<?php
/**
* @author Bettina Schwarzer, Fritz-Haber-Institut
* @copyright 07/2011
*
* UPDATE Produkt
*/
error_reporting(E_ALL ^ E_NOTICE);
session_start();
if (! isset($_SESSION["userid"]))
{
include_once ("inc/func_lib.inc.php");
login($_SERVER["PHP_SELF"]);
exit;
}
if (is_null($_SESSION["recht"]) || (!is_null($_SESSION["recht"]) && !in_array("pr",$_SESSION["recht"]) && !in_array("pe",$_SESSION["recht"])))
{
header("Location: start.php");
exit;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=iso-8859-1" />
<link href="css/db.css" rel="STYLESHEET" type="TEXT/CSS" />
<title>Aktualisieren Produkte</title>
</head>
<body>
<?php
echo " ";
echo "<div class=\"float-br smaller\" valign='top'>";
echo " user: " . $_SESSION["userid"];
echo " <a class='sc' href='/fhiiqm/logout.php' title='Session beenden'>logout</a></div>\n";
echo "<div class=\"float-r\"><img src=\"img/node-tree.png\" border=\"0\" alt=\"Produktdaten bearbeiten\" title=\"Produktdaten bearbeiten\"/></div>\n";
include_once($_SERVER['DOCUMENT_ROOT'] ."/fhiiqm/inc/dbconnect.inc.php");
$dbc = new dbconnection();
$pid = $_GET["uid"];
if (!$pid) $pid=1;
$ok = $_POST["ok"];
$submit = $_POST["upd"];
$prod = $_POST["prod"];
if (!$prod['okn']) $ok=false;
$getp = "?s=".$_GET["s"]."&b=".$_GET["b"]."&g=".$_GET["g"]; // Parameter zur Liste zurück
// echo "pid=$pid, submit=$submit<br />\n";
if (!$ok || !$submit)
{
if (!$submit)
{
$sql = "SELECT produkt_ID, prod_name, prod_group_ID, produkt_hier, rag_ID, imp_ID, conn_ID, Bemerkung FROM Produkt
WHERE produkt_ID = $pid";
if ($result = $dbc ->queryObjectArray($sql))
{
foreach ($result as $row)
{
$prod['pnr'] = $row->produkt_ID;
$prod['pname'] = $row->prod_name;
$prod['grp'] = $row->prod_group_ID;
$prod['ag'] = $row->rag_ID;
$prod['imp'] = $row->imp_ID;
$prod['conn'] = $row->conn_ID;
$prod['pbem'] = $row->Bemerkung;
}
}
}
include ("form/produkt_form.inc.php");
if ($submit)
{
$frage = "Alle Angaben ok?";
echo "<tr>
<td class=\"red\" valign=\"top\" align=\"left\">$frage</td>
<td align=\"left\"><input type=\"checkbox\" name=\"ok\" value=\"1\"";
if ($ok) echo "checked";
echo "></td>\n</tr>\n";
}
if (!is_null($_SESSION["recht"]) && in_array("pe",$_SESSION["recht"]))
{
echo "<tr>\n";
echo "
<td> </td>
<td align=\"left\"><input class=\"button\" type=\"submit\" value=\"ändern\" name=\"upd\" title=\"update\" /></td>\n";
echo "</tr>\n";
}
echo "</table>\n";
echo "</div>\n";
// if (!is_null($_SESSION["recht"]) && !in_array("pe",$_SESSION["recht"]))
echo "<p> <a href=\"prod_hier.php$getp\" target=\"_self\" title=\"Produkthierarchie\">« zur Produkthierarchie</a></p>\n";
echo "</form>\n";
}
else
{ // Daten o.k. -> speichern
echo "<div align='center'>\n";
$prod['pname'] = substr($prod['pname'],0,200);
if ($prod['pbem']) $prod['pbem']=substr($prod['pbem'],0,500); else $prod['pbem']=null;
if ($prod['ag']== -1) $prod['ag'] = null;
if ($prod['imp']== -1) $prod['imp'] = null;
if ($prod['conn']== -1) $prod['conn'] = null;
// Hierarchie ermitteln
$sql = "SELECT prod_ber_ID FROM Produkt_Gruppe WHERE prod_group_ID = " . $prod['grp'];
$bid = $dbc -> querySingleItem($sql);
$phier = $bid . "-" . $prod['grp'] . "-" . $prod['pnr'];
/*
if ($prod['pbem']) $prod['pbem']="'" . str_replace("'","\"",substr($prod['pbem'],0,500)) . "'"; else $prod['pbem']="NULL";
if ($prod['ag']== -1) $ag = "NULL"; else $ag = "'" . $prod['ag'] . "'";
if ($prod['imp']== -1) $prod['imp'] = "NULL";
if ($prod['conn']== -1) $prod['conn'] = "NULL";
$sql = "UPDATE Produkt SET
prod_name = '" . $prod['pname'] . "',
prod_group_ID = " . $prod['grp'] . ",
ag_ID = $ag,
imp_ID = " . $prod['imp'] . ",
conn_ID = " . $prod['conn'] . ",
Bemerkung = " . $prod['pbem'] . "
WHERE produkt_ID = $pid";
$ret = $dbc -> execute($sql);
*/
$stmt = $dbc -> stmtinit();
if (is_object($stmt))
{
$stmt -> prepare("UPDATE Produkt SET
prod_name = ?,
prod_group_ID = ?,
rag_ID = ?,
imp_ID = ?,
conn_ID = ?,
Bemerkung = ?
WHERE produkt_ID = $pid");
$stmt -> bind_param('sisiis', $prod['pname'],$prod['grp'],$prod['ag'],$prod['imp'],$prod['conn'],$prod['pbem']);
$ret = $stmt -> execute();
}
if (!$ret) echo "error update :" . $dbc -> error ."<br />
sql = $sql<br />\n";
else
{
echo "<p class='green'><b>Produktdaten zu ID '" . $prod['pnr'] . "' wurden erfolgreich gespeichert.</b></p>\n";
echo "<br /><br />\n";
// Anzeigen gespeicherter Produktdaten
include ("inc/produkt_dat_show.inc.php");
}
$dbc -> close();
echo "</div>\n";
echo "<p> <a href=\"prod_hier.php$getp\" target=\"_self\" title=\"Produkthierarchie\">Zur Produkthierarchie</a></p>\n";
echo "<p> <a href=\"produkt_ins.php\" target=\"_self\" title=\"Produkt erfassen\">Weiteres Produkt erfassen</a></p>\n";
}
?>
</body>
</html>