diff -r 00e610fc3571 -r ca6b3d4f5a97 www/includes/db_inventory_miscs.php --- a/www/includes/db_inventory_miscs.php Wed Aug 10 11:43:19 2022 +0200 +++ /dev/null Thu Jan 01 00:00:00 1970 +0000 @@ -1,108 +0,0 @@ - false, - 'msg' => 'Ok', -); - -if (isset($_POST['insert']) || isset($_POST['update'])) { - if (isset($_POST['insert'])) { - $sql = "INSERT INTO `inventory_miscs` SET "; - } - if (isset($_POST['update'])) { - $sql = "UPDATE `inventory_miscs` SET "; - } - - if (isset($_POST['uuid']) && (strlen($_POST['uuid']) == 36)) { - $sql .= "uuid='" . $_POST['uuid']; - } else { - $uuid = str_replace("\n", "", file_get_contents('/proc/sys/kernel/random/uuid')); - $sql .= "uuid='" . $uuid; - } - $sql .= "', name='" . mysqli_real_escape_string($connect, $_POST['name']); - $sql .= "', type='" . array_search($_POST['type'], $misctype); - $sql .= "', use_use='" . array_search($_POST['use_use'], $miscuse); - $sql .= "', time='" . $_POST['time']; - ($_POST['amount_is_weight'] == 'true') ? $sql .= "', amount_is_weight='1" : $sql .= "', amount_is_weight='0"; - $sql .= "', use_for='" . mysqli_real_escape_string($connect, $_POST['use_for']); - $sql .= "', notes='" . mysqli_real_escape_string($connect, $_POST['notes']); - ($_POST['always_on_stock'] == 'true') ? $sql .= "', always_on_stock='1" : $sql .= "', always_on_stock='0"; - $sql .= "', inventory='" . floatval($_POST['inventory']) / 1000.0; - $sql .= "', cost='" . $_POST['cost'] . "'"; - if ($_POST['production_date'] == '') - $sql .= ", production_date=NULL"; - else - $sql .= ", production_date='" . $_POST['production_date'] . "'"; - if ($_POST['tht_date'] == '') - $sql .= ", tht_date=NULL"; - else - $sql .= ", tht_date='" . $_POST['tht_date'] . "'"; - - if (isset($_POST['insert'])) { - $sql .= ";"; - } - if (isset($_POST['update'])) { - $sql .= " WHERE record='" . $_POST['record'] . "';"; - } - $result = mysqli_query($connect, $sql); - if (! $result) { - syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); - $response['error'] = true; - $response['msg'] = "SQL fout: ".mysqli_error($connect); - } - exit(json_encode($response)); - -} else if (isset($_POST['delete'])) { - // DELETE COMMAND - $sql = "DELETE FROM `inventory_miscs` WHERE record='".$_POST['record']."';"; - $result = mysqli_query($connect, $sql); - if (! $result) { - syslog(LOG_NOTICE, "db_inventory_miscs: ".$sql." result: ".mysqli_error($connect)); - $response['error'] = true; - $response['msg'] = "SQL fout: ".mysqli_error($connect); - } - exit(json_encode($response)); - -} else { - // SELECT COMMAND - $query = "SELECT * FROM inventory_miscs ORDER BY name"; - $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect)); - while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) { - $miscs[] = array( - 'record' => $row['record'], - 'name' => $row['name'], - 'uuid' => $row['uuid'], - 'type' => $misctype[$row['type']], - 'use_use' => $miscuse[$row['use_use']], - 'time' => $row['time'], - 'amount_is_weight' => $row['amount_is_weight'], - 'use_for' => $row['use_for'], - 'notes' => $row['notes'], - 'always_on_stock' => $row['always_on_stock'], - 'inventory' => floatval($row['inventory']) * 1000.0, - 'cost' => $row['cost'], - 'production_date' => $row['production_date'], - 'tht_date' => $row['tht_date'] - ); - } - header("Content-type: application/json"); - exit(json_encode($miscs)); -} - -syslog(LOG_NOTICE, "db_inventory_miscs: missing arguments"); -$response['error'] = true; -$response['msg'] = "missing arguments"; -echo json_encode($response); - -?>