"; while($line = mysql_fetch_array($results)) { $html .= editable_text("Name", $line, 'name_text'); $html .= editable_text("Owner", $line, 'owner'); $html .= editable_text("Description", $line, 'description'); $html .= editable_text("Category", $line, 'category'); } $html .= ""; return $html; } function editable_text($name, $line, $field) { $s = "" . $name . "" . $line[$field] . ""; return $s; } function area_points($x, $y) { $sql = "SELECT * FROM map_points_2 WHERE " . " x < " . ($x + 500) . " AND x > " . ($x+100) . " AND y < " . ($y + 300) . " AND y > " . ($y+100); $results = mysql_query($sql) or die ("Sorry: " . mysql_error()); $html = ""; return $html; } function add_point($x, $y, $name_text) { $sql = "SELECT * FROM map_points_2 WHERE x = $x AND y = $y AND owner = '" . mysql_escape_string($_COOKIE['username']) . "'"; $r = $sql; $results = mysql_query($sql); if(mysql_num_rows($results) == 0) { $sql = "INSERT INTO map_points_2 (x, y, name_text, owner) VALUES ($x, $y, '" . mysql_escape_string($name_text) . "', '" . mysql_escape_string($_COOKIE['username']) . "')"; mysql_query($sql) or die("Sorry: " . mysql_error()); $r .= " + $sql "; } else { update_point($x, $y, "name_text", $name_text); } return $r; } function update_point($x, $y, $field, $value) { $sql = "UPDATE map_points_2 SET $field = '" . mysql_escape_string($value) . "' WHERE x = $x AND y = $y"; mysql_query($sql) or die("Sorry: " . mysql_error()); return $sql; } $sajax_request_type = "GET"; sajax_init(); sajax_export("area_points", "add_point", "point_detail", "update_point"); sajax_handle_client_request(); ?> Add new point