quote($_SERVER['REMOTE_ADDR']).', '.$mdb2->quote($user->id); $sql = "insert into tt_expense_items (date, user_id, group_id, client_id, project_id, name, cost, invoice_id, paid, created, created_ip, created_by, status) ". "values (".$mdb2->quote($date).", $user_id, $group_id, ".$mdb2->quote($client_id).", ".$mdb2->quote($project_id). ", ".$mdb2->quote($name).", ".$mdb2->quote($cost).", ".$mdb2->quote($invoice_id).", $paid $created, ".$mdb2->quote($status).")"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) return false; $id = $mdb2->lastInsertID('tt_expense_items', 'id'); return $id; } // update - updates a record in tt_expense_items table. static function update($fields) { global $user; $mdb2 = getConnection(); $id = (int) $fields['id']; $date = $fields['date']; $user_id = (int) $fields['user_id']; $client_id = $fields['client_id']; $project_id = $fields['project_id']; $name = $fields['name']; $cost = str_replace(',', '.', $fields['cost']); $invoice_id = $fields['invoice_id']; $paid_part = ''; if ($user->can('manage_invoices') && $user->isPluginEnabled('ps')) { $paid_part = $fields['paid'] ? ', paid = 1' : ', paid = 0'; } $modified_part = ', modified = now(), modified_ip = '.$mdb2->quote($_SERVER['REMOTE_ADDR']).', modified_by = '.$mdb2->quote($user->id); $sql = "UPDATE tt_expense_items set date = ".$mdb2->quote($date).", user_id = $user_id, client_id = ".$mdb2->quote($client_id). ", project_id = ".$mdb2->quote($project_id).", name = ".$mdb2->quote($name). ", cost = ".$mdb2->quote($cost)."$paid_part $modified_part, invoice_id = ".$mdb2->quote($invoice_id). " WHERE id = $id"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) return false; return true; } // markDeleted - marks an item as deleted in tt_expense_items table. static function markDeleted($id, $user_id) { $mdb2 = getConnection(); $sql = "update tt_expense_items set status = NULL where id = $id and user_id = $user_id"; $affected = $mdb2->exec($sql); if (is_a($affected, 'PEAR_Error')) return false; return true; } // getTotalForDay - gets total expenses for a user for a specific date. static function getTotalForDay($user_id, $date) { global $user; $mdb2 = getConnection(); $sql = "select sum(cost) as sm from tt_expense_items where user_id = $user_id and date = ".$mdb2->quote($date)." and status = 1"; $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { $val = $res->fetchRow(); $val['sm'] = str_replace('.', $user->decimal_mark, $val['sm']); return $val['sm']; } return false; } // getItem - retrieves an entry from tt_expense_items table. static function getItem($id, $user_id) { global $user; $mdb2 = getConnection(); $client_field = null; if ($user->isPluginEnabled('cl')) $client_field = ", c.name as client_name"; $left_joins = ""; $left_joins = " left join tt_projects p on (ei.project_id = p.id)"; if ($user->isPluginEnabled('cl')) $left_joins .= " left join tt_clients c on (ei.client_id = c.id)"; $sql = "select ei.id, ei.date, ei.client_id, ei.project_id, ei.name, ei.cost, ei.invoice_id, ei.paid $client_field, p.name as project_name from tt_expense_items ei $left_joins where ei.id = $id and ei.user_id = $user_id and ei.status = 1"; $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { if (!$res->numRows()) { return false; } if ($val = $res->fetchRow()) { $val['cost'] = str_replace('.', $user->decimal_mark, $val['cost']); return $val; } } return false; } // getItems - returns expense items for a user for a given date. static function getItems($user_id, $date) { global $user; $result = array(); $mdb2 = getConnection(); $client_field = null; if ($user->isPluginEnabled('cl')) $client_field = ", c.name as client"; $left_joins = ""; $left_joins = " left join tt_projects p on (ei.project_id = p.id)"; if ($user->isPluginEnabled('cl')) $left_joins .= " left join tt_clients c on (ei.client_id = c.id)"; $sql = "select ei.id as id $client_field, p.name as project, ei.name as item, ei.cost as cost, ei.invoice_id from tt_expense_items ei $left_joins where ei.date = ".$mdb2->quote($date)." and ei.user_id = $user_id and ei.status = 1 order by ei.id"; $res = $mdb2->query($sql); if (!is_a($res, 'PEAR_Error')) { while ($val = $res->fetchRow()) { $val['cost'] = str_replace('.', $user->decimal_mark, $val['cost']); $result[] = $val; } } else return false; return $result; } }