<?php
-
-
-$page_security = 4;
-$path_to_root="..";
+/**********************************************************************
+ Copyright (C) FrontAccounting, LLC.
+ Released under the terms of the GNU General Public License, GPL,
+ as published by the Free Software Foundation, either version 3
+ of the License, or (at your option) any later version.
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
+***********************************************************************/
+$page_security = 'SA_PURCHASEPRICING';
+$path_to_root = "..";
include_once($path_to_root . "/includes/session.inc");
-page(_("Supplier Purchasing Data"));
+page(_($help_context = "Supplier Purchasing Data"));
include_once($path_to_root . "/includes/date_functions.inc");
include_once($path_to_root . "/includes/ui.inc");
check_db_has_purchasable_items(_("There are no purchasable inventory items defined in the system."));
check_db_has_suppliers(_("There are no suppliers defined in the system."));
-if (isset($_GET['supplier_id']))
-{
- $supplier_id = strtoupper($_GET['supplier_id']);
-}
-elseif (isset($_POST['supplier_id']))
-{
- $supplier_id = strtoupper($_POST['supplier_id']);
-}
-
-if (isset($_GET['stock_id']))
-{
- $_POST['stock_id'] = $_GET['stock_id'];
-}
+//----------------------------------------------------------------------------------------
+simple_page_mode(true);
//--------------------------------------------------------------------------------------------------
-if ((isset($_POST['AddRecord']) || isset($_POST['UpdateRecord'])) && isset($supplier_id))
+if ($Mode=='ADD_ITEM' || $Mode=='UPDATE_ITEM')
{
$input_error = 0;
{
$input_error = 1;
display_error( _("The conversion factor entered was not numeric. The conversion factor is the number by which the price must be divided by to get the unit price in our unit of measure."));
- set_focus('conversion_factor');
+ set_focus('conversion_factor');
}
if ($input_error == 0)
{
- if (isset($_POST['AddRecord']))
+ if ($Mode == 'ADD_ITEM')
{
$sql = "INSERT INTO ".TB_PREF."purch_data (supplier_id, stock_id, price, suppliers_uom,
conversion_factor, supplier_description) VALUES (";
- $sql .= "'$supplier_id', '" . $_POST['stock_id'] . "', " .
- input_num('price') . ", '" . $_POST['suppliers_uom'] . "', " .
- input_num('conversion_factor') . ", '" . $_POST['supplier_description'] . "')";
+ $sql .= db_escape($_POST['supplier_id']).", ".db_escape($_POST['stock_id']). ", "
+ .input_num('price',0) . ", ".db_escape( $_POST['suppliers_uom'] ). ", "
+ .input_num('conversion_factor') . ", "
+ .db_escape($_POST['supplier_description']) . ")";
db_query($sql,"The supplier purchasing details could not be added");
display_notification(_("This supplier purchasing data has been added."));
- }
-
- if (isset($_POST['UpdateRecord']))
+ } else
{
- $sql = "UPDATE ".TB_PREF."purch_data SET price=" . input_num('price') . ",
- suppliers_uom='" . $_POST['suppliers_uom'] . "',
+ $sql = "UPDATE ".TB_PREF."purch_data SET price=" . input_num('price',0) . ",
+ suppliers_uom=".db_escape($_POST['suppliers_uom']) . ",
conversion_factor=" . input_num('conversion_factor') . ",
- supplier_description='" . $_POST['supplier_description'] . "'
- WHERE stock_id='" . $_POST['stock_id'] . "' AND
- supplier_id='$supplier_id'";
+ supplier_description=" . db_escape($_POST['supplier_description']) . "
+ WHERE stock_id=".db_escape($_POST['stock_id']) . " AND
+ supplier_id=".db_escape($selected_id);
db_query($sql,"The supplier purchasing details could not be updated");
display_notification(_("Supplier purchasing data has been updated."));
}
-
- if (isset($_POST['UpdateRecord']) || isset($_POST['AddRecord']))
- {
- //update or insert took place and need to clear the form
- unset($supplier_id);
- unset($_POST['price']);
- unset($_POST['suppliers_uom']);
- unset($_POST['conversion_factor']);
- unset($_POST['supplier_description']);
- }
+ $Mode = 'RESET';
}
}
//--------------------------------------------------------------------------------------------------
-if (isset($_GET['Delete']))
+if ($Mode == 'Delete')
{
- $sql = "DELETE FROM ".TB_PREF."purch_data WHERE supplier_id='$supplier_id'
- AND stock_id='" . $_POST['stock_id'] . "'";
+ $sql = "DELETE FROM ".TB_PREF."purch_data WHERE supplier_id=".db_escape($selected_id)."
+ AND stock_id=".db_escape($_POST['stock_id']);
db_query($sql,"could not delete purchasing data");
- display_note(_("The purchasing data item has been sucessfully deleted."));
- unset ($supplier_id);
+ display_notification(_("The purchasing data item has been sucessfully deleted."));
+ $Mode = 'RESET';
+}
+
+if ($Mode == 'RESET')
+{
+ $selected_id = -1;
+}
+
+if (isset($_POST['_selected_id_update']) )
+{
+ $selected_id = $_POST['selected_id'];
+ $Ajax->activate('_page_body');
}
-if (isset($_POST['_stock_id_update']))
+
+if (list_updated('stock_id'))
$Ajax->activate('price_table');
//--------------------------------------------------------------------------------------------------
-start_form(false, true);
+start_form();
if (!isset($_POST['stock_id']))
$_POST['stock_id'] = get_global_stock_item();
else
{
- $sql = "SELECT ".TB_PREF."purch_data.*,".TB_PREF."suppliers.supp_name,".TB_PREF."suppliers.curr_code
+ $sql = "SELECT ".TB_PREF."purch_data.*,".TB_PREF."suppliers.supp_name,"
+ .TB_PREF."suppliers.curr_code
FROM ".TB_PREF."purch_data INNER JOIN ".TB_PREF."suppliers
ON ".TB_PREF."purch_data.supplier_id=".TB_PREF."suppliers.supplier_id
- WHERE stock_id = '" . $_POST['stock_id'] . "'";
+ WHERE stock_id = ".db_escape($_POST['stock_id']);
$result = db_query($sql, "The supplier purchasing details for the selected part could not be retrieved");
div_start('price_table');
}
else
{
- start_table("$table_style width=60%");
+ start_table("$table_style width=65%");
$th = array(_("Supplier"), _("Price"), _("Currency"),
- _("Supplier's Unit"), _("Supplier's Description"), "", "");
+ _("Supplier's Unit"), _("Conversion Factor"), _("Supplier's Description"), "", "");
table_header($th);
alt_table_row_color($k);
label_cell($myrow["supp_name"]);
- amount_cell($myrow["price"]);
+ amount_decimal_cell($myrow["price"]);
label_cell($myrow["curr_code"]);
label_cell($myrow["suppliers_uom"]);
+ qty_cell($myrow['conversion_factor'], false, user_exrate_dec());
label_cell($myrow["supplier_description"]);
- edit_link_cell("stock_id=" . $_POST['stock_id']. "&supplier_id=" . $myrow["supplier_id"] . "&Edit=1");
- delete_link_cell("stock_id=" . $_POST['stock_id']. "&supplier_id=" . $myrow["supplier_id"] . "&Delete=1");
+ edit_button_cell("Edit".$myrow['supplier_id'], _("Edit"));
+ delete_button_cell("Delete".$myrow['supplier_id'], _("Delete"));
end_row();
$j++;
div_end();
}
-//------------------------------------------------------------------------------------------------
+//-----------------------------------------------------------------------------------------------
-if (isset($_GET['Edit']))
+$dec2 = 6;
+if ($Mode =='Edit')
{
$sql = "SELECT ".TB_PREF."purch_data.*,".TB_PREF."suppliers.supp_name FROM ".TB_PREF."purch_data
INNER JOIN ".TB_PREF."suppliers ON ".TB_PREF."purch_data.supplier_id=".TB_PREF."suppliers.supplier_id
- WHERE ".TB_PREF."purch_data.supplier_id='$supplier_id'
- AND ".TB_PREF."purch_data.stock_id='" . $_POST['stock_id'] . "'";
+ WHERE ".TB_PREF."purch_data.supplier_id=".db_escape($selected_id)."
+ AND ".TB_PREF."purch_data.stock_id=".db_escape($_POST['stock_id']);
$result = db_query($sql, "The supplier purchasing details for the selected supplier and item could not be retrieved");
$myrow = db_fetch($result);
$supp_name = $myrow["supp_name"];
- $_POST['price'] = price_format($myrow["price"]);
+ $_POST['price'] = price_decimal_format($myrow["price"], $dec2);
$_POST['suppliers_uom'] = $myrow["suppliers_uom"];
$_POST['supplier_description'] = $myrow["supplier_description"];
$_POST['conversion_factor'] = exrate_format($myrow["conversion_factor"]);
}
-echo "<br>";
+br();
+hidden('selected_id', $selected_id);
start_table($table_style2);
-if (isset($_GET['Edit']))
+if ($Mode == 'Edit')
{
- hidden('supplier_id', $supplier_id);
+ hidden('supplier_id');
label_row(_("Supplier:"), $supp_name);
}
else
{
supplier_list_row(_("Supplier:"), 'supplier_id', null, false, true);
- $supplier_id = $_POST['supplier_id'];
+ $_POST['price'] = $_POST['suppliers_uom'] = $_POST['conversion_factor'] = $_POST['supplier_description'] = "";
}
-amount_row(_("Price:"), 'price', null,'', get_supplier_currency($supplier_id));
+amount_row(_("Price:"), 'price', null,'', get_supplier_currency($selected_id), $dec2);
text_row(_("Suppliers Unit of Measure:"), 'suppliers_uom', null, 50, 51);
if (!isset($_POST['conversion_factor']) || $_POST['conversion_factor'] == "")
end_table(1);
-if (isset($_GET['Edit']))
-{
- submit_center('UpdateRecord', _("Update Purchasing Data"));
-}
-else
-{
- submit_center('AddRecord', _("Add Purchasing Data"));
-}
+submit_add_or_update_center($selected_id == -1, '', 'both');
end_form();
end_page();
projects / fa-stable.git / blobdiff