function set_prop_fields_from_standin() { $roni = 0; foreach ($_POST as $postkey => $postval) { $final_post_val = clean_request_val($_POST[$postkey]); if (is_array($final_post_val)) { continue; } $posted_lookup_field = trim($final_post_val); if (ereg("^standin_pi([0-9]+)epi([0-9]+)ron([0-9]+)\$", $postkey, $regs) and (!empty($posted_lookup_field) or empty($posted_lookup_field) and $regs[2] != 0)) { $prop_id = $regs[1]; $ent_prop_id = $regs[2]; $roni = $regs[3]; LookupTable::get_table_and_field_by_prop_id($prop_id, $lookuptable, $lookupfield); $sql = "SELECT " . $lookuptable . "_id FROM {$lookuptable} WHERE {$lookupfield} = '{$posted_lookup_field}'"; $result = mysql_query($sql); if ($row = mysql_fetch_array($result)) { $_POST[str_replace("standin_", "", $postkey)] = $row[$lookuptable . "_id"]; $_REQUEST[str_replace("standin_", "", $postkey)] = $row[$lookuptable . "_id"]; } else { $sql = "INSERT INTO " . $lookuptable . " SET {$lookupfield} = '{$posted_lookup_field}'"; mysql_query($sql); $inserted_id = mysql_insert_id(); $_POST[str_replace("standin_", "", $postkey)] = $inserted_id; $_REQUEST[str_replace("standin_", "", $postkey)] = $inserted_id; } } } }
<?php include_once dirname(__FILE__) . '/../commonfunc.php'; site_setup(); // include_once ($_SERVER['DOCUMENT_ROOT'].'/classes/MainClient/Main.php'); // include_once ($_SERVER['DOCUMENT_ROOT'].'/classes/ClientServerDataOps/LookupTable.php'); // include_once ($_SERVER['DOCUMENT_ROOT'].'/functions/commonfunc.php'); $main = new Main(); //db connection LookupTable::get_table_and_field_by_prop_id(clean_request_val($_GET['prop_id']), $lookuptable, $lookupfield); $sql = "SELECT " . $lookupfield . " FROM " . $lookuptable . " WHERE " . $lookupfield . " LIKE '%" . clean_request_val($_POST[$_GET['postedfield']]) . "%'"; $resource = mysql_query($sql); ?> <ul> <? while($taken = mysql_fetch_assoc($resource)) { ?> <li><? echo stripslashes($taken[$lookupfield]);?></li> <? } ?> </ul>