<?php
require_once __DIR__ . '/auth_check.php';
require_once 'db/config.php';

if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
    header('Location: request_form.php');
    exit;
}

try {
    $pdo = db();

    $status = 'Pending';

    $requester_id = $_SESSION['user_id'] ?? null;

    $sql = "INSERT INTO change_requests (
        requester_id,
        request_date,
        requester_dept,
        requester_name,
        requester_ext,
        related_request_no,
        system_name,
        program_name,
        change_title,
        change_category,
        reason_for_change,
        description_of_change,
        status
    ) VALUES (
        :requester_id,
        :request_date,
        :requester_dept,
        :requester_name,
        :requester_ext,
        :related_request_no,
        :system_name,
        :program_name,
        :change_title,
        :change_category,
        :reason_for_change,
        :description_of_change,
        :status
    )";

    $stmt = $pdo->prepare($sql);

    $stmt->bindValue(':requester_id', $requester_id, PDO::PARAM_INT);
    $stmt->bindValue(':request_date', !empty($_POST['request_date']) ? $_POST['request_date'] : null);
    $stmt->bindValue(':requester_dept', $_POST['requester_dept'] ?? null);
    $stmt->bindValue(':requester_name', $_POST['requester_name'] ?? null);
    $stmt->bindValue(':requester_ext', $_POST['requester_ext'] ?? null);
    $stmt->bindValue(':related_request_no', $_POST['related_request_no'] ?? null);
    $stmt->bindValue(':system_name', $_POST['system_name'] ?? null);
    $stmt->bindValue(':program_name', $_POST['program_name'] ?? null);
    $stmt->bindValue(':change_title', $_POST['change_title'] ?? null);
    $stmt->bindValue(':change_category', $_POST['change_category'] ?? null);
    $stmt->bindValue(':reason_for_change', $_POST['reason_for_change'] ?? null);
    $stmt->bindValue(':description_of_change', $_POST['description_of_change'] ?? null);
    $stmt->bindValue(':status', $status);

    $stmt->execute();

    $_SESSION['success_message'] = "Request submitted successfully with status: $status.";

} catch (PDOException $e) {
    $_SESSION['error_message'] = "Error submitting request: " . $e->getMessage();
}

header('Location: request_form.php');
exit;