function Subscribe()
{
if (!empty($_POST['name'])) {
$query = mysql_query("SELECT * FROM emailsubscribe WHERE username = '******'name']}' AND emailaddress = '{$_POST['email']}'") or die(mysql_error());
//fetch data and compaire with username and emailaddress in database to avoid duplicate
if (!($row = mysql_fetch_array($query)) or die(mysql_error())) {
UserInput();
//if data compaired is not in database
} else {
echo "SORRY...YOU HAVE ALREADY SUBSCRIBED TO NEWSLETTER ";
//if data compaired is in database
}
}
}
//
DBConnect();
function UserInput($mark)
{
global $smarty;
$smarty->assign("mark", $mark);
}
if (empty($CPosGroup)) {
$smarty->assign("FieldError", "{$a['position']} - {$a['pos_group']} - {$a['field_error']}");
UserInput("CPosGroup");
$smarty->display('posgroup/editf.tpl');
} else {
$query1 = $db->Execute("SELECT POSGROUPID, DESCRIPTION FROM {$TBLName}posgroup WHERE DESCRIPTION='{$CPosGroup}' AND POSGROUPID != {$posgroupID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("CPosGroup");
$smarty->display('posgroup/editf.tpl');
} else {
$query2 = "UPDATE {$TBLName}posgroup SET DESCRIPTION='{$CPosGroup}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE POSGROUPID={$posgroupID}";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$_SESSION['EditID'] = "1";
if ($infoID == '9') {
Header("Location: {$web}/posgroup/searchlist.php?posgroupID={$posgroupID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$posgroupID}");
} else {
Header("Location: {$web}/posgroup/list.php?posgroupID={$posgroupID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$posgroupID}");
}
}
}
global $smarty;
$smarty->assign("mark", $mark);
}
if (empty($categoryID)) {
$smarty->assign("FieldError", "{$a['category']} - {$a['field_error']}");
UserInput("");
$smarty->display('category/deletef.tpl');
} else {
// Database connection
//
DBConnect();
$query1 = $db->Execute("SELECT CATEGORY FROM {$TBLName}addressbook WHERE CATEGORY={$categoryID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['category']} - {$a['entry_not_deleted']}");
UserInput("");
$smarty->display('category/deletef.tpl');
} else {
$query4 = "DELETE FROM {$TBLName}category WHERE CATEGORYID={$categoryID}";
if ($db->Execute($query4) === false) {
die($db->ErrorMsg());
}
$query5 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)";
$query5 .= "VALUES(NULL, '{$CurrentDateTime}', 'Category-No.: {$categoryID} was DELETED by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress}', 'admin', '1', '2')";
if ($db->Execute($query5) === false) {
die($db->ErrorMsg());
}
$_SESSION['DeleteID'] = "1";
if ($infoID == '9') {
Header("Location: {$web}/category/searchlist.php?categoryID={$categoryID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}");
} else {
} else {
if ($Password1 != $Password2) {
$smarty->assign("FieldError", "{$a['password_error']}");
UserInput("Password1");
$smarty->display('addressbook/editf.tpl');
} else {
if (isset($_SESSION['Username']) && $_SESSION['Username'] != $root && $_SESSION['Usergroup1'] != $admingroup_1 && $_SESSION['Usergroup2'] != $admingroup_2 && $_SESSION['Username'] != $CreatedBy) {
$smarty->assign("FieldError", "{$a['no_permission']}");
UserInput("");
$smarty->display('addressbook/editf.tpl');
} else {
$query1 = $db->Execute("SELECT MYID, DECODE(USERNAME,'{$pkey}') AS USERNAME FROM {$TBLName}addressbook WHERE DECODE(USERNAME,'{$pkey}')='{$UserName}' AND MYID != {$myID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']} - {$a['username']}");
UserInput("UserName");
$smarty->display('addressbook/editf.tpl');
} else {
$query3 = "UPDATE {$TBLName}addressbook SET MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}', PASSWORD=ENCODE('{$Password1}','{$pkey}'), USERLANGUAGE='{$UserLanguage}', USERNAME=ENCODE('{$UserName}','{$pkey}'), USER_ACTIVE='{$UserActive}' WHERE MYID={$myID}";
if ($db->Execute($query3) === false) {
die($db->ErrorMsg());
}
$_SESSION['EditID'] = "1";
}
if ($infoID == '9') {
Header("Location: {$web}/addressbook/searchlist.php?myID={$myID}&page={$page}&Customer={$Customer}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}");
} else {
if ($infoID == '10') {
Header("Location: {$web}/addressbook/searchlist_e.php?myID={$myID}&page={$page}{$Searchstring}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}");
} else {
Header("Location: {$web}/addressbook/list.php?myID={$myID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}");
UserInput("expenditures");
$smarty->display('cashbook/newf.tpl');
} else {
if (empty($description)) {
$smarty->assign("FieldError", "{$a['cashbook_description']} - {$a['field_error']}");
UserInput("description");
$smarty->display('cashbook/newf.tpl');
} else {
if (isset($startingwith) && $startingwith + $Cash_In_Hand - $expenditures < 0) {
$smarty->assign("FieldError", "{$a['cashbook_expenditures']}");
UserInput("expenditures");
$smarty->display('cashbook/newf.tpl');
} else {
if ($Cash_In_Hand_Till - $expenditures < 0) {
$smarty->assign("FieldError", "{$a['cashbook_expenditures']}");
UserInput("expenditures");
$smarty->display('cashbook/newf.tpl');
} else {
$Cash_In_Hand_Day = $Cash_In_Hand + ($takings - $expenditures);
$Cash_In_Hand_Day = FormatDBNumber($Cash_In_Hand_Day);
$cashbookdate = German_Mysql_Date($cashbookdate);
$query4 = "INSERT INTO {$TBLName}cashbook (CASHBOOKID, MYID, INVOICEID, PAYMENTID, DESCRIPTION, CASHBOOK_DATE, TAKINGS, EXPENDITURES, CASH_IN_HAND, CASH_IN_HAND_STARTING_WITH, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query4 .= "VALUES(NULL, '', '', '', '{$description}', '{$cashbookdate}', '{$takings}', '{$expenditures}', '{$Cash_In_Hand_Day}', '{$startingwith}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}','{$CurrentDateTime}')";
if ($db->Execute($query4) === false) {
die($db->ErrorMsg());
}
$_SESSION['NewID'] = "1";
Header("Location: {$web}/cashbook/new.php?page={$page}&infoID={$infoID}&Order={$Order}&Sort={$Sort}&Canceled={$Canceled}&{$sessname}={$sessid}");
}
}
}
//
$query = $db->Execute("SELECT POSGROUPID, DESCRIPTION FROM {$TBLName}posgroup WHERE POSGROUPID={$PosGroupID}");
// If an error has occurred, display the error message
//
if (!$query) {
print $db->ErrorMsg();
} else {
// Save position group in $Pos_Group
//
foreach ($query as $f1) {
$Pos_Group = $f1['DESCRIPTION'];
}
}
$query1 = $db->Execute("SELECT POS_NAME FROM {$TBLName}article WHERE POS_NAME='{$Pos_Name}'");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']} - '{$Pos_Name}'");
UserInput("Pos_Name");
$smarty->display('position/newf.tpl');
} else {
$query2 = "INSERT INTO {$TBLName}article (POSITIONID, POS_ACTIVE, POS_NAME, POS_DESC, POS_PRICE, POS_TAX, POSGROUPID, POS_GROUP, NOTE, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query2 .= "VALUES(NULL, '{$Pos_Active}', '{$Pos_Name}', '{$Pos_Desc}', '{$Pos_Price}', '{$Pos_Tax}', '{$PosGroupID}', '{$Pos_Group}', '{$Note}', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$_SESSION['NewID'] = "1";
Header("Location: {$web}/position/new.php?{$sessname}={$sessid}");
}
}
}
}
$smarty->assign("{$key}", $val);
}
function UserInput($mark)
{
global $smarty;
$smarty->assign("mark", $mark);
}
if (empty($Method_Of_Payment)) {
$smarty->assign("FieldError", "{$a['method_of_payment']} - {$a['field_error']}");
UserInput("Method_Of_Payment");
$smarty->display('methodofpayment/newf.tpl');
} else {
// Database connection
//
DBConnect();
$query1 = $db->Execute("SELECT DESCRIPTION FROM {$TBLName}methodofpay WHERE DESCRIPTION='{$Method_Of_Payment}'");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("Method_Of_Payment");
$smarty->display('methodofpayment/newf.tpl');
} else {
$query2 = "INSERT INTO {$TBLName}methodofpay (METHODOFPAYID, DESCRIPTION, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query2 .= "VALUES(NULL, '{$Method_Of_Payment}','{$_SESSION['Username']}','{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$_SESSION['NewID'] = "1";
Header("Location: {$web}/methodofpayment/new.php?page={$page}&{$sessname}={$sessid}");
}
}
print $db->ErrorMsg();
} else {
while (!$query7->EOF) {
$ETotalTakings += $query7->fields['TAKINGS'];
$ETotalExpenditures += $query7->fields['EXPENDITURES'];
$ECash_In_Hand_Starting_With += $query7->fields['CASH_IN_HAND_STARTING_WITH'];
$query7->MoveNext();
}
}
$ECash_In_Hand = $ECash_In_Hand_Starting_With + ($ETotalTakings - $ETotalExpenditures);
$ESum_Paid = FormatDBNumberP($Sum_Paid);
$ECash_In_Hand_Day = $ECash_In_Hand - $ESum_Paid;
$ECash_In_Hand_Day = FormatDBNumber($ECash_In_Hand_Day);
if ($ECash_In_Hand_Day <= 0) {
$smarty->assign("FieldError", "{$a['payment']} - {$a['cashbook_expenditures']}");
UserInput("SumPaidForm.Sum_Paid");
die($smarty->display('payment/newf.tpl'));
} else {
$query8 = "INSERT INTO {$TBLName}cashbook (CASHBOOKID, MYID, INVOICEID, PAYMENTID, DESCRIPTION, CASHBOOK_DATE, CASH_IN_HAND, EXPENDITURES, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query8 .= "VALUES (NULL, '{$myID}', '{$invoiceID}', '{$maxPaymentID}', '{$MethodOfPayment_Desc} - {$a['invoice_number']} {$invoiceID}', '{$PaymentDate}', '{$ECash_In_Hand_Day}', '{$ESum_Paid}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '1', '2', " . $db->sysTimeStamp . ", " . $db->sysTimeStamp . ")";
if ($db->Execute($query8) === false) {
die($db->ErrorMsg());
}
}
}
// Insert new payment
//
$query2 = "INSERT INTO {$TBLName}payment (PAYMENTID, MYID, INVOICEID, PAYMENT_DATE, METHODOFPAYID, METHOD_OF_PAY, CARDNR, VALIDTHRU, SUM_PAID, NOTE, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query2 .= "VALUES (NULL, '{$myID}', '{$invoiceID}', '{$PaymentDate}', '{$MethodOfPayment}', '{$MethodOfPayment_Desc}', '{$Card_Number}', '{$Valid_Thru}', '{$Sum_Paid}', '{$Note}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
global $smarty;
$smarty->assign("mark", $mark);
}
if (!ereg("^([a-zA-Z0-9\\.\\_\\-]+)@([a-zA-Z0-9\\.\\-]+\\.[A-Za-z][A-Za-z]+)\$", $EmailTo)) {
$smarty->assign("FieldError", "{$a['email_to']} - {$a['field_error']}");
UserInput("EmailTo");
$smarty->display('addressbook/emailf.tpl');
} else {
if (empty($EmailSubject)) {
$smarty->assign("FieldError", "{$a['email_subject']} - {$a['field_error']}");
UserInput("EmailSubject");
$smarty->display('addressbook/emailf.tpl');
} else {
if (empty($EmailText)) {
$smarty->assign("FieldError", "{$a['email_text']} - {$a['field_error']}");
UserInput("EmailText");
$smarty->display('addressbook/emailf.tpl');
} else {
if (!empty($EmailTo)) {
require_once "../include/mail.inc.php";
if ($PHPSendMail == "1") {
PEAR_Email_PlainText($EmailTo, $EmailCc, $EmailBcc, $EmailPriority, $EmailSubject, $EmailText, $_SESSION['Charset']);
} else {
Email_PlainText($EmailTo, $EmailCc, $EmailBcc, $EmailPriority, $EmailSubject, $EmailText, $_SESSION['Charset']);
}
// Database connection
//
DBConnect();
// $syslogid = $db->GenID('syslog_syslogid_seq');
$Description = QuoteString("{$EmailSubject} was send by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress} to E-Mail: {$EmailTo}");
$query2 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)";
} else {
if (empty($D_Company_Postal)) {
$smarty->assign("FieldError", "{$a['company_postal']} - {$a['field_error']}");
UserInput("D_Company_Postal");
} else {
if (empty($D_Company_City)) {
$smarty->assign("FieldError", "{$a['company_city']} - {$a['field_error']}");
UserInput("D_Company_City");
} else {
if (empty($D_Company_Country)) {
$smarty->assign("FieldError", "{$a['company_country']} - {$a['field_error']}");
UserInput("D_Company_Country");
} else {
if (empty($D_Company_Currency)) {
$smarty->assign("FieldError", "{$a['company_currency']} - {$a['field_error']}");
UserInput("D_Company_Currency");
} else {
$D_Company_Date = German_Mysql_Date($D_Company_Date);
if (empty($D_Sales_Prices)) {
$query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_DATE='{$D_Company_Date}', COMPANY_NAME='{$D_Company_Name}', COMPANY_ADDRESS='{$D_Company_Address}', COMPANY_POSTAL='{$D_Company_Postal}', COMPANY_CITY='{$D_Company_City}', COMPANY_COUNTRY='{$D_Company_Country}', COMPANY_PHONE='{$D_Company_Phone}', COMPANY_FAX='{$D_Company_Fax}', COMPANY_EMAIL='{$D_Company_Email}', COMPANY_URL='{$D_Company_URL}', COMPANY_CURRENCY='{$D_Company_Currency}', TAX_FREE='{$D_Company_Tax_Free}', COMPANY_TAXNR='{$D_Company_Taxnr}', COMPANY_BUSINESS_TAXNR='{$D_Business_Taxnr}', COMPANY_BANKNAME='{$D_Bank_Name}', COMPANY_BANKACCOUNT='{$D_Bank_Account}', COMPANY_BANKNUMBER='{$D_Bank_Number}', COMPANY_BANKIBAN='{$D_Bank_IBAN}', COMPANY_BANKBIC='{$D_Bank_BIC}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}");
} else {
$query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_DATE='{$D_Company_Date}', COMPANY_NAME='{$D_Company_Name}', COMPANY_ADDRESS='{$D_Company_Address}', COMPANY_POSTAL='{$D_Company_Postal}', COMPANY_CITY='{$D_Company_City}', COMPANY_COUNTRY='{$D_Company_Country}', COMPANY_PHONE='{$D_Company_Phone}', COMPANY_FAX='{$D_Company_Fax}', COMPANY_EMAIL='{$D_Company_Email}', COMPANY_URL='{$D_Company_URL}', COMPANY_CURRENCY='{$D_Company_Currency}', COMPANY_SALESPRICE='{$D_Sales_Prices}', TAX_FREE='{$D_Company_Tax_Free}', COMPANY_TAXNR='{$D_Company_Taxnr}', COMPANY_BUSINESS_TAXNR='{$D_Business_Taxnr}', COMPANY_BANKNAME='{$D_Bank_Name}', COMPANY_BANKACCOUNT='{$D_Bank_Account}', COMPANY_BANKNUMBER='{$D_Bank_Number}', COMPANY_BANKIBAN='{$D_Bank_IBAN}', COMPANY_BANKBIC='{$D_Bank_BIC}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}");
}
Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}");
}
}
}
}
}
}
}
//
DBConnect();
function UserInput($mark)
{
global $smarty;
$smarty->assign("mark", $mark);
}
if (empty($CMessage)) {
$smarty->assign("FieldError", "{$a['message']} - {$a['field_error']}");
UserInput("CMessage");
$smarty->display('message/editf.tpl');
} else {
$query1 = $db->Execute("SELECT MESSAGEID, DESCRIPTION FROM {$TBLName}message WHERE DESCRIPTION='{$CMessage}' AND MESSAGEID != {$messageID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("CMessage");
$smarty->display('message/editf.tpl');
} else {
$query2 = "UPDATE {$TBLName}message SET DESCRIPTION='{$CMessage}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE MESSAGEID={$messageID}";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$_SESSION['EditID'] = "1";
if ($infoID == '9') {
Header("Location: {$web}/message/searchlist.php?messageID={$messageID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$messageID}");
} else {
Header("Location: {$web}/message/list.php?messageID={$messageID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$messageID}");
}
}
}
} else {
if (empty($TaxMultiply) && $taxID != 4) {
$smarty->assign("FieldError", "{$a['tax_multiply']} - {$a['field_error']}");
UserInput("TaxMultiply");
$smarty->display('tax/editf.tpl');
} else {
if (empty($TaxDescription)) {
$smarty->assign("FieldError", "{$a['tax_description']} - {$a['field_error']}");
UserInput("TaxDescription");
$smarty->display('tax/editf.tpl');
} else {
$query1 = $db->Execute("SELECT TAXID, TAX_DESC, TAX_DIVIDE, TAX_MULTI FROM {$TBLName}tax WHERE TAX_DESC='{$TaxDescription}' AND TAX_DIVIDE='{$TaxDivide}' AND TAX_MULTI='{$TaxMultiply}' AND TAXID != {$taxID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("TaxDivide");
$smarty->display('tax/editf.tpl');
} else {
$query2 = "UPDATE {$TBLName}tax SET TAX_DESC='{$TaxDescription}', TAX_DIVIDE='{$TaxDivide}', TAX_MULTI='{$TaxMultiply}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE TAXID={$taxID}";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$query3 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)";
$query3 .= "VALUES(NULL, '{$CurrentDateTime}', '{$TaxDescription} - Tax-No.: {$taxID} was MODIFIED by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress}', 'admin', '1', '2')";
if ($db->Execute($query3) === false) {
die($db->ErrorMsg());
}
$_SESSION['EditID'] = "1";
Header("Location: {$web}/tax/list.php?taxID={$taxID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$taxID}");
}
}
//
DBConnect();
function UserInput($mark)
{
global $smarty;
$smarty->assign("mark", $mark);
}
if (empty($CCategory)) {
$smarty->assign("FieldError", "{$a['category']} - {$a['field_error']}");
UserInput("CCategory");
$smarty->display('category/editf.tpl');
} else {
$query1 = $db->Execute("SELECT CATEGORYID, DESCRIPTION FROM {$TBLName}category WHERE DESCRIPTION='{$CCategory}' AND CATEGORYID != {$categoryID}");
$numrows1 = $query1->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("CCategory");
$smarty->display('category/editf.tpl');
} else {
$query2 = "UPDATE {$TBLName}category SET DESCRIPTION='{$CCategory}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE CATEGORYID={$categoryID}";
if ($db->Execute($query2) === false) {
die($db->ErrorMsg());
}
$_SESSION['EditID'] = "1";
if ($infoID == '9') {
Header("Location: {$web}/category/searchlist.php?categoryID={$categoryID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$categoryID}");
} else {
Header("Location: {$web}/category/list.php?categoryID={$categoryID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$categoryID}");
}
}
}
$smarty->assign("FieldError", "{$a['pdf_text1']} - {$a['field_error']}");
UserInput("D_PDF_Text1");
} else {
if (empty($D_PDF_Text2)) {
$smarty->assign("FieldError", "{$a['pdf_text2']} - {$a['field_error']}");
UserInput("D_PDF_Text2");
} else {
if (empty($D_PDF_Text3)) {
$smarty->assign("FieldError", "{$a['pdf_text3']} - {$a['field_error']}");
UserInput("D_PDF_Text3");
} else {
if (empty($D_PDF_Directory)) {
$smarty->assign("FieldError", "{$a['pdf_dir']} - {$a['field_error']}");
UserInput("D_PDF_Directory");
} else {
if (empty($D_PDF_Attachment_Text)) {
$smarty->assign("FieldError", "{$a['pdf_attachment_text']} - {$a['field_error']}");
UserInput("D_PDF_Attachment_Text");
} else {
$query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_LOGO='{$D_PDF_Company_Logo}', PDF_COMPANY_LOGO_WIDTH='{$D_PDF_Company_Logo_Width}', PDF_COMPANY_LOGO_HEIGHT='{$D_PDF_Company_Logo_Height}', PDF_FONT='{$D_PDF_Font}', PDF_FONT_SIZE1='{$D_PDF_Text1}', PDF_FONT_SIZE2='{$D_PDF_Text2}', PDF_TYPE_HEIGHT='{$D_PDF_Text3}', PDF_DIR='{$D_PDF_Directory}', PDF_ATTACHMENT_TEXT='{$D_PDF_Attachment_Text}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}");
Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}");
}
}
}
}
}
}
}
}
}
$smarty->display('config/editf_pdf.tpl');
CheckSession();
$ArrayValue = CheckArrayValue($_REQUEST);
foreach ($ArrayValue as $key => $val) {
${$key} = $val;
$smarty->assign("{$key}", $val);
}
if (!is_numeric($settingID) || $settingID <= 0) {
die(header("Location: {$web}"));
}
// Database connection
//
DBConnect();
function UserInput($mark)
{
global $smarty;
$smarty->assign("mark", "{$mark}");
}
if ($D_Entries_Per_Page < 25) {
$smarty->assign("FieldError", "{$a['entries_per_page']} - {$a['field_error']}");
UserInput("D_Entries_Per_Page");
$smarty->display('config/editf.tpl');
} else {
if ($D_Session_Sec < 120) {
$smarty->assign("FieldError", "{$a['session_sec']} - {$a['field_error']}");
UserInput("D_Session_Sec");
$smarty->display('config/editf.tpl');
} else {
$query = $db->Execute("UPDATE {$TBLName}setting SET PRINT_COMPANY_DATA='{$D_Print_Company_Data}', PRINT_POSITION_NAME='{$D_Print_Position_Name}', EMAIL_INTERNAL='{$D_Email_Internal}', EMAIL_USE_SIGNATURE='{$D_Email_Use_Signature}', EMAIL_SIGNATURE='{$D_Email_Signature}', INVENTORY_CHECK_ACTIVE='2', REMINDER='{$D_Reminder}', REMINDER_DAYS='{$D_Reminder_Days}', REMINDER_PRICE='0.00', ENTRYS_PER_PAGE='{$D_Entries_Per_Page}', SESSION_SEC='{$D_Session_Sec}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}");
Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}");
}
}
} else {
// Database connection
//
DBConnect();
$query1 = $db->Execute("SELECT FIRSTNAME, LASTNAME, ADDRESS, POSTALCODE, CITY FROM {$TBLName}addressbook WHERE FIRSTNAME='{$firstname}' AND LASTNAME='{$lastname}' AND ADDRESS='{$address}' AND POSTALCODE='{$postalcode}' AND CITY='{$city}'");
$numrows1 = $query1->RowCount();
$query2 = $db->Execute("SELECT DECODE(USERNAME,'{$pkey}') AS USERNAME FROM {$TBLName}addressbook WHERE DECODE(USERNAME,'{$pkey}')='{$username}'");
$numrows2 = $query2->RowCount();
if ($numrows1) {
$smarty->assign("FieldError", "{$a['entry_exist']}");
UserInput("");
$smarty->display('addressbook/newf.tpl');
} else {
if (!empty($UserName) && $numrows2) {
$smarty->assign("FieldError", "{$a['entry_exist']} -> {$a['username']}");
UserInput("username");
$smarty->display('addressbook/newf.tpl');
} else {
list($day, $month, $year) = explode(".", $birthday);
$birthday = German_Mysql_Date($birthday);
$query3 = "INSERT INTO {$TBLName}addressbook (MYID, PRINT_NAME, PREFIX, FIRSTNAME, LASTNAME, TITLE, COMPANY, DEPARTMENT, ADDRESS, CITY, STATEPROV, POSTALCODE, COUNTRY, POSITION, INITIALS, SALUTATION, PHONEHOME, PHONEOFFI, PHONEOTHE, PHONEWORK, MOBILE, PAGER, FAX, EMAIL, URL, NOTE, CHANGELOG, ALTFIELD1, ALTFIELD2, URL2, EMAIL2, CATEGORY, METHODOFPAY, MESSAGE, BIRTHDAY, BANKNAME, BANKACCOUNT, BANKNUMBER, BANKIBAN, BANKBIC, TAX_FREE, TAXNR, BUSINESS_TAXNR, USERNAME, PASSWORD, USERLANGUAGE, USER_ACTIVE, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)";
$query3 .= "VALUES (NULL, '{$printname}', '{$prefix}', '{$firstname}', '{$lastname}', '{$title}', '{$company}', '{$department}', '{$address}', '{$city}', '{$stateprov}', '{$postalcode}', '{$country}', '{$position}', '{$initials}', '{$salutation}', '{$phonehome}', '{$phoneoffi}', '{$phoneothe}', '{$phonework}', '{$mobile}', '{$pager}', '{$fax}', '{$email}', '{$url}', '{$note}', '{$changelog}', '{$altfield1}', '{$altfield2}', '{$url2}', '{$email2}', '{$category}', '{$methodofpayment}', '{$message}', '{$birthday}', '{$bankname}', '{$bankaccount}', '{$banknumber}', '{$bankiban}', '{$bankbic}', '2', '{$taxnr}', '{$businesstaxnr}', ENCODE('{$username}','{$pkey}'), ENCODE('{$password1}','{$pkey}'), '{$userlanguage}', '{$useractive}', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')";
if ($db->Execute($query3) === false) {
die($db->ErrorMsg());
}
$_SESSION['NewID'] = "1";
Header("Location: {$web}/addressbook/new.php?page={$page}&infoID={$infoID}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}");
}
}
}
}
