Mercurial > bms / file comparison

comparison: www/includes/db_inventory_water.php

www/includes/db_inventory_water.php

changeset 835
ca6b3d4f5a97
parent 834
00e610fc3571
child 836
409f8c497429
equal deleted inserted replaced
834:00e610fc3571 835:ca6b3d4f5a97
1 <?php
2
3 require($_SERVER['DOCUMENT_ROOT']."/config.php");
4 require($_SERVER['DOCUMENT_ROOT']."/version.php");
5
6 #Connect to the database
7 $connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME);
8 if (! $connect) {
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
10 }
11 mysqli_set_charset($connect, "utf8" );
12
13 $response = array(
14 'error' => false,
15 'msg' => 'Ok',
16 );
17
18 if (isset($_POST['insert']) || isset($_POST['update'])) {
19 if (isset($_POST['insert'])) {
20 $sql = "INSERT INTO `inventory_waters` SET ";
21 }
22 if (isset($_POST['update'])) {
23 $sql = "UPDATE `inventory_waters` SET ";
24 }
25
26 if (isset($_POST['uuid']) && (strlen($_POST['uuid']) == 36)) {
27 $sql .= "uuid='" . $_POST['uuid'];
28 } else {
29 $uuid = str_replace("\n", "", file_get_contents('/proc/sys/kernel/random/uuid'));
30 $sql .= "uuid='" . $uuid;
31 }
32 $sql .= "', name='" . mysqli_real_escape_string($connect, $_POST['name']);
33 ($_POST['unlimited_stock'] == 'true') ? $sql .= "', unlimited_stock='1" : $sql .= "', unlimited_stock='0";
34 $sql .= "', calcium='" . $_POST['calcium'];
35 $sql .= "', bicarbonate='" . $_POST['bicarbonate'];
36 $sql .= "', sulfate='" . $_POST['sulfate'];
37 $sql .= "', chloride='" . $_POST['chloride'];
38 $sql .= "', sodium='" . $_POST['sodium'];
39 $sql .= "', magnesium='" . $_POST['magnesium'];
40 $sql .= "', ph='" . $_POST['ph'];
41 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']);
42 $sql .= "', total_alkalinity='" . $_POST['total_alkalinity'];
43 $sql .= "', inventory='" . $_POST['inventory'];
44 $sql .= "', cost='" . $_POST['cost'];
45 if (isset($_POST['insert'])) {
46 $sql .= "';";
47 }
48 if (isset($_POST['update'])) {
49 $sql .= "' WHERE record='" . $_POST['record'] . "';";
50 }
51 $result = mysqli_query($connect, $sql);
52 if (! $result) {
53 syslog(LOG_NOTICE, "db_inventory_waters: ".$sql." result: ".mysqli_error($connect));
54 $response['error'] = true;
55 $response['msg'] = "SQL fout: ".mysqli_error($connect);
56 }
57 exit(json_encode($response));
58
59 } else if (isset($_POST['delete'])) {
60 // DELETE COMMAND
61 $sql = "DELETE FROM `inventory_waters` WHERE record='".$_POST['record']."';";
62 $result = mysqli_query($connect, $sql);
63 if (! $result) {
64 syslog(LOG_NOTICE, "db_inventory_waters: ".$sql." result: ".mysqli_error($connect));
65 $response['error'] = true;
66 $response['msg'] = "SQL fout: ".mysqli_error($connect);
67 }
68 exit(json_encode($response));
69
70 } else {
71 // SELECT COMMAND
72 $query = "SELECT * FROM inventory_waters ORDER BY name";
73 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
74 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) {
75 $waters[] = array(
76 'record' => $row['record'],
77 'name' => $row['name'],
78 'uuid' => $row['uuid'],
79 'unlimited_stock' => $row['unlimited_stock'],
80 'calcium' => $row['calcium'],
81 'bicarbonate' => $row['bicarbonate'],
82 'sulfate' => $row['sulfate'],
83 'chloride' => $row['chloride'],
84 'sodium' => $row['sodium'],
85 'magnesium' => $row['magnesium'],
86 'ph' => $row['ph'],
87 'notes' => $row['notes'],
88 'total_alkalinity' => $row['total_alkalinity'],
89 'inventory' => $row['inventory'],
90 'cost' => $row['cost']
91 );
92 }
93 header("Content-type: application/json");
94 exit(json_encode($waters));
95 }
96
97 syslog(LOG_NOTICE, "db_inventory_water: missing arguments");
98 $response['error'] = true;
99 $response['msg'] = "missing arguments";
100 echo json_encode($response);
101
102 ?>

Mercurial Repository: bms

mercurial