require_once '/home/web/redcross/db_connect.php'; // db connection file

define( 'APP_ROOT', dirname( __FILE__ ) . DIRECTORY_SEPARATOR );
define( 'DIR_INC', APP_ROOT . 'cart' . DIRECTORY_SEPARATOR . 'inc' );
define( 'MANAGE_INC', APP_ROOT . 'cart' . DIRECTORY_SEPARATOR . 'manage' . DIRECTORY_SEPARATOR . 'inc' );
define( 'DOMAIN', $_SERVER['HTTP_HOST'] );

//echo APP_ROOT.'<br />'."\n";
//echo 'set_include_path: '.DIR_INC.'<br />'."\n";
set_include_path( DIR_INC . PATH_SEPARATOR . get_include_path() );

function safeEscape( $value ) {
	// Stripslashes
	if( get_magic_quotes_gpc() ) {
		$value = stripslashes( $value );
	}
	if( $value ) {
		$value = mysql_real_escape_string( $value );
	}
	return $value;
}
function safeEscapeStrip($string) {
	$string = strip_tags($string);
	// Stripslashes
	if( get_magic_quotes_gpc() ) {
		$string = stripslashes( $string );
	}
	if( $string ) {
		$string = mysql_real_escape_string( $string );
	}
	return $string;
}

//-- SORT UPDATE FUNCTION --//
function updateSorts($mysql_tbl, $mysql_update_id, $mysql_update_id_val, $mysql_update_srt_field_name, $update_srt_val, $current_srt_val, $extra_mysql_field_names, $extra_mysql_field_vals, $cleanup_at_end) {
	
	// step one - looking for records that may already be in that spot
	$search_query = "SELECT ".$mysql_update_id." FROM ".$mysql_tbl." WHERE ".$mysql_update_srt_field_name." >= ".$update_srt_val."";
	if($extra_mysql_field_names != "") {
		while($each = each($extra_mysql_field_names)) {
			$search_query .= " AND ".$extra_mysql_field_names[$each['key']]."='".$extra_mysql_field_vals[$each['key']]."'";
		}
	}
	$search_query .=" AND ".$mysql_update_id." != ".$mysql_update_id_val." ORDER BY ".$mysql_update_srt_field_name."";
	//echo '<strong>search_query:</strong> '.$search_query.'<br />'."\n";
	$search_result = @mysql_query($search_query) OR die ($search_query.'<br /><br />'.mysql_error());
	if(mysql_num_rows($search_result) > 0) {
		$update_srt_pos = $update_srt_val;
		if ($current_srt_val > $update_srt_val) {
			$update_srt_pos++;
		}
		while($update = mysql_fetch_array($search_result)) {
			if($update_srt_pos == $update_srt_val) {
				$update_srt_pos++;
			}
			$increment_srt_query = "UPDATE ".$mysql_tbl." SET ".$mysql_update_srt_field_name."=".$update_srt_pos." WHERE ".$mysql_update_id."=".$update[$mysql_update_id]."";
			//echo '<strong>increment_srt_query:</strong> '.$increment_srt_query.'<br />'."\n";
			$increment_srt_result = @mysql_query($increment_srt_query) OR die ($increment_srt_query.'<br /><br />'.mysql_error());
			$update_srt_pos++;
		}
		$update_sorts_affected = mysql_num_rows($search_result);
	}
	
	// step two - updating the selected record's rank
	$update_query = "UPDATE ".$mysql_tbl." SET ".$mysql_update_srt_field_name."=".$update_srt_val." WHERE ".$mysql_update_id."=".$mysql_update_id_val."";
	//echo '<strong>update_query:</strong> '.$update_query.'<br />'."\n";
	$update_result = @mysql_query($update_query) OR die ($update_query.'<br /><br />'.mysql_error());
	return $update_sorts_affected;
	
	// step three - cleaning up all the ranks
	if($cleanup_at_end == TRUE) {
		cleanupSorts($mysql_tbl, $mysql_update_id, $mysql_update_srt_field_name, $extra_mysql_field_names, $extra_mysql_field_vals);
	}
}
function cleanupSorts($mysql_tbl, $mysql_update_id, $mysql_update_srt_field_name, $extra_mysql_field_names, $extra_mysql_field_vals) {
	$search_query = "SELECT ".$mysql_update_id.", ".$mysql_update_srt_field_name." FROM ".$mysql_tbl."";
	if($extra_mysql_field_names != "") {
		$search_query .= " WHERE 1";
		while($each = each($extra_mysql_field_names)) {
			$search_query .= " AND ".$extra_mysql_field_names[$each['key']]."='".$extra_mysql_field_vals[$each['key']]."'";
		}
	}
	$search_query .= " ORDER BY ".$mysql_update_srt_field_name."";
	//echo '<strong>LAST search_query:</strong> '.$search_query.'<br />'."\n";
	$search_result = @mysql_query($search_query) OR die ($search_query.'<br /><br />'.mysql_error());
	if(mysql_num_rows($search_result) > 0) {
		$cleanup_srt_pos = 1;
		while($cleanup = mysql_fetch_array($search_result)) {
			$cleanup_srt_query = "UPDATE ".$mysql_tbl." SET ".$mysql_update_srt_field_name."=".$cleanup_srt_pos." WHERE ".$mysql_update_id."=".$cleanup[$mysql_update_id]."";
			//echo '<p><strong>cleanup_srt_query:</strong> '.$cleanup_srt_query.'</p>'."\n";
			$cleanup_srt_result = @mysql_query($cleanup_srt_query) OR die ($cleanup_srt_query.'<br /><br />'.mysql_error());
			$cleanup_srt_pos++;
		}
	}
}

// defining variables / paths to use throughout site
$cat_img_thumb_directory = APP_ROOT . 'i/cat/t/';
$cat_img_mid_directory = APP_ROOT . 'i/cat/m/';
$cat_img_full_directory = APP_ROOT . 'i/cat/f/';
$cat_ds_directory = APP_ROOT . 'pdf/ds/cat/';
$cat_instr_man_directory = APP_ROOT . 'pdf/instr_man/cat/';
$cat_zip_directory = APP_ROOT . 'zip/cat/';
$prd_img_thumb_directory = APP_ROOT . 'i/prd/t/';
$prd_img_full_directory = APP_ROOT . 'i/prd/f/';
$prd_ds_directory = APP_ROOT . 'pdf/ds/prd/';
$home_page_category_icon_dir = APP_ROOT . 'i/hp/';
$home_page_category_image_dir = APP_ROOT . 'i/hp/';
?>