<?php

class User {
    function getAllUser(){
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con, 'projekers');
        $sql = "SELECT * FROM user";
        $result = mysqli_query($con, $sql);
        mysqli_close($con);
        return $result;
    }

    function getUserByUsername($username){
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con, 'projekers');
        $sql = "SELECT * FROM user WHERE username='" . (string)$username . "'";
        $result = mysqli_query($con, $sql);
        mysqli_close($con);
        return $result;
    }

    function getUserById($id){
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con, 'projekers');
        $sql = "SELECT * FROM user WHERE id=" . $id;
        $result = mysqli_query($con, $sql);
        mysqli_close($con);
        return $result;
    }

    function getIdByUser($user) {
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con, 'projekers');
        $sql = "SELECT id FROM user WHERE username=" . $user;
        $result = mysqli_query($con, $sql);
        mysqli_close($con);
        return $result;
    }

    function updateProfileById($id, $name, $phone, $isDriver, $image) {
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con,'projekers');
        $sql = "update user set name='" . (string)$name . "', phone ='" . (string)$phone . "', isDriver='" .
            $isDriver ."', image='" . (string)$image . "' where id=" . $id;
        mysqli_query($con, $sql);
        mysqli_close($con);
    }

    function createUser($name, $username, $email, $password, $phone, $isDriver) {
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con, 'projekers');
        $image = "pikachu.jpg";
        $sql = "INSERT INTO user(username, name, email, password, phone, isDriver, image) VALUES('" .
            (string)$username . "', '" . (string)$name . "', '" . (string)$email . "', '" . (string)$password. "', '" .
            (string)$phone . "', " . $isDriver . ", '" . $image . "')";

        mysqli_query($con,$sql);
        mysqli_close($con);
    }

    function getUsername($username) {
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con,'projekers');
        $query = "SELECT id FROM user WHERE username = '" . $username . "'";
        $result = mysqli_query($con,$query);
        mysqli_close($con);
        return $result;
    }

    function getEmail($email) {
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con,'projekers');
        $query = "SELECT id FROM user WHERE email = '" . $email . "'";
        $result = mysqli_query($con,$query);
        mysqli_close($con);
        return $result;
    }
    /**
        get drivers whose id is not the user's id
     *  prevent order with self
     */
    function getDriver($id){
        $con = mysqli_connect('localhost','root','','projekers');
        mysqli_select_db($con,'projekers');
        $query = "SELECT id,name,image FROM user WHERE isDriver=1 AND not id=" . $id;
        $result = mysqli_query($con,$query);
        mysqli_close($con);
        return $result;
    }
}