File: /home/posscale/subdomains/ccm/files/ext/post.php
<?
if(isset($_POST['action']))
{
switch($_POST['action'])
{
case 'update_ext':
$sql = "
UPDATE
extensions
SET
name = '".db($_POST['name'])."',
nickname = '".db($_POST['nickname'])."'
WHERE
id = ".db($_POST['ext_id'])."
AND
user_id = ".$_SESSION['user']['id'][0];
db_query($sql);
redir($base_url.'/ext/edit/'.$_POST['ext_id']);
break;
case 'lookup_ext':
session_start();
include('../../includes/php/top.php');
if(!empty($_POST['str']))
{
$search_cols = array(
'name',
'nickname',
'ext'
);
$strings = explode(" ", $_POST['str']);
$where = str2search($search_cols, $strings);
$sql = "
SELECT
*
FROM
extensions
WHERE
user_id = ".$_SESSION['user']['id'][0]."
AND
".$where."
ORDER BY
pbx_id ASC,
ext ASC";
$result = db_query($sql);
?>
<fieldset style="margin:5px; border:1px dashed #666666;">
<legend>Search Results</legend>
<?
for($i=0; $i<$result['mysql_num_rows']; $i++)
{
?>
<div class="div_hover" onclick="parent.location='<?=$base_url?>/ext/edit/<?=$result['id'][$i]?>/'" style="float:left; width: 750px;">
<div style="float:left;"><?=$result['ext'][$i]?> [<?=db_query_1('SELECT name FROM pbx WHERE id='.$result['pbx_id'][$i])?>] <b><?=$result['name'][$i]?></b> ( <?=$result['nickname'][$i]?> )</div>
<div style="float:right; width:150px; overflow:auto; text-align:center;">
<a href="<?=$base_url?>/ext/edit/<?=$result['id'][$i]?>/">edit</a>
</div>
</div>
<?
}
?>
</fieldset>
<?
}
die();
break;
}
}
?>