X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=sales%2Fincludes%2Fdb%2Fcustomers_db.inc;h=7ec7b29783c395b783fb2007a9eae8891037f107;hb=8bd22b7671d18cfdf01b8a0f3f66455d5de28014;hp=637bc07a8b19dc28f331778fc3cffedc42b3e16e;hpb=4763f9316d59363edaffd38e49655ad5ff29611d;p=fa-stable.git

diff --git a/sales/includes/db/customers_db.inc b/sales/includes/db/customers_db.inc
index 637bc07a..7ec7b297 100644
--- a/sales/includes/db/customers_db.inc
+++ b/sales/includes/db/customers_db.inc
@@ -1,4 +1,61 @@
 <?php
+/**********************************************************************
+    Copyright (C) FrontAccounting, LLC.
+	Released under the terms of the GNU General Public License, GPL, 
+	as published by the Free Software Foundation, either version 3 
+	of the License, or (at your option) any later version.
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
+    See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
+***********************************************************************/
+
+function add_customer($CustName, $cust_ref, $address, $tax_id, $curr_code, $email, $dimension_id, $dimension2_id,
+	$credit_status, $payment_terms, $discount, $pymt_discount, $credit_limit, $sales_type, $notes)
+{			
+	$sql = "INSERT INTO ".TB_PREF."debtors_master (name, debtor_ref, address, tax_id, email, dimension_id, dimension2_id,  
+		curr_code, credit_status, payment_terms, discount, pymt_discount,credit_limit,  
+		sales_type, notes) VALUES (".db_escape($CustName) .", " .db_escape($cust_ref) .", "
+		.db_escape($address) . ", " . db_escape($tax_id) . ","
+		.db_escape($email) . ", ".db_escape($dimension_id) . ", " 
+		.db_escape($dimension2_id) . ", ".db_escape($curr_code) . ", 
+		" . db_escape($credit_status) . ", ".db_escape($payment_terms) . ", " . $discount . ", 
+		" . $pymt_discount . ", " . $credit_limit 
+		 .", ".db_escape($sales_type).", ".db_escape($notes) . ")";
+
+	db_query($sql,"The customer could not be added");
+}
+
+function update_customer($customer_id, $CustName, $cust_ref, $address, $tax_id, $curr_code, $email, $dimension_id, $dimension2_id,
+			$credit_status, $payment_terms, $discount, $pymt_discount, $credit_limit, $sales_type, $notes)
+{
+	$sql = "UPDATE ".TB_PREF."debtors_master SET name=" . db_escape($CustName) . ", 
+		debtor_ref=" . db_escape($cust_ref) . ",
+		address=".db_escape($address) . ", 
+		tax_id=".db_escape($tax_id) . ", 
+		curr_code=".db_escape($curr_code) . ", 
+		email=".db_escape($email) . ", 
+		dimension_id=".db_escape($dimension_id) . ", 
+		dimension2_id=".db_escape($dimension2_id) . ", 
+		credit_status=".db_escape($credit_status) . ", 
+		payment_terms=".db_escape($payment_terms) . ", 
+		discount=" . $discount . ", 
+		pymt_discount=" . $pymt_discount . ", 
+		credit_limit=" . $credit_limit . ", 
+		sales_type = ".db_escape($sales_type) . ", 
+		notes=".db_escape($notes) . "
+		WHERE debtor_no = ".db_escape($customer_id);
+
+	db_query($sql,"The customer could not be updated");
+}
+
+function delete_customer($customer_id, $escaped=false)
+{
+	if (!$escaped)
+		$customer_id = db_escape($customer_id);
+	$sql = "DELETE FROM ".TB_PREF."debtors_master WHERE debtor_no=$customer_id";
+	db_query($sql,"cannot delete customer");
+}
 
 function get_customer_details($customer_id, $to=null)
 {
@@ -16,68 +73,15 @@ function get_customer_details($customer_id, $to=null)
       "(".TB_PREF."debtor_trans.ov_amount + ".TB_PREF."debtor_trans.ov_gst + "
 		.TB_PREF."debtor_trans.ov_freight + ".TB_PREF."debtor_trans.ov_freight_tax + "
 		.TB_PREF."debtor_trans.ov_discount)";
-
+	$due = "IF (".TB_PREF."debtor_trans.type=10,".TB_PREF."debtor_trans.due_date,".TB_PREF."debtor_trans.tran_date)";
     $sql = "SELECT ".TB_PREF."debtors_master.name, ".TB_PREF."debtors_master.curr_code, ".TB_PREF."payment_terms.terms,
 		".TB_PREF."debtors_master.credit_limit, ".TB_PREF."credit_status.dissallow_invoices, ".TB_PREF."credit_status.reason_description,
 
 		Sum(".$value.") AS Balance,
 
-		Sum(IF (".TB_PREF."payment_terms.days_before_due > 0,
-			CASE WHEN (TO_DAYS('$todate') - TO_DAYS(".TB_PREF."debtor_trans.tran_date)) >= ".TB_PREF."payment_terms.days_before_due
-			THEN
-			    $value
-			ELSE 0
-			END,
-
-			CASE WHEN TO_DAYS('$todate') - TO_DAYS(DATE_ADD(DATE_ADD(".TB_PREF."debtor_trans.tran_date,
-				INTERVAL 1 MONTH), INTERVAL (".TB_PREF."payment_terms.day_in_following_month -
-				DAYOFMONTH(".TB_PREF."debtor_trans.tran_date)) DAY)) >= 0
-			THEN
-			    $value
-			ELSE 0
-			END
-
-		)) AS Due,
-
-		Sum(IF (".TB_PREF."payment_terms.days_before_due > 0,
-			CASE WHEN TO_DAYS('$todate') - TO_DAYS(".TB_PREF."debtor_trans.tran_date) > ".TB_PREF."payment_terms.days_before_due
-				AND TO_DAYS('$todate') - TO_DAYS(".TB_PREF."debtor_trans.tran_date) >= (".TB_PREF."payment_terms.days_before_due + $past1)
-			THEN
-				$value
-			ELSE
-				0
-			END,
-
-			CASE WHEN (TO_DAYS('$todate') - TO_DAYS(DATE_ADD(DATE_ADD(".TB_PREF."debtor_trans.tran_date,
-				INTERVAL 1  MONTH), INTERVAL (".TB_PREF."payment_terms.day_in_following_month -
-				DAYOFMONTH(".TB_PREF."debtor_trans.tran_date)) DAY)) >= $past1)
-			THEN
-				$value
-			ELSE
-				0
-			END
-
-		)) AS Overdue1,
-
-		Sum(IF (".TB_PREF."payment_terms.days_before_due > 0,
-			CASE WHEN TO_DAYS('$todate') - TO_DAYS(".TB_PREF."debtor_trans.tran_date) > ".TB_PREF."payment_terms.days_before_due
-				AND TO_DAYS('$todate') - TO_DAYS(".TB_PREF."debtor_trans.tran_date) >= (".TB_PREF."payment_terms.days_before_due + $past2)
-			THEN
-			    $value
-			ELSE
-				0
-			END,
-
-			CASE WHEN (TO_DAYS('$todate') - TO_DAYS(DATE_ADD(DATE_ADD(".TB_PREF."debtor_trans.tran_date,
-				INTERVAL 1  MONTH), INTERVAL (".TB_PREF."payment_terms.day_in_following_month -
-				DAYOFMONTH(".TB_PREF."debtor_trans.tran_date)) DAY)) >= $past2)
-			THEN
-				$value
-			ELSE
-				0
-			END
-
-		)) AS Overdue2
+		Sum(IF ((TO_DAYS('$todate') - TO_DAYS($due)) >= 0,$value,0)) AS Due,
+		Sum(IF ((TO_DAYS('$todate') - TO_DAYS($due)) >= $past1,$value,0)) AS Overdue1,
+		Sum(IF ((TO_DAYS('$todate') - TO_DAYS($due)) >= $past2,$value,0)) AS Overdue2
 
 		FROM ".TB_PREF."debtors_master,
 			 ".TB_PREF."payment_terms,
@@ -87,7 +91,7 @@ function get_customer_details($customer_id, $to=null)
 		WHERE
 			 ".TB_PREF."debtors_master.payment_terms = ".TB_PREF."payment_terms.terms_indicator
 			 AND ".TB_PREF."debtors_master.credit_status = ".TB_PREF."credit_status.id
-			 AND ".TB_PREF."debtors_master.debtor_no = $customer_id
+			 AND ".TB_PREF."debtors_master.debtor_no = ".db_escape($customer_id)."
 			 AND ".TB_PREF."debtor_trans.tran_date <= '$todate'
 			 AND ".TB_PREF."debtor_trans.type <> 13
 			 AND ".TB_PREF."debtors_master.debtor_no = ".TB_PREF."debtor_trans.debtor_no
@@ -100,7 +104,6 @@ function get_customer_details($customer_id, $to=null)
 			  ".TB_PREF."debtors_master.credit_limit,
 			  ".TB_PREF."credit_status.dissallow_invoices,
 			  ".TB_PREF."credit_status.reason_description";
-
     $result = db_query($sql,"The customer details could not be retrieved");
 
     if (db_num_rows($result) == 0)
@@ -119,7 +122,7 @@ function get_customer_details($customer_id, $to=null)
     		WHERE
     		     ".TB_PREF."debtors_master.payment_terms = ".TB_PREF."payment_terms.terms_indicator
     		     AND ".TB_PREF."debtors_master.credit_status = ".TB_PREF."credit_status.id
-    		     AND ".TB_PREF."debtors_master.debtor_no = '$customer_id'";
+    		     AND ".TB_PREF."debtors_master.debtor_no = ".db_escape($customer_id);
 
     	$result = db_query($sql,"The customer details could not be retrieved");
 
@@ -143,38 +146,39 @@ function get_customer_details($customer_id, $to=null)
 
 }
 
-function get_customer_name($customer_id)
+function get_customer($customer_id)
 {
-	$sql = "SELECT name FROM ".TB_PREF."debtors_master WHERE debtor_no=$customer_id";
+	$sql = "SELECT * FROM ".TB_PREF."debtors_master WHERE debtor_no=".db_escape($customer_id);
 
 	$result = db_query($sql, "could not get customer");
 
-	$row = db_fetch_row($result);
-
-	return $row[0];
+	return db_fetch($result);
 }
 
-function get_area_name($id)
+function get_customer_name($customer_id)
 {
-	$sql = "SELECT description FROM ".TB_PREF."areas WHERE area_code=$id";
+	$sql = "SELECT name FROM ".TB_PREF."debtors_master WHERE debtor_no=".db_escape($customer_id);
 
-	$result = db_query($sql, "could not get sales type");
+	$result = db_query($sql, "could not get customer");
 
 	$row = db_fetch_row($result);
+
 	return $row[0];
 }
 
-function get_salesman_name($id)
+function get_customer_habit($customer_id)
 {
-	$sql = "SELECT salesman_name FROM ".TB_PREF."salesman WHERE salesman_code=$id";
+	$sql = "SELECT ".TB_PREF."debtors_master.pymt_discount,
+		".TB_PREF."credit_status.dissallow_invoices
+		FROM ".TB_PREF."debtors_master, ".TB_PREF."credit_status
+		WHERE ".TB_PREF."debtors_master.credit_status = ".TB_PREF."credit_status.id
+			AND ".TB_PREF."debtors_master.debtor_no = ".db_escape($customer_id);
 
-	$result = db_query($sql, "could not get sales type");
+	$result = db_query($sql, "could not query customers");
 
-	$row = db_fetch_row($result);
-	return $row[0];
+	return db_fetch($result);
 }
 
 
 
-
 ?>
\ No newline at end of file