www/cmd_ispindel.php

Sat, 18 Apr 2020 15:56:40 +0200

author
Michiel Broek <mbroek@mbse.eu>
date
Sat, 18 Apr 2020 15:56:40 +0200
changeset 657
a5ade45597d8
parent 628
a42166cbb19a
permissions
-rw-r--r--

More code cleanup

<?php
require_once('config.php');

#Connect to the database
$connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME);
if (! $connect) {
        die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
}
mysqli_set_charset($connect, "utf8" );
$sql = "";

if (isset($_POST['beername']) && isset($_POST['beercode']) && isset($_POST['beeruuid'])) {
	$sql  = "UPDATE `mon_ispindels` SET ";
	$sql .=    "beername='" . mysqli_real_escape_string($connect, $_POST['beername']);
	$sql .= "', beercode='" . mysqli_real_escape_string($connect, $_POST['beercode']);
	$sql .= "', beeruuid='" . mysqli_real_escape_string($connect, $_POST['beeruuid']);
	$sql .= "', og_gravity=0 WHERE uuid='" . $_POST['uuid'] . "';";
} else if (isset($_POST['mode'])) {
	$sql  = "UPDATE `mon_ispindels` SET mode='" .$_POST['mode'] . "' WHERE uuid='" . $_POST['uuid'] . "';";
} else {
	syslog(LOG_NOTICE, "cmd_ispindel: unknown POST");
}

$result = mysqli_query($connect, $sql);
if (! $result) {
	syslog(LOG_NOTICE, "cmd_ispindel: result: ".mysqli_error($connect));
}
echo $result;
?>

mercurial