','',$_POST['instructions'])); $submitter = $_SESSION['user']['id']; $current_date_time = date('Y-m-d G:i:s'); $fld = mysql_real_escape_string($_POST['tbl']); $content = mysql_real_escape_string(str_replace('
','',$_POST['content'])); $edit_id = $_POST['edit_id']; $reset=0; if(isset($id)) { $sql ="SELECT * FROM faqs WHERE id= '$id'"; } elseif($action=='new') { $insert ="INSERT INTO faqs (subject,description,instructions,status,creator,date_created,submitter,date_submitted) VALUES('$subject','$description','$instructions','1','$submitter','$current_date_time','$submitter','$current_date_time')"; $database->query($insert); $sql ="SELECT * FROM faqs "; $reset=1; } elseif($action=='edit') { $update = "UPDATE faqs SET ".$fld."='$content', submitter='$submitter',date_submitted='$current_date_time' WHERE id='$edit_id'"; $database->query($update); $sql ="SELECT * FROM faqs "; $reset=1; } elseif($q=='') { $sql ="SELECT * FROM faqs "; $reset=1; } else { $sql = "SELECT * FROM faqs WHERE subject like '%$q%' OR description like '%$q%' OR instructions like '%$q%'"; } global $database; $result = $database->getAll($sql); if(is_array($result)) { if($reset){ $str = '

'.$i.'. '.$res['subject'].'

'; } elseif(empty($result)) { $str = 'No record found for word "'.$q.'"'; $str .= '
Back'; } else { $str = '

Subject: (click area to edit)

'.preg_replace('!('.$q.')!i','$1',$res['subject']).'

Description: (click area to edit)

'.str_replace( $q ,''.$q.'',$res['description']).'

Instructions: (click area to edit)

'.str_replace($q,''.$q.'',(nl2br($res['instructions']))).'

Created By: '.common_users::full_name($res['creator']).' on '.$res['date_created'].'
Last Updated by: '.common_users::full_name($res['submitter']).' on '.$res['date_submitted'].'

'; $str .= '
Back'; } }else{ $str = 'No record found for word '.$q .''; } $counter = count($result); if($result) $status = true; else $status = false; $results = array("status" => $status,"result" => $str,"counter"=>$counter ); $json = json_encode($results); echo $json; ?>