/inc/amfphp/Amfphp/Services/ec_admin_states.php
PHP | 147 lines | 85 code | 19 blank | 43 comment | 21 complexity | 748c23c80062e7c621d41e688ccece53 MD5 | raw file
- <?php
- /*
- ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
- ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
- //All Code and Design is copyrighted by Level Four Development, llc
- //
- //Level Four Development, LLC provides this code "as is" without warranty of any kind, either express or implied,
- //including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.
- //
- //Only licnesed users may use this code and storfront for live purposes. All other use is prohibited and may be
- //subject to copyright violation laws. If you have any questions regarding proper use of this code, please
- //contact Level Four Development, llc and EasyCart prior to use.
- //
- //All use of this storefront is subject to our terms of agreement found on Level Four Development, llc's website.
- ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
- ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
- */
- class ec_admin_states
- {
-
- function ec_admin_states() {
- /*load our connection settings
- if( file_exists( '../../../../wp-easycart-data/connection/ec_conn.php' ) ) {
- require_once('../../../../wp-easycart-data/connection/ec_conn.php');
- } else {
- require_once('../../../connection/ec_conn.php');
- };*/
-
- //set our connection variables
- $dbhost = DB_HOST;
- $dbname = DB_NAME;
- $dbuser = DB_USER;
- $dbpass = DB_PASSWORD;
- global $wpdb;
- define ('WP_PREFIX', $wpdb->prefix);
- //make a connection to our database
- $this->conn = mysql_connect($dbhost, $dbuser, $dbpass);
- mysql_select_db ($dbname);
- mysql_query("SET CHARACTER SET utf8", $this->conn);
- mysql_query("SET NAMES 'utf8'", $this->conn);
- }
-
-
- //secure all of the services for logged in authenticated users only
- public function _getMethodRoles($methodName){
- if ($methodName == 'getstates') return array('admin');
- else if($methodName == 'updatestate') return array('admin');
- else if($methodName == 'deletestate') return array('admin');
- else if($methodName == 'addstate') return array('admin');
- else return null;
- }
-
- //HELPER - used to escape out SQL calls
- function escape($sql)
- {
- $args = func_get_args();
- foreach($args as $key => $val)
- {
- $args[$key] = mysql_real_escape_string($val);
- }
-
- $args[0] = $sql;
- return call_user_func_array('sprintf', $args);
- }
-
-
- function getstates() {
- //Create SQL Query
- $sql = $this->escape("SELECT ec_state.* FROM ec_state ORDER BY ec_state.sort_order ASC");
- // Run query on database
- $result = mysql_query($sql);
- //if results, convert to an array for use in flash
- if(mysql_num_rows($result) > 0) {
- while ($row=mysql_fetch_object($result)) {
- $returnArray[] = $row;
- }
- return($returnArray); //return array results if there are some
- } else {
- $returnArray[] = "noresults";
- return $returnArray; //return noresults if there are no results
- }
- }
-
-
-
- //state list functions
- //get state list is handled above
- function updatestate($id, $countryid, $iso2, $name, $sortorder) {
- //Create SQL Query
- $sql = $this->escape("UPDATE ec_state SET ec_state.name_sta='%s', ec_state.code_sta='%s', ec_state.idcnt_sta='%s', ec_state.sort_order='%s' WHERE ec_state.id_sta = '%s'", $name, $iso2, $countryid, $sortorder, $id);
- //Run query on database;
- mysql_query($sql);
- //if no errors, return their current Client ID
- //if results, convert to an array for use in flash
- if(!mysql_error()) {
- $returnArray[] ="success";
- return($returnArray); //return array results if there are some
- } else {
- $returnArray[] = "error";
- return $returnArray; //return noresults if there are no results
- }
- }
- function deletestate($id) {
- //Create SQL Query
- $sql = sprintf("DELETE FROM ec_state WHERE ec_state.id_sta = $id");
- //Run query on database;
- mysql_query($sql);
- //if no errors, return their current Client ID
- //if results, convert to an array for use in flash
- if(!mysql_error()) {
- $returnArray[] ="success";
- return($returnArray); //return array results if there are some
- } else {
- $returnArray[] = "error";
- return $returnArray; //return noresults if there are no results
- }
- }
- function addstate($countryid, $iso2, $name, $sortorder) {
- //Create SQL Query
- $sql = sprintf("Insert into ec_state(ec_state.id_sta, ec_state.name_sta, ec_state.code_sta, ec_state.idcnt_sta, ec_state.sort_order)
- values(null, '%s', '%s', '%s', '%s')",
- mysql_real_escape_string($name),
- mysql_real_escape_string($iso2),
- mysql_real_escape_string($countryid),
- mysql_real_escape_string($sortorder));
- //Run query on database;
- mysql_query($sql);
- //if no errors, return their current Client ID
- //if results, convert to an array for use in flash
- if(!mysql_error()) {
- $returnArray[] ="success";
- return($returnArray); //return array results if there are some
- } else {
- $returnArray[] = "error";
- return $returnArray; //return noresults if there are no results
- }
- }
-
- }//close class
- ?>