#!/usr/local/bin/perl -w
#
# login script
#
# 

use strict;
use warnings;
use CGI qw/:standard/;
use CGI::Cookie;
use URI::Escape;


##################################################################################################
# take in ID to redirect to. this function pipes in the name of the reviewed  
sub redirect
{
(my $id, my $personalname) = @_;
my $urlname = uri_escape($personalname);
		
		
		print "Pragma: no-cache\n\n";
		
		print qq~
		<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> 
		<html>
		<head>
		<title>Passionate Performance Password Login</title>
		<link href="http://www.clisurveys.com/pp/pp.css" rel="stylesheet" type="text/css">
		</head>
		<body bgcolor="lavender" background="/pp/images/lblue025.gif" leftmargin="10" topmargin="10" marginwidth="10" marginheight="10">
		~;
		
   		print "<META HTTP-EQUIV='refresh' content='0\;URL=ezs.cgi?database=pp&IFMUID=".$id."&pn=".$urlname."'>";
		print "If your browser does not support META refresh. <a href='ezs.cgi?database=pp&IFMUID=".$id."&pn=".$urlname."'>Enter Survey</a>";
		exit;

}

##################################################################################################
sub getaccountstats
{
open(STAT, '<accountstats.txt');
flock(STAT, 1);
my %accountstats;
while(<STAT>)
	{
	chomp;
	(my $key, my $value) = split(/=/, $_);
	$accountstats{$key} = $value;
	}
close(STAT);
return %accountstats;
}

##################################################################################################

#takes in account name, password
sub setcookie
{

(my $name, my $value) = @_;
my $c = new CGI::Cookie(-name    =>  $name,
                             -value   =>  $value,
                             -domain  =>  '.clisurveys.com',
                             -secure  =>  0
	                    );  
print header(-cookie=>$c);

return 0;
}
##################################################################################################
# takes in accountname returns "password" as the value
sub readcookie
{
print"<br>readcookie1";
my %cookies = fetch CGI::Cookie; 
my $cookiename;
my $cookievalue;

print"<br>readcookie2";
my $existingcookie = $cookies{$_[0]};
print"<br>readcookie3";

if($existingcookie)
	{
	$cookiename = $existingcookie->name;
	print"<br>readcookie4";
	$cookievalue = $existingcookie->value;
	print"<br>readcookie5";

	if ($cookiename eq $_[0])
		{
		print"<br>readcookie6";
		return $cookievalue;
		}
	}

else	{
print"<br>readcookie7";
return 0;
	}
}

##################################################################################################

my $localpath = $ENV{HTTP_HOST};
my %accountstats = getaccountstats();
my $validpassword = $accountstats{'password'};
my $validaccountname = substr($localpath, 0, -19);
my $querystring = $ENV{'QUERY_STRING'};
my $personalname = $accountstats{'personalname'};

if($querystring =~ /^id=/)
	{
	$querystring =~ s/id=//g;
	redirect($querystring, $personalname);
	
	}


my $accountname = $accountstats{'accountname'};  
my $password = param('password');


if($password eq $validpassword) 
	{
	setcookie($accountname, $password);
	
		print qq~
		<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> 
		<html>
		<head>
		<title>Passionate Performance Login</title>
		<link href='/pp/pp.css' rel='stylesheet' type='text/css'></head>
		<body bgcolor="lavender" background="/pp/images/lblue025.gif" leftmargin="10" topmargin="10" marginwidth="10" marginheight="10" >
		<center>
		~;	


	
	
	#For some reason this function doesn't find the cookie when first set... should return password.
	#my $cookievalue = readcookie($accountname);
	
	#print"cookie value (password) = ".$cookievalue;
	
	print "<META http-equiv='REFRESH' content='0;url=http://www.clisurveys.com/pp/".$accountname."/admin.pl'>";
	 print"<br>Go to your profile:<p>";
	 
	 print"<a href='http://www.clisurveys.com/pp/".$accountname."/admin.pl'>Enter </a>";
 
	exit;
	}
else
	{

print "Content-type: text/html\n\n";
print qq~
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> 
<html>
<head>
<title>Passionate Performance Password Login</title>
<link href="http://www.clisurveys.com/pp/pp.css" rel="stylesheet" type="text/css">
</head>
<body bgcolor="lavender" background="/pp/images/lblue025.gif" leftmargin="10" topmargin="10" marginwidth="10" marginheight="10">
~;

			print"<table border=0 align=center width='400' height='150'  cellpadding='15'>";
  			print"<tr><td align='left'>";
  			print"<h2><strong>Please enter your account password</strong></h2></td></tr>"; 
  			print"<form name='f' action='login.pl' method='post'>";
  			#print"<p>Account Name: <input name='password' type='text' size='20' maxlength='150' value='".$accountname."'>";
  			#print"<p>";
  			print"<tr><td align=center>Password: <input type='password' name='password' size=20>";
  			
  			print"<input name='submit' type='submit' value='Enter'></p></form>";
  			print"</td></tr></table>";
  			
  			
  			
  			
  			#print"<br> accountname = ".$accountname;
			#print"<br> password = ".$password;

  	}