'.__('You don\'t have enough privileges to access this area!').''); } /* RECORD OPERATION */ if (isset($_POST['saveData']) AND $can_read AND $can_write) { $locationName = trim(strip_tags($_POST['locationName'])); $locationID = trim(strip_tags($_POST['locationID'])); // check form validity if (empty($locationName) OR empty($locationID)) { utility::jsAlert(__('Location ID and Name can\'t be empty')); //mfc exit(); } else { $data['location_id'] = $dbs->escape_string($locationID); $data['location_name'] = $dbs->escape_string($locationName); $data['input_date'] = date('Y-m-d'); $data['last_update'] = date('Y-m-d'); // create sql op object $sql_op = new simbio_dbop($dbs); if (isset($_POST['updateRecordID'])) { /* UPDATE RECORD MODE */ // remove input date unset($data['input_date']); // filter update record ID $updateRecordID = $dbs->escape_string(trim($_POST['updateRecordID'])); // update the data $update = $sql_op->update('mst_location', $data, 'location_id=\''.$updateRecordID.'\''); if ($update) { utility::jsAlert(__('Location Data Successfully Updated')); // update location ID in item table to keep data integrity $sql_op->update('item', array('location_id' => $data['location_id']), 'location_id=\''.$updateRecordID.'\''); echo ''; } else { utility::jsAlert(__('Location Data FAILED to Updated. Please Contact System Administrator')."\nDEBUG : ".$sql_op->error); } exit(); } else { /* INSERT RECORD MODE */ // insert the data $insert = $sql_op->insert('mst_location', $data); if ($insert) { utility::jsAlert(__('New Location Data Successfully Saved')); echo ''; } else { utility::jsAlert(__('Location Data FAILED to Save. Please Contact System Administrator')."\n".$sql_op->error); } exit(); } } exit(); } else if (isset($_POST['itemID']) AND !empty($_POST['itemID']) AND isset($_POST['itemAction'])) { if (!($can_read AND $can_write)) { die(); } /* DATA DELETION PROCESS */ $sql_op = new simbio_dbop($dbs); $failed_array = array(); $error_num = 0; if (!is_array($_POST['itemID'])) { // make an array $_POST['itemID'] = array($dbs->escape_string(trim($_POST['itemID']))); } // loop array foreach ($_POST['itemID'] as $itemID) { $itemID = $dbs->escape_string(trim($itemID)); // check if this item data still have an item $item_q = $dbs->query('SELECT loc.location_name, COUNT(item_id) FROM item AS i LEFT JOIN mst_location AS loc ON i.location_id=loc.location_id WHERE i.location_id=\''.$itemID.'\' GROUP BY i.location_id'); $item_d = $item_q->fetch_row(); if ($item_d[1] < 1) { if (!$sql_op->delete('mst_location', "location_id='$itemID'")) { $error_num++; } } else { $msg = str_replace('{item_name}', $item_d[0], __('Location ({item_name}) still used by {number_items} item(s)')); //mfc $msg = str_replace('{number_items}', $item_d[1], $msg); $still_have_item[] = $msg; $error_num++; } } if ($still_have_item) { $undeleted_locations = ''; foreach ($still_have_item as $location) { $undeleted_locations .= $location."\n"; } utility::jsAlert(__('Below data can not be deleted:')." : \n".$undeleted_locations); exit(); } // error alerting if ($error_num == 0) { utility::jsAlert(__('All Data Successfully Deleted')); echo ''; } else { utility::jsAlert(__('Some or All Data NOT deleted successfully!\nPlease contact system administrator')); echo ''; } exit(); } /* RECORD OPERATION END */ /* search form */ ?> '.__('You don\'t have enough privileges to access this area!').''); } /* RECORD FORM */ $itemID = $dbs->escape_string(isset($_POST['itemID'])?$_POST['itemID']:''); $rec_q = $dbs->query("SELECT * FROM mst_location WHERE location_id='$itemID'"); $rec_d = $rec_q->fetch_assoc(); // create new instance $form = new simbio_form_table_AJAX('mainForm', $_SERVER['PHP_SELF'].'?'.$_SERVER['QUERY_STRING'], 'post'); $form->submit_button_attr = 'name="saveData" value="'.__('Save').'" class="button"'; // form table attributes $form->table_attr = 'align="center" id="dataList" cellpadding="5" cellspacing="0"'; $form->table_header_attr = 'class="alterCell" style="font-weight: bold;"'; $form->table_content_attr = 'class="alterCell2"'; // edit mode flag set if ($rec_q->num_rows > 0) { $form->edit_mode = true; // record ID for delete process $form->record_id = $itemID; // form record title $form->record_title = $rec_d['location_name']; // submit button attribute $form->submit_button_attr = 'name="saveData" value="'.__('Update').'" class="button"'; } /* Form Element(s) */ // location code $form->addTextField('text', 'locationID', __('Location Code').'*', $rec_d['location_id'], 'style="width: 20%;" maxlength="3"'); // location name $form->addTextField('text', 'locationName', __('Location Name').'*', $rec_d['location_name'], 'style="width: 60%;"'); // edit mode messagge if ($form->edit_mode) { echo '
'.__('You are going to edit location data').' : '.$rec_d['location_name'].'
'.__('Last Update').$rec_d['last_update'].'
'; //mfc } // print out the form object echo $form->printOut(); } else { /* LOCATION LIST */ // table spec $table_spec = 'mst_location AS l'; // create datagrid $datagrid = new simbio_datagrid(); if ($can_read AND $can_write) { $datagrid->setSQLColumn('l.location_id', 'l.location_id AS \''.__('Location Code').'\'', 'l.location_name AS \''.__('Location Name').'\'', 'l.last_update AS \''.__('Last Update').'\''); } else { $datagrid->setSQLColumn('l.location_id AS \''.__('Location Code').'\'', 'l.location_name AS \''.__('Location Name').'\'', 'l.last_update AS \''.__('Last Update').'\''); } $datagrid->setSQLorder('location_name ASC'); // is there any search if (isset($_GET['keywords']) AND $_GET['keywords']) { $keywords = $dbs->escape_string($_GET['keywords']); $datagrid->setSQLCriteria("l.location_name LIKE '%$keywords%'"); } // set table and table header attributes $datagrid->table_attr = 'align="center" id="dataList" cellpadding="5" cellspacing="0"'; $datagrid->table_header_attr = 'class="dataListHeader" style="font-weight: bold;"'; // set delete proccess URL $datagrid->chbox_form_URL = $_SERVER['PHP_SELF']; // put the result into variables $datagrid_result = $datagrid->createDataGrid($dbs, $table_spec, 20, ($can_read AND $can_write)); if (isset($_GET['keywords']) AND $_GET['keywords']) { $msg = str_replace('{result->num_rows}', $datagrid->num_rows, __('Found {result->num_rows} from your keywords')); //mfc echo '
'.$msg.' : "'.$_GET['keywords'].'"
'; } echo $datagrid_result; } /* main content end */