Subversion-Projekte lars-tiefland.content-management

<?php

    /**

     * @package   Content-management

     * @author    Webagentur Niewerth <tiefland@weban.de>

     * @copyright 2011 Webagentur Niewerth

     * @license   propietary http://www.weban.de

     * @version   $Rev: 3931 $

     * @filesource

     *

     */

    /**

     *

     * @package   Content-management

     * @author    Webagentur Niewerth <tiefland@weban.de>

     * @copyright 2011 Webagentur Niewerth

     */

    // SVN: $Id: lager.php 3931 2011-09-16 08:17:57Z tiefland $

    require_once "../toolbox/common.php";

    require_once "module/weban/weban_utils.class.php";

    $mode = Weban_Utils::clean_global_input( "mode" );

    $id = Weban_Utils::clean_global_input( "l_id", "post", "int" );

    $d_l_id = Weban_Utils::clean_global_input( "d_l_id", "post", "int" );

    $rang = Weban_Utils::clean_global_input( "l_rang", "post", "int" );

    $lieferant_id = Weban_Utils::clean_global_input( "l_lieferant_id",

        "post", "int" );

    $name = Weban_Utils::clean_global_input( "l_name" );

    $bestellbar = Weban_Utils::clean_global_input( "l_bestellbar", "post",

        "int" );

    if ( $rang == false )

    {

        $rang = 0;

    }

    switch ( $mode )

    {

        case "delete":

            $sql = "DELETE FROM

                        lieferanten_lager

                    WHERE

                        id=$d_l_id

                ";

            $res = mysql_query( $sql );

            break;

        case "save":

            $verf_codes = serialize( $_POST["code"] );

            $sql = "INSERT INTO

                    lieferanten_lager

                SET

                    name='" . $name . "',

                    rang=$rang,

                    lieferanten_id=" . $lieferant_id . ",

                    bestellbar=" . $bestellbar . ",

                    verf_codes='" . $verf_codes . "',

                    erstellt_am=NOW(),

                    erstellt_von='" . $_SERVER["PHP_AUTH_USER"] . "',

                    letzte_aenderung_von='" . $_SERVER["PHP_AUTH_USER"] . "'

            ";

            $res = mysql_query( $sql );

            break;

        case "update":

            foreach ( $_POST["code"] as $i => $code )

            {

                $_POST["code"][$i]["value"] = utf8_decode( $code["value"] );

            }

            $verf_codes = serialize( $_POST["code"] );

            $sql = "UPDATE

                    lieferanten_lager

                SET

                    name='" . $name . "',

                    rang=$rang,

                    bestellbar=" . $bestellbar . ",

                    verf_codes='" . $verf_codes . "',

                    letzte_aenderung_von='" . $_SERVER["PHP_AUTH_USER"] . "'

                WHERE

                    id=$id

            ";

            $res = mysql_query( $sql );

            exit;

            break;

        case "":

        case "edit":

            if ( $id )

            {

                $sql = "SELECT

                        *

                    FROM

                        lieferanten_lager

                    WHERE

                        id=$id

                ";

                $res = mysql_query( $sql );

                $row = mysql_fetch_assoc( $res );

                $row["verf_codes"] = unserialize( $row["verf_codes"] );

                $GLOBALS["ui"]->assign( "lager", $row );

            }

            $GLOBALS["ui"]->display( "lager_edit.tpl" );

            break;

    }

?>