<?php
 
require_once("../../../common.inc.php");
 
if (empty($_SESSION["backend_sysid"])) {
	header("Location: ../error.php");
	exit;
}
 date_default_timezone_set('Asia/Hong_Kong');

$page_field = "";
include("config.php");
 
  
if ($id == "") {	
	
	//check
	if ($temp_id == "") {
		header("Location: ".$page_address_list);
		exit;
	}

	//insert
	$sql = "INSERT INTO `".$page_tbname."` ( `id` )
			VALUES (
			NULL
			);";
	$db->query($sql);
	$id = $db->insert_id();
	
	if($temp_id != ""){
		$sql = "UPDATE `attachment` SET
			`table_id` = '".$id."', `temp_id` = ''
			WHERE `table_name` = '".$page_tbname."' AND `temp_id` = '".$temp_id."'";
		$db->query($sql);
	}
	
}

$tags_each= $tags;
	if ($tags_each){
	 foreach ($tags_each as $t){
   $tags_id .= $t." ";
   }
	} 


//update
$sql ="UPDATE `".$page_tbname."` SET 
	invoicenumber='".escapeit($invoicenumber)."',
	deliverynumber='".escapeit($deliverynumber)."',
	shipdate='".escapeit($shipdate)."',
	contactemail='".escapeit($contactemail)."',
 	shippingmethod='".escapeit($shippingmethod)."',
 	orderremarks='".escapeit($orderremarks)."',
 	contactname='".escapeit($contactname)."',
 	contactphone='".escapeit($contactphone)."',
 	address='".escapeit($address)."',
 	remarks='".escapeit($remarks)."',
	status='".escapeit($status)."',
	`updatetime`= now(),
	 updateip ='".$_SERVER["REMOTE_ADDR"]."'	
	WHERE `id` = '".$id."'";


$db->query($sql);

 
if (!empty($delfiles)) {
	foreach ($delfiles as $key => $value) {
		del_attachment($value, "../../");
	}
}
				
header("Location: ".$page_address_list."?keepSession=1&page=".$page);
exit;
?>