<?php
function questions_title() {
  return _("Ask an archangel");
}

function user_questions() {
  global $user;
  
  if (! isset($_REQUEST['action'])) {
    $open_questions = sql_select("SELECT * FROM `Questions` WHERE `AID`=0 AND `UID`=" . sql_escape($user['UID']));
    
    $answered_questions = sql_select("SELECT * FROM `Questions` WHERE `AID`>0 AND `UID`=" . sql_escape($user['UID']));
    foreach ($answered_questions as &$question) {
      $answer_user_source = User($question['AID']);
      if ($answer_user_source === false)
        engelsystem_error(_("Unable to load user."));
      $question['answer_user'] = User_Nick_render($answer_user_source);
    }
    
    return Questions_view($open_questions, $answered_questions, page_link_to("user_questions") . '&action=ask');
  } else {
    switch ($_REQUEST['action']) {
      case 'ask':
        $question = strip_request_item_nl('question');
        if ($question != "") {
          sql_query("INSERT INTO `Questions` SET `UID`=" . sql_escape($user['UID']) . ", `Question`='" . sql_escape($question) . "'");
          redirect(page_link_to("user_questions"));
        } else
          return error(_("Please enter a question!"), true);
        break;
      case 'delete':
        if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))
          $id = $_REQUEST['id'];
        else
          return error(_("Incomplete call, missing Question ID."), true);
        
        $question = sql_select("SELECT * FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
        if (count($question) > 0 && $question[0]['UID'] == $user['UID']) {
          sql_query("DELETE FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
          redirect(page_link_to("user_questions"));
        } else
          return error(_("No question found."), true);
        break;
    }
  }
}
?>