<?php
session_start();
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
$system = new setting();
$database = new database();
MainConfig::connectDB();
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'update_emp_data') {
$emp_name = mysql_real_escape_string($_POST['emp_name']);
$system->prepareCommandQueryForAlertify("UPDATE `r_employee` SET `emp_id`='{$_POST['emp_id']}', `name`='{$_POST['emp_name']}", "Successfully Updated Employee Data", "Sorry ! Could not be Update");
} else {
if ($_POST['action'] == 'del_emp') {
$system->prepareCommandQueryForAlertify("DELETE FROM `r_employee` WHERE (`emp_id`='{$_POST['emp_id']}')", "Successfully Deleted Employee", "Sorry ! Could not be Delete");
} else {
if ($_POST['action'] == 'check_emp_no') {
$data = $system->prepareSelectQuery("SELECT\r\n COUNT(r_employee.emp_id) AS tot\r\n FROM `employee`\r\n WHERE\r\n lms_emp_data.lms_emp_NO = '{$_POST['id']}'");
if (!empty($data)) {
echo $current_tot = $data[0]['tot'];
}
} else {
if ($_POST['action'] == 'select_emp') {
$system->prepareSelectQueryForJSON("SELECT\r\n r_employee.emp_id,\r\n r_employee.name,\r\n r_employee.gender\r\n r_employee.nic,\r\n FROM r_employee\r\n WHERE\r\n r_employee.emp_id = {$_POST['emp_id']}");
} else {
if ($_POST['action'] == 'save_paysheet') {
// $query = "INSERT INTO `paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}',{$_POST['sallary']}','{$_POST['date']}')" ;
$query = "INSERT INTO `r_paysheet` (`paysheet_id`,`emp_id`,`emp_name`,`nicno`,`nopay`,`late`,`meal`,`hours`,`hourlyrate`,`advance`,`basic`,`epfno`,`sallary`,`epfval`,`date`) VALUES ('{$_POST['paysheet_id']}','{$_POST['emp_id']}','{$_POST['name']}','{$_POST['nic']}','{$_POST['nopay']}','{$_POST['late']}','{$_POST['meal']}','{$_POST['othours']}','{$_POST['otrate']}','{$_POST['advance']}','{$_POST['basic']}','{$_POST['epfno']}','{$_POST['salary']}','{$_POST['epfval']}','{$_POST['date']}')";
$errMsg = "paysheet not added to the database";
$succMsg = "employee paysheet was sucessfully added to the database";
//require_once '../class/ap_funtions.php';
require_once '../config/dbc.php';
require_once '../class/database.php';
require_once '../class/systemSetting.php';
//require_once '../class/functionsByKIT.php';
$system = new setting();
$database = new database();
//$pasdManage = new MainConfig();
if (array_key_exists("action", $_POST)) {
if ($_POST['action'] == 'saveAdminLevels') {
MainConfig::connectDB();
$getSeqno = mysql_query("SELECT\nin_usrlevel.usrLvlPrvSeq,\nin_usrlevel.lvID\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'");
$count = mysql_num_rows($getSeqno);
$seqNo = $count + 1;
$system->prepareCommandQueryForAlertify("INSERT INTO `in_usrlevel` (`lvName`, `usrLvlPrvSeq`) VALUES ('{$_POST['userLevel']}', '{$seqNo}');", "Successfully Saved", "Sorry ..! Counld Not Be Saved");
} else {
if ($_POST['action'] == 'userLevelTbl') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvID,\nin_usrlevel.lvName,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nORDER BY in_usrlevel.lvID DESC");
} else {
if ($_POST['action'] == 'deleteUserLevel') {
$system->prepareCommandQueryForAlertify("DELETE FROM `in_usrlevel` WHERE (`lvID`='{$_POST['userLevelId']}')", "Successfully Deleted", "Sorry ..! Counld Not Be Deleted");
} else {
if ($_POST['action'] == 'loadUserLevelCombo') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID,\nin_usrlevel.usrLvlPrvSeq\nFROM\nin_usrlevel\nWHERE in_usrlevel.usrLvlPrvSeq != '20'");
} else {
if ($_POST['action'] == 'loadPrivillegeCombo') {
$system->prepareSelectQueryForJSON("SELECT\nin_sysprvlg.prvCode,\nin_sysprvlg.usrPrvMnuName\nFROM `in_sysprvlg`\n");
} else {
if ($_POST['action'] == 'selectUlevel') {
$system->prepareSelectQueryForJSON("SELECT\nin_usrlevel.lvName,\nin_usrlevel.lvID\nFROM\nin_usrlevel WHERE in_usrlevel.lvID = '{$_POST['userLevelId']}'");
}
echo json_encode(array(array("msgType" => 0, "msg" => "Successfully Logged to the System")));
} else {
echo json_encode(array(array("msgType" => 1, "msg" => "Password was incorrect.Please Check your Password")));
}
}
} else {
echo json_encode(array(array("msgType" => 2, "msg" => "User was not available in database,plase check your username")));
}
} else {
echo json_encode(array(array("msgType" => 3, "msg" => "Please enter username or password")));
}
}
if (array_key_exists("userActivation", $_POST)) {
if ($_POST['userActivation'] == 'active') {
echo $system->prepareCommandQueryForAlertify("UPDATE `at_system_users` SET `date`='" . date("Y-m-d") . "', `approved`='1' WHERE (`id`='{$_POST['uID']}')", "User Was Activated", "Sorry..! Could not be Activated this user");
} else {
if ($_POST['userActivation'] == 'deactivate') {
echo $system->prepareCommandQueryForAlertify("UPDATE `at_system_users` SET `date`='" . date("Y-m-d") . "', `approved`='0' WHERE (`id`='{$_POST['uID']}')", "User Was Deactivated", "Sorry..! Could not be Deactivated this user");
}
}
}
if (array_key_exists("userLoginProccess", $_POST)) {
if ($_POST['userLoginProccess'] == 'saveUser') {
$modalUserName = $dbClass->filterData($_POST['modalUserName']);
$modalUserLevel = $_POST['modalUserLevel'];
$modalUserPassword = $dbClass->PasswordHash($dbClass->filterData($_POST['modalUserPassword']));
$currentDate = date("Y-m-d");
echo $system->prepareCommandQueryForAlertify("INSERT INTO `at_system_users` (`user_name`, `user_level`, `pwd`, `date`, `approved`) VALUES ('{$modalUserName}', '{$modalUserLevel}', '{$modalUserPassword}', '{$currentDate}', '1')", "Successfully Registered System User", "Sorry..! could not be registered system user");
} else {
if ($_POST['userLoginProccess'] == 'deleteUser') {
}
}
}
}
}
if ($_POST['action'] == 'order_save') {
$order_data = $_POST['order_data'];
foreach ($order_data as $key => $value) {
$order_data[$key] = mysql_real_escape_string($order_data[$key]);
}
$query = "SELECT\n IFNULL(MAX(cus_order.order_no)+1,1) AS next_order_no\n FROM\n cus_order";
$result = mysql_query($query);
$nxtid = mysql_fetch_assoc($result);
$nnxx = $nxtid['next_order_no'];
// MainConfig::closeDB();
$system->prepareCommandQueryForAlertify("INSERT INTO `cus_order` (`order_no`, `model_id`, `vh_year`, `vh_color`, `milage_max`, `vh_options`, `cus_conditions`, `order_actions`, `max_price`, `pay_advance`, `gb`, `cus_id`, `description`, `pay_comments`, `coordinator_id`, `order_date`,manual_bill, `order_status`, `order_handler`) VALUES ('{$nnxx}', '{$order_data['model_ComboBox']}', '{$order_data['vehicle_year']}', '{$order_data['vehicle_colour']}', '{$order_data['vehicle_milage']}', '{$order_data['vehicle_options']}', '{$order_data['vehicle_cus_con']}', '{$order_data['vehicle_action']}', '{$order_data['vehicle_price']}', '{$order_data['vehicle_advance']}', '{$order_data['vehicle_gb']}', '{$order_data['customer_ComboBox']}', '{$order_data['vehicle_desc']}', '{$order_data['vehicle_pay_op']}', '{$order_data['coordinator_ComboBox']}', '{$order_data['vehicle_ord_date']}', '{$order_data['manual_bill_num']}', '1', '{$_SESSION['user_id']}');", "Successfully added", "Sorry..! Could Not Be added");
} else {
if ($_POST['action'] == 'order_reserve_save') {
//
$today = date('Y-m-d');
mysql_query("START TRANSACTION");
//
$order_data = $_POST['order_data'];
foreach ($order_data as $key => $value) {
$order_data[$key] = mysql_real_escape_string($order_data[$key]);
}
$query = "SELECT\n IFNULL(MAX(cus_order.order_no)+1,1) AS next_order_no\n FROM cus_order";
//
$result = mysql_query($query);
$nxtid = mysql_fetch_assoc($result);
$nnxx = $nxtid['next_order_no'];
