echo $system->prepareCommandQueryForAlertify("INSERT INTO `at_system_users` (`user_name`, `user_level`, `pwd`, `date`, `approved`) VALUES ('{$modalUserName}', '{$modalUserLevel}', '{$modalUserPassword}', '{$currentDate}', '1')", "Successfully Registered System User", "Sorry..! could not be registered system user");
} else {
if ($_POST['userLoginProccess'] == 'deleteUser') {
$deleteSystemUserID = $_POST['deleteSystemUserID'];
echo $system->prepareCommandQueryForAlertify("DELETE FROM `at_system_users` WHERE `id` = '{$deleteSystemUserID}'", "Successfully Delete Registered System User", "Sorry..! could not be delete Registered system user");
} else {
if ($_POST['userLoginProccess'] == 'updateUser') {
$modalUserID = $_POST['modalUserID'];
$modalUserName = $dbClass->filterData($_POST['modalUserName']);
$modalUserLevel = $_POST['modalUserLevel'];
$modalUserPassword = $dbClass->PasswordHash($dbClass->filterData($_POST['modalUserPassword']));
$currentDate = date("Y-m-d");
echo $system->prepareCommandQueryForAlertify("UPDATE `at_system_users` SET `user_name`='{$modalUserName}', `user_level`='{$modalUserLevel}', `pwd`='{$modalUserPassword}', `date`='{$currentDate}' WHERE (`id`='{$modalUserID}')", "Successfully Update Registered System User", "Sorry..! could not be update registered system user");
} else {
if ($_POST['userLoginProccess'] == 'getUserDetailsByID') {
echo $system->prepareSelectQueryForJSON("SELECT\nat_system_users.user_name,\nat_system_users.user_level,\nat_system_users.pwd,\nat_system_users.id\nFROM\nat_system_users\nWHERE\nat_system_users.id = '{$_POST['userID']}'");
}
}
}
}
}
if (array_key_exists("databseBackup", $_POST)) {
//set the default file name
$dbname = DB_NAME;
$bname = "tradeLicence_" . date("Y-m-d") . time() . "-" . uniqid();
$starttime = time();
$drop_table_if_exists = true;
//should we drop table if exist?
$somecontent = "--- Developed By RUWAN JAYAWARDENA --- \n\n";
$dbClass->droptableifexists = $drop_table_if_exists;
//set drop table if exists
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'update_emp_data') {
$emp_name = mysql_real_escape_string($_POST['emp_name']);
$system->prepareCommandQueryForAlertify("UPDATE `r_employee` SET `emp_id`='{$_POST['emp_id']}', `name`='{$_POST['emp_name']}", "Successfully Updated Employee Data", "Sorry ! Could not be Update");
} else {
if ($_POST['action'] == 'del_emp') {
$system->prepareCommandQueryForAlertify("DELETE FROM `r_employee` WHERE (`emp_id`='{$_POST['emp_id']}')", "Successfully Deleted Employee", "Sorry ! Could not be Delete");
} else {
if ($_POST['action'] == 'check_emp_no') {
$data = $system->prepareSelectQuery("SELECT\r\n COUNT(r_employee.emp_id) AS tot\r\n FROM `employee`\r\n WHERE\r\n lms_emp_data.lms_emp_NO = '{$_POST['id']}'");
if (!empty($data)) {
echo $current_tot = $data[0]['tot'];
}
} else {
if ($_POST['action'] == 'select_emp') {
$system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.name,\r\n r_employee.gender\r\n r_employee.nic,\r\n FROM r_employee\r\n WHERE\r\n r_employee.emp_id = {$_POST['emp_id']}");
} else {
if ($_POST['action'] == 'save_paysheet') {
// $query = "INSERT INTO `paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}',{$_POST['sallary']}','{$_POST['date']}')" ;
$query = "INSERT INTO `r_paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`epfval`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}','{$_POST['salary']}','{$_POST['epfval']}','{$_POST['date']}')";
$errMsg = "paysheet not added to the database";
$succMsg = "employee paysheet was sucessfully added to the database";
$system->prepareCommandQueryForAlertify($query, $succMsg, $errMsg);
} else {
if ($_POST['action'] == 'max_id') {
$system->prepareSelectQueryForJSON("SELECT\r\n MAX(paysheet_id) AS payid\r\n FROM\r\n r_paysheet");
}
}
}
}
}
<?php
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
$dbClass = new database();
$system = new setting();
if (array_key_exists("table", $_POST)) {
if ($_POST['table'] == 'maker_info') {
//@Sachith : load sub category table by main category id
$system->prepareSelectQueryForJSON("SELECT maker_id, maker_name, `desc`, maker_status \r\n FROM maker WHERE maker.maker_status = 1");
} else {
if ($_POST['table'] == 'c_customers_table') {
//kitz
$query = "SELECT\r\n customer.cus_id,\r\n customer.cus_name,\r\n customer.cus_inv_name,\r\n customer.cus_address,\r\n customer.cus_inv_address,\r\n customer.cus_phone1,\r\n customer.cus_phone2,\r\n customer.other_contact,\r\n customer.comments\r\n FROM `customer`\r\n WHERE\r\n customer.cus_status != 99";
$system->prepareSelectQueryForJSON($query);
} else {
if ($_POST['table'] == 'model_info') {
$query = "SELECT\r\n maker_model.mod_id,\r\n maker_model.mod_name,\r\n maker_model.mod_options\r\n FROM\r\n maker_model\r\n WHERE\r\n maker_model.mod_status = 1 AND\r\n maker_model.maker_id = '{$_POST['maker_id']}'";
$system->prepareSelectQueryForJSON($query);
} else {
if ($_POST['table'] == 'load_sup_reg_tbl') {
$system->prepareSelectQueryForJSON("SELECT\r\nsupplier.supp_id,\r\nsupplier.supp_code,\r\nsupplier.supp_name,\r\nsupplier.inv_name,\r\nsupplier.supp_address,\r\nsupplier.inv_address,\r\nsupplier.phone,\r\nsupplier.inv_phone,\r\nsupplier.supp_email,\r\nsupplier.web,\r\nsupplier.supp_fax\r\nFROM\r\nsupplier\r\nWHERE supplier.supp_status = '1'");
} else {
if ($_POST['table'] == 'load_clearnce_tbl') {
$rec_per_page = 15;
// enter the same value in 'view_vehicle_tbl_paging'
if (filter_var($_REQUEST["records"], FILTER_VALIDATE_INT)) {
$rec_per_page = $_REQUEST["records"];
}
if (isset($_REQUEST["page"])) {
require_once '../class/database.php';
require_once '../class/systemSetting.php';
//require_once '../class/functionsByKIT.php';
$system = new setting();
$database = new database();
//$pasdManage = new MainConfig();
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'saveAdminLevels') {
MainConfig::connectDB();
$getSeqno = mysql_query("SELECT\nin_usrlevel.usrLvlPrvSeq,\nin_usrlevel.lvID\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'");
$count = mysql_num_rows($getSeqno);
$seqNo = $count + 1;
$system->prepareCommandQueryForAlertify("INSERT INTO `in_usrlevel` (`lvName`, `usrLvlPrvSeq`) VALUES ('{$_POST['userLevel']}', '{$seqNo}');", "Successfully Saved", "Sorry ..! Counld Not Be Saved");
} else {
if ($_POST['action'] == 'userLevelTbl') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvID,\nin_usrlevel.lvName,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nORDER BY in_usrlevel.lvID DESC");
} else {
if ($_POST['action'] == 'deleteUserLevel') {
$system->prepareCommandQueryForAlertify("DELETE FROM `in_usrlevel` WHERE (`lvID`='{$_POST['userLevelId']}')", "Successfully Deleted", "Sorry ..! Counld Not Be Deleted");
} else {
if ($_POST['action'] == 'loadUserLevelCombo') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'");
} else {
if ($_POST['action'] == 'loadPrivillegeCombo') {
$system->prepareSelectQueryForJSON("SELECT\nin_sysprvlg.prvCode,\nin_sysprvlg.usrPrvMnuName\nFROM `in_sysprvlg`\n");
} else {
if ($_POST['action'] == 'selectUlevel') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID\nFROM\nin_usrlevel WHERE in_usrlevel.lvID = '{$_POST['userLevelId']}'");
} else {
if ($_POST['action'] == 'updateUlevel') {
$system->prepareCommandQueryForAlertify("UPDATE `in_usrlevel` SET `lvName`='{$_POST['newUserLevel']}' WHERE (`lvID`='{$_POST['hiddnField']}');", "Successfully Updated", "Sorry ..! Counld Not Be Update");
}
mysql_query("START TRANSACTION");
$ins = mysql_query("UPDATE `maker` SET `maker_name`='{$form['maker_name']}', `desc`='{$form['maker_desc']}' WHERE (`maker_id`='{$form['maker_id']}')") or die(mysql_error());
$trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('UPDATE', 'Maker-{$form['maker_id']}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error());
if ($ins && $trn) {
mysql_query("COMMIT");
echo json_encode(array(array("msgType" => 1, "msg" => "Maker saved")));
} else {
mysql_query("ROLLBACK");
echo json_encode(array(array("msgType" => 2, "msg" => "Could not save")));
}
MainConfig::closeDB();
} else {
if ($_POST['action'] == 'maker_select') {
$maker_id = $_POST['maker_id'];
$system->prepareSelectQueryForJSON("SELECT\n maker.maker_id,\n maker.maker_name,\n maker.`desc`\n FROM\n maker\n WHERE\n maker.maker_id = '{$maker_id}'");
} elseif ($_POST['action'] == 'delete_maker') {
$maker_id = $_POST['maker_id'];
$today = date('Y-m-d');
mysql_query("START TRANSACTION");
$ins = mysql_query("UPDATE `maker` SET maker_status='99' WHERE (`maker_id`='{$maker_id}')") or die(mysql_error());
$trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('DELETE', 'Maker-{$maker_id}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error());
if ($ins && $trn) {
mysql_query("COMMIT");
echo json_encode(array(array("msgType" => 1, "msg" => "Maker Deleted")));
} else {
mysql_query("ROLLBACK");
echo json_encode(array(array("msgType" => 2, "msg" => "Could not delete")));
}
MainConfig::closeDB();
} elseif ($_POST['action'] == 'exec_mysql_query') {
<?php
session_start();
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
$system = new setting();
$database = new database();
MainConfig::connectDB();
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'get_selected_employee_data') {
$emp_id = $_POST['emp_id'];
$system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.empno,\r\n r_employee.title,\r\n r_employee.`name`,\r\n r_employee.designation,\r\n r_employee.nic,\r\n r_employee.tel,\r\n r_employee.gender,\r\n r_employee.epfno,\r\n r_employee.basic,\r\n r_employee.reg_date,\r\n r_employee.`status`\r\n FROM\r\n r_employee\r\n where r_employee.`status` = '1' AND\r\n r_employee.emp_id = '{$emp_id}'");
} else {
if ($_POST['action'] == 'save_employee') {
$today = date('Y-m-d');
$data = $_POST['form_data'];
if (empty($data['empno'])) {
echo json_encode(array(array("msgType" => 2, "msg" => "Enter a supplier code")));
return;
}
foreach ($data as $key => $value) {
$data[$key] = mysql_real_escape_string($data[$key]);
}
mysql_query("START TRANSACTION");
$ins = mysql_query("INSERT INTO `r_employee` (\r\n\t`emp_id`,\r\n\t`empno`,\r\n\t`name`,\r\n\t`nic`,\r\n\t`tel`,\r\n\t`gender`,\r\n\t`epfno`,\r\n\t`basic`,\r\n\t`reg_date`,\r\n\t`status`\r\n)\r\nVALUES" . "('{$data['emp_id']}', '{$data['empno']}', '{$data['name']}', '{$data['nic']}', '{$data['tel']}', '{$data['gender']}', '{$data['epfno']}', '{$data['basic']}','{$data['reg_date']}','1')") or die(mysql_error());
$trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('INSERT', 'employee-{$data['empno']}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error());
if ($ins && $trn) {
mysql_query("COMMIT");
echo json_encode(array(array("msgType" => 1, "msg" => "Employee saved")));
} else {
<?php
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
$dbClass = new database();
$system = new setting();
if (array_key_exists("comboBox", $_POST)) {
if ($_POST['comboBox'] == 'makers') {
$system->prepareSelectQueryForJSON("SELECT\n maker.maker_id,\n maker.maker_name\n FROM maker\n WHERE maker.maker_status = '1'");
} else {
if ($_POST['comboBox'] == 'coordinator_category') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '11'");
} else {
if ($_POST['comboBox'] == 'transmission_types') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '10'");
} else {
if ($_POST['comboBox'] == 'fuel_types') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '9'");
} else {
if ($_POST['comboBox'] == 'currency_types') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '6'");
} else {
if ($_POST['comboBox'] == 'drive_types') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '8'");
} else {
if ($_POST['comboBox'] == 'syscode_types') {
$system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description,\n syscode.remarks\n FROM\n syscode\n WHERE\n syscode.type = '{$_POST['sys_type']}'");
} else {
if ($_POST['comboBox'] == 'vahicle_code_combo') {
$system->prepareSelectQueryForJSON("SELECT\nvehicle.vh_id,\nvehicle.vh_code\nFROM\nvehicle\nWHERE\nvehicle.record_status = '1' AND\nvehicle.stock_status = '1'");
