} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'ModifyItem Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($partNumber, "/^.+\$/", "Part Number"); $IMSBase->verifyData($field, "/^.+\$/", "Item Field"); $IMSBase->verifyData($value, "/^.+\$/", "Item Value"); if ($sql->exists($partNumber, 'dbo.Inventory') == FALSE) { $statusCode = '1'; $statusMessage = "ModifyItem Error: Part Number, {$partNumber}, does not exist."; $log->add_log($sessionID, 'Warning', $statusMessage); } else { $sql->command("UPDATE dbo.Inventory SET [{$field}]='{$value}' WHERE Name='{$partNumber}';"); $statusCode = '0'; $statusMessage = "Item({$partNumber}) {$field} was updated with {$value}"; $log->add_log($sessionID, 'Information', $statusMessage, $partNumber); } } catch (PDOException $e) { $statusCode = '1'; $statusMessage = 'ModifyItem SQLError: ' . $e->getMessage();
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'RetriveItem Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID); //No special permission required. $IMSBase->verifyData($partNumber, "/^.+\$/", "Part Number"); $stmt = $sql->prepare("SELECT * FROM dbo.Inventory WHERE Name='{$partNumber}'"); $stmt->execute(); $result = $stmt->setFetchMode(PDO::FETCH_ASSOC); if (count($result) == 0) { $statusCode = '1'; $statusMessage = "RetrieveItem: Part Number,{$partNumber}, does not exist in database."; $log->add_log($sessionID, 'Warning', $statusMessage); } else { if (count($result) > 1) { $statusCode = '1'; $statusMessage = "RetrieveItem: Part Number,{$partNumber}, has multiple instances in database."; $log->add_log($sessionID, 'Warning', $statusMessage); } else { $dataArray = $stmt->fetch(PDO::FETCH_ASSOC); $statusCode = '0';
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'ModifyClassData Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($recordID, "/^.+\$/", "Record ID"); $IMSBase->verifyData($field, "/^.+\$/", "Record Field"); $IMSBase->verifyData($value, "/^.+\$/", "Record Value"); $IMSBase->verifyData($sortColumn, "/^.*\$/", "Sort Column"); if ($sortColumn != "") { $IMSBase->verifyData($sortDirection, "/^(ASC|DESC)\$/", "Sort Direction"); } if ($field == 'Part') { $stmt = $sql->prepare("SELECT [Part] FROM dbo.Class_Data WHERE [id]='{$recordID}';"); $stmt->execute(); $oldPN_array = $stmt->fetchAll(PDO::FETCH_ASSOC); $oldPN = $oldPN_array[0]['Part']; //remove lab part flag from old part number $sql->command("UPDATE dbo.Inventory SET [Lab_Part_Flag]='0' WHERE [Name]='{$oldPN}';"); //add lab part flag from new part number $sql->command("UPDATE dbo.Inventory SET [Lab_Part_Flag]='1' WHERE [Name]='{$value}';");
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'RetrieveLog Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID); //No special permission required. $IMSBase->verifyData($logLevel, "/^.+\$/", "Log Level"); $logArray = $log->read_log($logLevel); $statusCode = '0'; $statusMessage = 'RetrieveLog, successfully retrieved log data.'; $log->add_log($sessionID, 'Debug', $statusMessage); } catch (PDOException $e) { $statusCode = '1'; $statusMessage = 'RetrieveLog SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage); } catch (Exception $e) { $statusCode = $e->getCode(); $statusMessage = 'RetrieveLog Error: ' . $e->getMessage(); if (!$log->add_log($sessionID, 'Error', $statusMessage, "N/A", true)) { $statusMessage = $statusMessage . " **Logging Failed**"; } }
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'ModifyEmailAddress Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($recordID, "/^.+\$/", "Record ID"); $IMSBase->verifyData($field, "/^.+\$/", "Record Field"); $IMSBase->verifyData($value, "/^.+\$/", "Record Value"); $sql->command("UPDATE dbo.Emails SET [{$field}]='{$value}' WHERE ID='{$recordID}';"); //retrieve new table. $sqlQuery = "SELECT * FROM dbo.Emails;"; $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); $statusCode = '0'; $statusMessage = "Email record({$recordID}) - {$field} was updated with {$value}"; $log->add_log($sessionID, 'Information', $statusMessage); } catch (PDOException $e) { $statusCode = '1'; $statusMessage = 'ModifyEmailAddress SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage);
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'AddNewClassData Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($classNumber, "/^.+\$/", "Class"); $IMSBase->verifyData($partNumber, "/^.+\$/", "Part Number"); $IMSBase->verifyData($quantity, "/^[0-9]+\$/", "Quantity"); $IMSBase->verifyData($date, "/^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]\$/", "Date"); $IMSBase->verifyData($sortColumn, "/^.*\$/", "Sort Column"); if ($sortColumn != "") { $IMSBase->verifyData($sortDirection, "/^(ASC|DESC)\$/", "Sort Direction"); } if ($sql->exists($partNumber, 'dbo.Inventory') == FALSE) { $statusCode = '1'; $statusMessage = "AddNewClassData Error: {$partNumber} does not exist in database."; $log->add_log($sessionID, 'Error', $statusMessage); } else { //add new item $sql->command("INSERT INTO dbo.Class_Data (Class,Part,Quantity,Date) VALUES ('{$classNumber}','{$partNumber}',{$quantity},'{$date}');"); //set flag in dbo.Inventory
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'AddEmailAddress Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($emailAddress, "/^.+@.+\\..+\$/", "Email Address"); //add new item $sql->command("INSERT INTO dbo.Emails (Recipients,Email) VALUES ('{$emailAddress}','None');"); //retrieve new table. $sqlQuery = "SELECT * FROM dbo.Emails;"; $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); $statusCode = '0'; $statusMessage = "Email ({$emailAddress}) added to database."; $log->add_log($sessionID, 'Information', $statusMessage); } catch (PDOException $e) { $statusCode = '1'; $statusMessage = 'AddEmailAddress SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage); } catch (Exception $e) {
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'RetrieveBroswerData Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID); //No special permissions required. $IMSBase->verifyData($sortColumn, "/^.*\$/", "Sort Column"); if ($sortColumn != "") { $IMSBase->verifyData($sortDirection, "/^(ASC|DESC)\$/", "Sort Direction"); } $IMSBase->verifyData($filter, "/^.*\$/"); $sqlQuery = "SELECT * FROM dbo.Inventory"; //Build SQL Query if ($filter != "") { $sqlQuery = $sqlQuery . " WHERE [Name] LIKE '%{$filter}%' or [Description] LIKE '%{$filter}%'" . " or [Supplier_Part_Number] LIKE '%{$filter}%' or [Type] LIKE '%{$filter}%'" . " or [Value] LIKE '%{$filter}%' or [Quantity] LIKE '%{$filter}%'" . " or [Location] LIKE '%{$filter}%' or [Ordering_Threshold] LIKE '%{$filter}%'" . " or [Suppliers_Name] LIKE '%{$filter}%' or [Item_Link] LIKE '%{$filter}%'"; } if ($sortColumn != "") { $sqlQuery = $sqlQuery . " ORDER BY {$sortColumn} {$sortDirection}"; } $sqlQuery .= ";"; $stmt = $sql->prepare($sqlQuery); $stmt->execute();
$statusCode = 0; $runLevel = ""; $supplierNumber = ""; $itemLink = ""; $quantity = ""; try { if ($_SERVER["REQUEST_METHOD"] == "POST") { $sessionID = $_POST["SID"]; $supplierNumber = $_POST["SN"]; $itemLink = $_POST["IL"]; $quantity = $_POST["QN"]; } $IMSBase = new IMSBase(); $log = new IMSLog(); $sql = new IMSSql(); $IMSBase->verifyData($supplierNumber, "/^.+\$/", "Supplier Number"); if ($itemLink == "") { $itemLink = "Unknown"; } if ($quantity = "") { $quantity = 0; } //Set IMSLog options $opt_debugLog = $sql->getOption('Debug'); if ($opt_debugLog === false) { $log->add_log($sessionID, 'Warning', 'AddPurchaseListItem Warning: Debug Option missing or invalid.'); } else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true;
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'QueryAutocomplete Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID); //No Special privileges required. $IMSBase->verifyData($filter, "/^.+\$/", "Filter"); $sqlQuery = "SELECT * FROM dbo.Inventory WHERE Name LIKE '%{$filter}%'"; //."OR Description LIKE '%$filter%' OR \"Supplier Part Number\" LIKE '%$filter%'"; $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); $rowCount = count($dataArray); if ($rowCount == 0) { $suggestionArray[] = "No Suggestion."; } else { foreach ($dataArray as $rowData) { $suggestionArray[] = array('Name' => $rowData['Name'], 'Description' => $rowData['Description'], 'Type' => $rowData['Type']); } } $statusCode = '0'; $statusMessage = "QueryAutocomplete: {$rowCount} auto-complete suggestions supplied for ({$filter}).";
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'ModifyOption Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($option, "/^.+\$/"); $IMSBase->verifyData($data, "/^.+\$/"); $dataArray[0] = $sql->command("UPDATE dbo.Options SET [Value]='{$data}' WHERE [Option]='{$option}'"); $statusCode = "0"; if ($option == 'SQL_PASS' || $option == 'Email_Pass') { $statusMessage = "Option {$option} changed."; } else { $statusMessage = "Option {$option} changed to {$data}."; } $log->add_log($sessionID, 'Information', $statusMessage); } catch (PDOException $e) { $statusCode = 1; $statusMessage = 'ModifyOption SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage); } catch (Exception $e) { $statusCode = $e->getCode();
if ($opt_debugLog === false) { $log->add_log($sessionID, 'Warning', 'GeneratePurchaseReport Warning: Debug Option missing or invalid.'); } else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'GeneratePurchaseReport Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $IMSBase->verifyData($sessionID, "/^.+\$/"); if ($tableType == "manual") { $sqlQuery = "SELECT Supplier_Part_Number, Item_Link, Quantity FROM dbo.Purchase_List;"; } else { $sqlQuery = "SELECT Supplier_Part_Number, Item_Link, Quantity FROM dbo.Inventory \n\t\t\t\tWHERE Quantity < Ordering_Threshold\n\t\t\t\tUNION SELECT Supplier_Part_Number, Item_Link, Quantity FROM dbo.Purchase_List\n\t\t\t\tUNION SELECT Supplier_Part_Number, Item_Link, Quantity FROM dbo.Inventory\n\t\t\t\tWHERE (Quantity - Lab_Quantity) < Ordering_Threshold AND Lab_Part_Flag=1;"; } $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); } catch (PDOException $e) { $statusCode = 1; $statusMessage = 'GeneratePurchaseReport SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage); echo "Error: " . $e->getMessage(); } catch (Exception $e) { $statusCode = $e->getCode();
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'DeleteClassData Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($id, "/^.+\$/", "Record ID"); $IMSBase->verifyData($sortColumn, "/^.*\$/", "Sort Column"); if ($sortColumn != "") { $IMSBase->verifyData($sortDirection, "/^(ASC|DESC)\$/", "Sort Direction"); } //get part number from ID $sqlQuery = "SELECT [Part] FROM dbo.Class_Data WHERE Id={$id}"; $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); $partNumber = $dataArray[0]['Part']; $sql->command("UPDATE dbo.Inventory SET [Lab_Part_Flag]='0' WHERE Name='{$partNumber}';"); //Delete record $sql->command("DELETE FROM dbo.Class_Data WHERE Id={$id};"); $statusCode = '0'; $statusMessage = "{$partNumber} has been removed from Class data. (Record {$id})";
} else { if ($opt_debugLog == 'False') { $log->opt_debug = false; } else { $log->opt_debug = true; } } $opt_logLoc = $sql->getOption('Log_File_Location'); if ($opt_logLoc === false) { $log->add_log($sessionID, 'Warning', 'DeleteEmailAddress Warning: Log_File_Location Option missing or invalid.'); } else { $log->set_log_location($opt_logLoc); } $runLevel = $sql->verifySID($sessionID, "1"); //1 = Requires edit privileges. $IMSBase->verifyData($id, "/^.+\$/", "Record ID"); //Delete record $sql->command("DELETE FROM dbo.Emails WHERE Id={$id};"); $statusCode = '0'; $statusMessage = "Email ID:{$id} has been deleted from the database."; $log->add_log($sessionID, 'Information', $statusMessage); //retrieve new table. $sqlQuery = "SELECT * FROM dbo.Emails;"; $stmt = $sql->prepare($sqlQuery); $stmt->execute(); $dataArray = $stmt->fetchAll(PDO::FETCH_ASSOC); } catch (PDOException $e) { $statusCode = '1'; $statusMessage = 'DeleteEmailAddress SQLError: ' . $e->getMessage(); $log->add_log($sessionID, 'Error', $statusMessage); } catch (Exception $e) {