<?php// connect to dbfunction connect() { $server = "localhost"; $user

1. <?php
2. // connect to db
3. function connect() {
4. $server = "localhost";
5. $user = "autoAdmin";
6. $pass = "happy8";
7. $db = "autotech";
8. $mysqli = new mysqli($server, $user, $pass, $db);
9. if ($mysqli->connect_errno) {
10. printf("Connect failed: %s\n", $mysqli->connect_error);
11. exit();
12. }
13. return $mysqli;
14. }
15. // clean inputs
16. function h($dirty) {
17. $clean = htmlspecialchars($dirty,ENT_QUOTES);
18. return $clean;
19. }
20.  
21. function runningTotal() {
22. $mysqli = connect();
23. $stmt = $mysqli->prepare('SELECT invoice_school, invoice_cust, invoice_inst, PO
24. FROM tbl_invoice');
25. $stmt->execute();
26. $stmt->bind_result($db_school,$db_cust,$db_inst,$db_po);
27. while($stmt->fetch()) {
28. if($db_po > 0){
29. $poCnt++;
30. $grand = $grand + $db_inst;
31. }
32. else {
33. $total = $total + $db_school;
34. $total = $total + $db_cust;
35. $total = $total + $db_inst;
36. }
37. }
38. $stmt->close();
39. $mysqli->close();
40. if($poCnt > 0) {
41. $output = (3000 - $total) + $grand;
42. }
43. else {
44. $output = 3000 - $total;
45. }
46. return $output;
47. }
48.  
49.  
50. function grabInvoice($mySearch) {
51. $mysqli = connect();
52. $stmt = $mysqli->prepare('SELECT invoice_id, invoice_num, invoice_date,
53. invoice_school, invoice_cust, invoice_inst, invoice_memo, PO
54. FROM tbl_invoice
55. WHERE (invoice_num LIKE ?)
56. ORDER BY invoice_id DESC');
57. $stmt->bind_param('s',$mySearch);
58. $stmt->execute();
59. $stmt->bind_result($db_id,$db_num,$db_date,$db_school,$db_cust,$db_inst,$db_memo,$PO);
60. $out = '<table class="table table-bordered table-hover table-striped"><thead><tr><th>Invoice Number</th><th>Date</th><th>School Vehicle Price</th><th>Customer Service</th><th>Instructional Supplies</th><th>Total</th><th>Memo</th></tr></thead>';
61. while($stmt->fetch()) {
62. $total = 0;
63. if($PO == 1) {
64. $totalPO = $totalPO + $db_inst;
65. $out .= '<tr><td>'.$db_num.'</td><td>'.$db_date.'</td><td class="text-info"> $'.$db_school.'</td><td class="text-info"> $'.$db_cust.'</td><td class="text-info"> $'.$db_inst.'</td><td class="text-success">+ $'.$totalPO.'</td><td>'.$db_memo.'</td></tr>';
66. }
67. else {
68. $total = $total + $db_school;
69. $total = $total + $db_cust;
70. $total = $total + $db_inst;
71. $out .= '<tr><td>'.$db_num.'</td><td>'.$db_date.'</td><td class="text-info"> $'.$db_school.'</td><td class="text-info"> $'.$db_cust.'</td><td class="text-info"> $'.$db_inst.'</td><td class="text-danger">- $'.$total.'</td><td>'.$db_memo.'</td></tr>';
72. }
73. }
74. $out .= '</table>';
75. $stmt->close();
76. $mysqli->close();
77. return $out;
78. }
79.  
80. function addInvoice($InvNum,$InvDate,$InvSchool,$InvCust,$InvInst,$InvMemo,$PO) {
81. $mysqli = connect();
82. $stmt = $mysqli->prepare('INSERT INTO tbl_invoice
83. (invoice_num, invoice_date, invoice_school, invoice_cust, invoice_inst, invoice_memo,PO) VALUES (?,?,?,?,?,?,?)');
84. $stmt->bind_param('isdddsi',$InvNum,$InvDate,$InvSchool,$InvCust,$InvInst,$InvMemo,$PO);
85. $stmt->execute();
86. $stmt->close();
87. $mysqli->close();
88. $addInvoiceYes = '<h1 class="text-success">Invoice successfully added!</h1>';
89. return $addInvoiceYes;
90. }
91.  
92.  
93. function addPO($InvNum,$InvDate,$InvInst,$InvMemo,$PO) {
94. $mysqli = connect();
95. $no = 0;
96. $stmt = $mysqli->prepare('INSERT INTO tbl_invoice
97. (invoice_num, invoice_date, invoice_school, invoice_cust, invoice_inst, invoice_memo,PO) VALUES (?,?,?,?,?,?,?)');
98. $stmt->bind_param('isiidsi',$InvNum,$InvDate,$no,$no,$InvInst,$InvMemo,$PO);
99. $stmt->execute();
100. $stmt->close();
101. $mysqli->close();
102. $addInvoiceYes = '<h1 class="text-success">Invoice successfully added!</h1>';
103. return $addInvoiceYes;
104. }
105.  
106. ?>