Post.php - Separate 9k lines into separate files by sub-modules (e.g. ticket, invoice, expense) for easier development and troubleshooting

2026-02-28 19:04:52 +00:00 · 2023-07-02 14:56:12 +01:00
parent 1f29d68ad5
commit ebecdd3da2
51 changed files with 9507 additions and 9312 deletions
--- a/post/product.php
+++ b/post/product.php
@@ -0,0 +1,61 @@
+<?php
+
+/*
+ * ITFlow - GET/POST request handler for products
+ */
+
+// Products
+if (isset($_POST['add_product'])) {
+
+    require_once('post/product_model.php');
+
+    mysqli_query($mysqli,"INSERT INTO products SET product_name = '$name', product_description = '$description', product_price = '$price', product_currency_code = '$session_company_currency', product_tax_id = $tax, product_category_id = $category");
+
+    //logging
+    mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Product', log_action = 'Create', log_description = '$session_name created product $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
+
+    $_SESSION['alert_message'] = "Product <strong>$name</strong> created";
+
+    header("Location: " . $_SERVER["HTTP_REFERER"]);
+
+}
+
+if (isset($_POST['edit_product'])) {
+
+    require_once('post/product_model.php');
+
+    $product_id = intval($_POST['product_id']);
+
+    mysqli_query($mysqli,"UPDATE products SET product_name = '$name', product_description = '$description', product_price = '$price', product_tax_id = $tax, product_category_id = $category WHERE product_id = $product_id");
+
+    //Logging
+    mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Product', log_action = 'Modify', log_description = '$name', log_user_id = $session_user_id");
+
+    //logging
+    mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Product', log_action = 'Modify', log_description = '$session_name modifyed product $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
+
+    $_SESSION['alert_message'] = "Product <strong>$name</strong> modified";
+
+    header("Location: " . $_SERVER["HTTP_REFERER"]);
+
+}
+
+if (isset($_GET['delete_product'])) {
+    $product_id = intval($_GET['delete_product']);
+
+    //Get Product Name
+    $sql = mysqli_query($mysqli,"SELECT * FROM products WHERE product_id = $product_id");
+    $row = mysqli_fetch_array($sql);
+    $product_name = sanitizeInput($row['product_name']);
+
+    mysqli_query($mysqli,"DELETE FROM products WHERE product_id = $product_id");
+
+    //logging
+    mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Product', log_action = 'Delete', log_description = '$session_name deleted product $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
+
+    $_SESSION['alert_type'] = "error";
+    $_SESSION['alert_message'] = "Product <strong>$product_name</strong> deleted";
+
+    header("Location: " . $_SERVER["HTTP_REFERER"]);
+
+}