function edit($table, $vyber, $id) { $error_msg = array(); if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $hodnota = sec_sql(sec_input($_POST["hodnota"])); if (strlen($meno) > 30 or strlen($meno) < 3) { $error_msg[] = "Meno môže mať od 4 do 30 znakov"; } if (strlen($hodnota) > 30 or strlen($hodnota) < 3) { $error_msg[] = "Hodnota môže mať od 4 do 30 znakov"; } //var_dump($error_msg); if (empty($error_msg)) { echo "ok"; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, hodnota, meno from " . PREFIX . "{$table} WHERE id={$id}"; $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\">"; hidden("id", $value[id]); textfield("meno", $value[meno], "Meno", 50, 20); textfield("hodnota", $value[hodnota], "Hodnota", 40, 20); submit("submit", "Odoslať"); echo "</form>"; }
function form_task($minimized, $vyber, $order) { //var_dump($vyber); $cls = "ghost"; if (!empty($_SESSION["username"])) { $upozornenie_d = sql_query("Select id from dodavatel\r\n WHERE upozornenie = " . $_SESSION["username"] . " "); } if (count($upozornenie_d) > 0) { $up_id = array(); foreach ($upozornenie_d as $up) { $up_id[] = $up["id"]; } $pocet_upozorneni = sql_query("Select count(id) as counter from do_objednavka\r\n WHERE vymaz=0 AND komplet=0 AND id_dodavatel IN (" . implode(",", $up_id) . ") ")[0]["counter"]; } if ($pocet_upozorneni > 0) { $cls .= " red"; } else { $cls .= " silver"; } echo "<div id=\"tasker\" class=\"{$cls}\">\r\n \r\n <div class=\"tasker_title\">Objednávka <span></span>\r\n <div class=\"minimize\">_</div>\r\n </div>\r\n "; echo "<div class=\"tasker_content {$minimized}\">"; echo "<div class=\"new_task\">"; echo "<form method=\"POST\" id=\"do_objednavka\">"; echo select("task_dodavatel", "Dodávateľ", "SELECT id, meno from dodavatel \r\n WHERE vymaz=0 \r\n ORDER BY meno", "", "", "", "", "NO"); echo textfield("task_ks", "", "množstvo", 10, 2); $jednotky = array("ks" => "ks", "m" => "m"); echo select("jednotky", "", "", "", "", "", "", "NO", $jednotky); echo textfield("task_text", "", "Text", 150, 32); //echo hidden("task_produkt", ""); $ord = ""; $zakaznik = ""; if ($vyber == "objednavky" && $order > 0) { $ord = sql_query("\r\n SELECT c_obj\r\n FROM objednavka \r\n WHERE id = " . $order . "\r\n LIMIT 1\r\n ")[0]["c_obj"]; $zakaznik = sql_query("\r\n SELECT meno\r\n FROM revizia \r\n WHERE id_obj = " . $order . "\r\n ORDER BY datum DESC LIMIT 1\r\n ")[0]["meno"]; } echo textfield("task_zakaznik", $zakaznik, "Zákazník", 100, 20); echo textfield("task_order", $ord, "č. obj.", 15, 5); echo select("task_from", "Zadal", "SELECT id, meno from uzivatel \r\n WHERE skupina=1 AND perm_uroven_id<=2 AND vymaz=0 \r\n ORDER BY meno", $_SESSION["username"], "", "", "", "NO"); echo submit("submit", "Odoslať"); echo "</form>"; echo "</div>"; echo "</div>"; echo "</div>"; }
} //echo $_SESSION["username"]; if (empty($_SESSION["username"])) { redirect("/?vyber=login"); } $tasks = sql_query("SELECT count(*) as count\r\n FROM task \r\n WHERE for_uzivatel_id = " . $_SESSION["username"] . "\r\n AND komplet = 0 AND vymaz = 0\r\n ")[0][count]; if ($tasks > 0) { $cls = "red"; } else { $cls = "silver"; } echo "<div id=\"tasker\" class=\"{$cls}\">\r\n \r\n <div class=\"tasker_title\">Úlohy\r\n <div class=\"minimize\">_</div>\r\n </div>"; echo "<div class=\"tasker_content {$minimized}\">"; echo "<div class=\"new_task\">"; echo select("task_for", "", "SELECT id, meno from uzivatel \r\n WHERE skupina=1 AND id<>1 AND vymaz=0\r\n AND id<>" . $_SESSION["username"] . " \r\n ORDER BY meno", "", "", "", "", "NO"); echo textfield("task_text", ""); echo "</div>"; echo "<div class=\"tasker_user\">"; echo "<div class=\"tasks_from\">Doručené správy"; $tasks = sql_query("SELECT t.*, u.meno from task t\r\n INNER JOIN uzivatel u\r\n ON t.uzivatel_id = u.id\r\n WHERE t.for_uzivatel_id = " . $_SESSION["username"] . " \r\n AND (t.komplet=0 OR (t.komplet=1 AND t.datum_komplet >= DATE_SUB(CURDATE(), INTERVAL 1 DAY)))\r\n AND t.vymaz = 0\r\n ORDER BY t.komplet ASC, t.datum"); foreach ($tasks as $task) { echo "<div class=\"tasker_task_from\">"; echo "<div class=\"tasker_username\">" . $task["meno"] . "</div>"; if ($task["komplet"] == 0) { echo checker("task_complete", $task["id"], ""); echo "<div class=\"task_text datum\">" . dateDate($task["datum"]) . "</div>"; } else { echo "<div class=\"check\"></div>"; echo "<div class=\"task_text datum\">" . dateDate($task["datum_komplet"]) . "</div>"; } echo "<div class=\"task_text\">" . $task["task"] . "</div>";
$pdf->SetFontSize(8); $pdf->Write(5, 'Ф.И.О. плательщика'); $pdf->SetXY($x + 35, $y); $pdf->Write(5, $name); textfield($pdf, $x + 35, $y - 1, 77, '', ''); // Адрес плательщика $y += 5; $pdf->SetXY($x + 2, $y); $pdf->SetFontSize(8); $pdf->Write(5, 'Адрес плательщика'); $pdf->SetXY($x + 35, $y); $pdf->Write(5, $address); textfield($pdf, $x + 35, $y - 1, 77, '', ''); // Сумма платежа $y += 5; $pdf->SetXY($x + 64, $y); $pdf->SetFontSize(8); $pdf->Write(5, 'Сумма платежа: '); $pdf->Write(5, floor($amount) . ' ' . $banknote . ' ' . round($amount * 100 - floor($amount) * 100) . ' ' . $pence); // Итого $y += 5; $pdf->SetXY($x + 76, $y); $pdf->SetFontSize(8); $pdf->Write(5, ' Итого: '); $pdf->SetFontSize(9); $pdf->Write(5, floor($amount) . ' ' . $banknote . ' ' . round($amount * 100 - floor($amount) * 100) . ' ' . $pence); $pdf->SetFontSize(8); // Подпись плательщика textfield($pdf, $x + 2, $y, 30, '', '(подпись плательщика)'); //Output the document $pdf->Output('receipt.pdf', 'I');
function display_all($page, $vyber, $search_name) { echo "<h1>Všetky objednávky</h1>"; echo "<div class=\"filter_obj clearfix\">"; echo textfield("filter_by_obj_id", $_SESSION["search_id"], "č. obj:", 5, 4); echo select("filter_by_zakaznik", "Filtruj zákazníkov:", "SELECT id, meno FROM uzivatel WHERE skupina=2 AND vymaz=0 ORDER BY meno", $_SESSION["search_zakaznik"], "- všetci -", "", ""); echo textfield("filter_by_name", $_SESSION["search_name"], "Vyhľadaj podľa mena (min. 3zn):", 10, 10); $filtbyst = array("bez_rozpracovanych" => "všetky bez rozpracovaných", "aj_rozpracovane" => "všetky + rozpracované", "iba_prijate" => "iba prijaté", "iba_rozpracovane" => "iba rozpracované"); echo check_visibility("filter_by_status", select("filter_by_status", "Filtruj objednávky:", "", $_SESSION["search_status"], "", "", "", "NO", $filtbyst)); echo "</div>"; echo "<div id=\"list_of_all\">"; $sec_code = "8975JK.!"; include_once 'searchbyname.php'; echo "<strong>kontakt </strong>(J.Vaško): 0904580149"; echo "</div>"; }
if ($access == TRUE) { $message .= "<a href=\"?vyber={$vyber}&order={$order}&revision={$revision}&sub={$value['id']}&action=close\" class=\"vyroba_close\">Výroba kompletná</a>"; } } $message .= "</div>"; $message .= "<div class=\"print_hlavicka clearfix\">"; $message .= "<div class=\"print_poznamky_mat\">"; if (empty($vyr_status)) { $vyr_status = 2; } //var_dump($vyroba_status); $message2 = "<form method=\"POST\">"; $message2 .= textfield("vyr_tabula", $vyr_tabula, "Počet tabúľ", 5, 3); $message2 .= textfield("vyr_stvorak", $vyr_stvorak, "m2", 5, 3); $message2 .= select("vyr_abs", "ABS", "SELECT id, meno from cp_abs_vyrobca", $vyr_abs, "", "", ""); $message2 .= textfield("vyr_porez", $vyr_porez, "porez", 5, 3); $message2 .= select("vyr_status", "Stav výroby", "SELECT id, meno from revizia_vyroba_status", $vyr_status, "", "", "", "NO"); $message2 .= submit("submit", "Odoslať"); $message2 .= "</form>"; if ($access == TRUE) { $message .= $message2; } else { if (!in_array("1", $vyroba_status)) { //echo $vyr_upravil." = ".$_SESSION["username"]; if (empty($sub) or $vyr_upravil == $_SESSION["username"]) { $message .= $message2; } } } $message .= "</div>"; if ($data_obj[id_zakaznik] > 0) {
function formular($fieldsets_c, $form_data, $secure_key = "") { //print_r("=============================="); //dd($form_data); //var_dump($form_data); $fieldsets_c = count($form_data["ks_all"]); if ($fieldsets_c == 0) { $fieldsets_c = 1; } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } //var_dump($vyrobny_plan_all); //var_dump($form_data); //var_dump($dekor); echo "<div class=\"info_panel\">Objednávkový systém určený výhradne zmluvným partnerom.<br>\r\n * povinné údaje sú označené hviezdičkou, <span class\"bold\">systém odberateľa identifikuje v administrácii podľa platnej e-mailovej adresy\r\n a automaticky pridelí všetky ostatné údaje, vrátane adresy doručenia</span>.</div>"; echo "<div id=\"content\">"; echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<div class=\"intro_text\">\r\n <fieldset class=\"\">\r\n <legend>Oznamy</legend>" . (strlen(def_value("intro_text", "hodnota")) > 350 ? substr(def_value("intro_text", "hodnota"), 0, 350) . '' : def_value("intro_text", "hodnota")) . "\r\n </fieldset>\r\n </div>"; echo "<fieldset id=\"udaje\"><legend>Vaše údaje</legend>"; if ($_SESSION["logged"] == 1 and $_SESSION["perm_uroven"] < 3) { echo "<div class=\"form_zakaznik_text\">"; echo textfield("zakaznik", "", "Zákazník", 50, 20); echo hidden("zakaznik", $zakaznik); echo "</div>"; } if ($_SESSION["logged"] == 1 and $_SESSION["perm_uroven"] > 3) { $query = "SELECT * FROM uzivatel WHERE id=" . $_SESSION["username"] . " LIMIT 1"; $user_dates = sql_query($query)[0]; if (empty($meno)) { $meno = $user_dates["meno"]; } if (empty($adresa)) { $adresa = $user_dates["adresa"]; } if (empty($mesto)) { $mesto = $user_dates["mesto"]; } if (empty($psc)) { $psc = $user_dates["psc"]; } if (empty($ico)) { $ico = $user_dates["ico"]; } if (empty($dic)) { $dic = $user_dates["dic"]; } if (empty($telefon)) { $telefon = $user_dates["telefon"]; } if (empty($email)) { $email = $user_dates["email"]; } if (empty($doruc_meno)) { $doruc_meno = $user_dates["doruc_meno"]; } if (empty($doruc_adresa)) { $doruc_adresa = $user_dates["doruc_adresa"]; } if (empty($doruc_mesto)) { $doruc_mesto = $user_dates["doruc_mesto"]; } if (empty($doruc_psc)) { $doruc_psc = $user_dates["doruc_psc"]; } if (empty($doruc_telefon)) { $doruc_telefon = $user_dates["doruc_telefon"]; } } echo textfield("meno", $meno, "Odberateľ *", 40, 20, "", "Povinný údaj:<br> vpíšte Vaše meno alebo názov firmy"); echo textfield("adresa", $adresa, "Ulica", 50, 20); echo textfield("mesto", $mesto, "Mesto", 50, 20); echo textfield("psc", $psc, "PSČ", 50, 20); echo textfield("ico", $ico, "IČO", 15, 20); echo textfield("dic", $dic, "IČ DPH", 15, 20); echo textfield("telefon", $telefon, "telefón *", 20, 20, "", "Povinný údaj"); if ($_SESSION["logged"] == 1 and $email == "") { $email = def_value("default_email", "hodnota"); } echo textfield("email", $email, "email *", 50, 20, "", "Povinný údaj:<br> vpíšte Váš email na ktorý Vám bude zaslané potvrdenie objednávky"); echo textfield("vlastne_cislo_obj", $vlastne_cislo_obj, "Vaše číslo obj.", 25, 20); echo textfield("vystavil", $vystavil, "vystavil", 18, 20); $skryt_zakaznikom = "AND skryt_zakaznikom=0"; if ($_SESSION["logged"] == 1) { $skryt_zakaznikom = ""; } //echo $skryt_zakaznikom; $csrf_key = md5(uniqid(rand(), TRUE)); $_SESSION["csrf_key"] = $csrf_key; //$_SESSION["janko"] = microtime(); //var_dump($_SESSION); echo hidden("secure_csrf", $csrf_key); if (!empty($secure_key)) { echo hidden("secure_key", $secure_key); } echo "</fieldset>"; echo "<fieldset id=\"doruc_udaje\"><legend>Adresa doručenia</legend>"; echo textfield("doruc_meno", $doruc_meno, "Meno", 40, 20, "", "Povinný údaj:<br> vpíšte Vaše meno alebo názov firmy"); echo textfield("doruc_adresa", $doruc_adresa, "Ulica", 50, 20); echo textfield("doruc_mesto", $doruc_mesto, "Mesto", 50, 20); echo textfield("doruc_psc", $doruc_psc, "PSČ", 40, 20); echo textfield("doruc_telefon", $doruc_telefon, "Telefón", 40, 20); echo "</fieldset>"; //var_dump($_SESSION); for ($i = 0; $i < $fieldsets_c; $i++) { $poradie = $i + 1; $checked = ""; echo "<fieldset class=\"order-row\">"; echo "<div class=\"count\">{$poradie}. </div>"; echo hidden("vyrobny_plan[{$i}]", empty($vyrobny_plan_all[$i]) ? "0" : $vyrobny_plan_all[$i]); echo textfield("ks[{$i}]", $ks_all[$i], "ks *", 3, 2, "ks", "Povinný údaj: <br> počet kusov"); $product_type = empty($material) ? def_value("default_product_type", "hodnota") : $product_type; echo select("product_type[{$i}]", "typ produktu *", "SELECT id, meno FROM product_type WHERE vymaz=0 {$skryt_zakaznikom} ORDER BY def DESC, meno", $product_type_all[$i], "-vyberte si-", "product_type_v", "Povinný údaj:<br> prosím zvoľte si Typ produktu", "NO"); $skryt = ""; if ($_SESSION["perm_uroven"] > 3) { $skryt = "AND skryt_prihlasenym=0"; } echo select("product[{$i}]", "produkt", "SELECT id, meno FROM product WHERE vymaz=0 AND id_product_type=\"" . (empty($product_type_all[$i]) ? def_value("default_product_type", "hodnota") : $product_type_all[$i]) . "\" {$skryt_zakaznikom}{$skryt} ORDER BY def DESC, meno", $product_all[$i], "", "product_v", "", "NO"); $query = "SELECT pa.id, pa.meno FROM `product_atribute` pa INNER JOIN product_atribute_product_types pt ON pt.id_product_atribute = pa.id\r\n WHERE pa.vymaz=0 AND id_product_type=" . (empty($product_type_all[$i]) ? def_value("default_product_type", "hodnota") : $product_type_all[$i]) . "\r\n ORDER BY pa.meno"; $atributes = sql_query($query); if (empty($product_all[$i])) { $query = "SELECT id, meno FROM product WHERE vymaz=0 AND id_product_type=\"" . (empty($product_type_all[$i]) ? def_value("default_product_type", "hodnota") : $product_type_all[$i]) . "\" {$skryt_zakaznikom} ORDER BY def DESC, meno LIMIT 1"; $first_product = sql_query($query)[0]; } else { $first_product[id] = $product_all[$i]; } $query = "SELECT id FROM product \r\n WHERE id = {$first_product[id]} AND skryt_atributy = \"1\" \r\n "; $producter = sql_query($query); echo "<div class=\"atributes\" data-key=\"{$i}\">"; if (empty($producter)) { foreach ($atributes as $atribute) { echo "<div class=\"atribute-row\">"; echo hidden("product_atribute[{$i}]", $atribute[id]); echo select("product_atribute_option[{$i}][{$atribute['id']}]", $atribute[meno], "SELECT id, meno FROM product_atribute_option WHERE id_product_atribute=" . $atribute[id] . " AND vymaz=0 ORDER BY def DESC, meno ASC", $product_atribute_options_all[$i][$atribute[id]], "-vyberte si-", "product_atribute_option_v", "", "NO"); echo "</div>"; } } echo "</div>"; //dd($atributes); $skryt_zakaznik = "AND pd.skryt_zakaznikom=0"; if ($_SESSION["logged"] == 1) { $skryt_zakaznik = ""; } $cls = ""; $checked = "checked"; /* if(empty($atyp_text_all[$i])) { $cls = "hide"; $checked = ""; } */ echo select("product_delivery[{$i}]", "Doprava", "SELECT pd.id, pd.meno FROM product_delivery pd \r\n INNER JOIN product_delivery_product_types pt ON pt.id_product_delivery = pd.id \r\n WHERE pd.vymaz=0 AND id_product_type=\"" . (empty($product_type_all[$i]) ? def_value("default_product_type", "hodnota") : $product_type_all[$i]) . "\" {$skryt_zakaznik} \r\n ORDER BY def DESC, meno", $product_delivery_all[$i], "", "product_delivery_v", "", "NO"); if ($_SESSION["logged"] == 1) { echo textfield("vlastna_cena[{$i}]", $vlastna_cena_all[$i], "j. cena", 6, 5, "vlastna_cena"); } //echo checker("atyp[$i]", "1", "Atyp", $checked, "atyp"); echo textarea("atyp_text[{$i}]", $atyp_text_all[$i], "Atyp text", 18, 1, "atyp_text {$cls}", ""); echo "<div class=\"odstran_riadok\"><input type=\"button\" value=\"\"></div>"; echo "</fieldset>"; } echo "<div id=\"add_more_buttons\"><div id=\"vloz_riadok\"><input type=\"button\" value=\"Vlož ďalší riadok\"></div></div>"; //echo "<div class=\"form_vypocet_sum\">".( $vypocet_sum>0 ? "".round($vypocet_sum, 2)." m2" : "" )."</div>"; echo "</div>"; //var_dump($form_data); //var_dump($_POST); echo textarea("komentar", $komentar, "Váš komentár", 50, 4, "komentar"); if ($_SESSION["logged"] == 1) { echo textarea("komentar_private", $komentar_private, "Súkromný komentár (nezveréjnene zákazníkom)", 50, 4, "komentar_private"); } echo submit("submit", "Pokračuj >>"); echo "</form>\r\n </div>"; }
function formular_velkoobchod($fieldsets_c, $form_data, $secure_key = "") { //print_r("=============================="); //var_dump($form_data); $fieldsets_c = count($form_data["material_all"]); if ($fieldsets_c == 0) { $fieldsets_c = 1; } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } //var_dump($vyrobca); //var_dump($form_data); //var_dump($dekor); echo "<div id=\"content\">"; echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"udaje\"><legend></legend>"; echo textfield("datum", $datum, "Dátum *", 40, 20, "", ""); $skryt_zakaznikom = "AND skryt_zakaznikom=0"; if ($_SESSION["logged"] == 1) { $skryt_zakaznikom = ""; } //echo $skryt_zakaznikom; if (empty($vyrobca)) { $vyrobca = 0; } if (empty($dekor)) { $dekor = 0; } $csrf_key = md5(uniqid(rand(), TRUE)); $_SESSION["csrf_key"] = $csrf_key; //$_SESSION["janko"] = microtime(); //var_dump($_SESSION); echo hidden("secure_csrf", $csrf_key); if (!empty($secure_key)) { echo hidden("secure_key", $secure_key); } echo "</fieldset>"; //var_dump($_SESSION); for ($i = 0; $i < $fieldsets_c; $i++) { $poradie = $i + 1; $checked = ""; if ($duplak[$i] == 1) { $checked = "checked"; } echo "<fieldset class=\"narezovka\">"; echo "<div class=\"count\">{$poradie}. </div>"; $material = empty($material) ? def_value("default_material", "hodnota") : $material; echo select("material[]", "Materiál *", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $material_all[$i], "-vyberte si-", "material_v", "Povinný údaj:<br> prosím zvoľte si jeden z materiálov", "NO"); echo select("vyrobca[]", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0 AND id_material=\"" . $material_all[$i] . "\" {$skryt_zakaznikom} ORDER BY meno", $vyrobca_all[$i], "", "vyrobca_v"); echo select("dekor[]", "Dekor", "SELECT id, hodnota, meno FROM dekor WHERE vymaz=0 AND id_vyrobca=\"{$vyrobca_all[$i]}\" {$skryt_zakaznikom} ORDER BY meno", $dekor_all[$i], "", "dekor_v"); echo textfield("m2[]", $m2_all[$i], "ks", 5, 3, "m2", ""); echo textfield("m3[]", $m3_all[$i], "m3", 5, 3, "m3", ""); if ($dekor_all[$i] > 0) { $cena_dekor = sql_query("SELECT cena FROM cp_dekor_ks WHERE id_dekor=" . $dekor_all[$i] . " AND id_c_hladina=4 ORDER by id DESC LIMIT 1"); $cena_dekor = $cena_dekor[0][cena]; if ($m2_all[$i] > 0) { $m2m3 = $m2_all[$i]; } else { $m2m3 = $m3_all[$i]; } $sum = 0; $sum = $cena_dekor * $m2m3; $sum_all = $sum_all + $sum; } $vypocet = $dlzka_all[$i] * $sirka_all[$i] / 1000000; $vypocet = $vypocet * $ks_all[$i]; $vypocet_sum = $vypocet_sum + $vypocet; $vypocet_final = round($vypocet, 2) . ""; echo "<div class=\"cena\">{$cena_dekor}</div>"; echo "<div class=\"vypocet_v\">{$sum}</div>\r\n <div class=\"odstran_riadok\"><input type=\"button\" value=\"\"></div>"; echo "</fieldset>"; } echo "<div id=\"add_more_buttons\"><div id=\"vloz_riadok_v\"><input type=\"button\" value=\"Vlož ďalší riadok\"></div></div>"; echo "<div class=\"form_vypocet_sum\">" . ($sum_all > 0 ? "" . round($sum_all, 2) . " €" : "") . "</div>"; echo "<div class=\"form_vypocet_sum_duplak\">" . ($vypocet_duplak_sum > 0 ? "Duplák spracovanie: " . round($vypocet_duplak_sum, 2) . " m2" : "") . ""; echo "</div>"; //var_dump($form_data); //var_dump($_POST); echo textarea("komentar", $komentar, "Váš komentár", 50, 4, "komentar"); echo submit("submit", "Pokračuj >>"); echo "</form>\r\n </div>"; }
<script src="assets/addons/raphael/raphael.min.js" type="text/javascript"></script> <script src="assets/script/raphael-script.js" type="text/javascript"></script> <div id="zrezanie_parent"> <?php textfield("roh1x", $roh, "", 4, 3); textfield("roh1y", $roh, "", 4, 3); textfield("roh2x", $roh, "", 4, 3); textfield("roh2y", $roh, "", 4, 3); textfield("roh3x", $roh, "", 4, 3); textfield("roh3y", $roh, "", 4, 3); textfield("roh4x", $roh, "", 4, 3); textfield("roh4y", $roh, "", 4, 3); ?> <div id="paper"></div> </div> <span class="add">button</span>
function filter_for_email() { //var_dump($_POST); if (isset($_POST["filter_by_dodavatel"])) { $filter_dodavatel = sec_input($_POST["filter_by_dodavatel"]); } if (isset($_POST["filter_date_od"])) { $filter_date_od = sec_input($_POST["filter_date_od"]); } if (isset($_POST["search_date_do"])) { $search_date_do = sec_input($_POST["search_date_do"]); } $where[] = "komplet=0"; $where[] = "o.vymaz=0"; if (!empty($filter_dodavatel)) { $where[] = "o.id_dodavatel = {$filter_dodavatel}"; } if (!empty($filter_date_od)) { $where[] = "o.datum >= \"{$filter_date_od}\""; } if (!empty($search_date_do)) { $where[] = "o.datum <= \"{$search_date_do}\""; } $query = "SELECT * from dodavatel WHERE id={$filter_dodavatel}"; $dodavatel = sql_query($query)[0]; $query = "SELECT o.id, DATE_FORMAT(datum, '%d. %m. %Y, %H:%i:%s') AS dat_upr, komplet, dod.meno as dodavatel, o.poznamka \r\n FROM do_objednavka o\r\n INNER JOIN dodavatel dod\r\n ON o.id_dodavatel = dod.id\r\n WHERE " . implode(" AND ", $where) . " "; $query .= "ORDER BY datum DESC"; //var_dump($query); echo "<h1>" . $dodavatel["meno"] . "</h1>"; echo "<form method=\"POST\">"; echo "<div>" . (!empty($dodavatel["email"]) ? "<span class=\"bold\">email:</span> " . $dodavatel["email"] . "" : "") . "</div>"; echo select("send_from", "Odoslať ako:", "SELECT id, CONCAT(zobraz_meno, ', ', email) as meno from uzivatel \r\n WHERE skupina=1 AND perm_uroven_id=1 AND vymaz=0 \r\n ORDER BY meno", $_SESSION["username"], "", "", "", "NO"); hidden("dodavatel", $dodavatel["id"]); echo "<table id=\"all_orders\">"; echo "<thead> <tr>\r\n <th></th>\r\n <th>dátum</th>\r\n <th>produkt</th> \r\n <th>zákazník</th>\r\n <th>poznámka</th>\r\n \r\n </tr></thead><tbody>"; //var_dump($where); $objednavka = sql_query($query); //$objednavka = $objednavka[0]; //var_dump($objednavka); if (count($objednavka) > 0) { foreach ($objednavka as $obj) { $revizia = sql_query("\r\n SELECT objr.*, p.meno, p.email_meno\r\n FROM do_objednavka_row objr\r\n INNER JOIN do_produkt p\r\n ON objr.id_do_produkt = p.id\r\n WHERE objr.id_do_objednavka = " . $obj["id"] . "\r\n ORDER BY objr.datum DESC LIMIT 1\r\n "); $revizia = $revizia[0]; echo "\r\n <tr class=\"obj_" . $obj[nastavenie] . "\">\r\n <td class=\"obj_cislo\">\r\n "; checker("id_do_objednavka[" . $obj["id"] . "][id]", $obj["id"], "", "yes"); echo "</td>"; echo "<td class=\"obj_datum do_obj_datum\">" . $obj["dat_upr"] . " </td>\r\n <td class=\"obj_datum do_obj_produkt\"><a href=\"?vyber=do_objednavka&order=" . $obj[id] . "\">\r\n " . (!empty($revizia[ks]) ? $revizia["ks"] . $revizia["jednotka"] . " " : "") . "\r\n " . (!empty($revizia[email_meno]) ? $revizia[email_meno] : $revizia[meno]) . "\r\n </a></td>\r\n "; //var_dump($vyroba2); echo "<td class=\"obj_status\">" . $revizia[zakaznik] . "</td> \r\n <td class=\"do_obj_poznamka\">\r\n " . textfield("id_do_objednavka[" . $obj["id"] . "][poznamka]", $_SESSION["search_text"], "", "", 40) . "\r\n </td>\r\n </tr>\r\n "; } } echo "</tbody></table>"; if (!empty($dodavatel["email"])) { echo submit("send_email_dodavatel", "Odošli email s objednávkou"); } echo "</form>"; }
function edit($table, $vyber, $sub, $id, $page = 1) { $error_msg = array(); if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $adresa = sec_sql(sec_input($_POST["adresa"])); $ico_icdph = sec_sql(sec_input($_POST["ico_icdph"])); $telefon = sec_sql(sec_input($_POST["telefon"])); $skupina = sec_sql(sec_input($_POST["skupina"])); $id_c_hladina = sec_sql(sec_input($_POST["id_c_hladina"])); $id_perm_uroven = sec_sql(sec_input($_POST["id_perm_uroven"])); $hodnota = sec_sql(sec_input($_POST["hodnota"])); $email = sec_sql(sec_input($_POST["email"])); $email2 = sec_sql(sec_input($_POST["email2"])); $old_password = sec_sql(sec_input($_POST["old_password"])); $password = sec_sql(sec_input($_POST["password"])); $password_confirm = sec_sql(sec_input($_POST["password_confirm"])); $id_material = sec_sql(sec_input($_POST["id_material"])); $id_vyrobca = sec_sql(sec_input($_POST["id_vyrobca"])); $stvorakov = sec_sql(sec_input($_POST["stvorakov"])); $stvorakov = str_replace(',', '.', $stvorakov); $hodnota_csv = sec_sql(sec_input($_POST["hodnota_csv"])); $id = sec_sql(sec_input($_POST["id"])); $zobraz_vo_formulari = intval(sec_sql(sec_input($_POST["zobraz_vo_formulari"]))); $skryt_zakaznikom = intval(sec_sql(sec_input($_POST["skryt_zakaznikom"]))); if (strlen($meno) > 30 or strlen($meno) < 1) { $error_msg[] = "Meno môže mať od 1 do 30 znakov"; } if ($table == "vyrobca") { if (strlen($hodnota) > 30 or strlen($hodnota) < 1) { $error_msg[] = "Hodnota môže mať od 1 do 30 znakov"; } } if ($table == "hrana") { //var_dump($zobraz_vo_formulari); if ($zobraz_vo_formulari < 0) { $error_msg[] = "Zobraz vo formulari ma nesprávnu hodnotu"; } if (strlen($hodnota_csv) > 5 or strlen($hodnota_csv) < 1) { $error_msg[] = "hodnota pre csv je povinný údaj a môže mať 5 znakov"; } } if ($table == "dekor") { if ($_FILES["subor"]["name"]) { $file_c = count($_FILES["subor"]["name"]); if (!empty($_FILES["subor"]["name"]) and strlen($_FILES["subor"]["name"]) > 4) { //echo "ok<br>"; $data[file_ext] = strtolower(end(explode(".", $_FILES["subor"]["name"]))); $data[file_name] = $id; $data[file_name_old] = $_FILES["subor"]["name"]; $data[file_tmp_name] = $_FILES["subor"]["tmp_name"]; $data[file_size] = $_FILES["subor"]["size"]; //echo "ok<br>"; } $form_data_file = array("file_name" => $data[file_name], "file_ext" => $data[file_ext], "file_size" => $data[file_size]); $file_validate = dekor_img_validate($form_data_file); } if (count($file_validate) > 0) { foreach ($file_validate as $message) { $error_msg[] = $message; } } } if ($table == "uzivatel") { //var_dump($skupina); if (!is_numeric($skupina) or empty($skupina)) { $error_msg[] = "skupina ma nesprávnu hodnotu"; } //if(!is_numeric($id_c_hladina) or empty($id_c_hladina)) $error_msg[] = "cenova hladina ma nesprávnu hodnotu"; if ($skupina == 2) { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } } if (!is_numeric($id) or empty($id)) { $error_msg[] = "ID ma nesprávnu hodnotu"; } if (!empty($password) and !empty($old_password) and !empty($password_confirm)) { $old_password_original = sql_query("SELECT heslo FROM {$table} WHERE id={$id} AND heslo=\"" . md5($old_password) . "\" LIMIT 1"); if (count($old_password_original) < 1) { $error_msg[] = "Staré heslo nie je správne"; } if (strlen($password) < 4 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } //var_dump($error_msg); if (empty($error_msg)) { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\"\n WHERE id = {$id}"; if ($table == "vyrobca") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\",\n skryt_zakaznikom=\"{$skryt_zakaznikom}\"\n WHERE id = {$id}"; } if ($table == "cp_abs_vyrobca") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\"\n WHERE id = {$id}"; } if ($table == "dekor") { if (empty($stvorakov) or $stvorakov <= 0) { $stvorakov = def_value("default_stvorak", "hodnota"); } $hodnota = rep_dia($hodnota, 1); $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\", id_vyrobca=\"{$id_vyrobca}\",\n stvorakov=\"{$stvorakov}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\"\n WHERE id = {$id}"; if ($data) { $directory = "assets/images/dekor/"; if (!file_exists($directory)) { mkdir($directory, 0777, true); } $filename = $data["file_tmp_name"]; $max_size = 250; // percentage of resize // Content type //header('Content-type: image/jpeg'); // Get new dimensions list($width, $height) = getimagesize($filename); if ($width > $height) { $percent = $max_size / $width; $new_width = $max_size; $new_height = $height * $percent; } else { $percent = $max_size / $height; $new_height = $max_size; $new_width = $width * $percent; } // Resample $image_p = imagecreatetruecolor($new_width, $new_height); $image = imagecreatefromjpeg($filename); imagecopyresampled($image_p, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height); // Output imagejpeg($image_p, $directory . "/" . $data["file_name"] . "." . $data["file_ext"], 100); move_uploaded_file($data["file_tmp_name"], $directory . "/orig_" . $data["file_name"] . "." . $data["file_ext"]); //exit(); } } if ($table == "hrana") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", hodnota_csv=\"{$hodnota_csv}\",\n zobraz_vo_formulari = \"{$zobraz_vo_formulari}\"\n WHERE id = {$id}"; } if ($table == "hrubka") { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\"\n WHERE id = {$id}"; } if ($table == "uzivatel") { if (empty($password) or empty($old_password) or empty($password_confirm)) { $query = "UPDATE {$table}\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", ico_icdph = \"{$ico_icdph}\", \n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\n id_c_hladina = \"{$id_c_hladina}\", perm_uroven_id = \"{$id_perm_uroven}\"\n WHERE id = {$id}"; } else { $password = md5($password); $query = "UPDATE {$table}\n SET meno = \"{$meno}\", email = \"{$email}\", heslo = \"{$password}\"\n WHERE id = {$id}"; } } sql_update($query); //echo $id_perm_uroven; header("location: index.php?vyber=nastavenia&sub={$table}&page={$page}"); exit; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, hodnota, meno from " . PREFIX . "{$table} WHERE id={$id}"; if ($table == "vyrobca") { $query = "Select id, id_material, hodnota, meno, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "cp_abs_vyrobca") { $query = "Select id, meno from {$table} WHERE id={$id}"; } if ($table == "dekor") { $query = "Select id, id_material, id_vyrobca, hodnota, meno, stvorakov, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "hrana") { $query = "Select id, hodnota, hodnota_csv, meno, zobraz_vo_formulari from {$table} WHERE id={$id}"; } if ($table == "hrubka") { $query = "Select id, hodnota, meno, id_material from {$table} WHERE id={$id}"; } if ($table == "uzivatel") { $query = "Select id, meno, adresa, ico_icdph, telefon, email, email2, skupina, id_c_hladina, perm_uroven_id from {$table} WHERE id={$id}"; } $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\" enctype=\"multipart/form-data\">"; hidden("id", $value[id]); echo textfield("meno", $value[meno], "Meno", 50, 30); if ($table != "uzivatel" and $table != "cp_abs_vyrobca") { echo textfield("hodnota", $value[hodnota], "Hodnota", 50, 30); //echo "hej"; } if ($table == "vyrobca" or $table == "hrubka") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); } if ($table == "vyrobca") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "dekor") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); echo select("id_vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0", $value[id_vyrobca]); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); echo textfield("stvorakov", $value[stvorakov], "stvorakov v tab.", 20, 10); file_upload("subor", "subor", "Príloha"); if (isset($_GET["rotate"])) { $rotate = sec_input($_GET["rotate"]); } if ($rotate == 1) { $rotateFilename = "assets/images/dekor/{$value[id]}.jpg"; // PATH if (file_exists($rotateFilename)) { $degrees = 90; //header('Content-type: image/jpeg'); $source = imagecreatefromjpeg($rotateFilename); // Rotate $rotate = imagerotate($source, $degrees, 0); imagejpeg($rotate, $rotateFilename, 100); imagedestroy($source); imagedestroy($rotate); //echo "ok"; } } if (file_exists("assets/images/dekor/{$value[id]}.jpg")) { echo "<img src=\"assets/images/dekor/{$value[id]}.jpg?rand=" . microtime() . "\">"; echo "<br><a href=\"?vyber={$vyber}&sub={$sub}&action=edit&id={$id}&page={$page}&rotate=1\">Otočiť obrázok o 90st doprava</a>"; } } if ($table == "hrana") { //var_dump($value); $zobraz_vo = array(1 => "zobraz", 0 => "nezobrazuj"); echo textfield("hodnota_csv", $value[hodnota_csv], "Hodnota pre CSV", 40, 20); echo select("zobraz_vo_formulari", "vo formulári", "", $value[zobraz_vo_formulari], "", "", "", "NO", $zobraz_vo); } if ($table == "uzivatel") { if ($id == 1) { echo "<strong>Nie je možné upravovať hlavného administrátora!</strong>"; die; } echo textfield("adresa", $value[adresa], "adresa", 40, 20); echo textfield("ico_icdph", $value[ico_icdph], "ičo / ičdph", 40, 20); echo textfield("telefon", $value[telefon], "telefón", 40, 20); echo textfield("email", $value[email], "email", 40, 20); echo textfield("email2", $value[email2], "email2", 40, 20); echo select("skupina", "Skupina", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $value[skupina], "", "", "", "NO"); echo select("id_c_hladina", "Cen.hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $value[id_c_hladina]); echo select("id_perm_uroven", "Úroveň zabezp.", "SELECT id, meno FROM perm_uroven WHERE vymaz=0", $value[perm_uroven_id]); echo textfield("old_password", $value[password], "Staré heslo", 40, 20); echo textfield("password", $value[password], "Nové heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } echo submit("submit", "Odoslať"); echo "<a href=\"?vyber={$vyber}&sub={$sub}\">Späť</a>"; echo "</form>"; }
if (strtolower(p('username')) == strtolower(schlage_username()) && p('password') == schlage_password()) { success('Welcome back!'); s('logged_in', 1); r('/users'); } else { error('Invalid login'); } } top(); form(); func('login'); label('Username'); textfield('username'); label('Password'); password('password'); label(); submit('Log in'); spacer(); endform(); bottom(); ?>
function insert($table, $vyber, $id, $sub) { if ($_POST[submit]) { //var_dump($_POST); $meno = sec_sql(sec_input($_POST["meno"])); $cena = sec_sql(sec_input($_POST["cena"])); $cena = floatval(str_replace(',', '.', $cena)); $c_hladina = sec_sql(sec_input($_POST["c_hladina"])); $c_hladina_typ = sec_sql(sec_input($_POST["c_hladina_typ"])); $id_material = sec_sql(sec_input($_POST["material"])); $id_vyrobca = sec_sql(sec_input($_POST["vyrobca"])); $id_hrana = sec_sql(sec_input($_POST["id_hrana"])); $id_dekor = sec_sql(sec_input($_POST["id_dekor"])); $id_polozky_cp = sec_sql(sec_input($_POST["id_polozky_cp"])); $id_material = sec_sql(sec_input($_POST["id_material"])); $cp_abs_vyrobca = sec_sql(sec_input($_POST["cp_abs_vyrobca"])); //var_dump($cena); if (!is_numeric($cena) or empty($cena)) { $error_msg[] = "cena môže byť iba číselný údaj"; } if (!is_numeric($c_hladina) or $c_hladina < 1) { $error_msg[] = "cenová hladina môže byť iba číselný údaj"; } if (!is_numeric($c_hladina_typ) or $c_hladina_typ < 1) { $error_msg[] = "Typ ceny môže byť iba číselný údaj"; } if ($c_hladina == 1 and $c_hladina_typ > 1) { $error_msg[] = "Pre Prvú cenovú hladinu nie je možné zadať percentuálnu hodnotu"; } if ($table == "uzivatel") { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (!is_numeric($skupina) or empty($skupina)) { $error_msg[] = "skupina ma nesprávnu hodnotu"; } if (!is_numeric($id_c_hladina) or empty($id_c_hladina)) { $error_msg[] = "cenova hladina ma nesprávnu hodnotu"; } if ($skupina == 2) { if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } if ($skupina == 1) { if (strlen($password) < 5 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } if ($table == "cp_abs") { if (!is_numeric($id_hrana) or empty($id_hrana)) { $error_msg[] = "Hrana ma nesprávnu hodnotu"; } } if ($table == "cp_abs_sluzba") { if (!is_numeric($id_hrana) or empty($id_hrana)) { $error_msg[] = "Hrana ma nesprávnu hodnotu"; } } if ($table == "cp_dekor_ks" or $table == "cp_dekor_m2") { if (!is_numeric($id_dekor) or empty($id_dekor)) { $error_msg[] = "Hrana ma nesprávnu hodnotu"; } } if ($table == "cp_material_ks") { if (!is_numeric($id_material) or empty($id_material)) { $error_msg[] = "Material ma nesprávnu hodnotu"; } } //var_dump($_POST); if (empty($error_msg)) { $query = "INSERT INTO {$table} (id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES (\"{$c_hladina}\", \"{$c_hladina_typ}\", \"{$cena}\", now(), {$_SESSION['username']})\n "; if ($table == "cp_abs") { $query = "INSERT INTO {$table} (id_hrana, id_abs_vyrobca, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES (\"{$id_hrana}\", \"{$cp_abs_vyrobca}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \n \"{$cena}\", now(), {$_SESSION['username']})\n "; } if ($table == "cp_abs_sluzba") { $query = "INSERT INTO {$table} (id_hrana, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES (\"{$id_hrana}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \n \"{$cena}\", now(), {$_SESSION['username']})\n "; } if ($table == "cp_dekor_ks") { $query = "INSERT INTO {$table} (id_dekor, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES (\"{$id_dekor}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \n \"{$cena}\", now(), {$_SESSION['username']})\n "; } if ($table == "cp_polozka") { $query = "INSERT INTO {$table} (id_polozky_cp, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES ({$id_polozky_cp}, {$c_hladina}, {$c_hladina_typ}, \n \"{$cena}\", now(), {$_SESSION['username']})\n "; } if ($table == "cp_material_ks") { $query = "INSERT INTO {$table} (id_material, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\n VALUES (\"{$id_material}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \n \"{$cena}\", now(), {$_SESSION['username']})\n "; } //var_dump($_POST); //die(); sql_insert($query); header("location: index.php?vyber={$vyber}&sub={$table}"); if ($table == "cp_dekor_ks") { header("location: index.php?vyber=nastavenia&sub=dekor"); } if ($table == "cp_polozka") { header("location: index.php?vyber=nastavenia&sub=polozky_cp"); } if ($table == "cp_material_ks") { header("location: index.php?vyber=nastavenia&sub=material"); } } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } $data = $_SESSION["posted_form_add_new_item_{$table}"]; } if (!empty($id)) { $form_data = sql_query("SELECT id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; if ($sub == "cp_abs") { $form_data = sql_query("SELECT id_hrana, id_abs_vyrobca, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_hrana = $form_data[id_hrana]; $cp_abs_vyroba = $form_data[cp_abs_vyrobca]; } if ($sub == "cp_abs_sluzba") { $form_data = sql_query("SELECT id_hrana, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_hrana = $form_data[id_hrana]; } if ($sub == "cp_dekor_ks") { $form_data = sql_query("SELECT id_dekor, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_dekor = $form_data[id_dekor]; } if ($sub == "cp_polozka") { $form_data = sql_query("SELECT id_polozky_cp, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_polozky_cp = $form_data[id_polozky_cp]; } if ($sub == "cp_material_ks") { $form_data = sql_query("SELECT id_material, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_material = $form_data[id_material]; } //var_dump($form_data); $c_hladina = $form_data[id_c_hladina]; $c_hladina_typ = $form_data[id_c_hladina_typ]; $cena = $form_data[cena]; } echo "<form method=\"POST\">"; if (empty($id_dekor)) { $id_dekor = sec_sql(sec_input($_GET["id_dekor"])); } if (empty($id_polozky_cp)) { $id_polozky_cp = sec_sql(sec_input($_GET["id_polozky_cp"])); } if (empty($c_hladina)) { $c_hladina = sec_sql(sec_input($_GET["c_hladina"])); } if (empty($id_material)) { $id_material = sec_sql(sec_input($_GET["id_material"])); } if ($table == "cp_dekor_ks") { echo select("id_dekor", "Dekor", "SELECT id, hodnota as meno FROM dekor WHERE vymaz=0", $id_dekor, "", "", "", "NO"); echo "<div class=\"calculator\">"; echo textfield("cp_dlzka", $dlzka, "dĺžka", 10, 5); echo textfield("cp_sirka", $sirka, "šírka", 10, 5); echo textfield("cp_hrubka", $hrubka, "hrúbka", 10, 5); echo "<div class=\"m3-row\">"; echo textfield("cp_cena_m3", $cena_m3, "cena za m3", 10, 5); echo "<span>použi</span>"; echo "</div>"; echo "<div class=\"m2-row\">"; echo textfield("cp_cena_m2", $cena_m2, "cena za m2", 10, 5); echo "<span>použi</span>"; echo "</div>"; echo "<div class=\"ks-row\">"; echo textfield("cp_cena_ks", $cena_ks, "cena za ks", 10, 5); echo "<span>použi</span>"; echo "</div>"; echo "<div class=\"calc-vypocet\">\n <div class=\"calc-m2\">m2: <span></span></div>\n <div class=\"calc-m3\">m3: <span></span></div>\n <div class=\"calc-ks\">ks v m3: <span></span></div>\n <div class=\"calc-m2-v-m3\">m2 v m3: <span></span></div>\n \n </div>"; echo "</div>"; } if ($table == "cp_polozka") { echo select("id_polozky_cp", "Položka", "SELECT id, meno FROM polozky_cp WHERE vymaz=0", $id_polozky_cp, "", "", "", "NO"); } if ($table == "cp_material_ks") { echo select("id_material", "Materiál ks", "SELECT id, hodnota as meno FROM material WHERE vymaz=0", $id_material, "", "", "", "NO"); } echo select("c_hladina", "Cen. hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $c_hladina, "", "", "", "NO"); echo textfield("cena", $cena, "Cena *", 20, 10); echo select("c_hladina_typ", "typ ceny", "SELECT id, meno FROM c_hladina_typ WHERE vymaz=0", $c_hladina_typ, "", "", "", "NO"); if ($table == "uzivatel") { echo "<div class=\"help_form\">Adresa, ičo a telefon sú vyžadované iba pre \"Zákazníkov\"</div>"; echo textfield("adresa", $adresa, "adresa *", 40, 20); echo textfield("ico_icdph", $ico_icdph, "ičo / ičdph", 40, 20); echo textfield("telefon", $telefon, "telefón *", 40, 20); echo textfield("email", $email, "email *", 40, 20); echo select("skupina", "Skupina *", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $skupina); echo select("id_c_hladina", "Cen.hladina *", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $id_c_hladina); echo "<div class=\"help_form\">Heslo je povinné iba pre \"Administratorov\"</div>"; echo textfield("password", $password, "heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } if ($table == "cp_abs") { echo select("id_hrana", "ABS", "SELECT id, hodnota as meno FROM hrana WHERE vymaz=0", $id_hrana, "", "", "", "NO"); echo select("cp_abs_vyrobca", "Výrobca ABS", "SELECT id, meno FROM cp_abs_vyrobca WHERE vymaz=0", $cp_abs_vyrobca, "", "", "", "NO"); } if ($table == "cp_abs_sluzba") { echo select("id_hrana", "ABS", "SELECT id, hodnota as meno FROM hrana WHERE vymaz=0", $id_hrana, "", "", "", "NO"); } echo submit("submit", "Odoslať"); echo "</form>"; }
$schlage = new Schlage($u, $p); if (!$schlage->Login()) { error('Invalid login, try again'); } else { schlage_username($u); schlage_password($p); success('Good to go!'); s('logged_in', 1); r('/users'); } } } top(); form(); func('authenticate'); label('Username'); textfield('schlage_username'); label('Password'); textfield('schlage_password'); label(); submit('Authenticate'); bottom(); ?>
defined('_ROOT') or die(__FILE__); extract($_GET); $request = $_GET; $request['type'] = intval($type); $request['parentid'] = intval($parentid); $request['query_string'] = '?' . $_SERVER['QUERY_STRING']; $request['http_referer'] = $_SERVER['HTTP_REFERER']; if ($_POST) { // update main $arr = array($_GET['code'] => $_POST['value']); $oClass->update($arr); //clear_cache_configure(); $oMaster->user_log('Updated value: ' . $_POST['value'] . ' for configure: ' . $_GET['code']); clear_sql_cache(); $hook->redirect('?mod=configure&gid=' . $_GET['gid']); } $tpl->setfile(array('body' => 'configure.update.tpl')); $result = $oConfigure->view(" code = '" . stripslashes($_GET['code']) . "'"); $data = $result->fetch(); $set_function = $data['set_function']; if ($set_function) { eval('$value = ' . $set_function . "'" . $data['value'] . "');"); } else { $value = textfield('value', $data['value']); } $data['value'] = $value; $tpl->assign($data); $breadcrumb->assign("", "Edit"); $request['breadcrumb'] = $breadcrumb->parse(); $tpl->assign($request);
$keys = array_keys($_POST); if (isset($_POST['system'])) { $db = db_connect(); $sql = "SELECT username, groupname, COUNT(jobid) AS jobcount, SUM(nproc*TIME_TO_SEC(walltime))/3600 AS cpuhrs FROM Jobs WHERE system LIKE '" . $_POST['system'] . "' AND ( " . dateselect("submit", $_POST['start_date'], $_POST['end_date']) . " ) GROUP BY username ORDER BY " . $_POST['order'] . " DESC LIMIT " . $_POST['limit']; # echo "<PRE>".$sql."</PRE>\n"; $result = db_query($db, $sql); echo "<TABLE border=\"1\">\n"; echo "<TR><TH>user</TH><TH>group</TH><TH>job count</TH><TH>CPU-hours</TH></TR>\n"; while ($result->fetchInto($row)) { echo "<TR>"; $rkeys = array_keys($row); foreach ($rkeys as $key) { $data[$key] = array_shift($row); echo "<TD align=\"right\"><PRE>" . htmlspecialchars($data[$key]) . "</PRE></TD>"; } echo "</TR>\n"; } echo "</TABLE>\n"; db_disconnect($db); bookmarkable_url(); } else { begin_form("active-users.php"); system_chooser(); date_fields(); $choices = array("cpuhrs", "jobcount"); $defaultchoice = "cpuhrs"; pulldown("order", "Order by", $choices, $defaultchoice); textfield("limit", "Max shown", "10", 4); end_form(); } page_footer();
function insert($table, $vyber, $id, $sub) { if ($_POST[submit]) { //var_dump($_POST); $meno = sec_sql(sec_input($_POST["meno"])); $cena = sec_sql(sec_input($_POST["cena"])); $cena = floatval(str_replace(',', '.', $cena)); $c_hladina = sec_sql(sec_input($_POST["c_hladina"])); //$c_hladina_typ = sec_sql(sec_input($_POST["c_hladina_typ"])); $c_hladina_typ = 1; $id_product = sec_sql(sec_input($_POST["id_product"])); //var_dump($cena); if (!is_numeric($cena) or $cena < 0) { $error_msg[] = "cena môže byť iba číselný údaj"; } if (!is_numeric($c_hladina) or $c_hladina < 1) { $error_msg[] = "cenová hladina môže byť iba číselný údaj"; } //if(!is_numeric($c_hladina_typ) or $c_hladina_typ<1) $error_msg[] = "Typ ceny môže byť iba číselný údaj"; if ($c_hladina == 1 and $c_hladina_typ > 1) { $error_msg[] = "Pre Prvú cenovú hladinu nie je možné zadať percentuálnu hodnotu"; } if ($table == "cp_abs") { if (!is_numeric($id_hrana) or empty($id_hrana)) { $error_msg[] = "Hrana ma nesprávnu hodnotu"; } } if ($table == "cp_abs_sluzba") { if (!is_numeric($id_hrana) or empty($id_hrana)) { $error_msg[] = "Hrana ma nesprávnu hodnotu"; } } if ($table == "cp_product") { if (!is_numeric($id_product) or empty($id_product)) { $error_msg[] = "Produkt ma nesprávnu hodnotu"; } } if ($table == "cp_material_ks") { if (!is_numeric($id_material) or empty($id_material)) { $error_msg[] = "Material ma nesprávnu hodnotu"; } } //var_dump($_POST); if (empty($error_msg)) { $query = "INSERT INTO {$table} (id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES (\"{$c_hladina}\", \"{$c_hladina_typ}\", \"{$cena}\", now(), {$_SESSION['username']})\r\n "; if ($table == "cp_abs") { $query = "INSERT INTO {$table} (id_hrana, id_abs_vyrobca, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES (\"{$id_hrana}\", \"{$cp_abs_vyrobca}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \r\n \"{$cena}\", now(), {$_SESSION['username']})\r\n "; } if ($table == "cp_abs_sluzba") { $query = "INSERT INTO {$table} (id_hrana, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES (\"{$id_hrana}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \r\n \"{$cena}\", now(), {$_SESSION['username']})\r\n "; } if ($table == "cp_product") { $query = "INSERT INTO {$table} (id_product, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES (\"{$id_product}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \r\n \"{$cena}\", now(), {$_SESSION['username']})\r\n "; } if ($table == "cp_polozka") { $query = "INSERT INTO {$table} (id_polozky_cp, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES ({$id_polozky_cp}, {$c_hladina}, {$c_hladina_typ}, \r\n \"{$cena}\", now(), {$_SESSION['username']})\r\n "; } if ($table == "cp_material_ks") { $query = "INSERT INTO {$table} (id_material, id_c_hladina, id_c_hladina_typ, cena, datum, vytvoril)\r\n VALUES (\"{$id_material}\", \"{$c_hladina}\", \"{$c_hladina_typ}\", \r\n \"{$cena}\", now(), {$_SESSION['username']})\r\n "; } //var_dump($_POST); //die(); sql_insert($query); header("location: index.php?vyber={$vyber}&sub={$table}"); if ($table == "cp_product") { header("location: index.php?vyber=nastavenia&sub=product"); } if ($table == "cp_polozka") { header("location: index.php?vyber=nastavenia&sub=polozky_cp"); } if ($table == "cp_material_ks") { header("location: index.php?vyber=nastavenia&sub=material"); } } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } $data = $_SESSION["posted_form_add_new_item_{$table}"]; } if (!empty($id)) { $form_data = sql_query("SELECT id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; if ($sub == "cp_abs") { $form_data = sql_query("SELECT id_hrana, id_abs_vyrobca, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_hrana = $form_data[id_hrana]; $cp_abs_vyroba = $form_data[cp_abs_vyrobca]; } if ($sub == "cp_abs_sluzba") { $form_data = sql_query("SELECT id_hrana, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_hrana = $form_data[id_hrana]; } if ($sub == "cp_product") { $form_data = sql_query("SELECT id_product, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_product = $form_data[id_product]; } if ($sub == "cp_polozka") { $form_data = sql_query("SELECT id_polozky_cp, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_polozky_cp = $form_data[id_polozky_cp]; } if ($sub == "cp_material_ks") { $form_data = sql_query("SELECT id_material, id_c_hladina, id_c_hladina_typ, cena FROM {$table}\r\n WHERE id={$id} LIMIT 1"); $form_data = $form_data[0]; $id_material = $form_data[id_material]; } //var_dump($form_data); $c_hladina = $form_data[id_c_hladina]; $c_hladina_typ = $form_data[id_c_hladina_typ]; $cena = $form_data[cena]; } echo "<form method=\"POST\">"; if (empty($id_product)) { $id_product = sec_sql(sec_input($_GET["id_product"])); } if (empty($id_polozky_cp)) { $id_polozky_cp = sec_sql(sec_input($_GET["id_polozky_cp"])); } if (empty($c_hladina)) { $c_hladina = sec_sql(sec_input($_GET["c_hladina"])); } if (empty($id_material)) { $id_material = sec_sql(sec_input($_GET["id_material"])); } if ($table == "cp_product") { echo select("id_product", "Product", "SELECT id, meno FROM product WHERE vymaz=0", $id_product, "", "", "", "NO"); } if ($table == "cp_polozka") { echo select("id_polozky_cp", "Položka", "SELECT id, meno FROM polozky_cp WHERE vymaz=0", $id_polozky_cp, "", "", "", "NO"); } if ($table == "cp_material_ks") { echo select("id_material", "Materiál ks", "SELECT id, hodnota as meno FROM material WHERE vymaz=0", $id_material, "", "", "", "NO"); } echo select("c_hladina", "Cen. hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $c_hladina, "", "", "", "NO"); echo textfield("cena", $cena, "Cena *", 20, 10); //echo select("c_hladina_typ", "typ ceny", "SELECT id, meno FROM c_hladina_typ WHERE vymaz=0", $c_hladina_typ, "", "", "", "NO"); if ($table == "uzivatel") { echo "<div class=\"help_form\">Adresa, ičo a telefon sú vyžadované iba pre \"Zákazníkov\"</div>"; echo textfield("adresa", $adresa, "adresa *", 40, 20); echo textfield("ico_icdph", $ico_icdph, "ičo / ičdph", 40, 20); echo textfield("telefon", $telefon, "telefón *", 40, 20); echo textfield("email", $email, "email *", 40, 20); echo select("skupina", "Skupina *", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $skupina); echo select("id_c_hladina", "Cen.hladina *", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $id_c_hladina); echo "<div class=\"help_form\">Heslo je povinné iba pre \"Administratorov\"</div>"; echo textfield("password", $password, "heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } if ($table == "cp_abs") { echo select("id_hrana", "ABS", "SELECT id, hodnota as meno FROM hrana WHERE vymaz=0", $id_hrana, "", "", "", "NO"); echo select("cp_abs_vyrobca", "Výrobca ABS", "SELECT id, meno FROM cp_abs_vyrobca WHERE vymaz=0", $cp_abs_vyrobca, "", "", "", "NO"); } if ($table == "cp_abs_sluzba") { echo select("id_hrana", "ABS", "SELECT id, hodnota as meno FROM hrana WHERE vymaz=0", $id_hrana, "", "", "", "NO"); } echo submit("submit", "Odoslať"); echo "</form>"; }
function formular_cp($order, $revision = 0, $fieldsets_c = 1, $form_data = "", $page = "") { if (isset($_GET["cp"])) { $cp = sec_input($_GET["cp"]); } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } $data = sql_query("SELECT id, id_vyrobny_plan, DATE_FORMAT(datum, '%d. %m. %Y, %H:%i') AS datum\r\n FROM revizia_vyrobny_plan r \r\n WHERE r.id={$revision} \r\n LIMIT 1"); $data = $data[0]; //var_dump($data); $data_obj = sql_query("SELECT id, meno, popis, DATE_FORMAT(datum_vyvozu, '%d. %m. %Y') AS datum, datum AS rok\r\n FROM vyrobny_plan \r\n WHERE id=" . $data["id_vyrobny_plan"] . " LIMIT 1"); $data_obj = $data_obj[0]; //var_dump($data); $message = ""; $message .= "<h1>Cenová ponuka <br> Výrobný Plán č. " . $data_obj["id"] . "/" . dateYear($data_obj["rok"]) . " - " . $data_obj["meno"] . " </h1>"; $message .= "<h5>Dátum vývozu: " . $data_obj["datum"] . "</h5>"; $message .= !empty($data_obj["popis"]) ? "<h5>Popis: " . $data_obj["popis"] . "</h5>" : ""; //var_dump($dekor); echo "<div class=\"print\">"; echo $message; echo "</div>"; echo "<div id=\"content\" class=\"print_hlavicka4\">"; if (empty($page) or $page == 1) { //dd($_POST); if ($_POST["submit_page1"]) { //dd($_POST); $fieldsets_c = count($_POST["id"]); for ($i = 0; $i < $fieldsets_c; $i++) { $id_objednavka_row[] = sec_input(sec_sql($_POST["id"][$i])); $zlava[] = str_replace(',', '.', sec_input(sec_sql($_POST["zlava"][$i]))); $black[] = isset($_POST["black"][$i]) && $_POST["black"][$i] == 1 ? "1" : "0"; $ppd[] = isset($_POST["ppd"][$i]) && $_POST["ppd"][$i] == 1 ? "1" : "0"; $komis[] = isset($_POST["komis"][$i]) && $_POST["komis"][$i] == 1 ? "1" : "0"; $product_price[] = str_replace(',', '.', sec_input(sec_sql($_POST["product_price"][$i]))); $id_cp_product[] = sec_input(sec_sql($_POST["id_cp_product"][$i])); $ks[] = sec_input(sec_sql($_POST["ks"][$i])); $koment[] = sec_input(sec_sql($_POST["koment"][$i])); } $form_data[id_objednavka_row] = $id_objednavka_row; $form_data[id_cp_product] = $id_cp_product; $form_data[ks] = $ks; $form_data[zlava] = $zlava; $form_data[black] = $black; $form_data[ppd] = $ppd; $form_data[komis] = $komis; $form_data[product_price] = $product_price; $form_data[koment] = $koment; //var_dump($order); //var_dump($revision); if (empty($error_msg)) { $query = "INSERT INTO cp_vyrobny_plan ( id_vyrobny_plan, id_revizia_vyrobny_plan, vytvoril )\r\n VALUES ( {$order}, {$revision}, {$_SESSION['username']} )\r\n "; //print_r($query); //die(); mysql_query("BEGIN"); $sql_cp = sql_insert($query); $cp_id = $sql_cp["inserted_id"]; //dd($form_data); for ($i = 0; $i < count($form_data[id_objednavka_row]); $i++) { // ak je vacsi rovny nule if (empty($form_data[product_price][$i])) { if (!empty($form_data[id_cp_product][$i]) and $form_data[id_cp_product][$i] > 0) { $product_price = sql_query("SELECT cena FROM cp_product WHERE id=" . $form_data[id_cp_product][$i] . " ORDER BY id DESC LIMIT 1")[0]["cena"]; } else { $product_price = 0; } } else { $product_price = $form_data[product_price][$i]; } //echo $product_price."<br>"; //$product_ks_sum = $product_ks_sum + sec_input($form_data["ks"][$i]); $product_price_sum = $product_price * sec_input($form_data["ks"][$i]); $products_prices_sums = $products_prices_sums + $product_price_sum; $zlava_E = $product_price_sum * $form_data["zlava"][$i] / 100; $po_zlave = $product_price_sum - $zlava_E; $po_zlave_sum = $po_zlave_sum + $po_zlave; $query_cp_row = "INSERT into cp_vyrobny_plan_row (id_cp_vyrobny_plan, id_objednavka_row, id_cp_product, \r\n ks, cena, zlava, sum, black, ppd, komis, koment)\r\n VALUES ({$cp_id},\r\n {$form_data[id_objednavka_row][$i]}, \r\n \"{$form_data[id_cp_product][$i]}\", \r\n {$form_data[ks][$i]},\r\n \"{$form_data[product_price][$i]}\",\r\n \"{$form_data[zlava][$i]}\",\r\n \"{$po_zlave}\",\r\n \"{$form_data[black][$i]}\",\r\n \"{$form_data[ppd][$i]}\",\r\n \"{$form_data[komis][$i]}\",\r\n \"{$form_data[koment][$i]}\"\r\n )"; //echo $query_cp_row."<br>"; sql_insert($query_cp_row); //var_dump($query_poznamka); } sql_update("UPDATE cp_vyrobny_plan SET all_sum={$po_zlave_sum} WHERE id={$cp_id}"); mysql_query("COMMIT"); //dd($form_data); //$_SESSION["posted_form_from_cp"]=$form_data; header("location: ?vyber=cp_vyrobny_plan&order={$order}&revision={$revision}&action=display_all"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"cp_rows\">"; // pre editaciu cenovej ponuky.... //========================================= $data_row = sql_query("SELECT vyr.*, obr.*, rev.meno, rev.mesto, rev.doruc_mesto, obj.id_zakaznik,\r\n rev.komentar, rev.komentar_private, rev.email, obj.c_obj c_obj, obj.datum datum_obj\r\n FROM vyrobny_plan_row vyr\r\n INNER JOIN objednavka_row obr\r\n ON vyr.id_objednavka_row = obr.id\r\n INNER JOIN revizia rev\r\n ON obr.id_revizia = rev.id\r\n INNER JOIN objednavka obj\r\n ON rev.id_obj = obj.id\r\n WHERE vyr.id_revizia_vyrobny_plan = " . $revision . "\r\n AND vyr.vymaz = 0\r\n "); //var_dump($data_row); foreach ($data_row as $key => $row) { $data_row_option = sql_query("SELECT id_product_atribute, id_product_atribute_option \r\n FROM objednavka_row_atribute \r\n WHERE id_revizia=\"{$row['id_revizia']}\" AND id_objednavka_row=\"{$row[id]}\""); //var_dump($data_row_option); foreach ($data_row_option as $option) { $data_row[$key]["product_atribute_options_all"][$option["id_product_atribute"]] = $option["id_product_atribute_option"]; } if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $query = "SELECT * from cp_vyrobny_plan_row WHERE id_cp_vyrobny_plan=" . sec_input(sec_sql($_GET["cp"])) . " AND id_objednavka_row=" . $row[id] . ""; $cp_row = sql_query($query)[0]; $data_row[$key]["cena"] = $cp_row[cena]; $data_row[$key]["zlava"] = $cp_row[zlava]; $data_row[$key]["black"] = $cp_row[black]; $data_row[$key]["ppd"] = $cp_row[ppd]; $data_row[$key]["komis"] = $cp_row[komis]; $data_row[$key]["koment"] = $cp_row[koment]; //var_dump($cp_row); } if ($row["id_zakaznik"] > 0) { $query = "SELECT meno, mesto, doruc_mesto FROM uzivatel WHERE id=" . $row["id_zakaznik"] . " LIMIT 1"; $zakaznik = sql_query($query)[0]; $data_row[$key]["meno"] = $zakaznik["meno"]; $data_row[$key]["doruc_mesto"] = $zakaznik["doruc_mesto"]; $data_row[$key]["mesto"] = $zakaznik["mesto"]; } if ($row["id_zakaznik"] == 0) { $data_zak[$row["id_zakaznik"]][$row["id_revizia"]][] = $data_row[$key]; } else { $data_zak[$row["id_zakaznik"]][] = $data_row[$key]; } } //var_dump($data_row); $message = "<div class=\"print_hlavicka3\">\r\n <table>\r\n <tr> \r\n <th style=\"width: 380px;\">produkt</th> \r\n <th style=\"width: 50px;\">j.cena</th> \r\n <th style=\"width: 120px;\">zľava % / j.cena po</th>\r\n <th style=\"width: 50px;\">vl.cena</th>\r\n <th style=\"width: 60px;\">Spolu bez DPH</th>\r\n <th>DL</th>\r\n <th>PPD</th>\r\n <th>KMS</th>\r\n <th style=\"width: 135px;\">komentár</th>\r\n </tr>"; $count = 0; foreach ($data_zak as $key => $zakaznik) { $data_z = array(); if ($key > 0) { $message .= "<tr class=\"silver\">"; $query = "SELECT meno, mesto, doruc_mesto, email FROM uzivatel WHERE id=" . $key . " LIMIT 1"; $zakaz = sql_query($query)[0]; //dd($zakaz); $data_z["meno"] = $zakaz["meno"]; $data_z["doruc_mesto"] = $zakaz["doruc_mesto"]; $data_z["mesto"] = $zakaz["mesto"]; $data_z["email"] = $zakaz["email"]; $odberatel = $data_z["meno"]; if (empty($data_z["doruc_mesto"])) { $odberatel .= empty($data_z["mesto"]) ? "" : ", " . $data_z["mesto"]; } else { $odberatel .= ", " . $data_z["doruc_mesto"]; } $odberatel = "<span class=\"bold\">" . $odberatel . "</span>" . (!empty($data_z["email"]) ? " (" . $data_z["email"] . ")" : "") . ""; $message .= "<td colspan=9>{$odberatel}</td>"; $message .= "</tr>"; } foreach ($zakaznik as $keyer => $riadok) { if ($key > 0) { $at_text = ""; if (!empty($riadok["atyp_text"])) { $at_text = "atp"; } $cls = "class=\"{$count} {$at_text}\""; $message .= "<tr {$cls}>\r\n\r\n "; $product_type = sql_query("SELECT meno FROM product_type WHERE id=" . sec_sql(sec_input($riadok["id_product_type"])) . " LIMIT 1"); $product_type = $product_type[0]; $product = sql_query("SELECT id, meno FROM product WHERE id=" . sec_sql(sec_input($riadok["id_product"])) . " LIMIT 1")[0]; $options_str = array(); //var_dump($data); if (!isset($riadok["product_atribute_options_all"]) or empty($riadok["product_atribute_options_all"])) { $riadok["product_atribute_options_all"] = array(); } $option_c_hladina = 1; foreach ($riadok["product_atribute_options_all"] as $option) { //var_dump($option); $options = sql_query("SELECT id, meno, id_c_hladina FROM product_atribute_option WHERE id=" . sec_sql(sec_input($option)) . " LIMIT 1"); $options_str[] = $options[0]["meno"]; if ($options[0]["id_c_hladina"] > $option_c_hladina) { $option_c_hladina = $options[0]["id_c_hladina"]; } //$options["price"] = sql_query("SELECT id, cena FROM product_atribute_option WHERE id=".sec_sql(sec_input($option))." LIMIT 1"); } $options_str = empty($options_str) ? "" : " (" . join(", ", $options_str) . ")"; //var_dump($option_c_hladina); /* $odberatel = $riadok["meno"]; if(empty($riadok["doruc_mesto"])) { $odberatel .= ( empty($riadok["mesto"]) ? "" : ", ".$riadok["mesto"] ); } else { $odberatel .= ", ".$riadok["doruc_mesto"]; } */ $odberatel = " (obj č. " . $riadok["c_obj"] . "/" . dateYear($riadok["datum_obj"]) . ") z " . dateDate($riadok["datum_obj"]) . ""; $odberatel = "<br>" . $odberatel . ""; $message .= "<td class=\"form_nazov_siroky\">" . sec_input($riadok["ks"]) . "x " . $product_type["meno"] . " <span class=\"bold\">" . $product["meno"] . "" . $options_str . "</span>\r\n " . (empty($riadok["atyp_text"]) ? "" : "<br>Atyp: " . sec_input($riadok["atyp_text"])) . "\r\n {$odberatel}\r\n " . (empty($riadok["komentar"]) ? "" : "<br>- " . sec_input($riadok["komentar"])) . "\r\n " . (empty($riadok["komentar_private"]) ? "" : "<br>- " . sec_input($riadok["komentar_private"])) . "\r\n " . hidden("ks[]", $riadok["ks"], "ks") . "\r\n " . hidden("id[]", $riadok["id"]) . "</td>"; $product_prices = sql_query("SELECT id, cena FROM cp_product WHERE id_c_hladina=" . $option_c_hladina . " AND id_product=" . $product["id"] . " ORDER BY id DESC LIMIT 1")[0]; $regular_price = $product_prices[cena] . " €"; //echo "$i<br>"; //var_dump(count($data[product_price_all][$i])); //var_dump($data[product_price_all]); if ($riadok[cena] == 0) { //echo "hej"; if (!empty($riadok[vlastna_cena])) { $cena_final = $riadok[vlastna_cena]; $product_price = $riadok[vlastna_cena]; } else { $cena_final = 0; $product_price = $product_prices[cena]; } } else { $product_price = $riadok[cena]; $cena_final = $riadok[cena]; } $product_ks_sum = $product_ks_sum + sec_input($riadok["ks"]); $product_price_sum = $product_price * sec_input($riadok["ks"]); // spocitanie ceny spolu za vsetky produkty $products_prices_sums = $products_prices_sums + $product_price_sum; $zlava_E = $product_price_sum * $riadok["zlava"] / 100; $zlava_J = $product_price * $riadok["zlava"] / 100; $zlava_J = $product_price - $zlava_J; $po_zlave = $product_price_sum - $zlava_E; $po_zlave_sum = $po_zlave_sum + $po_zlave; $message .= "<td class=\"form_nazov ali-center product-price regular-price bold bigger\">" . $regular_price . "" . hidden("id_cp_product[]", $product_prices[id]) . " </td>"; $message .= "<td class=\"form_nazov bold bigger\">" . textfield("zlava[]", empty($riadok[zlava]) ? "0" : $riadok[zlava], "", 4, 2, "zlava") . "<span class=\"zlava-E\">" . ($riadok["zlava"] > 0 ? "" . $zlava_J . " €" : "") . "</span></td>"; $message .= "<td class=\"form_nazov ali-center product-price\">" . textfield("product_price[{$i}]", $cena_final, "", 5, 3, "product_price") . "</td>"; //$message .= "<td class=\"form_nazov ali-center bold\"><span class=\"cena-spolu-product\">".$product_price_sum ."</span> €</td>"; $message .= "<td class=\"form_nazov ali-center po-zlave-sum\">" . $po_zlave . " €</td>"; $checked = ""; if ($riadok[black] == 1) { $checked = "checked"; } $checked_ppd = ""; if ($riadok[ppd] == 1) { $checked_ppd = "checked"; } $checked_komis = ""; if ($riadok[komis] == 1) { $checked_komis = "checked"; } $message .= "<td><input type=\"checkbox\" name=\"black[{$count}]\" value=\"1\" {$checked}></td>"; $message .= "<td><input type=\"checkbox\" name=\"ppd[{$count}]\" value=\"1\" {$checked_ppd}></td>"; $message .= "<td><input type=\"checkbox\" name=\"komis[{$count}]\" value=\"1\" {$checked_komis}></td>"; $message .= "<td>" . textarea("koment[]", $riadok[koment], "", 16, 1, "koment") . "</td>"; $message .= "</tr>"; $count = $count + 1; } else { $message .= "<tr class=\"silver\">"; $data_z["meno"] = $riadok[0]["meno"]; $data_z["doruc_mesto"] = $riadok[0]["doruc_mesto"]; $data_z["mesto"] = $riadok[0]["mesto"]; $data_z["email"] = $riadok[0]["email"]; $odberatel = $data_z["meno"]; if (empty($data_z["doruc_mesto"])) { $odberatel .= empty($data_z["mesto"]) ? "" : ", " . $data_z["mesto"]; } else { $odberatel .= ", " . $data_z["doruc_mesto"]; } $odberatel = "<span class=\"bold\">" . $odberatel . "</span>" . (!empty($data_z["email"]) ? " (" . $data_z["email"] . ")" : "") . ""; $message .= "<td colspan=9>{$odberatel}</td>"; $message .= "</tr>"; foreach ($riadok as $riadok_without) { $cls = "class=\"{$count}\""; $message .= "<tr {$cls}>"; $product_type = sql_query("SELECT meno FROM product_type WHERE id=" . sec_sql(sec_input($riadok_without["id_product_type"])) . " LIMIT 1"); $product_type = $product_type[0]; $product = sql_query("SELECT id, meno FROM product WHERE id=" . sec_sql(sec_input($riadok_without["id_product"])) . " LIMIT 1")[0]; $options_str = array(); //var_dump($data); if (!isset($riadok_without["product_atribute_options_all"]) or empty($riadok_without["product_atribute_options_all"])) { $riadok_without["product_atribute_options_all"] = array(); } $option_c_hladina = 1; foreach ($riadok_without["product_atribute_options_all"] as $option) { //var_dump($option); $options = sql_query("SELECT id, meno, id_c_hladina FROM product_atribute_option WHERE id=" . sec_sql(sec_input($option)) . " LIMIT 1"); $options_str[] = $options[0]["meno"]; if ($options[0]["id_c_hladina"] > $option_c_hladina) { $option_c_hladina = $options[0]["id_c_hladina"]; } //$options["price"] = sql_query("SELECT id, cena FROM product_atribute_option WHERE id=".sec_sql(sec_input($option))." LIMIT 1"); } $options_str = empty($options_str) ? "" : " (" . join(", ", $options_str) . ")"; //var_dump($option_c_hladina); /* $odberatel = $riadok_without["meno"]; if(empty($riadok_without["doruc_mesto"])) { $odberatel .= ( empty($riadok_without["mesto"]) ? "" : ", ".$riadok_without["mesto"] ); } else { $odberatel .= ", ".$riadok_without["doruc_mesto"]; } */ $odberatel = " (obj č. " . $riadok_without["c_obj"] . "/" . dateYear($riadok_without["datum_obj"]) . ") z " . dateDate($riadok_without["datum_obj"]) . ""; $odberatel = "<br>" . $odberatel . ""; $message .= "<td class=\"form_nazov_siroky\">" . sec_input($riadok_without["ks"]) . "x " . $product_type["meno"] . " <span class=\"bold\">" . $product["meno"] . "" . $options_str . "</span>\r\n " . (empty($riadok_without["atyp_text"]) ? "" : "<br>Atyp: " . sec_input($riadok_without["atyp_text"])) . "\r\n {$odberatel}\r\n " . (empty($riadok_without["komentar"]) ? "" : "<br>- " . sec_input($riadok_without["komentar"])) . "\r\n " . (empty($riadok_without["komentar_private"]) ? "" : "<br>- " . sec_input($riadok_without["komentar_private"])) . "\r\n " . hidden("ks[]", $riadok_without["ks"], "ks") . "\r\n " . hidden("id[]", $riadok_without["id"]) . "</td>"; $product_prices = sql_query("SELECT id, cena FROM cp_product WHERE id_c_hladina=" . $option_c_hladina . " AND id_product=" . $product["id"] . " ORDER BY id DESC LIMIT 1")[0]; $regular_price = $product_prices[cena] . " €"; //echo "$i<br>"; //var_dump(count($data[product_price_all][$i])); //var_dump($data[product_price_all]); if ($riadok_without[cena] == 0) { //echo "hej"; if (!empty($riadok_without[vlastna_cena])) { $cena_final = $riadok_without[vlastna_cena]; $product_price = $riadok_without[vlastna_cena]; } else { $cena_final = 0; $product_price = $product_prices[cena]; } } else { $product_price = $riadok_without[cena]; $cena_final = $riadok_without[cena]; } $product_ks_sum = $product_ks_sum + sec_input($riadok_without["ks"]); $product_price_sum = $product_price * sec_input($riadok_without["ks"]); // spocitanie ceny spolu za vsetky produkty $products_prices_sums = $products_prices_sums + $product_price_sum; $zlava_E = $product_price_sum * $riadok_without[zlava] / 100; $zlava_J = $product_price * $riadok["zlava"] / 100; $zlava_J = $product_price - $zlava_J; $po_zlave = $product_price_sum - $zlava_E; $po_zlave_sum = $po_zlave_sum + $po_zlave; $message .= "<td class=\"form_nazov ali-center product-price regular-price bold bigger\">" . $regular_price . "" . hidden("id_cp_product[]", $product_prices[id]) . " </td>"; $message .= "<td class=\"form_nazov bold bigger\">" . textfield("zlava[]", empty($riadok_without[zlava]) ? "0" : $riadok_without[zlava], "", 4, 2, "zlava") . "<span class=\"zlava-E\">" . ($riadok["zlava"] > 0 ? "-" . $zlava_J . " €" : "") . "</span></td>"; $message .= "<td class=\"form_nazov ali-center product-price\">" . textfield("product_price[{$i}]", $cena_final, "", 5, 3, "product_price") . "</td>"; //$message .= "<td class=\"form_nazov ali-center bold\"><span class=\"cena-spolu-product\">".$product_price_sum ."</span> €</td>"; $message .= "<td class=\"form_nazov ali-center po-zlave-sum\">" . $po_zlave . " €</td>"; $checked = ""; $checked_ppd = ""; $checked_komis = ""; if ($riadok_without[black] == 1) { $checked = "checked"; } $checked_ppd = ""; if ($riadok_without[ppd] == 1) { $checked_ppd = "checked"; } $checked_komis = ""; if ($riadok_without[komis] == 1) { $checked_komis = "checked"; } $message .= "<td><input type=\"checkbox\" name=\"black[{$count}]\" value=\"1\" {$checked}></td>"; $message .= "<td><input type=\"checkbox\" name=\"ppd[{$count}]\" value=\"1\" {$checked_ppd}></td>"; $message .= "<td><input type=\"checkbox\" name=\"komis[{$count}]\" value=\"1\" {$checked_komis}></td>"; $message .= "<td>" . textarea("koment[]", $riadok_without[koment], "", 16, 1, "koment") . "</td>"; $message .= "</tr>"; $count = $count + 1; } } } } $message .= "<tr class=\"cp_spolu bold\">\r\n <td>Spolu: " . $product_ks_sum . " ks</td>\r\n <td></td>\r\n <td></td>\r\n <td></td>\r\n <td class=\"ali-center po-zlave-sum-all\">" . $po_zlave_sum . " €</td>\r\n <td></td>\r\n <td></td>\r\n <td></td>\r\n <td></td>\r\n \r\n <tr>"; $message .= "</table></div>"; echo $message; echo "</fieldset>"; echo submit("submit_page1", "Pokračovať"); } echo "</form>"; }
function formular($fieldsets_c, $form_data, $secure_key = "") { //print_r("=============================="); //var_dump($form_data); $fieldsets_c = count($form_data["ks_all"]); if ($fieldsets_c == 0) { $fieldsets_c = 1; } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } //var_dump($vyrobca); //var_dump($form_data); //var_dump($dekor); echo "<div id=\"content\">"; echo "<div id=\"nahlad\">\r\n \r\n <div class=\"boxer\">\r\n <div class=\"nahlad_popis_sirka\"></div>\r\n <div class=\"nahlad_popis_dlzka\"></div> \r\n </div>\r\n </div>"; echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"udaje\"><legend>Vaše údaje</legend>"; if ($_SESSION["logged"] == 1) { echo "<div class=\"form_zakaznik_text\">"; echo textfield("zakaznik", "", "Zákazník", 50, 20); echo "</div>"; } echo textfield("meno", $meno, "Meno / Firma *", 40, 20, "", "Povinný údaj:<br> vpíšte Vaše meno alebo názov firmy"); echo textfield("adresa", $adresa, "Adresa *", 50, 20); echo textfield("ico_icdph", $ico_icdph, "IČO / IČ DPH", 18, 20); echo textfield("telefon", $telefon, "telefón *", 20, 20, "", "Povinný údaj"); if ($_SESSION["logged"] == 1 and $email == "") { $email = def_value("default_email", "hodnota"); } echo textfield("email", $email, "email *", 50, 20, "", "Povinný údaj:<br> vpíšte Váš email na ktorý Vám bude zaslané potvrdenie objednávky"); $material = empty($material) ? def_value("default_material", "hodnota") : $material; echo select("material", "Materiál *", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $material, "-vyberte si-", "", "Povinný údaj:<br> prosím zvoľte si jeden z materiálov", "NO"); $hrubka_rev = empty($hrubka_rev) ? def_value("default_hrubka", "hodnota") : $hrubka_rev; $query = "SELECT count(id) as counter from hrubka WHERE id_material={$material}"; $has_hrubka = sql_query($query); if ($has_hrubka[0]["counter"] > 0) { $where = "AND id_material={$material}"; } else { $where = "AND id_material=0"; } echo select("hrubka_rev", "Hrúbka", "SELECT id, hodnota, meno FROM hrubka WHERE vymaz=0 {$where} ORDER BY hodnota", $hrubka_rev, "", "hrubka_rev", "", "NO"); $skryt_zakaznikom = "AND skryt_zakaznikom=0"; if ($_SESSION["logged"] == 1) { $skryt_zakaznikom = ""; } //echo $skryt_zakaznikom; echo select("vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0 AND id_material=\"" . $material . "\" {$skryt_zakaznikom}", $vyrobca); if (empty($vyrobca)) { $vyrobca = 0; } if (empty($dekor)) { $dekor = 0; } echo select("dekor", "Dekor", "SELECT id, hodnota, meno FROM dekor WHERE vymaz=0 AND id_vyrobca=\"{$vyrobca}\" {$skryt_zakaznikom}", $dekor); echo textfield("dekor_vlastny", $dekor_vlastny, "Iný dekor", 25, 20, "", "Ak sa dekor o ktorý máte záujem nenachádza v zozname dekorov, vpíšte ho do tohto poľa"); $options = ["porez" => "porez", "cp" => "cenová ponuka"]; echo select("objednavka_typ", "Typ objednávky", "", $objednavka_typ, "", "", "", "NO", $options); $options = ["0" => "bez dopravy", "1" => "s dopravou"]; echo select("objednavka_doprava", "Doprava", "", $objednavka_doprava, "", "", "", "NO", $options); $csrf_key = md5(uniqid(rand(), TRUE)); $_SESSION["csrf_key"] = $csrf_key; //$_SESSION["janko"] = microtime(); //var_dump($_SESSION["csrf_key"]); hidden("secure_csrf", $_SESSION["csrf_key"]); if (!empty($secure_key)) { hidden("secure_key", $secure_key); } echo "</fieldset>"; //var_dump($_SESSION); for ($i = 0; $i < $fieldsets_c; $i++) { $poradie = $i + 1; $checked = ""; if ($duplak[$i] == 1) { $checked = "checked"; } echo "<fieldset class=\"narezovka\">"; echo "<div class=\"count\">{$poradie}. </div>"; echo textfield("ks[]", $ks_all[$i], "ks *", 4, 3, "ks", "Povinný údaj: <br> počet kusov"); echo textfield("dlzka[]", $dlzka_all[$i], "dĺžka *", 5, 3, "dlzka", "Povinný údaj: <br> maximálna povolená dĺžka je 2800mm, pre pracovné dosky 4100mm"); echo textfield("sirka[]", $sirka_all[$i], "šírka *", 5, 3, "sirka", "Povinný údaj: <br> maximálna povolená šírka je 2070mm"); echo textfield("nazov[]", $nazov_all[$i], "Názov", 50, 18, "nazov"); echo textfield("poznamka[]", $poznamka_all[$i], "Poznámka", 50, 18, "poznamka"); $hrubka_all[$i] = empty($hrubka_all[$i]) ? def_value("default_hrubka", "hodnota") : $hrubka_all[$i]; $query = "SELECT count(id) as counter from hrubka WHERE id_material={$material}"; $has_hrubka = sql_query($query); if ($has_hrubka[0]["counter"] > 0) { $where = "AND id_material={$material}"; } else { $where = "AND id_material=0"; } echo select("hrubka[]", "Hrúbka", "SELECT id, hodnota, meno FROM hrubka WHERE vymaz=0 {$where} ORDER BY hodnota", $hrubka_all[$i], "", "hrubka", "", "NO"); $orientacia_all[$i] = empty($orientacia_all[$i]) ? def_value("default_orientacia", "hodnota") : $orientacia_all[$i]; echo select("orientacia[]", "Orientácia", "SELECT id, hodnota, meno FROM orientacia WHERE vymaz=0", $orientacia_all[$i], "", "orientacia", "", "NO"); echo select("hrana1[]", "dolná", "SELECT id, hodnota, meno FROM hrana WHERE vymaz=0 AND zobraz_vo_formulari=1", $hrana1_all[$i], "", "hrana1", "Dolná hrana", ""); echo select("hrana2[]", "pravá", "SELECT id, hodnota, meno FROM hrana WHERE vymaz=0 AND zobraz_vo_formulari=1", $hrana2_all[$i], "", "hrana2", "Pravá hrana", ""); echo select("hrana3[]", "horná", "SELECT id, hodnota, meno FROM hrana WHERE vymaz=0 AND zobraz_vo_formulari=1", $hrana3_all[$i], "", "hrana3", "Horná hrana", ""); echo select("hrana4[]", "ľavá", "SELECT id, hodnota, meno FROM hrana WHERE vymaz=0 AND zobraz_vo_formulari=1", $hrana4_all[$i], "", "hrana4", "Ľavá hrana", ""); $skosenie_exists = $roh1x_all[$i] + $roh1y_all[$i] + $roh2x_all[$i] + $roh2y_all[$i] + $roh3x_all[$i] + $roh3y_all[$i] + $roh4x_all[$i] + $roh4y_all[$i]; echo "<div class=\"skosenie_riadok" . ($skosenie_exists > 0 ? " skosenie_exists" : "") . "\"><input type=\"button\" value=\"\"></div>\r\n \r\n <div class=\"odstran_riadok\"><input type=\"button\" value=\"\"></div>\r\n <div class=\"skosenie_tab\">\r\n <div class=\"zrezanie_parent\">"; echo textfield("roh1x[]", $roh1x_all[$i], "x", 4, 3, "roh1x"); echo textfield("roh1y[]", $roh1y_all[$i], "y", 4, 3, "roh1y"); echo textfield("roh2x[]", $roh2x_all[$i], "x", 4, 3, "roh2x"); echo textfield("roh2y[]", $roh2y_all[$i], "y", 4, 3, "roh2y"); echo textfield("roh3x[]", $roh3x_all[$i], "x", 4, 3, "roh3x"); echo textfield("roh3y[]", $roh3y_all[$i], "y", 4, 3, "roh3y"); echo textfield("roh4x[]", $roh4x_all[$i], "x", 4, 3, "roh4x"); echo textfield("roh4y[]", $roh4y_all[$i], "y", 4, 3, "roh4y"); echo "</div>"; echo "<div class=\"help_text\">"; echo "<ul>"; echo "<li>Pole slúži pre definovanie zrezania či zaoblenia rohov dielca.</li>"; echo "<li>Pre zrezanie rohu \"po priamke\" je nutnú pri každom rohu zadať dve hodnoty skosenia: <strong>v horizontálnom (x) a vo vertikálnom (y) smere</strong></li>"; echo "<li>Pre zaoblenie rohu zadajte hodnotu polomeru zaoblenia iba do políčka\r\n pre horizontálnu hodnotu (x) daného rohu.</li>"; echo "</ul>"; echo "</div>"; echo "</div>\r\n "; $vypocet = $dlzka_all[$i] * $sirka_all[$i] / 1000000; $vypocet = $vypocet * $ks_all[$i]; if ($hrubka_all[$i] == def_value("default_duplak", "hodnota")) { $vypocet_duplak = $dlzka_all[$i] * $sirka_all[$i] / 1000000; $vypocet_duplak = $vypocet_duplak * $ks_all[$i]; $vypocet = ($dlzka_all[$i] + 20) * ($sirka_all[$i] + 20) / 1000000; $vypocet = $vypocet * ($ks_all[$i] * 2); $vypocet_duplak_sum = $vypocet_duplak_sum + $vypocet_duplak; } $vypocet_sum = $vypocet_sum + $vypocet; $vypocet_final = round($vypocet, 2) . ""; echo "<div class=\"vypocet\">" . ($vypocet > 0 ? $vypocet_final : "") . "</div>"; echo "</fieldset>"; } echo "<div id=\"add_more_buttons\"><div id=\"vloz_riadok\"><input type=\"button\" value=\"Vlož ďalší riadok\"></div></div>"; echo "<div class=\"form_vypocet_sum\">" . ($vypocet_sum > 0 ? "" . round($vypocet_sum, 2) . " m2" : "") . "</div>"; echo "<div class=\"form_vypocet_sum_duplak\">" . ($vypocet_duplak_sum > 0 ? "Duplák spracovanie: " . round($vypocet_duplak_sum, 2) . " m2" : "") . ""; echo "</div>"; //var_dump($form_data); //var_dump($_POST); textarea("komentar", $komentar, "Váš komentár", 50, 4, "komentar"); if (!empty($form_data) and $form_data[num_files] >= 0 and !$secure_key) { for ($i = 1; $i <= 5 - $form_data[num_files]; $i++) { file_upload("subor[]", "subor", "Príloha"); } } else { echo "<div class=\"form_vypocet_sum_duplak\">\r\n <strong>Prílohy k objednávke môžete nahrávať v ďalšom kroku po odoslaní nárezových dielcov.</strong></div>"; } echo submit("submit", "Pokračuj >>"); echo "</form>\r\n </div>"; }
function edit($table, $vyber) { $error_msg = array(); if ($_POST[submit]) { $values[default_email] = sec_sql(sec_input($_POST["default_email"])); if (strlen($values[default_email]) > 40 or strlen($values[default_email]) < 6) { $error_msg[] = "Email môže mať od 6 do 40 znakov"; } $values[default_firma] = sec_sql(sec_input($_POST["default_firma"])); if (strlen($values[default_firma]) > 40 or strlen($values[default_firma]) < 4) { $error_msg[] = "Firma môže mať od 4 do 40 znakov"; } $values[default_adresa] = sec_sql(sec_input($_POST["default_adresa"])); if (strlen($values[default_adresa]) > 40 or strlen($values[default_adresa]) < 4) { $error_msg[] = "Adresa môže mať od 4 do 40 znakov"; } $values[default_mesto] = sec_sql(sec_input($_POST["default_mesto"])); if (strlen($values[default_mesto]) > 40 or strlen($values[default_mesto]) < 4) { $error_msg[] = "Mesto môže mať od 4 do 40 znakov"; } $values[default_ico] = sec_sql(sec_input($_POST["default_ico"])); if (strlen($values[default_ico]) > 20 or strlen($values[default_ico]) < 4) { $error_msg[] = "IČO môže mať od 4 do 40 znakov"; } $values[default_dic] = sec_sql(sec_input($_POST["default_dic"])); if (strlen($values[default_dic]) > 20 or strlen($values[default_dic]) < 4) { $error_msg[] = "DIČ môže mať od 4 do 40 znakov"; } $values[default_telefon] = sec_sql(sec_input($_POST["default_telefon"])); if (strlen($values[default_telefon]) > 20 or strlen($values[default_telefon]) < 4) { $error_msg[] = "telefón môže mať od 4 do 40 znakov"; } $values[default_mobil] = sec_sql(sec_input($_POST["default_mobil"])); if (strlen($values[default_mobil]) > 20 or strlen($values[default_mobil]) < 4) { $error_msg[] = "mobil môže mať od 4 do 40 znakov"; } $values[default_email_2] = sec_sql(sec_input($_POST["default_email_2"])); if (strlen($values[default_email_2]) > 40 or strlen($values[default_email_2]) < 4) { $error_msg[] = "Email 2 môže mať od 4 do 40 znakov"; } $values[max_dlzka] = sec_sql(sec_input($_POST["max_dlzka"])); $values[default_email_host] = sec_sql(sec_input($_POST["default_email_host"])); if (strlen($values[default_email_host]) > 40 or strlen($values[default_email_host]) < 4) { $error_msg[] = "Emailovy server musí byť nastavený"; } $values[default_email_port] = sec_sql(sec_input($_POST["default_email_port"])); if (strlen($values[default_email_port]) > 5 or strlen($values[default_email_port]) < 1) { $error_msg[] = "Emailovy port musí byť nastavený"; } $values[default_email_username] = sec_sql(sec_input($_POST["default_email_username"])); if (strlen($values[default_email_username]) > 40 or strlen($values[default_email_username]) < 4) { $error_msg[] = "Emailovy užívateľ musí byť nastavený"; } $values[default_email_password] = sec_sql(sec_input($_POST["default_email_password"])); if (strlen($values[default_email_password]) > 40 or strlen($values[default_email_password]) < 4) { $error_msg[] = "Emailové heslo musí byť nastavené"; } if (!is_numeric($values[max_dlzka]) or empty($values[max_dlzka])) { $error_msg[] = "maximálna dĺžka musí byť číslo"; } $values[max_sirka] = sec_sql(sec_input($_POST["max_sirka"])); if (!is_numeric($values[max_sirka]) or empty($values[max_sirka])) { $error_msg[] = "maximálna šírka musí byť číslo"; } $values[default_material] = sec_sql(sec_input($_POST["default_material"])); if (!is_numeric($values[default_material]) or empty($values[default_material])) { $error_msg[] = "zle zadaný materiál"; } $values[default_hrubka] = sec_sql(sec_input($_POST["default_hrubka"])); if (!is_numeric($values[default_hrubka]) or empty($values[default_hrubka])) { $error_msg[] = "zle zadaná hrúbka"; } $values[default_orientacia] = sec_sql(sec_input($_POST["default_orientacia"])); if (!is_numeric($values[default_orientacia]) or empty($values[default_orientacia])) { $error_msg[] = "zle zadaná orientácia"; } $values[default_duplak] = sec_sql(sec_input($_POST["default_duplak"])); if (!is_numeric($values[default_duplak]) or empty($values[default_duplak])) { $error_msg[] = "zle zadaný duplák"; } $values[default_duplak_hrana_value] = sec_sql(sec_input($_POST["default_duplak_hrana_value"])); if (strlen($values[default_duplak_hrana_value]) > 40 or strlen($values[default_duplak_hrana_value]) < 1) { $error_msg[] = "nesprávne zadaný údaj pre hranu dupláku"; } $values[max_per_page] = sec_sql(sec_input($_POST["max_per_page"])); if (!is_numeric($values[max_per_page]) or empty($values[max_per_page])) { $error_msg[] = "maximálna dĺžka musí byť číslo"; } $values[default_obj_status_cp] = sec_sql(sec_input($_POST["default_obj_status_cp"])); if (!is_numeric($values[default_obj_status_cp]) or empty($values[default_obj_status_cp])) { $error_msg[] = "Stav objednávky CP zle zadané"; } $values[default_obj_status_rozpracovana] = sec_sql(sec_input($_POST["default_obj_status_rozpracovana"])); if (!is_numeric($values[default_obj_status_rozpracovana]) or empty($values[default_obj_status_rozpracovana])) { $error_msg[] = "Stav objednávky rozpracované zle zadané"; } $values[default_obj_status_cp_spracovana] = sec_sql(sec_input($_POST["default_obj_status_cp_spracovana"])); if (!is_numeric($values[default_obj_status_cp_spracovana]) or empty($values[default_obj_status_cp_spracovana])) { $error_msg[] = "Stav objednávky CP spracované zle zadané"; } $values[default_obj_status_spracovana] = sec_sql(sec_input($_POST["default_obj_status_spracovana"])); if (!is_numeric($values[default_obj_status_spracovana]) or empty($values[default_obj_status_spracovana])) { $error_msg[] = "Stav objednávky spracovaná zle zadané"; } //if(!is_numeric($id) or empty($id)) $error_msg[] = "ID ma nesprávnu hodnotu"; //var_dump($error_msg); if (empty($error_msg)) { mysql_query("BEGIN"); foreach ($values as $key => $value) { $query = "UPDATE {$table} SET hodnota = \"{$value}\" WHERE meno = \"{$key}\""; sql_update($query); } mysql_query("COMMIT"); header("location: index.php?vyber=default_settings"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, meno, nazov, hodnota, popis from {$table} order by id"; $value = sql_query($query); //var_dump($value); echo "<form method=\"POST\">"; echo "<fieldset><legend>Firemné údaje: </legend>"; echo textfield("default_email", $value[0][hodnota], $value[0][nazov], 50, 20, "", $value[0][popis]); echo textfield("default_firma", $value[4][hodnota], $value[4][nazov], 50, 20, "", $value[4][popis]); echo textfield("default_adresa", $value[5][hodnota], $value[5][nazov], 50, 20, "", $value[5][popis]); echo textfield("default_mesto", $value[6][hodnota], $value[6][nazov], 50, 20, "", $value[6][popis]); echo textfield("default_ico", $value[7][hodnota], $value[7][nazov], 50, 20, "", $value[7][popis]); echo textfield("default_dic", $value[8][hodnota], $value[8][nazov], 50, 20, "", $value[8][popis]); echo textfield("default_telefon", $value[9][hodnota], $value[9][nazov], 50, 20, "", $value[9][popis]); echo textfield("default_mobil", $value[10][hodnota], $value[10][nazov], 50, 20, "", $value[10][popis]); echo textfield("default_email_2", $value[11][hodnota], $value[11][nazov], 50, 20, "", $value[11][popis]); echo "</fieldset>"; echo "<fieldset><legend>Údaje pre porezy</legend>"; echo textfield("max_dlzka", $value[15][hodnota], $value[15][nazov], 4, 3, "", $value[15][popis]); echo textfield("max_sirka", $value[16][hodnota], $value[16][nazov], 4, 3, "", $value[16][popis]); echo select("default_material", $value[2][nazov], "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[2][hodnota], "", "", $value[2][popis], "NO"); echo select("default_hrubka", $value[1][nazov], "SELECT id, hodnota, meno FROM hrubka WHERE vymaz=0", $value[1][hodnota], "", "", $value[1][popis], "NO"); echo select("default_orientacia", $value[3][nazov], "SELECT id, hodnota, meno FROM orientacia WHERE vymaz=0", $value[3][hodnota], "", "", $value[3][popis], "NO"); echo select("default_duplak", $value[13][nazov], "SELECT id, hodnota, meno FROM hrubka WHERE vymaz=0", $value[13][hodnota], "", "", $value[13][popis], "NO"); echo textfield("default_duplak_hrana_value", $value[14][hodnota], $value[14][nazov], 20, 15, "", $value[14][popis]); echo "</fieldset>"; echo "<fieldset><legend>Nastavenie zobrazovania</legend>"; echo textfield("max_per_page", $value[12][hodnota], $value[12][nazov], 3, 2, "", $value[12][popis]); echo "</fieldset>"; echo "<fieldset><legend>Nastavenie Odosielania emailov</legend>"; echo textfield("default_email_host", $value[23][hodnota], $value[23][nazov], 50, 20, "", $value[23][popis]); echo textfield("default_email_port", $value[24][hodnota], $value[24][nazov], 4, 3, "", $value[24][popis]); echo textfield("default_email_username", $value[25][hodnota], $value[25][nazov], 50, 20, "", $value[25][popis]); echo textfield("default_email_password", "", $value[26][nazov], 50, 20, "", $value[26][popis], 1); echo "</fieldset>"; echo "<fieldset><legend>Nastavenie Objednávok a Cenových ponúk</legend>"; echo select("default_obj_status_spracovana", $value[20][nazov], "SELECT id, nastavenie, meno FROM objednavka_status WHERE vymaz=0", $value[20][hodnota], "", "", $value[20][popis], "NO"); echo select("default_obj_status_cp", $value[17][nazov], "SELECT id, nastavenie, meno FROM objednavka_status WHERE vymaz=0", $value[17][hodnota], "", "", $value[17][popis], "NO"); echo select("default_obj_status_cp_spracovana", $value[19][nazov], "SELECT id, nastavenie, meno FROM objednavka_status WHERE vymaz=0", $value[19][hodnota], "", "", $value[19][popis], "NO"); echo select("default_obj_status_rozpracovana", $value[18][nazov], "SELECT id, nastavenie, meno FROM objednavka_status WHERE vymaz=0", $value[18][hodnota], "", "", $value[18][popis], "NO"); echo "</fieldset>"; /* hidden("id", $value[id]); echo textfield("meno", $value[meno], "Meno", 50, 20 ); echo textfield("hodnota", $value[hodnota], "Hodnota", 40, 20 ); if ($table=="vyrobca") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); } if($table=="dekor"){ echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); echo select("id_vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0", $value[id_vyrobca]); } if ($table=="hrana") { echo textfield("hodnota_csv", $value[hodnota_csv], "Hodnota pre CSV", 40, 20 ); } */ echo submit("submit", "Odoslať"); echo "</form>"; }
function formular_cp($order, $revision = 0, $fieldsets_c = 1, $form_data = "", $page = "") { if (isset($_GET["cp"])) { $cp = sec_input($_GET["cp"]); } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } $data = sql_query("SELECT r.id, r.id_obj, r.meno, adresa, ico_icdph, telefon, email, m.meno as material,\r\n id_material, id_vyrobca, id_dekor, dekor_vlastny, komentar,\r\n DATE_FORMAT(datum, '%d. %m. %Y, %H:%i') AS datum\r\n FROM revizia r \r\n JOIN material m\r\n ON r.id_material=m.id\r\n \r\n WHERE r.id={$revision} \r\n LIMIT 1"); $data = $data[0]; //var_dump($data); $data_obj = sql_query("SELECT DATE_FORMAT(datum, '%d. %m. %Y, %H:%i') AS datum, c_obj, id_zakaznik\r\n FROM objednavka \r\n WHERE id=" . $data["id_obj"] . " LIMIT 1"); $data_obj = $data_obj[0]; //var_dump($data); $message = ""; $message .= "<h1>Cenová ponuka pre objednávku č. " . $data_obj["c_obj"] . " / " . $data["id"] . "</h1>"; $message .= "<h5>Objednávka zo dňa: " . $data_obj["datum"] . "</h5>"; $message .= "<div class=\"print_hlavicka\">"; if ($data_obj[id_zakaznik] > 0) { $meno_zakaznika = sql_query("SELECT meno, adresa, ico_icdph, telefon, email FROM uzivatel WHERE id={$data_obj['id_zakaznik']} LIMIT 1"); $meno_zakaznika = $meno_zakaznika[0]; $data[meno] = $meno_zakaznika[meno]; $data[adresa] = $meno_zakaznika[adresa]; $data[ico_icdph] = $meno_zakaznika[ico_icdph]; $data[telefon] = $meno_zakaznika[telefon]; $data[email] = $meno_zakaznika[email]; $cenova_hladina = sql_query("SELECT id_c_hladina FROM uzivatel WHERE id={$data_obj['id_zakaznik']}"); $cenova_hladina = $cenova_hladina[0][id_c_hladina]; } $message .= "<div class=\"print_odberatel\"><table class=\"print_odberatel\"><tr><td></td><td><strong>Objednávateľ:</strong></td></tr>"; $message .= "<tr><td></td><td class=\"print_bigger\">" . $data["meno"] . "</td></tr>"; $message .= "<tr><td></td><td>" . $data["adresa"] . "</td></tr>"; $message .= "<tr><td>IČO:</td><td>" . $data["ico_icdph"] . "</td></tr>"; $message .= "<tr><td>tel.:</td><td>" . $data["telefon"] . "</td></tr>"; $message .= "<tr><td>email:</td><td>" . $data["email"] . "</td></tr>"; $message .= "</table>"; $message .= "</div>"; //var_dump($dekor); echo "<div class=\"print\">"; echo $message; echo "</div>"; echo "</div>"; echo "<div id=\"content\" class=\"print_hlavicka4\">"; if ($data["id_vyrobca"] > 0 or !empty($data["id_vyrobca"])) { $data["id_vyrobca"] = sql_query("SELECT meno FROM vyrobca WHERE id = " . $data["id_vyrobca"] . ""); $data["id_vyrobca"] = $data["id_vyrobca"][0][meno]; } else { $data["id_vyrobca"] = ""; } if ($data["id_dekor"] > 0 or !empty($data["id_dekor"])) { $data["dekor"] = sql_query("SELECT meno, stvorakov FROM dekor WHERE id = " . $data["id_dekor"] . ""); $data["dekor_stvorakov"] = $data["dekor"][0][stvorakov]; $data["dekor"] = $data["dekor"][0][meno]; } else { $data["id_dekor"] = ""; $custom_price = 1; } if (empty($data["dekor_stvorakov"]) or $data["dekor_stvorakov"] <= 0) { $data["dekor_stvorakov"] = def_value("default_stvorak", "hodnota"); } echo "<strong>" . $data["material"] . "<br>" . $data["id_vyrobca"] . " " . $data["dekor"] . " " . $data["dekor_vlastny"] . "</strong> <br>\r\n (" . $data["dekor_stvorakov"] . "m2 v tabuli)"; if (empty($page) or $page == 1) { if ($_POST["submit_page1"]) { $cenova_hladina = sec_input(sec_sql($_POST["cenova_hladina"])); $form_data[cenova_hladina] = $cenova_hladina; $vlastna_cena = sec_input(sec_sql($_POST["vlastna_cena"])); $vyrobca_ABS = sec_input(sec_sql($_POST["vyrobca_ABS"])); $form_data[vyrobca_ABS] = $vyrobca_ABS; $material_hrubka = sec_input(sec_sql($_POST["material_hrubka"])); $form_data[material_hrubka] = $material_hrubka; if (!is_numeric($cenova_hladina) or empty($cenova_hladina)) { $error_msg[] = "Cenová hladina ma nesprávnu hodnotu"; } if (!is_numeric($vyrobca_ABS) or empty($vyrobca_ABS)) { $error_msg[] = "Výrobca ABS ma nesprávnu hodnotu"; } if (!is_numeric($material_hrubka) or empty($material_hrubka)) { $error_msg[] = "Hrúbka materiálu ma nesprávnu hodnotu"; } if ($vlastna_cena != "") { $vlastna_cena = str_replace(',', '.', $vlastna_cena); //if(!is_numeric($vlastna_cena) or $vlastna_cena<=0) $error_msg[] = "Cena za dekor môže byť číselná hodnota väčšia ako 0"; $vlastna_cena = floatval($vlastna_cena); $form_data[vlastna_cena] = $vlastna_cena; } else { $form_data[vlastna_cena] = 0; } //var_dump($error_msg); if (empty($error_msg)) { //var_dump($_POST); $_SESSION["posted_form_from_cp"] = $form_data; header("location: ?vyber=cp&order={$order}&revision={$revision}&action=create&cp={$cp}&page=2"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"udaje\">"; echo "<table id=\"cp\">"; $select_cenove_hladiny = array(); for ($i = 1; $i <= def_value("cenove_hladiny", "hodnota"); $i++) { $select_cenove_hladiny[] = $i; } $material_hrubka = def_value("default_hrubka", "hodnota"); // pre editaciu cenovej ponuky.... //========================================= $cp_abs_vyrobca = sql_query("SELECT DISTINCT abs_vyrobca from revizia_vyroba WHERE id_revizia={$revision} AND vymaz=0 ORDER BY id DESC"); //var_dump($cp_abs_vyrobca); $cp_abs_vyrobca = $cp_abs_vyrobca[0][abs_vyrobca]; if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $query = "SELECT c_hladina, material_hrubka, vyrobca_abs, vlastna_cena from cp WHERE id=" . sec_input(sec_sql($_GET["cp"])) . " LIMIT 1"; $cp_load = sql_query($query); $cp_load = $cp_load[0]; $cenova_hladina = $cp_load[c_hladina]; $material_hrubka = $cp_load[material_hrubka]; $cp_abs_vyrobca = $cp_load[vyrobca_abs]; $vlastna_cena = $cp_load[vlastna_cena]; } echo "<tr><td>"; echo select("cenova_hladina", "Cenová hladina", "SELECT id, meno from c_hladina WHERE skryt_zakaznikom=0", $cenova_hladina, "", "", "", "NO"); echo "</td><td></td></tr>"; echo "<tr><td>"; $query = "SELECT count(id) as counter from hrubka WHERE id_material=" . $data["id_material"] . ""; $has_hrubka = sql_query($query); $where = "WHERE "; if ($has_hrubka[0]["counter"] > 0) { $where .= "id_material=" . $data["id_material"] . ""; } else { $where .= "id_material=0"; } echo select("material_hrubka", "Hrúbka materiálu", "SELECT id, meno from hrubka {$where} ORDER BY meno", $material_hrubka, "", "", "", "NO"); echo "</td><td></td></tr>"; echo "<tr><td>"; echo select("vyrobca_ABS", "Výrobca ABS", "SELECT id, meno from cp_abs_vyrobca", $cp_abs_vyrobca, "", "", "", "NO"); echo "</td><td></td></tr>"; if ($custom_price == 1) { echo "<tr><td>"; echo textfield("vlastna_cena", $vlastna_cena, "Jednotková cena za dekor", 5, 5, ""); echo "</td><td></td></tr>"; } echo "</table>"; echo "</fieldset>"; echo submit("submit_page1", "Pokračovať"); } if ($page == 2) { $num_hrana = sql_query("SELECT id, hodnota FROM hrana WHERE vymaz=0 ORDER BY id"); if ($_POST["submit_page2"]) { //var_dump($_POST); $dekor_ks = sec_input(sec_sql($_POST["dekor_ks"])); $dekor_ks = check_float($dekor_ks); $cp_price_dekor_ks = sec_input(sec_sql($_POST["cp_price_dekor_ks"])); $_SESSION["posted_form_from_cp"][cp_price_dekor_ks] = $cp_price_dekor_ks; $dekor_m2 = sec_input(sec_sql($_POST["dekor_m2"])); $porez = sec_input(sec_sql($_POST["porez"])); $lepenie = sec_input(sec_sql($_POST["lepenie"])); $cnc_opracovanie = sec_input(sec_sql($_POST["cnc_opracovanie"])); $cnc_praca = sec_input(sec_sql($_POST["cnc_praca"])); $olep_obluk = sec_input(sec_sql($_POST["olep_obluk"])); foreach ($num_hrana as $hrana) { $hrana_[$hrana[id]] = sec_input(sec_sql($_POST["hrana_" . $hrana[id]])); $hrana_sluzba_[$hrana[id]] = sec_input(sec_sql($_POST["hrana_sluzba_" . $hrana[id]])); } for ($i = 0; $i < count($_POST["poznamka_text"]); $i++) { $poznamka_text[] = sec_input(sec_sql($_POST["poznamka_text"][$i])); $poznamka_hodnota[] = sec_input(sec_sql($_POST["poznamka_hodnota"][$i])); $poznamka_cena_jednotka[] = sec_input(sec_sql($_POST["poznamka_cena_jednotka"][$i])); } if (!empty($dekor_ks)) { if (!is_numeric($dekor_ks)) { $error_msg[] = "Cena materiálu je povinný údaj"; } $_SESSION["posted_form_from_cp"][dekor_ks] = $dekor_ks; } else { $_SESSION["posted_form_from_cp"][dekor_ks] = 0; } if (!is_numeric($cp_price_dekor_ks)) { $error_msg[] = "cp_price_dekor_ks ma nesprávnu hodnotu"; } if (!empty($dekor_m2)) { $dekor_m2 = check_float($dekor_m2); if (!$dekor_m2) { $error_msg[] = "Materiál m2 musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][dekor_m2] = $dekor_m2; } else { $_SESSION["posted_form_from_cp"][dekor_m2] = 0; } $cp_price_dekor_m2 = sec_input(sec_sql($_POST["cp_price_dekor_m2"])); $_SESSION["posted_form_from_cp"][cp_price_dekor_m2] = $cp_price_dekor_m2; if (!empty($porez)) { $porez = check_float($porez); if (!$porez) { $error_msg[] = "Porez musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][porez] = $porez; } else { $_SESSION["posted_form_from_cp"][porez] = 0; } $cp_price_porez = sec_input(sec_sql($_POST["cp_price_porez"])); $_SESSION["posted_form_from_cp"][cp_price_porez] = $cp_price_porez; foreach ($num_hrana as $hrana) { if (!empty($hrana_[$hrana[id]])) { $hrana_[$hrana[id]] = check_float($hrana_[$hrana[id]]); if (!$hrana_[$hrana[id]]) { $error_msg[] = "Hrana {$hrana['id']} musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"]["hrana_{$hrana[id]}"] = $hrana_[$hrana[id]]; } else { $_SESSION["posted_form_from_cp"]["hrana_{$hrana[id]}"] = 0; } $cp_price_hrana_[$hrana[id]] = sec_input(sec_sql($_POST["cp_price_hrana_{$hrana[id]}"])); $_SESSION["posted_form_from_cp"]["cp_price_hrana_{$hrana[id]}"] = $cp_price_hrana_[$hrana[id]]; if (!empty($hrana_sluzba_[$hrana[id]])) { $hrana_sluzba_[$hrana[id]] = check_float($hrana_sluzba_[$hrana[id]]); if (!$hrana_sluzba_[$hrana[id]]) { $error_msg[] = "Služba Hrana {$hrana['id']} musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"]["hrana_sluzba_{$hrana[id]}"] = $hrana_sluzba_[$hrana[id]]; } else { $_SESSION["posted_form_from_cp"]["hrana_sluzba_{$hrana[id]}"] = 0; } $cp_price_hrana_sluzba_[$hrana[id]] = sec_input(sec_sql($_POST["cp_price_hrana_sluzba_{$hrana[id]}"])); $_SESSION["posted_form_from_cp"]["cp_price_hrana_sluzba_{$hrana[id]}"] = $cp_price_hrana_sluzba_[$hrana[id]]; } if (!empty($lepenie)) { $lepenie = check_float($lepenie); if (!$lepenie) { $error_msg[] = "Lepenie musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][lepenie] = $lepenie; } else { $_SESSION["posted_form_from_cp"][lepenie] = 0; } $cp_price_lepenie = sec_input(sec_sql($_POST["cp_price_lepenie"])); $_SESSION["posted_form_from_cp"][cp_price_lepenie] = $cp_price_lepenie; if (!empty($cnc_opracovanie)) { $cnc_opracovanie = check_float($cnc_opracovanie); if (!$cnc_opracovanie) { $error_msg[] = "Lepenie musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][cnc_opracovanie] = $cnc_opracovanie; } else { $_SESSION["posted_form_from_cp"][cnc_opracovanie] = 0; } $cp_price_cnc_opracovanie = sec_input(sec_sql($_POST["cp_price_cnc_opracovanie"])); $_SESSION["posted_form_from_cp"][cp_price_cnc_opracovanie] = $cp_price_cnc_opracovanie; if (!empty($cnc_praca)) { $cnc_praca = check_float($cnc_praca); if (!$cnc_praca) { $error_msg[] = "Lepenie musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][cnc_praca] = $cnc_praca; } else { $_SESSION["posted_form_from_cp"][cnc_praca] = 0; } $cp_price_cnc_praca = sec_input(sec_sql($_POST["cp_price_cnc_praca"])); $_SESSION["posted_form_from_cp"][cp_price_cnc_praca] = $cp_price_cnc_praca; if (!empty($olep_obluk)) { $olep_obluk = check_float($olep_obluk); if (!$olep_obluk) { $error_msg[] = "Lepenie musí byť číselný údaj"; } $_SESSION["posted_form_from_cp"][olep_obluk] = $olep_obluk; } else { $_SESSION["posted_form_from_cp"][olep_obluk] = 0; } $cp_price_olep_obluk = sec_input(sec_sql($_POST["cp_price_olep_obluk"])); $_SESSION["posted_form_from_cp"][cp_price_olep_obluk] = $cp_price_olep_obluk; for ($i = 0; $i < count($poznamka_text); $i++) { if (!empty($poznamka_text[$i])) { $_SESSION["posted_form_from_cp"][poznamka_text][$i] = $poznamka_text[$i]; //var_dump($poznamka_hodnota[$i]); $poznamka_hodnota_upr = check_float($poznamka_hodnota[$i]); if (!$poznamka_hodnota_upr) { $error_msg[] = "hodnota poznámky musí byť číselný údaj ({$i})"; } $_SESSION["posted_form_from_cp"][poznamka_hodnota][$i] = $poznamka_hodnota_upr; $poznamka_cena_jednotka_upr = check_float($poznamka_cena_jednotka[$i]); if (!$poznamka_cena_jednotka_upr) { $error_msg[] = "hodnota poznámky musí byť číselný údaj ({$i})"; } $_SESSION["posted_form_from_cp"][poznamka_cena_jednotka][$i] = $poznamka_cena_jednotka_upr; } } //var_dump($_SESSION["posted_form_from_cp"]); //die(); //var_dump($error_msg); if (empty($error_msg)) { //var_dump($_POST); //$_SESSION["posted_form_from_cp"]=$form_data; header("location: ?vyber=cp&order={$order}&revision={$revision}&action=create&cp={$cp}&page=3"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } // nacitanie dat pre formular, ak bol odoslany ale nespravne //var_dump($_SESSION["posted_form_from_cp"]); //die(); $cenova_hladina = $_SESSION["posted_form_from_cp"]["cenova_hladina"]; $vlastna_cena = $_SESSION["posted_form_from_cp"]["vlastna_cena"]; $dekor_ks = $_SESSION["posted_form_from_cp"]["dekor_ks"]; $dekor_m2 = $_SESSION["posted_form_from_cp"]["dekor_m2"]; $porez = $_SESSION["posted_form_from_cp"]["porez"]; $lepenie = $_SESSION["posted_form_from_cp"]["lepenie"]; $cnc_opracovanie = $_SESSION["posted_form_from_cp"]["cnc_opracovanie"]; $cnc_praca = $_SESSION["posted_form_from_cp"]["cnc_praca"]; $olep_obluk = $_SESSION["posted_form_from_cp"]["olep_obluk"]; foreach ($num_hrana as $hrana) { $hrana_[$hrana[id]] = $_SESSION["posted_form_from_cp"]["hrana_{$hrana[id]}"]; $hrana_sluzba_[$hrana[id]] = $_SESSION["posted_form_from_cp"]["hrana_sluzba_{$hrana[id]}"]; } if (empty($data["id_dekor"])) { $data["id_dekor"] = 0; } //var_dump($_SESSION["posted_form_from_cp"]); echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"udaje\">"; echo "<table class=\"table_cp\">"; echo "<tr><td>Cenová hladina: <strong>{$cenova_hladina}</strong></td>"; hidden("c_hladina", $cenova_hladina); $material_hrubka = $_SESSION["posted_form_from_cp"]["material_hrubka"]; $material_hrubka_name = sql_query("SELECT meno FROM hrubka WHERE id={$material_hrubka} LIMIT 1"); $material_hrubka_name = $material_hrubka_name[0][meno]; //var_dump(""); echo "<tr><td>Hrúbka materiálu: <strong>{$material_hrubka_name}</strong></td><td></td><td></td></tr>"; hidden("material_hrubka", $material_hrubka); echo "<td></td><td></td><td></td><td class=\"cp_spolu\"><strong>Spolu</strong></td></tr>"; $cal_lepenie = sql_query("SELECT sum(lepenie) as sum_dlzka from porez WHERE id_revizia={$revision}"); //var_dump($cal_lepenie); $lepenie = ceil($cal_lepenie[0][sum_dlzka] * 100) / 100; //riadok_cp_simple("cp_material_ks", $cenova_hladina, "material_ks", "Materiál ks", "AND id_material=".$data["id_material"].""); //riadok_cp_simple("cp_material_m2", $cenova_hladina, "material_m2", "Materiál m2", "AND id_material=".$data["id_material"].""); $cal_tabula = sql_query("SELECT sum(tabula) as sum_tabula from revizia_vyroba WHERE id_revizia={$revision} AND vymaz=0"); $dekor_ks = ceil($cal_tabula[0][sum_tabula] * 100) / 100; $cal_stvorak = sql_query("SELECT sum(stvorak) as sum_stvorak from revizia_vyroba WHERE id_revizia={$revision} AND vymaz=0"); $dekor_m2 = ceil($cal_stvorak[0][sum_stvorak] * 100) / 100; $cal_porez = sql_query("SELECT sum(porez) as sum_porez from revizia_vyroba WHERE id_revizia={$revision} AND vymaz=0"); $porez = ceil($cal_porez[0][sum_porez] * 100) / 100; if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $query = "SELECT * from cp WHERE id={$cp} LIMIT 1"; $cp_load = sql_query($query); //var_dump($cp_load); $cp_load = $cp_load[0]; $dekor_ks = $cp_load[dekor_ks]; $dekor_m2 = $cp_load[dekor_m2]; $porez = $cp_load[porez]; $lepenie = $cp_load[lepenie]; $cnc_opracovanie = $cp_load[cnc_priprava]; $cnc_praca = $cp_load[cnc_praca]; $olep_obluk = $cp_load[olep_obluk]; } $dekor_ks_field = riadok_cp_simple("cp_dekor_ks", $cenova_hladina, "dekor_ks", "Materiál ks *", "AND id_dekor=" . $data["id_dekor"] . "", $dekor_ks, $vlastna_cena); $cal_value = sql_query("SELECT ROUND(sum(stvorak), 2) as sum_stvorak from porez WHERE id_revizia={$revision}"); $cal_value_stvorak = $cal_value[0][sum_stvorak]; /*$query_cena = "SELECT cena from cp_dekor_ks WHERE vymaz=0 AND id_c_hladina=$cenova_hladina AND id_dekor=".$data["id_dekor"]." ORDER BY id DESC LIMIT 1"; $field_cena = sql_query($query_cena); * */ //var_dump($dekor_ks_field); $field_cena_stvorak = $dekor_ks_field; if ($field_cena_stvorak > 0) { $field_cena_stvorak = $field_cena_stvorak / $data["dekor_stvorakov"] * 1.1; $field_cena_stvorak = ceil($field_cena_stvorak * 100) / 100; } else { $field_cena_stvorak = "0"; } //var_dump($field_cena_stvorak); echo "<tr><td class=\"cp_value\">" . textfield("cp_pas_sirka", "", "šírka pásu v mm", 5, 3) . "</td><td></td><td></td><td></td></tr>"; riadok_cp_simple("cp_dekor_m2", $cenova_hladina, "dekor_m2", "Materiál m2 ({$cal_value_stvorak} m2)", "AND id_dekor=" . $data["id_dekor"] . "", $dekor_m2, $field_cena_stvorak, $field_cena_stvorak); $por = 0; if ($dekor_ks > 0) { $por = ceil($dekor_ks) * 17; } if ($dekor_m2 > 0) { $por = $por + 17; } if ($porez <= 0) { $porez = $por; } $no_calc = 0; if ($data["id_material"] == 12 or $data["id_material"] == 14) { $no_calc = 1; } ?> <script> var no_calc = <?php echo $no_calc; ?> ; </script> <?php riadok_cp_simple("cp_porez", $cenova_hladina, "porez", "Porez", "", $porez); // ==================== riadok CP ================ $vyrobca_ABS = $_SESSION["posted_form_from_cp"]["vyrobca_ABS"]; $vyrobca_ABS_name = sql_query("SELECT meno FROM cp_abs_vyrobca WHERE id={$vyrobca_ABS} LIMIT 1"); $vyrobca_ABS_name = $vyrobca_ABS_name[0][meno]; //var_dump(""); echo "<tr><td>Výrobca ABS: <strong>{$vyrobca_ABS_name}</strong></td><td></td><td></td></tr>"; $num_hrana = sql_query("SELECT id, hodnota FROM hrana WHERE vymaz=0 ORDER BY id"); foreach ($num_hrana as $hrana) { $cal_value = sql_query("SELECT sum(dlzka) as sum_dlzka, sum(dlzka_nadmiera) as sum_dlzka_nadmiera from porez_hrana WHERE id_revizia={$revision} AND id_hrana=" . $hrana[id] . ""); $cal_value_abs = $cal_value[0][sum_dlzka]; //$cal_value_abs = round(($cal_value_abs+40)/1000, 2); $cal_value_abs = round($cal_value_abs * 1.1 / 1000, 2); $cal_value_abs = ceil($cal_value_abs * 100) / 100; $cal_value_abs_sluzba = $cal_value[0][sum_dlzka] / 1000; $cal_value_abs_sluzba = ceil($cal_value_abs_sluzba * 100) / 100; //var_dump($cal_value); //var_dump($hrana); if (!empty($_SESSION["posted_form_from_cp"]["hrana_{$hrana[id]}"])) { $cal_value_abs = $_SESSION["posted_form_from_cp"]["hrana_{$hrana[id]}"]; } if (!empty($_SESSION["posted_form_from_cp"]["hrana_sluzba_{$hrana[id]}"])) { $cal_value_abs_sluzba = $_SESSION["posted_form_from_cp"]["hrana_sluzba_{$hrana[id]}"]; } if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $query = "SELECT cp_hrana.cena FROM `cp_hrana`\r\n LEFT JOIN cp_abs\r\n ON cp_hrana.id_abs = cp_abs.id \r\n WHERE id_cp={$cp} AND cp_abs.id_hrana={$hrana['id']} LIMIT 1"; $cp_load = sql_query($query); $cp_load = $cp_load[0]; $cal_value_abs = $cp_load[cena]; $query = "SELECT cp_hrana_sluzba.cena FROM `cp_hrana_sluzba`\r\n LEFT JOIN cp_abs_sluzba\r\n ON cp_hrana_sluzba.id_abs = cp_abs_sluzba.id \r\n WHERE id_cp={$cp} AND cp_abs_sluzba.id_hrana={$hrana['id']} LIMIT 1"; $cp_load_sluzba = sql_query($query); $cp_load_sluzba = $cp_load_sluzba[0]; //print_r($query."<br>"); $cal_value_abs_sluzba = $cp_load_sluzba[cena]; //print_r("- ".$cal_value_abs."<br>"); //print_r("--- ".$cal_value_abs_sluzba."<br>"); } riadok_cp_simple("cp_abs", $cenova_hladina, "hrana_{$hrana['id']}", $hrana[hodnota], "AND id_hrana=" . $hrana[id] . " AND id_abs_vyrobca=" . $vyrobca_ABS . "", $cal_value_abs); riadok_cp_simple("cp_abs_sluzba", $cenova_hladina, "hrana_sluzba_{$hrana['id']}", "- olepenie " . $hrana[hodnota], "AND id_hrana=" . $hrana[id] . "", $cal_value_abs_sluzba); } //var_dump($_SESSION["posted_form_from_cp"]); // ==================== riadok CP ================ riadok_cp_simple("cp_lepenie", $cenova_hladina, "lepenie", "Lepenie", "", $lepenie); riadok_cp_simple("cp_cnc_opracovanie", $cenova_hladina, "cnc_opracovanie", "CNC opracovanie", "", $cnc_opracovanie); riadok_cp_simple("cp_cnc_praca", $cenova_hladina, "cnc_praca", "CNC praca", "", $cnc_praca); riadok_cp_simple("cp_olep_obluk", $cenova_hladina, "olep_obluk", "Olep oblúka", "", $olep_obluk); echo "</table>"; echo "<table class=\"table_cp_poznamka\">\r\n <tr><th>Ďalšie položky</th><th>počet</th><th>jednotka</th></tr>"; if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $num_poznamka = sql_query("SELECT popis, hodnota, cena from cp_sluzba WHERE id_cp={$cp}"); } if (isset($_SESSION["posted_form_from_cp"]["poznamka_text"]) and count($_SESSION["posted_form_from_cp"]["poznamka_text"]) >= 1) { for ($i = 0; $i < count($_SESSION["posted_form_from_cp"]["poznamka_text"]); $i++) { $num_poznamka[$i] = array("popis" => $_SESSION["posted_form_from_cp"]["poznamka_text"][$i], "hodnota" => $_SESSION["posted_form_from_cp"]["poznamka_hodnota"][$i], "cena" => $_SESSION["posted_form_from_cp"]["poznamka_cena_jednotka"][$i]); } } //var_dump(count($_SESSION["posted_form_from_cp"]["poznamka_text"])); //var_dump($num_poznamka); if (count($num_poznamka) == 0) { $num_poznamka[] = 1; } foreach ($num_poznamka as $poznamka) { //$poznamka_text = $_SESSION["posted_form_from_cp"]["poznamka_text"]; $poznamka_text = $poznamka[popis]; $poznamka_hodnota = $poznamka[hodnota]; $poznamka_cena_jednotka = $poznamka[cena]; echo "<tr class=\"tr_cp_poznamka\"><td>"; echo textfield("poznamka_text[]", $poznamka_text, "", 38, 30, "cp_poznamka_text"); echo "</td><td class=\"cp_value\">"; echo textfield("poznamka_hodnota[]", $poznamka_hodnota, "", 5, 5, "cp_poznamka_hodnota"); echo "</td><td>"; echo textfield("poznamka_cena_jednotka[]", $poznamka_cena_jednotka, "", 5, 5, "cp_poznamka_cena_jednotka"); if (!empty($poznamka_cena_jednotka)) { $cp_spolu = round($poznamka_cena_jednotka * $poznamka_hodnota, 2); } echo "</td><td class=\"cp_spolu\">{$cp_spolu}</td></tr>"; } echo "</table>"; $query_polozky_cp = "SELECT meno FROM polozky_cp WHERE vymaz=0 ORDER BY meno"; $polozky_cp = sql_query($query_polozky_cp); for ($i = 0; $i < count($polozky_cp); $i++) { $polozky_cp_riadok[$i] = "\"" . $polozky_cp[$i]["meno"] . "\""; } //var_dump($polozky_cp_riadok); if ($janko == "666") { ?> <script> $(function() { $("body").on("input click", ".textfield_cp_poznamka_text input", function(){ $(this).autocomplete({ source: [ <?php echo implode(", ", $polozky_cp_riadok); ?> ], autoFocus: true }); }); }); </script> <?php } ?> <?php echo "<div id=\"add_more_buttons\"><div id=\"vloz_riadok_cp\"><input type=\"button\" value=\"Vlož ďalší riadok\"></div></div>"; echo "<table class=\"table_cp_spolu\">"; echo "<tr><td><strong>Spolu:</strong></td><td></td><td></td><td class=\"cp_spolu_sum\"></td></tr>"; echo "</table>"; echo "</fieldset>"; echo submit("submit_page2", "Uložiť"); //echo "<div id=\"add_more_buttons\"><div id=\"vloz_riadok\"><input type=\"button\" value=\"Vlož ďalší riadok\"></div></div>"; echo "</div>"; } echo "</form>"; if ($page == 3) { $form_data = $_SESSION["posted_form_from_cp"]; //print_r($form_data); $all_sum = 0; // vypocty ==================== $query = "SELECT cena from cp_dekor_ks \r\n WHERE id=" . $form_data[cp_price_dekor_ks] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; if (empty($j_cena)) { $j_cena = $form_data[vlastna_cena]; } $dekor_ks_sum = $j_cena * $form_data[dekor_ks]; $all_sum += $dekor_ks_sum; $dekor_m2_sum = $form_data[cp_price_dekor_m2] * $form_data[dekor_m2]; $all_sum += $dekor_m2_sum; $query = "SELECT cena from cp_porez \r\n WHERE id=" . $form_data[cp_price_porez] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; $porez_sum = $j_cena * $form_data[porez]; $all_sum += $porez_sum; $query = "SELECT cena from cp_lepenie \r\n WHERE id=" . $form_data[cp_price_lepenie] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; $lepenie_sum = $j_cena * $form_data[lepenie]; $all_sum += $lepenie_sum; $query = "SELECT cena from cp_cnc_opracovanie \r\n WHERE id=" . $form_data[cp_price_cnc_opracovanie] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; $cnc_opracovanie_sum = $j_cena * $form_data[cnc_opracovanie]; $all_sum += $cnc_opracovanie_sum; $query = "SELECT cena from cp_cnc_praca \r\n WHERE id=" . $form_data[cp_price_cnc_praca] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; $cnc_praca_sum = $j_cena * $form_data[cnc_praca]; $all_sum += $cnc_praca_sum; $query = "SELECT cena from cp_olep_obluk \r\n WHERE id=" . $form_data[cp_price_olep_obluk] . ""; $j_cena = sql_query($query); $j_cena = $j_cena[0][cena]; $olep_obluk_sum = $j_cena * $form_data[olep_obluk]; $all_sum += $olep_obluk_sum; //var_dump($olep_obluk_sum); // vypocty ==================== $query = "INSERT INTO cp (\r\n id_revizia, c_hladina, material_hrubka, vyrobca_abs, vlastna_cena, \r\n dekor_ks, id_dekor_ks, dekor_ks_sum, dekor_m2, dekor_m2_jedn, dekor_m2_sum,\r\n porez, id_porez, porez_sum,\r\n lepenie, id_lepenie, lepenie_sum,\r\n cnc_priprava, id_cnc_priprava, cnc_priprava_sum,\r\n cnc_praca, id_cnc_praca, cnc_praca_sum,\r\n olep_obluk, id_olep_obluk, olep_obluk_sum,\r\n datum, vytvoril\r\n )\r\n VALUES (\r\n {$revision}, {$form_data['cenova_hladina']}, {$form_data['material_hrubka']}, {$form_data['vyrobca_ABS']}, {$form_data['vlastna_cena']},\r\n {$form_data['dekor_ks']}, {$form_data['cp_price_dekor_ks']}, {$dekor_ks_sum}, {$form_data['dekor_m2']}, {$form_data['cp_price_dekor_m2']}, {$dekor_m2_sum},\r\n {$form_data['porez']}, {$form_data['cp_price_porez']}, {$porez_sum},\r\n {$form_data['lepenie']}, {$form_data['cp_price_lepenie']}, {$lepenie_sum},\r\n {$form_data['cnc_opracovanie']}, {$form_data['cp_price_cnc_opracovanie']}, {$cnc_opracovanie_sum},\r\n {$form_data['cnc_praca']}, {$form_data['cp_price_cnc_praca']}, {$cnc_praca_sum},\r\n {$form_data['olep_obluk']}, {$form_data['cp_price_olep_obluk']}, {$olep_obluk_sum},\r\n now(), {$_SESSION['username']}\r\n )\r\n "; //print_r($query); //die(); mysql_query("BEGIN"); $sql_cp = sql_insert($query); $cp_id = $sql_cp["inserted_id"]; //var_dump($cp_id); // vkladanie do tabulky $num_hrana = sql_query("SELECT id, hodnota FROM hrana WHERE vymaz=0 ORDER BY id"); foreach ($num_hrana as $hrana) { $j_cena = sql_query("SELECT cena from cp_abs \r\n WHERE id=" . $form_data["cp_price_hrana_{$hrana[id]}"] . ""); $sum = $j_cena[0][cena] * $form_data["hrana_{$hrana[id]}"]; $all_sum += $sum; $query_poznamka = "INSERT into cp_hrana (id_cp, id_abs, cena, sum)\r\n VALUES ({$cp_id}, " . $form_data["cp_price_hrana_{$hrana[id]}"] . ",\r\n " . $form_data["hrana_{$hrana[id]}"] . ", " . round($sum, 2) . ")"; //print_r($form_data["hrana_sluzba_{$hrana[id]}"]); //print_r($query_poznamka."<br>"); sql_insert($query_poznamka); $j_cena = sql_query("SELECT cena from cp_abs_sluzba \r\n WHERE id=" . $form_data["cp_price_hrana_sluzba_{$hrana[id]}"] . ""); $sum = $j_cena[0][cena] * $form_data["hrana_sluzba_{$hrana[id]}"]; $all_sum += $sum; $query_poznamka = "INSERT into cp_hrana_sluzba (id_cp, id_abs, cena, sum)\r\n VALUES ({$cp_id}, " . $form_data["cp_price_hrana_sluzba_{$hrana[id]}"] . ",\r\n " . $form_data["hrana_sluzba_{$hrana[id]}"] . ", " . round($sum, 2) . ")"; sql_insert($query_poznamka); //print_r($query_poznamka."<br>"); //var_dump(); } //die(); // vkladanie do tabulky sluzba pre poznamky for ($i = 0; $i < count($form_data[poznamka_text]); $i++) { $sum = $form_data[poznamka_hodnota][$i] * $form_data[poznamka_cena_jednotka][$i]; $all_sum += $sum; $query_poznamka = "INSERT into cp_sluzba (id_cp, popis, hodnota, cena, sum)\r\n VALUES ({$cp_id}, \"{$form_data[poznamka_text][$i]}\", \r\n {$form_data[poznamka_hodnota][$i]}, \r\n {$form_data[poznamka_cena_jednotka][$i]}, " . round($sum, 2) . ")"; sql_insert($query_poznamka); //var_dump($query_poznamka); } //var_dump($all_sum); //die(); sql_update("UPDATE cp SET all_sum={$all_sum} WHERE id={$cp_id}"); mysql_query("COMMIT"); header("location: ?vyber=cp&order={$order}&revision={$revision}&action=display_all"); } }
function formular_skrine($fieldsets_c, $form_data, $secure_key = "") { //print_r("=============================="); //print_r($form_data); if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } //var_dump($vyrobca); //var_dump($form_data); //var_dump($dekor); echo "<div id=\"content\">"; echo "<form method=\"POST\" id=\"formular\">"; echo "<fieldset id=\"udaje\"><legend>Vaše údaje</legend>"; if ($_SESSION["logged"] == 1) { echo "<script>var logged=1;</script>"; echo "<div class=\"form_zakaznik_text\">"; echo textfield("zakaznik", "", "Zákazník", 50, 20); echo "</div>"; } echo textfield("meno", $meno, "Meno / Firma *", 40, 20, "", "Povinný údaj:<br> vpíšte Vaše meno alebo názov firmy"); echo textfield("adresa", $adresa, "Adresa", 50, 20); echo textfield("ico_icdph", $ico_icdph, "IČO / IČ DPH", 18, 20); echo textfield("telefon", $telefon, "telefón *", 20, 20, "", "Povinný údaj"); if ($_SESSION["logged"] == 1 and $email == "") { $email = def_value("default_email", "hodnota"); } echo textfield("email", $email, "email *", 50, 20, "", "Povinný údaj:<br> vpíšte Váš email na ktorý Vám bude zaslané potvrdenie objednávky"); $csrf_key = md5(uniqid(rand(), TRUE)); $_SESSION["csrf_key"] = $csrf_key; //$_SESSION["janko"] = microtime(); echo textfield("sirka", $sirka, "šírka (mm)", 5, 6, "sirka_skrina"); echo textfield("vyska", $vyska, "výška (mm)", 5, 6, "vyska_skrina"); echo textfield("dvere_ks", $dvere_ks, "počet dverí", 1, 1, "dvere_ks"); echo select("madlo", "madlo", "SELECT id, hodnota, meno FROM madlo WHERE vymaz=0 order by id", $madlo, "", "", "", "NO"); echo select("farba", "farba", "SELECT id, hodnota, meno FROM farba WHERE vymaz=0 order by id", $farba, "", "", "", "NO"); $options = array(18 => "18 mm"); echo select("hrubka_skrine", "hrúbka", "", $hrubka_skrine, "", "", "", "NO", $options); //var_dump($_SESSION); hidden("secure_csrf", $csrf_key); hidden("svg", ""); if (!empty($secure_key)) { hidden("secure_key", $secure_key); } echo "</fieldset>"; echo "\r\n <script src=\"assets/addons/Snapsvg/dist/snap.svg-min.js\" type=\"text/javascript\"></script>\r\n <script src=\"assets/script/script_skrine.js?" . filemtime("assets/script/script_skrine.js") . "\" type=\"text/javascript\"></script>\r\n <div id=\"snap_skrine\">"; if (empty($svg)) { echo "<svg id=\"paper_skrine\"></svg>"; } else { echo $svg; } echo "</div>\r\n\r\n <div class=\"skrina_dvere\">"; for ($i = 1; $i <= $form_data[dvere_ks]; $i++) { //var_dump($form_data["dvere".$i]); echo "<div class='dvere' id='dvere" . $i . "' data-poradie='" . $i . "'>"; echo "<div class='dvere_sirka'>"; echo "dvere " . $i . ""; if ($_SESSION["logged"] == 1) { echo "<input type='text' size='5' maxlength='7' title='' name='dvere[" . $i . "]' value='" . $form_data["dvere" . $i]["sirka"] . "'>"; } echo "<div class=\"delenie\">"; echo "<span>1/1: <input type=\"radio\" name=\"delenie[" . $i . "]\" value=\"1\"></span>"; echo "<span>1/2: <input type=\"radio\" name=\"delenie[" . $i . "]\" value=\"2\"></span>"; echo "<span>1/3: <input type=\"radio\" name=\"delenie[" . $i . "]\" value=\"3\"></span>"; echo "<span>1/4: <input type=\"radio\" name=\"delenie[" . $i . "]\" value=\"4\"></span>"; echo "<span>1/5: <input type=\"radio\" name=\"delenie[" . $i . "]\" value=\"5\"></span>"; echo "</div>"; echo "</div>"; foreach ($form_data["dvere" . $i]["predel"] as $key => $predel) { echo "<div class='dvere_predel' data-poradierow='" . $predel["predel"] . "'>"; echo "<div class='predel_div'><label for='dvere" . $i . "[]'>" . $predel["predel"] . ". predel výška</label>"; echo "<input type='number' class='predel' size='3' maxlength='4' title='' name='dvere" . $i . "[" . $predel["predel"] . "]' value='" . $predel["vyska"] . "'></div>"; $checked = !empty($predel["lock"]) ? "checked" : ""; echo "<div class='skrina_lock'><label class='lock_icon " . (!empty($predel["lock"]) ? "locked" : "") . "'></label><input type='checkbox' class='lock' name='lock_dvere" . $i . "[" . $predel["predel"] . "]' class=\"\" {$checked}></div>"; $checked = !empty($predel["zrkadlo"]) ? "checked" : ""; echo "<div><label>zrkadlo</label><input type='checkbox' class='zrkadlo' name='zrkadlo_dvere" . $i . "[" . $predel["predel"] . "]' class=\"\" {$checked}></div>"; $checked = !empty($predel["lakobel"]) ? "checked" : ""; echo "<div><label>lakobel</label><input type='checkbox' class='lakobel' name='lakobel_dvere" . $i . "[" . $predel["predel"] . "]' class=\"\" {$checked}></div>"; echo "<div class='skrina_vyrobca'>"; $_GET["select_material"] = 1; $_GET["dvere"] = $i; $_GET["row"] = $predel["predel"]; $_GET["selected"] = $predel["vyrobca"]; include "select_vyrobca_skrina.php"; echo "</div>"; echo "<div class='skrina_dekor'>"; $_GET["select_vyrobca"] = $predel["vyrobca"]; $_GET["selected"] = $predel["dekor"]; include "select_dropdown_skrina.php"; echo "</div>"; echo "<div class='skrina_iny_dekor'><label for='iny_dekor" . $i . "[]'>Iný dekor</label>"; echo "<input type='text' class='iny_dekor' size='10' maxlength='55' title='' name='iny_dekor_dvere" . $i . "[" . $predel["predel"] . "]' value='" . $predel["iny_dekor"] . "'></div>"; $checked = !empty($predel["vertikalne"]) ? "checked" : ""; echo "<div class='skrina_vertikalne'><label>hor.</label><input type='checkbox' class='vertikalne' name='vertikalne_dvere" . $i . "[" . $predel["predel"] . "]' class=\"\" {$checked}></div>"; echo "</div>"; } echo "</div>"; } echo "</div>"; textarea("komentar", $komentar, "Váš komentár", 50, 4, "komentar"); echo submit("submit", "Pokračuj >>"); echo "\r\n </form>\r\n </div>\r\n </div>"; }
function edit($table, $vyber, $id) { $error_msg = array(); if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $adresa = sec_sql(sec_input($_POST["adresa"])); $dic = sec_sql(sec_input($_POST["dic"])); $telefon = sec_sql(sec_input($_POST["telefon"])); $email = sec_sql(sec_input($_POST["email"])); $email2 = sec_sql(sec_input($_POST["email2"])); $old_password = sec_sql(sec_input($_POST["old_password"])); $password = sec_sql(sec_input($_POST["password"])); $password_confirm = sec_sql(sec_input($_POST["password_confirm"])); //if(strlen($meno)>30 OR strlen($meno)<2) $error_msg[] = "Meno môže mať od 4 do 30 znakov"; if ($table == "uzivatel") { //var_dump($skupina); if (!empty($email)) { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } } if (!empty($adresa)) { if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } } if (!empty($telefon)) { if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } } if (!is_numeric($id) or empty($id)) { $error_msg[] = "ID ma nesprávnu hodnotu"; } if (!empty($password) and !empty($old_password) and !empty($password_confirm)) { $old_password_original = sql_query("SELECT heslo FROM {$table} WHERE id={$id} AND heslo=\"" . md5($old_password) . "\" LIMIT 1"); if (count($old_password_original) < 1) { $error_msg[] = "Staré heslo nie je správne"; } if (strlen($password) < 4 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } if (empty($error_msg)) { if ($table == "uzivatel") { if (empty($password) or empty($old_password) or empty($password_confirm)) { $query = "UPDATE {$table}\r\n SET adresa = \"{$adresa}\", dic = \"{$dic}\", \r\n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\"\r\n WHERE id = {$id}"; } else { $password = md5($password); $query = "UPDATE {$table}\r\n SET heslo = \"{$password}\"\r\n WHERE id = {$id}"; } } sql_update($query); //echo $id_perm_uroven; header("location: index.php?vyber={$vyber}"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, hodnota, meno from " . PREFIX . "{$table} WHERE id={$id}"; if ($table == "uzivatel") { $query = "Select id, meno, adresa, dic, telefon, email, email2, skupina, id_c_hladina, perm_uroven_id from {$table} WHERE id={$id}"; } $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\" enctype=\"multipart/form-data\">"; //hidden("id", $value[id]); echo "<div class=\"bold\">" . $value[meno] . "</div>"; if ($table != "uzivatel") { echo textfield("hodnota", $value[hodnota], "Hodnota", 40, 30); } if ($table == "uzivatel") { echo textfield("adresa", $value[adresa], "adresa", 40, 20); echo textfield("dic", $value[dic], "dič", 40, 20); echo textfield("telefon", $value[telefon], "telefón", 40, 20); echo textfield("email", $value[email], "email", 40, 20); echo textfield("email2", $value[email2], "email2", 40, 20); echo "<div class=\"help_form\">Zmena hesla:</div>"; echo textfield("old_password", $value[password], "Staré heslo", 40, 20, "", "", 1); echo textfield("password", $value[password], "Nové heslo", 40, 20, "", "", 1); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20, "", "", 1); } echo submit("submit", "Odoslať"); echo "</form>"; }
function display($id, $revision = 0, $vyber = "vyrobny_plan") { if (empty($revision)) { $query = "SELECT id \r\n FROM revizia_vyrobny_plan \r\n WHERE id_vyrobny_plan = {$id}\r\n ORDER BY id DESC limit 1\r\n "; $revision = sql_query($query)[0]["id"]; } $upravil = $_SESSION[username]; //var_dump($revision); $query = "SELECT r.id, r.ks, r.atyp_text, r.id_revizia, pt.meno product_type, p.meno product, vpr.vymaz\r\n FROM objednavka_row r\r\n INNER JOIN product p\r\n ON r.id_product = p.id\r\n INNER JOIN product_type pt\r\n ON r.id_product_type = pt.id\r\n INNER JOIN vyrobny_plan_row vpr\r\n ON r.id = vpr.id_objednavka_row\r\n WHERE vpr.id_vyrobny_plan = {$id} AND\r\n vpr.id_revizia_vyrobny_plan = {$revision} \r\n ORDER BY r.id DESC"; //print_r($query); $products = sql_query($query); //var_dump($products); foreach ($products as $key => $product) { $query = "SELECT * from revizia r\r\n INNER JOIN objednavka o\r\n ON r.id_obj = o.id\r\n WHERE r.id = {$product["id_revizia"]}\r\n limit 1"; $products[$key]["revizia"] = sql_query($query)[0]; $products[$key]["options"] = sql_query("\r\n SELECT o.meno\r\n FROM objednavka_row_atribute as a \r\n INNER JOIN product_atribute_option as o\r\n ON a.id_product_atribute_option = o.id \r\n WHERE a.id_revizia = {$product["id_revizia"]}\r\n AND a.id_objednavka_row = {$product["id"]}\r\n ORDER BY a.id_product_atribute\r\n "); } if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $popis = sec_sql(sec_input($_POST["popis"])); $delivery = sec_sql(sec_input($_POST["delivery"])); $datum_vyvozu = sec_sql(sec_input($_POST["datum_vyvozu"])); if (strlen($meno) > 30 or strlen($meno) < 2) { $error_msg[] = "Meno môže mať od 4 do 30 znakov"; } if (strlen($datum_vyvozu) > 30 or strlen($datum_vyvozu) < 10) { $error_msg[] = "Dátum vývozu je povinný údaj a môže mať od 10 do 30 znakov"; } if (empty($error_msg)) { $query = "UPDATE vyrobny_plan SET\r\n meno = \"{$meno}\", popis = \"{$popis}\", delivery = \"{$delivery}\", \r\n datum_vyvozu = \"{$datum_vyvozu}\", vytvoril = \"{$upravil}\"\r\n WHERE id={$id}\r\n "; sql_insert($query); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $query = "SELECT * FROM vyrobny_plan \r\n WHERE id = {$id}\r\n "; $vyrobny_plan = sql_query($query)[0]; $meno = $vyrobny_plan["meno"]; $popis = $vyrobny_plan["popis"]; $datum = $vyrobny_plan["datum"]; $delivery = $vyrobny_plan["delivery"]; $datum_vyvozu = $vyrobny_plan["datum_vyvozu"]; $status = $vyrobny_plan["status"]; $komplet = $vyrobny_plan["komplet"]; //var_dump($products); echo "<h1>Výrobný plán č. {$id}-{$revision}/" . dateYear($datum) . " - {$meno}</h1>"; echo "<h3>dátum vývozu: " . dateDate($datum_vyvozu) . "</h3>"; echo "<h3>popis: " . $popis . "</h3>"; echo "<table class=\"vyr_plan_detail\">"; echo "<tbody>"; $poradie = 0; foreach ($products as $product) { $poradie = $poradie + 1; $removed = ""; if ($product["vymaz"] > 0) { $removed = "class=\"removed\""; } echo "<tr {$removed}>"; $opt = array(); foreach ($product["options"] as $option) { //var_dump($option[name]); $opt[] = $option[meno]; } $opt = empty($opt) ? "" : " (" . join(", ", $opt) . ")"; echo "<td class=\"product\"><span class=\"bold\">{$product["ks"]}x {$product["product_type"]} {$product["product"]}{$opt}</span>\r\n " . (!empty($product["atyp_text"]) ? "<br>- " . $product["atyp_text"] : "") . "</td>"; echo "<td class=\"revizia\">"; if (empty($product["revizia"]["id_zakaznik"])) { $odberatel = $product["revizia"]["meno"]; if (empty($product["revizia"]["doruc_mesto"])) { $odberatel .= !empty($product["revizia"]["mesto"]) ? ", " . $product["revizia"]["mesto"] : ""; } else { $odberatel .= ", " . $product["revizia"]["doruc_mesto"]; } } else { $query = "SELECT meno, mesto, doruc_mesto from uzivatel \r\n WHERE id = {$product["revizia"]["id_zakaznik"]}\r\n "; $uzivatel = sql_query($query)[0]; $odberatel = $uzivatel["meno"]; if (empty($uzivatel["doruc_mesto"])) { $odberatel .= !empty($uzivatel["mesto"]) ? ", " . $uzivatel["mesto"] : ""; } else { $odberatel .= ", " . $uzivatel["doruc_mesto"]; } } echo "<span class=\"bold\">{$odberatel}</span>\r\n obj. č. {$product["revizia"]["c_obj"]}/" . dateYear($product["revizia"]["datum"]) . " z " . dateDate($product["revizia"]["datum"]) . "\r\n "; echo "</td>"; echo "</tr>"; //var_dump($objednavka); } echo "</tbody></table>"; echo "<div class=\"edit_buttons\">"; echo "<a href=\"?vyber={$vyber}&action=edit&id={$id}&revision={$revision}\" class=\"button\">upraviť</a>"; echo "<a href=\"?vyber=print&revision={$revision}&action=vyrobny_plan&cp=" . $id . "\" target=\"_blank\" class=\"button\">vytlačiť priebežne</a>"; echo "<a href=\"?vyber=print&revision={$revision}&action=vp_stitky&cp=" . $id . "\" target=\"_blank\" class=\"button\">štítky</a>"; echo "<a href=\"?vyber=print&revision={$revision}&action=vyrobny_plan&cp=" . $id . "&sub=close\" target=\"_blank\" class=\"button\">vytlačiť pre VÝROBU</a>"; echo "</div>"; echo "<div class=\"vyrobny_plan_bottom_row\">"; echo "<div class=\"all_revisions\">"; $query = "SELECT id, datum, vytvoril\r\n FROM revizia_vyrobny_plan\r\n WHERE id_vyrobny_plan = {$id}\r\n ORDER BY datum DESC"; $all_revisions = sql_query($query); $poradie = 0; foreach ($all_revisions as $rev) { $selected = ""; if (empty($revision)) { if ($poradie == 0) { $selected = "selected"; } } else { if ($rev["id"] == $revision) { $selected = "selected"; } } echo "<div class=\"all_revisions_row {$selected}\">"; echo "<a href=\"?vyber={$vyber}&action=display&id={$id}&revision={$rev["id"]}\" class=\"\">revízia č. {$rev["id"]} z dňa " . dateFull($rev["datum"]) . "</a>"; echo "</div>"; $poradie = $poradie + 1; } if ($status > 1) { echo "<div id=\"add_csv_button\" class=\"add_csv_button_vyr_plan\">"; $cp_exists = count(sql_query("SELECT id FROM cp_vyrobny_plan where id_vyrobny_plan=\"{$id}\" LIMIT 1")); if ($cp_exists > 0) { echo "<a href=\"?vyber=cp_vyrobny_plan&order={$id}&revision={$revision}&action=display_all\">Zobraz Cenové ponuky</a><br>"; } echo "<a href=\"?vyber=cp_vyrobny_plan&order={$id}&revision={$revision}&action=create\">Vytvor Cenovú ponuku</a>"; echo "</div>"; echo "</div>"; } echo "<div class=\"vyrobny_plan_edit\">"; echo "<form method=\"POST\">"; echo textfield("meno", $meno, "Meno plánu *", 40, 20); echo textfield("datum_vyvozu", $datum_vyvozu, "Dátum vývozu *", 40, 20); $zobraz_vo = array(0 => "štandard", 1 => "48 hodín"); echo select("delivery", "typ dopravy", "", $delivery, "", "", "", "NO", $zobraz_vo); echo textarea("popis", $popis, "Popis", 25, 3, "popis", ""); echo submit("submit", "Odoslať"); echo "</form>"; echo "<div>" . ($komplet == 0 ? "<a href=\"?vyber=vyrobny_plan&id={$id}&action=close\" class=\"button\">VP Vyrobený</a>" : "<a href=\"?vyber=vyrobny_plan&id={$id}&action=open\" class=\"button\">Otvoriť VP</a>") . " </div>"; echo "<form method=\"POST\" class=\"status_form\">"; echo select("status", "Stav VP:", "SELECT id, meno FROM vyrobny_plan_status WHERE vymaz=0 ORDER BY id", $status, "", "", "", "NO"); echo submit("save_status", "Uložiť stav VP"); echo "</form>"; echo "</div>"; echo "</div>"; echo "</div>"; }
$where = array(); $where[] = "vp.vymaz=0"; $where[] = "vp.status=5"; if (!empty($_SESSION["filter_vyroba_od"])) { $where[] = "datum_vyroby >= \"{$_SESSION["filter_vyroba_od"]} 00:00:00\""; } else { $where[] = "datum_vyroby >= DATE_SUB(CURDATE(), INTERVAL {$day_limit} DAY)"; } if (!empty($_SESSION["filter_vyroba_do"])) { $where[] = "datum_vyroby <= \"{$_SESSION["filter_vyroba_do"]} 23:59:59\""; } echo "<h1>Výroba</h1>"; echo "<form method=\"POST\">"; echo "<div class=\"filter_vyroba clearfix\">"; echo textfield("filter_vyroba_od", $_SESSION["filter_vyroba_od"], "od:", 15, 10, "filter_vyroba_od datetime"); echo textfield("filter_vyroba_do", $_SESSION["filter_vyroba_do"], "do:", 15, 10, "filter_vyroba_do datetime"); echo select("filter_vyroba_zakaznik", "Filtruj zákazníkov:", "SELECT id, CONCAT(meno, ', ', doruc_mesto) meno FROM uzivatel WHERE skupina=2 AND vymaz=0 ORDER BY meno", $_SESSION["filter_vyroba_zakaznik"], "", "", ""); $filter = array("0" => "všetky", "NR" => "áno"); echo select("filter_vyroba_zakaznik_no", "Súkromné:", "", $_SESSION["filter_vyroba_zakaznik_no"], "", "", "", "NO", $filter); echo "</div>"; echo "<div class=\"filter_vyroba clearfix\">"; echo select("filter_vyroba_product_type", "Typ produktu:", "SELECT id, meno FROM product_type WHERE vymaz=0", $_SESSION["filter_vyroba_product_type"], "", "", ""); if (empty($_SESSION["filter_vyroba_product_type"])) { $prod_type = 0; $_SESSION["filter_vyroba_product"] = ""; } else { $prod_type = $_SESSION["filter_vyroba_product_type"]; } $product_query = "SELECT id, meno FROM product WHERE vymaz=0 AND id_product_type=\"{$prod_type}\" ORDER BY def DESC, meno"; echo select("filter_vyroba_product", "produkt", $product_query, $_SESSION["filter_vyroba_product"], "", "", "", ""); if (!empty($_SESSION["filter_vyroba_product_type"])) {
function edit($table, $vyber, $id, $sub, $page = 1) { $error_msg = array(); //dd($_POST); //exit(); if ($_POST[submit]) { $meno = sec_sql(sec_input($_POST["meno"])); $email = sec_sql(sec_input($_POST["email"])); $email_potvrdenie = sec_sql(sec_input($_POST["email_potvrdenie"])); $meno_potvrdenie = sec_sql(sec_input($_POST["meno_potvrdenie"])); $email_meno = sec_sql(sec_input($_POST["email_meno"])); if (strlen($meno) > 50 or strlen($meno) < 1) { $error_msg[] = "Meno môže mať od 1 do 50 znakov"; } if (empty($error_msg)) { if ($table == "dodavatel") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", email=\"{$email}\"\r\n WHERE id = {$id}"; } if ($table == "do_produkt") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", email_meno=\"{$email_meno}\"\r\n WHERE id = {$id}"; } sql_update($query); //echo $id_perm_uroven; header("location: index.php?vyber={$vyber}&sub={$table}&page={$page}"); exit; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select * from {$table} WHERE id={$id}"; $value = sql_query($query); $value = $value[0]; $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo "<form method=\"POST\">"; hidden("id", $value[id]); echo textfield("meno", $value[meno], "Meno", 50, 30); if ($table == "dodavatel") { echo textfield("email", $value[email], "Email", 50, 40); } if ($table == "do_produkt") { echo textfield("email_meno", $value[email_meno], "Email meno", 50, 40); } echo submit("submit", "Odoslať"); echo "<a href=\"?vyber={$vyber}&sub={$sub}\">Späť</a>"; echo "</form>"; }
$breadcrumb->assign($level['link'], $level['name']); $request['breadcrumb'] = $breadcrumb->parse(); $k = 0; $c_group = NULL; $result = $oConfigure->group(); while ($rs = $result->fetch()) { $rs = $hook->format($rs); $active = ''; if (!$_GET['gid'] && $k == 0 || $_GET['gid'] && $rs['id'] == $_GET['gid']) { $active = 'selected'; $c_group = $rs; } $rs['selected'] = $active; $tpl->assign($rs, 'cfg_group'); $k++; } $result = $oConfigure->view(" group_id = " . intval($c_group['id'])); while ($rs = $result->fetch()) { $rs = $hook->format($rs); $rs["set_function"] = $rs['set_function']; if ($rs["set_function"]) { eval('$value = ' . $rs["set_function"] . "'" . $rs['value'] . "','configure[" . $rs['code'] . "]');"); } else { $value = textfield("configure[" . $rs['code'] . "]", $rs['value']); } $rs["value"] = $value; $tpl->assign($rs, 'cfg_common'); } // configure common values $request['group_id'] = intval($c_group['id']); $tpl->assign($request);
function display_all($page, $vyber, $search_name) { echo "<h1>Všetky objednávky</h1>"; echo "<div class=\"filter_obj clearfix\">"; echo textfield("filter_by_obj_id", $_SESSION["search_id"], "č. obj:", 4, 3); echo textfield("filter_by_vlastne_cislo_obj", $_SESSION["search_vlastne_cislo_obj"], "zákaznícke č.obj:", 9, 5); $filtbyst = array("bez_rozpracovanych" => "Za posledných 30 dní - bez vymazaných", "iba_prijate" => "iba prijaté", "iba_rozpracovane" => "iba rozpracované", "aj_rozpracovane" => "Úplne všetky - aj vymazané"); echo check_visibility("filter_by_status", select("filter_by_status", "Filtruj objednávky:", "", $_SESSION["search_status"], "", "", "", "NO", $filtbyst)); echo "</div>"; echo "<div class=\"filter_obj clearfix\">"; echo select("filter_by_zakaznik", "Filtruj zákazníkov:", "SELECT id, CONCAT(meno, ', ', doruc_mesto) meno FROM uzivatel WHERE skupina=2 AND vymaz=0 ORDER BY meno", $_SESSION["search_zakaznik"], "", "", ""); $filter = array("0" => "všetky", "NR" => "áno"); echo select("filter_by_zakaznik", "Súkromné:", "", $_SESSION["search_zakaznik"], "", "", "", "NO", $filter); echo textfield("filter_by_name", $_SESSION["search_name"], "Meno (min. 3zn):", 5, 4); $filtbydeliv = array("0" => "všetky", "1" => "do 3 dní", "4" => "štandard"); echo check_visibility("filter_by_status", select("filter_by_delivery", "Filtruj dodanie:", "", $_SESSION["search_delivery"], "", "", "", "NO", $filtbydeliv)); echo "</div>"; echo "<div id=\"list_of_all\">"; $sec_code = "8975JK.!"; include_once 'searchbyname.php'; echo "<strong>kontakt </strong>(J.Vaško): 0904580149"; echo "</div>"; }
function formular_cp($order, $revision = 0, $fieldsets_c = 1, $form_data = "", $page = "") { if (isset($_GET["cp"])) { $cp = sec_input($_GET["cp"]); } if (!empty($form_data)) { foreach ($form_data as $key => $value) { ${$key} = $value; } } $data = sql_query("SELECT r.id, r.id_obj, r.meno, adresa, ico, telefon, email, komentar,\r\n DATE_FORMAT(datum, '%d. %m. %Y, %H:%i') AS datum\r\n FROM revizia r \r\n \r\n WHERE r.id={$revision} \r\n LIMIT 1"); $data = $data[0]; //var_dump($data); $data_obj = sql_query("SELECT DATE_FORMAT(datum, '%d. %m. %Y, %H:%i') AS datum, c_obj, id_zakaznik\r\n FROM objednavka \r\n WHERE id=" . $data["id_obj"] . " LIMIT 1"); $data_obj = $data_obj[0]; //var_dump($data); $message = ""; $message .= "<h1>Cenová ponuka pre objednávku č. " . $data_obj["c_obj"] . " / " . $data["id"] . "</h1>"; $message .= "<h5>Objednávka zo dňa: " . $data_obj["datum"] . "</h5>"; $message .= "<div class=\"print_hlavicka\">"; if ($data_obj[id_zakaznik] > 0) { $meno_zakaznika = sql_query("SELECT meno, adresa, mesto, psc, ico, dic, telefon, email \r\n \r\n FROM uzivatel WHERE id={$data_obj['id_zakaznik']} LIMIT 1"); $meno_zakaznika = $meno_zakaznika[0]; $data[meno] = $meno_zakaznika[meno]; $data[adresa] = $meno_zakaznika[adresa]; $data[mesto] = $meno_zakaznika[mesto]; $data[psc] = $meno_zakaznika[psc]; $data[ico] = $meno_zakaznika[ico]; $data[dic] = $meno_zakaznika[dic]; $data[telefon] = $meno_zakaznika[telefon]; $data[email] = $meno_zakaznika[email]; //$cenova_hladina = sql_query("SELECT id_c_hladina FROM uzivatel WHERE id=$data_obj[id_zakaznik]"); //$cenova_hladina = $cenova_hladina[0][id_c_hladina]; } $message .= "<div class=\"print_odberatel\"><table class=\"print_odberatel\"><tr><td></td><td><strong>Objednávateľ:</strong></td></tr>"; $message .= "<tr><td></td><td class=\"print_bigger\">" . $data["meno"] . "</td></tr>"; $message .= "<tr><td></td><td>" . $data["adresa"] . "</td></tr>"; $message .= "<tr><td></td><td>" . $data["psc"] . " " . $data["mesto"] . "</td></tr>"; $message .= "<tr><td>IČO:</td><td>" . $data["ico"] . "</td></tr>"; $message .= "<tr><td>DIČ:</td><td>" . $data["dic"] . "</td></tr>"; $message .= "<tr><td>tel.:</td><td>" . $data["telefon"] . "</td></tr>"; $message .= "<tr><td>email:</td><td>" . $data["email"] . "</td></tr>"; $message .= "</table>"; $message .= "</div>"; //var_dump($dekor); echo "<div class=\"print\">"; echo $message; echo "</div>"; echo "</div>"; echo "<div id=\"content\" class=\"print_hlavicka4\">"; if (empty($page) or $page == 1) { if ($_POST["submit_page1"]) { $fieldsets_c = count($_POST["id"]); for ($i = 0; $i < $fieldsets_c; $i++) { $id_objednavka_row[] = sec_input(sec_sql($_POST["id"][$i])); $zlava[] = str_replace(',', '.', sec_input(sec_sql($_POST["zlava"][$i]))); $product_price[] = str_replace(',', '.', sec_input(sec_sql($_POST["product_price"][$i]))); $id_cp_product[] = sec_input(sec_sql($_POST["id_cp_product"][$i])); $ks[] = sec_input(sec_sql($_POST["ks"][$i])); } $form_data[id_objednavka_row] = $id_objednavka_row; $form_data[id_cp_product] = $id_cp_product; $form_data[ks] = $ks; $form_data[zlava] = $zlava; $form_data[product_price] = $product_price; //var_dump($order); //var_dump($revision); if (empty($error_msg)) { $query = "INSERT INTO cp ( id_objednavka, id_revizia, vytvoril )\r\n VALUES ( {$order}, {$revision}, {$_SESSION['username']} )\r\n "; //print_r($query); //die(); mysql_query("BEGIN"); $sql_cp = sql_insert($query); $cp_id = $sql_cp["inserted_id"]; for ($i = 0; $i < count($form_data[id_objednavka_row]); $i++) { if (empty($form_data[product_price][$i])) { $product_price = sql_query("SELECT cena FROM cp_product WHERE id=" . $form_data[id_cp_product][$i] . " ORDER BY id DESC LIMIT 1")[0]["cena"]; } else { $product_price = $form_data[product_price][$i]; } //echo $product_price."<br>"; //$product_ks_sum = $product_ks_sum + sec_input($form_data["ks"][$i]); $product_price_sum = $product_price * sec_input($form_data["ks"][$i]); $products_prices_sums = $products_prices_sums + $product_price_sum; $zlava_E = $product_price_sum * $form_data["zlava"][$i] / 100; $po_zlave = $product_price_sum - $zlava_E; $po_zlave_sum = $po_zlave_sum + $po_zlave; $query_cp_row = "INSERT into cp_row (id_cp, id_objednavka_row, id_cp_product, \r\n ks, cena, zlava, sum)\r\n VALUES ({$cp_id},\r\n {$form_data[id_objednavka_row][$i]}, \r\n \"{$form_data[id_cp_product][$i]}\", \r\n {$form_data[ks][$i]},\r\n \"{$form_data[product_price][$i]}\",\r\n \"{$form_data[zlava][$i]}\",\r\n \"{$po_zlave}\"\r\n )"; //echo $query_cp_row."<br>"; sql_insert($query_cp_row); //var_dump($query_poznamka); } sql_update("UPDATE cp SET all_sum={$po_zlave_sum} WHERE id={$cp_id}"); mysql_query("COMMIT"); //dd($form_data); //$_SESSION["posted_form_from_cp"]=$form_data; header("location: ?vyber=cp&order={$order}&revision={$revision}&action=display_all"); } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } echo "<form method=\"POST\" id=\"formular\" enctype=\"multipart/form-data\">"; echo "<fieldset id=\"cp_rows\">"; // pre editaciu cenovej ponuky.... //========================================= $data_row = sql_query("SELECT * \r\n FROM objednavka_row\r\n WHERE id_revizia = " . $revision . "\r\n "); //var_dump($data_row); $fieldsets_c = count($data_row); for ($i = 0; $i < $fieldsets_c; $i++) { $ks[$i] = $data_row[$i][ks]; $id[$i] = $data_row[$i][id]; $product_type[$i] = $data_row[$i][id_product_type]; $product[$i] = $data_row[$i][id_product]; $product_delivery[$i] = $data_row[$i][id_product_delivery]; $atyp_text[$i] = $data_row[$i][atyp_text]; $data_row_option = sql_query("SELECT id_product_atribute, id_product_atribute_option \r\n FROM objednavka_row_atribute \r\n WHERE id_revizia=\"{$revision}\" AND id_objednavka_row=\"{$data_row[$i][id]}\""); //dd($form_data_row_option); foreach ($data_row_option as $option) { $data_rows[$i][$option["id_product_atribute"]] = $option["id_product_atribute_option"]; } if (isset($_GET["cp"]) and !empty($_GET["cp"])) { $query = "SELECT * from cp_row WHERE id_cp=" . sec_input(sec_sql($_GET["cp"])) . " AND id_objednavka_row=" . $data_row[$i][id] . ""; $cp_row = sql_query($query)[0]; $cena[$i] = $cp_row[cena]; $zlava[$i] = $cp_row[zlava]; //var_dump($cp_row); } } $data[id_all] = $id; $data[ks_all] = $ks; $data[product_type_all] = $product_type; $data[product_all] = $product; $data[product_delivery_all] = $product_delivery; $data[atyp_text_all] = $atyp_text; $data[product_atribute_options_all] = $data_rows; $data[product_price_all] = $cena; $data[zlava_all] = $zlava; $message = "<div class=\"print_hlavicka3\">\r\n <table>\r\n <tr>\r\n <th></th> \r\n <th style=\"width: 380px;\">produkt</th>\r\n <th style=\"width: 40px;\">množstvo</th>\r\n <th style=\"width: 70px;\">doprava</th> \r\n <th style=\"width: 50px;\">j.cena</th>\r\n <th style=\"width: 50px;\">Spolu</th>\r\n <th style=\"width: 90px;\">zľava %</th>\r\n <th style=\"width: 50px;\">po zľave</th>\r\n </tr>"; //echo hidden("name", "value"); //var_dump($data); $fieldsets_c = count($data["ks_all"]); for ($i = 0; $i < $fieldsets_c; $i++) { $poradie = 0; $poradie = $i + 1; $message .= "<tr>\r\n <td class=\"form_poradie\">{$poradie}. </td>\r\n "; $product_type = sql_query("SELECT meno FROM product_type WHERE id=" . sec_sql(sec_input($data["product_type_all"][$i])) . " LIMIT 1"); $product_type = $product_type[0]; $product = sql_query("SELECT id, meno FROM product WHERE id=" . sec_sql(sec_input($data["product_all"][$i])) . " LIMIT 1")[0]; $message .= hidden("id[]", $data["id_all"][$i]); $options_str = array(); //var_dump($data); if (!isset($data["product_atribute_options_all"][$i]) or empty($data["product_atribute_options_all"][$i])) { $data["product_atribute_options_all"][$i] = array(); } $option_c_hladina = 1; foreach ($data["product_atribute_options_all"][$i] as $option) { //var_dump($option); $options = sql_query("SELECT id, meno, id_c_hladina FROM product_atribute_option WHERE id=" . sec_sql(sec_input($option)) . " LIMIT 1"); $options_str[] = $options[0]["meno"]; if ($options[0]["id_c_hladina"] > $option_c_hladina) { $option_c_hladina = $options[0]["id_c_hladina"]; } //$options["price"] = sql_query("SELECT id, cena FROM product_atribute_option WHERE id=".sec_sql(sec_input($option))." LIMIT 1"); } $options_str = empty($options_str) ? "" : " (" . join(", ", $options_str) . ")"; $message .= "<td class=\"form_nazov_siroky\">" . $product_type["meno"] . " " . $product["meno"] . "" . $options_str . "" . (empty($data["atyp_text_all"][$i]) ? "" : "<br>Atyp: " . sec_input($data["atyp_text_all"][$i])) . "</td>"; $product_delivery = sql_query("SELECT meno FROM product_delivery WHERE id=" . sec_sql(sec_input($data["product_delivery_all"][$i])) . " LIMIT 1"); $product_delivery = $product_delivery[0]; $message .= "<td class=\"form_ks\">" . sec_input($data["ks_all"][$i]) . " ks</td>"; $message .= "<td class=\"form_hrana\">" . $product_delivery["meno"] . "</td>"; $message .= hidden("ks[]", $data["ks_all"][$i]); if (empty($data[product_price_all][$i])) { $product_prices = sql_query("SELECT id, cena FROM cp_product WHERE id_c_hladina=" . $option_c_hladina . " AND id_product=" . $product["id"] . " ORDER BY id DESC LIMIT 1")[0]; $product_price = $product_prices[cena]; } else { $product_price = $data[product_price_all][$i]; } $product_ks_sum = $product_ks_sum + sec_input($data["ks_all"][$i]); $product_price_sum = $product_price * sec_input($data["ks_all"][$i]); $message .= hidden("id_cp_product[]", $product_prices[id]); // spocitanie ceny spolu za vsetky produkty $products_prices_sums = $products_prices_sums + $product_price_sum; $zlava_E = $product_price_sum * $data[zlava_all][$i] / 100; $po_zlave = $product_price_sum - $zlava_E; $po_zlave_sum = $po_zlave_sum + $po_zlave; if (!empty($data["atyp_text_all"][$i])) { $product_price = textfield("product_price[{$i}]", $data[product_price_all][$i], "", 5, 3, "product_price"); } else { $product_price = $product_price . " €"; } $message .= "<td class=\"form_nazov ali-center product-price\">" . $product_price . "</td>"; $message .= "<td class=\"form_nazov ali-center bold\"><span class=\"cena-spolu-product\">" . $product_price_sum . "</span> €</td>"; $message .= "<td class=\"form_nazov\">" . textfield("zlava[]", $data[zlava_all][$i], "", 4, 2, "zlava") . "<span class=\"zlava-E bold\">" . ($zlava_E > 0 ? "-" . $zlava_E . " €" : "") . "</span></td>"; $message .= "<td class=\"form_nazov ali-center po-zlave-sum\">" . $po_zlave . "</td>"; $message .= "</tr>"; } $message .= "<tr class=\"cp_spolu bold\">\r\n <td></td>\r\n <td>Spolu:</td>\r\n <td class=\"ali-center\">" . $product_ks_sum . " ks</td>\r\n <td></td>\r\n <td></td>\r\n <td class=\"ali-center\">" . $products_prices_sums . " €</td>\r\n <td></td>\r\n <td class=\"ali-center po-zlave-sum-all\">" . $po_zlave_sum . " €</td>\r\n \r\n <tr>"; $message .= "</table></div>"; echo $message; echo "</fieldset>"; echo submit("submit_page1", "Pokračovať"); } echo "</form>"; }
function edit($table, $vyber, $sub, $id, $page = 1) { $error_msg = array(); if ($_POST[submit]) { //var_dump($_POST); //exit(); $meno = sec_sql(sec_input($_POST["meno"])); $adresa = sec_sql(sec_input($_POST["adresa"])); $mesto = sec_sql(sec_input($_POST["mesto"])); $psc = sec_sql(sec_input($_POST["psc"])); $ico = sec_sql(sec_input($_POST["ico"])); $dic = sec_sql(sec_input($_POST["dic"])); $doruc_meno = sec_sql(sec_input($_POST["doruc_meno"])); $doruc_adresa = sec_sql(sec_input($_POST["doruc_adresa"])); $doruc_mesto = sec_sql(sec_input($_POST["doruc_mesto"])); $doruc_psc = sec_sql(sec_input($_POST["doruc_psc"])); $doruc_telefon = sec_sql(sec_input($_POST["doruc_telefon"])); $telefon = sec_sql(sec_input($_POST["telefon"])); $skupina = sec_sql(sec_input($_POST["skupina"])); $id_perm_uroven = sec_sql(sec_input($_POST["id_perm_uroven"])); $email = sec_sql(sec_input($_POST["email"])); $email2 = sec_sql(sec_input($_POST["email2"])); $old_password = sec_sql(sec_input($_POST["old_password"])); $password = sec_sql(sec_input($_POST["password"])); $password_confirm = sec_sql(sec_input($_POST["password_confirm"])); $id_product_type = sec_sql(sec_input($_POST["product_type"])); $id_product = sec_sql(sec_input($_POST["product"])); $montazny_balik = sec_sql(sec_input($_POST["montazny_balik"])); $ean = sec_sql(sec_input($_POST["ean"])); $id_product_atribute = sec_sql(sec_input($_POST["product_atribute"])); $c_hladina = sec_sql(sec_input($_POST["c_hladina"])); if (isset($_POST["product_types"])) { foreach ($_POST["product_types"] as $product_t) { $product_types[] = sec_sql(sec_input($product_t)); } } if (isset($_POST["product_packages"])) { foreach ($_POST["product_packages"] as $product_p) { $product_packages[] = sec_sql(sec_input($product_p)); } } $id = sec_sql(sec_input($_POST["id"])); $zobraz_vo_formulari = intval(sec_sql(sec_input($_POST["zobraz_vo_formulari"]))); $skryt_zakaznikom = intval(sec_sql(sec_input($_POST["skryt_zakaznikom"]))); $skryt_prihlasenym = intval(sec_sql(sec_input($_POST["skryt_prihlasenym"]))); $def = intval(sec_sql(sec_input($_POST["def"]))); $skryt_atributy = intval(sec_sql(sec_input($_POST["skryt_atributy"]))); //var_dump($_POST); //exit(); if ($table != "ean") { if (strlen($meno) > 30 or strlen($meno) < 1) { $error_msg[] = "Meno môže mať od 1 do 30 znakov"; } } if ($table == "ean") { if (strlen($ean) > 13 or strlen($ean) < 13) { $error_msg[] = "EAN kód môže mať iba 13 znakov"; } $code = "2-" . $id_product . "-" . $id_product_atribute; $before = sql_query("SELECT code from {$table} WHERE id=" . $id)[0]["code"]; $exist = 0; if ($code == $before) { $exist = 0; } else { $exists = sql_query("SELECT id from {$table} WHERE code=\"{$code}\""); if (count($exists) > 0) { $exist = 1; } } //dd($exists); if ($exist == 1) { $error_msg[] = "Tento produkt sa už nachádza v databáze"; } } if ($table == "hrana") { //var_dump($zobraz_vo_formulari); if ($zobraz_vo_formulari < 0) { $error_msg[] = "Zobraz vo formulari ma nesprávnu hodnotu"; } if (strlen($hodnota_csv) > 5 or strlen($hodnota_csv) < 1) { $error_msg[] = "hodnota pre csv je povinný údaj a môže mať 5 znakov"; } } if ($table == "dekor") { if ($_FILES["subor"]["name"]) { $file_c = count($_FILES["subor"]["name"]); if (!empty($_FILES["subor"]["name"]) and strlen($_FILES["subor"]["name"]) > 4) { //echo "ok<br>"; $data[file_ext] = strtolower(end(explode(".", $_FILES["subor"]["name"]))); $data[file_name] = $id; $data[file_name_old] = $_FILES["subor"]["name"]; $data[file_tmp_name] = $_FILES["subor"]["tmp_name"]; $data[file_size] = $_FILES["subor"]["size"]; //echo "ok<br>"; } $form_data_file = array("file_name" => $data[file_name], "file_ext" => $data[file_ext], "file_size" => $data[file_size]); $file_validate = dekor_img_validate($form_data_file); } if (count($file_validate) > 0) { foreach ($file_validate as $message) { $error_msg[] = $message; } } } if ($table == "uzivatel") { //var_dump($skupina); if (!is_numeric($skupina) or empty($skupina)) { $error_msg[] = "skupina ma nesprávnu hodnotu"; } //if(!is_numeric($id_c_hladina) or empty($id_c_hladina)) $error_msg[] = "cenova hladina ma nesprávnu hodnotu"; if ($skupina == 2) { if (strlen($email) > 50 or strlen($email) < 8) { $error_msg[] = "email je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($adresa) > 40 or strlen($adresa) < 6) { $error_msg[] = "adresa je povinný údaj a môže mať od 8 do 50 znakov"; } if (strlen($telefon) > 20 or strlen($telefon) < 5) { $error_msg[] = "telefon je povinný údaj a môže mať od 8 do 50 znakov"; } if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { $error_msg[] = "email je v nesprávnom tvare"; } } if (!is_numeric($id) or empty($id)) { $error_msg[] = "ID ma nesprávnu hodnotu"; } if (!empty($password) and !empty($old_password) and !empty($password_confirm)) { $old_password_original = sql_query("SELECT heslo FROM {$table} WHERE id={$id} AND heslo=\"" . md5($old_password) . "\" LIMIT 1"); if (count($old_password_original) < 1) { $error_msg[] = "Staré heslo nie je správne"; } if (strlen($password) < 4 or strlen($password) > 30) { $error_msg[] = "Heslo môže mať od 5 do 30 znakov"; } if ($password != $password_confirm) { $error_msg[] = "Heslá nie sú identické"; } } } //var_dump($error_msg); if (empty($error_msg)) { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\" \r\n WHERE id = {$id}"; if ($table == "product_type") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", id_product_type=\"{$id_product_type}\", montazny_balik = \"{$montazny_balik}\",\r\n skryt_zakaznikom=\"{$skryt_zakaznikom}\", skryt_prihlasenym=\"{$skryt_prihlasenym}\", skryt_atributy = \"{$skryt_atributy}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product_delivery") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "product_atribute") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "ean") { $query = "UPDATE {$table}\r\n SET code = \"{$code}\", ean=\"{$ean}\"\r\n WHERE id = {$id}"; } if ($table == "product_atribute_option") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", id_product_atribute=\"{$id_product_atribute}\",\r\n id_c_hladina = \"{$c_hladina}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\", def=\"{$def}\"\r\n WHERE id = {$id}"; } if ($table == "cp_abs_vyrobca") { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\"\r\n WHERE id = {$id}"; } if ($table == "dekor") { if (empty($stvorakov) or $stvorakov <= 0) { $stvorakov = def_value("default_stvorak", "hodnota"); } $hodnota = rep_dia($hodnota, 1); $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", hodnota = \"{$hodnota}\", id_material=\"{$id_material}\", id_vyrobca=\"{$id_vyrobca}\",\r\n stvorakov=\"{$stvorakov}\", kubikov=\"{$kubikov}\", skryt_zakaznikom=\"{$skryt_zakaznikom}\"\r\n WHERE id = {$id}"; if ($data) { $directory = "assets/images/dekor/"; if (!file_exists($directory)) { mkdir($directory, 0777, true); } $filename = $data["file_tmp_name"]; $max_size = 250; // percentage of resize // Content type //header('Content-type: image/jpeg'); // Get new dimensions list($width, $height) = getimagesize($filename); if ($width > $height) { $percent = $max_size / $width; $new_width = $max_size; $new_height = $height * $percent; } else { $percent = $max_size / $height; $new_height = $max_size; $new_width = $width * $percent; } // Resample $image_p = imagecreatetruecolor($new_width, $new_height); $image = imagecreatefromjpeg($filename); imagecopyresampled($image_p, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height); // Output imagejpeg($image_p, $directory . "/" . $data["file_name"] . "." . $data["file_ext"], 100); move_uploaded_file($data["file_tmp_name"], $directory . "/orig_" . $data["file_name"] . "." . $data["file_ext"]); //exit(); } } if ($table == "uzivatel") { if (empty($password) or empty($old_password) or empty($password_confirm)) { $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", mesto = \"{$mesto}\", ico = \"{$ico}\", \r\n psc = \"{$psc}\", dic = \"{$dic}\", doruc_meno = \"{$doruc_meno}\", \r\n doruc_adresa = \"{$doruc_adresa}\", doruc_mesto = \"{$doruc_mesto}\",\r\n doruc_psc = \"{$doruc_psc}\", doruc_telefon = \"{$doruc_telefon}\",\r\n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\r\n perm_uroven_id = \"{$id_perm_uroven}\"\r\n WHERE id = {$id}"; } else { $password = md5($password); $query = "UPDATE {$table}\r\n SET meno = \"{$meno}\", adresa = \"{$adresa}\", mesto = \"{$mesto}\", ico = \"{$ico}\", \r\n psc = \"{$psc}\", dic = \"{$dic}\", doruc_meno = \"{$doruc_meno}\", \r\n doruc_adresa = \"{$doruc_adresa}\", doruc_mesto = \"{$doruc_mesto}\",\r\n doruc_psc = \"{$doruc_psc}\", doruc_telefon = \"{$doruc_telefon}\",\r\n email = \"{$email}\", email2 = \"{$email2}\", telefon = \"{$telefon}\", skupina = \"{$skupina}\",\r\n perm_uroven_id = \"{$id_perm_uroven}\" heslo = \"{$password}\"\r\n WHERE id = {$id}"; } } sql_update($query); if ($table == "product_atribute") { $exists = sql_delete("DELETE from product_atribute_product_types\r\n WHERE id_product_atribute = {$id} \r\n "); foreach ($product_types as $product_type) { sql_insert("INSERT INTO product_atribute_product_types \r\n (id_product_atribute, id_product_type)\r\n VALUES\r\n ({$id}, {$product_type})\r\n "); } } if ($table == "product_delivery") { $exists = sql_delete("DELETE from product_delivery_product_types\r\n WHERE id_product_delivery = {$id} \r\n "); foreach ($product_types as $product_type) { sql_insert("INSERT INTO product_delivery_product_types \r\n (id_product_delivery, id_product_type)\r\n VALUES\r\n ({$id}, {$product_type})\r\n "); } } if ($table == "product") { $exists = sql_delete("DELETE from product_packages\r\n WHERE id_product = {$id} \r\n "); foreach ($product_packages as $package) { sql_insert("INSERT INTO product_packages \r\n (id_product, meno)\r\n VALUES\r\n ({$id}, \"{$package}\")\r\n "); } } //echo $id_perm_uroven; header("location: index.php?vyber=nastavenia&sub={$table}&page={$page}"); exit; } else { echo "<div id=error_message>" . implode("<br>", $error_msg) . "</div>"; } } $id = sec_sql($id); $query = "Select id, meno from " . PREFIX . "{$table} WHERE id={$id}"; if ($table == "product_type") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product") { $query = "Select id, id_product_type, meno, montazny_balik, skryt_zakaznikom, skryt_prihlasenym, skryt_atributy, def from {$table} WHERE id={$id}"; } if ($table == "ean") { $query = "Select id, code, ean from {$table} WHERE id={$id}"; } if ($table == "product_delivery") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product_atribute") { $query = "Select id, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "product_atribute_option") { $query = "Select id, id_product_atribute, id_c_hladina, meno, skryt_zakaznikom, def from {$table} WHERE id={$id}"; } if ($table == "cp_abs_vyrobca") { $query = "Select id, meno from {$table} WHERE id={$id}"; } if ($table == "dekor") { $query = "Select id, id_material, id_vyrobca, hodnota, meno, stvorakov, kubikov, skryt_zakaznikom from {$table} WHERE id={$id}"; } if ($table == "hrana") { $query = "Select id, hodnota, hodnota_csv, meno, zobraz_vo_formulari from {$table} WHERE id={$id}"; } if ($table == "hrubka") { $query = "Select id, hodnota, meno, id_material from {$table} WHERE id={$id}"; } if ($table == "uzivatel") { $query = "Select id, meno, adresa, mesto, psc, ico, dic, telefon, email, email2,\r\n doruc_meno, doruc_adresa, doruc_mesto, doruc_psc, doruc_telefon, skupina, perm_uroven_id \r\n FROM {$table} WHERE id={$id}"; } $value = sql_query($query); $value = $value[0]; echo "<form method=\"POST\" enctype=\"multipart/form-data\" class=\"nastavenia_form\">"; echo hidden("id", $value[id]); if ($table != "ean") { echo textfield("meno", $value[meno], "Meno", 50, 30); } if ($table == "product_type") { $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákazníkom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "ean") { $arr = explode("-", $value["code"]); echo select("product", "Produkt", "SELECT id, meno FROM product WHERE vymaz=0 AND id_product_type=2 ORDER BY meno ASC", $arr[1], "-vyberte si-", "", "", "NO"); echo select("product_atribute", "rozmer", "SELECT id, meno FROM product_atribute_option WHERE id_product_atribute=2 AND vymaz=0 ORDER BY def DESC, meno ASC", $arr[2], "-vyberte si-", "", "", "NO"); echo textfield("ean", $value["ean"], "EAN *", 13, 16); } if ($table == "product") { echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); } if ($table == "product") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákazníkom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); echo select("skryt_prihlasenym", "zobraz prihláseným", "", $value[skryt_prihlasenym], "", "", "", "NO", $zobraz_vo); echo select("skryt_atributy", "zobraz atribúty", "", $value[skryt_atributy], "", "", "", "NO", $zobraz_vo); echo textfield("montazny_balik", $value[montazny_balik], "Mont. balík", 20, 15); $product_packages = sql_query("SELECT id, meno FROM product_packages WHERE id_product={$id}"); echo '<div class="input_fields_wrap">'; $count = 1; //var_dump($product_packages); if (count($product_packages) > 0) { foreach ($product_packages as $package) { echo "<div><label>Balenie</label><input type=\"text\" name=\"product_packages[]\" size=15 maxlength=25 value=\"{$package["meno"]}\"><a href=\"#\" class=\"remove_field\">X</a></div>"; $count = $count + 1; } } else { echo '<div><label>Balenie</label><input type="text" name="product_packages[]" size=15 maxlength=25><a href="#" class="remove_field">X</a></div>'; } echo "</div>"; echo '<button class="add_field_button">Vlož ďalšie balenie</button>'; } if ($table == "product_atribute") { //echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $selected = sql_query("SELECT id_product_type from product_atribute_product_types\r\n WHERE id_product_atribute = {$id}\r\n "); foreach ($selected as $select) { $sel[] = $select[id_product_type]; } $product_types = sql_query("SELECT id, meno FROM product_type WHERE vymaz=0"); foreach ($product_types as $product_type) { $checked = in_array($product_type["id"], $sel) ? "checked" : ""; echo "<input type=\"checkbox\" name=\"product_types[]\" value=\"{$product_type["id"]}\" {$checked}>{$product_type["meno"]}<br>"; } } if ($table == "product_delivery") { //echo select("product_type", "Typ produktu", "SELECT id, meno FROM product_type WHERE vymaz=0", $value[id_product_type]); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); $selected = sql_query("SELECT id_product_type from product_delivery_product_types\r\n WHERE id_product_delivery = {$id}\r\n "); foreach ($selected as $select) { $sel[] = $select[id_product_type]; } $product_types = sql_query("SELECT id, meno FROM product_type WHERE vymaz=0"); foreach ($product_types as $product_type) { $checked = in_array($product_type["id"], $sel) ? "checked" : ""; echo "<input type=\"checkbox\" name=\"product_types[]\" value=\"{$product_type["id"]}\" {$checked}>{$product_type["meno"]}<br>"; } } if ($table == "product_atribute_option") { echo select("product_atribute", "Filtruj Atribút", "SELECT a.id as id, a.meno as meno \r\n FROM product_atribute as a \r\n WHERE a.vymaz=0 ORDER BY a.meno", $value[id_product_atribute]); echo select("c_hladina", "Cen. hladina", "SELECT id, meno FROM c_hladina WHERE vymaz=0", $value[id_c_hladina], "", "", "", "NO"); $zorad = array(1 => "navrchu", 0 => "normálne"); echo select("def", "poradie", "", $value[def], "", "", "", "NO", $zorad); } if ($table == "vyrobca") { $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); } if ($table == "dekor") { echo select("id_material", "Materiál", "SELECT id, hodnota, meno FROM material WHERE vymaz=0", $value[id_material]); echo select("vyrobca", "Výrobca", "SELECT id, hodnota, meno FROM vyrobca WHERE vymaz=0", $value[id_vyrobca]); $zobraz_vo = array(1 => "skryť", 0 => "zobraz"); echo select("skryt_zakaznikom", "zobraz zákaznikom", "", $value[skryt_zakaznikom], "", "", "", "NO", $zobraz_vo); file_upload("subor", "subor", "Príloha"); if (isset($_GET["rotate"])) { $rotate = sec_input($_GET["rotate"]); } if ($rotate == 1) { $rotateFilename = "assets/images/dekor/{$value[id]}.jpg"; // PATH if (file_exists($rotateFilename)) { $degrees = 90; //header('Content-type: image/jpeg'); $source = imagecreatefromjpeg($rotateFilename); // Rotate $rotate = imagerotate($source, $degrees, 0); imagejpeg($rotate, $rotateFilename, 100); imagedestroy($source); imagedestroy($rotate); //echo "ok"; } } if (file_exists("assets/images/dekor/{$value[id]}.jpg")) { echo "<img src=\"assets/images/dekor/{$value[id]}.jpg?rand=" . microtime() . "\">"; echo "<br><a href=\"?vyber={$vyber}&sub={$sub}&action=edit&id={$id}&page={$page}&rotate=1\">Otočiť obrázok o 90st doprava</a>"; } } if ($table == "uzivatel") { if ($id == 1) { echo "<strong>Nie je možné upravovať hlavného administrátora!</strong>"; die; } echo textfield("adresa", $value[adresa], "adresa", 40, 20); echo textfield("mesto", $value[mesto], "Mesto", 50, 20); echo textfield("psc", $value[psc], "PSČ", 50, 20); echo textfield("ico", $value[ico], "IČO", 15, 20); echo textfield("dic", $value[dic], "DIČ", 15, 20); echo textfield("doruc_meno", $value[doruc_meno], "Meno doručenia", 40, 20); echo textfield("doruc_adresa", $value[doruc_adresa], "Adresa doručenia", 50, 20); echo textfield("doruc_mesto", $value[doruc_mesto], "Mesto doručenia", 50, 20); echo textfield("doruc_psc", $value[doruc_psc], "PSČ doručenia", 50, 20); echo textfield("doruc_telefon", $value[doruc_telefon], "Telefon doručenia", 50, 20); echo textfield("telefon", $value[telefon], "telefón", 40, 20); echo textfield("email", $value[email], "email", 40, 20); echo textfield("email2", $value[email2], "email2", 40, 20); echo select("skupina", "Skupina", "SELECT id, meno FROM uzivatel_skupina WHERE vymaz=0", $value[skupina], "", "", "", "NO"); echo select("id_perm_uroven", "Úroveň zabezp.", "SELECT id, meno FROM perm_uroven WHERE vymaz=0", $value[perm_uroven_id]); echo textfield("old_password", $value[password], "Staré heslo", 40, 20); echo textfield("password", $value[password], "Nové heslo", 40, 20); echo textfield("password_confirm", "", "zopakujte heslo", 40, 20); } echo submit("submit", "Odoslať"); echo "<a href=\"?vyber={$vyber}&sub={$sub}\">Späť</a>"; echo "</form>"; }