<?php
require_once __DIR__ . "/db.php"; 

session_start();

// Ensure user is authenticated
if (!isset($_SESSION['user_id'])) {
    http_response_code(403);
    echo json_encode(["error" => "Unauthorized access."]);
    exit;
}

// Check if the user is a board member
$userId = $_SESSION['user_id'];
$stmt = $conn->prepare("SELECT is_board_member FROM users WHERE id = ?");
$stmt->bind_param("i", $userId);
$stmt->execute();
$result = $stmt->get_result();
$user = $result->fetch_assoc();
$isBoardMember = $user['is_board_member'] ?? 0;

$response = ["is_board_member" => $isBoardMember];

if ($isBoardMember) {
    // Fetch board member image
    $stmt = $conn->prepare("SELECT image_url FROM board_members WHERE user_id = ?");
    $stmt->bind_param("i", $userId);
    $stmt->execute();
    $result = $stmt->get_result();
    $boardMember = $result->fetch_assoc();
    $response["board_member_image"] = $boardMember['image_url'] ?? "../assets/img/board-member-placeholder.png";
}

echo json_encode($response);
?>