From 07a8ac63f806f2cb4794b31c3773269e6d20ddcb Mon Sep 17 00:00:00 2001
From: lars <lars.kermode@caribana.ch>
Date: Thu, 2 May 2019 15:00:52 +0200
Subject: [PATCH] Save requestor name in mysql db

---
 accred_form.php | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/accred_form.php b/accred_form.php
index aa898298..6cfc9602 100644
--- a/accred_form.php
+++ b/accred_form.php
@@ -118,17 +118,22 @@ if($_POST['btnprocess'] && $isAdmin) {
 $d = $mysqli->real_escape_string(serialize($_POST));
 if(!$aid) {
 	// Make sure we set the demande_our value to current user if blank
-	// This would happen upon submission of a new record by non-admin person
+    // This would happen upon submission of a new record by non-admin person
+    // Save requestor in serialized data but also as mysql column, we will need to do a sort by later
 	if($_POST['demande_pour']=='') {
 		$m = $_POST;
 		$m['demande_pour'] = $username;
-		$d = $mysqli->real_escape_string(serialize($m));
-	}
-	$query = "INSERT INTO submissions (uid, status, name, created, formdata,modified) values('$userid',$status,'$username',null,'".$d."',NOW())";
+        $d = $mysqli->real_escape_string(serialize($m));
+        $reqName = $username;
+    }
+    else {
+        $reqName = $mysqli->real_escape_string($_POST['demande_pour']);
+    }
+	$query = "INSERT INTO submissions (uid, status, name, reqname, created, formdata,modified) values('$userid',$status,'$username','$reqName',null,'".$d."',NOW())";
         syslog(LOG_INFO, "Create entry by uid: $userid / $uname from: {$_SERVER['REMOTE_ADDR']} ({$_SERVER['HTTP_USER_AGENT']})");
 }
 else {
-	$query = "UPDATE submissions set modifieduid=$userid,formdata='".$d."'";
+	$query = "UPDATE submissions set reqname='".$reqName."',modifieduid=$userid,formdata='".$d."'";
 	if($updateStatus) {
 		$query .= ",status=$status ";
 	}