15 $escapers = array("\\", "/", "\"", "\n", "\r", "\t", "\x08", "\x0c"); |
15 $escapers = array("\\", "/", "\"", "\n", "\r", "\t", "\x08", "\x0c"); |
16 $replacements = array("\\\\", "\\/", "\\\"", "\\n", "\\r", "\\t", "\\f", "\\b"); |
16 $replacements = array("\\\\", "\\/", "\\\"", "\\n", "\\r", "\\t", "\\f", "\\b"); |
17 |
17 |
18 // get data and store in a json array |
18 // get data and store in a json array |
19 $query = "SELECT * FROM recipes ORDER BY st_guide,st_letter,st_name,name"; |
19 $query = "SELECT * FROM recipes ORDER BY st_guide,st_letter,st_name,name"; |
20 if (isset($_GET['insert'])) { |
20 if (isset($_GET['insert']) || isset($_GET['update'])) { |
21 // // INSERT COMMAND |
21 if (isset($_GET['insert'])) { |
22 // $sql = "INSERT INTO `profile_mash` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); |
22 // INSERT COMMAND |
23 // $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); |
23 $sql = "INSERT INTO `recipes` SET st_name='" . mysqli_real_escape_string($connect, $_GET['st_name']); |
24 // $sql .= "', steps='" . json_encode($_GET['steps']); |
24 } |
25 // $sql .= "';"; |
25 if (isset($_GET['update'])) { |
|
26 // UPDATE COMMAND |
|
27 $sql = "UPDATE `recipes` SET st_name='" . mysqli_real_escape_string($connect, $_GET['st_name']); |
|
28 } |
|
29 $sql .= "', st_letter='" . mysqli_real_escape_string($connect, $_GET['st_letter']); |
|
30 $sql .= "', st_guide='" . mysqli_real_escape_string($connect, $_GET['st_guide']); |
|
31 $sql .= "', st_og_min='" . $_GET['st_og_min']; |
|
32 $sql .= "', st_og_max='" . $_GET['st_og_max']; |
|
33 $sql .= "', st_fg_min='" . $_GET['st_fg_min']; |
|
34 $sql .= "', st_fg_max='" . $_GET['st_fg_max']; |
|
35 $sql .= "', st_ibu_min='" . $_GET['st_ibu_min']; |
|
36 $sql .= "', st_ibu_max='" . $_GET['st_ibu_max']; |
|
37 $sql .= "', st_color_min='" . $_GET['st_color_min']; |
|
38 $sql .= "', st_color_max='" . $_GET['st_color_max']; |
|
39 $sql .= "', st_carb_min='" . $_GET['st_carb_min']; |
|
40 $sql .= "', st_carb_max='" . $_GET['st_carb_max']; |
|
41 $sql .= "', st_abv_min='" . $_GET['st_abv_min']; |
|
42 $sql .= "', st_abv_max='" . $_GET['st_abv_max']; |
|
43 $sql .= "', name='" . mysqli_real_escape_string($connect, $_GET['name']); |
|
44 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); |
|
45 $sql .= "', type='" . $_GET['type']; |
|
46 $sql .= "', batch_size='" . $_GET['batch_size']; |
|
47 $sql .= "', boil_time='" . $_GET['boil_time']; |
|
48 $sql .= "', efficiency='" . $_GET['efficiency']; |
|
49 $sql .= "', est_og='" . $_GET['est_og']; |
|
50 $sql .= "', est_fg='" . $_GET['est_fg']; |
|
51 $sql .= "', est_color='" . $_GET['est_color']; |
|
52 $sql .= "', color_method='" . $_GET['color_method']; |
|
53 $sql .= "', est_ibu='" . $_GET['est_ibu']; |
|
54 $sql .= "', ibu_method='" . $_GET['ibu_method']; |
|
55 $sql .= "', mash_sparge_temp='" . $_GET['mash_sparge_temp']; |
|
56 $sql .= "', mash_ph='" . $_GET['mash_ph']; |
|
57 $sql .= "', mash_name='" . $_GET['mash_name']; |
|
58 |
|
59 syslog(LOG_NOTICE, $sql); // Log upto this part. |
|
60 |
|
61 syslog(LOG_NOTICE, "json_waters: " . json_encode($_GET['waters'])); |
|
62 $sql .= "', json_waters='" . json_encode($_GET['waters']); |
|
63 |
|
64 if (isset($_GET['insert'])) { |
|
65 $sql .= "';"; |
|
66 } |
|
67 if (isset($_GET['update'])) { |
|
68 $sql .= "' WHERE record='" . $_GET['record'] . "';"; |
|
69 } |
26 // $result = mysqli_query($connect, $sql); |
70 // $result = mysqli_query($connect, $sql); |
27 // if (! $result) { |
71 // if (! $result) { |
28 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect)); |
72 // syslog(LOG_NOTICE, "db_recipes: ".$sql." result: ".mysqli_error($connect)); |
29 // } else { |
73 // } else { |
30 // syslog(LOG_NOTICE, "db_profile_mash: inserted ".$_GET['name']); |
74 // syslog(LOG_NOTICE, "db_recipes: inserted ".$_GET['name']); |
31 // } |
75 // } |
32 // echo $result; |
76 // echo $result; |
33 |
77 |
34 //} else if (isset($_GET['update'])) { |
78 } else if (isset($_GET['delete'])) { |
35 // // UPDATE COMMAND |
79 // DELETE COMMAND |
36 // $sql = "UPDATE `profile_mash` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); |
80 $sql = "DELETE FROM `recipes` WHERE record='".$_GET['record']."';"; |
37 // $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); |
81 $result = mysqli_query($connect, $sql); |
38 // $sql .= "', steps='" . json_encode($_GET['steps']); |
82 if (! $result) { |
39 // $sql .= "' WHERE record='" . $_GET['record'] . "';"; |
83 syslog(LOG_NOTICE, "db_recipes: ".$sql." result: ".mysqli_error($connect)); |
40 // $result = mysqli_query($connect, $sql); |
84 } else { |
41 // if (! $result) { |
85 syslog(LOG_NOTICE, "db_recipes: deleted record ".$_GET['record']); |
42 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect)); |
86 } |
43 // } else { |
87 echo $result; |
44 // syslog(LOG_NOTICE, "db_profile_mash: updated record ".$_GET['record']); |
|
45 // } |
|
46 // echo $result; |
|
47 |
|
48 //} else if (isset($_GET['delete'])) { |
|
49 // // DELETE COMMAND |
|
50 // $sql = "DELETE FROM `profile_mash` WHERE record='".$_GET['record']."';"; |
|
51 // $result = mysqli_query($connect, $sql); |
|
52 // if (! $result) { |
|
53 // syslog(LOG_NOTICE, "db_profile_mash: ".$sql." result: ".mysqli_error($connect)); |
|
54 // } else { |
|
55 // syslog(LOG_NOTICE, "db_profile_mash: deleted record ".$_GET['record']); |
|
56 // } |
|
57 // echo $result; |
|
58 |
88 |
59 } else { |
89 } else { |
60 // SELECT COMMAND |
90 // SELECT COMMAND |
61 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
91 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
62 $recipes = '['; |
92 $recipes = '['; |