PartnerProgramsController.php

<?php

namespace Numok\Controllers;

use Numok\Database\Database;
use Numok\Middleware\PartnerMiddleware;

class PartnerProgramsController extends PartnerBaseController {
    public function __construct() {
        PartnerMiddleware::handle();
    }

    public function index(): void {
        $partnerId = $_SESSION['partner_id'];

        // Get all active programs that are:
        // 1. Public (is_private = 0), OR
        // 2. Already assigned to this partner (joined)
        $programs = Database::query(
            "SELECT p.*, 
                    CASE 
                        WHEN pp.id IS NOT NULL THEN 'joined'
                        ELSE 'available'
                    END as status,
                    pp.tracking_code
             FROM programs p
             LEFT JOIN partner_programs pp ON p.id = pp.program_id 
                AND pp.partner_id = ?
             WHERE p.status = 'active'
               AND (p.is_private = 0 OR pp.id IS NOT NULL)
             ORDER BY p.name",
            [$partnerId]
        )->fetchAll();

        $settings = $this->getSettings();
        $this->view('partner/programs/index', [
            'title' => 'Available Programs - ' . ($settings['custom_app_name'] ?? 'Numok'),
            'programs' => $programs
        ]);
    }

    public function join(): void {
        if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
            header('Location: /programs');
            exit;
        }

        $partnerId = $_SESSION['partner_id'];
        $programId = $_POST['program_id'] ?? 0;

        // Validate program exists, is active, and is public (private programs can only be assigned by admin)
        $program = Database::query(
            "SELECT id, terms FROM programs WHERE id = ? AND status = 'active' AND is_private = 0",
            [$programId]
        )->fetch();

        if (!$program) {
            $_SESSION['error'] = 'Invalid program selected';
            header('Location: /programs');
            exit;
        }

        // Check if already joined
        $existing = Database::query(
            "SELECT id FROM partner_programs 
             WHERE partner_id = ? AND program_id = ?",
            [$partnerId, $programId]
        )->fetch();

        if ($existing) {
            $_SESSION['error'] = 'You have already joined this program';
            header('Location: /programs');
            exit;
        }

        $ipAddress = $_SERVER['REMOTE_ADDR'];
        if (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
            $ips = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']);
            $ipAddress = trim($ips[0]);
        }

        if (!empty($program['terms'])) {
            Database::update(
                'partner_programs',
                [
                    'terms_accepted' => date('Y-m-d H:i:s'),
                    'terms_accepted_ip' => $ipAddress
                ],
                'partner_id = ? AND program_id = ?',
                [$partnerId, $programId]
            );
        }

        // Generate unique tracking code
        $trackingCode = bin2hex(random_bytes(8));

        try {
            Database::insert('partner_programs', [
                'partner_id' => $partnerId,
                'program_id' => $programId,
                'tracking_code' => $trackingCode,
                'status' => 'active',
                'terms_accepted' => date('Y-m-d H:i:s'),
                'terms_accepted_ip' => $ipAddress
            ]);

            $_SESSION['success'] = 'Successfully joined the program!';
        } catch (\Exception $e) {
            $_SESSION['error'] = 'Failed to join program. Please try again.';
        }

        header('Location: /programs');
        exit;
    }
}