X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=purchasing%2Fincludes%2Fdb%2Fsuppliers_db.inc;h=972d552a04ba3f0fb9644df3d13de32e01032561;hb=9502b1b3fc30a8b12c647f7e024e8b8da6a50af6;hp=69acd8dc6c5e23791ccc335ee2d86bd22a763ca6;hpb=6e3e48e051f3b4c819777df71a09f8c725bb9e81;p=fa-stable.git diff --git a/purchasing/includes/db/suppliers_db.inc b/purchasing/includes/db/suppliers_db.inc index 69acd8dc..972d552a 100644 --- a/purchasing/includes/db/suppliers_db.inc +++ b/purchasing/includes/db/suppliers_db.inc @@ -1,4 +1,78 @@ . +***********************************************************************/ + +function add_supplier($supp_name, $supp_ref, $address, $supp_address, $gst_no, + $website, $supp_account_no, $bank_account, $credit_limit, $dimension_id, $dimension2_id, + $curr_code, $payment_terms, $payable_account, $purchase_account, $payment_discount_account, + $notes, $tax_group_id) +{ + $sql = "INSERT INTO ".TB_PREF."suppliers (supp_name, supp_ref, address, supp_address, gst_no, website, + supp_account_no, bank_account, credit_limit, dimension_id, dimension2_id, curr_code, + payment_terms, payable_account, purchase_account, payment_discount_account, notes, tax_group_id) + VALUES (".db_escape($_POST['supp_name']). ", " + .db_escape($supp_ref). ", " + .db_escape($address) . ", " + .db_escape($supp_address) . ", " + .db_escape($gst_no). ", " + .db_escape($website). ", " + .db_escape($supp_account_no). ", " + .db_escape($bank_account). ", " + .$credit_limit. ", " + .db_escape($dimension_id). ", " + .db_escape($dimension2_id). ", " + .db_escape($curr_code). ", " + .db_escape($payment_terms). ", " + .db_escape($payable_account). ", " + .db_escape($purchase_account). ", " + .db_escape($payment_discount_account). ", " + .db_escape($notes). ", " + .db_escape($tax_group_id). ")"; + + db_query($sql,"The supplier could not be added"); +} + +function update_supplier($supplier_id, $supp_name, $supp_ref, $address, $supp_address, $gst_no, + $website, $supp_account_no, $bank_account, $credit_limit, $dimension_id, $dimension2_id, + $curr_code, $payment_terms, $payable_account, $purchase_account, $payment_discount_account, + $notes, $tax_group_id) +{ + $sql = "UPDATE ".TB_PREF."suppliers SET supp_name=".db_escape($supp_name) . ", + supp_ref=".db_escape($supp_ref) . ", + address=".db_escape($address) . ", + supp_address=".db_escape($supp_address) . ", + gst_no=".db_escape($gst_no) . ", + website=".db_escape($website) . ", + supp_account_no=".db_escape($supp_account_no) . ", + bank_account=".db_escape($bank_account) . ", + credit_limit=".$credit_limit . ", + dimension_id=".db_escape($dimension_id) . ", + dimension2_id=".db_escape($dimension2_id) . ", + curr_code=".db_escape($curr_code).", + payment_terms=".db_escape($payment_terms) . ", + payable_account=".db_escape($payable_account) . ", + purchase_account=".db_escape($purchase_account) . ", + payment_discount_account=".db_escape($payment_discount_account) . ", + notes=".db_escape($notes) . ", + tax_group_id=".db_escape($tax_group_id) + ." WHERE supplier_id = ".db_escape($supplier_id); + + db_query($sql,"The supplier could not be updated"); +} + +function delete_supplier($supplier_id) +{ + $sql="DELETE FROM ".TB_PREF."suppliers WHERE supplier_id=".db_escape($supplier_id); + db_query($sql,"check failed"); +} function get_supplier_details($supplier_id, $to=null) { @@ -12,7 +86,7 @@ function get_supplier_details($supplier_id, $to=null) // removed - supp_trans.alloc from all summations $value = "(".TB_PREF."supp_trans.ov_amount + ".TB_PREF."supp_trans.ov_gst + ".TB_PREF."supp_trans.ov_discount)"; - $due = "IF (".TB_PREF."supp_trans.type=20 OR ".TB_PREF."supp_trans.type=21,".TB_PREF."supp_trans.due_date,".TB_PREF."supp_trans.tran_date)"; + $due = "IF (".TB_PREF."supp_trans.type=".ST_SUPPINVOICE." OR ".TB_PREF."supp_trans.type=".ST_SUPPCREDIT.",".TB_PREF."supp_trans.due_date,".TB_PREF."supp_trans.tran_date)"; $sql = "SELECT ".TB_PREF."suppliers.supp_name, ".TB_PREF."suppliers.curr_code, ".TB_PREF."payment_terms.terms, Sum($value) AS Balance, @@ -51,7 +125,7 @@ function get_supplier_details($supplier_id, $to=null) ".TB_PREF."payment_terms WHERE ".TB_PREF."suppliers.payment_terms = ".TB_PREF."payment_terms.terms_indicator - AND ".TB_PREF."suppliers.supplier_id = '$supplier_id'"; + AND ".TB_PREF."suppliers.supplier_id = ".db_escape($supplier_id); $result = db_query($sql,"The customer details could not be retrieved"); @@ -77,7 +151,7 @@ function get_supplier_details($supplier_id, $to=null) function get_supplier($supplier_id) { - $sql = "SELECT * FROM ".TB_PREF."suppliers WHERE supplier_id=$supplier_id"; + $sql = "SELECT * FROM ".TB_PREF."suppliers WHERE supplier_id=".db_escape($supplier_id); $result = db_query($sql, "could not get supplier"); @@ -86,7 +160,7 @@ function get_supplier($supplier_id) function get_supplier_name($supplier_id) { - $sql = "SELECT supp_name AS name FROM ".TB_PREF."suppliers WHERE supplier_id=$supplier_id"; + $sql = "SELECT supp_name AS name FROM ".TB_PREF."suppliers WHERE supplier_id=".db_escape($supplier_id); $result = db_query($sql, "could not get supplier"); @@ -97,12 +171,21 @@ function get_supplier_name($supplier_id) function get_supplier_accounts($supplier_id) { - $sql = "SELECT payable_account,purchase_account,payment_discount_account FROM ".TB_PREF."suppliers WHERE supplier_id=$supplier_id"; + $sql = "SELECT payable_account,purchase_account,payment_discount_account FROM ".TB_PREF."suppliers WHERE supplier_id=".db_escape($supplier_id); $result = db_query($sql, "could not get supplier"); return db_fetch($result); } +function get_supplier_contacts($supplier_id, $action=null) +{ + $results = array(); + $res = get_crm_persons('supplier', $action, $supplier_id); + while($contact = db_fetch($res)) + $results[] = $contact; + + return $results; +} ?> \ No newline at end of file