25 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
25 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
26 $sql .= "';"; |
26 $sql .= "';"; |
27 $result = mysqli_query($connect, $sql); |
27 $result = mysqli_query($connect, $sql); |
28 if (! $result) { |
28 if (! $result) { |
29 syslog(LOG_NOTICE, "db_inventory_suppliers: ".$sql." result: ".mysqli_error($connect)); |
29 syslog(LOG_NOTICE, "db_inventory_suppliers: ".$sql." result: ".mysqli_error($connect)); |
30 } else { |
30 //} else { |
31 syslog(LOG_NOTICE, "db_inventory_suppliers: inserted ".$_POST['name']); |
31 // syslog(LOG_NOTICE, "db_inventory_suppliers: inserted ".$_POST['name']); |
32 } |
32 } |
33 echo $result; |
33 echo $result; |
34 |
34 |
35 } else if (isset($_POST['update'])) { |
35 } else if (isset($_POST['update'])) { |
36 // UPDATE COMMAND |
36 // UPDATE COMMAND |
45 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
45 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
46 $sql .= "' WHERE record='" . $_POST['record'] . "';"; |
46 $sql .= "' WHERE record='" . $_POST['record'] . "';"; |
47 $result = mysqli_query($connect, $sql); |
47 $result = mysqli_query($connect, $sql); |
48 if (! $result) { |
48 if (! $result) { |
49 syslog(LOG_NOTICE, "db_inventory_suppliers: ".$sql." result: ".mysqli_error($connect)); |
49 syslog(LOG_NOTICE, "db_inventory_suppliers: ".$sql." result: ".mysqli_error($connect)); |
50 } else { |
50 //} else { |
51 syslog(LOG_NOTICE, "db_inventory_suppliers: updated record ".$_POST['record']); |
51 // syslog(LOG_NOTICE, "db_inventory_suppliers: updated record ".$_POST['record']); |
52 } |
52 } |
53 echo $result; |
53 echo $result; |
54 |
54 |
55 } else if (isset($_POST['delete'])) { |
55 } else if (isset($_POST['delete'])) { |
56 // DELETE COMMAND |
56 // DELETE COMMAND |