comparison: www/includes/db_inventory_hops.php
www/includes/db_inventory_hops.php
- changeset 196
- 531d5458782f
- parent 77
- a9f8de2d7b2b
- child 296
- 69fadd1aded2
equal
deleted
inserted
replaced
| 195:2ac491548d8d | 196:531d5458782f |
|---|---|
| 9 if (! $connect) { | 9 if (! $connect) { |
| 10 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); | 10 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); |
| 11 } | 11 } |
| 12 mysqli_set_charset($connect, "utf8" ); | 12 mysqli_set_charset($connect, "utf8" ); |
| 13 | 13 |
| 14 // get data and store in a json array | 14 if (isset($_POST['insert']) || isset($_POST['update'])) { |
| 15 $query = "SELECT * FROM inventory_hops ORDER BY origin,name"; | 15 if (isset($_POST['insert'])) { |
| 16 if (isset($_GET['insert'])) { | 16 $sql = "INSERT INTO `inventory_hops` SET "; |
| 17 // INSERT COMMAND | 17 } |
| 18 $sql = "INSERT INTO `inventory_hops` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); | 18 if (isset($_POST['update'])) { |
| 19 $sql .= "', alpha='" . $_GET['alpha']; | 19 $sql = "UPDATE `inventory_hops` SET "; |
| 20 $sql .= "', beta='" . $_GET['beta']; | 20 } |
| 21 $sql .= "', humulene='" . $_GET['humulene']; | 21 |
| 22 $sql .= "', caryophyllene='" . $_GET['caryophyllene']; | 22 $sql .= "name='" . mysqli_real_escape_string($connect, $_POST['name']); |
| 23 $sql .= "', cohumulone='" . $_GET['cohumulone']; | 23 $sql .= "', alpha='" . $_POST['alpha']; |
| 24 $sql .= "', myrcene='" . $_GET['myrcene']; | 24 $sql .= "', beta='" . $_POST['beta']; |
| 25 $sql .= "', hsi='" . $_GET['hsi']; | 25 $sql .= "', humulene='" . $_POST['humulene']; |
| 26 $sql .= "', type='" . $_GET['type']; | 26 $sql .= "', caryophyllene='" . $_POST['caryophyllene']; |
| 27 $sql .= "', form='" . $_GET['form']; | 27 $sql .= "', cohumulone='" . $_POST['cohumulone']; |
| 28 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); | 28 $sql .= "', myrcene='" . $_POST['myrcene']; |
| 29 $sql .= "', origin='" . mysqli_real_escape_string($connect, $_GET['origin']); | 29 $sql .= "', hsi='" . $_POST['hsi']; |
| 30 $sql .= "', substitutes='" . mysqli_real_escape_string($connect, $_GET['substitutes']); | 30 $sql .= "', type='" . $_POST['type']; |
| 31 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; | 31 $sql .= "', form='" . $_POST['form']; |
| 32 $sql .= "', inventory='" . floatval($_GET['inventory']) / 1000.0; | 32 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
| 33 $sql .= "', cost='" . $_GET['cost']; | 33 $sql .= "', origin='" . mysqli_real_escape_string($connect, $_POST['origin']); |
| 34 $sql .= "', production_date='" . $_GET['production_date']; | 34 $sql .= "', substitutes='" . mysqli_real_escape_string($connect, $_POST['substitutes']); |
| 35 $sql .= "', tht_date='" . $_GET['tht_date']; | 35 ($_POST['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; |
| 36 $sql .= "', total_oil='" . $_GET['total_oil']; | 36 $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0; |
| 37 $sql .= "';"; | 37 $sql .= "', cost='" . $_POST['cost'] . "'"; |
| 38 if ($_POST['production_date'] == '') | |
| 39 $sql .= ", production_date=NULL"; | |
| 40 else | |
| 41 $sql .= ", production_date='" . $_POST['production_date'] . "'"; | |
| 42 if ($_POST['tht_date'] == '') | |
| 43 $sql .= ", tht_date=NULL"; | |
| 44 else | |
| 45 $sql .= ", tht_date='" . $_POST['tht_date'] . "'"; | |
| 46 $sql .= ", total_oil='" . $_POST['total_oil']; | |
| 47 if (isset($_POST['insert'])) { | |
| 48 $sql .= "';"; | |
| 49 } | |
| 50 if (isset($_POST['update'])) { | |
| 51 $sql .= "' WHERE record='" . $_POST['record'] . "';"; | |
| 52 } | |
| 53 syslog(LOG_NOTICE, $sql); | |
| 54 | |
| 38 $result = mysqli_query($connect, $sql); | 55 $result = mysqli_query($connect, $sql); |
| 39 if (! $result) { | 56 if (! $result) { |
| 40 syslog(LOG_NOTICE, "db_inventory_hops: ".$sql." result: ".mysqli_error($connect)); | 57 syslog(LOG_NOTICE, "db_inventory_hops: ".$sql." result: ".mysqli_error($connect)); |
| 41 } else { | 58 } else { |
| 42 syslog(LOG_NOTICE, "db_inventory_hops: inserted ".$_GET['name']); | 59 if (isset($_POST['update'])) { |
| 60 syslog(LOG_NOTICE, "db_inventory_hops: updated record ".$_POST['record']); | |
| 61 } else { | |
| 62 $lastid = mysqli_insert_id($connect); | |
| 63 syslog(LOG_NOTICE, "db_inventory_hops: inserted record ".$lastid); | |
| 64 } | |
| 43 } | 65 } |
| 44 echo $result; | 66 echo $result; |
| 45 | 67 |
| 46 } else if (isset($_GET['update'])) { | 68 } else if (isset($_POST['delete'])) { |
| 47 // UPDATE COMMAND | 69 // DELETE COMMAND |
| 48 $sql = "UPDATE `inventory_hops` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); | 70 $sql = "DELETE FROM `inventory_hops` WHERE record='".$_POST['record']."';"; |
| 49 $sql .= "', alpha='" . $_GET['alpha']; | |
| 50 $sql .= "', beta='" . $_GET['beta']; | |
| 51 $sql .= "', humulene='" . $_GET['humulene']; | |
| 52 $sql .= "', caryophyllene='" . $_GET['caryophyllene']; | |
| 53 $sql .= "', cohumulone='" . $_GET['cohumulone']; | |
| 54 $sql .= "', myrcene='" . $_GET['myrcene']; | |
| 55 $sql .= "', hsi='" . $_GET['hsi']; | |
| 56 $sql .= "', type='" . $_GET['type']; | |
| 57 $sql .= "', form='" . $_GET['form']; | |
| 58 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); | |
| 59 $sql .= "', origin='" . mysqli_real_escape_string($connect, $_GET['origin']); | |
| 60 $sql .= "', substitutes='" . mysqli_real_escape_string($connect, $_GET['substitutes']); | |
| 61 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; | |
| 62 $sql .= "', inventory='" . floatval($_GET['inventory']) / 1000.0; | |
| 63 $sql .= "', cost='" . $_GET['cost']; | |
| 64 $sql .= "', production_date='" . $_GET['production_date']; | |
| 65 $sql .= "', tht_date='" . $_GET['tht_date']; | |
| 66 $sql .= "', total_oil='" . $_GET['total_oil']; | |
| 67 $sql .= "' WHERE record='" . $_GET['record'] . "';"; | |
| 68 $result = mysqli_query($connect, $sql); | 71 $result = mysqli_query($connect, $sql); |
| 69 if (! $result) { | 72 if (! $result) { |
| 70 syslog(LOG_NOTICE, "db_inventory_hops: ".$sql." result: ".mysqli_error($connect)); | 73 syslog(LOG_NOTICE, "db_inventory_hops: ".$sql." result: ".mysqli_error($connect)); |
| 71 } else { | 74 } else { |
| 72 syslog(LOG_NOTICE, "db_inventory_hops: updated record ".$_GET['record']); | 75 syslog(LOG_NOTICE, "db_inventory_hops: deleted record ".$_POST['record']); |
| 73 } | |
| 74 echo $result; | |
| 75 | |
| 76 } else if (isset($_GET['delete'])) { | |
| 77 // DELETE COMMAND | |
| 78 $sql = "DELETE FROM `inventory_hops` WHERE record='".$_GET['record']."';"; | |
| 79 $result = mysqli_query($connect, $sql); | |
| 80 if (! $result) { | |
| 81 syslog(LOG_NOTICE, "db_inventory_hops: ".$sql." result: ".mysqli_error($connect)); | |
| 82 } else { | |
| 83 syslog(LOG_NOTICE, "db_inventory_hops: deleted record ".$_GET['record']); | |
| 84 } | 76 } |
| 85 echo $result; | 77 echo $result; |
| 86 | 78 |
| 87 } else { | 79 } else { |
| 88 // SELECT COMMAND | 80 // SELECT COMMAND |
| 81 $query = "SELECT * FROM inventory_hops ORDER BY origin,name"; | |
| 89 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); | 82 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
| 90 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { | 83 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { |
| 91 $hops[] = array( | 84 $hops[] = array( |
| 92 'record' => $row['record'], | 85 'record' => $row['record'], |
| 93 'name' => $row['name'], | 86 'name' => $row['name'], |
