1 <?php |
|
2 |
|
3 require($_SERVER['DOCUMENT_ROOT']."/config.php"); |
|
4 require($_SERVER['DOCUMENT_ROOT']."/version.php"); |
|
5 |
|
6 #Connect to the database |
|
7 $connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME); |
|
8 if (! $connect) { |
|
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); |
|
10 } |
|
11 mysqli_set_charset($connect, "utf8" ); |
|
12 |
|
13 $response = array( |
|
14 'error' => false, |
|
15 'msg' => 'Ok', |
|
16 ); |
|
17 |
|
18 if (isset($_POST['insert']) || isset($_POST['update'])) { |
|
19 if (isset($_POST['insert'])) { |
|
20 $sql = "INSERT INTO `inventory_waters` SET "; |
|
21 } |
|
22 if (isset($_POST['update'])) { |
|
23 $sql = "UPDATE `inventory_waters` SET "; |
|
24 } |
|
25 |
|
26 if (isset($_POST['uuid']) && (strlen($_POST['uuid']) == 36)) { |
|
27 $sql .= "uuid='" . $_POST['uuid']; |
|
28 } else { |
|
29 $uuid = str_replace("\n", "", file_get_contents('/proc/sys/kernel/random/uuid')); |
|
30 $sql .= "uuid='" . $uuid; |
|
31 } |
|
32 $sql .= "', name='" . mysqli_real_escape_string($connect, $_POST['name']); |
|
33 ($_POST['unlimited_stock'] == 'true') ? $sql .= "', unlimited_stock='1" : $sql .= "', unlimited_stock='0"; |
|
34 $sql .= "', calcium='" . $_POST['calcium']; |
|
35 $sql .= "', bicarbonate='" . $_POST['bicarbonate']; |
|
36 $sql .= "', sulfate='" . $_POST['sulfate']; |
|
37 $sql .= "', chloride='" . $_POST['chloride']; |
|
38 $sql .= "', sodium='" . $_POST['sodium']; |
|
39 $sql .= "', magnesium='" . $_POST['magnesium']; |
|
40 $sql .= "', ph='" . $_POST['ph']; |
|
41 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
|
42 $sql .= "', total_alkalinity='" . $_POST['total_alkalinity']; |
|
43 $sql .= "', inventory='" . $_POST['inventory']; |
|
44 $sql .= "', cost='" . $_POST['cost']; |
|
45 if (isset($_POST['insert'])) { |
|
46 $sql .= "';"; |
|
47 } |
|
48 if (isset($_POST['update'])) { |
|
49 $sql .= "' WHERE record='" . $_POST['record'] . "';"; |
|
50 } |
|
51 $result = mysqli_query($connect, $sql); |
|
52 if (! $result) { |
|
53 syslog(LOG_NOTICE, "db_inventory_waters: ".$sql." result: ".mysqli_error($connect)); |
|
54 $response['error'] = true; |
|
55 $response['msg'] = "SQL fout: ".mysqli_error($connect); |
|
56 } |
|
57 exit(json_encode($response)); |
|
58 |
|
59 } else if (isset($_POST['delete'])) { |
|
60 // DELETE COMMAND |
|
61 $sql = "DELETE FROM `inventory_waters` WHERE record='".$_POST['record']."';"; |
|
62 $result = mysqli_query($connect, $sql); |
|
63 if (! $result) { |
|
64 syslog(LOG_NOTICE, "db_inventory_waters: ".$sql." result: ".mysqli_error($connect)); |
|
65 $response['error'] = true; |
|
66 $response['msg'] = "SQL fout: ".mysqli_error($connect); |
|
67 } |
|
68 exit(json_encode($response)); |
|
69 |
|
70 } else { |
|
71 // SELECT COMMAND |
|
72 $query = "SELECT * FROM inventory_waters ORDER BY name"; |
|
73 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
|
74 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { |
|
75 $waters[] = array( |
|
76 'record' => $row['record'], |
|
77 'name' => $row['name'], |
|
78 'uuid' => $row['uuid'], |
|
79 'unlimited_stock' => $row['unlimited_stock'], |
|
80 'calcium' => $row['calcium'], |
|
81 'bicarbonate' => $row['bicarbonate'], |
|
82 'sulfate' => $row['sulfate'], |
|
83 'chloride' => $row['chloride'], |
|
84 'sodium' => $row['sodium'], |
|
85 'magnesium' => $row['magnesium'], |
|
86 'ph' => $row['ph'], |
|
87 'notes' => $row['notes'], |
|
88 'total_alkalinity' => $row['total_alkalinity'], |
|
89 'inventory' => $row['inventory'], |
|
90 'cost' => $row['cost'] |
|
91 ); |
|
92 } |
|
93 header("Content-type: application/json"); |
|
94 exit(json_encode($waters)); |
|
95 } |
|
96 |
|
97 syslog(LOG_NOTICE, "db_inventory_water: missing arguments"); |
|
98 $response['error'] = true; |
|
99 $response['msg'] = "missing arguments"; |
|
100 echo json_encode($response); |
|
101 |
|
102 ?> |
|