Portions created by the Initial Developer are Copyright (C) 2016 the Initial Developer. All Rights Reserved. Contributor(s): Mark J Crane */ //includes require_once "root.php"; require_once "resources/require.php"; //check permissions require_once "resources/check_auth.php"; if (permission_exists('pin_number_add') || permission_exists('pin_number_edit')) { //access granted } else { echo "access denied"; exit; } //add multi-lingual support $language = new text; $text = $language->get(); //action add or update if (isset($_REQUEST["id"])) { $action = "update"; $pin_number_uuid = check_str($_REQUEST["id"]); } else { $action = "add"; } //get http post variables and set them to php variables if (count($_POST)>0) { $pin_number = check_str($_POST["pin_number"]); $accountcode = check_str($_POST["accountcode"]); $enabled = check_str($_POST["enabled"]); $description = check_str($_POST["description"]); } if (count($_POST)>0 && strlen($_POST["persistformvar"]) == 0) { $msg = ''; if ($action == "update") { $pin_number_uuid = check_str($_POST["pin_number_uuid"]); } //check for all required data if (strlen($pin_number) == 0) { $msg .= $text['message-required']." ".$text['label-pin_number']."
\n"; } //if (strlen($accountcode) == 0) { $msg .= $text['message-required']." ".$text['label-accountcode']."
\n"; } if (strlen($enabled) == 0) { $msg .= $text['message-required']." ".$text['label-enabled']."
\n"; } //if (strlen($description) == 0) { $msg .= $text['message-required']." ".$text['label-description']."
\n"; } if (strlen($msg) > 0 && strlen($_POST["persistformvar"]) == 0) { require_once "resources/header.php"; require_once "resources/persist_form_var.php"; echo "

\n"; echo "

\n"; echo $msg."
"; echo "

\n"; persistformvar($_POST); echo "

\n"; require_once "resources/footer.php"; return; } //add or update the database if ($_POST["persistformvar"] != "true") { if ($action == "add" && permission_exists('pin_number_add')) { $sql = "insert into v_pin_numbers "; $sql .= "("; $sql .= "domain_uuid, "; $sql .= "pin_number_uuid, "; $sql .= "pin_number, "; $sql .= "accountcode, "; $sql .= "enabled, "; $sql .= "description "; $sql .= ")"; $sql .= "values "; $sql .= "("; $sql .= "'$domain_uuid', "; $sql .= "'".uuid()."', "; $sql .= "'$pin_number', "; $sql .= "'$accountcode', "; $sql .= "'$enabled', "; $sql .= "'$description' "; $sql .= ")"; $db->exec(check_sql($sql)); unset($sql); messages::add($text['message-add']); header("Location: pin_numbers.php"); return; } //if ($action == "add") if ($action == "update" && permission_exists('pin_number_edit')) { $sql = "update v_pin_numbers set "; $sql .= "pin_number = '$pin_number', "; $sql .= "accountcode = '$accountcode', "; $sql .= "enabled = '$enabled', "; $sql .= "description = '$description' "; $sql .= "where pin_number_uuid = '$pin_number_uuid'"; $sql .= "and domain_uuid = '$domain_uuid' "; $db->exec(check_sql($sql)); unset($sql); messages::add($text['message-update']); header("Location: pin_numbers.php"); return; } //if ($action == "update") } //if ($_POST["persistformvar"] != "true") } //(count($_POST)>0 && strlen($_POST["persistformvar"]) == 0) //pre-populate the form if (count($_GET) > 0 && $_POST["persistformvar"] != "true") { $pin_number_uuid = check_str($_GET["id"]); $sql = "select * from v_pin_numbers "; $sql .= "where domain_uuid = '$domain_uuid' "; $sql .= "and pin_number_uuid = '$pin_number_uuid' "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); $result = $prep_statement->fetchAll(PDO::FETCH_NAMED); foreach ($result as &$row) { $pin_number = $row["pin_number"]; $accountcode = $row["accountcode"]; $enabled = $row["enabled"]; $description = $row["description"]; } unset ($prep_statement); } //show the header require_once "resources/header.php"; //show the content echo "

\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo " \n"; echo " \n"; echo " "; echo "

".$text['title-pin_number']."	\n"; echo " "; echo " "; echo "
\n"; echo " ".$text['label-pin_number']."\n"; echo "	\n"; echo " \n"; echo " \n"; echo $text['description-pin_number']."\n"; echo "
\n"; echo " ".$text['label-accountcode']."\n"; echo "	\n"; echo " \n"; echo " \n"; echo $text['description-accountcode']."\n"; echo "
\n"; echo " ".$text['label-enabled']."\n"; echo "	\n"; echo " \n"; echo " \n"; echo $text['description-enabled']."\n"; echo "
\n"; echo " ".$text['label-description']."\n"; echo "	\n"; echo " \n"; echo " \n"; echo $text['description-description']."\n"; echo "
\n"; if ($action == "update") { echo " \n"; } echo " \n"; echo "

"; echo "

"; echo "

"; //include the footer require_once "resources/footer.php"; ?>