+
+function add_supplier($supp_name, $supp_ref, $address, $supp_address, $phone, $phone2, $fax, $gst_no, $email,
+ $website, $contact, $supp_account_no, $bank_account, $credit_limit, $dimension_id, $dimension2_id,
+ $curr_code, $payment_terms, $payable_account, $purchase_account, $payment_discount_account,
+ $notes, $tax_group_id)
+{
+ $sql = "INSERT INTO ".TB_PREF."suppliers (supp_name, supp_ref, address, supp_address, phone, phone2, fax, gst_no, email, website,
+ contact, supp_account_no, bank_account, credit_limit, dimension_id, dimension2_id, curr_code,
+ payment_terms, payable_account, purchase_account, payment_discount_account, notes, tax_group_id)
+ VALUES (".db_escape($_POST['supp_name']). ", "
+ .db_escape($supp_ref). ", "
+ .db_escape($address) . ", "
+ .db_escape($supp_address) . ", "
+ .db_escape($phone). ", "
+ .db_escape($phone2). ", "
+ .db_escape($fax). ", "
+ .db_escape($gst_no). ", "
+ .db_escape($email). ", "
+ .db_escape($website). ", "
+ .db_escape($contact). ", "
+ .db_escape($supp_account_no). ", "
+ .db_escape($bank_account). ", "
+ .$credit_limit. ", "
+ .db_escape($dimension_id). ", "
+ .db_escape($dimension2_id). ", "
+ .db_escape($curr_code). ", "
+ .db_escape($payment_terms). ", "
+ .db_escape($payable_account). ", "
+ .db_escape($purchase_account). ", "
+ .db_escape($payment_discount_account). ", "
+ .db_escape($notes). ", "
+ .db_escape($tax_group_id). ")";
+
+ db_query($sql,"The supplier could not be added");
+}
+
+function update_supplier($supplier_id, $supp_name, $supp_ref, $address, $supp_address, $phone, $phone2, $fax, $gst_no,
+ $email, $website, $contact, $supp_account_no, $bank_account, $credit_limit, $dimension_id, $dimension2_id,
+ $curr_code, $payment_terms, $payable_account, $purchase_account, $payment_discount_account,
+ $notes, $tax_group_id)
+{
+ $sql = "UPDATE ".TB_PREF."suppliers SET supp_name=".db_escape($supp_name) . ",
+ supp_ref=".db_escape($supp_ref) . ",
+ address=".db_escape($address) . ",
+ supp_address=".db_escape($supp_address) . ",
+ phone=".db_escape($phone) . ",
+ phone2=".db_escape($phone2) . ",
+ fax=".db_escape($fax) . ",
+ gst_no=".db_escape($gst_no) . ",
+ email=".db_escape($email) . ",
+ website=".db_escape($website) . ",
+ contact=".db_escape($contact) . ",
+ supp_account_no=".db_escape($supp_account_no) . ",
+ bank_account=".db_escape($bank_account) . ",
+ credit_limit=".$credit_limit . ",
+ dimension_id=".db_escape($dimension_id) . ",
+ dimension2_id=".db_escape($dimension2_id) . ",
+ curr_code=".db_escape($curr_code).",
+ payment_terms=".db_escape($payment_terms) . ",
+ payable_account=".db_escape($payable_account) . ",
+ purchase_account=".db_escape($purchase_account) . ",
+ payment_discount_account=".db_escape($payment_discount_account) . ",
+ notes=".db_escape($notes) . ",
+ tax_group_id=".db_escape($tax_group_id) . " WHERE supplier_id = ".db_escape($supplier_id);
+
+ db_query($sql,"The supplier could not be updated");
+}
+
+function delete_supplier($supplier_id)
+{
+ $sql="DELETE FROM ".TB_PREF."suppliers WHERE supplier_id=".db_escape($supplier_id);
+ db_query($sql,"check failed");
+}
+