File: /var/www/vhosts/pgkdistribution.com.au/citisolar.com.au/gatehouse/edit.php
<?php
include_once('db.php');
session_start();
$_SESSION['ref'] = 'edit';
if (!isset($_GET['date']) || !isset($_GET['scorder'])) {
header('Location: query.php');
}
?>
<html>
<head>
<script language="javascript">
function SubmitForm()
{
var form = document.forms[0];
var bRequired = true;
if ((form.address.value.length < 1) || (form.codes.value.length < 1)) {
alert("Please fill out all the required fields.");
bRequired = false;
}
scorder = form.scorder.value;
if (isNaN(scorder)) {
alert("Invalid scorder number.");
bRequired = false;
}
if (!bRequired) return false;
form.submit();
}
</script>
</head>
<body>
<h2>Edit Job</h2>
<h3><a href="index.php">Back to Home Page</a></h3>
<h3><a href="logout.php">Logout</a></h3>
<form name="addForm" action="procedit.php" method="post">
<table>
<tr valign="top" height="20">
<td align="left">Date:</td>
<td><?php echo $_GET['date'] ?><input type="hidden" name="date" value="<?php echo $_GET['date'] ?>" /></td>
</tr>
<tr valign="top" height="20">
<td align="left">SC Order Num:</td>
<td><?php echo $_GET['scorder'] ?><input type="hidden" name="scorder" value="<?php echo $_GET['scorder'] ?>" /></td>
</tr>
<?php
$editresult = mysqli_query($conn, "SELECT * FROM jobs WHERE date = '".$_GET['date']."' AND scorder = '".$_GET['scorder']."'");
while ($editrow = mysqli_fetch_array($editresult)) {
?>
<tr valign="top" height="20">
<td align="left">Address:</td>
<td><input type="text" name="address" size="100" maxlength="255" value="<?php echo $editrow{'address'} ?>"></td>
</tr>
<tr valign="top" height="20">
<td align="left">Appliance:</td>
<td><select name="appliance">
<?php
$result = mysqli_query($conn, "SELECT * FROM appliance");
while ($row = mysqli_fetch_array($result)) {
echo "<option value=\"".$row{'app_id'}."\"";
if ($editrow{'appliance'} == $row{'app_id'}) {
echo " selected='selected'";
}
echo ">".$row{'app_name'}."</option>";
}
?>
</select></td>
</tr>
<tr valign="top" height="20">
<td align="left">Codes:</td>
<td><input type="text" name="codes" size="100" maxlength="255" value="<?php echo $editrow{'codes'} ?>"></td>
</tr>
<tr valign="top" height="20">
<td align="left">Tradesman:</td>
<td><select name="tradesman">
<?php
$result = mysqli_query($conn, "SELECT * FROM tradesman");
while ($row = mysqli_fetch_array($result)) {
echo "<option value=\"".$row{'trade_id'}."\"";
if ($editrow{'tradesman'} == $row{'trade_id'}) {
echo " selected='selected'";
}
echo ">".$row{'trade_name'}."</option>";
}
?>
</select></td>
</tr>
<tr valign="top" height="20">
<td align="left">Invoice Number:</td>
<td><input type="text" name="invoicenum" size="50" maxlength="50" value="<?php echo $editrow{'invoicenum'} ?>"></td>
</tr>
<?php } ?>
</table>
<input type="submit" name="submitForm" value="Update Job" onclick="SubmitForm(); return false;" >
<input type="reset" name="resetForm" value="Reset">
</form>
</body>
</html>