mirror of
https://github.com/opensourcepos/opensourcepos.git
synced 2025-12-31 13:37:54 -05:00
f49d763254
* Remove HtmlPurifier calls - All calls to Services::htmlPurifier()->purify() removed from data received from view. - Bootstrap and bootswatch bump in package-lock.json Signed-off-by: objecttothis <objecttothis@gmail.com> * Pre-view filtering Items Controller - Refactored code for clarity - Created and called sanitization functions. - Sanitize TEXT type Attributes before being sent to the view. Signed-off-by: objecttothis <objecttothis@gmail.com> * Pre-view filtering Customers Controller - Refactored code for clarity - Replaced == with === operator to prevent type juggling - Added Sanitization of Customer data before being sent to the view Signed-off-by: objecttothis <objecttothis@gmail.com> * Bump bootstrap-table to 1.23.1 - Bump bootstrap-table to 1.23.1 in attempt to resolve issue with sticky headers - Sanitize attribute data in tables - Sanitize item data with controller function. Signed-off-by: objecttothis <objecttothis@gmail.com> * Pre-view filtering Items Controller - Refactored code for clarity - Created and called sanitization functions. - Sanitize TEXT type Attributes before being sent to the view. Signed-off-by: objecttothis <objecttothis@gmail.com> * Sanitize Item data - Sanitize category and item_number before display in forms. - refactor check in pic_filename for empty to be best practices compliant. - Added TODO Signed-off-by: objecttothis <objecttothis@gmail.com> * Minor changes - Refactored for code clarity. - Removed extra blank lines. - Minor reformatting. - Added PHPdocs - bumped bootstrap-table to 1.23.2 Signed-off-by: objecttothis <objecttothis@gmail.com> * Pre-view filtering Items Controller - Refactored code for clarity - Created and called sanitization functions. - Sanitize TEXT type Attributes before being sent to the view. Signed-off-by: objecttothis <objecttothis@gmail.com> * Sanitize Item data - Sanitize category and item_number before display in forms. - refactor check in pic_filename for empty to be best practices compliant. - Added TODO Signed-off-by: objecttothis <objecttothis@gmail.com> --------- Signed-off-by: objecttothis <objecttothis@gmail.com> Co-authored-by: objecttothis <objecttothis@gmail.com>
153 lines
3.4 KiB
PHP
153 lines
3.4 KiB
PHP
<?php
|
|
|
|
namespace App\Controllers;
|
|
|
|
use App\Models\Tax_code;
|
|
use Config\Services;
|
|
|
|
/**
|
|
* @property tax_code tax_code
|
|
*/
|
|
class Tax_codes extends Secure_Controller
|
|
{
|
|
private Tax_code $tax_code;
|
|
|
|
public function __construct()
|
|
{
|
|
parent::__construct('tax_codes');
|
|
|
|
$this->tax_code = model(Tax_code::class);
|
|
helper('tax_helper');
|
|
}
|
|
|
|
|
|
/**
|
|
* @return void
|
|
*/
|
|
public function getIndex(): void
|
|
{
|
|
echo view('taxes/tax_codes', $this->get_data());
|
|
}
|
|
|
|
/**
|
|
* @return array
|
|
*/
|
|
public function get_data(): array
|
|
{
|
|
|
|
$data['table_headers'] = get_tax_code_table_headers();
|
|
return $data;
|
|
}
|
|
|
|
/**
|
|
* Returns tax_category table data rows. This will be called with AJAX.
|
|
*
|
|
* @return void
|
|
*/
|
|
public function getSearch(): void
|
|
{
|
|
$search = $this->request->getGet('search');
|
|
$limit = $this->request->getGet('limit', FILTER_SANITIZE_NUMBER_INT);
|
|
$offset = $this->request->getGet('offset', FILTER_SANITIZE_NUMBER_INT);
|
|
$sort = $this->request->getGet('sort', FILTER_SANITIZE_FULL_SPECIAL_CHARS);
|
|
$order = $this->request->getGet('order', FILTER_SANITIZE_FULL_SPECIAL_CHARS);
|
|
|
|
$tax_codes = $this->tax_code->search($search, $limit, $offset, $sort, $order);
|
|
$total_rows = $this->tax_code->get_found_rows($search);
|
|
|
|
$data_rows = [];
|
|
|
|
foreach($tax_codes->getResult() as $tax_code)
|
|
{
|
|
$data_rows[] = get_tax_code_data_row($tax_code);
|
|
}
|
|
|
|
echo json_encode (['total' => $total_rows, 'rows' => $data_rows]);
|
|
}
|
|
|
|
/**
|
|
* @param int $row_id
|
|
* @return void
|
|
*/
|
|
public function getRow(int $row_id): void
|
|
{
|
|
$data_row = get_tax_code_data_row($this->tax_code->get_info($row_id));
|
|
|
|
echo json_encode($data_row);
|
|
}
|
|
|
|
/**
|
|
* @param int $tax_code_id
|
|
* @return void
|
|
*/
|
|
public function getView(int $tax_code_id = NEW_ENTRY): void
|
|
{
|
|
$data['tax_code_info'] = $this->tax_code->get_info($tax_code_id);
|
|
|
|
echo view("taxes/tax_code_form", $data);
|
|
}
|
|
|
|
|
|
/**
|
|
* @param int $tax_code_id
|
|
* @return void
|
|
*/
|
|
public function postSave(int $tax_code_id = NEW_ENTRY): void
|
|
{
|
|
$tax_code_data = [
|
|
'tax_code' => $this->request->getPost('tax_code', FILTER_SANITIZE_FULL_SPECIAL_CHARS),
|
|
'tax_code_name' => $this->request->getPost('tax_code_name', FILTER_SANITIZE_FULL_SPECIAL_CHARS),
|
|
'city' => $this->request->getPost('city', FILTER_SANITIZE_FULL_SPECIAL_CHARS),
|
|
'state' => $this->request->getPost('state', FILTER_SANITIZE_FULL_SPECIAL_CHARS)
|
|
];
|
|
|
|
if($this->tax_code->save($tax_code_data))
|
|
{
|
|
if($tax_code_id == NEW_ENTRY)
|
|
{
|
|
echo json_encode ([
|
|
'success' => true,
|
|
'message' => lang('Tax_codes.successful_adding'),
|
|
'id' => $tax_code_data['tax_code_id']
|
|
]);
|
|
}
|
|
else
|
|
{
|
|
echo json_encode ([
|
|
'success' => true,
|
|
'message' => lang('Tax_codes.successful_updating'),
|
|
'id' => $tax_code_id
|
|
]);
|
|
}
|
|
}
|
|
else
|
|
{
|
|
echo json_encode ([
|
|
'success' => false,
|
|
'message' => lang('Tax_codes.error_adding_updating') . ' ' . $tax_code_data['tax_code_id'],
|
|
'id' => NEW_ENTRY
|
|
]);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* @return void
|
|
*/
|
|
public function postDelete(): void
|
|
{
|
|
$tax_codes_to_delete = $this->request->getPost('ids', FILTER_SANITIZE_NUMBER_INT);
|
|
|
|
if($this->tax_code->delete_list($tax_codes_to_delete))
|
|
{
|
|
echo json_encode ([
|
|
'success' => true,
|
|
'message' => lang('Tax_codes.successful_deleted') . ' ' . count($tax_codes_to_delete) . ' ' . lang('Tax_codes.one_or_multiple')
|
|
]);
|
|
}
|
|
else
|
|
{
|
|
echo json_encode (['success' => false, 'message' => lang('Tax_codes.cannot_be_deleted')]);
|
|
}
|
|
}
|
|
}
|