Merge pull request #199 from globaldyne/v12.2

V12.2

Author: globaldyne

CHANGELOG.md

@@ -1,4 +1,19 @@
 # CHANGELOG
+### Version 12.2
+- Docker file update
+- Fixed document upload for ingredients returning incorrect results
+- Update login method
+- Fix API formula failing to return formulas
+- Added formulas upload via the API
+- Prevent user profile update if managed externally
+- API now allows upload for formulas, ingredients
+- User password is now using a stronger encryption algorithm
+- Forgot password modal update for BS5
+- Forgot password wording update
+- Check if user password is already encrypted when env user variables provided, encrypt if not
+- Added a stress test script to crate dummy formulas
+- Added available API calls endpoint table
+
 ### Version 12.1
 - Added summary of total amount required for pending materials
 - Added list of materials per supplier

Dockerfile

@@ -25,7 +25,8 @@ RUN microdnf --setopt=tsflags=nodocs -y install \
 	openssl \
 	mysql \
 	ncurses \
-	nginx 
+	nginx \
+	procps-ng 
 
 
 

VERSION.md

@@ -1 +1 @@
-12.1
+12.2

api-functions/categories_get.php

@@ -0,0 +1,53 @@
+<?php
+
+if (!defined('pvault_panel')){ die('Not Found');}
+
+header('Content-Type: application/json');
+global $conn;
+
+$sql = mysqli_query($conn, "SELECT id, name, notes, image, colorKey FROM ingCategory");
+
+if (!$sql) {
+	error_log(mysqli_error($conn));
+    die(json_encode(['error' => 'Query failed: ' . mysqli_error($conn)]));
+}
+
+$rows = array();
+
+// Default image and color key values
+$defaultImagePath = __ROOT__."/img/molecule.png";
+$defaultColorKey = "255, 255, 255";
+
+// Loop through the result set
+while ($r = mysqli_fetch_assoc($sql)) {
+    // Ensure notes are set to "N/A" if empty
+    $r['notes'] = empty($r['notes']) ? "N/A" : $r['notes'];
+
+    // Handle the image field
+    if (empty($r['image'])) {
+        // Image is empty, use default image
+        $r['image'] = base64_encode(file_get_contents($defaultImagePath));
+    } else {
+        // Split the base64 string and use it
+        $img = explode('data:image/png;base64,', $r['image']);
+        $r['image'] = isset($img[1]) ? $img[1] : base64_encode(file_get_contents($defaultImagePath));
+    }
+
+    // Ensure colorKey is set to default value if empty
+    $r['colorKey'] = empty($r['colorKey']) ? $defaultColorKey : $r['colorKey'];
+
+    // Cast id to integer
+    $r['id'] = (int)$r['id'];
+
+    // Filter out empty values (if needed)
+    $rows['categories'][] = array_filter($r);
+}
+
+// Close the database connection
+mysqli_close($conn);
+
+// Set headers and output the JSON response
+header('Content-Type: application/json; charset=utf-8');
+echo json_encode($rows, JSON_PRETTY_PRINT);
+return;
+?>

api-functions/documents_get.php

@@ -0,0 +1,58 @@
+<?php
+
+if (!defined('pvault_panel')){ die('Not Found');}
+
+header('Content-Type: application/json');
+global $conn;
+// Pagination setup
+$itemsPerPage = isset($_GET['limit']) ? (int)$_GET['limit'] : 10; // Default to 10 items per page
+$page = isset($_GET['page']) ? (int)$_GET['page'] : 1; // Default to page 1
+$page = $page > 0 ? $page : 1; // Ensure page number is positive
+$offset = ($page - 1) * $itemsPerPage;
+
+// Query to fetch paginated data
+$sql = mysqli_query($conn, "SELECT id, ownerID, type, name, notes, docData, created_at, updated_at 
+                            FROM documents 
+                            LIMIT $itemsPerPage OFFSET $offset");
+
+// Check if the query was successful
+if (!$sql) {
+    die(json_encode(['error' => 'Query failed: ' . mysqli_error($conn)]));
+}
+
+$rows = array();
+
+// Process the results
+while ($rx = mysqli_fetch_assoc($sql)) {
+    $r['id'] = (int)$rx['id'];
+    $r['ownerID'] = (int)$rx['ownerID'] ?: 0;
+    $r['type'] = (int)$rx['type'] ?: 0;
+    $r['name'] = (string)$rx['name'] ?: "-";
+    $r['notes'] = (string)$rx['notes'] ?: "-";
+    $r['docData'] = (string)$rx['docData'];
+    $r['created_at'] = (string)$rx['created_at'] ?: "-";
+    $r['updated_at'] = (string)$rx['updated_at'] ?: "-";
+
+    $rows['documents'][] = $r;
+}
+
+// Total records count for pagination metadata
+$totalCountQuery = mysqli_query($conn, "SELECT COUNT(*) AS total FROM documents");
+$totalCount = mysqli_fetch_assoc($totalCountQuery)['total'];
+
+// Pagination metadata
+$rows['pagination'] = [
+    'currentPage' => $page,
+    'itemsPerPage' => $itemsPerPage,
+    'totalItems' => (int)$totalCount,
+    'totalPages' => ceil($totalCount / $itemsPerPage)
+];
+
+mysqli_close($conn);
+
+// Output the JSON response
+header('Content-Type: application/json; charset=utf-8');
+echo json_encode($rows, JSON_NUMERIC_CHECK | JSON_PRETTY_PRINT);
+return;
+
+?>

api-functions/formulas_get.php

@@ -0,0 +1,59 @@
+<?php
+if (!defined('pvault_panel')){ die('Not Found');}
+global $conn;
+
+if ($fid = mysqli_real_escape_string($conn, $_REQUEST['fid'])) {
+    $sql = mysqli_query($conn, "SELECT id, fid, name, product_name, notes, finalType AS concentration, status, created_at, isProtected, rating, profile, src, customer_id, revision, madeOn FROM formulasMetaData WHERE fid = '$fid'");
+} else {
+    $sql = mysqli_query($conn, "SELECT id, fid, name, product_name, notes, finalType AS concentration, status, created_at, isProtected, rating, profile, src, customer_id, revision, madeOn FROM formulasMetaData");
+}
+
+$rows = ["formulas" => []];
+
+if ($sql && mysqli_num_rows($sql) > 0) {
+    while ($r = mysqli_fetch_assoc($sql)) {
+        $C = date_format(date_create($r['created_at']), "Y-m-d H:i:s");
+        $I = mysqli_fetch_array(mysqli_query($conn, "SELECT docData FROM documents WHERE ownerID = '" . $r['id'] . "' AND type = '2'"));
+        $sql_ing = mysqli_query($conn, "SELECT ingredient AS name, fid, ingredient, concentration, dilutant, quantity, notes FROM formulas WHERE fid = '" . $r['fid'] . "'");
+
+        $formula = [
+            'fid' => (string)$r['fid'],
+            'name' => (string)$r['name'],
+            'product_name' => (string)$r['product_name'] ?: "Not Set",
+            'notes' => (string)$r['notes'] ?: "-",
+            'concentration' => (int)$r['concentration'] ?: 100,
+            'status' => (int)$r['status'] ?: 0,
+            'created_at' => (string)$C ?: "-",
+            'isProtected' => (int)$r['isProtected'] ?: 0,
+            'rating' => (int)$r['rating'] ?: 0,
+            'profile' => (string)$r['profile'] ?: "Default",
+            'src' => (int)$r['src'] ?: 0,
+            'customer_id' => (int)$r['customer_id'] ?: 0,
+            'revision' => (int)$r['revision'] ?: 0,
+            'madeOn' => (string)$r['madeOn'] ?: "-",
+            'image' => (string)$I['docData'] ?: $defImage,
+            'ingredients' => []
+        ];
+
+        if ($sql_ing && mysqli_num_rows($sql_ing) > 0) {
+            while ($i = mysqli_fetch_assoc($sql_ing)) {
+                $ingredient = [
+                    'fid' => (string)$i['fid'],
+                    'ingredient' => (string)$i['ingredient'],
+                    'concentration' => (float)$i['concentration'] ?: 100,
+                    'quantity' => (float)$i['quantity'] ?: 0,
+                    'notes' => (string)$i['notes'] ?: '-'
+                ];
+
+                $formula['ingredients'][] = $ingredient;
+            }
+        }
+
+        $rows['formulas'][] = $formula;
+    }
+}
+
+header('Content-Type: application/json; charset=utf-8');
+echo json_encode($rows, JSON_PRETTY_PRINT);
+
+?>

api-functions/formulas_upload.php

@@ -0,0 +1,69 @@
+<?php
+if (!defined('pvault_panel')){ die('Not Found');}
+global $conn;
+
+$json = file_get_contents('php://input');
+$data = json_decode($json, true);
+
+if (!$data || !is_array($data)) {
+    http_response_code(400);
+    echo json_encode(['error' => 'Invalid JSON data']);
+    return;
+}
+
+if (empty($data['formulas']) || !is_array($data['formulas'])) {
+    http_response_code(400);
+    echo json_encode(['error' => 'Missing or invalid formulas array']);
+    return;
+}
+
+foreach ($data['formulas'] as $row) {
+    // Parse formula metadata
+    $fid = mysqli_real_escape_string($conn, $row['fid']);
+    $name = mysqli_real_escape_string($conn, $row['name']);
+    $product_name = mysqli_real_escape_string($conn, $row['product_name'] ?? '-');
+    $notes = mysqli_real_escape_string($conn, $row['notes'] ?? '-');
+    $concentration = (int)($row['concentration'] ?? 100);
+    $status = (int)($row['status'] ?? 0);
+    $isProtected = (int)($row['isProtected'] ?? 0);
+    $rating = (int)($row['rating'] ?? 0);
+    $profile = mysqli_real_escape_string($conn, $row['profile'] ?? 'Default');
+    $src = (int)($row['src'] ?? 0);
+    $customer_id = (int)($row['customer_id'] ?? 0);
+    $revision = (int)($row['revision'] ?? 0);
+    $madeOn = mysqli_real_escape_string($conn, $row['madeOn'] ?? date('Y-m-d H:i:s'));
+
+    $query = "INSERT INTO formulasMetaData (fid, name, product_name, notes, finalType, status, isProtected, rating, profile, src, customer_id, revision, madeOn) 
+              VALUES ('$fid', '$name', '$product_name', '$notes', '$concentration', '$status', '$isProtected', '$rating', '$profile', '$src', '$customer_id', '$revision', '$madeOn')";
+
+    if (!mysqli_query($conn, $query)) {
+        error_log(mysqli_error($conn));
+        echo json_encode(['error' => 'Failed to insert formula', 'details' => mysqli_error($conn)]);
+        return;
+    }
+
+    // Parse associated ingredients
+    if (!empty($row['ingredients']) && is_array($row['ingredients'])) {
+        foreach ($row['ingredients'] as $ingredient) {
+            $ingredient_fid = mysqli_real_escape_string($conn, $ingredient['fid']);
+            $ingredient_name = mysqli_real_escape_string($conn, $ingredient['ingredient']);
+            $ingredient_concentration = (float)($ingredient['concentration'] ?? 100);
+            $ingredient_quantity = (float)($ingredient['quantity'] ?? 0);
+            $ingredient_dilutant = mysqli_real_escape_string($conn, $ingredient['dilutant']);
+
+            $ingredient_query = "INSERT INTO formulas (fid, name, ingredient, concentration, dilutant, quantity, notes) 
+                                 VALUES ('$ingredient_fid', '$name', '$ingredient_name', '$ingredient_concentration', '$ingredient_dilutant', '$ingredient_quantity', '-')";
+
+            if (!mysqli_query($conn, $ingredient_query)) {
+                error_log(mysqli_error($conn));
+                echo json_encode(['error' => 'Failed to insert ingredient', 'details' => mysqli_error($conn)]);
+            }
+        }
+    }
+}
+
+echo json_encode(['success' => 'Data inserted successfully']);
+
+?>
+
+