Bug 7618 Escape HTML special characters for SQL displayed above results in Report...
[koha.git] / acqui / orderreceive.pl
blob659c10368a8d58902286d809b934d57812e618fa
1 #!/usr/bin/perl
4 #script to recieve orders
5 #written by chris@katipo.co.nz 24/2/2000
7 # Copyright 2000-2002 Katipo Communications
9 # This file is part of Koha.
11 # Koha is free software; you can redistribute it and/or modify it under the
12 # terms of the GNU General Public License as published by the Free Software
13 # Foundation; either version 2 of the License, or (at your option) any later
14 # version.
16 # Koha is distributed in the hope that it will be useful, but WITHOUT ANY
17 # WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
18 # A PARTICULAR PURPOSE. See the GNU General Public License for more details.
20 # You should have received a copy of the GNU General Public License along
21 # with Koha; if not, write to the Free Software Foundation, Inc.,
22 # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
24 =head1 NAME
26 orderreceive.pl
28 =head1 DESCRIPTION
30 This script shows all order already receive and all pendings orders.
31 It permit to write a new order as 'received'.
33 =head1 CGI PARAMETERS
35 =over 4
37 =item booksellerid
39 to know on what supplier this script has to display receive order.
41 =item receive
43 =item invoice
45 the number of this invoice.
47 =item freight
49 =item biblio
51 The biblionumber of this order.
53 =item datereceived
55 =item catview
57 =item gst
59 =back
61 =cut
63 use strict;
64 #use warnings; FIXME - Bug 2505
65 use CGI;
66 use C4::Context;
67 use C4::Koha; # GetKohaAuthorisedValues GetItemTypes
68 use C4::Acquisition;
69 use C4::Auth;
70 use C4::Output;
71 use C4::Dates qw/format_date/;
72 use C4::Bookseller qw/ GetBookSellerFromId /;
73 use C4::Budgets qw/ GetBudget /;
74 use C4::Members;
75 use C4::Branch; # GetBranches
76 use C4::Items;
77 use C4::Biblio;
78 use C4::Suggestions;
81 my $input = new CGI;
83 my $dbh = C4::Context->dbh;
84 my $booksellerid = $input->param('booksellerid');
85 my $ordernumber = $input->param('ordernumber');
86 my $search = $input->param('receive');
87 my $invoice = $input->param('invoice');
88 my $freight = $input->param('freight');
89 my $datereceived = $input->param('datereceived');
92 $datereceived = $datereceived ? C4::Dates->new($datereceived, 'iso') : C4::Dates->new();
94 my $bookseller = GetBookSellerFromId($booksellerid);
95 my $input_gst = ($input->param('gst') eq '' ? undef : $input->param('gst'));
96 my $gst= $input_gst // $bookseller->{gstrate} // C4::Context->preference("gist") // 0;
97 my $results = SearchOrder($ordernumber,$search);
100 my $count = scalar @$results;
101 my $order = GetOrder($ordernumber);
104 my $date = @$results[0]->{'entrydate'};
106 my ( $template, $loggedinuser, $cookie ) = get_template_and_user(
108 template_name => "acqui/orderreceive.tmpl",
109 query => $input,
110 type => "intranet",
111 authnotrequired => 0,
112 flagsrequired => {acquisition => 'order_receive'},
113 debug => 1,
117 # prepare the form for receiving
118 if ( $count == 1 ) {
119 if (C4::Context->preference('AcqCreateItem') eq 'receiving') {
120 # prepare empty item form
121 my $cell = PrepareItemrecordDisplay('','','','ACQ');
122 unless ($cell) {
123 $cell = PrepareItemrecordDisplay('','','','');
124 $template->param('NoACQframework' => 1);
126 my @itemloop;
127 push @itemloop,$cell;
129 $template->param(items => \@itemloop);
132 if ( @$results[0]->{'quantityreceived'} == 0 ) {
133 @$results[0]->{'quantityreceived'} = '';
135 if ( @$results[0]->{'unitprice'} == 0 ) {
136 @$results[0]->{'unitprice'} = '';
139 my $suggestion = GetSuggestionInfoFromBiblionumber(@$results[0]->{'biblionumber'});
141 my $authorisedby = @$results[0]->{'authorisedby'};
142 my $member = GetMember( borrowernumber => $authorisedby );
144 my $budget = GetBudget( @$results[0]->{'budget_id'} );
146 $template->param(
147 count => 1,
148 biblionumber => @$results[0]->{'biblionumber'},
149 ordernumber => @$results[0]->{'ordernumber'},
150 biblioitemnumber => @$results[0]->{'biblioitemnumber'},
151 booksellerid => @$results[0]->{'booksellerid'},
152 freight => $freight,
153 gst => $gst,
154 name => $bookseller->{'name'},
155 date => format_date($date),
156 title => @$results[0]->{'title'},
157 author => @$results[0]->{'author'},
158 copyrightdate => @$results[0]->{'copyrightdate'},
159 isbn => @$results[0]->{'isbn'},
160 seriestitle => @$results[0]->{'seriestitle'},
161 bookfund => $budget->{budget_name},
162 quantity => @$results[0]->{'quantity'},
163 quantityreceivedplus1 => @$results[0]->{'quantityreceived'} + 1,
164 quantityreceived => @$results[0]->{'quantityreceived'},
165 rrp => @$results[0]->{'rrp'},
166 ecost => @$results[0]->{'ecost'},
167 unitprice => @$results[0]->{'unitprice'},
168 memberfirstname => $member->{firstname} || "",
169 membersurname => $member->{surname} || "",
170 invoice => $invoice,
171 datereceived => $datereceived->output(),
172 datereceived_iso => $datereceived->output('iso'),
173 notes => $order->{notes},
174 suggestionid => $suggestion->{suggestionid},
175 surnamesuggestedby => $suggestion->{surnamesuggestedby},
176 firstnamesuggestedby => $suggestion->{firstnamesuggestedby},
179 else {
180 my @loop;
181 for ( my $i = 0 ; $i < $count ; $i++ ) {
182 my %line = %{ @$results[$i] };
184 $line{invoice} = $invoice;
185 $line{datereceived} = $datereceived->output();
186 $line{freight} = $freight;
187 $line{gst} = $gst;
188 $line{title} = @$results[$i]->{'title'};
189 $line{author} = @$results[$i]->{'author'};
190 $line{booksellerid} = $booksellerid;
191 push @loop, \%line;
194 $template->param(
195 loop => \@loop,
196 booksellerid => $booksellerid,
199 my $op = $input->param('op');
200 if ($op eq 'edit'){
201 $template->param(edit => 1);
203 output_html_with_http_headers $input, $cookie, $template->output;