CasperSecurity
<?php
session_start();
include '../../../../web/connection/connectionv2.php';
include '../../../../web/connection/con.php';
include '../../../../web/connection/encryption.php';
$userId = 5;
//$userId = $_SESSION['USER_ID'];
$db_handle = new DBController();
$ku= $db_handle-> runQuery("SELECT * FROM user WHERE user_id = '$userId' ");
foreach($ku as $vu){
$employee_idu = $vu['employee_id'];
}
$db_handle = new DBController();
$kc= $db_handle-> runQuery("SELECT * FROM counter_sale WHERE employee_id = '$employee_idu' ");
foreach($kc as $vc){
$employeecs_id = $vc['employee_id'];
$counter_nos = $vc['counter_no'];
$from_time = $vc['from_time'];
$to_time = $vc['to_time'];
}
$customer_mobileno = $_POST['customer_id'];
//$orderno = $_REQUEST['orderno'];
$db_handle = new DBController();
$custdetails = $db_handle-> runQuery("SELECT * FROM student WHERE registration_no = '$customer_mobileno' ");
foreach($custdetails as $vc) {
$customer_id = $vc['student_registrations_id'];
}
$paymenttype = $_POST['pmode'];
/*if($paymenttype == 'Cash Payment'){
$sale_type = 'Cash';
$payment_status = 'paid';
}elseif ($paymenttype == 'Online Payment'){
$sale_type = 'Online';
$payment_status = 'paid';
}else{
$sale_type = 'Credit';
$payment_status = 'paid';
}*/
if($paymenttype == 'Cash Payment'){
$sale_type = 'Cash';
$payment_status = 'paid';
}elseif($paymenttype == 'Online Payment'){
$sale_type = 'Online';
$payment_status = 'paid';
}else{
}
$sales_invoice_date = date("Y-m-d");
$payable_amt = $_POST['payable_amt'];
$net_amount = $_POST['net_amount'];
$db_handle = new DBController();
$custorders = $db_handle->runQuery("SELECT * FROM sales ORDER BY sales_id DESC LIMIT 1");
$salenums = $db_handle->numRows("SELECT * FROM sales ORDER BY sales_id DESC LIMIT 1");
if($salenums == 0){
$sales_id="SINV-.'$year.'-'.0001";
}else {
$sales_id=1;
}
foreach($custorders as $custorder){
$sales_id =$custorder['sales_id'];
$sales_id++;
// $sales_id =$custorder['sales_id']+1;
$zero = 0;
$qut = 'SINV';
$year = date("Y");
$sale_invoice_noyy =$qut.'-'.$year.'-'.$zero.''.$zero.''.$zero.''.$sales_id;
if(($sales_id >= '10') && ($sales_id < '100')){
$sale_invoice_no = $qut.'-'.$year.'-'.$zero.''.$zero.''.$zero.''.$sales_id;
}elseif(($sales_id >= '100')&&($sales_id < '1000')){
$sale_invoice_no = $qut.'-'.$year.'-'.$zero.''.$zero.''.$sales_id;
}elseif($sales_id >= '1000'){
$sale_invoice_no = $qut.'-'.$year.'-'.$sales_id;
}else{
$sale_invoice_no = $sale_invoice_noyy;
}
}
//$sale_invoice_no;
date_default_timezone_set("Asia/Kolkata");
$date = date("Y-m-d H:i:s");
$active = 'yes';
// $wallet_balance = '0.00';
$status = '1';
//echo $vcode;
$db_handle = new DBController();
$custdetailsnum = $db_handle-> numRows("SELECT * FROM student WHERE registration_no = '$customer_mobileno' ");
if($custdetailsnum == '0'){
$_SESSION['ERROR_MSG'] = "Please Add Customer";
$_SESSION['MSG_ALRT'] = "FALSE";
header('location:../../../../web/home/modules/university/Canteen/direct_sales/direct_sales_grid.php');
}else {
$db_handle = new DBController();
$newInsert = $db_handle->tableinsert("INSERT INTO sales(sale_type,saleInvoice_no,sale_invioce_date,customer_id,employee_id,counter_no,from_time,to_time,gross_amount,tax_amount,discount_amount,bill_dicount_rate,net_amount,payable_amount,sales_status,payment_status,payment_mode,created_on,created_by,is_active)
VALUES ('$sale_type','$sale_invoice_no','$sales_invoice_date','$customer_id','$employeecs_id','$counter_nos','$from_time','$to_time','$gross_amount','$tax_amount','$bill_discountpes','$discountrate','$net_amount','$payable_amt','$payment_status','$payment_status','$paymenttype','$date','$userId','$active')");
$cashpayment = $_POST['cashpayment'];
if($cashpayment){
$type='cash';
$db_handle = new DBController();
$newwalletinsert = $db_handle->tableinsert("INSERT INTO salepaymentdetails(saleid,customerid,type,amount,created_at,created_by)
VALUES ('$newInsert','$customer_id','$type','$cashpayment','$date','$userId')");
}
$onlinepayment = $_POST['onlinepayment'];
if($onlinepayment){
$type='online';
$db_handle = new DBController();
$newwalletinsert = $db_handle->tableinsert("INSERT INTO salepaymentdetails(saleid,customerid,type,amount,created_at,created_by)
VALUES ('$newInsert','$customer_id','$type','$onlinepayment','$date','$userId')");
}
$cardpayment = $_POST['cardpayment'];
if($cardpayment){
$type='card';
$db_handle = new DBController();
$newwalletinsert = $db_handle->tableinsert("INSERT INTO salepaymentdetails(saleid,customerid,type,amount,created_at,created_by)
VALUES ('$newInsert','$customer_id','$type','$cardpayment','$date','$userId')");
}
foreach($_SESSION['cart_items'] as $k => $v) {
$product = $v['itm'];
$db_handle = new DBController();
$product = $db_handle-> runQuery("SELECT * FROM canteen_item WHERE item_name ='$product'");
foreach($product as $productt) {
$product_id = $productt['item_id'];
}
$batch = $v['batch'];
$sales_quantity = $v['qt'];
$unit_rate = $v['rt'];
$amountz = $v['amt'];
$sale_discount_rate = '0.00';
$discountamt = '0.00';
$tax = $v['tax'];
$cgst_ratee = $v['cgstrt'];
if(!empty($cgst_ratee)){
$cgst_rate = $cgst_ratee;
}else{
$cgst_rate = 0;
}
$sgst_ratee = $v['sgstrt'];
if(!empty($sgst_ratee)){
$sgst_rate = $sgst_ratee;
}else{
$sgst_rate = 0;
}
$cgstamt = $v['cgstamt'];
$sgstamt = $v['sgstamt'];
$totalgstamt = $cgstamt + $sgstamt;
$net_amt = $v['namt'];
$puritem_id = $v['puritem_id'];
$purchase_qty = $v['purqty'];
$soldqty = $v['soldqty'];
$totalsalesqtyz = $soldqty + $sales_quantity;
$db_handle = new DBController();
$newUpdate = $db_handle->runMyUpdate("UPDATE canteen_purchase_item SET sold_quantity = '$totalsalesqtyz' WHERE purchase_item_id = '$puritem_id'");
$db_handle = new DBController();
$newInsert2 = $db_handle->tableinsert("INSERT INTO sales_item(sales_id,purchase_item_id,sale_quantity,sale_mrp,sale_discount_rate,sale_discount_amount,sale_amount,sale_cgst_rate,sale_sgst_rate,cgst_amt,sgst_amt,sale_gst_amount,sale_net_amount)
VALUES ('$newInsert','$puritem_id','$sales_quantity','$unit_rate','$sale_discount_rate','$discountamt','$amountz','$cgst_rate','$sgst_rate','$cgstamt','$sgstamt','$totalgstamt','$net_amt')");
$db_handle = new DBController();
$selectpurchase_inv = $db_handle-> runQuery("SELECT *,canteen_purchase_item.purchase_item_id,SUM(canteen_purchase_item.mrp) AS Totalmrpamt,SUM(item_selling_price.selling_price) AS Totalselling_priceamt FROM (canteen_purchase_item
INNER JOIN item_selling_price ON canteen_purchase_item.purchase_item_id = item_selling_price.purchase_item_id)
WHERE canteen_purchase_item.purchase_item_id = '$puritem_id'");
foreach($selectpurchase_inv as $respurinv) {
$MRP = $respurinv['Totalmrpamt'];
$SP = $respurinv['Totalselling_priceamt'];
$QTY = $sales_quantity;
$sale_mrp = $itemd['sale_mrp'];
$sale_netamount = $itemd['sale_net_amount'];
$sale_mrpp += $sale_netamount;
// $sale_mrpp += $sale_mrp;
$sale_mrppamt = number_format("$sale_mrpp",2);
$amtt = $QTY * $sale_mrp;
$amttt = number_format("$amtt",2);
$amttttotal += $amttt;
$amttttot = number_format("$amttttotal",2);
$mrp = $respurinv['mrp'];
$tmrp = $mrp * $QTY;
$Totalmrpamt += $tmrp;
$selling_price = $respurinv['selling_price'];
$tselling_price = $selling_price * $QTY;
$Totalbmpamt += $tselling_price;
$salesInvoiceamtz =$Totalmrpamt - $Totalbmpamt;
$salesInvoiceamt = number_format("$salesInvoiceamtz",2);
}
$db_handle = new DBController();
$newUpdate = $db_handle->runMyUpdate("UPDATE sales SET save_amount = '$salesInvoiceamtz' WHERE sales_id = '$newInsert'");
}
$saleinvoicenoenct = amebi_crypt($sale_invoice_no,e);
$returnamtvale = amebi_crypt($returnamtval,e);
if($newInsert2 == TRUE){
$_SESSION['ERROR_MSG'] = "Success";
$_SESSION['MSG_ALRT'] = "TRUE";
unset($_SESSION["cart_items"]);
header('location:../../../../web/home/modules/university/Canteen/direct_sales/sales_print_first.php?salesinvoiceno='.$saleinvoicenoenct.'&returnamtval='.$returnamtvale);
}else{
$_SESSION['ERROR_MSG'] = "Unsuccess";
$_SESSION['MSG_ALRT'] = "FALSE";
unset($_SESSION["cart_items"]);
header('location:../../../../web/home/modules/university/Canteen/direct_sales/sales_print_first.php?salesinvoiceno='.$saleinvoicenoenct.'&returnamtval='.$returnamtvale);
}
}
?>