diff --git a/calendar_events.php b/calendar_events.php index 0db3baf1..5d8fb791 100644 --- a/calendar_events.php +++ b/calendar_events.php @@ -128,7 +128,7 @@ while($row = mysqli_fetch_array($sql)){ - Vendor - - Vendor - '$asset_created_at' OR vendor_archived_at IS NULL) AND vendor_client_id = $client_id ORDER BY vendor_name ASC"); + $sql_vendors = mysqli_query($mysqli,"SELECT * FROM vendors WHERE (vendor_archived_at > '$asset_created_at' OR vendor_archived_at IS NULL) AND vendor_client_id = $client_id AND vendor_template = 0 ORDER BY vendor_name ASC"); while($row = mysqli_fetch_array($sql_vendors)){ $vendor_id_select = $row['vendor_id']; $vendor_name_select = htmlentities($row['vendor_name']); diff --git a/client_overview.php b/client_overview.php index 33bfa20b..fce0d2f1 100644 --- a/client_overview.php +++ b/client_overview.php @@ -6,7 +6,7 @@ $sql_contacts = mysqli_query($mysqli,"SELECT * FROM contacts WHERE contact_clien $sql_important_contacts = mysqli_query($mysqli,"SELECT * FROM contacts WHERE contact_client_id = $client_id AND contact_important = 1 AND contact_archived_at IS NULL AND contacts.company_id = $session_company_id ORDER BY contact_updated_at, contact_name DESC"); -$sql_vendors = mysqli_query($mysqli,"SELECT * FROM vendors WHERE vendor_client_id = $client_id AND vendor_archived_at IS NULL AND company_id = $session_company_id ORDER BY vendor_updated_at DESC LIMIT 5"); +$sql_vendors = mysqli_query($mysqli,"SELECT * FROM vendors WHERE vendor_client_id = $client_id AND vendor_template = 0 AND vendor_archived_at IS NULL AND company_id = $session_company_id ORDER BY vendor_updated_at DESC LIMIT 5"); $sql_documents = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_client_id = $client_id AND document_archived_at IS NULL AND documents.company_id = $session_company_id ORDER BY document_updated_at DESC LIMIT 5"); diff --git a/client_service_add_modal.php b/client_service_add_modal.php index 858ebe5d..b28bb9ee 100644 --- a/client_service_add_modal.php +++ b/client_service_add_modal.php @@ -113,7 +113,7 @@ +
+ +
+
+ +
+ +
+
+
+ +
+ +
+
+ + "> + + + + + + + + + + + + + + + + + + + +
VendorDescriptionContactAction
+ + + +
+ + + 		+ + +
+ + + +
+ + + +
+ + 		+
+ +
+ Edit + +
+ Delete + +
+
+
+
+ + + + + + + \ No newline at end of file diff --git a/client_vendors.php b/client_vendors.php index 2d83d9ed..3d5461bf 100644 --- a/client_vendors.php +++ b/client_vendors.php @@ -24,7 +24,8 @@ if(!empty($_GET['sb'])){ $url_query_strings_sb = http_build_query(array_merge($_GET,array('sb' => $sb, 'o' => $o))); $sql = mysqli_query($mysqli,"SELECT SQL_CALC_FOUND_ROWS * FROM vendors - WHERE vendor_client_id = $client_id + WHERE vendor_client_id = $client_id + AND vendor_template = 0 AND (vendor_name LIKE '%$q%' OR vendor_description LIKE '%$q%' OR vendor_account_number LIKE '%$q%' OR vendor_website LIKE '%$q%' OR vendor_contact_name LIKE '%$q%' OR vendor_email LIKE '%$q%' OR vendor_phone LIKE '%$phone_query%') ORDER BY $sb $o LIMIT $record_from, $record_to"); $num_rows = mysqli_fetch_row(mysqli_query($mysqli,"SELECT FOUND_ROWS()")); @@ -47,9 +48,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli,"SELECT FOUND_ROWS()"));
- From Template -
- Template + From Template
@@ -191,5 +190,6 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli,"SELECT FOUND_ROWS()")); + \ No newline at end of file diff --git a/dashboard_financial.php b/dashboard_financial.php index 142d12f2..ac9ae6f9 100644 --- a/dashboard_financial.php +++ b/dashboard_financial.php @@ -105,7 +105,7 @@ $row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('client_id') AS cli $clients_added = $row['clients_added']; //Get Total Vendors added -$row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('vendor_id') AS vendors_added FROM vendors WHERE YEAR(vendor_created_at) = $year AND vendor_client_id = 0 AND company_id = $session_company_id")); +$row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('vendor_id') AS vendors_added FROM vendors WHERE YEAR(vendor_created_at) = $year AND vendor_client_id = 0 AND vendor_template = 0 AND company_id = $session_company_id")); $vendors_added = $row['vendors_added']; ?> diff --git a/expense_add_modal.php b/expense_add_modal.php index 438ac60a..2d935f95 100644 --- a/expense_add_modal.php +++ b/expense_add_modal.php @@ -83,7 +83,7 @@ '$expense_created_at' OR vendor_archived_at IS NULL) AND company_id = $session_company_id ORDER BY vendor_name ASC"); + $sql_select = mysqli_query($mysqli,"SELECT * FROM vendors WHERE vendor_client_id = 0 AND vendor_template = 0 AND (vendor_archived_at > '$expense_created_at' OR vendor_archived_at IS NULL) AND company_id = $session_company_id ORDER BY vendor_name ASC"); while($row = mysqli_fetch_array($sql_select)){ $vendor_id_select = $row['vendor_id']; $vendor_name_select = htmlentities($row['vendor_name']); diff --git a/inc_all_client.php b/inc_all_client.php index 17b04c00..02a5c046 100644 --- a/inc_all_client.php +++ b/inc_all_client.php @@ -123,7 +123,7 @@ if(isset($_GET['client_id'])){ $row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('service_id') AS num FROM services WHERE service_client_id = $client_id")); $num_services = $row['num']; - $row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('vendor_id') AS num FROM vendors WHERE vendor_archived_at IS NULL AND vendor_client_id = $client_id")); + $row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('vendor_id') AS num FROM vendors WHERE vendor_archived_at IS NULL AND vendor_client_id = $client_id AND vendor_template = 0")); $num_vendors = $row['num']; $row = mysqli_fetch_assoc(mysqli_query($mysqli,"SELECT COUNT('login_id') AS num FROM logins WHERE login_archived_at IS NULL AND login_client_id = $client_id")); diff --git a/post.php b/post.php index 2c90ff28..b95b627a 100644 --- a/post.php +++ b/post.php @@ -1731,6 +1731,99 @@ if(isset($_GET['delete_event'])){ } +//Vendor Templates + +if(isset($_POST['add_vendor_template'])){ + + $name = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['name']))); + $description = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['description']))); + $account_number = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['account_number']))); + $contact_name = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['contact_name']))); + $phone = preg_replace("/[^0-9]/", '',$_POST['phone']); + $extension = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['extension']))); + $email = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['email']))); + $website = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['website']))); + $hours = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['hours']))); + $sla = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['sla']))); + $code = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['code']))); + $notes = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['notes']))); + + mysqli_query($mysqli,"INSERT INTO vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code', vendor_account_number = '$account_number', vendor_notes = '$notes', vendor_template = 1, vendor_client_id = 0, company_id = $session_company_id"); + + $vendor_id = mysqli_insert_id($mysqli); + + //Logging + mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Vendor Template', log_action = 'Create', log_description = '$session_name created vendor template $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id, company_id = $session_company_id"); + + $_SESSION['alert_message'] = "Vendor template $name created"; + + header("Location: " . $_SERVER["HTTP_REFERER"]); +} + +if(isset($_POST['edit_vendor_template'])){ + + $vendor_id = intval($_POST['vendor_id']); + $name = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['name']))); + $description = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['description']))); + $account_number = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['account_number']))); + $contact_name = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['contact_name']))); + $phone = preg_replace("/[^0-9]/", '',$_POST['phone']); + $extension = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['extension']))); + $email = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['email']))); + $website = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['website']))); + $hours = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['hours']))); + $sla = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['sla']))); + $code = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['code']))); + $notes = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['notes']))); + + mysqli_query($mysqli,"UPDATE vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code',vendor_account_number = '$account_number', vendor_notes = '$notes' WHERE vendor_id = $vendor_id AND company_id = $session_company_id"); + + //Logging + mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Vendor Template', log_action = 'Modify', log_description = '$session_name modified vendor template $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id, company_id = $session_company_id"); + + $_SESSION['alert_message'] = "Vendor template $name modified"; + + header("Location: " . $_SERVER["HTTP_REFERER"]); +} + +if(isset($_POST['add_vendor_from_template'])){ + + // GET POST Data + $client_id = intval($_POST['client_id']); //Used if this vendor is under a contact otherwise its 0 for under company and or template + $vendor_template_id = intval($_POST['vendor_template_id']); + + //GET Vendor Info + $sql_vendor = mysqli_query($mysqli,"SELECT * FROM vendors WHERE vendor_id = $vendor_template_id AND company_id = $session_company_id"); + + $row = mysqli_fetch_array($sql_vendor); + + $name = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_name']))); + $description = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_description']))); + $account_number = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_account_number']))); + $contact_name = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_contact_name']))); + $phone = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_phone']))); + $extension = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_extension']))); + $email = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_email']))); + $website = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_website']))); + $hours = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_hours']))); + $sla = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_sla']))); + $code = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_code']))); + $notes = trim(strip_tags(mysqli_real_escape_string($mysqli,$row['vendor_notes']))); + + // Vendor add query + mysqli_query($mysqli,"INSERT INTO vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code', vendor_account_number = '$account_number', vendor_notes = '$notes', vendor_client_id = $client_id, company_id = $session_company_id"); + + $vendor_id = mysqli_insert_id($mysqli); + + // Logging + mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Vendor', log_action = 'Create', log_description = 'Vendor created from template $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, company_id = $session_company_id, log_user_id = $session_user_id"); + + $_SESSION['alert_message'] = "Vendor created from template"; + + header("Location: " . $_SERVER["HTTP_REFERER"]); + +} + // Vendors if(isset($_POST['add_vendor'])){ @@ -1748,9 +1841,8 @@ if(isset($_POST['add_vendor'])){ $sla = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['sla']))); $code = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['code']))); $notes = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['notes']))); - $template_id = intval($_POST['template_id']); - mysqli_query($mysqli,"INSERT INTO vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code', vendor_account_number = '$account_number', vendor_notes = '$notes', vendor_template_id = $template_id, vendor_client_id = $client_id, company_id = $session_company_id"); + mysqli_query($mysqli,"INSERT INTO vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code', vendor_account_number = '$account_number', vendor_notes = '$notes', vendor_client_id = $client_id, company_id = $session_company_id"); $vendor_id = mysqli_insert_id($mysqli); @@ -1777,9 +1869,8 @@ if(isset($_POST['edit_vendor'])){ $sla = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['sla']))); $code = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['code']))); $notes = trim(strip_tags(mysqli_real_escape_string($mysqli,$_POST['notes']))); - $template_id = intval($_POST['template_id']); - mysqli_query($mysqli,"UPDATE vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code',vendor_account_number = '$account_number', vendor_notes = '$notes', vendor_template_id = $template_id WHERE vendor_id = $vendor_id AND company_id = $session_company_id"); + mysqli_query($mysqli,"UPDATE vendors SET vendor_name = '$name', vendor_description = '$description', vendor_contact_name = '$contact_name', vendor_phone = '$phone', vendor_extension = '$extension', vendor_email = '$email', vendor_website = '$website', vendor_hours = '$hours', vendor_sla = '$sla', vendor_code = '$code',vendor_account_number = '$account_number', vendor_notes = '$notes' WHERE vendor_id = $vendor_id AND company_id = $session_company_id"); //Logging mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Vendor', log_action = 'Modify', log_description = '$session_name modified vendor $name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id, company_id = $session_company_id"); diff --git a/user_profile.php b/user_profile.php index 7a9e7e33..f2f03754 100644 --- a/user_profile.php +++ b/user_profile.php @@ -148,7 +148,7 @@ $sql_recent_logs = mysqli_query($mysqli,"SELECT * FROM logs
-

Your Recent Logins

+

Your Recent Sign ins

diff --git a/vendor_add_from_template_modal.php b/vendor_add_from_template_modal.php new file mode 100644 index 00000000..d0d05a35 --- /dev/null +++ b/vendor_add_from_template_modal.php @@ -0,0 +1,51 @@ + \ No newline at end of file diff --git a/vendor_add_modal.php b/vendor_add_modal.php index 7aa3e4c7..48555488 100644 --- a/vendor_add_modal.php +++ b/vendor_add_modal.php @@ -10,7 +10,6 @@ -
diff --git a/vendor_edit_modal.php b/vendor_edit_modal.php index d1478d03..db2f8ea9 100644 --- a/vendor_edit_modal.php +++ b/vendor_edit_modal.php @@ -9,7 +9,6 @@
-
    diff --git a/vendor_template_add_modal.php b/vendor_template_add_modal.php index fe4a6b68..e4143a7f 100644 --- a/vendor_template_add_modal.php +++ b/vendor_template_add_modal.php @@ -1,4 +1,4 @@ -