X-Git-Url: http://git.harvie.cz/?a=blobdiff_plain;f=assistants%2Fstore.inc.php;h=f9725765a16739dd2e05fc020aa8f72d862bd321;hb=6f7943a08cc115d137c5777408259009433ea8ca;hp=8af2da6fb70cd223ebd7f79ad6280da26f8397dc;hpb=16261142aaa2e3477b476d84c662a14bb3d1fa82;p=mirrors%2FSokoMan.git

diff --git a/assistants/store.inc.php b/assistants/store.inc.php
index 8af2da6..f972576 100644
--- a/assistants/store.inc.php
+++ b/assistants/store.inc.php
@@ -1,28 +1,54 @@
 <?php
-$script = $_SERVER['SCRIPT_NAME'].'/assistant/store';
-switch($step) {
+switch($SUBPATH[0]) {
 	default: case 1:
-?>
-<form action="<?=$script?>/2" method="GET">
-	model_barcode: <input type="text" name="barcode" />
-	<input type="submit" value="STORE" />
-</form>
-<?php
+		$barcode = isset($_GET['barcode']) ? htmlspecialchars($_GET['barcode']) : ''; //TODO: XSS
+		echo $this->html->form("$URL/2", 'GET', array(
+			array('barcode',$barcode,'text',false,'autofocus','model_barcode:'),
+			array('quantity','1','text',false,false,'quantity:'),
+			array(false,'STORE','submit')
+		));
 		break;
 	case 2:
 		$model_id = $this->db->map_unique('model_barcode', $_GET['barcode'], 'model_id', 'model');
+
+		$disable_cols = array('status_id','item_price_out','item_customer', 'model_id','item_quantity');
+		if($this->db->map_unique('model_barcode', $_GET['barcode'], 'model_countable', 'model')) {
+			//$disable_cols[] = 'item_quantity';
+			$item_serial = '';
+			$item_quantity = 1;
+			$action = $_SERVER['SCRIPT_NAME'].'/item/new';
+		} else {
+			$quantity_added = $_GET['quantity'];
+			if($quantity_added <= 0) $this->post_redirect_get("$URL_INTERNAL/1","Can't store non-possitive amount of items!");
+			if(!is_numeric($quantity_added)) $quantity_added = 1;
+			$quantity_stored = $this->db->map_unique('item_serial', $_GET['barcode'], 'item_quantity', 'item', false);
+			$item_price_in = $this->db->map_unique('item_serial', $_GET['barcode'], 'item_price_in', 'item', false);
+			$item_price_out = $this->db->map_unique('item_serial', $_GET['barcode'], 'item_price_out', 'item', false);
+			$model_price_in = $this->db->map_unique('model_barcode', $_GET['barcode'], 'model_price_in', 'model');
+			$model_price_out = $this->db->map_unique('model_barcode', $_GET['barcode'], 'model_price_out', 'model');
+			if(!is_numeric($quantity_stored)) $quantity_stored = 0;
+			echo("Quantity stored: ".$quantity_stored);
+
+			$disable_cols[] = 'item_serial';
+			$item_serial = $_GET['barcode'];
+			$item_quantity = $quantity_stored + $quantity_added;
+			$action = $_SERVER['SCRIPT_NAME'].'/item/0/edit';
+		}
 		$columns = $this->db->get_columns('item');
-    $selectbox = $this->db->columns_get_selectbox($columns, 'item');
 
+    $selectbox = $this->db->columns_get_selectbox($columns, 'item');
 		//print_r(array('<pre>', $selectbox));
 		//foreach($selectbox['model_id'] as $id => $name) if($id != $model_id) unset($selectbox['model_id'][$id]);
 		$current = array(array(
 			'model_id' => $model_id,
-			'item_quantity' => 1,
-			'status_id' => 1
+			'item_serial' => $item_serial,
+			'item_quantity' => $item_quantity,
+			'status_id' => 1,
+			'item_price_in' => $item_price_in + ($quantity_added * $model_price_in),
+			'item_price_out' => $item_price_out + ($quantity_added * $model_price_out),
+			'item_author' => $this->db->auth->get_user_id()
 		));
 
-		$action = $_SERVER['SCRIPT_NAME'].'/item/new';
-    echo $this->html->render_insert_form('item', $columns, $selectbox, $current, false, $action);
+    echo $this->html->render_insert_form('item', $columns, $selectbox, $current, $disable_cols, $action);
 		break;
 }
