CasperSecurity
<?php
session_start();
include '../../../web/connection/connection.php';
include '../../../web/connection/con.php';
include '../../../web/connection/functions/encryption.php';
$purchase_invoice_noe = $_REQUEST['purchase_invoice_no'];
$purchase_invoice_datee = $_REQUEST['purchase_invoice_date'];
$supplier_name = $_REQUEST['sup_name'];
$suplier_addresse = $_REQUEST['suplier_address'];
//$item_group_code = $_REQUEST['item_code'];
$item_type = $_REQUEST['item_type'];
echo $item_group_name = $_REQUEST['item_groups'];
$brand_name = $_REQUEST['brand_name'];
//$code = $_REQUEST['code'];
$item_name = $_REQUEST['item_name'];
$item_unit = $_REQUEST['item_unit'];
$hsn_code = $_REQUEST['hsn_code'];
$sgst_rate = $_REQUEST['sgst_rate'];
$cgst_rate = $_REQUEST['cgst_rate'];
$igst_rate = $_REQUEST['igst_rate'];
$returnable = $_REQUEST['returnable'];
$purchase_idzy = $_REQUEST['purchase_idzy'];
$item_mrp = $_REQUEST['item_mrp'];
//$composition = $_REQUEST['composition'];
//$altmedicine = $_REQUEST['altmedicine'];
$item_photo1 = $_FILES['item_photo1']['name'];
$photoPath = "../../../web/uploads/imguploads/";
$imgtype = pathinfo($item_photo1,PATHINFOEXTENSION);
$maxsize = 2097152;
$tempname = $_FILES['item_photo1']['tmp_name'];
$photoUpload = move_uploaded_file($tempname,$photoPath.$item_photo1);
$item_photo2 = $_FILES['item_photo2']['name'];
$photoPath = "../../../web/uploads/imguploads/";
$imgtype = pathinfo($item_photo2,PATHINFOEXTENSION);
$maxsize = 2097152;
$tempname = $_FILES['item_photo2']['tmp_name'];
$photoUpload = move_uploaded_file($tempname,$photoPath.$item_photo2);
$item_photo3 = $_FILES['item_photo3']['name'];
$photoPath = "../../../web/uploads/imguploads/";
$imgtype = pathinfo($item_photo3,PATHINFOEXTENSION);
$maxsize = 2097152;
$tempname = $_FILES['item_photo3']['tmp_name'];
$photoUpload = move_uploaded_file($tempname,$photoPath.$item_photo3);
$item_photo4 = $_FILES['item_photo4']['name'];
$photoPath = "../../../web/uploads/imguploads/";
$imgtype = pathinfo($item_photo4,PATHINFOEXTENSION);
$maxsize = 2097152;
$tempname = $_FILES['item_photo4']['tmp_name'];
$photoUpload = move_uploaded_file($tempname,$photoPath.$item_photo4);
$date = date("Y-m-d");
$active = 'yes';
$userId = $_SESSION['USER_ID'];
if(!empty($item_type)){
$selecttry ="SELECT * FROM item_group WHERE item_group_name = '$item_group_name' ORDER BY item_group_id DESC";
$querytry=mysqli_query($con, $selecttry);
$resulttry=mysqli_fetch_assoc($querytry);
//$item_group_code = $resulttry['item_group_code'];
$item_group_idk = $resulttry['item_group_id']+1;
$zeros = 0;
$item_group_codez = $zeros.''.$item_group_idk;
$selecttr="SELECT * FROM item ORDER BY item_id DESC";
$querytr=mysqli_query($con, $selecttr);
$resulttr=mysqli_fetch_assoc($querytr);
$item_id = $resulttr['item_id']+1;
$zero = 0;
$item_codeyy = $item_group_codez.'-'.$zero.''.$zero.''.$zero.''.$zero.''.$item_id;
if(($item_id >= '10') && ($item_id < '100')){
$item_code = $item_group_codez.'-'.$zero.''.$zero.''.$zero.''.$item_id;
}elseif(($item_id >= '100')&&($item_id < '1000')){
$item_code = $item_group_codez.'-'.$zero.''.$zero.''.$item_id;
}elseif($item_id >= '1000'){
$item_code = $item_group_codez.'-'.$item_id;
}else{
$item_code = $item_codeyy;
}
$db_handle = new DBController();
$igs = $db_handle-> runQuery("SELECT * FROM item_group WHERE item_group_name = '$item_group_name'");
foreach($igs as $ig){
$newinsertitem_group_id = $ig['item_group_id'];
}
$db_handle = new DBController();
$medshelve_numrows = $db_handle->numRows("SELECT * FROM item_group WHERE item_group_name = '$item_group_name'");
if($medshelve_numrows >= '1'){
}else{
$db_handle = new DBController();
$newinsertitem_group_id = $db_handle->tableinsert("INSERT INTO item_group(item_group_code,item_group_name,created_on,created_by,is_active)
VALUES ('$item_group_codez','$item_group_name','$date','$userId','$active')");
}
$db_handle = new DBController();
$newInsert2 = $db_handle->tableinsert("INSERT INTO item(item_group_id,item_type,item_code,item_name,item_unit,hsn_code,returnable,created_on,created_by,is_active)
VALUES ('$newinsertitem_group_id','$item_type','$item_code','$item_name','$item_unit','$hsn_code','$returnable','$date','$userId','$active')");
$newInsert3 = $db_handle->tableinsert("INSERT INTO item_gst(item_id,effective_date,sgst_rate,cgst_rate,igst_rate,is_active)
VALUES ('$newInsert2','$date','$sgst_rate','$cgst_rate','$igst_rate','$active')");
$purchase_invioce_date =amebi_crypt($purchase_invoice_datee,e);
$purchase_invoice_no =amebi_crypt($purchase_invoice_noe,e);
$supplier_nam =amebi_crypt($supplier_name,e);
$item_namea =amebi_crypt($item_name,e);
$sgst_ratey =amebi_crypt($sgst_rate,e);
$cgst_ratey =amebi_crypt($cgst_rate,e);
$igst_ratey =amebi_crypt($igst_rate,e);
$purchase_idyr =amebi_crypt($purchase_idzy,e);
$hsn_coder =amebi_crypt($hsn_code,e);
$brand_namer =amebi_crypt($brand_name,e);
$compositions =amebi_crypt($composition,e);
$altmedicines =amebi_crypt($altmedicine,e);
if($newInsert3 == TRUE){
$_SESSION['ERROR_MSG'] = "Success";
$_SESSION['MSG_ALRT'] = "TRUE";
header('location:../../../web/home/modules/stock/purchase/purchase.php?pinvoiceno='.$purchase_invoice_no.'&pinvoicedate='.$purchase_invioce_date.'&supnam='.$supplier_nam.'&itemname='.$item_namea.'&sgstrate='.$sgst_ratey.'&cgstrate='.$cgst_ratey.'&igstrate='.$igst_ratey.'&purchaseid='.$purchase_idyr.'&hsncode='.$hsn_coder.'&compo='.$compositions.'&altm='.$altmedicines);
}else{
$_SESSION['ERROR_MSG'] = "Unsuccess";
$_SESSION['MSG_ALRT'] = "FALSE";
header('location:../../../web/home/modules/stock/purchase/purchase.php?pinvoiceno='.$purchase_invoice_no.'&pinvoicedate='.$purchase_invioce_date.'&supnam='.$supplier_nam.'&itemname='.$item_namea.'&sgstrate='.$sgst_ratey.'&cgstrate='.$cgst_ratey.'&igstrate='.$igst_ratey.'&purchaseid='.$purchase_idyr.'&hsncode='.$hsn_coder.'&compo='.$compositions.'&altm='.$altmedicines);
}
}
?>