#!/usr/bin/perl


	##########$##################
	## CGI / DB INITIALIZATION ##
	#############################

use DBI;
use CGI;
use Socket;
use IIIkey;
use dbihelper;
use fuseIt;

do "alumniMarket.cfg";

$form = new CGI;
my @formKeys = $form->param;
my $formVars = {};
foreach $key (@formKeys) {
        $formVars->{$key} = $form->param($key);
}
my $loadPage = $formVars->{d};

my $dbh = DBHOpen($databaseName, $dbiType, $dbUsername, $dbPassword);

if (!$dbh) {
        printErrorPage("Could not connect to database.");
        exit;
}

my @infoFields = qw|	firstName lastName jobTitle yearGraduated
			companyID
			companyName companyAddress companyCity
			companyState companyZipCode 
			companyCountry companyPhone companyFax industryType
			description photoOfBusiness
			eMail webPage 
			username password active
			timeStamp dateStamp 
			image companyTag class
			|;

	############################

my $adminEmail = getAdminEmail();

	############################################################
	## CONFIRMATION TO CHECK THAT THIS PAGE IS AN ACTUAL PAGE ##
	############################################################

my %validPages = (
	"",		1,

	"add",		1,
	"update",	1,
	"join",		1,

	"login",	1,
	"verify",	1,

	"search",	1,
	"view",		1,
	"help", 	1

);

if ( !(defined $validPages{$loadPage})) {
	printErrorPage("Invalid page reference: $loadPage");
	exit;
}

	############################################################
	


	####################
	## PAGE SELECTION ##
	####################

#-------------------------------------------------------------------------------#
if (!$loadPage) {
	printMainPage("", $formVars);

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "join") {
	my $homelink = "<a href=\"$userScript\">Cancel and return to Alumni Marketplace</a>";
	printCompanyForm("", "Enter your information in the form below<br>$homelink");

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "add" || $loadPage eq "update") {

	# always check the password #
	if ($loadPage eq "update") {
		my $companyID = verifyLogin($formVars->{username}, $formVars->{password});
		if (!$companyID) {
			printLoginPage("Invalid username or password.");
		}
	}

	if (!checkUsername($formVars->{username}) && $loadPage eq "add") {
		printCompanyForm($formVars->{companyID}, "That username has already been chosen.  Please choose another.");
		exit;
	}

	my $fileSize = fileSize($formVars->{image});

	if ($fileSize > $maxImageSize) {
		printCompanyForm($formVars->{companyID}, "Images must be less than $maxImageSize bytes.  Please choose a smaller image.");
	}
	
	modifyDB($formVars);

	sendMail(makeEmail($formVars));

	$loadPage .= ($loadPage eq "add") ? "ed" : "d";
	my $homelink = "<a href=\"$userScript\">Back to Alumni Marketplace</a>";

	printCompanyForm($formVars->{companyID}, "Your information has been $loadPage.<br><br>$homelink");

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "login") {
	printLoginPage("Enter your username and password.");

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "verify") {
	my $companyID = verifyLogin($formVars->{username}, $formVars->{password});

	if ($companyID) {
		my $homelink = "<a href=\"$userScript\">Cancel and return to Alumni Marketplace</a>";
		printCompanyForm($companyID, "Modify your information below.<br>$homelink");

	} else {
		printLoginPage("Invalid username or password.");
	}

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "search") {

	my $first = $formVars->{first} || 0;

	my @results = doSearch($formVars);

	if (scalar(@results) == 0) {
		printMainPage("<font color=\"red\"><b>No Matches Found!</b></font>", $formVars);
	} else {
		printSearchResults($first, @results);
	}

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "view") {

	my $companyInfo = getCompanyData($formVars->{c});
	printCompanyDetails($companyInfo);

	exit;
#-------------------------------------------------------------------------------#
} elsif ($loadPage eq "help") {
	printHelpPage();

	exit;
}
#-------------------------------------------------------------------------------#
	#####################

	###############
	## SHUT DOWN ##
	###############

DBHClose($dbh);
exit;

	###############


	#############################
	## PAGE PRINTING FUNCTIONS ##
	#############################
sub printHelpPage {

	Fusion($templateDir, $template{helpPage}, @rIdx);

}

sub printCompanyDetails {
	my $companyData = shift;

	my $search;
	if (!defined $formVars->{a_name} && !defined $formVars->{c_name} && !defined $formVars->{city}
	    && !defined $formVars->{state} && !defined $formVars->{type}) {
		$search = ""; 
	} else {
       		$search = "d=search&a_name=$formVars->{a_name}&c_name=$formVars->{c_name}&first=$formVars->{first}".
                "&city=$formVars->{city}&state=$formVars->{state}&type=$formVars->{type}";
	}

	$companyData->{dateStamp} = humanDate($companyData->{dateStamp});
	$companyData->{timeStamp} = humanTime($companyData->{timeStamp});

	my $imageHTML;
	if ($companyData->{image} ne "") {
		$imageHTML =<<EOF;
 <tr>
  <td align="center" colspan="2">
    <b>Business Photo</b>
  </td>
 </tr>

 <tr>
  <td colspan="2" align="center">
<img src="$imageDir/$companyData->{image}" width=150 height=150>
  </td>
 </tr>
EOF
	} 


	my $tagHTML;
	if ($companyData->{companyTag} ne "") {
		$tagHTML =<<EOF;
 <tr>
  <td align="center" colspan="2">
    <b><!-- Marketing Tagline --></b>
  </td>
 </tr>

 <tr>
  <td colspan="2" align="center">
$companyData->{companyTag}
  </td>
 </tr>
EOF
	}

	############################################
	# Add company data to form if there is any #
	############################################
	foreach $field (@infoFields) {
		unless ($field eq "image" || $field eq "companyTag") {
			$companyData->{$field} ||= "N/A" 
		}
		push (@rIdx, { replace => $field, replaceWith => $companyData->{$field} } );
	}

	push (@rIdx, 
		{ replace => "userScript",
	          replaceWith => "$userScript?" . $search },
		{ replace => "tagHTML",
		  replaceWith => $tagHTML },
		{ replace => "imageHTML",
		  replaceWith => $imageHTML }
	);

	Fusion($templateDir, $template{companyDetails}, @rIdx);
}


sub printSearchResults {

	my $first = shift;

	my @results = @_;
	my $totalEntries = @results;

	my $resultTable = resultTable(@_[$first .. $first + $resultsPerPage - 1]);
	my $searchNav = searchNav($first, $resultsPerPage, $#results + 1);
	my $searchTotals = searchTotals($totalEntries, $first);

      	my $search = "a_name=$formVars->{a_name}&c_name=$formVars->{c_name}&first=$formVars->{first}".
	"&city=$formVars->{city}&state=$formVars->{state}&type=$formVars->{type}";


	my @rIdx = ( 
		{ replace	=> "searchResults",
		  replaceWith	=> $resultTable
		},
		{ replace	=> "searchNav",
		  replaceWith	=> $searchNav
		},
		{ replace	=> "searchTotals",
		  replaceWith	=> $searchTotals
		},

		{ replace	=> "userScript",
		  replaceWith	=> $userScript . "?" . $search
		}
	);

	Fusion($templateDir, $template{searchResults}, @rIdx);
}

sub printLoginPage {
	
	my $message = shift;

	my $JS = loginJS();
	$JS = "<script language=\"javaScript\">\n$JS\n</script>";

	my @rIdx = (
		{ replace	=> "javascript",
		  replaceWith	=> $JS
		},

		{ replace 	=> "userScript",
		  replaceWith	=> $userScript
		},
		{ replace	=> "message",
		  replaceWith	=> $message
		}
	);

	Fusion($templateDir, $template{loginPage}, @rIdx);

	return;
}

#######################################################################
# print the company input form 				#
# 							#
# no arguments	 = (new user)				#
# $companyID	 = use this companies info in the form	#
#########################################################
sub printCompanyForm {

	my $companyID = shift;
	my $message = shift;

	my $JS = companyFormJS();
	$JS = "<script language=\"javaScript\">\n$JS\n</script>";

	my ($process);
	my @rIdx;

	##########################################################
	# use the company id to determine if we create or modify #
	##########################################################
	if ($companyID eq "") {
		$companyID = newCompanyID();
		$process = "add";
	} else {
		$process = "update";
	}
		
	my $companyData = getCompanyData($companyID);

	if (!$companyData) {
		$companyData = $formVars;
	}

	###########################
	# Tidy up things a little #
	###########################
	my $cryptIt = new IIIkey;
	$companyData->{password} = $cryptIt->decrypt($companyData->{password}, $cryptKey);

	if ($companyData->{timeStamp} eq "" ) {
		$companyData->{timeStamp} = "Never";
	} else {
		$companyData->{timeStamp} = humanTime($companyData->{timeStamp});
	}

	if ($companyData->{dateStamp} eq "") {
		$companyData->{dateStamp} = "Never";
	} else {
		$companyData->{dateStamp} = humanDate($companyData->{dateStamp});
	}

	if ($companyData->{image} eq "") {
		$companyData->{image} = "[ No image uploaded] ";
	} else {
		$companyData->{image} = "<img src=\"$imageDir/$companyData->{image}\" width=150 height=150>";
	}

	############################################
	# Add company data to form if there is any #
	############################################
	foreach $field (@infoFields) {
		next if ($field eq "companyID");
		push (@rIdx, { replace => $field, replaceWith => $companyData->{$field} } );
	}

	my $industryOptions = industryList($companyData->{industryType});
	my $stateOptions = stateList($companyData->{companyState});

	my ($dateStamp, $timeStamp) = getDateTime();

	my $formTag = "action=\"$userScript\" method=\"post\" onSubmit=\"return verify()\" encType=\"multipart/form-data\"";

	my $activeText =<<EOF;
<blockquote>
<font size="-1">If, at any time,  you wish to have your information removed from the Alumni Marketplace, please
email <a href="mailto:$adminEmail">$adminEmail</a> with your request.</font>
</blockquote>
EOF

	@rIdx = (@rIdx, 

		{ replace	=> "javascript",
		  replaceWith	=> $JS
		},

		{ replace	=> "message",
		  replaceWith	=> $message
		},

		{ replace	=> "process",
		  replaceWith	=> $process,
		},
		{ replace	=> "formTag",
		  replaceWith	=> $formTag,
		},

		{ replace	=> "maxImageSize",
		  replaceWith	=> $maxImageSize
		},

		##############
		# company ID #
		##############
		{ replace 	=> "companyID",
		  replaceWith	=> $companyID,
		},

		###################
		# selection lists #
		###################
		{ replace 	=> "industryOptions",
		  replaceWith	=> $industryOptions
		},
		{ replace 	=> "stateOptions",
		  replaceWith	=> $stateOptions
		},

		####################
		# date/time stamps #
		####################
		{ replace 	=> "nDateStamp",
		  replaceWith	=> $dateStamp
		},
		{ replace 	=> "nTimeStamp",
		  replaceWith	=> $timeStamp
		},

		{ replace	=> "activeText",
		  replaceWith	=> $activeText
		}
	);

	Fusion($templateDir, $template{joinPage}, @rIdx);

	return;
}
#######################################################################

#######################################################################
# print the main (index) page for the 	#
# alumni market place (user side) 	#
#########################################
sub printMainPage {

	my $message = shift;
	my $searchData = shift;

	my $industryList = industryList($searchData->{type});
	my $stateList = stateList($searchData->{state});
	my $JS = indexJS();

	my $actionLinks=<<EOF;
  <td align="left"><a href="$userScript?d=join">Join the Marketplace</a></td>
  <td align="right"><a href="$userScript?d=login">Modify your Account</a></td>
EOF

	$JS = "<script language=\"javaScript\">\n$JS\n</script>";

	$randomImage = getRandomImage();

	if ($randomImage->{image} eq "") {
		$randomImage->{image} = "[ No image uploaded ]";
	} else {
		$randomImage->{image} = "<img src=\"$imageDir/$randomImage->{image}\" width=150 height=150>";
	}
	my @rIdx = (
		{ replace	=> "javaScript",
		  replaceWith	=> $JS
		},

		# form action="" #
		{ replace	=> "userScript",
		  replaceWith	=> $userScript
		},
		{ replace	=> "cID",
		  replaceWith	=> $randomImage->{companyID}
		},

		{ replace	=> "message",
		  replaceWith	=> $message
		},

		{ replace	=> "industryOptions",
		  replaceWith	=> $industryList
		},

		{ replace	=> "help",
		  replaceWith	=> "javascript:openHelp()"
		},

		{ replace	=> "image",
		  replaceWith	=> $randomImage->{image}
		},
		{ replace	=> "tagline",
		  replaceWith	=> $randomImage->{companyTag}
		}, 
		{ replace	=> "companyName",
		  replaceWith	=> $randomImage->{companyName}
		},
		{ replace	=> "firstName",
		  replaceWith	=> $randomImage->{firstName}
		},
		{ replace	=> "lastName",
		  replaceWith	=> $randomImage->{lastName}
		},
		{ replace	=> "yearGraduated",
		  replaceWith	=> $randomImage->{yearGraduated}
		},		

		{ replace	=> "stateOptions",
		  replaceWith	=> $stateList
		},

		## Search Variables ##
		{ replace	=> "c_name",
		  replaceWith	=> $searchData->{c_name}
		},
		{ replace	=> "a_name",
		  replaceWith	=> $searchData->{a_name}
		},
		{ replace	=> "city",
		  replaceWith	=> $searchData->{city}
		},
		
		{ replace	=> "actionLinks",
		  replaceWith	=> $actionLinks
		}
	);

	Fusion($templateDir, $template{mainPage}, @rIdx);

	return;

}
#######################################################################


#######################################################################
# print a general error page 		#
# 
# $errorMsg 	= The error message to display
#######################################################################
sub printErrorPage {

	my $errorMsg = shift;

	my @rIdx = (
		{ replace	=> "errorMessage",
		  replaceWith	=> $errorMsg }
	);

	Fusion($templateDir, $template{errorPage}, @rIdx);

	return;
}
#######################################################################

	#############################

	#####################
	## JAVASCRIPT CODE ##
	#####################

sub companyFormJS {

	my $JS=<<EOF;
function verify() {
	var formref = document.forms[0];

	if (formref.firstName.value == '') {
		alert('You must enter your first name.');
		return false;
	}

	if (formref.lastName.value == '') {
		alert('You must enter your last name.');
		return false;
	}

	if (formref.companyName.value == '') {
		alert('You must enter your company\\'s name.');
		return false;
	}

	if (formref.companyPhone.value == '') {
		alert('You must enter your company\\'s phone number.');
		return false;
	}

	if (formref.username.value == '') {
		alert ('You must choose a user name.');
		return false;
	}

	if (formref.password.value == '') {
		alert ('You must enter a password.');
		return false;
	}
	
	if (formref.password.value != formref.password2.value) {
		alert ('Your password and confirmation do not match.');
		return false;
	}
	
	var eMail = new String(document.forms[0].eMail.value);

        if (! eMail.match(/.*@.*\\..*/)) {
                alert('Invalid email address.');
		return false;
        }

	var InvalidEmailChars = "\\"|&;<>!*\\()~$%^=+,?:[]{}'`";

	for (var i = 0; i < InvalidEmailChars.length; i++) {
		if (eMail.indexOf(InvalidEmailChars.charAt(i)) != -1) {
			alert('Invalid character in email address: ' + InvalidEmailChars.charAt(i));
			return false;
		}
	}

	if (formref.image.value != '') {
		var filename = new String(formref.image.value);

	        var ext = filename.split('.');
	        var extension = ext[ext.length-1];
        	extension = extension.toLowerCase();
        
        	if (
                	( (extension != 'gif' && extension != 'jpg' && extension != 'jpeg') && filename != '') 
        	   ) {
                	alert('Images must have an extension of .gif, .jpg, or .jpeg');
	                return false;
        	}
        } 
	
	return true;
}

EOF
	return ($JS);
}

sub loginJS {

	my $JS=<<EOF;
function checkLogin() {
	var formref = document.forms[0];

	if (formref.username.value == '' || 
	    formref.password.value == '') {
		alert('You must enter your username and password.');
		return false;
	}

	return true;
}
EOF

	return ($JS);
}

sub indexJS {

	my $JS=<<EOF;
function checkSearch() {
	var formref = document.forms[0];

	if (formref.c_name.value == '' &&
	    formref.a_name.value == '' &&
	    formref.city.value == '' &&
	    formref.state.selectedIndex == 0 &&
	    formref.type.selectedIndex == 0) {
		alert ('You must enter criteria for the search.\\nPlease see the help page if you need assistance.');
		return false;
	}

	return true;
}

function openHelp() {
	window.open('$userScript?d=help','','width=300,height=300,scrollbars=yes');
}
EOF

	return ($JS);
}


	#####################





	######################
	## HELPER FUNCTIONS ##
	######################

#################################################################
# get relevant info for a companyid 				#	
#								#
# $companyID		= the company to retrieve info for	#
#################################################################
sub getCompanyData {

	my $companyID = shift;

	my @companyInfo = SQLQuery("select * from $companyTable where companyID = $companyID",
				   $dbh, @infoFields);

	return ($companyInfo[0]);
}	
#######################################################################


#######################################################################
# retrieve a new company ID #
#############################
sub newCompanyID {

	my @IDInfo = SQLQuery("select MAX(companyID) as companyID from $companyTable", 
			       $dbh, qw|companyID|);
	
	my $companyID = $IDInfo[0]->{companyID} || 0;

	$companyID++;

	return ($companyID);
}		
#######################################################################

	######################


#######################################################################
sub industryList {

	my $selected = shift;
	my ($optionList, $industry);

	#############################
	## industry list goes here ##
	#############################
	my @industries = ( 

"Accounting", "Activism", "Administrative Supp", "Advertising", "Aerospace", "Air
Conditioning", "Airlines", "Apartment Management", "Architecture", "Art", "Automotive", "Aviation", "Banking",
"Beauty", "Bilingual", "Bookkeeping", "Broadcasting", "Care Giving", "Civil Service", "Clerical", "College",
"Computer", "Construction", "Counseling", "Customer Service", "Decorating", "Dental", "Driving", "Education",
"Electronic", "Emergency", "Employment", "Engineering", "Entertainment", "Environmental", "Executive",
"Fashion/Apparel", "Financial", "Food Services", "Forestry", "Fundraising", "Gardening", "General Office",
"Graphics", "Grocery", "Health/Medical", "Home Services", "Hospital", "Hotel/Motel", "Housekeeping", "Human
Resources", "HVAC", "Import/Export", "Installer", "Insurance", "Janitorial", "Law Enforcement", "Legal",
"Maintenance", "Management", "Manufacturing", "Marketing", "Mechanical", "Media", "Merchandising", "Modeling",
"Nursing", "Nutrition", "Personnel", "Pest Control", "Pet Care", "Photography", "Plumbing", "Printing",
"Property Management", "Public Relations", "Publishing", "Purchasing", "Quality Control", "Real Estate",
"Recreation", "Research", "Restaurant", "Sales", "Science", "Security", "Service Occupations",
"Shipping/Receiving", "Social Services", "Teaching", "Technical", "Telecommunications", "Telemarketing",
"Television", "Textile", "Training", "Transportation", "Travel", "Warehouse", "Waste Management", "Word
Processing", "Other"

	);
	#############################
	

	$optionList = "<option value=\"0\">* Select an Industry *</option>\n";	

	foreach $industry (@industries) {
		$optionList .= "<option value=\"$industry\"";
		if ($industry eq $selected) {
			$optionList .= " selected";
		}
		$optionList .= ">$industry</option>\n";
	}

	return ($optionList);
}
#######################################################################


#######################################################################
sub stateList {

	my $selected = shift;
	my ($optionList, $state);

	my @states = ( 

"AE", "AK", "AL", "AR", "AZ", "BC", "CA", "CN", "CO", "CT", "DC", "DE",
"FL", "GA", "HI", "IA", "ID", "IL", "IN", "KS", "KY", "LA", "MA", "MD",
"ME", "MI", "MN", "MO", "MS", "MT", "NC", "ND", "NE", "NH", "NJ", "NM",
"NV", "NY", "OH", "OK", "ON", "OR", "PA", "PR", "RI", "SC", "SD", "SF",
"TN", "TX", "US", "UT", "VA", "VT", "WA", "WI", "WV", "WY", "Other"

	);

	$optionList = "<option value=\"0\">* Select a State *</option>\n";

	foreach $state (@states) {
		$optionList .= "<option value=\"$state\"";
		if ($state eq $selected) {
			$optionList .= " selected";
		}
		$optionList .= ">$state</option>\n";
	}
	
	return ($optionList);
}

#######################################################################

sub getDateTime {
        my @time = localtime(time);

        $time[4]++;

        $time[0] = "0$time[0]" if ($time[0] < 10);
        $time[1] = "0$time[1]" if ($time[1] < 10);
        $time[2] = "0$time[2]" if ($time[2] < 10);
        $time[3] = "0$time[3]" if ($time[3] < 10);
        $time[4] = "0$time[4]" if ($time[4] < 10);
 
        $time[5] += 1900;

        my $nowtime = "$time[2]:$time[1]:$time[0]";
        my $nowdate = "$time[5]-$time[4]-$time[3]";

        return ($nowdate, $nowtime);
}

sub modifyDB {
	my $data = shift;

	$data->{process} = $data->{d};
	$data->{dateStamp} = $data->{nDateStamp};
	$data->{timeStamp} = $data->{nTimeStamp};

	delete $data->{nDateStamp};
	delete $data->{nTimeStamp};
	delete $data->{d};
	delete $data->{password2};

	if($data->{image} ne "") {
		my $filename = $data->{image};
		$filename =~ s/(.*)\.(.*?)/$2/gim;
		$filename = "company" . $data->{companyID} . ".$filename";
		saveFile("image", $filename);
		$data->{image} = $filename;
	} else {
		delete $data->{image};
	}

	my $cryptIt = new IIIkey;
	$data->{password} = $cryptIt->crypt($data->{password}, $cryptKey);


	if ($data->{process} eq "update") {
		$data->{conditional} = "companyID = $data->{companyID}";
	} else {
		$data->{companyID} = newCompanyID();
		$data->{approved} = 0;
	}

	my @fields = keys %$data;

	my $sql = MakeModifySQL($data, \@fields, \@fields, $companyTable);

	SQLModify($sql, $dbh);
	
}

sub verifyLogin {
	my $user = shift;
	my $pw = shift;

	my @loginInfo = SQLQuery("select password, companyID from $companyTable where username='$user'",
				 $dbh, qw|companyID password|);
	
	my $loginInfo = $loginInfo[0];

	my $cryptIt = new IIIkey;

	if ($loginInfo->{password} ne $cryptIt->crypt($pw, $cryptKey)) {
		return ("");
	} else {
		return ($loginInfo->{companyID});
	}
}

sub printFormData {
	my $data = shift;

	print "Content-type: text/html\n\n";

	foreach (sort keys %$data) {
		print "[$_] = [$data->{$_}]<br>";
	}

}

sub doSearch {
	my $data = shift;

	my @conditions;
	my ($oldDelim, $sql);
	
	if ($data->{a_name} ne "") {
		push (@conditions, searchName($data->{a_name}));
	} 

	if ( ($data->{type} ne "0")  ) {
		push (@conditions, searchInd($data->{type}));
	}

	if ($data->{c_name} ne "") {
		push (@conditions, searchComp($data->{c_name}));
	}

	if ($data->{city} ne "") {
		push (@conditions, searchCity($data->{city}));
	}

	if ($data->{state} ne "0") {
		push (@conditions, searchState($data->{state}));
	}

	###################################
	# Die if we have no search terms? #
	###################################
	if (!@conditions) {
		printErrorPage("No search criteria");
		exit;
	}

	$oldDelim = $";
	$" = " and ";
	my $sqlCond = "@conditions";
	$" = $oldDelim;

	$sql = "select * from $companyTable where ($sqlCond) and active=1";

	my @results = SQLQuery($sql, $dbh, 
			       qw|companyName firstName lastName jobTitle companyCity companyState companyID|);

	return @results;
}

sub searchCity {
	my $key = shift;

	my $sqlCond = "companyCity like '%$key%'";

	return ($sqlCond);
}

sub searchState {
	my $key = shift;

	my $sqlCond = "companyState = '$key'";

	return ($sqlCond);
}

sub searchName {
	my $key = shift;

	if ($key =~ / /) {
		($firstName, $lastName) = split(/ /, $key);
	} else {
		$firstName = $lastName = $key;
	}

	my $sqlCond = "firstName like '%$firstName%' or lastName like '%$lastName%'";

	return ($sqlCond);
}	

sub searchComp {
	my $key = shift;

	my $sqlCond = "companyName like '%$key%'";

	return ($sqlCond);
}

sub searchInd {
	my $key = shift;

	my $sqlCond = "industryType='$key'";

	return ($sqlCond);
}



sub resultTable {
	my @results = @_;

	if (!$results[0]) {
		return "No matches found.";
	}

	my $html;

	my $search = "a_name=$formVars->{a_name}&c_name=$formVars->{c_name}&first=$formVars->{first}".
		     "&city=$formVars->{city}&state=$formVars->{state}&type=$formVars->{type}";

	my $thtag = "align=\"left\" nowrap";

	$html.=<<EOF;
<table border="0" cellpadding="3" cellspacing="1">
 <tr $thtag>
  <td $thtag><font size="-1"><center>Company<br>Name</font></center></td>
  <td $thtag><font size="-1"><center>Member<br>Name</font></center></td>
  <td $thtag><font size="-1"><center>Job<br>Title</font></center></td>
  <td $thtag><font size="-1"><center>City</font></center></td>
  <td $thtag><font size="-1"><center>State/<br>Province</center></font></td>
  <td></td>
 </tr>
EOF

	my $i = 0;
	foreach $company (@results) {

		$i++;
		my $entryNo = $i + $formVars->{first};

		if ($company->{companyID} eq "") {
			last;
			$end = 1;
		}

		$company->{jobTitle} ||= "&nbsp;";
		$company->{companyCity} ||= "&nbsp;";
		$company->{companyState} ||= "&nbsp;";
		$company->{firstName} ||= "&nbsp;";
		$company->{lastName} ||= "&nbsp;";

		if ($i % 2) {
			$tdtag = "bgcolor=\"$rowColor1\"";
		} else {
			$tdtag = "bgcolor=\"$rowColor2\"";
		}
		$html.=<<EOF;
 <tr $tdtag>
  <td $tdtag>$company->{companyName}</td>
  <td $tdtag nowrap>$company->{firstName} $company->{lastName}</td>
  <td $tdtag>$company->{jobTitle}</td>
  <td $tdtag>$company->{companyCity}</td>
  <td $tdtag>$company->{companyState}</td>
  <td $tdtag><a href="$userScript?d=view&c=$company->{companyID}&$search">View</a></td>
 </tr>
EOF
	}

	$html.=<<EOF;
</table>
EOF

	return ($html);
}


sub searchNav {
	my $first = shift;
	my $last = shift;
	my $size = shift;

	if ($size == 0) {
		return "";
	}

	my $resultsPerPage = $resultsPerPage;

	my $html = "<table border=\"0\" width=\"100%\">\n";

	my $theseArgs;

	foreach $key (keys %$formVars) {
		next if ($key eq "first");
		$theseArgs .= "$key=$formVars->{$key}&";
	}

	############################
	# kill the extra ampersand #
	############################
	chop $theseArgs;

	if ($first != 0) {
		my $prev = $first - $resultsPerPage;

		if ($prev < 0) {
			$prev = 0;
		}

		$html.=<<EOF;
<td width="33%"align="left">
 <a href="$userScript?$theseArgs&first=$prev">Previous $resultsPerPage Results</a>
</td>
EOF
	} else {
		$html.=<<EOF;
<td width="33%">&nbsp;</td>
EOF
	}

	my $groups = int($size / $last) + 1;

	$html .= " <td align=\"center\" width=\"33%\">\n | ";

	for ($i = 0; $i < $groups; $i++) {
		my $start = $i * $last + 1;
		my $next = $start - 1;
		my $end = $i * $last + $resultsPerPage;

		last if ($start > $size);

		if ($end > $size) {
			$end = $size;
		}

		$html.=<<EOF;
<a href="$userScript?$theseArgs&first=$next">$start - $end</a> | 
EOF
	}

	$html .= "</td>\n";

	if ($first + $last < $size) {
		my $next = $first + $resultsPerPage;
	
		if ($next + $resultsPerPage > $size) {
			$resultsPerPage -= $next + $resultsPerPage - $size;
		}

		$html.=<<EOF;
<td width="33%" align="right">
 <a href="$userScript?$theseArgs&first=$next">Next $resultsPerPage Results</a>
</td>
EOF
	} else {
		$html.=<<EOF;
<td width="33%">&nbsp;</td>
EOF
	}

	$html.= "</table>\n";

	return $html;
}

sub searchTotals {
	my $totalEntries = shift;
	my $first = shift;
	
	if ($totalEntries == 0) {
		return "";
	}

	$first++;
	my $last = $first + $resultsPerPage - 1;

	if ($last > $totalEntries) {
		$last = $totalEntries;
	}

	$html = "Displaying results <b>$first - $last</b> out of <b>$totalEntries</b> total matches.";

	return $html;
}

sub checkUsername {
	my $username = shift;

	my @user = SQLQuery("select username from $companyTable where username = '$username'", 
		   $dbh, qw|username|);

	if (!$user[0]->{username}) {
		return 1;
	} else {
		return 0;
	}

}

sub humanDate {
        my $sqlDate = shift;

        my %monthNames = (1=>"January", 2=>"February", 3=>"March", 4=>"April",
                          5=>"May", 6=>"June", 7=>"July", 8=>"August",
                          9=>"September", 10=>"October", 11=>"November",
                          12=>"December");

        my @date = split(/-/, $sqlDate);
        $date[1] =~ s/^0//g;

        my $hDate = "$monthNames{$date[1]} $date[2], $date[0]";

        return ($hDate);
}

sub humanTime {

	my $time = shift;

	my @timeParts = split(/:/, $time);

	if ($timeParts[0] < 12) {
		$ampm = "am";
	} else {
		$timeParts[0] -= 12;
		$ampm = "pm";
	}

	if ($timeParts[0] == 0) {
		$timeParts[0] = 12;
	}

		

	return ("$timeParts[0]:$timeParts[1] $ampm $timeZone");
}

sub saveFile {
        my $fileid = shift;
        my $filename = shift;

        my $fh = $form->param($fileid);

        if (!open (OUTFILE, ">$imageDir/$filename")) {
                printErrorPage("Could not open $imageDir/$filename for writing.  Please contact $adminEmail 
with this message.");
                exit;
        }

        while (<$fh>) {
                print OUTFILE;
        }

        if (!close (OUTFILE)) {
                printErrorPage("Could not close $imageDir/$filename.  Please contact $adminEmail with this
message.");
                exit;
	}

	return;

}

sub getRandomImage {
	
	my @imageList = SQLQuery("select companyID, image, companyName, companyTag, firstName, lastName, yearGraduated from $companyTable where image is not NULL", 
			$dbh, qw|image companyTag companyName companyID firstName lastName yearGraduated|);

	my $rImage = rand($#imageList + 1);

	return ($imageList[$rImage]);
}

sub fileSize {
	my $file = shift;

	if ($file eq "") {
		return 0;
	}

	my @fileInfo = stat($file);

	return ($fileInfo[7]);
}

sub sendMail {

        my $body = shift;

        my $undef; # used to avoid responses

        $proto = getprotobyname("tcp");

        if (!socket(MAILSOCK, PF_INET, SOCK_STREAM, $proto)) {
                printErrorPage("ERROR! Could not create a mail connection.");
                exit();
        }

        my $iaddr = gethostbyname($mailServer);

        my $port = $mailPort;

        my $sin = sockaddr_in($port, $iaddr);

        if (!connect(MAILSOCK, $sin)) {
                printErrorPage("Error Connecting to $mailServer");
                exit();
        }

        my $oldfh = select(MAILSOCK);
        $| = 1;
        select($oldfh);

        $vars{subject} = "Alumni Marketplace Notification";
        $vars{from} = "AlumniMarketplace\@alumniweb.net";
	$vars{to} = $adminEmail;	

        $undef = <MAILSOCK>;
        print MAILSOCK "HELO localhost\r\n";
        $undef = <MAILSOCK>;
        print MAILSOCK "MAIL FROM: $vars{from}\r\n";
        $undef = <MAILSOCK>;
        print MAILSOCK "RCPT TO: $vars{to}\r\n";
        $undef = <MAILSOCK>;
        print MAILSOCK "DATA\r\n";

        print MAILSOCK "From: $vars{from}\r\n";
        print MAILSOCK "To: $vars{to}\r\n";
        print MAILSOCK "Subject: $vars{subject}\r\n";

        print MAILSOCK "$body\r\n";

        print MAILSOCK ".\r\n";
        $undef = <MAILSOCK>;

	return 1;         
}

sub makeEmail {
	my $data = shift;

	my $email;

	if ($data->{process} eq "update") {
		$email=<<EOF;
A user has updated his information at the Alumni Marketplace.
EOF
	} elsif ($data->{process} eq "add") {
		$email=<<EOF;
A new user has signed up for the Alumni Marketplace.
EOF
	} else {
		printErrorPage("Invalid directive.");
		exit;
	}

	my $referer = $ENV{HTTP_REFERER};

	$referer =~ s/(.*)\/(.*)/$1/gim;

	$email .=<<EOF;

Below are the details:

Company Name
------------
$data->{companyName}

Member Name
-----------
$data->{firstName} $data->{lastName}


You can review this entry at:
$referer/$adminScript?d=modify&companyID=$data->{companyID}
EOF

	return ($email);

}

sub getAdminEmail {

	my @config = SQLQuery("select adminEmail from $configTable", 
			      $dbh, qw|adminEmail|);

	if (!$config[0]->{adminEmail}) {
		printErrorPage("Administrative email address not set.");
		exit;
	}


	return ($config[0]->{adminEmail});

}