X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=sales%2Fmanage%2Fcustomers.php;h=017d1607b7228da79224bc25810e03a83c832a62;hb=76addbf42e148553411cf37bf1284d2cf6082b84;hp=2605cae41a2adeceb23c0c103a323f81d2de366a;hpb=f12dbe7523bb1abc6cd69b009ef8f0be838f5348;p=fa-stable.git diff --git a/sales/manage/customers.php b/sales/manage/customers.php index 2605cae4..017d1607 100644 --- a/sales/manage/customers.php +++ b/sales/manage/customers.php @@ -1,10 +1,19 @@ . +***********************************************************************/ +$page_security = 'SA_CUSTOMER'; +$path_to_root = "../.."; include_once($path_to_root . "/includes/session.inc"); -page(_("Customers")); +page(_("Customers"), @$_REQUEST['popup']); include_once($path_to_root . "/includes/date_functions.inc"); include_once($path_to_root . "/includes/banking.inc"); @@ -25,6 +34,13 @@ function can_process() set_focus('CustName'); return false; } + + if (strlen($_POST['cust_ref']) == 0) + { + display_error(_("The customer short name cannot be empty.")); + set_focus('cust_ref'); + return false; + } if (!check_num('credit_limit', 0)) { @@ -63,6 +79,7 @@ function handle_submit() { $sql = "UPDATE ".TB_PREF."debtors_master SET name=" . db_escape($_POST['CustName']) . ", + debtor_ref=" . db_escape($_POST['cust_ref']) . ", address=".db_escape($_POST['address']) . ", tax_id=".db_escape($_POST['tax_id']) . ", curr_code=".db_escape($_POST['curr_code']) . ", @@ -74,10 +91,16 @@ function handle_submit() discount=" . input_num('discount') / 100 . ", pymt_discount=" . input_num('pymt_discount') / 100 . ", credit_limit=" . input_num('credit_limit') . ", - sales_type = ".db_escape($_POST['sales_type']) . " + sales_type = ".db_escape($_POST['sales_type']) . ", + notes=".db_escape($_POST['notes']) . " WHERE debtor_no = '". $_POST['customer_id'] . "'"; db_query($sql,"The customer could not be updated"); + + update_record_status($_POST['customer_id'], $_POST['inactive'], + 'debtors_master', 'debtor_no'); + + $Ajax->activate('customer_id'); // in case of status change display_notification(_("Customer has been updated.")); } else @@ -85,14 +108,15 @@ function handle_submit() begin_transaction(); - $sql = "INSERT INTO ".TB_PREF."debtors_master (name, address, tax_id, email, dimension_id, dimension2_id, - curr_code, credit_status, payment_terms, discount, pymt_discount,credit_limit, - sales_type) VALUES (".db_escape($_POST['CustName']) .", " + $sql = "INSERT INTO ".TB_PREF."debtors_master (name, debtor_ref, address, tax_id, email, dimension_id, dimension2_id, + curr_code, credit_status, payment_terms, discount, pymt_discount,credit_limit, + sales_type, notes) VALUES (".db_escape($_POST['CustName']) .", " .db_escape($_POST['cust_ref']) .", " .db_escape($_POST['address']) . ", " . db_escape($_POST['tax_id']) . "," .db_escape($_POST['email']) . ", ".db_escape($_POST['dimension_id']) . ", " .db_escape($_POST['dimension2_id']) . ", ".db_escape($_POST['curr_code']) . ", " . db_escape($_POST['credit_status']) . ", ".db_escape($_POST['payment_terms']) . ", " . input_num('discount')/100 . ", - " . input_num('pymt_discount')/100 . ", " . input_num('credit_limit') . ", ".db_escape($_POST['sales_type']) . ")"; + " . input_num('pymt_discount')/100 . ", " . input_num('credit_limit') + .", ".db_escape($_POST['sales_type']).", ".db_escape($_POST['notes']) . ")"; db_query($sql,"The customer could not be added"); @@ -113,13 +137,6 @@ if (isset($_POST['submit'])) } //-------------------------------------------------------------------------------------------- -if (isset($_POST['select'])) -{ - context_return(array('customer_id' => $_POST['customer_id'], - 'branch_id' => '')); // this fires customer history checks -} -//-------------------------------------------------------------------------------------------- - if (isset($_POST['delete'])) { @@ -128,8 +145,8 @@ if (isset($_POST['delete'])) $cancel_delete = 0; // PREVENT DELETES IF DEPENDENT RECORDS IN 'debtor_trans' - - $sql= "SELECT COUNT(*) FROM ".TB_PREF."debtor_trans WHERE debtor_no='" . $_POST['customer_id'] . "'"; + $sel_id = db_escape($_POST['customer_id']); + $sql= "SELECT COUNT(*) FROM ".TB_PREF."debtor_trans WHERE debtor_no=$sel_id"; $result = db_query($sql,"check failed"); $myrow = db_fetch_row($result); if ($myrow[0] > 0) @@ -139,7 +156,7 @@ if (isset($_POST['delete'])) } else { - $sql= "SELECT COUNT(*) FROM ".TB_PREF."sales_orders WHERE debtor_no='" . $_POST['customer_id'] . "'"; + $sql= "SELECT COUNT(*) FROM ".TB_PREF."sales_orders WHERE debtor_no=$sel_id"; $result = db_query($sql,"check failed"); $myrow = db_fetch_row($result); if ($myrow[0] > 0) @@ -149,7 +166,7 @@ if (isset($_POST['delete'])) } else { - $sql = "SELECT COUNT(*) FROM ".TB_PREF."cust_branch WHERE debtor_no='" . $_POST['customer_id'] . "'"; + $sql = "SELECT COUNT(*) FROM ".TB_PREF."cust_branch WHERE debtor_no=$sel_id"; $result = db_query($sql,"check failed"); $myrow = db_fetch_row($result); if ($myrow[0] > 0) @@ -163,7 +180,7 @@ if (isset($_POST['delete'])) if ($cancel_delete == 0) { //ie not cancelled the delete as a result of above tests - $sql = "DELETE FROM ".TB_PREF."debtors_master WHERE debtor_no='" . $_POST['customer_id'] . "'"; + $sql = "DELETE FROM ".TB_PREF."debtors_master WHERE debtor_no=$sel_id"; db_query($sql,"cannot delete customer"); display_notification(_("Selected customer has been deleted.")); @@ -180,43 +197,47 @@ start_form(); if (db_has_customers()) { start_table("class = 'tablestyle_noborder'"); - customer_list_row(_("Select a customer: "), 'customer_id', null, - _('New customer'), true); + start_row(); + customer_list_cells(_("Select a customer: "), 'customer_id', null, + _('New customer'), true, check_value('show_inactive')); + check_cells(_("Show inactive:"), 'show_inactive', null, true); + end_row(); end_table(); + if (get_post('_show_inactive_update')) { + $Ajax->activate('customer_id'); + set_focus('customer_id'); + } } else { hidden('customer_id'); } -start_table($table_style2, 7, 6); -echo "