comparison: www/includes/db_inventory_yeasts.php
www/includes/db_inventory_yeasts.php
- changeset 198
- f0ec83e1e01f
- parent 77
- a9f8de2d7b2b
- child 201
- f9b7e3f6be7c
equal
deleted
inserted
replaced
| 197:63174cff2cc1 | 198:f0ec83e1e01f |
|---|---|
| 9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); | 9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error()); |
| 10 } | 10 } |
| 11 mysqli_set_charset($connect, "utf8" ); | 11 mysqli_set_charset($connect, "utf8" ); |
| 12 | 12 |
| 13 // get data and store in a json array | 13 // get data and store in a json array |
| 14 $query = "SELECT * FROM inventory_yeasts ORDER BY laboratory,product_id,name"; | 14 if (isset($_POST['insert']) || isset($_POST['update'])) { |
| 15 if (isset($_GET['insert'])) { | 15 if (isset($_POST['insert'])) { |
| 16 // INSERT COMMAND | 16 $sql = "INSERT INTO `inventory_yeasts` SET "; |
| 17 $sql = "INSERT INTO `inventory_yeasts` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); | 17 } |
| 18 $sql .= "', type='" . $_GET['type']; | 18 if (isset($_POST['update'])) { |
| 19 $sql .= "', form='" . $_GET['form']; | 19 $sql = "UPDATE `inventory_yeasts` SET "; |
| 20 $sql .= "', laboratory='" . mysqli_real_escape_string($connect, $_GET['laboratory']); | 20 } |
| 21 $sql .= "', product_id='" . mysqli_real_escape_string($connect, $_GET['product_id']); | 21 |
| 22 $sql .= "', min_temperature='" . $_GET['min_temperature']; | 22 $sql .= "name='" . mysqli_real_escape_string($connect, $_POST['name']); |
| 23 $sql .= "', max_temperature='" . $_GET['max_temperature']; | 23 $sql .= "', type='" . $_POST['type']; |
| 24 $sql .= "', flocculation='" . $_GET['flocculation']; | 24 $sql .= "', form='" . $_POST['form']; |
| 25 $sql .= "', attenuation='" . $_GET['attenuation']; | 25 $sql .= "', laboratory='" . mysqli_real_escape_string($connect, $_POST['laboratory']); |
| 26 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); | 26 $sql .= "', product_id='" . mysqli_real_escape_string($connect, $_POST['product_id']); |
| 27 $sql .= "', best_for='" . mysqli_real_escape_string($connect, $_GET['best_for']); | 27 $sql .= "', min_temperature='" . $_POST['min_temperature']; |
| 28 $sql .= "', max_reuse='" . $_GET['max_reuse']; | 28 $sql .= "', max_temperature='" . $_POST['max_temperature']; |
| 29 $sql .= "', inventory='" . floatval($_GET['inventory']) / 1000.0; | 29 $sql .= "', flocculation='" . $_POST['flocculation']; |
| 30 $sql .= "', cost='" . $_GET['cost']; | 30 $sql .= "', attenuation='" . $_POST['attenuation']; |
| 31 $sql .= "', production_date='" . $_GET['production_date']; | 31 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); |
| 32 $sql .= "', tht_date='" . $_GET['tht_date']; | 32 $sql .= "', best_for='" . mysqli_real_escape_string($connect, $_POST['best_for']); |
| 33 $sql .= "';"; | 33 $sql .= "', max_reuse='" . $_POST['max_reuse']; |
| 34 $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0; | |
| 35 $sql .= "', cost='" . $_POST['cost'] . "'"; | |
| 36 if ($_POST['production_date'] == '') | |
| 37 $sql .= ", production_date=NULL"; | |
| 38 else | |
| 39 $sql .= ", production_date='" . $_POST['production_date'] . "'"; | |
| 40 if ($_POST['tht_date'] == '') | |
| 41 $sql .= ", tht_date=NULL"; | |
| 42 else | |
| 43 $sql .= ", tht_date='" . $_POST['tht_date'] . "'"; | |
| 44 if (isset($_POST['insert'])) { | |
| 45 $sql .= ";"; | |
| 46 } | |
| 47 if (isset($_POST['update'])) { | |
| 48 $sql .= " WHERE record='" . $_POST['record'] . "';"; | |
| 49 } | |
| 50 syslog(LOG_NOTICE, $sql); | |
| 51 | |
| 34 $result = mysqli_query($connect, $sql); | 52 $result = mysqli_query($connect, $sql); |
| 35 if (! $result) { | 53 if (! $result) { |
| 36 syslog(LOG_NOTICE, "db_inventory_yeasts: ".$sql." result: ".mysqli_error($connect)); | 54 syslog(LOG_NOTICE, "db_inventory_yeasts: ".$sql." result: ".mysqli_error($connect)); |
| 37 } else { | 55 } else { |
| 38 syslog(LOG_NOTICE, "db_inventory_yeasts: inserted ".$_GET['name']); | 56 if (isset($_POST['update'])) { |
| 57 syslog(LOG_NOTICE, "db_inventory_yeasts: updated record ".$_POST['record']); | |
| 58 } else { | |
| 59 $lastid = mysqli_insert_id($connect); | |
| 60 syslog(LOG_NOTICE, "db_inventory_yeasts: inserted record ".$lastid); | |
| 61 } | |
| 39 } | 62 } |
| 40 echo $result; | 63 echo $result; |
| 41 | 64 |
| 42 } else if (isset($_GET['update'])) { | 65 } else if (isset($_POST['delete'])) { |
| 43 // UPDATE COMMAND | 66 // DELETE COMMAND |
| 44 $sql = "UPDATE `inventory_yeasts` SET name='" . mysqli_real_escape_string($connect, $_GET['name']); | 67 $sql = "DELETE FROM `inventory_yeasts` WHERE record='".$_POST['record']."';"; |
| 45 $sql .= "', type='" . $_GET['type']; | |
| 46 $sql .= "', form='" . $_GET['form']; | |
| 47 $sql .= "', laboratory='" . mysqli_real_escape_string($connect, $_GET['laboratory']); | |
| 48 $sql .= "', product_id='" . mysqli_real_escape_string($connect, $_GET['product_id']); | |
| 49 $sql .= "', min_temperature='" . $_GET['min_temperature']; | |
| 50 $sql .= "', max_temperature='" . $_GET['max_temperature']; | |
| 51 $sql .= "', flocculation='" . $_GET['flocculation']; | |
| 52 $sql .= "', attenuation='" . $_GET['attenuation']; | |
| 53 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']); | |
| 54 $sql .= "', best_for='" . mysqli_real_escape_string($connect, $_GET['best_for']); | |
| 55 $sql .= "', max_reuse='" . $_GET['max_reuse']; | |
| 56 $sql .= "', inventory='" . floatval($_GET['inventory']) / 1000.0; | |
| 57 $sql .= "', cost='" . $_GET['cost']; | |
| 58 $sql .= "', production_date='" . $_GET['production_date']; | |
| 59 $sql .= "', tht_date='" . $_GET['tht_date']; | |
| 60 $sql .= "' WHERE record='" . $_GET['record'] . "';"; | |
| 61 $result = mysqli_query($connect, $sql); | 68 $result = mysqli_query($connect, $sql); |
| 62 if (! $result) { | 69 if (! $result) { |
| 63 syslog(LOG_NOTICE, "db_inventory_yeasts: ".$sql." result: ".mysqli_error($connect)); | 70 syslog(LOG_NOTICE, "db_inventory_yeasts: ".$sql." result: ".mysqli_error($connect)); |
| 64 } else { | 71 } else { |
| 65 syslog(LOG_NOTICE, "db_inventory_yeasts: updated record ".$_GET['record']); | 72 syslog(LOG_NOTICE, "db_inventory_yeasts: deleted record ".$_POST['record']); |
| 66 } | |
| 67 echo $result; | |
| 68 | |
| 69 } else if (isset($_GET['delete'])) { | |
| 70 // DELETE COMMAND | |
| 71 $sql = "DELETE FROM `inventory_yeasts` WHERE record='".$_GET['record']."';"; | |
| 72 $result = mysqli_query($connect, $sql); | |
| 73 if (! $result) { | |
| 74 syslog(LOG_NOTICE, "db_inventory_yeasts: ".$sql." result: ".mysqli_error($connect)); | |
| 75 } else { | |
| 76 syslog(LOG_NOTICE, "db_inventory_yeasts: deleted record ".$_GET['record']); | |
| 77 } | 73 } |
| 78 echo $result; | 74 echo $result; |
| 79 | 75 |
| 80 } else { | 76 } else { |
| 81 // SELECT COMMAND | 77 // SELECT COMMAND |
| 78 $query = "SELECT * FROM inventory_yeasts ORDER BY laboratory,product_id,name"; | |
| 82 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); | 79 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); |
| 83 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { | 80 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { |
| 84 $yeasts[] = array( | 81 $yeasts[] = array( |
| 85 'record' => $row['record'], | 82 'record' => $row['record'], |
| 86 'name' => $row['name'], | 83 'name' => $row['name'], |
