X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=manufacturing%2Fincludes%2Fdb%2Fwork_centres_db.inc;h=1d15d7c2882368bec063416a800667acc768a029;hb=7226477a2624571ba8460f773092f6e38bbc46f3;hp=0d0824392684469e625ed07a4f4aae1cf49b39c0;hpb=818719f38b8327cdca616d58b13913dbd174d96a;p=fa-stable.git

diff --git a/manufacturing/includes/db/work_centres_db.inc b/manufacturing/includes/db/work_centres_db.inc
index 0d082439..1d15d7c2 100644
--- a/manufacturing/includes/db/work_centres_db.inc
+++ b/manufacturing/includes/db/work_centres_db.inc
@@ -1,13 +1,13 @@
 <?php
 /**********************************************************************
     Copyright (C) FrontAccounting, LLC.
-	Released under the terms of the GNU Affero General Public License,
-	AGPL, as published by the Free Software Foundation, either version 
-	3 of the License, or (at your option) any later version.
+	Released under the terms of the GNU General Public License, GPL, 
+	as published by the Free Software Foundation, either version 3 
+	of the License, or (at your option) any later version.
     This program is distributed in the hope that it will be useful,
     but WITHOUT ANY WARRANTY; without even the implied warranty of
     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
-    See the License here <http://www.gnu.org/licenses/agpl-3.0.html>.
+    See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
 ***********************************************************************/
 function add_work_centre($name, $description)
 {
@@ -20,21 +20,22 @@ function add_work_centre($name, $description)
 function update_work_centre($type_id, $name, $description)
 {
 	$sql = "UPDATE ".TB_PREF."workcentres SET name=".db_escape($name).", description=".db_escape($description)."
-		WHERE id=$type_id";
+		WHERE id=".db_escape($type_id);
 
 	db_query($sql, "could not update work centre");
 }
 
-function get_all_work_centres()
+function get_all_work_centres($all=false)
 {
 	$sql = "SELECT * FROM ".TB_PREF."workcentres";
+	if (!$all) $sql .= " WHERE !inactive";
 
 	return db_query($sql, "could not get all work centres");
 }
 
 function get_work_centre($type_id)
 {
-	$sql = "SELECT * FROM ".TB_PREF."workcentres WHERE id=$type_id";
+	$sql = "SELECT * FROM ".TB_PREF."workcentres WHERE id=".db_escape($type_id);
 
 	$result = db_query($sql, "could not get work centre");
 
@@ -43,9 +44,8 @@ function get_work_centre($type_id)
 
 function delete_work_centre($type_id)
 {
-	$sql="DELETE FROM ".TB_PREF."workcentres WHERE id=$type_id";
+	$sql="DELETE FROM ".TB_PREF."workcentres WHERE id=".db_escape($type_id);
 
 	db_query($sql, "could not delete work centre");
 }
 
-?>
\ No newline at end of file