Bug 7618 Escape HTML special characters for SQL displayed above results in Report...
[koha.git] / acqui / finishreceive.pl
blob90a85fe885c2f15b5b6ea18bb3eca37e69dee32b
1 #!/usr/bin/perl
3 #script to add a new item and to mark orders as received
4 #written 1/3/00 by chris@katipo.co.nz
6 # Copyright 2000-2002 Katipo Communications
8 # This file is part of Koha.
10 # Koha is free software; you can redistribute it and/or modify it under the
11 # terms of the GNU General Public License as published by the Free Software
12 # Foundation; either version 2 of the License, or (at your option) any later
13 # version.
15 # Koha is distributed in the hope that it will be useful, but WITHOUT ANY
16 # WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
17 # A PARTICULAR PURPOSE. See the GNU General Public License for more details.
19 # You should have received a copy of the GNU General Public License along
20 # with Koha; if not, write to the Free Software Foundation, Inc.,
21 # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
23 use strict;
24 use warnings;
25 use CGI;
26 use C4::Auth;
27 use C4::Output;
28 use C4::Context;
29 use C4::Acquisition;
30 use C4::Biblio;
31 use C4::Items;
32 use C4::Search;
33 use List::MoreUtils qw/any/;
35 my $input=new CGI;
36 my $flagsrequired = {acquisition => 'order_receive'};
37 my ($loggedinuser, $cookie, $sessionID) = checkauth($input, 0, $flagsrequired, 'intranet');
38 my $user=$input->remote_user;
39 my $biblionumber = $input->param('biblionumber');
40 my $biblioitemnumber=$input->param('biblioitemnumber');
41 my $ordernumber=$input->param('ordernumber');
42 my $origquantityrec=$input->param('origquantityrec');
43 my $quantityrec=$input->param('quantityrec');
44 my $quantity=$input->param('quantity');
45 my $unitprice=$input->param('cost');
46 my $invoiceno=$input->param('invoice');
47 my $datereceived=$input->param('datereceived');
48 my $replacement=$input->param('rrp');
49 my $gst=$input->param('gst');
50 my $freight=$input->param('freight');
51 my $booksellerid = $input->param('booksellerid');
52 my $cnt=0;
53 my $error_url_str;
54 my $ecost = $input->param('ecost');
55 my $note = $input->param("note");
57 #need old recievedate if we update the order, parcel.pl only shows the right parcel this way FIXME
58 if ($quantityrec > $origquantityrec ) {
59 # now, add items if applicable
60 if (C4::Context->preference('AcqCreateItem') eq 'receiving') {
62 my @tags = $input->param('tag');
63 my @subfields = $input->param('subfield');
64 my @field_values = $input->param('field_value');
65 my @serials = $input->param('serial');
66 my @itemid = $input->param('itemid');
67 my @ind_tag = $input->param('ind_tag');
68 my @indicator = $input->param('indicator');
69 #Rebuilding ALL the data for items into a hash
70 # parting them on $itemid.
71 my %itemhash;
72 my $countdistinct;
73 my $range=scalar(@itemid);
74 for (my $i=0; $i<$range; $i++){
75 unless ($itemhash{$itemid[$i]}){
76 $countdistinct++;
78 push @{$itemhash{$itemid[$i]}->{'tags'}},$tags[$i];
79 push @{$itemhash{$itemid[$i]}->{'subfields'}},$subfields[$i];
80 push @{$itemhash{$itemid[$i]}->{'field_values'}},$field_values[$i];
81 push @{$itemhash{$itemid[$i]}->{'ind_tag'}},$ind_tag[$i];
82 push @{$itemhash{$itemid[$i]}->{'indicator'}},$indicator[$i];
84 foreach my $item (keys %itemhash){
85 my $xml = TransformHtmlToXml( $itemhash{$item}->{'tags'},
86 $itemhash{$item}->{'subfields'},
87 $itemhash{$item}->{'field_values'},
88 $itemhash{$item}->{'ind_tag'},
89 $itemhash{$item}->{'indicator'},'ITEM');
90 my $record=MARC::Record::new_from_xml($xml, 'UTF-8');
91 my (undef,$bibitemnum,$itemnumber) = AddItemFromMarc($record,$biblionumber);
92 NewOrderItem($itemnumber, $ordernumber);
96 # save the quantity received.
97 $datereceived = ModReceiveOrder($biblionumber,$ordernumber, $quantityrec ,$user,$unitprice,$invoiceno,$freight,$replacement,undef,$datereceived);
100 update_item( $_ ) foreach GetItemnumbersFromOrder( $ordernumber );
102 print $input->redirect("/cgi-bin/koha/acqui/parcel.pl?invoice=$invoiceno&booksellerid=$booksellerid&freight=$freight&gst=$gst&datereceived=$datereceived$error_url_str");
104 ################################ End of script ################################
106 sub update_item {
107 my ( $itemnumber ) = @_;
109 ModItem( {
110 booksellerid => $booksellerid,
111 dateaccessioned => $datereceived,
112 price => $unitprice,
113 replacementprice => $replacement,
114 replacementpricedate => $datereceived,
115 }, $biblionumber, $itemnumber );