class MY_Controller extends CI_Controller {

    protected $skipAuth = false;
    protected $user = null;

    public function __construct() {
        parent::__construct();

        header('Content-Type: application/json');

        if (!$this->skipAuth) {
            $this->authorize();
        }
    }

    private function authorize()
    {
        try {
            $this->user = verify_jwt(); // from helper
        } catch (Exception $e) {
            echo json_encode([
                "status" => 0,
                "message" => "Unauthorized",
                "error" => $e->getMessage() // optional (remove in prod)
            ]);
            exit;
        }
    }
}<!DOCTYPE html>
<html lang="en">

<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>VIS | Access Restricted</title>

    <!-- Bootstrap CSS -->
    <link href="https://valuationintelligentsystem.com/assets/admin/bootstrap/css/bootstrap.min.css" rel="stylesheet" type="text/css" />
    <!-- FontAwesome -->
    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
    <!-- Toastr CSS -->
    <link href="https://cdn.jsdelivr.net/npm/toastr@2.1.4/build/toastr.min.css" rel="stylesheet">

    <style>
        body {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            min-height: 100vh;
            display: flex;
            align-items: center;
            justify-content: center;
            font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;
            padding: 20px;
        }

        .lock-screen-container {
            background: #fff;
            border-radius: 15px;
            box-shadow: 0 10px 40px rgba(0, 0, 0, 0.2);
            padding: 50px 40px;
            text-align: center;
            max-width: 500px;
            width: 100%;
            animation: fadeIn 0.5s ease-in;
        }

        @keyframes fadeIn {
            from {
                opacity: 0;
                transform: translateY(-20px);
            }

            to {
                opacity: 1;
                transform: translateY(0);
            }
        }

        .vis-logo {
            max-width: 100%;
            width: 100%;
            display: block;
        }

        .lock-icon {
            font-size: 80px;
            color: #dc3545;
            animation: pulse 2s infinite;
        }

        @keyframes pulse {

            0%,
            100% {
                transform: scale(1);
            }

            50% {
                transform: scale(1.1);
            }
        }

        .lock-screen-container h1 {
            color: #333;
            font-size: 28px;
            font-weight: 600;
            margin-bottom: 15px;
        }

        .lock-screen-container p {
            color: #666;
            font-size: 16px;
            margin-bottom: 30px;
            line-height: 1.6;
        }

        .we-are-sorry {
            font-family: 'Segoe Print', cursive;
            font-weight: 900;
        }

        .ip-info {
            background: #f8f9fa;
            padding: 15px;
            border-radius: 8px;
            margin-bottom: 30px;
            font-size: 14px;
            color: #495057;
        }

        .ip-info strong {
            color: #333;
        }

        .btn-request {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            color: #fff;
            border: none;
            padding: 12px 40px;
            font-size: 16px;
            font-weight: 600;
            border-radius: 50px;
            cursor: pointer;
            transition: all 0.3s ease;
            box-shadow: 0 4px 15px rgba(102, 126, 234, 0.4);
        }

        .btn-request:hover {
            transform: translateY(-2px);
            box-shadow: 0 6px 20px rgba(102, 126, 234, 0.6);
            color: #fff;
        }

        .btn-request:active {
            transform: translateY(0);
        }


        /* Disabled look: keep same gradient, just dull */
        .btn-request.is-disabled {
            opacity: 0.55;
            transform: none;
            box-shadow: none;
            pointer-events: auto;
            /* allow click */
        }


        /* Completely disable hover visuals when disabled */
        .btn-request.is-disabled:hover,
        .btn-request.is-disabled:focus,
        .btn-request.is-disabled:active {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            box-shadow: none;
            transform: none;
            color: #fff;
        }

        /* Modal Styles */
        .modal-content {
            border-radius: 15px;
            border: none;
            box-shadow: 0 10px 40px rgba(0, 0, 0, 0.2);
        }

        .modal-header {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            color: #fff;
            border-radius: 15px 15px 0 0;
            padding: 20px;
            border-bottom: none;
            display: flex;
            align-items: center;
            justify-content: space-between;
        }

        .modal-header .close {
            color: #fff;
            opacity: 0.9;
            text-shadow: none;
            margin-left: auto;
            padding: 0;
            background: transparent;
            border: none;
            font-size: 28px;
            line-height: 1;
        }

        .modal-header .close:hover {
            opacity: 1;
        }

        .modal-title {
            font-weight: 600;
            font-size: 20px;
            margin: 0;
            flex: 1;
        }

        .modal-body {
            padding: 30px;
        }

        .form-group {
            margin-bottom: 20px;
        }

        .form-group label {
            font-weight: 600;
            color: #333;
            margin-bottom: 8px;
            display: block;
        }

        .form-group label .required {
            color: #dc3545;
        }

        .form-control {
            border-radius: 8px;
            border: 1px solid #ddd;
            padding: 10px 15px;
            font-size: 14px;
            transition: all 0.3s ease;
        }

        .form-control:focus {
            border-color: #667eea;
            box-shadow: 0 0 0 0.2rem rgba(102, 126, 234, 0.25);
        }

        .captcha-container {
            display: flex;
            align-items: center;
            gap: 15px;
        }

        .captcha-image {
            border: 2px solid #ddd;
            border-radius: 8px;
            cursor: pointer;
            padding: 5px;
            background: #f8f9fa;
        }

        .captcha-input {
            flex: 1;
        }

        .btn-submit {
            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
            color: #fff;
            border: none;
            padding: 12px 40px;
            font-size: 16px;
            font-weight: 600;
            border-radius: 50px;
            cursor: pointer;
            width: 100%;
            transition: all 0.3s ease;
            margin-top: 10px;
        }

        .btn-submit:hover {
            transform: translateY(-2px);
            box-shadow: 0 6px 20px rgba(102, 126, 234, 0.6);
            color: #fff;
        }

        .btn-submit:disabled {
            opacity: 0.6;
            cursor: not-allowed;
        }

        .error-message {
            color: #dc3545;
            font-size: 12px;
            margin-top: 5px;
            margin-bottom: 0;
            display: none;
            padding-top: 2px;
        }

        .error-message:not(:empty) {
            display: block;
        }

        .form-control.error,
        .form-control:invalid {
            border-color: #dc3545;
        }

        .form-control.error:focus,
        .form-control:invalid:focus {
            border-color: #dc3545;
            box-shadow: 0 0 0 0.2rem rgba(220, 53, 69, 0.25);
        }

        /* Mobile Responsive */
        @media (max-width: 768px) {
            .lock-screen-container {
                padding: 30px 20px;
            }

            .lock-icon {
                font-size: 60px;
            }

            .lock-screen-container h1 {
                font-size: 24px;
            }

            .lock-screen-container p {
                font-size: 14px;
            }

            .vis-logo {
                max-width: 100%;
            }

            .modal-body {
                padding: 20px;
            }

            .captcha-container {
                flex-direction: column;
                align-items: stretch;
            }

            .captcha-image {
                width: 100%;
                text-align: center;
            }
        }

        @media (max-width: 480px) {
            .lock-screen-container {
                padding: 25px 15px;
            }

            .lock-icon {
                font-size: 50px;
            }

            .lock-screen-container h1 {
                font-size: 20px;
            }
        }
    </style>
</head>

<body>
    <div class="lock-screen-container">
        <!-- VIS Logo with Slogan -->
        <img src="https://valuationintelligentsystem.com/assets/vis_logo_with_slogan.png" alt="VIS - Valuation Intelligent System" class="vis-logo">

        <!-- Lock Icon / Check Icon -->
                    <div class="lock-icon">
                <i class="fa fa-lock"></i>
            </div>
        
        <!-- Message -->
                    <h1 class="Access_Restricted" style="margin-top:-10px">Access Restricted</h1>
            <p class="we-are-sorry" style="color: #0000FF; font-size: 32px; margin-bottom: 10px; font-weight: 900;">We Are Sorry</p>
            <p>Your IP is not authorized to access this system.</p>
        
        <!-- IP Info -->
        <div class="ip-info">
            <strong>Your IP Address:</strong> 216.73.217.118        </div>

        <!-- Approved Message (if status is 1) -->
                    <!-- Request Authorization Button -->
            <button type="button" class="btn btn-request" id="requestAuthBtn">
                Request Authorization
            </button>

            </div>

    <!-- IP Authorization Request Modal -->
    <div class="modal fade" id="ipRequestModal" tabindex="-1" role="dialog" aria-labelledby="ipRequestModalLabel" aria-hidden="true">
        <div class="modal-dialog modal-dialog-centered" role="document">
            <div class="modal-content">
                <div class="modal-header">
                    <h5 class="modal-title" id="ipRequestModalLabel">Request IP Authorization</h5>
                    <button type="button" class="close" data-dismiss="modal" aria-label="Close">
                        <span aria-hidden="true">&times;</span>
                    </button>
                </div>
                <div class="modal-body">
                    <form id="ipRequestForm">
                        <div class="form-group">
                            <label for="name">Name <span class="required">*</span></label>
                            <input type="text" class="form-control" id="name" name="name">
                            <div class="error-message" id="name-error"></div>
                        </div>

                        <div class="form-group">
                            <label for="email">Email <span class="required">*</span></label>
                            <input type="email" class="form-control" id="email" name="email">
                            <div class="error-message" id="email-error"></div>
                        </div>

                        <div class="form-group">
                            <label for="department">Organization/Department <span class="required">*</span></label>
                            <input type="text" class="form-control" id="department" name="department">
                            <div class="error-message" id="department-error"></div>
                        </div>

                        <div class="form-group">
                            <label for="mobile">Mobile Number</label>
                            <input type="text" class="form-control" id="mobile" name="mobile" maxlength="10" pattern="[0-9]*" inputmode="numeric">
                            <div class="error-message" id="mobile-error"></div>
                        </div>

                        <div class="form-group">
                            <label for="reason">Reason for Accessing VIS <span class="required">*</span></label>
                            <textarea class="form-control" id="reason" name="reason" rows="3"></textarea>
                            <div class="error-message" id="reason-error"></div>
                        </div>

                        <div class="form-group">
                            <label for="captcha">Captcha <span class="required">*</span></label>
                            <div class="captcha-container">
                                <img src="https://valuationintelligentsystem.com/Admin/IpAuthorization/generateCaptcha" id="captchaImage" class="captcha-image" onclick="refreshCaptcha()" alt="Captcha">
                                <input type="text" class="form-control captcha-input" id="captcha" name="captcha" placeholder="Enter captcha" maxlength="5">
                            </div>
                            <div class="error-message" id="captcha-error"></div>
                            <small class="text-muted">Click on image to refresh</small>
                        </div>

                        <!-- Hidden field to store geo coordinates (Latitude,Longitude) -->
                        <input type="hidden" id="geo_coordinates" name="geo_coordinates" value="">

                        <button type="submit" class="btn btn-submit cursor-pointer" id="submitBtn">
                            Submit Request
                        </button>
                    </form>
                </div>
            </div>
        </div>
    </div>

    <!-- jQuery -->
    <script src="https://code.jquery.com/jquery-3.6.0.min.js"></script>
    <!-- Bootstrap JS -->
    <script src="https://valuationintelligentsystem.com/assets/admin/bootstrap/js/bootstrap.min.js"></script>
    <!-- Toastr JS -->
    <script src="https://cdn.jsdelivr.net/npm/toastr@2.1.4/build/toastr.min.js"></script>

    <script>
        // Geo coordinates (Latitude,Longitude) from Google Geolocation API
        var geoCoordinates = '';
        var locationAvailable = false;
        // Google API Key from server-side constant (application/config/constants.php)
        var googleApiKey = 'AIzaSyB-qKYg4vX4XCl9Uj6Lo3pANc5E8nC4f7s';
        var googleApiUrl = 'https://www.googleapis.com/geolocation/v1/geolocate?key=' + googleApiKey;

        // Check location availability on page load (using Google API)
        async function checkLocationAvailability() {
            // Google API doesn't require browser permissions, so we can enable the button
            // We'll test the API connection on page load
            try {
                // Quick test to see if API is accessible
                locationAvailable = true;
                enableRequestButton();
            } catch (e) {
                // If there's an issue, still enable button (user can try when clicking)
                locationAvailable = true;
                enableRequestButton();
            }
        }

        function disableRequestButton() {
            $("#requestAuthBtn").addClass("is-disabled").attr("aria-disabled", "true");
        }

        function enableRequestButton() {
            $("#requestAuthBtn").removeClass("is-disabled").removeAttr("aria-disabled");
        }

        // Fetch geo coordinates using Google Geolocation API
        function fetchGeoCoordinates() {
            // Show loading message
            $('#submitBtn').prop('disabled', true).text('Getting location...');

            // Make POST request to Google Geolocation API
            $.ajax({
                url: googleApiUrl,
                type: 'POST',
                contentType: 'application/json',
                data: JSON.stringify({}), // Empty object - Google will use IP/WiFi/cell tower data
                dataType: 'json',
                timeout: 15000, // 15 seconds timeout
                success: function(response) {
                    // Success: Get exact latitude and longitude from Google API response
                    if (response && response.location) {
                        var latitude = response.location.lat;
                        var longitude = response.location.lng;
                        var accuracy = response.accuracy || 0;
                        
                        geoCoordinates = latitude + ',' + longitude;
                        $('#geo_coordinates').val(geoCoordinates);
                        locationAvailable = true;

                        // Enable submit button
                        $('#submitBtn').prop('disabled', false).text('Submit Request');

                        // console.log('Location captured via Google API: ' + geoCoordinates + ' (Accuracy: ' + accuracy + 'm)');
                    } else {
                        // Invalid response format
                        $('#geo_coordinates').val('');
                        $('#submitBtn').prop('disabled', false).text('Submit Request');
                        alert('Unable to get location. Please try again.');
                        console.log('Invalid response from Google API:', response);
                    }
                },
                error: function(xhr, status, error) {
                    // Error handling
                    $('#geo_coordinates').val('');
                    $('#submitBtn').prop('disabled', false).text('Submit Request');

                    var errorMessage = '';
                    if (status === 'timeout') {
                        errorMessage = 'Location request timed out. Please check your internet connection and try again.';
                    } else if (xhr.status === 400) {
                        errorMessage = 'Invalid location request. Please try again.';
                    } else if (xhr.status === 403) {
                        errorMessage = 'Location service is temporarily unavailable. Please try again later.';
                    } else if (xhr.status === 0) {
                        errorMessage = 'Unable to connect to location service. Please check your internet connection.';
                    } else {
                        errorMessage = 'An error occurred while getting your location. Please try again.';
                    }

                    alert(errorMessage);
                    console.log('Google Geolocation API error:', {
                        status: status,
                        error: error,
                        response: xhr.responseText
                    });
                }
            });
        }

        // Refresh Captcha
        function refreshCaptcha() {
            $('#captchaImage').attr('src', 'https://valuationintelligentsystem.com/Admin/IpAuthorization/generateCaptcha?t=' + new Date().getTime());
            $('#captcha').val('');
        }

        // Form Validation
        function validateForm() {
            var isValid = true;

            // Reset all error states
            $('.form-control').removeClass('error');
            $('.error-message').text('').hide();

            // Name validation
            var name = $('#name').val().trim();
            if (name === '') {
                $('#name').addClass('error');
                $('#name-error').text('Name is required').show();
                isValid = false;
            } else {
                $('#name').removeClass('error');
                $('#name-error').text('').hide();
            }

            // Email validation
            var email = $('#email').val().trim();
            var emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
            if (email === '') {
                $('#email').addClass('error');
                $('#email-error').text('Email is required').show();
                isValid = false;
            } else if (!emailRegex.test(email)) {
                $('#email').addClass('error');
                $('#email-error').text('Please enter a valid email address').show();
                isValid = false;
            } else {
                $('#email').removeClass('error');
                $('#email-error').text('').hide();
            }

            // Organization/Department validation
            var department = $('#department').val().trim();
            if (department === '') {
                $('#department').addClass('error');
                $('#department-error').text('Organization/Department is required').show();
                isValid = false;
            } else {
                $('#department').removeClass('error');
                $('#department-error').text('').hide();
            }

            // Reason validation
            var reason = $('#reason').val().trim();
            if (reason === '') {
                $('#reason').addClass('error');
                $('#reason-error').text('Reason is required').show();
                isValid = false;
            } else {
                $('#reason').removeClass('error');
                $('#reason-error').text('').hide();
            }

            // Captcha validation
            var captcha = $('#captcha').val().trim();
            if (captcha === '') {
                $('#captcha').addClass('error');
                $('#captcha-error').text('Captcha is required').show();
                isValid = false;
            } else {
                $('#captcha').removeClass('error');
                $('#captcha-error').text('').hide();
            }

            return isValid;
        }

        // Real-time validation on blur
        $('#name, #email, #reason, #captcha').on('blur', function() {
            var fieldId = $(this).attr('id');
            var value = $(this).val().trim();

            if (fieldId === 'name') {
                if (value === '') {
                    $(this).addClass('error');
                    $('#name-error').text('Name is required').show();
                } else {
                    $(this).removeClass('error');
                    $('#name-error').text('').hide();
                }
            } else if (fieldId === 'email') {
                var emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
                if (value === '') {
                    $(this).addClass('error');
                    $('#email-error').text('Email is required').show();
                } else if (!emailRegex.test(value)) {
                    $(this).addClass('error');
                    $('#email-error').text('Please enter a valid email address').show();
                } else {
                    $(this).removeClass('error');
                    $('#email-error').text('').hide();
                }
            } else if (fieldId === 'reason') {
                if (value === '') {
                    $(this).addClass('error');
                    $('#reason-error').text('Reason is required').show();
                } else {
                    $(this).removeClass('error');
                    $('#reason-error').text('').hide();
                }
            } else if (fieldId === 'captcha') {
                if (value === '') {
                    $(this).addClass('error');
                    $('#captcha-error').text('Captcha is required').show();
                } else {
                    $(this).removeClass('error');
                    $('#captcha-error').text('').hide();
                }
            }
        });

        // Form Submit
        $('#ipRequestForm').on('submit', function(e) {
            e.preventDefault();

            // Check if location is captured
            if (!$('#geo_coordinates').val() || $('#geo_coordinates').val().trim() === '') {
                alert('Location is required. Please enable location access and try again.');
                fetchGeoCoordinates(); // Try to get location again
                return;
            }

            if (!validateForm()) {
                return;
            }

            $('#submitBtn').prop('disabled', true).text('Submitting...');

            $.ajax({
                url: 'https://valuationintelligentsystem.com/Admin/IpAuthorization/submitIpRequest',
                type: 'POST',
                dataType: 'json',
                data: {
                    name: $('#name').val().trim(),
                    email: $('#email').val().trim(),
                    department: $('#department').val().trim(),
                    mobile: $('#mobile').val().trim(),
                    reason: $('#reason').val().trim(),
                    captcha: $('#captcha').val().trim(),
                    geo_coordinates: $('#geo_coordinates').val().trim()
                },
                success: function(response) {
                    if (response.status === 'success') {
                        toastr.success(response.message, 'Success', {
                            timeOut: 5000
                        });
                        $('#ipRequestModal').modal('hide');
                        $('#ipRequestForm')[0].reset();
                        refreshCaptcha();
                    } else {
                        toastr.error(response.message, 'Error', {
                            timeOut: 5000
                        });
                        refreshCaptcha();
                    }
                    $('#submitBtn').prop('disabled', false).text('Submit Request');
                },
                error: function() {
                    toastr.error('An error occurred. Please try again.', 'Error', {
                        timeOut: 5000
                    });
                    $('#submitBtn').prop('disabled', false).text('Submit Request');
                    refreshCaptcha();
                }
            });
        });

        // Mobile number - only allow numbers
        $('#mobile').on('input', function() {
            var value = $(this).val();
            // Remove any non-numeric characters
            value = value.replace(/[^0-9]/g, '');
            $(this).val(value);
            // Limit to 10 digits
            if (value.length > 10) {
                $(this).val(value.substring(0, 10));
            }
            $(this).removeClass('error');
            $('#mobile-error').text('').hide();
        });

        // Clear errors on input
        $('input, textarea').on('input', function() {
            var fieldId = $(this).attr('id');
            // Skip mobile field as it has its own handler
            if (fieldId === 'mobile') {
                return;
            }
            $(this).removeClass('error');
            $('#' + fieldId + '-error').text('').hide();
        });

        // Check location availability on page load
        $(document).ready(function() {
            checkLocationAvailability();
        });

        // Request Authorization button click handler
        $("#requestAuthBtn").on("click", function(e) {
            e.preventDefault();
            e.stopImmediatePropagation();

            // Check if button is disabled (shouldn't happen with Google API, but keep for safety)
            if ($(this).hasClass("is-disabled") && !locationAvailable) {
                $("#ipRequestModal").modal("hide");
                $("body").removeClass("modal-open");
                $(".modal-backdrop").remove();

                alert(
                    "Unable to access location service. Please check your internet connection and try again."
                );
                return false;
            }

            // Open modal (modal will fetch exact location using Google API)
            $("#ipRequestModal").modal("show");
        });




        // Refresh captcha and get exact location when modal is opened
        $('#ipRequestModal').on('show.bs.modal', function() {
            refreshCaptcha();
            // Reset geo coordinates
            geoCoordinates = '';
            $('#geo_coordinates').val('');
            // Request exact location from Google Geolocation API
            fetchGeoCoordinates();
        });
    </script>
</body>

</html>