repairs_dml.php

<?php

// Data functions (insert, update, delete, form) for table repairs

// This script and data application were generated by AppGini 5.51
// Download AppGini for free from http://bigprof.com/appgini/download/

function repairs_insert(){
	global $Translation;

	// mm: can member insert record?
	$arrPerm=getTablePermissions('repairs');
	if(!$arrPerm[1]){
		return false;
	}

	$data['repair_status'] = makeSafe($_REQUEST['repair_status']);
		if($data['repair_status'] == empty_lookup_value){ $data['repair_status'] = ''; }
	$data['item'] = makeSafe($_REQUEST['item']);
		if($data['item'] == empty_lookup_value){ $data['item'] = ''; }
	$data['perform'] = br2nl(makeSafe($_REQUEST['perform']));
	$data['repair_notes'] = makeSafe($_REQUEST['repair_notes']);
		if($data['repair_notes'] == empty_lookup_value){ $data['repair_notes'] = ''; }
	$data['cost'] = makeSafe($_REQUEST['cost']);
		if($data['cost'] == empty_lookup_value){ $data['cost'] = ''; }
	$data['batch_number'] = makeSafe($_REQUEST['batch_number']);
		if($data['batch_number'] == empty_lookup_value){ $data['batch_number'] = ''; }
	$data['photo_1'] = PrepareUploadedFile('photo_1', 5120000,'jpg|jpeg|gif|png', false, '');
	if($data['photo_1']) createThumbnail($data['photo_1'], getThumbnailSpecs('repairs', 'photo_1', 'tv'));
	if($data['photo_1']) createThumbnail($data['photo_1'], getThumbnailSpecs('repairs', 'photo_1', 'dv'));
	$data['photo_2'] = PrepareUploadedFile('photo_2', 5120000,'jpg|jpeg|gif|png', false, '');
	if($data['photo_2']) createThumbnail($data['photo_2'], getThumbnailSpecs('repairs', 'photo_2', 'tv'));
	if($data['photo_2']) createThumbnail($data['photo_2'], getThumbnailSpecs('repairs', 'photo_2', 'dv'));
	if($data['repair_status']== ''){
		echo StyleSheet() . "\n\n<div class=\"alert alert-danger\">" . $Translation['error:'] . " 'Repair status': " . $Translation['field not null'] . '<br><br>';
		echo '<a href="" onclick="history.go(-1); return false;">'.$Translation['< back'].'</a></div>';
		exit;
	}
	if($data['cost'] == '') $data['cost'] = "0.00";
	if($data['batch_number']== ''){
		echo StyleSheet() . "\n\n<div class=\"alert alert-danger\">" . $Translation['error:'] . " 'Batch ID': " . $Translation['field not null'] . '<br><br>';
		echo '<a href="" onclick="history.go(-1); return false;">'.$Translation['< back'].'</a></div>';
		exit;
	}

	/* for empty upload fields, when saving a copy of an existing record, copy the original upload field */
	if($_REQUEST['SelectedID']){
		$res = sql("select * from repairs where id='" . makeSafe($_REQUEST['SelectedID']) . "'", $eo);
		if($row = db_fetch_assoc($res)){
			if(!$data['photo_1']) $data['photo_1'] = makeSafe($row['photo_1']);
			if(!$data['photo_2']) $data['photo_2'] = makeSafe($row['photo_2']);
		}
	}

	// hook: repairs_before_insert
	if(function_exists('repairs_before_insert')){
		$args=array();
		if(!repairs_before_insert($data, getMemberInfo(), $args)){ return false; }
	}

	$o = array('silentErrors' => true);
	sql('insert into `repairs` set       `repair_status`=' . (($data['repair_status'] !== '' && $data['repair_status'] !== NULL) ? "'{$data['repair_status']}'" : 'NULL') . ', `item`=' . (($data['item'] !== '' && $data['item'] !== NULL) ? "'{$data['item']}'" : 'NULL') . ', `perform`=' . (($data['perform'] !== '' && $data['perform'] !== NULL) ? "'{$data['perform']}'" : 'NULL') . ', `repair_notes`=' . (($data['repair_notes'] !== '' && $data['repair_notes'] !== NULL) ? "'{$data['repair_notes']}'" : 'NULL') . ', `cost`=' . (($data['cost'] !== '' && $data['cost'] !== NULL) ? "'{$data['cost']}'" : 'NULL') . ', `batch_number`=' . (($data['batch_number'] !== '' && $data['batch_number'] !== NULL) ? "'{$data['batch_number']}'" : 'NULL') . ', ' . ($data['photo_1'] != '' ? "`photo_1`='{$data['photo_1']}'" : '`photo_1`=NULL') . ', ' . ($data['photo_2'] != '' ? "`photo_2`='{$data['photo_2']}'" : '`photo_2`=NULL'), $o);
	if($o['error']!=''){
		echo $o['error'];
		echo "<a href=\"repairs_view.php?addNew_x=1\">{$Translation['< back']}</a>";
		exit;
	}

	$recID = db_insert_id(db_link());

	// hook: repairs_after_insert
	if(function_exists('repairs_after_insert')){
		$res = sql("select * from `repairs` where `id`='" . makeSafe($recID, false) . "' limit 1", $eo);
		if($row = db_fetch_assoc($res)){
			$data = array_map('makeSafe', $row);
		}
		$data['selectedID'] = makeSafe($recID, false);
		$args=array();
		if(!repairs_after_insert($data, getMemberInfo(), $args)){ return $recID; }
	}

	// mm: save ownership data
	sql("insert ignore into membership_userrecords set tableName='repairs', pkValue='" . makeSafe($recID, false) . "', memberID='" . makeSafe(getLoggedMemberID(), false) . "', dateAdded='" . time() . "', dateUpdated='" . time() . "', groupID='" . getLoggedGroupID() . "'", $eo);

	return $recID;
}

function repairs_delete($selected_id, $AllowDeleteOfParents=false, $skipChecks=false){
	// insure referential integrity ...
	global $Translation;
	$selected_id=makeSafe($selected_id);

	// mm: can member delete record?
	$arrPerm=getTablePermissions('repairs');
	$ownerGroupID=sqlValue("select groupID from membership_userrecords where tableName='repairs' and pkValue='$selected_id'");
	$ownerMemberID=sqlValue("select lcase(memberID) from membership_userrecords where tableName='repairs' and pkValue='$selected_id'");
	if(($arrPerm[4]==1 && $ownerMemberID==getLoggedMemberID()) || ($arrPerm[4]==2 && $ownerGroupID==getLoggedGroupID()) || $arrPerm[4]==3){ // allow delete?
		// delete allowed, so continue ...
	}else{
		return $Translation['You don\'t have enough permissions to delete this record'];
	}

	// hook: repairs_before_delete
	if(function_exists('repairs_before_delete')){
		$args=array();
		if(!repairs_before_delete($selected_id, $skipChecks, getMemberInfo(), $args))
			return $Translation['Couldn\'t delete this record'];
	}

	// delete file stored in the 'photo_1' field
	$res = sql("select `photo_1` from `repairs` where `id`='$selected_id'", $eo);
	if($row=@db_fetch_row($res)){
		if($row[0]!=''){
			@unlink(getUploadDir('').$row[0]);
			preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
			$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
			$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
			@unlink(getUploadDir('').$thumbTV);
			@unlink(getUploadDir('').$thumbDV);
		}
	}

	// delete file stored in the 'photo_2' field
	$res = sql("select `photo_2` from `repairs` where `id`='$selected_id'", $eo);
	if($row=@db_fetch_row($res)){
		if($row[0]!=''){
			@unlink(getUploadDir('').$row[0]);
			preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
			$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
			$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
			@unlink(getUploadDir('').$thumbTV);
			@unlink(getUploadDir('').$thumbDV);
		}
	}

	sql("delete from `repairs` where `id`='$selected_id'", $eo);

	// hook: repairs_after_delete
	if(function_exists('repairs_after_delete')){
		$args=array();
		repairs_after_delete($selected_id, getMemberInfo(), $args);
	}

	// mm: delete ownership data
	sql("delete from membership_userrecords where tableName='repairs' and pkValue='$selected_id'", $eo);
}

function repairs_update($selected_id){
	global $Translation;

	// mm: can member edit record?
	$arrPerm=getTablePermissions('repairs');
	$ownerGroupID=sqlValue("select groupID from membership_userrecords where tableName='repairs' and pkValue='".makeSafe($selected_id)."'");
	$ownerMemberID=sqlValue("select lcase(memberID) from membership_userrecords where tableName='repairs' and pkValue='".makeSafe($selected_id)."'");
	if(($arrPerm[3]==1 && $ownerMemberID==getLoggedMemberID()) || ($arrPerm[3]==2 && $ownerGroupID==getLoggedGroupID()) || $arrPerm[3]==3){ // allow update?
		// update allowed, so continue ...
	}else{
		return false;
	}

	$data['repair_status'] = makeSafe($_REQUEST['repair_status']);
		if($data['repair_status'] == empty_lookup_value){ $data['repair_status'] = ''; }
	if($data['repair_status']==''){
		echo StyleSheet() . "\n\n<div class=\"alert alert-danger\">{$Translation['error:']} 'Repair status': {$Translation['field not null']}<br><br>";
		echo '<a href="" onclick="history.go(-1); return false;">'.$Translation['< back'].'</a></div>';
		exit;
	}
	$data['item'] = makeSafe($_REQUEST['item']);
		if($data['item'] == empty_lookup_value){ $data['item'] = ''; }
	$data['perform'] = br2nl(makeSafe($_REQUEST['perform']));
	$data['repair_notes'] = makeSafe($_REQUEST['repair_notes']);
		if($data['repair_notes'] == empty_lookup_value){ $data['repair_notes'] = ''; }
	$data['cost'] = makeSafe($_REQUEST['cost']);
		if($data['cost'] == empty_lookup_value){ $data['cost'] = ''; }
	$data['batch_number'] = makeSafe($_REQUEST['batch_number']);
		if($data['batch_number'] == empty_lookup_value){ $data['batch_number'] = ''; }
	if($data['batch_number']==''){
		echo StyleSheet() . "\n\n<div class=\"alert alert-danger\">{$Translation['error:']} 'Batch ID': {$Translation['field not null']}<br><br>";
		echo '<a href="" onclick="history.go(-1); return false;">'.$Translation['< back'].'</a></div>';
		exit;
	}
	$data['last_update'] = parseCode('Timestamp: <%%editingDateTime%%> | User: <%%editorUsername%%> | IP: <%%editorIP%%>', false);
	$data['selectedID']=makeSafe($selected_id);
	if($_REQUEST['photo_1_remove'] == 1){
		$data['photo_1'] = '';
		// delete file from server
		$res = sql("select `photo_1` from `repairs` where `id`='".makeSafe($selected_id)."'", $eo);
		if($row=@db_fetch_row($res)){
			if($row[0]!=''){
				@unlink(getUploadDir('').$row[0]);
				preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
				$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
				$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
				@unlink(getUploadDir('').$thumbTV);
				@unlink(getUploadDir('').$thumbDV);
			}
		}
	}else{
		$data['photo_1'] = PrepareUploadedFile('photo_1', 5120000, 'jpg|jpeg|gif|png', false, "");
		if($data['photo_1']) createThumbnail($data['photo_1'], getThumbnailSpecs('repairs', 'photo_1', 'tv'));
		if($data['photo_1']) createThumbnail($data['photo_1'], getThumbnailSpecs('repairs', 'photo_1', 'dv'));
		// delete file from server
		if($data['photo_1'] != ''){
			$res = sql("select `photo_1` from `repairs` where `id`='".makeSafe($selected_id)."'", $eo);
			if($row=@db_fetch_row($res)){
				if($row[0]!=''){
					@unlink(getUploadDir('').$row[0]);
					preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
					$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
					$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
					@unlink(getUploadDir('').$thumbTV);
					@unlink(getUploadDir('').$thumbDV);
				}
			}
		}
	}
	if($_REQUEST['photo_2_remove'] == 1){
		$data['photo_2'] = '';
		// delete file from server
		$res = sql("select `photo_2` from `repairs` where `id`='".makeSafe($selected_id)."'", $eo);
		if($row=@db_fetch_row($res)){
			if($row[0]!=''){
				@unlink(getUploadDir('').$row[0]);
				preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
				$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
				$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
				@unlink(getUploadDir('').$thumbTV);
				@unlink(getUploadDir('').$thumbDV);
			}
		}
	}else{
		$data['photo_2'] = PrepareUploadedFile('photo_2', 5120000, 'jpg|jpeg|gif|png', false, "");
		if($data['photo_2']) createThumbnail($data['photo_2'], getThumbnailSpecs('repairs', 'photo_2', 'tv'));
		if($data['photo_2']) createThumbnail($data['photo_2'], getThumbnailSpecs('repairs', 'photo_2', 'dv'));
		// delete file from server
		if($data['photo_2'] != ''){
			$res = sql("select `photo_2` from `repairs` where `id`='".makeSafe($selected_id)."'", $eo);
			if($row=@db_fetch_row($res)){
				if($row[0]!=''){
					@unlink(getUploadDir('').$row[0]);
					preg_match('/^[a-z0-9_]+\.(gif|png|jpg|jpeg|jpe)$/i', $row[0], $m);
					$thumbDV=str_replace(".$m[1]ffffgggg", "_dv.$m[1]", $row[0].'ffffgggg');
					$thumbTV=str_replace(".$m[1]ffffgggg", "_tv.$m[1]", $row[0].'ffffgggg');
					@unlink(getUploadDir('').$thumbTV);
					@unlink(getUploadDir('').$thumbDV);
				}
			}
		}
	}

	// hook: repairs_before_update
	if(function_exists('repairs_before_update')){
		$args=array();
		if(!repairs_before_update($data, getMemberInfo(), $args)){ return false; }
	}

	$o=array('silentErrors' => true);
	sql('update `repairs` set       `repair_status`=' . (($data['repair_status'] !== '' && $data['repair_status'] !== NULL) ? "'{$data['repair_status']}'" : 'NULL') . ', `item`=' . (($data['item'] !== '' && $data['item'] !== NULL) ? "'{$data['item']}'" : 'NULL') . ', `perform`=' . (($data['perform'] !== '' && $data['perform'] !== NULL) ? "'{$data['perform']}'" : 'NULL') . ', `repair_notes`=' . (($data['repair_notes'] !== '' && $data['repair_notes'] !== NULL) ? "'{$data['repair_notes']}'" : 'NULL') . ', `cost`=' . (($data['cost'] !== '' && $data['cost'] !== NULL) ? "'{$data['cost']}'" : 'NULL') . ', `batch_number`=' . (($data['batch_number'] !== '' && $data['batch_number'] !== NULL) ? "'{$data['batch_number']}'" : 'NULL') . ', ' . ($data['photo_1']!='' ? "`photo_1`='{$data['photo_1']}'" : ($_REQUEST['photo_1_remove'] != 1 ? '`photo_1`=`photo_1`' : '`photo_1`=NULL')) . ', ' . ($data['photo_2']!='' ? "`photo_2`='{$data['photo_2']}'" : ($_REQUEST['photo_2_remove'] != 1 ? '`photo_2`=`photo_2`' : '`photo_2`=NULL')) . ', `last_update`=' . "'{$data['last_update']}'" . " where `id`='".makeSafe($selected_id)."'", $o);
	if($o['error']!=''){
		echo $o['error'];
		echo '<a href="repairs_view.php?SelectedID='.urlencode($selected_id)."\">{$Translation['< back']}</a>";
		exit;
	}


	// hook: repairs_after_update
	if(function_exists('repairs_after_update')){
		$res = sql("SELECT * FROM `repairs` WHERE `id`='{$data['selectedID']}' LIMIT 1", $eo);
		if($row = db_fetch_assoc($res)){
			$data = array_map('makeSafe', $row);
		}
		$data['selectedID'] = $data['id'];
		$args = array();
		if(!repairs_after_update($data, getMemberInfo(), $args)){ return; }
	}

	// mm: update ownership data
	sql("update membership_userrecords set dateUpdated='".time()."' where tableName='repairs' and pkValue='".makeSafe($selected_id)."'", $eo);

}

function repairs_form($selected_id = '', $AllowUpdate = 1, $AllowInsert = 1, $AllowDelete = 1, $ShowCancel = 0){
	// function to return an editable form for a table records
	// and fill it with data of record whose ID is $selected_id. If $selected_id
	// is empty, an empty form is shown, with only an 'Add New'
	// button displayed.

	global $Translation;

	// mm: get table permissions
	$arrPerm=getTablePermissions('repairs');
	if(!$arrPerm[1] && $selected_id==''){ return ''; }
	$AllowInsert = ($arrPerm[1] ? true : false);
	// print preview?
	$dvprint = false;
	if($selected_id && $_REQUEST['dvprint_x'] != ''){
		$dvprint = true;
	}

	$filterer_item = thisOr(undo_magic_quotes($_REQUEST['filterer_item']), '');

	// populate filterers, starting from children to grand-parents

	// unique random identifier
	$rnd1 = ($dvprint ? rand(1000000, 9999999) : '');
	// combobox: repair_status
	$combo_repair_status = new Combo;
	$combo_repair_status->ListType = 2;
	$combo_repair_status->MultipleSeparator = ', ';
	$combo_repair_status->ListBoxHeight = 10;
	$combo_repair_status->RadiosPerLine = 1;
	if(is_file(dirname(__FILE__).'/hooks/repairs.repair_status.csv')){
		$repair_status_data = addslashes(implode('', @file(dirname(__FILE__).'/hooks/repairs.repair_status.csv')));
		$combo_repair_status->ListItem = explode('||', entitiesToUTF8(convertLegacyOptions($repair_status_data)));
		$combo_repair_status->ListData = $combo_repair_status->ListItem;
	}else{
		$combo_repair_status->ListItem = explode('||', entitiesToUTF8(convertLegacyOptions("Waiting on Technician;;In Progress;;Completed")));
		$combo_repair_status->ListData = $combo_repair_status->ListItem;
	}
	$combo_repair_status->SelectName = 'repair_status';
	$combo_repair_status->AllowNull = false;
	// combobox: item
	$combo_item = new DataCombo;

	if($selected_id){
		// mm: check member permissions
		if(!$arrPerm[2]){
			return "";
		}
		// mm: who is the owner?
		$ownerGroupID=sqlValue("select groupID from membership_userrecords where tableName='repairs' and pkValue='".makeSafe($selected_id)."'");
		$ownerMemberID=sqlValue("select lcase(memberID) from membership_userrecords where tableName='repairs' and pkValue='".makeSafe($selected_id)."'");
		if($arrPerm[2]==1 && getLoggedMemberID()!=$ownerMemberID){
			return "";
		}
		if($arrPerm[2]==2 && getLoggedGroupID()!=$ownerGroupID){
			return "";
		}

		// can edit?
		if(($arrPerm[3]==1 && $ownerMemberID==getLoggedMemberID()) || ($arrPerm[3]==2 && $ownerGroupID==getLoggedGroupID()) || $arrPerm[3]==3){
			$AllowUpdate=1;
		}else{
			$AllowUpdate=0;
		}

		$res = sql("select * from `repairs` where `id`='".makeSafe($selected_id)."'", $eo);
		if(!($row = db_fetch_array($res))){
			return error_message($Translation['No records found']);
		}
		$urow = $row; /* unsanitized data */
		$hc = new CI_Input();
		$row = $hc->xss_clean($row); /* sanitize data */
		$combo_repair_status->SelectedData = $row['repair_status'];
		$combo_item->SelectedData = $row['item'];
	}else{
		$combo_repair_status->SelectedText = ( $_REQUEST['FilterField'][1]=='2' && $_REQUEST['FilterOperator'][1]=='<=>' ? (get_magic_quotes_gpc() ? stripslashes($_REQUEST['FilterValue'][1]) : $_REQUEST['FilterValue'][1]) : "");
		$combo_item->SelectedData = $filterer_item;
	}
	$combo_repair_status->Render();
	$combo_item->HTML = '<span id="item-container' . $rnd1 . '"></span><input type="hidden" name="item" id="item' . $rnd1 . '" value="' . html_attr($combo_item->SelectedData) . '">';
	$combo_item->MatchText = '<span id="item-container-readonly' . $rnd1 . '"></span><input type="hidden" name="item" id="item' . $rnd1 . '" value="' . html_attr($combo_item->SelectedData) . '">';

	ob_start();
	?>

	<script>
		// initial lookup values
		var current_item__RAND__ = { text: "", value: "<?php echo addslashes($selected_id ? $urow['item'] : $filterer_item); ?>"};

		jQuery(function() {
			if(typeof(item_reload__RAND__) == 'function') item_reload__RAND__();
		});
		function item_reload__RAND__(){
		<?php if(($AllowUpdate || $AllowInsert) && !$dvprint){ ?>

			jQuery("#item-container__RAND__").select2({
				/* initial default value */
				initSelection: function(e, c){
					jQuery.ajax({
						url: 'ajax_combo.php',
						dataType: 'json',
						data: { id: current_item__RAND__.value, t: 'repairs', f: 'item' }
					}).done(function(resp){
						c({
							id: resp.results[0].id,
							text: resp.results[0].text
						});
						$j('[name="item"]').val(resp.results[0].id);
						$j('[id=item-container-readonly__RAND__]').html('<span id="item-match-text">' + resp.results[0].text + '</span>');
						if(resp.results[0].id == '<?php echo empty_lookup_value; ?>'){ $j('.btn[id=inventory_view_parent]').hide(); }else{ $j('.btn[id=inventory_view_parent]').show(); }


						if(typeof(item_update_autofills__RAND__) == 'function') item_update_autofills__RAND__();
					});
				},
				width: ($j('fieldset .col-xs-11').width() - 99) + 'px',
				formatNoMatches: function(term){ return '<?php echo addslashes($Translation['No matches found!']); ?>'; },
				minimumResultsForSearch: 10,
				loadMorePadding: 200,
				ajax: {
					url: 'ajax_combo.php',
					dataType: 'json',
					cache: true,
					data: function(term, page){ return { s: term, p: page, t: 'repairs', f: 'item' }; },
					results: function(resp, page){ return resp; }
				}
			}).on('change', function(e){
				current_item__RAND__.value = e.added.id;
				current_item__RAND__.text = e.added.text;
				$j('[name="item"]').val(e.added.id);
				if(e.added.id == '<?php echo empty_lookup_value; ?>'){ $j('.btn[id=inventory_view_parent]').hide(); }else{ $j('.btn[id=inventory_view_parent]').show(); }


				if(typeof(item_update_autofills__RAND__) == 'function') item_update_autofills__RAND__();
			});

			if(!$j("#item-container__RAND__").length){
				$j.ajax({
					url: 'ajax_combo.php',
					dataType: 'json',
					data: { id: current_item__RAND__.value, t: 'repairs', f: 'item' }
				}).done(function(resp){
					$j('[name="item"]').val(resp.results[0].id);
					$j('[id=item-container-readonly__RAND__]').html('<span id="item-match-text">' + resp.results[0].text + '</span>');
					if(resp.results[0].id == '<?php echo empty_lookup_value; ?>'){ $j('.btn[id=inventory_view_parent]').hide(); }else{ $j('.btn[id=inventory_view_parent]').show(); }

					if(typeof(item_update_autofills__RAND__) == 'function') item_update_autofills__RAND__();
				});
			}

		<?php }else{ ?>

			$j.ajax({
				url: 'ajax_combo.php',
				dataType: 'json',
				data: { id: current_item__RAND__.value, t: 'repairs', f: 'item' }
			}).done(function(resp){
				$j('[id=item-container__RAND__], [id=item-container-readonly__RAND__]').html('<span id="item-match-text">' + resp.results[0].text + '</span>');
				if(resp.results[0].id == '<?php echo empty_lookup_value; ?>'){ $j('.btn[id=inventory_view_parent]').hide(); }else{ $j('.btn[id=inventory_view_parent]').show(); }

				if(typeof(item_update_autofills__RAND__) == 'function') item_update_autofills__RAND__();
			});
		<?php } ?>

		}
	</script>
	<?php

	$lookups = str_replace('__RAND__', $rnd1, ob_get_contents());
	ob_end_clean();


	// code for template based detail view forms

	// open the detail view template
	if($dvprint){
		$templateCode = @file_get_contents('./templates/repairs_templateDVP.html');
	}else{
		$templateCode = @file_get_contents('./templates/repairs_templateDV.html');
	}

	// process form title
	$templateCode = str_replace('<%%DETAIL_VIEW_TITLE%%>', 'Detail View', $templateCode);
	$templateCode = str_replace('<%%RND1%%>', $rnd1, $templateCode);
	$templateCode = str_replace('<%%EMBEDDED%%>', ($_REQUEST['Embedded'] ? 'Embedded=1' : ''), $templateCode);
	// process buttons
	if($AllowInsert){
		if(!$selected_id) $templateCode=str_replace('<%%INSERT_BUTTON%%>', '<button type="submit" class="btn btn-success" id="insert" name="insert_x" value="1" onclick="return repairs_validateData();"><i class="glyphicon glyphicon-plus-sign"></i> ' . $Translation['Save New'] . '</button>', $templateCode);
		$templateCode=str_replace('<%%INSERT_BUTTON%%>', '<button type="submit" class="btn btn-default" id="insert" name="insert_x" value="1" onclick="return repairs_validateData();"><i class="glyphicon glyphicon-plus-sign"></i> ' . $Translation['Save As Copy'] . '</button>', $templateCode);
	}else{
		$templateCode=str_replace('<%%INSERT_BUTTON%%>', '', $templateCode);
	}

	// 'Back' button action
	if($_REQUEST['Embedded']){
		$backAction = 'window.parent.jQuery(\'.modal\').modal(\'hide\'); return false;';
	}else{
		$backAction = '$$(\'form\')[0].writeAttribute(\'novalidate\', \'novalidate\'); document.myform.reset(); return true;';
	}

	if($selected_id){
		if(!$_REQUEST['Embedded']) $templateCode=str_replace('<%%DVPRINT_BUTTON%%>', '<button type="submit" class="btn btn-default" id="dvprint" name="dvprint_x" value="1" onclick="$$(\'form\')[0].writeAttribute(\'novalidate\', \'novalidate\'); document.myform.reset(); return true;"><i class="glyphicon glyphicon-print"></i> ' . $Translation['Print Preview'] . '</button>', $templateCode);
		if($AllowUpdate){
			$templateCode=str_replace('<%%UPDATE_BUTTON%%>', '<button type="submit" class="btn btn-success btn-lg" id="update" name="update_x" value="1" onclick="return repairs_validateData();"><i class="glyphicon glyphicon-ok"></i> ' . $Translation['Save Changes'] . '</button>', $templateCode);
		}else{
			$templateCode=str_replace('<%%UPDATE_BUTTON%%>', '', $templateCode);
		}
		if(($arrPerm[4]==1 && $ownerMemberID==getLoggedMemberID()) || ($arrPerm[4]==2 && $ownerGroupID==getLoggedGroupID()) || $arrPerm[4]==3){ // allow delete?
			$templateCode=str_replace('<%%DELETE_BUTTON%%>', '<button type="submit" class="btn btn-danger" id="delete" name="delete_x" value="1" onclick="return confirm(\'' . $Translation['are you sure?'] . '\');"><i class="glyphicon glyphicon-trash"></i> ' . $Translation['Delete'] . '</button>', $templateCode);
		}else{
			$templateCode=str_replace('<%%DELETE_BUTTON%%>', '', $templateCode);
		}
		$templateCode=str_replace('<%%DESELECT_BUTTON%%>', '<button type="submit" class="btn btn-default" id="deselect" name="deselect_x" value="1" onclick="' . $backAction . '"><i class="glyphicon glyphicon-chevron-left"></i> ' . $Translation['Back'] . '</button>', $templateCode);
	}else{
		$templateCode=str_replace('<%%UPDATE_BUTTON%%>', '', $templateCode);
		$templateCode=str_replace('<%%DELETE_BUTTON%%>', '', $templateCode);
		$templateCode=str_replace('<%%DESELECT_BUTTON%%>', ($ShowCancel ? '<button type="submit" class="btn btn-default" id="deselect" name="deselect_x" value="1" onclick="' . $backAction . '"><i class="glyphicon glyphicon-chevron-left"></i> ' . $Translation['Back'] . '</button>' : ''), $templateCode);
	}

	// set records to read only if user can't insert new records and can't edit current record
	if(($selected_id && !$AllowUpdate && !$AllowInsert) || (!$selected_id && !$AllowInsert)){
		$jsReadOnly .= "\tjQuery('input[name=repair_status]').parent().html('<div class=\"form-control-static\">' + jQuery('input[name=repair_status]:checked').next().text() + '</div>')\n";
		$jsReadOnly .= "\tjQuery('#item').prop('disabled', true).css({ color: '#555', backgroundColor: '#fff' });\n";
		$jsReadOnly .= "\tjQuery('#item_caption').prop('disabled', true).css({ color: '#555', backgroundColor: 'white' });\n";
		$jsReadOnly .= "\tjQuery('#perform').replaceWith('<div class=\"form-control-static\" id=\"perform\">' + (jQuery('#perform').val() || '') + '</div>');\n";
		$jsReadOnly .= "\tjQuery('#cost').replaceWith('<div class=\"form-control-static\" id=\"cost\">' + (jQuery('#cost').val() || '') + '</div>');\n";
		$jsReadOnly .= "\tjQuery('#batch_number').replaceWith('<div class=\"form-control-static\" id=\"batch_number\">' + (jQuery('#batch_number').val() || '') + '</div>');\n";
		$jsReadOnly .= "\tjQuery('#photo_1').replaceWith('<div class=\"form-control-static\" id=\"photo_1\">' + (jQuery('#photo_1').val() || '') + '</div>');\n";
		$jsReadOnly .= "\tjQuery('#photo_2').replaceWith('<div class=\"form-control-static\" id=\"photo_2\">' + (jQuery('#photo_2').val() || '') + '</div>');\n";
		$jsReadOnly .= "\tjQuery('.select2-container').hide();\n";

		$noUploads = true;
	}elseif($AllowInsert){
		$jsEditable .= "\tjQuery('form').eq(0).data('already_changed', true);"; // temporarily disable form change handler
			$jsEditable .= "\tjQuery('form').eq(0).data('already_changed', false);"; // re-enable form change handler
	}

	// process combos
	$templateCode=str_replace('<%%COMBO(repair_status)%%>', $combo_repair_status->HTML, $templateCode);
	$templateCode=str_replace('<%%COMBOTEXT(repair_status)%%>', $combo_repair_status->SelectedData, $templateCode);
	$templateCode=str_replace('<%%COMBO(item)%%>', $combo_item->HTML, $templateCode);
	$templateCode=str_replace('<%%COMBOTEXT(item)%%>', $combo_item->MatchText, $templateCode);
	$templateCode=str_replace('<%%URLCOMBOTEXT(item)%%>', urlencode($combo_item->MatchText), $templateCode);

	/* lookup fields array: 'lookup field name' => array('parent table name', 'lookup field caption') */
	$lookup_fields = array(  'item' => array('inventory', 'Name'));
	foreach($lookup_fields as $luf => $ptfc){
		$pt_perm = getTablePermissions($ptfc[0]);

		// process foreign key links
		if($pt_perm['view'] || $pt_perm['edit']){
			$templateCode = str_replace("<%%PLINK({$luf})%%>", '<button type="button" class="btn btn-default view_parent hspacer-md" id="' . $ptfc[0] . '_view_parent" title="' . html_attr($Translation['View'] . ' ' . $ptfc[1]) . '"><i class="glyphicon glyphicon-eye-open"></i></button>', $templateCode);
		}

		// if user has insert permission to parent table of a lookup field, put an add new button
		if($pt_perm['insert'] && !$_REQUEST['Embedded']){
			$templateCode = str_replace("<%%ADDNEW({$ptfc[0]})%%>", '<button type="button" class="btn btn-success add_new_parent hspacer-md" id="' . $ptfc[0] . '_add_new" title="' . html_attr($Translation['Add New'] . ' ' . $ptfc[1]) . '"><i class="glyphicon glyphicon-plus-sign"></i></button>', $templateCode);
		}
	}

	// process images
	$templateCode=str_replace('<%%UPLOADFILE(id)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(repair_status)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(item)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(perform)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(repair_notes)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(cost)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(batch_number)%%>', '', $templateCode);
	$templateCode=str_replace('<%%UPLOADFILE(photo_1)%%>', ($noUploads ? '' : '<input type=hidden name=MAX_FILE_SIZE value=5120000>'.$Translation['upload image'].' <input type="file" name="photo_1" id="photo_1">'), $templateCode);
	if($AllowUpdate && $row['photo_1']!=''){
		$templateCode=str_replace('<%%REMOVEFILE(photo_1)%%>', '<br><input type="checkbox" name="photo_1_remove" id="photo_1_remove" value="1"> <label for="photo_1_remove" style="color: red; font-weight: bold;">'.$Translation['remove image'].'</label>', $templateCode);
	}else{
		$templateCode=str_replace('<%%REMOVEFILE(photo_1)%%>', '', $templateCode);
	}
	$templateCode=str_replace('<%%UPLOADFILE(photo_2)%%>', ($noUploads ? '' : '<input type=hidden name=MAX_FILE_SIZE value=5120000>'.$Translation['upload image'].' <input type="file" name="photo_2" id="photo_2">'), $templateCode);
	if($AllowUpdate && $row['photo_2']!=''){
		$templateCode=str_replace('<%%REMOVEFILE(photo_2)%%>', '<br><input type="checkbox" name="photo_2_remove" id="photo_2_remove" value="1"> <label for="photo_2_remove" style="color: red; font-weight: bold;">'.$Translation['remove image'].'</label>', $templateCode);
	}else{
		$templateCode=str_replace('<%%REMOVEFILE(photo_2)%%>', '', $templateCode);
	}
	$templateCode=str_replace('<%%UPLOADFILE(last_update)%%>', '', $templateCode);

	// process values
	if($selected_id){
		$templateCode=str_replace('<%%VALUE(id)%%>', html_attr($row['id']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(id)%%>', urlencode($urow['id']), $templateCode);
		$templateCode=str_replace('<%%VALUE(repair_status)%%>', html_attr($row['repair_status']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(repair_status)%%>', urlencode($urow['repair_status']), $templateCode);
		$templateCode=str_replace('<%%VALUE(item)%%>', html_attr($row['item']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(item)%%>', urlencode($urow['item']), $templateCode);
		if($dvprint){
			$templateCode = str_replace('<%%VALUE(perform)%%>', nl2br(html_attr($row['perform'])), $templateCode);
		}else{
			$templateCode = str_replace('<%%VALUE(perform)%%>', html_attr($row['perform']), $templateCode);
		}
		$templateCode=str_replace('<%%URLVALUE(perform)%%>', urlencode($urow['perform']), $templateCode);
		if($AllowUpdate || $AllowInsert){
			$templateCode = str_replace('<%%HTMLAREA(repair_notes)%%>', '<textarea name="repair_notes" id="repair_notes" rows="5">' . html_attr($row['repair_notes']) . '</textarea>', $templateCode);
		}else{
			$templateCode = str_replace('<%%HTMLAREA(repair_notes)%%>', '<div id="repair_notes" class="form-control-static">' . $row['repair_notes'] . '</div>', $templateCode);
		}
		$templateCode=str_replace('<%%VALUE(repair_notes)%%>', nl2br($row['repair_notes']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(repair_notes)%%>', urlencode($urow['repair_notes']), $templateCode);
		$templateCode=str_replace('<%%VALUE(cost)%%>', html_attr($row['cost']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(cost)%%>', urlencode($urow['cost']), $templateCode);
		$templateCode=str_replace('<%%VALUE(batch_number)%%>', html_attr($row['batch_number']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(batch_number)%%>', urlencode($urow['batch_number']), $templateCode);
		$row['photo_1']=($row['photo_1']!=''?$row['photo_1']:'blank.gif');
		$templateCode=str_replace('<%%VALUE(photo_1)%%>', html_attr($row['photo_1']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(photo_1)%%>', urlencode($urow['photo_1']), $templateCode);
		$row['photo_2']=($row['photo_2']!=''?$row['photo_2']:'blank.gif');
		$templateCode=str_replace('<%%VALUE(photo_2)%%>', html_attr($row['photo_2']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(photo_2)%%>', urlencode($urow['photo_2']), $templateCode);
		$templateCode=str_replace('<%%VALUE(last_update)%%>', html_attr($row['last_update']), $templateCode);
		$templateCode=str_replace('<%%URLVALUE(last_update)%%>', urlencode($urow['last_update']), $templateCode);
	}else{
		$templateCode=str_replace('<%%VALUE(id)%%>', '', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(id)%%>', urlencode(''), $templateCode);
		$templateCode=str_replace('<%%VALUE(repair_status)%%>', '', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(repair_status)%%>', urlencode(''), $templateCode);
		$templateCode=str_replace('<%%VALUE(item)%%>', '', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(item)%%>', urlencode(''), $templateCode);
		$templateCode=str_replace('<%%VALUE(perform)%%>', '', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(perform)%%>', urlencode(''), $templateCode);
		$templateCode=str_replace('<%%HTMLAREA(repair_notes)%%>', '<textarea name="repair_notes" id="repair_notes" rows="5"></textarea>', $templateCode);
		$templateCode=str_replace('<%%VALUE(cost)%%>', '0.00', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(cost)%%>', urlencode('0.00'), $templateCode);
		$templateCode=str_replace('<%%VALUE(batch_number)%%>', '', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(batch_number)%%>', urlencode(''), $templateCode);
		$templateCode=str_replace('<%%VALUE(photo_1)%%>', 'blank.gif', $templateCode);
		$templateCode=str_replace('<%%VALUE(photo_2)%%>', 'blank.gif', $templateCode);
		$templateCode=str_replace('<%%VALUE(last_update)%%>', 'Timestamp: <%%editingDateTime%%> | User: <%%editorUsername%%> | IP: <%%editorIP%%>', $templateCode);
		$templateCode=str_replace('<%%URLVALUE(last_update)%%>', urlencode('Timestamp: <%%editingDateTime%%> | User: <%%editorUsername%%> | IP: <%%editorIP%%>'), $templateCode);
	}

	// process translations
	foreach($Translation as $symbol=>$trans){
		$templateCode=str_replace("<%%TRANSLATION($symbol)%%>", $trans, $templateCode);
	}

	// clear scrap
	$templateCode=str_replace('<%%', '<!-- ', $templateCode);
	$templateCode=str_replace('%%>', ' -->', $templateCode);

	// hide links to inaccessible tables
	if($_REQUEST['dvprint_x'] == ''){
		$templateCode .= "\n\n<script>\$j(function(){\n";
		$arrTables = getTableList();
		foreach($arrTables as $name => $caption){
			$templateCode .= "\t\$j('#{$name}_link').removeClass('hidden');\n";
			$templateCode .= "\t\$j('#xs_{$name}_link').removeClass('hidden');\n";
		}

		$templateCode .= $jsReadOnly;
		$templateCode .= $jsEditable;

		if(!$selected_id){
		}

		$templateCode.="\n});</script>\n";
	}

	// ajaxed auto-fill fields
	$templateCode .= '<script>';
	$templateCode .= '$j(function() {';


	$templateCode.="});";
	$templateCode.="</script>";
	$templateCode .= $lookups;

	// handle enforced parent values for read-only lookup fields

	// don't include blank images in lightbox gallery
	$templateCode = preg_replace('/blank.gif" data-lightbox=".*?"/', 'blank.gif"', $templateCode);

	// don't display empty email links
	$templateCode=preg_replace('/<a .*?href="mailto:".*?<\/a>/', '', $templateCode);

	// hook: repairs_dv
	if(function_exists('repairs_dv')){
		$args=array();
		repairs_dv(($selected_id ? $selected_id : FALSE), getMemberInfo(), $templateCode, $args);
	}

	return $templateCode;
}
?>