Location: PHPKode > projects > PHP WishList : Online Gift Registry > php-wishlist/modifyList/validate_addItem.php
<?php
// This program is free software; you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation; either version 2 of the License, or
// (at your option) any later version.

// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.

// You should have received a copy of the GNU General Public License
// along with this program; if not, write to the Free Software
// Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

include "../funcLib.php";

$cid = $_REQUEST["cid"];

$title= convertString($_REQUEST["title"]);

$description = convertString($_REQUEST["desc"]);

$price = str_replace("$", "", trim($_REQUEST["price"]));

if(!is_numeric($price))
     $price = 0;

$quantity = $_REQUEST["quantity"];

if(!is_numeric($quantity))
     $quantity = 1;

if($quantity < 0)
     $quantity = 1;

$subdesc = convertString($_REQUEST["subdesc"]);
$link1 = convertString($_REQUEST["link1"]);
$link1url = convertString($_REQUEST["link1url"]);
$link2 = convertString($_REQUEST["link2"]); 
$link2url = convertString($_REQUEST["link2url"]);
$link3 = convertString($_REQUEST["link3"]);
$link3url = convertString($_REQUEST["link3url"]);
$allowCheck = convertString($_REQUEST["allowCheck"]);
$addStar = convertString($_REQUEST["addStar"]);

// Note our use of ===.  Simply == would not work as expected
// because the position of "http" is at the front of a url
if($link1url != "" && strpos($link1url, "http") === false){
    $link1url = "http://" . $link1url;
}                
if($link2url != "" && strpos($link2url, "http") === false){
    $link2url = "http://" . $link2url;
}                
if($link3url != "" && strpos($link3url, "http") === false){
    $link3url = "http://" . $link3url;
}                


if($allowCheck == "")
  $allowCheck = "false";
else
  $allowCheck = "true";


if($addStar == "")
  $addStar = '0';
else
  $addStar = '1';


$query = "select max(itemSortOrder) as iso from items where cid = " . $cid;

$rs = mysql_query($query) or die("Could not query: " . mysql_error());

$iso = 0;

if($row = mysql_fetch_assoc($rs)){
  if($row["iso"] != ""){
    $iso = $row["iso"];
    $iso++;
  }
}

$query = "insert into items (iid, cid, addStar, title, description, price, quantity, link1, link1url, subdesc, allowCheck, link2, link2url, link3, link3url, itemSortOrder) values (null, " .
"" . $cid . ", " .
"" . $addStar . ", " .
"'" . $title . "', " .
"'" . $description . "', " .
"" . $price . ", " .
"" . $quantity . ", " .
"'" . $link1 . "', " .
"'" . $link1url . "', " .
"'" . $subdesc . "', " .
"'" . $allowCheck . "', " .
"'" . $link2 . "', " .
"'" . $link2url . "', " .
"'" . $link3 . "', " .
"'" . $link3url . "', " .
"" . $iso . ")";

//print $query;
$rs = mysql_query($query) or die("Could not query: " . mysql_error());

header("Location: " . getFullPath("modifyList.php"));
$query = "update people set lastModDate=NOW() where userid='" . $userid . "'";

$rs = mysql_query($query) or die("Could not query: " . mysql_error());
PHPKode Newsletter X is easy to install and configure on the most servers. Try now!
Return current item: PHP WishList : Online Gift Registry