diff --git a/ChangeLog b/ChangeLog
index fd951104b7d..1f07b3dc1de 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -5,6 +5,8 @@ English Dolibarr ChangeLog
***** ChangeLog for 3.7 compared to 3.6.* *****
For users:
+- New: PDF event report show project and status of event.
+- New: Onto event summary of elements, end date and status are visible.
- New: Can filter on status on interventions.
- New: Add help info of field type into dictionary of payment types.
- New: Add proposals into referer page of thirdparty.
@@ -133,6 +135,7 @@ For users:
- Fix: Iban was used instead of Bic into SEPA file.
- Fix: Must unaccent strings into SEPA file.
- Fix: Extrafield feature select from table should try to translate multiple column when not needed
+- Fix: cents for indian ruppes are calle paisa and paise.
***** ChangeLog for 3.6 compared to 3.5.* *****
For users:
@@ -266,9 +269,16 @@ Fix: When disabled, all fields to add time into task line must be disabled.
Fix: Missing include files.lib.php in some pages that use dol_delete_recursive
Fix: [ bug #1558 ] Product/service edit page title shows new Ref instead of old ref.
Fix: [ bug #1553 ] Saving User displays setup removes menu.
-Fix: [ bug #1544 ] Can remove date from invoice
-Fix: list event view lost type event filter
-Fix: Add code save on create event
+Fix: [ bug #1544 ] Can remove date from invoice.
+Fix: list event view lost type event filter.
+Fix: Add code save on create event.
+Fix: SQL injection.
+Fix: [ bug #1589 ] Menu type in "Edit menu" page is not translated
+Fix: [ bug #1591 ] Linked object block shows Total HT/TTC even if not having permission to read them
+Fix: [ bug #1577 ] When creating new Private individual third, selected third type is ignored
+Fix: [ bug #1555 ] Update accountancy code of products does not throw PRODUCT_MODIFY trigger
+Fix: [ bug #1548 ] Supplier payment card shows type in French
+Fix: [ bug #1546 ] Incorrect page number when searching in the list of bank transactions
***** ChangeLog for 3.5.4 compared to 3.5.3 *****
Fix: Hide title of event when agenda module disabled.
diff --git a/build/debian/control b/build/debian/control
index d22f556acaa..f4f9e12aa58 100755
--- a/build/debian/control
+++ b/build/debian/control
@@ -39,7 +39,7 @@ Description: Web based software to manage a company or foundation
It's a web software you can install as a standalone program or on any web
hosting provider to use it from anywhere with any web browser.
.
- Dolibarr was designed to be easy to use. Only the features that you need
+ Dolibarr was designed to be easy to use. Only the features that you need
are visible, depending on which modules were activated.
.
This is an example of most common used modules:
diff --git a/build/debian/copyright b/build/debian/copyright
index d75283b535a..73109152034 100644
--- a/build/debian/copyright
+++ b/build/debian/copyright
@@ -61,7 +61,7 @@ License: GPL-3+
Files: htdocs/includes/adodbtime/*
Copyright: 2003-2005, John Lim
unknown, jackbbs
-License: BSD
+License: BSD-3-Clause
Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions
are met:
@@ -272,7 +272,7 @@ Comment:
Files: htdocs/includes/jquery/plugins/flot/*
Copyright: Flot team
-License: Public Domain
+License: Public-Domain
This work is not subject to copyright in any jurisdiction
Comment:
Those files are not shipped in the binary package because we configure
diff --git a/build/debian/get-orig-source.sh b/build/debian/get-orig-source.sh
index 821a639a470..cc22a53c908 100755
--- a/build/debian/get-orig-source.sh
+++ b/build/debian/get-orig-source.sh
@@ -7,40 +7,20 @@ tmpdir=$(mktemp -d)
if [ -n "$1" ]; then
uscan_opts="--download-version=$1"
fi
-#uscan --noconf --force-download --no-symlink --destdir=$tmpdir $uscan_opts
+#uscan --noconf --force-download --no-symlink --verbose --destdir=$tmpdir $uscan_opts
cd $tmpdir
# Other method to download (comment uscan if you use this)
-wget http://sourceforge.net/projects/tcpdf/files/tcpdf_6_0_093.zip
+wget http://www.dolibarr.org/files/stable/standard/dolibarr-3.5.4.tgz
# Rename file to add +dfsg
-zipfile=$(echo *.zip)
-version=$(echo "$zipfile" | perl -pi -e 's/^tcpdf_//; s/\.zip$//; s/_/./g; s/$/+dfsg/;')
-
-# Extract the zip file
-unzip -q $zipfile
-srcdir=$(find . -maxdepth 1 -mindepth 1 -type d | sed -e 's/\.\///')
-
-if [ ! -d "$srcdir" ]; then
- echo "ERROR: Failed to identify the extracted directory in $tmpdir (got $srcdir)" >&2
- rm -rf $tmpdir
- exit 1
-fi
-
-# Cleanup unwanted files
-rm -rf $srcdir/fonts/free*
-
-# Repack as tar.xz
-tar Jcf tcpdf_${version}.orig.tar.xz $srcdir
+tgzfile=$(echo *.tgz)
+version=$(echo "$tgzfile" | perl -pi -e 's/^dolibarr-//; s/\.tgz$//; s/_/./g; s/\+nmu1//; ')
cd - >/dev/null
-if [ -e ../tcpdf_${version}.orig.tar.xz ]; then
- echo "Not overwriting ../tcpdf_${version}.orig.tar.xz";
-else
- echo "Created ../tcpdf_${version}.orig.tar.xz"
- mv $tmpdir/tcpdf_${version}.orig.tar.xz ../
-fi
+mv $tmpdir/dolibarr-${version}.tgz ../
+echo "File ../dolibarr-${version}.tgz is ready for git-import-orig"
rm -rf $tmpdir
diff --git a/htdocs/adherents/class/adherent.class.php b/htdocs/adherents/class/adherent.class.php
index ce3ad4905a7..2de6a6e159e 100644
--- a/htdocs/adherents/class/adherent.class.php
+++ b/htdocs/adherents/class/adherent.class.php
@@ -1070,7 +1070,7 @@ class Adherent extends CommonObject
if ($rowid) $sql.= " AND d.rowid=".$rowid;
elseif ($ref || $fk_soc) {
$sql.= " AND d.entity IN (".getEntity().")";
- if ($ref) $sql.= " AND d.rowid='".$ref."'";
+ if ($ref) $sql.= " AND d.rowid='".$this->db->escape($ref)."'";
elseif ($fk_soc) $sql.= " AND d.fk_soc='".$fk_soc."'";
}
elseif ($ref_ext)
diff --git a/htdocs/admin/menus/edit.php b/htdocs/admin/menus/edit.php
index 42d1ed5c9ca..ff015884bbc 100644
--- a/htdocs/admin/menus/edit.php
+++ b/htdocs/admin/menus/edit.php
@@ -316,7 +316,7 @@ if ($action == 'create')
print '
';
diff --git a/htdocs/comm/action/fiche.php b/htdocs/comm/action/fiche.php
index a12867c0800..27be46bd9e1 100644
--- a/htdocs/comm/action/fiche.php
+++ b/htdocs/comm/action/fiche.php
@@ -101,7 +101,7 @@ if (GETPOST('addassignedtouser'))
$action='create';
}
// Add action
-if ($action == 'add_action')
+if ($action == 'add')
{
$error=0;
@@ -317,7 +317,7 @@ if ($action == 'update')
$apmin=GETPOST('apmin');
$p2hour=GETPOST('p2hour');
$p2min=GETPOST('p2min');
- $percentage=in_array(GETPOST('status'),array(-1,100))?GETPOST('status'):GETPOST("percentage"); // If status is -1 or 100, percentage is not defined and we must use status
+ $percentage=in_array(GETPOST('status'),array(-1,100))?GETPOST('status'):(in_array(GETPOST('complete'),array(-1,100))?GETPOST('complete'):GETPOST("percentage")); // If status is -1 or 100, percentage is not defined and we must use status
// Clean parameters
if ($aphour == -1) $aphour='0';
@@ -345,6 +345,7 @@ if ($action == 'update')
$object->pnote = $_POST["note"];
$object->fk_element = $_POST["fk_element"];
$object->elementtype = $_POST["elementtype"];
+
if (! $datef && $percentage == 100)
{
$error=$langs->trans("ErrorFieldRequired",$langs->trans("DateEnd"));
@@ -512,7 +513,7 @@ if ($action == 'create')
print '
diff --git a/htdocs/compta/bank/account.php b/htdocs/compta/bank/account.php
index 69962498312..0adf68ca741 100644
--- a/htdocs/compta/bank/account.php
+++ b/htdocs/compta/bank/account.php
@@ -5,7 +5,7 @@
* Copyright (C) 2004 Christophe Combelles
* Copyright (C) 2005-2012 Regis Houssin
* Copyright (C) 2010-2011 Juanjo Menent
- * Copyright (C) 2012 Marcos García
+ * Copyright (C) 2012-2014 Marcos García
* Copyright (C) 2011-2014 Alexandre Spangaro
*
* This program is free software; you can redistribute it and/or modify
@@ -268,17 +268,22 @@ if ($id > 0 || ! empty($ref))
//Total pages
$totalPages = ceil($total_lines/$viewline);
- if ($page > 0)
- {
- $limitsql = ($totalPages - $page) * $viewline;
- if ($limitsql < $viewline) $limitsql = $viewline;
- $nbline = $limitsql;
- }
- else
- {
+ if ($totalPages == 0) {
$page = 0;
- $limitsql = $nbline;
+ } else {
+
+ if ($page > 0) {
+ $limitsql = ($totalPages - $page) * $viewline;
+ if ($limitsql < $viewline) {
+ $limitsql = $viewline;
+ }
+ $nbline = $limitsql;
+ } else {
+ $page = 0;
+ $limitsql = $nbline;
+ }
}
+
//print $limitsql.'-'.$page.'-'.$viewline;
// Onglets
@@ -474,7 +479,7 @@ if ($id > 0 || ! empty($ref))
// VAT
$sql.= " LEFT JOIN ".MAIN_DB_PREFIX."bank_url as bu2 ON bu2.fk_bank = b.rowid AND bu2.type='payment_vat'";
$sql.= " LEFT JOIN ".MAIN_DB_PREFIX."tva as t ON bu2.url_id = t.rowid";
-
+
// Salary payment
$sql.= " LEFT JOIN ".MAIN_DB_PREFIX."bank_url as bu3 ON bu3.fk_bank = b.rowid AND bu3.type='payment_salary'";
$sql.= " LEFT JOIN ".MAIN_DB_PREFIX."payment_salary as sal ON bu3.url_id = sal.rowid";
diff --git a/htdocs/compta/bank/bankid_fr.php b/htdocs/compta/bank/bankid_fr.php
index 9c10a311366..b92aa1eb34a 100644
--- a/htdocs/compta/bank/bankid_fr.php
+++ b/htdocs/compta/bank/bankid_fr.php
@@ -34,7 +34,7 @@ $langs->load("categories");
$langs->load("bills");
$action=GETPOST('action');
-$id=GETPOST('id');
+$id=GETPOST('id','int');
$ref=GETPOST('ref');
// Security check
diff --git a/htdocs/compta/facture.php b/htdocs/compta/facture.php
index 2e9db8bc077..7bd05f9f806 100644
--- a/htdocs/compta/facture.php
+++ b/htdocs/compta/facture.php
@@ -605,7 +605,7 @@ else if ($action == 'add' && $user->rights->facture->creer)
$ret = $extrafields->setOptionalsFromPost($extralabels, $object);
if ($ret < 0) $error ++;
- // Replacement invoice
+ // Replacement invoice
if ($_POST['type'] == Facture::TYPE_REPLACEMENT)
{
$dateinvoice = dol_mktime(12, 0, 0, $_POST['remonth'], $_POST['reday'], $_POST['reyear']);
@@ -716,10 +716,11 @@ else if ($action == 'add' && $user->rights->facture->creer)
}
- if(GETPOST('invoiceAvoirWithPaymentRestAmount', 'int')==1 && $id>0) {
-
+ if(GETPOST('invoiceAvoirWithPaymentRestAmount', 'int')==1 && $id>0)
+ {
$facture_source = new Facture($db); // fetch origin object if not previously defined
- if($facture_source->fetch($object->fk_facture_source)>0) {
+ if ($facture_source->fetch($object->fk_facture_source)>0)
+ {
$totalpaye = $facture_source->getSommePaiement();
$totalcreditnotes = $facture_source->getSumCreditNotesUsed();
$totaldeposits = $facture_source->getSumDepositsUsed();
@@ -1061,9 +1062,9 @@ else if ($action == 'add' && $user->rights->facture->creer)
{
$db->rollback();
$action = 'create';
- $_GET ["origin"] = $_POST["origin"];
- $_GET ["originid"] = $_POST["originid"];
- setEventMessage($object->error, 'errors');
+ $_GET["origin"] = $_POST["origin"];
+ $_GET["originid"] = $_POST["originid"];
+ setEventMessages($object->error, $object->errors, 'errors');
}
}
diff --git a/htdocs/compta/facture/tpl/linkedobjectblock.tpl.php b/htdocs/compta/facture/tpl/linkedobjectblock.tpl.php
index f0fca0b90ff..ae3038a6021 100644
--- a/htdocs/compta/facture/tpl/linkedobjectblock.tpl.php
+++ b/htdocs/compta/facture/tpl/linkedobjectblock.tpl.php
@@ -1,6 +1,7 @@
* Copyright (C) 2013 Juanjo Menent
+ * Copyright (C) 2014 Marcos García
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
@@ -22,6 +23,8 @@
>
';
@@ -226,7 +241,7 @@ class FormActions
/**
* Output list of type of event
*
- * @param string $selected Type pre-selected (can be 'manual', 'auto' or 'AC_xxx'
+ * @param string $selected Type pre-selected (can be 'manual', 'auto' or 'AC_xxx')
* @param string $htmlname Nom champ formulaire
* @param string $excludetype Type to exclude
* @param string $onlyautoornot Group list by auto events or not: We keep only the 2 generic lines (AC_OTH and AC_OTH_AUTO)
@@ -235,7 +250,7 @@ class FormActions
*/
function select_type_actions($selected='',$htmlname='actioncode',$excludetype='',$onlyautoornot=0, $hideinfohelp=0)
{
- global $langs,$user,$form;
+ global $langs,$user,$form,$conf;
if (! is_object($form)) $form=new Form($db);
diff --git a/htdocs/core/class/html.formcompany.class.php b/htdocs/core/class/html.formcompany.class.php
index 27be0636fdf..f158a86f5da 100644
--- a/htdocs/core/class/html.formcompany.class.php
+++ b/htdocs/core/class/html.formcompany.class.php
@@ -520,7 +520,7 @@ class FormCompany
* @param string $htmlname Name of HTML form
* @param array $limitto Disable answers that are not id in this array list
* @param int $forceid This is to force another object id than object->id
- * @param array $events Event options. Example: array(array('method'=>'getContacts', 'url'=>dol_buildpath('/core/ajax/contacts.php',1), 'htmlname'=>'contactid', 'params'=>array('add-customer-contact'=>'disabled')))
+ * @param array $events More js events option. Example: array(array('method'=>'getContacts', 'url'=>dol_buildpath('/core/ajax/contacts.php',1), 'htmlname'=>'contactid', 'params'=>array('add-customer-contact'=>'disabled')))
* @param string $moreparam String with more param to add into url when noajax search is used.
* @return int The selected third party ID
*/
@@ -573,13 +573,13 @@ class FormCompany
var obj = '.json_encode($events).';
$.each(obj, function(key,values) {
if (values.method.length) {
- getMethod'.$htmlname.'(values);
+ runJsCodeForEvent'.$htmlname.'(values);
}
});
});
// Function used to execute events when search_htmlname change
- function getMethod'.$htmlname.'(obj) {
+ function runJsCodeForEvent'.$htmlname.'(obj) {
var id = $("#'.$htmlname.'").val();
var method = obj.method;
var url = obj.url;
@@ -612,8 +612,8 @@ class FormCompany
}
print "\n".''."\n";
- print '
';
+ //print "\n";
return $socid;
}
else
diff --git a/htdocs/core/class/html.formintervention.class.php b/htdocs/core/class/html.formintervention.class.php
new file mode 100644
index 00000000000..2caeb30a6dc
--- /dev/null
+++ b/htdocs/core/class/html.formintervention.class.php
@@ -0,0 +1,139 @@
+
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see .
+ * or see http://www.gnu.org/
+ */
+
+/**
+ * \file htdocs/core/class/html.formintervention.class.php
+ * \ingroup core
+ * \brief File of class with all html predefined components
+ */
+
+/**
+ * Class to manage generation of HTML components for contract module
+ */
+class FormIntervention
+{
+ var $db;
+ var $error;
+
+
+ /**
+ * Constructor
+ *
+ * @param DoliDB $db Database handler
+ */
+ public function __construct($db)
+ {
+ $this->db = $db;
+ }
+
+
+ /**
+ * Show a combo list with contracts qualified for a third party
+ *
+ * @param int $socid Id third party (-1=all, 0=only interventions not linked to a third party, id=intervention not linked or linked to third party id)
+ * @param int $selected Id intervention preselected
+ * @param string $htmlname Nom de la zone html
+ * @param int $maxlength Maximum length of label
+ * @param int $showempty Show empty line
+ * @return int Nbre of project if OK, <0 if KO
+ */
+ function select_interventions($socid=-1, $selected='', $htmlname='interventionid', $maxlength=16, $showempty=1)
+ {
+ global $db,$user,$conf,$langs;
+
+ $out='';
+
+ $hideunselectables=false;
+
+ // Search all contacts
+ $sql = 'SELECT f.rowid, f.ref, f.fk_soc, f.fk_statut';
+ $sql.= ' FROM '.MAIN_DB_PREFIX .'fichinter as f';
+ $sql.= " WHERE f.entity = ".$conf->entity;
+ if ($socid != '')
+ {
+ if ($socid == '0') $sql.= " AND (f.fk_soc = 0 OR f.fk_soc IS NULL)";
+ else $sql.= " AND f.fk_soc = ".$socid;
+ }
+
+ dol_syslog(get_class($this)."::select_intervention", LOG_DEBUG);
+ $resql=$db->query($sql);
+ if ($resql)
+ {
+ $out.='