function supportHoursIncludedInContract($id_client) { CybPHP_Validate::ValidateInt($id_client); $query = "SELECT supportHoursIncludedInContract\nFROM webfinance.webfinance_clients\nWHERE id_client = {$id_client}"; $result = mysql_query($query) or die(mysql_error()); if (mysql_num_rows($result) != 1) { return 0; } $row = mysql_fetch_assoc($result); return $row['supportHoursIncludedInContract']; }
function GetInfo() { CybPHP_Validate::ValidateInt($this->_company_id); $result = CybPHP_MySQL::Query('SELECT nom AS name ' . 'FROM webfinance_clients ' . "WHERE id_client = {$this->_company_id}"); return mysql_fetch_assoc($result); }
*/ require "../inc/main.php"; $User = new User(); if (!$User->isAuthorized("manager,accounting,employee")) { $_SESSION['came_from'] = $_SERVER['REQUEST_URI']; header("Location: /login.php"); exit; } # Load extra Javacript array_push($extra_js, "/js/ask_confirmation.js"); # Load JQuery UI Javascript array_push($extra_js, '/javascript/jquery-ui/jquery-ui.js'); # Load Datepicker CSS array_push($extra_css, '/javascript/jquery-ui/css/smoothness/jquery-ui.css'); $roles = 'manager,employee,accounting'; CybPHP_Validate::ValidateMD5($_GET['md5']); $_GET['md5'] = mysql_real_escape_string($_GET['md5']); $q = "\nSELECT\n d.provider_id,\n d.vat,\n d.total_amount,\n d.currency,\n d.date,\n d.paid,\n d.note,\n d.accounting,\n d.type,\n d.ticket_id,\n c.nom\nFROM document d\nLEFT OUTER JOIN webfinance_clients c ON d.provider_id = c.id_client\nWHERE d.md5 = '{$_GET['md5']}'"; $result = mysql_query($q) or die(mysql_error() . ' ' . $q); if (mysql_num_rows($result) != 1) { die('Invalid MD5'); } $row = mysql_fetch_assoc($result); $title = "{$row['nom']} document: {$row['note']}"; require "../top.php"; ?> <script> $(function() { $( "#datepicker" ).datepicker({ dateFormat: "yy-mm-dd" }); });
/** * Add a new client. * * @param Int webfinance_client_id The Webfinance client id. * * @param String client_name The name of the client. * **/ function createClient($webfinance_client_id = 0, $client_name = NULL) { CybPHP_Validate::ValidateInt($webfinance_client_id); $url = 'https://www.toggl.com/api/v8/clients'; $options = array('client' => array('name' => $client_name, 'wid' => $this->_wid)); $return = $this->query($url, $options); $id_toggl = $return['data']['id']; if (empty($id_toggl)) { echo "unable to fetch id_toggl"; print_r($return); exit(1); } mysql_query('UPDATE webfinance_clients ' . "SET id_toggl = {$id_toggl} " . "WHERE id_client = {$webfinance_client_id}") or die(mysql_error()); // Create projects foreach ($this->_default_projects as $project_name) { $this->createProject($id_toggl, $project_name); } }
continue; } upload_file($file, basename($file)); } } require "../inc/main.php"; $User = new User(); if (!$User->isAuthorized("manager,accounting,employee")) { $_SESSION['came_from'] = $_SERVER['REQUEST_URI']; header("Location: /login.php"); exit; } if (!isset($_FILES['file']['name'])) { die('Too few argument. PHP upload limit reached?'); } CybPHP_Validate::ValidateInt($_SESSION['id_user']); if ($_FILES['file']['error'] !== 0) { die('Unknown upload error from PHP'); } $file_extension = preg_replace('/.*\\./', '', $_FILES['file']['name']); switch (strtolower($file_extension)) { case 'zip': upload_zip($_FILES['file']['tmp_name']); break; case 'pdf': case 'odt': case 'doc': case 'ods': case 'xls': case 'ppt': upload_file($_FILES['file']['tmp_name'], $_FILES['file']['name']);
/** * Get user ID from email address * * @param email string. The email address * * @return user_id int. The user ID. * */ static function GetIdFromEmail($email = '') { CybPHP_Validate::ValidateEmail($email); $email = mysql_escape_string($email); $result = CybPHP_MySQL::Query('SELECT id_user ' . 'FROM webfinance_users ' . "WHERE email = '{$email}'"); $user = mysql_fetch_assoc($result); return $user['id_user']; }