missing_file=false;
	$bad_file=false;
	$bad_name=false;
	$bad_type=false;
	$bad_size=false;
	$bad_copy=false;

	$copy_error=false;

	$file_copied=false;

	switch($action) {
		case 'uploadvideo':
			if (!isset($_SESSION['uploadvideo_token']) or $token != $_SESSION['uploadvideo_token']) {
				$bad_token=true;
				break;
			}

			if (!$file) {
				$missing_file=true;
			}
			else if (!is_uploaded_file($file)) {
				$bad_file=true;
			}
			else if ($error != UPLOAD_ERR_OK) {
				$bad_copy=true;
			}
			else if ($maxfilesize and $size > $maxfilesize) {
				$bad_size=true;
			}
			else if (!validate_filename($name) or !is_filename_allowed($name)) {
				$bad_name=true;
			}
			else if ($filetypes and (!$type or !in_array($type, $filetypes))) {
				$bad_type=true;
			}

			break;
		default:
			break;
	}

	switch($action) {
		case 'uploadvideo':
			if ($bad_token or $missing_file or $bad_file or $bad_size or $bad_name or $bad_type or $bad_copy) {
				break;
			}

			$filecopy = FILES_DIR . DIRECTORY_SEPARATOR . $name;

			if (!@move_uploaded_file($file, $filecopy))  {
				$copy_error=true;
				break;
			}

			$file_copied=true;
			break;
		default:
			break;
	}

	$videoupload_url = url('videoupload', $lang);

	$_SESSION['uploadvideo_token'] = $token = token_id();

	$errors = compact('missing_file', 'bad_file', 'bad_size', 'bad_name', 'bad_type', 'bad_copy', 'copy_error');
	$infos = compact('file_copied');

	$output = view('uploadvideo', $lang, compact('token', 'maxfilesize', 'filetypes', 'videoupload_url', 'errors', 'infos'));

	return $output;
}