<?php
/**
 * ---------------------------------------------------------------------
 * GLPI - Gestionnaire Libre de Parc Informatique
 * Copyright (C) 2015-2020 Teclib' and contributors.
 *
 * http://glpi-project.org
 *
 * based on GLPI - Gestionnaire Libre de Parc Informatique
 * Copyright (C) 2003-2014 by the INDEPNET Development Team.
 *
 * ---------------------------------------------------------------------
 *
 * LICENSE
 *
 * This file is part of GLPI.
 *
 * GLPI is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * GLPI is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with GLPI. If not, see <http://www.gnu.org/licenses/>.
 * ---------------------------------------------------------------------
 */

include ('../inc/includes.php');

if (!isset($_GET['genical'])) {
   Session::checkRight("planning", READ);
}

$users_id = null;
$groups_id = (isset($_GET["gID"]) ? (int)$_GET['uID'] : 0);
$limititemtype = (isset($_GET['limititemtype']) ? $_GET['limititemtype'] : '');

if (!isset($_GET["uID"])) {
   if (($uid = Session::getLoginUserID())
       && !Session::haveRight("planning", Planning::READALL)) {
      $users_id = $uid;
   } else {
      $users_id = 0;
   }
} else {
   $users_id = (int)$_GET['uID'];
}

$user = new User();
$user->getFromDB(Session::getLoginUserID());

//// check if the request is valid: rights on uID / gID
// First check mine : user then groups
$ismine = false;
if ($user->getID() == $users_id) {
   $ismine = true;
}

// Check groups if have right to see
if (!$ismine && $groups_id !== 0) {
   $entities = Profile_User::getUserEntitiesForRight(
      $user->getID(),
      Planning::$rightname,
      Planning::READGROUP
   );
   $groups   = Group_User::getUserGroups($user->getID());
   foreach ($groups as $group) {
      if ($groups_id == $group['id']
         && in_array($group['entities_id'], $entities)
      ) {
         $ismine = true;
      }
   }
}

$canview = false;
// If not mine check global right
if (!$ismine) {
   // First check user
   $entities = Profile_User::getUserEntitiesForRight($user->getID(),
                                                      Planning::$rightname,
                                                      Planning::READALL);
   if ($users_id) {
      $userentities = Profile_User::getUserEntities($user->getID());
      $intersect    = array_intersect($entities, $userentities);
      if (count($intersect)) {
         $canview = true;
      }
   }
   // Else check group
   if (!$canview && $groups_id) {
      $group = new Group();
      if ($group->getFromDB($groups_id)) {
         if (in_array($group->getEntityID(), $entities)) {
            $canview = true;
         }
      }
   }
}

if ($ismine || $canview) {
   $csv = new PlanningCsv($users_id, $groups_id, $limititemtype);
   $csv->output();
}