AstLoggerWeb/dictionaryModifyResult.php at master · upinget/AstLoggerWeb · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<html>
<head>
<title>Dictionary Modify Result</title>
<?php
include('config.php');
include_once('auditTrial.php');
session_start();
include('layoutjscss.php');
?>
</head>
<body>
	<div class="ui-layout-north">
	<?php
	include('header.php');
	?>
	</div>
	<div class="ui-layout-west">
	<?php
	include('dictionaryModifyForm.php');
	?>
	</div>
	<div class="ui-layout-center">
	<?php
	if($_SERVER["REQUEST_METHOD"] == "POST") {
		$formname=addslashes($_POST['formname']);
		if ($formname=="dictionaryModifyForm") {
			$id=addslashes($_POST['id']);
			if (strlen($id)) {
				// format the sql statement using the id field of the form
				$sql="SELECT id_id, id_name	FROM t_dictionary WHERE id_id='$id'";
				$result=mysql_query($sql);
				$row=mysql_fetch_array($result);
				if (mysql_num_rows($result)==1) {
					$id_id = $row['id_id'];
					$id_name = $row['id_name'];
					// format the form
					echo "<meta http-equiv=\"Content-type\" content=\"text/html; charset=utf-8\">";
					echo "<link rel=\"stylesheet\" href=\"libs/css/astlogger.css\">";
					echo "<form action=\"dictionaryModifyResult.php\" method=\"post\">";
					echo "<table>";
					echo "<tr>";
					echo "<td></td>";
					echo "<td></td>";
					echo "<td><input name=\"id\" type=\"hidden\" id=\"id\" value=\"";
					echo $id_id;
					echo "\"></td>";
					echo "</tr>";
					echo "<tr>";
					echo "<td>ID</td>";
					echo "<td>:</td>";
					echo "<td>$id_id</td>";
					echo "</tr>";
					echo "<tr>";
					echo "<td>Name</td>";
					echo "<td>:</td>";
					echo "<td><textarea name=\"name\" id=\"name\" rows=\"1\" cols=\"80\" >$id_name</textarea></td>";
					echo "</tr>";
					echo "<tr>";
					echo "<td></td>";
					echo "<td></td>";
					echo "<td><input name=\"formname\" type=\"hidden\" id=\"formname\" value=\"dictionaryModifyResult\" /></td>";
					echo "</tr>";
					echo "<tr>";
					echo "<td>&nbsp;</td>";
					echo "<td>&nbsp;</td>";
					echo "<td><input type=\"submit\" value=\"  Update  \"></td>";
					echo "</tr>";
					echo "</table>";
					echo "</form>";
				}
			}
		} else {
			// username and password sent from Form
			$id=addslashes($_POST['id']);
			$name=addslashes($_POST['name']);
			$sql = "UPDATE t_dictionary SET id_name='$name' WHERE id_id='$id'";
			$result=mysql_query($sql);
			$nRows = mysql_affected_rows();
			if ($nRows==1) {
				$_SESSION['s_systemMessage'] = "Modify dictionary $id successfully.";
				// audit trial
				$auditTrial = "modify dictionary $id successfully.";
				insertAuditTrial($auditTrial);
			} else {
				$_SESSION['s_systemMessage'] = "Modify dictionary $id failed.";
				// audit trial
				$auditTrial = "modify dictionary $id failed.";
				insertAuditTrial($auditTrial);
			}
			header("location: welcome.php?action=dictionarymodify");
		}
	}
	?>
	</div>
</body>
</html>