function get_id_first_last_handler()
{
global $FANNIE_OP_DB;
$dbc = FannieDB::get($FANNIE_OP_DB);
if (empty($this->id) && empty($this->last)) {
return True;
}
// invalid search
if (!empty($this->id)) {
$custdata = new CustdataModel($dbc);
$custdata->CardNo($this->id);
$custdata->Type('PC');
if (count($custdata->find()) > 0) {
header('Location: GumMainPage.php?id=' . $this->id);
return False;
}
$cards = new MemberCardsModel($dbc);
$cards->upc(str_pad($this->id, 13, '0', STR_PAD_LEFT));
foreach ($cards->find() as $obj) {
header('Location: GumMainPage.php?id=' . $obj->card_no());
return False;
}
} else {
$q = $dbc->prepare_statement('SELECT CardNo, LastName, FirstName FROM
custdata WHERE LastName LIKE ? AND FirstName LIKE ?
AND Type = \'PC\'
ORDER BY LastName,FirstName,CardNo');
$r = $dbc->exec_statement($q, array($this->last . '%', $this->first . '%'));
$this->__models['custdata'] = array();
while ($w = $dbc->fetch_row($r)) {
$this->__models['custdata'][] = $w;
}
if (count($this->__models['custdata']) == 1) {
header('Location: GumMainPage.php?id=' . $this->__models['custdata'][0]['CardNo']);
return False;
}
}
return true;
}
protected function get_orderID_customer_handler()
{
$dbc = $this->connection;
$dbc->selectDB($this->config->get('OP_DB'));
$TRANS = $this->config->get('TRANS_DB') . $dbc->sep();
$orderID = $this->orderID;
try {
$memNum = $this->form->memNum;
} catch (Exception $ex) {
$memNum = '0';
}
$canEdit = FannieAuth::validateUserQuiet('ordering_edit');
if (empty($orderID)) {
$orderID = $this->createEmptyOrder();
}
$names = array();
$personNum = 1;
$status_row = array('Type' => 'REG', 'status' => '');
$dbc->selectDB($this->config->get('TRANS_DB'));
$orderModel = new SpecialOrdersModel($dbc);
$orderModel->specialOrderID($orderID);
$orderModel->load();
$dbc->selectDB($this->config->get('OP_DB'));
// detect member UPC entry
if ($memNum > 9999999) {
$cards = new MemberCardsModel($dbc);
$cards->upc(BarcodeLib::padUPC($memNum));
$memNum = '';
foreach ($cards->find() as $c) {
$memNum = $c->card_no();
break;
}
}
// look up member id if applicable
if ($memNum === "0") {
$findMem = $dbc->prepare("SELECT card_no,voided FROM {$TRANS}PendingSpecialOrder WHERE order_id=?");
$memR = $dbc->execute($findMem, array($orderID));
if ($dbc->numRows($memR) > 0) {
$memW = $dbc->fetchRow($memR);
$memNum = $memW['card_no'];
$personNum = $memW['voided'];
}
} elseif ($memNum == "") {
$prep = $dbc->prepare("UPDATE {$TRANS}PendingSpecialOrder SET card_no=?,voided=0\n WHERE order_id=?");
$dbc->execute($prep, array(0, $orderID));
} else {
$prep = $dbc->prepare("UPDATE {$TRANS}PendingSpecialOrder SET card_no=?\n WHERE order_id=?");
$dbc->execute($prep, array($memNum, $orderID));
// clear contact fields if member number changed
// so that defaults are reloaded from meminfo
$dbc->selectDB($this->config->get('TRANS_DB'));
$orderModel->street('');
$orderModel->phone('');
$orderModel->save();
$orderModel->specialOrderID($orderID);
$orderModel->load();
$dbc->selectDB($this->config->get('OP_DB'));
// look up personnum, correct if it hasn't been set
$pendQ = $dbc->prepare_statement("SELECT voided FROM {$TRANS}PendingSpecialOrder\n WHERE order_id=?");
$personNum = $dbc->getValue($pendQ, array($orderID));
if ($personNum == 0) {
$personNum = 1;
$upP = $dbc->prepare_statement("UPDATE {$TRANS}PendingSpecialOrder SET voided=?\n WHERE order_id=?");
$upR = $dbc->exec_statement($upP, array($personNum, $orderID));
}
}
if ($memNum != 0) {
$custdata = new CustdataModel($dbc);
$custdata->CardNo($memNum);
foreach ($custdata->find('personNum') as $c) {
$names[$c->personNum()] = array($c->FirstName(), $c->LastName());
}
// load member contact info into order
// on first go so it can be edited separately
$current_street = $orderModel->street();
$current_phone = $orderModel->phone();
if (empty($current_street) && empty($current_phone)) {
$contactQ = $dbc->prepare_statement("SELECT street,city,state,zip,phone,email_1,email_2\n FROM meminfo WHERE card_no=?");
$contactR = $dbc->exec_statement($contactQ, array($memNum));
if ($dbc->num_rows($contactR) > 0) {
$contact_row = $dbc->fetch_row($contactR);
$dbc->selectDB($this->config->get('TRANS_DB'));
$orderModel->street($contact_row['street']);
$orderModel->city($contact_row['city']);
$orderModel->state($contact_row['state']);
$orderModel->zip($contact_row['zip']);
$orderModel->phone($contact_row['phone']);
$orderModel->altPhone($contact_row['email_2']);
$orderModel->email($contact_row['email_1']);
$orderModel->save();
$orderModel->specialOrderID($orderID);
$orderModel->load();
$dbc->selectDB($this->config->get('OP_DB'));
}
}
if ($custdata->load()) {
$status_row['Type'] = $custdata->Type();
if ($status_row['Type'] == 'INACT') {
$status_row['status'] = 'Inactive';
} elseif ($status_row['Type'] == 'INACT2') {
$status_row['status'] = 'Inactive';
} elseif ($status_row['Type'] == 'TERM') {
$status_row['status'] = 'Terminated';
}
}
}
$prep = $dbc->prepare_statement("SELECT entry_date FROM {$TRANS}SpecialOrderHistory \n WHERE order_id=? AND entry_type='CONFIRMED'");
$confirm_date = $dbc->getValue($prep, array($orderID));
$callback = 2;
$user = '******';
$orderDate = "";
$prep = $dbc->prepare_statement("SELECT datetime,numflag,mixMatch FROM \n {$TRANS}PendingSpecialOrder WHERE order_id=? AND trans_id=0");
$res = $dbc->exec_statement($prep, array($orderID));
if ($dbc->num_rows($res) > 0) {
list($orderDate, $callback, $user) = $dbc->fetch_row($res);
}
$status = array(0 => "New, No Call", 3 => "New, Call", 1 => "Called/waiting", 2 => "Pending", 4 => "Placed", 5 => "Arrived");
$order_status = $orderModel->statusFlag();
$ret = "";
$ret .= sprintf('<input type="hidden" id="orderID" value="%d" />', $orderID);
$ret .= '<div class="row form-inline"><div class="col-sm-4 text-left">';
$ret .= sprintf('<b>Owner Number</b>: <input type="text" size="6"
id="memNum" value="%s" class="form-control price-field input-sm"
/>', $memNum == 0 ? '' : $memNum);
$ret .= '<br />';
$ret .= '<b>Owner</b>: ' . ($status_row['Type'] == 'PC' ? 'Yes' : 'No');
$ret .= sprintf('<input type="hidden" id="isMember" value="%s" />', $status_row['Type']);
$ret .= '<br />';
if (!empty($status_row['status'])) {
$ret .= '<b>Account status</b>: ' . $status_row['status'];
$ret .= '<br />';
}
$ret .= '</div><div class="col-sm-4 text-center">';
if ($canEdit) {
$ret .= '<b>Status</b>: ';
$ret .= '<select id="orderStatus" class="form-control input-sm">';
foreach ($status as $k => $v) {
$ret .= sprintf('<option %s value="%d">%s</option>', $k == $order_status ? 'selected' : '', $k, $v);
}
$ret .= '</select><p />';
}
$ret .= '<b>Store</b>: ';
$ret .= '<select id="orderStore" class="form-control input-sm">';
$ret .= '<option value="0">Choose...</option>';
$stores = new StoresModel($dbc);
$ret .= $stores->toOptions($orderModel->storeID());
$ret .= '</select>';
$ret .= '</div><div class="col-sm-4 text-right">';
$ret .= "<a href=\"\" class=\"btn btn-default btn-sm done-btn\">Done</a>";
$username = FannieAuth::checkLogin();
$prints = array();
$cachepath = sys_get_temp_dir() . "/ordercache/";
if (file_exists("{$cachepath}{$username}.prints")) {
$prints = unserialize(file_get_contents("{$cachepath}{$username}.prints"));
} else {
$fptr = fopen("{$cachepath}{$username}.prints", 'w');
fwrite($fptr, serialize($prints));
fclose($fptr);
}
$ret .= sprintf('<br />Queue tags <input type="checkbox" %s class="print-cb" />', isset($prints[$orderID]) ? 'checked' : '', $username, $orderID);
$ret .= sprintf('<br /><a href="tagpdf.php?oids[]=%d" target="_tags%d">Print Now</a>', $orderID, $orderID);
$ret .= '</div></div>';
$extra = "";
$extra .= '<div class="row"><div class="col-sm-6 text-left">';
$extra .= "<b>Taken by</b>: " . $user . "<br />";
$extra .= "<b>On</b>: " . date("M j, Y g:ia", strtotime($orderDate)) . "<br />";
$extra .= '</div><div class="col-sm-6 text-right form-inline">';
$extra .= '<b>Call to Confirm</b>: ';
$extra .= '<select id="ctcselect" class="form-control input-sm">';
$extra .= '<option value="2"></option>';
if ($callback == 1) {
$extra .= '<option value="1" selected>Yes</option>';
$extra .= '<option value="0">No</option>';
} else {
if ($callback == 0) {
$extra .= '<option value="1">Yes</option>';
$extra .= '<option value="0" selected>No</option>';
} else {
$extra .= '<option value="1">Yes</option>';
$extra .= '<option value="0">No</option>';
}
}
$extra .= '</select><br />';
$extra .= '<span id="confDateSpan">' . (!empty($confirm_date) ? 'Confirmed ' . $confirm_date : 'Not confirmed') . "</span> ";
$extra .= '<input type="checkbox" id="confirm-date" ';
if (!empty($confirm_date)) {
$extra .= "checked";
}
$extra .= ' /><br />';
$extra .= "<a href=\"\" class=\"btn btn-default btn-sm done-btn\">Done</a>";
$extra .= '</div></div>';
$ret .= '<table class="table table-bordered">';
// names
if (empty($names)) {
$ret .= sprintf('<tr><th>First Name</th><td>
<input type="text" id="t_firstName" name="fn"
class="form-control input-sm conact-field"
value="%s"
/></td>', $orderModel->firstName());
$ret .= sprintf('<th>Last Name</th><td><input
type="text" id="t_lastName" value="%s" name="ln"
class="form-control input-sm contact-field"
/></td>', $orderModel->lastName());
} else {
$ret .= '<tr><th>Name</th><td colspan="2"><select id="s_personNum"
class="form-control input-sm">';
foreach ($names as $p => $n) {
$ret .= sprintf('<option value="%d" %s>%s %s</option>', $p, $p == $personNum ? 'selected' : '', $n[0], $n[1]);
}
$ret .= '</select></td>';
$ret .= '<td> </td>';
}
$ret .= '<td colspan="4" class="form-inline">For Department:
<select id="nDept" class="form-control input-sm contact-field"
name="noteDept">
<option value="0">Choose...</option>';
$superQ = $dbc->prepare_statement("select superID,super_name from MasterSuperDepts\n where superID > 0\n group by superID,super_name\n order by super_name");
$superR = $dbc->exec_statement($superQ);
while ($superW = $dbc->fetch_row($superR)) {
$ret .= sprintf('<option value="%d" %s>%s</option>', $superW['superID'], $superW['superID'] == $orderModel->noteSuperID() ? 'selected' : '', $superW['super_name']);
}
$ret .= "</select></td></tr>";
// address
$street = $orderModel->street();
$street2 = '';
if (strstr($street, "\n")) {
list($street, $street2) = explode("\n", $street, 2);
}
$ret .= sprintf('
<tr>
<th>Address</th>
<td>
<input type="text" id="t_addr1" value="%s"
class="form-control input-sm contact-field"
name="addr" />
</td>
<th>E-mail</th>
<td>
<input type="text" id="t_email" value="%s"
class="form-control input-sm contact-field"
name="email" />
</td>
<td rowspan="2" colspan="4">
<textarea id="nText" rows="5" cols="25"
class="form-control input-sm contact-field" name="noteText"
>%s</textarea>
</td>
</tr>
<tr>
<th>Addr (2)</th>
<td>
<input type="text" id="t_addr2" value="%s"
class="form-control input-sm contact-field"
name="addr2" />
</td>
<th>City</th>
<td>
<input type="text" id="t_city" name="city"
class="form-control input-sm contact-field"
value="%s" size="10" />
</td>
</tr>
<tr>
<th>Phone</th>
<td>
<input type="text" id="t_ph1" name="ph1"
class="form-control input-sm contact-field"
value="%s" />
</td>
<th>Alt. Phone</th>
<td>
<input type="text" id="t_ph2" value="%s" name="ph2"
class="form-control input-sm contact-field" />
</td>
<th>State</th>
<td>
<input type="text" id="t_state" value="%s" size="2"
class="form-control input-sm contact-field"
name="state" />
</td>
<th>Zip</th>
<td>
<input type="text" id="t_zip" value="%s" size="5"
class="form-control input-sm contact-field"
name="zip" />
</td>
</tr>', $street, $orderModel->email(), $orderModel->notes(), $street2, $orderModel->city(), $orderModel->phone(), $orderModel->altPhone(), $orderModel->state(), $orderModel->zip());
$ret .= '</table>';
echo json_encode(array('customer' => $ret, 'footer' => $extra));
return false;
}
$MI_FIELDS['phone'] = $_POST['phone'];
$MI_FIELDS['email_2'] = $_POST['phone2'];
$MI_FIELDS['email_1'] = $_POST['email'];
$MI_FIELDS['ads_OK'] = $_POST['mailflag'];
$fnames = $_POST["hfname"];
$lnames = $_POST["hlname"];
for ($i = 0; $i < count($fnames); $i++) {
$fnames[$i] = str_replace("'", "", $fnames[$i]);
}
for ($i = 0; $i < count($lnames); $i++) {
$lnames[$i] = str_replace("'", "", $lnames[$i]);
}
$cards = new MemberCardsModel($sql);
$cards->card_no($memNum);
// delete existing records
foreach ($cards->find() as $obj) {
$obj->delete();
}
// add record with correct upc
$cards->upc(str_pad($_REQUEST['cardUPC'], 13, '0', STR_PAD_LEFT));
$cards->save();
// update top name
$cust = new CustdataModel($sql);
$cust->CardNo($memNum);
$cust->personNum(1);
$cust->LastName($lName);
$cust->FirstName($fname);
$cust->blueLine($blueline);
$cust->save();
for ($i = 0; $i < 3; $i++) {
if ($fnames[$i] == "''") {
