<?php

function uniqidReal($length = 8) {
    // uniqid gives 8 chars, can be changed
    if (function_exists("random_bytes")) {
        $bytes = random_bytes(ceil($length / 2));
    } elseif (function_exists("openssl_random_pseudo_bytes")) {
        $bytes = openssl_random_pseudo_bytes(ceil($length / 2));
    } else {
        throw new Exception("no cryptographically secure random function available");
    }
    return substr(bin2hex($bytes), 0, $length);
}

/*
//for testing
for($i = 0; $i < 10; $i++) {
  echo "<br>";
  echo uniqidReal();
}
*/
?>

<?php
  session_start();

  if(isset($_POST['search-submit'])) {
    $currentFilter;
    if(isset($_POST['search-filter']) && $_POST['search-filter'] == "search-all") {
      $currentFilter = "All";
    } else if(isset($_POST['search-filter']) && $_POST['search-filter'] == "search-by-title") {
      $currentFilter = "Title";
    } else if(isset($_POST['search-filter']) && $_POST['search-filter'] == "search-by-language") {
      $currentFilter = "Language";
    } else {
      $currentFilter = "Username";
    }
  }

  if(isset($_POST['search-submit']) && $_POST['search'] !== "") {
    require_once 'includes/config.php';

    $searchQuery = '%' . htmlspecialchars($_POST['search']) . '%';
    $statement;

    if(htmlspecialchars($_POST['search-filter']) == "search-all") {
      $statement = $conn->prepare("SELECT * FROM user_posts WHERE privacy = 0 AND title LIKE ? OR username LIKE ?  OR language LIKE ?");
      $statement->bind_param("sss", $searchQuery, $searchQuery, $searchQuery);
    } else if(htmlspecialchars($_POST['search-filter']) == "search-by-title") {
      $statement = $conn->prepare("SELECT * FROM user_posts WHERE privacy = 0 AND title LIKE ?");
      $statement->bind_param("s", $searchQuery);
    } else if(htmlspecialchars($_POST['search-filter']) == "search-by-language") {
      $statement = $conn->prepare("SELECT * FROM user_posts WHERE privacy = 0 AND language LIKE ?");
      $statement->bind_param("s", $searchQuery);
    } else {
      $statement = $conn->prepare("SELECT * FROM user_posts WHERE privacy = 0 AND username LIKE ?");
      $statement->bind_param("s", $searchQuery);
    }

    $statement->execute();
    $result = $statement->get_result();
  }
?>



<?php
if(isset($_POST['search-submit']) && $_POST['search'] !== "") {
  if($result->num_rows > 0) {
    $i = 1;
    echo '<ul class="list-group mt-5">';
    while($row = $result->fetch_assoc()) {
      $linkName = "post.php?postID=" . $row['postID'];
      $privacy = ($row['privacy'] == 0) ? "Public" : "Private";
      if($privacy == "Public" || ($privacy == "Private" && (isset($_SESSION['username']) && ($row['username'] == $_SESSION["username"])))) {
        echo '
          <a class="post-box-link" href="' . $linkName . '">
            <li class="list-group-item mb-2 border rounded post-box">
              <h4><span style="color: #007bff;">' . $row['title'] . '</span> | ' . $row['language'] . '</h4>
              <h5>' . $row['username'] . ' - ' . '<small>' . $row['uploadDate'] . '</small></h5>
            </li>
          </a>
        ';
        $i++;
      }
    }
    echo '</ul>';
  }
}
?>

<?php
function getFileExtension($file) {
    return end(explode(".", $file));
}
?>

<?php
$username = "Austin Leath -_#";
$username_err = "no error";
if(preg_match('/[^a-z_\-0-9]/i', $string)) {
  $username_err = "Username can only contain alphanumeric characters, dashes, and underscores.";
}

echo $username_err
?>

<?php
/*
 * @param string $file Filepath
 * @param string $query Needed information (0 = width, 1 = height, 2 = mime-type)
 * @return string Fileinfo
 */

function getImageinfo($file, $query) {
if (!realpath($file)) {
    $file = $_SERVER["DOCUMENT_ROOT"] . $file;
}
$image = getimagesize($file);
return $image[$query];
}
?>

<?php
$listOfFiles = glob("*.{jpg,png,gif,tiff,jpeg}", GLOB_BRACE);

echo 'images = []; ';

for($x = 0; $x <= count($listOfFiles)-1; $x++) {
	echo "images[" . $x . "] =" . '"' . $listOfFiles[$x] . '"' . "; ";
}
?>