Accueil Explorer Aide
S'inscrire Connexion
benjamin.harris
/
soil-report-ai
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: afdc3dbeb7
Branches Tags
soil-report-ai
/
controllers
/
waterTestSubmit.php

waterTestSubmit.php 2.1 KB
Historique Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * controllers/waterTestSubmit.php
    4. 

  4.  *
    5. 

  5.  * POST handler for water test analysis entry.
    6. 

  6.  * Inserts a new record into water_records.
    7. 

  7.  */
    8. 

  8. 

  9. if (session_status() === PHP_SESSION_NONE) {
    10. 

  10.     session_start();
    11. 

  11. }
    12. 

  12. 

  13. require_once __DIR__ . '/../config/database.php';
    14. 

  14. require_once __DIR__ . '/../lib/auth.php';
    15. 

  15. require_once __DIR__ . '/../lib/csrf.php';
    16. 

  16. 

  17. requireLogin();
    18. 

  18. 

  19. if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
    20. 

  20.     header('Location: /dashboard/crop-analysis/water-test-data/water-test-data.php');
    21. 

  21.     exit;
    22. 

  22. }
    23. 

  23. 

  24. if (!verifyCsrfToken($_POST['csrf_token'] ?? '')) {
    25. 

  25.     $_SESSION['flash_error'] = 'Invalid CSRF token. Please try again.';
    26. 

  26.     header('Location: /dashboard/crop-analysis/water-test-data/water-test-data.php');
    27. 

  27.     exit;
    28. 

  28. }
    29. 

  29. 

  30. $pdo    = getDBConnection();
    31. 

  31. $userId = getCurrentUserId();
    32. 

  32. 

  33. $clientId = (int) ($_POST['client_id'] ?? 0);
    34. 

  34. if ($clientId > 0) {
    35. 

  35.     $stmt = $pdo->prepare('SELECT id FROM client_records WHERE id = ? AND modx_user_id = ?');
    36. 

  36.     $stmt->execute([$clientId, $userId]);
    37. 

  37.     if (!$stmt->fetch()) {
    38. 

  38.         $clientId = 0;
    39. 

  39.     }
    40. 

  40. }
    41. 

  41. 

  42. $rand = mt_rand(10000, 99999);
    43. 

  43. 

  44. $fields = [
    45. 

  45.     'lab_no', 'batch_no', 'date_sampled', 'sample_id', 'site_id',
    46. 

  46.     'ph', 'cond_dsm', 'hco3',
    47. 

  47.     'n', 'p', 'k', 's', 'mg', 'ca',
    48. 

  48.     'na', 'fe', 'mn', 'zn', 'cu', 'b',
    49. 

  49.     'm', 'co', 'se', 'ch',
    50. 

  50. ];
    51. 

  51. 

  52. $colList = 'modx_user_id, client_records_id, rand, ' . implode(', ', array_map(fn($c) => "`$c`", $fields));
    53. 

  53. $placeholders = implode(', ', array_fill(0, count($fields) + 3, '?'));
    54. 

  54. 

  55. $values = [$userId, $clientId ?: null, $rand];
    56. 

  56. foreach ($fields as $field) {
    57. 

  57.     $val = trim((string) ($_POST[$field] ?? ''));
    58. 

  58.     $values[] = ($val === '') ? null : $val;
    59. 

  59. }
    60. 

  60. 

  61. try {
    62. 

  62.     $stmt = $pdo->prepare("INSERT INTO water_records ($colList) VALUES ($placeholders)");
    63. 

  63.     $stmt->execute($values);
    64. 

  64.     $newId  = (int) $pdo->lastInsertId();
    65. 

  65.     $_SESSION['flash_success'] = 'Water test record saved successfully.';
    66. 

  66.     header("Location: /dashboard/inbox.php");
    67. 

  67. } catch (\PDOException $e) {
    68. 

  68.     $_SESSION['flash_error'] = 'Failed to save record. Please try again.';
    69. 

  69.     header('Location: /dashboard/crop-analysis/water-test-data/water-test-data.php');
    70. 

  70. }
    71. 

  71. exit;
    72.