Mercurial > bms / file comparison

comparison: www/includes/db_profile_mash.php

www/includes/db_profile_mash.php

changeset 736
d3d8e3b30a34
parent 716
57118e6a4bdb
child 768
ae1195153fa2
equal deleted inserted replaced
735:23d972f5d784 736:d3d8e3b30a34
8 if (! $connect) { 8 if (! $connect) {
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); 9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
10 } 10 }
11 mysqli_set_charset($connect, "utf8" ); 11 mysqli_set_charset($connect, "utf8" );
12 12
13 $escapers = array("\\", "/", "\"", "\n", "\r", "\t", "\x08", "\x0c");
14 $replacements = array("\\\\", "\\/", "\\\"", "\\n", "\\r", "\\t", "\\f", "\\b");
15 $rescapers = array("'"); 13 $rescapers = array("'");
16 $rreplacements = array("\\'"); 14 $rreplacements = array("\\'");
17 $disallowed = array('visibleindex','uniqueid','boundindex','uid');
18 15
19 if (isset($_POST['insert']) || isset($_POST['update'])) { 16 if (isset($_POST['insert']) || isset($_POST['update'])) {
20 if (isset($_POST['insert'])) { 17 if (isset($_POST['insert'])) {
21 $sql = "INSERT INTO"; 18 $sql = "INSERT INTO";
22 } 19 }
77 } 74 }
78 echo $result; 75 echo $result;
79 76
80 } else { 77 } else {
81 // SELECT COMMAND 78 // SELECT COMMAND
82 $query = "SELECT * FROM profile_mash ORDER BY name"; 79 $query = "SELECT record,JSON_QUOTE(name),JSON_QUOTE(notes),steps FROM profile_mash ORDER BY name";
83 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); 80 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
84 $mashprofiles = '['; 81 $mashprofiles = '[';
85 $comma = FALSE; 82 $comma = FALSE;
86 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { 83 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) {
87 // Manual encode to JSON. 84 // Manual encode to JSON.
88 if ($comma) { 85 if ($comma) {
89 $mashprofiles .= ','; 86 $mashprofiles .= ',';
90 } 87 }
91 $comma = TRUE; 88 $comma = TRUE;
92 $mashprofiles .= '{"record":' . $row['record']; 89 $mashprofile = '{"record":' . $row['record'];
93 $mashprofiles .= ',"name":"' . str_replace($escapers, $replacements, $row['name']); 90 $mashprofile .= ',"name":' . $row['JSON_QUOTE(name)'];
94 $mashprofiles .= '","notes":"' . str_replace($escapers, $replacements, $row['notes']); 91 $mashprofile .= ',"notes":' . $row['JSON_QUOTE(notes)'];
95 $mashprofiles .= '","steps":' . $row['steps']; 92 $mashprofile .= ',"steps":' . $row['steps'] . '}';
96 $mashprofiles .= '}'; 93 //syslog(LOG_NOTICE, $mashprofile);
94 $mashprofiles .= $mashprofile;
97 } 95 }
98 $mashprofiles .= ']'; 96 $mashprofiles .= ']';
99 header("Content-type: application/json"); 97 header("Content-type: application/json");
100 echo $mashprofiles; 98 echo $mashprofiles;
101 } 99 }

Mercurial Repository: bms

mercurial