#!/usr/bin/perl

use CGI qw(:standard);
use strict;
use DBI;
#use Mail::Sendmail;

my $adminemail = "test\@reack.com";
my ($valid, @errormsg);
my $username = CGI::param('username');
my $userpassword = CGI::param('userpassword');
my $userstreet = CGI::param('userstreet');
my $usercity = CGI::param('usercity');
my $userzip = CGI::param('userzip');
my $userstate = CGI::param('userstate');
my $userphone = CGI::param('userphone');
my $useremail = CGI::param('useremail');
my $usercctype = CGI::param('usercctype');
my $userccexpmo = CGI::param('userccexpmo');
my $userccexpyr = CGI::param('userccexpyr');
my $userccnum = CGI::param('userccnum');

my $C_name = cookie(-name => "username",
		    -value => "$username",
                    -path => "/",
                    -expires => "+6M");


if ($username eq "" or $userpassword eq "" or $userstreet eq "" or $usercity eq "" or $userzip eq "" or $userstate eq "" or $userphone eq "" or $useremail eq "" or $usercctype eq "" or $userccnum eq "" or $userccexpmo eq "" or $userccexpyr eq "") {
    push(@errormsg, "complete all items on the form.");
    create_error_page();
    exit;
}
else {
    ($userccnum, $userphone, $useremail) = clean_up_input();
}

($valid, @errormsg) = validate_input();
if ($valid eq "N") {
    create_error_page();
    exit;
}
else {
    print header(-cookie => $C_name);
    print "<html><body bgcolor=white text=black><center><img src='img/tcc.jpg'><br>Your order is confirmed. <a href='redirect.cgi'>Click here to continue</a></body></html>";
}

#*****user-defined functions*****

sub create_error_page {
    my $size;
    $size = @errormsg;
    print "Content-type: text/html\n\n";
    print "<HTML>\n";
    print "<HEAD><TITLE>Caffeine Consumption Cooperative</TITLE></HEAD>\n";
    print "<BODY>\n";
    print "<H2>Please return to the form and correct the following errors:</H2><BR>\n";
    for(my $x = 0; $x < $size; $x = $x + 1) {
	print "<H2>-- $errormsg[$x]</H2><BR>\n";
    }
    print "</BODY></HTML>\n";
} #end create_error_page


sub create_display_page {
    my (@records, $dcode, $fname);

    print "<HTML>\n";
    print "<HEAD><TITLE>The Caffeine Company<TITLE></HEAD>\n";
    print "<BODY>\n";
    print "<H1>The Caffeine Company.</H1>\n";
    print "<H2>You order has been received and will be processed shortly.</H2>\n";
    print "</BODY></HTML>\n";
} #end create_display_page



sub clean_up_input {
    my ($c, $p, $e);

    ($c, $p, $e) = ($userccnum, $userphone, $useremail); 

#remove leading and trailing spaces from credit card number
    $c =~ s/^ +//;
    $c =~ s/ +$//;
#remove leading and trailing spaces from phone
    $p =~ s/^ +//;
    $p =~ s/ +$//;
#remove leading and trailing spaces from email
    $e =~ s/^ +//;
    $e =~ s/ +$//;
#remove periods, commas, hyphens, etc.
    $c =~ tr/-.,//d;
    $p =~ tr/-.,//d;
#remove all spaces
    $c =~ tr/ //d;
    $p =~ tr/ //d;

    return $c, $p, $e;

} #end clean_up_input


sub validate_input {
    $valid = "Y";
    
#Not sure how to get the system date, so I just plugged in values to use for card expiration
    my $year = 2002;
    my $month = 12;


#I'm checking for the correct number of digits in the card number.
    if ($userccnum !~ m/[0-9]{16,16}/) {
	$valid = "N";
	push(@errormsg, "please check your credit card number and reenter.");
    }

#I'm checking to be sure they entered the correct starting number for a VISA.
    if ($userccnum !~ m/^4/ and $usercctype eq "Visa") {
	$valid = "N";
	push(@errormsg, "please check your credit card number and reenter.");
    }

#I'm checking to be sure they entered the correct starting number for a MasterCard.
    if ($userccnum !~ m/^5/ and $usercctype eq "MasterCard") {
	$valid = "N";
	push(@errormsg, "please check your credit card number and reenter.");
    }

#I'm checking for the expiration year
    if ($userccexpyr < $year) {
	$valid = "N";
	push(@errormsg, "please use a different credit card, this $usercctype is expired.");
    }

#I'm checking for the expiration month
    if ($userccexpyr == $year and $userccexpmo < $month) {
	$valid = "N";
	push(@errormsg, "please use a different credit card, this $usercctype is expired.");
    }

#I'm checking for the correct number of digits in the phone number
    if ($userphone !~ m/[0-9]{10,10}/) {
	$valid = "N";
	push (@errormsg, "please reenter your phone number including area code.");
    }

#Checking for a valid format of their email address
    if ($useremail !~ m/[\w\-]+\@[\w\-]+\.[\w\-]+/) {
	$valid = "N";
	push(@errormsg, "enter a valid e-mail address.");
    }
    return $valid, @errormsg;
} #end validate_input

my $error;

if ($valid == "N") {
    foreach $error (@errormsg) {
	print "$error<BR>";
    }
    exit;
}

my $msg = "
	You just received an order at caffeine shop.com\n
	This is the content of that order:\n
	Name: $username\n
        Street: $userstreet\n
        Zip: $userzip\n
        State: $userstate\n
        Phone: $userphone\n
        Email: $useremail\n
        CC Type: $usercctype\n
        CC Num: $userccnum\n
        CC Exp: $userccexpmo/$userccexpyr\n
	";

my %mail;
$mail{To} = $adminemail;
$mail{From} = "caffeine\@sotre.com";
$mail{Subject} = "Caffeine Order";
$mail{Smtp} = "localhost";
$mail{Message} = $msg;
sendmail(%mail);

#print "<html><body><center><img src='img/tcc.jpg'><br>Your order is confirmed yeehaw.</center></body></html>";