Exemplo n.º 1
0
function getLanguages($conn)
{
    $selQ = new selectSQL($conn);
    $selQ->select = array("abreviation");
    $selQ->tableNames = array("languages");
    if (!$selQ->executeQuery() || $selQ->getNumberOfResults() == 0) {
        $GLOBALS['statusMessage'] = makeStatusMessage(2, "error");
        mysqli_close($conn);
        return null;
    } else {
        $lang = array();
        while ($r = $selQ->result->fetch_assoc()) {
            $lang[] = $r['abreviation'];
        }
        return $lang;
    }
}
Exemplo n.º 2
0
            $data .= ",'" . $_POST[$c] . "'";
            $cols .= "," . $c;
        }
    }
    $tableName = "user_info";
    if (simpleInsert($data, $tableName, $cols, $conn)) {
        $statusMessage = makeStatusMessage(10, "type:success", "Data saved successfully!");
    } else {
        $statusMessage = makeStatusMessage(11, "error", "DB error while creating data!");
    }
} else {
    $update = "";
    $columns = array("fname", "lname", "firm", "address", "city", "country", "phone");
    foreach ($columns as $c) {
        if (!empty($_POST[$c])) {
            $update .= $c . "='" . $_POST[$c] . "',";
        }
    }
    if (substr($update, -1, 1) == ',') {
        $update = substr($update, 0, -1);
    }
    $tableName = "user_info";
    $where = "id='" . $row['iid'] . "'";
    if (simpleUpdate($update, $tableName, $where, $conn)) {
        $statusMessage = makeStatusMessage(12, "type:success", "Data updated successfully!");
    } else {
        $statusMessage = makeStatusMessage(11, "error", "DB error while creating data!");
    }
}
mysqli_close($conn);
return;
Exemplo n.º 3
0
// 		$statusMessage = makeStatusMessage(12,"error", "Already logged in.");
// 		mysqli_close($conn);
// 		return;
// 	}
$user = $conn->real_escape_string($_POST["email"]);
$pass = $conn->real_escape_string($_POST["pass"]);
$pass = md5($pass);
$selQ = new selectSQL($conn);
$selQ->select = array("id");
$selQ->tableNames = array("users");
$selQ->where = "user='******'";
if (!$selQ->executeQuery()) {
    $statusMessage = $selQ->status;
    mysqli_close($conn);
    return;
}
if ($selQ->getNumberOfResults() > 0) {
    $statusMessage = makeStatusMessage(13, "error");
    mysqli_close($conn);
    return;
}
$insSQL = new insertSQL($conn);
$insSQL->insertData = array($user, $pass, "0");
$insSQL->cols = array("user", "password", "access");
$insSQL->tableName = "users";
if (!$insSQL->executeQuery()) {
    $statusMessage = $insSQL->status;
    mysqli_close($conn);
    return;
}
include_once 'signin.php';
Exemplo n.º 4
0
}
if ($_POST['Type']) {
    $c = array($_POST['Type']);
} else {
    $c[] = array("RO (58 mm)", "RU (58 mm)", "RV (58 mm)");
}
if ($_POST['Connection']) {
    $c = array($_POST['Connection']);
} else {
    $c[] = array("connector", "Cable", "terminals");
}
if ($_POST['approval']) {
    $c = array($_POST['approval']);
} else {
    $c[] = array("cNRTLus (TUV)", "e1");
}
$c = utf8_string_array_encode($c);
$tableName = "products_7";
$cols = "System,Design,Resolution,Shaft,Output,Features,Bit,Type,Connection,approval,imgurl";
$conn = sqlConnectDefault();
for ($i = 0; $i < $_POST['id']; $i++) {
    $select = array();
    for ($j = 0; $j < 10; $j++) {
        $select[] = $c[$j][array_rand($c[$j])];
    }
    $select[] = "'https://www.ifm.com/tedo/foto/400_00" . rand(10, 36) . ".gif'";
    simpleInsert($select, $tableName, $cols, $conn);
}
$statusMessage = makeStatusMessage(26, "success", "Product added!");
mysqli_close($conn);
return;
Exemplo n.º 5
0
$q = "";
$data = array();
if (empty($_POST["lang"])) {
    $language = "EN";
} else {
    $language = $_POST["lang"];
}
if (!empty($_POST["q"])) {
    if (file_exists("config/" . $_POST["q"] . ".php")) {
        require_once "config/" . $_POST["q"] . ".php";
        $q = $_POST['q'];
    } else {
        $statusMessage = makeStatusMessage(1, "error", "Incorrect query request...");
    }
} else {
    $statusMessage = makeStatusMessage(0, "error", "Empty query request...");
}
if (!empty($data)) {
    $main = array($q => nullToEmptyString($data), "status" => $statusMessage);
} else {
    $main = array("status" => $statusMessage);
}
echo json_encode($main, JSON_UNESCAPED_UNICODE);
if (isset($log)) {
    if ($statusMessage['type'] == "error") {
        writeLog($log, $statusMessage['message']);
    } else {
        writeLog($log);
    }
}
if (isset($GLOBALS['debugSQL']) && $GLOBALS['debugSQL']) {
Exemplo n.º 6
0
        }
        $data = $discounts;
        $statusMessage = makeStatusMessage(234, "succes", "Information gathered");
    } else {
        if (isset($_POST['discountid'])) {
            $tableName = "discounts";
            if (isset($_POST['delete'])) {
                $where = "id = " . $_POST['discountid'];
                simpleDelete($tableName, $where, $conn);
            } else {
                $update = "userid='" . $_POST['user'] . "',categoryid='" . $_POST['catid'] . "',productid='" . $_POST['prodid'] . "',flat='" . $_POST['flat'] . "',percent='" . $_POST['percent'] . "'";
                $where = "id = " . $_POST['discountid'];
                if (simpleUpdate($update, $tableName, $where, $conn)) {
                    $statusMessage = makeStatusMessage(2234, "success", "Data successfully added.");
                } else {
                    $statusMessage = makeStatusMessage(2342, "error", "Error while adding discount key.");
                }
            }
        } else {
            $insertData = array($_POST['user'], $_POST['catid'], $_POST['prodid'], $_POST['flat'], $_POST['percent']);
            $cols = array("userid", "categoryid", "productid", "flat", "percent");
            if (simpleInsert($insertData, $tableName, $cols, $conn)) {
                $statusMessage = makeStatusMessage(2234, "success", "Data successfully added.");
            } else {
                $statusMessage = makeStatusMessage(2342, "error", "Error while adding discount key.");
            }
        }
    }
}
mysqli_close($conn);
return;
Exemplo n.º 7
0
        $statusMessage = makeStatusMessage(10, "success");
    } else {
        $statusMessage = $insQ->status;
    }
} else {
    $updQ = new updateSQL($conn);
    $updQ->update = "";
    $columns = array("fname", "lname", "firm", "address", "city", "country", "email", "phone");
    foreach ($columns as $c) {
        if (isset($_POST[$c])) {
            $updQ->update .= $c . "='" . $conn->real_escape_string($_POST[$c]) . "',";
        }
    }
    if (empty($updQ->update)) {
        $statusMessage = makeStatusMessage(59, "error");
        mysqli_close($conn);
        return;
    }
    if (substr($update, -1, 1) == ',') {
        $updQ->update = substr($updQ->update, 0, -1);
    }
    $updQ->tableName = "user_info";
    $updQ->where = "id='" . $id . "'";
    if ($updQ->executeQuery()) {
        $statusMessage = makeStatusMessage(30, "success");
    } else {
        $statusMessage = $updQ->status;
    }
}
mysqli_close($conn);
return;
Exemplo n.º 8
0
function getPropsForCat($conn, $catid, $langArr = null, $insertQueryLangArr = null)
{
    $language = $GLOBALS['language'];
    include_once 'variables/productVariables.php';
    if (isset($langArr)) {
        $propNamesDefld = array();
        foreach ($propNamesDefldtemp as $tmp) {
            foreach ($langArr as $lan) {
                $propNamesDefld[] = $tmp . $lan;
            }
        }
    } else {
        $propNamesDefld = $propNamesDefldtemp;
    }
    $propNames = array();
    $propNamesld = array();
    if (isset($insertQueryLangArr)) {
        $langArr = $insertQueryLangArr;
    }
    $conn = sqlConnectDefault();
    if (is_null($conn)) {
        $statusMessage = makeStatusMessage(1, "error");
        return;
    }
    $selQ = new selectSQL($conn);
    $selQ->tableNames = array("props_to_prods as ptp", "properties as p");
    $selQ->joins = array("p.id = ptp.propid");
    $selQ->joinTypes = array("INNER JOIN");
    $selQ->select = array("p.name as propName", "p.langDependant as ld", "p.name" . $language . " as `langName`");
    $selQ->where = "ptp.catid = '" . $catid . "'";
    if (!$selQ->executeQuery()) {
        $GLOBALS['statusMessage'] = $selQ->status;
        return null;
    } elseif ($selQ->getNumberOfResults() == 0) {
        $GLOBALS['statusMessage'] = makeStatusMessage(53, "error");
        return null;
    } elseif (isset($langArr)) {
        while ($r = $selQ->result->fetch_assoc()) {
            if ($r['ld']) {
                if (isset($insertQueryLangArr)) {
                    $propNamesld[] = $r['propName'] . " as `" . $r['langName'] . "`";
                } else {
                    foreach ($langArr as $lan) {
                        $propNamesld[] = $r['propName'] . $lan . " as `" . $r['langName'] . "`";
                    }
                }
            } else {
                $propNames[] = $r['propName'] . " as `" . $r['langName'] . "`";
            }
        }
    } else {
        while ($r = $selQ->result->fetch_assoc()) {
            if ($r['ld']) {
                $propNamesld[] = $r['propName'];
            } else {
                $propNames[] = $r['propName'];
            }
        }
    }
    return array("propNamesDefld" => $propNamesDefld, "propNamesDef" => $propNamesDef, "propNamesld" => $propNamesld, "propNames" => $propNames);
}
Exemplo n.º 9
0
    $statusMessage = makeStatusMessage(234, "error", "Error getting category properties.");
    mysqli_close($conn);
    return;
}
$cols = array();
$colTypes = array();
$name = "products_" . $catid;
while ($row = $result->fetch_assoc()) {
    $cols[] = $row['name'];
    $colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL";
}
$resultCrT = createTable($name, $cols, $colTypes, $conn);
if (!$resultCrT) {
    $statusMessage = makeStatusMessage(234, "error", "Error creating product table for this category.");
    mysqli_close($conn);
    return;
}
$cols = array("catid", "propid");
$tableNames = array("props_to_prods");
foreach ($_POST['fid'] as $f) {
    $insertData = array($catid, $f);
    $resultAddProps = simpleInsert($insertData, $tableNames[0], $cols, $conn);
}
if (!$resultAddProps) {
    $statusMessage = makeStatusMessage(3, "error", "Could not assign properties to category.");
    mysqli_close($conn);
    return;
}
$statusMessage = makeStatusMessage(21, "success", "Category successfully added!");
mysqli_close($conn);
return;
Exemplo n.º 10
0
    $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!");
    return;
}
$user = $conn->real_escape_string($_POST["email"]);
$pass = $conn->real_escape_string($_POST["pass"]);
$pass = md5($pass);
$selQ = new selectSQL($conn);
$selQ->select = array("id");
$selQ->tableNames = array("users");
$selQ->where = "user='******'";
if (!$selQ->executeQuery()) {
    $statusMessage = $selQ->status;
    mysqli_close($conn);
    return;
}
if ($selQ->getNumberOfResults() > 0) {
    $statusMessage = makeStatusMessage(3, "error", "User is already registered!");
    mysqli_close($conn);
    return;
}
$insSQL = new insertSQL($conn);
$insSQL->insertData = array($user, $pass, "0");
$insSQL->cols = array("user", "password", "access");
$insSQL->tableName = "users";
if ($insSQL->executeQuery()) {
    $statusMessage = makeStatusMessage(4, "success", "Registration successfull!");
} else {
    $statusMessage = $insSQL->status;
}
mysqli_close($conn);
return;
Exemplo n.º 11
0
<?php

$conn = sqlConnectDefault();
if (is_null($conn)) {
    $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!");
    return;
}
$select = array("email", "fname", "lname", "firm", "address", "city", "country", "phone");
$tableName = array("user_info as i", "users as u");
$joinTypes = array("RIGHT OUTER JOIN");
$joins = array("u.id = i.userid");
$where = "u.email='" . $_POST["email"] . "'";
$result = simpleSelect($select, $tableName, $joinTypes, $joins, $where, NULL, NULL, $conn);
if ($result->num_rows == 0) {
    $statusMessage = makeStatusMessage(14, "error", "Error getting data from database...");
} else {
    if ($result->num_rows > 1) {
        $statusMessage = makeStatusMessage(13, "error", "Multiple results for this user...");
    } else {
        while ($row = $result->fetch_assoc()) {
            $data[] = $row;
        }
        $statusMessage = makeStatusMessage(15, "success", "Data gathered succesfully.");
    }
}
mysqli_close($conn);
return;
Exemplo n.º 12
0
<?php

$conn = sqlConnectDefault();
if (is_null($conn)) {
    $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!");
    return;
}
$select = array("id", "parentid", "name" . $language, "desc" . $language, "imgurl");
$tableName = array("categories");
$data = getCat("parentid IS NULL");
if (!empty($data)) {
    $statusMessage = makeStatusMessage(23, "error", "Data successfully sent.");
} else {
    $statusMessage = makeStatusMessage(23, "error", "Data successfully sent.");
}
mysqli_close($conn);
return;
function getCat($where)
{
    $result = simpleSelect($GLOBALS['select'], $GLOBALS['tableName'], NULL, NULL, $where, NULL, NULL, $GLOBALS['conn']);
    $data = array();
    if (is_null($result)) {
        return NULL;
    } else {
        while ($row = $result->fetch_assoc()) {
            $subCats = getCat("parentid = '" . $row['id'] . "'");
            if ($subCats) {
                $data[] = array_merge($row, array("subCategories" => $subCats));
            } else {
                $data[] = $row;
            }
Exemplo n.º 13
0
function insCat($conn)
{
    require_once 'languageConfig.php';
    $insQ = new insertSQL($conn);
    $insQ->insertData = array();
    $insQ->cols = array();
    foreach ($langArr as $l) {
        if (isset($_POST['names'][$l])) {
            $insQ->insertData[] = $conn->real_escape_string($_POST['names'][$l]);
            $insQ->cols[] = "name" . $l;
        }
        if (isset($_POST['desc'][$l])) {
            $insQ->insertData[] = $conn->real_escape_string($_POST['desc'][$l]);
            $insQ->cols[] = "desc" . $l;
        }
    }
    if (isset($_POST['imgUrl'])) {
        $insQ->insertData[] = $conn->real_escape_string($_POST['imgUrl']);
        $insQ->cols[] = "imgurl";
    }
    if (isset($_POST['parentid'])) {
        $insQ->insertData[] = $conn->real_escape_string($_POST['parentid']);
        $insQ->cols[] = "parentid";
    }
    $insQ->tableName = "categories";
    if (!$insQ->executeQuery()) {
        $statusMessage = $insQ->status;
    } else {
        $selQid = new selectSQL($conn);
        $selQid->where = "";
        foreach ($langArr as $l) {
            if (isset($_POST['names'][$l])) {
                $selQid->where = "name" . $l . " = '" . $conn->real_escape_string($_POST['names'][$l]) . "' OR ";
            }
        }
        $selQid->where = substr($selQid->where, 0, -4);
        $selQid->order = "id DESC";
        $selQid->tableNames = array("categories");
        $selQid->select = array("id");
        if (!$selQid->executeQuery()) {
            $statusMessage = $selQid->status;
        } else {
            $row = $selQid->result->fetch_assoc();
            $catid = $row['id'];
            $selQ = new selectSQL($conn);
            $selQ->select = array("name", "langDependant");
            $selQ->tableNames = array("properties");
            $tmp = array();
            foreach ($_POST['fid'] as $f) {
                $tmp[] = $conn->real_escape_string($f);
            }
            $selQ->where = "id IN (" . arrToQueryString($tmp, null) . ")";
            if (!$selQ->executeQuery() or $selQ->getNumberOfResults() == 0) {
                $statusMessage = makeStatusMessage(53, "error");
            } else {
                $propsDef = array();
                $propsLang = array();
                while ($row = $selQ->result->fetch_assoc()) {
                    if ($row['langDependant']) {
                        $propsLang[] = $row['name'];
                    } else {
                        $propsDef[] = $row['name'];
                    }
                }
                $ctQ = new createTableSQL($conn);
                $ctQ->cols = array();
                $ctQ->cols[] = "infoid";
                $ctQ->colTypes = array();
                $ctQ->colTypes[] = "int(11) NOT NULL";
                $ctQ->name = "products_" . $catid;
                if (count($propsDef)) {
                    foreach ($propsDef as $pr) {
                        $ctQ->cols[] = $pr;
                        $ctQ->colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL";
                    }
                    if (!$ctQ->executeQuery()) {
                        $statusMessage = $ctQ->status;
                        mysqli_close($conn);
                        return;
                    }
                }
                if (count($propsLang)) {
                    foreach ($langArr as $l) {
                        unset($ctQ->cols);
                        $ctQ->cols[] = "infoid";
                        unset($ctQ->colTypes);
                        $ctQ->colTypes[] = "int(11) NOT NULL";
                        $ctQ->name = "products_" . $catid . "_" . $l;
                        foreach ($propsLang as $pr) {
                            $ctQ->cols[] = $pr . $l;
                            $ctQ->colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL";
                        }
                        if (!$ctQ->executeQuery()) {
                            $GLOBALS['statusMessage'] = $ctQ->status;
                            mysqli_close($conn);
                            return;
                        }
                    }
                }
                $insQ = new insertSQL($conn);
                $insQ->cols = array("catid", "propid");
                $insQ->tableName = "props_to_prods";
                foreach ($_POST['fid'] as $f) {
                    $insQ->insertData = array($catid, $conn->real_escape_string($f));
                    if (!$insQ->executeQuery()) {
                        $resultAddProps = true;
                    }
                }
                if (isset($resultAddProps)) {
                    $statusMessage = makeStatusMessage(103, "error");
                } else {
                    $statusMessage = makeStatusMessage(11, "success");
                }
            }
        }
    }
    $GLOBALS['statusMessage'] = $statusMessage;
}
Exemplo n.º 14
0
$conn = sqlConnectDefault();
if (is_null($conn)) {
    $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!");
    return;
}
$user = $conn->real_escape_string($_POST["email"]);
$pass = $conn->real_escape_string($_POST["pass"]);
$pass = md5($pass);
$selQ = new selectSQL($conn);
$selQ->select = array("id", "access");
$selQ->tableNames = array("users");
$selQ->where = "user='******' AND password='******'";
if (!$selQ->executeQuery()) {
    $statusMessage = $selQ->status;
    mysqli_close($conn);
    return;
}
if ($selQ->getNumberOfResults() == 1) {
    $statusMessage = makeStatusMessage(7, "success", "Successful login!");
    while ($row = $selQ->result->fetch_assoc()) {
        $data[] = $row;
    }
} else {
    if ($selQ->getNumberOfResults() == 0) {
        $statusMessage = makeStatusMessage(8, "error", "Invalid user or password!");
    } else {
        $statusMessage = makeStatusMessage(9, "error", "Overlapping accounts.");
    }
}
mysqli_close($conn);
return;
Exemplo n.º 15
0
foreach ($propNames as $p) {
    if (!isset($_POST['filters'][$p])) {
        $select = array("DISTINCT " . $p);
        $result = simpleSelect($select, $tableNames, NULL, NULL, $whereFilters, NULL, NULL, $conn);
        if ($result->num_rows != 0) {
            $filters = array();
            while ($row = $result->fetch_assoc()) {
                $filters[] = $row[$p];
            }
            $dataF[] = array("name" => $p, $p => $filters);
        }
    } else {
        $dataF[] = array($p => $_POST['filters'][$p]);
    }
}
$select = $propNames;
$select[] = "imgurl";
$tableNames = array("products_" . $_POST['id']);
$result = simpleSelect($select, $tableNames, NULL, NULL, $whereFilters, NULL, NULL, $conn);
if ($result->num_rows == 0) {
    $statusMessage = makeStatusMessage(25, "error", "Nothing to select.");
} else {
    $dataP = array();
    while ($row = $result->fetch_assoc()) {
        $dataP[] = $row;
    }
    $statusMessage = makeStatusMessage(15, "success", "Data sent succesfully.");
    $data = array("filters" => $dataF, "products" => $dataP);
}
mysqli_close($conn);
return;
Exemplo n.º 16
0
if (!$insQ->executeQuery()) {
    $statusMessage = $insQ->status;
    mysqli_close($conn);
    return;
}
$selQlast = new selectSQL($conn);
$selQlast->select = array("id as lastid");
$selQlast->where = "id = LAST_INSERT_ID()";
$selQlast->tableNames = array("orders");
if (!$selQlast->executeQuery()) {
    $statusMessage = $selQlast->status;
    mysqli_close($conn);
    return;
}
$row = $selQlast->result->fetch_assoc();
$lastID = $row['lastid'];
foreach ($prodids as $prod) {
    unset($insQ);
    $insQ = new insertSQL($conn);
    $insQ->cols = array("orderid", "productid", "productcount");
    $insQ->insertData = array($lastID, $prod, $prodQuantity[$prod]);
    $insQ->tableName = "ordered_products";
    if (!$insQ->executeQuery()) {
        $statusMessage = $insQ->status;
        mysqli_close($conn);
        return;
    }
}
$statusMessage = makeStatusMessage(17, "success");
mysqli_close($conn);
return;
Exemplo n.º 17
0
for ($i = 0; $i < count($propNames); $i++) {
    $selQ->select = array_merge($selQ->select, array($propNames[$i] . " as `" . $propLangName[$i] . "`"));
}
$selQ->tableNames = array("products as p");
$selQ->joins = array();
$selQ->joinTypes = array();
if (checkTable($conn, "products_" . $catid)) {
    $selQ->tableNames[] = "products_" . $catid . " as nld";
    $selQ->joins[] = "p.id = nld.infoid";
    $selQ->joinTypes[] = "LEFT JOIN";
}
if (checkTable($conn, "products_" . $catid . "_" . $language)) {
    $selQ->tableNames[] = "products_" . $catid . "_" . $language . " as ld";
    $selQ->joins[] = "p.id = ld.infoid";
    $selQ->joinTypes[] = "LEFT JOIN";
}
if (!$selQ->executeQuery()) {
    $statusMessage = $selQ->status;
    mysqli_close($conn);
    return;
}
if ($selQ->getNumberOfResults() == 0) {
    $statusMessage = makeStatusMessage(59, "error");
} else {
    $data = array();
    while ($row = $selQ->result->fetch_assoc()) {
        $data[] = $row;
    }
    $statusMessage = makeStatusMessage(22, "success");
}
mysqli_close($conn);
Exemplo n.º 18
0
        }
        $select = array("abreviation");
        $tableNames = array("languages");
        $result = simpleSelect($select, $tableNames, NULL, NULL, NULL, NULL, NULL, $conn);
        if ($result->num_rows == 0) {
            $statusMessage = makeStatusMessage(324, "error", "Could not get language information.");
            return;
        }
        $insertData = array();
        $cols = array();
        while ($row = $result->fetch_assoc()) {
            $insertData[] = $_POST['names'][$row['abreviation']];
            $insertData[] = $_POST['desc'][$row['abreviation']];
            $cols[] = "name" . $row['abreviation'];
            $cols[] = "desc" . $row['abreviation'];
        }
        if (isset($_POST['searchable'])) {
            $insertData[] = "1";
            $cols[] = "searchable";
        }
        $tableNames = array("properties");
        $result = simpleInsert($insertData, $tableNames[0], $cols, $conn);
        if ($result) {
            $statusMessage = makeStatusMessage(24, "error", "Could not create property.");
        } else {
            $statusMessage = makeStatusMessage(1234, "suscces", "Propery saved successfully.");
        }
    }
}
mysqli_close($conn);
return;