CMXX - Update whereclause get/post

api/v1/get/accounts.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v1/get/application.php

@@ -30,7 +30,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 //------------------------------------------
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v1/get/cartests.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v1/get/communications.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2('communications',$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2('communications',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/equipment_data.php

@@ -15,7 +15,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v1/get/equipments.php

@@ -16,7 +16,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v1/get/partners.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2('partners',$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2('partners',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/products.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/products_software.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/products_versions.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/profile.php

@@ -12,7 +12,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('profile',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('profile',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/get/users.php

@@ -12,7 +12,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('profile',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('profile',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v1/post/accounts.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v1/post/communications.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v1/post/contracts.php

@@ -16,7 +16,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['rowID'] ?? ''; //check for rowID

api/v1/post/equipments.php

@@ -16,7 +16,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['rowID'] ?? ''; //check for rowID

api/v1/post/partners.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause to check if data is owned by user
-list($whereclause,$condition) = getWhereclauselvl2('partners',$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2('partners',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['partnerID'] ?? ''; //check for rowID

api/v1/post/products.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v1/post/products_software.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //ENSURE PRODUCTROWID IS SEND

api/v1/post/products_versions.php

@@ -14,7 +14,7 @@ $post_content = json_decode(decode_payload($input),true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //ENSURE PRODUCTROWID IS SEND

api/v1/post/users.php

@@ -15,7 +15,7 @@ $owner_user = 0;
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause to check if data is owned by user
-list($whereclause,$condition) = getWhereclause('profile',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('profile',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/get/accounts.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v2/get/cartests.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v2/get/categories.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/discounts.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("discounts",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("discounts",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/equipment_data.php

@@ -15,7 +15,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v2/get/equipment_healthindex.php

@@ -15,7 +15,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v2/get/equipments.php

@@ -15,7 +15,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //------------------------------------------
 //NEW ARRAY

api/v2/get/invoice.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("invoice",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("invoice",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/media.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/pricelists.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('pricelist',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('pricelist',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/pricelists_items.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_attributes.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_attributes_items.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("attributes",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("attributes",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_categories.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_configurations.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("config",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("config",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_software.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("software",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("software",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/products_versions.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/rma.php

@@ -11,7 +11,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v2/get/rma_history.php

@@ -11,7 +11,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 
 //NEW ARRAY

api/v2/get/shipping.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/taxes.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/transactions.php

@@ -12,7 +12,7 @@ $pdo = dbConnect($dbname);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("transactions",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("transactions",$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/transactions_items.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/translations.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/translations_details.php

@@ -14,7 +14,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/get/users.php

@@ -12,7 +12,7 @@ $partner = json_decode($partnerhierarchy);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('profile',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('profile',$permission,$partner,'get');
 
 //NEW ARRAY
 $criterias = [];   

api/v2/post/accounts.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('equipment',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['rowID'] ?? ''; //check for rowID

api/v2/post/categories.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclauselvl2("categories",$permission,$partner);
+list($whereclause,$condition) = getWhereclauselvl2("categories",$permission,$partner,'');
 
 
 //BUILD UP PARTNERHIERARCHY FROM USER

api/v2/post/contracts.php

@@ -16,7 +16,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['rowID'] ?? ''; //check for rowID

api/v2/post/discounts.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //BUILD UP PARTNERHIERARCHY FROM USER

api/v2/post/equipments.php

@@ -16,7 +16,7 @@ if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} el
 //default whereclause
 $whereclause = '';
 
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 //SET PARAMETERS FOR QUERY
 $id = $post_content['rowID'] ?? ''; //check for rowID

api/v2/post/invoice.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/media.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/pricelists.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/pricelists_items.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/products.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/products_attributes.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/products_attributes_items.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/products_categories.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 //CHECK IF PRODUCT ID IS SEND
 if (isset($post_content['product_id']) && $post_content['product_id'] != ''){

api/v2/post/products_configurations.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //ENSURE PRODUCTROWID IS SEND

api/v2/post/products_software.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //ENSURE PRODUCTROWID IS SEND

api/v2/post/products_versions.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //ENSURE PRODUCTROWID IS SEND

api/v2/post/shipping.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //BUILD UP PARTNERHIERARCHY FROM USER

api/v2/post/transactions.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //WEBSHOP UPDATE CAN SEND TXN_ID ONLY

api/v2/post/translations.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

api/v2/post/translations_details.php

@@ -14,7 +14,7 @@ $post_content = json_decode($input,true);
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY
@@ -70,7 +70,9 @@ if ($command == 'update' && isAllowed('translation_manage',$profile,$permission,
     $sql = 'UPDATE text_variables_translations SET '.$clause.' WHERE rowID = ? '.$whereclause.'';
     $execute_input[] = $id;
     $stmt = $pdo->prepare($sql);
+    $stmt->debugDumpParams();
     $stmt->execute($execute_input);
+   
 } 
 elseif ($command == 'insert' && isAllowed('translation_manage',$profile,$permission,'C') === 1){
     $sql = 'INSERT INTO text_variables_translations ('.$clause_insert.') VALUES ('.$input_insert.')';

api/v2/post/users.php

@@ -15,7 +15,7 @@ $owner_user = 0;
 if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
 //default whereclause
-list($whereclause,$condition) = getWhereclause('profile',$permission,$partner);
+list($whereclause,$condition) = getWhereclause('profile',$permission,$partner,'');
 
 
 //SET PARAMETERS FOR QUERY

assets/functions.php

@@ -695,7 +695,7 @@ function ioAPIv2($api_call, $data, $token){
 // DEFINE WHERECLAUSE BASED ON ACCOUNTHIERARCHY ALL
 //------------------------------------------
 
-function getWhereclause($table_name,$permission,$partner){
+function getWhereclause($table_name,$permission,$partner,$method){
 
   //api_name converter to table
   $table =[
@@ -704,7 +704,7 @@ function getWhereclause($table_name,$permission,$partner){
   ];
 
   $table = ($table_name != '') ? $table[$table_name] : 'accounthierarchy';
-
+  $type = ($method == 'get') ? 'WHERE ' : ''; 
   //SoldTo is empty
   if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
 
@@ -717,15 +717,15 @@ function getWhereclause($table_name,$permission,$partner){
           break;
       case '3':
           $condition = '__salesid___'.$partner->salesid.'___soldto___%';
-          $whereclause = 'WHERE '.$table.' like "'.$condition.'"';
+          $whereclause = $type.$table.' like "'.$condition.'"';
           break;
       case '2':
           $condition = '__salesid___'.$partner->salesid.'___soldto___'.substr($partner->soldto, 0, strpos($partner->soldto, "-")).$soldto_search;
-          $whereclause = 'WHERE '.$table.' like "'.$condition.'"';
+          $whereclause = $type.$table.' like "'.$condition.'"';
           break;
       default:
           $condition = '__salesid___'.$partner->salesid.'___soldto___'.substr($partner->soldto, 0, strpos($partner->soldto, "-")).$soldto_search.'___shipto___'.substr($partner->shipto, 0, strpos($partner->shipto, "-")).'%___location___'.substr($partner->location, 0, strpos($partner->location, "-")).'%';
-          $whereclause = 'WHERE '.$table.' like "'.$condition.'"';
+          $whereclause = $type.$table.' like "'.$condition.'"';
           break;
   } 
 
@@ -735,7 +735,7 @@ function getWhereclause($table_name,$permission,$partner){
 //------------------------------------------
 // DEFINE WHERECLAUSE BASED ON ACCOUNTHIERARCHY SALES AND SOLD
 //------------------------------------------
-function getWhereclauselvl2($table_name,$permission,$partner){
+function getWhereclauselvl2($table_name,$permission,$partner,$method){
 
   //api_name converter to table
   $table =[
@@ -752,6 +752,7 @@ function getWhereclauselvl2($table_name,$permission,$partner){
   ];
 
   $table = ($table_name != '') ? $table[$table_name] : 'accounthierarchy';
+  $type = ($method == 'get') ? 'WHERE ' : ''; 
   
   //SoldTo is empty
   if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
@@ -765,11 +766,11 @@ function getWhereclauselvl2($table_name,$permission,$partner){
         break;
     case '3':
         $condition = '__salesid___'.$partner->salesid.'___soldto___%';
-        $whereclause = 'WHERE '.$table.' like "'.$condition.'" ';
+        $whereclause = $type.$table.' like "'.$condition.'" ';
         break;  
     default:
         $condition = '__salesid___'.$partner->salesid.'___soldto___'.substr($partner->soldto, 0, strpos($partner->soldto, "-")).$soldto_search;
-        $whereclause = 'WHERE '.$table.' like "'.$condition.'"';
+        $whereclause = $type.$table.' like "'.$condition.'"';
         break;
 } 
 

translation_manage.php

@@ -66,7 +66,9 @@ if (isset($_GET['rowID'])) {
             if ($responses === 'NOK'){
 
             } else {
-                generateLanguageFile($_POST['language_key'],$_SESSION['userkey']);
+                if ($_SESSION['permission'] == 4){
+                    generateLanguageFile($_POST['language_key'],$_SESSION['userkey']);
+                }
                 header('Location: index.php?page=translation_manage&rowID='.$_GET['rowID'].'');
             exit;
             }
@@ -79,9 +81,10 @@ if (isset($_GET['rowID'])) {
             //RUN through all POST items
             foreach ($_POST['item'] as $attr){
                 
+                
                 //GET ALL POST DATA
                 $payload = json_encode($attr, JSON_UNESCAPED_UNICODE);
-
+                var_dump($payload);
                 //API call
                 $responses = ioServer('/v2/translations_details', $payload);
 
@@ -96,11 +99,13 @@ if (isset($_GET['rowID'])) {
 
             if ($NOK_error == 0){
                 //NO errors generatelanguagefile
-                generateLanguageFile($attr_language,$_SESSION['userkey']);
+                if ($_SESSION['permission'] == 4){
+                    generateLanguageFile($attr_language,$_SESSION['userkey']);
+                }
             }
 
-            header('Location: index.php?page=translation_manage&rowID='.$_GET['rowID'].'');
-            exit;
+            //header('Location: index.php?page=translation_manage&rowID='.$_GET['rowID'].'');
+            //exit;
         }
     }