gilour

Back Back Up Normal Editor

<?php use phpformbuilder\Form; use phpformbuilder\Validator\Validator; use phpformbuilder\database\DB; use common\Utils; use secure\Secure; include_once ADMIN_DIR . 'secure/class/secure/Secure.php'; $debug_content = ''; /* ============================================= validation if posted ============================================= */ if ($_SERVER["REQUEST_METHOD"] == "POST" && Form::testToken('form-edit-competency') === true) { $validator = Form::validate('form-edit-competency', FORMVALIDATION_PHP_LANG); $validator->required()->validate('name'); $validator->maxLength(100)->validate('name'); $validator->maxLength(100)->validate('nama'); $validator->required()->validate('type_id'); $validator->integer()->validate('type_id'); $validator->min(-99999999999)->validate('type_id'); $validator->max(99999999999)->validate('type_id'); $validator->required()->validate('field_id'); $validator->integer()->validate('field_id'); $validator->min(-99999999999)->validate('field_id'); $validator->max(99999999999)->validate('field_id'); $validator->maxLength(255)->validate('description'); $validator->maxLength(255)->validate('penerangan'); // check for errors if ($validator->hasErrors()) { $_SESSION['errors']['form-edit-competency'] = $validator->getAllErrors(); } else { require_once CLASS_DIR . 'phpformbuilder/database/db-connect.php'; require_once CLASS_DIR . 'phpformbuilder/database/DB.php'; $db = new DB(DEBUG); $db->setDebugMode('register'); $values = array(); $values['name'] = $_POST['name']; $values['nama'] = $_POST['nama']; if (is_array($_POST['type_id'])) { $json_values = json_encode($_POST['type_id'], JSON_UNESCAPED_UNICODE); $values['type_id'] = $json_values; } else { $values['type_id'] = intval($_POST['type_id']); if ($values['type_id'] < 1) { $values['type_id'] = null; } } if (is_array($_POST['field_id'])) { $json_values = json_encode($_POST['field_id'], JSON_UNESCAPED_UNICODE); $values['field_id'] = $json_values; } else { $values['field_id'] = intval($_POST['field_id']); if ($values['field_id'] < 1) { $values['field_id'] = null; } } $values['description'] = $_POST['description']; $values['penerangan'] = $_POST['penerangan']; $where = $_SESSION['competency_editable_primary_keys']; // begin transaction $db->transactionBegin(); try { // update competency if (DEMO !== true && !$db->update('competency', $values, $where, DEBUG_DB_QUERIES)) { $error = $db->error(); throw new \Exception($error); } else { // ALL OK if (!DEBUG_DB_QUERIES) { $db->transactionCommit(); $_SESSION['msg'] = Utils::alert(UPDATE_SUCCESS_MESSAGE, 'alert-success has-icon'); // reset form values Form::clear('form-edit-competency'); // redirect to list page if (isset($_SESSION['active_list_url'])) { header('Location:' . $_SESSION['active_list_url']); } else { header('Location:' . ADMIN_URL . 'competency'); } // if we don't exit here, $_SESSION['msg'] will be unset exit(); } else { $debug_content .= $db->getDebugContent(); $db->transactionRollback(); $_SESSION['msg'] = Utils::alert(UPDATE_SUCCESS_MESSAGE . ' (' . DEBUG_DB_QUERIES_ENABLED . ')', 'alert-success has-icon'); } } } catch (\Exception $e) { $db->transactionRollback(); $msg_content = DB_ERROR; if (DEBUG) { $msg_content .= ' ' . $e->getMessage() . ' ' . $db->getLastSql(); } $_SESSION['msg'] = Utils::alert($msg_content, 'alert-danger has-icon'); } } // END else } // END if POST // register editable primary keys, which are NOT posted and will be the query update filter // $params come from data-forms.php // replace 'fieldname' with 'table.fieldname' to avoid ambigous query $where_params = array_combine( array_map(function ($k) { return 'competency.' . $k; }, array_keys($params)), $params ); $_SESSION['competency_editable_primary_keys'] = $where_params; if (!isset($_SESSION['errors']['form-edit-competency']) || empty($_SESSION['errors']['form-edit-competency'])) { // If no error registered $from = 'competency LEFT JOIN field ON competency.field_id=field.id LEFT JOIN competency_type ON competency.type_id=competency_type.id'; $columns = 'competency.id, competency.name, competency.nama, competency.type_id, competency.field_id, competency.description, competency.penerangan'; $where = $_SESSION['competency_editable_primary_keys']; // if restricted rights if (ADMIN_LOCKED === true && Secure::canUpdateRestricted('competency')) { $where = array_merge($where, Secure::getRestrictionQuery('competency')); } $db = new DB(DEBUG); $db->setDebugMode('register'); $db->select($from, $columns, $where, array(), DEBUG_DB_QUERIES); if ($db->rowCount() < 1) { if (DEBUG) { exit($db->getLastSql() . ' : No Record Found'); } else { exit('No Record Found'); } } if (DEBUG_DB_QUERIES) { $debug_content .= $db->getDebugContent(); } $row = $db->fetch(); $_SESSION['form-edit-competency']['id'] = $row->id; $_SESSION['form-edit-competency']['name'] = $row->name; $_SESSION['form-edit-competency']['nama'] = $row->nama; $_SESSION['form-edit-competency']['type_id'] = $row->type_id; $_SESSION['form-edit-competency']['field_id'] = $row->field_id; $_SESSION['form-edit-competency']['description'] = $row->description; $_SESSION['form-edit-competency']['penerangan'] = $row->penerangan; } // $params come from data-forms.php $pk_url_params = http_build_query($params, '', '/'); $form = new Form('form-edit-competency', 'horizontal', 'novalidate'); $form->setAction(ADMIN_URL . 'competency/edit/' . $pk_url_params); $form->startFieldset(); // id -- $form->setCols(2, 10); $form->addInput('hidden', 'id', ''); // name -- $form->setCols(2, 10); $form->addInput('text', 'name', '', 'Name', 'required'); // nama -- $form->addInput('text', 'nama', '', 'Nama', ''); // type_id -- $from = 'competency_type'; $columns = 'competency_type.id, competency_type.name'; $where = array(); $extras = array( 'select_distinct' => true, 'order_by' => 'competency_type.name' ); // restrict if relationship table is the users table OR if the relationship table is used in the restriction query if (ADMIN_LOCKED === true && Secure::canCreateRestricted('competency')) { $secure_restriction_query = Secure::getRestrictionQuery('competency'); if (!empty($secure_restriction_query)) { if ('competency_type' == USERS_TABLE) { $restriction_query = 'competency_type.id = ' . $_SESSION['secure_user_ID']; $where[] = $restriction_query; } elseif (preg_match('/competency_type\./', $secure_restriction_query[0])) { $restriction_query = 'competency' . $secure_restriction_query[0]; $where[] = $restriction_query; } } } // default value if no record exist $value = ''; $display_value = ''; $db = new DB(DEBUG); $db->setDebugMode('register'); $db->select($from, $columns, $where, $extras, DEBUG_DB_QUERIES); if (DEBUG_DB_QUERIES) { $debug_content .= $db->getDebugContent(); } $db_count = $db->rowCount(); if (!empty($db_count)) { while ($row = $db->fetch()) { $value = $row->id; $display_value = $row->name; if ($db_count > 1) { $form->addOption('type_id', $value, $display_value); } } } if ($db_count > 1) { $form->addSelect('type_id', 'Type', 'required, data-slimselect=true'); } else { // for display purpose $form->addInput('text', 'type_id-display', $display_value, 'Type', 'readonly'); // for send purpose $form->addInput('hidden', 'type_id', $value); } // field_id -- $from = 'field'; $columns = 'field.id, field.name'; $where = array(); $extras = array( 'select_distinct' => true, 'order_by' => 'field.name' ); // restrict if relationship table is the users table OR if the relationship table is used in the restriction query if (ADMIN_LOCKED === true && Secure::canCreateRestricted('competency')) { $secure_restriction_query = Secure::getRestrictionQuery('competency'); if (!empty($secure_restriction_query)) { if ('field' == USERS_TABLE) { $restriction_query = 'field.id = ' . $_SESSION['secure_user_ID']; $where[] = $restriction_query; } elseif (preg_match('/field\./', $secure_restriction_query[0])) { $restriction_query = 'competency' . $secure_restriction_query[0]; $where[] = $restriction_query; } } } // default value if no record exist $value = ''; $display_value = ''; $db = new DB(DEBUG); $db->setDebugMode('register'); $db->select($from, $columns, $where, $extras, DEBUG_DB_QUERIES); if (DEBUG_DB_QUERIES) { $debug_content .= $db->getDebugContent(); } $db_count = $db->rowCount(); if (!empty($db_count)) { while ($row = $db->fetch()) { $value = $row->id; $display_value = $row->name; if ($db_count > 1) { $form->addOption('field_id', $value, $display_value); } } } if ($db_count > 1) { $form->addSelect('field_id', 'Field', 'required, data-slimselect=true'); } else { // for display purpose $form->addInput('text', 'field_id-display', $display_value, 'Field', 'readonly'); // for send purpose $form->addInput('hidden', 'field_id', $value); } // description -- $form->addInput('text', 'description', '', 'Description', ''); // penerangan -- $form->addInput('text', 'penerangan', '', 'Penerangan', ''); $form->addBtn('button', 'cancel', 0, '' . CANCEL, 'class=btn btn-warning, data-ladda-button=true, data-style=zoom-in, onclick=history.go(-1)', 'btn-group'); $form->addBtn('submit', 'submit-btn', 1, SUBMIT . '', 'class=btn btn-success, data-ladda-button=true, data-style=zoom-in', 'btn-group'); $form->setCols(0, 12); $form->centerContent(); $form->printBtnGroup('btn-group'); $form->endFieldset(); $form->addPlugin('pretty-checkbox', '#form-edit-competency'); $form->addPlugin('formvalidation', '#form-edit-competency', 'default', array('language' => FORMVALIDATION_JAVASCRIPT_LANG));