PageRenderTime 44ms CodeModel.GetById 17ms RepoModel.GetById 0ms app.codeStats 0ms

/inc/amfphp/Amfphp/Services/ec_admin_pricetiers.php

https://github.com/EmranAhmed/wp-easycart
PHP | 143 lines | 84 code | 18 blank | 41 comment | 21 complexity | f8a9b8eba4dda937acb6d168abaee9f2 MD5 | raw file
  1. <?php
  2. /*
  3. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
  4. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
  5. //All Code and Design is copyrighted by Level Four Development, llc
  6. //
  7. //Level Four Development, LLC provides this code "as is" without warranty of any kind, either express or implied,
  8. //including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.
  9. //
  10. //Only licnesed users may use this code and storfront for live purposes. All other use is prohibited and may be
  11. //subject to copyright violation laws. If you have any questions regarding proper use of this code, please
  12. //contact Level Four Development, llc and EasyCart prior to use.
  13. //
  14. //All use of this storefront is subject to our terms of agreement found on Level Four Development, llc's website.
  15. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
  16. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
  17. */
  18. class ec_admin_pricetiers
  19. {
  20. function ec_admin_pricetiers() {
  21. /*load our connection settings
  22. if( file_exists( '../../../../wp-easycart-data/connection/ec_conn.php' ) ) {
  23. require_once('../../../../wp-easycart-data/connection/ec_conn.php');
  24. } else {
  25. require_once('../../../connection/ec_conn.php');
  26. };*/
  27. //set our connection variables
  28. $dbhost = DB_HOST;
  29. $dbname = DB_NAME;
  30. $dbuser = DB_USER;
  31. $dbpass = DB_PASSWORD;
  32. global $wpdb;
  33. define ('WP_PREFIX', $wpdb->prefix);
  34. //make a connection to our database
  35. $this->conn = mysql_connect($dbhost, $dbuser, $dbpass);
  36. mysql_select_db ($dbname);
  37. mysql_query("SET CHARACTER SET utf8", $this->conn);
  38. mysql_query("SET NAMES 'utf8'", $this->conn);
  39. }
  40. //secure all of the services for logged in authenticated users only
  41. public function _getMethodRoles($methodName){
  42. if ($methodName == 'getpricetier') return array('admin');
  43. else if($methodName == 'updatepricetier') return array('admin');
  44. else if($methodName == 'deletepricetier') return array('admin');
  45. else if($methodName == 'addpricetier') return array('admin');
  46. else return null;
  47. }
  48. //HELPER - used to escape out SQL calls
  49. function escape($sql)
  50. {
  51. $args = func_get_args();
  52. foreach($args as $key => $val)
  53. {
  54. $args[$key] = mysql_real_escape_string($val);
  55. }
  56. $args[0] = $sql;
  57. return call_user_func_array('sprintf', $args);
  58. }
  59. //price tier functions
  60. function getpricetier($productid) {
  61. //Create SQL Query
  62. $sql = sprintf("SELECT ec_pricetier.* FROM ec_pricetier WHERE ec_pricetier.product_id = '%s' ORDER BY ec_pricetier.quantity ASC", mysql_real_escape_string($productid));
  63. $result = mysql_query($sql);
  64. //if results, convert to an array for use in flash
  65. if(mysql_num_rows($result) > 0) {
  66. while ($row=mysql_fetch_object($result)) {
  67. $returnArray[] = $row;
  68. }
  69. return($returnArray); //return array results if there are some
  70. } else {
  71. $returnArray[] = "noresults";
  72. return $returnArray; //return noresults if there are no results
  73. }
  74. }
  75. function updatepricetier($id, $price, $quantity) {
  76. //Create SQL Query
  77. $sql = $this->escape("UPDATE ec_pricetier SET ec_pricetier.price = '%s', ec_pricetier.quantity = '%s' WHERE ec_pricetier.pricetier_id = '%s'", $price, $quantity, $id);
  78. //Run query on database;
  79. mysql_query($sql);
  80. //if no errors, return their current Client ID
  81. //if results, convert to an array for use in flash
  82. if(!mysql_error()) {
  83. $returnArray[] ="success";
  84. return($returnArray); //return array results if there are some
  85. } else {
  86. $returnArray[] = "error";
  87. return $returnArray; //return noresults if there are no results
  88. }
  89. }
  90. function deletepricetier($tierid, $productid) {
  91. //Create SQL Query
  92. $sql = $this->escape("DELETE FROM ec_pricetier WHERE ec_pricetier.pricetier_id = %s", $tierid);
  93. //Run query on database;
  94. mysql_query($sql);
  95. //if no errors, return their current Client ID
  96. //if results, convert to an array for use in flash
  97. if(!mysql_error()) {
  98. $returnArray[] = $productid;
  99. return($returnArray); //return array results if there are some
  100. } else {
  101. $returnArray[] = "error";
  102. return $returnArray; //return noresults if there are no results
  103. }
  104. }
  105. function addpricetier($price, $quantity, $productid) {
  106. //Create SQL Query
  107. $sql = sprintf("Insert into ec_pricetier(ec_pricetier.pricetier_id, ec_pricetier.price, ec_pricetier.quantity, ec_pricetier.product_id)
  108. values(null, '%s', '%s', '%s')",
  109. mysql_real_escape_string($price),
  110. mysql_real_escape_string($quantity),
  111. mysql_real_escape_string($productid));
  112. //Run query on database;
  113. mysql_query($sql);
  114. //if no errors, return their current Client ID
  115. //if results, convert to an array for use in flash
  116. if(!mysql_error()) {
  117. $returnArray[] = $productid;
  118. return($returnArray); //return array results if there are some
  119. } else {
  120. $returnArray[] = "error";
  121. return $returnArray; //return noresults if there are no results
  122. }
  123. }
  124. }//close class
  125. ?>