<?
//header('Content-Type: text/html; charset=utf-8');
date_default_timezone_set('Asia/Bangkok');
$date = date('Y-m-d H:i:s');
ini_set('max_execution_time', 300);
if ($_SERVER['REQUEST_METHOD'] === 'POST')
{
    $barcode = $_POST['barcode'];
	$store = $_POST['store'];
}
else
{
	$barcode = $_GET['barcode'];
	$store = $_GET['store'];
}
include("connect.php");
mysqli_query($mysqli,"SET character_set_results=utf8");
mysqli_query($mysqli,"SET character_set_client=utf8");
mysqli_query($mysqli,"SET character_set_connection=utf8");
$barcode = substr($barcode,0,11);
if(strlen($store)>0)
{
	$result = $mysqli->query("SELECT * FROM us_stores WHERE barcode LIKE '%$barcode%' AND store = '$store'");
	$num_rows = mysqli_num_rows($result);
	if($num_rows==0)
		$result = $mysqli->query("SELECT * FROM us_stores WHERE barcode LIKE '%$barcode%'");
}
else
{
	$result = $mysqli->query("SELECT * FROM us_stores WHERE barcode LIKE '%$barcode%'");
}
$num_rows = mysqli_num_rows($result);
if($num_rows>0)
{
	$row=mysqli_fetch_row($result);
	$productname = $row[1];
	$price = $row[2];
	$amount = $row[4];
	if($price>0)
	{
		echo $productname." Price:$".strval($price);
		$amount = $amount+1;
		$sql = "UPDATE us_stores SET amount='$amount',ctime = '$date' WHERE barcode LIKE '%$barcode%'";
		if (!mysqli_query($mysqli, $sql))
			echo "Error updating record: " . mysqli_error($mysqli);
		exit;
	}
}
else
{
	$sql = $mysqli->query("SELECT * FROM usnotfound WHERE barcode LIKE '%$barcode%'");
	$num_rows = mysqli_num_rows($sql);
	if($num_rows==0)
	{
		$sql = "INSERT INTO usnotfound (barcode,ctime) VALUES ('%$barcode%','$date')";
		if (!mysqli_query($mysqli, $sql))
			echo "".mysqli_error($mysqli);
	}	
}
?>