代码拉取完成,页面将自动刷新
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129
<?php
// check the input 管理对药品信息的增删
function check($value)
{
if (get_magic_quotes_gpc()) {
$value = htmlspecialchars(trim($value));
} else {
$value = addslashes(htmlspecialchars(trim($value)));
}
return $value;
}
session_start();
if (!isset($_SESSION['username']) or !isset($_SESSION['identity']) or $_SESSION['identity'] != 2) {
header("Location:login.php");
exit();
}
$Drugno = check($_POST['DrugNo']);
$Drugname = check($_POST['DrugName']);
$operation = $_POST['operation_choice'];
if ($operation == 1) { // insert
if ($Drugno == "" || $Drugname == "") {
echo "
<script>
alert('药品信息不能为空!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
} else {
$db = @mysqli_connect("localhost", "root", "123456", "MIS");
if (!$db) {
die("Fail to connect the database!!" . mysqli_connect_error());
}
mysqli_query($db, "begin");
mysqli_query($db, "set names utf8");
$check_Drugno = mysqli_query($db, "SELECT * FROM Drug WHERE DrugNo='$Drugno' for update");
if (mysqli_fetch_array($check_Drugno)) { //fetch_array
mysqli_query($db, "commit");
mysqli_close($db);
echo "
<script>
alert('药品号已存在!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
} else {
//else {
// $name = mysqli_fetch_array($check_username)['Dname'];
// }
$result = mysqli_query($db, "INSERT INTO Drug(DrugNo, DrugName) VALUES ('$Drugno', '$Drugname')");
if ($result) {
mysqli_query($db, "commit");
mysqli_close($db);
echo "
<script>
alert('添加药品成功!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
} else {
echo '添加失败!!', mysqli_error($db), '<br />';
echo 'Click here to <a href="javascript:history.back(-1);">go back</a> and retry..';
mysqli_query($db, "rollback");
mysqli_close($db);
exit();
}
}
}
} elseif ($operation == -1) { // delete
if ($Drugno == "") {
echo "
<script>
alert('药品号不能为空!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
} else {
$db = @mysqli_connect("localhost", "root", "123456", "MIS");
if (!$db) {
die("Fail to connect the database!!" . mysqli_connect_error());
}
mysqli_query($db, "begin");
mysqli_query($db, "set names utf8");
$check_Drugno = mysqli_query($db, "SELECT * FROM Drug WHERE DrugNo='$Drugno' for update");
if (mysqli_fetch_array($check_Drugno)) {
$result = mysqli_query($db, "DELETE FROM Drug WHERE DrugNo='$Drugno'");
if ($result) {
mysqli_query($db, "commit");
mysqli_close($db);
echo "
<script>
alert('删除药品成功!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
} else {
echo '删除失败!!', mysqli_error($db), '<br />';
echo 'Click here to <a href="javascript:history.back(-1);">go back</a> and retry..';
mysqli_query($db, "rollback");
mysqli_close($db);
exit();
}
} else {
mysqli_query($db, "commit");
mysqli_close($db);
echo "
<script>
alert('药品号不存在!!');
window.location.href = 'admin_drug.php';
</script>
";
exit();
}
}
}
?>
Loading...
举报
请认真填写举报原因,尽可能描述详细。
请选择举报类型
误判申诉
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化