247 lines
8.2 KiB
PHP
247 lines
8.2 KiB
PHP
<?php
|
|
defined($security_key) or exit;
|
|
|
|
//------------------------------------------
|
|
// Equipment_data
|
|
//------------------------------------------
|
|
|
|
//Connect to DB
|
|
$pdo = dbConnect($dbname);
|
|
|
|
//Get user_rights from users.php
|
|
$partner = json_decode($partnerhierarchy);
|
|
|
|
//SoldTo is empty
|
|
if (empty($partner->soldto) || $partner->soldto == ''){$soldto_search = '%';} else {$soldto_search = '-%';}
|
|
|
|
//default whereclause
|
|
$whereclause = '';
|
|
|
|
switch ($permission) {
|
|
case '4':
|
|
$whereclause = '';
|
|
break;
|
|
case '3':
|
|
$whereclause = '';
|
|
break;
|
|
case '2':
|
|
$condition = '__salesid___'.$partner->salesid.'___soldto___'.substr($partner->soldto, 0, strpos($partner->soldto, "-")).$soldto_search;
|
|
$whereclause = 'WHERE e.accounthierarchy like :condition ';
|
|
break;
|
|
default:
|
|
$condition = '__salesid___'.$partner->salesid.'___soldto___'.substr($partner->soldto, 0, strpos($partner->soldto, "-")).$soldto_search.'___shipto___'.substr($partner->shipto, 0, strpos($partner->shipto, "-")).'%___location___'.substr($partner->location, 0, strpos($partner->location, "-")).'%';
|
|
$whereclause = 'WHERE e.accounthierarchy like :condition ';
|
|
break;
|
|
}
|
|
//------------------------------------------
|
|
//NEW ARRAY
|
|
//------------------------------------------
|
|
$criterias = [];
|
|
$clause = '';
|
|
|
|
//------------------------------------------
|
|
//Check for $_GET variables and build up clause
|
|
//------------------------------------------
|
|
if(isset($get_content) && $get_content!=''){
|
|
//GET VARIABLES FROM URL
|
|
$requests = explode("&", $get_content);
|
|
//Check for keys and values
|
|
foreach ($requests as $y){
|
|
$v = explode("=", $y);
|
|
//INCLUDE VARIABLES IN ARRAY
|
|
$criterias[$v[0]] = $v[1];
|
|
if ($v[0] == 'page' || $v[0] =='p' || $v[0] =='products' || $v[0] =='totals' || $v[0] =='history' || $v[0] =='success_msg' || $v[0] =='download' || $v[0] =='sort'){
|
|
//do nothing
|
|
}
|
|
elseif ($v[0] == 'serialnumber') {
|
|
//build up serialnumber
|
|
//check if multiple serialnumbers are provided
|
|
if (str_contains($v[1], ',')){
|
|
$inputs = explode(",",$v[1]);
|
|
$new_querystring = ''; //empty querystring
|
|
$x=0;
|
|
foreach($inputs as $input){
|
|
//create key
|
|
$new_key = $v[0].'_'.$x;
|
|
//inject new key/value to array
|
|
$criterias[$new_key] = $input;
|
|
$new_querystring .= ':'.$new_key.',';
|
|
$x++;
|
|
}
|
|
//remove obsolete last character from new_querystring
|
|
$new_querystring = substr($new_querystring,0, -1);
|
|
//add new_querystring to clause
|
|
$clause .= ' AND e.serialnumber IN ('.$new_querystring.')';
|
|
//remove original key/value from array
|
|
unset($criterias[$v[0]]);
|
|
}
|
|
else {
|
|
$clause .= ' AND e.serialnumber IN (:'.$v[0].')';
|
|
}
|
|
}
|
|
elseif ($v[0] == 'status') {
|
|
//Update status based on status
|
|
$clause .= ' AND e.'.$v[0].' = :'.$v[0];
|
|
$status = $v[1];
|
|
}
|
|
elseif ($v[0] == 'search') {
|
|
//build up search
|
|
$clause .= ' AND (e.serialnumber like :'.$v[0].' OR ed1.equipmentid like :'.$v[0].')';
|
|
}
|
|
elseif ($v[0] == 'partnerid') {
|
|
//build up accounthierarchy
|
|
$clause .= ' AND e.accounthierarchy like :'.$v[0];
|
|
}
|
|
elseif ($v[0] == 'rowid') {
|
|
//build up search
|
|
$clause .= ' AND ed.rowID = :'.$v[0];
|
|
}
|
|
elseif ($v[0] == 'servicedate') {
|
|
//build up service coverage
|
|
$clause .= ' AND e.service_date <= :'.$v[0];
|
|
}
|
|
elseif ($v[0] == 'warrantydate') {
|
|
//build up warranty coverage
|
|
$clause .= ' AND e.warranty_date >= :'.$v[0];
|
|
}
|
|
else {//create clause
|
|
$clause .= ' AND '.$v[0].' = :'.$v[0];
|
|
}
|
|
}
|
|
if ($whereclause == '' && $clause !=''){
|
|
$whereclause = 'WHERE '.substr($clause, 4);
|
|
} else {
|
|
$whereclause .= $clause;
|
|
}
|
|
}
|
|
|
|
|
|
if (isset($criterias['totals']) && $criterias['totals'] ==''){
|
|
//Request for total rows
|
|
$sql = 'SELECT count(*) as count FROM products p JOIN equipment e ON p.rowID = e.productrowid JOIN equipment_data ed1 ON e.rowID = ed1.equipmentid LEFT JOIN equipment_data ed2 ON (ed1.equipmentid = ed2.equipmentid AND ed1.rowID < ed2.rowID) '.$whereclause.' AND ed2.rowID IS NULL';
|
|
}
|
|
else {
|
|
|
|
// GET SORT INDICATOR
|
|
$sort_indicator = $criterias['sort'] ?? '';
|
|
|
|
/*
|
|
1 accounthierarchy ASC
|
|
2 accounthierarchy DESC
|
|
3 Status ASC
|
|
4 Status DESC
|
|
5 Warranty ASC
|
|
6 Warranty DESC
|
|
7 Service ASC
|
|
8 Service DESC
|
|
9 Healthindex ASC
|
|
10 Healthindex DESC
|
|
*/
|
|
|
|
switch ($sort_indicator){
|
|
case 1:
|
|
$sort = ' e.accounthierarchy ASC ';
|
|
break;
|
|
case 2:
|
|
$sort = ' e.accounthierarchy DESC ';
|
|
break;
|
|
case 3:
|
|
$sort = ' e.status ASC ';
|
|
break;
|
|
case 4:
|
|
$sort = ' e.status DESC ';
|
|
break;
|
|
case 5:
|
|
$sort = ' e.warranty_date ASC ';
|
|
break;
|
|
case 6:
|
|
$sort = ' e.warranty_date DESC ';
|
|
break;
|
|
case 7:
|
|
$sort = ' e.service_date ASC ';
|
|
break;
|
|
case 8:
|
|
$sort = ' e.service_date DESC ';
|
|
break;
|
|
case 9:
|
|
$sort = ' ed1.healthindex DESC ';
|
|
break;
|
|
case 10:
|
|
$sort = ' ed1.healthindex ASC ';
|
|
break;
|
|
default:
|
|
$sort = ' e.accounthierarchy ';
|
|
break;
|
|
}
|
|
|
|
//SQL for Paging
|
|
$sql ='SELECT p.productcode,p.productname,e.productrowid,e.created,e.status,e.accounthierarchy,e.serialnumber,e.hw_version,e.sw_version,e.service_date,e.warranty_date, e.order_ref,e.geolocation, ed1.* FROM products p JOIN equipment e ON p.rowID = e.productrowid JOIN equipment_data ed1 ON e.rowID = ed1.equipmentid LEFT JOIN equipment_data ed2 ON (ed1.equipmentid = ed2.equipmentid AND ed1.rowID < ed2.rowID) '.$whereclause.' AND ed2.rowID IS NULL ORDER BY '.$sort.' LIMIT :page,:num_products';
|
|
}
|
|
|
|
$stmt = $pdo->prepare($sql);
|
|
|
|
//------------------------------------------
|
|
//Bind to query
|
|
//------------------------------------------
|
|
|
|
if (str_contains($whereclause, ':condition')){
|
|
$stmt->bindValue('condition', $condition, PDO::PARAM_STR);
|
|
}
|
|
|
|
if (!empty($criterias)){
|
|
foreach ($criterias as $key => $value){
|
|
$key_condition = ':'.$key;
|
|
if (str_contains($whereclause, $key_condition)){
|
|
if ($key == 'search'){
|
|
$search_value = '%'.$value.'%';
|
|
$stmt->bindValue($key, $search_value, PDO::PARAM_STR);
|
|
}
|
|
elseif ($key == 'partnerid'){
|
|
$search_value = '%"_"'.$value.'-%';
|
|
$stmt->bindValue($key, $search_value, PDO::PARAM_STR);
|
|
}
|
|
elseif ($key == 'p'){
|
|
//Do nothing (bug)
|
|
}
|
|
else {
|
|
$stmt->bindValue($key, $value, PDO::PARAM_STR);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
//------------------------------------------
|
|
// Debuglog
|
|
//------------------------------------------
|
|
if (debug){
|
|
$message = $date.';'.$sql.';'.$username;
|
|
debuglog($message);
|
|
}
|
|
//------------------------------------------
|
|
//Add paging details
|
|
//------------------------------------------
|
|
if(isset($criterias['totals']) && $criterias['totals']==''){
|
|
$stmt->execute();
|
|
$messages = $stmt->fetch();
|
|
$messages = $messages[0];
|
|
}
|
|
else {
|
|
$current_page = isset($criterias['p']) && is_numeric($criterias['p']) ? (int)$criterias['p'] : 1;
|
|
$stmt->bindValue('page', ($current_page - 1) * $page_rows_equipment, PDO::PARAM_INT);
|
|
$stmt->bindValue('num_products', $page_rows_equipment, PDO::PARAM_INT);
|
|
//Excute Query
|
|
$stmt->execute();
|
|
//Get results
|
|
$messages = $stmt->fetchAll(PDO::FETCH_ASSOC);
|
|
}
|
|
|
|
//------------------------------------------
|
|
//JSON_EnCODE
|
|
//------------------------------------------
|
|
$messages = json_encode($messages, JSON_UNESCAPED_UNICODE);
|
|
//------------------------------------------
|
|
//Send results
|
|
//------------------------------------------
|
|
echo $messages;
|
|
|
|
?>
|