WebSVN – php_library – Diff – /trunk/library.php

    Revision 10 - 20090115 - R. W. Rodolico
    Modified editData routine to grab display query from table definition if key field not defined in complex join definition
 */
-   define('REVISION', '2.18');
+   const REVISION = '2.18';
-   define( 'HTML_QUOTE_CHAR', '"' );
+   const HTML_QUOTE_CHAR = '"' ;
-   define( 'CONSTANT_NO_VALUE_DROPDOWN', '--------' );
+   const CONSTANT_NO_VALUE_DROPDOWN = '--------' ;
+   // following field types are numeric (with length)
+   const NUMERICS = [
+         'BIT'=> 16,
+         'TINYINT'=> 1,
+         'BOOL'=> 1,
+         'SMALLINT'=> 2,
+         'MEDIUMINT'=> 9,
+         'INTEGER'=> 3,
+         'BIGINT'=> 8,
+         'SERIAL'=> 8,
+         'FLOAT'=> 4,
+         'DOUBLE'=> 5,
+         'DECIMAL'=> 246,
+         'NUMERIC'=> 246,
+         'FIXED'=> 246
+      ];
+   // the following are the type names which are dates (with length)
+   const DATES = [
+         'DATE'=> 10,
+         'DATETIME'=> 12,
+         'TIMESTAMP'=> 7,
+         'TIME'=> 11,
+         'YEAR'=> 13
+      ];
    $LOGIN_PAGE = 'login.html';
    function getParameter( $parameterName, $default = '' ) {
       if (isset($_POST[$parameterName])) {
          return false;
+      }
+   }
 */
    function makeSafeSQLValue ( $value, $type='S' ) {
+      global $databaseConnection;
       if (strlen($value) == 0) { // simply set any empty values to null
          return 'null';
+      }
-      if(get_magic_quotes_gpc()) {
+      //if(get_magic_quotes_gpc()) {
-           $value = stripslashes($value);
+      //     $value = stripslashes($value);
-       }
+      // }
-      $value = mysql_real_escape_string( $value );
+      $value = mysqli_real_escape_string( $databaseConnection,$value );
       if (($type == 'S') and strlen($value)  > 0) { // put quotes around strings
          $value = "'" . $value . "'";
       } elseif ($type == 'D') {
          if ( $result = strtotime( $value ) ) {
             $value = Date( 'Y-m-d', $result);
    creates audit trail of modifications to the database
 */
    function audit ($sql ) {
       return ;
       $query = 'insert into _audit (_audit.user_id,_audit.sql) values ( ' . $_SESSION['worker_id'] . ', ' . makeSafeSQLValue($sql) . ')';
+      doSQL( $query );
-      mysql_query( $query );
+      #mysql_query( $query );
-      if( mysql_errno() ) {
+      #if( mysql_errno() ) {
-         $error = 'MYSQL ERROR #'.mysql_errno().' : <small>' . mysql_error(). "</small><br><VAR>$query</VAR>";
+      #   $error = 'MYSQL ERROR #'.mysql_errno().' : <small>' . mysql_error(). "</small><br><VAR>$query</VAR>";
-         echo($error);
+      #   echo($error);
-      }
+      #}
+   }
    /*
       Taken from comments at http://www.php.net/manual/en/function.mysql-query.php
                'length' maximum width of the column FOR THIS QUERY
                'numeric'true if the column is numeric
                'type'   type of the column (database dependant)
    */
+   /* Modified for mysqli. Uses a global variable, $databaseConnection, which must exist */
-      function queryDatabaseExtended($query,$assoc=1,$showErrors=true) {
+   function queryDatabaseExtended($query,$assoc=1,$showErrors=true) {
+      global $databaseConnection;
       // print "<pre>In Query database\n---------------------\n$query\n---------------------\n</pre>";
       printLog( $query );
       // we use the @ symbol to suppress warnings and errors when calling mysql_query
-      $r = @mysql_query($query);
+      $r = @mysqli_query($databaseConnection,$query);
-      if( mysql_errno() ) {
+      if( mysqli_errno($databaseConnection) ) {
-         $error = 'MYSQL ERROR #'.mysql_errno().' : <small>' . mysql_error(). "</small><br><VAR>$query</VAR>";
+         $error = 'MYSQL ERROR #'.mysqli_errno($databaseConnection).' : <small>' . mysqli_error($databaseConnection). "</small><br><VAR>$query</VAR>";
          if ( $showErrors ) echo($error);
          return FALSE;
+      }
       if( ! preg_match ( '/^\s*select/i', $query ) ) {
-         $f = array( 'affected_rows' => mysql_affected_rows(),'insert_id' => mysql_insert_id());
+         $f = array( 'affected_rows' => mysqli_affected_rows($databaseConnection),'insert_id' => mysqli_insert_id($databaseConnection));
          // create audit trail
          audit($query);
          return $f;
+      }
-      $count = @mysql_num_rows($r);
+      $count = @mysqli_num_rows($r);
       $fieldMeta = array();
+      $i = 0;
-      while ($i++ < mysql_num_fields($r)) {
+      while ($i++ < mysqli_num_fields($r)) {
-         $meta = mysql_fetch_field ( $r );
+         $meta = mysqli_fetch_field ( $r );
          //objectDebugScreen($meta);
-         $fieldMeta[] = array('name' => $meta->name, 'length' => $meta->max_length, 'numeric' => $meta->numeric, 'type' => $meta->type );
+         $fieldMeta[] = array('name' => $meta->name, 'length' => $meta->max_length, 'numeric' => array_key_exists( $meta->type, NUMERICS ), 'date' => array_key_exists( $meta->type, DATES ), 'type' => $meta->type );
+      }
       if( ! $count ) return '';
       $all = array();
       for( $i = 0; $i < $count; $i++ ) {
-        if( $assoc ) $f = mysql_fetch_assoc($r);
+        if( $assoc ) $f = mysqli_fetch_assoc($r);
-        else $f = mysql_fetch_row($r);
+        else $f = mysqli_fetch_row($r);
         $all[] = $f;
+      }
-      mysql_free_result($r);
+      mysqli_free_result($r);
       return array( 'meta' => $fieldMeta, 'data' => $all, 'count' => $count);
    } // function queryDatabaseExtended
    // function returns the first column of the first row of data returned from query

Subversion Repositories php_library

(root)/trunk/library.php – Rev 55 → 58