API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 15th, 2019
106
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.11 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3. $conn = mysqli_connect("localhost","xxxx","xxxx","xxxx");
  4.  
  5. $acentos = $conn->query("SET NAMES 'utf8'");
  6.  
  7. if (!$conn) {
  8. die("Connection failed: " . mysqli_connect_error());
  9. }
  10. mysqli_set_charset($conn, 'utf8' );
  11. /*
  12. mysqli_character_set_name($conn);
  13.  
  14. if (!mysqli_set_charset($conn, "utf8")) {
  15. printf("", mysqli_error($conn));
  16. exit();
  17. } else {
  18. printf("", mysqli_character_set_name($conn));
  19. }
  20. */
  21.  
  22. ?>
  23.  
  24. <?php
  25. require_once ("../../conn.php");
  26.  
  27. if (!empty($_POST['name']))
  28. {
  29.  
  30. $name = mysqli_real_escape_string($conn,(strip_tags($_POST["name"],ENT_QUOTES)));
  31. $category = mysqli_real_escape_string($conn,(strip_tags($_POST["category"],ENT_QUOTES)));
  32. $price = floatval($_POST["price"]);
  33. $supplier = mysqli_real_escape_string($conn,(strip_tags($_POST["supplier"],ENT_QUOTES)));
  34. $description = mysqli_real_escape_string($conn,(strip_tags($_POST["description"],ENT_QUOTES)));
  35. $tech = mysqli_real_escape_string($conn,(strip_tags($_POST["tech"],ENT_QUOTES)));
  36. $video = mysqli_real_escape_string($conn,(strip_tags($_POST["video"],ENT_QUOTES)));
  37. $stock = intval($_POST["stock"]);
  38. $fileInfo = PATHINFO($_FILES["images"]["name"]);
  39. $filePdf = $_FILES["pdf"]["name"];
  40. define('folderDirectory',$_SERVER['DOCUMENT_ROOT']."/pcinnovations-master/POS/");
  41.  
  42. if (empty($_FILES["images"]["name"]))
  43. {
  44. $locationImg="";
  45. }
  46. else
  47. {
  48. if ($fileInfo['extension'] == "jpg" OR $fileInfo['extension'] == "png") {
  49. $newFilename = $fileInfo['filename'] . "." . $fileInfo['extension'];
  50. if(!file_exists(folderDirectory."upload")){
  51. mkdir(folderDirectory."upload" , 0777,true);
  52. }
  53. move_uploaded_file($_FILES["images"]["tmp_name"], folderDirectory."upload/" . $newFilename);
  54. $locationImg = "upload/" . $newFilename;
  55. }
  56. else
  57. {
  58. echo json_encode(['error'=>true,'msg'=>'Photo not added. Please upload JPG or PNG photo only!']);
  59. $locationImg = "";
  60. }
  61. }
  62.  
  63. $locationPdf = "";
  64.  
  65. $sql = "call addproduct('$category','$name','$price','$stock','$locationImg','$supplier','$description','$video','$tech','$locationPdf')";
  66. //mysqli_set_charset($conn,$sql);
  67. $query = mysqli_query($conn,$sql);
  68. echo mysqli_error($conn);
  69. if ($query)
  70. {
  71.  
  72. if(empty($_FILES["pdf"]["name"]))
  73. {
  74. $locationPdf = "";
  75. }
  76. else
  77. {
  78. if(PATHINFO($filePdf)['extension'] !='pdf') // verificamos que sea pdf
  79. {
  80. $errors[] = 'File not added. You must upload only file pdf';
  81. echo json_encode(['error'=>true,'msg'=>'File not added. You must upload only file pdf']);
  82. }
  83. else
  84. {
  85. $sqlIdPdf = "SELECT productid FROM product WHERE product_name = '$name'";
  86. $result = mysqli_query($conn,$sqlIdPdf);
  87.  
  88. if($result)
  89. {
  90. $result = mysqli_fetch_array($result);
  91. $result = $result['productid'];
  92. $destination = "admin/productsPdf/$result/";
  93. if(!file_exists(folderDirectory.$destination)){
  94. mkdir(folderDirectory.$destination , 0777,true);
  95. }
  96. move_uploaded_file($_FILES["pdf"]["tmp_name"],folderDirectory.$destination.$filePdf);
  97. $locationPdf = $destination.$filePdf;
  98. // consulta de editado
  99. $sqlUpPdf="UPDATE product set pdf_url = '$locationPdf' WHERE productid = $result";
  100. mysqli_query($conn,$sqlUpPdf);
  101. // echo json_encode(['error'=>true,'msg'=>'No se pudo ejectar la consulta, error:'.$result,'data:'=>$sqlUpPdf]);
  102. }
  103. else
  104. { $errors[] = "No se pudo ejectar la consulta, error: $result";
  105. echo json_encode(['error'=>true,'msg'=>'No se pudo ejectar la consulta']);
  106. }
  107. }
  108. }
  109.  
  110. echo json_encode(['error'=>false,'msg'=>'El producto ha sido guardado con éxito.','products'=>getAllProducts($category,$conn)]);
  111. }
  112. else {
  113. $errors[] = "Lo sentimos, el registro falló. Por favor, regrese y vuelva a intentarlo.";
  114. echo json_encode(['error'=>true,'msg'=>'Lo sentimos, el registro falló. Por favor, regrese y vuelva a intentarlo.'.mysqli_error($query)]);
  115. }
  116. }
  117. else
  118. {
  119. // echo json_encode(['error'=>true,'msg'=>'Unknow']);
  120. }
  121.  
  122. function getAllProducts($idCategory,$conn){
  123. $tableProd="";
  124. $sqlRead="select * from product as p where p.categoryid = $idCategory";
  125.  
  126. $result=mysqli_query($conn,$sqlRead);
  127. if($result){
  128. while($row = mysqli_fetch_array($result)){
  129. $pid = $row['productid'];
  130. $tableProd .="<tr>
  131. <td>". $row['product_name']. "</td>
  132. <td>". $row['product_price']."</td>
  133. <td>". $row['product_qty']. "</td>";
  134. $tableProd .="<td><button onclick='getProductEdit($pid)' class='btn btn-success btn-sm' data-toggle='modal' data-target='#editprod'><i class='fa fa-edit'></i> Edit</button>
  135. <button onclick='getPhoto($pid)' class='btn btn-success btn-sm' data-toggle='modal' data-target='#addphoto'><i class='fa fa-edit'></i> Add Photo</button>
  136. <button onclick='getProductDelete($pid,$idCategory)' class='btn btn-danger btn-sm' data-toggle='modal' ><i class='fa fa-trash'></i> Delete</button></td>
  137. </tr>";
  138. }
  139. }
  140. // echo json_encode(['error'=>false,'msg'=>'Pruduct was deleted successfully','products'=>$tableProd]);
  141. return $tableProd;
  142. }
  143. // Este codigo se puede optimizar aun mas
  144. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!