File manager - Edit - /home/autoph/public_html/connect/home/PRF_EXECOM_AwardToVendor.php
Back
<?php include_once 'core/init.php'; $myUID = $user_data['u_id']; $prfDate = date_create() ->format("Y-m-d"); $prfTime = date('H:i:s'); $myDate = date_create() ->format("Y-m-d"); $prfDateTime=$prfDate. " ".$prfTime; if(isset($_POST['done'])){ $AwardItemID = mysql_escape_string($_POST['AwardItemID']); $canvassID = mysql_escape_string($_POST['canvassID']); //47 $AwardItemAmount = mysql_escape_string($_POST['AwardItemAmount']); $AwardItemQty = mysql_escape_string($_POST['AwardItemQty']); $token = md5(md5($AwardItemID)); $PRFRefCodeID = mysql_result(mysql_query("SELECT `header_ref_code` FROM `prf_request_detl` WHERE `id`='$AwardItemID'"),0); $proposalID = mysql_result(mysql_query("SELECT `canvass_id` FROM `prf_canvass_sheet` WHERE `id`='$canvassID'"),0);//6 $proposalCode = mysql_result(mysql_query("SELECT `ref_code` FROM `prf_uploadedcanvass` WHERE `id`='$proposalID'"),0); $vendorID = mysql_result(mysql_query("SELECT `vendor_id` FROM `prf_uploadedcanvass` WHERE `id`='$proposalID'"),0); $notes=''; $itemDes = mysql_result(mysql_query("SELECT `item_description` FROM `prf_request_detl` WHERE `id`='$AwardItemID'"),0); $requestorID = mysql_result(mysql_query("SELECT `request_by` FROM `prf_request_hdr` WHERE `reference_code`='$PRFRefCodeID'"),0); $chkIfWithMyApproval = mysql_result(mysql_query("SELECT COUNT(id) FROM `prf_execomcanvassapproval` WHERE `item_code`='$AwardItemID' AND `approved_by_execom`='$myUID'"),0); if($chkIfWithMyApproval!=0){ echo '<script>alert("ERROR: You already approved this request. Waiting for other EXECOM to approve this transaction.")</script>'; }else{ mysql_query("INSERT INTO `prf_execomcanvassapproval`(canvass_id,prf_ref_code,item_code,vendor_id,canvass_qty,approved_amount,approved_by_execom,notes,date_approved,time_approved) VALUES('{$canvassID}','{$PRFRefCodeID}','{$AwardItemID}','{$vendorID}','{$AwardItemQty}','{$AwardItemAmount}','{$myUID}','{$notes}','{$myDate}','{$prfTime}')"); $getEXECOMAuthority = mysql_result(mysql_query("SELECT `authority` FROM `prf_execommembers` WHERE `execom_id`='$myUID'"),0); $chkExecomApproval = mysql_result(mysql_query("SELECT COUNT(id) FROM `prf_execomcanvassapproval` WHERE `item_code`='$AwardItemID'"),0); if($getEXECOMAuthority == 1){ mysql_query("UPDATE `prf_request_detl` SET `execom_approval_ts`='$prfDateTime',`awarded`=1,`award_to_vendor_id`='$vendorID',`approved_proposal_code`='$proposalCode',`approved_qty`='$AwardItemQty',`approved_amount`='$AwardItemAmount' WHERE `id`='$AwardItemID'"); $messageToReq ="You ".$itemDes." request has been approved by EXECOM and forwarded to procurement for PO"; mysql_query("INSERT INTO `prf_ff_message`(ref_code,sender_id,message,send_to,date,time) VALUES('{$PRFRefCodeID}','{$myUID}','{$messageToReq}','{$requestorID}','{$myDate}','{$prfTime}')"); } if($getEXECOMAuthority == 2){ if($chkExecomApproval > 1){ mysql_query("UPDATE `prf_request_detl` SET `execom_approval_ts`='$prfDateTime',`awarded`=1,`award_to_vendor_id`='$vendorID',`approved_proposal_code`='$proposalCode',`approved_qty`='$AwardItemQty',`approved_amount`='$AwardItemAmount' WHERE `id`='$AwardItemID'"); $messageToReq ="You ".$itemDes." request has been approved by EXECOM and forwarded to procurement for PO"; mysql_query("INSERT INTO `prf_ff_message`(ref_code,sender_id,message,send_to,date,time) VALUES('{$PRFRefCodeID}','{$myUID}','{$messageToReq}','{$requestorID}','{$myDate}','{$prfTime}')"); } else{ $messageToReqB ="You ".$itemDes." request has been endorsed by EXECOM. Please wait for another EXECOM to approved your request before we proceed with the PO. "; mysql_query("INSERT INTO `prf_ff_message`(ref_code,sender_id,message,send_to,date,time) VALUES('{$PRFRefCodeID}','{$myUID}','{$messageToReqB}','{$requestorID}','{$myDate}','{$prfTime}')"); } } if($getEXECOMAuthority == 3){ if($chkExecomApproval > 2){ mysql_query("UPDATE `prf_request_detl` SET `execom_approval_ts`='$prfDateTime',`awarded`=1,`award_to_vendor_id`='$vendorID',`approved_proposal_code`='$proposalCode',`approved_qty`='$AwardItemQty',`approved_amount`='$AwardItemAmount' WHERE `id`='$AwardItemID'"); } else{ $messageToReqB ="You ".$itemDes." request has been endorsed by EXECOM. Please wait for another EXECOM to approved your request before we proceed with the PO. "; mysql_query("INSERT INTO `prf_ff_message`(ref_code,sender_id,message,send_to,date,time) VALUES('{$prfCode}','{$myUID}','{$messageToReqB}','{$requestorID}','{$myDate}','{$prfTime}')"); } } //CHECK IF ALL ITEMS IN THE PRF HAS BEEN APPROVED $chekItemCount = mysql_result(mysql_query("SELECT COUNT(id) FROM `prf_request_detl` WHERE `id`='$AwardItemID' AND `deleted`=0"),0); $chekItemCountApproval = mysql_result(mysql_query("SELECT COUNT(id) FROM `prf_request_detl` WHERE `id`='$AwardItemID' AND `deleted`=0 AND `execom_approval_ts`!=''"),0); if($chekItemCount = $chekItemCountApproval){ mysql_query("UPDATE `prf_request_hdr` SET `current_status`='7' WHERE `reference_code`='$PRFRefCodeID'"); mysql_query("UPDATE `prf_request_detl` SET `item_status`='7' WHERE `id`='$AwardItemID'"); }else{ mysql_query("UPDATE `prf_request_detl` SET `item_status`='6' WHERE `id`='$AwardItemID'"); } //mysql_query("UPDATE `prf_request_hdr` SET `current_status`='7' WHERE `reference_code`='$PRFRefCodeID'"); } } ?> <table> <?php $getItemHdr = mysql_query("SELECT * FROM `prf_request_detl` WHERE `for_execom_canvass_approval`= 1 AND `deleted`=0 AND `awarded`='0' AND `execom_approval_ts`=''"); while($row=mysql_fetch_array($getItemHdr)){ $regHDRcode=$row['header_ref_code']; $regCat=$row['category_id']; $regCatName =mysql_result(mysql_query("SELECT `description` FROM `prf_expensecategory` WHERE `id`='$regCat'"),0); $reqByID = mysql_result(mysql_query("SELECT `request_by` FROM `prf_request_hdr` WHERE `reference_code`='$regHDRcode'"),0); $reqCompID=$row['comp_id']; $dateNeeded = mysql_result(mysql_query("SELECT `date_needed` FROM `prf_request_hdr` WHERE `reference_code`='$regHDRcode'"),0); $reqCompName = mysql_result(mysql_query("SELECT `comp_name` FROM vts_company WHERE comp_id='$reqCompID'"),0); $reqByFName = mysql_result(mysql_query("SELECT u_fname FROM vts_users WHERE u_id='$reqByID'"),0); $reqByLName = mysql_result(mysql_query("SELECT u_lname FROM vts_users WHERE u_id='$reqByID'"),0); ?><tr onclick="javascript:getInfo(this);" id='LoadUserApprovedCanvassItem' ><?php echo "<td style='width:5%'>".$row['id']."</td>"; echo "<td style='width:20%'>".strtoupper($reqCompName)."</td>"; echo "<td style='width:15%'>".strtoupper($reqByLName).", ".strtoupper($reqByFName)."</td>"; echo "<td style='width:30%;text-align:left'>".strtoupper($row['item_description'])."</td>"; echo "<td style='width:15%;text-align:left'>".$regCatName."</td>"; echo "<td style='width:5%;text-align:left'>".strtoupper($row['quantity'])."</td>"; echo "<td style='width:10%'>".strtoupper($dateNeeded)."</td>"; //echo "<td style='width:5%;text-align:center'><a href='https://www.autohub.ph/connect/home/FILES/canvass/".$row['file_code']."' target='_blank'>View</a></td>"; echo "</tr>"; } ?> <tr><td colspan='9' ><hr style='padding:0px;background:transparent;border:0px;border-bottom:1px solid gray'></td> <tr> <td colspan='2' style='background:white;font-family:Yu Gothic; font-size:13px;color: #f97d43 ;height:20px;font-weight:normal'>Selected Record:</td> <td colspan='7' style='background:white;'> <input type='text' id='selectedPRFHeaderID' class='TableBottomLabel' style='border:0px;text-align:left' disabled> </td> </tr> </table>
| ver. 1.4 |
.
| PHP 7.3.33 | Generation time: 0 |
proxy
|
phpinfo
|
Settings