<?php
/**
 * A concrete filter for validating code graphical CAPTCHAs with hashes
 *
 * @author		Roland Haeder <webmaster@ship-simu.org>
 * @version		0.0.0
 * @copyright	Copyright (c) 2007, 2008 Roland Haeder, this is free software
 * @license		GNU GPL 3.0 or any newer version
 * @link		http://www.ship-simu.org
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program. If not, see <http://www.gnu.org/licenses/>.
 */
class GraphicalCodeCaptchaVerifierFilter extends BaseFilter implements Filterable {
	/**
	 * Protected constructor
	 *
	 * @return	void
	 */
	protected function __construct () {
		// Call parent constructor
		parent::__construct(__CLASS__);
	}

	/**
	 * Creates an instance of this filter class
	 *
	 * @param	$controllerInstance		An instance of a Controller class
	 * @return	$filterInstance			An instance of this filter class
	 */
	public final static function createGraphicalCodeCaptchaVerifierFilter (Controller $controllerInstance) {
		// Get a new instance
		$filterInstance = new GraphicalCodeCaptchaVerifierFilter();

		// Set the controller
		$filterInstance->setControllerInstance($controllerInstance);

		// Return the instance
		return $filterInstance;
	}

	/**
	 * Executes the filter with given request and response objects
	 *
	 * @param	$requestInstance	An instance of a class with an Requestable interface
	 * @param	$responseInstance	An instance of a class with an Responseable interface
	 * @return	void
	 */
	public function execute (Requestable $requestInstance, Responseable $responseInstance) {
		// Get the captcha code
		$captchaCode = $requestInstance->getRequestElement('c_code');

		// Is this set?
		if (is_null($captchaCode)) {
			// Not set so request is invalid
			$requestInstance->requestIsValid(false);

			// Add fatal message
			$responseInstance->addFatalMessage('captcha_code_unset');

			// Skip further processing
			return false;
		} elseif (empty($captchaCode)) {
			// Empty value so request is invalid
			$requestInstance->requestIsValid(false);

			// Add fatal message
			$responseInstance->addFatalMessage('captcha_code_empty');

			// Skip further processing
			return false;
		}

		// Get the hash as well
		$captchaHash = $requestInstance->getRequestElement('hash');

		// Is this set?
		if (is_null($captchaHash)) {
			// Not set so request is invalid
			$requestInstance->requestIsValid(false);

			// Add fatal message
			$responseInstance->addFatalMessage('captcha_hash_unset');

			// Skip further processing
			return false;
		} elseif (empty($captchaHash)) {
			// Empty value so request is invalid
			$requestInstance->requestIsValid(false);

			// Add fatal message
			$responseInstance->addFatalMessage('captcha_hash_empty');

			// Skip further processing
			return false;
		}

		// Now, both are set hash the given one. First get a crypto instance
		$cryptoInstance = ObjectFactory::createObjectByConfiguredName('crypto_class');

		// Then hash the code
		$hashedCode = $cryptoInstance->hashString($captchaCode, $captchaHash);

		// Is this CAPTCHA valid?
		if ($hashedCode != $captchaHash) {
			// Not the same so request is invalid
			$requestInstance->requestIsValid(false);

			// Add fatal message
			$responseInstance->addFatalMessage('captcha_hash_mismatch');
		} // END - not the same!
	}
}

// [EOF]
?>