function getLanguages($conn) { $selQ = new selectSQL($conn); $selQ->select = array("abreviation"); $selQ->tableNames = array("languages"); if (!$selQ->executeQuery() || $selQ->getNumberOfResults() == 0) { $GLOBALS['statusMessage'] = makeStatusMessage(2, "error"); mysqli_close($conn); return null; } else { $lang = array(); while ($r = $selQ->result->fetch_assoc()) { $lang[] = $r['abreviation']; } return $lang; } }
$data .= ",'" . $_POST[$c] . "'"; $cols .= "," . $c; } } $tableName = "user_info"; if (simpleInsert($data, $tableName, $cols, $conn)) { $statusMessage = makeStatusMessage(10, "type:success", "Data saved successfully!"); } else { $statusMessage = makeStatusMessage(11, "error", "DB error while creating data!"); } } else { $update = ""; $columns = array("fname", "lname", "firm", "address", "city", "country", "phone"); foreach ($columns as $c) { if (!empty($_POST[$c])) { $update .= $c . "='" . $_POST[$c] . "',"; } } if (substr($update, -1, 1) == ',') { $update = substr($update, 0, -1); } $tableName = "user_info"; $where = "id='" . $row['iid'] . "'"; if (simpleUpdate($update, $tableName, $where, $conn)) { $statusMessage = makeStatusMessage(12, "type:success", "Data updated successfully!"); } else { $statusMessage = makeStatusMessage(11, "error", "DB error while creating data!"); } } mysqli_close($conn); return;
// $statusMessage = makeStatusMessage(12,"error", "Already logged in."); // mysqli_close($conn); // return; // } $user = $conn->real_escape_string($_POST["email"]); $pass = $conn->real_escape_string($_POST["pass"]); $pass = md5($pass); $selQ = new selectSQL($conn); $selQ->select = array("id"); $selQ->tableNames = array("users"); $selQ->where = "user='******'"; if (!$selQ->executeQuery()) { $statusMessage = $selQ->status; mysqli_close($conn); return; } if ($selQ->getNumberOfResults() > 0) { $statusMessage = makeStatusMessage(13, "error"); mysqli_close($conn); return; } $insSQL = new insertSQL($conn); $insSQL->insertData = array($user, $pass, "0"); $insSQL->cols = array("user", "password", "access"); $insSQL->tableName = "users"; if (!$insSQL->executeQuery()) { $statusMessage = $insSQL->status; mysqli_close($conn); return; } include_once 'signin.php';
} if ($_POST['Type']) { $c = array($_POST['Type']); } else { $c[] = array("RO (58 mm)", "RU (58 mm)", "RV (58 mm)"); } if ($_POST['Connection']) { $c = array($_POST['Connection']); } else { $c[] = array("connector", "Cable", "terminals"); } if ($_POST['approval']) { $c = array($_POST['approval']); } else { $c[] = array("cNRTLus (TUV)", "e1"); } $c = utf8_string_array_encode($c); $tableName = "products_7"; $cols = "System,Design,Resolution,Shaft,Output,Features,Bit,Type,Connection,approval,imgurl"; $conn = sqlConnectDefault(); for ($i = 0; $i < $_POST['id']; $i++) { $select = array(); for ($j = 0; $j < 10; $j++) { $select[] = $c[$j][array_rand($c[$j])]; } $select[] = "'https://www.ifm.com/tedo/foto/400_00" . rand(10, 36) . ".gif'"; simpleInsert($select, $tableName, $cols, $conn); } $statusMessage = makeStatusMessage(26, "success", "Product added!"); mysqli_close($conn); return;
$q = ""; $data = array(); if (empty($_POST["lang"])) { $language = "EN"; } else { $language = $_POST["lang"]; } if (!empty($_POST["q"])) { if (file_exists("config/" . $_POST["q"] . ".php")) { require_once "config/" . $_POST["q"] . ".php"; $q = $_POST['q']; } else { $statusMessage = makeStatusMessage(1, "error", "Incorrect query request..."); } } else { $statusMessage = makeStatusMessage(0, "error", "Empty query request..."); } if (!empty($data)) { $main = array($q => nullToEmptyString($data), "status" => $statusMessage); } else { $main = array("status" => $statusMessage); } echo json_encode($main, JSON_UNESCAPED_UNICODE); if (isset($log)) { if ($statusMessage['type'] == "error") { writeLog($log, $statusMessage['message']); } else { writeLog($log); } } if (isset($GLOBALS['debugSQL']) && $GLOBALS['debugSQL']) {
} $data = $discounts; $statusMessage = makeStatusMessage(234, "succes", "Information gathered"); } else { if (isset($_POST['discountid'])) { $tableName = "discounts"; if (isset($_POST['delete'])) { $where = "id = " . $_POST['discountid']; simpleDelete($tableName, $where, $conn); } else { $update = "userid='" . $_POST['user'] . "',categoryid='" . $_POST['catid'] . "',productid='" . $_POST['prodid'] . "',flat='" . $_POST['flat'] . "',percent='" . $_POST['percent'] . "'"; $where = "id = " . $_POST['discountid']; if (simpleUpdate($update, $tableName, $where, $conn)) { $statusMessage = makeStatusMessage(2234, "success", "Data successfully added."); } else { $statusMessage = makeStatusMessage(2342, "error", "Error while adding discount key."); } } } else { $insertData = array($_POST['user'], $_POST['catid'], $_POST['prodid'], $_POST['flat'], $_POST['percent']); $cols = array("userid", "categoryid", "productid", "flat", "percent"); if (simpleInsert($insertData, $tableName, $cols, $conn)) { $statusMessage = makeStatusMessage(2234, "success", "Data successfully added."); } else { $statusMessage = makeStatusMessage(2342, "error", "Error while adding discount key."); } } } } mysqli_close($conn); return;
$statusMessage = makeStatusMessage(10, "success"); } else { $statusMessage = $insQ->status; } } else { $updQ = new updateSQL($conn); $updQ->update = ""; $columns = array("fname", "lname", "firm", "address", "city", "country", "email", "phone"); foreach ($columns as $c) { if (isset($_POST[$c])) { $updQ->update .= $c . "='" . $conn->real_escape_string($_POST[$c]) . "',"; } } if (empty($updQ->update)) { $statusMessage = makeStatusMessage(59, "error"); mysqli_close($conn); return; } if (substr($update, -1, 1) == ',') { $updQ->update = substr($updQ->update, 0, -1); } $updQ->tableName = "user_info"; $updQ->where = "id='" . $id . "'"; if ($updQ->executeQuery()) { $statusMessage = makeStatusMessage(30, "success"); } else { $statusMessage = $updQ->status; } } mysqli_close($conn); return;
function getPropsForCat($conn, $catid, $langArr = null, $insertQueryLangArr = null) { $language = $GLOBALS['language']; include_once 'variables/productVariables.php'; if (isset($langArr)) { $propNamesDefld = array(); foreach ($propNamesDefldtemp as $tmp) { foreach ($langArr as $lan) { $propNamesDefld[] = $tmp . $lan; } } } else { $propNamesDefld = $propNamesDefldtemp; } $propNames = array(); $propNamesld = array(); if (isset($insertQueryLangArr)) { $langArr = $insertQueryLangArr; } $conn = sqlConnectDefault(); if (is_null($conn)) { $statusMessage = makeStatusMessage(1, "error"); return; } $selQ = new selectSQL($conn); $selQ->tableNames = array("props_to_prods as ptp", "properties as p"); $selQ->joins = array("p.id = ptp.propid"); $selQ->joinTypes = array("INNER JOIN"); $selQ->select = array("p.name as propName", "p.langDependant as ld", "p.name" . $language . " as `langName`"); $selQ->where = "ptp.catid = '" . $catid . "'"; if (!$selQ->executeQuery()) { $GLOBALS['statusMessage'] = $selQ->status; return null; } elseif ($selQ->getNumberOfResults() == 0) { $GLOBALS['statusMessage'] = makeStatusMessage(53, "error"); return null; } elseif (isset($langArr)) { while ($r = $selQ->result->fetch_assoc()) { if ($r['ld']) { if (isset($insertQueryLangArr)) { $propNamesld[] = $r['propName'] . " as `" . $r['langName'] . "`"; } else { foreach ($langArr as $lan) { $propNamesld[] = $r['propName'] . $lan . " as `" . $r['langName'] . "`"; } } } else { $propNames[] = $r['propName'] . " as `" . $r['langName'] . "`"; } } } else { while ($r = $selQ->result->fetch_assoc()) { if ($r['ld']) { $propNamesld[] = $r['propName']; } else { $propNames[] = $r['propName']; } } } return array("propNamesDefld" => $propNamesDefld, "propNamesDef" => $propNamesDef, "propNamesld" => $propNamesld, "propNames" => $propNames); }
$statusMessage = makeStatusMessage(234, "error", "Error getting category properties."); mysqli_close($conn); return; } $cols = array(); $colTypes = array(); $name = "products_" . $catid; while ($row = $result->fetch_assoc()) { $cols[] = $row['name']; $colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL"; } $resultCrT = createTable($name, $cols, $colTypes, $conn); if (!$resultCrT) { $statusMessage = makeStatusMessage(234, "error", "Error creating product table for this category."); mysqli_close($conn); return; } $cols = array("catid", "propid"); $tableNames = array("props_to_prods"); foreach ($_POST['fid'] as $f) { $insertData = array($catid, $f); $resultAddProps = simpleInsert($insertData, $tableNames[0], $cols, $conn); } if (!$resultAddProps) { $statusMessage = makeStatusMessage(3, "error", "Could not assign properties to category."); mysqli_close($conn); return; } $statusMessage = makeStatusMessage(21, "success", "Category successfully added!"); mysqli_close($conn); return;
$statusMessage = makeStatusMessage(6, "error", "Could not connect to database!"); return; } $user = $conn->real_escape_string($_POST["email"]); $pass = $conn->real_escape_string($_POST["pass"]); $pass = md5($pass); $selQ = new selectSQL($conn); $selQ->select = array("id"); $selQ->tableNames = array("users"); $selQ->where = "user='******'"; if (!$selQ->executeQuery()) { $statusMessage = $selQ->status; mysqli_close($conn); return; } if ($selQ->getNumberOfResults() > 0) { $statusMessage = makeStatusMessage(3, "error", "User is already registered!"); mysqli_close($conn); return; } $insSQL = new insertSQL($conn); $insSQL->insertData = array($user, $pass, "0"); $insSQL->cols = array("user", "password", "access"); $insSQL->tableName = "users"; if ($insSQL->executeQuery()) { $statusMessage = makeStatusMessage(4, "success", "Registration successfull!"); } else { $statusMessage = $insSQL->status; } mysqli_close($conn); return;
<?php $conn = sqlConnectDefault(); if (is_null($conn)) { $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!"); return; } $select = array("email", "fname", "lname", "firm", "address", "city", "country", "phone"); $tableName = array("user_info as i", "users as u"); $joinTypes = array("RIGHT OUTER JOIN"); $joins = array("u.id = i.userid"); $where = "u.email='" . $_POST["email"] . "'"; $result = simpleSelect($select, $tableName, $joinTypes, $joins, $where, NULL, NULL, $conn); if ($result->num_rows == 0) { $statusMessage = makeStatusMessage(14, "error", "Error getting data from database..."); } else { if ($result->num_rows > 1) { $statusMessage = makeStatusMessage(13, "error", "Multiple results for this user..."); } else { while ($row = $result->fetch_assoc()) { $data[] = $row; } $statusMessage = makeStatusMessage(15, "success", "Data gathered succesfully."); } } mysqli_close($conn); return;
<?php $conn = sqlConnectDefault(); if (is_null($conn)) { $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!"); return; } $select = array("id", "parentid", "name" . $language, "desc" . $language, "imgurl"); $tableName = array("categories"); $data = getCat("parentid IS NULL"); if (!empty($data)) { $statusMessage = makeStatusMessage(23, "error", "Data successfully sent."); } else { $statusMessage = makeStatusMessage(23, "error", "Data successfully sent."); } mysqli_close($conn); return; function getCat($where) { $result = simpleSelect($GLOBALS['select'], $GLOBALS['tableName'], NULL, NULL, $where, NULL, NULL, $GLOBALS['conn']); $data = array(); if (is_null($result)) { return NULL; } else { while ($row = $result->fetch_assoc()) { $subCats = getCat("parentid = '" . $row['id'] . "'"); if ($subCats) { $data[] = array_merge($row, array("subCategories" => $subCats)); } else { $data[] = $row; }
function insCat($conn) { require_once 'languageConfig.php'; $insQ = new insertSQL($conn); $insQ->insertData = array(); $insQ->cols = array(); foreach ($langArr as $l) { if (isset($_POST['names'][$l])) { $insQ->insertData[] = $conn->real_escape_string($_POST['names'][$l]); $insQ->cols[] = "name" . $l; } if (isset($_POST['desc'][$l])) { $insQ->insertData[] = $conn->real_escape_string($_POST['desc'][$l]); $insQ->cols[] = "desc" . $l; } } if (isset($_POST['imgUrl'])) { $insQ->insertData[] = $conn->real_escape_string($_POST['imgUrl']); $insQ->cols[] = "imgurl"; } if (isset($_POST['parentid'])) { $insQ->insertData[] = $conn->real_escape_string($_POST['parentid']); $insQ->cols[] = "parentid"; } $insQ->tableName = "categories"; if (!$insQ->executeQuery()) { $statusMessage = $insQ->status; } else { $selQid = new selectSQL($conn); $selQid->where = ""; foreach ($langArr as $l) { if (isset($_POST['names'][$l])) { $selQid->where = "name" . $l . " = '" . $conn->real_escape_string($_POST['names'][$l]) . "' OR "; } } $selQid->where = substr($selQid->where, 0, -4); $selQid->order = "id DESC"; $selQid->tableNames = array("categories"); $selQid->select = array("id"); if (!$selQid->executeQuery()) { $statusMessage = $selQid->status; } else { $row = $selQid->result->fetch_assoc(); $catid = $row['id']; $selQ = new selectSQL($conn); $selQ->select = array("name", "langDependant"); $selQ->tableNames = array("properties"); $tmp = array(); foreach ($_POST['fid'] as $f) { $tmp[] = $conn->real_escape_string($f); } $selQ->where = "id IN (" . arrToQueryString($tmp, null) . ")"; if (!$selQ->executeQuery() or $selQ->getNumberOfResults() == 0) { $statusMessage = makeStatusMessage(53, "error"); } else { $propsDef = array(); $propsLang = array(); while ($row = $selQ->result->fetch_assoc()) { if ($row['langDependant']) { $propsLang[] = $row['name']; } else { $propsDef[] = $row['name']; } } $ctQ = new createTableSQL($conn); $ctQ->cols = array(); $ctQ->cols[] = "infoid"; $ctQ->colTypes = array(); $ctQ->colTypes[] = "int(11) NOT NULL"; $ctQ->name = "products_" . $catid; if (count($propsDef)) { foreach ($propsDef as $pr) { $ctQ->cols[] = $pr; $ctQ->colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL"; } if (!$ctQ->executeQuery()) { $statusMessage = $ctQ->status; mysqli_close($conn); return; } } if (count($propsLang)) { foreach ($langArr as $l) { unset($ctQ->cols); $ctQ->cols[] = "infoid"; unset($ctQ->colTypes); $ctQ->colTypes[] = "int(11) NOT NULL"; $ctQ->name = "products_" . $catid . "_" . $l; foreach ($propsLang as $pr) { $ctQ->cols[] = $pr . $l; $ctQ->colTypes[] = "varchar(40) COLLATE utf8_unicode_ci DEFAULT NULL"; } if (!$ctQ->executeQuery()) { $GLOBALS['statusMessage'] = $ctQ->status; mysqli_close($conn); return; } } } $insQ = new insertSQL($conn); $insQ->cols = array("catid", "propid"); $insQ->tableName = "props_to_prods"; foreach ($_POST['fid'] as $f) { $insQ->insertData = array($catid, $conn->real_escape_string($f)); if (!$insQ->executeQuery()) { $resultAddProps = true; } } if (isset($resultAddProps)) { $statusMessage = makeStatusMessage(103, "error"); } else { $statusMessage = makeStatusMessage(11, "success"); } } } } $GLOBALS['statusMessage'] = $statusMessage; }
$conn = sqlConnectDefault(); if (is_null($conn)) { $statusMessage = makeStatusMessage(6, "error", "Could not connect to database!"); return; } $user = $conn->real_escape_string($_POST["email"]); $pass = $conn->real_escape_string($_POST["pass"]); $pass = md5($pass); $selQ = new selectSQL($conn); $selQ->select = array("id", "access"); $selQ->tableNames = array("users"); $selQ->where = "user='******' AND password='******'"; if (!$selQ->executeQuery()) { $statusMessage = $selQ->status; mysqli_close($conn); return; } if ($selQ->getNumberOfResults() == 1) { $statusMessage = makeStatusMessage(7, "success", "Successful login!"); while ($row = $selQ->result->fetch_assoc()) { $data[] = $row; } } else { if ($selQ->getNumberOfResults() == 0) { $statusMessage = makeStatusMessage(8, "error", "Invalid user or password!"); } else { $statusMessage = makeStatusMessage(9, "error", "Overlapping accounts."); } } mysqli_close($conn); return;
foreach ($propNames as $p) { if (!isset($_POST['filters'][$p])) { $select = array("DISTINCT " . $p); $result = simpleSelect($select, $tableNames, NULL, NULL, $whereFilters, NULL, NULL, $conn); if ($result->num_rows != 0) { $filters = array(); while ($row = $result->fetch_assoc()) { $filters[] = $row[$p]; } $dataF[] = array("name" => $p, $p => $filters); } } else { $dataF[] = array($p => $_POST['filters'][$p]); } } $select = $propNames; $select[] = "imgurl"; $tableNames = array("products_" . $_POST['id']); $result = simpleSelect($select, $tableNames, NULL, NULL, $whereFilters, NULL, NULL, $conn); if ($result->num_rows == 0) { $statusMessage = makeStatusMessage(25, "error", "Nothing to select."); } else { $dataP = array(); while ($row = $result->fetch_assoc()) { $dataP[] = $row; } $statusMessage = makeStatusMessage(15, "success", "Data sent succesfully."); $data = array("filters" => $dataF, "products" => $dataP); } mysqli_close($conn); return;
if (!$insQ->executeQuery()) { $statusMessage = $insQ->status; mysqli_close($conn); return; } $selQlast = new selectSQL($conn); $selQlast->select = array("id as lastid"); $selQlast->where = "id = LAST_INSERT_ID()"; $selQlast->tableNames = array("orders"); if (!$selQlast->executeQuery()) { $statusMessage = $selQlast->status; mysqli_close($conn); return; } $row = $selQlast->result->fetch_assoc(); $lastID = $row['lastid']; foreach ($prodids as $prod) { unset($insQ); $insQ = new insertSQL($conn); $insQ->cols = array("orderid", "productid", "productcount"); $insQ->insertData = array($lastID, $prod, $prodQuantity[$prod]); $insQ->tableName = "ordered_products"; if (!$insQ->executeQuery()) { $statusMessage = $insQ->status; mysqli_close($conn); return; } } $statusMessage = makeStatusMessage(17, "success"); mysqli_close($conn); return;
for ($i = 0; $i < count($propNames); $i++) { $selQ->select = array_merge($selQ->select, array($propNames[$i] . " as `" . $propLangName[$i] . "`")); } $selQ->tableNames = array("products as p"); $selQ->joins = array(); $selQ->joinTypes = array(); if (checkTable($conn, "products_" . $catid)) { $selQ->tableNames[] = "products_" . $catid . " as nld"; $selQ->joins[] = "p.id = nld.infoid"; $selQ->joinTypes[] = "LEFT JOIN"; } if (checkTable($conn, "products_" . $catid . "_" . $language)) { $selQ->tableNames[] = "products_" . $catid . "_" . $language . " as ld"; $selQ->joins[] = "p.id = ld.infoid"; $selQ->joinTypes[] = "LEFT JOIN"; } if (!$selQ->executeQuery()) { $statusMessage = $selQ->status; mysqli_close($conn); return; } if ($selQ->getNumberOfResults() == 0) { $statusMessage = makeStatusMessage(59, "error"); } else { $data = array(); while ($row = $selQ->result->fetch_assoc()) { $data[] = $row; } $statusMessage = makeStatusMessage(22, "success"); } mysqli_close($conn);
} $select = array("abreviation"); $tableNames = array("languages"); $result = simpleSelect($select, $tableNames, NULL, NULL, NULL, NULL, NULL, $conn); if ($result->num_rows == 0) { $statusMessage = makeStatusMessage(324, "error", "Could not get language information."); return; } $insertData = array(); $cols = array(); while ($row = $result->fetch_assoc()) { $insertData[] = $_POST['names'][$row['abreviation']]; $insertData[] = $_POST['desc'][$row['abreviation']]; $cols[] = "name" . $row['abreviation']; $cols[] = "desc" . $row['abreviation']; } if (isset($_POST['searchable'])) { $insertData[] = "1"; $cols[] = "searchable"; } $tableNames = array("properties"); $result = simpleInsert($insertData, $tableNames[0], $cols, $conn); if ($result) { $statusMessage = makeStatusMessage(24, "error", "Could not create property."); } else { $statusMessage = makeStatusMessage(1234, "suscces", "Propery saved successfully."); } } } mysqli_close($conn); return;