{
$account_name = db_escape($account_name);
$sql = "INSERT INTO ".TB_PREF."chart_master (account_code, account_code2, account_name, account_type,
- tax_code)
- VALUES ('$account_code', '$account_code2', $account_name, $account_type, $tax_code)";
+ tax_code)
+ VALUES (".db_escape($account_code).", ".db_escape($account_code2).", $account_name, $account_type, $tax_code)";
db_query($sql, "could not add gl account");
}
{
$account_name = db_escape($account_name);
$sql = "UPDATE ".TB_PREF."chart_master SET account_name=$account_name,
- account_type=$account_type, account_code2='$account_code2',
+ account_type=$account_type, account_code2=".db_escape($account_code2).",
tax_code=$tax_code WHERE account_code = '$account_code'";
db_query($sql, "could not update gl account");
WHERE ".TB_PREF."chart_master.account_type=".TB_PREF."chart_types.id";
if ($from != null)
$sql .= " AND ".TB_PREF."chart_master.account_code >= '$from'";
- if ($to != null)
+ if ($to != null)
$sql .= " AND ".TB_PREF."chart_master.account_code <= '$to'";
$sql .= " ORDER BY account_code";
-
+
return db_query($sql, "could not get gl accounts");
}
FROM ".TB_PREF."chart_master,".TB_PREF."chart_types, ".TB_PREF."chart_class
WHERE ".TB_PREF."chart_master.account_type=".TB_PREF."chart_types.id AND
".TB_PREF."chart_types.class_id=".TB_PREF."chart_class.cid";
- if ($balance != -1)
+ if ($balance != -1)
$sql .= " AND ".TB_PREF."chart_class.balance_sheet=$balance";
$sql .= " ORDER BY ".TB_PREF."chart_class.cid, ".TB_PREF."chart_types.id, ".TB_PREF."chart_master.account_code";
-
+
return db_query($sql, "could not get gl accounts");
}
WHERE ".TB_PREF."chart_master.account_type=".TB_PREF."chart_types.id AND
".TB_PREF."chart_types.class_id=".TB_PREF."chart_class.cid
AND ".TB_PREF."chart_master.account_code='$code'";
-
+
$result = db_query($sql,"could not retreive the account class for $code");
$row = db_fetch_row($result);
return $row[0];
}
-
+
function get_gl_account_name($code)
{
$sql = "SELECT account_name from ".TB_PREF."chart_master WHERE account_code='$code'";