.db_escape($trans_no).",".db_escape($description).", "
.db_escape($filename).", ".db_escape($unique_name).", ".db_escape($filesize)
.", ".db_escape($filetype).", '$date')";
- db_query($sql, "Attachment could not be inserted");
+ db_query($sql, "Attachment could not be inserted");
}
//----------------------------------------------------------------------------------------
$sql .= "filename=".db_escape($filename).",
unique_name=".db_escape($unique_name).",
filesize=".db_escape($filesize).",
- filetype=".db_escape($filetype);
+ filetype=".db_escape($filetype).",";
}
$sql .= "tran_date='$date' WHERE id=".db_escape($selected_id);
- db_query($sql, "Attachment could not be updated");
+ db_query($sql, "Attachment could not be updated");
}
//----------------------------------------------------------------------------------------
$sql = "DELETE FROM ".TB_PREF."attachments WHERE id = ".db_escape($id);
db_query($sql, "Could not delete attachment");
}
+
+//----------------------------------------------------------------------------------------
+
+function get_attachment_string($type, $id)
+{
+ global $path_to_root;
+ $str_return = "";
+ $sql = "SELECT * FROM ".TB_PREF."attachments WHERE type_no=".db_escape($type)." AND trans_no=".db_escape($id)." ORDER BY trans_no";
+ $return = db_query($sql, "Could not retrieve attachments");
+ while ($attachment = db_fetch($return))
+ {
+ if (strlen($str_return))
+ $str_return = $str_return . " \n";
+ $str_return .= _("Attached File:")." <a target='_blank' href='$path_to_root/admin/attachments.php?vw=".$attachment["id"]."' onclick='javascript:openWindow(this.href, this.target);return false;'> ".
+ $attachment["id"] . " " . $attachment["description"]. " - ". $attachment["filename"]."</a><br>";
+ }
+ return $str_return . "<br>";
+}
+
//----------------------------------------------------------------------------------------
-function get_attached_documents($type)
+function get_attached_documents($type, $trans_no=false)
{
- $sql = "SELECT * FROM ".TB_PREF."attachments WHERE type_no=".db_escape($type)
- ." ORDER BY trans_no";
+ $sql = "SELECT * FROM ".TB_PREF."attachments WHERE type_no=".db_escape($type);
+ if ($trans_no)
+ $sql .= " AND trans_no=".db_escape($trans_no);
+ $sql .= " ORDER BY trans_no";
return db_query($sql, "Could not retrieve attachments");
}
return db_fetch($result);
}
+function has_attachment($type, $id)
+{
+ $sql = "SELECT DISTINCT * FROM ".TB_PREF."attachments WHERE type_no=".db_escape($type)." AND trans_no=".db_escape($id);
+ $result = db_query($sql, "Could not retrieve attachments");
+ $myrow = db_fetch($result);
+ if ($myrow === false)
+ return 0;
+ else
+ return $myrow['id'];
+}
+
+function get_sql_for_attached_documents($type, $id_no)
+{
+ // $_POST['trans_no'] will be used to store the customer_id or supplier_id for them
+ $sql = "SELECT trans_no, description, filename, filesize, filetype, tran_date, id, type_no FROM ".TB_PREF."attachments WHERE type_no=".db_escape($type);
+
+ if(($type == ST_CUSTOMER || $type == ST_SUPPLIER || $type == ST_ITEM || $type == ST_FIXEDASSET) && $id_no != null)
+ $sql .=" AND trans_no = ".db_escape($id_no);
+
+ $sql .= " ORDER BY trans_no DESC";
+
+ return $sql;
+}
+
+function move_trans_attachments($type, $trans_from, $trans_to)
+{
+ $sql = "UPDATE ".TB_PREF."attachments SET trans_no=".db_escape($trans_to)
+ ." WHERE type_no=".db_escape($type)." AND trans_no=".db_escape($trans_from);
+ db_query($sql, 'cannot move atachments');
+}
+
-?>
\ No newline at end of file