summaryrefslogtreecommitdiff
path: root/www/reorder.php
blob: 375ee62d18388f33fac3f1565dcb28ca05739456 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
<?php

/*
    PassMan - simple password manager
    Copyright (C) 2018 Ian Cowburn

    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

require 'config.php';
require 'common.php';

$result = array();

try
{
    $db = ConnectDB();

    $from_id = $_REQUEST["from_id"];
    $to_id = $_REQUEST["to_id"];
    $from_display = 0;
    $to_display = 0;

    $cmd = $db->prepare("SELECT display FROM pm_store ".
    				"WHERE id = :id");
    $cmd->bindParam(":id", $from_id);
    $cmd->execute();

    $data = $cmd->fetch();

    $from_display = $data["display"];

    $cmd->bindParam(":id", $to_id);
    $cmd->execute();

    $data = $cmd->fetch();

    $to_display = $data["display"];

    $from_update = $db->prepare("UPDATE pm_store SET display = :to_display " .
				    "WHERE id = :from_id");
    $from_update->bindParam(":to_display", $to_display);
    $from_update->bindParam(":from_id", $from_id);
    $from_update->execute();

    $to_update = $db->prepare("UPDATE pm_store SET display = :from_display " .
				    "WHERE id = :to_id");
    $to_update->bindParam(":from_display", $from_display);
    $to_update->bindParam(":to_id", $to_id);
    $to_update->execute();

    $result["status"] = true;

    $db = null;
}
catch(PDOException $e)
{
    $result["error"] = "DB error:" . $e->getMessage();
}

header("Content-type:application/json");
echo json_encode($result);

?>