www/includes/db_inventory_miscs.php

changeset 200
7b2f11652d67
parent 77
a9f8de2d7b2b
child 296
69fadd1aded2
equal deleted inserted replaced
199:dad62ec9af18 200:7b2f11652d67
8 if (! $connect) { 8 if (! $connect) {
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); 9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
10 } 10 }
11 mysqli_set_charset($connect, "utf8" ); 11 mysqli_set_charset($connect, "utf8" );
12 12
13 // get data and store in a json array 13 if (isset($_POST['insert']) || isset($_POST['update'])) {
14 $query = "SELECT * FROM inventory_miscs ORDER BY name"; 14 if (isset($_POST['insert'])) {
15 if (isset($_GET['insert'])) { 15 $sql = "INSERT INTO `inventory_miscs` SET ";
16 // INSERT COMMAND 16 }
17 $sql = "INSERT INTO `inventory_miscs` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); 17 if (isset($_POST['update'])) {
18 $sql .= "', type='" . $_GET['type']; 18 $sql = "UPDATE `inventory_miscs` SET ";
19 $sql .= "', use_use='" . $_GET['use_use']; 19 }
20 $sql .= "', time='" . $_GET['time']; 20
21 ($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; 21 $sql .= "name='" . mysqli_real_escape_string($connect, $_POST['name']);
22 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_GET['use_for']); 22 $sql .= "', type='" . $_POST['type'];
23 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); 23 $sql .= "', use_use='" . $_POST['use_use'];
24 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; 24 $sql .= "', time='" . $_POST['time'];
25 $sql .= "', inventory='" . $_GET['inventory']; 25 ($_POST['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0";
26 $sql .= "', cost='" . $_GET['cost']; 26 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_POST['use_for']);
27 $sql .= "', production_date='" . $_GET['production_date']; 27 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']);
28 $sql .= "', tht_date='" . $_GET['tht_date']; 28 ($_POST['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0";
29 $sql .= "';"; 29 $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0;
30 $sql .= "', cost='" . $_POST['cost'] . "'";
31 if ($_POST['production_date'] == '')
32 $sql .= ", production_date=NULL";
33 else
34 $sql .= ", production_date='" . $_POST['production_date'] . "'";
35 if ($_POST['tht_date'] == '')
36 $sql .= ", tht_date=NULL";
37 else
38 $sql .= ", tht_date='" . $_POST['tht_date'] . "'";
39
40 if (isset($_POST['insert'])) {
41 $sql .= ";";
42 }
43 if (isset($_POST['update'])) {
44 $sql .= " WHERE record='" . $_POST['record'] . "';";
45 }
46 syslog(LOG_NOTICE, $sql);
47
30 $result = mysqli_query($connect, $sql); 48 $result = mysqli_query($connect, $sql);
31 if (! $result) { 49 if (! $result) {
32 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); 50 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect));
33 } else { 51 } else {
34 syslog(LOG_NOTICE, "db_inventory_miscs: inserted ".$_GET['name']); 52 if (isset($_POST['update'])) {
53 syslog(LOG_NOTICE, "db_inventory_miscs: updated record ".$_POST['record']);
54 } else {
55 $lastid = mysqli_insert_id($connect);
56 syslog(LOG_NOTICE, "db_inventory_miscs: inserted record ".$lastid);
57 }
35 } 58 }
36 echo $result; 59 echo $result;
37 60
38 } else if (isset($_GET['update'])) { 61 } else if (isset($_POST['delete'])) {
39 // UPDATE COMMAND 62 // DELETE COMMAND
40 $sql = "UPDATE `inventory_miscs` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); 63 $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_POST['record']."';";
41 $sql .= "', type='" . $_GET['type'];
42 $sql .= "', use_use='" . $_GET['use_use'];
43 $sql .= "', time='" . $_GET['time'];
44 ($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0";
45 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_GET['use_for']);
46 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
47 ($_GET['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0";
48 $sql .= "', inventory='" . $_GET['inventory'];
49 $sql .= "', cost='" . $_GET['cost'];
50 $sql .= "', production_date='" . $_GET['production_date'];
51 $sql .= "', tht_date='" . $_GET['tht_date'];
52 $sql .= "' WHERE record='" . $_GET['record'] . "';";
53 $result = mysqli_query($connect, $sql); 64 $result = mysqli_query($connect, $sql);
54 if (! $result) { 65 if (! $result) {
55 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); 66 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect));
56 } else { 67 } else {
57 syslog(LOG_NOTICE, "db_inventory_miscs: updated record ".$_GET['record']); 68 syslog(LOG_NOTICE, "db_inventory_miscs: deleted record ".$_POST['record']);
58 }
59 echo $result;
60
61 } else if (isset($_GET['delete'])) {
62 // DELETE COMMAND
63 $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_GET['record']."';";
64 $result = mysqli_query($connect, $sql);
65 if (! $result) {
66 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect));
67 } else {
68 syslog(LOG_NOTICE, "db_inventory_miscs: deleted record ".$_GET['record']);
69 } 69 }
70 echo $result; 70 echo $result;
71 71
72 } else { 72 } else {
73 // SELECT COMMAND 73 // SELECT COMMAND
74 $query = "SELECT * FROM inventory_miscs ORDER BY name";
74 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); 75 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
75 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { 76 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) {
76 $miscs[] = array( 77 $miscs[] = array(
77 'record' => $row['record'], 78 'record' => $row['record'],
78 'name' => $row['name'], 79 'name' => $row['name'],
81 'time' => $row['time'], 82 'time' => $row['time'],
82 'amount_is_weight' => $row['amount_is_weight'], 83 'amount_is_weight' => $row['amount_is_weight'],
83 'use_for' => $row['use_for'], 84 'use_for' => $row['use_for'],
84 'notes' => $row['notes'], 85 'notes' => $row['notes'],
85 'always_on_stock' => $row['always_on_stock'], 86 'always_on_stock' => $row['always_on_stock'],
86 'inventory' => $row['inventory'], 87 'inventory' => floatval($row['inventory']) * 1000.0,
87 'cost' => $row['cost'], 88 'cost' => $row['cost'],
88 'production_date' => $row['production_date'], 89 'production_date' => $row['production_date'],
89 'tht_date' => $row['tht_date'] 90 'tht_date' => $row['tht_date']
90 ); 91 );
91 } 92 }

mercurial