echo $system->prepareCommandQueryForAlertify("INSERT INTO `at_system_users` (`user_name`, `user_level`, `pwd`, `date`, `approved`) VALUES ('{$modalUserName}', '{$modalUserLevel}', '{$modalUserPassword}', '{$currentDate}', '1')", "Successfully Registered System User", "Sorry..! could not be registered system user"); } else { if ($_POST['userLoginProccess'] == 'deleteUser') { $deleteSystemUserID = $_POST['deleteSystemUserID']; echo $system->prepareCommandQueryForAlertify("DELETE FROM `at_system_users` WHERE `id` = '{$deleteSystemUserID}'", "Successfully Delete Registered System User", "Sorry..! could not be delete Registered system user"); } else { if ($_POST['userLoginProccess'] == 'updateUser') { $modalUserID = $_POST['modalUserID']; $modalUserName = $dbClass->filterData($_POST['modalUserName']); $modalUserLevel = $_POST['modalUserLevel']; $modalUserPassword = $dbClass->PasswordHash($dbClass->filterData($_POST['modalUserPassword'])); $currentDate = date("Y-m-d"); echo $system->prepareCommandQueryForAlertify("UPDATE `at_system_users` SET `user_name`='{$modalUserName}', `user_level`='{$modalUserLevel}', `pwd`='{$modalUserPassword}', `date`='{$currentDate}' WHERE (`id`='{$modalUserID}')", "Successfully Update Registered System User", "Sorry..! could not be update registered system user"); } else { if ($_POST['userLoginProccess'] == 'getUserDetailsByID') { echo $system->prepareSelectQueryForJSON("SELECT\nat_system_users.user_name,\nat_system_users.user_level,\nat_system_users.pwd,\nat_system_users.id\nFROM\nat_system_users\nWHERE\nat_system_users.id = '{$_POST['userID']}'"); } } } } } if (array_key_exists("databseBackup", $_POST)) { //set the default file name $dbname = DB_NAME; $bname = "tradeLicence_" . date("Y-m-d") . time() . "-" . uniqid(); $starttime = time(); $drop_table_if_exists = true; //should we drop table if exist? $somecontent = "--- Developed By RUWAN JAYAWARDENA --- \n\n"; $dbClass->droptableifexists = $drop_table_if_exists; //set drop table if exists
if (array_key_exists("action", $_POST)) { if ($_POST['action'] == 'update_emp_data') { $emp_name = mysql_real_escape_string($_POST['emp_name']); $system->prepareCommandQueryForAlertify("UPDATE `r_employee` SET `emp_id`='{$_POST['emp_id']}', `name`='{$_POST['emp_name']}", "Successfully Updated Employee Data", "Sorry ! Could not be Update"); } else { if ($_POST['action'] == 'del_emp') { $system->prepareCommandQueryForAlertify("DELETE FROM `r_employee` WHERE (`emp_id`='{$_POST['emp_id']}')", "Successfully Deleted Employee", "Sorry ! Could not be Delete"); } else { if ($_POST['action'] == 'check_emp_no') { $data = $system->prepareSelectQuery("SELECT\r\n COUNT(r_employee.emp_id) AS tot\r\n FROM `employee`\r\n WHERE\r\n lms_emp_data.lms_emp_NO = '{$_POST['id']}'"); if (!empty($data)) { echo $current_tot = $data[0]['tot']; } } else { if ($_POST['action'] == 'select_emp') { $system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.name,\r\n r_employee.gender\r\n r_employee.nic,\r\n FROM r_employee\r\n WHERE\r\n r_employee.emp_id = {$_POST['emp_id']}"); } else { if ($_POST['action'] == 'save_paysheet') { // $query = "INSERT INTO `paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}',{$_POST['sallary']}','{$_POST['date']}')" ; $query = "INSERT INTO `r_paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`epfval`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}','{$_POST['salary']}','{$_POST['epfval']}','{$_POST['date']}')"; $errMsg = "paysheet not added to the database"; $succMsg = "employee paysheet was sucessfully added to the database"; $system->prepareCommandQueryForAlertify($query, $succMsg, $errMsg); } else { if ($_POST['action'] == 'max_id') { $system->prepareSelectQueryForJSON("SELECT\r\n MAX(paysheet_id) AS payid\r\n FROM\r\n r_paysheet"); } } } } }
<?php require_once '../config/dbc.php'; require_once '../class/database.php'; require_once '../class/systemSetting.php'; $dbClass = new database(); $system = new setting(); if (array_key_exists("table", $_POST)) { if ($_POST['table'] == 'maker_info') { //@Sachith : load sub category table by main category id $system->prepareSelectQueryForJSON("SELECT maker_id, maker_name, `desc`, maker_status \r\n FROM maker WHERE maker.maker_status = 1"); } else { if ($_POST['table'] == 'c_customers_table') { //kitz $query = "SELECT\r\n customer.cus_id,\r\n customer.cus_name,\r\n customer.cus_inv_name,\r\n customer.cus_address,\r\n customer.cus_inv_address,\r\n customer.cus_phone1,\r\n customer.cus_phone2,\r\n customer.other_contact,\r\n customer.comments\r\n FROM `customer`\r\n WHERE\r\n customer.cus_status != 99"; $system->prepareSelectQueryForJSON($query); } else { if ($_POST['table'] == 'model_info') { $query = "SELECT\r\n maker_model.mod_id,\r\n maker_model.mod_name,\r\n maker_model.mod_options\r\n FROM\r\n maker_model\r\n WHERE\r\n maker_model.mod_status = 1 AND\r\n maker_model.maker_id = '{$_POST['maker_id']}'"; $system->prepareSelectQueryForJSON($query); } else { if ($_POST['table'] == 'load_sup_reg_tbl') { $system->prepareSelectQueryForJSON("SELECT\r\nsupplier.supp_id,\r\nsupplier.supp_code,\r\nsupplier.supp_name,\r\nsupplier.inv_name,\r\nsupplier.supp_address,\r\nsupplier.inv_address,\r\nsupplier.phone,\r\nsupplier.inv_phone,\r\nsupplier.supp_email,\r\nsupplier.web,\r\nsupplier.supp_fax\r\nFROM\r\nsupplier\r\nWHERE supplier.supp_status = '1'"); } else { if ($_POST['table'] == 'load_clearnce_tbl') { $rec_per_page = 15; // enter the same value in 'view_vehicle_tbl_paging' if (filter_var($_REQUEST["records"], FILTER_VALIDATE_INT)) { $rec_per_page = $_REQUEST["records"]; } if (isset($_REQUEST["page"])) {
require_once '../class/database.php'; require_once '../class/systemSetting.php'; //require_once '../class/functionsByKIT.php'; $system = new setting(); $database = new database(); //$pasdManage = new MainConfig(); if (array_key_exists("action", $_POST)) { if ($_POST['action'] == 'saveAdminLevels') { MainConfig::connectDB(); $getSeqno = mysql_query("SELECT\nin_usrlevel.usrLvlPrvSeq,\nin_usrlevel.lvID\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'"); $count = mysql_num_rows($getSeqno); $seqNo = $count + 1; $system->prepareCommandQueryForAlertify("INSERT INTO `in_usrlevel` (`lvName`, `usrLvlPrvSeq`) VALUES ('{$_POST['userLevel']}', '{$seqNo}');", "Successfully Saved", "Sorry ..! Counld Not Be Saved"); } else { if ($_POST['action'] == 'userLevelTbl') { $system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvID,\nin_usrlevel.lvName,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nORDER BY in_usrlevel.lvID DESC"); } else { if ($_POST['action'] == 'deleteUserLevel') { $system->prepareCommandQueryForAlertify("DELETE FROM `in_usrlevel` WHERE (`lvID`='{$_POST['userLevelId']}')", "Successfully Deleted", "Sorry ..! Counld Not Be Deleted"); } else { if ($_POST['action'] == 'loadUserLevelCombo') { $system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'"); } else { if ($_POST['action'] == 'loadPrivillegeCombo') { $system->prepareSelectQueryForJSON("SELECT\nin_sysprvlg.prvCode,\nin_sysprvlg.usrPrvMnuName\nFROM `in_sysprvlg`\n"); } else { if ($_POST['action'] == 'selectUlevel') { $system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID\nFROM\nin_usrlevel WHERE in_usrlevel.lvID = '{$_POST['userLevelId']}'"); } else { if ($_POST['action'] == 'updateUlevel') { $system->prepareCommandQueryForAlertify("UPDATE `in_usrlevel` SET `lvName`='{$_POST['newUserLevel']}' WHERE (`lvID`='{$_POST['hiddnField']}');", "Successfully Updated", "Sorry ..! Counld Not Be Update");
} mysql_query("START TRANSACTION"); $ins = mysql_query("UPDATE `maker` SET `maker_name`='{$form['maker_name']}', `desc`='{$form['maker_desc']}' WHERE (`maker_id`='{$form['maker_id']}')") or die(mysql_error()); $trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('UPDATE', 'Maker-{$form['maker_id']}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error()); if ($ins && $trn) { mysql_query("COMMIT"); echo json_encode(array(array("msgType" => 1, "msg" => "Maker saved"))); } else { mysql_query("ROLLBACK"); echo json_encode(array(array("msgType" => 2, "msg" => "Could not save"))); } MainConfig::closeDB(); } else { if ($_POST['action'] == 'maker_select') { $maker_id = $_POST['maker_id']; $system->prepareSelectQueryForJSON("SELECT\n maker.maker_id,\n maker.maker_name,\n maker.`desc`\n FROM\n maker\n WHERE\n maker.maker_id = '{$maker_id}'"); } elseif ($_POST['action'] == 'delete_maker') { $maker_id = $_POST['maker_id']; $today = date('Y-m-d'); mysql_query("START TRANSACTION"); $ins = mysql_query("UPDATE `maker` SET maker_status='99' WHERE (`maker_id`='{$maker_id}')") or die(mysql_error()); $trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('DELETE', 'Maker-{$maker_id}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error()); if ($ins && $trn) { mysql_query("COMMIT"); echo json_encode(array(array("msgType" => 1, "msg" => "Maker Deleted"))); } else { mysql_query("ROLLBACK"); echo json_encode(array(array("msgType" => 2, "msg" => "Could not delete"))); } MainConfig::closeDB(); } elseif ($_POST['action'] == 'exec_mysql_query') {
<?php session_start(); require_once '../config/dbc.php'; require_once '../class/database.php'; require_once '../class/systemSetting.php'; $system = new setting(); $database = new database(); MainConfig::connectDB(); if (array_key_exists("action", $_POST)) { if ($_POST['action'] == 'get_selected_employee_data') { $emp_id = $_POST['emp_id']; $system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.empno,\r\n r_employee.title,\r\n r_employee.`name`,\r\n r_employee.designation,\r\n r_employee.nic,\r\n r_employee.tel,\r\n r_employee.gender,\r\n r_employee.epfno,\r\n r_employee.basic,\r\n r_employee.reg_date,\r\n r_employee.`status`\r\n FROM\r\n r_employee\r\n where r_employee.`status` = '1' AND\r\n r_employee.emp_id = '{$emp_id}'"); } else { if ($_POST['action'] == 'save_employee') { $today = date('Y-m-d'); $data = $_POST['form_data']; if (empty($data['empno'])) { echo json_encode(array(array("msgType" => 2, "msg" => "Enter a supplier code"))); return; } foreach ($data as $key => $value) { $data[$key] = mysql_real_escape_string($data[$key]); } mysql_query("START TRANSACTION"); $ins = mysql_query("INSERT INTO `r_employee` (\r\n\t`emp_id`,\r\n\t`empno`,\r\n\t`name`,\r\n\t`nic`,\r\n\t`tel`,\r\n\t`gender`,\r\n\t`epfno`,\r\n\t`basic`,\r\n\t`reg_date`,\r\n\t`status`\r\n)\r\nVALUES" . "('{$data['emp_id']}', '{$data['empno']}', '{$data['name']}', '{$data['nic']}', '{$data['tel']}', '{$data['gender']}', '{$data['epfno']}', '{$data['basic']}','{$data['reg_date']}','1')") or die(mysql_error()); $trn = mysql_query("INSERT INTO `transaction` (`tr_type`, `tr_desc`, `tr_date`, `tr_user_id`) VALUES ('INSERT', 'employee-{$data['empno']}', '{$today}', '{$_SESSION['user_id']}')") or die(mysql_error()); if ($ins && $trn) { mysql_query("COMMIT"); echo json_encode(array(array("msgType" => 1, "msg" => "Employee saved"))); } else {
<?php require_once '../config/dbc.php'; require_once '../class/database.php'; require_once '../class/systemSetting.php'; $dbClass = new database(); $system = new setting(); if (array_key_exists("comboBox", $_POST)) { if ($_POST['comboBox'] == 'makers') { $system->prepareSelectQueryForJSON("SELECT\n maker.maker_id,\n maker.maker_name\n FROM maker\n WHERE maker.maker_status = '1'"); } else { if ($_POST['comboBox'] == 'coordinator_category') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '11'"); } else { if ($_POST['comboBox'] == 'transmission_types') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '10'"); } else { if ($_POST['comboBox'] == 'fuel_types') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '9'"); } else { if ($_POST['comboBox'] == 'currency_types') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '6'"); } else { if ($_POST['comboBox'] == 'drive_types') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description\n FROM\n syscode\n WHERE\n syscode.type = '8'"); } else { if ($_POST['comboBox'] == 'syscode_types') { $system->prepareSelectQueryForJSON("SELECT\n syscode.`code`,\n syscode.description,\n syscode.remarks\n FROM\n syscode\n WHERE\n syscode.type = '{$_POST['sys_type']}'"); } else { if ($_POST['comboBox'] == 'vahicle_code_combo') { $system->prepareSelectQueryForJSON("SELECT\nvehicle.vh_id,\nvehicle.vh_code\nFROM\nvehicle\nWHERE\nvehicle.record_status = '1' AND\nvehicle.stock_status = '1'");