<?php
require '../configs/app_top.php';
$class = $_GET['user_class'];
$userid = $_GET['id'];

if(!is_admin_logged_in()) { redirect(generate_admin_link("login")); exit;}
if (isset($_POST['mode']) && $_POST['mode'] == 'mp') {
  $redirectTo = "manage_users_c.php?user_class=$class";


  $full_name = safe_input($_POST['full_name']);
  $new_password1 = safe_input($_POST['new_password1']);
  $new_password2 = safe_input($_POST['new_password2']);

  

  if ($full_name == '') {
    $_SESSION["errorMsg"] = "Please provide the required fields";
    $_SESSION["errorType"] = "danger";
  } else {

    try {

      if ($new_password1 == $new_password2 && ($new_password1 <> "")) {

        $sql = "UPDATE " . TBL_USERS . " SET user_pass = :pass, user_fullname = :uname WHERE user_id = :id";
        $stmt = $DB->prepare($sql);
        $stmt->bindValue(":pass", md5($new_password1));
      } else {
       
        $sql = "UPDATE " . TBL_USERS . " SET user_fullname = :uname WHERE user_id = :id";
        $stmt = $DB->prepare($sql);
      }


      $stmt->bindValue(":uname", $full_name);
      $stmt->bindValue(":id", $userid);
      $stmt->execute();
      $retval = $stmt->rowCount();
 
      if ($retval > 0) {

        $_SESSION["errorMsg"] = "ทำการปรับปรุงข้อมูล <font color='#990000'>$full_name</font> เรียบร้อยแล้ว.";
        $_SESSION["errorType"] = "success";
        
     
      } else if ($retval == 0) {
        $_SESSION["errorMsg"] = "No changes has been made";
        $_SESSION["errorType"] = "info";
      } else {
        $_SESSION["errorMsg"] = "Failed to update profile. Try Again";
        $_SESSION["errorType"] = "danger";
      }
    } catch (Exception $ex) {
      $_SESSION["errorMsg"] = $ex->getMessage();
      $_SESSION["errorType"] = "danger";
    }
  }
  
  
  redirect(generate_admin_link($redirectTo));
}

redirect(generate_admin_link("home"));

?>