www/includes/db_recipes.php

changeset 52
b1f2a893572f
parent 51
7224109adfe1
child 57
bb9a06aa9acd
equal deleted inserted replaced
51:7224109adfe1 52:b1f2a893572f
15 $escapers = array("\\", "/", "\"", "\n", "\r", "\t", "\x08", "\x0c"); 15 $escapers = array("\\", "/", "\"", "\n", "\r", "\t", "\x08", "\x0c");
16 $replacements = array("\\\\", "\\/", "\\\"", "\\n", "\\r", "\\t", "\\f", "\\b"); 16 $replacements = array("\\\\", "\\/", "\\\"", "\\n", "\\r", "\\t", "\\f", "\\b");
17 17
18 // get data and store in a json array 18 // get data and store in a json array
19 $query = "SELECT * FROM recipes ORDER BY st_guide,st_letter,st_name,name"; 19 $query = "SELECT * FROM recipes ORDER BY st_guide,st_letter,st_name,name";
20 if (isset($_GET['insert'])) { 20 if (isset($_GET['insert']) || isset($_GET['update'])) {
21 // // INSERT COMMAND 21 if (isset($_GET['insert'])) {
22 // $sql = "INSERT INTO `profile_mash` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); 22 // INSERT COMMAND
23 // $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); 23 $sql = "INSERT INTO `recipes` SET st_name='" . mysqli_real_escape_string($connect, $_GET['st_name']);
24 // $sql .= "', steps='" . json_encode($_GET['steps']); 24 }
25 // $sql .= "';"; 25 if (isset($_GET['update'])) {
26 // UPDATE COMMAND
27 $sql = "UPDATE `recipes` SET st_name='" . mysqli_real_escape_string($connect, $_GET['st_name']);
28 }
29 $sql .= "', st_letter='" . mysqli_real_escape_string($connect, $_GET['st_letter']);
30 $sql .= "', st_guide='" . mysqli_real_escape_string($connect, $_GET['st_guide']);
31 $sql .= "', st_og_min='" . $_GET['st_og_min'];
32 $sql .= "', st_og_max='" . $_GET['st_og_max'];
33 $sql .= "', st_fg_min='" . $_GET['st_fg_min'];
34 $sql .= "', st_fg_max='" . $_GET['st_fg_max'];
35 $sql .= "', st_ibu_min='" . $_GET['st_ibu_min'];
36 $sql .= "', st_ibu_max='" . $_GET['st_ibu_max'];
37 $sql .= "', st_color_min='" . $_GET['st_color_min'];
38 $sql .= "', st_color_max='" . $_GET['st_color_max'];
39 $sql .= "', st_carb_min='" . $_GET['st_carb_min'];
40 $sql .= "', st_carb_max='" . $_GET['st_carb_max'];
41 $sql .= "', st_abv_min='" . $_GET['st_abv_min'];
42 $sql .= "', st_abv_max='" . $_GET['st_abv_max'];
43 $sql .= "', name='" . mysqli_real_escape_string($connect, $_GET['name']);
44 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
45 $sql .= "', type='" . $_GET['type'];
46 $sql .= "', batch_size='" . $_GET['batch_size'];
47 $sql .= "', boil_time='" . $_GET['boil_time'];
48 $sql .= "', efficiency='" . $_GET['efficiency'];
49 $sql .= "', est_og='" . $_GET['est_og'];
50 $sql .= "', est_fg='" . $_GET['est_fg'];
51 $sql .= "', est_color='" . $_GET['est_color'];
52 $sql .= "', color_method='" . $_GET['color_method'];
53 $sql .= "', est_ibu='" . $_GET['est_ibu'];
54 $sql .= "', ibu_method='" . $_GET['ibu_method'];
55 $sql .= "', mash_sparge_temp='" . $_GET['mash_sparge_temp'];
56 $sql .= "', mash_ph='" . $_GET['mash_ph'];
57 $sql .= "', mash_name='" . $_GET['mash_name'];
58
59 syslog(LOG_NOTICE, $sql); // Log upto this part.
60
61 syslog(LOG_NOTICE, "json_waters: " . json_encode($_GET['waters']));
62 $sql .= "', json_waters='" . json_encode($_GET['waters']);
63
64 if (isset($_GET['insert'])) {
65 $sql .= "';";
66 }
67 if (isset($_GET['update'])) {
68 $sql .= "' WHERE record='" . $_GET['record'] . "';";
69 }
26 // $result = mysqli_query($connect, $sql); 70 // $result = mysqli_query($connect, $sql);
27 // if (! $result) { 71 // if (! $result) {
28 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect)); 72 // syslog(LOG_NOTICE, "db_recipes: ".$sql." result: ".mysqli_error($connect));
29 // } else { 73 // } else {
30 // syslog(LOG_NOTICE, "db_profile_mash: inserted ".$_GET['name']); 74 // syslog(LOG_NOTICE, "db_recipes: inserted ".$_GET['name']);
31 // } 75 // }
32 // echo $result; 76 // echo $result;
33 77
34 //} else if (isset($_GET['update'])) { 78 } else if (isset($_GET['delete'])) {
35 // // UPDATE COMMAND 79 // DELETE COMMAND
36 // $sql = "UPDATE `profile_mash` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); 80 $sql = "DELETE FROM `recipes` WHERE record='".$_GET['record']."';";
37 // $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); 81 $result = mysqli_query($connect, $sql);
38 // $sql .= "', steps='" . json_encode($_GET['steps']); 82 if (! $result) {
39 // $sql .= "' WHERE record='" . $_GET['record'] . "';"; 83 syslog(LOG_NOTICE, "db_recipes: ".$sql." result: ".mysqli_error($connect));
40 // $result = mysqli_query($connect, $sql); 84 } else {
41 // if (! $result) { 85 syslog(LOG_NOTICE, "db_recipes: deleted record ".$_GET['record']);
42 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect)); 86 }
43 // } else { 87 echo $result;
44 // syslog(LOG_NOTICE, "db_profile_mash: updated record ".$_GET['record']);
45 // }
46 // echo $result;
47
48 //} else if (isset($_GET['delete'])) {
49 // // DELETE COMMAND
50 // $sql = "DELETE FROM `profile_mash` WHERE record='".$_GET['record']."';";
51 // $result = mysqli_query($connect, $sql);
52 // if (! $result) {
53 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect));
54 // } else {
55 // syslog(LOG_NOTICE, "db_profile_mash: deleted record ".$_GET['record']);
56 // }
57 // echo $result;
58 88
59 } else { 89 } else {
60 // SELECT COMMAND 90 // SELECT COMMAND
61 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); 91 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
62 $recipes = '['; 92 $recipes = '[';

mercurial