From e9c4c5bd8c6c0ece812dea3983d987ea3f18945e Mon Sep 17 00:00:00 2001 From: Joey Schulze Date: Fri, 12 Nov 2010 22:47:58 +0000 Subject: [PATCH] Add sys_user and sys_edit as internal fields --- src/InfoCon/account/update.wml | 54 +++++++++++++++++++++------------- 1 file changed, 34 insertions(+), 20 deletions(-) diff --git a/src/InfoCon/account/update.wml b/src/InfoCon/account/update.wml index f14a3e4..eb0b901 100644 --- a/src/InfoCon/account/update.wml +++ b/src/InfoCon/account/update.wml @@ -22,9 +22,10 @@ for ($nr=0; $nr < pg_NumRows ($sth); $nr++) { $row = pg_fetch_array ($sth, $nr); - $query = sprintf ("UPDATE account_names SET name='%s',display=%d WHERE blz_kto = '%s'", + $query = sprintf ("UPDATE account_names SET name='%s',display=%d,sys_user='%s',sys_edit=now() WHERE blz_kto = '%s'", $_POST['name_' . $row['blz_kto']], $_POST['display_' . $row['blz_kto']] ? 1 : 0, + $_SERVER['REMOTE_USER'], $row['blz_kto']); pg_exec ($dbh, $query); @@ -32,19 +33,21 @@ } } elseif ($_POST[formtype] == "newaccount") { if (isset($_POST['blz']) && isset($_POST['kto']) && isset($_POST['name'])) { - $query = sprintf ("INSERT INTO account_names (blz_kto,name,display) ". - "VALUES ('%s:%s','%s',1)", + $query = sprintf ("INSERT INTO account_names (blz_kto,name,display,sys_user,sys_edit) ". + "VALUES ('%s:%s','%s',1,'%s',now())", $_POST['blz'], $_POST['kto'], - $_POST['name']); + $_POST['name'], + $_SERVER['REMOTE_USER']); pg_exec ($dbh, $query); - $query = sprintf ("INSERT INTO account (blz_kto,statement,datum,from_to,descr,category,value_eur) ". - "VALUES ('%s:%s','%s','%s','Account Administration','Initial Zero Statement','Miscellaneous',0.0)", + $query = sprintf ("INSERT INTO account (blz_kto,statement,datum,from_to,descr,category,value_eur,sys_user,sys_edit) ". + "VALUES ('%s:%s','%s','%s','Account Administration','Initial Zero Statement','Miscellaneous',0.0,'%s',now())", $_POST['blz'], $_POST['kto'], date("Y") . "/00", - date("Y-m-j")); + date("Y-m-j"), + $_SERVER['REMOTE_USER']); pg_exec ($dbh, $query); $output = "Neues Konto erstellt."; @@ -83,21 +86,32 @@ $query = "DELETE FROM $table WHERE oid = $_POST[oid]"; $output = "Posten gelöscht."; } elseif (isset($_POST[oid]) && $_POST[oid] > 0) { - $query = "UPDATE $table SET " - . "datum='$date'," - . "statement='$statement'," - . "from_to='$from_to'," - . "descr='$descr'," - . "$field=$value," - . "category='$category'" - . " WHERE oid = $_POST[oid]"; + $query = sprintf("UPDATE %s SET datum='%s',statement='%s',from_to='%s',descr='%s',category='%s',%s=%s,sys_user='%s',sys_edit=now() " . + "WHERE oid = %d", + $table, + $date, + $statement, + $from_to, + $descr, + $category, + $field,$value, + $_SERVER['REMOTE_USER'], + $_POST['oid']); $output = "Posten aktualisiert."; } else { - $query = "INSERT INTO $table " - . "(blz_kto,statement,datum,from_to,descr,$field,category) VALUES (" - . "'$_POST[blzkto]','$statement','$date','$from_to','$descr',$value,'$category')"; - + $query = sprintf("INSERT INTO %s (blz_kto,datum,statement,from_to,descr,category,%s,sys_user,sys_edit) ". + "VALUES ('%s','%s','%s','%s','%s','%s',%s,'%s',now())", + $table, $field, + $_POST['blzkto'], + $date, + $statement, + $from_to, + $descr, + $category, + $value, + $_SERVER['REMOTE_USER']); $output = "Neuen Posten aufgenommen."; + $output .= sprintf('

Weiteren Posten aufnehmen', $_POST['blzkto']); } $sth = pg_exec ($dbh, $query) or die("Datenbank-Abfrage!"); } @@ -108,6 +122,6 @@ # Local variables: -# mode: text +# mode: php # mode: auto-fill # end: -- 2.20.1