8 if (! $connect) { |
8 if (! $connect) { |
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); |
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); |
10 } |
10 } |
11 mysqli_set_charset($connect, "utf8" ); |
11 mysqli_set_charset($connect, "utf8" ); |
12 |
12 |
13 // get data and store in a json array |
13 if (isset($_POST['insert']) || isset($_POST['update'])) { |
14 $query = "SELECT * FROM inventory_miscs ORDER BY name"; |
14 if (isset($_POST['insert'])) { |
15 if (isset($_GET['insert'])) { |
15 $sql = "INSERT INTO `inventory_miscs` SET "; |
16 // INSERT COMMAND |
16 } |
17 $sql = "INSERT INTO `inventory_miscs` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); |
17 if (isset($_POST['update'])) { |
18 $sql .= "', type='" . $_GET['type']; |
18 $sql = "UPDATE `inventory_miscs` SET "; |
19 $sql .= "', use_use='" . $_GET['use_use']; |
19 } |
20 $sql .= "', time='" . $_GET['time']; |
20 |
21 ($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; |
21 $sql .= "name='" . mysqli_real_escape_string($connect, $_POST['name']); |
22 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_GET['use_for']); |
22 $sql .= "', type='" . $_POST['type']; |
23 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); |
23 $sql .= "', use_use='" . $_POST['use_use']; |
24 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; |
24 $sql .= "', time='" . $_POST['time']; |
25 $sql .= "', inventory='" . $_GET['inventory']; |
25 ($_POST['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; |
26 $sql .= "', cost='" . $_GET['cost']; |
26 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_POST['use_for']); |
27 $sql .= "', production_date='" . $_GET['production_date']; |
27 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
28 $sql .= "', tht_date='" . $_GET['tht_date']; |
28 ($_POST['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; |
29 $sql .= "';"; |
29 $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0; |
|
30 $sql .= "', cost='" . $_POST['cost'] . "'"; |
|
31 if ($_POST['production_date'] == '') |
|
32 $sql .= ", production_date=NULL"; |
|
33 else |
|
34 $sql .= ", production_date='" . $_POST['production_date'] . "'"; |
|
35 if ($_POST['tht_date'] == '') |
|
36 $sql .= ", tht_date=NULL"; |
|
37 else |
|
38 $sql .= ", tht_date='" . $_POST['tht_date'] . "'"; |
|
39 |
|
40 if (isset($_POST['insert'])) { |
|
41 $sql .= ";"; |
|
42 } |
|
43 if (isset($_POST['update'])) { |
|
44 $sql .= " WHERE record='" . $_POST['record'] . "';"; |
|
45 } |
|
46 syslog(LOG_NOTICE, $sql); |
|
47 |
30 $result = mysqli_query($connect, $sql); |
48 $result = mysqli_query($connect, $sql); |
31 if (! $result) { |
49 if (! $result) { |
32 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); |
50 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); |
33 } else { |
51 } else { |
34 syslog(LOG_NOTICE, "db_inventory_miscs: inserted ".$_GET['name']); |
52 if (isset($_POST['update'])) { |
|
53 syslog(LOG_NOTICE, "db_inventory_miscs: updated record ".$_POST['record']); |
|
54 } else { |
|
55 $lastid = mysqli_insert_id($connect); |
|
56 syslog(LOG_NOTICE, "db_inventory_miscs: inserted record ".$lastid); |
|
57 } |
35 } |
58 } |
36 echo $result; |
59 echo $result; |
37 |
60 |
38 } else if (isset($_GET['update'])) { |
61 } else if (isset($_POST['delete'])) { |
39 // UPDATE COMMAND |
62 // DELETE COMMAND |
40 $sql = "UPDATE `inventory_miscs` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); |
63 $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_POST['record']."';"; |
41 $sql .= "', type='" . $_GET['type']; |
|
42 $sql .= "', use_use='" . $_GET['use_use']; |
|
43 $sql .= "', time='" . $_GET['time']; |
|
44 ($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; |
|
45 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_GET['use_for']); |
|
46 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); |
|
47 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; |
|
48 $sql .= "', inventory='" . $_GET['inventory']; |
|
49 $sql .= "', cost='" . $_GET['cost']; |
|
50 $sql .= "', production_date='" . $_GET['production_date']; |
|
51 $sql .= "', tht_date='" . $_GET['tht_date']; |
|
52 $sql .= "' WHERE record='" . $_GET['record'] . "';"; |
|
53 $result = mysqli_query($connect, $sql); |
64 $result = mysqli_query($connect, $sql); |
54 if (! $result) { |
65 if (! $result) { |
55 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); |
66 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); |
56 } else { |
67 } else { |
57 syslog(LOG_NOTICE, "db_inventory_miscs: updated record ".$_GET['record']); |
68 syslog(LOG_NOTICE, "db_inventory_miscs: deleted record ".$_POST['record']); |
58 } |
|
59 echo $result; |
|
60 |
|
61 } else if (isset($_GET['delete'])) { |
|
62 // DELETE COMMAND |
|
63 $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_GET['record']."';"; |
|
64 $result = mysqli_query($connect, $sql); |
|
65 if (! $result) { |
|
66 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); |
|
67 } else { |
|
68 syslog(LOG_NOTICE, "db_inventory_miscs: deleted record ".$_GET['record']); |
|
69 } |
69 } |
70 echo $result; |
70 echo $result; |
71 |
71 |
72 } else { |
72 } else { |
73 // SELECT COMMAND |
73 // SELECT COMMAND |
|
74 $query = "SELECT * FROM inventory_miscs ORDER BY name"; |
74 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
75 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
75 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { |
76 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { |
76 $miscs[] = array( |
77 $miscs[] = array( |
77 'record' => $row['record'], |
78 'record' => $row['record'], |
78 'name' => $row['name'], |
79 'name' => $row['name'], |