Mercurial > bms / file diff

diff: www/includes/db_inventory_yeasts.php

www/includes/db_inventory_yeasts.php

changeset 14
d9dfd703df83
child 18
395833e20f88
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/www/includes/db_inventory_yeasts.php	Mon Aug 13 16:10:27 2018 +0200
@@ -0,0 +1,108 @@
+<?php
+
+require($_SERVER['DOCUMENT_ROOT']."/config.php");
+require($_SERVER['DOCUMENT_ROOT']."/version.php");
+
+#Connect to the database
+$connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME);
+if (! $connect) {
+	die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
+}
+
+// get data and store in a json array
+$query = "SELECT * FROM inventory_yeasts";
+if (isset($_GET['insert'])) {
+	// INSERT COMMAND
+	$sql  = "INSERT INTO `inventory_yeasts` SET name='" . mysqli_real_escape_string($connect, $_GET['name']);
+	$sql .= "', type='" . $_GET['type'];
+	$sql .= "', form='" . $_GET['form'];
+	$sql .= "', amount='" . $_GET['amount'];
+	($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0";
+	$sql .= "', laboratory='" . mysqli_real_escape_string($connect, $_GET['laboratory']);
+	$sql .= "', product_id='" . mysqli_real_escape_string($connect, $_GET['product_id']);
+	$sql .= "', min_temperature='" . $_GET['min_temperature'];
+	$sql .= "', max_temperature='" . $_GET['max_temperature'];
+	$sql .= "', flocculation='" . $_GET['flocculation'];
+	$sql .= "', attenuation='" . $_GET['attenuation'];
+	$sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
+	$sql .= "', best_for='" . mysqli_real_escape_string($connect, $_GET['best_for']);
+	$sql .= "', times_cultured='" . $_GET['times_cultured'];
+	$sql .= "', max_reuse='" . $_GET['max_reuse'];
+	($_GET['add_to_secondary'] == 'true') ? $sql .= "', add_to_secondary='1" : $sql .= "', add_to_secondary='0";
+	$sql .= "', inventory='" . $_GET['inventory'];
+	$sql .= "', cost='" . $_GET['cost'];
+	$sql .= "', production_date='" . $_GET['production_date'];
+	$sql .= "', tht_date='" . $_GET['tht_date'];
+	$sql .= "';";
+	error_log("\"$sql\"");
+	$result = mysqli_query($connect, $sql) or die("SQL Error 1: " . mysqli_error($connect));
+	error_log("result " . $result);
+	echo $result;
+
+} else if (isset($_GET['update'])) {
+	// UPDATE COMMAND
+	$sql  = "UPDATE `inventory_yeasts` SET name='" . mysqli_real_escape_string($connect, $_GET['name']);
+	$sql .= "', type='" . $_GET['type'];
+	$sql .= "', form='" . $_GET['form'];
+	$sql .= "', amount='" . $_GET['amount'];
+	($_GET['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0";
+	$sql .= "', laboratory='" . mysqli_real_escape_string($connect, $_GET['laboratory']);
+	$sql .= "', product_id='" . mysqli_real_escape_string($connect, $_GET['product_id']);
+	$sql .= "', min_temperature='" . $_GET['min_temperature'];
+	$sql .= "', max_temperature='" . $_GET['max_temperature'];
+	$sql .= "', flocculation='" . $_GET['flocculation'];
+	$sql .= "', attenuation='" . $_GET['attenuation'];
+	$sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
+	$sql .= "', best_for='" . mysqli_real_escape_string($connect, $_GET['best_for']);
+	$sql .= "', times_cultured='" . $_GET['times_cultured'];
+	$sql .= "', max_reuse='" . $_GET['max_reuse'];
+	($_GET['add_to_secondary'] == 'true') ? $sql .= "', add_to_secondary='1" : $sql .= "', add_to_secondary='0";
+	$sql .= "', inventory='" . $_GET['inventory'];
+	$sql .= "', cost='" . $_GET['cost'];
+	$sql .= "', production_date='" . $_GET['production_date'];
+	$sql .= "', tht_date='" . $_GET['tht_date'];
+	$sql .= "' WHERE record='" . $_GET['record'] . "';";
+	error_log("\"$sql\"");
+	$result = mysqli_query($connect, $sql) or die("SQL Error 1: " . mysqli_error($connect));
+	error_log("result " . $result);
+	echo $result;
+
+} else if (isset($_GET['delete'])) {
+	// DELETE COMMAND
+	$sql = "DELETE FROM `inventory_yeasts` WHERE record='".$_GET['record']."';";
+	error_log("\"$sql\"");
+	$result = mysqli_query($connect, $sql) or die("SQL Error 1: " . mysqli_error($connect));
+	error_log("result " . $result);
+	echo $result;
+
+} else {
+	// SELECT COMMAND
+	$result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
+	while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) {
+		$yeasts[] = array(
+			'record' => $row['record'],
+			'name' => $row['name'],
+			'type' => $row['type'],
+			'form' => $row['form'],
+			'amount' => $row['amount'],
+			'amount_is_weight' => $row['amount_is_weight'],
+			'laboratory' => $row['laboratory'],
+			'product_id' => $row['product_id'],
+			'min_temperature' => $row['min_temperature'],
+			'max_temperature' => $row['max_temperature'],
+			'flocculation' => $row['flocculation'],
+			'attenuation' => $row['attenuation'],
+			'notes' => $row['notes'],
+			'best_for' => $row['best_for'],
+			'times_cultured' => $row['times_cultured'],
+			'max_reuse' => $row['max_reuse'],
+			'add_to_secondary' => $row['add_to_secondary'],
+			'inventory' => $row['inventory'],
+			'cost' => $row['cost'],
+			'production_date' => $row['production_date'],
+			'tht_date' => $row['tht_date']
+		);
+	}
+	echo json_encode($yeasts);
+}
+?>

Mercurial Repository: bms

mercurial