comparison: www/includes/db_inventory_miscs.php
www/includes/db_inventory_miscs.php
- changeset 835
- ca6b3d4f5a97
- parent 834
- 00e610fc3571
- child 836
- 409f8c497429
equal
deleted
inserted
replaced
| 834:00e610fc3571 | 835:ca6b3d4f5a97 |
|---|---|
| 1 <?php | |
| 2 | |
| 3 require($_SERVER['DOCUMENT_ROOT']."/config.php"); | |
| 4 require($_SERVER['DOCUMENT_ROOT']."/version.php"); | |
| 5 require($_SERVER['DOCUMENT_ROOT']."/includes/constants.php"); | |
| 6 | |
| 7 #Connect to the database | |
| 8 $connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME); | |
| 9 if (! $connect) { | |
| 10 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); | |
| 11 } | |
| 12 mysqli_set_charset($connect, "utf8" ); | |
| 13 | |
| 14 $response = array( | |
| 15 'error' => false, | |
| 16 'msg' => 'Ok', | |
| 17 ); | |
| 18 | |
| 19 if (isset($_POST['insert']) || isset($_POST['update'])) { | |
| 20 if (isset($_POST['insert'])) { | |
| 21 $sql = "INSERT INTO `inventory_miscs` SET "; | |
| 22 } | |
| 23 if (isset($_POST['update'])) { | |
| 24 $sql = "UPDATE `inventory_miscs` SET "; | |
| 25 } | |
| 26 | |
| 27 if (isset($_POST['uuid']) && (strlen($_POST['uuid']) == 36)) { | |
| 28 $sql .= "uuid='" . $_POST['uuid']; | |
| 29 } else { | |
| 30 $uuid = str_replace("\n", "", file_get_contents('/proc/sys/kernel/random/uuid')); | |
| 31 $sql .= "uuid='" . $uuid; | |
| 32 } | |
| 33 $sql .= "', name='" . mysqli_real_escape_string($connect, $_POST['name']); | |
| 34 $sql .= "', type='" . array_search($_POST['type'], $misctype); | |
| 35 $sql .= "', use_use='" . array_search($_POST['use_use'], $miscuse); | |
| 36 $sql .= "', time='" . $_POST['time']; | |
| 37 ($_POST['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; | |
| 38 $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_POST['use_for']); | |
| 39 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); | |
| 40 ($_POST['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; | |
| 41 $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0; | |
| 42 $sql .= "', cost='" . $_POST['cost'] . "'"; | |
| 43 if ($_POST['production_date'] == '') | |
| 44 $sql .= ", production_date=NULL"; | |
| 45 else | |
| 46 $sql .= ", production_date='" . $_POST['production_date'] . "'"; | |
| 47 if ($_POST['tht_date'] == '') | |
| 48 $sql .= ", tht_date=NULL"; | |
| 49 else | |
| 50 $sql .= ", tht_date='" . $_POST['tht_date'] . "'"; | |
| 51 | |
| 52 if (isset($_POST['insert'])) { | |
| 53 $sql .= ";"; | |
| 54 } | |
| 55 if (isset($_POST['update'])) { | |
| 56 $sql .= " WHERE record='" . $_POST['record'] . "';"; | |
| 57 } | |
| 58 $result = mysqli_query($connect, $sql); | |
| 59 if (! $result) { | |
| 60 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); | |
| 61 $response['error'] = true; | |
| 62 $response['msg'] = "SQL fout: ".mysqli_error($connect); | |
| 63 } | |
| 64 exit(json_encode($response)); | |
| 65 | |
| 66 } else if (isset($_POST['delete'])) { | |
| 67 // DELETE COMMAND | |
| 68 $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_POST['record']."';"; | |
| 69 $result = mysqli_query($connect, $sql); | |
| 70 if (! $result) { | |
| 71 syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); | |
| 72 $response['error'] = true; | |
| 73 $response['msg'] = "SQL fout: ".mysqli_error($connect); | |
| 74 } | |
| 75 exit(json_encode($response)); | |
| 76 | |
| 77 } else { | |
| 78 // SELECT COMMAND | |
| 79 $query = "SELECT * FROM inventory_miscs ORDER BY name"; | |
| 80 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); | |
| 81 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { | |
| 82 $miscs[] = array( | |
| 83 'record' => $row['record'], | |
| 84 'name' => $row['name'], | |
| 85 'uuid' => $row['uuid'], | |
| 86 'type' => $misctype[$row['type']], | |
| 87 'use_use' => $miscuse[$row['use_use']], | |
| 88 'time' => $row['time'], | |
| 89 'amount_is_weight' => $row['amount_is_weight'], | |
| 90 'use_for' => $row['use_for'], | |
| 91 'notes' => $row['notes'], | |
| 92 'always_on_stock' => $row['always_on_stock'], | |
| 93 'inventory' => floatval($row['inventory']) * 1000.0, | |
| 94 'cost' => $row['cost'], | |
| 95 'production_date' => $row['production_date'], | |
| 96 'tht_date' => $row['tht_date'] | |
| 97 ); | |
| 98 } | |
| 99 header("Content-type: application/json"); | |
| 100 exit(json_encode($miscs)); | |
| 101 } | |
| 102 | |
| 103 syslog(LOG_NOTICE, "db_inventory_miscs: missing arguments"); | |
| 104 $response['error'] = true; | |
| 105 $response['msg'] = "missing arguments"; | |
| 106 echo json_encode($response); | |
| 107 | |
| 108 ?> |
