function get_all_promo_events() { connect_and_select_db(DB_SERVER, DB_UN, DB_PWD, DB_NAME); $startDate = mysql_real_escape_string($_POST['startDate']); $endDate = mysql_real_escape_string($_POST['endDate']); //Retrieve all events that occur during the time period including the outer bounds if ($startDate == null || $startDate == "") { $startDate = "0000-00-00"; } if ($endDate == null || $endDate == "") { $endDate = "9999-99-99"; } //$startDate = str_replace("-", "", $startDate); //$endDate = str_replace("-", "", $endDate); $sql = "SELECT * FROM AdEvent WHERE " . "(StartDate >= '{$startDate}' " . "AND StartDate <= '{$endDate}') " . "OR (EndDate >= '{$startDate}' " . "AND EndDate <= '{$endDate}') " . "ORDER BY AdEvent.StartDate ASC;"; //$sql = "SELECT * FROM AdEvent ORDER BY AdEvent.StartDate ASC"; --older, incorrect version $error_message = "Could not successfully run query ({$sql}) from DB: "; $search_events_result = get_result_set_from_select_query($sql, $error_message); //$result is non-empty. So count the rows $numrows = mysql_num_rows($search_events_result); //Create an appropriate message $message = ""; if ($numrows == 0) { $message = "No events found in database"; } ui_show_events_retrieved($message, $search_events_result); }
function get_events_matching_search_criteria() { connect_and_select_db(DB_SERVER, DB_UN, DB_PWD, DB_NAME); $eventCode = mysql_real_escape_string($_POST['eventCode']); $eventName = mysql_real_escape_string($_POST['eventName']); $startDate = mysql_real_escape_string($_POST['startDate']); $endDate = mysql_real_escape_string($_POST['endDate']); $description = mysql_real_escape_string($_POST['description']); $type = mysql_real_escape_string($_POST['type']); if ($startDate == null || $startDate == "") { $startDate = "0000-00-00"; } if ($endDate == null || $endDate == "") { $endDate = "9999-99-99"; } $sql = "SELECT EventCode, AdEvent.Name, StartDate, EndDate, Description,AdType\n FROM AdEvent\n WHERE EventCode LIKE '%" . $eventCode . "%'\n AND AdEvent.Name LIKE '%" . $eventName . "%'\n AND Description LIKE '%" . $description . "%'\n AND AdEvent.AdType LIKE '%" . $type . "%'\n AND((StartDate >= '{$startDate}' " . "AND StartDate <= '{$endDate}') " . "OR (EndDate >= '{$startDate}' " . "AND EndDate\n <= '{$endDate}')) ORDER BY StartDate"; $error_message = "Could not successfully run query ({$sql}) from DB: "; $search_events_result = get_result_set_from_select_query($sql, $error_message); //$result is non-empty. So count the rows $numrows = mysql_num_rows($search_events_result); //Create an appropriate message $message = ""; if ($numrows == 0) { $message = "No events found in database"; } ui_show_events_retrieved($message, $search_events_result); }
function get_events_matching_search_criteria() { connect_and_select_db(DB_SERVER, DB_UN, DB_PWD, DB_NAME); $promoCodes = $_POST['promoCodes']; $eventCode = mysql_real_escape_string($_POST['eventCode']); $name = mysql_real_escape_string($_POST['name']); $startDate = mysql_real_escape_string($_POST['startDate']); $endDate = mysql_real_escape_string($_POST['endDate']); $description = mysql_real_escape_string($_POST['description']); $adType = mysql_real_escape_string($_POST['adType']); $sql = "SELECT *\n FROM AdEvent\n WHERE EventCode LIKE '%" . $eventCode . "%'\n AND AdEvent.Name LIKE '%" . $name . "%'\n AND StartDate LIKE '%" . $startDate . "%'\n AND EndDate LIKE '%" . $endDate . "%'\n AND Description LIKE '%" . $description . "%'\n AND AdType LIKE '%" . $adType . "%'"; $error_message = "Could not successfully run query ({$sql}) from DB: "; $search_events_result = get_result_set_from_select_query($sql, $error_message); //$result is non-empty. So count the rows $numrows = mysql_num_rows($search_events_result); //Create an appropriate message $message = ""; if ($numrows == 0) { $message = "No events found in database"; } ui_show_events_retrieved($message, $search_events_result, $promoCodes); }