Bug 19677: Properly escape enumchrom/serialseq data
[koha.git] / members / maninvoice.pl
blob3f49598e0e7fe4e3603629f7f50da0bbaf91580b
1 #!/usr/bin/perl
3 #written 11/1/2000 by chris@katipo.oc.nz
4 #script to display borrowers account details
7 # Copyright 2000-2002 Katipo Communications
8 # Copyright 2010 BibLibre
10 # This file is part of Koha.
12 # Koha is free software; you can redistribute it and/or modify it
13 # under the terms of the GNU General Public License as published by
14 # the Free Software Foundation; either version 3 of the License, or
15 # (at your option) any later version.
17 # Koha is distributed in the hope that it will be useful, but
18 # WITHOUT ANY WARRANTY; without even the implied warranty of
19 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
20 # GNU General Public License for more details.
22 # You should have received a copy of the GNU General Public License
23 # along with Koha; if not, see <http://www.gnu.org/licenses>.
25 use strict;
26 use warnings;
28 use C4::Auth;
29 use C4::Output;
30 use CGI qw ( -utf8 );
31 use C4::Members;
32 use C4::Accounts;
33 use C4::Items;
34 use C4::Members::Attributes qw(GetBorrowerAttributes);
35 use Koha::Patron::Images;
37 use Koha::Patron::Categories;
39 my $input=new CGI;
40 my $flagsrequired = { borrowers => 1 };
42 my $borrowernumber=$input->param('borrowernumber');
45 # get borrower details
46 my $data=GetMember('borrowernumber'=>$borrowernumber);
47 my $add=$input->param('add');
48 if ($add){
49 if ( checkauth( $input, 0, $flagsrequired, 'intranet' ) ) {
50 # print $input->header;
51 my $barcode=$input->param('barcode');
52 my $itemnum;
53 if ($barcode) {
54 $itemnum = GetItemnumberFromBarcode($barcode);
56 my $desc=$input->param('desc');
57 my $amount=$input->param('amount');
58 my $type=$input->param('type');
59 my $note = $input->param('note');
60 my $error = manualinvoice( $borrowernumber, $itemnum, $desc, $type, $amount, $note );
61 if ($error) {
62 my ( $template, $loggedinuser, $cookie ) = get_template_and_user(
63 { template_name => "members/maninvoice.tt",
64 query => $input,
65 type => "intranet",
66 authnotrequired => 0,
67 flagsrequired => $flagsrequired,
68 debug => 1,
71 if ( $error =~ /FOREIGN KEY/ && $error =~ /itemnumber/ ) {
72 $template->param( 'ITEMNUMBER' => 1 );
74 $template->param( 'ERROR' => $error );
75 output_html_with_http_headers $input, $cookie, $template->output;
76 } else {
77 print $input->redirect("/cgi-bin/koha/members/boraccount.pl?borrowernumber=$borrowernumber");
78 exit;
81 } else {
83 my ($template, $loggedinuser, $cookie) = get_template_and_user({
84 template_name => "members/maninvoice.tt",
85 query => $input,
86 type => "intranet",
87 authnotrequired => 0,
88 flagsrequired => { borrowers => 1,
89 updatecharges => 'remaining_permissions' },
90 debug => 1,
91 });
93 # get authorised values with type of MANUAL_INV
94 my @invoice_types;
95 my $dbh = C4::Context->dbh;
96 my $sth = $dbh->prepare('SELECT * FROM authorised_values WHERE category = "MANUAL_INV"');
97 $sth->execute();
98 while ( my $row = $sth->fetchrow_hashref() ) {
99 push @invoice_types, $row;
101 $template->param( invoice_types_loop => \@invoice_types );
103 if ( $data->{'category_type'} eq 'C') {
104 my $patron_categories = Koha::Patron::Categories->search_limited({ category_type => 'A' }, {order_by => ['categorycode']});
105 $template->param( 'CATCODE_MULTI' => 1) if $patron_categories->count > 1;
106 $template->param( 'catcode' => $patron_categories->next->categorycode ) if $patron_categories->count == 1;
109 $template->param( adultborrower => 1 ) if ( $data->{'category_type'} eq 'A' || $data->{'category_type'} eq 'I' );
110 my $patron_image = Koha::Patron::Images->find($data->{borrowernumber});
111 $template->param( picture => 1 ) if $patron_image;
113 if (C4::Context->preference('ExtendedPatronAttributes')) {
114 my $attributes = GetBorrowerAttributes($borrowernumber);
115 $template->param(
116 ExtendedPatronAttributes => 1,
117 extendedattributes => $attributes
121 $template->param(%$data);
122 $template->param(
123 finesview => 1,
124 borrowernumber => $borrowernumber,
125 categoryname => $data->{'description'},
126 is_child => ($data->{'category_type'} eq 'C'),
128 output_html_with_http_headers $input, $cookie, $template->output;