3 require_once('../init.php');
7 $sql = sprintf('SELECT id,%s FROM %s WHERE id = %d',
8 implode(',', array_keys($mask['edit'])),
9 $mask['table'], $_POST['id']);
11 $sth = pg_query($sql);
12 if ($sth === false) return false;
14 $row = pg_fetch_assoc($sth);
16 foreach ($mask['edit'] as $field => $info)
17 if ($info['type'] == 'boolean')
18 $row[$field] = $row[$field]?true:false;
19 elseif (array_key_exists('format', $info))
20 $row[$field] = sprintf($info['format'], $row[$field]);
25 function details($mask)
27 if (empty($_POST['id']))
28 return array('error' => 'Missing ID');
30 $sql = sprintf('SELECT id,%s FROM %s WHERE id = %d',
31 implode(',', array_keys($mask['details']['list'])),
32 $mask['table'], $_POST['id']);
34 $sth = pg_query($sql);
37 return array('error' => pg_last_error(),
40 $row = pg_fetch_assoc($sth);
42 foreach ($mask['details']['list'] as $field => $info)
43 if (array_key_exists('format', $info))
44 $row[$field] = sprintf($info['format'], $row[$field]);
51 if (empty($_POST['id']))
52 return array('error' => 'Missing ID');
54 $update = array(sprintf("sys_user = '%s'", pg_escape_string($_SESSION['sys']['login'])),
57 foreach ($mask['edit'] as $field => $info)
58 if ($info['type'] == 'boolean') {
59 $update[] = sprintf("%s=%d", $field, $_POST[$field] == 'on'?1:0);
60 } elseif ($info['type'] == 'number') {
61 $update[] = sprintf("%s=%d", $field, $_POST[$field]);
63 $update[] = sprintf("%s='%s'", $field, pg_escape_string($_POST[$field]));
66 $sql = 'UPDATE ' . $mask['table'] . ' SET ';
67 $sql .= implode(', ', $update);
68 $sql .= ' WHERE id = ' . intval($_POST['id']);
70 $sth = pg_query($sql);
73 error_log($sql . ': ' . pg_last_error());
74 return array('error' => pg_last_error(),
78 return array('status' => true);
81 function insert($mask)
83 $fields = array('sys_user','sys_edit');
84 $values = array("'".pg_escape_string($_SESSION['sys']['login'])."'", 'now()');
86 foreach ($mask['edit'] as $field => $info)
87 if ($info['type'] == 'boolean') {
89 $values[] = $_POST[$field] == 'on'?1:0;
90 } elseif ($info['type'] == 'number') {
92 $values[] = intval($_POST[$field]);
95 $values[] = sprintf("'%s'", pg_escape_string($_POST[$field]));
98 $sql = 'INSERT INTO ' . $mask['table'] . ' (' . implode(',', $fields) . ') ';
99 $sql .= 'VALUES (' . implode(',', $values) . ')';
101 $sth = pg_query($sql);
103 if ($sth === false) {
104 error_log($sql . ': ' . pg_last_error());
105 return array('error' => pg_last_error(),
109 return array('status' => true);
112 function delete_or_copy($mask)
114 if (empty($_POST['id']))
115 return array('error' => 'Missing ID');
117 if (DELETE_COPY === true) {
118 $sql = sprintf("INSERT INTO %s_deleted SELECT * FROM %s WHERE id = %d",
119 $mask['table'], $mask['table'], $_POST['id']);
121 $sth = pg_query($sql);
123 if ($sth === false) {
124 error_log($sql . ': ' . pg_last_error());
125 return array('error' => pg_last_error(),
129 $sql = sprintf("UPDATE %s_deleted SET sys_user='%s',sys_edit=now() WHERE id = %d",
130 $mask['table'], $_SESSION['sys']['login'], $_POST['id']);
132 $sth = pg_query($sql);
134 if ($sth === false) {
135 error_log($sql . ': ' . pg_last_error());
136 return array('error' => pg_last_error(),
141 $sql = sprintf("DELETE FROM %s WHERE id = %d", $mask['table'], $_POST['id']);
143 $sth = pg_query($sql);
145 if ($sth === false) {
146 error_log($sql . ': ' . pg_last_error());
147 return array('error' => pg_last_error(),
151 return array('status' => true);
154 function format_ajax($data)
156 header('Content-type: application/json; charset=UTF-8');
157 echo json_encode($data);
161 if (empty($_POST['func']))
164 if (empty($_POST['source']))
168 if (load_mask($_POST['source']) === false) exit;
170 $data = array('error' => 'Unknown function');
172 if ($_POST['func'] == 'fetch') {
173 $data = fetch($mask);
174 } elseif ($_POST['func'] == 'details') {
175 $data = details($mask);
176 } elseif ($_POST['func'] == 'save') {
178 } elseif ($_POST['func'] == 'insert') {
179 $data = insert($mask);
180 } elseif ($_POST['func'] == 'delete') {
181 $data = delete_or_copy($mask);