3 require_once('../init.php');
7 $fields = array('sys_edit', 'sys_user');
8 foreach ($mask['edit'] as $field => $info)
9 if ($info['type'] != 'passwd')
12 $sql = sprintf('SELECT id,%s FROM %s WHERE id = %d',
13 implode(',', $fields),
14 $mask['table'], $_POST['id']);
16 $sth = pg_query($sql);
17 if ($sth === false) return false;
19 $row = pg_fetch_assoc($sth);
21 foreach ($mask['edit'] as $field => $info)
22 if ($info['type'] == 'boolean')
23 $row[$field] = $row[$field]?true:false;
24 elseif (array_key_exists('format', $info))
25 $row[$field] = sprintf($info['format'], $row[$field]);
30 function details($mask)
32 if (empty($_POST['id']))
33 return array('error' => 'Missing ID');
35 $sql = sprintf('SELECT id,%s FROM %s WHERE id = %d',
36 implode(',', array_keys($mask['details']['list'])),
37 $mask['table'], $_POST['id']);
39 $sth = pg_query($sql);
42 return array('error' => pg_last_error(),
45 $row = pg_fetch_assoc($sth);
47 foreach ($mask['details']['list'] as $field => $info)
48 if (array_key_exists('format', $info))
49 $row[$field] = sprintf($info['format'], $row[$field]);
56 if (empty($_POST['id']))
57 return array('error' => 'Missing ID');
59 $update = array(sprintf("sys_user = '%s'", pg_escape_string($_SESSION['sys']['login'])),
62 foreach ($mask['edit'] as $field => $info)
63 if ($info['type'] == 'boolean') {
64 $update[] = sprintf("%s=%d", $field, $_POST[$field] == 'on'?1:0);
65 } elseif ($info['type'] == 'number') {
66 $update[] = sprintf("%s=%d", $field, $_POST[$field]);
68 $update[] = sprintf("%s='%s'", $field, pg_escape_string($_POST[$field]));
71 $sql = 'UPDATE ' . $mask['table'] . ' SET ';
72 $sql .= implode(', ', $update);
73 $sql .= ' WHERE id = ' . intval($_POST['id']);
75 $sth = pg_query($sql);
78 error_log($sql . ': ' . pg_last_error());
79 return array('error' => pg_last_error(),
83 return array('status' => true);
86 function insert($mask)
88 $fields = array('sys_user','sys_edit');
89 $values = array("'".pg_escape_string($_SESSION['sys']['login'])."'", 'now()');
91 foreach ($mask['edit'] as $field => $info)
92 if ($info['type'] == 'boolean') {
94 $values[] = $_POST[$field] == 'on'?1:0;
95 } elseif ($info['type'] == 'number') {
97 $values[] = intval($_POST[$field]);
100 $values[] = sprintf("'%s'", pg_escape_string($_POST[$field]));
103 $sql = 'INSERT INTO ' . $mask['table'] . ' (' . implode(',', $fields) . ') ';
104 $sql .= 'VALUES (' . implode(',', $values) . ')';
106 $sth = pg_query($sql);
108 if ($sth === false) {
109 error_log($sql . ': ' . pg_last_error());
110 return array('error' => pg_last_error(),
114 return array('status' => true);
117 function delete_or_copy($mask)
119 if (empty($_POST['id']))
120 return array('error' => 'Missing ID');
122 if (DELETE_COPY === true) {
123 $sql = sprintf("INSERT INTO %s_deleted SELECT * FROM %s WHERE id = %d",
124 $mask['table'], $mask['table'], $_POST['id']);
126 $sth = pg_query($sql);
128 if ($sth === false) {
129 error_log($sql . ': ' . pg_last_error());
130 return array('error' => pg_last_error(),
134 $sql = sprintf("UPDATE %s_deleted SET sys_user='%s',sys_edit=now() WHERE id = %d",
135 $mask['table'], $_SESSION['sys']['login'], $_POST['id']);
137 $sth = pg_query($sql);
139 if ($sth === false) {
140 error_log($sql . ': ' . pg_last_error());
141 return array('error' => pg_last_error(),
146 $sql = sprintf("DELETE FROM %s WHERE id = %d", $mask['table'], $_POST['id']);
148 $sth = pg_query($sql);
150 if ($sth === false) {
151 error_log($sql . ': ' . pg_last_error());
152 return array('error' => pg_last_error(),
156 return array('status' => true);
159 function format_ajax($data)
161 header('Content-type: application/json; charset=UTF-8');
162 echo json_encode($data);
166 if (empty($_POST['func']))
169 if (empty($_POST['source']))
173 if (load_mask($_POST['source']) === false) exit;
175 $data = array('error' => 'Unknown function');
177 if ($_POST['func'] == 'fetch') {
178 $data = fetch($mask);
179 } elseif ($_POST['func'] == 'details') {
180 $data = details($mask);
181 } elseif ($_POST['func'] == 'save') {
183 } elseif ($_POST['func'] == 'insert') {
184 $data = insert($mask);
185 } elseif ($_POST['func'] == 'delete') {
186 $data = delete_or_copy($mask);