This method allows you to specify multiple (method chaining optional) OR WHERE statements for SQL queries.
echo ' <link rel="stylesheet" type="text/css" href="css/login_form.css">' . "\n";
echo ' </head>' . "\n";
echo ' <body>' . "\n";
if (isset($_POST['submitted'])) {
$submited = $_POST['submitted'];
$name = explode(" ", $_POST['name']);
$pass = $_POST['pass'];
if (isset($pass) && !empty($pass)) {
if (isset($name) && !empty($name[0])) {
if (count($name) >= 1 && count($name) <= 2) {
if (count($name) > 1) {
$db->where('fName', $name[0]);
$db->where('lName', $name[1]);
} else {
$db->where('fName', $name);
$db->orWhere('lName', $name);
}
$user = $db->getOne("Users");
$hash = $user['password'];
if (password_verify($pass, $hash)) {
echo 'Password is valid!';
$_SESSION['user'] = new User($user['id'], $user['fName'], $user['lName'], $user['admin']);
} else {
echo 'Invalid password.';
}
} else {
echo "invalid Name given";
}
} else {
echo "You must enter a name";
}
isset($_POST['page']) ? $currentPage = $_POST['page'] : ($currentPage = 0);
$pageLimit = 50;
if ($currentPage == 0) {
$currentPage = 1;
}
$limitFrom = $pageLimit * $currentPage - $pageLimit;
switch ($_POST['f']) {
//search by region
case 'fetch_users':
//db2 is for getting total number of rows
if (isset($_POST['search_term']) && $_POST['search_term'] != null) {
$db->where('(username LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('name LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('lastname LIKE "%' . $_POST['search_term'] . '%")');
$db2->where('(username LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('name LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('lastname LIKE "%' . $_POST['search_term'] . '%")');
} else {
$db->where('(username LIKE "%%"');
$db->orWhere('name LIKE "%%"');
$db->orWhere('lastname LIKE "%%")');
$db2->where('(username LIKE "%%"');
$db2->orWhere('name LIKE "%%"');
$db2->orWhere('lastname LIKE "%%")');
}
if (isset($_POST['status']) && $_POST['status'] != null) {
$db->where('status="' . $_POST['status'] . '"');
$db2->where('status="' . $_POST['status'] . '"');
} else {
$db->where('status LIKE "%%"');
$db2->where('status LIKE "%%"');
isset($_POST['page']) ? $currentPage = $_POST['page'] : ($currentPage = 0);
$pageLimit = 50;
if ($currentPage == 0) {
$currentPage = 1;
}
$limitFrom = $pageLimit * $currentPage - $pageLimit;
switch ($_POST['f']) {
//search by region
case 'fetch_products':
//db2 is for getting total number of rows
if (isset($_POST['search_term']) && $_POST['search_term'] != null) {
$db->where('(item_code LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('barcode LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('description LIKE "%' . $_POST['search_term'] . '%")');
$db2->where('(item_code LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('barcode LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('description LIKE "%' . $_POST['search_term'] . '%")');
} else {
$db->where('(item_code LIKE "%%"');
$db->orWhere('barcode LIKE "%%"');
$db->orWhere('description LIKE "%%")');
$db2->where('(item_code LIKE "%%"');
$db2->orWhere('barcode LIKE "%%"');
$db2->orWhere('description LIKE "%%")');
}
if (isset($_POST['supplier']) && $_POST['supplier'] != null) {
$db->where('supplier="' . $_POST['supplier'] . '"');
$db2->where('supplier="' . $_POST['supplier'] . '"');
} else {
$db->where('supplier LIKE "%%"');
$db2->where('supplier LIKE "%%"');
case 'fetch_customers':
//db2 is for getting total number of rows
if (isset($_POST['search_term']) && $_POST['search_term'] != null) {
$db->where('(card_code LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('card_name LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('address LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('city LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('phone1 LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('phone2 LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('cellular LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('fax LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('contact_person LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('country LIKE "%' . $_POST['search_term'] . '%"');
$db->orWhere('email LIKE "%' . $_POST['search_term'] . '%")');
$db2->where('(card_code LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('card_name LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('address LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('city LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('phone1 LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('phone2 LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('cellular LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('fax LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('contact_person LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('country LIKE "%' . $_POST['search_term'] . '%"');
$db2->orWhere('email LIKE "%' . $_POST['search_term'] . '%")');
} else {
$db->where('(card_code LIKE "%%"');
$db->orWhere('card_name LIKE "%%"');
$db->orWhere('address LIKE "%%"');
$db->orWhere('city LIKE "%%"');
$db->orWhere('phone1 LIKE "%%"');
