</head> <body> <h1>X2011West Advanced Section Index</h1> <a href="index.php">Back to main page</a> <p> <?php require_once 'access.php'; require_once 'utilities.php'; require_once 'indexing.php'; require_once 'parsers.php'; // Over-ride globals for full visibility here $event_tools_show_min_value = 0; $event_tools_replace_on_data_warn = TRUE; // TRUE replace with text, FALSE leave as is $event_tools_replace_on_data_error = TRUE; // TRUE replace with text, FALSE leave as is $order = parse_order(); echo '<h2>Layout Tours</h2>'; $where = 'STRCMP(start_date, "2011-07-03 12:00:00") < 0'; index_layout_tours("format_all_layout_tours.php#", $where); echo '<h2>General and Rail Tours</h2>'; $where = "number like 'A%'"; index_general_tours("format_all_general_tours.php?number=", $where); echo '<h2>Other Events</h2>'; $where = 'STRCMP(start_date, "2011-07-03 12:00:00") < 0'; index_misc_events("format_all_misc_events.php?id=", $where); ?> </body> </html>
function extern_order() { global $return_array; global $sql; $_GET['name_user'] = mysql_real_escape_string($_GET['name_user']); $caisse = 0; $pin_nb = 0; if (!isset($_GET['pin'])) { $return_array['code_erreur'] = UNDEFINED_PIN; $return_array['reponse'] = "Pin indéfini"; return; } $sql->rek('SELECT * FROM bar WHERE id IN (\'caisse\', \'PIN1\', \'PIN2\')'); //Requète while ($bar = $sql->fetch()) { switch ($bar['id']) { case 'caisse': $caisse = $bar['val']; break; default: if ($_GET['pin'] == $bar['val']) { $pin_nb = $bar['id']; } } } if ($pin_nb) { $order = parse_order(htmlspecialchars($_GET['consom'], ENT_QUOTES, 'UTF-8')); if (!isset($_GET['consom']) || $_GET['consom'] == ',') { $return_array['code_erreur'] = EMPTY_ORDER; $return_array['reponse'] = "Commande vide"; return; } if (count($order) < 1) { $return_array['code_erreur'] = INVALID_ORDER; $return_array['reponse'] = "Commande invalide"; return; } array_multisort($order, SORT_ASC); $rek_in = ''; for ($i = 0; $i < count($order); $i++) { $rek_in = $rek_in . $order[$i][0] . ','; } $rek_in = substr($rek_in, 0, strlen($rek_in) - 1); $i = 0; $new_caisse = $caisse; $sql->rek('SELECT * FROM produits WHERE id IN (' . $rek_in . ') ORDER BY id ASC'); while ($products = $sql->fetch()) { if ($products['id'] == $order[$i][0]) { $new_caisse += $products['prix'] * $order[$i][1]; $sql->rek('UPDATE produits SET qtt_reserve=\'' . ($products['qtt_reserve'] - $order[$i][1]) . '\', ventes=\'' . ($products['ventes'] + $order[$i][1]) . '\' WHERE id=\'' . $products['id'] . '\'', false); $sql->rek('INSERT INTO commandes_externes (name_user, timestamp, id_produit, qtte_produit) VALUES (\'' . $_GET['name_user'] . '\',\'' . date("Y-m-d H:i:s") . '\',\'' . $products['id'] . '\',\'' . $order[$i][1] . '\')', false); } $i++; } $sql->rek("UPDATE `bar` SET `val`='{$new_caisse}' WHERE id='caisse'"); $return_array['code_erreur'] = AJAX_OK; $return_array['reponse'] = "Commande externe passée avec succès."; } else { $return_array['code_erreur'] = INVALID_PIN; $return_array['reponse'] = "Pin invalide"; } }