# $locale->text('Non-taxable Sales')
# $locale->text('Non-taxable Purchases')
+my $rp_access_map = {
+ 'projects' => 'report',
+ 'ar_aging' => 'general_ledger',
+ 'ap_aging' => 'general_ledger',
+ 'receipts' => 'cash',
+ 'payments' => 'cash',
+ 'trial_balance' => 'report',
+ 'income_statement' => 'report',
+ 'bwa' => 'report',
+ 'balance_sheet' => 'report',
+};
+
+sub check_rp_access {
+ my $right = $rp_access_map->{$form->{report}};
+ $right ||= 'DOES_NOT_EXIST';
+
+ $auth->assert($right);
+}
+
sub report {
$lxdebug->enter_sub();
+ check_rp_access();
+
%title = ('balance_sheet' => 'Balance Sheet',
'income_statement' => 'Income Statement',
'trial_balance' => 'Trial Balance',
</table>
<br>
-<input type=hidden name=login value=$form->{login}>
-<input type=hidden name=password value=$form->{password}>
-
<input type=submit class=submit name=action value="|
. $locale->text('Continue') . qq|">
sub get_project {
$lxdebug->enter_sub();
+
+ $auth->assert('report');
+
my $nextsub = shift;
$form->{project_id} = $form->{project_id_1};
sub generate_income_statement {
$lxdebug->enter_sub();
+ $auth->assert('report');
+
$form->{padding} = " ";
$form->{bold} = "<b>";
$form->{endbold} = "</b>";
sub generate_balance_sheet {
$lxdebug->enter_sub();
+ $auth->assert('report');
+
$form->{padding} = " ";
$form->{bold} = "<b>";
$form->{endbold} = "</b>";
$form->{IN} = "balance_sheet.html";
# setup company variables for the form
- map { $form->{$_} = $myconfig{$_};
- $form->{$_} =~ s/\\n/\n/g; }
- (qw(company address businessnumber nativecurr));
+ map { $form->{$_} = $myconfig{$_}; } (qw(company address businessnumber nativecurr));
$form->{templates} = $myconfig{templates};
sub generate_projects {
$lxdebug->enter_sub();
+ $auth->assert('report');
+
&get_project(generate_projects);
$form->{projectnumber} = $form->{projectnumber_1};
sub generate_trial_balance {
$lxdebug->enter_sub();
+ $auth->assert('report');
+
# get for each account initial balance, debits and credits
RP->trial_balance(\%myconfig, \%$form);
sub generate_ar_aging {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
# split customer
($form->{customer}) = split(/--/, $form->{customer});
sub generate_ap_aging {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
# split vendor
($form->{vendor}) = split(/--/, $form->{vendor});
sub aging {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
my $report = SL::ReportGenerator->new(\%myconfig, $form);
my @columns = qw(statement ct invnumber transdate duedate c0 c30 c60 c90);
$report->add_data(create_aging_subtotal_row(\%totals, \@columns, \@periods, 'listtotal'));
if ($form->{arap} eq 'ar') {
- $raw_top_info_text = $form->parse_html_template2('rp/aging_ar_top');
- $raw_bottom_info_text = $form->parse_html_template2('rp/aging_ar_bottom', { 'row_idx' => $row_idx,
- 'PRINT_OPTIONS' => print_options(inline => 1), });
+ $raw_top_info_text = $form->parse_html_template('rp/aging_ar_top');
+ $raw_bottom_info_text = $form->parse_html_template('rp/aging_ar_bottom', { 'row_idx' => $row_idx,
+ 'PRINT_OPTIONS' => print_options(inline => 1), });
$report->set_options('raw_top_info_text' => $raw_top_info_text,
'raw_bottom_info_text' => $raw_bottom_info_text);
}
sub e_mail {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
# get name and email addresses
for $i (1 .. $form->{rowcount}) {
if ($form->{"statement_$i"}) {
# save all other variables
foreach $key (keys %$form) {
+ next if (($key eq 'login') || ($key eq 'password') || ('' ne ref $form->{$key}));
$form->{$key} =~ s/\"/"/g;
print qq|<input type=hidden name=$key value="$form->{$key}">\n|;
}
sub send_email {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
$form->{subject} = $locale->text('Statement') . qq| - $form->{todate}|
unless $form->{subject};
sub print {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
if ($form->{media} eq 'printer') {
$form->error($locale->text('Select postscript or PDF!'))
if ($form->{format} !~ /(postscript|pdf)/);
sub print_form {
$lxdebug->enter_sub();
+ $auth->assert('general_ledger');
+
my %replacements =
(
"ä" => "ae", "ö" => "oe", "ü" => "ue",
}
$form->{IN} = "$form->{type}.$suffix";
- $form->{OUT} =
- $form->{media} eq 'email' ? $sendmail :
- $form->{media} eq 'printer' ? "| $myconfig{printer}" : "";
+ $form->{OUT} = $form->{media} eq 'printer' ? "| $myconfig{printer}" : "";
# Save $form->{email} because it will be overwritten.
$form->{EMAIL_RECIPIENT} = $form->{email};
sub statement_details {
$lxdebug->enter_sub();
+
+ $auth->assert('general_ledger');
+
my ($ref) = @_;
push @{ $form->{invnumber} }, $ref->{invnumber};
sub generate_tax_report {
$lxdebug->enter_sub();
+ $auth->assert('report');
+
RP->tax_report(\%myconfig, \%$form);
$descvar = "$form->{accno}_description";
# construct href
$href =
- "$form->{script}?&action=generate_tax_report&login=$form->{login}&password=$form->{password}&fromdate=$form->{fromdate}&todate=$form->{todate}&db=$form->{db}&method=$form->{method}&accno=$form->{accno}&$descvar=$description&department=$department&$ratevar=$taxrate&report=$form->{report}";
+ "$form->{script}?&action=generate_tax_report&fromdate=$form->{fromdate}&todate=$form->{todate}&db=$form->{db}&method=$form->{method}&accno=$form->{accno}&$descvar=$description&department=$department&$ratevar=$taxrate&report=$form->{report}";
# construct callback
$description = $form->escape($form->{$descvar}, 1);
$department = $form->escape($form->{department}, 1);
$callback =
- "$form->{script}?&action=generate_tax_report&login=$form->{login}&password=$form->{password}&fromdate=$form->{fromdate}&todate=$form->{todate}&db=$form->{db}&method=$form->{method}&accno=$form->{accno}&$descvar=$description&department=$department&$ratevar=$taxrate&report=$form->{report}";
+ "$form->{script}?&action=generate_tax_report&fromdate=$form->{fromdate}&todate=$form->{todate}&db=$form->{db}&method=$form->{method}&accno=$form->{accno}&$descvar=$description&department=$department&$ratevar=$taxrate&report=$form->{report}";
$title = $form->escape($form->{title});
$href .= "&title=$title";
$column_data{id} = qq|<td>$ref->{id}</td>|;
$column_data{invnumber} =
- qq|<td><a href=$module?action=edit&id=$ref->{id}&login=$form->{login}&password=$form->{password}&callback=$callback>$ref->{invnumber}</a></td>|;
+ qq|<td><a href=$module?action=edit&id=$ref->{id}&callback=$callback>$ref->{invnumber}</a></td>|;
$column_data{transdate} = qq|<td>$ref->{transdate}</td>|;
$column_data{name} = qq|<td>$ref->{name} </td>|;
sub list_payments {
$lxdebug->enter_sub();
+ $auth->assert('cash');
+
if ($form->{account}) {
($form->{paymentaccounts}) = split /--/, $form->{account};
}
sub generate_bwa {
$lxdebug->enter_sub();
+
+ $auth->assert('report');
+
$form->{padding} = " ";
$form->{bold} = "<b>";
$form->{endbold} = "</b>";
projects / kivitendo-erp.git / blobdiff