/*
 * dAuth: A secure authentication system for the cakePHP framework.
 * Copyright (c)	2006, Dieter Plaetinck
 * Licensed under The MIT License
 * Redistributions of files must retain the above copyright notice.
 *
 * @author			Dieter Plaetinck
 * @copyright		Copyright (c) 2006, Dieter Plaetinck
 * @version			0.3
 * @modifiedby		Dieter@be
 * @lastmodified	$Date: 2006-12-04 16:18:00 +0000 (Mon, 4 Dec 2006) $
 * @license			http://www.opensource.org/licenses/mit-license.php The MIT License
 */


	/*
	 * The algorithm (constant over time) that will be used to securely store passwords in the database.
	 * If you change this, you have to change the stage1Hash component function too.
	 */

	function stage1Hash(cleartext)
	{
		return sha1Hash(cleartext+cleartext.charAt(0));
	}

	/*
	 * The algorithm (changing over time) that will be used to securely transport passwords over the network.
	 * If you change this, you have to change the stage2Hash component function too.
	 */
	function stage2Hash(stage1,salt)
	{
		return sha1Hash(stage1+salt);
	}

	function doStage2()
	{
		var password = document.getElementById('password').value;
		var salt = document.getElementById('special_sauce').value;
		var hash = stage2Hash(stage1Hash(password),salt);
		var fake_pass = randomString(password.length);
		document.getElementById('hashed_pw').value = hash;
		//document.getElementById('password').value = fake_pass;
	}
	function doStage1()
	{
		var password = document.getElementById('password').value;
		var hash = stage1Hash(password);
		var fake_pass = randomString(password.length);
		document.getElementById('hashed_pw').value = hash;
		document.getElementById('password').value = fake_pass;
	}
	function doRegister()
	{
		var password = document.getElementById('password').value;
		var password2 = document.getElementById('password2').value;
		var hash="";
		var hash2="";
		if(password=="" || password2==""){
			hash="";
			hash2="";
		}
		else if(password.length<4 || password.length>16){
			hash=password;
			hash2=password2;
		}
		else{
			hash = stage1Hash(password);
			hash2 = stage1Hash(password2);
		}
		var fake_pass = randomString(password.length);
		var fake_pass2 = fake_pass;
		document.getElementById('hashed_pw').value = hash;
		document.getElementById('hashed_pw2').value = hash2;
		//document.getElementById('password').value = fake_pass;
		//document.getElementById('password2').value = fake_pass2;
	}
	function doChangePass()
	{
		var oldpass = document.getElementById('oldpass').value;
		var password = document.getElementById('password').value;
		var password2 = document.getElementById('password2').value;
		var oldhash="";
		var hash="";
		var hash2="";
		if(oldpass=="")
			oldhash="";
		else
			oldhash = stage1Hash(oldpass);
		if(password=="" || password2==""){
			hash="";
			hash2="";
		}
		else if(password.length<4 || password.length>12){
			hash=password;
			hash2=password2;
		}
		else{
			hash = stage1Hash(password);
			hash2 = stage1Hash(password2);
		}
		var fake_old = randomString(oldpass.length);
		var fake_pass = randomString(password.length);
		var fake_pass2 = fake_pass;
		document.getElementById('hashed_oldpw').value = oldhash;
		document.getElementById('hashed_pw').value = hash;
		document.getElementById('hashed_pw2').value = hash2;
		document.getElementById('oldpass').value = fake_old;
		//document.getElementById('password').value = fake_pass;
		//document.getElementById('password2').value = fake_pass2;
	}

	function randomString(len)
	{
		var chars = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXTZabcdefghiklmnopqrstuvwxyz";
		var randomstring = '';
		for (var i=0; i<len; i++)
		{
			var rnum = Math.floor(Math.random() * chars.length);
			randomstring += chars.substring(rnum,rnum+1);
		}
		return randomstring;
	}

	function emptyField(fieldId)
	{
		document.getElementById(fieldId).value = "";
	}

	function removeError(errorId)
	{
		document.getElementById(errorId).innerHTML = "";
	}

	function fixForm(formId, action)
	{
		var form = document.getElementById(formId);
		form.action = action;
		form.method = 'post';
		form.style.display = "block";
	}