File manager - Edit - /home/autoph/public_html/connectv1/app/area/configurations/area.php
Back
<?php include_once("../../../cfg/db.php"); $type = $db->escape($_POST['type']); if($type == 1){ // add area $new_area = $db->escape(trim(strtoupper($_POST['new_area']))); $current_user = $_SESSION['user']['id']; if(intval($db->select("SELECT COUNT(1) FROM bank_db_areas WHERE name = '$new_area'")) > 0){ $return_arr['status'] = 0; //duplicate area name $return_arr['message'] = "Area name already existing"; echo json_encode($return_arr); } else { $current_date = $db->select("SELECT DATE_FORMAT(CURRENT_DATE(), '%Y-%m_%d') AS date"); $db->sql_query("INSERT INTO `bank_db_areas` (`name`, `added_by`, `last_modified_by`, `date_modified`, `status`) VALUES('$new_area', '$current_user', '$current_user', '$current_date', 1)"); $return_arr['status'] = 1; echo json_encode($return_arr); } } else if($type == 2){ // reload / load area list $area_id = $db->escape($_POST['area_id']); $arr = array(); $query = "SELECT bda.id, bda.name, DATE_FORMAT(bda.date_added, '%b %d, %Y / %h:%i %p') AS date_added, concat(e1.first_name, ' ', e1.last_name) AS added_by, concat(e2.first_name, ' ', e2.last_name) AS last_modified_by, DATE_FORMAT(bda.date_modified, '%b %d, %Y') AS date_modified, bda.status FROM bank_db_areas bda INNER JOIN employee e1 ON bda.added_by = e1.id INNER JOIN employee e2 ON bda.last_modified_by = e2.id WHERE bda.id = '$area_id' AND bda.id != 0"; $query_list = $db->sql_query($query); foreach($query_list AS $row){ $arr['id'] = $row['id']; $arr['name'] = $row['name']; $arr['date_added'] = $row['date_added']; $arr['added_by'] = $row['added_by']; $arr['last_modified_by'] = $row['last_modified_by']; $arr['date_modified'] = $row['date_modified']; $arr['status'] = (intval($row['status']) <> 0) ? true : false ; } echo json_encode($arr); } else if($type == 3){ // update area $area_id = $db->escape($_POST['area_id']); $new_area_name = $db->escape(trim(strtoupper($_POST['new_area_name']))); $status = $db->escape($_POST['status']); $set_status = 0; $current_user = $_SESSION['user']['id']; if($status == "true"){ $set_status = 1; } if(intval($db->select("SELECT COUNT(1) FROM bank_db_areas WHERE `name` != '' AND `name` = '$new_area_name' AND id != '$area_id'")) > 0){ $arr['status'] = 0; //duplicate area name } else { $current_date = $db->select("SELECT DATE_FORMAT(CURRENT_DATE(), '%Y-%m_%d') AS date"); $update_query = "UPDATE `bank_db_areas` SET `name`='$new_area_name', `status`='$set_status', `last_modified_by`='$current_user', `date_modified` = '$current_date' WHERE `id` = '$area_id'"; //echo $update_query; $db->sql_query($update_query); $arr['status'] = 1; //success update } echo json_encode($arr); } else if($type == 4){ // refresh list $query = "SELECT `id`, `name` FROM `bank_db_areas` WHERE id != 0 ORDER BY name ASC"; $area = $db->return_result($query); //echo $query; return; foreach($area AS $data){ echo "<option value='{$data['id']}'>".$data['name']."</option>"; } } else if($type == 5){ // search function $search_item = $db->escape(trim($_POST['search_item'])); $search_query = "SELECT id, name FROM bank_db_areas WHERE name LIKE '%%$search_item%%' AND id != 0 ORDER BY name ASC"; //echo $search_query; return; $result = $db->sql_query($search_query); //echo $search_query; return; while($row = $result->fetch_assoc()) { echo '<option value="'.$row['id'].'">'.$row["name"].'</option>'; } } ?>
| ver. 1.4 |
.
| PHP 7.3.33 | Generation time: 0 |
proxy
|
phpinfo
|
Settings