function getUploadRecords($tablename, $fieldname, $recordNum, $preSaveTempId = "", $uploadNumsAsCSV = null) { global $TABLE_PREFIX; // $query = "SELECT * FROM `{$TABLE_PREFIX}uploads` "; $query .= " WHERE tableName = '" . mysql_escape($tablename) . "' AND "; $query .= " fieldName = '" . mysql_escape($fieldname) . "' AND "; if ($recordNum) { $query .= "recordNum = '" . mysql_escape($recordNum) . "' "; } else { if ($preSaveTempId) { $query .= "preSaveTempId = '" . mysql_escape($preSaveTempId) . "' "; } else { die("You must specify either a record 'num' or 'preSaveTempId'!"); } } if ($uploadNumsAsCSV) { $query .= " AND num IN(" . mysql_escape($uploadNumsAsCSV) . ") "; } $query .= " ORDER BY `order`, num"; $records = mysql_select_query($query); // add pseudo-fields $schema = loadSchema($tablename); foreach (array_keys($records) as $index) { $record =& $records[$index]; _addUploadPseudoFields($record, $schema, $fieldname); } // showme($records); // return $records; }
function getUploads($tableName, $fieldName, $recordNum) { global $TABLE_PREFIX; $uploads = array(); // error checking if (!$tableName) { die(__FUNCTION__ . ": no 'tableName' value specified!"); } if (!$fieldName) { die(__FUNCTION__ . ": no 'fieldName' value specified!"); } if (!$recordNum) { die(__FUNCTION__ . ": no 'recordNum' value specified!"); } // get record uploads $tableNameWithoutPrefix = getTableNameWithoutPrefix($tableName); $query = " SELECT * FROM `{$TABLE_PREFIX}uploads` "; $query .= " WHERE tableName = '" . mysql_escape($tableNameWithoutPrefix) . "' AND "; $query .= " fieldName = '" . mysql_escape($fieldName) . "' AND"; $query .= " recordNum = '" . mysql_escape($recordNum) . "'"; $query .= " ORDER BY `order`, num"; $result = mysql_query($query) or die("MySQL Error: " . htmlencode(mysql_error()) . "\n"); // $schema = loadSchema($tableName); while ($upload = mysql_fetch_assoc($result)) { _addUploadPseudoFields($upload, $schema, $fieldName); array_push($uploads, $upload); } return $uploads; }