function writeForm($table = '')
{
// rather than recursively calling query, insert all rows with one query
global $general, $global_basedir, $settings;
$_SESSION['errors'] = array();
// prepare POST data for storage in database:
// $keys
// $values
if ($table) {
$keys = array();
$values = array();
$i = 1;
// prepare day offs
if ($table == 'outlets') {
$dayoffs = '';
for ($i = 1; $i <= 7; $i++) {
$field = "outlet_closeday_" . $i;
if (isset($_POST[$field])) {
$dayoffs .= $_POST[$field] . ",";
}
}
if ($dayoffs != '') {
$dayoffs = substr($dayoffs, 0, -1);
}
$keys[$i] = 'outlet_closeday';
$values[$i] = "'" . $dayoffs . "'";
$i++;
}
// prepare arrays for database query
foreach ($_POST as $key => $value) {
if ($key == 'saison_start_month' || $key == 'saison_start_day' || $key == 'saison_end_month' || $key == 'saison_end_day') {
$saison_start = $_POST['saison_start_month'] . $_POST['saison_start_day'];
$saison_end = $_POST['saison_end_month'] . $_POST['saison_end_day'];
} else {
if ($key == 'password') {
if ($value != "EdituseR") {
$keys[$i] = $key;
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$insert = new flexibleAccess('', $dbAccess);
$password = $insert->hash_password($value);
$values[$i] = "'" . $password . "'";
}
} else {
if ($key == 'outlet_child_capacity') {
// make value always positive
$keys[$i] = $key;
$values[$i] = "'" . abs($value) . "'";
} else {
if ($key == 'outlet_child_capacity') {
// make value always positive
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
} else {
if ($key == 'role') {
if ($value < 1 || $value > 6) {
$value = 6;
}
// add role field
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
} else {
if ($key == 'contactform_color_scheme' || $key == 'contactform_background') {
// settings table correct HEX color code
$keys[$i] = $key;
$values[$i] = "'" . substr($value, 1, 8) . "'";
} else {
if ($key != "action" && $key != "email_type" && $key != "password2" && $key != "eventID" && $key != "e_datepicker" && $key != "ev_datepicker" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "token" && $key != "verify" && $key != "PHPSESSID" && $key != "new" && substr($key, 0, 15) != "outlet_closeday") {
// all other 'normal fields'
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
}
}
}
}
}
}
}
$i++;
}
// END foreach $_POST
// build webform field on outlets
if ($table == 'outlets') {
$index = array_search('webform', $keys);
if (!$index) {
$keys[] = 'webform';
$values[] = 0;
}
}
// build outofill field on users
if ($table == 'plc_users') {
$index = array_search('autofill', $keys);
if (!$index) {
$keys[] = 'autofill';
$values[] = 0;
}
}
// img & logo upload
// =-=-=-=-=-=
// img upload
if ($_FILES['img']['error'][0] > 0) {
$_SESSION['errors'][] = _sorry;
} else {
if (($_FILES['img']["type"][0] == "image/gif" || $_FILES['img']["type"][0] == "image/jpeg" || $_FILES['img']["type"][0] == "image/png") && $_FILES['img']["size"][0] < 2000000) {
//$imgName = $_FILES['img_logo']['name'];
$img_type = substr($_FILES['img']["type"][0], 6);
$imgName = randomPassword(24, true, true, false) . "." . $img_type;
$uploadpath = substr(dirname(__FILE__), 0, -7);
$result = move_uploaded_file($_FILES['img']["tmp_name"][0], "../uploads/img/" . $imgName);
$keys[] = 'img_filename';
$values[] = "'" . $imgName . "'";
}
}
// logo upload
if ($_FILES['img']['error'][1] > 0) {
$_SESSION['errors'][] = _sorry;
} else {
if (($_FILES['img']["type"][1] == "image/gif" || $_FILES['img']["type"][1] == "image/jpeg" || $_FILES['img']["type"][1] == "image/png") && $_FILES['img']["size"][1] < 2000000) {
//$imgName = $_FILES['img_logo']['name'];
$img_type = substr($_FILES['img']["type"][1], 6);
$imgName = randomPassword(24, true, true, false) . "." . $img_type;
$uploadpath = substr(dirname(__FILE__), 0, -7);
$result = move_uploaded_file($_FILES['img']["tmp_name"][1], "../uploads/logo/" . $imgName);
$keys[] = 'logo_filename';
$values[] = "'" . $imgName . "'";
}
}
$_SESSION['reservation_date'] = date('Y-m-d', $reservation_date);
$_SESSION['recurring_date'] = date('Y-m-d', $recurring_date);
// outlets build start and enddate
if ($saison_start != '' && $saison_end != '') {
$keys[] = 'saison_start';
$values[] = "'" . $saison_start . "'";
$keys[] = 'saison_end';
$values[] = "'" . $saison_end . "'";
}
// =-=-=-=Store in database =-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// No reservation, everything else to store
// enter into database
// =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
// number of database fields
$max_keys = count($keys);
$query = "INSERT INTO `{$table}` (" . implode(',', $keys) . ") VALUES (" . implode(',', $values) . ") ON DUPLICATE KEY UPDATE ";
// Build 'on duplicate' query
for ($i = 1; $i <= $max_keys; $i++) {
if ($keys[$i] != '') {
$query .= $keys[$i] . "=" . $values[$i] . ",";
} else {
$max_keys++;
}
}
// run sql query
$query = substr($query, 0, -1);
//DEbugging
//echo $query;
$result = query($query);
$new_id = mysql_insert_id();
// Set STANDARD settings for new property
if ($table == 'properties' && $_POST['new'] == 1) {
include 'register/standard_settings.inc.php';
}
// -----
return $new_id;
}
}
$values[] = "'" . $_SESSION['selectedDate'] . "'";
$_SESSION['errors'] = array();
// prepare POST data for storage in database:
// $keys
// $values
$keys = array();
$values = array();
$i = 2;
// prepare arrays for database query
foreach ($_POST as $key => $value) {
if ($key == 'password') {
if ($value != "EdituseR") {
$keys[$i] = $key;
$dbAccess = array('dbHost' => $settings['dbHost'], 'dbName' => $settings['dbName'], 'dbUser' => $settings['dbUser'], 'dbPass' => $settings['dbPass'], 'dbPort' => $settings['dbPort']);
$insert = new flexibleAccess('', $dbAccess);
$password = $insert->hash_password($value);
$values[$i] = "'" . $password . "'";
}
} else {
if ($key != "action" && $key != "email_type" && $key != "recurring_date" && $key != "recurring_dbdate" && $key != "password2" && $key != "eventID" && $key != "s_datepicker" && $key != "MAX_FILE_SIZE" && $key != "propertyID" && $key != "old_outlet_id" && $key != "token" && $key != "recurring_span" && $key != "reservation_bookingnumber" && $key != "limit_password" && $key != "verify") {
$keys[$i] = $key;
$values[$i] = "'" . $value . "'";
}
}
// remember some values
if ($key == "reservation_date") {
$reservation_date = $value;
$recurring_date = $reservation_date;
} else {
if ($key == "recurring_dbdate") {
$recurring_date = $value;
