From 6b3b6fd50843703e2820906b874e78b655351a7e Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Mon, 9 Aug 2021 18:01:43 +0200
Subject: [PATCH 001/117] ok
---
htdocs/admin/pdf_other.php | 10 ++++++++++
.../core/modules/propale/doc/pdf_azur.modules.php | 13 +++++++++----
htdocs/langs/en_US/admin.lang | 1 +
3 files changed, 20 insertions(+), 4 deletions(-)
diff --git a/htdocs/admin/pdf_other.php b/htdocs/admin/pdf_other.php
index ed14f2ac119..c30765f6162 100644
--- a/htdocs/admin/pdf_other.php
+++ b/htdocs/admin/pdf_other.php
@@ -103,6 +103,16 @@ if ($conf->use_javascript_ajax) {
}
print '';
+print ''.$langs->trans("PDF_REF_IN_TITLE");
+print ' ';
+if ($conf->use_javascript_ajax) {
+ print ajax_constantonoff('PDF_REF_IN_TITLE');
+} else {
+ $arrval = array('0' => $langs->trans("No"), '1' => $langs->trans("Yes"));
+ print $form->selectarray("PDF_REF_IN_TITLE", $arrval, $conf->global->PDF_REF_IN_TITLE);
+}
+print ' '.$langs->trans("MAIN_PDF_PROPAL_USE_ELECTRONIC_SIGNING").' ';
if ($conf->use_javascript_ajax) {
diff --git a/htdocs/core/modules/propale/doc/pdf_azur.modules.php b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
index b56fbc758db..49f72381357 100644
--- a/htdocs/core/modules/propale/doc/pdf_azur.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
@@ -1473,16 +1473,21 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
+ if(!empty($conf->global->PDF_REF_IN_TITLE)){
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell(100, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size);
$posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ if(empty($conf->global->PDF_REF_IN_TITLE)){
+ $pdf->SetXY($posx, $posy);
+ $pdf->SetTextColor(0, 0, 60);
+ $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
- $posy += 1;
+ $posy += 1;
+ }
$pdf->SetFont('', '', $default_font_size - 2);
if ($object->ref_client) {
diff --git a/htdocs/langs/en_US/admin.lang b/htdocs/langs/en_US/admin.lang
index 98c9e954ac2..135c4d54040 100644
--- a/htdocs/langs/en_US/admin.lang
+++ b/htdocs/langs/en_US/admin.lang
@@ -1992,6 +1992,7 @@ MAIN_PDF_MARGIN_TOP=Top margin on PDF
MAIN_PDF_MARGIN_BOTTOM=Bottom margin on PDF
MAIN_DOCUMENTS_LOGO_HEIGHT=Height for logo on PDF
MAIN_GENERATE_PROPOSALS_WITH_PICTURE=Add picture on proposal line
+PDF_REF_IN_TITLE=Document ref in title
MAIN_PDF_PROPAL_USE_ELECTRONIC_SIGNING=Add electronic sign in PDF
NothingToSetup=There is no specific setup required for this module.
SetToYesIfGroupIsComputationOfOtherGroups=Set this to yes if this group is a computation of other groups
From adc6f883e2e704beed1fe1bf64b6131bc0cc1eed Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Mon, 9 Aug 2021 16:03:13 +0000
Subject: [PATCH 002/117] Fixing style errors.
---
htdocs/core/modules/propale/doc/pdf_azur.modules.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/core/modules/propale/doc/pdf_azur.modules.php b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
index 49f72381357..a3883cea5d5 100644
--- a/htdocs/core/modules/propale/doc/pdf_azur.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
@@ -1473,7 +1473,7 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
- if(!empty($conf->global->PDF_REF_IN_TITLE)){
+ if (!empty($conf->global->PDF_REF_IN_TITLE)) {
$title .= " " . $outputlangs->convToOutputCharset($object->ref);
}
$pdf->MultiCell(100, 4, $title, '', 'R');
@@ -1481,7 +1481,7 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetFont('', 'B', $default_font_size);
$posy += 5;
- if(empty($conf->global->PDF_REF_IN_TITLE)){
+ if (empty($conf->global->PDF_REF_IN_TITLE)) {
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
From 366625f300fc161ac234950928a2fe6940261025 Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Tue, 10 Aug 2021 09:50:14 +0200
Subject: [PATCH 003/117] const
---
htdocs/admin/pdf.php | 12 ++++++++++++
htdocs/admin/pdf_other.php | 10 ----------
htdocs/core/modules/propale/doc/pdf_azur.modules.php | 4 ++--
htdocs/langs/en_US/admin.lang | 2 +-
4 files changed, 15 insertions(+), 13 deletions(-)
diff --git a/htdocs/admin/pdf.php b/htdocs/admin/pdf.php
index cee63fd91fd..d966f9546e1 100644
--- a/htdocs/admin/pdf.php
+++ b/htdocs/admin/pdf.php
@@ -349,6 +349,18 @@ if ($conf->use_javascript_ajax) {
}
print ' '.$langs->trans("MAIN_PDF_REF_IN_TITLE");
+print ' ';
+if ($conf->use_javascript_ajax) {
+ print ajax_constantonoff('MAIN_PDF_REF_IN_TITLE');
+} else {
+ $arrval = array('0' => $langs->trans("No"), '1' => $langs->trans("Yes"));
+ print $form->selectarray("MAIN_PDF_REF_IN_TITLE", $arrval, $conf->global->MAIN_PDF_REF_IN_TITLE);
+}
+print ' '.$langs->trans("PlaceCustomerAddressToIsoLocation").' ';
diff --git a/htdocs/admin/pdf_other.php b/htdocs/admin/pdf_other.php
index c30765f6162..ed14f2ac119 100644
--- a/htdocs/admin/pdf_other.php
+++ b/htdocs/admin/pdf_other.php
@@ -103,16 +103,6 @@ if ($conf->use_javascript_ajax) {
}
print ' '.$langs->trans("PDF_REF_IN_TITLE");
-print ' ';
-if ($conf->use_javascript_ajax) {
- print ajax_constantonoff('PDF_REF_IN_TITLE');
-} else {
- $arrval = array('0' => $langs->trans("No"), '1' => $langs->trans("Yes"));
- print $form->selectarray("PDF_REF_IN_TITLE", $arrval, $conf->global->PDF_REF_IN_TITLE);
-}
-print ' '.$langs->trans("MAIN_PDF_PROPAL_USE_ELECTRONIC_SIGNING").' ';
if ($conf->use_javascript_ajax) {
diff --git a/htdocs/core/modules/propale/doc/pdf_azur.modules.php b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
index a3883cea5d5..a36833a57c6 100644
--- a/htdocs/core/modules/propale/doc/pdf_azur.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
@@ -1473,7 +1473,7 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
- if (!empty($conf->global->PDF_REF_IN_TITLE)) {
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
$title .= " " . $outputlangs->convToOutputCharset($object->ref);
}
$pdf->MultiCell(100, 4, $title, '', 'R');
@@ -1481,7 +1481,7 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetFont('', 'B', $default_font_size);
$posy += 5;
- if (empty($conf->global->PDF_REF_IN_TITLE)) {
+ if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
diff --git a/htdocs/langs/en_US/admin.lang b/htdocs/langs/en_US/admin.lang
index 135c4d54040..9bd9ba05f42 100644
--- a/htdocs/langs/en_US/admin.lang
+++ b/htdocs/langs/en_US/admin.lang
@@ -1992,7 +1992,7 @@ MAIN_PDF_MARGIN_TOP=Top margin on PDF
MAIN_PDF_MARGIN_BOTTOM=Bottom margin on PDF
MAIN_DOCUMENTS_LOGO_HEIGHT=Height for logo on PDF
MAIN_GENERATE_PROPOSALS_WITH_PICTURE=Add picture on proposal line
-PDF_REF_IN_TITLE=Document ref in title
+MAIN_PDF_REF_IN_TITLE=Document ref in title
MAIN_PDF_PROPAL_USE_ELECTRONIC_SIGNING=Add electronic sign in PDF
NothingToSetup=There is no specific setup required for this module.
SetToYesIfGroupIsComputationOfOtherGroups=Set this to yes if this group is a computation of other groups
From 133bb0e699893191e07e4b6647b79a35baa04968 Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Tue, 10 Aug 2021 13:28:36 +0200
Subject: [PATCH 004/117] yes/no save
---
htdocs/admin/pdf.php | 2 ++
1 file changed, 2 insertions(+)
diff --git a/htdocs/admin/pdf.php b/htdocs/admin/pdf.php
index d966f9546e1..e6dba5357cd 100644
--- a/htdocs/admin/pdf.php
+++ b/htdocs/admin/pdf.php
@@ -88,6 +88,8 @@ if ($action == 'update') {
if (GETPOSTISSET('MAIN_DOCUMENTS_LOGO_HEIGHT')) dolibarr_set_const($db, "MAIN_DOCUMENTS_LOGO_HEIGHT", GETPOST("MAIN_DOCUMENTS_LOGO_HEIGHT", 'int'), 'chaine', 0, '', $conf->entity);
if (GETPOSTISSET('MAIN_INVERT_SENDER_RECIPIENT')) dolibarr_set_const($db, "MAIN_INVERT_SENDER_RECIPIENT", GETPOST("MAIN_INVERT_SENDER_RECIPIENT"), 'chaine', 0, '', $conf->entity);
+ if (GETPOSTISSET('MAIN_PDF_REF_IN_TITLE')) dolibarr_set_const($db, "MAIN_PDF_REF_IN_TITLE", GETPOST("MAIN_PDF_REF_IN_TITLE"), 'chaine', 0, '', $conf->entity);
+
if (GETPOSTISSET('MAIN_PDF_USE_ISO_LOCATION')) dolibarr_set_const($db, "MAIN_PDF_USE_ISO_LOCATION", GETPOST("MAIN_PDF_USE_ISO_LOCATION"), 'chaine', 0, '', $conf->entity);
if (GETPOSTISSET('MAIN_GENERATE_DOCUMENTS_SHOW_FOOT_DETAILS')) dolibarr_set_const($db, "MAIN_GENERATE_DOCUMENTS_SHOW_FOOT_DETAILS", GETPOST("MAIN_GENERATE_DOCUMENTS_SHOW_FOOT_DETAILS"), 'chaine', 0, '', $conf->entity);
From 40329b9181a53e3eb05027dab70928f06a5b2334 Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Wed, 11 Aug 2021 12:59:34 +0200
Subject: [PATCH 005/117] other_doc
---
.../modules/commande/doc/pdf_einstein.modules.php | 13 +++++++++----
.../modules/contract/doc/pdf_strato.modules.php | 11 ++++++++---
.../modules/expedition/doc/pdf_rouget.modules.php | 12 ++++++++----
.../core/modules/facture/doc/pdf_crabe.modules.php | 4 +++-
.../modules/fichinter/doc/pdf_soleil.modules.php | 11 ++++++++---
5 files changed, 36 insertions(+), 15 deletions(-)
diff --git a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
index bd6caafd15a..17fbe9cc9aa 100644
--- a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
@@ -1311,16 +1311,21 @@ class pdf_einstein extends ModelePDFCommandes
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities($titlekey);
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell($w, 3, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size);
$posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $pdf->SetXY($posx, $posy);
+ $pdf->SetTextColor(0, 0, 60);
+ $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
- $posy += 1;
+ $posy += 1;
+ }
$pdf->SetFont('', '', $default_font_size - 1);
if ($object->ref_client) {
diff --git a/htdocs/core/modules/contract/doc/pdf_strato.modules.php b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
index c440cbf1cba..818a6aae64a 100644
--- a/htdocs/core/modules/contract/doc/pdf_strato.modules.php
+++ b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
@@ -640,14 +640,19 @@ class pdf_strato extends ModelePDFContract
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("ContractCard");
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell(100, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size + 2);
$posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $pdf->SetXY($posx, $posy);
+ $pdf->SetTextColor(0, 0, 60);
+ $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ }
$posy += 1;
$pdf->SetFont('', '', $default_font_size);
diff --git a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
index 79ceb166eed..b38bea345d3 100644
--- a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
@@ -953,15 +953,19 @@ class pdf_rouget extends ModelePdfExpedition
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("SendingSheet");
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
$posy += 5;
-
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell($w, 4, $outputlangs->transnoentities("RefSending")." : ".$object->ref, '', 'R');
+ if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $pdf->SetXY($posx, $posy);
+ $pdf->SetTextColor(0, 0, 60);
+ $pdf->MultiCell($w, 4, $outputlangs->transnoentities("RefSending")." : ".$object->ref, '', 'R');
+ }
// Date planned delivery
if (!empty($object->date_delivery)) {
diff --git a/htdocs/core/modules/facture/doc/pdf_crabe.modules.php b/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
index a01fab1dacf..0c9abb866a1 100644
--- a/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
+++ b/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
@@ -985,7 +985,9 @@ class pdf_crabe extends ModelePDFFactures
if ($object->type == 2) {
$title = $outputlangs->transnoentities("PaymentsBackAlreadyDone");
}
-
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->SetFont('', '', $default_font_size - 3);
$pdf->SetXY($tab3_posx, $tab3_top - 4);
$pdf->MultiCell(60, 3, $title, 0, 'L', 0);
diff --git a/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php b/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
index 08d57587625..23afd0e057a 100644
--- a/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
+++ b/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
@@ -596,14 +596,19 @@ class pdf_soleil extends ModelePDFFicheinter
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("InterventionCard");
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell(100, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size + 2);
$posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $pdf->SetXY($posx, $posy);
+ $pdf->SetTextColor(0, 0, 60);
+ $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
+ }
$posy += 1;
$pdf->SetFont('', '', $default_font_size);
From 3e2b4b45c153b29a5a90c593230056a78ed46665 Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Wed, 11 Aug 2021 11:00:11 +0000
Subject: [PATCH 006/117] Fixing style errors.
---
htdocs/core/modules/contract/doc/pdf_strato.modules.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/core/modules/contract/doc/pdf_strato.modules.php b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
index 818a6aae64a..52533faf056 100644
--- a/htdocs/core/modules/contract/doc/pdf_strato.modules.php
+++ b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
@@ -652,7 +652,7 @@ class pdf_strato extends ModelePDFContract
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
- }
+ }
$posy += 1;
$pdf->SetFont('', '', $default_font_size);
From fb42e3f47330f8390a0ccc7fdf0b61332ba790ba Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Wed, 11 Aug 2021 18:25:48 +0200
Subject: [PATCH 007/117] add_doc
---
htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php | 3 +++
htdocs/core/modules/expedition/doc/pdf_espadon.modules.php | 3 +++
htdocs/core/modules/facture/doc/pdf_sponge.modules.php | 3 +++
htdocs/core/modules/propale/doc/pdf_cyan.modules.php | 3 +++
4 files changed, 12 insertions(+)
diff --git a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
index 83ccd391bd9..344b5842008 100644
--- a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
@@ -1482,6 +1482,9 @@ class pdf_eratosthene extends ModelePDFCommandes
$title .= ' - ';
$title .= $outputlangsbis->transnoentities($titlekey);
}
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell($w, 3, $title, '', 'R');
diff --git a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
index f6f4b0b1a2a..4b20425254e 100644
--- a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
@@ -1003,6 +1003,9 @@ class pdf_espadon extends ModelePdfExpedition
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("SendingSheet");
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
diff --git a/htdocs/core/modules/facture/doc/pdf_sponge.modules.php b/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
index 401309c22e5..069581e496a 100644
--- a/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
+++ b/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
@@ -986,6 +986,9 @@ class pdf_sponge extends ModelePDFFactures
if ($object->type == 2) {
$title = $outputlangs->transnoentities("PaymentsBackAlreadyDone");
}
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->SetFont('', '', $default_font_size - 3);
$pdf->SetXY($tab3_posx, $tab3_top - 4);
diff --git a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
index f75f5ecab56..d1f86050473 100644
--- a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
@@ -1574,6 +1574,9 @@ class pdf_cyan extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
+ if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+ }
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size);
From e570c223983deab2c43724da8047aa51d1975f07 Mon Sep 17 00:00:00 2001
From: Erik van Berkum
Date: Thu, 19 Aug 2021 17:09:18 +0900
Subject: [PATCH 008/117] Fix: TechnicalID displayed 2 times in both MO and BOM
the PR hides 1.
---
htdocs/bom/class/bom.class.php | 2 +-
htdocs/mrp/class/mo.class.php | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/bom/class/bom.class.php b/htdocs/bom/class/bom.class.php
index 3996b5e49bd..583c4b7539c 100644
--- a/htdocs/bom/class/bom.class.php
+++ b/htdocs/bom/class/bom.class.php
@@ -94,7 +94,7 @@ class BOM extends CommonObject
* @var array Array with all fields and their property. Do not use it as a static var. It may be modified by constructor.
*/
public $fields = array(
- 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>-1, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
+ 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>0, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
'entity' => array('type'=>'integer', 'label'=>'Entity', 'enabled'=>1, 'visible'=>0, 'notnull'=> 1, 'default'=>1, 'index'=>1, 'position'=>5),
'ref' => array('type'=>'varchar(128)', 'label'=>'Ref', 'enabled'=>1, 'noteditable'=>1, 'visible'=>4, 'position'=>10, 'notnull'=>1, 'default'=>'(PROV)', 'index'=>1, 'searchall'=>1, 'comment'=>"Reference of BOM", 'showoncombobox'=>'1',),
'label' => array('type'=>'varchar(255)', 'label'=>'Label', 'enabled'=>1, 'visible'=>1, 'position'=>30, 'notnull'=>1, 'searchall'=>1, 'showoncombobox'=>'2', 'autofocusoncreate'=>1, 'css'=>'maxwidth300', 'csslist'=>'tdoverflowmax200'),
diff --git a/htdocs/mrp/class/mo.class.php b/htdocs/mrp/class/mo.class.php
index df5dcba60ad..f02b89648af 100644
--- a/htdocs/mrp/class/mo.class.php
+++ b/htdocs/mrp/class/mo.class.php
@@ -97,7 +97,7 @@ class Mo extends CommonObject
* @var array Array with all fields and their property. Do not use it as a static var. It may be modified by constructor.
*/
public $fields = array(
- 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>-1, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
+ 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>0, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
'entity' => array('type'=>'integer', 'label'=>'Entity', 'enabled'=>1, 'visible'=>0, 'position'=>5, 'notnull'=>1, 'default'=>'1', 'index'=>1),
'ref' => array('type'=>'varchar(128)', 'label'=>'Ref', 'enabled'=>1, 'visible'=>4, 'position'=>10, 'notnull'=>1, 'default'=>'(PROV)', 'index'=>1, 'searchall'=>1, 'comment'=>"Reference of object", 'showoncombobox'=>'1', 'noteditable'=>1),
'fk_bom' => array('type'=>'integer:Bom:bom/class/bom.class.php:0:t.status=1', 'filter'=>'active=1', 'label'=>'BOM', 'enabled'=>1, 'visible'=>1, 'position'=>33, 'notnull'=>-1, 'index'=>1, 'comment'=>"Original BOM", 'css'=>'minwidth100 maxwidth300', 'csslist'=>'nowraponall'),
From 10c445cf6a59bc8b36fe7eb5a7bede1222ddd4f9 Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Thu, 19 Aug 2021 16:13:41 +0200
Subject: [PATCH 009/117] default ref in title
---
.../commande/doc/pdf_einstein.modules.php | 16 +++-------------
.../commande/doc/pdf_eratosthene.modules.php | 5 ++---
.../contract/doc/pdf_strato.modules.php | 18 ++++--------------
.../expedition/doc/pdf_espadon.modules.php | 6 +++---
.../expedition/doc/pdf_rouget.modules.php | 15 ++++-----------
.../modules/facture/doc/pdf_crabe.modules.php | 6 +++---
.../modules/facture/doc/pdf_sponge.modules.php | 5 ++---
.../fichinter/doc/pdf_soleil.modules.php | 15 +++------------
.../modules/propale/doc/pdf_azur.modules.php | 6 +++---
.../modules/propale/doc/pdf_cyan.modules.php | 6 ++----
10 files changed, 29 insertions(+), 69 deletions(-)
diff --git a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
index afa31dac57d..22a6955aa48 100644
--- a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
@@ -1311,21 +1311,11 @@ class pdf_einstein extends ModelePDFCommandes
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities($titlekey);
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell($w, 3, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size);
-
- $posy += 5;
- if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
-
- $posy += 1;
- }
$pdf->SetFont('', '', $default_font_size - 1);
if ($object->ref_client) {
diff --git a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
index 8ddc675925c..f689ed95734 100644
--- a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
@@ -1482,9 +1482,8 @@ class pdf_eratosthene extends ModelePDFCommandes
$title .= ' - ';
$title .= $outputlangsbis->transnoentities($titlekey);
}
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
$pdf->MultiCell($w, 3, $title, '', 'R');
diff --git a/htdocs/core/modules/contract/doc/pdf_strato.modules.php b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
index e046f829486..d3d0f1905ff 100644
--- a/htdocs/core/modules/contract/doc/pdf_strato.modules.php
+++ b/htdocs/core/modules/contract/doc/pdf_strato.modules.php
@@ -640,24 +640,14 @@ class pdf_strato extends ModelePDFContract
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("ContractCard");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell(100, 4, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size + 2);
-
- $posy += 5;
- if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
- }
-
- $posy += 1;
$pdf->SetFont('', '', $default_font_size);
- $posy += 4;
+ $posy += 5;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell(100, 3, $outputlangs->transnoentities("Date")." : ".dol_print_date($object->date_contrat, "day", false, $outputlangs, true), '', 'R');
diff --git a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
index 4042809a870..3ea72178622 100644
--- a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
@@ -1003,9 +1003,9 @@ class pdf_espadon extends ModelePdfExpedition
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("SendingSheet");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
diff --git a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
index 6024f07f8be..979b34a4b83 100644
--- a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
@@ -953,23 +953,16 @@ class pdf_rouget extends ModelePdfExpedition
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("SendingSheet");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
- $posy += 5;
- if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell($w, 4, $outputlangs->transnoentities("RefSending")." : ".$object->ref, '', 'R');
- }
-
// Date planned delivery
if (!empty($object->date_delivery)) {
- $posy += 4;
+ $posy += 5;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell($w, 4, $outputlangs->transnoentities("DateDeliveryPlanned")." : ".dol_print_date($object->date_delivery, "day", false, $outputlangs, true), '', 'R');
diff --git a/htdocs/core/modules/facture/doc/pdf_crabe.modules.php b/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
index 832033cb932..98d62204bd4 100644
--- a/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
+++ b/htdocs/core/modules/facture/doc/pdf_crabe.modules.php
@@ -985,9 +985,9 @@ class pdf_crabe extends ModelePDFFactures
if ($object->type == 2) {
$title = $outputlangs->transnoentities("PaymentsBackAlreadyDone");
}
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->SetFont('', '', $default_font_size - 3);
$pdf->SetXY($tab3_posx, $tab3_top - 4);
$pdf->MultiCell(60, 3, $title, 0, 'L', 0);
diff --git a/htdocs/core/modules/facture/doc/pdf_sponge.modules.php b/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
index bf81a83d9ad..65d5e57f9e4 100644
--- a/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
+++ b/htdocs/core/modules/facture/doc/pdf_sponge.modules.php
@@ -986,9 +986,8 @@ class pdf_sponge extends ModelePDFFactures
if ($object->type == 2) {
$title = $outputlangs->transnoentities("PaymentsBackAlreadyDone");
}
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
$pdf->SetFont('', '', $default_font_size - 3);
$pdf->SetXY($tab3_posx, $tab3_top - 4);
diff --git a/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php b/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
index e89d86cacdd..8710c67dda1 100644
--- a/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
+++ b/htdocs/core/modules/fichinter/doc/pdf_soleil.modules.php
@@ -596,24 +596,15 @@ class pdf_soleil extends ModelePDFFicheinter
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("InterventionCard");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell(100, 4, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size + 2);
-
$posy += 5;
- if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
- }
- $posy += 1;
$pdf->SetFont('', '', $default_font_size);
- $posy += 4;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell(100, 3, $outputlangs->transnoentities("Date")." : ".dol_print_date($object->datec, "day", false, $outputlangs, true), '', 'R');
diff --git a/htdocs/core/modules/propale/doc/pdf_azur.modules.php b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
index bd966458b2a..e86d6208bf1 100644
--- a/htdocs/core/modules/propale/doc/pdf_azur.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
@@ -1473,9 +1473,9 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell(100, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size);
diff --git a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
index 5fe4685a469..39211dde470 100644
--- a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
@@ -1573,10 +1573,8 @@ class pdf_cyan extends ModelePDFPropales
$pdf->SetFont('', 'B', $default_font_size + 3);
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
- $title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
- if (!empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $title .= " " . $outputlangs->convToOutputCharset($object->ref);
- }
+ $title = $outputlangs->transnoentities("PdfCommercialProposalTitle") . " " . $outputlangs->convToOutputCharset($object->ref);
+
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', 'B', $default_font_size);
From 58b50d02c752f76f4d7f6f1281594afdc0af9dcd Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Thu, 19 Aug 2021 16:43:35 +0200
Subject: [PATCH 010/117] default ref in title 2
---
.../commande/doc/pdf_einstein.modules.php | 3 ++-
.../commande/doc/pdf_eratosthene.modules.php | 16 ++--------------
.../expedition/doc/pdf_espadon.modules.php | 7 -------
.../expedition/doc/pdf_rouget.modules.php | 3 ++-
.../modules/propale/doc/pdf_azur.modules.php | 12 +-----------
.../modules/propale/doc/pdf_cyan.modules.php | 19 ++++---------------
6 files changed, 11 insertions(+), 49 deletions(-)
diff --git a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
index 22a6955aa48..2a1f283a02c 100644
--- a/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_einstein.modules.php
@@ -1317,9 +1317,10 @@ class pdf_einstein extends ModelePDFCommandes
$pdf->MultiCell($w, 3, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size - 1);
+ $posy += 2;
if ($object->ref_client) {
- $posy += 5;
+ $posy += 3;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell($w, 3, $outputlangs->transnoentities("RefCustomer")." : ".$outputlangs->convToOutputCharset($object->ref_client), '', 'R');
diff --git a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
index f689ed95734..b8622fe3b26 100644
--- a/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
+++ b/htdocs/core/modules/commande/doc/pdf_eratosthene.modules.php
@@ -1487,23 +1487,11 @@ class pdf_eratosthene extends ModelePDFCommandes
$pdf->MultiCell($w, 3, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size);
-
- $posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $textref = $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref);
- if ($object->statut == $object::STATUS_DRAFT) {
- $pdf->SetTextColor(128, 0, 0);
- $textref .= ' - '.$outputlangs->transnoentities("NotValidated");
- }
- $pdf->MultiCell($w, 4, $textref, '', 'R');
-
- $posy += 1;
$pdf->SetFont('', '', $default_font_size - 2);
+ $posy += 2;
if ($object->ref_client) {
- $posy += 4;
+ $posy += 3;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell($w, 3, $outputlangs->transnoentities("RefCustomer")." : ".$outputlangs->convToOutputCharset($object->ref_client), '', 'R');
diff --git a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
index 3ea72178622..c20ffec1d72 100644
--- a/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_espadon.modules.php
@@ -1003,19 +1003,12 @@ class pdf_espadon extends ModelePdfExpedition
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("SendingSheet");
-
$title .= " " . $outputlangs->convToOutputCharset($object->ref);
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
- $posy += 5;
-
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell($w, 4, $outputlangs->transnoentities("RefSending")." : ".$object->ref, '', 'R');
-
// Date planned delivery
if (!empty($object->date_delivery)) {
$posy += 4;
diff --git a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
index 979b34a4b83..1b2b35e8562 100644
--- a/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
+++ b/htdocs/core/modules/expedition/doc/pdf_rouget.modules.php
@@ -959,10 +959,11 @@ class pdf_rouget extends ModelePdfExpedition
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size + 1);
+ $posy += 1;
// Date planned delivery
if (!empty($object->date_delivery)) {
- $posy += 5;
+ $posy += 4;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell($w, 4, $outputlangs->transnoentities("DateDeliveryPlanned")." : ".dol_print_date($object->date_delivery, "day", false, $outputlangs, true), '', 'R');
diff --git a/htdocs/core/modules/propale/doc/pdf_azur.modules.php b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
index e86d6208bf1..9ea3e34511c 100644
--- a/htdocs/core/modules/propale/doc/pdf_azur.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_azur.modules.php
@@ -1473,22 +1473,12 @@ class pdf_azur extends ModelePDFPropales
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
-
$title .= " " . $outputlangs->convToOutputCharset($object->ref);
$pdf->MultiCell(100, 4, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size);
-
- $posy += 5;
- if (empty($conf->global->MAIN_PDF_REF_IN_TITLE)) {
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $pdf->MultiCell(100, 4, $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref), '', 'R');
-
- $posy += 1;
- }
$pdf->SetFont('', '', $default_font_size - 2);
+ $posy += 1;
if ($object->ref_client) {
$posy += 4;
diff --git a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
index 39211dde470..66096f4679b 100644
--- a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
@@ -1573,27 +1573,16 @@ class pdf_cyan extends ModelePDFPropales
$pdf->SetFont('', 'B', $default_font_size + 3);
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
- $title = $outputlangs->transnoentities("PdfCommercialProposalTitle") . " " . $outputlangs->convToOutputCharset($object->ref);
+ $title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
+ $title .= " " . $outputlangs->convToOutputCharset($object->ref);
$pdf->MultiCell($w, 4, $title, '', 'R');
- $pdf->SetFont('', 'B', $default_font_size);
-
- $posy += 5;
- $pdf->SetXY($posx, $posy);
- $pdf->SetTextColor(0, 0, 60);
- $textref = $outputlangs->transnoentities("Ref")." : ".$outputlangs->convToOutputCharset($object->ref);
- if ($object->statut == $object::STATUS_DRAFT) {
- $pdf->SetTextColor(128, 0, 0);
- $textref .= ' - '.$outputlangs->transnoentities("NotValidated");
- }
- $pdf->MultiCell($w, 4, $textref, '', 'R');
-
- $posy += 1;
$pdf->SetFont('', '', $default_font_size - 2);
+ $posy += 2;
if ($object->ref_client) {
- $posy += 4;
+ $posy += 3;
$pdf->SetXY($posx, $posy);
$pdf->SetTextColor(0, 0, 60);
$pdf->MultiCell($w, 3, $outputlangs->transnoentities("RefCustomer")." : ".$outputlangs->convToOutputCharset($object->ref_client), '', 'R');
From c750c5f7cfdf88af490b80255355400ba7b4cb3b Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Thu, 19 Aug 2021 14:45:55 +0000
Subject: [PATCH 011/117] Fixing style errors.
---
htdocs/core/modules/propale/doc/pdf_cyan.modules.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
index 66096f4679b..703ebaa62f0 100644
--- a/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
+++ b/htdocs/core/modules/propale/doc/pdf_cyan.modules.php
@@ -1575,7 +1575,7 @@ class pdf_cyan extends ModelePDFPropales
$pdf->SetTextColor(0, 0, 60);
$title = $outputlangs->transnoentities("PdfCommercialProposalTitle");
$title .= " " . $outputlangs->convToOutputCharset($object->ref);
-
+
$pdf->MultiCell($w, 4, $title, '', 'R');
$pdf->SetFont('', '', $default_font_size - 2);
From f50842cdef94a09f358077c2e266f76a05252829 Mon Sep 17 00:00:00 2001
From: Anthony Berton <34568357+bb2a@users.noreply.github.com>
Date: Thu, 19 Aug 2021 18:16:58 +0200
Subject: [PATCH 012/117] cop
---
htdocs/admin/pdf.php | 1 +
1 file changed, 1 insertion(+)
diff --git a/htdocs/admin/pdf.php b/htdocs/admin/pdf.php
index 5e05e43ed28..ad58cb54137 100644
--- a/htdocs/admin/pdf.php
+++ b/htdocs/admin/pdf.php
@@ -4,6 +4,7 @@
* Copyright (C) 2005-2011 Regis Houssin
* Copyright (C) 2012-2107 Juanjo Menent
* Copyright (C) 2019 Ferran Marcet
+ * Copyright (C) 2021 Anthony Berton
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
From 665dfb48e44a2b5339edb13a765773ead8467baf Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 11:40:32 +0200
Subject: [PATCH 013/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\comm\propal\card.php on line 125
---
htdocs/comm/propal/card.php | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/htdocs/comm/propal/card.php b/htdocs/comm/propal/card.php
index 163581221a8..e77910d784d 100644
--- a/htdocs/comm/propal/card.php
+++ b/htdocs/comm/propal/card.php
@@ -6,7 +6,7 @@
* Copyright (C) 2005-2012 Regis Houssin
* Copyright (C) 2006 Andre Cianfarani
* Copyright (C) 2010-2016 Juanjo Menent
- * Copyright (C) 2010-2018 Philippe Grand
+ * Copyright (C) 2010-2021 Philippe Grand
* Copyright (C) 2012-2013 Christophe Battarel
* Copyright (C) 2012 Cedric Salvador
* Copyright (C) 2013-2014 Florian Henry
@@ -121,7 +121,9 @@ $usercansend = (empty($conf->global->MAIN_USE_ADVANCED_PERMS) || $user->rights->
$usercancreateorder = $user->rights->commande->creer;
$usercancreateinvoice = $user->rights->facture->creer;
$usercancreatecontract = $user->rights->contrat->creer;
-$usercancreateintervention = $user->rights->ficheinter->creer;
+if (!empty($conf->ficheinter->enabled)) {
+ $usercancreateintervention = $user->rights->ficheinter->creer;
+}
$usercancreatepurchaseorder = ($user->rights->fournisseur->commande->creer || $user->rights->supplier_order->creer);
$permissionnote = $usercancreate; // Used by the include of actions_setnotes.inc.php
From 6619099be9518de92b6c02f53b11515e8308e1ef Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 12:05:30 +0200
Subject: [PATCH 014/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\core\actions_builddoc.inc.php on line 69
---
htdocs/core/actions_builddoc.inc.php | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/htdocs/core/actions_builddoc.inc.php b/htdocs/core/actions_builddoc.inc.php
index 63cac253976..7cde7e6f886 100644
--- a/htdocs/core/actions_builddoc.inc.php
+++ b/htdocs/core/actions_builddoc.inc.php
@@ -66,13 +66,13 @@ if ($action == 'builddoc' && $permissiontoadd) {
$outputlangs = $langs;
$newlang = '';
- if ($conf->global->MAIN_MULTILANGS && empty($newlang) && GETPOST('lang_id', 'aZ09')) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && empty($newlang) && GETPOST('lang_id', 'aZ09')) {
$newlang = GETPOST('lang_id', 'aZ09');
}
- if ($conf->global->MAIN_MULTILANGS && empty($newlang) && isset($object->thirdparty->default_lang)) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && empty($newlang) && isset($object->thirdparty->default_lang)) {
$newlang = $object->thirdparty->default_lang; // for proposal, order, invoice, ...
}
- if ($conf->global->MAIN_MULTILANGS && empty($newlang) && isset($object->default_lang)) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && empty($newlang) && isset($object->default_lang)) {
$newlang = $object->default_lang; // for thirdparty
}
if (!empty($newlang)) {
From 2e3b9fce49ddcbbc8301d35ae91b20d2b6feb9ea Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 12:18:26 +0200
Subject: [PATCH 015/117] fix : Undefined array key 4 in
C:\wamp64\www\dolibarr-140\htdocs\core\class\extrafields.class.php on line
1721
---
htdocs/core/class/extrafields.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/core/class/extrafields.class.php b/htdocs/core/class/extrafields.class.php
index f6a5ba93d61..f64a1b44eb0 100644
--- a/htdocs/core/class/extrafields.class.php
+++ b/htdocs/core/class/extrafields.class.php
@@ -1718,7 +1718,7 @@ class ExtraFields
$sql = 'SELECT '.$keyList;
$sql .= ' FROM '.MAIN_DB_PREFIX.$InfoFieldList[0];
- if (strpos($InfoFieldList[4], 'extra') !== false) {
+ if (!empty($InfoFieldList[4]) && strpos($InfoFieldList[4], 'extra') !== false) {
$sql .= ' as main';
}
if ($selectkey == 'rowid' && empty($value)) {
From 538b2e2a5f1a780973d4102690ba0a40f36556af Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 19:47:06 +0200
Subject: [PATCH 016/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\core\class\commonobject.class.php on line
1705
---
htdocs/core/class/commonobject.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index 4d3c39027ac..00306939cdb 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -1701,7 +1701,7 @@ abstract class CommonObject
$idtype = $this->barcode_type;
if (empty($idtype) && $idtype != '0') { // If type of barcode no set, we try to guess. If set to '0' it means we forced to have type remain not defined
- if ($this->element == 'product') {
+ if ($this->element == 'product' && !empty($conf->global->PRODUIT_DEFAULT_BARCODE_TYPE)) {
$idtype = $conf->global->PRODUIT_DEFAULT_BARCODE_TYPE;
} elseif ($this->element == 'societe') {
$idtype = $conf->global->GENBARCODE_BARCODETYPE_THIRDPARTY;
From 16f2a53fb8e3e94b6bdec4ffea3b52d3fe7880e5 Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 21:52:57 +0200
Subject: [PATCH 017/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\product\class\propalmergepdfproduct.class.php
on line 236
---
htdocs/product/class/propalmergepdfproduct.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/product/class/propalmergepdfproduct.class.php b/htdocs/product/class/propalmergepdfproduct.class.php
index 67c24ac37c8..a37ca09101b 100644
--- a/htdocs/product/class/propalmergepdfproduct.class.php
+++ b/htdocs/product/class/propalmergepdfproduct.class.php
@@ -233,7 +233,7 @@ class Propalmergepdfproduct extends CommonObject
$sql .= " FROM ".MAIN_DB_PREFIX."propal_merge_pdf_product as t";
$sql .= " WHERE t.fk_product = ".((int) $product_id);
- if ($conf->global->MAIN_MULTILANGS && !empty($lang)) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && !empty($lang)) {
$sql .= " AND t.lang = '".$this->db->escape($lang)."'";
}
From e439e0f14dd1d85cc5d99dfbbc36191a3e92ef36 Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 21:55:00 +0200
Subject: [PATCH 018/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\product\class\propalmergepdfproduct.class.php
on line 251
---
htdocs/product/class/propalmergepdfproduct.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/product/class/propalmergepdfproduct.class.php b/htdocs/product/class/propalmergepdfproduct.class.php
index a37ca09101b..6d15968af83 100644
--- a/htdocs/product/class/propalmergepdfproduct.class.php
+++ b/htdocs/product/class/propalmergepdfproduct.class.php
@@ -248,7 +248,7 @@ class Propalmergepdfproduct extends CommonObject
$line->fk_product = $obj->fk_product;
$line->file_name = $obj->file_name;
- if ($conf->global->MAIN_MULTILANGS) {
+ if (!empty($conf->global->MAIN_MULTILANGS)) {
$line->lang = $obj->lang;
}
$line->fk_user_author = $obj->fk_user_author;
From ba9ede39bfa08ed26b425b0c6d6da8d854ed235d Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 22:28:53 +0200
Subject: [PATCH 019/117] fix : Undefined property: stdClass:: in
C:\wamp64\www\dolibarr-140\htdocs\comm\propal\card.php on line 265
---
htdocs/comm/propal/card.php | 4 ++--
htdocs/product/class/propalmergepdfproduct.class.php | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/htdocs/comm/propal/card.php b/htdocs/comm/propal/card.php
index e77910d784d..f69f41400c7 100644
--- a/htdocs/comm/propal/card.php
+++ b/htdocs/comm/propal/card.php
@@ -262,10 +262,10 @@ if (empty($reshook)) {
if (empty($conf->global->MAIN_DISABLE_PDF_AUTOUPDATE)) {
$outputlangs = $langs;
$newlang = '';
- if ($conf->global->MAIN_MULTILANGS && empty($newlang) && GETPOST('lang_id', 'aZ09')) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && empty($newlang) && GETPOST('lang_id', 'aZ09')) {
$newlang = GETPOST('lang_id', 'aZ09');
}
- if ($conf->global->MAIN_MULTILANGS && empty($newlang)) {
+ if (!empty($conf->global->MAIN_MULTILANGS) && empty($newlang)) {
$newlang = $object->thirdparty->default_lang;
}
if (!empty($newlang)) {
diff --git a/htdocs/product/class/propalmergepdfproduct.class.php b/htdocs/product/class/propalmergepdfproduct.class.php
index 6d15968af83..5892a4fe810 100644
--- a/htdocs/product/class/propalmergepdfproduct.class.php
+++ b/htdocs/product/class/propalmergepdfproduct.class.php
@@ -258,7 +258,7 @@ class Propalmergepdfproduct extends CommonObject
$line->import_key = $obj->import_key;
- if ($conf->global->MAIN_MULTILANGS) {
+ if (!empty($conf->global->MAIN_MULTILANGS)) {
$this->lines[$obj->file_name.'_'.$obj->lang] = $line;
} else {
$this->lines[$obj->file_name] = $line;
From 7baf98dbfa8d43b93fff85e12d2e9eb8748daac0 Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Sun, 22 Aug 2021 23:15:36 +0200
Subject: [PATCH 020/117] fix : Undefined property: Conf:: in
C:\wamp64\www\dolibarr-140\htdocs\core\class\html.form.class.php on line 7957
---
htdocs/core/class/html.form.class.php | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/htdocs/core/class/html.form.class.php b/htdocs/core/class/html.form.class.php
index 07abdb4b465..f452216d93f 100644
--- a/htdocs/core/class/html.form.class.php
+++ b/htdocs/core/class/html.form.class.php
@@ -10,7 +10,7 @@
* Copyright (C) 2007 Franky Van Liedekerke
* Copyright (C) 2007 Patrick Raguin
* Copyright (C) 2010 Juanjo Menent
- * Copyright (C) 2010-2019 Philippe Grand
+ * Copyright (C) 2010-2021 Philippe Grand
* Copyright (C) 2011 Herve Prot
* Copyright (C) 2012-2016 Marcos GarcĂa
* Copyright (C) 2012 Cedric Salvador
@@ -7855,6 +7855,11 @@ class Form
if (empty($conf->expedition->enabled)) {
continue; // Do not show if module disabled
}
+ } elseif ($objecttype == 'ficheinter') {
+ $tplpath = 'fichinter';
+ if (empty($conf->ficheinter->enabled)) {
+ continue; // Do not show if module disabled
+ }
} elseif ($objecttype == 'invoice_supplier') {
$tplpath = 'fourn/facture';
} elseif ($objecttype == 'order_supplier') {
From f88fdbe71d89b6007c212ccf6e55b192ddde00e0 Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Mon, 23 Aug 2021 10:12:28 +0200
Subject: [PATCH 021/117] FIX : for php8 compliance
---
htdocs/core/modules/modFicheinter.class.php | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/htdocs/core/modules/modFicheinter.class.php b/htdocs/core/modules/modFicheinter.class.php
index af99e6f646f..c8f9add05f6 100644
--- a/htdocs/core/modules/modFicheinter.class.php
+++ b/htdocs/core/modules/modFicheinter.class.php
@@ -77,6 +77,11 @@ class modFicheinter extends DolibarrModules
$this->const = array();
$r = 0;
+ if (!isset($conf->ficheinter) || !isset($conf->ficheinter->enabled)) {
+ $conf->ficheinter = new stdClass();
+ $conf->ficheinter->enabled = 0;
+ }
+
$this->const[$r][0] = "FICHEINTER_ADDON_PDF";
$this->const[$r][1] = "chaine";
$this->const[$r][2] = "soleil";
From 7c2d19ffafac11cc9afa0dc31d70eafcfc3fed67 Mon Sep 17 00:00:00 2001
From: Philippe GRAND
Date: Mon, 23 Aug 2021 10:20:22 +0200
Subject: [PATCH 022/117] FIX : indentation
---
htdocs/core/modules/modBlockedLog.class.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/core/modules/modBlockedLog.class.php b/htdocs/core/modules/modBlockedLog.class.php
index 9a90fa945bb..0c645099f56 100644
--- a/htdocs/core/modules/modBlockedLog.class.php
+++ b/htdocs/core/modules/modBlockedLog.class.php
@@ -170,9 +170,9 @@ class modBlockedLog extends DolibarrModules
$sql = array();
// If already used, we add an entry to show we enable module
- require_once DOL_DOCUMENT_ROOT.'/blockedlog/class/blockedlog.class.php';
+ require_once DOL_DOCUMENT_ROOT . '/blockedlog/class/blockedlog.class.php';
- $object = new stdClass();
+ $object = new stdClass();
$object->id = 1;
$object->element = 'module';
$object->ref = 'systemevent';
From 227f61a7113a14d570dedef8beab8059c47bd4b8 Mon Sep 17 00:00:00 2001
From: Christian Foellmann
Date: Tue, 24 Aug 2021 16:10:20 +0200
Subject: [PATCH 023/117] replace remaining SubmitCancel buttons
---
htdocs/adherents/type.php | 5 +----
htdocs/admin/clicktodial.php | 2 +-
htdocs/admin/external_rss.php | 5 ++---
htdocs/admin/knowledgemanagement.php | 4 +---
htdocs/admin/mailing.php | 3 +--
htdocs/admin/oauth.php | 2 +-
htdocs/admin/oauthlogintokens.php | 2 +-
htdocs/comm/remise.php | 8 +-------
htdocs/delivery/card.php | 2 +-
9 files changed, 10 insertions(+), 23 deletions(-)
diff --git a/htdocs/adherents/type.php b/htdocs/adherents/type.php
index 7ff9c3806a5..af65f32b510 100644
--- a/htdocs/adherents/type.php
+++ b/htdocs/adherents/type.php
@@ -398,10 +398,7 @@ if ($action == 'create') {
print dol_get_fiche_end();
- print '';
- print '
';
+ print $form->buttonsSaveCancel();
print "\n";
}
diff --git a/htdocs/admin/clicktodial.php b/htdocs/admin/clicktodial.php
index 09ba880dd33..326e7028bbf 100644
--- a/htdocs/admin/clicktodial.php
+++ b/htdocs/admin/clicktodial.php
@@ -117,7 +117,7 @@ print '
';
+print $form->buttonsSaveCancel("Modify", '');
print 'http://news.google.com/news?ned=us&topic=h&output=rss';
-print '
';
print '';
diff --git a/htdocs/admin/knowledgemanagement.php b/htdocs/admin/knowledgemanagement.php
index b8434773f67..457303c9798 100644
--- a/htdocs/admin/knowledgemanagement.php
+++ b/htdocs/admin/knowledgemanagement.php
@@ -258,9 +258,7 @@ if ($action == 'edit') {
}
print '';
- print '';
- print '
';
+ print $form->buttonsSaveCancel("Save", '');
print '';
print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/oauth.php b/htdocs/admin/oauth.php
index e2f123f627c..9bf5be2c294 100644
--- a/htdocs/admin/oauth.php
+++ b/htdocs/admin/oauth.php
@@ -150,7 +150,7 @@ print '';
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/oauthlogintokens.php b/htdocs/admin/oauthlogintokens.php
index 998b6c39c0f..8697b400a2b 100644
--- a/htdocs/admin/oauthlogintokens.php
+++ b/htdocs/admin/oauthlogintokens.php
@@ -334,7 +334,7 @@ if ($mode == 'setup' && $user->admin) {
if (!empty($driver)) {
if ($submit_enabled) {
- print '
';
+ print $form->buttonsSaveCancel("Modify", '');
}
}
diff --git a/htdocs/comm/remise.php b/htdocs/comm/remise.php
index bdf9b75998b..8b4d8943b45 100644
--- a/htdocs/comm/remise.php
+++ b/htdocs/comm/remise.php
@@ -189,13 +189,7 @@ if ($socid > 0) {
print dol_get_fiche_end();
- print '';
- print '
';
+ print $form->buttonsSaveCancel("Modify");
print "";
diff --git a/htdocs/delivery/card.php b/htdocs/delivery/card.php
index a845b7aff95..b8bd1896412 100644
--- a/htdocs/delivery/card.php
+++ b/htdocs/delivery/card.php
@@ -630,7 +630,7 @@ if ($action == 'create') { // Create. Seems to no be used
print dol_get_fiche_end();
//if ($object->statut == 0) // only if draft
- // print '
';
+ // print $form->buttonsSaveCancel("Save", '');
print '';
From a0dc6ca39433ba225dfc602aed5ec7013b550954 Mon Sep 17 00:00:00 2001
From: Erik van Berkum
Date: Tue, 24 Aug 2021 23:12:04 +0900
Subject: [PATCH 024/117] Fix: TechnicalID displayed 2 times in both MO and BOM
the PR hides 1. Adjusted visible to -2
---
htdocs/bom/class/bom.class.php | 2 +-
htdocs/mrp/class/mo.class.php | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/bom/class/bom.class.php b/htdocs/bom/class/bom.class.php
index 583c4b7539c..041208ac4d7 100644
--- a/htdocs/bom/class/bom.class.php
+++ b/htdocs/bom/class/bom.class.php
@@ -94,7 +94,7 @@ class BOM extends CommonObject
* @var array Array with all fields and their property. Do not use it as a static var. It may be modified by constructor.
*/
public $fields = array(
- 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>0, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
+ 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>-2, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
'entity' => array('type'=>'integer', 'label'=>'Entity', 'enabled'=>1, 'visible'=>0, 'notnull'=> 1, 'default'=>1, 'index'=>1, 'position'=>5),
'ref' => array('type'=>'varchar(128)', 'label'=>'Ref', 'enabled'=>1, 'noteditable'=>1, 'visible'=>4, 'position'=>10, 'notnull'=>1, 'default'=>'(PROV)', 'index'=>1, 'searchall'=>1, 'comment'=>"Reference of BOM", 'showoncombobox'=>'1',),
'label' => array('type'=>'varchar(255)', 'label'=>'Label', 'enabled'=>1, 'visible'=>1, 'position'=>30, 'notnull'=>1, 'searchall'=>1, 'showoncombobox'=>'2', 'autofocusoncreate'=>1, 'css'=>'maxwidth300', 'csslist'=>'tdoverflowmax200'),
diff --git a/htdocs/mrp/class/mo.class.php b/htdocs/mrp/class/mo.class.php
index f02b89648af..a8dd55cc203 100644
--- a/htdocs/mrp/class/mo.class.php
+++ b/htdocs/mrp/class/mo.class.php
@@ -97,7 +97,7 @@ class Mo extends CommonObject
* @var array Array with all fields and their property. Do not use it as a static var. It may be modified by constructor.
*/
public $fields = array(
- 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>0, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
+ 'rowid' => array('type'=>'integer', 'label'=>'TechnicalID', 'enabled'=>1, 'visible'=>-2, 'position'=>1, 'notnull'=>1, 'index'=>1, 'comment'=>"Id",),
'entity' => array('type'=>'integer', 'label'=>'Entity', 'enabled'=>1, 'visible'=>0, 'position'=>5, 'notnull'=>1, 'default'=>'1', 'index'=>1),
'ref' => array('type'=>'varchar(128)', 'label'=>'Ref', 'enabled'=>1, 'visible'=>4, 'position'=>10, 'notnull'=>1, 'default'=>'(PROV)', 'index'=>1, 'searchall'=>1, 'comment'=>"Reference of object", 'showoncombobox'=>'1', 'noteditable'=>1),
'fk_bom' => array('type'=>'integer:Bom:bom/class/bom.class.php:0:t.status=1', 'filter'=>'active=1', 'label'=>'BOM', 'enabled'=>1, 'visible'=>1, 'position'=>33, 'notnull'=>-1, 'index'=>1, 'comment'=>"Original BOM", 'css'=>'minwidth100 maxwidth300', 'csslist'=>'nowraponall'),
From 0286a2e75d0fa6069212a506061685bb82eaa2a6 Mon Sep 17 00:00:00 2001
From: Philippe Grand
Date: Tue, 24 Aug 2021 16:42:04 +0200
Subject: [PATCH 025/117] Update card.php
---
htdocs/comm/propal/card.php | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/htdocs/comm/propal/card.php b/htdocs/comm/propal/card.php
index f69f41400c7..239e6124ea9 100644
--- a/htdocs/comm/propal/card.php
+++ b/htdocs/comm/propal/card.php
@@ -121,9 +121,7 @@ $usercansend = (empty($conf->global->MAIN_USE_ADVANCED_PERMS) || $user->rights->
$usercancreateorder = $user->rights->commande->creer;
$usercancreateinvoice = $user->rights->facture->creer;
$usercancreatecontract = $user->rights->contrat->creer;
-if (!empty($conf->ficheinter->enabled)) {
- $usercancreateintervention = $user->rights->ficheinter->creer;
-}
+$user->hasRight('ficheinter', 'creer');
$usercancreatepurchaseorder = ($user->rights->fournisseur->commande->creer || $user->rights->supplier_order->creer);
$permissionnote = $usercancreate; // Used by the include of actions_setnotes.inc.php
From ff47bf522633762fa517b738a16a608fd5fb2610 Mon Sep 17 00:00:00 2001
From: Philippe Grand
Date: Tue, 24 Aug 2021 16:46:21 +0200
Subject: [PATCH 026/117] Update card.php
---
htdocs/comm/propal/card.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/comm/propal/card.php b/htdocs/comm/propal/card.php
index 239e6124ea9..61b7eb0015d 100644
--- a/htdocs/comm/propal/card.php
+++ b/htdocs/comm/propal/card.php
@@ -121,7 +121,7 @@ $usercansend = (empty($conf->global->MAIN_USE_ADVANCED_PERMS) || $user->rights->
$usercancreateorder = $user->rights->commande->creer;
$usercancreateinvoice = $user->rights->facture->creer;
$usercancreatecontract = $user->rights->contrat->creer;
-$user->hasRight('ficheinter', 'creer');
+$usercancreateintervention = $user->hasRight('ficheinter', 'creer');
$usercancreatepurchaseorder = ($user->rights->fournisseur->commande->creer || $user->rights->supplier_order->creer);
$permissionnote = $usercancreate; // Used by the include of actions_setnotes.inc.php
From f094b4c70c8b994d0c6c9e19c08dde8acd79ae42 Mon Sep 17 00:00:00 2001
From: Christian Foellmann
Date: Tue, 24 Aug 2021 17:04:17 +0200
Subject: [PATCH 027/117] fix up most of the remaining submit inputs
---
htdocs/accountancy/admin/account.php | 2 +-
htdocs/accountancy/admin/accountmodel.php | 4 ++--
htdocs/accountancy/admin/categories.php | 4 ++--
htdocs/accountancy/admin/categories_list.php | 4 ++--
htdocs/accountancy/admin/closure.php | 2 +-
htdocs/accountancy/admin/defaultaccounts.php | 2 +-
htdocs/accountancy/admin/index.php | 2 +-
htdocs/accountancy/admin/journals_list.php | 4 ++--
htdocs/accountancy/bookkeeping/card.php | 12 ++++--------
htdocs/adherents/admin/website.php | 2 +-
htdocs/adherents/card.php | 2 +-
htdocs/adherents/cartes/carte.php | 6 +++---
htdocs/adherents/subscription.php | 2 +-
htdocs/admin/bom.php | 4 ++--
htdocs/admin/chequereceipts.php | 2 +-
htdocs/admin/commande.php | 6 +++---
htdocs/admin/compta.php | 2 +-
htdocs/admin/const.php | 6 +++---
htdocs/admin/defaultvalues.php | 2 +-
htdocs/admin/delivery.php | 2 +-
htdocs/admin/dict.php | 4 ++--
htdocs/admin/expedition.php | 2 +-
htdocs/admin/expensereport_rules.php | 2 +-
htdocs/admin/export.php | 2 +-
htdocs/admin/facture.php | 10 +++++-----
htdocs/admin/fichinter.php | 12 ++++++------
htdocs/admin/geoipmaxmind.php | 2 +-
htdocs/admin/import.php | 2 +-
htdocs/admin/ldap.php | 2 +-
htdocs/admin/ldap_contacts.php | 2 +-
htdocs/admin/ldap_groups.php | 2 +-
htdocs/admin/ldap_members.php | 2 +-
htdocs/admin/ldap_members_types.php | 2 +-
htdocs/admin/ldap_users.php | 2 +-
htdocs/admin/loan.php | 2 +-
htdocs/admin/mailman.php | 4 ++--
htdocs/admin/mails_templates.php | 2 +-
htdocs/admin/mrp.php | 4 ++--
htdocs/admin/multicurrency.php | 8 ++++----
htdocs/admin/paymentbybanktransfer.php | 2 +-
htdocs/admin/prelevement.php | 2 +-
htdocs/admin/propal.php | 10 +++++-----
htdocs/admin/proxy.php | 4 +---
htdocs/admin/reception_setup.php | 2 +-
htdocs/admin/security_file.php | 2 +-
htdocs/admin/security_other.php | 2 +-
htdocs/admin/stock.php | 2 +-
htdocs/admin/supplier_invoice.php | 2 +-
htdocs/admin/supplier_order.php | 4 ++--
htdocs/admin/supplier_payment.php | 2 +-
htdocs/admin/supplier_proposal.php | 4 ++--
htdocs/admin/taxes.php | 2 +-
htdocs/admin/tools/purge.php | 2 +-
htdocs/admin/website.php | 4 ++--
htdocs/barcode/codeinit.php | 6 +++---
htdocs/barcode/printsheet.php | 4 ++--
htdocs/blockedlog/admin/blockedlog.php | 4 ++--
htdocs/bom/tpl/objectline_create.tpl.php | 2 +-
htdocs/bookmarks/admin/bookmark.php | 2 +-
htdocs/categories/card.php | 2 +-
htdocs/comm/action/card.php | 2 +-
htdocs/comm/action/index.php | 2 +-
htdocs/comm/propal/card.php | 4 ++--
htdocs/commande/card.php | 4 ++--
htdocs/commande/note.php | 2 +-
htdocs/commande/stats/index.php | 2 +-
htdocs/compta/accounting-files.php | 2 +-
htdocs/compta/bank/categ.php | 2 +-
htdocs/compta/facture/card-rec.php | 2 +-
htdocs/compta/facture/card.php | 2 +-
htdocs/compta/paiement/cheque/card.php | 4 ++--
htdocs/compta/prelevement/create.php | 4 ++--
htdocs/compta/sociales/card.php | 2 +-
htdocs/core/class/html.form.class.php | 3 ++-
htdocs/core/class/html.formcompany.class.php | 4 ++--
htdocs/core/class/html.formmail.class.php | 8 ++++----
htdocs/core/class/html.formsms.class.php | 2 +-
htdocs/core/class/html.formticket.class.php | 6 +++---
.../modules/barcode/mod_barcode_product_standard.php | 2 +-
.../modules/bom/doc/doc_generic_bom_odt.modules.php | 2 +-
htdocs/core/modules/bom/mod_bom_advanced.php | 2 +-
.../core/modules/cheque/mod_chequereceipt_thyme.php | 2 +-
.../commande/doc/doc_generic_order_odt.modules.php | 2 +-
htdocs/core/modules/commande/mod_commande_saphir.php | 2 +-
htdocs/core/modules/contract/mod_contract_magre.php | 2 +-
htdocs/core/modules/delivery/mod_delivery_saphir.php | 2 +-
.../doc/doc_generic_shipment_odt.modules.php | 2 +-
.../modules/expedition/mod_expedition_ribera.php | 2 +-
.../modules/expensereport/mod_expensereport_sand.php | 2 +-
.../facture/doc/doc_generic_invoice_odt.modules.php | 2 +-
htdocs/core/modules/facture/mod_facture_mercure.php | 2 +-
htdocs/core/modules/fichinter/mod_arctic.php | 2 +-
.../core/modules/holiday/mod_holiday_immaculate.php | 2 +-
.../member/doc/doc_generic_member_odt.class.php | 2 +-
.../modules/mrp/doc/doc_generic_mo_odt.modules.php | 2 +-
htdocs/core/modules/mrp/mod_mo_advanced.php | 2 +-
htdocs/core/modules/payment/mod_payment_ant.php | 2 +-
.../product/doc/doc_generic_product_odt.modules.php | 2 +-
.../modules/product/mod_codeproduct_elephant.php | 2 +-
.../core/modules/product_batch/mod_lot_advanced.php | 2 +-
.../core/modules/product_batch/mod_sn_advanced.php | 2 +-
.../project/doc/doc_generic_project_odt.modules.php | 2 +-
.../core/modules/project/mod_project_universal.php | 2 +-
.../task/doc/doc_generic_task_odt.modules.php | 2 +-
.../core/modules/project/task/mod_task_universal.php | 2 +-
.../propale/doc/doc_generic_proposal_odt.modules.php | 2 +-
htdocs/core/modules/propale/mod_propale_saphir.php | 2 +-
.../doc/doc_generic_reception_odt.modules.php | 2 +-
.../modules/reception/mod_reception_moonstone.php | 2 +-
.../modules/societe/doc/doc_generic_odt.modules.php | 2 +-
.../core/modules/societe/mod_codeclient_elephant.php | 2 +-
.../core/modules/societe/mod_codecompta_aquarium.php | 2 +-
.../modules/societe/mod_codecompta_digitaria.php | 2 +-
.../stock/doc/doc_generic_stock_odt.modules.php | 2 +-
.../mod_facture_fournisseur_tulip.php | 2 +-
.../doc/doc_generic_supplier_order_odt.modules.php | 2 +-
.../mod_commande_fournisseur_orchidee.php | 2 +-
.../mod_supplier_payment_brodator.php | 2 +-
.../doc_generic_supplier_proposal_odt.modules.php | 2 +-
.../mod_supplier_proposal_saphir.php | 2 +-
.../modules/takepos/mod_takepos_ref_universal.php | 2 +-
.../ticket/doc/doc_generic_ticket_odt.modules.php | 2 +-
htdocs/core/modules/ticket/mod_ticket_universal.php | 2 +-
.../user/doc/doc_generic_user_odt.modules.php | 2 +-
.../doc/doc_generic_usergroup_odt.modules.php | 2 +-
.../modules/workstation/mod_workstation_advanced.php | 2 +-
htdocs/core/tpl/bloc_comment.tpl.php | 2 +-
htdocs/core/tpl/resource_add.tpl.php | 2 +-
htdocs/datapolicy/admin/setupmail.php | 2 +-
htdocs/delivery/card.php | 4 ++--
htdocs/don/admin/donation.php | 4 ++--
htdocs/don/index.php | 2 +-
htdocs/expedition/card.php | 6 +++---
htdocs/expedition/contact.php | 2 +-
htdocs/expedition/document.php | 2 +-
htdocs/expedition/note.php | 2 +-
htdocs/expedition/shipment.php | 2 +-
htdocs/fichinter/card-rec.php | 2 +-
htdocs/fichinter/card.php | 2 +-
htdocs/fourn/commande/card.php | 6 +++---
htdocs/hrm/admin/admin_hrm.php | 2 +-
.../mod_knowledgerecord_advanced.php | 2 +-
htdocs/loan/schedule.php | 2 +-
htdocs/margin/admin/margin.php | 6 +++---
htdocs/modulebuilder/index.php | 2 +-
.../doc/doc_generic_myobject_odt.modules.php | 2 +-
.../core/modules/mymodule/mod_myobject_advanced.php | 2 +-
htdocs/mrp/mo_production.php | 2 +-
.../modules/partnership/mod_partnership_advanced.php | 2 +-
htdocs/paybox/admin/paybox.php | 2 +-
htdocs/paypal/admin/paypal.php | 2 +-
htdocs/product/card.php | 2 +-
htdocs/product/stock/massstockmove.php | 2 +-
htdocs/product/stock/replenish.php | 4 ++--
htdocs/product/stock/stockatdate.php | 2 +-
htdocs/projet/admin/website.php | 2 +-
htdocs/projet/tasks/contact.php | 2 +-
htdocs/public/ticket/list.php | 2 +-
htdocs/public/ticket/view.php | 2 +-
htdocs/reception/card.php | 6 +++---
htdocs/reception/contact.php | 2 +-
htdocs/reception/note.php | 2 +-
htdocs/recruitment/admin/public_interface.php | 2 +-
...oc_generic_recruitmentjobposition_odt.modules.php | 2 +-
.../mod_recruitmentjobposition_advanced.php | 2 +-
htdocs/salaries/admin/salaries.php | 2 +-
htdocs/societe/card.php | 8 ++++----
htdocs/societe/notify/card.php | 2 +-
htdocs/supplier_proposal/card.php | 2 +-
htdocs/ticket/card.php | 6 +++---
htdocs/ticket/class/actions_ticket.class.php | 2 +-
htdocs/user/notify/card.php | 2 +-
htdocs/website/index.php | 4 ++--
173 files changed, 241 insertions(+), 246 deletions(-)
diff --git a/htdocs/accountancy/admin/account.php b/htdocs/accountancy/admin/account.php
index 6f510ad3706..930e76c7690 100644
--- a/htdocs/accountancy/admin/account.php
+++ b/htdocs/accountancy/admin/account.php
@@ -392,7 +392,7 @@ if ($resql) {
}
print "";
print ajax_combobox("chartofaccounts");
- print '';
- print ' ';
print "";
@@ -631,7 +631,7 @@ if ($id) {
fieldListAccountModel($fieldlist, $obj, $tabname[$id], 'edit');
}
- print ' ';
print ''.$langs->trans("AccountingCategory").' ';
print '';
$formaccounting->select_accounting_category($cat_id, 'account_category', 1, 0, 0, 1);
-print ' ';
- print ' ';
print "";
@@ -734,7 +734,7 @@ if ($resql) {
print '';
print '
';
print ' ';
diff --git a/htdocs/accountancy/admin/closure.php b/htdocs/accountancy/admin/closure.php
index a7873b72b90..8efb869ffaf 100644
--- a/htdocs/accountancy/admin/closure.php
+++ b/htdocs/accountancy/admin/closure.php
@@ -124,7 +124,7 @@ print '';
print "
\n";
-print '
';
+print '
';
print '';
diff --git a/htdocs/accountancy/admin/defaultaccounts.php b/htdocs/accountancy/admin/defaultaccounts.php
index 79a5c0975b7..061752c11c5 100644
--- a/htdocs/accountancy/admin/defaultaccounts.php
+++ b/htdocs/accountancy/admin/defaultaccounts.php
@@ -196,7 +196,7 @@ foreach ($list_account as $key) {
print "\n";
-print '
';
+print '
';
print '';
diff --git a/htdocs/accountancy/admin/index.php b/htdocs/accountancy/admin/index.php
index f8c0c95d3c1..45b5acc7c8a 100644
--- a/htdocs/accountancy/admin/index.php
+++ b/htdocs/accountancy/admin/index.php
@@ -446,7 +446,7 @@ print '';
print '';
-print '
';
+print '
';
print '';
diff --git a/htdocs/accountancy/admin/journals_list.php b/htdocs/accountancy/admin/journals_list.php
index 9ba9d8a6e20..e47377d8843 100644
--- a/htdocs/accountancy/admin/journals_list.php
+++ b/htdocs/accountancy/admin/journals_list.php
@@ -494,7 +494,7 @@ if ($id) {
}
print '';
- print ' ';
print "";
@@ -606,7 +606,7 @@ if ($id) {
print '';
print '
';
print ' ';
diff --git a/htdocs/accountancy/bookkeeping/card.php b/htdocs/accountancy/bookkeeping/card.php
index c156a388735..1fab2cbf894 100644
--- a/htdocs/accountancy/bookkeeping/card.php
+++ b/htdocs/accountancy/bookkeeping/card.php
@@ -389,11 +389,7 @@ if ($action == 'create') {
print dol_get_fiche_end();
- print '';
- print '
';
+ print $form->buttonsSaveCancel("Create");
print '';
} else {
@@ -450,7 +446,7 @@ if ($action == 'create') {
print '';
- print '
';
}
diff --git a/htdocs/adherents/card.php b/htdocs/adherents/card.php
index 39ed19e1a12..6cdf8ec9a3e 100644
--- a/htdocs/adherents/card.php
+++ b/htdocs/adherents/card.php
@@ -1802,7 +1802,7 @@ if (is_object($objcanvas) && $objcanvas->displayCanvasExists($action)) {
print '';
print $form->select_company($object->socid, 'socid', '', 1);
print ' ';
- print '';
print $form->select_company($object->fk_soc, 'socid', '', 1);
print ' ';
- print ' ';
-print ' \n";
print '';
@@ -471,7 +471,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftBOMs"), $htmltext, 1,
print '';
print ' ';
-print ' \n";
print '';
diff --git a/htdocs/admin/chequereceipts.php b/htdocs/admin/chequereceipts.php
index cc3377c9762..837d8d997b2 100644
--- a/htdocs/admin/chequereceipts.php
+++ b/htdocs/admin/chequereceipts.php
@@ -268,7 +268,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
print "';
if (empty($conf->facture->enabled)) {
- print ' ';
print "\n";
@@ -628,7 +628,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
@@ -642,7 +642,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftOrders"), $htmltext, 1
print '';
print ' ';
-print ' \n";
print '';
diff --git a/htdocs/admin/compta.php b/htdocs/admin/compta.php
index 6aad1c55d04..047b87ff014 100644
--- a/htdocs/admin/compta.php
+++ b/htdocs/admin/compta.php
@@ -199,7 +199,7 @@ print '';
print "\n";
-print '
';
+print '
';
print '';
// End of page
diff --git a/htdocs/admin/const.php b/htdocs/admin/const.php
index 93550ea3254..84cae83efec 100644
--- a/htdocs/admin/const.php
+++ b/htdocs/admin/const.php
@@ -222,7 +222,7 @@ if (!empty($conf->multicompany->enabled) && !$user->entity) {
print '';
print ' \n";
print '';
@@ -310,10 +310,10 @@ print '';
if ($conf->use_javascript_ajax) {
print '';
- print '
';
print '';
- print '
';
}
diff --git a/htdocs/admin/defaultvalues.php b/htdocs/admin/defaultvalues.php
index 038d8d0915c..e74a8df069c 100644
--- a/htdocs/admin/defaultvalues.php
+++ b/htdocs/admin/defaultvalues.php
@@ -399,7 +399,7 @@ if (!is_array($result) && $result<0) {
print '
';
- print '';
-print ' \n";
print '';
diff --git a/htdocs/admin/dict.php b/htdocs/admin/dict.php
index 6835ce82e60..9073c9e238c 100644
--- a/htdocs/admin/dict.php
+++ b/htdocs/admin/dict.php
@@ -1487,7 +1487,7 @@ if ($id) {
}
print '';
if ($action != 'edit') {
- print ' ';
@@ -1813,7 +1813,7 @@ if ($id) {
if (!is_null($withentity)) {
print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/expensereport_rules.php b/htdocs/admin/expensereport_rules.php
index 050c2b9455c..0b12f8d3741 100644
--- a/htdocs/admin/expensereport_rules.php
+++ b/htdocs/admin/expensereport_rules.php
@@ -201,7 +201,7 @@ if ($action != 'edit') {
echo ''.$form->selectDate(strtotime(date('Y-m-t', dol_now())), 'end', '', '', 0, '', 1, 0).' ';
echo ''.$form->selectyesno('restrictive', 0, 1).' ';
- echo '';
print ''.$langs->trans("ExportCsvSeparator").' ';
print ' ';
print '';
diff --git a/htdocs/admin/facture.php b/htdocs/admin/facture.php
index bd4b6f5404f..8b88b9a9ac8 100644
--- a/htdocs/admin/facture.php
+++ b/htdocs/admin/facture.php
@@ -579,7 +579,7 @@ if (!empty($conf->global->INVOICE_USE_DEFAULT_DOCUMENT)) { // Hidden conf
print '';
print ''.$langs->trans("Type").' ';
print ''.$langs->trans("Name").' ';
- print ' \n";
$listtype = array(
@@ -623,7 +623,7 @@ print '';
print '';
print ' ';
-print ' \n";
print '';
@@ -716,7 +716,7 @@ print $langs->trans("ForceInvoiceDate");
print '';
print $form->selectyesno("forcedate", $conf->global->FAC_FORCE_DATE_VALIDATION, 1);
print ' ';
-print ' \n";
print '';
@@ -742,7 +742,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
@@ -755,7 +755,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftBill"), $htmltext, 1,
print '';
print '';
-print ' \n";
print '';
diff --git a/htdocs/admin/fichinter.php b/htdocs/admin/fichinter.php
index cdfa1f91753..b878c40138e 100644
--- a/htdocs/admin/fichinter.php
+++ b/htdocs/admin/fichinter.php
@@ -512,7 +512,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
@@ -525,7 +525,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftInterventionCards"), $
print '';
print ' ';
-print ' \n";
print '';
// print products on fichinter
@@ -540,7 +540,7 @@ if ($conf->global->FICHINTER_PRINT_PRODUCTS) {
}
print '/>';
print '';
-print ' \n";
print '';
// Use services duration
@@ -555,7 +555,7 @@ print '';
print ' ';
print '';
-print ' ';
print '';
print '';
@@ -571,7 +571,7 @@ print '';
print ' ';
print '';
-print ' ';
print '';
print '';
@@ -587,7 +587,7 @@ print '';
print ' ';
print '';
-print ' ';
print '';
print '';
diff --git a/htdocs/admin/geoipmaxmind.php b/htdocs/admin/geoipmaxmind.php
index 40819b697e3..35def897445 100644
--- a/htdocs/admin/geoipmaxmind.php
+++ b/htdocs/admin/geoipmaxmind.php
@@ -107,7 +107,7 @@ print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/ldap_contacts.php b/htdocs/admin/ldap_contacts.php
index 4fb58898a07..d68726c5125 100644
--- a/htdocs/admin/ldap_contacts.php
+++ b/htdocs/admin/ldap_contacts.php
@@ -284,7 +284,7 @@ print info_admin($langs->trans("LDAPDescValues"));
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/ldap_groups.php b/htdocs/admin/ldap_groups.php
index 19d24ecd5db..91fba4e3519 100644
--- a/htdocs/admin/ldap_groups.php
+++ b/htdocs/admin/ldap_groups.php
@@ -210,7 +210,7 @@ print info_admin($langs->trans("LDAPDescValues"));
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/ldap_members.php b/htdocs/admin/ldap_members.php
index ab1af5fcf16..3fb65f730c6 100644
--- a/htdocs/admin/ldap_members.php
+++ b/htdocs/admin/ldap_members.php
@@ -433,7 +433,7 @@ print info_admin($langs->trans("LDAPDescValues"));
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/ldap_members_types.php b/htdocs/admin/ldap_members_types.php
index ae4a1794f35..777bc80c6e1 100644
--- a/htdocs/admin/ldap_members_types.php
+++ b/htdocs/admin/ldap_members_types.php
@@ -180,7 +180,7 @@ print info_admin($langs->trans("LDAPDescValues"));
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/ldap_users.php b/htdocs/admin/ldap_users.php
index 6e38eb2564e..ab6c0f52121 100644
--- a/htdocs/admin/ldap_users.php
+++ b/htdocs/admin/ldap_users.php
@@ -397,7 +397,7 @@ print info_admin($langs->trans("LDAPDescValues"));
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/loan.php b/htdocs/admin/loan.php
index 94b0da08d4f..0769ee5c0a0 100644
--- a/htdocs/admin/loan.php
+++ b/htdocs/admin/loan.php
@@ -117,7 +117,7 @@ print '';
print '';
print "\n";
-print '
';
+print '
';
// End of page
llxFooter();
diff --git a/htdocs/admin/mailman.php b/htdocs/admin/mailman.php
index 15dcccdb000..8b003ce2d4e 100644
--- a/htdocs/admin/mailman.php
+++ b/htdocs/admin/mailman.php
@@ -218,7 +218,7 @@ if (!empty($conf->global->ADHERENT_USE_MAILMAN)) {
print '';
if ($action != 'edit') {
- print ' ';
}
diff --git a/htdocs/admin/mrp.php b/htdocs/admin/mrp.php
index 74263538c71..08e257b0188 100644
--- a/htdocs/admin/mrp.php
+++ b/htdocs/admin/mrp.php
@@ -451,7 +451,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
@@ -465,7 +465,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftMOs"), $htmltext, 1, '
print '';
print ' ';
-print ' \n";
print '';
diff --git a/htdocs/admin/multicurrency.php b/htdocs/admin/multicurrency.php
index 373ab0e0f48..95b418a75f0 100644
--- a/htdocs/admin/multicurrency.php
+++ b/htdocs/admin/multicurrency.php
@@ -221,7 +221,7 @@ print '';
print '';
*/
@@ -235,7 +235,7 @@ print '';
print '';
@@ -305,7 +305,7 @@ print '';
print ''.$form->selectCurrency('', 'code', 1).' ';
print '';
print ' ';
print ' ';
@@ -330,7 +330,7 @@ foreach ($TCurrency as &$currency) {
print '';
if (empty($conf->facture->enabled)) {
- print ' ';
print "\n";
@@ -587,7 +587,7 @@ print "';
print ''.$langs->trans("DefaultProposalDurationValidity").' ';
print ''." ";
-print ' ';
print '';
@@ -600,7 +600,7 @@ print $langs->trans("UseCustomerContactAsPropalRecipientIfExist");
print '';
print $form->selectyesno("value",$conf->global->PROPALE_USE_CUSTOMER_CONTACT_AS_RECIPIENT,1);
print ' ';
-print ' \n";
print '';
*/
@@ -627,7 +627,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
@@ -640,7 +640,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftProposal"), $htmltext,
print '';
print ' ';
-print ' \n";
print '';
diff --git a/htdocs/admin/proxy.php b/htdocs/admin/proxy.php
index af646bb4096..635fb2e1e7b 100644
--- a/htdocs/admin/proxy.php
+++ b/htdocs/admin/proxy.php
@@ -197,9 +197,7 @@ print '';
print dol_get_fiche_end();
-print '';
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/reception_setup.php b/htdocs/admin/reception_setup.php
index e9a4a724871..e049985c61e 100644
--- a/htdocs/admin/reception_setup.php
+++ b/htdocs/admin/reception_setup.php
@@ -470,7 +470,7 @@ print "\n";
*/
print '';
-//print '
';
+//print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/security_file.php b/htdocs/admin/security_file.php
index 12c90cf3c21..1368fe48488 100644
--- a/htdocs/admin/security_file.php
+++ b/htdocs/admin/security_file.php
@@ -179,7 +179,7 @@ print '';
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/security_other.php b/htdocs/admin/security_other.php
index 817539ed949..5f8cc66eb1e 100644
--- a/htdocs/admin/security_other.php
+++ b/htdocs/admin/security_other.php
@@ -184,7 +184,7 @@ print '';
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/admin/stock.php b/htdocs/admin/stock.php
index a4a9e91e3ff..e45a01d9ed1 100644
--- a/htdocs/admin/stock.php
+++ b/htdocs/admin/stock.php
@@ -644,7 +644,7 @@ print '';
print ''.$langs->trans("MainDefaultWarehouse").' ';
print '';
print $formproduct->selectWarehouses($conf->global->MAIN_DEFAULT_WAREHOUSE, 'default_warehouse', '', 1, 0, 0, '', 0, 0, array(), 'left reposition');
-print ' ";
print " \n";
diff --git a/htdocs/admin/supplier_invoice.php b/htdocs/admin/supplier_invoice.php
index bc587845cda..c4958083181 100644
--- a/htdocs/admin/supplier_invoice.php
+++ b/htdocs/admin/supplier_invoice.php
@@ -464,7 +464,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
print '';
print ' ';
-print ' \n";
@@ -508,7 +508,7 @@ if (empty($conf->global->PDF_ALLOW_HTML_FOR_FREE_TEXT)) {
print $doleditor->Create();
}
print '';
-print ' \n";
// Option to add a quality/validation step, on products, after reception.
diff --git a/htdocs/admin/supplier_payment.php b/htdocs/admin/supplier_payment.php
index 3f79b52eff3..863674bab75 100644
--- a/htdocs/admin/supplier_payment.php
+++ b/htdocs/admin/supplier_payment.php
@@ -447,7 +447,7 @@ print dol_get_fiche_end();
print '';
-print '
';
print '';
-print ' \n";
print '';
@@ -492,7 +492,7 @@ print $form->textwithpicto($langs->trans("WatermarkOnDraftProposal"), $htmltext,
print '';
print ' ';
-print ' \n";
print '';
diff --git a/htdocs/admin/taxes.php b/htdocs/admin/taxes.php
index a3b3a7f1d91..613c8853297 100644
--- a/htdocs/admin/taxes.php
+++ b/htdocs/admin/taxes.php
@@ -259,7 +259,7 @@ print "';
-print '
';
diff --git a/htdocs/admin/tools/purge.php b/htdocs/admin/tools/purge.php
index 09647549c8b..f246a9eb0b2 100644
--- a/htdocs/admin/tools/purge.php
+++ b/htdocs/admin/tools/purge.php
@@ -121,7 +121,7 @@ print '';
//if ($choice != 'confirm_allfiles')
//{
print '
';
+ print '
';
//}
print '';
diff --git a/htdocs/admin/website.php b/htdocs/admin/website.php
index 864bb39798b..c6ad8e08ed0 100644
--- a/htdocs/admin/website.php
+++ b/htdocs/admin/website.php
@@ -498,7 +498,7 @@ if ($id) {
print '';
if ($action != 'edit') {
- print ' ';
print "";
@@ -580,7 +580,7 @@ if ($id) {
fieldListWebsites($fieldlist, $obj, $tabname[$id], 'edit');
}
- print ' ';
$form->select_produits(GETPOST('productid', 'int'), 'productid', '', '', 0, -1, 2, '', 0, array(), 0, '1', 0, 'minwidth400imp', 1);
- print '
';
}
@@ -433,7 +433,7 @@ print '';
-print ' ';
print '';
diff --git a/htdocs/bookmarks/admin/bookmark.php b/htdocs/bookmarks/admin/bookmark.php
index 5f30db5d7f2..3d5c8eb3bc0 100644
--- a/htdocs/bookmarks/admin/bookmark.php
+++ b/htdocs/bookmarks/admin/bookmark.php
@@ -78,7 +78,7 @@ print '';
print $langs->trans("NbOfBoomarkToShow").' ';
print '
';
+print '
';
// End of page
llxFooter();
diff --git a/htdocs/categories/card.php b/htdocs/categories/card.php
index 141e061ac20..44b812b4d96 100644
--- a/htdocs/categories/card.php
+++ b/htdocs/categories/card.php
@@ -274,7 +274,7 @@ if ($user->rights->categorie->creer) {
print dol_get_fiche_end('');
print '';
- print '
';
diff --git a/htdocs/comm/action/card.php b/htdocs/comm/action/card.php
index a403a1cdf40..ea2cba8a96c 100644
--- a/htdocs/comm/action/card.php
+++ b/htdocs/comm/action/card.php
@@ -1851,7 +1851,7 @@ if ($id > 0) {
$morehtmlref .= ''.$langs->trans($val['label']).'
';
}
-print '';
print ' ';
}
diff --git a/htdocs/compta/facture/card-rec.php b/htdocs/compta/facture/card-rec.php
index 0da621efd97..94a884bf1bf 100644
--- a/htdocs/compta/facture/card-rec.php
+++ b/htdocs/compta/facture/card-rec.php
@@ -1471,7 +1471,7 @@ if ($action == 'create') {
print '';
print " ';
- print ' ';
print ''.$langs->trans('SEPARCUR').' ';
print '';
}
- print ''.$title." \n";
+ print ''.$title." \n";
}
} else {
if ($mysoc->isInEEC()) {
diff --git a/htdocs/compta/sociales/card.php b/htdocs/compta/sociales/card.php
index 7454f61f6de..bcfa574d696 100644
--- a/htdocs/compta/sociales/card.php
+++ b/htdocs/compta/sociales/card.php
@@ -399,7 +399,7 @@ if ($action == 'create') {
print dol_get_fiche_end();
print '';
- print '
';
diff --git a/htdocs/core/class/html.form.class.php b/htdocs/core/class/html.form.class.php
index 15dffd430db..2a0e66e6104 100644
--- a/htdocs/core/class/html.form.class.php
+++ b/htdocs/core/class/html.form.class.php
@@ -9274,7 +9274,8 @@ class Form
if ($save_label == 'Create' || $save_label == 'Add' ) {
$save['name'] = 'add';
- $save['label_key'] = $save_label;
+ } elseif ($save_label == 'Modify') {
+ $save['name'] = 'edit';
}
$cancel = array(
diff --git a/htdocs/core/class/html.formcompany.class.php b/htdocs/core/class/html.formcompany.class.php
index 57bedd2807a..c6462850708 100644
--- a/htdocs/core/class/html.formcompany.class.php
+++ b/htdocs/core/class/html.formcompany.class.php
@@ -183,7 +183,7 @@ class FormCompany extends Form
if (!empty($htmlname) && $user->admin) {
print ' '.info_admin($langs->trans("YouCanChangeValuesForThisListFromDictionarySetup"), 1);
}
- print '';
- $out .= '
trans("SendMail").'"';
// Add a javascript test to avoid to forget to submit file before sending email
if ($this->withfile == 2 && $conf->use_javascript_ajax) {
$out .= ' onClick="if (document.mailform.addedfile.value != \'\') { alert(\''.dol_escape_js($langs->trans("FileWasNotUploaded")).'\'); return false; } else { return true; }"';
diff --git a/htdocs/core/class/html.formsms.class.php b/htdocs/core/class/html.formsms.class.php
index 57d8876c3ea..0ce9cae7b4e 100644
--- a/htdocs/core/class/html.formsms.class.php
+++ b/htdocs/core/class/html.formsms.class.php
@@ -322,7 +322,7 @@ function limitChars(textarea, limit, infodiv)
if ($showform) {
print '
';
- print '
';
+ print '
';
if ($this->withcancel) {
print ' ';
print '
';
diff --git a/htdocs/core/class/html.formticket.class.php b/htdocs/core/class/html.formticket.class.php
index 50f4bf9fb39..e3c1ed1436d 100644
--- a/htdocs/core/class/html.formticket.class.php
+++ b/htdocs/core/class/html.formticket.class.php
@@ -468,7 +468,7 @@ class FormTicket
}
print '
';
- print '
';
}
@@ -1302,7 +1302,7 @@ class FormTicket
print '';
print '
'.$langs->trans("Mask").' ('.$langs->trans("BarCodeModel").'): ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
'.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/commande/mod_commande_saphir.php b/htdocs/core/modules/commande/mod_commande_saphir.php
index 8b4ccdfaba7..ffb53480aa3 100644
--- a/htdocs/core/modules/commande/mod_commande_saphir.php
+++ b/htdocs/core/modules/commande/mod_commande_saphir.php
@@ -81,7 +81,7 @@ class mod_commande_saphir extends ModeleNumRefCommandes
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/expedition/mod_expedition_ribera.php b/htdocs/core/modules/expedition/mod_expedition_ribera.php
index 79bbcbdb481..736ddc3ab3f 100644
--- a/htdocs/core/modules/expedition/mod_expedition_ribera.php
+++ b/htdocs/core/modules/expedition/mod_expedition_ribera.php
@@ -81,7 +81,7 @@ class mod_expedition_ribera extends ModelNumRefExpedition
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/facture/mod_facture_mercure.php b/htdocs/core/modules/facture/mod_facture_mercure.php
index 32e06f285a9..706c35a9f82 100644
--- a/htdocs/core/modules/facture/mod_facture_mercure.php
+++ b/htdocs/core/modules/facture/mod_facture_mercure.php
@@ -78,7 +78,7 @@ class mod_facture_mercure extends ModeleNumRefFactures
$texte .= ''.$langs->trans("Mask").' ('.$langs->trans("InvoiceStandard").'): ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/mrp/doc/doc_generic_mo_odt.modules.php b/htdocs/core/modules/mrp/doc/doc_generic_mo_odt.modules.php
index e93ecd1af0a..b6ad4c6b8ff 100644
--- a/htdocs/core/modules/mrp/doc/doc_generic_mo_odt.modules.php
+++ b/htdocs/core/modules/mrp/doc/doc_generic_mo_odt.modules.php
@@ -158,7 +158,7 @@ class doc_generic_mo_odt extends ModelePDFMo
$texte .= $conf->global->MRP_MO_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/mrp/mod_mo_advanced.php b/htdocs/core/modules/mrp/mod_mo_advanced.php
index 14292f7f896..ba518159dbf 100644
--- a/htdocs/core/modules/mrp/mod_mo_advanced.php
+++ b/htdocs/core/modules/mrp/mod_mo_advanced.php
@@ -82,7 +82,7 @@ class mod_mo_advanced extends ModeleNumRefMos
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/product/mod_codeproduct_elephant.php b/htdocs/core/modules/product/mod_codeproduct_elephant.php
index 0b03bd9b6a4..9e32dc38fab 100644
--- a/htdocs/core/modules/product/mod_codeproduct_elephant.php
+++ b/htdocs/core/modules/product/mod_codeproduct_elephant.php
@@ -118,7 +118,7 @@ class mod_codeproduct_elephant extends ModeleProductCode
$texte .= ''.$langs->trans("Mask").' ('.$langs->trans("ProductCodeModel").'): ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
// Option to enable custom masks per product
$texte .= '';
diff --git a/htdocs/core/modules/product_batch/mod_sn_advanced.php b/htdocs/core/modules/product_batch/mod_sn_advanced.php
index 54c67291d9a..ca24a67c781 100644
--- a/htdocs/core/modules/product_batch/mod_sn_advanced.php
+++ b/htdocs/core/modules/product_batch/mod_sn_advanced.php
@@ -82,7 +82,7 @@ class mod_sn_advanced extends ModeleNumRefBatch
$texte .= ' '.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
// Option to enable custom masks per product
$texte .= '';
diff --git a/htdocs/core/modules/project/doc/doc_generic_project_odt.modules.php b/htdocs/core/modules/project/doc/doc_generic_project_odt.modules.php
index 233180630b0..f86f5b55a9c 100644
--- a/htdocs/core/modules/project/doc/doc_generic_project_odt.modules.php
+++ b/htdocs/core/modules/project/doc/doc_generic_project_odt.modules.php
@@ -449,7 +449,7 @@ class doc_generic_project_odt extends ModelePDFProjects
$texte .= $conf->global->PROJECT_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/project/mod_project_universal.php b/htdocs/core/modules/project/mod_project_universal.php
index 480d19396c3..550d72c4f68 100644
--- a/htdocs/core/modules/project/mod_project_universal.php
+++ b/htdocs/core/modules/project/mod_project_universal.php
@@ -85,7 +85,7 @@ class mod_project_universal extends ModeleNumRefProjects
$texte .= ' '.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/project/task/mod_task_universal.php b/htdocs/core/modules/project/task/mod_task_universal.php
index 3a6ef89f3fb..6de02dcaf99 100644
--- a/htdocs/core/modules/project/task/mod_task_universal.php
+++ b/htdocs/core/modules/project/task/mod_task_universal.php
@@ -85,7 +85,7 @@ class mod_task_universal extends ModeleNumRefTask
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/propale/mod_propale_saphir.php b/htdocs/core/modules/propale/mod_propale_saphir.php
index ce78f341319..af7579fb142 100644
--- a/htdocs/core/modules/propale/mod_propale_saphir.php
+++ b/htdocs/core/modules/propale/mod_propale_saphir.php
@@ -87,7 +87,7 @@ class mod_propale_saphir extends ModeleNumRefPropales
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/reception/mod_reception_moonstone.php b/htdocs/core/modules/reception/mod_reception_moonstone.php
index 0d0ced20eb4..e1a5669dc09 100644
--- a/htdocs/core/modules/reception/mod_reception_moonstone.php
+++ b/htdocs/core/modules/reception/mod_reception_moonstone.php
@@ -62,7 +62,7 @@ class mod_reception_moonstone extends ModelNumRefReception
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ' ';
- $texte .= ' ';
$texte .= '';
$texte .= '';
diff --git a/htdocs/core/modules/societe/mod_codeclient_elephant.php b/htdocs/core/modules/societe/mod_codeclient_elephant.php
index 705564e7e8e..c18b768a724 100644
--- a/htdocs/core/modules/societe/mod_codeclient_elephant.php
+++ b/htdocs/core/modules/societe/mod_codeclient_elephant.php
@@ -134,7 +134,7 @@ class mod_codeclient_elephant extends ModeleThirdPartyCode
$texte .= ''.$langs->trans("Mask").' ('.$langs->trans("CustomerCodeModel").'): ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/supplier_invoice/mod_facture_fournisseur_tulip.php b/htdocs/core/modules/supplier_invoice/mod_facture_fournisseur_tulip.php
index 57d5798c29e..5fc2737957f 100644
--- a/htdocs/core/modules/supplier_invoice/mod_facture_fournisseur_tulip.php
+++ b/htdocs/core/modules/supplier_invoice/mod_facture_fournisseur_tulip.php
@@ -95,7 +95,7 @@ class mod_facture_fournisseur_tulip extends ModeleNumRefSuppliersInvoices
$texte .= ':';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
diff --git a/htdocs/core/modules/supplier_order/doc/doc_generic_supplier_order_odt.modules.php b/htdocs/core/modules/supplier_order/doc/doc_generic_supplier_order_odt.modules.php
index 3a2775bef82..49ba1ec6cdf 100644
--- a/htdocs/core/modules/supplier_order/doc/doc_generic_supplier_order_odt.modules.php
+++ b/htdocs/core/modules/supplier_order/doc/doc_generic_supplier_order_odt.modules.php
@@ -159,7 +159,7 @@ class doc_generic_supplier_order_odt extends ModelePDFSuppliersOrders
$texte .= $conf->global->SUPPLIER_ORDER_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/supplier_order/mod_commande_fournisseur_orchidee.php b/htdocs/core/modules/supplier_order/mod_commande_fournisseur_orchidee.php
index c691b1448ef..473664cb44c 100644
--- a/htdocs/core/modules/supplier_order/mod_commande_fournisseur_orchidee.php
+++ b/htdocs/core/modules/supplier_order/mod_commande_fournisseur_orchidee.php
@@ -87,7 +87,7 @@ class mod_commande_fournisseur_orchidee extends ModeleNumRefSuppliersOrders
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/supplier_proposal/mod_supplier_proposal_saphir.php b/htdocs/core/modules/supplier_proposal/mod_supplier_proposal_saphir.php
index 3b8754d9928..e7db54062cb 100644
--- a/htdocs/core/modules/supplier_proposal/mod_supplier_proposal_saphir.php
+++ b/htdocs/core/modules/supplier_proposal/mod_supplier_proposal_saphir.php
@@ -87,7 +87,7 @@ class mod_supplier_proposal_saphir extends ModeleNumRefSupplierProposal
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/ticket/mod_ticket_universal.php b/htdocs/core/modules/ticket/mod_ticket_universal.php
index f60b1f16481..176af782dc7 100644
--- a/htdocs/core/modules/ticket/mod_ticket_universal.php
+++ b/htdocs/core/modules/ticket/mod_ticket_universal.php
@@ -83,7 +83,7 @@ class mod_ticket_universal extends ModeleNumRefTicket
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/usergroup/doc/doc_generic_usergroup_odt.modules.php b/htdocs/core/modules/usergroup/doc/doc_generic_usergroup_odt.modules.php
index 5a1bca6377d..cf91120d3f8 100644
--- a/htdocs/core/modules/usergroup/doc/doc_generic_usergroup_odt.modules.php
+++ b/htdocs/core/modules/usergroup/doc/doc_generic_usergroup_odt.modules.php
@@ -162,7 +162,7 @@ class doc_generic_usergroup_odt extends ModelePDFUserGroup
$texte .= $conf->global->USERGROUP_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/core/modules/workstation/mod_workstation_advanced.php b/htdocs/core/modules/workstation/mod_workstation_advanced.php
index bf783542c75..2f1a8ae9d71 100755
--- a/htdocs/core/modules/workstation/mod_workstation_advanced.php
+++ b/htdocs/core/modules/workstation/mod_workstation_advanced.php
@@ -82,7 +82,7 @@ class mod_workstation_advanced extends ModeleNumRefWorkstation
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
- print ' ';
}
diff --git a/htdocs/core/tpl/resource_add.tpl.php b/htdocs/core/tpl/resource_add.tpl.php
index 01c3897f991..64d545ba583 100644
--- a/htdocs/core/tpl/resource_add.tpl.php
+++ b/htdocs/core/tpl/resource_add.tpl.php
@@ -35,7 +35,7 @@ $out .= ''.$langs->trans('Busy').' '.$form->se
$out .= '
'.$langs->trans('Mandatory').' '.$form->selectyesno('mandatory', (GETPOSTISSET('mandatory') ? GETPOST('mandatory') : 0), 1).'
';
$out .= '
';
-$out .= '
';
$out .= '';
diff --git a/htdocs/datapolicy/admin/setupmail.php b/htdocs/datapolicy/admin/setupmail.php
index c25d4c2263d..2ec083b0fa8 100644
--- a/htdocs/datapolicy/admin/setupmail.php
+++ b/htdocs/datapolicy/admin/setupmail.php
@@ -151,7 +151,7 @@ $doleditor->Create();
print '
';
print '';
-print '';
-print ' \n";
print '';
@@ -353,7 +353,7 @@ print '
';
print $langs->trans("FreeTextOnDonations").' '.img_info($langs->trans("AddCRIfTooLong")).' ';
-print ' \n";
print "\n";
diff --git a/htdocs/don/index.php b/htdocs/don/index.php
index 2a314068830..78313698030 100644
--- a/htdocs/don/index.php
+++ b/htdocs/don/index.php
@@ -106,7 +106,7 @@ if (!empty($conf->global->MAIN_SEARCH_FORM_ON_HOME_AREAS)) { // TODO Add a s
print '
';
print ''.$langs->trans($value["text"]).' ';
$i++;
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index 676a5cae22c..51ee4794463 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -1679,7 +1679,7 @@ if ($action == 'create') {
$morehtmlref .= '
';
$morehtmlref .= '
';
$morehtmlref .= $formproject->select_projects($object->socid, $object->fk_project, 'projectid', $maxlength, 0, 1, 0, 1, 0, 0, '', 1);
- $morehtmlref .= '
';
+ $morehtmlref .= '
';
$morehtmlref .= '';
} else {
$morehtmlref .= $form->form_project($_SERVER['PHP_SELF'].'?id='.$object->id, $object->socid, $object->fk_project, 'none', 0, 0, 0, 1);
@@ -1750,7 +1750,7 @@ if ($action == 'create') {
print '
';
print '
';
print $form->selectDate($object->date_delivery ? $object->date_delivery : -1, 'liv_', 1, 1, '', "setdate_livraison", 1, 0);
- print '
';
+ print '
';
print '';
} else {
print $object->date_delivery ? dol_print_date($object->date_delivery, 'dayhour') : ' ';
@@ -1886,7 +1886,7 @@ if ($action == 'create') {
if ($user->admin) {
print info_admin($langs->trans("YouCanChangeValuesForThisListFromDictionarySetup"), 1);
}
- print '
';
+ print '
';
print '';
} else {
if ($object->shipping_method_id > 0) {
diff --git a/htdocs/expedition/contact.php b/htdocs/expedition/contact.php
index 164935a1437..aea23298fcf 100644
--- a/htdocs/expedition/contact.php
+++ b/htdocs/expedition/contact.php
@@ -162,7 +162,7 @@ if ($id > 0 || !empty($ref)) {
$morehtmlref .= '
';
$morehtmlref .= '
';
$morehtmlref .= $formproject->select_projects($object->socid, $object->fk_project, 'projectid', $maxlength, 0, 1, 0, 1, 0, 0, '', 1);
- $morehtmlref .= '
';
+ $morehtmlref .= '
';
$morehtmlref .= '';
} else {
$morehtmlref .= $form->form_project($_SERVER['PHP_SELF'].'?id='.$object->id, $object->socid, $object->fk_project, 'none', 0, 0, 0, 1);
diff --git a/htdocs/expedition/document.php b/htdocs/expedition/document.php
index 200a4b67aac..43299dad066 100644
--- a/htdocs/expedition/document.php
+++ b/htdocs/expedition/document.php
@@ -134,7 +134,7 @@ if ($id > 0 || !empty($ref)) {
$morehtmlref .= '
';
$morehtmlref .= '
';
$morehtmlref .= $formproject->select_projects($object->socid, $object->fk_project, 'projectid', $maxlength, 0, 1, 0, 1, 0, 0, '', 1);
- $morehtmlref .= '
';
+ $morehtmlref .= '
';
$morehtmlref .= '';
} else {
$morehtmlref .= $form->form_project($_SERVER['PHP_SELF'].'?id='.$object->id, $object->socid, $object->fk_project, 'none', 0, 0, 0, 1);
diff --git a/htdocs/expedition/note.php b/htdocs/expedition/note.php
index d9282481603..5ebc54193da 100644
--- a/htdocs/expedition/note.php
+++ b/htdocs/expedition/note.php
@@ -123,7 +123,7 @@ if ($id > 0 || !empty($ref)) {
$morehtmlref .= '
';
$morehtmlref .= '
';
$morehtmlref .= $formproject->select_projects($object->socid, $object->fk_project, 'projectid', $maxlength, 0, 1, 0, 1, 0, 0, '', 1);
- $morehtmlref .= '
';
+ $morehtmlref .= '
';
$morehtmlref .= '';
} else {
$morehtmlref .= $form->form_project($_SERVER['PHP_SELF'].'?id='.$object->id, $object->socid, $object->fk_project, 'none', 0, 0, 0, 1);
diff --git a/htdocs/expedition/shipment.php b/htdocs/expedition/shipment.php
index 42b8630bd3c..8510e6f3609 100644
--- a/htdocs/expedition/shipment.php
+++ b/htdocs/expedition/shipment.php
@@ -379,7 +379,7 @@ if ($id > 0 || !empty($ref)) {
print '
';
print '
';
print $form->selectDate($object->delivery_date ? $object->delivery_date : -1, 'liv_', 1, 1, '', "setdate_livraison", 1, 0);
- print '
';
+ print '
';
print '';
} else {
print dol_print_date($object->delivery_date, 'dayhour');
diff --git a/htdocs/fichinter/card-rec.php b/htdocs/fichinter/card-rec.php
index cc5c3c5e619..72a3fdd654b 100644
--- a/htdocs/fichinter/card-rec.php
+++ b/htdocs/fichinter/card-rec.php
@@ -601,7 +601,7 @@ if ($action == 'create') {
print '
';
print $form->selectarray('unit_frequency', array('d'=>$langs->trans('Day'), 'm'=>$langs->trans('Month'), 'y'=>$langs->trans('Year')), ($object->unit_frequency ? $object->unit_frequency : 'm'));
print '';
- print '
';
+ print '
';
print '';
} else {
if ($object->frequency > 0) {
diff --git a/htdocs/fichinter/card.php b/htdocs/fichinter/card.php
index 1b647af00a6..b03cf766c05 100644
--- a/htdocs/fichinter/card.php
+++ b/htdocs/fichinter/card.php
@@ -1491,7 +1491,7 @@ if ($action == 'create') {
}
print '';
- print '
';
+ print '
';
print '';
//Line extrafield
diff --git a/htdocs/fourn/commande/card.php b/htdocs/fourn/commande/card.php
index 2614c5cede0..93592a231e8 100644
--- a/htdocs/fourn/commande/card.php
+++ b/htdocs/fourn/commande/card.php
@@ -2189,7 +2189,7 @@ if ($action == 'create') {
$usehourmin = 1;
}
print $form->selectDate($object->delivery_date ? $object->delivery_date : -1, 'liv_', $usehourmin, $usehourmin, '', "setdate_livraison");
- print '
';
+ print '
';
print '';
} else {
$usehourmin = 'day';
@@ -2724,7 +2724,7 @@ if ($action == 'create') {
print '
'.$langs->trans("Password").' ';
//Submit button
print '
';
- print '
';
+print '
';
print '';
diff --git a/htdocs/knowledgemanagement/core/modules/knowledgemanagement/mod_knowledgerecord_advanced.php b/htdocs/knowledgemanagement/core/modules/knowledgemanagement/mod_knowledgerecord_advanced.php
index 48efbfbc8eb..70cda7254c8 100644
--- a/htdocs/knowledgemanagement/core/modules/knowledgemanagement/mod_knowledgerecord_advanced.php
+++ b/htdocs/knowledgemanagement/core/modules/knowledgemanagement/mod_knowledgerecord_advanced.php
@@ -81,7 +81,7 @@ class mod_knowledgerecord_advanced extends ModeleNumRefKnowledgeRecord
$texte .= ' '.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '';
diff --git a/htdocs/loan/schedule.php b/htdocs/loan/schedule.php
index 67be217f0d2..6dae3383d47 100644
--- a/htdocs/loan/schedule.php
+++ b/htdocs/loan/schedule.php
@@ -335,7 +335,7 @@ if (count($echeances->lines) == 0) {
} else {
$label = $langs->trans("Save");
}
-print '
';
+print '
';
print '';
// End of page
diff --git a/htdocs/margin/admin/margin.php b/htdocs/margin/admin/margin.php
index 4df01332eb1..2c224678f60 100644
--- a/htdocs/margin/admin/margin.php
+++ b/htdocs/margin/admin/margin.php
@@ -140,7 +140,7 @@ print '/> ';
print $langs->trans('MargeType3');
print '';
print '
';
-print ' ';
print '
'.$langs->trans('MarginTypeDesc');
print ' ';
@@ -215,7 +215,7 @@ print '
';
print Form::selectarray('MARGIN_METHODE_FOR_DISCOUNT', $methods, $conf->global->MARGIN_METHODE_FOR_DISCOUNT);
print ' ';
print '
';
-print ' ';
print '
'.$langs->trans('MARGIN_METHODE_FOR_DISCOUNT_DETAILS').' ';
print '';
@@ -233,7 +233,7 @@ $facture = new Facture($db);
print $formcompany->selectTypeContact($facture, $conf->global->AGENT_CONTACT_TYPE, "AGENT_CONTACT_TYPE", "internal", "code", 1);
print '';
print '
';
-print ' ';
print '
'.$langs->trans('AgentContactTypeDetails').' ';
print '';
diff --git a/htdocs/modulebuilder/index.php b/htdocs/modulebuilder/index.php
index 0a05266b6ff..027b9ea28bd 100644
--- a/htdocs/modulebuilder/index.php
+++ b/htdocs/modulebuilder/index.php
@@ -2717,7 +2717,7 @@ if ($module == 'initmodule') {
print '
';
print '
';
print '
';
- print ' ';
// List of existing properties
diff --git a/htdocs/modulebuilder/template/core/modules/mymodule/doc/doc_generic_myobject_odt.modules.php b/htdocs/modulebuilder/template/core/modules/mymodule/doc/doc_generic_myobject_odt.modules.php
index f3228915592..4e154b5665d 100644
--- a/htdocs/modulebuilder/template/core/modules/mymodule/doc/doc_generic_myobject_odt.modules.php
+++ b/htdocs/modulebuilder/template/core/modules/mymodule/doc/doc_generic_myobject_odt.modules.php
@@ -158,7 +158,7 @@ class doc_generic_myobject_odt extends ModelePDFMyObject
$texte .= $conf->global->MYMODULE_MYOBJECT_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '
';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/modulebuilder/template/core/modules/mymodule/mod_myobject_advanced.php b/htdocs/modulebuilder/template/core/modules/mymodule/mod_myobject_advanced.php
index 72b46b96416..b7fd7085783 100644
--- a/htdocs/modulebuilder/template/core/modules/mymodule/mod_myobject_advanced.php
+++ b/htdocs/modulebuilder/template/core/modules/mymodule/mod_myobject_advanced.php
@@ -81,7 +81,7 @@ class mod_myobject_advanced extends ModeleNumRefMyObject
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= ''.$langs->trans("AutoCloseMO").' '.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/paypal/admin/paypal.php b/htdocs/paypal/admin/paypal.php
index 46877f6db8a..f4edec7630c 100644
--- a/htdocs/paypal/admin/paypal.php
+++ b/htdocs/paypal/admin/paypal.php
@@ -333,7 +333,7 @@ print '';
print dol_get_fiche_end();
-print '
';
+print $form->buttonsSaveCancel("Modify", '');
print '';
diff --git a/htdocs/product/card.php b/htdocs/product/card.php
index 45d34f2d0e3..44c7fd9ca51 100644
--- a/htdocs/product/card.php
+++ b/htdocs/product/card.php
@@ -2607,7 +2607,7 @@ if (!empty($conf->global->PRODUCT_ADD_FORM_ADD_TO) && $object->id && ($action ==
print '';
print '';
- print '
';
print dol_get_fiche_end();
diff --git a/htdocs/product/stock/massstockmove.php b/htdocs/product/stock/massstockmove.php
index 9f3390d34af..da8ef2e5b37 100644
--- a/htdocs/product/stock/massstockmove.php
+++ b/htdocs/product/stock/massstockmove.php
@@ -662,7 +662,7 @@ if (count($listofdata)) {
print '
';
+ print '
';
print '';
-print '
';
print '';
@@ -958,7 +958,7 @@ print dol_get_fiche_end();
$value = $langs->trans("CreateOrders");
-print '
';
+print '
';
print '';
diff --git a/htdocs/product/stock/stockatdate.php b/htdocs/product/stock/stockatdate.php
index 4892004db72..44269124140 100644
--- a/htdocs/product/stock/stockatdate.php
+++ b/htdocs/product/stock/stockatdate.php
@@ -373,7 +373,7 @@ if (empty($reshook)) {
}
print '';
-print '
';
//print '';
diff --git a/htdocs/projet/admin/website.php b/htdocs/projet/admin/website.php
index 04acbaa44aa..893c3765736 100644
--- a/htdocs/projet/admin/website.php
+++ b/htdocs/projet/admin/website.php
@@ -134,7 +134,7 @@ if (!empty($conf->global->PROJECT_ENABLE_PUBLIC)) {
print '';
print '';
- print '
';
}
*/
diff --git a/htdocs/projet/tasks/contact.php b/htdocs/projet/tasks/contact.php
index 3aa5c3b8830..f693d0bf94a 100644
--- a/htdocs/projet/tasks/contact.php
+++ b/htdocs/projet/tasks/contact.php
@@ -407,7 +407,7 @@ if ($id > 0 || !empty($ref)) {
print '';
$formcompany->selectTypeContact($object, '', 'type', 'internal', 'rowid');
print ' ';
- print '';
- print '
\n";
print "\n";
diff --git a/htdocs/public/ticket/view.php b/htdocs/public/ticket/view.php
index 6485f9fcee2..1270ad6c0fa 100644
--- a/htdocs/public/ticket/view.php
+++ b/htdocs/public/ticket/view.php
@@ -395,7 +395,7 @@ if ($action == "view_ticket" || $action == "presend" || $action == "close" || $a
print '';
print '';
- print '
\n";
print "\n";
diff --git a/htdocs/reception/card.php b/htdocs/reception/card.php
index 68f314cdd03..3317288a4e1 100644
--- a/htdocs/reception/card.php
+++ b/htdocs/reception/card.php
@@ -1325,7 +1325,7 @@ if ($action == 'create') {
$morehtmlref .= '';
- print '
';
}
*/
diff --git a/htdocs/recruitment/core/modules/recruitment/doc/doc_generic_recruitmentjobposition_odt.modules.php b/htdocs/recruitment/core/modules/recruitment/doc/doc_generic_recruitmentjobposition_odt.modules.php
index 06b24ec8b65..c037e11f8db 100644
--- a/htdocs/recruitment/core/modules/recruitment/doc/doc_generic_recruitmentjobposition_odt.modules.php
+++ b/htdocs/recruitment/core/modules/recruitment/doc/doc_generic_recruitmentjobposition_odt.modules.php
@@ -157,7 +157,7 @@ class doc_generic_recruitmentjobposition_odt extends ModelePDFRecruitmentJobPosi
$texte .= $conf->global->RECRUITMENT_RECRUITMENTJOBPOSITION_ADDON_PDF_ODT_PATH;
$texte .= '';
$texte .= '';
- $texte .= '
';
// Scan directories
diff --git a/htdocs/recruitment/core/modules/recruitment/mod_recruitmentjobposition_advanced.php b/htdocs/recruitment/core/modules/recruitment/mod_recruitmentjobposition_advanced.php
index 35f5616da68..fcc476abacf 100644
--- a/htdocs/recruitment/core/modules/recruitment/mod_recruitmentjobposition_advanced.php
+++ b/htdocs/recruitment/core/modules/recruitment/mod_recruitmentjobposition_advanced.php
@@ -81,7 +81,7 @@ class mod_recruitmentjobposition_advanced extends ModeleNumRefRecruitmentJobPosi
$texte .= ''.$langs->trans("Mask").': ';
$texte .= ''.$form->textwithpicto(' ';
- $texte .= ' ';
+ $texte .= ' ';
$texte .= '
';
+print '
';
print '';
$formcompany->select_localtax(1, $object->localtax1_value, "lt1");
- print ' ';
+ print ''.$object->localtax1_value.' ';
}
@@ -2594,7 +2594,7 @@ if (is_object($objcanvas) && $objcanvas->displayCanvasExists($action)) {
if ($action == 'editIRPF') {
print '';
$formcompany->select_localtax(2, $object->localtax2_value, "lt2");
- print ' ';
+ print ''.$object->localtax2_value.' ';
}
@@ -2612,7 +2612,7 @@ if (is_object($objcanvas) && $objcanvas->displayCanvasExists($action)) {
if ($action == 'editRE') {
print '';
$formcompany->select_localtax(1, $object->localtax1_value, "lt1");
- print ' ';
+ print ''.$object->localtax1_value.' ';
}
@@ -2630,7 +2630,7 @@ if (is_object($objcanvas) && $objcanvas->displayCanvasExists($action)) {
if ($action == 'editIRPF') {
print '';
$formcompany->select_localtax(2, $object->localtax2_value, "lt2");
- print ' ';
+ print ''.$object->localtax2_value.' ';
}
diff --git a/htdocs/societe/notify/card.php b/htdocs/societe/notify/card.php
index d62ca943fb1..b52b8b4a650 100644
--- a/htdocs/societe/notify/card.php
+++ b/htdocs/societe/notify/card.php
@@ -288,7 +288,7 @@ if ($result > 0) {
$type = array('email'=>$langs->trans("EMail"));
print $form->selectarray("typeid", $type, '', 0, 0, 0, '', 0, 0, 0, '', 'minwidth75imp');
print '';
- print '';
diff --git a/htdocs/supplier_proposal/card.php b/htdocs/supplier_proposal/card.php
index cc553555b5b..59a99248af5 100644
--- a/htdocs/supplier_proposal/card.php
+++ b/htdocs/supplier_proposal/card.php
@@ -1541,7 +1541,7 @@ if ($action == 'create') {
print ''.$langs->trans("AssignUser").' ';
print $form->select_dolusers($user->id, 'fk_user_assign', 1);
- print ' ';
if (GETPOST('set', 'alpha') == 'properties' && $user->rights->ticket->write) {
- print '';
- print '
';
}
diff --git a/htdocs/user/notify/card.php b/htdocs/user/notify/card.php
index 05b45ebf829..737d1b7b710 100644
--- a/htdocs/user/notify/card.php
+++ b/htdocs/user/notify/card.php
@@ -290,7 +290,7 @@ if ($result > 0) {
print $form->selectarray("typeid", $type);
print ' ';
print '';
- print ' ';
diff --git a/htdocs/website/index.php b/htdocs/website/index.php
index 23be98a3b8c..4040963b6b7 100644
--- a/htdocs/website/index.php
+++ b/htdocs/website/index.php
@@ -3542,7 +3542,7 @@ if ($action == 'createsite') {
if ($action == 'createsite') {
print '';
- print '
';
@@ -3980,7 +3980,7 @@ if ($action == 'editmeta' || $action == 'createcontainer') { // Edit properties
if ($action == 'createcontainer') {
print '';
- print '
';
From 29f98041e6edeabf14a95a1e3c255af93d72d1ef Mon Sep 17 00:00:00 2001
From: daraelmin
Date: Wed, 25 Aug 2021 08:48:42 +0200
Subject: [PATCH 028/117] conditiion always wrong when on following link
---
htdocs/public/payment/newpayment.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/public/payment/newpayment.php b/htdocs/public/payment/newpayment.php
index 2a361f03c24..d462acd4ce7 100644
--- a/htdocs/public/payment/newpayment.php
+++ b/htdocs/public/payment/newpayment.php
@@ -1516,7 +1516,7 @@ if ($source == 'member' || $source == 'membersubscription') {
$oldtypeid = $member->typeid;
$newtypeid = (int) (GETPOSTISSET("typeid") ? GETPOST("typeid", 'int') : $member->typeid);
- if ($oldtypeid != $newtypeid && !empty($conf->global->MEMBER_ALLOW_CHANGE_OF_TYPE)) {
+ if (!empty($conf->global->MEMBER_ALLOW_CHANGE_OF_TYPE)) {
require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent_type.class.php';
$adht = new AdherentType($db);
// Amount by member type
From 701b43d9172fd2d264e2a33a620b2470ebb5bd52 Mon Sep 17 00:00:00 2001
From: daraelmin
Date: Wed, 25 Aug 2021 09:01:30 +0200
Subject: [PATCH 029/117] Add MEMBER_ALLOW_CHANGE_OF_TYPE in admin panel
---
htdocs/adherents/admin/member.php | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/htdocs/adherents/admin/member.php b/htdocs/adherents/admin/member.php
index d03beec610e..5ff86a45e0e 100644
--- a/htdocs/adherents/admin/member.php
+++ b/htdocs/adherents/admin/member.php
@@ -225,6 +225,11 @@ print ''.$langs->trans("MemberCreateAnExternalUserForSub
print $form->selectyesno('ADHERENT_CREATE_EXTERNAL_USER_LOGIN', (!empty($conf->global->ADHERENT_CREATE_EXTERNAL_USER_LOGIN) ? $conf->global->ADHERENT_CREATE_EXTERNAL_USER_LOGIN : 0), 1);
print " '.$langs->trans("MemberAllowchangeOfType").' ';
+print $form->selectyesno('ADHERENT_LOGIN_NOT_REQUIRED', (!empty($conf->global->MEMBER_ALLOW_CHANGE_OF_TYPE) ? 0 : 1), 1);
+print " '.$langs->trans("MoreActionsOnSubscription").' ';
$arraychoices = array('0'=>$langs->trans("None"));
From 01a6d8296ecc46f3c2ac318a7a230bb278b45ba1 Mon Sep 17 00:00:00 2001
From: Alexandre SPANGARO
Date: Wed, 25 Aug 2021 09:30:52 +0200
Subject: [PATCH 030/117] NEW Task - Add From/to input on search date
---
htdocs/projet/tasks/list.php | 129 ++++++++++++++++++++++++-----------
1 file changed, 91 insertions(+), 38 deletions(-)
diff --git a/htdocs/projet/tasks/list.php b/htdocs/projet/tasks/list.php
index 8dc369b6a0a..0788b12d868 100644
--- a/htdocs/projet/tasks/list.php
+++ b/htdocs/projet/tasks/list.php
@@ -3,6 +3,7 @@
* Copyright (C) 2006-2019 Laurent Destailleur
* Copyright (C) 2006-2010 Regis Houssin
* Copyright (C) 2018 Ferran Marcet
+ * Copyright (C) 2021 Alexandre Spangaro
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
@@ -71,12 +72,22 @@ if ($mine) {
$search_task_user = $user->id; $mine = 0;
}
-$search_sday = GETPOST('search_sday', 'int');
-$search_smonth = GETPOST('search_smonth', 'int');
-$search_syear = GETPOST('search_syear', 'int');
-$search_eday = GETPOST('search_eday', 'int');
-$search_emonth = GETPOST('search_emonth', 'int');
-$search_eyear = GETPOST('search_eyear', 'int');
+$search_date_startday = GETPOST('search_date_startday', 'int');
+$search_date_startmonth = GETPOST('search_date_startmonth', 'int');
+$search_date_startyear = GETPOST('search_date_startyear', 'int');
+$search_date_endday = GETPOST('search_date_endday', 'int');
+$search_date_endmonth = GETPOST('search_date_endmonth', 'int');
+$search_date_endyear = GETPOST('search_date_endyear', 'int');
+$search_date_start = dol_mktime(0, 0, 0, $search_date_startmonth, $search_date_startday, $search_date_startyear); // Use tzserver
+$search_date_end = dol_mktime(23, 59, 59, $search_date_endmonth, $search_date_endday, $search_date_endyear);
+$search_datelimit_startday = GETPOST('search_datelimit_startday', 'int');
+$search_datelimit_startmonth = GETPOST('search_datelimit_startmonth', 'int');
+$search_datelimit_startyear = GETPOST('search_datelimit_startyear', 'int');
+$search_datelimit_endday = GETPOST('search_datelimit_endday', 'int');
+$search_datelimit_endmonth = GETPOST('search_datelimit_endmonth', 'int');
+$search_datelimit_endyear = GETPOST('search_datelimit_endyear', 'int');
+$search_datelimit_start = dol_mktime(0, 0, 0, $search_datelimit_startmonth, $search_datelimit_startday, $search_datelimit_startyear);
+$search_datelimit_end = dol_mktime(23, 59, 59, $search_datelimit_endmonth, $search_datelimit_endday, $search_datelimit_endyear);
// Initialize context for list
$contextpage = GETPOST('contextpage', 'aZ') ?GETPOST('contextpage', 'aZ') : 'tasklist';
@@ -191,12 +202,22 @@ if (empty($reshook)) {
$search_task_progress = "";
$search_task_user = -1;
$search_project_user = -1;
- $search_sday = '';
- $search_smonth = '';
- $search_syear = '';
- $search_eday = '';
- $search_emonth = '';
- $search_eyear = '';
+ $search_date_startday = '';
+ $search_date_startmonth = '';
+ $search_date_startyear = '';
+ $search_date_endday = '';
+ $search_date_endmonth = '';
+ $search_date_endyear = '';
+ $search_date_start = '';
+ $search_date_end = '';
+ $search_datelimit_startday = '';
+ $search_datelimit_startmonth = '';
+ $search_datelimit_startyear = '';
+ $search_datelimit_endday = '';
+ $search_datelimit_endmonth = '';
+ $search_datelimit_endyear = '';
+ $search_datelimit_start = '';
+ $search_datelimit_end = '';
$toselect = '';
$search_array_options = array();
}
@@ -372,8 +393,18 @@ if ($search_task_progress) {
if ($search_societe) {
$sql .= natural_search('s.nom', $search_societe);
}
-$sql .= dolSqlDateFilter('t.dateo', $search_sday, $search_smonth, $search_syear);
-$sql .= dolSqlDateFilter('t.datee', $search_eday, $search_emonth, $search_eyear);
+if ($search_date_start) {
+ $sql .= " AND t.dateo >= '".$db->idate($search_date_start)."'";
+}
+if ($search_date_end) {
+ $sql .= " AND t.dateo <= '".$db->idate($search_date_end)."'";
+}
+if ($search_datelimit_start) {
+ $sql .= " AND t.datee >= '".$db->idate($search_datelimit_start)."'";
+}
+if ($search_datelimit_end) {
+ $sql .= " AND t.datee <= '".$db->idate($search_datelimit_end)."'";
+}
if ($search_all) {
$sql .= natural_search(array_keys($fieldstosearchall), $search_all);
}
@@ -454,23 +485,41 @@ if (!empty($contextpage) && $contextpage != $_SERVER["PHP_SELF"]) {
if ($limit > 0 && $limit != $conf->liste_limit) {
$param .= '&limit='.urlencode($limit);
}
-if ($search_sday) {
- $param .= '&search_sday='.urlencode($search_sday);
+if ($search_date_startday) {
+ $param .= '&search_date_startday='.urlencode($search_date_startday);
}
-if ($search_smonth) {
- $param .= '&search_smonth='.urlencode($search_smonth);
+if ($search_date_startmonth) {
+ $param .= '&search_date_startmonth='.urlencode($search_date_startmonth);
}
-if ($search_syear) {
- $param .= '&search_syear='.urlencode($search_syear);
+if ($search_date_startyear) {
+ $param .= '&search_date_startyear='.urlencode($search_date_startyear);
}
-if ($search_eday) {
- $param .= '&search_eday='.urlencode($search_eday);
+if ($search_date_endday) {
+ $param .= '&search_date_endday='.urlencode($search_date_endday);
}
-if ($search_emonth) {
- $param .= '&search_emonth='.urlencode($search_emonth);
+if ($search_date_endmonth) {
+ $param .= '&search_date_endmonth='.urlencode($search_date_endmonth);
}
-if ($search_eyear) {
- $param .= '&search_eyear='.urlencode($search_eyear);
+if ($search_date_endyear) {
+ $param .= '&search_date_endyear='.urlencode($search_date_endyear);
+}
+if ($search_datelimit_startday) {
+ $param .= '&search_datelimit_startday='.urlencode($search_datelimit_startday);
+}
+if ($search_datelimit_startmonth) {
+ $param .= '&search_datelimit_startmonth='.urlencode($search_datelimit_startmonth);
+}
+if ($search_datelimit_startyear) {
+ $param .= '&search_datelimit_startyear='.urlencode($search_datelimit_startyear);
+}
+if ($search_datelimit_endday) {
+ $param .= '&search_datelimit_endday='.urlencode($search_datelimit_endday);
+}
+if ($search_datelimit_endmonth) {
+ $param .= '&search_datelimit_endmonth='.urlencode($search_datelimit_endmonth);
+}
+if ($search_datelimit_endyear) {
+ $param .= '&search_datelimit_endyear='.urlencode($search_datelimit_endyear);
}
if ($socid) {
$param .= '&socid='.urlencode($socid);
@@ -646,22 +695,26 @@ if (!empty($arrayfields['t.description']['checked'])) {
}
// Start date
if (!empty($arrayfields['t.dateo']['checked'])) {
- print '';
- if (!empty($conf->global->MAIN_LIST_FILTER_ON_DAY)) {
- print ' ';
+ print '';
+ print $form->selectDate($search_date_start ? $search_date_start : -1, 'search_date_start', 0, 0, 1, '', 1, 0, 0, '', '', '', '', 1, '', $langs->trans('From'));
+ print '
';
+ print '';
+ print $form->selectDate($search_date_end ? $search_date_end : -1, 'search_date_end', 0, 0, 1, '', 1, 0, 0, '', '', '', '', 1, '', $langs->trans('to'));
+ print '
';
print ' ';
}
// End date
if (!empty($arrayfields['t.datee']['checked'])) {
- print '';
- if (!empty($conf->global->MAIN_LIST_FILTER_ON_DAY)) {
- print ' ';
+ print '';
+ print $form->selectDate($search_datelimit_start ? $search_datelimit_start : -1, 'search_datelimit_start', 0, 0, 1, '', 1, 0, 0, '', '', '', '', 1, '', $langs->trans('From'));
+ print '
';
+ print '';
+ print $form->selectDate($search_datelimit_end ? $search_datelimit_end : -1, 'search_datelimit_end', 0, 0, 1, '', 1, 0, 0, '', '', '', '', 1, '', $langs->trans('to'));
+ // TODO Add option late
+ //print '
';
print ' ';
}
if (!empty($arrayfields['p.ref']['checked'])) {
From d022b3b0a1e0a1216df7dfda7df266a27e77c1b3 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Wed, 25 Aug 2021 12:24:13 +0200
Subject: [PATCH 031/117] FIx #18481
---
htdocs/adherents/card.php | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/htdocs/adherents/card.php b/htdocs/adherents/card.php
index b33e03d5855..32a324ce4d6 100644
--- a/htdocs/adherents/card.php
+++ b/htdocs/adherents/card.php
@@ -2010,8 +2010,7 @@ if (is_object($objcanvas) && $objcanvas->displayCanvasExists($action)) {
// Generated documents
$filename = dol_sanitizeFileName($object->ref);
//$filename = 'tmp_cards.php';
- //$filedir = $conf->adherent->dir_output . '/' . get_exdir($object->id, 2, 0, 0, $object, 'member') . dol_sanitizeFileName($object->ref);
- $filedir = $conf->adherent->dir_output.'/'.get_exdir(0, 0, 0, 0, $object, 'member');
+ $filedir = $conf->adherent->dir_output.'/'.get_exdir(0, 0, 0, 1, $object, 'member');
$urlsource = $_SERVER['PHP_SELF'].'?id='.$object->id;
$genallowed = $user->rights->adherent->lire;
$delallowed = $user->rights->adherent->creer;
From 22ec43f4a3d211f5cdcf5ff4d0c11724e832fb50 Mon Sep 17 00:00:00 2001
From: Francis Besset
Date: Wed, 25 Aug 2021 13:46:18 +0200
Subject: [PATCH 032/117] Fix bad comparison for fk_unit to avoid always null
value for all case
---
htdocs/fourn/class/fournisseur.facture.class.php | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/htdocs/fourn/class/fournisseur.facture.class.php b/htdocs/fourn/class/fournisseur.facture.class.php
index 7b5bbbc50c5..3eefa40aab5 100644
--- a/htdocs/fourn/class/fournisseur.facture.class.php
+++ b/htdocs/fourn/class/fournisseur.facture.class.php
@@ -3383,13 +3383,13 @@ class SupplierInvoiceLine extends CommonObjectLine
if (empty($this->fk_product)) {
$fk_product = "null";
} else {
- $fk_product = $this->fk_product;
+ $fk_product = (int) $this->fk_product;
}
if (empty($this->fk_unit)) {
$fk_unit = "null";
} else {
- $fk_unit = "'".$this->db->escape($this->fk_unit)."'";
+ $fk_unit = (int) $this->fk_unit;
}
$sql = "UPDATE ".MAIN_DB_PREFIX."facture_fourn_det SET";
@@ -3414,10 +3414,10 @@ class SupplierInvoiceLine extends CommonObjectLine
$sql .= ", total_localtax1= ".price2num($this->total_localtax1);
$sql .= ", total_localtax2= ".price2num($this->total_localtax2);
$sql .= ", total_ttc = ".price2num($this->total_ttc);
- $sql .= ", fk_product = ".((int) $fk_product);
+ $sql .= ", fk_product = ".$fk_product;
$sql .= ", product_type = ".((int) $this->product_type);
$sql .= ", info_bits = ".((int) $this->info_bits);
- $sql .= ", fk_unit = ".($fk_unit > 0 ? (int) $fk_unit : 'null');
+ $sql .= ", fk_unit = ".$fk_unit;
// Multicurrency
$sql .= " , multicurrency_subprice=".price2num($this->multicurrency_subprice)."";
From 6c71c6f5e5a94ff5b9df788c33f5df1f43096117 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Wed, 25 Aug 2021 14:18:52 +0200
Subject: [PATCH 033/117] Fix trans
---
htdocs/langs/en_US/admin.lang | 2 +-
htdocs/langs/en_US/orders.lang | 2 +-
htdocs/langs/en_US/receptions.lang | 2 +-
htdocs/langs/en_US/sendings.lang | 2 +-
htdocs/langs/en_US/stocks.lang | 2 +-
5 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/htdocs/langs/en_US/admin.lang b/htdocs/langs/en_US/admin.lang
index f8b3928d97f..454df4ed28e 100644
--- a/htdocs/langs/en_US/admin.lang
+++ b/htdocs/langs/en_US/admin.lang
@@ -1421,7 +1421,7 @@ WAREHOUSE_ASK_WAREHOUSE_DURING_ORDER=Ask for Warehouse Source for order
##### Suppliers Orders #####
BANK_ASK_PAYMENT_BANK_DURING_SUPPLIER_ORDER=Ask for bank account destination of purchase order
##### Orders #####
-SuggestedPaymentModesIfNotDefinedInOrder=Suggested payments mode on sale order by default if not defined on the order
+SuggestedPaymentModesIfNotDefinedInOrder=Suggested payments mode on sales order by default if not defined on the order
OrdersSetup=Sales Orders management setup
OrdersNumberingModules=Orders numbering models
OrdersModelModule=Order documents models
diff --git a/htdocs/langs/en_US/orders.lang b/htdocs/langs/en_US/orders.lang
index 5dab5b99bf1..aa556a6464a 100644
--- a/htdocs/langs/en_US/orders.lang
+++ b/htdocs/langs/en_US/orders.lang
@@ -17,7 +17,7 @@ ToOrder=Make order
MakeOrder=Make order
SupplierOrder=Purchase order
SuppliersOrders=Purchase orders
-SaleOrderLines=Sale order lines
+SaleOrderLines=Sales order lines
PurchaseOrderLines=Puchase order lines
SuppliersOrdersRunning=Current purchase orders
CustomerOrder=Sales Order
diff --git a/htdocs/langs/en_US/receptions.lang b/htdocs/langs/en_US/receptions.lang
index 338602e722e..4ee0555c396 100644
--- a/htdocs/langs/en_US/receptions.lang
+++ b/htdocs/langs/en_US/receptions.lang
@@ -36,7 +36,7 @@ StatsOnReceptionsOnlyValidated=Statistics conducted on receptions only validated
SendReceptionByEMail=Send reception by email
SendReceptionRef=Submission of reception %s
ActionsOnReception=Events on reception
-ReceptionCreationIsDoneFromOrder=For the moment, creation of a new reception is done from the order card.
+ReceptionCreationIsDoneFromOrder=For the moment, creation of a new reception is done from the Purchase Order record.
ReceptionLine=Reception line
ProductQtyInReceptionAlreadySent=Product quantity from open sales order already sent
ProductQtyInSuppliersReceptionAlreadyRecevied=Product quantity from open supplier order already received
diff --git a/htdocs/langs/en_US/sendings.lang b/htdocs/langs/en_US/sendings.lang
index b94891d79c5..8f10b1e9404 100644
--- a/htdocs/langs/en_US/sendings.lang
+++ b/htdocs/langs/en_US/sendings.lang
@@ -53,7 +53,7 @@ SendShippingByEMail=Send shipment by email
SendShippingRef=Submission of shipment %s
ActionsOnShipping=Events on shipment
LinkToTrackYourPackage=Link to track your package
-ShipmentCreationIsDoneFromOrder=For the moment, creation of a new shipment is done from the order card.
+ShipmentCreationIsDoneFromOrder=For the moment, creation of a new shipment is done from the Sales Order record.
ShipmentLine=Shipment line
ProductQtyInCustomersOrdersRunning=Product quantity from open sales orders
ProductQtyInSuppliersOrdersRunning=Product quantity from open purchase orders
diff --git a/htdocs/langs/en_US/stocks.lang b/htdocs/langs/en_US/stocks.lang
index 4396139f1f9..78b095d9f11 100644
--- a/htdocs/langs/en_US/stocks.lang
+++ b/htdocs/langs/en_US/stocks.lang
@@ -62,7 +62,7 @@ AllowAddLimitStockByWarehouse=Manage also value for minimum and desired stock pe
RuleForWarehouse=Rule for warehouses
WarehouseAskWarehouseOnThirparty=Set a warehouse on Third-parties
WarehouseAskWarehouseDuringPropal=Set a warehouse on Commercial proposals
-WarehouseAskWarehouseDuringOrder=Set a warehouse on Sale orders
+WarehouseAskWarehouseDuringOrder=Set a warehouse on Sales Orders
UserDefaultWarehouse=Set a warehouse on Users
MainDefaultWarehouse=Default warehouse
MainDefaultWarehouseUser=Use a default warehouse for each user
From 65629711d0722a96f5061b7b8e5dffa224cdb79b Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Wed, 25 Aug 2021 14:53:14 +0200
Subject: [PATCH 034/117] FIX #18484
---
htdocs/core/actions_massactions.inc.php | 40 +++---
htdocs/core/class/commonobject.class.php | 6 +-
htdocs/langs/en_US/orders.lang | 1 +
htdocs/reception/list.php | 157 +++++++++++++++--------
4 files changed, 124 insertions(+), 80 deletions(-)
diff --git a/htdocs/core/actions_massactions.inc.php b/htdocs/core/actions_massactions.inc.php
index cf412223838..c2538421bfe 100644
--- a/htdocs/core/actions_massactions.inc.php
+++ b/htdocs/core/actions_massactions.inc.php
@@ -631,6 +631,8 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
$createbills_onebythird = GETPOST('createbills_onebythird', 'int');
$validate_invoices = GETPOST('validate_invoices', 'int');
+ $errors = array();
+
$TFact = array();
$TFactThird = array();
@@ -645,18 +647,19 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
if ($cmd->fetch($id_order) <= 0) {
continue;
}
+ $cmd->fetch_thirdparty();
$objecttmp = new Facture($db);
if (!empty($createbills_onebythird) && !empty($TFactThird[$cmd->socid])) {
- $objecttmp = $TFactThird[$cmd->socid]; // If option "one bill per third" is set, we use already created order.
+ // If option "one bill per third" is set, and an invoice for this thirdparty was already created, we re-use it.
+ $objecttmp = $TFactThird[$cmd->socid];
} else {
- // Load extrafields of order
- $cmd->fetch_optionals();
-
+ // If we want one invoice per order or if there is no first invoice yet for this thirdparty.
$objecttmp->socid = $cmd->socid;
$objecttmp->type = $objecttmp::TYPE_STANDARD;
- $objecttmp->cond_reglement_id = $cmd->cond_reglement_id;
- $objecttmp->mode_reglement_id = $cmd->mode_reglement_id;
+ $objecttmp->cond_reglement_id = ($cmd->cond_reglement_id || $cmd->thirdparty->cond_reglement_id);
+ $objecttmp->mode_reglement_id = ($cmd->mode_reglement_id || $cmd->thirdparty->mode_reglement_id);
+
$objecttmp->fk_project = $cmd->fk_project;
$objecttmp->multicurrency_code = $cmd->multicurrency_code;
if (empty($createbills_onebythird)) {
@@ -680,23 +683,20 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
$nb_bills_created++;
$lastref = $objecttmp->ref;
$lastid = $objecttmp->id;
+
+ $TFactThird[$cmd->socid] = $objecttmp;
+ } else {
+ $langs->load("errors");
+ $errors[] = $cmd->ref.' : '.$langs->trans($objecttmp->error);
+ $error++;
}
}
if ($objecttmp->id > 0) {
- $sql = "INSERT INTO ".MAIN_DB_PREFIX."element_element (";
- $sql .= "fk_source";
- $sql .= ", sourcetype";
- $sql .= ", fk_target";
- $sql .= ", targettype";
- $sql .= ") VALUES (";
- $sql .= $id_order;
- $sql .= ", '".$db->escape($objecttmp->origin)."'";
- $sql .= ", ".$objecttmp->id;
- $sql .= ", '".$db->escape($objecttmp->element)."'";
- $sql .= ")";
+ $res = $objecttmp->add_object_linked($objecttmp->origin, $id_order);
- if (!$db->query($sql)) {
+ if ($res == 0) {
+ $errors[] = $objecttmp->error;
$error++;
}
@@ -845,7 +845,6 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
}
$id = $objecttmp->id; // For builddoc action
- $object = $objecttmp;
// Builddoc
$donotredirect = 1;
@@ -854,7 +853,7 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
// Call action to build doc
$savobject = $object;
- $object = $objecttmp;
+ $object = $objecttmp;
include DOL_DOCUMENT_ROOT.'/core/actions_builddoc.inc.php';
$object = $savobject;
}
@@ -949,6 +948,7 @@ if ($massaction == 'confirm_createbills') { // Create bills from orders.
exit;
} else {
$db->rollback();
+
$action = 'create';
$_GET["origin"] = $_POST["origin"];
$_GET["originid"] = $_POST["originid"];
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index 1e28afd41e0..5df73f49f5c 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -3577,7 +3577,7 @@ abstract class CommonObject
* @param string $origin Linked element type
* @param int $origin_id Linked element id
* @param User $f_user User that create
- * @param int $notrigger 1=Does not execute triggers, 0= execute triggers
+ * @param int $notrigger 1=Does not execute triggers, 0=execute triggers
* @return int <=0 if KO, >0 if OK
* @see fetchObjectLinked(), updateObjectLinked(), deleteObjectLinked()
*/
@@ -3611,9 +3611,9 @@ abstract class CommonObject
$sql .= ", fk_target";
$sql .= ", targettype";
$sql .= ") VALUES (";
- $sql .= $origin_id;
+ $sql .= ((int) $origin_id);
$sql .= ", '" . $this->db->escape($origin) . "'";
- $sql .= ", " . $this->id;
+ $sql .= ", " . ((int) $this->id);
$sql .= ", '" . $this->db->escape($this->element) . "'";
$sql .= ")";
diff --git a/htdocs/langs/en_US/orders.lang b/htdocs/langs/en_US/orders.lang
index 5dab5b99bf1..9018db40a5b 100644
--- a/htdocs/langs/en_US/orders.lang
+++ b/htdocs/langs/en_US/orders.lang
@@ -151,6 +151,7 @@ PDFEdisonDescription=A simple order model
PDFProformaDescription=A complete Proforma invoice template
CreateInvoiceForThisCustomer=Bill orders
CreateInvoiceForThisSupplier=Bill orders
+CreateInvoiceForThisReceptions=Bill receptions
NoOrdersToInvoice=No orders billable
CloseProcessedOrdersAutomatically=Classify "Processed" all selected orders.
OrderCreation=Order creation
diff --git a/htdocs/reception/list.php b/htdocs/reception/list.php
index dd9f365c39a..e4b519517ea 100644
--- a/htdocs/reception/list.php
+++ b/htdocs/reception/list.php
@@ -171,87 +171,102 @@ if (empty($reshook)) {
$createbills_onebythird = GETPOST('createbills_onebythird', 'int');
$validate_invoices = GETPOST('validate_invoices', 'int');
+ $errors = array();
+
$TFact = array();
$TFactThird = array();
$nb_bills_created = 0;
+ $lastid= 0;
+ $lastref = '';
$db->begin();
- $errors = array();
+
foreach ($receptions as $id_reception) {
$rcp = new Reception($db);
- // On ne facture que les réceptions validées
- if ($rcp->fetch($id_reception) <= 0 || $rcp->statut != 1) {
+ // We only invoice reception that are validated
+ if ($rcp->fetch($id_reception) <= 0 || $rcp->statut != $rcp::STATUS_VALIDATED) {
$errors[] = $langs->trans('StatusOfRefMustBe', $rcp->ref, $langs->transnoentities("StatusSupplierOrderValidatedShort"));
$error++;
continue;
}
- $object = new FactureFournisseur($db);
+ $objecttmp = new FactureFournisseur($db);
if (!empty($createbills_onebythird) && !empty($TFactThird[$rcp->socid])) {
- $object = $TFactThird[$rcp->socid]; // If option "one bill per third" is set, we use already created reception.
- if (empty($object->rowid) && $object->id != null) {
- $object->rowid = $object->id;
- }
- if (!empty($object->rowid)) {
- $object->fetchObjectLinked();
- }
- $rcp->fetchObjectLinked();
+ // If option "one bill per third" is set, and an invoice for this thirdparty was already created, we re-use it.
+ $objecttmp = $TFactThird[$rcp->socid];
- if (count($rcp->linkedObjectsIds['reception']) > 0) {
- foreach ($rcp->linkedObjectsIds['reception'] as $key => $value) {
- if (empty($object->linkedObjectsIds['reception']) || !in_array($value, $object->linkedObjectsIds['reception'])) { //Dont try to link if already linked
- $object->add_object_linked('reception', $value); // add supplier order linked object
+ // Add all links of this new reception to the existing invoice
+ $objecttmp->fetchObjectLinked();
+ $rcp->fetchObjectLinked();
+ if (count($rcp->linkedObjectsIds['order_supplier']) > 0) {
+ foreach ($rcp->linkedObjectsIds['order_supplier'] as $key => $value) {
+ if (empty($objecttmp->linkedObjectsIds['order_supplier']) || !in_array($value, $objecttmp->linkedObjectsIds['order_supplier'])) { //Dont try to link if already linked
+ $objecttmp->add_object_linked('order_supplier', $value); // add supplier order linked object
}
}
}
} else {
- $object->socid = $rcp->socid;
- $object->type = FactureFournisseur::TYPE_STANDARD;
- $object->cond_reglement_id = $rcp->thirdparty->cond_reglement_supplier_id;
- $object->mode_reglement_id = $rcp->thirdparty->mode_reglement_supplier_id;
- $object->fk_account = !empty($rcp->thirdparty->fk_account) ? $rcp->thirdparty->fk_account : 0;
- $object->remise_percent = !empty($rcp->thirdparty->remise_percent) ? $rcp->thirdparty->remise_percent : 0;
- $object->remise_absolue = !empty($rcp->thirdparty->remise_absolue) ? $rcp->thirdparty->remise_absolue : 0;
+ // If we want one invoice per reception or if there is no first invoice yet for this thirdparty.
+ $objecttmp->socid = $rcp->socid;
+ $objecttmp->type = $objecttmp::TYPE_STANDARD;
+ $objecttmp->cond_reglement_id = $rcp->cond_reglement_id || $rcp->thirdparty->cond_reglement_supplier_id;
+ $objecttmp->mode_reglement_id = $rcp->mode_reglement_id || $rcp->thirdparty->mode_reglement_supplier_id;
- $object->fk_project = $rcp->fk_project;
- $object->ref_supplier = $rcp->ref_supplier;
+ $objecttmp->fk_account = !empty($rcp->thirdparty->fk_account) ? $rcp->thirdparty->fk_account : 0;
+ $objecttmp->remise_percent = !empty($rcp->thirdparty->remise_percent) ? $rcp->thirdparty->remise_percent : 0;
+ $objecttmp->remise_absolue = !empty($rcp->thirdparty->remise_absolue) ? $rcp->thirdparty->remise_absolue : 0;
- $datefacture = dol_mktime(12, 0, 0, GETPOST('remonth'), GETPOST('reday'), GETPOST('reyear'));
- if (empty($datefacture)) {
- $datefacture = dol_mktime(date("h"), date("M"), 0, date("m"), date("d"), date("Y"));
+ $objecttmp->fk_project = $rcp->fk_project;
+ //$objecttmp->multicurrency_code = $rcp->multicurrency_code;
+ if (empty($createbills_onebythird)) {
+ $objecttmp->ref_supplier = $rcp->ref;
+ } else {
+ // Set a unique value for the invoice for the n reception
+ $objecttmp->ref_supplier = $langs->trans("Reception").' '.dol_print_date(dol_now(), 'dayhourlog').'-'.$rcp->socid;
}
- $object->date = $datefacture;
- $object->origin = 'reception';
- $object->origin_id = $id_reception;
+ $datefacture = dol_mktime(12, 0, 0, GETPOST('remonth', 'int'), GETPOST('reday', 'int'), GETPOST('reyear', 'int'));
+ if (empty($datefacture)) {
+ $datefacture = dol_now();
+ }
+ $objecttmp->date = $datefacture;
+ $objecttmp->origin = 'reception';
+ $objecttmp->origin_id = $id_reception;
+
+ $objecttmp->array_options = $rcp->array_options; // Copy extrafields
+
+ // Set $objecttmp->linked_objects with all links order_supplier existing on reception, so same links will be added to the generated supplier invoice
$rcp->fetchObjectLinked();
- if (count($rcp->linkedObjectsIds['reception']) > 0) {
- foreach ($rcp->linkedObjectsIds['reception'] as $key => $value) {
- $object->linked_objects['reception'] = $value;
+ if (count($rcp->linkedObjectsIds['order_supplier']) > 0) {
+ foreach ($rcp->linkedObjectsIds['order_supplier'] as $key => $value) {
+ $objecttmp->linked_objects['order_supplier'] = $value;
}
}
- $res = $object->create($user);
- //var_dump($object->error);exit;
+ $res = $objecttmp->create($user); // This should create the supplier invoice + links into $objecttmp->linked_objects + add a link to ->origin_id
+
+ //var_dump($objecttmp->error);exit;
if ($res > 0) {
$nb_bills_created++;
- $object->id = $res;
+ $lastref = $objecttmp->ref;
+ $lastid = $objecttmp->id;
+
+ $TFactThird[$rcp->socid] = $objecttmp;
} else {
- $errors[] = $rcp->ref.' : '.$langs->trans($object->error);
+ $langs->load("errors");
+ $errors[] = $rcp->ref.' : '.$langs->trans($objecttmp->error);
$error++;
}
}
- if ($object->id > 0) {
- if (!empty($createbills_onebythird) && !empty($TFactThird[$rcp->socid])) { //cause function create already add object linked for facturefournisseur
- $res = $object->add_object_linked($object->origin, $id_reception);
+ if ($objecttmp->id > 0) {
+ $res = $objecttmp->add_object_linked($objecttmp->origin, $id_reception);
- if ($res == 0) {
- $errors[] = $object->error;
- $error++;
- }
+ if ($res == 0) {
+ $errors[] = $objecttmp->error;
+ $error++;
}
if (!$error) {
@@ -266,10 +281,15 @@ if (empty($reshook)) {
for ($i = 0; $i < $num; $i++) {
$desc = ($lines[$i]->desc ? $lines[$i]->desc : $lines[$i]->libelle);
+ // If we build one invoice for several reception, we must put the ref of reception on the invoice line
+ if (!empty($createbills_onebythird)) {
+ $desc = dol_concatdesc($desc, $langs->trans("Reception").' '.$rcp->ref.' - '.dol_print_date($rcp->date, 'day'));
+ }
+
if ($lines[$i]->subprice < 0) {
// Negative line, we create a discount line
$discount = new DiscountAbsolute($db);
- $discount->fk_soc = $object->socid;
+ $discount->fk_soc = $objecttmp->socid;
$discount->amount_ht = abs($lines[$i]->total_ht);
$discount->amount_tva = abs($lines[$i]->total_tva);
$discount->amount_ttc = abs($lines[$i]->total_ttc);
@@ -278,7 +298,7 @@ if (empty($reshook)) {
$discount->description = $desc;
$discountid = $discount->create($user);
if ($discountid > 0) {
- $result = $object->insert_discount($discountid);
+ $result = $objecttmp->insert_discount($discountid);
//$result=$discount->link_to_invoice($lineid,$id);
} else {
setEventMessages($discount->error, $discount->errors, 'errors');
@@ -314,7 +334,16 @@ if (empty($reshook)) {
if (($lines[$i]->product_type != 9 && empty($lines[$i]->fk_parent_line)) || $lines[$i]->product_type == 9) {
$fk_parent_line = 0;
}
- $result = $object->addline(
+
+ // Extrafields
+ if (method_exists($lines[$i], 'fetch_optionals')) {
+ $lines[$i]->fetch_optionals();
+ $array_options = $lines[$i]->array_options;
+ }
+
+ $objecttmp->context['createfromclone'];
+
+ $result = $objecttmp->addline(
$desc,
$lines[$i]->subprice,
$lines[$i]->tva_tx,
@@ -359,9 +388,9 @@ if (empty($reshook)) {
//$rcp->classifyBilled($user); // Disabled. This behavior must be set or not using the workflow module.
if (!empty($createbills_onebythird) && empty($TFactThird[$rcp->socid])) {
- $TFactThird[$rcp->socid] = $object;
+ $TFactThird[$rcp->socid] = $objecttmp;
} else {
- $TFact[$object->id] = $object;
+ $TFact[$objecttmp->id] = $objecttmp;
}
}
@@ -371,21 +400,27 @@ if (empty($reshook)) {
if (!$error && $validate_invoices) {
$massaction = $action = 'builddoc';
- foreach ($TAllFact as &$object) {
- $result = $object->validate($user);
+ foreach ($TAllFact as &$objecttmp) {
+ $result = $objecttmp->validate($user);
if ($result <= 0) {
$error++;
- setEventMessages($object->error, $object->errors, 'errors');
+ setEventMessages($objecttmp->error, $objecttmp->errors, 'errors');
break;
}
- $id = $object->id; // For builddoc action
+ $id = $objecttmp->id; // For builddoc action
+ $object =$objecttmp;
// Fac builddoc
$donotredirect = 1;
$upload_dir = $conf->fournisseur->facture->dir_output;
$permissiontoadd = ($user->rights->fournisseur->facture->creer || $user->rights->supplier_invoice->creer);
+
+ // Call action to build doc
+ $savobject = $object;
+ $object = $objecttmp;
include DOL_DOCUMENT_ROOT.'/core/actions_builddoc.inc.php';
+ $object = $savobject;
}
$massaction = $action = 'confirm_createbills';
@@ -393,9 +428,17 @@ if (empty($reshook)) {
if (!$error) {
$db->commit();
- setEventMessage($langs->trans('BillCreated', $nb_bills_created));
+
+ if ($nb_bills_created == 1) {
+ $texttoshow = $langs->trans('BillXCreated', '{s1}');
+ $texttoshow = str_replace('{s1}', ''.$lastref.' ', $texttoshow);
+ setEventMessages($texttoshow, null, 'mesgs');
+ } else {
+ setEventMessages($langs->trans('BillCreated', $nb_bills_created), null, 'mesgs');
+ }
} else {
$db->rollback();
+
$action = 'create';
$_GET["origin"] = $_POST["origin"];
$_GET["originid"] = $_POST["originid"];
@@ -597,7 +640,7 @@ $arrayofmassactions = array(
);
if ($user->rights->fournisseur->facture->creer || $user->rights->supplier_invoice->creer) {
- $arrayofmassactions['createbills'] = $langs->trans("CreateInvoiceForThisSupplier");
+ $arrayofmassactions['createbills'] = $langs->trans("CreateInvoiceForThisReceptions");
}
if ($massaction == 'createbills') {
$arrayofmassactions = array();
@@ -656,7 +699,7 @@ if ($massaction == 'createbills') {
print '';
- print '
';
print '
Date: Wed, 25 Aug 2021 17:25:15 +0200
Subject: [PATCH 036/117] Add hook to reception/list.php to allow add joins
---
htdocs/reception/list.php | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/htdocs/reception/list.php b/htdocs/reception/list.php
index dd9f365c39a..9f06ce953e6 100644
--- a/htdocs/reception/list.php
+++ b/htdocs/reception/list.php
@@ -448,6 +448,12 @@ $sql .= " LEFT JOIN ".MAIN_DB_PREFIX."delivery as l ON l.rowid = ee.fk_target";
if (!$user->rights->societe->client->voir && !$socid) { // Internal user with no permission to see all
$sql .= ", ".MAIN_DB_PREFIX."societe_commerciaux as sc";
}
+
+// Add joins from hooks
+$parameters = array();
+$reshook = $hookmanager->executeHooks('printFieldListFrom', $parameters); // Note that $action and $object may have been modified by hook
+$sql .= $hookmanager->resPrint;
+
$sql .= " WHERE e.entity IN (".getEntity('reception').")";
if (!$user->rights->societe->client->voir && !$socid) { // Internal user with no permission to see all
$sql .= " AND e.fk_soc = sc.fk_soc";
From 054b466e0a5484d9851cc13d1b36f8a01fd38b5d Mon Sep 17 00:00:00 2001
From: henrynopo
Date: Thu, 26 Aug 2021 09:40:44 +0800
Subject: [PATCH 037/117] Update card.php
---
htdocs/fourn/facture/card.php | 21 ++++++++++++++++++++-
1 file changed, 20 insertions(+), 1 deletion(-)
diff --git a/htdocs/fourn/facture/card.php b/htdocs/fourn/facture/card.php
index b39041542eb..660401e9131 100644
--- a/htdocs/fourn/facture/card.php
+++ b/htdocs/fourn/facture/card.php
@@ -3242,7 +3242,11 @@ if ($action == 'create') {
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
print '';
print '';
- print $langs->trans('MulticurrencyRemainderToPay');
+ if ($resteapayeraffiche <= 0) {
+ print $langs->trans('RemainderToPayBackMulticurrency');
+ } else {
+ print $langs->trans('ExcessPaidMulticurrency');
+ }
print ' ';
print ' ';
print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
@@ -3272,6 +3276,21 @@ if ($action == 'create') {
print '';
print '';
print ''.price($sign * $resteapayeraffiche).' ';
+
+ // Remainder to pay back Multicurrency
+ if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
+ print '';
+ print '';
+ if ($resteapayeraffiche <= 0) {
+ print $langs->trans('RemainderToPayBackMulticurrency');
+ } else {
+ print $langs->trans('ExcessPaidMulticurrency');
+ }
+ print ' ';
+ print ' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
+ }
+
print '
Date: Thu, 26 Aug 2021 09:43:02 +0800
Subject: [PATCH 038/117] Update bills.lang
---
htdocs/langs/en_US/bills.lang | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)
diff --git a/htdocs/langs/en_US/bills.lang b/htdocs/langs/en_US/bills.lang
index 0c660de8e22..2d823245623 100644
--- a/htdocs/langs/en_US/bills.lang
+++ b/htdocs/langs/en_US/bills.lang
@@ -234,12 +234,17 @@ AlreadyPaidBack=Already paid back
AlreadyPaidNoCreditNotesNoDeposits=Already paid (without credit notes and down payments)
Abandoned=Abandoned
RemainderToPay=Remaining unpaid
+RemainderToPayMulticurrency=Remaining unpaid, original currency
RemainderToTake=Remaining amount to take
+RemainderToTakeMulticurrency=Remaining amount to take, original currency
RemainderToPayBack=Remaining amount to refund
+RemainderToPayBackMulticurrency=Remaining amount to refund, original currency
Rest=Pending
AmountExpected=Amount claimed
ExcessReceived=Excess received
+ExcessReceivedMulticurrency=Excess received, original currency
ExcessPaid=Excess paid
+ExcessPaidMulticurrency=Excess paid, original currency
EscompteOffered=Discount offered (payment before term)
EscompteOfferedShort=Discount
SendBillRef=Submission of invoice %s
@@ -590,4 +595,4 @@ FacParentLine=Invoice Line Parent
SituationTotalRayToRest=Remainder to pay without taxe
PDFSituationTitle=Situation n° %d
SituationTotalProgress=Total progress %d %%
-SearchUnpaidInvoicesWithDueDate=Search unpaid invoices with a due date = %s
\ No newline at end of file
+SearchUnpaidInvoicesWithDueDate=Search unpaid invoices with a due date = %s
From f6daad448005a34b782b9232f74a8b77c2aff359 Mon Sep 17 00:00:00 2001
From: henrynopo
Date: Thu, 26 Aug 2021 10:25:32 +0800
Subject: [PATCH 039/117] Update card.php
---
htdocs/compta/facture/card.php | 33 +++++++++++++++++++++++++++------
1 file changed, 27 insertions(+), 6 deletions(-)
diff --git a/htdocs/compta/facture/card.php b/htdocs/compta/facture/card.php
index 31de2bbd4ff..0d74b1a6632 100644
--- a/htdocs/compta/facture/card.php
+++ b/htdocs/compta/facture/card.php
@@ -5064,24 +5064,30 @@ if ($action == 'create') {
// Remainder to pay
print '';
print '';
- print $langs->trans('RemainderToPay');
- if ($resteapayeraffiche < 0) {
- print ' ('.$langs->trans('ExcessReceived').')';
+ if ($resteapayeraffiche >= 0) {
+ print $langs->trans('RemainderToPay');
+ } else {
+ print $langs->trans('ExcessReceived');
}
print ' ';
print ' ';
print ''.price($resteapayeraffiche).' ';
- print ' ';
print '';
- print $langs->trans('MulticurrencyRemainderToPay');
+ if ($resteapayeraffiche >= 0) {
+ print $langs->trans('RemainderToPayMulticurrency');
+ } else {
+ print $langs->trans('ExcessReceivedMulticurrency');
+ }
print ' ';
print ' ';
print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
}
+
+ print ' '.price($sign * $resteapayeraffiche).' ';
+
+ // Remainder to pay back Multicurrency
+ if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
+ print '';
+ print '';
+ if ($resteapayeraffiche <= 0) {
+ print $langs->trans('RemainderToPayBackMulticurrency');
+ } else {
+ print $langs->trans('ExcessPaidMulticurrency');
+ }
+ print ' ';
+ print ' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
+ }
+
print '
Date: Thu, 26 Aug 2021 02:29:45 +0000
Subject: [PATCH 040/117] Fixing style errors.
---
htdocs/compta/facture/card.php | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/htdocs/compta/facture/card.php b/htdocs/compta/facture/card.php
index 0d74b1a6632..0386b30dcc5 100644
--- a/htdocs/compta/facture/card.php
+++ b/htdocs/compta/facture/card.php
@@ -5072,7 +5072,7 @@ if ($action == 'create') {
print '';
print '';
print ''.price($resteapayeraffiche).' ';
-
+
// Remainder to pay Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
print '';
@@ -5086,7 +5086,7 @@ if ($action == 'create') {
print ' ';
print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
}
-
+
print ' '.price($sign * $resteapayeraffiche).' ';
-
+
// Remainder to pay back Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
print '';
@@ -5142,7 +5142,7 @@ if ($action == 'create') {
print ' ';
print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
}
-
+
print '
Date: Thu, 26 Aug 2021 12:31:20 +0800
Subject: [PATCH 041/117] Update card.php
---
htdocs/expedition/card.php | 20 ++++++++++++++++++++
1 file changed, 20 insertions(+)
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index 582b23aec45..c4ec3504383 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -717,6 +717,16 @@ if (empty($reshook)) {
unset($_POST[$qty]);
}
}
+ } else { // both product batch and stock are not activated.
+ $qty = "qtyl".$line_id;
+ $line->id = $line_id;
+ $line->qty = GETPOST($qty, 'int');
+ $line->entrepot_id = 0;
+ if ($line->update($user) < 0) {
+ setEventMessages($line->error, $line->errors, 'errors');
+ $error++;
+ }
+ unset($_POST[$qty]);
}
} else {
// Product no predefined
@@ -2252,6 +2262,16 @@ if ($action == 'create') {
print ' ';
+ // Qty to ship or shipped
+ print ' ';
}
print '';
From 7dc7b746cb1fa809c6b46b40186dacc6b6486aa8 Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Thu, 26 Aug 2021 10:32:29 +0200
Subject: [PATCH 042/117] FIx error 500 on restler api PHP 8.0
---
htdocs/ticket/class/api_tickets.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/ticket/class/api_tickets.class.php b/htdocs/ticket/class/api_tickets.class.php
index e104d425bf4..f3a9c738aac 100644
--- a/htdocs/ticket/class/api_tickets.class.php
+++ b/htdocs/ticket/class/api_tickets.class.php
@@ -17,7 +17,7 @@
use Luracast\Restler\RestException;
-require 'ticket.class.php';
+require_once DOL_DOCUMENT_ROOT.'/ticket/class/ticket.class.php';
require_once DOL_DOCUMENT_ROOT.'/core/lib/ticket.lib.php';
From ac2fc9c57feeed24368491d2f4bf116c53ccf630 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Thu, 26 Aug 2021 11:53:57 +0200
Subject: [PATCH 043/117] Fix import gender man/woman, not 0/1 + import of
thirdparty for members
---
htdocs/core/modules/modAdherent.class.php | 12 +++++++++++-
htdocs/core/modules/modCategorie.class.php | 4 ++--
htdocs/core/modules/modUser.class.php | 2 +-
htdocs/langs/en_US/bills.lang | 2 +-
htdocs/langs/en_US/exports.lang | 4 ++--
5 files changed, 17 insertions(+), 7 deletions(-)
diff --git a/htdocs/core/modules/modAdherent.class.php b/htdocs/core/modules/modAdherent.class.php
index 16ecbee8526..d620c6244b7 100644
--- a/htdocs/core/modules/modAdherent.class.php
+++ b/htdocs/core/modules/modAdherent.class.php
@@ -344,6 +344,9 @@ class modAdherent extends DolibarrModules
'a.email'=>"Email", 'a.birth'=>"Birthday", 'a.statut'=>"Status*", 'a.photo'=>"Photo", 'a.note_public'=>"NotePublic", 'a.note_private'=>"NotePrivate",
'a.datec'=>'DateCreation', 'a.datefin'=>'DateEndSubscription'
);
+ if (!empty($conf->societe->enabled)) {
+ $this->import_fields_array[$r]['a.fk_soc'] = "ThirdParty";
+ }
// Add extra fields
$sql = "SELECT name, label, fieldrequired FROM ".MAIN_DB_PREFIX."extrafields WHERE elementtype = 'adherent' AND entity IN (0,".$conf->entity.")";
$resql = $this->db->query($sql);
@@ -355,16 +358,23 @@ class modAdherent extends DolibarrModules
}
}
// End add extra fields
+ $this->import_convertvalue_array[$r] = array();
+ if (!empty($conf->societe->enabled)) {
+ $this->import_convertvalue_array[$r]['a.fk_soc'] = array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty');
+ }
$this->import_fieldshidden_array[$r] = array('extra.fk_object'=>'lastrowid-'.MAIN_DB_PREFIX.'adherent'); // aliastable.field => ('user->id' or 'lastrowid-'.tableparent)
$this->import_regex_array[$r] = array(
'a.civility'=>'code@'.MAIN_DB_PREFIX.'c_civility', 'a.fk_adherent_type'=>'rowid@'.MAIN_DB_PREFIX.'adherent_type', 'a.morphy'=>'(phy|mor)',
'a.statut'=>'^[0|1]', 'a.datec'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$', 'a.datefin'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$');
$this->import_examplevalues_array[$r] = array(
- 'a.civility'=>"MR", 'a.lastname'=>'Smith', 'a.firstname'=>'John', 'a.login'=>'jsmith', 'a.pass'=>'passofjsmith', 'a.fk_adherent_type'=>'1',
+ 'a.civility'=>"MR", 'a.lastname'=>'Smith', 'a.firstname'=>'John', 'a.gender'=>'man or woman', 'a.login'=>'jsmith', 'a.pass'=>'passofjsmith', 'a.fk_adherent_type'=>'1',
'a.morphy'=>'"mor" or "phy"', 'a.societe'=>'JS company', 'a.address'=>'21 jump street', 'a.zip'=>'55000', 'a.town'=>'New York', 'a.country'=>'1',
'a.email'=>'jsmith@example.com', 'a.birth'=>'1972-10-10', 'a.statut'=>"0 or 1", 'a.note_public'=>"This is a public comment on member",
'a.note_private'=>"This is private comment on member", 'a.datec'=>dol_print_date($now, '%Y-%m__%d'), 'a.datefin'=>dol_print_date(dol_time_plus_duree($now, 1, 'y'), '%Y-%m-%d')
);
+ if (!empty($conf->societe->enabled)) {
+ $this->import_examplevalues_array[$r]['a.fk_soc'] = "rowid or name";
+ }
// Cronjobs
$arraydate = dol_getdate(dol_now());
diff --git a/htdocs/core/modules/modCategorie.class.php b/htdocs/core/modules/modCategorie.class.php
index 4f97eed58f0..776c5c76681 100644
--- a/htdocs/core/modules/modCategorie.class.php
+++ b/htdocs/core/modules/modCategorie.class.php
@@ -501,7 +501,7 @@ class modCategorie extends DolibarrModules
'cs.fk_categorie'=>array('rule'=>'fetchidfromref', 'classfile'=>'/categories/class/categorie.class.php', 'class'=>'Categorie', 'method'=>'fetch', 'element'=>'category'),
'cs.fk_soc'=>array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty')
);
- $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or ref");
+ $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or name");
}
// 2 Customers
@@ -522,7 +522,7 @@ class modCategorie extends DolibarrModules
'cs.fk_categorie'=>array('rule'=>'fetchidfromref', 'classfile'=>'/categories/class/categorie.class.php', 'class'=>'Categorie', 'method'=>'fetch', 'element'=>'category'),
'cs.fk_soc'=>array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty')
);
- $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or ref");
+ $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or name");
}
// 3 Members
diff --git a/htdocs/core/modules/modUser.class.php b/htdocs/core/modules/modUser.class.php
index 01303892435..e54ac7bd440 100644
--- a/htdocs/core/modules/modUser.class.php
+++ b/htdocs/core/modules/modUser.class.php
@@ -322,7 +322,7 @@ class modUser extends DolibarrModules
'u.birth'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$'
);
$this->import_examplevalues_array[$r] = array(
- 'u.lastname'=>"Doe", 'u.firstname'=>'John', 'u.login'=>'jdoe', 'u.employee'=>'0 or 1', 'u.job'=>'CTO', 'u.gender'=>'0 or 1',
+ 'u.lastname'=>"Doe", 'u.firstname'=>'John', 'u.login'=>'jdoe', 'u.employee'=>'0 or 1', 'u.job'=>'CTO', 'u.gender'=>'man or woman',
'u.pass_crypted'=>'Encrypted password',
'u.fk_soc'=>'0 (internal user) or company name (external user)', 'u.datec'=>dol_print_date(dol_now(), '%Y-%m-%d'), 'u.address'=>"61 jump street",
'u.zip'=>"123456", 'u.town'=>"Big town", 'u.fk_country'=>'US, FR, DE...', 'u.office_phone'=>"0101010101", 'u.office_fax'=>"0101010102",
diff --git a/htdocs/langs/en_US/bills.lang b/htdocs/langs/en_US/bills.lang
index a921aac9e48..c37b58fee8c 100644
--- a/htdocs/langs/en_US/bills.lang
+++ b/htdocs/langs/en_US/bills.lang
@@ -570,7 +570,7 @@ ToCreateARecurringInvoiceGene=To generate future invoices regularly and manually
ToCreateARecurringInvoiceGeneAuto=If you need to have such invoices generated automatically, ask your administrator to enable and setup module %s . Note that both methods (manual and automatic) can be used together with no risk of duplication.
DeleteRepeatableInvoice=Delete template invoice
ConfirmDeleteRepeatableInvoice=Are your sure you want to delete the template invoice?
-CreateOneBillByThird=Create one invoice per third party (otherwise, one invoice per order)
+CreateOneBillByThird=Create one invoice per third party (otherwise, one invoice per selected object)
BillCreated=%s invoice(s) generated
BillXCreated=Invoice %s generated
StatusOfGeneratedDocuments=Status of document generation
diff --git a/htdocs/langs/en_US/exports.lang b/htdocs/langs/en_US/exports.lang
index cb652229825..f2f2d2cf587 100644
--- a/htdocs/langs/en_US/exports.lang
+++ b/htdocs/langs/en_US/exports.lang
@@ -96,8 +96,8 @@ DataComeFromFileFieldNb=Value to insert comes from field number %s in sou
DataComeFromIdFoundFromRef=Value that comes from field number %s of source file will be used to find the id of the parent object to use (so the object %s that has the ref. from source file must exist in the database).
DataComeFromIdFoundFromCodeId=Code that comes from field number %s of source file will be used to find the id of the parent object to use (so the code from source file must exist in the dictionary %s ). Note that if you know the id, you can also use it in the source file instead of the code. Import should work in both cases.
DataIsInsertedInto=Data coming from source file will be inserted into the following field:
-DataIDSourceIsInsertedInto=The id of parent object was found using the data in the source file, will be inserted into the following field:
-DataCodeIDSourceIsInsertedInto=The id of parent line found from code, will be inserted into following field:
+DataIDSourceIsInsertedInto=The id of the parent object, that was found using the data in the source file, will be inserted into the following field:
+DataCodeIDSourceIsInsertedInto=The id of the parent line, that was found from code, will be inserted into the following field:
SourceRequired=Data value is mandatory
SourceExample=Example of possible data value
ExampleAnyRefFoundIntoElement=Any ref found for element %s
From 931f712c5fbe3bc2ef70d1ad5a1a7505939cbd9a Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Thu, 26 Aug 2021 11:53:57 +0200
Subject: [PATCH 044/117] Fix import gender man/woman, not 0/1 + import of
thirdparty for members
---
htdocs/core/modules/modAdherent.class.php | 12 +++++++++++-
htdocs/core/modules/modCategorie.class.php | 4 ++--
htdocs/core/modules/modUser.class.php | 2 +-
htdocs/langs/en_US/bills.lang | 2 +-
htdocs/langs/en_US/exports.lang | 4 ++--
5 files changed, 17 insertions(+), 7 deletions(-)
diff --git a/htdocs/core/modules/modAdherent.class.php b/htdocs/core/modules/modAdherent.class.php
index 16ecbee8526..d620c6244b7 100644
--- a/htdocs/core/modules/modAdherent.class.php
+++ b/htdocs/core/modules/modAdherent.class.php
@@ -344,6 +344,9 @@ class modAdherent extends DolibarrModules
'a.email'=>"Email", 'a.birth'=>"Birthday", 'a.statut'=>"Status*", 'a.photo'=>"Photo", 'a.note_public'=>"NotePublic", 'a.note_private'=>"NotePrivate",
'a.datec'=>'DateCreation', 'a.datefin'=>'DateEndSubscription'
);
+ if (!empty($conf->societe->enabled)) {
+ $this->import_fields_array[$r]['a.fk_soc'] = "ThirdParty";
+ }
// Add extra fields
$sql = "SELECT name, label, fieldrequired FROM ".MAIN_DB_PREFIX."extrafields WHERE elementtype = 'adherent' AND entity IN (0,".$conf->entity.")";
$resql = $this->db->query($sql);
@@ -355,16 +358,23 @@ class modAdherent extends DolibarrModules
}
}
// End add extra fields
+ $this->import_convertvalue_array[$r] = array();
+ if (!empty($conf->societe->enabled)) {
+ $this->import_convertvalue_array[$r]['a.fk_soc'] = array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty');
+ }
$this->import_fieldshidden_array[$r] = array('extra.fk_object'=>'lastrowid-'.MAIN_DB_PREFIX.'adherent'); // aliastable.field => ('user->id' or 'lastrowid-'.tableparent)
$this->import_regex_array[$r] = array(
'a.civility'=>'code@'.MAIN_DB_PREFIX.'c_civility', 'a.fk_adherent_type'=>'rowid@'.MAIN_DB_PREFIX.'adherent_type', 'a.morphy'=>'(phy|mor)',
'a.statut'=>'^[0|1]', 'a.datec'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$', 'a.datefin'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$');
$this->import_examplevalues_array[$r] = array(
- 'a.civility'=>"MR", 'a.lastname'=>'Smith', 'a.firstname'=>'John', 'a.login'=>'jsmith', 'a.pass'=>'passofjsmith', 'a.fk_adherent_type'=>'1',
+ 'a.civility'=>"MR", 'a.lastname'=>'Smith', 'a.firstname'=>'John', 'a.gender'=>'man or woman', 'a.login'=>'jsmith', 'a.pass'=>'passofjsmith', 'a.fk_adherent_type'=>'1',
'a.morphy'=>'"mor" or "phy"', 'a.societe'=>'JS company', 'a.address'=>'21 jump street', 'a.zip'=>'55000', 'a.town'=>'New York', 'a.country'=>'1',
'a.email'=>'jsmith@example.com', 'a.birth'=>'1972-10-10', 'a.statut'=>"0 or 1", 'a.note_public'=>"This is a public comment on member",
'a.note_private'=>"This is private comment on member", 'a.datec'=>dol_print_date($now, '%Y-%m__%d'), 'a.datefin'=>dol_print_date(dol_time_plus_duree($now, 1, 'y'), '%Y-%m-%d')
);
+ if (!empty($conf->societe->enabled)) {
+ $this->import_examplevalues_array[$r]['a.fk_soc'] = "rowid or name";
+ }
// Cronjobs
$arraydate = dol_getdate(dol_now());
diff --git a/htdocs/core/modules/modCategorie.class.php b/htdocs/core/modules/modCategorie.class.php
index 4f97eed58f0..776c5c76681 100644
--- a/htdocs/core/modules/modCategorie.class.php
+++ b/htdocs/core/modules/modCategorie.class.php
@@ -501,7 +501,7 @@ class modCategorie extends DolibarrModules
'cs.fk_categorie'=>array('rule'=>'fetchidfromref', 'classfile'=>'/categories/class/categorie.class.php', 'class'=>'Categorie', 'method'=>'fetch', 'element'=>'category'),
'cs.fk_soc'=>array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty')
);
- $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or ref");
+ $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or name");
}
// 2 Customers
@@ -522,7 +522,7 @@ class modCategorie extends DolibarrModules
'cs.fk_categorie'=>array('rule'=>'fetchidfromref', 'classfile'=>'/categories/class/categorie.class.php', 'class'=>'Categorie', 'method'=>'fetch', 'element'=>'category'),
'cs.fk_soc'=>array('rule'=>'fetchidfromref', 'classfile'=>'/societe/class/societe.class.php', 'class'=>'Societe', 'method'=>'fetch', 'element'=>'ThirdParty')
);
- $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or ref");
+ $this->import_examplevalues_array[$r] = array('cs.fk_categorie'=>"rowid or label", 'cs.fk_soc'=>"rowid or name");
}
// 3 Members
diff --git a/htdocs/core/modules/modUser.class.php b/htdocs/core/modules/modUser.class.php
index 01303892435..e54ac7bd440 100644
--- a/htdocs/core/modules/modUser.class.php
+++ b/htdocs/core/modules/modUser.class.php
@@ -322,7 +322,7 @@ class modUser extends DolibarrModules
'u.birth'=>'^[0-9][0-9][0-9][0-9]-[0-9][0-9]-[0-9][0-9]$'
);
$this->import_examplevalues_array[$r] = array(
- 'u.lastname'=>"Doe", 'u.firstname'=>'John', 'u.login'=>'jdoe', 'u.employee'=>'0 or 1', 'u.job'=>'CTO', 'u.gender'=>'0 or 1',
+ 'u.lastname'=>"Doe", 'u.firstname'=>'John', 'u.login'=>'jdoe', 'u.employee'=>'0 or 1', 'u.job'=>'CTO', 'u.gender'=>'man or woman',
'u.pass_crypted'=>'Encrypted password',
'u.fk_soc'=>'0 (internal user) or company name (external user)', 'u.datec'=>dol_print_date(dol_now(), '%Y-%m-%d'), 'u.address'=>"61 jump street",
'u.zip'=>"123456", 'u.town'=>"Big town", 'u.fk_country'=>'US, FR, DE...', 'u.office_phone'=>"0101010101", 'u.office_fax'=>"0101010102",
diff --git a/htdocs/langs/en_US/bills.lang b/htdocs/langs/en_US/bills.lang
index 0c660de8e22..a835ec8475d 100644
--- a/htdocs/langs/en_US/bills.lang
+++ b/htdocs/langs/en_US/bills.lang
@@ -570,7 +570,7 @@ ToCreateARecurringInvoiceGene=To generate future invoices regularly and manually
ToCreateARecurringInvoiceGeneAuto=If you need to have such invoices generated automatically, ask your administrator to enable and setup module %s . Note that both methods (manual and automatic) can be used together with no risk of duplication.
DeleteRepeatableInvoice=Delete template invoice
ConfirmDeleteRepeatableInvoice=Are your sure you want to delete the template invoice?
-CreateOneBillByThird=Create one invoice per third party (otherwise, one invoice per order)
+CreateOneBillByThird=Create one invoice per third party (otherwise, one invoice per selected object)
BillCreated=%s invoice(s) generated
BillXCreated=Invoice %s generated
StatusOfGeneratedDocuments=Status of document generation
diff --git a/htdocs/langs/en_US/exports.lang b/htdocs/langs/en_US/exports.lang
index cb652229825..f2f2d2cf587 100644
--- a/htdocs/langs/en_US/exports.lang
+++ b/htdocs/langs/en_US/exports.lang
@@ -96,8 +96,8 @@ DataComeFromFileFieldNb=Value to insert comes from field number %s in sou
DataComeFromIdFoundFromRef=Value that comes from field number %s of source file will be used to find the id of the parent object to use (so the object %s that has the ref. from source file must exist in the database).
DataComeFromIdFoundFromCodeId=Code that comes from field number %s of source file will be used to find the id of the parent object to use (so the code from source file must exist in the dictionary %s ). Note that if you know the id, you can also use it in the source file instead of the code. Import should work in both cases.
DataIsInsertedInto=Data coming from source file will be inserted into the following field:
-DataIDSourceIsInsertedInto=The id of parent object was found using the data in the source file, will be inserted into the following field:
-DataCodeIDSourceIsInsertedInto=The id of parent line found from code, will be inserted into following field:
+DataIDSourceIsInsertedInto=The id of the parent object, that was found using the data in the source file, will be inserted into the following field:
+DataCodeIDSourceIsInsertedInto=The id of the parent line, that was found from code, will be inserted into the following field:
SourceRequired=Data value is mandatory
SourceExample=Example of possible data value
ExampleAnyRefFoundIntoElement=Any ref found for element %s
From f482be84bff2102fca52ded5415f69f8331f33ef Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Thu, 26 Aug 2021 12:35:31 +0200
Subject: [PATCH 045/117] New : rest api GET orders shipements
---
htdocs/commande/class/api_orders.class.php | 48 ++++++++++++++++++++++
1 file changed, 48 insertions(+)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index 745fea5ab76..9d2dd3c8317 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -966,7 +966,55 @@ class Orders extends DolibarrApi
return $this->_cleanObjectDatas($this->commande);
}
+ /**
+ * Get the shipments of an order
+ *
+ *
+ * @param int $id Id of the order
+ *
+ * @url GET {id}/shipment
+ *
+ * @throws RestException 401
+ * @throws RestException 404
+ * @throws RestException 500
+ *
+ * @return array
+ */
+ public function getOrderShipements($id)
+ {
+ require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
+ if (!DolibarrApiAccess::$user->rights->expedition->lire) {
+ throw new RestException(401);
+ }
+ $sql = "SELECT t.rowid";
+ $sql .= " FROM ".MAIN_DB_PREFIX."expedition as t";
+ $sql .= " JOIN ".MAIN_DB_PREFIX."expeditiondet as tdet";
+ $sql .= " ON t.rowid = tdet.rowid";
+ $sql .= " WHERE tdet.fk_origin_line = ".$id;
+ $sql .= $this->db->order("t.rowid", "ASC");
+ dol_syslog("API Rest request");
+ $result = $this->db->query($sql);
+
+ if ($result) {
+ $num = $this->db->num_rows($result);
+ if ($num <= 0) {
+ throw new RestException(404, 'Shipments not found ');
+ }
+ $i = 0;
+ while ($i < $num) {
+ $obj = $this->db->fetch_object($result);
+ $shipment_static = new Expedition($this->db);
+ if ($shipment_static->fetch($obj->rowid)) {
+ $obj_ret[] = $this->_cleanObjectDatas($shipment_static);
+ }
+ $i++;
+ }
+ } else {
+ throw new RestException(500, 'Error when retrieve shipment list : '.$this->db->lasterror());
+ }
+ return $obj_ret;
+ }
// phpcs:disable PEAR.NamingConventions.ValidFunctionName.PublicUnderscore
/**
From ac55a052b2198e0b31d6d7306d90b9ccb500afe6 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Thu, 26 Aug 2021 12:41:37 +0200
Subject: [PATCH 046/117] Fix warning abuot external users shown only if
appropriate
---
htdocs/user/perms.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/user/perms.php b/htdocs/user/perms.php
index 692b3dc08af..391682b2d6d 100644
--- a/htdocs/user/perms.php
+++ b/htdocs/user/perms.php
@@ -258,8 +258,8 @@ print '
';
if ($user->admin) {
print info_admin($langs->trans("WarningOnlyPermissionOfActivatedModules"));
}
-// Show warning about external users
-if (empty($user->socid)) {
+// If edited user is an extern user, we show warning for external users
+if (! empty($object->socid)) {
print info_admin(showModulesExludedForExternal($modules))."\n";
}
From ac803f7247291a3c2c27d96e75fead86e61efa47 Mon Sep 17 00:00:00 2001
From: mbinformatique68
Date: Thu, 26 Aug 2021 14:36:12 +0200
Subject: [PATCH 047/117] NEW Added address field into contacts list
---
htdocs/contact/list.php | 26 +++++++++++++++++++++++++-
1 file changed, 25 insertions(+), 1 deletion(-)
diff --git a/htdocs/contact/list.php b/htdocs/contact/list.php
index a63a1bf7e49..dac21970a84 100644
--- a/htdocs/contact/list.php
+++ b/htdocs/contact/list.php
@@ -89,6 +89,7 @@ $search_categ_thirdparty = GETPOST("search_categ_thirdparty", 'int');
$search_categ_supplier = GETPOST("search_categ_supplier", 'int');
$search_status = GETPOST("search_status", 'int');
$search_type = GETPOST('search_type', 'alpha');
+$search_address = GETPOST('search_address', 'alpha');
$search_zip = GETPOST('search_zip', 'alpha');
$search_town = GETPOST('search_town', 'alpha');
$search_import_key = GETPOST("search_import_key", "alpha");
@@ -260,6 +261,7 @@ if (empty($reshook)) {
$search_firstname = "";
$search_societe = "";
$search_town = "";
+ $search_address = "";
$search_zip = "";
$search_country = "";
$search_poste = "";
@@ -353,7 +355,7 @@ if ($resql) {
}
$sql = "SELECT s.rowid as socid, s.nom as name,";
-$sql .= " p.rowid, p.lastname as lastname, p.statut, p.firstname, p.zip, p.town, p.poste, p.email, p.no_email,";
+$sql .= " p.rowid, p.lastname as lastname, p.statut, p.firstname, p.address, p.zip, p.town, p.poste, p.email, p.no_email,";
$sql .= " p.socialnetworks, p.photo,";
$sql .= " p.phone as phone_pro, p.phone_mobile, p.phone_perso, p.fax, p.fk_pays, p.priv, p.datec as date_creation, p.tms as date_update,";
$sql .= " st.libelle as stcomm, st.picto as stcomm_picto, p.fk_stcommcontact as stcomm_id, p.fk_prospectcontactlevel,";
@@ -485,6 +487,9 @@ if (!empty($conf->socialnetworks->enabled)) {
if (strlen($search_email)) {
$sql .= natural_search('p.email', $search_email);
}
+if (strlen($search_address)) {
+ $sql .= natural_search("p.address", $search_address);
+}
if (strlen($search_zip)) {
$sql .= natural_search("p.zip", $search_zip);
}
@@ -594,6 +599,9 @@ if ($search_firstname != '') {
if ($search_societe != '') {
$param .= '&search_societe='.urlencode($search_societe);
}
+if ($search_address != '') {
+ $param .= '&search_address='.urlencode($search_address);
+}
if ($search_zip != '') {
$param .= '&search_zip='.urlencode($search_zip);
}
@@ -775,6 +783,11 @@ if (!empty($arrayfields['p.poste']['checked'])) {
print '';
+ print ' ';
+}
if (!empty($arrayfields['p.zip']['checked'])) {
print '';
print ' '.$obj->address.' ';
+ if (!$i) {
+ $totalarray['nbfield']++;
+ }
+ }
// Zip
if (!empty($arrayfields['p.zip']['checked'])) {
print ''.$obj->zip.' ';
From ac7f0f8a4e4de247af3d1257cdf87e13ca4ce978 Mon Sep 17 00:00:00 2001
From: Christian Foellmann
Date: Thu, 26 Aug 2021 15:04:59 +0200
Subject: [PATCH 048/117] add hook 'functionGetEntity' to manipulate entities
for queries on the fly
---
htdocs/core/class/hookmanager.class.php | 1 +
htdocs/core/lib/functions.lib.php | 24 +++++++++++++++++++++---
2 files changed, 22 insertions(+), 3 deletions(-)
diff --git a/htdocs/core/class/hookmanager.class.php b/htdocs/core/class/hookmanager.class.php
index 345de3f5be5..458104b8790 100644
--- a/htdocs/core/class/hookmanager.class.php
+++ b/htdocs/core/class/hookmanager.class.php
@@ -188,6 +188,7 @@ class HookManager
'formConfirm',
'getAccessForbiddenMessage',
'getDirList',
+ 'functionGetEntity',
'getFormMail',
'getFormatedCustomerRef',
'getFormatedSupplierRef',
diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php
index ee353269e29..93485c5f12a 100644
--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -104,7 +104,7 @@ function getDoliDBInstance($type, $host, $user, $pass, $name, $port)
*/
function getEntity($element, $shared = 1, $currentobject = null)
{
- global $conf, $mc;
+ global $conf, $mc, $hookmanager, $object;
// fix different element names (France to English)
switch ($element) {
@@ -117,7 +117,7 @@ function getEntity($element, $shared = 1, $currentobject = null)
}
if (is_object($mc)) {
- return $mc->getEntity($element, $shared, $currentobject);
+ $out = $mc->getEntity($element, $shared, $currentobject);
} else {
$out = '';
$addzero = array('user', 'usergroup', 'c_email_templates', 'email_template', 'default_values');
@@ -125,8 +125,26 @@ function getEntity($element, $shared = 1, $currentobject = null)
$out .= '0,';
}
$out .= ((int) $conf->entity);
- return $out;
}
+
+ // Manipulate entities to query on the fly
+ $parameters = array(
+ 'object' => $object,
+ 'currentobject' => $currentobject,
+ 'element' => $element,
+ 'shared' => $shared,
+ );
+ $reshook = $hookmanager->executeHooks('functionGetEntity', $parameters, $out, $element); // Note that $action and $object may have been modified by some hooks
+
+ if (is_numeric($reshook)) {
+ if ($reshook == 0 && !empty($hookmanager->resprints)) {
+ $out .= ','.$hookmanager->resprints; // add
+ } elseif ($reshook == 1) {
+ $out = $hookmanager->resprints; // replace
+ }
+ }
+
+ return $out;
}
/**
From c70813d718f37b74c8d29694880ced0e5681434f Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Thu, 26 Aug 2021 17:03:00 +0200
Subject: [PATCH 049/117] New : rest api POST orders shipment
---
htdocs/commande/class/api_orders.class.php | 42 ++++++++++++++++++++++
1 file changed, 42 insertions(+)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index 9d2dd3c8317..ed0cc3859d5 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -966,6 +966,7 @@ class Orders extends DolibarrApi
return $this->_cleanObjectDatas($this->commande);
}
+
/**
* Get the shipments of an order
*
@@ -1016,6 +1017,47 @@ class Orders extends DolibarrApi
return $obj_ret;
}
+ /**
+ * Create the shipments of an order
+ *
+ *
+ * @param int $id Id of the order
+ * @param int $warehouse_id Id of a warehouse
+ *
+ * @url POST {id}/shipment/{warehouse_id}
+ *
+ * @throws RestException 401
+ * @throws RestException 404
+ * @throws RestException 500
+ *
+ * @return int
+ */
+ public function createOrderShipement($id, $warehouse_id)
+ {
+ require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
+ if (!DolibarrApiAccess::$user->rights->expedition->creer) {
+ throw new RestException(401);
+ }
+ $result = $this->commande->fetch($id);
+ if (!$result) {
+ throw new RestException(404, 'Order not found');
+ }
+ $shipment = new Expedition($this->db);
+ $shipment->socid = $this->commande->socid;
+ $result = $shipment->create(DolibarrApiAccess::$user);
+ if ($result <= 0) {
+ throw new RestException(500, 'Error on creating expedition :'.$this->db->lasterror());
+ }
+ foreach ($this->commande->lines as $line) {
+ $result = $shipment->create_line($warehouse_id, $line->id, $line->qty);
+ if ($result <= 0) {
+ throw new RestException(500, 'Error on creating expedition lines:'.$this->db->lasterror());
+ }
+ $i++;
+ }
+ return $shipment->id;
+ }
+
// phpcs:disable PEAR.NamingConventions.ValidFunctionName.PublicUnderscore
/**
* Clean sensible object datas
From a6ed743af303d00aa24b8d9bdba8805cb9666a4a Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Thu, 26 Aug 2021 21:35:31 +0200
Subject: [PATCH 050/117] Fix duplicated code and missing declaration
---
htdocs/contrat/class/contrat.class.php | 25 +++++++++++++++++++++++--
1 file changed, 23 insertions(+), 2 deletions(-)
diff --git a/htdocs/contrat/class/contrat.class.php b/htdocs/contrat/class/contrat.class.php
index 29d84c86c57..f364e82dd68 100644
--- a/htdocs/contrat/class/contrat.class.php
+++ b/htdocs/contrat/class/contrat.class.php
@@ -181,6 +181,13 @@ class Contrat extends CommonObject
*/
public $lines = array();
+ public $nbofservices;
+ public $nbofserviceswait;
+ public $nbofservicesopened;
+ public $nbofservicesexpired;
+ //public $lower_planned_end_date;
+ //public $higher_planner_end_date;
+
/**
* Maps ContratLigne IDs to $this->lines indexes
* @var int[]
@@ -429,7 +436,8 @@ class Contrat extends CommonObject
foreach ($this->lines as $contratline) {
// Close lines not already closed
if ($contratline->statut != ContratLigne::STATUS_CLOSED) {
- $contratline->date_cloture = $now;
+ $contratline->date_end_real = $now;
+ $contratline->date_cloture = $now; // For backward compatibility
$contratline->fk_user_cloture = $user->id;
$contratline->statut = ContratLigne::STATUS_CLOSED;
$result = $contratline->close_line($user, $now, $comment, $notrigger);
@@ -753,6 +761,7 @@ class Contrat extends CommonObject
// phpcs:enable
global $langs, $conf, $extrafields;
+ $this->nbofservices = 0;
$this->nbofserviceswait = 0;
$this->nbofservicesopened = 0;
$this->nbofservicesexpired = 0;
@@ -2642,10 +2651,23 @@ class ContratLigne extends CommonObjectLine
public $date_end; // date end planned
public $date_end_real; // date end real
// For backward compatibility
+ /**
+ * @deprecated Use date_start
+ */
public $date_ouverture_prevue; // date start planned
+ /**
+ * @deprecated Use date_start_real
+ */
public $date_ouverture; // date start real
+ /**
+ * @deprecated Use date_end
+ */
public $date_fin_validite; // date end planned
+ /**
+ * @deprecated Use date_end_real
+ */
public $date_cloture; // date end real
+
public $tva_tx;
public $localtax1_tx;
public $localtax2_tx;
@@ -3062,7 +3084,6 @@ class ContratLigne extends CommonObjectLine
$this->oldcopy = new ContratLigne($this->db);
$this->oldcopy->fetch($this->id);
- $this->oldcopy->fetch_optionals();
// Update request
$sql = "UPDATE ".MAIN_DB_PREFIX."contratdet SET";
From c6c87cd8131962e93c5ffd24304c98c6b865103d Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Thu, 26 Aug 2021 21:35:31 +0200
Subject: [PATCH 051/117] Fix duplicated code and missing declaration
---
htdocs/contrat/class/contrat.class.php | 25 +++++++++++++++++++++++--
1 file changed, 23 insertions(+), 2 deletions(-)
diff --git a/htdocs/contrat/class/contrat.class.php b/htdocs/contrat/class/contrat.class.php
index 29d84c86c57..f364e82dd68 100644
--- a/htdocs/contrat/class/contrat.class.php
+++ b/htdocs/contrat/class/contrat.class.php
@@ -181,6 +181,13 @@ class Contrat extends CommonObject
*/
public $lines = array();
+ public $nbofservices;
+ public $nbofserviceswait;
+ public $nbofservicesopened;
+ public $nbofservicesexpired;
+ //public $lower_planned_end_date;
+ //public $higher_planner_end_date;
+
/**
* Maps ContratLigne IDs to $this->lines indexes
* @var int[]
@@ -429,7 +436,8 @@ class Contrat extends CommonObject
foreach ($this->lines as $contratline) {
// Close lines not already closed
if ($contratline->statut != ContratLigne::STATUS_CLOSED) {
- $contratline->date_cloture = $now;
+ $contratline->date_end_real = $now;
+ $contratline->date_cloture = $now; // For backward compatibility
$contratline->fk_user_cloture = $user->id;
$contratline->statut = ContratLigne::STATUS_CLOSED;
$result = $contratline->close_line($user, $now, $comment, $notrigger);
@@ -753,6 +761,7 @@ class Contrat extends CommonObject
// phpcs:enable
global $langs, $conf, $extrafields;
+ $this->nbofservices = 0;
$this->nbofserviceswait = 0;
$this->nbofservicesopened = 0;
$this->nbofservicesexpired = 0;
@@ -2642,10 +2651,23 @@ class ContratLigne extends CommonObjectLine
public $date_end; // date end planned
public $date_end_real; // date end real
// For backward compatibility
+ /**
+ * @deprecated Use date_start
+ */
public $date_ouverture_prevue; // date start planned
+ /**
+ * @deprecated Use date_start_real
+ */
public $date_ouverture; // date start real
+ /**
+ * @deprecated Use date_end
+ */
public $date_fin_validite; // date end planned
+ /**
+ * @deprecated Use date_end_real
+ */
public $date_cloture; // date end real
+
public $tva_tx;
public $localtax1_tx;
public $localtax2_tx;
@@ -3062,7 +3084,6 @@ class ContratLigne extends CommonObjectLine
$this->oldcopy = new ContratLigne($this->db);
$this->oldcopy->fetch($this->id);
- $this->oldcopy->fetch_optionals();
// Update request
$sql = "UPDATE ".MAIN_DB_PREFIX."contratdet SET";
From eb48566798f68bc90e330d6ae34301e09bd3e80e Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Fri, 27 Aug 2021 10:40:33 +0200
Subject: [PATCH 052/117] Close #18074 : New /order/{id}/shipment get & post
---
htdocs/commande/class/api_orders.class.php | 17 +++++++++++------
1 file changed, 11 insertions(+), 6 deletions(-)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index ed0cc3859d5..ca49b426a87 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -987,13 +987,18 @@ class Orders extends DolibarrApi
if (!DolibarrApiAccess::$user->rights->expedition->lire) {
throw new RestException(401);
}
+ $sql = "SELECT e.rowid";
+ $sql .= " FROM ".MAIN_DB_PREFIX."expedition as e";
+ $sql .= " JOIN ".MAIN_DB_PREFIX."expeditiondet as edet";
+ $sql .= " ON e.rowid = edet.fk_expedition";
+ $sql .= " JOIN ".MAIN_DB_PREFIX."commandedet as cdet";
+ $sql .= " ON edet.fk_origin_line = cdet.rowid";
+ $sql .= " JOIN ".MAIN_DB_PREFIX."commande as c";
+ $sql .= " ON cdet.fk_commande = c.rowid";
+ $sql .= " WHERE c.rowid = ".$this->db->escape($id);
+ $sql .= " GROUP BY e.rowid";
+ $sql .= $this->db->order("e.rowid", "ASC");
- $sql = "SELECT t.rowid";
- $sql .= " FROM ".MAIN_DB_PREFIX."expedition as t";
- $sql .= " JOIN ".MAIN_DB_PREFIX."expeditiondet as tdet";
- $sql .= " ON t.rowid = tdet.rowid";
- $sql .= " WHERE tdet.fk_origin_line = ".$id;
- $sql .= $this->db->order("t.rowid", "ASC");
dol_syslog("API Rest request");
$result = $this->db->query($sql);
From b9039eea143f5004fc9145554923b45e5570fa87 Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Fri, 27 Aug 2021 10:45:04 +0200
Subject: [PATCH 053/117] FIx warehouse limit testing
---
htdocs/commande/class/api_orders.class.php | 3 +++
1 file changed, 3 insertions(+)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index ca49b426a87..2510e793018 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -1043,6 +1043,9 @@ class Orders extends DolibarrApi
if (!DolibarrApiAccess::$user->rights->expedition->creer) {
throw new RestException(401);
}
+ if ($warehouse_id <= 0) {
+ throw new RestException(404, 'Warehouse not found');
+ }
$result = $this->commande->fetch($id);
if (!$result) {
throw new RestException(404, 'Order not found');
From ce7a301896320e321a2ba1caaf70fd320c742883 Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Fri, 27 Aug 2021 11:48:56 +0200
Subject: [PATCH 054/117] Fix #18519 : Modulebuilder api permission
---
.../modulebuilder/template/class/api_mymodule.class.php | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/htdocs/modulebuilder/template/class/api_mymodule.class.php b/htdocs/modulebuilder/template/class/api_mymodule.class.php
index 2e04e34dcac..8b7718eac67 100644
--- a/htdocs/modulebuilder/template/class/api_mymodule.class.php
+++ b/htdocs/modulebuilder/template/class/api_mymodule.class.php
@@ -69,7 +69,7 @@ class MyModuleApi extends DolibarrApi
*/
public function get($id)
{
- if (!DolibarrApiAccess::$user->rights->mymodule->read) {
+ if (!DolibarrApiAccess::$user->rights->mymodule->myobject->read) {
throw new RestException(401);
}
@@ -194,7 +194,7 @@ class MyModuleApi extends DolibarrApi
*/
public function post($request_data = null)
{
- if (!DolibarrApiAccess::$user->rights->mymodule->write) {
+ if (!DolibarrApiAccess::$user->rights->mymodule->myobject->write) {
throw new RestException(401);
}
// Check mandatory fields
@@ -222,7 +222,7 @@ class MyModuleApi extends DolibarrApi
*/
public function put($id, $request_data = null)
{
- if (!DolibarrApiAccess::$user->rights->mymodule->write) {
+ if (!DolibarrApiAccess::$user->rights->mymodule->myobject->write) {
throw new RestException(401);
}
@@ -260,7 +260,7 @@ class MyModuleApi extends DolibarrApi
*/
public function delete($id)
{
- if (!DolibarrApiAccess::$user->rights->mymodule->delete) {
+ if (!DolibarrApiAccess::$user->rights->mymodule->myobject->delete) {
throw new RestException(401);
}
$result = $this->myobject->fetch($id);
From 4547de8d4a30473fa671dcb7c9a173baa76b5ff4 Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Fri, 27 Aug 2021 12:16:59 +0200
Subject: [PATCH 055/117] New : api for knowledgemanagement
---
.../class/api_knowledgemanagement.class.php | 393 ++++++++++++++++++
1 file changed, 393 insertions(+)
create mode 100644 htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
diff --git a/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php b/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
new file mode 100644
index 00000000000..fefc4e8f73c
--- /dev/null
+++ b/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
@@ -0,0 +1,393 @@
+
+ * Copyright (C) 2021 SuperAdmin
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see
Date: Fri, 27 Aug 2021 12:19:28 +0200
Subject: [PATCH 056/117] fix permissions api for knowledgemanagement
---
.../class/api_knowledgemanagement.class.php | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php b/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
index fefc4e8f73c..16429060a17 100644
--- a/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
+++ b/htdocs/knowledgemanagement/class/api_knowledgemanagement.class.php
@@ -69,7 +69,7 @@ class KnowledgeManagement extends DolibarrApi
*/
public function get($id)
{
- if (!DolibarrApiAccess::$user->rights->knowledgemanagement->read) {
+ if (!DolibarrApiAccess::$user->rights->knowledgemanagement->knowledgerecord->read) {
throw new RestException(401);
}
@@ -205,7 +205,7 @@ class KnowledgeManagement extends DolibarrApi
*/
public function post($request_data = null)
{
- if (!DolibarrApiAccess::$user->rights->knowledgemanagement->write) {
+ if (!DolibarrApiAccess::$user->rights->knowledgemanagement->knowledgerecord->write) {
throw new RestException(401);
}
@@ -238,7 +238,7 @@ class KnowledgeManagement extends DolibarrApi
*/
public function put($id, $request_data = null)
{
- if (!DolibarrApiAccess::$user->rights->knowledgemanagement->write) {
+ if (!DolibarrApiAccess::$user->rights->knowledgemanagement->knowledgerecord->write) {
throw new RestException(401);
}
@@ -280,7 +280,7 @@ class KnowledgeManagement extends DolibarrApi
*/
public function delete($id)
{
- if (!DolibarrApiAccess::$user->rights->knowledgemanagement->delete) {
+ if (!DolibarrApiAccess::$user->rights->knowledgemanagement->knowledgerecord->delete) {
throw new RestException(401);
}
$result = $this->knowledgerecord->fetch($id);
From 9752501ef606326fc605fd02dec1726544729ff2 Mon Sep 17 00:00:00 2001
From: Christian Foellmann
Date: Fri, 27 Aug 2021 15:32:53 +0200
Subject: [PATCH 057/117] change links for thirdparty to target the type
customer|supplier tab
---
htdocs/commande/card.php | 4 ++--
htdocs/contrat/card.php | 4 ++--
htdocs/fourn/commande/card.php | 6 +++---
htdocs/fourn/facture/card.php | 4 ++--
htdocs/supplier_proposal/card.php | 4 ++--
5 files changed, 11 insertions(+), 11 deletions(-)
diff --git a/htdocs/commande/card.php b/htdocs/commande/card.php
index 004b5a3c205..58a8edb67e7 100644
--- a/htdocs/commande/card.php
+++ b/htdocs/commande/card.php
@@ -1568,7 +1568,7 @@ if ($action == 'create' && $usercancreate) {
print ''.$langs->trans('Customer').' ';
if ($socid > 0) {
print '';
- print $soc->getNomUrl(1);
+ print $soc->getNomUrl(1, 'customer');
print ' ';
} else {
@@ -2014,7 +2014,7 @@ if ($action == 'create' && $usercancreate) {
$morehtmlref .= $form->editfieldkey("RefCustomer", 'ref_client', $object->ref_client, $object, $usercancreate, 'string', '', 0, 1);
$morehtmlref .= $form->editfieldval("RefCustomer", 'ref_client', $object->ref_client, $object, $usercancreate, 'string', '', null, null, '', 1);
// Thirdparty
- $morehtmlref .= ''.$langs->trans("OtherOrders").' )';
}
diff --git a/htdocs/contrat/card.php b/htdocs/contrat/card.php
index 470895a2c22..d07176d1670 100644
--- a/htdocs/contrat/card.php
+++ b/htdocs/contrat/card.php
@@ -1089,7 +1089,7 @@ if ($action == 'create') {
print ''.$langs->trans('ThirdParty').' ';
if ($socid > 0) {
print '';
- print $soc->getNomUrl(1);
+ print $soc->getNomUrl(1, 'customer');
print ' ';
} else {
@@ -1296,7 +1296,7 @@ if ($action == 'create') {
$morehtmlref .= $form->editfieldkey("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $user->rights->contrat->creer, 'string', '', 0, 1);
$morehtmlref .= $form->editfieldval("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $user->rights->contrat->creer, 'string', '', null, null, '', 1, 'getFormatedSupplierRef');
// Thirdparty
- $morehtmlref .= ''.$langs->trans("OtherContracts").' )';
}
diff --git a/htdocs/fourn/commande/card.php b/htdocs/fourn/commande/card.php
index 6ea356e189e..71268635ffb 100644
--- a/htdocs/fourn/commande/card.php
+++ b/htdocs/fourn/commande/card.php
@@ -1617,7 +1617,7 @@ if ($action == 'create') {
print '';
if ($societe->id > 0) {
- print $societe->getNomUrl(1);
+ print $societe->getNomUrl(1, 'supplier');
print ' '.$langs->trans($newclassname).' '.$objectsrc->getNomUrl(1).' '.$langs->trans($newclassname).' '.$objectsrc->getNomUrl(1, 'supplier').' '.$langs->trans('AmountHT').' '.price($objectsrc->total_ht).' '.$langs->trans('AmountVAT').' '.price($objectsrc->total_tva)." '.img_edit($langs->transnoentitiesnoconv('SetThirdParty')).' ';
}
- $morehtmlref .= ' : '.$object->thirdparty->getNomUrl(1);
+ $morehtmlref .= ' : '.$object->thirdparty->getNomUrl(1, 'supplier');
if (empty($conf->global->MAIN_DISABLE_OTHER_LINK) && $object->thirdparty->id > 0) {
$morehtmlref .= ' ('.$langs->trans("OtherOrders").' )';
}
diff --git a/htdocs/fourn/facture/card.php b/htdocs/fourn/facture/card.php
index ae0d306b2cd..7f24223f912 100644
--- a/htdocs/fourn/facture/card.php
+++ b/htdocs/fourn/facture/card.php
@@ -1927,7 +1927,7 @@ if ($action == 'create') {
if ($societe->id > 0) {
$absolute_discount = $societe->getAvailableDiscounts('', '', 0, 1);
- print $societe->getNomUrl(1);
+ print $societe->getNomUrl(1, 'supplier');
print ''.$langs->trans("OtherBills").' )';
}
diff --git a/htdocs/supplier_proposal/card.php b/htdocs/supplier_proposal/card.php
index cc553555b5b..75cd0e9ccc0 100644
--- a/htdocs/supplier_proposal/card.php
+++ b/htdocs/supplier_proposal/card.php
@@ -1126,7 +1126,7 @@ if ($action == 'create') {
print ''.$langs->trans('Supplier').' ';
if ($socid > 0) {
print '';
- print $soc->getNomUrl(1);
+ print $soc->getNomUrl(1, 'supplier');
print ' ';
} else {
@@ -1437,7 +1437,7 @@ if ($action == 'create') {
//$morehtmlref.=$form->editfieldkey("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $usercancreateorder, 'string', '', 0, 1);
//$morehtmlref.=$form->editfieldval("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $usercancreateorder, 'string', '', null, null, '', 1);
// Thirdparty
- $morehtmlref .= $langs->trans('ThirdParty').' : '.$object->thirdparty->getNomUrl(1);
+ $morehtmlref .= $langs->trans('ThirdParty').' : '.$object->thirdparty->getNomUrl(1, 'supplier');
if (empty($conf->global->MAIN_DISABLE_OTHER_LINK) && $object->thirdparty->id > 0) {
$morehtmlref .= ' ('.$langs->trans("OtherProposals").' )';
}
From 53b230a96863dccf4240f269d987ba2de8054d8d Mon Sep 17 00:00:00 2001
From: Ilias Patsiaouras
Date: Fri, 27 Aug 2021 15:38:15 +0200
Subject: [PATCH 058/117] wip
---
.../class/emailcollector.class.php | 65 ++++++++++++++++++-
1 file changed, 62 insertions(+), 3 deletions(-)
diff --git a/htdocs/emailcollector/class/emailcollector.class.php b/htdocs/emailcollector/class/emailcollector.class.php
index 16df7774470..df91076be4e 100644
--- a/htdocs/emailcollector/class/emailcollector.class.php
+++ b/htdocs/emailcollector/class/emailcollector.class.php
@@ -30,6 +30,38 @@ require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
require_once DOL_DOCUMENT_ROOT.'/ticket/class/ticket.class.php';
require_once DOL_DOCUMENT_ROOT.'/recruitment/class/recruitmentcandidature.class.php';
+require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php'; // customer proposal
+require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php'; // customer order
+require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php'; // Shipment
+require_once DOL_DOCUMENT_ROOT.'/fourn/class/fournisseur.facture.class.php'; // supplier invoice
+require_once DOL_DOCUMENT_ROOT.'/fourn/class/fournisseur.commande.class.php'; // supplier order
+include_once DOL_DOCUMENT_ROOT.'/supplier_proposal/class/supplier_proposal.class.php'; // supplier proposal
+require_once DOL_DOCUMENT_ROOT."/reception/class/reception.class.php"; // reception
+//require_once DOL_DOCUMENT_ROOT.'/holiday/class/holiday.class.php'; // Holidays (leave request)
+//require_once DOL_DOCUMENT_ROOT.'/expensereport/class/expensereport.class.php'; // expernse report
+/*
+if (!empty($conf->propal->enabled)) {
+}
+if (!empty($conf->commande->enabled)) {
+}
+if (!empty($conf->expedition->enabled)) {
+}
+if (!empty($conf->facture->enabled)) {
+ require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
+}
+if (!empty($conf->facture->enabled)) {
+ require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture-rec.class.php';
+}
+if (!empty($conf->contrat->enabled)) {
+ require_once DOL_DOCUMENT_ROOT.'/contrat/class/contrat.class.php';
+}
+if (!empty($conf->adherent->enabled)) {
+ require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
+}
+if (!empty($conf->ficheinter->enabled)) { //files
+ require_once DOL_DOCUMENT_ROOT.'/fichinter/class/fichinter.class.php';
+}*/
+
/**
* Class for EmailCollector
@@ -1415,8 +1447,8 @@ class EmailCollector extends CommonObject
$reg = array();
if (!empty($headers['References'])) {
$arrayofreferences = preg_split('/(,|\s+)/', $headers['References']);
- //var_dump($headers['References']);
- //var_dump($arrayofreferences);
+ // var_dump($headers['References']);
+ // var_dump($arrayofreferences);
foreach ($arrayofreferences as $reference) {
//print "Process mail ".$iforemailloop." email_msgid ".$msgid.", date ".dol_print_date($date, 'dayhour').", subject ".$subject.", reference ".dol_escape_htmltag($reference)."
Date: Fri, 27 Aug 2021 13:43:06 +0000
Subject: [PATCH 059/117] Fixing style errors.
---
htdocs/emailcollector/class/emailcollector.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/emailcollector/class/emailcollector.class.php b/htdocs/emailcollector/class/emailcollector.class.php
index df91076be4e..88cb4bcc1d2 100644
--- a/htdocs/emailcollector/class/emailcollector.class.php
+++ b/htdocs/emailcollector/class/emailcollector.class.php
@@ -1466,7 +1466,7 @@ class EmailCollector extends CommonObject
}
if ($reg[1] == 'inv') { // customer invoices
$objectemail = new Facture($this->db);
- }
+ }
if ($reg[1] == 'sinv') { // supplier invoices
$objectemail = new FactureFournisseur($this->db);
}
From 2f225ee7e5f387439d1e42e21f0e162e2246991c Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Fri, 27 Aug 2021 16:33:03 +0200
Subject: [PATCH 060/117] Clean code by adding cast int.
---
.../class/accountingaccount.class.php | 4 +-
.../accountancy/class/bookkeeping.class.php | 8 ++--
htdocs/accountancy/journal/bankjournal.php | 6 +--
htdocs/adherents/class/adherent.class.php | 22 ++++-----
.../adherents/class/adherent_type.class.php | 24 +++++-----
htdocs/adherents/class/subscription.class.php | 2 +-
htdocs/admin/paymentbybanktransfer.php | 4 +-
htdocs/admin/prelevement.php | 4 +-
htdocs/categories/class/categorie.class.php | 8 ++--
htdocs/comm/action/card.php | 8 ++--
htdocs/comm/action/class/actioncomm.class.php | 6 +--
htdocs/comm/mailing/card.php | 4 +-
htdocs/comm/mailing/cibles.php | 4 +-
htdocs/comm/mailing/class/mailing.class.php | 10 ++--
htdocs/comm/multiprix.php | 2 +-
htdocs/comm/remise.php | 4 +-
htdocs/comm/remx.php | 24 +++++-----
htdocs/compta/bank/class/account.class.php | 10 ++--
htdocs/compta/bank/class/bankcateg.class.php | 4 +-
.../deplacement/class/deplacement.class.php | 2 +-
htdocs/compta/facture/card.php | 4 +-
.../facture/class/paymentterm.class.php | 4 +-
htdocs/compta/facture/prelevement.php | 16 +++----
.../cheque/class/remisecheque.class.php | 4 +-
.../compta/paiement/class/paiement.class.php | 4 +-
.../class/bonprelevement.class.php | 46 ++++++++++---------
.../sociales/class/chargesociales.class.php | 4 +-
htdocs/compta/tva/class/tva.class.php | 4 +-
htdocs/contrat/class/contrat.class.php | 2 +-
htdocs/core/class/commonincoterm.class.php | 2 +-
htdocs/core/class/commonobject.class.php | 6 +--
htdocs/core/class/discount.class.php | 4 +-
htdocs/core/class/link.class.php | 4 +-
htdocs/delivery/class/delivery.class.php | 8 ++--
htdocs/ecm/class/ecmdirectory.class.php | 4 +-
.../class/conferenceorboothattendee.class.php | 2 +-
htdocs/expedition/class/expedition.class.php | 12 ++---
.../class/expensereport.class.php | 8 ++--
htdocs/fichinter/class/fichinter.class.php | 8 ++--
htdocs/fichinter/class/fichinterrec.class.php | 2 +-
.../fourn/class/fournisseur.facture.class.php | 4 +-
htdocs/hrm/class/establishment.class.php | 2 +-
htdocs/loan/class/loan.class.php | 6 +--
htdocs/mrp/class/mo.class.php | 2 +-
.../partnership/class/partnership.class.php | 4 +-
htdocs/product/class/product.class.php | 2 +-
.../class/price_expression.class.php | 2 +-
.../class/price_global_variable.class.php | 2 +-
.../price_global_variable_updater.class.php | 6 +--
htdocs/product/stock/class/entrepot.class.php | 2 +-
htdocs/projet/class/project.class.php | 2 +-
htdocs/projet/class/task.class.php | 2 +-
htdocs/reception/class/reception.class.php | 10 ++--
.../class/recruitmentcandidature.class.php | 2 +-
.../class/recruitmentjobposition.class.php | 4 +-
htdocs/salaries/class/salary.class.php | 4 +-
.../class/companybankaccount.class.php | 2 +-
htdocs/societe/class/societe.class.php | 8 ++--
htdocs/ticket/class/ticket.class.php | 8 ++--
htdocs/user/class/userbankaccount.class.php | 2 +-
.../workstation/class/workstation.class.php | 2 +-
test/phpunit/CodingPhpTest.php | 6 +--
62 files changed, 198 insertions(+), 194 deletions(-)
diff --git a/htdocs/accountancy/class/accountingaccount.class.php b/htdocs/accountancy/class/accountingaccount.class.php
index 99a0dc0dc48..3c95af8afee 100644
--- a/htdocs/accountancy/class/accountingaccount.class.php
+++ b/htdocs/accountancy/class/accountingaccount.class.php
@@ -374,10 +374,10 @@ class AccountingAccount extends CommonObject
global $langs;
$sql = "(SELECT fk_code_ventilation FROM ".MAIN_DB_PREFIX."facturedet";
- $sql .= " WHERE fk_code_ventilation=".$this->id.")";
+ $sql .= " WHERE fk_code_ventilation=".((int) $this->id).")";
$sql .= "UNION";
$sql .= " (SELECT fk_code_ventilation FROM ".MAIN_DB_PREFIX."facture_fourn_det";
- $sql .= " WHERE fk_code_ventilation=".$this->id.")";
+ $sql .= " WHERE fk_code_ventilation=".((int) $this->id).")";
dol_syslog(get_class($this)."::checkUsage sql=".$sql, LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/accountancy/class/bookkeeping.class.php b/htdocs/accountancy/class/bookkeeping.class.php
index 2c715aa9fd6..0ea00c9c98c 100644
--- a/htdocs/accountancy/class/bookkeeping.class.php
+++ b/htdocs/accountancy/class/bookkeeping.class.php
@@ -390,7 +390,7 @@ class BookKeeping extends CommonObject
$sql .= ", '".$this->db->idate($now)."'";
$sql .= ", '".$this->db->escape($this->code_journal)."'";
$sql .= ", ".(!empty($this->journal_label) ? ("'".$this->db->escape($this->journal_label)."'") : "NULL");
- $sql .= ", ".$this->db->escape($this->piece_num);
+ $sql .= ", ".((int) $this->piece_num);
$sql .= ", ".(!isset($this->entity) ? $conf->entity : $this->entity);
$sql .= ")";
@@ -1348,7 +1348,7 @@ class BookKeeping extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element.$mode;
$sql .= ' SET '.$field.'='.(is_numeric($value) ? $value : "'".$this->db->escape($value)."'");
- $sql .= " WHERE piece_num = '".$this->db->escape($piece_num)."'";
+ $sql .= " WHERE piece_num = ".((int) $piece_num);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -1637,7 +1637,7 @@ class BookKeeping extends CommonObject
$sql .= ", date_export";
}
$sql .= " FROM ".MAIN_DB_PREFIX.$this->table_element.$mode;
- $sql .= " WHERE piece_num = ".$piecenum;
+ $sql .= " WHERE piece_num = ".((int) $piecenum);
$sql .= " AND entity IN (".getEntity('accountancy').")";
dol_syslog(__METHOD__, LOG_DEBUG);
@@ -1718,7 +1718,7 @@ class BookKeeping extends CommonObject
$sql .= ", date_export";
}
$sql .= " FROM ".MAIN_DB_PREFIX.$this->table_element.$mode;
- $sql .= " WHERE piece_num = ".$piecenum;
+ $sql .= " WHERE piece_num = ".((int) $piecenum);
$sql .= " AND entity IN (".getEntity('accountancy').")";
dol_syslog(__METHOD__, LOG_DEBUG);
diff --git a/htdocs/accountancy/journal/bankjournal.php b/htdocs/accountancy/journal/bankjournal.php
index bdda4583d54..d05135e7a67 100644
--- a/htdocs/accountancy/journal/bankjournal.php
+++ b/htdocs/accountancy/journal/bankjournal.php
@@ -364,10 +364,10 @@ if ($result) {
// Note: We have the social contribution id, it can be faster to get accounting code from social contribution id.
$sqlmid = 'SELECT cchgsoc.accountancy_code';
$sqlmid .= " FROM ".MAIN_DB_PREFIX."c_chargesociales cchgsoc";
- $sqlmid .= " INNER JOIN ".MAIN_DB_PREFIX."chargesociales as chgsoc ON chgsoc.fk_type=cchgsoc.id";
- $sqlmid .= " INNER JOIN ".MAIN_DB_PREFIX."paiementcharge as paycharg ON paycharg.fk_charge=chgsoc.rowid";
+ $sqlmid .= " INNER JOIN ".MAIN_DB_PREFIX."chargesociales as chgsoc ON chgsoc.fk_type = cchgsoc.id";
+ $sqlmid .= " INNER JOIN ".MAIN_DB_PREFIX."paiementcharge as paycharg ON paycharg.fk_charge = chgsoc.rowid";
$sqlmid .= " INNER JOIN ".MAIN_DB_PREFIX."bank_url as bkurl ON bkurl.url_id=paycharg.rowid AND bkurl.type = 'payment_sc'";
- $sqlmid .= " WHERE bkurl.fk_bank=".$obj->rowid;
+ $sqlmid .= " WHERE bkurl.fk_bank = ".((int) $obj->rowid);
dol_syslog("accountancy/journal/bankjournal.php:: sqlmid=".$sqlmid, LOG_DEBUG);
$resultmid = $db->query($sqlmid);
diff --git a/htdocs/adherents/class/adherent.class.php b/htdocs/adherents/class/adherent.class.php
index 2d5eae90938..75470b32173 100644
--- a/htdocs/adherents/class/adherent.class.php
+++ b/htdocs/adherents/class/adherent.class.php
@@ -774,7 +774,7 @@ class Adherent extends CommonObject
// Remove links to user and replace with new one
if (!$error) {
dol_syslog(get_class($this)."::update update link to user");
- $sql = "UPDATE ".MAIN_DB_PREFIX."user SET fk_member = NULL WHERE fk_member = ".$this->id;
+ $sql = "UPDATE ".MAIN_DB_PREFIX."user SET fk_member = NULL WHERE fk_member = ".((int) $this->id);
dol_syslog(get_class($this)."::update", LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -784,7 +784,7 @@ class Adherent extends CommonObject
}
// If there is a user linked to this member
if ($this->user_id > 0) {
- $sql = "UPDATE ".MAIN_DB_PREFIX."user SET fk_member = ".$this->id." WHERE rowid = ".$this->user_id;
+ $sql = "UPDATE ".MAIN_DB_PREFIX."user SET fk_member = ".((int) $this->id)." WHERE rowid = ".((int) $this->user_id);
dol_syslog(get_class($this)."::update", LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -926,7 +926,7 @@ class Adherent extends CommonObject
// Search for last subscription id and end date
$sql = "SELECT rowid, datec as dateop, dateadh as datedeb, datef as datefin";
$sql .= " FROM ".MAIN_DB_PREFIX."subscription";
- $sql .= " WHERE fk_adherent=".$this->id;
+ $sql .= " WHERE fk_adherent = ".((int) $this->id);
$sql .= " ORDER by dateadh DESC"; // Sort by start subscription date
dol_syslog(get_class($this)."::update_end_date", LOG_DEBUG);
@@ -939,7 +939,7 @@ class Adherent extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."adherent SET";
$sql .= " datefin=".($datefin != '' ? "'".$this->db->idate($datefin)."'" : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_end_date", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1100,7 +1100,7 @@ class Adherent extends CommonObject
} else {
$sql .= ", pass = '".$this->db->escape($password_indatabase)."'";
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
//dol_syslog("Adherent::Password sql=hidden");
dol_syslog(get_class($this)."::setPassword", LOG_DEBUG);
@@ -1223,7 +1223,7 @@ class Adherent extends CommonObject
// Add link to third party for current member
$sql = "UPDATE ".MAIN_DB_PREFIX."adherent SET fk_soc = ".($thirdpartyid > 0 ? $thirdpartyid : 'null');
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setThirdPartyId", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1465,7 +1465,7 @@ class Adherent extends CommonObject
$sql .= " c.dateadh as dateh,";
$sql .= " c.datef as datef";
$sql .= " FROM ".MAIN_DB_PREFIX."subscription as c";
- $sql .= " WHERE c.fk_adherent = ".$this->id;
+ $sql .= " WHERE c.fk_adherent = ".((int) $this->id);
$sql .= " ORDER BY c.dateadh";
dol_syslog(get_class($this)."::fetch_subscriptions", LOG_DEBUG);
@@ -1900,8 +1900,8 @@ class Adherent extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."adherent SET";
$sql .= " statut = ".self::STATUS_VALIDATED;
$sql .= ", datevalid = '".$this->db->idate($now)."'";
- $sql .= ", fk_user_valid=".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= ", fk_user_valid = ".((int) $user->id);
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate", LOG_DEBUG);
$result = $this->db->query($sql);
@@ -1952,7 +1952,7 @@ class Adherent extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."adherent SET";
$sql .= " statut = ".self::STATUS_RESILIATED;
$sql .= ", fk_user_valid=".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
@@ -2002,7 +2002,7 @@ class Adherent extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."adherent SET";
$sql .= " statut = ".self::STATUS_EXCLUDED;
$sql .= ", fk_user_valid=".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
diff --git a/htdocs/adherents/class/adherent_type.class.php b/htdocs/adherents/class/adherent_type.class.php
index ad24b9f1c05..1a00a03e932 100644
--- a/htdocs/adherents/class/adherent_type.class.php
+++ b/htdocs/adherents/class/adherent_type.class.php
@@ -142,7 +142,7 @@ class AdherentType extends CommonObject
$sql = "SELECT lang, label, description, email";
$sql .= " FROM ".MAIN_DB_PREFIX."adherent_type_lang";
- $sql .= " WHERE fk_type=".$this->id;
+ $sql .= " WHERE fk_type = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
@@ -181,21 +181,21 @@ class AdherentType extends CommonObject
if ($key == $current_lang) {
$sql = "SELECT rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."adherent_type_lang";
- $sql .= " WHERE fk_type=".$this->id;
+ $sql .= " WHERE fk_type = ".((int) $this->id);
$sql .= " AND lang = '".$this->db->escape($key)."'";
$result = $this->db->query($sql);
if ($this->db->num_rows($result)) { // if there is already a description line for this language
$sql2 = "UPDATE ".MAIN_DB_PREFIX."adherent_type_lang";
- $sql2 .= " SET ";
- $sql2 .= " label='".$this->db->escape($this->label)."',";
- $sql2 .= " description='".$this->db->escape($this->description)."'";
- $sql2 .= " WHERE fk_type=".$this->id." AND lang='".$this->db->escape($key)."'";
+ $sql2 .= " SET";
+ $sql2 .= " label = '".$this->db->escape($this->label)."',";
+ $sql2 .= " description = '".$this->db->escape($this->description)."'";
+ $sql2 .= " WHERE fk_type = ".((int) $this->id)." AND lang='".$this->db->escape($key)."'";
} else {
$sql2 = "INSERT INTO ".MAIN_DB_PREFIX."adherent_type_lang (fk_type, lang, label, description";
$sql2 .= ")";
- $sql2 .= " VALUES(".$this->id.",'".$this->db->escape($key)."','".$this->db->escape($this->label)."',";
+ $sql2 .= " VALUES(".((int) $this->id).",'".$this->db->escape($key)."','".$this->db->escape($this->label)."',";
$sql2 .= " '".$this->db->escape($this->description)."'";
$sql2 .= ")";
}
@@ -207,7 +207,7 @@ class AdherentType extends CommonObject
} elseif (isset($this->multilangs[$key])) {
$sql = "SELECT rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."adherent_type_lang";
- $sql .= " WHERE fk_type=".$this->id;
+ $sql .= " WHERE fk_type = ".((int) $this->id);
$sql .= " AND lang = '".$this->db->escape($key)."'";
$result = $this->db->query($sql);
@@ -215,9 +215,9 @@ class AdherentType extends CommonObject
if ($this->db->num_rows($result)) { // if there is already a description line for this language
$sql2 = "UPDATE ".MAIN_DB_PREFIX."adherent_type_lang";
$sql2 .= " SET ";
- $sql2 .= " label='".$this->db->escape($this->multilangs["$key"]["label"])."',";
- $sql2 .= " description='".$this->db->escape($this->multilangs["$key"]["description"])."'";
- $sql2 .= " WHERE fk_type=".$this->id." AND lang='".$this->db->escape($key)."'";
+ $sql2 .= " label = '".$this->db->escape($this->multilangs["$key"]["label"])."',";
+ $sql2 .= " description = '".$this->db->escape($this->multilangs["$key"]["description"])."'";
+ $sql2 .= " WHERE fk_type = ".((int) $this->id)." AND lang='".$this->db->escape($key)."'";
} else {
$sql2 = "INSERT INTO ".MAIN_DB_PREFIX."adherent_type_lang (fk_type, lang, label, description";
$sql2 .= ")";
@@ -259,7 +259,7 @@ class AdherentType extends CommonObject
public function delMultiLangs($langtodelete, $user)
{
$sql = "DELETE FROM ".MAIN_DB_PREFIX."adherent_type_lang";
- $sql .= " WHERE fk_type=".$this->id." AND lang='".$this->db->escape($langtodelete)."'";
+ $sql .= " WHERE fk_type = ".((int) $this->id)." AND lang = '".$this->db->escape($langtodelete)."'";
dol_syslog(get_class($this).'::delMultiLangs', LOG_DEBUG);
$result = $this->db->query($sql);
diff --git a/htdocs/adherents/class/subscription.class.php b/htdocs/adherents/class/subscription.class.php
index fff9d925cd9..cae5dd07beb 100644
--- a/htdocs/adherents/class/subscription.class.php
+++ b/htdocs/adherents/class/subscription.class.php
@@ -275,7 +275,7 @@ class Subscription extends CommonObject
$sql .= " datef='".$this->db->idate($this->datef)."',";
$sql .= " datec='".$this->db->idate($this->datec)."',";
$sql .= " fk_bank = ".($this->fk_bank ? ((int) $this->fk_bank) : 'null');
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/admin/paymentbybanktransfer.php b/htdocs/admin/paymentbybanktransfer.php
index e130f0479c4..251d5194b27 100644
--- a/htdocs/admin/paymentbybanktransfer.php
+++ b/htdocs/admin/paymentbybanktransfer.php
@@ -114,7 +114,7 @@ if ($action == "set") {
if ($action == "addnotif") {
$bon = new BonPrelevement($db);
- $bon->AddNotification($db, GETPOST('user', 'int'), $action);
+ $bon->addNotification($db, GETPOST('user', 'int'), $action);
header("Location: ".$_SERVER["PHP_SELF"]);
exit;
@@ -122,7 +122,7 @@ if ($action == "addnotif") {
if ($action == "deletenotif") {
$bon = new BonPrelevement($db);
- $bon->DeleteNotificationById(GETPOST('notif', 'int'));
+ $bon->deleteNotificationById(GETPOST('notif', 'int'));
header("Location: ".$_SERVER["PHP_SELF"]);
exit;
diff --git a/htdocs/admin/prelevement.php b/htdocs/admin/prelevement.php
index 739709410ce..db48ab19849 100644
--- a/htdocs/admin/prelevement.php
+++ b/htdocs/admin/prelevement.php
@@ -117,7 +117,7 @@ if ($action == "set") {
if ($action == "addnotif") {
$bon = new BonPrelevement($db);
- $bon->AddNotification($db, GETPOST('user', 'int'), $action);
+ $bon->addNotification($db, GETPOST('user', 'int'), $action);
header("Location: ".$_SERVER["PHP_SELF"]);
exit;
@@ -125,7 +125,7 @@ if ($action == "addnotif") {
if ($action == "deletenotif") {
$bon = new BonPrelevement($db);
- $bon->DeleteNotificationById(GETPOST('notif', 'int'));
+ $bon->deleteNotificationById(GETPOST('notif', 'int'));
header("Location: ".$_SERVER["PHP_SELF"]);
exit;
diff --git a/htdocs/categories/class/categorie.class.php b/htdocs/categories/class/categorie.class.php
index 5a506558187..689014ad14e 100644
--- a/htdocs/categories/class/categorie.class.php
+++ b/htdocs/categories/class/categorie.class.php
@@ -613,7 +613,7 @@ class Categorie extends CommonObject
if (!$error) {
$sql = "UPDATE ".MAIN_DB_PREFIX."categorie";
$sql .= " SET fk_parent = ".((int) $this->fk_parent);
- $sql .= " WHERE fk_parent = ".$this->id;
+ $sql .= " WHERE fk_parent = ".((int) $this->id);
if (!$this->db->query($sql)) {
$this->error = $this->db->lasterror();
@@ -634,7 +634,7 @@ class Categorie extends CommonObject
);
foreach ($arraydelete as $key => $value) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX.$key;
- $sql .= " WHERE ".$value." = ".$this->id;
+ $sql .= " WHERE ".$value." = ".((int) $this->id);
if (!$this->db->query($sql)) {
$this->errors[] = $this->db->lasterror();
dol_syslog("Error sql=".$sql." ".$this->error, LOG_ERR);
@@ -1002,7 +1002,7 @@ class Categorie extends CommonObject
{
// phpcs:enable
$sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."categorie";
- $sql .= " WHERE fk_parent = ".$this->id;
+ $sql .= " WHERE fk_parent = ".((int) $this->id);
$sql .= " AND entity IN (".getEntity('category').")";
$res = $this->db->query($sql);
@@ -1408,7 +1408,7 @@ class Categorie extends CommonObject
$parents = array();
$sql = "SELECT fk_parent FROM ".MAIN_DB_PREFIX."categorie";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$res = $this->db->query($sql);
diff --git a/htdocs/comm/action/card.php b/htdocs/comm/action/card.php
index a403a1cdf40..e5bbc5d676f 100644
--- a/htdocs/comm/action/card.php
+++ b/htdocs/comm/action/card.php
@@ -591,10 +591,10 @@ if (empty($reshook) && $action == 'update') {
$sql .= " FROM ".MAIN_DB_PREFIX."element_resources as er";
$sql .= " INNER JOIN ".MAIN_DB_PREFIX."resource as r ON r.rowid = er.resource_id AND er.resource_type = 'dolresource'";
$sql .= " INNER JOIN ".MAIN_DB_PREFIX."actioncomm as ac ON ac.id = er.element_id AND er.element_type = '".$db->escape($object->element)."'";
- $sql .= " WHERE ac.id != ".$object->id;
+ $sql .= " WHERE ac.id <> ".((int) $object->id);
$sql .= " AND er.resource_id IN (";
$sql .= " SELECT resource_id FROM ".MAIN_DB_PREFIX."element_resources";
- $sql .= " WHERE element_id = ".$object->id;
+ $sql .= " WHERE element_id = ".((int) $object->id);
$sql .= " AND element_type = '".$db->escape($object->element)."'";
$sql .= " AND busy = 1";
$sql .= ")";
@@ -770,10 +770,10 @@ if (empty($reshook) && GETPOST('actionmove', 'alpha') == 'mupdate') {
$sql .= " FROM ".MAIN_DB_PREFIX."element_resources as er";
$sql .= " INNER JOIN ".MAIN_DB_PREFIX."resource as r ON r.rowid = er.resource_id AND er.resource_type = 'dolresource'";
$sql .= " INNER JOIN ".MAIN_DB_PREFIX."actioncomm as ac ON ac.id = er.element_id AND er.element_type = '".$db->escape($object->element)."'";
- $sql .= " WHERE ac.id != ".$object->id;
+ $sql .= " WHERE ac.id <> ".((int) $object->id);
$sql .= " AND er.resource_id IN (";
$sql .= " SELECT resource_id FROM ".MAIN_DB_PREFIX."element_resources";
- $sql .= " WHERE element_id = ".$object->id;
+ $sql .= " WHERE element_id = ".((int) $object->id);
$sql .= " AND element_type = '".$db->escape($object->element)."'";
$sql .= " AND busy = 1";
$sql .= ")";
diff --git a/htdocs/comm/action/class/actioncomm.class.php b/htdocs/comm/action/class/actioncomm.class.php
index ce8f3f89d92..1e8de65cb43 100644
--- a/htdocs/comm/action/class/actioncomm.class.php
+++ b/htdocs/comm/action/class/actioncomm.class.php
@@ -973,7 +973,7 @@ class ActionComm extends CommonObject
// remove categorie association
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."categorie_actioncomm";
- $sql .= " WHERE fk_actioncomm=".$this->id;
+ $sql .= " WHERE fk_actioncomm=".((int) $this->id);
$res = $this->db->query($sql);
if (!$res) {
@@ -985,7 +985,7 @@ class ActionComm extends CommonObject
// remove actioncomm_resources
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."actioncomm_resources";
- $sql .= " WHERE fk_actioncomm=".$this->id;
+ $sql .= " WHERE fk_actioncomm=".((int) $this->id);
$res = $this->db->query($sql);
if (!$res) {
@@ -1017,7 +1017,7 @@ class ActionComm extends CommonObject
// remove actioncomm
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."actioncomm";
- $sql .= " WHERE id=".$this->id;
+ $sql .= " WHERE id=".((int) $this->id);
$res = $this->db->query($sql);
if (!$res) {
diff --git a/htdocs/comm/mailing/card.php b/htdocs/comm/mailing/card.php
index e03d13c29e8..8b97f23737e 100644
--- a/htdocs/comm/mailing/card.php
+++ b/htdocs/comm/mailing/card.php
@@ -165,7 +165,7 @@ if (empty($reshook)) {
$now = dol_now();
// Positioning date of start sending
- $sql = "UPDATE ".MAIN_DB_PREFIX."mailing SET date_envoi='".$db->idate($now)."' WHERE rowid=".$object->id;
+ $sql = "UPDATE ".MAIN_DB_PREFIX."mailing SET date_envoi='".$db->idate($now)."' WHERE rowid=".((int) $object->id);
$resql2 = $db->query($sql);
if (!$resql2) {
dol_print_error($db);
@@ -368,7 +368,7 @@ if (empty($reshook)) {
dol_syslog("comm/mailing/card.php: error for #".$i.($mail->error ? ' - '.$mail->error : ''), LOG_WARNING);
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing_cibles";
- $sql .= " SET statut=-1, error_text='".$db->escape($mail->error)."', date_envoi='".$db->idate($now)."' WHERE rowid=".$obj->rowid;
+ $sql .= " SET statut=-1, error_text='".$db->escape($mail->error)."', date_envoi='".$db->idate($now)."' WHERE rowid=".((int) $obj->rowid);
$resql2 = $db->query($sql);
if (!$resql2) {
dol_print_error($db);
diff --git a/htdocs/comm/mailing/cibles.php b/htdocs/comm/mailing/cibles.php
index 08ab8b6c8d7..4411b8a326a 100644
--- a/htdocs/comm/mailing/cibles.php
+++ b/htdocs/comm/mailing/cibles.php
@@ -135,7 +135,7 @@ if (GETPOST('exportcsv', 'int')) {
$sql = "SELECT mc.rowid, mc.lastname, mc.firstname, mc.email, mc.other, mc.statut as status, mc.date_envoi, mc.tms,";
$sql .= " mc.source_id, mc.source_type, mc.error_text";
$sql .= " FROM ".MAIN_DB_PREFIX."mailing_cibles as mc";
- $sql .= " WHERE mc.fk_mailing=".$object->id;
+ $sql .= " WHERE mc.fk_mailing=".((int) $object->id);
$sql .= $db->order($sortfield, $sortorder);
$resql = $db->query($sql);
@@ -454,7 +454,7 @@ if ($object->fetch($id) >= 0) {
$sql = "SELECT mc.rowid, mc.lastname, mc.firstname, mc.email, mc.other, mc.statut, mc.date_envoi, mc.tms,";
$sql .= " mc.source_url, mc.source_id, mc.source_type, mc.error_text";
$sql .= " FROM ".MAIN_DB_PREFIX."mailing_cibles as mc";
- $sql .= " WHERE mc.fk_mailing=".$object->id;
+ $sql .= " WHERE mc.fk_mailing=".((int) $object->id);
$asearchcriteriahasbeenset = 0;
if ($search_lastname) {
$sql .= natural_search("mc.lastname", $search_lastname);
diff --git a/htdocs/comm/mailing/class/mailing.class.php b/htdocs/comm/mailing/class/mailing.class.php
index d281fcb1a3a..2d33d4219d8 100644
--- a/htdocs/comm/mailing/class/mailing.class.php
+++ b/htdocs/comm/mailing/class/mailing.class.php
@@ -490,7 +490,7 @@ class Mailing extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing ";
$sql .= " SET statut = 1, date_valid = '".$this->db->idate($now)."', fk_user_valid=".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog("Mailing::valid", LOG_DEBUG);
if ($this->db->query($sql)) {
@@ -555,7 +555,7 @@ class Mailing extends CommonObject
{
// phpcs:enable
$sql = "DELETE FROM ".MAIN_DB_PREFIX."mailing_cibles";
- $sql .= " WHERE fk_mailing = ".$this->id;
+ $sql .= " WHERE fk_mailing = ".((int) $this->id);
dol_syslog("Mailing::delete_targets", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -582,7 +582,7 @@ class Mailing extends CommonObject
// phpcs:enable
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing_cibles";
$sql .= " SET statut = 0";
- $sql .= " WHERE fk_mailing = ".$this->id;
+ $sql .= " WHERE fk_mailing = ".((int) $this->id);
dol_syslog("Mailing::reset_targets_status", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -604,7 +604,7 @@ class Mailing extends CommonObject
public function countNbOfTargets($mode)
{
$sql = "SELECT COUNT(rowid) as nb FROM ".MAIN_DB_PREFIX."mailing_cibles";
- $sql .= " WHERE fk_mailing = ".$this->id;
+ $sql .= " WHERE fk_mailing = ".((int) $this->id);
if ($mode == 'alreadysent') {
$sql .= " AND statut <> 0";
} elseif ($mode == 'alreadysentok') {
@@ -638,7 +638,7 @@ class Mailing extends CommonObject
public function refreshNbOfTargets()
{
$sql = "SELECT COUNT(rowid) as nb FROM ".MAIN_DB_PREFIX."mailing_cibles";
- $sql .= " WHERE fk_mailing = ".$this->id;
+ $sql .= " WHERE fk_mailing = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/comm/multiprix.php b/htdocs/comm/multiprix.php
index 25ef23dd7de..8da9a17ebb2 100644
--- a/htdocs/comm/multiprix.php
+++ b/htdocs/comm/multiprix.php
@@ -134,7 +134,7 @@ if ($_socid > 0) {
*/
$sql = "SELECT rc.rowid,rc.price_level, rc.datec as dc, u.rowid as uid, u.login";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_prices as rc, ".MAIN_DB_PREFIX."user as u";
- $sql .= " WHERE rc.fk_soc =".$objsoc->id;
+ $sql .= " WHERE rc.fk_soc = ".((int) $objsoc->id);
$sql .= " AND u.rowid = rc.fk_user_author";
$sql .= " ORDER BY rc.datec DESC";
diff --git a/htdocs/comm/remise.php b/htdocs/comm/remise.php
index bdf9b75998b..a31389340e8 100644
--- a/htdocs/comm/remise.php
+++ b/htdocs/comm/remise.php
@@ -214,7 +214,7 @@ if ($socid > 0) {
$sql = "SELECT rc.rowid, rc.remise_client as remise_percent, rc.note, rc.datec as dc,";
$sql .= " u.login, u.rowid as user_id";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise as rc, ".MAIN_DB_PREFIX."user as u";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql .= " AND rc.entity IN (".getEntity('discount').")";
$sql .= " AND u.rowid = rc.fk_user_author";
$sql .= " ORDER BY rc.datec DESC";
@@ -266,7 +266,7 @@ if ($socid > 0) {
$sql = "SELECT rc.rowid, rc.remise_supplier as remise_percent, rc.note, rc.datec as dc,";
$sql .= " u.login, u.rowid as user_id";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_supplier as rc, ".MAIN_DB_PREFIX."user as u";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql .= " AND rc.entity IN (".getEntity('discount').")";
$sql .= " AND u.rowid = rc.fk_user_author";
$sql .= " ORDER BY rc.datec DESC";
diff --git a/htdocs/comm/remx.php b/htdocs/comm/remx.php
index 8f26d897389..42a5ee42e16 100644
--- a/htdocs/comm/remx.php
+++ b/htdocs/comm/remx.php
@@ -267,8 +267,8 @@ if ($socid > 0) {
$remise_all = $remise_user = 0;
$sql = "SELECT SUM(rc.amount_ht) as amount, rc.fk_user";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as rc";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
- $sql .= " AND rc.entity = ".$conf->entity;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
+ $sql .= " AND rc.entity = ".((int) $conf->entity);
$sql .= " AND discount_type = 0"; // Exclude supplier discounts
$sql .= " AND (fk_facture_line IS NULL AND fk_facture IS NULL)";
$sql .= " GROUP BY rc.fk_user";
@@ -297,8 +297,8 @@ if ($socid > 0) {
$remise_all = $remise_user = 0;
$sql = "SELECT SUM(rc.amount_ht) as amount, rc.fk_user";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as rc";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
- $sql .= " AND rc.entity = ".$conf->entity;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
+ $sql .= " AND rc.entity = ".((int) $conf->entity);
$sql .= " AND discount_type = 1"; // Exclude customer discounts
$sql .= " AND (fk_invoice_supplier_line IS NULL AND fk_invoice_supplier IS NULL)";
$sql .= " GROUP BY rc.fk_user";
@@ -408,8 +408,8 @@ if ($socid > 0) {
$sql .= " fa.ref as ref, fa.type as type";
$sql .= " FROM ".MAIN_DB_PREFIX."user as u, ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."facture as fa ON rc.fk_facture_source = fa.rowid";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
- $sql .= " AND rc.entity = ".$conf->entity;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
+ $sql .= " AND rc.entity = ".((int) $conf->entity);
$sql .= " AND u.rowid = rc.fk_user";
$sql .= " AND rc.discount_type = 0"; // Eliminate supplier discounts
$sql .= " AND (rc.fk_facture_line IS NULL AND rc.fk_facture IS NULL)";
@@ -547,8 +547,8 @@ if ($socid > 0) {
$sql .= " fa.ref, fa.type as type";
$sql .= " FROM ".MAIN_DB_PREFIX."user as u, ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."facture_fourn as fa ON rc.fk_invoice_supplier_source = fa.rowid";
- $sql .= " WHERE rc.fk_soc = ".$object->id;
- $sql .= " AND rc.entity = ".$conf->entity;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
+ $sql .= " AND rc.entity = ".((int) $conf->entity);
$sql .= " AND u.rowid = rc.fk_user";
$sql .= " AND rc.discount_type = 1"; // Eliminate customer discounts
$sql .= " AND (rc.fk_invoice_supplier IS NULL AND rc.fk_invoice_supplier_line IS NULL)";
@@ -700,7 +700,7 @@ if ($socid > 0) {
$sql .= " , ".MAIN_DB_PREFIX."facturedet as fc";
$sql .= " , ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."facture as fa ON rc.fk_facture_source = fa.rowid";
- $sql .= " WHERE rc.fk_soc =".$object->id;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql .= " AND rc.fk_facture_line = fc.rowid";
$sql .= " AND fc.fk_facture = f.rowid";
$sql .= " AND rc.fk_user = u.rowid";
@@ -718,7 +718,7 @@ if ($socid > 0) {
$sql2 .= " , ".MAIN_DB_PREFIX."user as u";
$sql2 .= " , ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql2 .= " LEFT JOIN ".MAIN_DB_PREFIX."facture as fa ON rc.fk_facture_source = fa.rowid";
- $sql2 .= " WHERE rc.fk_soc =".$object->id;
+ $sql2 .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql2 .= " AND rc.fk_facture = f.rowid";
$sql2 .= " AND rc.fk_user = u.rowid";
$sql2 .= " AND rc.discount_type = 0"; // Eliminate supplier discounts
@@ -860,7 +860,7 @@ if ($socid > 0) {
$sql .= " , ".MAIN_DB_PREFIX."facture_fourn_det as fc";
$sql .= " , ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."facture_fourn as fa ON rc.fk_invoice_supplier_source = fa.rowid";
- $sql .= " WHERE rc.fk_soc =".$object->id;
+ $sql .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql .= " AND rc.fk_invoice_supplier_line = fc.rowid";
$sql .= " AND fc.fk_facture_fourn = f.rowid";
$sql .= " AND rc.fk_user = u.rowid";
@@ -878,7 +878,7 @@ if ($socid > 0) {
$sql2 .= " , ".MAIN_DB_PREFIX."user as u";
$sql2 .= " , ".MAIN_DB_PREFIX."societe_remise_except as rc";
$sql2 .= " LEFT JOIN ".MAIN_DB_PREFIX."facture_fourn as fa ON rc.fk_invoice_supplier_source = fa.rowid";
- $sql2 .= " WHERE rc.fk_soc =".$object->id;
+ $sql2 .= " WHERE rc.fk_soc = ".((int) $object->id);
$sql2 .= " AND rc.fk_invoice_supplier = f.rowid";
$sql2 .= " AND rc.fk_user = u.rowid";
$sql2 .= " AND rc.discount_type = 1"; // Eliminate customer discounts
diff --git a/htdocs/compta/bank/class/account.class.php b/htdocs/compta/bank/class/account.class.php
index d2a9554abab..804cfa09281 100644
--- a/htdocs/compta/bank/class/account.class.php
+++ b/htdocs/compta/bank/class/account.class.php
@@ -907,8 +907,8 @@ class Account extends CommonObject
$sql .= ",owner_address = '".$this->db->escape($this->owner_address)."'";
$sql .= ",state_id = ".($this->state_id > 0 ? $this->state_id : "null");
$sql .= ",fk_pays = ".($this->country_id > 0 ? $this->country_id : "null");
- $sql .= " WHERE rowid = ".$this->id;
- $sql .= " AND entity = ".$conf->entity;
+ $sql .= " WHERE rowid = ".((int) $this->id);
+ $sql .= " AND entity = ".((int) $conf->entity);
dol_syslog(get_class($this)."::update_bban", LOG_DEBUG);
@@ -1059,7 +1059,7 @@ class Account extends CommonObject
// Delete link between tag and bank account
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."categorie_account";
- $sql .= " WHERE fk_account = ".$this->id;
+ $sql .= " WHERE fk_account = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -1151,7 +1151,7 @@ class Account extends CommonObject
$sql = "SELECT COUNT(rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."bank";
- $sql .= " WHERE fk_account=".$this->id;
+ $sql .= " WHERE fk_account = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
@@ -1188,7 +1188,7 @@ class Account extends CommonObject
$sql = "SELECT sum(amount) as amount";
$sql .= " FROM ".MAIN_DB_PREFIX."bank";
- $sql .= " WHERE fk_account = ".$this->id;
+ $sql .= " WHERE fk_account = ".((int) $this->id);
if ($option == 1) {
$sql .= " AND dateo <= '".$this->db->idate(dol_now())."'";
}
diff --git a/htdocs/compta/bank/class/bankcateg.class.php b/htdocs/compta/bank/class/bankcateg.class.php
index ccf5828d40a..ab58cb8287c 100644
--- a/htdocs/compta/bank/class/bankcateg.class.php
+++ b/htdocs/compta/bank/class/bankcateg.class.php
@@ -213,7 +213,7 @@ class BankCateg // extends CommonObject
// Delete link between tag and bank account
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."categorie_account";
- $sql .= " WHERE fk_categorie = ".$this->id;
+ $sql .= " WHERE fk_categorie = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -225,7 +225,7 @@ class BankCateg // extends CommonObject
// Delete link between tag and bank lines
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."bank_class";
- $sql .= " WHERE fk_categ = ".$this->id;
+ $sql .= " WHERE fk_categ = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
diff --git a/htdocs/compta/deplacement/class/deplacement.class.php b/htdocs/compta/deplacement/class/deplacement.class.php
index 1972e3f686e..81022e9bc71 100644
--- a/htdocs/compta/deplacement/class/deplacement.class.php
+++ b/htdocs/compta/deplacement/class/deplacement.class.php
@@ -249,7 +249,7 @@ class Deplacement extends CommonObject
$sql .= " , note_private = ".($this->note_private ? "'".$this->db->escape($this->note_private)."'" : "null");
$sql .= " , note_public = ".($this->note_public ? "'".$this->db->escape($this->note_public)."'" : "null");
$sql .= " , fk_projet = ".($this->fk_project > 0 ? $this->fk_project : 0);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update", LOG_DEBUG);
$result = $this->db->query($sql);
diff --git a/htdocs/compta/facture/card.php b/htdocs/compta/facture/card.php
index 31de2bbd4ff..374de5cca4d 100644
--- a/htdocs/compta/facture/card.php
+++ b/htdocs/compta/facture/card.php
@@ -889,7 +889,7 @@ if (empty($reshook)) {
$sql = "SELECT re.rowid, re.amount_ht, re.amount_tva, re.amount_ttc,";
$sql .= " re.description, re.fk_facture_source";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as re";
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
$resql = $db->query($sql);
if (!empty($resql)) {
while ($obj = $db->fetch_object($resql)) {
@@ -4975,7 +4975,7 @@ if ($action == 'create') {
$sql = "SELECT re.rowid, re.amount_ht, re.amount_tva, re.amount_ttc,";
$sql .= " re.description, re.fk_facture_source";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as re";
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$num = $db->num_rows($resql);
diff --git a/htdocs/compta/facture/class/paymentterm.class.php b/htdocs/compta/facture/class/paymentterm.class.php
index 87cd50d27c6..f94ad573a81 100644
--- a/htdocs/compta/facture/class/paymentterm.class.php
+++ b/htdocs/compta/facture/class/paymentterm.class.php
@@ -311,7 +311,7 @@ class PaymentTerm // extends CommonObject
$sql .= " type_cdr=".(isset($this->type_cdr) ? $this->type_cdr : "null").",";
$sql .= " nbjour=".(isset($this->nbjour) ? $this->nbjour : "null").",";
$sql .= " decalage=".(isset($this->decalage) ? $this->decalage : "null")."";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
@@ -350,7 +350,7 @@ class PaymentTerm // extends CommonObject
$error = 0;
$sql = "DELETE FROM ".MAIN_DB_PREFIX."c_payment_term";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
diff --git a/htdocs/compta/facture/prelevement.php b/htdocs/compta/facture/prelevement.php
index 6fdc74a7539..0d2c3070261 100644
--- a/htdocs/compta/facture/prelevement.php
+++ b/htdocs/compta/facture/prelevement.php
@@ -577,9 +577,9 @@ if ($object->id > 0) {
$sql .= " , pfd.amount";
$sql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pfd";
if ($type == 'bank-transfer') {
- $sql .= " WHERE fk_facture_fourn = ".$object->id;
+ $sql .= " WHERE fk_facture_fourn = ".((int) $object->id);
} else {
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
}
$sql .= " AND pfd.traite = 0";
$sql .= " AND pfd.ext_payment_id IS NULL";
@@ -598,9 +598,9 @@ if ($object->id > 0) {
$sql = "SELECT SUM(pfd.amount) as amount";
$sql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pfd";
if ($type == 'bank-transfer') {
- $sql .= " WHERE fk_facture_fourn = ".$object->id;
+ $sql .= " WHERE fk_facture_fourn = ".((int) $object->id);
} else {
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
}
$sql .= " AND pfd.traite = 0";
$sql .= " AND pfd.ext_payment_id IS NULL";
@@ -699,9 +699,9 @@ if ($object->id > 0) {
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."user as u on pfd.fk_user_demande = u.rowid";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."prelevement_bons as pb ON pb.rowid = pfd.fk_prelevement_bons";
if ($type == 'bank-transfer') {
- $sql .= " WHERE fk_facture_fourn = ".$object->id;
+ $sql .= " WHERE fk_facture_fourn = ".((int) $object->id);
} else {
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
}
$sql .= " AND pfd.traite = 0";
$sql .= " AND pfd.ext_payment_id IS NULL";
@@ -765,9 +765,9 @@ if ($object->id > 0) {
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."user as u on pfd.fk_user_demande = u.rowid";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."prelevement_bons as pb ON pb.rowid = pfd.fk_prelevement_bons";
if ($type == 'bank-transfer') {
- $sql .= " WHERE fk_facture_fourn = ".$object->id;
+ $sql .= " WHERE fk_facture_fourn = ".((int) $object->id);
} else {
- $sql .= " WHERE fk_facture = ".$object->id;
+ $sql .= " WHERE fk_facture = ".((int) $object->id);
}
$sql .= " AND pfd.traite = 1";
$sql .= " AND pfd.ext_payment_id IS NULL";
diff --git a/htdocs/compta/paiement/cheque/class/remisecheque.class.php b/htdocs/compta/paiement/cheque/class/remisecheque.class.php
index 683b2fd0423..fe967543fdc 100644
--- a/htdocs/compta/paiement/cheque/class/remisecheque.class.php
+++ b/htdocs/compta/paiement/cheque/class/remisecheque.class.php
@@ -305,7 +305,7 @@ class RemiseCheque extends CommonObject
if ($this->errno === 0) {
$sql = "UPDATE ".MAIN_DB_PREFIX."bank";
$sql .= " SET fk_bordereau = 0";
- $sql .= " WHERE fk_bordereau = ".$this->id;
+ $sql .= " WHERE fk_bordereau = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -647,7 +647,7 @@ class RemiseCheque extends CommonObject
$nb = 0;
$sql = "SELECT amount ";
$sql .= " FROM ".MAIN_DB_PREFIX."bank";
- $sql .= " WHERE fk_bordereau = ".$this->id;
+ $sql .= " WHERE fk_bordereau = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/compta/paiement/class/paiement.class.php b/htdocs/compta/paiement/class/paiement.class.php
index 971400afa5e..94264d0f9f6 100644
--- a/htdocs/compta/paiement/class/paiement.class.php
+++ b/htdocs/compta/paiement/class/paiement.class.php
@@ -788,7 +788,7 @@ class Paiement extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET datep = '".$this->db->idate($date)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if (!$result) {
@@ -839,7 +839,7 @@ class Paiement extends CommonObject
if (!empty($num) && $this->statut != 1) {
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET num_paiement = '".$this->db->escape($num)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_num", LOG_DEBUG);
$result = $this->db->query($sql);
diff --git a/htdocs/compta/prelevement/class/bonprelevement.class.php b/htdocs/compta/prelevement/class/bonprelevement.class.php
index 10c8f304102..a97facc592c 100644
--- a/htdocs/compta/prelevement/class/bonprelevement.class.php
+++ b/htdocs/compta/prelevement/class/bonprelevement.class.php
@@ -1341,18 +1341,14 @@ class BonPrelevement extends CommonObject
}
- // phpcs:disable PEAR.NamingConventions.ValidFunctionName.ScopeNotCamelCaps
/**
* Delete a notification def by id
*
* @param int $rowid id of notification
* @return int 0 if OK, <0 if KO
*/
- public function DeleteNotificationById($rowid)
+ public function deleteNotificationById($rowid)
{
- // phpcs:enable
- $result = 0;
-
$sql = "DELETE FROM ".MAIN_DB_PREFIX."notify_def";
$sql .= " WHERE rowid = ".((int) $rowid);
@@ -1363,21 +1359,23 @@ class BonPrelevement extends CommonObject
}
}
- // phpcs:disable PEAR.NamingConventions.ValidFunctionName.ScopeNotCamelCaps
/**
* Delete a notification
*
- * @param int $user notification user
- * @param string $action notification action
- * @return int >0 if OK, <0 if KO
+ * @param int|User $user notification user
+ * @param string $action notification action
+ * @return int >0 if OK, <0 if KO
*/
- public function DeleteNotification($user, $action)
+ public function deleteNotification($user, $action)
{
- // phpcs:enable
- $result = 0;
+ if (is_object($user)) {
+ $userid = $user->id;
+ } else { // If user is an id
+ $userid = $user;
+ }
$sql = "DELETE FROM ".MAIN_DB_PREFIX."notify_def";
- $sql .= " WHERE fk_user=".$user." AND fk_action='".$this->db->escape($action)."'";
+ $sql .= " WHERE fk_user=".((int) $userid)." AND fk_action='".$this->db->escape($action)."'";
if ($this->db->query($sql)) {
return 0;
@@ -1390,28 +1388,34 @@ class BonPrelevement extends CommonObject
/**
* Add a notification
*
- * @param DoliDB $db database handler
- * @param int $user notification user
- * @param string $action notification action
- * @return int 0 if OK, <0 if KO
+ * @param DoliDB $db database handler
+ * @param int|User $user notification user
+ * @param string $action notification action
+ * @return int 0 if OK, <0 if KO
*/
- public function AddNotification($db, $user, $action)
+ public function addNotification($db, $user, $action)
{
// phpcs:enable
$result = 0;
- if ($this->DeleteNotification($user, $action) == 0) {
+ if (is_object($user)) {
+ $userid = $user->id;
+ } else { // If user is an id
+ $userid = $user;
+ }
+
+ if ($this->deleteNotification($user, $action) == 0) {
$now = dol_now();
$sql = "INSERT INTO ".MAIN_DB_PREFIX."notify_def (datec,fk_user, fk_soc, fk_contact, fk_action)";
- $sql .= " VALUES ('".$this->db->idate($now)."', ".$user.", 'NULL', 'NULL', '".$this->db->escape($action)."')";
+ $sql .= " VALUES ('".$this->db->idate($now)."', ".$userid.", 'NULL', 'NULL', '".$this->db->escape($action)."')";
dol_syslog("adnotiff: ".$sql);
if ($this->db->query($sql)) {
$result = 0;
} else {
$result = -1;
- dol_syslog(get_class($this)."::AddNotification Error $result");
+ dol_syslog(get_class($this)."::addNotification Error $result");
}
}
diff --git a/htdocs/compta/sociales/class/chargesociales.class.php b/htdocs/compta/sociales/class/chargesociales.class.php
index 14b2cf67590..2b80e1bb4f4 100644
--- a/htdocs/compta/sociales/class/chargesociales.class.php
+++ b/htdocs/compta/sociales/class/chargesociales.class.php
@@ -445,7 +445,7 @@ class ChargeSociales extends CommonObject
{
$sql = "UPDATE ".MAIN_DB_PREFIX."chargesociales SET";
$sql .= " paye = 1";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) {
return 1;
@@ -480,7 +480,7 @@ class ChargeSociales extends CommonObject
{
$sql = "UPDATE ".MAIN_DB_PREFIX."chargesociales SET";
$sql .= " paye = 0";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) {
return 1;
diff --git a/htdocs/compta/tva/class/tva.class.php b/htdocs/compta/tva/class/tva.class.php
index 45d3d2e74b4..c412072ec89 100644
--- a/htdocs/compta/tva/class/tva.class.php
+++ b/htdocs/compta/tva/class/tva.class.php
@@ -247,7 +247,7 @@ class Tva extends CommonObject
// phpcs:enable
$sql = "UPDATE ".MAIN_DB_PREFIX."tva SET";
$sql .= " paye = 1";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
return 1;
@@ -267,7 +267,7 @@ class Tva extends CommonObject
// phpcs:enable
$sql = "UPDATE ".MAIN_DB_PREFIX."tva SET";
$sql .= " paye = 0";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
return 1;
diff --git a/htdocs/contrat/class/contrat.class.php b/htdocs/contrat/class/contrat.class.php
index f364e82dd68..9b2364f7233 100644
--- a/htdocs/contrat/class/contrat.class.php
+++ b/htdocs/contrat/class/contrat.class.php
@@ -3202,7 +3202,7 @@ class ContratLigne extends CommonObjectLine
$sql .= ",total_localtax1=".price2num($this->total_localtax1, 'MT')."";
$sql .= ",total_localtax2=".price2num($this->total_localtax2, 'MT')."";
$sql .= ",total_ttc=".price2num($this->total_ttc, 'MT')."";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_total", LOG_DEBUG);
diff --git a/htdocs/core/class/commonincoterm.class.php b/htdocs/core/class/commonincoterm.class.php
index 25745bb4c5c..11af43c2914 100644
--- a/htdocs/core/class/commonincoterm.class.php
+++ b/htdocs/core/class/commonincoterm.class.php
@@ -109,7 +109,7 @@ trait CommonIncoterm
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET fk_incoterms = ".($id_incoterm > 0 ? $id_incoterm : "null");
$sql .= ", location_incoterms = ".($id_incoterm > 0 ? "'".$this->db->escape($location)."'" : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this).'::setIncoterms', LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index a7049ea5a76..89d7cb1c7d0 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -2782,7 +2782,7 @@ abstract class CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET model_pdf = '".$this->db->escape($newmodelpdf)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setDocModel", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -4500,7 +4500,7 @@ abstract class CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET extraparams = ".(!empty($extraparams) ? "'".$this->db->escape($extraparams)."'" : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setExtraParameters", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -9223,7 +9223,7 @@ abstract class CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET ".$statusfield." = ".((int) $status);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
if (!$error) {
diff --git a/htdocs/core/class/discount.class.php b/htdocs/core/class/discount.class.php
index eaf4bc511c8..07c6a509815 100644
--- a/htdocs/core/class/discount.class.php
+++ b/htdocs/core/class/discount.class.php
@@ -434,7 +434,7 @@ class DiscountAbsolute
$sql .= " SET fk_facture = ".((int) $rowidinvoice);
}
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::link_to_invoice", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -470,7 +470,7 @@ class DiscountAbsolute
} else {
$sql .= " SET fk_facture_line = NULL, fk_facture = NULL";
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::unlink_invoice", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/core/class/link.class.php b/htdocs/core/class/link.class.php
index be81c1e2737..5e008a1e1ac 100644
--- a/htdocs/core/class/link.class.php
+++ b/htdocs/core/class/link.class.php
@@ -182,7 +182,7 @@ class Link extends CommonObject
$sql .= ", label = '".$this->db->escape($this->label)."'";
$sql .= ", objecttype = '".$this->db->escape($this->objecttype)."'";
$sql .= ", objectid = ".$this->objectid;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update sql = ".$sql);
$resql = $this->db->query($sql);
@@ -365,7 +365,7 @@ class Link extends CommonObject
// Remove link
$sql = "DELETE FROM ".MAIN_DB_PREFIX."links";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::delete", LOG_DEBUG);
if (!$this->db->query($sql)) {
diff --git a/htdocs/delivery/class/delivery.class.php b/htdocs/delivery/class/delivery.class.php
index 019187fca28..de991d50f4e 100644
--- a/htdocs/delivery/class/delivery.class.php
+++ b/htdocs/delivery/class/delivery.class.php
@@ -189,7 +189,7 @@ class Delivery extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."delivery ";
$sql .= "SET ref = '".$this->db->escape($numref)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog("Delivery::create", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -427,7 +427,7 @@ class Delivery extends CommonObject
$sql .= ", fk_statut = 1";
$sql .= ", date_valid = '".$this->db->idate($now)."'";
$sql .= ", fk_user_valid = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$sql .= " AND fk_statut = 0";
$resql = $this->db->query($sql);
@@ -651,7 +651,7 @@ class Delivery extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."delivery";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
$this->db->commit();
@@ -1001,7 +1001,7 @@ class Delivery extends CommonObject
if ($user->rights->expedition->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."delivery";
$sql .= " SET date_delivery = ".($delivery_date ? "'".$this->db->idate($delivery_date)."'" : 'null');
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setDeliveryDate", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/ecm/class/ecmdirectory.class.php b/htdocs/ecm/class/ecmdirectory.class.php
index c2961794bbc..3c7af135922 100644
--- a/htdocs/ecm/class/ecmdirectory.class.php
+++ b/htdocs/ecm/class/ecmdirectory.class.php
@@ -305,7 +305,7 @@ class EcmDirectory extends CommonObject
} else {
$sql .= " cachenbofdoc = cachenbofdoc ".$value." 1";
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::changeNbOfFiles", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -764,7 +764,7 @@ class EcmDirectory extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."ecm_directories SET";
$sql .= " cachenbofdoc = '".count($filelist)."'";
if (empty($all)) { // By default
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
} else {
$sql .= " WHERE entity = ".$conf->entity;
}
diff --git a/htdocs/eventorganization/class/conferenceorboothattendee.class.php b/htdocs/eventorganization/class/conferenceorboothattendee.class.php
index b6c80feadd4..cdc350480c5 100644
--- a/htdocs/eventorganization/class/conferenceorboothattendee.class.php
+++ b/htdocs/eventorganization/class/conferenceorboothattendee.class.php
@@ -558,7 +558,7 @@ class ConferenceOrBoothAttendee extends CommonObject
if (!empty($this->fields['fk_user_valid'])) {
$sql .= ", fk_user_valid = ".$user->id;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/expedition/class/expedition.class.php b/htdocs/expedition/class/expedition.class.php
index 85245b38e89..a60f3c88c6a 100644
--- a/htdocs/expedition/class/expedition.class.php
+++ b/htdocs/expedition/class/expedition.class.php
@@ -363,7 +363,7 @@ class Expedition extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."expedition";
$sql .= " SET ref = '(PROV".$this->id.")'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::create", LOG_DEBUG);
if ($this->db->query($sql)) {
@@ -711,7 +711,7 @@ class Expedition extends CommonObject
$sql .= ", fk_statut = 1";
$sql .= ", date_valid = '".$this->db->idate($now)."'";
$sql .= ", fk_user_valid = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::valid update expedition", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1297,7 +1297,7 @@ class Expedition extends CommonObject
// No delete expedition
if (!$error) {
$sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."expedition";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
if (!empty($this->origin) && $this->origin_id > 0) {
@@ -1489,7 +1489,7 @@ class Expedition extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."expedition";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
if (!empty($this->origin) && $this->origin_id > 0) {
@@ -1973,7 +1973,7 @@ class Expedition extends CommonObject
if ($user->rights->expedition->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."expedition";
$sql .= " SET date_delivery = ".($delivery_date ? "'".$this->db->idate($delivery_date)."'" : 'null');
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setDeliveryDate", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -2814,7 +2814,7 @@ class ExpeditionLigne extends CommonObjectLine
}
$sql = "DELETE FROM ".MAIN_DB_PREFIX."expeditiondet";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if (!$error && $this->db->query($sql)) {
// Remove extrafields
diff --git a/htdocs/expensereport/class/expensereport.class.php b/htdocs/expensereport/class/expensereport.class.php
index b3601c00deb..a83ef94e520 100644
--- a/htdocs/expensereport/class/expensereport.class.php
+++ b/htdocs/expensereport/class/expensereport.class.php
@@ -495,7 +495,7 @@ class ExpenseReport extends CommonObject
$sql .= " , note_public = ".(!empty($this->note_public) ? "'".$this->db->escape($this->note_public)."'" : "''");
$sql .= " , note_private = ".(!empty($this->note_private) ? "'".$this->db->escape($this->note_private)."'" : "''");
$sql .= " , detail_refuse = ".(!empty($this->detail_refuse) ? "'".$this->db->escape($this->detail_refuse)."'" : "''");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update sql=".$sql, LOG_DEBUG);
$result = $this->db->query($sql);
@@ -1252,7 +1252,7 @@ class ExpenseReport extends CommonObject
$sql .= " fk_statut = ".self::STATUS_VALIDATED.",";
$sql .= " date_valid='".$this->db->idate($this->date_valid)."',";
$sql .= " fk_user_valid = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
@@ -1746,7 +1746,7 @@ class ExpenseReport extends CommonObject
$sql .= " total_ht = ".$this->total_ht;
$sql .= " , total_ttc = ".$this->total_ttc;
$sql .= " , total_tva = ".$this->total_tva;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) :
@@ -1776,7 +1776,7 @@ class ExpenseReport extends CommonObject
$sql .= " total_ht = ".$this->total_ht;
$sql .= " , total_ttc = ".$this->total_ttc;
$sql .= " , total_tva = ".$this->total_tva;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) :
diff --git a/htdocs/fichinter/class/fichinter.class.php b/htdocs/fichinter/class/fichinter.class.php
index 371853dc70c..6da1a30b618 100644
--- a/htdocs/fichinter/class/fichinter.class.php
+++ b/htdocs/fichinter/class/fichinter.class.php
@@ -1004,7 +1004,7 @@ class Fichinter extends CommonObject
if (!$error) {
// Delete object
$sql = "DELETE FROM ".MAIN_DB_PREFIX."fichinter";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog("Fichinter::delete", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1066,7 +1066,7 @@ class Fichinter extends CommonObject
if ($user->rights->ficheinter->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."fichinter ";
$sql .= " SET datei = '".$this->db->idate($date_delivery)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$sql .= " AND fk_statut = 0";
if ($this->db->query($sql)) {
@@ -1097,7 +1097,7 @@ class Fichinter extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."fichinter ";
$sql .= " SET description = '".$this->db->escape($description)."',";
$sql .= " fk_user_modif = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
$this->description = $description;
@@ -1127,7 +1127,7 @@ class Fichinter extends CommonObject
if ($user->rights->ficheinter->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."fichinter ";
$sql .= " SET fk_contrat = ".((int) $contractid);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
$this->fk_contrat = $contractid;
diff --git a/htdocs/fichinter/class/fichinterrec.class.php b/htdocs/fichinter/class/fichinterrec.class.php
index 4fe35c32a2c..9aec232cf0a 100644
--- a/htdocs/fichinter/class/fichinterrec.class.php
+++ b/htdocs/fichinter/class/fichinterrec.class.php
@@ -599,7 +599,7 @@ class FichinterRec extends Fichinter
$sql = "UPDATE ".MAIN_DB_PREFIX."fichinter_rec ";
$sql .= " SET frequency='".$this->db->escape($freq)."'";
$sql .= ", date_last_gen='".$this->db->escape($courant)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
diff --git a/htdocs/fourn/class/fournisseur.facture.class.php b/htdocs/fourn/class/fournisseur.facture.class.php
index abb5b01fb2c..f7c7ee26e1c 100644
--- a/htdocs/fourn/class/fournisseur.facture.class.php
+++ b/htdocs/fourn/class/fournisseur.facture.class.php
@@ -1579,7 +1579,7 @@ class FactureFournisseur extends CommonInvoice
$sql = "UPDATE ".MAIN_DB_PREFIX."facture_fourn";
$sql .= " SET ref='".$this->db->escape($num)."', fk_statut = 1, fk_user_valid = ".((int) $user->id).", date_valid = '".$this->db->idate($now)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1706,7 +1706,7 @@ class FactureFournisseur extends CommonInvoice
$sql = "UPDATE ".MAIN_DB_PREFIX."facture_fourn";
$sql .= " SET fk_statut = ".self::STATUS_DRAFT;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
diff --git a/htdocs/hrm/class/establishment.class.php b/htdocs/hrm/class/establishment.class.php
index 2cac4a1352b..cbbe1670a09 100644
--- a/htdocs/hrm/class/establishment.class.php
+++ b/htdocs/hrm/class/establishment.class.php
@@ -231,7 +231,7 @@ class Establishment extends CommonObject
$this->id = $this->db->last_insert_id(MAIN_DB_PREFIX.'establishment');
$sql = 'UPDATE '.MAIN_DB_PREFIX."establishment SET ref = '".$this->db->escape($this->id)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->query($sql);
$this->db->commit();
diff --git a/htdocs/loan/class/loan.class.php b/htdocs/loan/class/loan.class.php
index 91f384703a9..2e51b3871a9 100644
--- a/htdocs/loan/class/loan.class.php
+++ b/htdocs/loan/class/loan.class.php
@@ -404,7 +404,7 @@ class Loan extends CommonObject
{
$sql = "UPDATE ".MAIN_DB_PREFIX."loan SET";
$sql .= " paid = ".$this::STATUS_PAID;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) {
return 1;
@@ -440,7 +440,7 @@ class Loan extends CommonObject
{
$sql = "UPDATE ".MAIN_DB_PREFIX."loan SET";
$sql .= " paid = ".$this::STATUS_STARTED;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) {
return 1;
@@ -475,7 +475,7 @@ class Loan extends CommonObject
{
$sql = "UPDATE ".MAIN_DB_PREFIX."loan SET";
$sql .= " paid = ".$this::STATUS_UNPAID;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) {
return 1;
diff --git a/htdocs/mrp/class/mo.class.php b/htdocs/mrp/class/mo.class.php
index df5dcba60ad..b00aa6e8b91 100644
--- a/htdocs/mrp/class/mo.class.php
+++ b/htdocs/mrp/class/mo.class.php
@@ -838,7 +838,7 @@ class Mo extends CommonObject
$sql .= " status = ".self::STATUS_VALIDATED.",";
$sql .= " date_valid='".$this->db->idate($now)."',";
$sql .= " fk_user_valid = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/partnership/class/partnership.class.php b/htdocs/partnership/class/partnership.class.php
index feef3c7e81f..6de34719f77 100644
--- a/htdocs/partnership/class/partnership.class.php
+++ b/htdocs/partnership/class/partnership.class.php
@@ -627,7 +627,7 @@ class Partnership extends CommonObject
if (!empty($this->fields['fk_user_valid'])) {
$sql .= ", fk_user_valid = ".$user->id;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -751,7 +751,7 @@ class Partnership extends CommonObject
// if (!empty($this->fields['fk_user_valid'])) {
// $sql .= ", fk_user_valid = ".$user->id;
// }
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::accept()", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/product/class/product.class.php b/htdocs/product/class/product.class.php
index e7d568f87d4..fc8f5cc4720 100644
--- a/htdocs/product/class/product.class.php
+++ b/htdocs/product/class/product.class.php
@@ -1603,7 +1603,7 @@ class Product extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET ";
$sql .= "$field = '".$this->db->escape($value)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(__METHOD__." sql=".$sql, LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/product/dynamic_price/class/price_expression.class.php b/htdocs/product/dynamic_price/class/price_expression.class.php
index db0c427c334..2a7f35a436b 100644
--- a/htdocs/product/dynamic_price/class/price_expression.class.php
+++ b/htdocs/product/dynamic_price/class/price_expression.class.php
@@ -257,7 +257,7 @@ class PriceExpression
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET";
$sql .= " title = ".(isset($this->title) ? "'".$this->db->escape($this->title)."'" : "''").",";
$sql .= " expression = ".(isset($this->expression) ? "'".$this->db->escape($this->expression)."'" : "''")."";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
diff --git a/htdocs/product/dynamic_price/class/price_global_variable.class.php b/htdocs/product/dynamic_price/class/price_global_variable.class.php
index 87cb8dea2c5..217ab25463a 100644
--- a/htdocs/product/dynamic_price/class/price_global_variable.class.php
+++ b/htdocs/product/dynamic_price/class/price_global_variable.class.php
@@ -183,7 +183,7 @@ class PriceGlobalVariable
$sql .= " code = ".(isset($this->code) ? "'".$this->db->escape($this->code)."'" : "''").",";
$sql .= " description = ".(isset($this->description) ? "'".$this->db->escape($this->description)."'" : "''").",";
$sql .= " value = ".((float) $this->value);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
diff --git a/htdocs/product/dynamic_price/class/price_global_variable_updater.class.php b/htdocs/product/dynamic_price/class/price_global_variable_updater.class.php
index 331a65971b6..e24ff2c6769 100644
--- a/htdocs/product/dynamic_price/class/price_global_variable_updater.class.php
+++ b/htdocs/product/dynamic_price/class/price_global_variable_updater.class.php
@@ -207,7 +207,7 @@ class PriceGlobalVariableUpdater
$sql .= " update_interval = ".((int) $this->update_interval).",";
$sql .= " next_update = ".((int) $this->next_update).",";
$sql .= " last_status = ".(isset($this->last_status) ? "'".$this->db->escape($this->last_status)."'" : "''");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
@@ -570,7 +570,7 @@ class PriceGlobalVariableUpdater
// Update request
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET";
$sql .= " next_update = ".$this->next_update;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
@@ -614,7 +614,7 @@ class PriceGlobalVariableUpdater
// Update request
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET";
$sql .= " last_status = ".(isset($this->last_status) ? "'".$this->db->escape($this->last_status)."'" : "''");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
diff --git a/htdocs/product/stock/class/entrepot.class.php b/htdocs/product/stock/class/entrepot.class.php
index 92df16fa867..55ee6abf8fa 100644
--- a/htdocs/product/stock/class/entrepot.class.php
+++ b/htdocs/product/stock/class/entrepot.class.php
@@ -389,7 +389,7 @@ class Entrepot extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."entrepot";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql1 = $this->db->query($sql);
if (!$resql1) {
$error++;
diff --git a/htdocs/projet/class/project.class.php b/htdocs/projet/class/project.class.php
index 905fbcb9216..16501940949 100644
--- a/htdocs/projet/class/project.class.php
+++ b/htdocs/projet/class/project.class.php
@@ -1080,7 +1080,7 @@ class Project extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."projet";
$sql .= " SET fk_statut = ".self::STATUS_CLOSED.", fk_user_close = ".((int) $user->id).", date_close = '".$this->db->idate($now)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$sql .= " AND fk_statut = ".self::STATUS_VALIDATED;
if (!empty($conf->global->PROJECT_USE_OPPORTUNITIES)) {
diff --git a/htdocs/projet/class/task.class.php b/htdocs/projet/class/task.class.php
index 2917b2ce811..70a38a6818b 100644
--- a/htdocs/projet/class/task.class.php
+++ b/htdocs/projet/class/task.class.php
@@ -1661,7 +1661,7 @@ class Task extends CommonObject
if (!$error) {
$sql = "UPDATE ".MAIN_DB_PREFIX."projet_task";
$sql .= " SET duration_effective = duration_effective - ".$this->db->escape($this->timespent_duration ? $this->timespent_duration : 0);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::delTimeSpent", LOG_DEBUG);
if ($this->db->query($sql)) {
diff --git a/htdocs/reception/class/reception.class.php b/htdocs/reception/class/reception.class.php
index e1e2c857bc0..948822c1983 100644
--- a/htdocs/reception/class/reception.class.php
+++ b/htdocs/reception/class/reception.class.php
@@ -288,7 +288,7 @@ class Reception extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."reception";
$sql .= " SET ref = '(PROV".$this->id.")'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::create", LOG_DEBUG);
if ($this->db->query($sql)) {
@@ -543,7 +543,7 @@ class Reception extends CommonObject
$sql .= ", fk_statut = 1";
$sql .= ", date_valid = '".$this->db->idate($now)."'";
$sql .= ", fk_user_valid = ".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::valid update reception", LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -954,7 +954,7 @@ class Reception extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."reception";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if ($this->db->query($sql)) {
// Call trigger
@@ -1260,7 +1260,7 @@ class Reception extends CommonObject
if ($user->rights->reception->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."reception";
$sql .= " SET date_delivery = ".($delivery_date ? "'".$this->db->idate($delivery_date)."'" : 'null');
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::setDeliveryDate", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1755,7 +1755,7 @@ class Reception extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."reception";
$sql .= " SET fk_statut = ".self::STATUS_DRAFT;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(__METHOD__, LOG_DEBUG);
if ($this->db->query($sql)) {
diff --git a/htdocs/recruitment/class/recruitmentcandidature.class.php b/htdocs/recruitment/class/recruitmentcandidature.class.php
index 0069ce2d30f..3c5cf401a92 100644
--- a/htdocs/recruitment/class/recruitmentcandidature.class.php
+++ b/htdocs/recruitment/class/recruitmentcandidature.class.php
@@ -519,7 +519,7 @@ class RecruitmentCandidature extends CommonObject
if (!empty($this->fields['fk_user_valid'])) {
$sql .= ", fk_user_valid = ".$user->id;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/recruitment/class/recruitmentjobposition.class.php b/htdocs/recruitment/class/recruitmentjobposition.class.php
index 892ba4121e9..7e44aad7b64 100644
--- a/htdocs/recruitment/class/recruitmentjobposition.class.php
+++ b/htdocs/recruitment/class/recruitmentjobposition.class.php
@@ -528,7 +528,7 @@ class RecruitmentJobPosition extends CommonObject
if (!empty($this->fields['fk_user_valid'])) {
$sql .= ", fk_user_valid = ".$user->id;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -672,7 +672,7 @@ class RecruitmentJobPosition extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET status = ".((int) $status).", note_private = '".$this->db->escape($newprivatenote)."'";
//$sql .= ", date_cloture='".$this->db->idate($now)."', fk_user_cloture=".$user->id;
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/salaries/class/salary.class.php b/htdocs/salaries/class/salary.class.php
index cc50c57ec84..ab1e06f3b34 100644
--- a/htdocs/salaries/class/salary.class.php
+++ b/htdocs/salaries/class/salary.class.php
@@ -639,7 +639,7 @@ class Salary extends CommonObject
// phpcs:enable
$sql = "UPDATE ".MAIN_DB_PREFIX."salary SET";
$sql .= " paye = 1";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) return 1;
else return -1;
@@ -657,7 +657,7 @@ class Salary extends CommonObject
// phpcs:enable
$sql = "UPDATE ".MAIN_DB_PREFIX."salary SET";
$sql .= " paye = 0";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$return = $this->db->query($sql);
if ($return) return 1;
else return -1;
diff --git a/htdocs/societe/class/companybankaccount.class.php b/htdocs/societe/class/companybankaccount.class.php
index 9b767cde34c..f4e871fce83 100644
--- a/htdocs/societe/class/companybankaccount.class.php
+++ b/htdocs/societe/class/companybankaccount.class.php
@@ -171,7 +171,7 @@ class CompanyBankAccount extends Account
} else {
$sql .= ",label = NULL";
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
diff --git a/htdocs/societe/class/societe.class.php b/htdocs/societe/class/societe.class.php
index fa19b23e6cd..0dd3e31da01 100644
--- a/htdocs/societe/class/societe.class.php
+++ b/htdocs/societe/class/societe.class.php
@@ -2058,7 +2058,7 @@ class Societe extends CommonObject
}
$sql = "UPDATE ".MAIN_DB_PREFIX."societe";
$sql .= " SET client = ".((int) $newclient);
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
@@ -2102,7 +2102,7 @@ class Societe extends CommonObject
// Position current discount
$sql = "UPDATE ".MAIN_DB_PREFIX."societe ";
$sql .= " SET remise_client = '".$this->db->escape($remise)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
$this->db->rollback();
@@ -2161,7 +2161,7 @@ class Societe extends CommonObject
// Position current discount
$sql = "UPDATE ".MAIN_DB_PREFIX."societe ";
$sql .= " SET remise_supplier = '".$this->db->escape($remise)."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
$this->db->rollback();
@@ -4685,7 +4685,7 @@ class Societe extends CommonObject
if ($this->id) {
$sql = "UPDATE ".MAIN_DB_PREFIX."societe";
$sql .= " SET fk_typent = ".($typent_id > 0 ? $typent_id : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this).'::setThirdpartyType', LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/ticket/class/ticket.class.php b/htdocs/ticket/class/ticket.class.php
index 3961fefedf2..1ffec54ed22 100644
--- a/htdocs/ticket/class/ticket.class.php
+++ b/htdocs/ticket/class/ticket.class.php
@@ -1402,7 +1402,7 @@ class Ticket extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."ticket";
$sql .= " SET fk_statut = ".Ticket::STATUS_READ.", date_read='".$this->db->idate(dol_now())."'";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::markAsRead");
$resql = $this->db->query($sql);
@@ -1460,7 +1460,7 @@ class Ticket extends CommonObject
} else {
$sql .= " SET fk_user_assign=null, fk_statut = ".Ticket::STATUS_READ;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::assignUser sql=".$sql);
$resql = $this->db->query($sql);
@@ -1944,7 +1944,7 @@ class Ticket extends CommonObject
if ($this->id) {
$sql = "UPDATE ".MAIN_DB_PREFIX."ticket";
$sql .= " SET fk_soc = ".($id > 0 ? $id : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this).'::setCustomer sql='.$sql);
$resql = $this->db->query($sql);
if ($resql) {
@@ -1968,7 +1968,7 @@ class Ticket extends CommonObject
if ($this->id) {
$sql = "UPDATE ".MAIN_DB_PREFIX."ticket";
$sql .= " SET progress = ".($percent > 0 ? $percent : "null");
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this).'::set_progression sql='.$sql);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/user/class/userbankaccount.class.php b/htdocs/user/class/userbankaccount.class.php
index 7323fb93ab2..d9392ade9d7 100644
--- a/htdocs/user/class/userbankaccount.class.php
+++ b/htdocs/user/class/userbankaccount.class.php
@@ -140,7 +140,7 @@ class UserBankAccount extends Account
} else {
$sql .= ",label = NULL";
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
diff --git a/htdocs/workstation/class/workstation.class.php b/htdocs/workstation/class/workstation.class.php
index 5cb6baf3565..03d1e6e3dd4 100755
--- a/htdocs/workstation/class/workstation.class.php
+++ b/htdocs/workstation/class/workstation.class.php
@@ -599,7 +599,7 @@ class Workstation extends CommonObject
if (!empty($this->fields['fk_user_valid'])) {
$sql .= ", fk_user_valid = ".$user->id;
}
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::validate()", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/test/phpunit/CodingPhpTest.php b/test/phpunit/CodingPhpTest.php
index 2d9bfeac49d..5ba74969107 100644
--- a/test/phpunit/CodingPhpTest.php
+++ b/test/phpunit/CodingPhpTest.php
@@ -286,9 +286,9 @@ class CodingPhpTest extends PHPUnit\Framework\TestCase
$ok=true;
$matches=array();
- // Check sql string AND ... yyy = ".$xxx
+ // Check sql string DELETE|OR|AND|WHERE|INSERT ... yyy = ".$xxx
// with xxx that is not 'thi' (for $this->db->sanitize) and 'db-' (for $db->sanitize). It means we forget a ' if string or an (int) if int when forging sql request.
- preg_match_all('/(DELETE|OR|AND)\s.*([^\s][^\s][^\s])\s*=\s*"\s*\.\s*\$(...)/', $filecontent, $matches, PREG_SET_ORDER);
+ preg_match_all('/(DELETE|OR|AND|WHERE|INSERT)\s.*([^\s][^\s][^\s])\s*=\s*"\s*\.\s*\$(...)/', $filecontent, $matches, PREG_SET_ORDER);
foreach ($matches as $key => $val) {
if ($val[2] == 'ity' && $val[3] == 'con') {
continue;
@@ -314,7 +314,7 @@ class CodingPhpTest extends PHPUnit\Framework\TestCase
$this->assertTrue($ok, 'Found non escaped string in building of a sql request '.$file['relativename'].' - Bad.');
// Check string sql|set...'".$yyy->xxx with xxx that is not 'escape', 'idate', .... It means we forget a db->escape when forging sql request.
- preg_match_all('/(sql|SET).+\s*\'"\s*\.\s*\$(.........)/', $filecontent, $matches, PREG_SET_ORDER);
+ preg_match_all('/(sql|SET|WHERE).+\s*\'"\s*\.\s*\$(.........)/', $filecontent, $matches, PREG_SET_ORDER);
foreach ($matches as $key => $val) {
if (! in_array($val[2], array('this->db-', 'this->esc', 'db->escap', 'dbsession', 'db->idate', 'excludeGr', 'includeGr'))) {
$ok=false;
From b492d49908057dd06c8dfdbbd7e13a0985a21ba1 Mon Sep 17 00:00:00 2001
From: Florian HENRY
Date: Fri, 27 Aug 2021 17:27:05 +0200
Subject: [PATCH 061/117] add hidden option to display date and duration in
invoice generation from task time spent
---
htdocs/projet/tasks/time.php | 11 ++++++++++-
1 file changed, 10 insertions(+), 1 deletion(-)
diff --git a/htdocs/projet/tasks/time.php b/htdocs/projet/tasks/time.php
index 11913957bc5..c438f8c133a 100644
--- a/htdocs/projet/tasks/time.php
+++ b/htdocs/projet/tasks/time.php
@@ -462,6 +462,15 @@ if ($action == 'confirm_generateinvoice') {
$arrayoftasks[$object->timespent_id]['timespent'] = $object->timespent_duration;
$arrayoftasks[$object->timespent_id]['totalvaluetodivideby3600'] = $object->timespent_duration * $object->timespent_thm;
$arrayoftasks[$object->timespent_id]['note'] = $ftask->ref.' - '.$ftask->label.' - '.$username.($object->timespent_note ? ' - '.$object->timespent_note : ''); // TODO Add user name in note
+ if (!empty($conf->global->PROJECT_TIME_SPENT_INTO_INVOICE_ADD_TIME_DT)) {
+ $arrayoftasks[$object->timespent_id]['note'] = "\n";
+ if (!empty($object->timespent_withhour)) {
+ $arrayoftasks[$object->timespent_id]['note'] .= $langs->trans("Date") . ': ' . dol_print_date($object->timespent_datehour);
+ } else {
+ $arrayoftasks[$object->timespent_id]['note'] .= $langs->trans("Date") . ': ' . dol_print_date($object->timespent_date);
+ }
+ $arrayoftasks[$object->timespent_id]['note'] .= ' - '.$langs->trans("Duration").': '.convertSecondToTime($object->timespent_duration, 'all', $conf->global->MAIN_DURATION_OF_WORKDAY);
+ }
$arrayoftasks[$object->timespent_id]['user'] = $object->timespent_fk_user;
}
@@ -471,7 +480,6 @@ if ($action == 'confirm_generateinvoice') {
// Define qty per hour
$qtyhour = $value['timespent'] / 3600;
- $qtyhourtext = convertSecondToTime($value['timespent'], 'all', $conf->global->MAIN_DURATION_OF_WORKDAY);
// If no unit price known
if (empty($pu_ht)) {
@@ -851,6 +859,7 @@ if (($id > 0 || !empty($ref)) || $projectidforalltimes > 0) {
}
$massactionbutton = '';
+ $arrayofmassactions = array();
if ($projectstatic->usage_bill_time) {
$arrayofmassactions = array(
'generateinvoice'=>$langs->trans("GenerateBill"),
From 3b6559b1a623d39fc4b52d93f0b23408e0128e43 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Fri, 27 Aug 2021 18:18:50 +0200
Subject: [PATCH 062/117] Clean code by adding cast int.
---
.../class/rejetprelevement.class.php | 6 +--
htdocs/compta/tva/class/paymentvat.class.php | 2 +-
htdocs/contact/class/contact.class.php | 10 ++--
htdocs/contrat/card.php | 2 +-
htdocs/contrat/class/contrat.class.php | 20 ++++----
htdocs/core/boxes/box_produits.php | 4 +-
.../core/boxes/box_produits_alerte_stock.php | 4 +-
htdocs/core/class/commonobject.class.php | 30 ++++++------
htdocs/core/class/html.form.class.php | 2 +-
htdocs/core/db/pgsql.class.php | 6 +--
htdocs/core/lib/admin.lib.php | 4 +-
htdocs/core/lib/company.lib.php | 24 +++++-----
htdocs/core/lib/functions.lib.php | 6 ++-
htdocs/core/lib/functions2.lib.php | 6 +--
htdocs/core/lib/invoice.lib.php | 6 +--
htdocs/core/lib/project.lib.php | 6 +--
.../modules/mailings/modules_mailings.php | 6 +--
.../core/modules/modReceiptPrinter.class.php | 5 +-
.../stock/doc/pdf_standard.modules.php | 4 +-
htdocs/don/class/don.class.php | 2 +-
htdocs/expedition/class/expedition.class.php | 4 +-
htdocs/fourn/card.php | 6 +--
htdocs/fourn/class/fournisseur.class.php | 2 +-
.../class/fournisseur.commande.class.php | 6 +--
.../fourn/class/fournisseur.facture.class.php | 14 +++---
.../fourn/class/fournisseur.product.class.php | 6 +--
htdocs/fourn/commande/dispatch.php | 16 +++----
htdocs/fourn/facture/card.php | 5 +-
htdocs/fourn/facture/list.php | 2 +-
htdocs/holiday/class/holiday.class.php | 6 +--
htdocs/install/repair.php | 2 +-
htdocs/install/upgrade2.php | 46 +++++++++----------
htdocs/loan/class/loanschedule.class.php | 5 +-
.../mailmanspip/class/mailmanspip.class.php | 4 +-
htdocs/mrp/class/mo.class.php | 2 +-
htdocs/product/class/product.class.php | 40 ++++++++--------
.../class/productcustomerprice.class.php | 2 +-
.../class/propalmergepdfproduct.class.php | 2 +-
htdocs/product/fournisseurs.php | 2 +-
htdocs/product/list.php | 4 +-
htdocs/product/reassortlot.php | 5 +-
htdocs/product/stock/card.php | 4 +-
htdocs/product/stock/class/entrepot.class.php | 6 +--
htdocs/projet/class/project.class.php | 4 +-
htdocs/projet/class/task.class.php | 10 ++--
htdocs/resource/class/dolresource.class.php | 2 +-
htdocs/salaries/class/salary.class.php | 2 +-
.../class/companybankaccount.class.php | 2 +-
htdocs/societe/class/societe.class.php | 25 +++++-----
htdocs/stripe/class/stripe.class.php | 8 ++--
htdocs/takepos/floors.php | 8 ++--
htdocs/ticket/class/ticket.class.php | 2 +-
htdocs/user/bank.php | 8 ++--
htdocs/user/card.php | 6 +--
test/phpunit/CodingPhpTest.php | 5 +-
55 files changed, 215 insertions(+), 213 deletions(-)
diff --git a/htdocs/compta/prelevement/class/rejetprelevement.class.php b/htdocs/compta/prelevement/class/rejetprelevement.class.php
index db92da8ce90..4a515357495 100644
--- a/htdocs/compta/prelevement/class/rejetprelevement.class.php
+++ b/htdocs/compta/prelevement/class/rejetprelevement.class.php
@@ -222,8 +222,8 @@ class RejetPrelevement
$sql = "SELECT fk_user_demande";
$sql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pfd";
- $sql .= " WHERE pfd.fk_prelevement_bons = ".$this->bon_id;
- $sql .= " AND pfd.fk_facture".($this->type == 'bank-transfer' ? '_fourn=' : '=').$fac->id;
+ $sql .= " WHERE pfd.fk_prelevement_bons = ".((int) $this->bon_id);
+ $sql .= " AND pfd.fk_facture".($this->type == 'bank-transfer' ? '_fourn' : '').' = '.((int) $fac->id);
$resql = $this->db->query($sql);
if ($resql) {
@@ -296,7 +296,7 @@ class RejetPrelevement
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."facture as f ON (pf.fk_facture = f.rowid)";
}
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."prelevement_lignes as pl ON (pf.fk_prelevement_lignes = pl.rowid)";
- $sql .= " WHERE pf.fk_prelevement_lignes = ".$this->id;
+ $sql .= " WHERE pf.fk_prelevement_lignes = ".((int) $this->id);
$sql .= " AND f.entity IN (".getEntity('invoice').")";
$resql = $this->db->query($sql);
diff --git a/htdocs/compta/tva/class/paymentvat.class.php b/htdocs/compta/tva/class/paymentvat.class.php
index bc234b4516e..8eaf141b06c 100644
--- a/htdocs/compta/tva/class/paymentvat.class.php
+++ b/htdocs/compta/tva/class/paymentvat.class.php
@@ -620,7 +620,7 @@ class PaymentVAT extends CommonObject
public function update_fk_bank($id_bank)
{
// phpcs:enable
- $sql = "UPDATE ".MAIN_DB_PREFIX."payment_vat SET fk_bank = ".((int) $id_bank)." WHERE rowid = ".$this->id;
+ $sql = "UPDATE ".MAIN_DB_PREFIX."payment_vat SET fk_bank = ".((int) $id_bank)." WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_fk_bank", LOG_DEBUG);
$result = $this->db->query($sql);
diff --git a/htdocs/contact/class/contact.class.php b/htdocs/contact/class/contact.class.php
index 83bc4202b9d..fd9830f36ca 100644
--- a/htdocs/contact/class/contact.class.php
+++ b/htdocs/contact/class/contact.class.php
@@ -595,7 +595,7 @@ class Contact extends CommonObject
$sql .= ", fk_user_modif=".($user->id > 0 ? "'".$this->db->escape($user->id)."'" : "NULL");
$sql .= ", default_lang=".($this->default_lang ? "'".$this->db->escape($this->default_lang)."'" : "NULL");
$sql .= ", entity = ".((int) $this->entity);
- $sql .= " WHERE rowid=".((int) $id);
+ $sql .= " WHERE rowid = ".((int) $id);
dol_syslog(get_class($this)."::update", LOG_DEBUG);
$result = $this->db->query($sql);
@@ -871,12 +871,12 @@ class Contact extends CommonObject
// Mis a jour contact
$sql = "UPDATE ".MAIN_DB_PREFIX."socpeople SET";
- $sql .= " birthday=".($this->birthday ? "'".$this->db->idate($this->birthday)."'" : "null");
+ $sql .= " birthday = ".($this->birthday ? "'".$this->db->idate($this->birthday)."'" : "null");
$sql .= ", photo = ".($this->photo ? "'".$this->db->escape($this->photo)."'" : "null");
if ($user) {
- $sql .= ", fk_user_modif=".$user->id;
+ $sql .= ", fk_user_modif = ".((int) $user->id);
}
- $sql .= " WHERE rowid=".$this->db->escape($id);
+ $sql .= " WHERE rowid = ".((int) $id);
dol_syslog(get_class($this)."::update_perso this->birthday=".$this->birthday." -", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1278,7 +1278,7 @@ class Contact extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."socpeople";
- $sql .= " WHERE rowid=".((int) $this->id);
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(__METHOD__, LOG_DEBUG);
$result = $this->db->query($sql);
if (!$result) {
diff --git a/htdocs/contrat/card.php b/htdocs/contrat/card.php
index 470895a2c22..56e3d797086 100644
--- a/htdocs/contrat/card.php
+++ b/htdocs/contrat/card.php
@@ -1433,7 +1433,7 @@ if ($action == 'create') {
$sql .= " p.rowid as pid, p.ref as pref, p.label as plabel, p.fk_product_type as ptype, p.entity as pentity, p.tosell, p.tobuy, p.tobatch";
$sql .= " FROM ".MAIN_DB_PREFIX."contratdet as cd";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."product as p ON cd.fk_product = p.rowid";
- $sql .= " WHERE cd.rowid = ".$object->lines[$cursorline - 1]->id;
+ $sql .= " WHERE cd.rowid = ".((int) $object->lines[$cursorline - 1]->id);
$result = $db->query($sql);
if ($result) {
diff --git a/htdocs/contrat/class/contrat.class.php b/htdocs/contrat/class/contrat.class.php
index 9b2364f7233..65ffcb7e99a 100644
--- a/htdocs/contrat/class/contrat.class.php
+++ b/htdocs/contrat/class/contrat.class.php
@@ -507,7 +507,7 @@ class Contrat extends CommonObject
if ($num) {
$sql = "UPDATE ".MAIN_DB_PREFIX."contrat SET ref = '".$this->db->escape($num)."', statut = 1";
//$sql.= ", fk_user_valid = ".$user->id.", date_valid = '".$this->db->idate($now)."'";
- $sql .= " WHERE rowid = ".$this->id." AND statut = 0";
+ $sql .= " WHERE rowid = ".((int) $this->id)." AND statut = 0";
dol_syslog(get_class($this)."::validate", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -607,7 +607,7 @@ class Contrat extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."contrat SET statut = 0";
//$sql.= ", fk_user_valid = null, date_valid = null";
- $sql .= " WHERE rowid = ".$this->id." AND statut = 1";
+ $sql .= " WHERE rowid = ".((int) $this->id)." AND statut = 1";
dol_syslog(get_class($this)."::validate", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1197,7 +1197,7 @@ class Contrat extends CommonObject
// Delete contratdet extrafields
$main = MAIN_DB_PREFIX.'contratdet';
$ef = $main."_extrafields";
- $sql = "DELETE FROM $ef WHERE fk_object IN (SELECT rowid FROM $main WHERE fk_contrat = ".((int) $this->id).")";
+ $sql = "DELETE FROM ".$ef." WHERE fk_object IN (SELECT rowid FROM ".$main." WHERE fk_contrat = ".((int) $this->id).")";
dol_syslog(get_class($this)."::delete contratdet_extrafields", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -2112,7 +2112,7 @@ class Contrat extends CommonObject
$sql = "SELECT cd.rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."contratdet as cd";
- $sql .= " WHERE fk_contrat =".$this->id;
+ $sql .= " WHERE fk_contrat =".((int) $this->id);
if ($status >= 0) {
$sql .= " AND statut = ".((int) $status);
}
@@ -2146,9 +2146,9 @@ class Contrat extends CommonObject
$sql = "SELECT c.rowid, c.ref";
$sql .= " FROM ".MAIN_DB_PREFIX."contrat as c";
- $sql .= " WHERE fk_soc =".$this->socid;
+ $sql .= " WHERE fk_soc =".((int) $this->socid);
if ($option == 'others') {
- $sql .= " AND c.rowid != ".$this->id;
+ $sql .= " AND c.rowid <> ".((int) $this->id);
}
dol_syslog(get_class($this)."::getOtherContracts()", LOG_DEBUG);
@@ -3332,10 +3332,10 @@ class ContratLigne extends CommonObjectLine
if ($date_end >= 0) {
$sql .= " date_fin_validite = ".(dol_strlen($date_end) != 0 ? "'".$this->db->idate($date_end)."'" : "null").",";
}
- $sql .= " fk_user_ouverture = ".$user->id.",";
+ $sql .= " fk_user_ouverture = ".((int) $user->id).",";
$sql .= " date_cloture = null,";
$sql .= " commentaire = '".$this->db->escape($comment)."'";
- $sql .= " WHERE rowid = ".$this->id." AND (statut = ".ContratLigne::STATUS_INITIAL." OR statut = ".ContratLigne::STATUS_CLOSED.")";
+ $sql .= " WHERE rowid = ".((int) $this->id)." AND (statut = ".ContratLigne::STATUS_INITIAL." OR statut = ".ContratLigne::STATUS_CLOSED.")";
dol_syslog(get_class($this)."::active_line", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -3396,9 +3396,9 @@ class ContratLigne extends CommonObjectLine
$sql = "UPDATE ".MAIN_DB_PREFIX."contratdet SET statut = ".((int) ContratLigne::STATUS_CLOSED).",";
$sql .= " date_cloture = '".$this->db->idate($date_end)."',";
- $sql .= " fk_user_cloture = ".$user->id.",";
+ $sql .= " fk_user_cloture = ".((int) $user->id).",";
$sql .= " commentaire = '".$this->db->escape($comment)."'";
- $sql .= " WHERE rowid = ".$this->id." AND statut = ".((int) ContratLigne::STATUS_OPEN);
+ $sql .= " WHERE rowid = ".((int) $this->id)." AND statut = ".((int) ContratLigne::STATUS_OPEN);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/core/boxes/box_produits.php b/htdocs/core/boxes/box_produits.php
index dde3b685d25..d039881445e 100644
--- a/htdocs/core/boxes/box_produits.php
+++ b/htdocs/core/boxes/box_produits.php
@@ -122,8 +122,8 @@ class box_produits extends ModeleBoxes
if (!empty($conf->global->MAIN_MULTILANGS)) { // si l'option est active
$sqld = "SELECT label";
$sqld .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sqld .= " WHERE fk_product=".$objp->rowid;
- $sqld .= " AND lang='".$this->db->escape($langs->getDefaultLang())."'";
+ $sqld .= " WHERE fk_product = ".((int) $objp->rowid);
+ $sqld .= " AND lang = '".$this->db->escape($langs->getDefaultLang())."'";
$sqld .= " LIMIT 1";
$resultd = $this->db->query($sqld);
diff --git a/htdocs/core/boxes/box_produits_alerte_stock.php b/htdocs/core/boxes/box_produits_alerte_stock.php
index d7ae1566a44..5e7ec72d0e1 100644
--- a/htdocs/core/boxes/box_produits_alerte_stock.php
+++ b/htdocs/core/boxes/box_produits_alerte_stock.php
@@ -129,8 +129,8 @@ class box_produits_alerte_stock extends ModeleBoxes
if (!empty($conf->global->MAIN_MULTILANGS)) { // si l'option est active
$sqld = "SELECT label";
$sqld .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sqld .= " WHERE fk_product=".$objp->rowid;
- $sqld .= " AND lang='".$this->db->escape($langs->getDefaultLang())."'";
+ $sqld .= " WHERE fk_product = ".((int) $objp->rowid);
+ $sqld .= " AND lang = '".$this->db->escape($langs->getDefaultLang())."'";
$sqld .= " LIMIT 1";
$resultd = $this->db->query($sqld);
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index 89d7cb1c7d0..a60e0680536 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -1224,7 +1224,7 @@ abstract class CommonObject
$listId = implode(",", $temp);
$sql = "DELETE FROM ".MAIN_DB_PREFIX."element_contact";
- $sql .= " WHERE element_id = ".$this->id;
+ $sql .= " WHERE element_id = ".((int) $this->id);
if ($listId) {
$sql .= " AND fk_c_type_contact IN (".$this->db->sanitize($listId).")";
}
@@ -1272,9 +1272,9 @@ abstract class CommonObject
if ($source == 'external' || $source == 'thirdparty') {
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."socpeople t on ec.fk_socpeople = t.rowid";
}
- $sql .= " WHERE ec.element_id =".$this->id;
+ $sql .= " WHERE ec.element_id = ".((int) $this->id);
$sql .= " AND ec.fk_c_type_contact=tc.rowid";
- $sql .= " AND tc.element='".$this->db->escape($this->element)."'";
+ $sql .= " AND tc.element = '".$this->db->escape($this->element)."'";
if ($code) {
$sql .= " AND tc.code = '".$this->db->escape($code)."'";
}
@@ -2658,7 +2658,7 @@ abstract class CommonObject
}
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET ".$fieldname." = ".((int) $id);
- $sql .= " WHERE rowid = ".$this->id." AND fk_statut = 0";
+ $sql .= " WHERE rowid = ".((int) $this->id)." AND fk_statut = 0";
if ($this->db->query($sql)) {
$this->fk_delivery_address = $id;
@@ -3219,7 +3219,7 @@ abstract class CommonObject
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET ref_ext = '".$this->db->escape($ref_ext)."'";
- $sql .= " WHERE ".(isset($this->table_rowid) ? $this->table_rowid : 'rowid')." = ".$this->id;
+ $sql .= " WHERE ".(isset($this->table_rowid) ? $this->table_rowid : 'rowid')." = ".((int) $this->id);
dol_syslog(get_class($this)."::update_ref_ext", LOG_DEBUG);
if ($this->db->query($sql)) {
@@ -3270,8 +3270,8 @@ abstract class CommonObject
}
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET note".$newsuffix." = ".(!empty($note) ? ("'".$this->db->escape($note)."'") : "NULL");
- $sql .= " ,".$fieldusermod." = ".$user->id;
- $sql .= " WHERE rowid =".$this->id;
+ $sql .= ", ".$fieldusermod." = ".((int) $user->id);
+ $sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_note", LOG_DEBUG);
if ($this->db->query($sql)) {
@@ -3440,7 +3440,7 @@ abstract class CommonObject
//var_dump($diff_when_using_price_ht.' '.$diff_on_current_total);
if ($diff_when_using_price_ht && $diff_on_current_total) {
- $sqlfix = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldtva." = ".$tmpcal[1].", total_ttc = ".$tmpcal[2]." WHERE rowid = ".$obj->rowid;
+ $sqlfix = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldtva." = ".price2num((float) $tmpcal[1]).", total_ttc = ".price2num((float) $tmpcal[2])." WHERE rowid = ".((int) $obj->rowid);
dol_syslog('We found unconsistent data into detailed line (diff_when_using_price_ht = '.$diff_when_using_price_ht.' and diff_on_current_total = '.$diff_on_current_total.') for line rowid = '.$obj->rowid." (total vat of line calculated=".$tmpcal[1].", database=".$obj->total_tva."). We fix the total_vat and total_ttc of line by running sqlfix = ".$sqlfix, LOG_WARNING);
$resqlfix = $this->db->query($sqlfix);
if (!$resqlfix) {
@@ -3484,7 +3484,7 @@ abstract class CommonObject
dol_print_error('', $errmsg);
exit;
}
- $sqlfix = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldtva." = ".($obj->total_tva - $diff).", total_ttc = ".($obj->total_ttc - $diff)." WHERE rowid = ".$obj->rowid;
+ $sqlfix = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldtva." = ".price2num($obj->total_tva - $diff).", total_ttc = ".price2num($obj->total_ttc - $diff)." WHERE rowid = ".((int) $obj->rowid);
dol_syslog('We found a difference of '.$diff.' for line rowid = '.$obj->rowid.". We fix the total_vat and total_ttc of line by running sqlfix = ".$sqlfix);
$resqlfix = $this->db->query($sqlfix);
if (!$resqlfix) {
@@ -4359,7 +4359,7 @@ abstract class CommonObject
$sql = "SELECT subprice as pu_ht, qty, remise_percent, total_ht";
$sql .= " FROM ".MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= " WHERE ".$this->fk_element." = ".$this->id;
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
dol_syslog(get_class($this).'::getTotalDiscount', LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -6135,7 +6135,7 @@ abstract class CommonObject
foreach ($new_array_languages as $key => $langcodearray) { // $key = 'name', 'town', ...
foreach ($langcodearray as $langcode => $value) {
$sql_del = "DELETE FROM ".MAIN_DB_PREFIX."object_lang";
- $sql_del .= " WHERE fk_object = ".$this->id." AND property = '".$this->db->escape($key)."' AND type_object = '".$this->db->escape($table_element)."'";
+ $sql_del .= " WHERE fk_object = ".((int) $this->id)." AND property = '".$this->db->escape($key)."' AND type_object = '".$this->db->escape($table_element)."'";
$sql_del .= " AND lang = '".$this->db->escape($langcode)."'";
$this->db->query($sql_del);
@@ -6319,7 +6319,7 @@ abstract class CommonObject
$linealreadyfound = 0;
// Check if there is already a line for this object (in most cases, it is, but sometimes it is not, for example when extra field has been created after), so we must keep this overload)
- $sql = "SELECT COUNT(rowid) as nb FROM ".MAIN_DB_PREFIX.$this->table_element."_extrafields WHERE fk_object = ".$this->id;
+ $sql = "SELECT COUNT(rowid) as nb FROM ".MAIN_DB_PREFIX.$this->table_element."_extrafields WHERE fk_object = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
$tmpobj = $this->db->fetch_object($resql);
@@ -6334,7 +6334,7 @@ abstract class CommonObject
} else {
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element."_extrafields SET ".$key." = '".$this->db->escape($this->array_options["options_".$key])."'";
}
- $sql .= " WHERE fk_object = ".$this->id;
+ $sql .= " WHERE fk_object = ".((int) $this->id);
} else {
$result = $this->insertExtraFields('', $user);
if ($result < 0) {
@@ -8576,7 +8576,7 @@ abstract class CommonObject
if (is_null($value)) {
return 'NULL';
} elseif (preg_match('/^(int|double|real|price)/i', $fieldsentry['type'])) {
- return $this->db->escape("$value");
+ return price2num("$value");
} elseif ($fieldsentry['type'] == 'boolean') {
if ($value) {
return 'true';
@@ -8776,7 +8776,7 @@ abstract class CommonObject
if (!empty($id)) {
$sql .= ' WHERE t.rowid = '.((int) $id);
} elseif (!empty($ref)) {
- $sql .= " WHERE t.ref = ".$this->quote($ref, $this->fields['ref']);
+ $sql .= " WHERE t.ref = '".$this->db->escape($ref)."'";
} else {
$sql .= ' WHERE 1 = 1'; // usage with empty id and empty ref is very rare
}
diff --git a/htdocs/core/class/html.form.class.php b/htdocs/core/class/html.form.class.php
index 8c1550bcb4c..8f3c92a3c43 100644
--- a/htdocs/core/class/html.form.class.php
+++ b/htdocs/core/class/html.form.class.php
@@ -2625,7 +2625,7 @@ class Form
if ((!empty($conf->global->PRODUIT_CUSTOMER_PRICES_BY_QTY) || !empty($conf->global->PRODUIT_CUSTOMER_PRICES_BY_QTY_MULTIPRICES)) && !empty($objp->price_by_qty) && $objp->price_by_qty == 1) { // Price by quantity will return many prices for the same product
$sql = "SELECT rowid, quantity, price, unitprice, remise_percent, remise, price_base_type";
$sql .= " FROM ".MAIN_DB_PREFIX."product_price_by_qty";
- $sql .= " WHERE fk_product_price=".$objp->price_rowid;
+ $sql .= " WHERE fk_product_price = ".((int) $objp->price_rowid);
$sql .= " ORDER BY quantity ASC";
dol_syslog(get_class($this)."::select_produits_list search prices by qty", LOG_DEBUG);
diff --git a/htdocs/core/db/pgsql.class.php b/htdocs/core/db/pgsql.class.php
index 5245a9dac3c..6e9a4f54db6 100644
--- a/htdocs/core/db/pgsql.class.php
+++ b/htdocs/core/db/pgsql.class.php
@@ -924,11 +924,11 @@ class DoliDBPgsql extends DoliDB
// phpcs:enable
$listtables = array();
- $like = '';
+ $escapedlike = '';
if ($table) {
- $like = " AND table_name LIKE '".$this->escape($table)."'";
+ $escapedlike = " AND table_name LIKE '".$this->escape($table)."'";
}
- $result = pg_query($this->db, "SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'".$like." ORDER BY table_name");
+ $result = pg_query($this->db, "SELECT table_name FROM information_schema.tables WHERE table_schema = 'public'".$escapedlike." ORDER BY table_name");
if ($result) {
while ($row = $this->fetch_row($result)) {
$listtables[] = $row[0];
diff --git a/htdocs/core/lib/admin.lib.php b/htdocs/core/lib/admin.lib.php
index ec12e397052..6361860e392 100644
--- a/htdocs/core/lib/admin.lib.php
+++ b/htdocs/core/lib/admin.lib.php
@@ -536,7 +536,7 @@ function dolibarr_get_const($db, $name, $entity = 1)
$sql = "SELECT ".$db->decrypt('value')." as value";
$sql .= " FROM ".MAIN_DB_PREFIX."const";
- $sql .= " WHERE name = ".$db->encrypt($name, 1);
+ $sql .= " WHERE name = '".$db->escape($db->encrypt($name))."'";
$sql .= " AND entity = ".((int) $entity);
dol_syslog("admin.lib::dolibarr_get_const", LOG_DEBUG);
@@ -583,7 +583,7 @@ function dolibarr_set_const($db, $name, $value, $type = 'chaine', $visible = 0,
$db->begin();
$sql = "DELETE FROM ".MAIN_DB_PREFIX."const";
- $sql .= " WHERE name = ".$db->encrypt($name, 1);
+ $sql .= " WHERE name = '".$db->escape($db->encrypt($name))."'";
if ($entity >= 0) {
$sql .= " AND entity = ".((int) $entity);
}
diff --git a/htdocs/core/lib/company.lib.php b/htdocs/core/lib/company.lib.php
index 4b536ccb2ad..8806bcc8b92 100644
--- a/htdocs/core/lib/company.lib.php
+++ b/htdocs/core/lib/company.lib.php
@@ -64,7 +64,7 @@ function societe_prepare_head(Societe $object)
} else {
$sql = "SELECT COUNT(p.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."socpeople as p";
- $sql .= " WHERE p.fk_soc = ".$object->id;
+ $sql .= " WHERE p.fk_soc = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$obj = $db->fetch_object($resql);
@@ -140,7 +140,7 @@ function societe_prepare_head(Societe $object)
} else {
$sql = "SELECT COUNT(n.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."projet as n";
- $sql .= " WHERE fk_soc = ".$object->id;
+ $sql .= " WHERE fk_soc = ".((int) $object->id);
$sql .= " AND entity IN (".getEntity('project').")";
$resql = $db->query($sql);
if ($resql) {
@@ -223,7 +223,7 @@ function societe_prepare_head(Societe $object)
$sql = "SELECT COUNT(n.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_rib as n";
- $sql .= " WHERE n.fk_soc = ".$object->id;
+ $sql .= " WHERE n.fk_soc = ".((int) $object->id);
if (empty($conf->stripe->enabled)) {
$sql .= " AND n.stripe_card_ref IS NULL";
} else {
@@ -240,7 +240,7 @@ function societe_prepare_head(Societe $object)
//if (! empty($conf->stripe->enabled) && $nbBankAccount > 0) $nbBankAccount = '...'; // No way to know exact number
- $head[$h][0] = DOL_URL_ROOT.'/societe/paymentmodes.php?socid='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/societe/paymentmodes.php?socid='.urlencode($object->id);
$head[$h][1] = $title;
if ($foundonexternalonlinesystem) {
$head[$h][1] .= '... ';
@@ -252,12 +252,12 @@ function societe_prepare_head(Societe $object)
}
if (!empty($conf->website->enabled) && (!empty($conf->global->WEBSITE_USE_WEBSITE_ACCOUNTS)) && (!empty($user->rights->societe->lire))) {
- $head[$h][0] = DOL_URL_ROOT.'/societe/website.php?id='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/societe/website.php?id='.urlencode($object->id);
$head[$h][1] = $langs->trans("WebSiteAccounts");
$nbNote = 0;
$sql = "SELECT COUNT(n.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_account as n";
- $sql .= " WHERE fk_soc = ".$object->id.' AND fk_website > 0';
+ $sql .= " WHERE fk_soc = ".((int) $object->id).' AND fk_website > 0';
$resql = $db->query($sql);
if ($resql) {
$obj = $db->fetch_object($resql);
@@ -304,7 +304,7 @@ function societe_prepare_head(Societe $object)
} else {
$sql = "SELECT COUNT(n.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."notify_def as n";
- $sql .= " WHERE fk_soc = ".$object->id;
+ $sql .= " WHERE fk_soc = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$obj = $db->fetch_object($resql);
@@ -315,7 +315,7 @@ function societe_prepare_head(Societe $object)
dol_setcache($cachekey, $nbNotif, 120); // If setting cache fails, this is not a problem, so we do not test result.
}
- $head[$h][0] = DOL_URL_ROOT.'/societe/notify/card.php?socid='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/societe/notify/card.php?socid='.urlencode($object->id);
$head[$h][1] = $langs->trans("Notifications");
if ($nbNotif > 0) {
$head[$h][1] .= ''.$nbNotif.' ';
@@ -332,7 +332,7 @@ function societe_prepare_head(Societe $object)
if (!empty($object->note_public)) {
$nbNote++;
}
- $head[$h][0] = DOL_URL_ROOT.'/societe/note.php?id='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/societe/note.php?id='.urlencode($object->id);
$head[$h][1] = $langs->trans("Notes");
if ($nbNote > 0) {
$head[$h][1] .= ''.$nbNote.' ';
@@ -380,7 +380,7 @@ function societe_prepare_head(Societe $object)
} else {
$sql = "SELECT COUNT(id) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."actioncomm";
- $sql .= " WHERE fk_soc = ".$object->id;
+ $sql .= " WHERE fk_soc = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$obj = $db->fetch_object($resql);
@@ -806,7 +806,7 @@ function show_projects($conf, $langs, $db, $object, $backtopage = '', $nocreatel
$sql .= ", cls.code as opp_status_code";
$sql .= " FROM ".MAIN_DB_PREFIX."projet as p";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."c_lead_status as cls on p.fk_opp_status = cls.rowid";
- $sql .= " WHERE p.fk_soc = ".$object->id;
+ $sql .= " WHERE p.fk_soc = ".((int) $object->id);
$sql .= " AND p.entity IN (".getEntity('project').")";
$sql .= " ORDER BY p.dateo DESC";
@@ -1083,7 +1083,7 @@ function show_contacts($conf, $langs, $db, $object, $backtopage = '')
$sql .= " t.civility as civility_id, t.address, t.zip, t.town";
$sql .= " FROM ".MAIN_DB_PREFIX."socpeople as t";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."socpeople_extrafields as ef on (t.rowid = ef.fk_object)";
- $sql .= " WHERE t.fk_soc = ".$object->id;
+ $sql .= " WHERE t.fk_soc = ".((int) $object->id);
if ($search_status != '' && $search_status != '-1') {
$sql .= " AND t.statut = ".((int) $search_status);
}
diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php
index ee353269e29..ddfad586e7c 100644
--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -5273,8 +5273,10 @@ function price($amount, $form = 0, $outlangs = '', $trunc = 1, $rounding = -1, $
* @param int $option Put 1 if you know that content is already universal format number (so no correction on decimal will be done)
* Put 2 if you know that number is a user input (so we know we don't have to fix decimal separator).
* @return string Amount with universal numeric format (Example: '99.99999').
- * If conversion fails, it return text unchanged if ($rounding = '' and $option = 1) or '0' if ($rounding is defined and $option = 1).
- * If amount is null or '', it returns '' if $rounding = '' or '0' if $rounding is defined..
+ * If conversion fails to return a numeric, it returns:
+ * text unchanged or partial if ($rounding = ''): price2num('W9ç', '', 0) => '9ç', price2num('W9ç', '', 1) => 'W9ç', price2num('W9ç', '', 2) => '9ç'
+ * '0' if ($rounding is defined): price2num('W9ç', 'MT', 0) => '9', price2num('W9ç', 'MT', 1) => '0', price2num('W9ç', 'MT', 2) => '9'
+ * If amount is null or '', it returns '' if $rounding = '' or '0' if $rounding is defined.
*
* @see price() Opposite function of price2num
*/
diff --git a/htdocs/core/lib/functions2.lib.php b/htdocs/core/lib/functions2.lib.php
index d79f688391d..ae7acf44861 100644
--- a/htdocs/core/lib/functions2.lib.php
+++ b/htdocs/core/lib/functions2.lib.php
@@ -1790,8 +1790,8 @@ function dol_set_user_param($db, $conf, &$user, $tab)
// We remove old parameters for all keys in $tab
$sql = "DELETE FROM ".MAIN_DB_PREFIX."user_param";
- $sql .= " WHERE fk_user = ".$user->id;
- $sql .= " AND entity = ".$conf->entity;
+ $sql .= " WHERE fk_user = ".((int) $user->id);
+ $sql .= " AND entity = ".((int) $conf->entity);
$sql .= " AND param in (";
$i = 0;
foreach ($tab as $key => $value) {
@@ -1815,7 +1815,7 @@ function dol_set_user_param($db, $conf, &$user, $tab)
// Set new parameters
if ($value) {
$sql = "INSERT INTO ".MAIN_DB_PREFIX."user_param(fk_user,entity,param,value)";
- $sql .= " VALUES (".$user->id.",".$conf->entity.",";
+ $sql .= " VALUES (".((int) $user->id).",".$conf->entity.",";
$sql .= " '".$db->escape($key)."','".$db->escape($value)."')";
dol_syslog("functions2.lib::dol_set_user_param", LOG_DEBUG);
diff --git a/htdocs/core/lib/invoice.lib.php b/htdocs/core/lib/invoice.lib.php
index 8f6a97894b9..1f797c67d1b 100644
--- a/htdocs/core/lib/invoice.lib.php
+++ b/htdocs/core/lib/invoice.lib.php
@@ -47,7 +47,7 @@ function facture_prepare_head($object)
if (empty($conf->global->MAIN_DISABLE_CONTACTS_TAB)) {
$nbContact = count($object->liste_contact(-1, 'internal')) + count($object->liste_contact(-1, 'external'));
- $head[$h][0] = DOL_URL_ROOT.'/compta/facture/contact.php?facid='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/compta/facture/contact.php?facid='.urlencode($object->id);
$head[$h][1] = $langs->trans('ContactsAddresses');
if ($nbContact > 0) {
$head[$h][1] .= ''.$nbContact.' ';
@@ -60,7 +60,7 @@ function facture_prepare_head($object)
$nbStandingOrders = 0;
$sql = "SELECT COUNT(pfd.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pfd";
- $sql .= " WHERE pfd.fk_facture = ".$object->id;
+ $sql .= " WHERE pfd.fk_facture = ".((int) $object->id);
$sql .= " AND pfd.ext_payment_id IS NULL";
$resql = $db->query($sql);
if ($resql) {
@@ -71,7 +71,7 @@ function facture_prepare_head($object)
} else {
dol_print_error($db);
}
- $head[$h][0] = DOL_URL_ROOT.'/compta/facture/prelevement.php?facid='.$object->id;
+ $head[$h][0] = DOL_URL_ROOT.'/compta/facture/prelevement.php?facid='.urlencode($object->id);
$head[$h][1] = $langs->trans('StandingOrders');
if ($nbStandingOrders > 0) {
$head[$h][1] .= ''.$nbStandingOrders.' ';
diff --git a/htdocs/core/lib/project.lib.php b/htdocs/core/lib/project.lib.php
index ddf3aa64382..73fc5295a99 100644
--- a/htdocs/core/lib/project.lib.php
+++ b/htdocs/core/lib/project.lib.php
@@ -353,7 +353,7 @@ function task_prepare_head($object)
//$sql .= " FROM ".MAIN_DB_PREFIX."projet_task_time as t, ".MAIN_DB_PREFIX."projet_task as pt, ".MAIN_DB_PREFIX."user as u";
//$sql .= " WHERE t.fk_user = u.rowid AND t.fk_task = pt.rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."projet_task_time as t";
- $sql .= " WHERE t.fk_task =".$object->id;
+ $sql .= " WHERE t.fk_task = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$obj = $db->fetch_object($resql);
@@ -364,7 +364,7 @@ function task_prepare_head($object)
dol_print_error($db);
}
- $head[$h][0] = DOL_URL_ROOT.'/projet/tasks/time.php?id='.$object->id.(GETPOST('withproject') ? '&withproject=1' : '');
+ $head[$h][0] = DOL_URL_ROOT.'/projet/tasks/time.php?id='.urlencode($object->id).(GETPOST('withproject') ? '&withproject=1' : '');
$head[$h][1] = $langs->trans("TimeSpent");
if ($nbTimeSpent > 0) {
$head[$h][1] .= '... ';
@@ -386,7 +386,7 @@ function task_prepare_head($object)
if (!empty($object->note_public)) {
$nbNote++;
}
- $head[$h][0] = DOL_URL_ROOT.'/projet/tasks/note.php?id='.$object->id.(GETPOST('withproject') ? '&withproject=1' : '');
+ $head[$h][0] = DOL_URL_ROOT.'/projet/tasks/note.php?id='.urlencode($object->id).(GETPOST('withproject') ? '&withproject=1' : '');
$head[$h][1] = $langs->trans('Notes');
if ($nbNote > 0) {
$head[$h][1] .= ''.$nbNote.' ';
diff --git a/htdocs/core/modules/mailings/modules_mailings.php b/htdocs/core/modules/mailings/modules_mailings.php
index 7c0aa2b19b5..de5feb233ad 100644
--- a/htdocs/core/modules/mailings/modules_mailings.php
+++ b/htdocs/core/modules/mailings/modules_mailings.php
@@ -208,7 +208,7 @@ class MailingTargets // This can't be abstract as it is used for some method
//Update the status to show thirdparty mail that don't want to be contacted anymore'
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing_cibles";
$sql .= " SET statut=3";
- $sql .= " WHERE fk_mailing=".$mailing_id." AND email in (SELECT email FROM ".MAIN_DB_PREFIX."societe where fk_stcomm=-1)";
+ $sql .= " WHERE fk_mailing = ".((int) $mailing_id)." AND email in (SELECT email FROM ".MAIN_DB_PREFIX."societe where fk_stcomm=-1)";
$sql .= " AND source_type='thirdparty'";
dol_syslog(__METHOD__.": mailing update status to display thirdparty mail that do not want to be contacted");
$result=$this->db->query($sql);
@@ -216,7 +216,7 @@ class MailingTargets // This can't be abstract as it is used for some method
//Update the status to show contact mail that don't want to be contacted anymore'
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing_cibles";
$sql .= " SET statut=3";
- $sql .= " WHERE fk_mailing=".$mailing_id." AND source_type='contact' AND (email in (SELECT sc.email FROM ".MAIN_DB_PREFIX."socpeople AS sc ";
+ $sql .= " WHERE fk_mailing = ".((int) $mailing_id)." AND source_type='contact' AND (email in (SELECT sc.email FROM ".MAIN_DB_PREFIX."socpeople AS sc ";
$sql .= " INNER JOIN ".MAIN_DB_PREFIX."societe s ON s.rowid=sc.fk_soc WHERE s.fk_stcomm=-1 OR no_email=1))";
dol_syslog(__METHOD__.": mailing update status to display contact mail that do not want to be contacted",LOG_DEBUG);
$result=$this->db->query($sql);
@@ -224,7 +224,7 @@ class MailingTargets // This can't be abstract as it is used for some method
$sql = "UPDATE ".MAIN_DB_PREFIX."mailing_cibles";
$sql .= " SET statut=3";
- $sql .= " WHERE fk_mailing=".$mailing_id." AND email IN (SELECT mu.email FROM ".MAIN_DB_PREFIX."mailing_unsubscribe AS mu WHERE mu.entity IN ('".getEntity('mailing')."'))";
+ $sql .= " WHERE fk_mailing =" .((int) $mailing_id)." AND email IN (SELECT mu.email FROM ".MAIN_DB_PREFIX."mailing_unsubscribe AS mu WHERE mu.entity IN ('".getEntity('mailing')."'))";
dol_syslog(__METHOD__.":mailing update status to display emails that do not want to be contacted anymore", LOG_DEBUG);
$result = $this->db->query($sql);
diff --git a/htdocs/core/modules/modReceiptPrinter.class.php b/htdocs/core/modules/modReceiptPrinter.class.php
index ee87f4c57ba..1e26de93bcb 100644
--- a/htdocs/core/modules/modReceiptPrinter.class.php
+++ b/htdocs/core/modules/modReceiptPrinter.class.php
@@ -133,6 +133,7 @@ class modReceiptPrinter extends DolibarrModules
public function init($options = '')
{
global $conf, $langs;
+
// Clean before activation
$this->remove($options);
@@ -140,8 +141,8 @@ class modReceiptPrinter extends DolibarrModules
$sql = array(
"CREATE TABLE IF NOT EXISTS ".MAIN_DB_PREFIX."printer_receipt (rowid integer AUTO_INCREMENT PRIMARY KEY, name varchar(128), fk_type integer, fk_profile integer, parameter varchar(128), entity integer) ENGINE=innodb;",
"CREATE TABLE IF NOT EXISTS ".MAIN_DB_PREFIX."printer_receipt_template (rowid integer AUTO_INCREMENT PRIMARY KEY, name varchar(128), template text, entity integer) ENGINE=innodb;",
- "DELETE FROM ".MAIN_DB_PREFIX."printer_receipt_template WHERE name = '".$langs->trans('Example')."';",
- "INSERT INTO ".MAIN_DB_PREFIX."printer_receipt_template (name,template,entity) VALUES ('".$langs->trans('Example')."', '".$templateexample."', 1);",
+ "DELETE FROM ".MAIN_DB_PREFIX."printer_receipt_template WHERE name = '".$this->db->escape($langs->trans('Example'))."';",
+ "INSERT INTO ".MAIN_DB_PREFIX."printer_receipt_template (name,template,entity) VALUES ('".$this->db->escape($langs->trans('Example'))."', '".$this->db->escape($templateexample)."', 1);",
);
return $this->_init($sql, $options);
}
diff --git a/htdocs/core/modules/stock/doc/pdf_standard.modules.php b/htdocs/core/modules/stock/doc/pdf_standard.modules.php
index ebc109151d6..5374245cea4 100644
--- a/htdocs/core/modules/stock/doc/pdf_standard.modules.php
+++ b/htdocs/core/modules/stock/doc/pdf_standard.modules.php
@@ -337,8 +337,8 @@ class pdf_standard extends ModelePDFStock
if (!empty($conf->global->MAIN_MULTILANGS)) { // si l'option est active
$sql = "SELECT label";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$objp->rowid;
- $sql .= " AND lang='".$this->db->escape($langs->getDefaultLang())."'";
+ $sql .= " WHERE fk_product = ".((int) $objp->rowid);
+ $sql .= " AND lang = '".$this->db->escape($langs->getDefaultLang())."'";
$sql .= " LIMIT 1";
$result = $this->db->query($sql);
diff --git a/htdocs/don/class/don.class.php b/htdocs/don/class/don.class.php
index 181b3fc0ca3..6bb4c99b86d 100644
--- a/htdocs/don/class/don.class.php
+++ b/htdocs/don/class/don.class.php
@@ -555,7 +555,7 @@ class Don extends CommonObject
// Delete donation
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."don_extrafields";
- $sql .= " WHERE fk_object=".$this->id;
+ $sql .= " WHERE fk_object = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
diff --git a/htdocs/expedition/class/expedition.class.php b/htdocs/expedition/class/expedition.class.php
index a60f3c88c6a..42d290aa02f 100644
--- a/htdocs/expedition/class/expedition.class.php
+++ b/htdocs/expedition/class/expedition.class.php
@@ -2805,7 +2805,7 @@ class ExpeditionLigne extends CommonObjectLine
// delete batch expedition line
if ($conf->productbatch->enabled) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."expeditiondet_batch";
- $sql .= " WHERE fk_expeditiondet = ".$this->id;
+ $sql .= " WHERE fk_expeditiondet = ".((int) $this->id);
if (!$this->db->query($sql)) {
$this->errors[] = $this->db->lasterror()." - sql=$sql";
@@ -2951,7 +2951,7 @@ class ExpeditionLigne extends CommonObjectLine
if (!$error && !empty($expedition_batch_id)) {
// delete lot expedition line
$sql = "DELETE FROM ".MAIN_DB_PREFIX."expeditiondet_batch";
- $sql .= " WHERE fk_expeditiondet = ".$this->id;
+ $sql .= " WHERE fk_expeditiondet = ".((int) $this->id);
$sql .= " AND rowid = ".((int) $expedition_batch_id);
if (!$this->db->query($sql)) {
diff --git a/htdocs/fourn/card.php b/htdocs/fourn/card.php
index 866fd31318e..f37e96ba602 100644
--- a/htdocs/fourn/card.php
+++ b/htdocs/fourn/card.php
@@ -589,7 +589,7 @@ if ($object->id > 0) {
$sql = "SELECT p.rowid, p.ref, p.date_valid as dc, p.fk_statut, p.total_ht, p.total_tva, p.total_ttc";
$sql .= " FROM ".MAIN_DB_PREFIX."supplier_proposal as p ";
- $sql .= " WHERE p.fk_soc =".$object->id;
+ $sql .= " WHERE p.fk_soc = ".((int) $object->id);
$sql .= " AND p.entity IN (".getEntity('supplier_proposal').")";
$sql .= " ORDER BY p.date_valid DESC";
$sql .= $db->plimit($MAXLIST);
@@ -681,7 +681,7 @@ if ($object->id > 0) {
// TODO move to DAO class
$sql = "SELECT count(p.rowid) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."commande_fournisseur as p";
- $sql .= " WHERE p.fk_soc =".$object->id;
+ $sql .= " WHERE p.fk_soc = ".((int) $object->id);
$sql .= " AND p.entity IN (".getEntity('commande_fournisseur').")";
$resql = $db->query($sql);
if ($resql) {
@@ -691,7 +691,7 @@ if ($object->id > 0) {
$sql = "SELECT p.rowid,p.ref, p.date_commande as dc, p.fk_statut, p.total_ht, p.total_tva, p.total_ttc";
$sql .= " FROM ".MAIN_DB_PREFIX."commande_fournisseur as p";
- $sql .= " WHERE p.fk_soc =".$object->id;
+ $sql .= " WHERE p.fk_soc = ".((int) $object->id);
$sql .= " AND p.entity IN (".getEntity('commande_fournisseur').")";
$sql .= " ORDER BY p.date_commande DESC";
$sql .= $db->plimit($MAXLIST);
diff --git a/htdocs/fourn/class/fournisseur.class.php b/htdocs/fourn/class/fournisseur.class.php
index 121e699757c..805ed7c1ba6 100644
--- a/htdocs/fourn/class/fournisseur.class.php
+++ b/htdocs/fourn/class/fournisseur.class.php
@@ -59,7 +59,7 @@ class Fournisseur extends Societe
{
$sql = "SELECT rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."commande_fournisseur as cf";
- $sql .= " WHERE cf.fk_soc = ".$this->id;
+ $sql .= " WHERE cf.fk_soc = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/fourn/class/fournisseur.commande.class.php b/htdocs/fourn/class/fournisseur.commande.class.php
index 3d71fd46b11..d248ed44321 100644
--- a/htdocs/fourn/class/fournisseur.commande.class.php
+++ b/htdocs/fourn/class/fournisseur.commande.class.php
@@ -473,7 +473,7 @@ class CommandeFournisseur extends CommonOrder
if (!empty($conf->global->PRODUCT_USE_SUPPLIER_PACKAGING)) {
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."product_fournisseur_price as pfp ON l.fk_product = pfp.fk_product and l.ref = pfp.ref_fourn AND pfp.fk_soc = ".((int) $this->socid);
}
- $sql .= " WHERE l.fk_commande = ".$this->id;
+ $sql .= " WHERE l.fk_commande = ".((int) $this->id);
if ($only_product) {
$sql .= ' AND p.fk_product_type = 0';
}
@@ -627,7 +627,7 @@ class CommandeFournisseur extends CommonOrder
if (preg_match('/^[\(]?PROV/i', $this->ref)) {
// Now we rename also files into index
$sql = 'UPDATE '.MAIN_DB_PREFIX."ecm_files set filename = CONCAT('".$this->db->escape($this->newref)."', SUBSTR(filename, ".(strlen($this->ref) + 1).")), filepath = 'fournisseur/commande/".$this->db->escape($this->newref)."'";
- $sql .= " WHERE filename LIKE '".$this->db->escape($this->ref)."%' AND filepath = 'fournisseur/commande/".$this->db->escape($this->ref)."' and entity = ".$conf->entity;
+ $sql .= " WHERE filename LIKE '".$this->db->escape($this->ref)."%' AND filepath = 'fournisseur/commande/".$this->db->escape($this->ref)."' and entity = ".((int) $conf->entity);
$resql = $this->db->query($sql);
if (!$resql) {
$error++; $this->error = $this->db->lasterror();
@@ -2236,7 +2236,7 @@ class CommandeFournisseur extends CommonOrder
$sql .= " FROM ".MAIN_DB_PREFIX."product as p,";
$sql .= " ".MAIN_DB_PREFIX."commande_fournisseur_dispatch as cfd";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."entrepot as e ON cfd.fk_entrepot = e.rowid";
- $sql .= " WHERE cfd.fk_commande = ".$this->id;
+ $sql .= " WHERE cfd.fk_commande = ".((int) $this->id);
$sql .= " AND cfd.fk_product = p.rowid";
if ($status >= 0) {
$sql .= " AND cfd.status = ".((int) $status);
diff --git a/htdocs/fourn/class/fournisseur.facture.class.php b/htdocs/fourn/class/fournisseur.facture.class.php
index f7c7ee26e1c..e8ec417edd7 100644
--- a/htdocs/fourn/class/fournisseur.facture.class.php
+++ b/htdocs/fourn/class/fournisseur.facture.class.php
@@ -2946,7 +2946,7 @@ class FactureFournisseur extends CommonInvoice
{
$isUsed = false;
- $sql = "SELECT fk_invoice_supplier FROM ".MAIN_DB_PREFIX."societe_remise_except WHERE fk_invoice_supplier_source=".$this->id;
+ $sql = "SELECT fk_invoice_supplier FROM ".MAIN_DB_PREFIX."societe_remise_except WHERE fk_invoice_supplier_source = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!empty($resql)) {
$obj = $this->db->fetch_object($resql);
@@ -3701,12 +3701,12 @@ class SupplierInvoiceLine extends CommonObjectLine
// Mise a jour ligne en base
$sql = "UPDATE ".MAIN_DB_PREFIX."facture_fourn_det SET";
- $sql .= " total_ht='".price2num($this->total_ht)."'";
- $sql .= ", tva='".price2num($this->total_tva)."'";
- $sql .= ", total_localtax1='".price2num($this->total_localtax1)."'";
- $sql .= ", total_localtax2='".price2num($this->total_localtax2)."'";
- $sql .= ", total_ttc='".price2num($this->total_ttc)."'";
- $sql .= " WHERE rowid = ".$this->rowid;
+ $sql .= " total_ht = ".price2num($this->total_ht);
+ $sql .= ", tva= ".price2num($this->total_tva);
+ $sql .= ", total_localtax1 = ".price2num($this->total_localtax1);
+ $sql .= ", total_localtax2 = ".price2num($this->total_localtax2);
+ $sql .= ", total_ttc = ".price2num($this->total_ttc);
+ $sql .= " WHERE rowid = ".((int) $this->rowid);
dol_syslog("FactureFournisseurLigne.class.php::update_total", LOG_DEBUG);
diff --git a/htdocs/fourn/class/fournisseur.product.class.php b/htdocs/fourn/class/fournisseur.product.class.php
index 3eaed8d27b8..b08d9237c63 100644
--- a/htdocs/fourn/class/fournisseur.product.class.php
+++ b/htdocs/fourn/class/fournisseur.product.class.php
@@ -164,7 +164,7 @@ class ProductFournisseur extends Product
$this->db->begin();
$sql = "DELETE FROM ".MAIN_DB_PREFIX."product_fournisseur_price";
- $sql .= " WHERE fk_product = ".$this->id." AND fk_soc = ".((int) $id_fourn);
+ $sql .= " WHERE fk_product = ".((int) $this->id)." AND fk_soc = ".((int) $id_fourn);
dol_syslog(get_class($this)."::remove_fournisseur", LOG_DEBUG);
$resql2 = $this->db->query($sql);
@@ -438,7 +438,7 @@ class ProductFournisseur extends Product
// Delete price for this quantity
$sql = "DELETE FROM ".MAIN_DB_PREFIX."product_fournisseur_price";
- $sql .= " WHERE fk_soc = ".$fourn->id." AND ref_fourn = '".$this->db->escape($ref_fourn)."' AND quantity = ".((float) $qty)." AND entity = ".$conf->entity;
+ $sql .= " WHERE fk_soc = ".((int) $fourn->id)." AND ref_fourn = '".$this->db->escape($ref_fourn)."' AND quantity = ".((float) $qty)." AND entity = ".((int) $conf->entity);
$resql = $this->db->query($sql);
if ($resql) {
// Add price for this quantity to supplier
@@ -459,7 +459,7 @@ class ProductFournisseur extends Product
$sql .= " ".((int) $fourn->id).",";
$sql .= " '".$this->db->escape($ref_fourn)."',";
$sql .= " '".$this->db->escape($desc_fourn)."',";
- $sql .= " ".$user->id.",";
+ $sql .= " ".((int) $user->id).",";
$sql .= " ".price2num($buyprice).",";
$sql .= " ".((float) $qty).",";
$sql .= " ".((float) $remise_percent).",";
diff --git a/htdocs/fourn/commande/dispatch.php b/htdocs/fourn/commande/dispatch.php
index 09588389cb1..ead05251920 100644
--- a/htdocs/fourn/commande/dispatch.php
+++ b/htdocs/fourn/commande/dispatch.php
@@ -341,11 +341,11 @@ if ($action == 'dispatch' && $user->rights->fournisseur->commande->receptionner)
if (GETPOSTISSET($saveprice)) {
// TODO Use class
$sql = "UPDATE ".MAIN_DB_PREFIX."product_fournisseur_price";
- $sql .= " SET unitprice='".GETPOST($pu)."'";
- $sql .= ", price=".GETPOST($pu)."*quantity";
- $sql .= ", remise_percent='".(!empty($dto) ? $dto : 0)."'";
- $sql .= " WHERE fk_soc=".$object->socid;
- $sql .= " AND fk_product=".GETPOST($prod, 'int');
+ $sql .= " SET unitprice = ".price2num(GETPOST($pu), 'MU', 2);
+ $sql .= ", price = ".price2num(GETPOST($pu), 'MU', 2)." * quantity";
+ $sql .= ", remise_percent = ".price2num((empty($dto) ? 0 : $dto), 3, 2)."'";
+ $sql .= " WHERE fk_soc = ".((int) $object->socid);
+ $sql .= " AND fk_product=".((int) GETPOST($prod, 'int'));
$resql = $db->query($sql);
}
@@ -653,7 +653,7 @@ if ($id > 0 || !empty($ref)) {
$sql = "SELECT l.rowid, cfd.fk_product, sum(cfd.qty) as qty";
$sql .= " FROM ".MAIN_DB_PREFIX."commande_fournisseur_dispatch as cfd";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."commande_fournisseurdet as l on l.rowid = cfd.fk_commandefourndet";
- $sql .= " WHERE cfd.fk_commande = ".$object->id;
+ $sql .= " WHERE cfd.fk_commande = ".((int) $object->id);
$sql .= " GROUP BY l.rowid, cfd.fk_product";
$resql = $db->query($sql);
@@ -689,7 +689,7 @@ if ($id > 0 || !empty($ref)) {
$sql .= " FROM ".MAIN_DB_PREFIX."commande_fournisseurdet as l";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."product as p ON l.fk_product=p.rowid";
- $sql .= " WHERE l.fk_commande = ".$object->id;
+ $sql .= " WHERE l.fk_commande = ".((int) $object->id);
if (empty($conf->global->STOCK_SUPPORTS_SERVICES)) {
$sql .= " AND l.product_type = 0";
}
@@ -1113,7 +1113,7 @@ if ($id > 0 || !empty($ref)) {
if ($conf->reception->enabled) {
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."reception as r ON cfd.fk_reception = r.rowid";
}
- $sql .= " WHERE cfd.fk_commande = ".$object->id;
+ $sql .= " WHERE cfd.fk_commande = ".((int) $object->id);
$sql .= " AND cfd.fk_product = p.rowid";
$sql .= " ORDER BY cfd.rowid ASC";
diff --git a/htdocs/fourn/facture/card.php b/htdocs/fourn/facture/card.php
index ae0d306b2cd..2f3fb2b0078 100644
--- a/htdocs/fourn/facture/card.php
+++ b/htdocs/fourn/facture/card.php
@@ -595,7 +595,7 @@ if (empty($reshook)) {
$sql = "SELECT re.rowid, re.amount_ht, re.amount_tva, re.amount_ttc,";
$sql .= " re.description, re.fk_invoice_supplier_source";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as re";
- $sql .= " WHERE fk_invoice_supplier = ".$object->id;
+ $sql .= " WHERE fk_invoice_supplier = ".((int) $object->id);
$resql = $db->query($sql);
if (!empty($resql)) {
while ($obj = $db->fetch_object($resql)) {
@@ -3132,11 +3132,10 @@ if ($action == 'create') {
$creditnoteamount = 0;
$depositamount = 0;
-
$sql = "SELECT re.rowid, re.amount_ht, re.amount_tva, re.amount_ttc,";
$sql .= " re.description, re.fk_invoice_supplier_source";
$sql .= " FROM ".MAIN_DB_PREFIX."societe_remise_except as re";
- $sql .= " WHERE fk_invoice_supplier = ".$object->id;
+ $sql .= " WHERE fk_invoice_supplier = ".((int) $object->id);
$resql = $db->query($sql);
if ($resql) {
$num = $db->num_rows($resql);
diff --git a/htdocs/fourn/facture/list.php b/htdocs/fourn/facture/list.php
index 0d34a3790df..8f2aaadb8ea 100644
--- a/htdocs/fourn/facture/list.php
+++ b/htdocs/fourn/facture/list.php
@@ -344,7 +344,7 @@ if (empty($reshook)) {
$rsql .= " , u.rowid as user_id, u.lastname, u.firstname, u.login";
$rsql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pfd";
$rsql .= " , ".MAIN_DB_PREFIX."user as u";
- $rsql .= " WHERE fk_facture_fourn = ".$objecttmp->id;
+ $rsql .= " WHERE fk_facture_fourn = ".((int) $objecttmp->id);
$rsql .= " AND pfd.fk_user_demande = u.rowid";
$rsql .= " AND pfd.traite = 0";
$rsql .= " ORDER BY pfd.date_demande DESC";
diff --git a/htdocs/holiday/class/holiday.class.php b/htdocs/holiday/class/holiday.class.php
index 41af59a751b..ec7b4c463b6 100644
--- a/htdocs/holiday/class/holiday.class.php
+++ b/htdocs/holiday/class/holiday.class.php
@@ -719,7 +719,7 @@ class Holiday extends CommonObject
$error++;
}
$sql .= " ref = '".$this->db->escape($num)."'";
- $sql .= " WHERE rowid= ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
@@ -828,7 +828,7 @@ class Holiday extends CommonObject
} else {
$sql .= " detail_refuse = NULL";
}
- $sql .= " WHERE rowid= ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
@@ -937,7 +937,7 @@ class Holiday extends CommonObject
$sql .= " detail_refuse = NULL";
}
- $sql .= " WHERE rowid= ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$this->db->begin();
diff --git a/htdocs/install/repair.php b/htdocs/install/repair.php
index 5cfe9f66846..037c7ee4b82 100644
--- a/htdocs/install/repair.php
+++ b/htdocs/install/repair.php
@@ -929,7 +929,7 @@ if ($ok && GETPOST('clean_product_stock_batch', 'alpha')) {
// TODO If it fails, we must make update
//$sql2 ="UPDATE ".MAIN_DB_PREFIX."product_batch";
//$sql2.=" SET ".$obj->psrowid.", '000000', ".($obj->reel - $obj->reelbatch).")";
- //$sql2.=" WHERE fk_product_stock = ".$obj->psrowid"
+ //$sql2.=" WHERE fk_product_stock = ".((int) $obj->psrowid)
}
}
}
diff --git a/htdocs/install/upgrade2.php b/htdocs/install/upgrade2.php
index de34a38e82c..974dd4c8324 100644
--- a/htdocs/install/upgrade2.php
+++ b/htdocs/install/upgrade2.php
@@ -2097,7 +2097,7 @@ function migrate_commande_livraison($db, $langs, $conf)
$sqlu = "UPDATE ".MAIN_DB_PREFIX."livraison SET";
$sqlu .= " ref_client='".$db->escape($obj->ref_client)."'";
$sqlu .= ", date_livraison='".$db->idate($delivery_date)."'";
- $sqlu .= " WHERE rowid = ".$obj->rowid;
+ $sqlu .= " WHERE rowid = ".((int) $obj->rowid);
$resql3 = $db->query($sqlu);
if (!$resql3) {
$error++;
@@ -2170,11 +2170,11 @@ function migrate_detail_livraison($db, $langs, $conf)
$obj = $db->fetch_object($resql);
$sql = "UPDATE ".MAIN_DB_PREFIX."livraisondet SET";
- $sql .= " fk_product=".$obj->fk_product;
- $sql .= ",description='".$db->escape($obj->description)."'";
- $sql .= ",subprice='".$db->escape($obj->subprice)."'";
- $sql .= ",total_ht='".$db->escape($obj->total_ht)."'";
- $sql .= " WHERE fk_commande_ligne = ".$obj->rowid;
+ $sql .= " fk_product = ".((int) $obj->fk_product);
+ $sql .= ",description = '".$db->escape($obj->description)."'";
+ $sql .= ",subprice = ".price2num($obj->subprice);
+ $sql .= ",total_ht = ".price2num($obj->total_ht);
+ $sql .= " WHERE fk_commande_ligne = ".((int) $obj->rowid);
$resql2 = $db->query($sql);
if ($resql2) {
@@ -2188,8 +2188,8 @@ function migrate_detail_livraison($db, $langs, $conf)
$total_ht = $obju->total_ht + $obj->total_ht;
$sqlu = "UPDATE ".MAIN_DB_PREFIX."livraison SET";
- $sqlu .= " total_ht='".$db->escape($total_ht)."'";
- $sqlu .= " WHERE rowid=".$obj->fk_livraison;
+ $sqlu .= " total_ht = ".price2num($total_ht, 'MT');
+ $sqlu .= " WHERE rowid = ".((int) $obj->fk_livraison);
$resql4 = $db->query($sqlu);
if (!$resql4) {
$error++;
@@ -2266,8 +2266,8 @@ function migrate_stocks($db, $langs, $conf)
$obj = $db->fetch_object($resql);
$sql = "UPDATE ".MAIN_DB_PREFIX."product SET";
- $sql .= " stock = '".$db->escape($obj->total)."'";
- $sql .= " WHERE rowid=".$obj->fk_product;
+ $sql .= " stock = ".price2num($obj->total, 'MS');
+ $sql .= " WHERE rowid = ".((int) $obj->fk_product);
$resql2 = $db->query($sql);
if ($resql2) {
@@ -2330,7 +2330,7 @@ function migrate_menus($db, $langs, $conf)
$sql = "UPDATE ".MAIN_DB_PREFIX."menu SET";
$sql .= " enabled = '".$db->escape($obj->action)."'";
- $sql .= " WHERE rowid=".$obj->rowid;
+ $sql .= " WHERE rowid = ".((int) $obj->rowid);
$sql .= " AND enabled = '1'";
$resql2 = $db->query($sql);
@@ -2400,7 +2400,7 @@ function migrate_commande_deliveryaddress($db, $langs, $conf)
$sql = "UPDATE ".MAIN_DB_PREFIX."expedition SET";
$sql .= " fk_adresse_livraison = '".$db->escape($obj->fk_adresse_livraison)."'";
- $sql .= " WHERE rowid=".$obj->fk_expedition;
+ $sql .= " WHERE rowid = ".((int) $obj->fk_expedition);
$resql2 = $db->query($sql);
if (!$resql2) {
@@ -3049,7 +3049,7 @@ function migrate_shipping_delivery($db, $langs, $conf)
$result = $db->query($sqlInsert);
if ($result) {
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."livraison SET fk_expedition = NULL";
- $sqlUpdate .= " WHERE rowid = ".$obj->rowid;
+ $sqlUpdate .= " WHERE rowid = ".((int) $obj->rowid);
$result = $db->query($sqlUpdate);
if (!$result) {
@@ -3137,7 +3137,7 @@ function migrate_shipping_delivery2($db, $langs, $conf)
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."livraison SET";
$sqlUpdate .= " ref_customer = '".$db->escape($obj->ref_customer)."',";
$sqlUpdate .= " date_delivery = ".($obj->date_delivery ? "'".$db->escape($obj->date_delivery)."'" : 'null');
- $sqlUpdate .= " WHERE rowid = ".$obj->delivery_id;
+ $sqlUpdate .= " WHERE rowid = ".((int) $obj->delivery_id);
$result = $db->query($sqlUpdate);
if (!$result) {
@@ -3629,7 +3629,7 @@ function migrate_reset_blocked_log($db, $langs, $conf)
print 'Process entity '.$obj->entity;
- $sqlSearch = "SELECT count(rowid) as nb FROM ".MAIN_DB_PREFIX."blockedlog WHERE action = 'MODULE_SET' and entity = ".$obj->entity;
+ $sqlSearch = "SELECT count(rowid) as nb FROM ".MAIN_DB_PREFIX."blockedlog WHERE action = 'MODULE_SET' and entity = ".((int) $obj->entity);
$resqlSearch = $db->query($sqlSearch);
if ($resqlSearch) {
$objSearch = $db->fetch_object($resqlSearch);
@@ -3638,7 +3638,7 @@ function migrate_reset_blocked_log($db, $langs, $conf)
print ' - Record for entity must be reset...';
$sqlUpdate = "DELETE FROM ".MAIN_DB_PREFIX."blockedlog";
- $sqlUpdate .= " WHERE entity = ".$obj->entity;
+ $sqlUpdate .= " WHERE entity = ".((int) $obj->entity);
$resqlUpdate = $db->query($sqlUpdate);
if (!$resqlUpdate) {
$error++;
@@ -3725,7 +3725,7 @@ function migrate_remise_entity($db, $langs, $conf)
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."societe_remise SET";
$sqlUpdate .= " entity = ".$obj->entity;
- $sqlUpdate .= " WHERE rowid = ".$obj->rowid;
+ $sqlUpdate .= " WHERE rowid = ".((int) $obj->rowid);
$result = $db->query($sqlUpdate);
if (!$result) {
@@ -3810,8 +3810,8 @@ function migrate_remise_except_entity($db, $langs, $conf)
$obj2 = $db->fetch_object($resql2);
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."societe_remise_except SET";
- $sqlUpdate .= " entity = ".$obj2->entity;
- $sqlUpdate .= " WHERE rowid = ".$obj->rowid;
+ $sqlUpdate .= " entity = ".((int) $obj2->entity);
+ $sqlUpdate .= " WHERE rowid = ".((int) $obj->rowid);
$result = $db->query($sqlUpdate);
if (!$result) {
@@ -3880,8 +3880,8 @@ function migrate_user_rights_entity($db, $langs, $conf)
$obj = $db->fetch_object($resql);
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."user_rights SET";
- $sqlUpdate .= " entity = ".$obj->entity;
- $sqlUpdate .= " WHERE fk_user = ".$obj->rowid;
+ $sqlUpdate .= " entity = ".((int) $obj->entity);
+ $sqlUpdate .= " WHERE fk_user = ".((int) $obj->rowid);
$result = $db->query($sqlUpdate);
if (!$result) {
@@ -3945,8 +3945,8 @@ function migrate_usergroup_rights_entity($db, $langs, $conf)
$obj = $db->fetch_object($resql);
$sqlUpdate = "UPDATE ".MAIN_DB_PREFIX."usergroup_rights SET";
- $sqlUpdate .= " entity = ".$obj->entity;
- $sqlUpdate .= " WHERE fk_usergroup = ".$obj->rowid;
+ $sqlUpdate .= " entity = ".((int) $obj->entity);
+ $sqlUpdate .= " WHERE fk_usergroup = ".((int) $obj->rowid);
$result = $db->query($sqlUpdate);
if (!$result) {
diff --git a/htdocs/loan/class/loanschedule.class.php b/htdocs/loan/class/loanschedule.class.php
index 126002eb47a..9beff9dd22e 100644
--- a/htdocs/loan/class/loanschedule.class.php
+++ b/htdocs/loan/class/loanschedule.class.php
@@ -498,7 +498,7 @@ class LoanSchedule extends CommonObject
$toinsert = array();
$sql = "SELECT l.rowid";
- $sql .= " FROM ".MAIN_DB_PREFIX."loan as l ";
+ $sql .= " FROM ".MAIN_DB_PREFIX."loan as l";
$sql .= " WHERE l.paid = 0";
$resql = $this->db->query($sql);
@@ -511,7 +511,8 @@ class LoanSchedule extends CommonObject
$this->db->begin();
$sql = "INSERT INTO ".MAIN_DB_PREFIX."payment_loan ";
$sql .= "(fk_loan,datec,tms,datep,amount_capital,amount_insurance,amount_interest,fk_typepayment,num_payment,note_private,note_public,fk_bank,fk_user_creat,fk_user_modif) ";
- $sql .= "SELECT fk_loan,datec,tms,datep,amount_capital,amount_insurance,amount_interest,fk_typepayment,num_payment,note_private,note_public,fk_bank,fk_user_creat,fk_user_modif FROM ".MAIN_DB_PREFIX."loan_schedule WHERE rowid =".$echid;
+ $sql .= "SELECT fk_loan,datec,tms,datep,amount_capital,amount_insurance,amount_interest,fk_typepayment,num_payment,note_private,note_public,fk_bank,fk_user_creat,fk_user_modif";
+ $sql .= " FROM ".MAIN_DB_PREFIX."loan_schedule WHERE rowid =".((int) $echid);
$res = $this->db->query($sql);
if ($res) {
$this->db->commit();
diff --git a/htdocs/mailmanspip/class/mailmanspip.class.php b/htdocs/mailmanspip/class/mailmanspip.class.php
index d08f6f65094..c5ce2292f6a 100644
--- a/htdocs/mailmanspip/class/mailmanspip.class.php
+++ b/htdocs/mailmanspip/class/mailmanspip.class.php
@@ -232,7 +232,7 @@ class MailmanSpip
$mydb = $this->connectSpip();
if ($mydb) {
- $query = "DELETE FROM spip_auteurs WHERE login='".$object->login."'";
+ $query = "DELETE FROM spip_auteurs WHERE login = '".$mydb->escape($object->login)."'";
$result = $mydb->query($query);
@@ -271,7 +271,7 @@ class MailmanSpip
$mydb = $this->connectSpip();
if ($mydb) {
- $query = "SELECT login FROM spip_auteurs WHERE login='".$object->login."'";
+ $query = "SELECT login FROM spip_auteurs WHERE login = '".$mydb->escape($object->login)."'";
$result = $mydb->query($query);
diff --git a/htdocs/mrp/class/mo.class.php b/htdocs/mrp/class/mo.class.php
index b00aa6e8b91..a0bc74bc4ad 100644
--- a/htdocs/mrp/class/mo.class.php
+++ b/htdocs/mrp/class/mo.class.php
@@ -546,7 +546,7 @@ class Mo extends CommonObject
$result = 0;
$sql = 'SELECT COUNT(rowid) as nb FROM '.MAIN_DB_PREFIX.'stock_mouvement as sm';
- $sql .= " WHERE sm.origintype = 'mo' and sm.fk_origin = ".$this->id;
+ $sql .= " WHERE sm.origintype = 'mo' and sm.fk_origin = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/product/class/product.class.php b/htdocs/product/class/product.class.php
index fc8f5cc4720..ae2aca9fbc9 100644
--- a/htdocs/product/class/product.class.php
+++ b/htdocs/product/class/product.class.php
@@ -1446,8 +1446,8 @@ class Product extends CommonObject
if ($key == $current_lang) {
$sql = "SELECT rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$this->id;
- $sql .= " AND lang='".$this->db->escape($key)."'";
+ $sql .= " WHERE fk_product = ".((int) $this->id);
+ $sql .= " AND lang = '".$this->db->escape($key)."'";
$result = $this->db->query($sql);
@@ -1459,7 +1459,7 @@ class Product extends CommonObject
if (!empty($conf->global->PRODUCT_USE_OTHER_FIELD_IN_TRANSLATION)) {
$sql2 .= ", note='".$this->db->escape($this->other)."'";
}
- $sql2 .= " WHERE fk_product=".$this->id." AND lang='".$this->db->escape($key)."'";
+ $sql2 .= " WHERE fk_product = ".((int) $this->id)." AND lang = '".$this->db->escape($key)."'";
} else {
$sql2 = "INSERT INTO ".MAIN_DB_PREFIX."product_lang (fk_product, lang, label, description";
if (!empty($conf->global->PRODUCT_USE_OTHER_FIELD_IN_TRANSLATION)) {
@@ -1486,20 +1486,20 @@ class Product extends CommonObject
$sql = "SELECT rowid";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$this->id;
- $sql .= " AND lang='".$this->db->escape($key)."'";
+ $sql .= " WHERE fk_product = ".((int) $this->id);
+ $sql .= " AND lang = '".$this->db->escape($key)."'";
$result = $this->db->query($sql);
if ($this->db->num_rows($result)) { // if there is already a description line for this language
$sql2 = "UPDATE ".MAIN_DB_PREFIX."product_lang";
$sql2 .= " SET ";
- $sql2 .= " label='".$this->db->escape($this->multilangs["$key"]["label"])."',";
- $sql2 .= " description='".$this->db->escape($this->multilangs["$key"]["description"])."'";
+ $sql2 .= " label = '".$this->db->escape($this->multilangs["$key"]["label"])."',";
+ $sql2 .= " description = '".$this->db->escape($this->multilangs["$key"]["description"])."'";
if (!empty($conf->global->PRODUCT_USE_OTHER_FIELD_IN_TRANSLATION)) {
- $sql2 .= ", note='".$this->db->escape($this->multilangs["$key"]["other"])."'";
+ $sql2 .= ", note = '".$this->db->escape($this->multilangs["$key"]["other"])."'";
}
- $sql2 .= " WHERE fk_product=".$this->id." AND lang='".$this->db->escape($key)."'";
+ $sql2 .= " WHERE fk_product = ".((int) $this->id)." AND lang = '".$this->db->escape($key)."'";
} else {
$sql2 = "INSERT INTO ".MAIN_DB_PREFIX."product_lang (fk_product, lang, label, description";
if (!empty($conf->global->PRODUCT_USE_OTHER_FIELD_IN_TRANSLATION)) {
@@ -1548,7 +1548,7 @@ class Product extends CommonObject
public function delMultiLangs($langtodelete, $user)
{
$sql = "DELETE FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$this->id." AND lang='".$this->db->escape($langtodelete)."'";
+ $sql .= " WHERE fk_product = ".((int) $this->id)." AND lang = '".$this->db->escape($langtodelete)."'";
dol_syslog(get_class($this).'::delMultiLangs', LOG_DEBUG);
$result = $this->db->query($sql);
@@ -1645,7 +1645,7 @@ class Product extends CommonObject
$sql = "SELECT lang, label, description, note as other";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$this->id;
+ $sql .= " WHERE fk_product = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
@@ -1750,7 +1750,7 @@ class Product extends CommonObject
{
// phpcs:enable
$sql = "DELETE FROM ".MAIN_DB_PREFIX."product_price_by_qty";
- $sql .= " WHERE fk_product_price=".((int) $rowid);
+ $sql .= " WHERE fk_product_price = ".((int) $rowid);
$resql = $this->db->query($sql);
$sql = "DELETE FROM ".MAIN_DB_PREFIX."product_price";
@@ -2265,7 +2265,7 @@ class Product extends CommonObject
$separatedStock = false; // Set to true will count stock from subtable llx_product_stock. It is slower than using denormalized field 'stock', but it is required when using multientity and shared warehouses.
if (!empty($conf->global->MULTICOMPANY_PRODUCT_SHARING_ENABLED)) {
if (!empty($conf->global->MULTICOMPANY_PMP_PER_ENTITY_ENABLED)) {
- $checkPMPPerEntity = $this->db->query("SELECT pmp FROM " . MAIN_DB_PREFIX . "product_perentity WHERE fk_product = ".((int) $id)." AND entity = ".(int) $conf->entity);
+ $checkPMPPerEntity = $this->db->query("SELECT pmp FROM " . MAIN_DB_PREFIX . "product_perentity WHERE fk_product = ".((int) $id)." AND entity = ".(int) $conf->entity);
if ($this->db->num_rows($checkPMPPerEntity)>0) {
$separatedEntityPMP = true;
}
@@ -2470,7 +2470,7 @@ class Product extends CommonObject
{
$sql = "SELECT rowid, price, unitprice, quantity, remise_percent, remise, price_base_type";
$sql.= " FROM ".MAIN_DB_PREFIX."product_price_by_qty";
- $sql.= " WHERE fk_product_price = ".$this->prices_by_qty_id[$i];
+ $sql.= " WHERE fk_product_price = ".((int) $this->prices_by_qty_id[$i]);
$sql.= " ORDER BY quantity ASC";
$resultat=array();
$resql = $this->db->query($sql);
@@ -2578,7 +2578,7 @@ class Product extends CommonObject
if ($this->prices_by_qty[$i] == 1) {
$sql = "SELECT rowid, price, unitprice, quantity, remise_percent, remise, price_base_type";
$sql .= " FROM ".MAIN_DB_PREFIX."product_price_by_qty";
- $sql .= " WHERE fk_product_price = ".$this->prices_by_qty_id[$i];
+ $sql .= " WHERE fk_product_price = ".((int) $this->prices_by_qty_id[$i]);
$sql .= " ORDER BY quantity ASC";
$resultat = array();
$resql = $this->db->query($sql);
@@ -4062,9 +4062,9 @@ class Product extends CommonObject
}
$sql = 'UPDATE '.MAIN_DB_PREFIX.'product_association SET ';
- $sql .= 'qty='.$qty;
- $sql .= ',incdec='.$incdec;
- $sql .= ' WHERE fk_product_pere='.$id_pere.' AND fk_product_fils='.$id_fils;
+ $sql .= 'qty = '.price2num($qty, 'MS');
+ $sql .= ',incdec = '.price2num($incdec, 'MS');
+ $sql .= ' WHERE fk_product_pere = '.((int) $id_pere).' AND fk_product_fils = '.((int) $id_fils);
if (!$this->db->query($sql)) {
dol_print_error($this->db);
@@ -4569,7 +4569,7 @@ class Product extends CommonObject
public function hasVariants()
{
$nb = 0;
- $sql = "SELECT count(rowid) as nb FROM ".MAIN_DB_PREFIX."product_attribute_combination WHERE fk_product_parent = ".$this->id;
+ $sql = "SELECT count(rowid) as nb FROM ".MAIN_DB_PREFIX."product_attribute_combination WHERE fk_product_parent = ".((int) $this->id);
$sql .= " AND entity IN (".getEntity('product').")";
$resql = $this->db->query($sql);
@@ -4593,7 +4593,7 @@ class Product extends CommonObject
{
global $conf;
if (!empty($conf->variants->enabled)) {
- $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."product_attribute_combination WHERE fk_product_child = ".$this->id." AND entity IN (".getEntity('product').")";
+ $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."product_attribute_combination WHERE fk_product_child = ".((int) $this->id)." AND entity IN (".getEntity('product').")";
$query = $this->db->query($sql);
diff --git a/htdocs/product/class/productcustomerprice.class.php b/htdocs/product/class/productcustomerprice.class.php
index 0683732d6cb..07590099571 100644
--- a/htdocs/product/class/productcustomerprice.class.php
+++ b/htdocs/product/class/productcustomerprice.class.php
@@ -721,7 +721,7 @@ class Productcustomerprice extends CommonObject
$sql .= " t.import_key";
$sql .= " FROM ".MAIN_DB_PREFIX."product_customer_price as t";
- $sql .= " WHERE t.rowid = ".$this->id;
+ $sql .= " WHERE t.rowid = ".((int) $this->id);
$this->db->begin();
dol_syslog(get_class($this)."::update", LOG_DEBUG);
diff --git a/htdocs/product/class/propalmergepdfproduct.class.php b/htdocs/product/class/propalmergepdfproduct.class.php
index 67c24ac37c8..99b7e7e188b 100644
--- a/htdocs/product/class/propalmergepdfproduct.class.php
+++ b/htdocs/product/class/propalmergepdfproduct.class.php
@@ -445,7 +445,7 @@ class Propalmergepdfproduct extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."propal_merge_pdf_product";
- $sql .= " WHERE fk_product=".$this->fk_product." AND file_name='".$this->db->escape($this->file_name)."'";
+ $sql .= " WHERE fk_product = ".((int) $this->fk_product)." AND file_name = '".$this->db->escape($this->file_name)."'";
dol_syslog(__METHOD__, LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/product/fournisseurs.php b/htdocs/product/fournisseurs.php
index 97f29de72f6..9451fec435e 100644
--- a/htdocs/product/fournisseurs.php
+++ b/htdocs/product/fournisseurs.php
@@ -272,7 +272,7 @@ if (empty($reshook)) {
$extralabels = $extrafields->fetch_name_optionals_label("product_fournisseur_price");
$extrafield_values = $extrafields->getOptionalsFromPost("product_fournisseur_price");
if (!empty($extrafield_values)) {
- $resql = $db->query("SELECT fk_object FROM ".MAIN_DB_PREFIX."product_fournisseur_price_extrafields WHERE fk_object = ".$object->product_fourn_price_id);
+ $resql = $db->query("SELECT fk_object FROM ".MAIN_DB_PREFIX."product_fournisseur_price_extrafields WHERE fk_object = ".((int) $object->product_fourn_price_id));
// Insert a new extrafields row, if none exists
if ($db->num_rows($resql) != 1) {
$sql = "INSERT INTO ".MAIN_DB_PREFIX."product_fournisseur_price_extrafields (fk_object, ";
diff --git a/htdocs/product/list.php b/htdocs/product/list.php
index a975dc2c21b..ff21caf96f9 100644
--- a/htdocs/product/list.php
+++ b/htdocs/product/list.php
@@ -1253,8 +1253,8 @@ if ($resql) {
if (!empty($conf->global->MAIN_MULTILANGS)) { // If multilang is enabled
$sql = "SELECT label";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$obj->rowid;
- $sql .= " AND lang='".$db->escape($langs->getDefaultLang())."'";
+ $sql .= " WHERE fk_product = ".((int) $obj->rowid);
+ $sql .= " AND lang = '".$db->escape($langs->getDefaultLang())."'";
$sql .= " LIMIT 1";
$result = $db->query($sql);
diff --git a/htdocs/product/reassortlot.php b/htdocs/product/reassortlot.php
index 65e69b91384..2380b4103a2 100644
--- a/htdocs/product/reassortlot.php
+++ b/htdocs/product/reassortlot.php
@@ -393,8 +393,8 @@ if ($resql) {
if (!empty($conf->global->MAIN_MULTILANGS)) { // si l'option est active
$sql = "SELECT label";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$objp->rowid;
- $sql .= " AND lang='".$db->escape($langs->getDefaultLang())."'";
+ $sql .= " WHERE fk_product = ".((int) $objp->rowid);
+ $sql .= " AND lang = '".$db->escape($langs->getDefaultLang())."'";
$sql .= " LIMIT 1";
$result = $db->query($sql);
@@ -406,7 +406,6 @@ if ($resql) {
}
}
-
$product_static->ref = $objp->ref;
$product_static->id = $objp->rowid;
$product_static->label = $objp->label;
diff --git a/htdocs/product/stock/card.php b/htdocs/product/stock/card.php
index 6760da10cb0..7defecb7c62 100644
--- a/htdocs/product/stock/card.php
+++ b/htdocs/product/stock/card.php
@@ -662,8 +662,8 @@ if ($action == 'create') {
if (!empty($conf->global->MAIN_MULTILANGS)) { // si l'option est active
$sql = "SELECT label";
$sql .= " FROM ".MAIN_DB_PREFIX."product_lang";
- $sql .= " WHERE fk_product=".$objp->rowid;
- $sql .= " AND lang='".$db->escape($langs->getDefaultLang())."'";
+ $sql .= " WHERE fk_product = ".((int) $objp->rowid);
+ $sql .= " AND lang = '".$db->escape($langs->getDefaultLang())."'";
$sql .= " LIMIT 1";
$result = $db->query($sql);
diff --git a/htdocs/product/stock/class/entrepot.class.php b/htdocs/product/stock/class/entrepot.class.php
index 55ee6abf8fa..04dcddb8fab 100644
--- a/htdocs/product/stock/class/entrepot.class.php
+++ b/htdocs/product/stock/class/entrepot.class.php
@@ -366,7 +366,7 @@ class Entrepot extends CommonObject
foreach ($elements as $table) {
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX.$table;
- $sql .= " WHERE fk_entrepot = ".$this->id;
+ $sql .= " WHERE fk_entrepot = ".((int) $this->id);
$result = $this->db->query($sql);
if (!$result) {
@@ -585,7 +585,7 @@ class Entrepot extends CommonObject
$sql = "SELECT count(distinct p.rowid) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."product_stock as ps";
$sql .= ", ".MAIN_DB_PREFIX."product as p";
- $sql .= " WHERE ps.fk_entrepot = ".$this->id;
+ $sql .= " WHERE ps.fk_entrepot = ".((int) $this->id);
$sql .= " AND ps.fk_product = p.rowid";
//print $sql;
@@ -630,7 +630,7 @@ class Entrepot extends CommonObject
if ($separatedPMP) {
$sql .= ", ".MAIN_DB_PREFIX."product_perentity as pa";
}
- $sql .= " WHERE ps.fk_entrepot = ".$this->id;
+ $sql .= " WHERE ps.fk_entrepot = ".((int) $this->id);
if ($separatedPMP) {
$sql .= " AND pa.fk_product = p.rowid AND pa.entity = ". (int) $conf->entity;
}
diff --git a/htdocs/projet/class/project.class.php b/htdocs/projet/class/project.class.php
index 16501940949..02939ead090 100644
--- a/htdocs/projet/class/project.class.php
+++ b/htdocs/projet/class/project.class.php
@@ -867,7 +867,7 @@ class Project extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."projet_extrafields";
- $sql .= " WHERE fk_object=".$this->id;
+ $sql .= " WHERE fk_object = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -944,7 +944,7 @@ class Project extends CommonObject
}
if ($type == 'agenda') {
- $sql = "SELECT COUNT(id) as nb FROM ".MAIN_DB_PREFIX."actioncomm WHERE fk_project = ".$this->id." AND entity IN (".getEntity('agenda').")";
+ $sql = "SELECT COUNT(id) as nb FROM ".MAIN_DB_PREFIX."actioncomm WHERE fk_project = ".((int) $this->id)." AND entity IN (".getEntity('agenda').")";
} elseif ($type == 'expensereport') {
$sql = "SELECT COUNT(ed.rowid) as nb FROM ".MAIN_DB_PREFIX."expensereport as e, ".MAIN_DB_PREFIX."expensereport_det as ed WHERE e.rowid = ed.fk_expensereport AND e.entity IN (".getEntity('expensereport').") AND ed.fk_projet = ".((int) $this->id);
} elseif ($type == 'project_task') {
diff --git a/htdocs/projet/class/task.class.php b/htdocs/projet/class/task.class.php
index 70a38a6818b..53973f7672e 100644
--- a/htdocs/projet/class/task.class.php
+++ b/htdocs/projet/class/task.class.php
@@ -519,7 +519,7 @@ class Task extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."projet_task_time";
- $sql .= " WHERE fk_task=".$this->id;
+ $sql .= " WHERE fk_task = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -529,7 +529,7 @@ class Task extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."projet_task_extrafields";
- $sql .= " WHERE fk_object=".$this->id;
+ $sql .= " WHERE fk_object = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -603,7 +603,7 @@ class Task extends CommonObject
$sql = "SELECT COUNT(*) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."projet_task";
- $sql .= " WHERE fk_task_parent=".$this->id;
+ $sql .= " WHERE fk_task_parent = ".((int) $this->id);
dol_syslog(get_class($this)."::hasChildren", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -636,7 +636,7 @@ class Task extends CommonObject
$sql = "SELECT COUNT(*) as nb";
$sql .= " FROM ".MAIN_DB_PREFIX."projet_task_time";
- $sql .= " WHERE fk_task=".$this->id;
+ $sql .= " WHERE fk_task = ".((int) $this->id);
dol_syslog(get_class($this)."::hasTimeSpent", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -1639,7 +1639,7 @@ class Task extends CommonObject
$this->db->begin();
$sql = "DELETE FROM ".MAIN_DB_PREFIX."projet_task_time";
- $sql .= " WHERE rowid = ".$this->timespent_id;
+ $sql .= " WHERE rowid = ".((int) $this->timespent_id);
dol_syslog(get_class($this)."::delTimeSpent", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/resource/class/dolresource.class.php b/htdocs/resource/class/dolresource.class.php
index 91f68951842..b7f16a9ff9d 100644
--- a/htdocs/resource/class/dolresource.class.php
+++ b/htdocs/resource/class/dolresource.class.php
@@ -360,7 +360,7 @@ class Dolresource extends CommonObject
$sql .= " t.fk_user_create,";
$sql .= " t.tms";
$sql .= " FROM ".MAIN_DB_PREFIX."element_resources as t";
- $sql .= " WHERE t.rowid = ".$this->db->escape($id);
+ $sql .= " WHERE t.rowid = ".((int) $id);
dol_syslog(get_class($this)."::fetch", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/salaries/class/salary.class.php b/htdocs/salaries/class/salary.class.php
index ab1e06f3b34..17274813ef5 100644
--- a/htdocs/salaries/class/salary.class.php
+++ b/htdocs/salaries/class/salary.class.php
@@ -286,7 +286,7 @@ class Salary extends CommonObject
/*if (!$error)
{
$sql = "DELETE FROM ".MAIN_DB_PREFIX."salary_extrafields";
- $sql .= " WHERE fk_object=".$this->id;
+ $sql .= " WHERE fk_object = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql)
diff --git a/htdocs/societe/class/companybankaccount.class.php b/htdocs/societe/class/companybankaccount.class.php
index f4e871fce83..24e8c40165b 100644
--- a/htdocs/societe/class/companybankaccount.class.php
+++ b/htdocs/societe/class/companybankaccount.class.php
@@ -292,7 +292,7 @@ class CompanyBankAccount extends Account
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."societe_rib";
- $sql .= " WHERE rowid = ".$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
if (!$this->db->query($sql)) {
$error++;
diff --git a/htdocs/societe/class/societe.class.php b/htdocs/societe/class/societe.class.php
index 0dd3e31da01..555fa3b05e1 100644
--- a/htdocs/societe/class/societe.class.php
+++ b/htdocs/societe/class/societe.class.php
@@ -917,7 +917,7 @@ class Societe extends CommonObject
// update accountancy for this entity
if (!$error && !empty($conf->global->MAIN_COMPANY_PERENTITY_SHARED)) {
- $this->db->query("DELETE FROM " . MAIN_DB_PREFIX . "societe_perentity WHERE fk_soc = " . $this->id . " AND entity = " . $conf->entity);
+ $this->db->query("DELETE FROM " . MAIN_DB_PREFIX . "societe_perentity WHERE fk_soc = " . ((int) $this->id) . " AND entity = " . ((int) $conf->entity));
$sql = "INSERT INTO " . MAIN_DB_PREFIX . "societe_perentity (";
$sql .= " fk_soc";
@@ -1535,7 +1535,7 @@ class Societe extends CommonObject
// update accountancy for this entity
if (!$error && !empty($conf->global->MAIN_COMPANY_PERENTITY_SHARED)) {
- $this->db->query("DELETE FROM " . MAIN_DB_PREFIX . "societe_perentity WHERE fk_soc = " . $this->id . " AND entity = " . $conf->entity);
+ $this->db->query("DELETE FROM " . MAIN_DB_PREFIX . "societe_perentity WHERE fk_soc = " . ((int) $this->id) . " AND entity = " . ((int) $conf->entity));
$sql = "INSERT INTO " . MAIN_DB_PREFIX . "societe_perentity (";
$sql .= " fk_soc";
@@ -2401,7 +2401,7 @@ class Societe extends CommonObject
if (!$error) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."societe_commerciaux";
- $sql .= " WHERE fk_soc = ".$this->id." AND fk_user = ".((int) $commid);
+ $sql .= " WHERE fk_soc = ".((int) $this->id)." AND fk_user = ".((int) $commid);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -2413,7 +2413,7 @@ class Societe extends CommonObject
if (!$error) {
$sql = "INSERT INTO ".MAIN_DB_PREFIX."societe_commerciaux";
$sql .= " (fk_soc, fk_user)";
- $sql .= " VALUES (".$this->id.", ".$commid.")";
+ $sql .= " VALUES (".((int) $this->id).", ".((int) $commid).")";
$resql = $this->db->query($sql);
if (!$resql) {
@@ -2423,7 +2423,7 @@ class Societe extends CommonObject
}
if (!$error) {
- $this->context = array('commercial_modified'=>$commid);
+ $this->context = array('commercial_modified' => $commid);
$result = $this->call_trigger('COMPANY_LINK_SALE_REPRESENTATIVE', $user);
if ($result < 0) {
@@ -2464,7 +2464,7 @@ class Societe extends CommonObject
if ($this->id > 0 && $commid > 0) {
$sql = "DELETE FROM ".MAIN_DB_PREFIX."societe_commerciaux ";
- $sql .= " WHERE fk_soc = ".$this->id." AND fk_user = ".((int) $commid);
+ $sql .= " WHERE fk_soc = ".((int) $this->id)." AND fk_user = ".((int) $commid);
if (!$this->db->query($sql)) {
dol_syslog(get_class($this)."::del_commercial Erreur");
@@ -2837,7 +2837,7 @@ class Societe extends CommonObject
$sql = "SELECT rowid, email, statut as status, phone_mobile, lastname, poste, firstname";
$sql .= " FROM ".MAIN_DB_PREFIX."socpeople";
- $sql .= " WHERE fk_soc = ".$this->id;
+ $sql .= " WHERE fk_soc = ".((int) $this->id);
$sql .= " ORDER BY lastname, firstname";
$resql = $this->db->query($sql);
@@ -2897,7 +2897,7 @@ class Societe extends CommonObject
// phpcs:enable
$contacts = array();
- $sql = "SELECT rowid, lastname, firstname FROM ".MAIN_DB_PREFIX."socpeople WHERE fk_soc = ".$this->id;
+ $sql = "SELECT rowid, lastname, firstname FROM ".MAIN_DB_PREFIX."socpeople WHERE fk_soc = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
$nump = $this->db->num_rows($resql);
@@ -2927,7 +2927,7 @@ class Societe extends CommonObject
require_once DOL_DOCUMENT_ROOT.'/contact/class/contact.class.php';
$contacts = array();
- $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."socpeople WHERE fk_soc = ".$this->id;
+ $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."socpeople WHERE fk_soc = ".((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
$nump = $this->db->num_rows($resql);
@@ -3743,7 +3743,7 @@ class Societe extends CommonObject
public function has_projects()
{
// phpcs:enable
- $sql = 'SELECT COUNT(*) as numproj FROM '.MAIN_DB_PREFIX.'projet WHERE fk_soc = '.$this->id;
+ $sql = 'SELECT COUNT(*) as numproj FROM '.MAIN_DB_PREFIX.'projet WHERE fk_soc = '.((int) $this->id);
$resql = $this->db->query($sql);
if ($resql) {
$obj = $this->db->fetch_object($resql);
@@ -4761,6 +4761,7 @@ class Societe extends CommonObject
$this->db->begin();
+ $field = 'accountancy_code_sell';
if ($type == 'buy') {
$field = 'accountancy_code_buy';
} elseif ($type == 'sell') {
@@ -4770,8 +4771,8 @@ class Societe extends CommonObject
}
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET ";
- $sql.= "$field = '".$this->db->escape($value)."'";
- $sql.= " WHERE rowid = ".$this->id;
+ $sql.= $field." = '".$this->db->escape($value)."'";
+ $sql.= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::".__FUNCTION__." sql=".$sql, LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/stripe/class/stripe.class.php b/htdocs/stripe/class/stripe.class.php
index 5614b3c6138..c671ac9c396 100644
--- a/htdocs/stripe/class/stripe.class.php
+++ b/htdocs/stripe/class/stripe.class.php
@@ -170,7 +170,7 @@ class Stripe extends CommonObject
$sql = "SELECT sa.key_account as key_account, sa.entity"; // key_account is cus_....
$sql .= " FROM ".MAIN_DB_PREFIX."societe_account as sa";
- $sql .= " WHERE sa.fk_soc = ".$object->id;
+ $sql .= " WHERE sa.fk_soc = ".((int) $object->id);
$sql .= " AND sa.entity IN (".getEntity('societe').")";
$sql .= " AND sa.site = 'stripe' AND sa.status = ".((int) $status);
$sql .= " AND (sa.site_account IS NULL OR sa.site_account = '' OR sa.site_account = '".$this->db->escape($stripearrayofkeysbyenv[$status]['publishable_key'])."')";
@@ -359,7 +359,7 @@ class Stripe extends CommonObject
$sql = "SELECT pi.ext_payment_id, pi.entity, pi.fk_facture, pi.sourcetype, pi.ext_payment_site";
$sql .= " FROM ".MAIN_DB_PREFIX."prelevement_facture_demande as pi";
- $sql .= " WHERE pi.fk_facture = ".$object->id;
+ $sql .= " WHERE pi.fk_facture = ".((int) $object->id);
$sql .= " AND pi.sourcetype = '".$this->db->escape($object->element)."'";
$sql .= " AND pi.entity IN (".getEntity('societe').")";
$sql .= " AND pi.ext_payment_site = '".$this->db->escape($service)."'";
@@ -728,7 +728,7 @@ class Stripe extends CommonObject
$sql = "SELECT sa.stripe_card_ref, sa.proprio, sa.exp_date_month, sa.exp_date_year, sa.number, sa.cvn"; // stripe_card_ref is card_....
$sql .= " FROM ".MAIN_DB_PREFIX."societe_rib as sa";
- $sql .= " WHERE sa.rowid = ".$object->id; // We get record from ID, no need for filter on entity
+ $sql .= " WHERE sa.rowid = ".((int) $object->id); // We get record from ID, no need for filter on entity
$sql .= " AND sa.type = 'card'";
dol_syslog(get_class($this)."::fetch search stripe card id for paymentmode id=".$object->id.", stripeacc=".$stripeacc.", status=".$status.", createifnotlinkedtostripe=".$createifnotlinkedtostripe, LOG_DEBUG);
@@ -826,7 +826,7 @@ class Stripe extends CommonObject
$sql .= " SET stripe_card_ref = '".$this->db->escape($card->id)."', card_type = '".$this->db->escape($card->brand)."',";
$sql .= " country_code = '".$this->db->escape($card->country)."',";
$sql .= " approved = ".($card->cvc_check == 'pass' ? 1 : 0);
- $sql .= " WHERE rowid = ".$object->id;
+ $sql .= " WHERE rowid = ".((int) $object->id);
$sql .= " AND type = 'card'";
$resql = $this->db->query($sql);
if (!$resql) {
diff --git a/htdocs/takepos/floors.php b/htdocs/takepos/floors.php
index 508d6e670b3..b3ba955f4e8 100644
--- a/htdocs/takepos/floors.php
+++ b/htdocs/takepos/floors.php
@@ -93,9 +93,9 @@ if ($action == "update") {
$top = 95;
}
if ($left > 3 or $top > 4) {
- $db->query("UPDATE ".MAIN_DB_PREFIX."takepos_floor_tables set leftpos=".$left.", toppos=".$top." WHERE rowid='".$place."'");
+ $db->query("UPDATE ".MAIN_DB_PREFIX."takepos_floor_tables set leftpos = ".((int) $left).", toppos = ".((int) $top)." WHERE rowid = ".((int) $place));
} else {
- $db->query("DELETE from ".MAIN_DB_PREFIX."takepos_floor_tables where rowid='".$place."'");
+ $db->query("DELETE from ".MAIN_DB_PREFIX."takepos_floor_tables where rowid = ".((int) $place));
}
}
@@ -104,11 +104,11 @@ if ($action == "updatename") {
if (strlen($newname) > 3) {
$newname = substr($newname, 0, 3); // Only 3 chars
}
- $db->query("UPDATE ".MAIN_DB_PREFIX."takepos_floor_tables set label='".$db->escape($newname)."' WHERE rowid='".$place."'");
+ $db->query("UPDATE ".MAIN_DB_PREFIX."takepos_floor_tables set label='".$db->escape($newname)."' WHERE rowid = ".((int) $place));
}
if ($action == "add") {
- $sql = "INSERT INTO ".MAIN_DB_PREFIX."takepos_floor_tables(entity, label, leftpos, toppos, floor) VALUES (".$conf->entity.", '', '45', '45', ".$floor.")";
+ $sql = "INSERT INTO ".MAIN_DB_PREFIX."takepos_floor_tables(entity, label, leftpos, toppos, floor) VALUES (".$conf->entity.", '', '45', '45', ".((int) $floor).")";
$asdf = $db->query($sql);
$db->query("update ".MAIN_DB_PREFIX."takepos_floor_tables set label=rowid where label=''"); // No empty table names
}
diff --git a/htdocs/ticket/class/ticket.class.php b/htdocs/ticket/class/ticket.class.php
index 1ffec54ed22..bf08e2fdf01 100644
--- a/htdocs/ticket/class/ticket.class.php
+++ b/htdocs/ticket/class/ticket.class.php
@@ -2296,7 +2296,7 @@ class Ticket extends CommonObject
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."socpeople t on ec.fk_socpeople = t.rowid";
}
- $sql .= " WHERE ec.element_id =".$this->id;
+ $sql .= " WHERE ec.element_id = ".((int) $this->id);
$sql .= " AND ec.fk_c_type_contact=tc.rowid";
$sql .= " AND tc.element='".$this->db->escape($this->element)."'";
if ($source == 'internal') {
diff --git a/htdocs/user/bank.php b/htdocs/user/bank.php
index aa6f97a6c05..00b85dc23a6 100644
--- a/htdocs/user/bank.php
+++ b/htdocs/user/bank.php
@@ -369,7 +369,7 @@ if ($action != 'edit' && $action != 'create') { // If not bank account yet, $ac
$sql = "SELECT s.rowid as sid, s.ref as sref, s.label, s.datesp, s.dateep, s.paye, s.amount, SUM(ps.amount) as alreadypaid";
$sql .= " FROM ".MAIN_DB_PREFIX."salary as s";
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."payment_salary as ps ON (s.rowid = ps.fk_salary)";
- $sql .= " WHERE s.fk_user = ".$object->id;
+ $sql .= " WHERE s.fk_user = ".((int) $object->id);
$sql .= " AND s.entity IN (".getEntity('salary').")";
$sql .= " GROUP BY s.rowid, s.ref, s.label, s.datesp, s.dateep, s.paye, s.amount";
$sql .= " ORDER BY s.dateep DESC";
@@ -433,7 +433,7 @@ if ($action != 'edit' && $action != 'create') { // If not bank account yet, $ac
$sql = "SELECT h.rowid, h.statut as status, h.fk_type, h.date_debut, h.date_fin, h.halfday";
$sql .= " FROM ".MAIN_DB_PREFIX."holiday as h";
- $sql .= " WHERE h.fk_user = ".$object->id;
+ $sql .= " WHERE h.fk_user = ".((int) $object->id);
$sql .= " AND h.entity IN (".getEntity('holiday').")";
$sql .= " ORDER BY h.date_debut DESC";
@@ -485,8 +485,8 @@ if ($action != 'edit' && $action != 'create') { // If not bank account yet, $ac
$sql = "SELECT e.rowid, e.ref, e.fk_statut as status, e.date_debut, e.total_ttc";
$sql .= " FROM ".MAIN_DB_PREFIX."expensereport as e";
- $sql .= " WHERE e.fk_user_author = ".$object->id;
- $sql .= " AND e.entity = ".$conf->entity;
+ $sql .= " WHERE e.fk_user_author = ".((int) $object->id);
+ $sql .= " AND e.entity = ".((int) $conf->entity);
$sql .= " ORDER BY e.date_debut DESC";
$resql = $db->query($sql);
diff --git a/htdocs/user/card.php b/htdocs/user/card.php
index ad1007f3c52..be91f302b97 100644
--- a/htdocs/user/card.php
+++ b/htdocs/user/card.php
@@ -512,15 +512,15 @@ if (empty($reshook)) {
if (!empty($contact->socid)) {
$sql .= ", fk_soc=".((int) $contact->socid);
}
- $sql .= " WHERE rowid=".$object->id;
+ $sql .= " WHERE rowid = ".((int) $object->id);
} elseif ($socid > 0) {
$sql = "UPDATE ".MAIN_DB_PREFIX."user";
$sql .= " SET fk_socpeople=NULL, fk_soc=".((int) $socid);
- $sql .= " WHERE rowid=".$object->id;
+ $sql .= " WHERE rowid = ".((int) $object->id);
} else {
$sql = "UPDATE ".MAIN_DB_PREFIX."user";
$sql .= " SET fk_socpeople=NULL, fk_soc=NULL";
- $sql .= " WHERE rowid=".$object->id;
+ $sql .= " WHERE rowid = ".((int) $object->id);
}
dol_syslog("usercard::update", LOG_DEBUG);
$resql = $db->query($sql);
diff --git a/test/phpunit/CodingPhpTest.php b/test/phpunit/CodingPhpTest.php
index 5ba74969107..e4a0e015fe8 100644
--- a/test/phpunit/CodingPhpTest.php
+++ b/test/phpunit/CodingPhpTest.php
@@ -143,7 +143,6 @@ class CodingPhpTest extends PHPUnit\Framework\TestCase
$user=$this->savuser;
$langs=$this->savlangs;
$db=$this->savdb;
-
print __METHOD__."\n";
}
@@ -290,7 +289,7 @@ class CodingPhpTest extends PHPUnit\Framework\TestCase
// with xxx that is not 'thi' (for $this->db->sanitize) and 'db-' (for $db->sanitize). It means we forget a ' if string or an (int) if int when forging sql request.
preg_match_all('/(DELETE|OR|AND|WHERE|INSERT)\s.*([^\s][^\s][^\s])\s*=\s*"\s*\.\s*\$(...)/', $filecontent, $matches, PREG_SET_ORDER);
foreach ($matches as $key => $val) {
- if ($val[2] == 'ity' && $val[3] == 'con') {
+ if ($val[2] == 'ity' && $val[3] == 'con') { // exclude entity = $conf->entity
continue;
}
var_dump($matches);
@@ -316,7 +315,7 @@ class CodingPhpTest extends PHPUnit\Framework\TestCase
// Check string sql|set...'".$yyy->xxx with xxx that is not 'escape', 'idate', .... It means we forget a db->escape when forging sql request.
preg_match_all('/(sql|SET|WHERE).+\s*\'"\s*\.\s*\$(.........)/', $filecontent, $matches, PREG_SET_ORDER);
foreach ($matches as $key => $val) {
- if (! in_array($val[2], array('this->db-', 'this->esc', 'db->escap', 'dbsession', 'db->idate', 'excludeGr', 'includeGr'))) {
+ if (! in_array($val[2], array('this->db-', 'this->esc', 'db->escap', 'mydb->esc', 'dbsession', 'db->idate', 'escapedli', 'excludeGr', 'includeGr'))) {
$ok=false;
break;
}
From 46d993c9a6d8355d13fe1add39bace8b2640507b Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Fri, 27 Aug 2021 22:42:04 +0200
Subject: [PATCH 063/117] Clean code
---
htdocs/accountancy/admin/card.php | 4 +-
htdocs/accountancy/admin/productaccount.php | 4 +-
htdocs/accountancy/bookkeeping/list.php | 20 +++----
.../class/accountancycategory.class.php | 4 +-
.../class/accountancysystem.class.php | 6 +-
.../class/accountingaccount.class.php | 14 ++---
.../class/accountingjournal.class.php | 8 +--
.../accountancy/class/bookkeeping.class.php | 27 +++++----
htdocs/accountancy/class/lettering.class.php | 2 +-
htdocs/accountancy/closure/index.php | 6 +-
htdocs/accountancy/customer/card.php | 2 +-
htdocs/accountancy/customer/index.php | 18 +++---
htdocs/accountancy/customer/list.php | 2 +-
htdocs/accountancy/expensereport/card.php | 2 +-
htdocs/accountancy/expensereport/index.php | 16 ++---
htdocs/accountancy/expensereport/list.php | 2 +-
htdocs/accountancy/supplier/card.php | 2 +-
htdocs/accountancy/supplier/index.php | 6 +-
htdocs/accountancy/supplier/list.php | 2 +-
htdocs/adherents/cartes/carte.php | 2 +-
htdocs/adherents/class/adherent.class.php | 4 +-
.../adherents/class/adherent_type.class.php | 2 +-
htdocs/adherents/class/api_members.class.php | 2 +-
htdocs/adherents/list.php | 2 +-
htdocs/admin/emailcollector_list.php | 6 +-
htdocs/admin/limits.php | 6 +-
htdocs/admin/mails_senderprofile_list.php | 6 +-
htdocs/admin/translation.php | 2 +-
htdocs/api/class/api.class.php | 26 ++++++--
htdocs/asset/list.php | 6 +-
htdocs/bom/bom_list.php | 4 +-
htdocs/bom/class/bom.class.php | 18 +++---
htdocs/categories/class/categorie.class.php | 23 ++++---
htdocs/comm/action/class/actioncomm.class.php | 18 +++---
htdocs/comm/action/index.php | 2 +-
htdocs/comm/action/list.php | 2 +-
.../mailing/class/advtargetemailing.class.php | 52 ++++++++--------
.../html.formadvtargetemailing.class.php | 22 +++----
htdocs/comm/mailing/class/mailing.class.php | 4 +-
htdocs/comm/propal/class/propal.class.php | 2 +-
htdocs/comm/propal/list.php | 2 +-
htdocs/commande/class/commande.class.php | 22 +++----
htdocs/commande/list.php | 2 +-
htdocs/compta/bank/bankentries_list.php | 2 +-
htdocs/compta/bank/list.php | 2 +-
.../compta/cashcontrol/cashcontrol_list.php | 4 +-
.../compta/facture/invoicetemplate_list.php | 2 +-
htdocs/compta/facture/list.php | 2 +-
.../compta/paiement/class/paiement.class.php | 6 +-
.../class/bonprelevement.class.php | 6 +-
htdocs/compta/stats/byratecountry.php | 4 +-
htdocs/contact/list.php | 2 +-
htdocs/contrat/class/contrat.class.php | 10 ++--
htdocs/contrat/list.php | 2 +-
htdocs/contrat/services_list.php | 2 +-
htdocs/core/class/cproductnature.class.php | 2 +-
htdocs/core/class/ctyperesource.class.php | 2 +-
htdocs/core/class/cunits.class.php | 2 +-
htdocs/core/class/defaultvalues.class.php | 2 +-
htdocs/core/class/notify.class.php | 6 +-
htdocs/core/db/DoliDB.class.php | 4 +-
htdocs/core/lib/admin.lib.php | 2 +-
htdocs/core/lib/functions2.lib.php | 2 +-
htdocs/core/modules/DolibarrModules.class.php | 12 ++--
htdocs/core/modules/modAdherent.class.php | 4 +-
htdocs/core/modules/modBom.class.php | 4 +-
htdocs/core/modules/modCommande.class.php | 4 +-
htdocs/core/modules/modContrat.class.php | 5 +-
htdocs/core/modules/modDon.class.php | 4 +-
.../core/modules/modEmailCollector.class.php | 60 ++++++++-----------
.../modules/modEventOrganization.class.php | 8 +--
htdocs/core/modules/modExpedition.class.php | 8 +--
.../core/modules/modExpenseReport.class.php | 4 +-
htdocs/core/modules/modFacture.class.php | 4 +-
htdocs/core/modules/modFicheinter.class.php | 4 +-
htdocs/core/modules/modFournisseur.class.php | 4 +-
htdocs/core/modules/modHoliday.class.php | 4 +-
.../modules/modKnowledgeManagement.class.php | 8 +--
htdocs/core/modules/modMrp.class.php | 4 +-
htdocs/core/modules/modPartnership.class.php | 8 +--
htdocs/core/modules/modPrelevement.class.php | 4 +-
htdocs/core/modules/modProjet.class.php | 12 ++--
htdocs/core/modules/modPropale.class.php | 4 +-
htdocs/core/modules/modReception.class.php | 4 +-
htdocs/core/modules/modRecruitment.class.php | 8 +--
htdocs/core/modules/modStock.class.php | 9 ++-
.../modules/modSupplierProposal.class.php | 4 +-
htdocs/core/modules/modTicket.class.php | 4 +-
htdocs/core/modules/modWorkstation.class.php | 8 +--
.../movement/doc/pdf_standard.modules.php | 2 +-
htdocs/ecm/class/ecmfiles.class.php | 2 +-
.../class/conferenceorbooth.class.php | 2 +-
.../class/conferenceorboothattendee.class.php | 2 +-
.../conferenceorbooth_list.php | 2 +-
.../conferenceorboothattendee_list.php | 2 +-
htdocs/expedition/list.php | 2 +-
.../class/expensereport.class.php | 14 ++---
htdocs/expensereport/list.php | 2 +-
htdocs/fichinter/list.php | 2 +-
.../class/fournisseur.commande.class.php | 12 ++--
.../fournisseur.commande.dispatch.class.php | 2 +-
htdocs/fourn/commande/list.php | 2 +-
htdocs/fourn/facture/list.php | 2 +-
htdocs/holiday/list.php | 2 +-
htdocs/hrm/class/establishment.class.php | 2 +-
htdocs/intracommreport/list.php | 2 +-
.../class/knowledgerecord.class.php | 8 +--
.../knowledgerecord_list.php | 4 +-
.../template/class/myobject.class.php | 12 ++--
.../modulebuilder/template/myobject_list.php | 4 +-
htdocs/mrp/class/mo.class.php | 16 ++---
htdocs/mrp/mo_list.php | 4 +-
htdocs/mrp/mo_movements.php | 2 +-
.../partnership/class/partnership.class.php | 10 ++--
htdocs/partnership/partnership_list.php | 4 +-
htdocs/product/class/product.class.php | 2 +-
.../class/productcustomerprice.class.php | 4 +-
.../class/productfournisseurprice.class.php | 8 +--
htdocs/product/inventory/list.php | 4 +-
htdocs/product/list.php | 2 +-
.../class/productstockentrepot.class.php | 2 +-
htdocs/product/stock/list.php | 6 +-
htdocs/product/stock/movement_card.php | 2 +-
htdocs/product/stock/movement_list.php | 2 +-
htdocs/product/stock/productlot_list.php | 6 +-
htdocs/projet/class/task.class.php | 4 +-
htdocs/projet/list.php | 2 +-
htdocs/projet/tasks/list.php | 2 +-
htdocs/public/recruitment/index.php | 2 +-
htdocs/public/ticket/list.php | 2 +-
htdocs/reception/list.php | 2 +-
.../class/recruitmentcandidature.class.php | 10 ++--
.../class/recruitmentjobposition.class.php | 10 ++--
.../recruitmentcandidature_list.php | 6 +-
.../recruitmentjobposition_list.php | 4 +-
htdocs/resource/class/dolresource.class.php | 2 +-
htdocs/societe/class/societe.class.php | 2 +-
htdocs/societe/list.php | 2 +-
htdocs/societe/website.php | 6 +-
htdocs/supplier_proposal/list.php | 2 +-
htdocs/ticket/class/cticketcategory.class.php | 10 ++--
htdocs/ticket/class/ticket.class.php | 18 +++---
htdocs/ticket/list.php | 4 +-
htdocs/user/class/user.class.php | 10 ++--
htdocs/user/list.php | 2 +-
htdocs/user/notify/card.php | 6 +-
.../class/ProductAttributeValue.class.php | 3 +-
htdocs/website/class/website.class.php | 2 +-
htdocs/website/class/websitepage.class.php | 2 +-
.../workstation/class/workstation.class.php | 10 ++--
htdocs/workstation/workstation_list.php | 4 +-
htdocs/zapier/class/hook.class.php | 8 +--
test/phpunit/CodingPhpTest.php | 41 +++++++++++--
153 files changed, 515 insertions(+), 477 deletions(-)
diff --git a/htdocs/accountancy/admin/card.php b/htdocs/accountancy/admin/card.php
index 46d8dc0dc80..86efee3a04a 100644
--- a/htdocs/accountancy/admin/card.php
+++ b/htdocs/accountancy/admin/card.php
@@ -261,7 +261,7 @@ if ($action == 'create') {
// autosuggest from existing account types if found
print '';
$sql = 'SELECT DISTINCT pcg_type FROM ' . MAIN_DB_PREFIX . 'accounting_account';
- $sql .= ' WHERE fk_pcg_version = "' . $db->escape($accountsystem->ref) . '"';
+ $sql .= " WHERE fk_pcg_version = '" . $db->escape($accountsystem->ref) . "'";
$sql .= ' AND entity in ('.getEntity('accounting_account', 0).')'; // Always limit to current entity. No sharing in accountancy.
$sql .= ' LIMIT 50000'; // just as a sanity check
$resql = $db->query($sql);
@@ -337,7 +337,7 @@ if ($action == 'create') {
// autosuggest from existing account types if found
print '';
$sql = 'SELECT DISTINCT pcg_type FROM ' . MAIN_DB_PREFIX . 'accounting_account';
- $sql .= ' WHERE fk_pcg_version = "' . $db->escape($accountsystem->ref) . '"';
+ $sql .= " WHERE fk_pcg_version = '" . $db->escape($accountsystem->ref) . "'";
$sql .= ' AND entity in ('.getEntity('accounting_account', 0).')'; // Always limit to current entity. No sharing in accountancy.
$sql .= ' LIMIT 50000'; // just as a sanity check
$resql = $db->query($sql);
diff --git a/htdocs/accountancy/admin/productaccount.php b/htdocs/accountancy/admin/productaccount.php
index e29653a3e40..9596cd96af8 100644
--- a/htdocs/accountancy/admin/productaccount.php
+++ b/htdocs/accountancy/admin/productaccount.php
@@ -198,7 +198,7 @@ if ($action == 'update') {
$sql .= " WHERE rowid = ".((int) $productid);
}
- dol_syslog("/accountancy/admin/productaccount.php sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accountancy/admin/productaccount.php", LOG_DEBUG);
if ($db->query($sql)) {
$ok++;
$db->commit();
@@ -329,7 +329,7 @@ if (empty($conf->global->MAIN_DISABLE_FULL_SCANLIST)) {
$sql .= $db->plimit($limit + 1, $offset);
-dol_syslog("/accountancy/admin/productaccount.php:: sql=".$sql, LOG_DEBUG);
+dol_syslog("/accountancy/admin/productaccount.php", LOG_DEBUG);
$result = $db->query($sql);
if ($result) {
$num = $db->num_rows($result);
diff --git a/htdocs/accountancy/bookkeeping/list.php b/htdocs/accountancy/bookkeeping/list.php
index bc260c77ed3..73c23e4d63b 100644
--- a/htdocs/accountancy/bookkeeping/list.php
+++ b/htdocs/accountancy/bookkeeping/list.php
@@ -530,25 +530,25 @@ $sqlwhere = array();
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
if ($key == 't.doc_date') {
- $sqlwhere[] = $key.'=\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."='".$db->idate($value)."'";
} elseif ($key == 't.doc_date>=' || $key == 't.doc_date<=') {
- $sqlwhere[] = $key.'\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$db->idate($value)."'";
} elseif ($key == 't.numero_compte>=' || $key == 't.numero_compte<=') {
- $sqlwhere[] = $key.'\''.$db->escape($value).'\'';
+ $sqlwhere[] = $key."'".$db->escape($value)."'";
} elseif ($key == 't.fk_doc' || $key == 't.fk_docdet' || $key == 't.piece_num') {
- $sqlwhere[] = $key.'='.$value;
+ $sqlwhere[] = $key.'='.((int) $value);
} elseif ($key == 't.numero_compte') {
- $sqlwhere[] = $key.' LIKE \''.$db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '".$db->escape($value)."%'";
} elseif ($key == 't.subledger_account') {
$sqlwhere[] = natural_search($key, $value, 0, 1);
} elseif ($key == 't.date_creation>=' || $key == 't.date_creation<=') {
- $sqlwhere[] = $key.'\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$db->idate($value)."'";
} elseif ($key == 't.tms>=' || $key == 't.tms<=') {
- $sqlwhere[] = $key.'\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$db->idate($value)."'";
} elseif ($key == 't.date_export>=' || $key == 't.date_export<=') {
- $sqlwhere[] = $key.'\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$db->idate($value)."'";
} elseif ($key == 't.date_validated>=' || $key == 't.date_validated<=') {
- $sqlwhere[] = $key.'\''.$db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$db->idate($value)."'";
} elseif ($key == 't.credit' || $key == 't.debit') {
$sqlwhere[] = natural_search($key, $value, 1, 1);
} elseif ($key == 't.reconciled_option') {
@@ -612,7 +612,7 @@ if ($action == 'export_fileconfirm' && $user->rights->accounting->mouvements->ex
}
$sql .= " WHERE rowid = ".((int) $movement->id);
- dol_syslog("/accountancy/bookeeping/list.php Function export_file Specify movements as exported sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accountancy/bookeeping/list.php Function export_file Specify movements as exported", LOG_DEBUG);
$result = $db->query($sql);
if (!$result) {
$error++;
diff --git a/htdocs/accountancy/class/accountancycategory.class.php b/htdocs/accountancy/class/accountancycategory.class.php
index 77d10516daa..bc7226edb22 100644
--- a/htdocs/accountancy/class/accountancycategory.class.php
+++ b/htdocs/accountancy/class/accountancycategory.class.php
@@ -433,7 +433,7 @@ class AccountancyCategory // extends CommonObject
$this->lines_display = array();
- dol_syslog(__METHOD__." sql=".$sql, LOG_DEBUG);
+ dol_syslog(__METHOD__, LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
$num = $this->db->num_rows($resql);
@@ -632,7 +632,7 @@ class AccountancyCategory // extends CommonObject
$sql .= " WHERE aa.rowid = ".((int) $cpt_id);
$this->db->begin();
- dol_syslog(__METHOD__." sql=".$sql, LOG_DEBUG);
+ dol_syslog(__METHOD__, LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
$error++;
diff --git a/htdocs/accountancy/class/accountancysystem.class.php b/htdocs/accountancy/class/accountancysystem.class.php
index 1b481027ac0..a62dddd6a26 100644
--- a/htdocs/accountancy/class/accountancysystem.class.php
+++ b/htdocs/accountancy/class/accountancysystem.class.php
@@ -105,7 +105,7 @@ class AccountancySystem
$sql .= " a.pcg_version = '".$this->db->escape($ref)."'";
}
- dol_syslog(get_class($this)."::fetch sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::fetch", LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
$obj = $this->db->fetch_object($result);
@@ -143,9 +143,9 @@ class AccountancySystem
$sql = "INSERT INTO ".MAIN_DB_PREFIX."accounting_system";
$sql .= " (date_creation, fk_user_author, numero, label)";
- $sql .= " VALUES ('".$this->db->idate($now)."',".$user->id.",'".$this->db->escape($this->numero)."','".$this->db->escape($this->label)."')";
+ $sql .= " VALUES ('".$this->db->idate($now)."',".((int) $user->id).",'".$this->db->escape($this->numero)."','".$this->db->escape($this->label)."')";
- dol_syslog(get_class($this)."::create sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::create", LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
$id = $this->db->last_insert_id(MAIN_DB_PREFIX."accounting_system");
diff --git a/htdocs/accountancy/class/accountingaccount.class.php b/htdocs/accountancy/class/accountingaccount.class.php
index 3c95af8afee..35178e43947 100644
--- a/htdocs/accountancy/class/accountingaccount.class.php
+++ b/htdocs/accountancy/class/accountingaccount.class.php
@@ -150,7 +150,7 @@ class AccountingAccount extends CommonObject
global $conf;
$this->db = $db;
- $this->next_prev_filter = 'fk_pcg_version IN (SELECT pcg_version FROM '.MAIN_DB_PREFIX.'accounting_system WHERE rowid='.$conf->global->CHARTOFACCOUNTS.')'; // Used to add a filter in Form::showrefnav method
+ $this->next_prev_filter = "fk_pcg_version IN (SELECT pcg_version FROM ".MAIN_DB_PREFIX."accounting_system WHERE rowid=".((int) $conf->global->CHARTOFACCOUNTS).")"; // Used to add a filter in Form::showrefnav method
}
/**
@@ -185,7 +185,7 @@ class AccountingAccount extends CommonObject
$sql .= " AND a.fk_pcg_version = '".$this->db->escape($limittoachartaccount)."'";
}
- dol_syslog(get_class($this)."::fetch sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::fetch", LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
$obj = $this->db->fetch_object($result);
@@ -289,7 +289,7 @@ class AccountingAccount extends CommonObject
$this->db->begin();
- dol_syslog(get_class($this)."::create sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::create", LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
$error++;
@@ -352,7 +352,7 @@ class AccountingAccount extends CommonObject
$sql .= " , reconcilable = ".(int) $this->reconcilable;
$sql .= " WHERE rowid = ".((int) $this->id);
- dol_syslog(get_class($this)."::update sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::update", LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
$this->db->commit();
@@ -379,7 +379,7 @@ class AccountingAccount extends CommonObject
$sql .= " (SELECT fk_code_ventilation FROM ".MAIN_DB_PREFIX."facture_fourn_det";
$sql .= " WHERE fk_code_ventilation=".((int) $this->id).")";
- dol_syslog(get_class($this)."::checkUsage sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::checkUsage", LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
@@ -604,7 +604,7 @@ class AccountingAccount extends CommonObject
$sql .= "SET ".$fieldtouse." = '0'";
$sql .= " WHERE rowid = ".((int) $id);
- dol_syslog(get_class($this)."::accountDeactivate ".$fieldtouse." sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::accountDeactivate ".$fieldtouse, LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
@@ -642,7 +642,7 @@ class AccountingAccount extends CommonObject
$sql .= " SET ".$fieldtouse." = '1'";
$sql .= " WHERE rowid = ".((int) $id);
- dol_syslog(get_class($this)."::account_activate ".$fieldtouse." sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::account_activate ".$fieldtouse, LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
$this->db->commit();
diff --git a/htdocs/accountancy/class/accountingjournal.class.php b/htdocs/accountancy/class/accountingjournal.class.php
index 95a69466658..376178b45ba 100644
--- a/htdocs/accountancy/class/accountingjournal.class.php
+++ b/htdocs/accountancy/class/accountingjournal.class.php
@@ -113,7 +113,7 @@ class AccountingJournal extends CommonObject
$sql .= " AND entity = ".$conf->entity;
}
- dol_syslog(get_class($this)."::fetch sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::fetch", LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
$obj = $this->db->fetch_object($result);
@@ -170,18 +170,18 @@ class AccountingJournal extends CommonObject
$sql .= ' WHERE 1 = 1';
$sql .= " AND entity IN (".getEntity('accountancy').")";
if (count($sqlwhere) > 0) {
- $sql .= ' AND '.implode(' '.$filtermode.' ', $sqlwhere);
+ $sql .= " AND ".implode(" ".$filtermode." ", $sqlwhere);
}
if (!empty($sortfield)) {
$sql .= $this->db->order($sortfield, $sortorder);
}
if (!empty($limit)) {
- $sql .= ' '.$this->db->plimit($limit + 1, $offset);
+ $sql .= $this->db->plimit($limit + 1, $offset);
}
$this->lines = array();
- dol_syslog(get_class($this)."::fetch sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::fetch", LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
$num = $this->db->num_rows($resql);
diff --git a/htdocs/accountancy/class/bookkeeping.class.php b/htdocs/accountancy/class/bookkeeping.class.php
index 0ea00c9c98c..acdce0229d0 100644
--- a/htdocs/accountancy/class/bookkeeping.class.php
+++ b/htdocs/accountancy/class/bookkeeping.class.php
@@ -647,7 +647,7 @@ class BookKeeping extends CommonObject
$sql .= ' '.(!isset($this->credit) ? 'NULL' : $this->credit).',';
$sql .= ' '.(!isset($this->montant) ? 'NULL' : $this->montant).',';
$sql .= ' '.(!isset($this->sens) ? 'NULL' : "'".$this->db->escape($this->sens)."'").',';
- $sql .= ' '.$user->id.',';
+ $sql .= ' '.((int) $user->id).',';
$sql .= ' '."'".$this->db->idate($now)."',";
$sql .= ' '.(empty($this->code_journal) ? 'NULL' : "'".$this->db->escape($this->code_journal)."'").',';
$sql .= ' '.(empty($this->journal_label) ? 'NULL' : "'".$this->db->escape($this->journal_label)."'").',';
@@ -883,7 +883,7 @@ class BookKeeping extends CommonObject
$sql .= ' WHERE 1 = 1';
$sql .= " AND entity IN (".getEntity('accountancy').")";
if (count($sqlwhere) > 0) {
- $sql .= ' AND '.implode(' '.$filtermode.' ', $sqlwhere);
+ $sql .= " AND ".implode(" ".$filtermode." ", $sqlwhere);
}
// Affichage par compte comptable
if (!empty($option)) {
@@ -894,10 +894,10 @@ class BookKeeping extends CommonObject
}
if (!empty($sortfield)) {
- $sql .= ', '.$sortfield.' '.$sortorder;
+ $sql .= ", ".$sortfield." ".$sortorder;
}
if (!empty($limit)) {
- $sql .= ' '.$this->db->plimit($limit + 1, $offset);
+ $sql .= $this->db->plimit($limit + 1, $offset);
}
$resql = $this->db->query($sql);
@@ -1043,13 +1043,13 @@ class BookKeeping extends CommonObject
$sql .= " AND t.date_export IS NULL";
}
if (count($sqlwhere) > 0) {
- $sql .= ' AND '.implode(' '.$filtermode.' ', $sqlwhere);
+ $sql .= ' AND '.implode(" ".$filtermode." ", $sqlwhere);
}
if (!empty($sortfield)) {
$sql .= $this->db->order($sortfield, $sortorder);
}
if (!empty($limit)) {
- $sql .= ' '.$this->db->plimit($limit + 1, $offset);
+ $sql .= $this->db->plimit($limit + 1, $offset);
}
$this->lines = array();
@@ -1161,7 +1161,7 @@ class BookKeeping extends CommonObject
}
$sql .= ' WHERE entity IN ('.getEntity('accountancy').')';
if (count($sqlwhere) > 0) {
- $sql .= ' AND '.implode(' '.$filtermode.' ', $sqlwhere);
+ $sql .= " AND ".implode(" ".$filtermode." ", $sqlwhere);
}
$sql .= ' GROUP BY t.numero_compte';
@@ -1170,7 +1170,7 @@ class BookKeeping extends CommonObject
$sql .= $this->db->order($sortfield, $sortorder);
}
if (!empty($limit)) {
- $sql .= ' '.$this->db->plimit($limit + 1, $offset);
+ $sql .= $this->db->plimit($limit + 1, $offset);
}
$resql = $this->db->query($sql);
@@ -1347,8 +1347,9 @@ class BookKeeping extends CommonObject
$this->db->begin();
$sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element.$mode;
- $sql .= ' SET '.$field.'='.(is_numeric($value) ? $value : "'".$this->db->escape($value)."'");
+ $sql .= " SET ".$field." = ".(is_numeric($value) ? ((float) $value) : "'".$this->db->escape($value)."'");
$sql .= " WHERE piece_num = ".((int) $piece_num);
+
$resql = $this->db->query($sql);
if (!$resql) {
@@ -1678,7 +1679,7 @@ class BookKeeping extends CommonObject
$sql = "SELECT MAX(piece_num)+1 as max FROM ".MAIN_DB_PREFIX.$this->table_element.$mode;
$sql .= " WHERE entity IN (".getEntity('accountancy').")";
- dol_syslog(get_class($this)."getNextNumMvt sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."getNextNumMvt", LOG_DEBUG);
$result = $this->db->query($sql);
if ($result) {
@@ -1858,7 +1859,7 @@ class BookKeeping extends CommonObject
$sql .= ' SELECT doc_date, doc_type,';
$sql .= ' doc_ref, fk_doc, fk_docdet, entity, thirdparty_code, subledger_account, subledger_label,';
$sql .= ' numero_compte, label_compte, label_operation, debit, credit,';
- $sql .= ' montant, sens, fk_user_author, import_key, code_journal, journal_label, '.$next_piecenum.", '".$this->db->idate($now)."'";
+ $sql .= ' montant, sens, fk_user_author, import_key, code_journal, journal_label, '.((int) $next_piecenum).", '".$this->db->idate($now)."'";
$sql .= ' FROM '.MAIN_DB_PREFIX.$this->table_element.'_tmp WHERE piece_num = '.((int) $piece_num);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -2017,7 +2018,7 @@ class BookKeeping extends CommonObject
$sql .= " WHERE aa.account_number = '".$this->db->escape($account)."'";
$sql .= " AND aa.entity IN (".getEntity('accountancy').")";
- dol_syslog(get_class($this)."::select_account sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::select_account", LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
$obj = '';
@@ -2057,7 +2058,7 @@ class BookKeeping extends CommonObject
$sql .= " LEFT JOIN ".MAIN_DB_PREFIX."c_accounting_category as cat ON aa.fk_accounting_category = cat.rowid";
$sql .= " WHERE aa.entity IN (".getEntity('accountancy').")";
- dol_syslog(get_class($this)."::select_account sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::select_account", LOG_DEBUG);
$resql = $this->db->query($sql);
if ($resql) {
$obj = '';
diff --git a/htdocs/accountancy/class/lettering.class.php b/htdocs/accountancy/class/lettering.class.php
index b2abf01948e..1dd4c4df3e5 100644
--- a/htdocs/accountancy/class/lettering.class.php
+++ b/htdocs/accountancy/class/lettering.class.php
@@ -279,7 +279,7 @@ class Lettering extends BookKeeping
$sql .= " WHERE rowid IN (".$this->db->sanitize(implode(',', $ids)).") AND date_validated IS NULL ";
$this->db->begin();
- dol_syslog(get_class($this)."::update sql=".$sql, LOG_DEBUG);
+ dol_syslog(get_class($this)."::update", LOG_DEBUG);
$resql = $this->db->query($sql);
if (!$resql) {
$error++;
diff --git a/htdocs/accountancy/closure/index.php b/htdocs/accountancy/closure/index.php
index b612762d358..a7220d01a28 100644
--- a/htdocs/accountancy/closure/index.php
+++ b/htdocs/accountancy/closure/index.php
@@ -95,7 +95,7 @@ if ($action == 'validate_movements_confirm' && !empty($user->rights->accounting-
$sql .= " AND doc_date >= '" . $db->idate($date_start) . "'";
$sql .= " AND doc_date <= '" . $db->idate($date_end) . "'";
- dol_syslog("/accountancy/closure/index.php :: Function validate_movement_confirm Specify movements as validated sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accountancy/closure/index.php :: Function validate_movement_confirm Specify movements as validated", LOG_DEBUG);
$result = $db->query($sql);
if (!$result) {
$error++;
@@ -189,7 +189,7 @@ for ($i = 1; $i <= 12; $i++) {
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(b.doc_date)='.$j, '1', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(b.doc_date)=".$j, "1", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " COUNT(b.rowid) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."accounting_bookkeeping as b";
@@ -198,7 +198,7 @@ $sql .= " AND b.doc_date <= '".$db->idate($search_date_end)."'";
$sql .= " AND b.entity IN (".getEntity('bookkeeping', 0).")"; // We don't share object for accountancy
$sql .= " AND date_validated IS NULL";
-dol_syslog('htdocs/accountancy/closure/index.php sql='.$sql, LOG_DEBUG);
+dol_syslog('htdocs/accountancy/closure/index.php', LOG_DEBUG);
$resql = $db->query($sql);
if ($resql) {
$num = $db->num_rows($resql);
diff --git a/htdocs/accountancy/customer/card.php b/htdocs/accountancy/customer/card.php
index b3ce892b235..296d6729301 100644
--- a/htdocs/accountancy/customer/card.php
+++ b/htdocs/accountancy/customer/card.php
@@ -117,7 +117,7 @@ if (!empty($id)) {
$sql .= " WHERE f.fk_statut > 0 AND l.rowid = ".((int) $id);
$sql .= " AND f.entity IN (".getEntity('invoice', 0).")"; // We don't share object for accountancy
- dol_syslog("/accounting/customer/card.php sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accounting/customer/card.php", LOG_DEBUG);
$result = $db->query($sql);
if ($result) {
diff --git a/htdocs/accountancy/customer/index.php b/htdocs/accountancy/customer/index.php
index ede72c9d9e6..3b30d00dbf6 100644
--- a/htdocs/accountancy/customer/index.php
+++ b/htdocs/accountancy/customer/index.php
@@ -85,8 +85,8 @@ if ($action == 'clean' || $action == 'validatehistory') {
$sql1 .= ' (SELECT accnt.rowid ';
$sql1 .= ' FROM '.MAIN_DB_PREFIX.'accounting_account as accnt';
$sql1 .= ' INNER JOIN '.MAIN_DB_PREFIX.'accounting_system as syst';
- $sql1 .= ' ON accnt.fk_pcg_version = syst.pcg_version AND syst.rowid='.$conf->global->CHARTOFACCOUNTS.' AND accnt.entity = '.$conf->entity.')';
- $sql1 .= ' AND fd.fk_facture IN (SELECT rowid FROM '.MAIN_DB_PREFIX.'facture WHERE entity = '.$conf->entity.')';
+ $sql1 .= ' ON accnt.fk_pcg_version = syst.pcg_version AND syst.rowid='.((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity).')';
+ $sql1 .= ' AND fd.fk_facture IN (SELECT rowid FROM '.MAIN_DB_PREFIX.'facture WHERE entity = '.((int) $conf->entity).')';
$sql1 .= ' AND fk_code_ventilation <> 0';
dol_syslog("htdocs/accountancy/customer/index.php fixaccountancycode", LOG_DEBUG);
@@ -110,13 +110,13 @@ if ($action == 'validatehistory') {
$sql1 = "UPDATE " . MAIN_DB_PREFIX . "facturedet";
$sql1 .= " SET fk_code_ventilation = accnt.rowid";
$sql1 .= " FROM " . MAIN_DB_PREFIX . "product as p, " . MAIN_DB_PREFIX . "accounting_account as accnt , " . MAIN_DB_PREFIX . "accounting_system as syst";
- $sql1 .= " WHERE " . MAIN_DB_PREFIX . "facturedet.fk_product = p.rowid AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid=" . ((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.$conf->entity;
+ $sql1 .= " WHERE " . MAIN_DB_PREFIX . "facturedet.fk_product = p.rowid AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid=" . ((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity);
$sql1 .= " AND accnt.active = 1 AND p.accountancy_code_sell=accnt.account_number";
$sql1 .= " AND " . MAIN_DB_PREFIX . "facturedet.fk_code_ventilation = 0";
} else {
$sql1 = "UPDATE " . MAIN_DB_PREFIX . "facturedet as fd, " . MAIN_DB_PREFIX . "product as p, " . MAIN_DB_PREFIX . "accounting_account as accnt , " . MAIN_DB_PREFIX . "accounting_system as syst";
$sql1 .= " SET fk_code_ventilation = accnt.rowid";
- $sql1 .= " WHERE fd.fk_product = p.rowid AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid=" . ((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.$conf->entity;
+ $sql1 .= " WHERE fd.fk_product = p.rowid AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid=" . ((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity);
$sql1 .= " AND accnt.active = 1 AND p.accountancy_code_sell=accnt.account_number";
$sql1 .= " AND fd.fk_code_ventilation = 0";
}*/
@@ -283,7 +283,7 @@ for ($i = 1; $i <= 12; $i++) {
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(f.datef)='.$j, 'fd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(f.datef)=".$j, "fd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(fd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facturedet as fd";
@@ -306,7 +306,7 @@ if (!empty($conf->global->FACTURE_DEPOSITS_ARE_JUST_PAYMENTS)) {
}
$sql .= " GROUP BY fd.fk_code_ventilation,aa.account_number,aa.label";
-dol_syslog('htdocs/accountancy/customer/index.php sql='.$sql, LOG_DEBUG);
+dol_syslog('htdocs/accountancy/customer/index.php', LOG_DEBUG);
$resql = $db->query($sql);
if ($resql) {
$num = $db->num_rows($resql);
@@ -367,7 +367,7 @@ for ($i = 1; $i <= 12; $i++) {
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(f.datef)='.$j, 'fd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(f.datef)=".$j, "fd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(fd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facturedet as fd";
@@ -452,7 +452,7 @@ if ($conf->global->MAIN_FEATURES_LEVEL > 0) { // This part of code looks strange
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(f.datef)='.$j, 'fd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(f.datef)=".$j, "fd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(fd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facturedet as fd";
@@ -513,7 +513,7 @@ if ($conf->global->MAIN_FEATURES_LEVEL > 0) { // This part of code looks strange
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(f.datef)='.$j, '(fd.total_ht-(fd.qty * fd.buy_price_ht))', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(f.datef)=".$j, "(fd.total_ht-(fd.qty * fd.buy_price_ht))", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM((fd.total_ht-(fd.qty * fd.buy_price_ht))) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facturedet as fd";
diff --git a/htdocs/accountancy/customer/list.php b/htdocs/accountancy/customer/list.php
index 5ce9f5e13e8..35e02d5b007 100644
--- a/htdocs/accountancy/customer/list.php
+++ b/htdocs/accountancy/customer/list.php
@@ -188,7 +188,7 @@ if ($massaction == 'ventil' && $user->rights->accounting->bind->write) {
$accountventilated = new AccountingAccount($db);
$accountventilated->fetch($monCompte, '', 1);
- dol_syslog("accountancy/customer/list.php sql=".$sql, LOG_DEBUG);
+ dol_syslog("accountancy/customer/list.php", LOG_DEBUG);
if ($db->query($sql)) {
$msg .= ''.$langs->trans("Lineofinvoice", $monId).' - '.$langs->trans("VentilatedinAccount").' : '.length_accountg($accountventilated->account_number).'
';
$ok++;
diff --git a/htdocs/accountancy/expensereport/card.php b/htdocs/accountancy/expensereport/card.php
index db270b9d2db..7c2310ccce4 100644
--- a/htdocs/accountancy/expensereport/card.php
+++ b/htdocs/accountancy/expensereport/card.php
@@ -110,7 +110,7 @@ if (!empty($id)) {
$sql .= " WHERE er.fk_statut > 0 AND erd.rowid = ".((int) $id);
$sql .= " AND er.entity IN (".getEntity('expensereport', 0).")"; // We don't share object for accountancy
- dol_syslog("/accounting/expensereport/card.php sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accounting/expensereport/card.php", LOG_DEBUG);
$result = $db->query($sql);
if ($result) {
diff --git a/htdocs/accountancy/expensereport/index.php b/htdocs/accountancy/expensereport/index.php
index f06dd5f8d6f..1544976bb07 100644
--- a/htdocs/accountancy/expensereport/index.php
+++ b/htdocs/accountancy/expensereport/index.php
@@ -79,8 +79,8 @@ if (($action == 'clean' || $action == 'validatehistory') && $user->rights->accou
$sql1 .= ' (SELECT accnt.rowid ';
$sql1 .= ' FROM '.MAIN_DB_PREFIX.'accounting_account as accnt';
$sql1 .= ' INNER JOIN '.MAIN_DB_PREFIX.'accounting_system as syst';
- $sql1 .= ' ON accnt.fk_pcg_version = syst.pcg_version AND syst.rowid='.$conf->global->CHARTOFACCOUNTS.' AND accnt.entity = '.$conf->entity.')';
- $sql1 .= ' AND erd.fk_expensereport IN (SELECT rowid FROM '.MAIN_DB_PREFIX.'expensereport WHERE entity = '.$conf->entity.')';
+ $sql1 .= ' ON accnt.fk_pcg_version = syst.pcg_version AND syst.rowid='.((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity).')';
+ $sql1 .= ' AND erd.fk_expensereport IN (SELECT rowid FROM '.MAIN_DB_PREFIX.'expensereport WHERE entity = '.((int) $conf->entity).')';
$sql1 .= ' AND fk_code_ventilation <> 0';
dol_syslog("htdocs/accountancy/customer/index.php fixaccountancycode", LOG_DEBUG);
$resql1 = $db->query($sql1);
@@ -103,13 +103,13 @@ if ($action == 'validatehistory') {
$sql1 = "UPDATE ".MAIN_DB_PREFIX."expensereport_det";
$sql1 .= " SET fk_code_ventilation = accnt.rowid";
$sql1 .= " FROM ".MAIN_DB_PREFIX."c_type_fees as t, ".MAIN_DB_PREFIX."accounting_account as accnt , ".MAIN_DB_PREFIX."accounting_system as syst";
- $sql1 .= " WHERE ".MAIN_DB_PREFIX."expensereport_det.fk_c_type_fees = t.id AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid = ".((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.$conf->entity;
+ $sql1 .= " WHERE ".MAIN_DB_PREFIX."expensereport_det.fk_c_type_fees = t.id AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid = ".((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity);
$sql1 .= " AND accnt.active = 1 AND t.accountancy_code = accnt.account_number";
$sql1 .= " AND ".MAIN_DB_PREFIX."expensereport_det.fk_code_ventilation = 0";
} else {
$sql1 = "UPDATE ".MAIN_DB_PREFIX."expensereport_det as erd, ".MAIN_DB_PREFIX."c_type_fees as t, ".MAIN_DB_PREFIX."accounting_account as accnt , ".MAIN_DB_PREFIX."accounting_system as syst";
$sql1 .= " SET erd.fk_code_ventilation = accnt.rowid";
- $sql1 .= " WHERE erd.fk_c_type_fees = t.id AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid = ".((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.$conf->entity;
+ $sql1 .= " WHERE erd.fk_c_type_fees = t.id AND accnt.fk_pcg_version = syst.pcg_version AND syst.rowid = ".((int) $conf->global->CHARTOFACCOUNTS).' AND accnt.entity = '.((int) $conf->entity);
$sql1 .= " AND accnt.active = 1 AND t.accountancy_code=accnt.account_number";
$sql1 .= " AND erd.fk_code_ventilation = 0";
}
@@ -166,13 +166,13 @@ for ($i = 1; $i <= 12; $i++) {
print ''.$langs->trans("Total").' '.$langs->trans("LineOfExpenseReport").' '.$monId.' - '.$langs->trans("VentilatedinAccount").' : '.length_accountg($accountventilated->account_number).'
';
$ok++;
diff --git a/htdocs/accountancy/supplier/card.php b/htdocs/accountancy/supplier/card.php
index 1e7887c1bdc..05d32d0cec5 100644
--- a/htdocs/accountancy/supplier/card.php
+++ b/htdocs/accountancy/supplier/card.php
@@ -118,7 +118,7 @@ if (!empty($id)) {
$sql .= " WHERE f.fk_statut > 0 AND l.rowid = ".((int) $id);
$sql .= " AND f.entity IN (".getEntity('facture_fourn', 0).")"; // We don't share object for accountancy
- dol_syslog("/accounting/supplier/card.php sql=".$sql, LOG_DEBUG);
+ dol_syslog("/accounting/supplier/card.php", LOG_DEBUG);
$result = $db->query($sql);
if ($result) {
diff --git a/htdocs/accountancy/supplier/index.php b/htdocs/accountancy/supplier/index.php
index f047ddf70de..1836687d042 100644
--- a/htdocs/accountancy/supplier/index.php
+++ b/htdocs/accountancy/supplier/index.php
@@ -283,7 +283,7 @@ for ($i = 1; $i <= 12; $i++) {
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(ff.datef)='.$j, 'ffd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(ff.datef)=".$j, "ffd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(ffd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facture_fourn_det as ffd";
@@ -362,7 +362,7 @@ for ($i = 1; $i <= 12; $i++) {
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(ff.datef)='.$j, 'ffd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(ff.datef)=".$j, "ffd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(ffd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facture_fourn_det as ffd";
@@ -441,7 +441,7 @@ if ($conf->global->MAIN_FEATURES_LEVEL > 0) { // This part of code looks strange
if ($j > 12) {
$j -= 12;
}
- $sql .= " SUM(".$db->ifsql('MONTH(ff.datef)='.$j, 'ffd.total_ht', '0').") AS month".str_pad($j, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(ff.datef)=".$j, "ffd.total_ht", "0").") AS month".str_pad($j, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(ffd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facture_fourn_det as ffd";
diff --git a/htdocs/accountancy/supplier/list.php b/htdocs/accountancy/supplier/list.php
index 4fd16df2afe..c6cfd3f7c92 100644
--- a/htdocs/accountancy/supplier/list.php
+++ b/htdocs/accountancy/supplier/list.php
@@ -193,7 +193,7 @@ if ($massaction == 'ventil' && $user->rights->accounting->bind->write) {
$accountventilated = new AccountingAccount($db);
$accountventilated->fetch($monCompte, '', 1);
- dol_syslog('accountancy/supplier/list.php sql='.$sql, LOG_DEBUG);
+ dol_syslog('accountancy/supplier/list.php', LOG_DEBUG);
if ($db->query($sql)) {
$msg .= ''.$langs->trans("Lineofinvoice").' '.$monId.' - '.$langs->trans("VentilatedinAccount").' : '.length_accountg($accountventilated->account_number).'
';
$ok++;
diff --git a/htdocs/adherents/cartes/carte.php b/htdocs/adherents/cartes/carte.php
index 8d9ed70a925..0512349ec4f 100644
--- a/htdocs/adherents/cartes/carte.php
+++ b/htdocs/adherents/cartes/carte.php
@@ -73,7 +73,7 @@ if ((!empty($foruserid) || !empty($foruserlogin) || !empty($mode)) && !$mesg) {
// Add fields from extrafields
if (!empty($extrafields->attributes[$object->table_element]['label'])) {
foreach ($extrafields->attributes[$object->table_element]['label'] as $key => $val) {
- $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? ", ef.".$key.' as options_'.$key : '');
+ $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? ", ef.".$key." as options_".$key : '');
}
}
$sql .= " FROM ".MAIN_DB_PREFIX."adherent_type as t, ".MAIN_DB_PREFIX."adherent as d";
diff --git a/htdocs/adherents/class/adherent.class.php b/htdocs/adherents/class/adherent.class.php
index 75470b32173..78deca61028 100644
--- a/htdocs/adherents/class/adherent.class.php
+++ b/htdocs/adherents/class/adherent.class.php
@@ -1831,8 +1831,8 @@ class Adherent extends CommonObject
if (!$error && !empty($bank_line_id)) {
// Update fk_bank into subscription table
- $sql = 'UPDATE '.MAIN_DB_PREFIX.'subscription SET fk_bank='.$bank_line_id;
- $sql .= ' WHERE rowid='.$subscriptionid;
+ $sql = 'UPDATE '.MAIN_DB_PREFIX.'subscription SET fk_bank='.((int) $bank_line_id);
+ $sql .= ' WHERE rowid='.((int) $subscriptionid);
$result = $this->db->query($sql);
if (!$result) {
diff --git a/htdocs/adherents/class/adherent_type.class.php b/htdocs/adherents/class/adherent_type.class.php
index 1a00a03e932..88dbf6e2b39 100644
--- a/htdocs/adherents/class/adherent_type.class.php
+++ b/htdocs/adherents/class/adherent_type.class.php
@@ -584,7 +584,7 @@ class AdherentType extends CommonObject
/**
* Return array of Member objects for member type this->id (or all if this->id not defined)
*
- * @param string $excludefilter Filter to exclude
+ * @param string $excludefilter Filter to exclude. This value must not come from a user input.
* @param int $mode 0=Return array of member instance
* 1=Return array of member instance without extra data
* 2=Return array of members id only
diff --git a/htdocs/adherents/class/api_members.class.php b/htdocs/adherents/class/api_members.class.php
index d57a01510d4..b95313bdbc1 100644
--- a/htdocs/adherents/class/api_members.class.php
+++ b/htdocs/adherents/class/api_members.class.php
@@ -204,7 +204,7 @@ class Members extends DolibarrApi
* @param int $limit Limit for list
* @param int $page Page number
* @param string $typeid ID of the type of member
- * @param int $category Use this param to filter list by category
+ * @param int $category Use this param to filter list by category
* @param string $sqlfilters Other criteria to filter answers separated by a comma.
* Example: "(t.ref:like:'SO-%') and ((t.date_creation:<:'20160101') or (t.nature:is:NULL))"
* @return array Array of member objects
diff --git a/htdocs/adherents/list.php b/htdocs/adherents/list.php
index 68430a71bab..fd667ad6a2f 100644
--- a/htdocs/adherents/list.php
+++ b/htdocs/adherents/list.php
@@ -323,7 +323,7 @@ $sql .= " state.code_departement as state_code, state.nom as state_name,";
// Add fields from extrafields
if (!empty($extrafields->attributes[$object->table_element]['label'])) {
foreach ($extrafields->attributes[$object->table_element]['label'] as $key => $val) {
- $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? "ef.".$key.' as options_'.$key.', ' : '');
+ $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? "ef.".$key." as options_".$key.', ' : '');
}
}
// Add fields from hooks
diff --git a/htdocs/admin/emailcollector_list.php b/htdocs/admin/emailcollector_list.php
index c57e681be34..ddfa847d813 100644
--- a/htdocs/admin/emailcollector_list.php
+++ b/htdocs/admin/emailcollector_list.php
@@ -208,12 +208,12 @@ $title = $langs->trans('ListOf', $langs->transnoentitiesnoconv("EmailCollector")
// --------------------------------------------------------------------
$sql = 'SELECT ';
foreach ($object->fields as $key => $val) {
- $sql .= 't.'.$key.', ';
+ $sql .= "t.".$key.", ";
}
// Add fields from extrafields
if (!empty($extrafields->attributes[$object->table_element]['label'])) {
foreach ($extrafields->attributes[$object->table_element]['label'] as $key => $val) {
- $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? "ef.".$key.' as options_'.$key.', ' : '');
+ $sql .= ($extrafields->attributes[$object->table_element]['type'][$key] != 'separate' ? "ef.".$key." as options_".$key.', ' : '');
}
}
// Add fields from hooks
@@ -259,7 +259,7 @@ $sql .= $hookmanager->resPrint;
$sql.= " GROUP BY ";
foreach ($object->fields as $key => $val)
{
- $sql.='t.'.$key.', ';
+ $sql .= "t.".$key.", ";
}
// Add fields from extrafields
if (! empty($extrafields->attributes[$object->table_element]['label'])) {
diff --git a/htdocs/admin/limits.php b/htdocs/admin/limits.php
index 4a599499053..ef0c996569f 100644
--- a/htdocs/admin/limits.php
+++ b/htdocs/admin/limits.php
@@ -108,9 +108,9 @@ $aCurrencies = array($conf->currency); // Default currency always first position
if (!empty($conf->multicurrency->enabled) && !empty($conf->global->MULTICURRENCY_USE_LIMIT_BY_CURRENCY)) {
require_once DOL_DOCUMENT_ROOT.'/core/lib/multicurrency.lib.php';
- $sql = 'SELECT rowid, code FROM '.MAIN_DB_PREFIX.'multicurrency';
- $sql .= ' WHERE entity = '.$conf->entity;
- $sql .= ' AND code != "'.$conf->currency.'"'; // Default currency always first position
+ $sql = "SELECT rowid, code FROM ".MAIN_DB_PREFIX."multicurrency";
+ $sql .= " WHERE entity = ".((int) $conf->entity);
+ $sql .= " AND code <> '".$db->escape($conf->currency)."'"; // Default currency always first position
$resql = $db->query($sql);
if ($resql) {
while ($obj = $db->fetch_object($resql)) {
diff --git a/htdocs/admin/mails_senderprofile_list.php b/htdocs/admin/mails_senderprofile_list.php
index f91b9685c88..baa8c3688d8 100644
--- a/htdocs/admin/mails_senderprofile_list.php
+++ b/htdocs/admin/mails_senderprofile_list.php
@@ -226,12 +226,12 @@ print "
Date: Fri, 27 Aug 2021 23:36:06 +0200
Subject: [PATCH 064/117] Clean code
---
htdocs/accountancy/admin/accountmodel.php | 8 ++--
htdocs/accountancy/admin/categories_list.php | 2 +-
htdocs/accountancy/admin/journals_list.php | 2 +-
htdocs/accountancy/bookkeeping/balance.php | 9 ++--
htdocs/adherents/ldap.php | 2 +-
htdocs/adherents/type_ldap.php | 2 +-
htdocs/admin/modules.php | 8 ++--
htdocs/comm/propal/class/propal.class.php | 18 ++++----
htdocs/comm/propal/list.php | 2 +-
htdocs/commande/class/commande.class.php | 32 ++++++-------
htdocs/commande/list.php | 4 +-
htdocs/compta/bank/bankentries_list.php | 2 +-
.../bank/class/paymentvarious.class.php | 2 +-
htdocs/compta/facture/card.php | 12 ++---
.../facture/class/api_invoices.class.php | 2 +-
.../facture/class/facture-rec.class.php | 16 +++----
htdocs/compta/facture/class/facture.class.php | 45 ++++++++++---------
htdocs/compta/facture/list.php | 4 +-
htdocs/compta/paiement.php | 8 ++--
htdocs/compta/paiement/card.php | 4 +-
.../compta/paiement/class/cpaiement.class.php | 4 +-
.../compta/paiement/class/paiement.class.php | 10 ++---
htdocs/compta/payment_sc/card.php | 2 +-
htdocs/compta/payment_vat/card.php | 2 +-
.../sociales/class/cchargesociales.class.php | 2 +-
.../sociales/class/chargesociales.class.php | 2 +-
htdocs/compta/sociales/list.php | 4 +-
htdocs/compta/tva/class/tva.class.php | 2 +-
htdocs/contact/ldap.php | 2 +-
htdocs/core/ajax/ajaxdirpreview.php | 2 +-
htdocs/core/class/commoninvoice.class.php | 36 +++++++--------
htdocs/core/class/commonobject.class.php | 38 ++++++++--------
htdocs/core/class/coreobject.class.php | 2 +-
htdocs/core/lib/functions.lib.php | 5 ++-
htdocs/core/lib/ticket.lib.php | 2 +-
htdocs/don/class/don.class.php | 2 +-
.../class/emailcollector.class.php | 4 +-
htdocs/expedition/class/expedition.class.php | 6 +--
.../class/expensereport.class.php | 22 ++++-----
htdocs/fichinter/card.php | 2 +-
htdocs/fichinter/class/fichinterrec.class.php | 8 ++--
htdocs/fourn/card.php | 6 +--
.../class/fournisseur.commande.class.php | 8 ++--
.../fourn/class/fournisseur.facture.class.php | 8 ++--
htdocs/fourn/class/paiementfourn.class.php | 10 ++---
htdocs/fourn/commande/card.php | 4 +-
htdocs/fourn/facture/card.php | 4 +-
htdocs/fourn/facture/list.php | 2 +-
htdocs/fourn/paiement/card.php | 2 +-
htdocs/loan/class/loan.class.php | 2 +-
.../modulebuilder/template/myobject_list.php | 7 +++
htdocs/mrp/class/mo.class.php | 4 +-
.../class/multicurrency.class.php | 6 +--
.../inventory/class/inventory.class.php | 4 +-
htdocs/product/inventory/inventory.php | 4 +-
htdocs/projet/activity/perday.php | 2 +-
htdocs/projet/activity/permonth.php | 12 ++---
htdocs/reception/class/reception.class.php | 8 ++--
htdocs/salaries/class/salary.class.php | 4 +-
htdocs/salaries/payment_salary/card.php | 2 +-
htdocs/stripe/class/actions_stripe.class.php | 2 +-
.../class/supplier_proposal.class.php | 6 +--
htdocs/user/group/ldap.php | 2 +-
htdocs/user/ldap.php | 2 +-
htdocs/website/class/website.class.php | 2 +-
htdocs/website/index.php | 4 +-
66 files changed, 235 insertions(+), 225 deletions(-)
diff --git a/htdocs/accountancy/admin/accountmodel.php b/htdocs/accountancy/admin/accountmodel.php
index 0f4d538cfac..6aacda28677 100644
--- a/htdocs/accountancy/admin/accountmodel.php
+++ b/htdocs/accountancy/admin/accountmodel.php
@@ -553,16 +553,16 @@ if ($id) {
$num = $db->num_rows($resql);
$i = 0;
- $param = '&id='.$id;
+ $param = '&id='.urlencode($id);
if ($search_country_id > 0) {
- $param .= '&search_country_id='.$search_country_id;
+ $param .= '&search_country_id='.urlencode($search_country_id);
}
$paramwithsearch = $param;
if ($sortorder) {
- $paramwithsearch .= '&sortorder='.$sortorder;
+ $paramwithsearch .= '&sortorder='.urlencode($sortorder);
}
if ($sortfield) {
- $paramwithsearch .= '&sortfield='.$sortfield;
+ $paramwithsearch .= '&sortfield='.urlencode($sortfield);
}
// There is several pages
diff --git a/htdocs/accountancy/admin/categories_list.php b/htdocs/accountancy/admin/categories_list.php
index 9a8a84893fe..53a1d75129b 100644
--- a/htdocs/accountancy/admin/categories_list.php
+++ b/htdocs/accountancy/admin/categories_list.php
@@ -580,7 +580,7 @@ if ($resql) {
$param = '&id='.$id;
if ($search_country_id > 0) {
- $param .= '&search_country_id='.$search_country_id;
+ $param .= '&search_country_id='.urlencode($search_country_id);
}
$paramwithsearch = $param;
if ($sortorder) {
diff --git a/htdocs/accountancy/admin/journals_list.php b/htdocs/accountancy/admin/journals_list.php
index 9ba9d8a6e20..49103716387 100644
--- a/htdocs/accountancy/admin/journals_list.php
+++ b/htdocs/accountancy/admin/journals_list.php
@@ -512,7 +512,7 @@ if ($id) {
$param = '&id='.$id;
if ($search_country_id > 0) {
- $param .= '&search_country_id='.$search_country_id;
+ $param .= '&search_country_id='.urlencode($search_country_id);
}
$paramwithsearch = $param;
if ($sortorder) {
diff --git a/htdocs/accountancy/bookkeeping/balance.php b/htdocs/accountancy/bookkeeping/balance.php
index b84fe255760..126f61e272c 100644
--- a/htdocs/accountancy/bookkeeping/balance.php
+++ b/htdocs/accountancy/bookkeeping/balance.php
@@ -40,6 +40,7 @@ require_once DOL_DOCUMENT_ROOT.'/core/class/html.formother.class.php';
$langs->loadLangs(array("accountancy", "compta"));
$action = GETPOST('action', 'aZ09');
+$contextpage = GETPOST('contextpage', 'aZ09');
// Load variable for pagination
$limit = GETPOST('limit', 'int') ?GETPOST('limit', 'int') : $conf->liste_limit;
@@ -120,19 +121,19 @@ if ($limit > 0 && $limit != $conf->liste_limit) {
$filter = array();
if (!empty($search_date_start)) {
$filter['t.doc_date>='] = $search_date_start;
- $param .= '&date_startmonth='.GETPOST('date_startmonth', 'int').'&date_startday='.GETPOST('date_startday', 'int').'&date_startyear='.GETPOST('date_startyear', 'int');
+ $param .= '&date_startmonth='.GETPOST('date_startmonth', 'int').'&date_startday='.GETPOST('date_startday', 'int').'&date_startyear='.GETPOST('date_startyear', 'int');
}
if (!empty($search_date_end)) {
$filter['t.doc_date<='] = $search_date_end;
- $param .= '&date_endmonth='.GETPOST('date_endmonth', 'int').'&date_endday='.GETPOST('date_endday', 'int').'&date_endyear='.GETPOST('date_endyear', 'int');
+ $param .= '&date_endmonth='.GETPOST('date_endmonth', 'int').'&date_endday='.GETPOST('date_endday', 'int').'&date_endyear='.GETPOST('date_endyear', 'int');
}
if (!empty($search_accountancy_code_start)) {
$filter['t.numero_compte>='] = $search_accountancy_code_start;
- $param .= '&search_accountancy_code_start='.$search_accountancy_code_start;
+ $param .= '&search_accountancy_code_start='.urlencode($search_accountancy_code_start);
}
if (!empty($search_accountancy_code_end)) {
$filter['t.numero_compte<='] = $search_accountancy_code_end;
- $param .= '&search_accountancy_code_end='.$search_accountancy_code_end;
+ $param .= '&search_accountancy_code_end='.urlencode($search_accountancy_code_end);
}
if (!empty($search_ledger_code)) {
$filter['t.code_journal'] = $search_ledger_code;
diff --git a/htdocs/adherents/ldap.php b/htdocs/adherents/ldap.php
index 44d5ee5399b..d714e3d9a32 100644
--- a/htdocs/adherents/ldap.php
+++ b/htdocs/adherents/ldap.php
@@ -204,7 +204,7 @@ if ($result > 0) {
$result = show_ldap_content($records, 0, $records['count'], true);
}
} else {
- print ''.$langs->trans("LDAPRecordNotFound").' (dn='.$dn.' - search='.$search.') '.$langs->trans("LDAPRecordNotFound").' (dn='.dol_escape_htmltag($dn).' - search='.dol_escape_htmltag($search).') '.$langs->trans("LDAPRecordNotFound").' (dn='.$dn.' - search='.$search.') '.$langs->trans("LDAPRecordNotFound").' (dn='.dol_escape_htmltag($dn).' - search='.dol_escape_htmltag($search).') '.$langs->trans("LDAPRecordNotFound").' (dn='.$dn.' - search='.$search.') '.$langs->trans("LDAPRecordNotFound").' (dn='.dol_escape_htmltag($dn).' - search='.dol_escape_htmltag($search).') '.img_previous($langs->trans("Previous"))." \n";
diff --git a/htdocs/reception/class/reception.class.php b/htdocs/reception/class/reception.class.php
index 948822c1983..6a4301d86df 100644
--- a/htdocs/reception/class/reception.class.php
+++ b/htdocs/reception/class/reception.class.php
@@ -1034,7 +1034,7 @@ class Reception extends CommonObject
{
// phpcs:enable
dol_include_once('/fourn/class/fournisseur.commande.dispatch.class.php');
- $sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.'commande_fournisseur_dispatch WHERE fk_reception='.$this->id;
+ $sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.'commande_fournisseur_dispatch WHERE fk_reception='.((int) $this->id);
$resql = $this->db->query($sql);
if (!empty($resql)) {
@@ -1445,7 +1445,7 @@ class Reception extends CommonObject
$this->db->begin();
$sql = 'UPDATE '.MAIN_DB_PREFIX.'reception SET fk_statut='.self::STATUS_CLOSED;
- $sql .= ' WHERE rowid = '.$this->id.' AND fk_statut > 0';
+ $sql .= " WHERE rowid = ".((int) $this->id).' AND fk_statut > 0';
$resql = $this->db->query($sql);
if ($resql) {
@@ -1590,7 +1590,7 @@ class Reception extends CommonObject
$this->setClosed();
$sql = 'UPDATE '.MAIN_DB_PREFIX.'reception SET billed=1';
- $sql .= ' WHERE rowid = '.$this->id.' AND fk_statut > 0';
+ $sql .= " WHERE rowid = ".((int) $this->id).' AND fk_statut > 0';
$resql = $this->db->query($sql);
if ($resql) {
@@ -1630,7 +1630,7 @@ class Reception extends CommonObject
$this->db->begin();
$sql = 'UPDATE '.MAIN_DB_PREFIX.'reception SET fk_statut=1, billed=0';
- $sql .= ' WHERE rowid = '.$this->id.' AND fk_statut > 0';
+ $sql .= " WHERE rowid = ".((int) $this->id).' AND fk_statut > 0';
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/salaries/class/salary.class.php b/htdocs/salaries/class/salary.class.php
index 17274813ef5..c434e73ec08 100644
--- a/htdocs/salaries/class/salary.class.php
+++ b/htdocs/salaries/class/salary.class.php
@@ -468,7 +468,7 @@ class Salary extends CommonObject
{
// phpcs:enable
$sql = 'UPDATE '.MAIN_DB_PREFIX.'salary SET fk_bank = '.((int) $id_bank);
- $sql .= ' WHERE rowid = '.$this->id;
+ $sql .= " WHERE rowid = ".((int) $this->id);
$result = $this->db->query($sql);
if ($result) {
return 1;
@@ -570,7 +570,7 @@ class Salary extends CommonObject
$sql = 'SELECT sum(amount) as amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.$this->id;
+ $sql .= ' WHERE '.$field.' = '.((int) $this->id);
dol_syslog(get_class($this)."::getSommePaiement", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/salaries/payment_salary/card.php b/htdocs/salaries/payment_salary/card.php
index 5f05c1d98b7..e4364f6727f 100644
--- a/htdocs/salaries/payment_salary/card.php
+++ b/htdocs/salaries/payment_salary/card.php
@@ -180,7 +180,7 @@ $sql = 'SELECT f.rowid as scid, f.label, f.paye, f.amount as sc_amount, ps.amoun
$sql .= ' FROM '.MAIN_DB_PREFIX.'payment_salary as ps,'.MAIN_DB_PREFIX.'salary as f';
$sql .= ' WHERE ps.fk_salary = f.rowid';
$sql .= ' AND f.entity = '.$conf->entity;
-$sql .= ' AND ps.rowid = '.$object->id;
+$sql .= ' AND ps.rowid = '.((int) $object->id);
dol_syslog("payment_salary/card.php", LOG_DEBUG);
$resql = $db->query($sql);
diff --git a/htdocs/stripe/class/actions_stripe.class.php b/htdocs/stripe/class/actions_stripe.class.php
index e44f3480042..f1a7a5c7877 100644
--- a/htdocs/stripe/class/actions_stripe.class.php
+++ b/htdocs/stripe/class/actions_stripe.class.php
@@ -173,7 +173,7 @@ class ActionsStripeconnect
// On verifie si la facture a des paiements
$sql = 'SELECT pf.amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'paiement_facture as pf';
- $sql .= ' WHERE pf.fk_facture = '.$object->id;
+ $sql .= ' WHERE pf.fk_facture = '.((int) $object->id);
$result = $this->db->query($sql);
if ($result) {
diff --git a/htdocs/supplier_proposal/class/supplier_proposal.class.php b/htdocs/supplier_proposal/class/supplier_proposal.class.php
index 6b76cf23af6..e35051829cb 100644
--- a/htdocs/supplier_proposal/class/supplier_proposal.class.php
+++ b/htdocs/supplier_proposal/class/supplier_proposal.class.php
@@ -2565,7 +2565,7 @@ class SupplierProposal extends CommonObject
$sql .= ' pt.fk_multicurrency, pt.multicurrency_code, pt.multicurrency_subprice, pt.multicurrency_total_ht, pt.multicurrency_total_tva, pt.multicurrency_total_ttc, pt.fk_unit';
$sql .= ' FROM '.MAIN_DB_PREFIX.'supplier_proposaldet as pt';
$sql .= ' LEFT JOIN '.MAIN_DB_PREFIX.'product as p ON pt.fk_product=p.rowid';
- $sql .= ' WHERE pt.fk_supplier_proposal = '.$this->id;
+ $sql .= ' WHERE pt.fk_supplier_proposal = '.((int) $this->id);
$sql .= ' ORDER BY pt.rang ASC, pt.rowid';
dol_syslog(get_class($this).'::getLinesArray', LOG_DEBUG);
@@ -3045,8 +3045,8 @@ class SupplierProposalLine extends CommonObjectLine
$sql .= " ".price2num($this->total_ttc).",";
$sql .= " ".(!empty($this->fk_fournprice) ? "'".$this->db->escape($this->fk_fournprice)."'" : "null").",";
$sql .= " ".(isset($this->pa_ht) ? "'".price2num($this->pa_ht)."'" : "null").",";
- $sql .= ' '.$this->special_code.',';
- $sql .= ' '.$this->rang.',';
+ $sql .= ' '.((int) $this->special_code).',';
+ $sql .= ' '.((int) $this->rang).',';
$sql .= " '".$this->db->escape($this->ref_fourn)."'";
$sql .= ", ".($this->fk_multicurrency > 0 ? $this->fk_multicurrency : 'null');
$sql .= ", '".$this->db->escape($this->multicurrency_code)."'";
diff --git a/htdocs/user/group/ldap.php b/htdocs/user/group/ldap.php
index 458978d25ea..e02eb3e25d0 100644
--- a/htdocs/user/group/ldap.php
+++ b/htdocs/user/group/ldap.php
@@ -189,7 +189,7 @@ if ($result > 0) {
$result = show_ldap_content($records, 0, $records['count'], true);
}
} else {
- print ''.$langs->trans("LDAPRecordNotFound").' (dn='.$dn.' - search='.$search.') '.$langs->trans("LDAPRecordNotFound").' (dn='.dol_escape_htmltag($dn).' - search='.dol_escape_htmltag($search).') '.$langs->trans("LDAPRecordNotFound").' (dn='.$dn.' - search='.$search.') '.$langs->trans("LDAPRecordNotFound").' (dn='.dol_escape_htmltag($dn).' - search='.dol_escape_htmltag($search).')
Date: Sat, 28 Aug 2021 00:53:13 +0200
Subject: [PATCH 065/117] Add hook checkSecureAccess. It replaces
mymodule_SUBPERMCATEGORY_FOR_DOCUMENTS and
mymodule_SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS
---
htdocs/core/lib/files.lib.php | 26 ++++++++++++++++++++++++--
1 file changed, 24 insertions(+), 2 deletions(-)
diff --git a/htdocs/core/lib/files.lib.php b/htdocs/core/lib/files.lib.php
index 330e260a327..ba4b115e830 100644
--- a/htdocs/core/lib/files.lib.php
+++ b/htdocs/core/lib/files.lib.php
@@ -2269,8 +2269,9 @@ function dol_most_recent_file($dir, $regexfilter = '', $excludefilter = array('(
*/
function dol_check_secure_access_document($modulepart, $original_file, $entity, $fuser = '', $refname = '', $mode = 'read')
{
- global $conf, $db, $user;
+ global $conf, $db, $user, $hookmanager;
global $dolibarr_main_data_root, $dolibarr_main_document_root_alt;
+ global $object;
if (!is_object($fuser)) {
$fuser = $user;
@@ -2927,6 +2928,25 @@ function dol_check_secure_access_document($modulepart, $original_file, $entity,
}
}
+ $parameters = array(
+ 'modulepart' => $modulepart,
+ 'original_file' => $original_file,
+ 'entity' => $entity,
+ 'fuser' => $fuser,
+ 'refname' => '',
+ 'mode' => $mode
+ );
+ $reshook = $hookmanager->executeHooks('checkSecureAccess', $parameters, $object);
+ if ($reshook > 0) {
+ if (!empty($hookmanager->resArray['accessallowed'])) {
+ $accessallowed = $hookmanager->resArray['accessallowed'];
+ }
+ if (!empty($hookmanager->resArray['sqlprotectagainstexternals'])) {
+ $sqlprotectagainstexternals = $hookmanager->resArray['sqlprotectagainstexternals'];
+ }
+ }
+
+ /*
// For modules who wants to manage different levels of permissions for documents
$subPermCategoryConstName = strtoupper($modulepart).'_SUBPERMCATEGORY_FOR_DOCUMENTS';
if (!empty($conf->global->$subPermCategoryConstName)) {
@@ -2939,9 +2959,11 @@ function dol_check_secure_access_document($modulepart, $original_file, $entity,
// Define $sqlprotectagainstexternals for modules who want to protect access using a SQL query.
$sqlProtectConstName = strtoupper($modulepart).'_SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS';
if (!empty($conf->global->$sqlProtectConstName)) { // If module want to define its own $sqlprotectagainstexternals
- // Example: mymodule__SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS = "SELECT fk_soc FROM ".MAIN_DB_PREFIX.$modulepart." WHERE ref='".$db->escape($refname)."' AND entity=".$conf->entity;
+ // Example: mymodule_SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS = "SELECT fk_soc FROM ".MAIN_DB_PREFIX.$modulepart." WHERE ref='".$db->escape($refname)."' AND entity=".$conf->entity;
+ // TODO Replace this with a hook
eval('$sqlprotectagainstexternals = "'.$conf->global->$sqlProtectConstName.'";');
}
+ */
}
$ret = array(
From 51a4d7630f3ac38e57c800a94a9abc6d5a3967d6 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 00:55:51 +0200
Subject: [PATCH 066/117] Clean code
---
htdocs/compta/facture/class/facture.class.php | 4 +-
htdocs/compta/stats/byratecountry.php | 4 +-
htdocs/compta/tva/class/tva.class.php | 2 +-
htdocs/compta/tva/list.php | 8 +-
htdocs/contact/class/contact.class.php | 4 +-
htdocs/contact/list.php | 2 +-
htdocs/contrat/class/contrat.class.php | 6 +-
htdocs/contrat/index.php | 14 +-
htdocs/contrat/list.php | 10 +-
htdocs/core/ajax/check_notifications.php | 9 +-
htdocs/core/boxes/box_services_expired.php | 2 +-
htdocs/core/boxes/box_validated_projects.php | 4 +-
htdocs/core/class/commoninvoice.class.php | 7 +-
htdocs/core/class/commonobject.class.php | 140 +++++++++---------
htdocs/core/class/commonobjectline.class.php | 4 +-
htdocs/core/class/coreobject.class.php | 2 +-
htdocs/core/class/discount.class.php | 20 +--
htdocs/core/class/dolreceiptprinter.class.php | 4 +-
htdocs/core/class/extrafields.class.php | 12 +-
htdocs/core/class/hookmanager.class.php | 1 +
htdocs/core/class/html.form.class.php | 6 +-
htdocs/core/class/html.formmail.class.php | 2 +-
htdocs/core/class/utils.class.php | 4 +-
htdocs/core/class/validate.class.php | 2 +-
htdocs/core/customreports.php | 59 ++++----
htdocs/core/db/pgsql.class.php | 2 +-
htdocs/core/db/sqlite3.class.php | 17 +--
htdocs/core/lib/admin.lib.php | 4 +-
htdocs/core/lib/company.lib.php | 2 +-
htdocs/core/lib/files.lib.php | 19 ---
htdocs/core/lib/invoice.lib.php | 4 +-
htdocs/core/lib/order.lib.php | 2 +-
htdocs/core/lib/propal.lib.php | 2 +-
htdocs/core/modules/modFournisseur.class.php | 6 +-
htdocs/core/modules/modSociete.class.php | 4 +-
.../class/expensereport.class.php | 2 +-
htdocs/fichinter/index.php | 2 +-
.../fourn/class/fournisseur.facture.class.php | 2 +-
htdocs/fourn/commande/index.php | 2 +-
htdocs/fourn/paiement/list.php | 2 +-
htdocs/loan/class/loan.class.php | 2 +-
htdocs/product/stock/replenishorders.php | 2 +-
htdocs/salaries/class/salary.class.php | 2 +-
htdocs/supplier_proposal/index.php | 2 +-
44 files changed, 193 insertions(+), 219 deletions(-)
diff --git a/htdocs/compta/facture/class/facture.class.php b/htdocs/compta/facture/class/facture.class.php
index abb52560d24..bab9be7670c 100644
--- a/htdocs/compta/facture/class/facture.class.php
+++ b/htdocs/compta/facture/class/facture.class.php
@@ -4890,8 +4890,8 @@ class Facture extends CommonInvoice
if ($this->statut >= 0) {
$fieldname = 'retained_warranty_date_limit';
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.(strval($timestamp) != '' ? '\''.$this->db->idate($timestamp).'\'' : 'null');
- $sql .= ' WHERE rowid='.((int) $this->id);
+ $sql .= " SET ".$fieldname." = ".(strval($timestamp) != '' ? "'".$this->db->idate($timestamp)."'" : 'null');
+ $sql .= ' WHERE rowid = '.((int) $this->id);
if ($this->db->query($sql)) {
$this->retained_warranty_date_limit = $timestamp;
diff --git a/htdocs/compta/stats/byratecountry.php b/htdocs/compta/stats/byratecountry.php
index 9a9ba40b56a..afc56532fdf 100644
--- a/htdocs/compta/stats/byratecountry.php
+++ b/htdocs/compta/stats/byratecountry.php
@@ -306,7 +306,7 @@ if ($modecompta == 'CREANCES-DETTES') {
$sql .= " fd.product_type AS product_type,";
$sql .= " cc.code, cc.label AS country,";
for ($i = 1; $i <= 12; $i++) {
- $sql .= " SUM(".$db->ifsql('MONTH(f.datef)='.$i, 'fd.total_ht', '0').") AS month".str_pad($i, 2, '0', STR_PAD_LEFT).",";
+ $sql .= " SUM(".$db->ifsql("MONTH(f.datef)=".$i, "fd.total_ht", "0").") AS month".str_pad($i, 2, "0", STR_PAD_LEFT).",";
}
$sql .= " SUM(fd.total_ht) as total";
$sql .= " FROM ".MAIN_DB_PREFIX."facturedet as fd";
@@ -393,7 +393,7 @@ if ($modecompta == 'CREANCES-DETTES') {
$sql2 .= " ffd.product_type AS product_type,";
$sql2 .= " cc.code, cc.label AS country,";
for ($i = 1; $i <= 12; $i++) {
- $sql2 .= " SUM(".$db->ifsql('MONTH(ff.datef)='.$i, 'ffd.total_ht', '0').") AS month".str_pad($i, 2, '0', STR_PAD_LEFT).",";
+ $sql2 .= " SUM(".$db->ifsql("MONTH(ff.datef)=".$i, "ffd.total_ht", "0").") AS month".str_pad($i, 2, "0", STR_PAD_LEFT).",";
}
$sql2 .= " SUM(ffd.total_ht) as total";
$sql2 .= " FROM ".MAIN_DB_PREFIX."facture_fourn_det as ffd";
diff --git a/htdocs/compta/tva/class/tva.class.php b/htdocs/compta/tva/class/tva.class.php
index 25fcee08e57..38da3c21eae 100644
--- a/htdocs/compta/tva/class/tva.class.php
+++ b/htdocs/compta/tva/class/tva.class.php
@@ -768,7 +768,7 @@ class Tva extends CommonObject
$sql = 'SELECT sum(amount) as amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.((int) $this->id);
+ $sql .= " WHERE ".$field." = ".((int) $this->id);
dol_syslog(get_class($this)."::getSommePaiement", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/compta/tva/list.php b/htdocs/compta/tva/list.php
index 1dc0180bd60..8c12dbfd704 100644
--- a/htdocs/compta/tva/list.php
+++ b/htdocs/compta/tva/list.php
@@ -161,16 +161,16 @@ if (!empty($search_label)) {
$sql .= natural_search('t.label', $search_label);
}
if (!empty($search_dateend_start)) {
- $sql .= ' AND t.datev >= "'.$db->idate($search_dateend_start).'"';
+ $sql .= " AND t.datev >= '".$db->idate($search_dateend_start)."'";
}
if (!empty($search_dateend_end)) {
- $sql .= ' AND t.datev <= "'.$db->idate($search_dateend_end).'"';
+ $sql .= " AND t.datev <= '".$db->idate($search_dateend_end)."'";
}
if (!empty($search_datepayment_start)) {
- $sql .= ' AND t.datep >= "'.$db->idate($search_datepayment_start).'"';
+ $sql .= " AND t.datep >= '".$db->idate($search_datepayment_start)."'";
}
if (!empty($search_datepayment_end)) {
- $sql .= ' AND t.datep <= "'.$db->idate($search_datepayment_end).'"';
+ $sql .= " AND t.datep <= '".$db->idate($search_datepayment_end)."'";
}
if (!empty($search_type) && $search_type > 0) {
$sql .= ' AND t.fk_typepayment = '.((int) $search_type);
diff --git a/htdocs/contact/class/contact.class.php b/htdocs/contact/class/contact.class.php
index fd9830f36ca..066ee681f7a 100644
--- a/htdocs/contact/class/contact.class.php
+++ b/htdocs/contact/class/contact.class.php
@@ -388,8 +388,8 @@ class Contact extends CommonObject
$sql .= " WHERE sp.fk_soc = s.rowid AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
$clause = "AND";
}
- $sql .= ' '.$clause.' sp.entity IN ('.getEntity($this->element).')';
- $sql .= " AND (sp.priv='0' OR (sp.priv='1' AND sp.fk_user_creat=".((int) $user->id)."))";
+ $sql .= " ".$clause." sp.entity IN (".getEntity($this->element).")";
+ $sql .= " AND (sp.priv='0' OR (sp.priv='1' AND sp.fk_user_creat = ".((int) $user->id)."))";
if ($user->socid > 0) {
$sql .= " AND sp.fk_soc = ".((int) $user->socid);
}
diff --git a/htdocs/contact/list.php b/htdocs/contact/list.php
index 3f98f556cb7..7a9bfefb11f 100644
--- a/htdocs/contact/list.php
+++ b/htdocs/contact/list.php
@@ -478,7 +478,7 @@ if (strlen($search_fax)) {
if (!empty($conf->socialnetworks->enabled)) {
foreach ($socialnetworks as $key => $value) {
if ($value['active'] && strlen($search_[$key])) {
- $sql .= ' AND p.socialnetworks LIKE \'%"'.$key.'":"'.$search_[$key].'%\'';
+ $sql .= " AND p.socialnetworks LIKE '%\"".$key."\":\"".$search_[$key]."%'";
}
}
}
diff --git a/htdocs/contrat/class/contrat.class.php b/htdocs/contrat/class/contrat.class.php
index 1ce51af2d90..a7a42ca7350 100644
--- a/htdocs/contrat/class/contrat.class.php
+++ b/htdocs/contrat/class/contrat.class.php
@@ -1222,7 +1222,7 @@ class Contrat extends CommonObject
// Delete llx_ecm_files
if (!$error) {
- $sql = 'DELETE FROM '.MAIN_DB_PREFIX."ecm_files WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? '' : '@'.$this->module))."' AND src_object_id = ".((int) $this->id);
+ $sql = 'DELETE FROM '.MAIN_DB_PREFIX."ecm_files WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? "" : "@".$this->module))."' AND src_object_id = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
$this->error = $this->db->lasterror();
@@ -3257,12 +3257,12 @@ class ContratLigne extends CommonObjectLine
$sql .= " '".$this->db->escape($this->info_bits)."',";
$sql .= " ".price2num($this->price_ht).",".price2num($this->remise).",";
if ($this->fk_fournprice > 0) {
- $sql .= ' '.$this->fk_fournprice.',';
+ $sql .= ' '.((int) $this->fk_fournprice).',';
} else {
$sql .= ' null,';
}
if ($this->pa_ht > 0) {
- $sql .= ' '.price2num($this->pa_ht);
+ $sql .= ' '.((float) price2num($this->pa_ht));
} else {
$sql .= ' null';
}
diff --git a/htdocs/contrat/index.php b/htdocs/contrat/index.php
index cc3bc87ca54..b85cda094f3 100644
--- a/htdocs/contrat/index.php
+++ b/htdocs/contrat/index.php
@@ -99,7 +99,7 @@ $sql .= " WHERE cd.fk_contrat = c.rowid AND c.fk_soc = s.rowid";
$sql .= " AND (cd.statut != 4 OR (cd.statut = 4 AND (cd.date_fin_validite is null or cd.date_fin_validite >= '".$db->idate($now)."')))";
$sql .= " AND c.entity IN (".getEntity('contract', 0).")";
if ($user->socid) {
- $sql .= ' AND c.fk_soc = '.$user->socid;
+ $sql .= ' AND c.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
@@ -136,7 +136,7 @@ $sql .= " WHERE cd.fk_contrat = c.rowid AND c.fk_soc = s.rowid";
$sql .= " AND (cd.statut = 4 AND cd.date_fin_validite < '".$db->idate($now)."')";
$sql .= " AND c.entity IN (".getEntity('contract', 0).")";
if ($user->socid) {
- $sql .= ' AND c.fk_soc = '.$user->socid;
+ $sql .= ' AND c.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
@@ -304,11 +304,11 @@ print '';
// Last modified contracts
$max = 5;
$sql = 'SELECT ';
-$sql .= ' sum('.$db->ifsql("cd.statut=0", 1, 0).') as nb_initial,';
-$sql .= ' sum('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NULL OR cd.date_fin_validite >= '".$db->idate($now)."')", 1, 0).') as nb_running,';
-$sql .= ' sum('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now)."')", 1, 0).') as nb_expired,';
-$sql .= ' sum('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now - $conf->contrat->services->expires->warning_delay)."')", 1, 0).') as nb_late,';
-$sql .= ' sum('.$db->ifsql("cd.statut=5", 1, 0).') as nb_closed,';
+$sql .= " sum(".$db->ifsql("cd.statut=0", 1, 0).') as nb_initial,';
+$sql .= " sum(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NULL OR cd.date_fin_validite >= '".$db->idate($now)."')", 1, 0).') as nb_running,';
+$sql .= " sum(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now)."')", 1, 0).') as nb_expired,';
+$sql .= " sum(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now - $conf->contrat->services->expires->warning_delay)."')", 1, 0).') as nb_late,';
+$sql .= " sum(".$db->ifsql("cd.statut=5", 1, 0).') as nb_closed,';
$sql .= " c.rowid as cid, c.ref, c.datec, c.tms, c.statut, s.nom as name, s.rowid as socid";
$sql .= " FROM ".MAIN_DB_PREFIX."societe as s,";
if (!$user->rights->societe->client->voir && !$socid) {
diff --git a/htdocs/contrat/list.php b/htdocs/contrat/list.php
index 596e86df53e..66d84874d76 100644
--- a/htdocs/contrat/list.php
+++ b/htdocs/contrat/list.php
@@ -236,11 +236,11 @@ $sql .= ' s.rowid as socid, s.nom as name, s.name_alias, s.email, s.town, s.zip,
$sql .= " typent.code as typent_code,";
$sql .= " state.code_departement as state_code, state.nom as state_name,";
$sql .= " MIN(".$db->ifsql("cd.statut=4", "cd.date_fin_validite", "null").") as lower_planned_end_date,";
-$sql .= ' SUM('.$db->ifsql("cd.statut=0", 1, 0).') as nb_initial,';
-$sql .= ' SUM('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NULL OR cd.date_fin_validite >= '".$db->idate($now)."')", 1, 0).') as nb_running,';
-$sql .= ' SUM('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now)."')", 1, 0).') as nb_expired,';
-$sql .= ' SUM('.$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now - $conf->contrat->services->expires->warning_delay)."')", 1, 0).') as nb_late,';
-$sql .= ' SUM('.$db->ifsql("cd.statut=5", 1, 0).') as nb_closed';
+$sql .= " SUM(".$db->ifsql("cd.statut=0", 1, 0).') as nb_initial,';
+$sql .= " SUM(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NULL OR cd.date_fin_validite >= '".$db->idate($now)."')", 1, 0).') as nb_running,';
+$sql .= " SUM(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now)."')", 1, 0).') as nb_expired,';
+$sql .= " SUM(".$db->ifsql("cd.statut=4 AND (cd.date_fin_validite IS NOT NULL AND cd.date_fin_validite < '".$db->idate($now - $conf->contrat->services->expires->warning_delay)."')", 1, 0).') as nb_late,';
+$sql .= " SUM(".$db->ifsql("cd.statut=5", 1, 0).') as nb_closed';
// Add fields from extrafields
if (!empty($extrafields->attributes[$object->table_element]['label'])) {
foreach ($extrafields->attributes[$object->table_element]['label'] as $key => $val) {
diff --git a/htdocs/core/ajax/check_notifications.php b/htdocs/core/ajax/check_notifications.php
index 35d10af49b6..bbbc95a19c5 100644
--- a/htdocs/core/ajax/check_notifications.php
+++ b/htdocs/core/ajax/check_notifications.php
@@ -75,12 +75,9 @@ if ($action == 'stopreminder') {
$listofreminderid = GETPOST('listofreminderids', 'intcomma');
// Set the reminder as done
- //foreach ($listofreminderidsarray as $listofreminderid) {
- // if (empty($listofreminderid)) continue;
- //$sql = 'DELETE FROM '.MAIN_DB_PREFIX.'action_reminder WHERE rowid = '.$listofreminderid.' AND fk_user = '.$user->id;
$sql = 'UPDATE '.MAIN_DB_PREFIX.'actioncomm_reminder SET status = 1';
$sql .= ' WHERE status = 0 AND rowid IN ('.$db->sanitize($db->escape($listofreminderid)).')';
- $sql .= ' AND fk_user = '.$user->id.' AND entity = '.$conf->entity;
+ $sql .= ' AND fk_user = '.((int) $user->id).' AND entity = '.((int) $conf->entity);
$resql = $db->query($sql);
if (!$resql) {
dol_print_error($db);
@@ -149,13 +146,13 @@ if (empty($_SESSION['auto_check_events_not_before']) || $time >= $_SESSION['auto
$sql = 'SELECT a.id as id_agenda, a.code, a.datep, a.label, a.location, ar.rowid as id_reminder, ar.dateremind, ar.fk_user as id_user_reminder';
$sql .= ' FROM '.MAIN_DB_PREFIX.'actioncomm as a';
if (!empty($user->conf->MAIN_USER_WANT_ALL_EVENTS_NOTIFICATIONS)) {
- $sql .= ' LEFT JOIN '.MAIN_DB_PREFIX.'actioncomm_reminder as ar ON a.id = ar.fk_actioncomm AND ar.fk_user = '.$user->id;
+ $sql .= ' LEFT JOIN '.MAIN_DB_PREFIX.'actioncomm_reminder as ar ON a.id = ar.fk_actioncomm AND ar.fk_user = '.((int) $user->id);
$sql .= ' WHERE a.code <> "AC_OTH_AUTO"';
$sql .= ' AND (';
$sql .= " (ar.typeremind = 'browser' AND ar.dateremind < '".$db->idate(dol_now())."' AND ar.status = 0 AND ar.entity = ".$conf->entity;
$sql .= ' )';
} else {
- $sql .= ' JOIN '.MAIN_DB_PREFIX.'actioncomm_reminder as ar ON a.id = ar.fk_actioncomm AND ar.fk_user = '.$user->id;
+ $sql .= ' JOIN '.MAIN_DB_PREFIX.'actioncomm_reminder as ar ON a.id = ar.fk_actioncomm AND ar.fk_user = '.((int) $user->id);
$sql .= " AND ar.typeremind = 'browser' AND ar.dateremind < '".$db->idate(dol_now())."' AND ar.status = 0 AND ar.entity = ".$conf->entity;
}
$sql .= $db->order('datep', 'ASC');
diff --git a/htdocs/core/boxes/box_services_expired.php b/htdocs/core/boxes/box_services_expired.php
index 95086cdf2a3..433c566ad31 100644
--- a/htdocs/core/boxes/box_services_expired.php
+++ b/htdocs/core/boxes/box_services_expired.php
@@ -93,7 +93,7 @@ class box_services_expired extends ModeleBoxes
$sql .= " AND c.entity = ".$conf->entity;
$sql .= " AND c.fk_soc=s.rowid AND cd.fk_contrat=c.rowid AND c.statut > 0";
if ($user->socid) {
- $sql .= ' AND c.fk_soc = '.$user->socid;
+ $sql .= ' AND c.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$user->socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/core/boxes/box_validated_projects.php b/htdocs/core/boxes/box_validated_projects.php
index f1fb55878aa..0c4155da6c7 100644
--- a/htdocs/core/boxes/box_validated_projects.php
+++ b/htdocs/core/boxes/box_validated_projects.php
@@ -157,7 +157,7 @@ class box_validated_projects extends ModeleBoxes
);
if ($objp->fk_soc > 0) {
- $sql = 'SELECT rowid, nom as name FROM '.MAIN_DB_PREFIX.'societe WHERE rowid ='.$objp->fk_soc;
+ $sql = 'SELECT rowid, nom as name FROM '.MAIN_DB_PREFIX.'societe WHERE rowid = '.((int) $objp->fk_soc);
$resql = $this->db->query($sql);
//$socstatic = new Societe($this->db);
$obj2 = $this->db->fetch_object($resql);
@@ -165,7 +165,7 @@ class box_validated_projects extends ModeleBoxes
'td' => 'class="tdoverflowmax150 maxwidth200onsmartphone"',
'text' => $obj2->name,
'asis' => 1,
- 'url' => DOL_URL_ROOT.'/societe/card.php?socid='.$obj2->rowid
+ 'url' => DOL_URL_ROOT.'/societe/card.php?socid='.urlencode($obj2->rowid)
);
} else {
$this->info_box_contents[$i][] = array(
diff --git a/htdocs/core/class/commoninvoice.class.php b/htdocs/core/class/commoninvoice.class.php
index 65988c9cdf0..dfabfd24ebe 100644
--- a/htdocs/core/class/commoninvoice.class.php
+++ b/htdocs/core/class/commoninvoice.class.php
@@ -132,7 +132,7 @@ abstract class CommonInvoice extends CommonObject
$sql = 'SELECT sum(amount) as amount, sum(multicurrency_amount) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.((int) $this->id);
+ $sql .= " WHERE ".$field." = ".((int) $this->id);
dol_syslog(get_class($this)."::getSommePaiement", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -308,9 +308,8 @@ abstract class CommonInvoice extends CommonObject
$sql = 'SELECT p.ref, pf.amount, pf.multicurrency_amount, p.fk_paiement, p.datep, p.num_paiement as num, t.code'.$field3;
$sql .= ' FROM '.MAIN_DB_PREFIX.$table.' as pf, '.MAIN_DB_PREFIX.$table2.' as p, '.MAIN_DB_PREFIX.'c_paiement as t';
- $sql .= ' WHERE pf.'.$field.' = '.((int) $this->id);
- //$sql.= ' WHERE pf.'.$field.' = 1';
- $sql .= ' AND pf.'.$field2.' = p.rowid';
+ $sql .= " WHERE pf.".$field." = ".((int) $this->id);
+ $sql .= " AND pf.".$field2." = p.rowid";
$sql .= ' AND p.fk_paiement = t.id';
$sql .= ' AND p.entity IN ('.getEntity($sharedentity).')';
if ($filtertype) {
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index a4a98da9690..fce86b080bd 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -2054,7 +2054,7 @@ abstract class CommonObject
}
if (isset($this->ismultientitymanaged) && !is_numeric($this->ismultientitymanaged)) {
$tmparray = explode('@', $this->ismultientitymanaged);
- $sql .= ' AND te.'.$tmparray[0].' = '.($tmparray[1] == 'societe' ? 's' : 'parenttable').'.rowid'; // If we need to link to this table to limit select to entity
+ $sql .= " AND te.".$tmparray[0]." = ".($tmparray[1] == "societe" ? "s" : "parenttable").".rowid"; // If we need to link to this table to limit select to entity
} elseif ($restrictiononfksoc == 1 && $this->element != 'societe' && !$user->rights->societe->client->voir && !$socid) {
$sql .= ' AND te.fk_soc = s.rowid'; // If we need to link to societe to limit select to socid
}
@@ -2075,13 +2075,13 @@ abstract class CommonObject
$sql .= ' AND parenttable.entity IN ('.getEntity($tmparray[1]).')';
}
if ($restrictiononfksoc == 1 && $socid && $this->element != 'societe') {
- $sql .= ' AND te.fk_soc = '.$socid;
+ $sql .= ' AND te.fk_soc = '.((int) $socid);
}
if ($restrictiononfksoc == 2 && $socid && $this->element != 'societe') {
- $sql .= ' AND (te.fk_soc = '.$socid.' OR te.fk_soc IS NULL)';
+ $sql .= ' AND (te.fk_soc = '.((int) $socid).' OR te.fk_soc IS NULL)';
}
if ($restrictiononfksoc && $socid && $this->element == 'societe') {
- $sql .= ' AND te.rowid = '.$socid;
+ $sql .= ' AND te.rowid = '.((int) $socid);
}
//print 'socid='.$socid.' restrictiononfksoc='.$restrictiononfksoc.' ismultientitymanaged = '.$this->ismultientitymanaged.' filter = '.$filter.' -> '.$sql."
";
@@ -2124,7 +2124,7 @@ abstract class CommonObject
}
if (isset($this->ismultientitymanaged) && !is_numeric($this->ismultientitymanaged)) {
$tmparray = explode('@', $this->ismultientitymanaged);
- $sql .= ' AND te.'.$tmparray[0].' = '.($tmparray[1] == 'societe' ? 's' : 'parenttable').'.rowid'; // If we need to link to this table to limit select to entity
+ $sql .= " AND te.".$tmparray[0]." = ".($tmparray[1] == "societe" ? "s" : "parenttable").".rowid"; // If we need to link to this table to limit select to entity
} elseif ($restrictiononfksoc == 1 && $this->element != 'societe' && !$user->rights->societe->client->voir && !$socid) {
$sql .= ' AND te.fk_soc = s.rowid'; // If we need to link to societe to limit select to socid
}
@@ -2145,13 +2145,13 @@ abstract class CommonObject
$sql .= ' AND parenttable.entity IN ('.getEntity($tmparray[1]).')';
}
if ($restrictiononfksoc == 1 && $socid && $this->element != 'societe') {
- $sql .= ' AND te.fk_soc = '.$socid;
+ $sql .= ' AND te.fk_soc = '.((int) $socid);
}
if ($restrictiononfksoc == 2 && $socid && $this->element != 'societe') {
- $sql .= ' AND (te.fk_soc = '.$socid.' OR te.fk_soc IS NULL)';
+ $sql .= ' AND (te.fk_soc = '.((int) $socid).' OR te.fk_soc IS NULL)';
}
if ($restrictiononfksoc && $socid && $this->element == 'societe') {
- $sql .= ' AND te.rowid = '.$socid;
+ $sql .= ' AND te.rowid = '.((int) $socid);
}
//print 'socid='.$socid.' restrictiononfksoc='.$restrictiononfksoc.' ismultientitymanaged = '.$this->ismultientitymanaged.' filter = '.$filter.' -> '.$sql."
";
// Rem: Bug in some mysql version: SELECT MIN(rowid) FROM llx_socpeople WHERE rowid > 1 when one row in database with rowid=1, returns 1 instead of null
@@ -2206,19 +2206,19 @@ abstract class CommonObject
return -1;
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
if (!empty($this->fields['fk_project'])) { // Common case
if ($projectid) {
- $sql .= ' SET fk_project = '.((int) $projectid);
+ $sql .= " SET fk_project = ".((int) $projectid);
} else {
- $sql .= ' SET fk_project = NULL';
+ $sql .= " SET fk_project = NULL";
}
$sql .= ' WHERE rowid = '.((int) $this->id);
} elseif ($this->table_element == 'actioncomm') { // Special case for actioncomm
if ($projectid) {
- $sql .= ' SET fk_project = '.((int) $projectid);
+ $sql .= " SET fk_project = ".((int) $projectid);
} else {
- $sql .= ' SET fk_project = NULL';
+ $sql .= " SET fk_project = NULL";
}
$sql .= ' WHERE id = '.((int) $this->id);
} else // Special case for old architecture objects
@@ -2266,8 +2266,8 @@ abstract class CommonObject
$fieldname = 'fk_typepayment';
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.(($id > 0 || $id == '0') ? $id : 'NULL');
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
+ $sql .= " SET ".$fieldname." = ".(($id > 0 || $id == '0') ? ((int) $id) : 'NULL');
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2278,7 +2278,7 @@ abstract class CommonObject
}
return 1;
} else {
- dol_syslog(get_class($this).'::setPaymentMethods Error '.$sql.' - '.$this->db->error());
+ dol_syslog(get_class($this).'::setPaymentMethods Error '.$this->db->error());
$this->error = $this->db->error();
return -1;
}
@@ -2302,7 +2302,7 @@ abstract class CommonObject
$fieldname = 'multicurrency_code';
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname." = '".$this->db->escape($code)."'";
+ $sql .= " SET ".$fieldname." = '".$this->db->escape($code)."'";
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2340,7 +2340,7 @@ abstract class CommonObject
$fieldname = 'multicurrency_tx';
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.((float) $rate);
+ $sql .= " SET ".$fieldname." = ".((float) $rate);
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2548,7 +2548,7 @@ abstract class CommonObject
}
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.(($id > 0 || $id == '0') ? $id : 'NULL');
+ $sql .= " SET ".$fieldname." = ".(($id > 0 || $id == '0') ? ((int) $id) : 'NULL');
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2590,7 +2590,7 @@ abstract class CommonObject
}
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.(($id > 0 || $id == '0') ? $id : 'NULL');
+ $sql .= " SET ".$fieldname." = ".(($id > 0 || $id == '0') ? ((int) $id) : 'NULL');
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2625,7 +2625,7 @@ abstract class CommonObject
$fieldname = 'retained_warranty_fk_cond_reglement';
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' SET '.$fieldname.' = '.((int) $id);
+ $sql .= " SET ".$fieldname." = ".((int) $id);
$sql .= ' WHERE rowid='.((int) $this->id);
if ($this->db->query($sql)) {
@@ -2665,7 +2665,7 @@ abstract class CommonObject
return 1;
} else {
$this->error = $this->db->error();
- dol_syslog(get_class($this).'::setDeliveryAddress Error '.$sql.' - '.$this->error);
+ dol_syslog(get_class($this).'::setDeliveryAddress Error '.$this->error);
return -1;
}
}
@@ -2884,7 +2884,7 @@ abstract class CommonObject
// Count number of lines to reorder (according to choice $renum)
$nl = 0;
$sql = 'SELECT count(rowid) FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.'='.((int) $this->id);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
if (!$renum) {
$sql .= ' AND rang = 0';
}
@@ -2906,7 +2906,7 @@ abstract class CommonObject
// We first search all lines that are parent lines (for multilevel details lines)
$sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
if ($fk_parent_line) {
$sql .= ' AND fk_parent_line IS NULL';
}
@@ -2954,7 +2954,7 @@ abstract class CommonObject
$rows = array();
$sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
$sql .= ' AND fk_parent_line = '.((int) $id);
$sql .= ' ORDER BY rang ASC';
@@ -3031,7 +3031,7 @@ abstract class CommonObject
$fieldposition = 'position';
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element_line.' SET '.$fieldposition.' = '.((int) $rang);
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldposition." = ".((int) $rang);
$sql .= ' WHERE rowid = '.((int) $rowid);
dol_syslog(get_class($this)."::updateRangOfLine", LOG_DEBUG);
@@ -3074,11 +3074,11 @@ abstract class CommonObject
$fieldposition = 'position';
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element_line.' SET '.$fieldposition.' = '.((int) $rang);
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldposition." = ".((int) $rang);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
$sql .= ' AND rang = '.((int) ($rang - 1));
if ($this->db->query($sql)) {
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element_line.' SET '.$fieldposition.' = '.((int) ($rang - 1));
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldposition." = ".((int) ($rang - 1));
$sql .= ' WHERE rowid = '.((int) $rowid);
if (!$this->db->query($sql)) {
dol_print_error($this->db);
@@ -3105,11 +3105,11 @@ abstract class CommonObject
$fieldposition = 'position';
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element_line.' SET '.$fieldposition.' = '.((int) $rang);
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldposition." = ".((int) $rang);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
$sql .= ' AND rang = '.((int) ($rang + 1));
if ($this->db->query($sql)) {
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element_line.' SET '.$fieldposition.' = '.((int) ($rang + 1));
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element_line." SET ".$fieldposition." = ".((int) ($rang + 1));
$sql .= ' WHERE rowid = '.((int) $rowid);
if (!$this->db->query($sql)) {
dol_print_error($this->db);
@@ -3148,7 +3148,7 @@ abstract class CommonObject
public function getIdOfLine($rang)
{
$sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
$sql .= ' AND rang = '.((int) $rang);
$resql = $this->db->query($sql);
if ($resql) {
@@ -3174,8 +3174,8 @@ abstract class CommonObject
// Search the last rang with fk_parent_line
if ($fk_parent_line) {
- $sql = 'SELECT max('.$positionfield.') FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "SELECT max(".$positionfield.") FROM ".MAIN_DB_PREFIX.$this->table_element_line;
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
$sql .= ' AND fk_parent_line = '.((int) $fk_parent_line);
dol_syslog(get_class($this)."::line_max", LOG_DEBUG);
@@ -3190,8 +3190,8 @@ abstract class CommonObject
}
} else {
// If not, search the last rang of element
- $sql = 'SELECT max('.$positionfield.') FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.$this->id;
+ $sql = "SELECT max(".$positionfield.") FROM ".MAIN_DB_PREFIX.$this->table_element_line;
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
dol_syslog(get_class($this)."::line_max", LOG_DEBUG);
$resql = $this->db->query($sql);
@@ -3217,7 +3217,7 @@ abstract class CommonObject
return -1;
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET ref_ext = '".$this->db->escape($ref_ext)."'";
$sql .= " WHERE ".(isset($this->table_rowid) ? $this->table_rowid : 'rowid')." = ".((int) $this->id);
@@ -3268,7 +3268,7 @@ abstract class CommonObject
} else {
$fieldusermod = "fk_user_modif";
}
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element;
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element;
$sql .= " SET note".$newsuffix." = ".(!empty($note) ? ("'".$this->db->escape($note)."'") : "NULL");
$sql .= ", ".$fieldusermod." = ".((int) $user->id);
$sql .= " WHERE rowid = ".((int) $this->id);
@@ -3386,21 +3386,21 @@ abstract class CommonObject
$fieldup = 'value_unit';
}
- $sql = 'SELECT rowid, qty, '.$fieldup.' as up, remise_percent, total_ht, '.$fieldtva.' as total_tva, total_ttc, '.$fieldlocaltax1.' as total_localtax1, '.$fieldlocaltax2.' as total_localtax2,';
+ $sql = "SELECT rowid, qty, ".$fieldup." as up, remise_percent, total_ht, ".$fieldtva." as total_tva, total_ttc, ".$fieldlocaltax1." as total_localtax1, ".$fieldlocaltax2." as total_localtax2,";
$sql .= ' tva_tx as vatrate, localtax1_tx, localtax2_tx, localtax1_type, localtax2_type, info_bits, product_type';
if ($this->table_element_line == 'facturedet') {
$sql .= ', situation_percent';
}
$sql .= ', multicurrency_total_ht, multicurrency_total_tva, multicurrency_total_ttc';
$sql .= ' FROM '.MAIN_DB_PREFIX.$this->table_element_line;
- $sql .= ' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql .= " WHERE ".$this->fk_element." = ".((int) $this->id);
if ($exclspec) {
$product_field = 'product_type';
if ($this->table_element_line == 'contratdet') {
$product_field = ''; // contratdet table has no product_type field
}
if ($product_field) {
- $sql .= ' AND '.$product_field.' <> 9';
+ $sql .= " AND ".$product_field." <> 9";
}
}
$sql .= ' ORDER by rowid'; // We want to be sure to always use same order of line to not change lines differently when option MAIN_ROUNDOFTOTAL_NOT_TOTALOFROUND is used
@@ -3553,14 +3553,14 @@ abstract class CommonObject
if (empty($nodatabaseupdate)) {
$sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element.' SET';
- $sql .= " ".$fieldht." = ".price2num($this->total_ht).",";
- $sql .= " ".$fieldtva." = ".price2num($this->total_tva).",";
- $sql .= " ".$fieldlocaltax1." = ".price2num($this->total_localtax1).",";
- $sql .= " ".$fieldlocaltax2." = ".price2num($this->total_localtax2).",";
- $sql .= " ".$fieldttc." = ".price2num($this->total_ttc);
- $sql .= ", multicurrency_total_ht = ".price2num($this->multicurrency_total_ht, 'MT', 1);
- $sql .= ", multicurrency_total_tva = ".price2num($this->multicurrency_total_tva, 'MT', 1);
- $sql .= ", multicurrency_total_ttc = ".price2num($this->multicurrency_total_ttc, 'MT', 1);
+ $sql .= " ".$fieldht." = ".((float) price2num($this->total_ht)).",";
+ $sql .= " ".$fieldtva." = ".((float) price2num($this->total_tva)).",";
+ $sql .= " ".$fieldlocaltax1." = ".((float) price2num($this->total_localtax1)).",";
+ $sql .= " ".$fieldlocaltax2." = ".((float) price2num($this->total_localtax2)).",";
+ $sql .= " ".$fieldttc." = ".((float) price2num($this->total_ttc));
+ $sql .= ", multicurrency_total_ht = ".((float) price2num($this->multicurrency_total_ht, 'MT', 1));
+ $sql .= ", multicurrency_total_tva = ".((float) price2num($this->multicurrency_total_tva, 'MT', 1));
+ $sql .= ", multicurrency_total_ttc = ".((float) price2num($this->multicurrency_total_ttc, 'MT', 1));
$sql .= " WHERE rowid = ".((int) $this->id);
dol_syslog(get_class($this)."::update_price", LOG_DEBUG);
@@ -4038,7 +4038,7 @@ abstract class CommonObject
global $db;
- $sql = 'SELECT '.$field_select.' FROM '.MAIN_DB_PREFIX.$table_element.' WHERE '.$field_where.' = '.((int) $fk_object_where);
+ $sql = "SELECT ".$field_select." FROM ".MAIN_DB_PREFIX.$table_element." WHERE ".$field_where." = ".((int) $fk_object_where);
$resql = $db->query($sql);
$TRes = array();
@@ -4067,7 +4067,7 @@ abstract class CommonObject
global $db;
- $sql = 'DELETE FROM '.MAIN_DB_PREFIX.$table_element.' WHERE '.$field_where.' = '.((int) $fk_object_where);
+ $sql = "DELETE FROM ".MAIN_DB_PREFIX.$table_element." WHERE ".$field_where." = ".((int) $fk_object_where);
$resql = $db->query($sql);
if (empty($resql)) {
@@ -5317,7 +5317,7 @@ abstract class CommonObject
$update_main_doc_field = 1;
}
if ($update_main_doc_field && !empty($this->table_element)) {
- $sql = 'UPDATE '.MAIN_DB_PREFIX.$this->table_element." SET last_main_doc = '".$this->db->escape($ecmfile->filepath.'/'.$ecmfile->filename)."'";
+ $sql = "UPDATE ".MAIN_DB_PREFIX.$this->table_element." SET last_main_doc = '".$this->db->escape($ecmfile->filepath."/".$ecmfile->filename)."'";
$sql .= " WHERE rowid = ".((int) $this->id);
$resql = $this->db->query($sql);
@@ -6677,17 +6677,17 @@ abstract class CommonObject
//We have to join on extrafield table
if (strpos($InfoFieldList[4], 'extra') !== false) {
- $sql .= ' as main, '.MAIN_DB_PREFIX.$InfoFieldList[0].'_extrafields as extra';
- $sqlwhere .= ' WHERE extra.fk_object=main.'.$InfoFieldList[2].' AND '.$InfoFieldList[4];
+ $sql .= " as main, ".MAIN_DB_PREFIX.$InfoFieldList[0]."_extrafields as extra";
+ $sqlwhere .= " WHERE extra.fk_object=main.".$InfoFieldList[2]." AND ".$InfoFieldList[4];
} else {
- $sqlwhere .= ' WHERE '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE ".$InfoFieldList[4];
}
} else {
$sqlwhere .= ' WHERE 1=1';
}
// Some tables may have field, some other not. For the moment we disable it.
if (in_array($InfoFieldList[0], array('tablewithentity'))) {
- $sqlwhere .= ' AND entity = '.$conf->entity;
+ $sqlwhere .= " AND entity = ".((int) $conf->entity);
}
$sql .= $sqlwhere;
//print $sql;
@@ -6830,16 +6830,16 @@ abstract class CommonObject
// We have to join on extrafield table
if (strpos($InfoFieldList[4], 'extra') !== false) {
$sql .= ' as main, '.MAIN_DB_PREFIX.$InfoFieldList[0].'_extrafields as extra';
- $sqlwhere .= ' WHERE extra.fk_object=main.'.$InfoFieldList[2].' AND '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE extra.fk_object=main.".$InfoFieldList[2]." AND ".$InfoFieldList[4];
} else {
- $sqlwhere .= ' WHERE '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE ".$InfoFieldList[4];
}
} else {
$sqlwhere .= ' WHERE 1=1';
}
// Some tables may have field, some other not. For the moment we disable it.
if (in_array($InfoFieldList[0], array('tablewithentity'))) {
- $sqlwhere .= ' AND entity = '.$conf->entity;
+ $sqlwhere .= " AND entity = ".((int) $conf->entity);
}
// $sql.=preg_replace('/^ AND /','',$sqlwhere);
// print $sql;
@@ -8770,8 +8770,8 @@ abstract class CommonObject
return 0;
}
- $sql = 'SELECT '.$fieldlist;
- $sql .= ' FROM '.MAIN_DB_PREFIX.$this->table_element.' as t';
+ $sql = "SELECT ".$fieldlist;
+ $sql .= " FROM ".MAIN_DB_PREFIX.$this->table_element.' as t';
if (!empty($id)) {
$sql .= ' WHERE t.rowid = '.((int) $id);
@@ -8825,9 +8825,9 @@ abstract class CommonObject
$objectline = new $objectlineclassname($this->db);
- $sql = 'SELECT '.$objectline->getFieldList('l');
- $sql .= ' FROM '.MAIN_DB_PREFIX.$objectline->table_element.' as l';
- $sql .= ' WHERE l.fk_'.$this->element.' = '.((int) $this->id);
+ $sql = "SELECT ".$objectline->getFieldList('l');
+ $sql .= " FROM ".MAIN_DB_PREFIX.$objectline->table_element." as l";
+ $sql .= " WHERE l.fk_".$this->element." = ".((int) $this->id);
if ($morewhere) {
$sql .= $morewhere;
}
@@ -8973,7 +8973,7 @@ abstract class CommonObject
if ($forcechilddeletion) { // Force also delete of childtables that should lock deletion in standard case when option force is off
foreach ($this->childtables as $table) {
- $sql = 'DELETE FROM '.MAIN_DB_PREFIX.$table.' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "DELETE FROM ".MAIN_DB_PREFIX.$table." WHERE ".$this->fk_element." = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
$this->error = $this->db->lasterror();
@@ -9022,7 +9022,7 @@ abstract class CommonObject
}
} else {
// Delete record in child table
- $sql = 'DELETE FROM '.MAIN_DB_PREFIX.$table.' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "DELETE FROM ".MAIN_DB_PREFIX.$table." WHERE ".$this->fk_element." = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
@@ -9100,7 +9100,7 @@ abstract class CommonObject
$this->db->begin();
$sql = "SELECT rowid FROM ".MAIN_DB_PREFIX.$this->table_element;
- $sql .= ' WHERE '.$parentField.' = '.(int) $parentId;
+ $sql .= " WHERE ".$parentField." = ".(int) $parentId;
$resql = $this->db->query($sql);
if (!$resql) {
@@ -9533,7 +9533,7 @@ abstract class CommonObject
// Delete in database with mode 1
if ($mode == 1) {
$sql = 'DELETE FROM '.MAIN_DB_PREFIX."ecm_files_extrafields";
- $sql .= " WHERE fk_object IN (SELECT rowid FROM ".MAIN_DB_PREFIX."ecm_files WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? '' : '@'.$this->module))."' AND src_object_id = ".((int) $this->id).")";
+ $sql .= " WHERE fk_object IN (SELECT rowid FROM ".MAIN_DB_PREFIX."ecm_files WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? "" : "@".$this->module))."' AND src_object_id = ".((int) $this->id).")";
$resql = $this->db->query($sql);
if (!$resql) {
$this->error = $this->db->lasterror();
@@ -9542,7 +9542,7 @@ abstract class CommonObject
}
$sql = 'DELETE FROM '.MAIN_DB_PREFIX."ecm_files";
- $sql .= " WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? '' : '@'.$this->module))."' AND src_object_id = ".((int) $this->id);
+ $sql .= " WHERE src_object_type = '".$this->db->escape($this->table_element.(empty($this->module) ? "" : "@".$this->module))."' AND src_object_id = ".((int) $this->id);
$resql = $this->db->query($sql);
if (!$resql) {
$this->error = $this->db->lasterror();
diff --git a/htdocs/core/class/commonobjectline.class.php b/htdocs/core/class/commonobjectline.class.php
index f821e5050b1..6d5573b9d76 100644
--- a/htdocs/core/class/commonobjectline.class.php
+++ b/htdocs/core/class/commonobjectline.class.php
@@ -86,7 +86,7 @@ abstract class CommonObjectLine extends CommonObject
$label_type = 'code';
}
- $sql = 'select '.$label_type.', code from '.MAIN_DB_PREFIX.'c_units where rowid='.$this->fk_unit;
+ $sql = "SELECT ".$label_type.", code from ".MAIN_DB_PREFIX."c_units where rowid = ".((int) $this->fk_unit);
$resql = $this->db->query($sql);
if ($resql && $this->db->num_rows($resql) > 0) {
$res = $this->db->fetch_array($resql);
@@ -98,7 +98,7 @@ abstract class CommonObjectLine extends CommonObject
$this->db->free($resql);
return $label;
} else {
- $this->error = $this->db->error().' sql='.$sql;
+ $this->error = $this->db->lasterror();
dol_syslog(get_class($this)."::getLabelOfUnit Error ".$this->error, LOG_ERR);
return -1;
}
diff --git a/htdocs/core/class/coreobject.class.php b/htdocs/core/class/coreobject.class.php
index 150ace90875..33510186646 100644
--- a/htdocs/core/class/coreobject.class.php
+++ b/htdocs/core/class/coreobject.class.php
@@ -183,7 +183,7 @@ class CoreObject extends CommonObject
$this->{$className} = array();
- $sql = 'SELECT rowid FROM '.MAIN_DB_PREFIX.$childTable.' WHERE '.$this->fk_element.' = '.((int) $this->id);
+ $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX.$childTable." WHERE ".$this->fk_element." = ".((int) $this->id);
$res = $this->db->query($sql);
if ($res) {
diff --git a/htdocs/core/class/discount.class.php b/htdocs/core/class/discount.class.php
index 07c6a509815..46789352bd7 100644
--- a/htdocs/core/class/discount.class.php
+++ b/htdocs/core/class/discount.class.php
@@ -516,10 +516,10 @@ class DiscountAbsolute
$sql .= " AND rc.fk_user = ".((int) $user->id);
}
if ($filter) {
- $sql .= ' AND ('.$filter.')';
+ $sql .= " AND (".$filter.")";
}
if ($maxvalue) {
- $sql .= ' AND rc.amount_ttc <= '.price2num($maxvalue);
+ $sql .= ' AND rc.amount_ttc <= '.((float) price2num($maxvalue));
}
$resql = $this->db->query($sql);
@@ -555,12 +555,12 @@ class DiscountAbsolute
if ($invoice->element == 'facture' || $invoice->element == 'invoice') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc, '.MAIN_DB_PREFIX.'facture as f';
- $sql .= ' WHERE rc.fk_facture_source=f.rowid AND rc.fk_facture = '.$invoice->id;
+ $sql .= ' WHERE rc.fk_facture_source=f.rowid AND rc.fk_facture = '.((int) $invoice->id);
$sql .= ' AND f.type = 3';
} elseif ($invoice->element == 'invoice_supplier') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc, '.MAIN_DB_PREFIX.'facture_fourn as f';
- $sql .= ' WHERE rc.fk_invoice_supplier_source=f.rowid AND rc.fk_invoice_supplier = '.$invoice->id;
+ $sql .= ' WHERE rc.fk_invoice_supplier_source=f.rowid AND rc.fk_invoice_supplier = '.((int) $invoice->id);
$sql .= ' AND f.type = 3';
} else {
$this->error = get_class($this)."::getSumDepositsUsed was called with a bad object as a first parameter";
@@ -596,13 +596,13 @@ class DiscountAbsolute
if ($invoice->element == 'facture' || $invoice->element == 'invoice') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc, '.MAIN_DB_PREFIX.'facture as f';
- $sql .= ' WHERE rc.fk_facture_source=f.rowid AND rc.fk_facture = '.$invoice->id;
- $sql .= ' AND f.type IN ('.$this->db->sanitize($invoice::TYPE_STANDARD.', '.$invoice::TYPE_CREDIT_NOTE.', '.$invoice::TYPE_SITUATION).')'; // Find discount coming from credit note or excess received
+ $sql .= ' WHERE rc.fk_facture_source=f.rowid AND rc.fk_facture = '.((int) $invoice->id);
+ $sql .= " AND f.type IN (".$this->db->sanitize($invoice::TYPE_STANDARD.", ".$invoice::TYPE_CREDIT_NOTE.", ".$invoice::TYPE_SITUATION).')'; // Find discount coming from credit note or excess received
} elseif ($invoice->element == 'invoice_supplier') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc, '.MAIN_DB_PREFIX.'facture_fourn as f';
- $sql .= ' WHERE rc.fk_invoice_supplier_source=f.rowid AND rc.fk_invoice_supplier = '.$invoice->id;
- $sql .= ' AND f.type IN ('.$this->db->sanitize($invoice::TYPE_STANDARD.', '.$invoice::TYPE_CREDIT_NOTE).')'; // Find discount coming from credit note or excess paid
+ $sql .= ' WHERE rc.fk_invoice_supplier_source=f.rowid AND rc.fk_invoice_supplier = '.((int) $invoice->id);
+ $sql .= " AND f.type IN (".$this->db->sanitize($invoice::TYPE_STANDARD.", ".$invoice::TYPE_CREDIT_NOTE).')'; // Find discount coming from credit note or excess paid
} else {
$this->error = get_class($this)."::getSumCreditNotesUsed was called with a bad object as a first parameter";
dol_print_error($this->error);
@@ -636,11 +636,11 @@ class DiscountAbsolute
if ($invoice->element == 'facture' || $invoice->element == 'invoice') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc';
- $sql .= ' WHERE rc.fk_facture IS NULL AND rc.fk_facture_source = '.$invoice->id;
+ $sql .= ' WHERE rc.fk_facture IS NULL AND rc.fk_facture_source = '.((int) $invoice->id);
} elseif ($invoice->element == 'invoice_supplier') {
$sql = 'SELECT sum(rc.amount_ttc) as amount, sum(rc.multicurrency_amount_ttc) as multicurrency_amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.'societe_remise_except as rc';
- $sql .= ' WHERE rc.fk_invoice_supplier IS NULL AND rc.fk_invoice_supplier_source = '.$invoice->id;
+ $sql .= ' WHERE rc.fk_invoice_supplier IS NULL AND rc.fk_invoice_supplier_source = '.((int) $invoice->id);
} else {
$this->error = get_class($this)."::getSumCreditNotesUsed was called with a bad object as a first parameter";
dol_print_error($this->error);
diff --git a/htdocs/core/class/dolreceiptprinter.class.php b/htdocs/core/class/dolreceiptprinter.class.php
index a3ddb3d7c7f..9813876c031 100644
--- a/htdocs/core/class/dolreceiptprinter.class.php
+++ b/htdocs/core/class/dolreceiptprinter.class.php
@@ -867,7 +867,7 @@ class dolReceiptPrinter extends Printer
$error = 0;
$sql = 'SELECT template';
$sql .= ' FROM '.MAIN_DB_PREFIX.'printer_receipt_template';
- $sql .= ' WHERE rowid='.$templateid;
+ $sql .= ' WHERE rowid = '.((int) $templateid);
$sql .= ' AND entity = '.$conf->entity;
$resql = $this->db->query($sql);
if ($resql) {
@@ -905,7 +905,7 @@ class dolReceiptPrinter extends Printer
$sql = 'SELECT rowid, name, fk_type, fk_profile, parameter';
$sql .= ' FROM '.MAIN_DB_PREFIX.'printer_receipt';
$sql .= ' WHERE rowid = '.((int) $printerid);
- $sql .= ' AND entity = '.$conf->entity;
+ $sql .= ' AND entity = '.((int) $conf->entity);
$resql = $this->db->query($sql);
if ($resql) {
$obj = $this->db->fetch_array($resql);
diff --git a/htdocs/core/class/extrafields.class.php b/htdocs/core/class/extrafields.class.php
index f6a5ba93d61..4e4a199600f 100644
--- a/htdocs/core/class/extrafields.class.php
+++ b/htdocs/core/class/extrafields.class.php
@@ -1273,16 +1273,16 @@ class ExtraFields
//We have to join on extrafield table
if (strpos($InfoFieldList[4], 'extra') !== false) {
$sql .= ' as main, '.MAIN_DB_PREFIX.$InfoFieldList[0].'_extrafields as extra';
- $sqlwhere .= ' WHERE extra.fk_object=main.'.$InfoFieldList[2].' AND '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE extra.fk_object=main.".$InfoFieldList[2]." AND ".$InfoFieldList[4];
} else {
- $sqlwhere .= ' WHERE '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE ".$InfoFieldList[4];
}
} else {
$sqlwhere .= ' WHERE 1=1';
}
// Some tables may have field, some other not. For the moment we disable it.
if (in_array($InfoFieldList[0], array('tablewithentity'))) {
- $sqlwhere .= ' AND entity = '.$conf->entity;
+ $sqlwhere .= ' AND entity = '.((int) $conf->entity);
}
$sql .= $sqlwhere;
//print $sql;
@@ -1485,16 +1485,16 @@ class ExtraFields
// We have to join on extrafield table
if (strpos($InfoFieldList[4], 'extra.') !== false) {
$sql .= ' as main, '.MAIN_DB_PREFIX.$InfoFieldList[0].'_extrafields as extra';
- $sqlwhere .= ' WHERE extra.fk_object=main.'.$InfoFieldList[2].' AND '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE extra.fk_object=main.".$InfoFieldList[2]." AND ".$InfoFieldList[4];
} else {
- $sqlwhere .= ' WHERE '.$InfoFieldList[4];
+ $sqlwhere .= " WHERE ".$InfoFieldList[4];
}
} else {
$sqlwhere .= ' WHERE 1=1';
}
// Some tables may have field, some other not. For the moment we disable it.
if (in_array($InfoFieldList[0], array('tablewithentity'))) {
- $sqlwhere .= ' AND entity = '.$conf->entity;
+ $sqlwhere .= " AND entity = ".((int) $conf->entity);
}
// $sql.=preg_replace('/^ AND /','',$sqlwhere);
// print $sql;
diff --git a/htdocs/core/class/hookmanager.class.php b/htdocs/core/class/hookmanager.class.php
index 345de3f5be5..d243e67697b 100644
--- a/htdocs/core/class/hookmanager.class.php
+++ b/htdocs/core/class/hookmanager.class.php
@@ -172,6 +172,7 @@ class HookManager
'addSearchEntry',
'addStatisticLine',
'addSectionECMAuto',
+ 'checkSecureAccess',
'createDictionaryFieldlist',
'editDictionaryFieldlist',
'getFormMail',
diff --git a/htdocs/core/class/html.form.class.php b/htdocs/core/class/html.form.class.php
index 8f3c92a3c43..74f6ed83ee2 100644
--- a/htdocs/core/class/html.form.class.php
+++ b/htdocs/core/class/html.form.class.php
@@ -2565,7 +2565,7 @@ class Form
$sql .= ')';
}
if (count($warehouseStatusArray)) {
- $sql .= ' GROUP BY'.$selectFields;
+ $sql .= " GROUP BY ".$selectFields;
}
//Sort by category
@@ -6988,7 +6988,7 @@ class Form
if (isset($objecttmp->ismultientitymanaged)) {
if (!is_numeric($objecttmp->ismultientitymanaged)) {
$tmparray = explode('@', $objecttmp->ismultientitymanaged);
- $sql .= ' INNER JOIN '.MAIN_DB_PREFIX.$tmparray[1].' as parenttable ON parenttable.rowid = t.'.$tmparray[0];
+ $sql .= " INNER JOIN ".MAIN_DB_PREFIX.$tmparray[1]." as parenttable ON parenttable.rowid = t.".$tmparray[0];
}
if ($objecttmp->ismultientitymanaged == 'fk_soc@societe') {
if (!$user->rights->societe->client->voir && !$user->socid) {
@@ -7009,7 +7009,7 @@ class Form
$sql .= " AND t.entity IN (".getEntity($objecttmp->table_element).")";
}
if (!is_numeric($objecttmp->ismultientitymanaged)) {
- $sql .= ' AND parenttable.entity = t.'.$tmparray[0];
+ $sql .= " AND parenttable.entity = t.".$tmparray[0];
}
if ($objecttmp->ismultientitymanaged == 1 && !empty($user->socid)) {
if ($objecttmp->element == 'societe') {
diff --git a/htdocs/core/class/html.formmail.class.php b/htdocs/core/class/html.formmail.class.php
index 3dc2743adf1..f5b13671a44 100644
--- a/htdocs/core/class/html.formmail.class.php
+++ b/htdocs/core/class/html.formmail.class.php
@@ -601,7 +601,7 @@ class FormMail extends Form
// Add also email aliases from the c_email_senderprofile table
$sql = 'SELECT rowid, label, email FROM '.MAIN_DB_PREFIX.'c_email_senderprofile';
- $sql .= ' WHERE active = 1 AND (private = 0 OR private = '.$user->id.')';
+ $sql .= ' WHERE active = 1 AND (private = 0 OR private = '.((int) $user->id).')';
$sql .= ' ORDER BY position';
$resql = $this->db->query($sql);
if ($resql) {
diff --git a/htdocs/core/class/utils.class.php b/htdocs/core/class/utils.class.php
index 5371d917022..fd89a00a810 100644
--- a/htdocs/core/class/utils.class.php
+++ b/htdocs/core/class/utils.class.php
@@ -1088,11 +1088,11 @@ class Utils
fwrite($handle, "/*!40000 ALTER TABLE `".$table."` DISABLE KEYS */;\n");
}
- $sql = 'SELECT * FROM '.$table; // Here SELECT * is allowed because we don't have definition of columns to take
+ $sql = "SELECT * FROM ".$table; // Here SELECT * is allowed because we don't have definition of columns to take
$result = $db->query($sql);
while ($row = $db->fetch_row($result)) {
// For each row of data we print a line of INSERT
- fwrite($handle, 'INSERT '.$delayed.$ignore.'INTO `'.$table.'` VALUES (');
+ fwrite($handle, "INSERT ".$delayed.$ignore."INTO ".$table." VALUES (");
$columns = count($row);
for ($j = 0; $j < $columns; $j++) {
// Processing each columns of the row to ensure that we correctly save the value (eg: add quotes for string - in fact we add quotes for everything, it's easier)
diff --git a/htdocs/core/class/validate.class.php b/htdocs/core/class/validate.class.php
index 1738034545d..61b8931179e 100644
--- a/htdocs/core/class/validate.class.php
+++ b/htdocs/core/class/validate.class.php
@@ -263,7 +263,7 @@ class Validate
}
foreach ($value_arr as $val) {
- $sql = 'SELECT ' . $col . ' FROM ' . MAIN_DB_PREFIX . $table . " WHERE " . $col ." = '" . $this->db->escape($val) . "'"; // nore quick than count(*) to check existing of a row
+ $sql = "SELECT ".$col." FROM ".MAIN_DB_PREFIX.$table." WHERE ".$col." = '".$this->db->escape($val)."'"; // nore quick than count(*) to check existing of a row
$resql = $this->db->getRow($sql);
if ($resql) {
continue;
diff --git a/htdocs/core/customreports.php b/htdocs/core/customreports.php
index ca6e61e3b1c..3693b52cc74 100644
--- a/htdocs/core/customreports.php
+++ b/htdocs/core/customreports.php
@@ -239,13 +239,14 @@ if (is_array($search_groupby) && count($search_groupby)) {
$fieldtocount = $search_groupby[$gkey];
}
- $sql = 'SELECT DISTINCT '.$fieldtocount.' as val';
+ $sql = "SELECT DISTINCT ".$fieldtocount." as val";
if (strpos($fieldtocount, 'te.') === 0) {
$sql .= ' FROM '.MAIN_DB_PREFIX.$object->table_element.'_extrafields as te';
} else {
$sql .= ' FROM '.MAIN_DB_PREFIX.$object->table_element.' as t';
}
// TODO Add the where here
+ // ...
$sql .= ' LIMIT '.($MAXUNIQUEVALFORGROUP + 1);
@@ -469,60 +470,60 @@ if (!empty($search_measures) && !empty($search_xaxis)) {
foreach ($search_xaxis as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y') as x_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y') as x_".$key.', ';
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m') as x_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m') as x_".$key.', ';
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d') as x_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d') as x_".$key.', ';
} else {
- $sql .= $val.' as x_'.$key.', ';
+ $sql .= $val." as x_".$key.", ";
}
}
foreach ($search_groupby as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y') as g_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y') as g_".$key.', ';
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m') as g_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m') as g_".$key.', ';
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d') as g_".$key.', ';
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d') as g_".$key.', ';
} else {
- $sql .= $val.' as g_'.$key.', ';
+ $sql .= $val." as g_".$key.", ";
}
}
foreach ($search_measures as $key => $val) {
if ($val == 't.count') {
- $sql .= 'COUNT(t.'.$fieldid.') as y_'.$key.', ';
+ $sql .= "COUNT(t.".$fieldid.") as y_".$key.', ';
} elseif (preg_match('/\-sum$/', $val)) {
$tmpval = preg_replace('/\-sum$/', '', $val);
- $sql .= 'SUM('.$db->ifsql($tmpval.' IS NULL', '0', $tmpval).') as y_'.$key.', ';
+ $sql .= "SUM(".$db->ifsql($tmpval.' IS NULL', '0', $tmpval).") as y_".$key.", ";
} elseif (preg_match('/\-average$/', $val)) {
$tmpval = preg_replace('/\-average$/', '', $val);
- $sql .= 'AVG('.$db->ifsql($tmpval.' IS NULL', '0', $tmpval).') as y_'.$key.', ';
+ $sql .= "AVG(".$db->ifsql($tmpval.' IS NULL', '0', $tmpval).") as y_".$key.", ";
} elseif (preg_match('/\-min$/', $val)) {
$tmpval = preg_replace('/\-min$/', '', $val);
- $sql .= 'MIN('.$db->ifsql($tmpval.' IS NULL', '0', $tmpval).') as y_'.$key.', ';
+ $sql .= "MIN(".$db->ifsql($tmpval.' IS NULL', '0', $tmpval).") as y_".$key.", ";
} elseif (preg_match('/\-max$/', $val)) {
$tmpval = preg_replace('/\-max$/', '', $val);
- $sql .= 'MAX('.$db->ifsql($tmpval.' IS NULL', '0', $tmpval).') as y_'.$key.', ';
+ $sql .= "MAX(".$db->ifsql($tmpval.' IS NULL', '0', $tmpval).") as y_".$key.", ";
}
}
$sql = preg_replace('/,\s*$/', '', $sql);
$sql .= ' FROM '.MAIN_DB_PREFIX.$object->table_element.' as t';
// Add measure from extrafields
if ($object->isextrafieldmanaged) {
- $sql .= ' LEFT JOIN '.MAIN_DB_PREFIX.$object->table_element.'_extrafields as te ON te.fk_object = t.'.$fieldid;
+ $sql .= " LEFT JOIN ".MAIN_DB_PREFIX.$object->table_element."_extrafields as te ON te.fk_object = t.".$fieldid;
}
if ($object->ismultientitymanaged) {
if ($object->ismultientitymanaged == 1) {
// Nothing here
} else {
$tmparray = explode('@', $object->ismultientitymanaged);
- $sql .= ' INNER JOIN '.MAIN_DB_PREFIX.$tmparray[1].' as parenttable ON t.'.$tmparray[0].' = parenttable.rowid';
+ $sql .= " INNER JOIN ".MAIN_DB_PREFIX.$tmparray[1]." as parenttable ON t.".$tmparray[0]." = parenttable.rowid";
$sql .= ' AND parenttable.entity IN ('.getEntity($tmparray[1]).')';
}
}
@@ -537,27 +538,27 @@ if (!empty($search_measures) && !empty($search_xaxis)) {
foreach ($search_xaxis as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y'), ";
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m'), ";
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d'), ";
} else {
- $sql .= $val.', ';
+ $sql .= $val.", ";
}
}
foreach ($search_groupby as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y'), ";
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m'), ";
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d'), ";
} else {
$sql .= $val.', ';
}
@@ -567,13 +568,13 @@ if (!empty($search_measures) && !empty($search_xaxis)) {
foreach ($search_xaxis as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y'), ";
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m'), ";
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d'), ";
} else {
$sql .= $val.', ';
}
@@ -581,13 +582,13 @@ if (!empty($search_measures) && !empty($search_xaxis)) {
foreach ($search_groupby as $key => $val) {
if (preg_match('/\-year$/', $val)) {
$tmpval = preg_replace('/\-year$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y'), ";
} elseif (preg_match('/\-month$/', $val)) {
$tmpval = preg_replace('/\-month$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m'), ";
} elseif (preg_match('/\-day$/', $val)) {
$tmpval = preg_replace('/\-day$/', '', $val);
- $sql .= 'DATE_FORMAT('.$tmpval.", '%Y-%m-%d'), ";
+ $sql .= "DATE_FORMAT(".$tmpval.", '%Y-%m-%d'), ";
} else {
$sql .= $val.', ';
}
diff --git a/htdocs/core/db/pgsql.class.php b/htdocs/core/db/pgsql.class.php
index 6e9a4f54db6..55d5f18dd00 100644
--- a/htdocs/core/db/pgsql.class.php
+++ b/htdocs/core/db/pgsql.class.php
@@ -905,7 +905,7 @@ class DoliDBPgsql extends DoliDB
// Test charset match LC_TYPE (pgsql error otherwise)
//print $charset.' '.setlocale(LC_CTYPE,'0'); exit;
- $sql = 'CREATE DATABASE "'.$database.'" OWNER "'.$owner.'" ENCODING \''.$charset.'\'';
+ $sql = "CREATE DATABASE '".$this->escape($database)."' OWNER '".$this->escape($owner)."' ENCODING '".$this->escape($charset)."'";
dol_syslog($sql, LOG_DEBUG);
$ret = $this->query($sql);
return $ret;
diff --git a/htdocs/core/db/sqlite3.class.php b/htdocs/core/db/sqlite3.class.php
index 53bcb6806dc..072d5f0c4b3 100644
--- a/htdocs/core/db/sqlite3.class.php
+++ b/htdocs/core/db/sqlite3.class.php
@@ -421,7 +421,7 @@ class DoliDBSqlite3 extends DoliDB
$descTable = $this->db->querySingle("SELECT sql FROM sqlite_master WHERE name='".$this->escape($tablename)."'");
// 1- Renommer la table avec un nom temporaire
- $this->query('ALTER TABLE '.$tablename.' RENAME TO tmp_'.$tablename);
+ $this->query("ALTER TABLE ".$tablename." RENAME TO tmp_".$tablename);
// 2- Recréer la table avec la contrainte ajoutée
@@ -436,10 +436,10 @@ class DoliDBSqlite3 extends DoliDB
$this->query($descTable);
// 3- Transférer les données
- $this->query('INSERT INTO '.$tablename.' SELECT * FROM tmp_'.$tablename);
+ $this->query("INSERT INTO ".$tablename." SELECT * FROM tmp_".$tablename);
// 4- Supprimer la table temporaire
- $this->query('DROP TABLE tmp_'.$tablename);
+ $this->query("DROP TABLE tmp_".$tablename);
// dummy statement
$query = "SELECT 0";
@@ -840,17 +840,12 @@ class DoliDBSqlite3 extends DoliDB
}
// ALTER DATABASE dolibarr_db DEFAULT CHARACTER SET latin DEFAULT COLLATE latin1_swedish_ci
- $sql = 'CREATE DATABASE '.$database;
- $sql .= ' DEFAULT CHARACTER SET '.$charset.' DEFAULT COLLATE '.$collation;
+ $sql = "CREATE DATABASE ".$this->escape($database);
+ $sql .= " DEFAULT CHARACTER SET ".$this->escape($charset)." DEFAULT COLLATE ".$this->escape($collation);
dol_syslog($sql, LOG_DEBUG);
$ret = $this->query($sql);
- if (!$ret) {
- // We try again for compatibility with Mysql < 4.1.1
- $sql = 'CREATE DATABASE '.$database;
- $ret = $this->query($sql);
- dol_syslog($sql, LOG_DEBUG);
- }
+
return $ret;
}
diff --git a/htdocs/core/lib/admin.lib.php b/htdocs/core/lib/admin.lib.php
index 3df3e7ee182..531af9017b3 100644
--- a/htdocs/core/lib/admin.lib.php
+++ b/htdocs/core/lib/admin.lib.php
@@ -306,8 +306,8 @@ function run_sql($sqlfile, $silent = 1, $entity = '', $usesavepoint = 1, $handle
// with
// 'INSERT INTO llx_accounting_account (entity, rowid, fk_pcg_version, pcg_type, account_number, account_parent, label, active) VALUES (__ENTITY__, 1401 + 200100000, 'PCG99-ABREGE','CAPIT', '1234', 1400 + 200100000,...'
// Note: string with 'PCG99-ABREGE','CAPIT', 1234 instead of 'PCG99-ABREGE','CAPIT', '1234' is also supported
- $newsql = preg_replace('/VALUES\s*\(__ENTITY__, \s*(\d+)\s*,(\s*\'[^\',]*\'\s*,\s*\'[^\',]*\'\s*,\s*\'?[^\',]*\'?\s*),\s*\'?([^\',]*)\'?/ims', 'VALUES (__ENTITY__, \1 + '.$offsetforchartofaccount.', \2, \3 + '.$offsetforchartofaccount, $newsql);
- $newsql = preg_replace('/([,\s])0 \+ '.$offsetforchartofaccount.'/ims', '\1 0', $newsql);
+ $newsql = preg_replace('/VALUES\s*\(__ENTITY__, \s*(\d+)\s*,(\s*\'[^\',]*\'\s*,\s*\'[^\',]*\'\s*,\s*\'?[^\',]*\'?\s*),\s*\'?([^\',]*)\'?/ims', 'VALUES (__ENTITY__, \1 + '.((int) $offsetforchartofaccount).', \2, \3 + '.((int) $offsetforchartofaccount), $newsql);
+ $newsql = preg_replace('/([,\s])0 \+ '.((int) $offsetforchartofaccount).'/ims', '\1 0', $newsql);
//var_dump($newsql);
$arraysql[$i] = $newsql;
diff --git a/htdocs/core/lib/company.lib.php b/htdocs/core/lib/company.lib.php
index 8806bcc8b92..7a10d2d4ff8 100644
--- a/htdocs/core/lib/company.lib.php
+++ b/htdocs/core/lib/company.lib.php
@@ -1526,7 +1526,7 @@ function show_actions_done($conf, $langs, $db, $filterobj, $objcon = '', $noprin
}
} elseif (is_object($filterobj) && is_array($filterobj->fields) && is_array($filterobj->fields['rowid']) && is_array($filterobj->fields['ref']) && $filterobj->table_element && $filterobj->element) {
// Generic case
- $sql .= " AND a.fk_element = o.rowid AND a.elementtype = '".$db->escape($filterobj->element).($module ? '@'.$module : '')."'";
+ $sql .= " AND a.fk_element = o.rowid AND a.elementtype = '".$db->escape($filterobj->element).($module ? "@".$module : "")."'";
if ($filterobj->id) {
$sql .= " AND a.fk_element = ".((int) $filterobj->id);
}
diff --git a/htdocs/core/lib/files.lib.php b/htdocs/core/lib/files.lib.php
index ba4b115e830..350c2334915 100644
--- a/htdocs/core/lib/files.lib.php
+++ b/htdocs/core/lib/files.lib.php
@@ -2945,25 +2945,6 @@ function dol_check_secure_access_document($modulepart, $original_file, $entity,
$sqlprotectagainstexternals = $hookmanager->resArray['sqlprotectagainstexternals'];
}
}
-
- /*
- // For modules who wants to manage different levels of permissions for documents
- $subPermCategoryConstName = strtoupper($modulepart).'_SUBPERMCATEGORY_FOR_DOCUMENTS';
- if (!empty($conf->global->$subPermCategoryConstName)) {
- $subPermCategory = $conf->global->$subPermCategoryConstName;
- if (!empty($subPermCategory) && (($fuser->rights->$modulepart->$subPermCategory->{$lire}) || ($fuser->rights->$modulepart->$subPermCategory->{$read}) || ($fuser->rights->$modulepart->$subPermCategory->{$download}))) {
- $accessallowed = 1;
- }
- }
-
- // Define $sqlprotectagainstexternals for modules who want to protect access using a SQL query.
- $sqlProtectConstName = strtoupper($modulepart).'_SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS';
- if (!empty($conf->global->$sqlProtectConstName)) { // If module want to define its own $sqlprotectagainstexternals
- // Example: mymodule_SQLPROTECTAGAINSTEXTERNALS_FOR_DOCUMENTS = "SELECT fk_soc FROM ".MAIN_DB_PREFIX.$modulepart." WHERE ref='".$db->escape($refname)."' AND entity=".$conf->entity;
- // TODO Replace this with a hook
- eval('$sqlprotectagainstexternals = "'.$conf->global->$sqlProtectConstName.'";');
- }
- */
}
$ret = array(
diff --git a/htdocs/core/lib/invoice.lib.php b/htdocs/core/lib/invoice.lib.php
index 1f797c67d1b..e3337c4266f 100644
--- a/htdocs/core/lib/invoice.lib.php
+++ b/htdocs/core/lib/invoice.lib.php
@@ -239,7 +239,7 @@ function getCustomerInvoicePieChart($socid = 0)
$sql .= " WHERE f.fk_soc = s.rowid";
$sql .= " AND f.entity IN (".getEntity('facture').")";
if ($user->socid) {
- $sql .= ' AND f.fk_soc = '.$user->socid;
+ $sql .= ' AND f.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
@@ -359,7 +359,7 @@ function getPurchaseInvoicePieChart($socid = 0)
$sql .= " WHERE f.fk_soc = s.rowid";
$sql .= " AND f.entity IN (".getEntity('facture_fourn').")";
if ($user->socid) {
- $sql .= ' AND f.fk_soc = '.$user->socid;
+ $sql .= ' AND f.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/core/lib/order.lib.php b/htdocs/core/lib/order.lib.php
index 6dcb40e1cc7..f264eadaf58 100644
--- a/htdocs/core/lib/order.lib.php
+++ b/htdocs/core/lib/order.lib.php
@@ -205,7 +205,7 @@ function getCustomerOrderPieChart($socid = 0)
$sql .= " WHERE c.fk_soc = s.rowid";
$sql .= " AND c.entity IN (".getEntity('societe').")";
if ($user->socid) {
- $sql .= ' AND c.fk_soc = '.$user->socid;
+ $sql .= ' AND c.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/core/lib/propal.lib.php b/htdocs/core/lib/propal.lib.php
index f7dc3970dcb..038ab2a7911 100644
--- a/htdocs/core/lib/propal.lib.php
+++ b/htdocs/core/lib/propal.lib.php
@@ -184,7 +184,7 @@ function getCustomerProposalPieChart($socid = 0)
$sql .= " WHERE p.entity IN (".getEntity($propalstatic->element).")";
$sql .= " AND p.fk_soc = s.rowid";
if ($user->socid) {
- $sql .= ' AND p.fk_soc = '.$user->socid;
+ $sql .= ' AND p.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/core/modules/modFournisseur.class.php b/htdocs/core/modules/modFournisseur.class.php
index baa983fc7cf..a36f219007b 100644
--- a/htdocs/core/modules/modFournisseur.class.php
+++ b/htdocs/core/modules/modFournisseur.class.php
@@ -353,7 +353,7 @@ class modFournisseur extends DolibarrModules
$this->export_sql_end[$r] .= ' WHERE f.fk_soc = s.rowid AND f.rowid = fd.fk_facture_fourn';
$this->export_sql_end[$r] .= ' AND f.entity IN ('.getEntity('supplier_invoice').')';
if (is_object($user) && empty($user->rights->societe->client->voir)) {
- $this->export_sql_end[$r] .= ' AND sc.fk_user = '.$user->id;
+ $this->export_sql_end[$r] .= ' AND sc.fk_user = '.((int) $user->id);
}
$r++;
@@ -417,7 +417,7 @@ class modFournisseur extends DolibarrModules
$this->export_sql_end[$r] .= ' WHERE f.fk_soc = s.rowid';
$this->export_sql_end[$r] .= ' AND f.entity IN ('.getEntity('supplier_invoice').')';
if (is_object($user) && empty($user->rights->societe->client->voir)) {
- $this->export_sql_end[$r] .= ' AND sc.fk_user = '.$user->id;
+ $this->export_sql_end[$r] .= ' AND sc.fk_user = '.((int) $user->id);
}
// Order
@@ -493,7 +493,7 @@ class modFournisseur extends DolibarrModules
$this->export_sql_end[$r] .= ' WHERE f.fk_soc = s.rowid AND f.rowid = fd.fk_commande';
$this->export_sql_end[$r] .= ' AND f.entity IN ('.getEntity('supplier_order').')';
if (is_object($user) && empty($user->rights->societe->client->voir)) {
- $this->export_sql_end[$r] .= ' AND sc.fk_user = '.$user->id;
+ $this->export_sql_end[$r] .= ' AND sc.fk_user = '.((int) $user->id);
}
//Import Supplier Invoice
diff --git a/htdocs/core/modules/modSociete.class.php b/htdocs/core/modules/modSociete.class.php
index af4fb9e64b8..eed6871c465 100644
--- a/htdocs/core/modules/modSociete.class.php
+++ b/htdocs/core/modules/modSociete.class.php
@@ -340,7 +340,7 @@ class modSociete extends DolibarrModules
$this->export_sql_end[$r] .= ' LEFT JOIN '.MAIN_DB_PREFIX.'c_incoterms as incoterm ON s.fk_incoterms = incoterm.rowid';
$this->export_sql_end[$r] .= ' WHERE s.entity IN ('.getEntity('societe').')';
if (is_object($user) && empty($user->rights->societe->client->voir)) {
- $this->export_sql_end[$r] .= ' AND (sc.fk_user = '.$user->id.' ';
+ $this->export_sql_end[$r] .= ' AND (sc.fk_user = '.((int) $user->id).' ';
if (!empty($conf->global->SOCIETE_EXPORT_SUBORDINATES_CHILDS)) {
$subordinatesids = $user->getAllChildIds();
$this->export_sql_end[$r] .= count($subordinatesids) > 0 ? ' OR (sc.fk_user IN ('.$this->db->sanitize(implode(',', $subordinatesids)).')' : '';
@@ -410,7 +410,7 @@ class modSociete extends DolibarrModules
$this->export_sql_end[$r] .= ' LEFT JOIN '.MAIN_DB_PREFIX.'c_typent as t ON s.fk_typent = t.id';
$this->export_sql_end[$r] .= ' WHERE c.entity IN ('.getEntity('socpeople').')';
if (is_object($user) && empty($user->rights->societe->client->voir)) {
- $this->export_sql_end[$r] .= ' AND (sc.fk_user = '.$user->id.' ';
+ $this->export_sql_end[$r] .= ' AND (sc.fk_user = '.((int) $user->id).' ';
if (!empty($conf->global->SOCIETE_EXPORT_SUBORDINATES_CHILDS)) {
$subordinatesids = $user->getAllChildIds();
$this->export_sql_end[$r] .= count($subordinatesids) > 0 ? ' OR (sc.fk_user IN ('.$this->db->sanitize(implode(',', $subordinatesids)).')' : '';
diff --git a/htdocs/expensereport/class/expensereport.class.php b/htdocs/expensereport/class/expensereport.class.php
index 22f29bb1d9e..fdbd1e5ab55 100644
--- a/htdocs/expensereport/class/expensereport.class.php
+++ b/htdocs/expensereport/class/expensereport.class.php
@@ -2525,7 +2525,7 @@ class ExpenseReport extends CommonObject
$sql = 'SELECT sum(amount) as amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.((int) $this->id);
+ $sql .= " WHERE ".$field." = ".((int) $this->id);
dol_syslog(get_class($this)."::getSumPayments", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/fichinter/index.php b/htdocs/fichinter/index.php
index 8513238b385..8eca043ef40 100644
--- a/htdocs/fichinter/index.php
+++ b/htdocs/fichinter/index.php
@@ -80,7 +80,7 @@ if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " WHERE f.entity IN (".getEntity('intervention').")";
$sql .= " AND f.fk_soc = s.rowid";
if ($user->socid) {
- $sql .= ' AND f.fk_soc = '.$user->socid;
+ $sql .= ' AND f.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/fourn/class/fournisseur.facture.class.php b/htdocs/fourn/class/fournisseur.facture.class.php
index b97bf5485fa..eab1d445558 100644
--- a/htdocs/fourn/class/fournisseur.facture.class.php
+++ b/htdocs/fourn/class/fournisseur.facture.class.php
@@ -2411,7 +2411,7 @@ class FactureFournisseur extends CommonInvoice
$sql .= ' AND ff.fk_statut > 0';
$sql .= " AND ff.entity = ".$conf->entity;
if ($user->socid) {
- $sql .= ' AND ff.fk_soc = '.$user->socid;
+ $sql .= ' AND ff.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$user->socid) {
$sql .= " AND ff.fk_soc = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/fourn/commande/index.php b/htdocs/fourn/commande/index.php
index 866063382bb..b4956ea706f 100644
--- a/htdocs/fourn/commande/index.php
+++ b/htdocs/fourn/commande/index.php
@@ -73,7 +73,7 @@ if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " WHERE cf.fk_soc = s.rowid";
$sql .= " AND cf.entity IN (".getEntity('supplier_order').")";
if ($user->socid) {
- $sql .= ' AND cf.fk_soc = '.$user->socid;
+ $sql .= ' AND cf.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
diff --git a/htdocs/fourn/paiement/list.php b/htdocs/fourn/paiement/list.php
index f02c872fb0e..8534ad8bac1 100644
--- a/htdocs/fourn/paiement/list.php
+++ b/htdocs/fourn/paiement/list.php
@@ -192,7 +192,7 @@ if (!$user->rights->societe->client->voir) {
$sql .= ' WHERE f.entity = '.$conf->entity;
if (!$user->rights->societe->client->voir) {
- $sql .= ' AND s.rowid = sc.fk_soc AND sc.fk_user = '.$user->id;
+ $sql .= ' AND s.rowid = sc.fk_soc AND sc.fk_user = '.((int) $user->id);
}
if ($socid > 0) {
$sql .= ' AND f.fk_soc = '.((int) $socid);
diff --git a/htdocs/loan/class/loan.class.php b/htdocs/loan/class/loan.class.php
index ffd745e263f..0ec7786fc20 100644
--- a/htdocs/loan/class/loan.class.php
+++ b/htdocs/loan/class/loan.class.php
@@ -651,7 +651,7 @@ class Loan extends CommonObject
$sql = 'SELECT sum(amount_capital) as amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.((int) $this->id);
+ $sql .= " WHERE ".$field." = ".((int) $this->id);
dol_syslog(get_class($this)."::getSumPayment", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/product/stock/replenishorders.php b/htdocs/product/stock/replenishorders.php
index 17490e330bb..01a7e2dd1a3 100644
--- a/htdocs/product/stock/replenishorders.php
+++ b/htdocs/product/stock/replenishorders.php
@@ -135,7 +135,7 @@ if ($conf->global->STOCK_CALCULATE_ON_SUPPLIER_VALIDATE_ORDER) {
$sql .= ' AND cf.fk_statut < 5';
}
if (!$user->rights->societe->client->voir && !$socid) {
- $sql .= ' AND s.rowid = sc.fk_soc AND sc.fk_user = '.$user->id;
+ $sql .= ' AND s.rowid = sc.fk_soc AND sc.fk_user = '.((int) $user->id);
}
if ($sref) {
$sql .= natural_search('cf.ref', $sref);
diff --git a/htdocs/salaries/class/salary.class.php b/htdocs/salaries/class/salary.class.php
index c434e73ec08..8fdd741efee 100644
--- a/htdocs/salaries/class/salary.class.php
+++ b/htdocs/salaries/class/salary.class.php
@@ -570,7 +570,7 @@ class Salary extends CommonObject
$sql = 'SELECT sum(amount) as amount';
$sql .= ' FROM '.MAIN_DB_PREFIX.$table;
- $sql .= ' WHERE '.$field.' = '.((int) $this->id);
+ $sql .= " WHERE ".$field." = ".((int) $this->id);
dol_syslog(get_class($this)."::getSommePaiement", LOG_DEBUG);
$resql = $this->db->query($sql);
diff --git a/htdocs/supplier_proposal/index.php b/htdocs/supplier_proposal/index.php
index 45501ed9b2b..ac937fe480d 100644
--- a/htdocs/supplier_proposal/index.php
+++ b/htdocs/supplier_proposal/index.php
@@ -72,7 +72,7 @@ if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " WHERE p.fk_soc = s.rowid";
$sql .= " AND p.entity IN (".getEntity('supplier_proposal').")";
if ($user->socid) {
- $sql .= ' AND p.fk_soc = '.$user->socid;
+ $sql .= ' AND p.fk_soc = '.((int) $user->socid);
}
if (!$user->rights->societe->client->voir && !$socid) {
$sql .= " AND s.rowid = sc.fk_soc AND sc.fk_user = ".((int) $user->id);
From 29abbbe2fb67ad8fe406fb67b410f64c23e39e4e Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 01:45:53 +0200
Subject: [PATCH 067/117] Clean code
---
.../accountancy/class/bookkeeping.class.php | 14 ++++----
htdocs/core/class/cproductnature.class.php | 8 ++---
htdocs/core/class/ctyperesource.class.php | 5 +--
htdocs/core/class/cunits.class.php | 8 ++---
htdocs/core/class/defaultvalues.class.php | 10 +++---
htdocs/core/lib/functions.lib.php | 12 +++----
htdocs/core/lib/functions2.lib.php | 12 +++----
htdocs/core/lib/ticket.lib.php | 4 +--
htdocs/core/lib/website2.lib.php | 2 +-
htdocs/core/login/functions_dolibarr.php | 18 +++++-----
.../modules/import/import_csv.modules.php | 34 +++++++++----------
.../modules/import/import_xlsx.modules.php | 32 ++++++++---------
.../modules/mailings/modules_mailings.php | 2 +-
.../modules/printing/printipp.modules.php | 2 +-
.../tpl/extrafields_list_search_sql.tpl.php | 6 ++--
htdocs/cron/class/cronjob.class.php | 4 +--
htdocs/cron/list.php | 4 +--
htdocs/dav/dav.class.php | 6 ++--
htdocs/ecm/class/ecmfiles.class.php | 12 +++----
.../class/conferenceorbooth.class.php | 6 ++--
.../class/conferenceorboothattendee.class.php | 2 +-
.../conferenceorbooth_list.php | 2 +-
.../class/expensereport.class.php | 26 +++++++-------
.../class/expensereport_rule.class.php | 4 +--
.../class/expensereportstats.class.php | 14 ++++----
htdocs/exports/class/export.class.php | 8 ++---
htdocs/fichinter/class/fichinter.class.php | 4 +--
.../fournisseur.commande.dispatch.class.php | 8 ++---
.../class/productcustomerprice.class.php | 16 ++++-----
.../class/productstockentrepot.class.php | 2 +-
htdocs/public/recruitment/index.php | 8 ++---
htdocs/public/ticket/list.php | 8 ++---
htdocs/resource/class/dolresource.class.php | 12 +++----
htdocs/ticket/class/ticket.class.php | 8 ++---
htdocs/website/class/website.class.php | 2 +-
htdocs/website/class/websitepage.class.php | 14 ++++----
36 files changed, 168 insertions(+), 171 deletions(-)
diff --git a/htdocs/accountancy/class/bookkeeping.class.php b/htdocs/accountancy/class/bookkeeping.class.php
index acdce0229d0..e1a54edf3cd 100644
--- a/htdocs/accountancy/class/bookkeeping.class.php
+++ b/htdocs/accountancy/class/bookkeeping.class.php
@@ -1137,17 +1137,17 @@ class BookKeeping extends CommonObject
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
if ($key == 't.doc_date') {
- $sqlwhere[] = $key.'=\''.$this->db->idate($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->idate($value)."'";
} elseif ($key == 't.doc_date>=' || $key == 't.doc_date<=') {
- $sqlwhere[] = $key.'\''.$this->db->idate($value).'\'';
+ $sqlwhere[] = $key."'".$this->db->idate($value)."'";
} elseif ($key == 't.numero_compte>=' || $key == 't.numero_compte<=' || $key == 't.subledger_account>=' || $key == 't.subledger_account<=') {
- $sqlwhere[] = $key.'\''.$this->db->escape($value).'\'';
+ $sqlwhere[] = $key."'".$this->db->escape($value)."'";
} elseif ($key == 't.fk_doc' || $key == 't.fk_docdet' || $key == 't.piece_num') {
- $sqlwhere[] = $key.'='.$value;
+ $sqlwhere[] = $key." = ".((int) $value);
} elseif ($key == 't.subledger_account' || $key == 't.numero_compte') {
- $sqlwhere[] = $key.' LIKE \''.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '".$this->db->escape($value)."%'";
} elseif ($key == 't.subledger_label') {
- $sqlwhere[] = $key.' LIKE \''.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '".$this->db->escape($value)."%'";
} elseif ($key == 't.code_journal' && !empty($value)) {
if (is_array($value)) {
$sqlwhere[] = natural_search("t.code_journal", join(',', $value), 3, 1);
@@ -1155,7 +1155,7 @@ class BookKeeping extends CommonObject
$sqlwhere[] = natural_search("t.code_journal", $value, 3, 1);
}
} else {
- $sqlwhere[] = $key.' LIKE \'%'.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '%".$this->db->escape($value)."%'";
}
}
}
diff --git a/htdocs/core/class/cproductnature.class.php b/htdocs/core/class/cproductnature.class.php
index cd2114d4929..2f523d4cda7 100644
--- a/htdocs/core/class/cproductnature.class.php
+++ b/htdocs/core/class/cproductnature.class.php
@@ -208,13 +208,13 @@ class CProductNature // extends CommonObject
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
if ($key == 't.rowid' || $key == 't.active' || $key == 't.code') {
- $sqlwhere[] = $key.'='.(int) $value;
+ $sqlwhere[] = $key." = ".((int) $value);
} elseif (strpos($key, 'date') !== false) {
- $sqlwhere[] = $key.' = \''.$this->db->idate($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->idate($value)."'";
} elseif ($key == 't.label') {
- $sqlwhere[] = $key.' = \''.$this->db->escape($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->escape($value)."'";
} else {
- $sqlwhere[] = $key.' LIKE \'%'.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '%".$this->db->escape($value)."%'";
}
}
}
diff --git a/htdocs/core/class/ctyperesource.class.php b/htdocs/core/class/ctyperesource.class.php
index c286418caab..5b22e4e2033 100644
--- a/htdocs/core/class/ctyperesource.class.php
+++ b/htdocs/core/class/ctyperesource.class.php
@@ -230,19 +230,16 @@ class Ctyperesource
$sql = 'SELECT';
$sql .= ' t.rowid,';
-
$sql .= " t.code,";
$sql .= " t.label,";
$sql .= " t.active";
-
-
$sql .= ' FROM '.MAIN_DB_PREFIX.$this->table_element.' as t';
// Manage filter
$sqlwhere = array();
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
- $sqlwhere [] = $key.' LIKE \'%'.$this->db->escape($value).'%\'';
+ $sqlwhere [] = $key." LIKE '%".$this->db->escape($value)."%'";
}
}
diff --git a/htdocs/core/class/cunits.class.php b/htdocs/core/class/cunits.class.php
index 536a596d2f1..6fd9b7a05cf 100644
--- a/htdocs/core/class/cunits.class.php
+++ b/htdocs/core/class/cunits.class.php
@@ -251,13 +251,13 @@ class CUnits // extends CommonObject
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
if ($key == 't.rowid' || $key == 't.active' || $key == 't.scale') {
- $sqlwhere[] = $key.'='.(int) $value;
+ $sqlwhere[] = $key." = ".((int) $value);
} elseif (strpos($key, 'date') !== false) {
- $sqlwhere[] = $key.' = \''.$this->db->idate($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->idate($value)."'";
} elseif ($key == 't.unit_type' || $key == 't.code' || $key == 't.short_label') {
- $sqlwhere[] = $key.' = \''.$this->db->escape($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->escape($value)."'";
} else {
- $sqlwhere[] = $key.' LIKE \'%'.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '%".$this->db->escape($value)."%'";
}
}
}
diff --git a/htdocs/core/class/defaultvalues.class.php b/htdocs/core/class/defaultvalues.class.php
index 165ba87c45d..bad30901594 100644
--- a/htdocs/core/class/defaultvalues.class.php
+++ b/htdocs/core/class/defaultvalues.class.php
@@ -264,17 +264,17 @@ class DefaultValues extends CommonObject
if (count($filter) > 0) {
foreach ($filter as $key => $value) {
if ($key == 't.rowid' || ($key == 't.entity' && !is_array($value)) || ($key == 't.user_id' && !is_array($value))) {
- $sqlwhere[] = $key.'='.$value;
+ $sqlwhere[] = $key." = ".((int) $value);
} elseif (isset($this->fields[$key]) && in_array($this->fields[$key]['type'], array('date', 'datetime', 'timestamp'))) {
- $sqlwhere[] = $key.' = \''.$this->db->idate($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->idate($value)."'";
} elseif ($key == 't.page' || $key == 't.param' || $key == 't.type') {
- $sqlwhere[] = $key.' = \''.$this->db->escape($value).'\'';
+ $sqlwhere[] = $key." = '".$this->db->escape($value)."'";
} elseif ($key == 'customsql') {
$sqlwhere[] = $value;
} elseif (is_array($value)) {
- $sqlwhere[] = $key.' IN ('.$this->db->sanitize(implode(',', $value)).')';
+ $sqlwhere[] = $key." IN (".$this->db->sanitize(implode(',', $value)).")";
} else {
- $sqlwhere[] = $key.' LIKE \'%'.$this->db->escape($value).'%\'';
+ $sqlwhere[] = $key." LIKE '%".$this->db->escape($value)."%'";
}
}
}
diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php
index ea245e82487..5d961bf36fc 100644
--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -8900,10 +8900,10 @@ function natural_search($fields, $value, $mode = 0, $nofirstand = 0)
foreach ($tmparray as $val) {
$val = trim($val);
if ($val) {
- $newres .= ($i2 > 0 ? ' OR (' : '(').$field.' LIKE \''.$db->escape($val).',%\'';
- $newres .= ' OR '.$field.' = \''.$db->escape($val).'\'';
- $newres .= ' OR '.$field.' LIKE \'%,'.$db->escape($val).'\'';
- $newres .= ' OR '.$field.' LIKE \'%,'.$db->escape($val).',%\'';
+ $newres .= ($i2 > 0 ? " OR (" : "(").$field." LIKE '".$db->escape($val).",%'";
+ $newres .= ' OR '.$field." = '".$db->escape($val)."'";
+ $newres .= ' OR '.$field." LIKE '%,".$db->escape($val)."'";
+ $newres .= ' OR '.$field." LIKE '%,".$db->escape($val).",%'";
$newres .= ')';
$i2++;
}
@@ -8942,7 +8942,7 @@ function natural_search($fields, $value, $mode = 0, $nofirstand = 0)
$newres .= $tmpafter;
$newres .= "'";
if ($tmpcrit2 == '') {
- $newres .= ' OR '.$field." IS NULL";
+ $newres .= " OR ".$field." IS NULL";
}
}
@@ -9538,7 +9538,7 @@ function getDictvalue($tablename, $field, $id, $checkentity = false, $rowidfield
if (!isset($dictvalues[$tablename])) {
$dictvalues[$tablename] = array();
- $sql = 'SELECT * FROM '.$tablename.' WHERE 1 = 1'; // Here select * is allowed as it is generic code and we don't have list of fields
+ $sql = "SELECT * FROM ".$tablename." WHERE 1 = 1"; // Here select * is allowed as it is generic code and we don't have list of fields
if ($checkentity) {
$sql .= ' AND entity IN (0,'.getEntity($tablename).')';
}
diff --git a/htdocs/core/lib/functions2.lib.php b/htdocs/core/lib/functions2.lib.php
index f89156b24e1..5ea704881e3 100644
--- a/htdocs/core/lib/functions2.lib.php
+++ b/htdocs/core/lib/functions2.lib.php
@@ -1235,7 +1235,7 @@ function get_next_value($db, $mask, $table, $field, $where = '', $objsoc = '', $
$sqlwhere .= "(SUBSTRING(".$field.", ".$yearpos.", ".$yearlen.") = '".$db->escape($yearcomp)."'";
$sqlwhere .= " AND SUBSTRING(".$field.", ".$monthpos.", ".$monthlen.") = '".str_pad($monthcomp, $monthlen, '0', STR_PAD_LEFT)."')";
} else { // reset is done on january
- $sqlwhere .= '(SUBSTRING('.$field.', '.$yearpos.', '.$yearlen.") = '".$db->escape($yearcomp)."')";
+ $sqlwhere .= "(SUBSTRING(".$field.", ".$yearpos.", ".$yearlen.") = '".$db->escape($yearcomp)."')";
}
}
//print "sqlwhere=".$sqlwhere." yearcomp=".$yearcomp."
Date: Sat, 28 Aug 2021 03:09:18 +0200
Subject: [PATCH 068/117] Clean code
---
.../fourn/class/fournisseur.facture.class.php | 6 +-
htdocs/fourn/class/paiementfourn.class.php | 6 +-
htdocs/fourn/commande/card.php | 10 +-
htdocs/fourn/commande/list.php | 2 +-
htdocs/fourn/facture/list.php | 4 +-
htdocs/fourn/facture/paiement.php | 4 +-
htdocs/install/lib/repair.lib.php | 2 +-
htdocs/install/repair.php | 34 ++---
htdocs/install/step5.php | 16 +--
htdocs/install/upgrade.php | 3 +-
htdocs/install/upgrade2.php | 38 +++---
.../class/intracommreport.class.php | 2 +-
htdocs/loan/payment/card.php | 4 +-
htdocs/margin/checkMargins.php | 4 +-
.../core/modules/modMyModule.class.php | 8 +-
.../class/multicurrency.class.php | 24 ++--
htdocs/product/class/product.class.php | 9 +-
.../class/productcustomerprice.class.php | 2 +-
htdocs/product/fournisseurs.php | 6 +-
.../inventory/class/inventory.class.php | 4 +-
htdocs/product/stats/contrat.php | 8 +-
htdocs/product/stats/mo.php | 8 +-
htdocs/product/stock/class/entrepot.class.php | 2 +-
.../stock/class/mouvementstock.class.php | 11 +-
htdocs/product/stock/list.php | 2 +-
htdocs/product/stock/replenish.php | 40 +++---
htdocs/product/stock/stockatdate.php | 4 +-
htdocs/projet/class/projectstats.class.php | 6 +-
htdocs/projet/class/taskstats.class.php | 4 +-
htdocs/public/emailing/mailing-read.php | 4 +-
.../public/emailing/mailing-unsubscribe.php | 2 +-
htdocs/public/payment/paymentok.php | 2 +-
htdocs/public/recruitment/index.php | 4 +-
htdocs/public/ticket/list.php | 4 +-
htdocs/reception/list.php | 2 +-
htdocs/societe/admin/societe.php | 8 +-
htdocs/societe/class/societe.class.php | 8 +-
htdocs/societe/paymentmodes.php | 2 +-
htdocs/stripe/class/stripe.class.php | 6 +-
htdocs/supplier_proposal/list.php | 2 +-
htdocs/takepos/invoice.php | 5 +-
htdocs/ticket/class/ticket.class.php | 120 +-----------------
htdocs/user/class/user.class.php | 8 +-
htdocs/user/notify/card.php | 2 +-
.../class/ProductCombination.class.php | 2 +-
htdocs/website/class/website.class.php | 4 +-
htdocs/website/index.php | 8 +-
47 files changed, 172 insertions(+), 294 deletions(-)
diff --git a/htdocs/fourn/class/fournisseur.facture.class.php b/htdocs/fourn/class/fournisseur.facture.class.php
index eab1d445558..ccfe09eec0c 100644
--- a/htdocs/fourn/class/fournisseur.facture.class.php
+++ b/htdocs/fourn/class/fournisseur.facture.class.php
@@ -506,7 +506,7 @@ class FactureFournisseur extends CommonInvoice
dol_syslog("There is ".count($this->lines)." lines that are invoice lines objects");
foreach ($this->lines as $i => $val) {
$sql = 'INSERT INTO '.MAIN_DB_PREFIX.'facture_fourn_det (fk_facture_fourn, special_code, fk_remise_except)';
- $sql .= ' VALUES ('.$this->id.','.intval($this->lines[$i]->special_code).','.($this->lines[$i]->fk_remise_except > 0 ? $this->lines[$i]->fk_remise_except : 'NULL').')';
+ $sql .= " VALUES (".((int) $this->id).", ".((int) $this->lines[$i]->special_code).", ".($this->lines[$i]->fk_remise_except > 0 ? ((int) $this->lines[$i]->fk_remise_except) : 'NULL').')';
$resql_insert = $this->db->query($sql);
if ($resql_insert) {
@@ -552,7 +552,7 @@ class FactureFournisseur extends CommonInvoice
}
$sql = 'INSERT INTO '.MAIN_DB_PREFIX.'facture_fourn_det (fk_facture_fourn, special_code, fk_remise_except)';
- $sql .= ' VALUES ('.$this->id.','.intval($this->lines[$i]->special_code).','.($this->lines[$i]->fk_remise_except > 0 ? $this->lines[$i]->fk_remise_except : 'NULL').')';
+ $sql .= " VALUES (".((int) $this->id).", ".((int) $this->lines[$i]->special_code).", ".($this->lines[$i]->fk_remise_except > 0 ? ((int) $this->lines[$i]->fk_remise_except) : 'NULL').')';
$resql_insert = $this->db->query($sql);
if ($resql_insert) {
@@ -1375,7 +1375,7 @@ class FactureFournisseur extends CommonInvoice
if ($close_note) {
$sql .= ", close_note='".$this->db->escape($close_note)."'";
}
- $sql .= ', fk_user_closing = '.$user->id;
+ $sql .= ', fk_user_closing = '.((int) $user->id);
$sql .= ", date_closing = '".$this->db->idate($now)."'";
$sql .= ' WHERE rowid = '.((int) $this->id);
diff --git a/htdocs/fourn/class/paiementfourn.class.php b/htdocs/fourn/class/paiementfourn.class.php
index 2227e2b8c0a..fa58139b7e7 100644
--- a/htdocs/fourn/class/paiementfourn.class.php
+++ b/htdocs/fourn/class/paiementfourn.class.php
@@ -201,8 +201,8 @@ class PaiementFourn extends Paiement
$sql = 'INSERT INTO '.MAIN_DB_PREFIX.'paiementfourn (';
$sql .= 'ref, entity, datec, datep, amount, multicurrency_amount, fk_paiement, num_paiement, note, fk_user_author, fk_bank)';
- $sql .= " VALUES ('".$this->db->escape($ref)."', ".$conf->entity.", '".$this->db->idate($now)."',";
- $sql .= " '".$this->db->idate($this->datepaye)."', '".$total."', '".$mtotal."', ".$this->paiementid.", '".$this->db->escape($this->num_payment)."', '".$this->db->escape($this->note_private)."', ".$user->id.", 0)";
+ $sql .= " VALUES ('".$this->db->escape($ref)."', ".((int) $conf->entity).", '".$this->db->idate($now)."',";
+ $sql .= " '".$this->db->idate($this->datepaye)."', ".((float) $total).", ".((float) $mtotal).", ".((int) $this->paiementid).", '".$this->db->escape($this->num_payment)."', '".$this->db->escape($this->note_private)."', ".((int) $user->id).", 0)";
$resql = $this->db->query($sql);
if ($resql) {
@@ -214,7 +214,7 @@ class PaiementFourn extends Paiement
if (is_numeric($amount) && $amount <> 0) {
$amount = price2num($amount);
$sql = 'INSERT INTO '.MAIN_DB_PREFIX.'paiementfourn_facturefourn (fk_facturefourn, fk_paiementfourn, amount, multicurrency_amount)';
- $sql .= ' VALUES ('.$facid.','.$this->id.',\''.$amount.'\', \''.$this->multicurrency_amounts[$key].'\')';
+ $sql .= " VALUES (".((int) $facid).", ".((int) $this->id).", ".((float) $amount).', '.((float) $this->multicurrency_amounts[$key]).')';
$resql = $this->db->query($sql);
if ($resql) {
$invoice = new FactureFournisseur($this->db);
diff --git a/htdocs/fourn/commande/card.php b/htdocs/fourn/commande/card.php
index b981d46b764..c2cb03a27cb 100644
--- a/htdocs/fourn/commande/card.php
+++ b/htdocs/fourn/commande/card.php
@@ -243,9 +243,9 @@ if (empty($reshook)) {
// Update supplier
$sql = 'UPDATE '.MAIN_DB_PREFIX.'commande_fournisseur';
- $sql .= ' SET fk_soc='.$new_socid;
- $sql .= ' WHERE fk_soc='.$object->thirdparty->id;
- $sql .= ' AND rowid='.$object->id;
+ $sql .= ' SET fk_soc = '.((int) $new_socid);
+ $sql .= ' WHERE fk_soc = '.((int) $object->thirdparty->id);
+ $sql .= ' AND rowid = '.((int) $object->id);
$res = $db->query($sql);
@@ -258,8 +258,8 @@ if (empty($reshook)) {
foreach ($object->lines as $l) {
$sql = 'SELECT price, unitprice, tva_tx, ref_fourn';
$sql .= ' FROM '.MAIN_DB_PREFIX.'product_fournisseur_price';
- $sql .= ' WHERE fk_product='.$l->fk_product;
- $sql .= ' AND fk_soc='.$new_socid;
+ $sql .= ' WHERE fk_product = '.((int) $l->fk_product);
+ $sql .= ' AND fk_soc = '.((int) $new_socid);
$sql .= ' ORDER BY unitprice ASC';
$resql = $db->query($sql);
diff --git a/htdocs/fourn/commande/list.php b/htdocs/fourn/commande/list.php
index e4d10cbb23d..ef39e7502f6 100644
--- a/htdocs/fourn/commande/list.php
+++ b/htdocs/fourn/commande/list.php
@@ -769,7 +769,7 @@ if ($search_total_ttc != '') {
$sql .= natural_search('cf.total_ttc', $search_total_ttc, 1);
}
if ($search_multicurrency_code != '') {
- $sql .= ' AND cf.multicurrency_code = "'.$db->escape($search_multicurrency_code).'"';
+ $sql .= " AND cf.multicurrency_code = '".$db->escape($search_multicurrency_code)."'";
}
if ($search_multicurrency_tx != '') {
$sql .= natural_search('cf.multicurrency_tx', $search_multicurrency_tx, 1);
diff --git a/htdocs/fourn/facture/list.php b/htdocs/fourn/facture/list.php
index 527cd851709..358b1c59c1b 100644
--- a/htdocs/fourn/facture/list.php
+++ b/htdocs/fourn/facture/list.php
@@ -606,7 +606,7 @@ if ($filter && $filter != -1) {
$aFilter = explode(',', $filter);
foreach ($aFilter as $fil) {
$filt = explode(':', $fil);
- $sql .= ' AND '.$db->escape(trim($filt[0]))." = '".$db->escape(trim($filt[1]))."'";
+ $sql .= " AND ".$db->escape(trim($filt[0]))." = '".$db->escape(trim($filt[1]))."'";
}
}
if ($search_sale > 0) {
@@ -655,7 +655,7 @@ if (!$search_all) {
// Add HAVING from hooks
$parameters = array();
$reshook = $hookmanager->executeHooks('printFieldListHaving', $parameters, $object); // Note that $action and $object may have been modified by hook
-$sql .= !empty($hookmanager->resPrint) ? (' HAVING 1=1 ' . $hookmanager->resPrint) : '';
+$sql .= !empty($hookmanager->resPrint) ? (" HAVING 1=1 " . $hookmanager->resPrint) : "";
$sql .= $db->order($sortfield, $sortorder);
diff --git a/htdocs/fourn/facture/paiement.php b/htdocs/fourn/facture/paiement.php
index f0967453701..b5bc33b78c0 100644
--- a/htdocs/fourn/facture/paiement.php
+++ b/htdocs/fourn/facture/paiement.php
@@ -510,8 +510,8 @@ if ($action == 'create' || $action == 'confirm_paiement' || $action == 'add_paie
$sql .= ' SUM(pf.amount) as am, SUM(pf.multicurrency_amount) as multicurrency_am';
$sql .= ' FROM '.MAIN_DB_PREFIX.'facture_fourn as f';
$sql .= ' LEFT JOIN '.MAIN_DB_PREFIX.'paiementfourn_facturefourn as pf ON pf.fk_facturefourn = f.rowid';
- $sql .= " WHERE f.entity = ".$conf->entity;
- $sql .= ' AND f.fk_soc = '.$object->socid;
+ $sql .= " WHERE f.entity = ".((int) $conf->entity);
+ $sql .= ' AND f.fk_soc = '.((int) $object->socid);
$sql .= ' AND f.paye = 0';
$sql .= ' AND f.fk_statut = 1'; // Status=0 => unvalidated, Status=2 => canceled
if ($object->type != FactureFournisseur::TYPE_CREDIT_NOTE) {
diff --git a/htdocs/install/lib/repair.lib.php b/htdocs/install/lib/repair.lib.php
index bd54e55ebde..aa0866fac69 100644
--- a/htdocs/install/lib/repair.lib.php
+++ b/htdocs/install/lib/repair.lib.php
@@ -88,7 +88,7 @@ function checkLinkedElements($sourcetype, $targettype)
$out = $langs->trans('SourceType').': '.$sourcetype.' => '.$langs->trans('TargetType').': '.$targettype.' ';
$sql = 'SELECT rowid, fk_source, fk_target FROM '.MAIN_DB_PREFIX.'element_element';
- $sql .= ' WHERE sourcetype="'.$sourcetype.'" AND targettype="'.$targettype.'"';
+ $sql .= " WHERE sourcetype='".$db->escape($sourcetype)."' AND targettype='".$db->escape($targettype)."'";
$resql = $db->query($sql);
if ($resql) {
$num = $db->num_rows($resql);
diff --git a/htdocs/install/repair.php b/htdocs/install/repair.php
index 037c7ee4b82..8160f6e89b8 100644
--- a/htdocs/install/repair.php
+++ b/htdocs/install/repair.php
@@ -1236,7 +1236,7 @@ if ($ok && GETPOST('force_utf8_on_tables', 'alpha')) {
print '';
print $table;
- $sql = 'ALTER TABLE '.$table.' CONVERT TO CHARACTER SET utf8 COLLATE utf8_unicode_ci';
+ $sql = "ALTER TABLE ".$table." CONVERT TO CHARACTER SET utf8 COLLATE utf8_unicode_ci";
print '';
if ($force_utf8_on_tables == 'confirmed') {
$resql = $db->query($sql);
@@ -1282,8 +1282,8 @@ if ($ok && GETPOST('force_utf8mb4_on_tables', 'alpha')) {
print ' ';
print $table;
- $sql1 = 'ALTER TABLE '.$table.' ROW_FORMAT=dynamic;';
- $sql2 = 'ALTER TABLE '.$table.' CONVERT TO CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci';
+ $sql1 = "ALTER TABLE ".$table." ROW_FORMAT=dynamic";
+ $sql2 = "ALTER TABLE ".$table." CONVERT TO CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci";
print '';
print '';
if ($force_utf8mb4_on_tables == 'confirmed') {
@@ -1407,25 +1407,25 @@ if ($ok && GETPOST('repair_link_dispatch_lines_supplier_order_lines')) {
$first_iteration = false;
} else {
$sql_attach_values = array(
- $obj_dispatch->fk_commande,
- $obj_dispatch->fk_product,
- $obj_line->rowid,
- $qty_for_line,
- $obj_dispatch->fk_entrepot,
- $obj_dispatch->fk_user,
- $obj_dispatch->datec ? '"'.$db->escape($obj_dispatch->datec).'"' : 'NULL',
- $obj_dispatch->comment ? '"'.$db->escape($obj_dispatch->comment).'"' : 'NULL',
- $obj_dispatch->status ?: 'NULL',
- $obj_dispatch->tms ? '"'.$db->escape($obj_dispatch->tms).'"' : 'NULL',
- $obj_dispatch->batch ?: 'NULL',
- $obj_dispatch->eatby ? '"'.$db->escape($obj_dispatch->eatby).'"' : 'NULL',
- $obj_dispatch->sellby ? '"'.$db->escape($obj_dispatch->sellby).'"' : 'NULL'
+ ((int) $obj_dispatch->fk_commande),
+ ((int) $obj_dispatch->fk_product),
+ ((int) $obj_line->rowid),
+ ((float) $qty_for_line),
+ ((int) $obj_dispatch->fk_entrepot),
+ ((int) $obj_dispatch->fk_user),
+ $obj_dispatch->datec ? "'".$db->idate($db->jdate($obj_dispatch->datec))."'" : 'NULL',
+ $obj_dispatch->comment ? "'".$db->escape($obj_dispatch->comment)."'" : 'NULL',
+ $obj_dispatch->status ? ((int) $obj_dispatch->status) : 'NULL',
+ $obj_dispatch->tms ? "'".$db->idate($db->jdate($obj_dispatch->tms))."'" : 'NULL',
+ $obj_dispatch->batch ? "'".$db->escape($obj_dispatch->batch)."'" : 'NULL',
+ $obj_dispatch->eatby ? "'".$db->escape($obj_dispatch->eatby)."'" : 'NULL',
+ $obj_dispatch->sellby ? "'".$db->escape($obj_dispatch->sellby)."'" : 'NULL'
);
$sql_attach_values = join(', ', $sql_attach_values);
$sql_attach = 'INSERT INTO '.MAIN_DB_PREFIX.'commande_fournisseur_dispatch';
$sql_attach .= ' (fk_commande, fk_product, fk_commandefourndet, qty, fk_entrepot, fk_user, datec, comment, status, tms, batch, eatby, sellby)';
- $sql_attach .= ' VALUES ('.$sql_attach_values.')';
+ $sql_attach .= " VALUES (".$sql_attach_values.")";
}
if ($repair_link_dispatch_lines_supplier_order_lines == 'confirmed') {
diff --git a/htdocs/install/step5.php b/htdocs/install/step5.php
index 0958ef7bb3b..b434612afcd 100644
--- a/htdocs/install/step5.php
+++ b/htdocs/install/step5.php
@@ -234,7 +234,7 @@ if ($action == "set" || empty($action) || preg_match('/upgrade/i', $action)) {
// Insert MAIN_VERSION_FIRST_INSTALL in a dedicated transaction. So if it fails (when first install was already done), we can do other following requests.
$db->begin();
dolibarr_install_syslog('step5: set MAIN_VERSION_FIRST_INSTALL const to '.$targetversion, LOG_DEBUG);
- $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) values(".$db->encrypt('MAIN_VERSION_FIRST_INSTALL', 1).",".$db->encrypt($targetversion, 1).",'chaine',0,'Dolibarr version when first install',0)");
+ $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name, value, type, visible, note, entity) values('".$db->escape($db->encrypt('MAIN_VERSION_FIRST_INSTALL'))."', '".$db->escape($db->encrypt($targetversion))."', 'chaine', 0, 'Dolibarr version when first install', 0)");
if ($resql) {
$conf->global->MAIN_VERSION_FIRST_INSTALL = $targetversion;
$db->commit();
@@ -246,11 +246,11 @@ if ($action == "set" || empty($action) || preg_match('/upgrade/i', $action)) {
$db->begin();
dolibarr_install_syslog('step5: set MAIN_VERSION_LAST_INSTALL const to '.$targetversion, LOG_DEBUG);
- $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')."='MAIN_VERSION_LAST_INSTALL'");
+ $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')." = 'MAIN_VERSION_LAST_INSTALL'");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
- $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) values(".$db->encrypt('MAIN_VERSION_LAST_INSTALL', 1).",".$db->encrypt($targetversion, 1).",'chaine',0,'Dolibarr version when last install',0)");
+ $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) values('".$db->escape($db->encrypt('MAIN_VERSION_LAST_INSTALL'))."', '".$db->escape($db->encrypt($targetversion))."', 'chaine', 0, 'Dolibarr version when last install', 0)");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
@@ -258,11 +258,11 @@ if ($action == "set" || empty($action) || preg_match('/upgrade/i', $action)) {
if ($useforcedwizard) {
dolibarr_install_syslog('step5: set MAIN_REMOVE_INSTALL_WARNING const to 1', LOG_DEBUG);
- $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')."='MAIN_REMOVE_INSTALL_WARNING'");
+ $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')." = 'MAIN_REMOVE_INSTALL_WARNING'");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
- $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) values(".$db->encrypt('MAIN_REMOVE_INSTALL_WARNING', 1).",".$db->encrypt(1, 1).",'chaine',1,'Disable install warnings',0)");
+ $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) values('".$db->escape($db->encrypt('MAIN_REMOVE_INSTALL_WARNING'))."', '".$db->escape($db->encrypt(1))."', 'chaine', 1, 'Disable install warnings', 0)");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
@@ -326,11 +326,11 @@ if ($action == "set" || empty($action) || preg_match('/upgrade/i', $action)) {
if ($tagdatabase) {
dolibarr_install_syslog('step5: set MAIN_VERSION_LAST_UPGRADE const to value '.$targetversion);
- $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')."='MAIN_VERSION_LAST_UPGRADE'");
+ $resql = $db->query("DELETE FROM ".MAIN_DB_PREFIX."const WHERE ".$db->decrypt('name')." = 'MAIN_VERSION_LAST_UPGRADE'");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
- $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) VALUES (".$db->encrypt('MAIN_VERSION_LAST_UPGRADE', 1).",".$db->encrypt($targetversion, 1).",'chaine',0,'Dolibarr version for last upgrade',0)");
+ $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name, value, type, visible, note, entity) VALUES ('".$db->escape($db->encrypt('MAIN_VERSION_LAST_UPGRADE'))."', '".$db->escape($db->encrypt($targetversion))."', 'chaine', 0, 'Dolibarr version for last upgrade', 0)");
if (!$resql) {
dol_print_error($db, 'Error in setup program');
}
@@ -346,7 +346,7 @@ if ($action == "set" || empty($action) || preg_match('/upgrade/i', $action)) {
}
// May fail if parameter already defined
- $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) VALUES (".$db->encrypt('MAIN_LANG_DEFAULT', 1).",".$db->encrypt($setuplang, 1).",'chaine',0,'Default language',1)");
+ $resql = $db->query("INSERT INTO ".MAIN_DB_PREFIX."const(name,value,type,visible,note,entity) VALUES ('".$db->escape($db->encrypt('MAIN_LANG_DEFAULT'))."', '".$db->escape($db->encrypt($setuplang))."', 'chaine', 0, 'Default language', 1)");
//if (! $resql) dol_print_error($db,'Error in setup program');
$db->close();
diff --git a/htdocs/install/upgrade.php b/htdocs/install/upgrade.php
index e349317b0c4..7f4a8ac7bad 100644
--- a/htdocs/install/upgrade.php
+++ b/htdocs/install/upgrade.php
@@ -270,6 +270,7 @@ if (!GETPOST('action', 'aZ09') || preg_match('/upgrade/i', GETPOST('action', 'aZ
$values = $db->fetch_array($resql);
$i = 0;
$createsql = $values[1];
+ $reg = aray();
while (preg_match('/CONSTRAINT `(0_[0-9a-zA-Z]+|[_0-9a-zA-Z]+_ibfk_[0-9]+)`/i', $createsql, $reg) && $i < 100) {
$sqldrop = "ALTER TABLE ".$val." DROP FOREIGN KEY ".$reg[1];
$resqldrop = $db->query($sqldrop);
@@ -282,7 +283,7 @@ if (!GETPOST('action', 'aZ09') || preg_match('/upgrade/i', GETPOST('action', 'aZ
$db->free($resql);
} else {
if ($db->lasterrno() != 'DB_ERROR_NOSUCHTABLE') {
- print ' '.$sql.' : '.$db->lasterror()." '.dol_escape_htmltag($sql).' : '.dol_escape_htmltag($db->lasterror())." '.$sqlupd." ';
if ($action != 'createcontainer') {
// Has translation pages
- $sql = 'SELECT rowid, lang from '.MAIN_DB_PREFIX.'website_page where fk_page = '.$objectpage->id;
+ $sql = 'SELECT rowid, lang from '.MAIN_DB_PREFIX.'website_page where fk_page = '.((int) $objectpage->id);
$resql = $db->query($sql);
if ($resql) {
$num_rows = $db->num_rows($resql);
From acf0386a9bbe84e1b774c71abfd915a0f113f4da Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 03:14:48 +0200
Subject: [PATCH 069/117] Fix css
---
htdocs/core/class/html.formticket.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/core/class/html.formticket.class.php b/htdocs/core/class/html.formticket.class.php
index f4e076640c4..76789ebe6de 100644
--- a/htdocs/core/class/html.formticket.class.php
+++ b/htdocs/core/class/html.formticket.class.php
@@ -1050,7 +1050,7 @@ class FormTicket
}
// Subject
- print ''.$langs->trans('Subject').' ';
+ print ''.$langs->trans('Subject').' ';
print '
Date: Sat, 28 Aug 2021 05:06:14 +0200
Subject: [PATCH 070/117] Fix syntax error
---
htdocs/install/upgrade.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/install/upgrade.php b/htdocs/install/upgrade.php
index 7f4a8ac7bad..129ee9d7827 100644
--- a/htdocs/install/upgrade.php
+++ b/htdocs/install/upgrade.php
@@ -270,7 +270,7 @@ if (!GETPOST('action', 'aZ09') || preg_match('/upgrade/i', GETPOST('action', 'aZ
$values = $db->fetch_array($resql);
$i = 0;
$createsql = $values[1];
- $reg = aray();
+ $reg = array();
while (preg_match('/CONSTRAINT `(0_[0-9a-zA-Z]+|[_0-9a-zA-Z]+_ibfk_[0-9]+)`/i', $createsql, $reg) && $i < 100) {
$sqldrop = "ALTER TABLE ".$val." DROP FOREIGN KEY ".$reg[1];
$resqldrop = $db->query($sqldrop);
From 1b859fe72357dedefc68bd663f83ef6b794ccb6b Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 05:24:53 +0200
Subject: [PATCH 071/117] Fix warning
---
htdocs/comm/action/class/actioncomm.class.php | 14 ++++++++++----
1 file changed, 10 insertions(+), 4 deletions(-)
diff --git a/htdocs/comm/action/class/actioncomm.class.php b/htdocs/comm/action/class/actioncomm.class.php
index b7530e788a8..df73c6a70f7 100644
--- a/htdocs/comm/action/class/actioncomm.class.php
+++ b/htdocs/comm/action/class/actioncomm.class.php
@@ -585,12 +585,15 @@ class ActionComm extends CommonObject
//dol_syslog(var_export($this->userassigned, true));
$already_inserted = array();
foreach ($this->userassigned as $key => $val) {
- if (!is_array($val)) { // For backward compatibility when val=id
+ // Common value with new behavior is to have $val = array('id'=>iduser, 'transparency'=>0|1) and $this->userassigned is an array of iduser => $val.
+ if (!is_array($val)) { // For backward compatibility when $val='id'.
$val = array('id'=>$val);
}
if ($val['id'] > 0) {
- if (!empty($already_inserted[$val['id']])) continue;
+ if (!empty($already_inserted[$val['id']])) {
+ continue;
+ }
$sql = "INSERT INTO ".MAIN_DB_PREFIX."actioncomm_resources(fk_actioncomm, element_type, fk_element, mandatory, transparency, answer_status)";
$sql .= " VALUES(".((int) $this->id).", 'user', ".((int) $val['id']).", ".(empty($val['mandatory']) ? '0' : ((int) $val['mandatory'])).", ".(empty($val['transparency']) ? '0' : ((int) $val['transparency'])).", ".(empty($val['answer_status']) ? '0' : ((int) $val['answer_status'])).")";
@@ -612,7 +615,10 @@ class ActionComm extends CommonObject
if (!empty($this->socpeopleassigned)) {
$already_inserted = array();
foreach ($this->socpeopleassigned as $id => $val) {
- if (!empty($already_inserted[$val['id']])) continue;
+ // Common value with new behavior is to have $val = iduser and $this->socpeopleassigned is an array of iduser => $val.
+ if (!empty($already_inserted[$id])) {
+ continue;
+ }
$sql = "INSERT INTO ".MAIN_DB_PREFIX."actioncomm_resources(fk_actioncomm, element_type, fk_element, mandatory, transparency, answer_status)";
$sql .= " VALUES(".((int) $this->id).", 'socpeople', ".((int) $id).", 0, 0, 0)";
@@ -623,7 +629,7 @@ class ActionComm extends CommonObject
dol_syslog('Error to process socpeopleassigned: ' . $this->db->lasterror(), LOG_ERR);
$this->errors[] = $this->db->lasterror();
} else {
- $already_inserted[$val['id']] = true;
+ $already_inserted[$id] = true;
}
}
}
From 5c5b429dec32c5d980fa6751be5cf882c8ad49f3 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 05:33:19 +0200
Subject: [PATCH 072/117] Better error management of client WS unit test
---
test/phpunit/WebservicesInvoicesTest.php | 3 ++-
test/phpunit/WebservicesOrdersTest.php | 4 ++--
test/phpunit/WebservicesOtherTest.php | 4 ++--
test/phpunit/WebservicesProductsTest.php | 4 ++--
test/phpunit/WebservicesThirdpartyTest.php | 4 ++--
test/phpunit/WebservicesUserTest.php | 4 ++--
6 files changed, 12 insertions(+), 11 deletions(-)
diff --git a/test/phpunit/WebservicesInvoicesTest.php b/test/phpunit/WebservicesInvoicesTest.php
index f6f499357a4..a077b34e208 100644
--- a/test/phpunit/WebservicesInvoicesTest.php
+++ b/test/phpunit/WebservicesInvoicesTest.php
@@ -414,7 +414,7 @@ class WebservicesInvoicesTest extends PHPUnit\Framework\TestCase
$result=0;
}
if (! $result || ! empty($result['faultstring'])) {
- print $this->soapclient->error_str;
+ print 'Error: '.$this->soapclient->error_str;
print "\n
Date: Sat, 28 Aug 2021 05:38:12 +0200
Subject: [PATCH 073/117] Fix warning event late on tab Resources
---
htdocs/resource/element_resource.php | 2 ++
1 file changed, 2 insertions(+)
diff --git a/htdocs/resource/element_resource.php b/htdocs/resource/element_resource.php
index 83a8d58d410..4d0736c5f64 100644
--- a/htdocs/resource/element_resource.php
+++ b/htdocs/resource/element_resource.php
@@ -281,6 +281,8 @@ $form = new Form($db);
$pagetitle = $langs->trans('ResourceElementPage');
llxHeader('', $pagetitle, '');
+$now = dol_now();
+$delay_warning = $conf->global->MAIN_DELAY_ACTIONS_TODO * 24 * 60 * 60;
// Load available resource, declared by modules
$ret = count($object->available_resources);
From aab6281ba610071b745f62861aa11ab86acf7b50 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 05:38:40 +0200
Subject: [PATCH 074/117] Clean code
---
htdocs/comm/action/document.php | 5 ++---
1 file changed, 2 insertions(+), 3 deletions(-)
diff --git a/htdocs/comm/action/document.php b/htdocs/comm/action/document.php
index eb1ac59cfe0..4c4d44c3a6e 100644
--- a/htdocs/comm/action/document.php
+++ b/htdocs/comm/action/document.php
@@ -108,6 +108,8 @@ $help_url = 'EN:Module_Agenda_En|FR:Module_Agenda|ES:M&omodulodulo_Agenda';
llxHeader('', $langs->trans("Agenda"), $help_url);
+$now = dol_now();
+$delay_warning = $conf->global->MAIN_DELAY_ACTIONS_TODO * 24 * 60 * 60;
if ($object->id > 0) {
$result1 = $object->fetch($id);
@@ -135,9 +137,6 @@ if ($object->id > 0) {
$head = actions_prepare_head($object);
- $now = dol_now();
- $delay_warning = $conf->global->MAIN_DELAY_ACTIONS_TODO * 24 * 60 * 60;
-
print dol_get_fiche_head($head, 'documents', $langs->trans("Action"), -1, 'action');
$linkback = img_picto($langs->trans("BackToList"), 'object_list', 'class="hideonsmartphone pictoactionview"');
From 64c4e25c0237e59bda595e9ff5ccc9cc32ceeffd Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 05:24:53 +0200
Subject: [PATCH 075/117] Fix warning
---
htdocs/comm/action/class/actioncomm.class.php | 14 ++++++++++----
1 file changed, 10 insertions(+), 4 deletions(-)
diff --git a/htdocs/comm/action/class/actioncomm.class.php b/htdocs/comm/action/class/actioncomm.class.php
index d5a0c427352..6bfa9de9926 100644
--- a/htdocs/comm/action/class/actioncomm.class.php
+++ b/htdocs/comm/action/class/actioncomm.class.php
@@ -585,12 +585,15 @@ class ActionComm extends CommonObject
//dol_syslog(var_export($this->userassigned, true));
$already_inserted = array();
foreach ($this->userassigned as $key => $val) {
- if (!is_array($val)) { // For backward compatibility when val=id
+ // Common value with new behavior is to have $val = array('id'=>iduser, 'transparency'=>0|1) and $this->userassigned is an array of iduser => $val.
+ if (!is_array($val)) { // For backward compatibility when $val='id'.
$val = array('id'=>$val);
}
if ($val['id'] > 0) {
- if (!empty($already_inserted[$val['id']])) continue;
+ if (!empty($already_inserted[$val['id']])) {
+ continue;
+ }
$sql = "INSERT INTO ".MAIN_DB_PREFIX."actioncomm_resources(fk_actioncomm, element_type, fk_element, mandatory, transparency, answer_status)";
$sql .= " VALUES(".$this->id.", 'user', ".$val['id'].", ".(empty($val['mandatory']) ? '0' : $val['mandatory']).", ".(empty($val['transparency']) ? '0' : $val['transparency']).", ".(empty($val['answer_status']) ? '0' : $val['answer_status']).")";
@@ -612,7 +615,10 @@ class ActionComm extends CommonObject
if (!empty($this->socpeopleassigned)) {
$already_inserted = array();
foreach ($this->socpeopleassigned as $id => $val) {
- if (!empty($already_inserted[$val['id']])) continue;
+ // Common value with new behavior is to have $val = iduser and $this->socpeopleassigned is an array of iduser => $val.
+ if (!empty($already_inserted[$id])) {
+ continue;
+ }
$sql = "INSERT INTO ".MAIN_DB_PREFIX."actioncomm_resources(fk_actioncomm, element_type, fk_element, mandatory, transparency, answer_status)";
$sql .= " VALUES(".$this->id.", 'socpeople', ".$id.", 0, 0, 0)";
@@ -623,7 +629,7 @@ class ActionComm extends CommonObject
dol_syslog('Error to process socpeopleassigned: ' . $this->db->lasterror(), LOG_ERR);
$this->errors[] = $this->db->lasterror();
} else {
- $already_inserted[$val['id']] = true;
+ $already_inserted[$id] = true;
}
}
}
From 700138815927ee1dfc7c1cbe7de7e246d2a4d368 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 05:38:12 +0200
Subject: [PATCH 076/117] Fix warning event late on tab Resources
---
htdocs/resource/element_resource.php | 2 ++
1 file changed, 2 insertions(+)
diff --git a/htdocs/resource/element_resource.php b/htdocs/resource/element_resource.php
index 83a8d58d410..4d0736c5f64 100644
--- a/htdocs/resource/element_resource.php
+++ b/htdocs/resource/element_resource.php
@@ -281,6 +281,8 @@ $form = new Form($db);
$pagetitle = $langs->trans('ResourceElementPage');
llxHeader('', $pagetitle, '');
+$now = dol_now();
+$delay_warning = $conf->global->MAIN_DELAY_ACTIONS_TODO * 24 * 60 * 60;
// Load available resource, declared by modules
$ret = count($object->available_resources);
From f825d3fda4e46b8408a37009545744b354d7ee10 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 13:27:55 +0200
Subject: [PATCH 077/117] Trans
---
htdocs/compta/facture/list.php | 2 +-
htdocs/langs/en_US/bills.lang | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/compta/facture/list.php b/htdocs/compta/facture/list.php
index 2b8a65445ba..a54797323a3 100644
--- a/htdocs/compta/facture/list.php
+++ b/htdocs/compta/facture/list.php
@@ -430,7 +430,7 @@ if ($action == 'makepayment_confirm' && $user->rights->facture->paiement) {
}
}
if (empty($errorpayment)) {
- setEventMessage($langs->trans('RegisterPaymentAndClasiffiedPayedDone', $facture->ref));
+ setEventMessage($langs->trans('PaymentRegisteredAndInvoiceSetToPaid', $facture->ref));
}
}
}
diff --git a/htdocs/langs/en_US/bills.lang b/htdocs/langs/en_US/bills.lang
index c37b58fee8c..203b0201f9b 100644
--- a/htdocs/langs/en_US/bills.lang
+++ b/htdocs/langs/en_US/bills.lang
@@ -593,4 +593,4 @@ SituationTotalProgress=Total progress %d %%
SearchUnpaidInvoicesWithDueDate=Search unpaid invoices with a due date = %s
RegisterPaymentAndClasiffiedPayed=Enter payment and classify 'Paid'
NoPaymentAvailable=No payment available for %s
-RegisterPaymentAndClasiffiedPayedDone=Payment registered and classify 'Paid' done for invoice %s
+PaymentRegisteredAndInvoiceSetToPaid=Payment registered and invoice %s set to paid
From b2791c31030d5054d32313aadaa39d1033c48f5c Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 13:36:47 +0200
Subject: [PATCH 078/117] Fix generate the phpunit file from modulebuilder
---
htdocs/modulebuilder/index.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/modulebuilder/index.php b/htdocs/modulebuilder/index.php
index 0a05266b6ff..2c684d77da1 100644
--- a/htdocs/modulebuilder/index.php
+++ b/htdocs/modulebuilder/index.php
@@ -383,7 +383,7 @@ if ($dirins && $action == 'initphpunit' && !empty($module)) {
$modulename = ucfirst($module); // Force first letter in uppercase
$objectname = $tabobj;
- dol_mkdir($dirins.'/'.strtolower($module).'/class');
+ dol_mkdir($dirins.'/'.strtolower($module).'/test/phpunit');
$srcdir = DOL_DOCUMENT_ROOT.'/modulebuilder/template';
$srcfile = $srcdir.'/test/phpunit/MyObjectTest.php';
$destfile = $dirins.'/'.strtolower($module).'/test/phpunit/'.strtolower($objectname).'Test.php';
From 1fec53e7f2e5a0c0cabaff64242d6d292b7e3954 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 13:36:47 +0200
Subject: [PATCH 079/117] Fix generate the phpunit file from modulebuilder
---
htdocs/modulebuilder/index.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/modulebuilder/index.php b/htdocs/modulebuilder/index.php
index f8ca876eafc..be8e4481681 100644
--- a/htdocs/modulebuilder/index.php
+++ b/htdocs/modulebuilder/index.php
@@ -383,7 +383,7 @@ if ($dirins && $action == 'initphpunit' && !empty($module)) {
$modulename = ucfirst($module); // Force first letter in uppercase
$objectname = $tabobj;
- dol_mkdir($dirins.'/'.strtolower($module).'/class');
+ dol_mkdir($dirins.'/'.strtolower($module).'/test/phpunit');
$srcdir = DOL_DOCUMENT_ROOT.'/modulebuilder/template';
$srcfile = $srcdir.'/test/phpunit/MyObjectTest.php';
$destfile = $dirins.'/'.strtolower($module).'/test/phpunit/'.strtolower($objectname).'Test.php';
From 20d0b0c56409f202a7210245f2dbc964dc07d9f2 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 13:56:59 +0200
Subject: [PATCH 080/117] Fix link in some tooltips
---
htdocs/modulebuilder/index.php | 11 +++++++----
htdocs/theme/eldy/global.inc.php | 4 ++++
htdocs/theme/md/style.css.php | 4 ++++
3 files changed, 15 insertions(+), 4 deletions(-)
diff --git a/htdocs/modulebuilder/index.php b/htdocs/modulebuilder/index.php
index be8e4481681..ed090618855 100644
--- a/htdocs/modulebuilder/index.php
+++ b/htdocs/modulebuilder/index.php
@@ -2218,7 +2218,8 @@ if ($module == 'initmodule') {
if ($action != 'editfile' || empty($file)) {
print '';
- $htmlhelp = $langs->trans("DictionariesDefDescTooltip", ''.$langs->trans('Setup').' - '.$langs->trans('Dictionaries').' ');
+ $htmlhelp = $langs->trans("DictionariesDefDescTooltip", '{s1}');
+ $htmlhelp = str_replace('{s1}', ''.$langs->trans('Setup').' - '.$langs->trans('Dictionaries').' ', $htmlhelp);
print $form->textwithpicto($langs->trans("DictionariesDefDesc"), $htmlhelp, 1, 'help', '', 0, 2, 'helpondesc').' ';
print '';
- $htmlhelp = $langs->trans("MenusDefDescTooltip", ''.$langs->trans('Setup').' - '.$langs->trans('Menus').' ');
+ $htmlhelp = $langs->trans("MenusDefDescTooltip", '{s1}');
+ $htmlhelp = str_replace('{s1}', ''.$langs->trans('Setup').' - '.$langs->trans('Menus').' ', $htmlhelp);
print $form->textwithpicto($langs->trans("MenusDefDesc"), $htmlhelp, 1, 'help', '', 0, 2, 'helpondesc').' ';
print '';
- $htmlhelp = $langs->trans("PermissionsDefDescTooltip", ''.$langs->trans('DefaultPermissions').' ');
+ $htmlhelp = $langs->trans("PermissionsDefDescTooltip", '{s1}');
+ $htmlhelp = str_replace('{s1}', ''.$langs->trans('DefaultRights').' ', $htmlhelp);
print $form->textwithpicto($langs->trans("PermissionsDefDesc"), $htmlhelp, 1, 'help', '', 0, 2, 'helpondesc').' ';
print ''.str_replace('{s1}', ''.$langs->transnoentities('CronList').' ', $langs->trans("CronJobDefDesc", '{s1}')).' '.str_replace('{s1}', ''.$langs->transnoentities('CronList').' ', $langs->trans("CronJobDefDesc", '{s1}')).' '.$pathtofile.' ';
diff --git a/htdocs/theme/eldy/global.inc.php b/htdocs/theme/eldy/global.inc.php
index 58e19d36a22..50490fa119f 100644
--- a/htdocs/theme/eldy/global.inc.php
+++ b/htdocs/theme/eldy/global.inc.php
@@ -295,6 +295,10 @@ input.buttonpayment, button.buttonpayment, div.buttonpayment {
cursor: pointer;
max-width: 350px;
}
+.nofocusvisible:focus-visible {
+ outline: none;
+}
+
div.buttonpayment input:focus {
color: #008;
}
diff --git a/htdocs/theme/md/style.css.php b/htdocs/theme/md/style.css.php
index ef7e69c0538..1a18bbf6882 100644
--- a/htdocs/theme/md/style.css.php
+++ b/htdocs/theme/md/style.css.php
@@ -473,6 +473,10 @@ input.buttonpayment, button.buttonpayment, div.buttonpayment {
white-space: normal;
color: #888 !important;
}
+.nofocusvisible:focus-visible {
+ outline: none;
+}
+
div.buttonpayment input {
background-color: unset;
border-bottom: unset;
From afb8a86aff2d9f2526e274befb2f36b6d8b543e5 Mon Sep 17 00:00:00 2001
From: BENKE Charlene <1179011+defrance@users.noreply.github.com>
Date: Sat, 28 Aug 2021 14:14:48 +0200
Subject: [PATCH 081/117] Clean code (line in double)
---
htdocs/fourn/facture/paiement.php | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/htdocs/fourn/facture/paiement.php b/htdocs/fourn/facture/paiement.php
index b5bc33b78c0..fcbfdcf7b45 100644
--- a/htdocs/fourn/facture/paiement.php
+++ b/htdocs/fourn/facture/paiement.php
@@ -10,6 +10,7 @@
* Copyright (C) 2015 Juanjo Menent
* Copyright (C) 2017 Alexandre Spangaro
* Copyright (C) 2018-2020 Frédéric France
+ * Copyright (C) 2021 Charlene Benke
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
@@ -291,8 +292,6 @@ if (empty($reshook)) {
$paiement->num_payment = GETPOST('num_paiement', 'alphanohtml');
$paiement->note_private = GETPOST('comment', 'alpha');
- $paiement->num_payment = $paiement->num_payment;
- $paiement->note_private = $paiement->note_private;
if (!$error) {
$paiement_id = $paiement->create($user, (GETPOST('closepaidinvoices') == 'on' ? 1 : 0), $thirdparty);
From 45515fa8b2ef3313409af55466902cb0a24e95e7 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:28:50 +0200
Subject: [PATCH 082/117] fix css
---
htdocs/theme/eldy/global.inc.php | 2 +-
htdocs/theme/md/style.css.php | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/theme/eldy/global.inc.php b/htdocs/theme/eldy/global.inc.php
index 50490fa119f..79977faac6a 100644
--- a/htdocs/theme/eldy/global.inc.php
+++ b/htdocs/theme/eldy/global.inc.php
@@ -296,7 +296,7 @@ input.buttonpayment, button.buttonpayment, div.buttonpayment {
max-width: 350px;
}
.nofocusvisible:focus-visible {
- outline: none;
+ outline: none;
}
div.buttonpayment input:focus {
diff --git a/htdocs/theme/md/style.css.php b/htdocs/theme/md/style.css.php
index 1a18bbf6882..0d8851208f6 100644
--- a/htdocs/theme/md/style.css.php
+++ b/htdocs/theme/md/style.css.php
@@ -474,7 +474,7 @@ input.buttonpayment, button.buttonpayment, div.buttonpayment {
color: #888 !important;
}
.nofocusvisible:focus-visible {
- outline: none;
+ outline: none;
}
div.buttonpayment input {
From f359bfaaf2f8544af93ced8a156c3b933bf3398d Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:31:56 +0200
Subject: [PATCH 083/117] Update emailcollector.class.php
---
.../class/emailcollector.class.php | 24 +------------------
1 file changed, 1 insertion(+), 23 deletions(-)
diff --git a/htdocs/emailcollector/class/emailcollector.class.php b/htdocs/emailcollector/class/emailcollector.class.php
index 88cb4bcc1d2..a77938ceb79 100644
--- a/htdocs/emailcollector/class/emailcollector.class.php
+++ b/htdocs/emailcollector/class/emailcollector.class.php
@@ -35,32 +35,10 @@ require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php'; // customer
require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php'; // Shipment
require_once DOL_DOCUMENT_ROOT.'/fourn/class/fournisseur.facture.class.php'; // supplier invoice
require_once DOL_DOCUMENT_ROOT.'/fourn/class/fournisseur.commande.class.php'; // supplier order
-include_once DOL_DOCUMENT_ROOT.'/supplier_proposal/class/supplier_proposal.class.php'; // supplier proposal
+require_once DOL_DOCUMENT_ROOT.'/supplier_proposal/class/supplier_proposal.class.php'; // supplier proposal
require_once DOL_DOCUMENT_ROOT."/reception/class/reception.class.php"; // reception
//require_once DOL_DOCUMENT_ROOT.'/holiday/class/holiday.class.php'; // Holidays (leave request)
//require_once DOL_DOCUMENT_ROOT.'/expensereport/class/expensereport.class.php'; // expernse report
-/*
-if (!empty($conf->propal->enabled)) {
-}
-if (!empty($conf->commande->enabled)) {
-}
-if (!empty($conf->expedition->enabled)) {
-}
-if (!empty($conf->facture->enabled)) {
- require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
-}
-if (!empty($conf->facture->enabled)) {
- require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture-rec.class.php';
-}
-if (!empty($conf->contrat->enabled)) {
- require_once DOL_DOCUMENT_ROOT.'/contrat/class/contrat.class.php';
-}
-if (!empty($conf->adherent->enabled)) {
- require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
-}
-if (!empty($conf->ficheinter->enabled)) { //files
- require_once DOL_DOCUMENT_ROOT.'/fichinter/class/fichinter.class.php';
-}*/
/**
From d98390e6757de87331fc51db270303bc492a8b2c Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:42:31 +0200
Subject: [PATCH 084/117] Update api_orders.class.php
---
htdocs/commande/class/api_orders.class.php | 7 +++----
1 file changed, 3 insertions(+), 4 deletions(-)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index 2510e793018..88fed4bce63 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -970,18 +970,17 @@ class Orders extends DolibarrApi
/**
* Get the shipments of an order
*
- *
* @param int $id Id of the order
*
* @url GET {id}/shipment
*
+ * @return array
+ *
* @throws RestException 401
* @throws RestException 404
* @throws RestException 500
- *
- * @return array
*/
- public function getOrderShipements($id)
+ public function getOrderShipments($id)
{
require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
if (!DolibarrApiAccess::$user->rights->expedition->lire) {
From 3585259b555ea6b11bb60e8f97dfa408074d03d5 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:43:17 +0200
Subject: [PATCH 085/117] Update api_orders.class.php
---
htdocs/commande/class/api_orders.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index 88fed4bce63..743c0633ffa 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -1036,7 +1036,7 @@ class Orders extends DolibarrApi
*
* @return int
*/
- public function createOrderShipement($id, $warehouse_id)
+ public function createOrderShipment($id, $warehouse_id)
{
require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
if (!DolibarrApiAccess::$user->rights->expedition->creer) {
From 049992aed47900fe5354416ed1949d908c5767ea Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:44:13 +0200
Subject: [PATCH 086/117] Update api_orders.class.php
---
htdocs/commande/class/api_orders.class.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/commande/class/api_orders.class.php b/htdocs/commande/class/api_orders.class.php
index 743c0633ffa..d625f2acbf1 100644
--- a/htdocs/commande/class/api_orders.class.php
+++ b/htdocs/commande/class/api_orders.class.php
@@ -1030,11 +1030,11 @@ class Orders extends DolibarrApi
*
* @url POST {id}/shipment/{warehouse_id}
*
+ * @return int
+ *
* @throws RestException 401
* @throws RestException 404
* @throws RestException 500
- *
- * @return int
*/
public function createOrderShipment($id, $warehouse_id)
{
From 0e38e1e2c4de780d81c11a6c7bd18408cf7c0fc5 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 14:51:49 +0200
Subject: [PATCH 087/117] NEW Add hook hookGetEntity. Change name and param of
hook
---
htdocs/core/class/hookmanager.class.php | 2 +-
htdocs/core/lib/functions.lib.php | 9 +++++----
2 files changed, 6 insertions(+), 5 deletions(-)
diff --git a/htdocs/core/class/hookmanager.class.php b/htdocs/core/class/hookmanager.class.php
index d158ec2fa70..40610ce5d6f 100644
--- a/htdocs/core/class/hookmanager.class.php
+++ b/htdocs/core/class/hookmanager.class.php
@@ -189,7 +189,7 @@ class HookManager
'formConfirm',
'getAccessForbiddenMessage',
'getDirList',
- 'functionGetEntity',
+ 'hookGetEntity',
'getFormMail',
'getFormatedCustomerRef',
'getFormatedSupplierRef',
diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php
index 604e2035d95..483e890e369 100644
--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -104,7 +104,7 @@ function getDoliDBInstance($type, $host, $user, $pass, $name, $port)
*/
function getEntity($element, $shared = 1, $currentobject = null)
{
- global $conf, $mc, $hookmanager, $object;
+ global $conf, $mc, $hookmanager, $object, $action;
// fix different element names (France to English)
switch ($element) {
@@ -129,12 +129,13 @@ function getEntity($element, $shared = 1, $currentobject = null)
// Manipulate entities to query on the fly
$parameters = array(
- 'object' => $object,
- 'currentobject' => $currentobject,
'element' => $element,
'shared' => $shared,
+ 'object' => $object,
+ 'currentobject' => $currentobject,
+ 'out' => $out
);
- $reshook = $hookmanager->executeHooks('functionGetEntity', $parameters, $out, $element); // Note that $action and $object may have been modified by some hooks
+ $reshook = $hookmanager->executeHooks('hookGetEntity', $parameters, $currentobject, $action); // Note that $action and $object may have been modified by some hooks
if (is_numeric($reshook)) {
if ($reshook == 0 && !empty($hookmanager->resprints)) {
From c509e3bc432b111f952e1ebeb826f785b8d4fa42 Mon Sep 17 00:00:00 2001
From: lmarcouiller
Date: Thu, 26 Aug 2021 10:32:29 +0200
Subject: [PATCH 088/117] FIx error 500 on restler api PHP 8.0
---
htdocs/ticket/class/api_tickets.class.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/ticket/class/api_tickets.class.php b/htdocs/ticket/class/api_tickets.class.php
index e104d425bf4..f3a9c738aac 100644
--- a/htdocs/ticket/class/api_tickets.class.php
+++ b/htdocs/ticket/class/api_tickets.class.php
@@ -17,7 +17,7 @@
use Luracast\Restler\RestException;
-require 'ticket.class.php';
+require_once DOL_DOCUMENT_ROOT.'/ticket/class/ticket.class.php';
require_once DOL_DOCUMENT_ROOT.'/core/lib/ticket.lib.php';
From 28752ddca47490c38f45f6e66c42e9ad68e590bd Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 15:19:54 +0200
Subject: [PATCH 089/117] Fix concat
---
htdocs/projet/tasks/time.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/projet/tasks/time.php b/htdocs/projet/tasks/time.php
index c438f8c133a..634b3c136d9 100644
--- a/htdocs/projet/tasks/time.php
+++ b/htdocs/projet/tasks/time.php
@@ -463,7 +463,7 @@ if ($action == 'confirm_generateinvoice') {
$arrayoftasks[$object->timespent_id]['totalvaluetodivideby3600'] = $object->timespent_duration * $object->timespent_thm;
$arrayoftasks[$object->timespent_id]['note'] = $ftask->ref.' - '.$ftask->label.' - '.$username.($object->timespent_note ? ' - '.$object->timespent_note : ''); // TODO Add user name in note
if (!empty($conf->global->PROJECT_TIME_SPENT_INTO_INVOICE_ADD_TIME_DT)) {
- $arrayoftasks[$object->timespent_id]['note'] = "\n";
+ $arrayoftasks[$object->timespent_id]['note'] .= "\n";
if (!empty($object->timespent_withhour)) {
$arrayoftasks[$object->timespent_id]['note'] .= $langs->trans("Date") . ': ' . dol_print_date($object->timespent_datehour);
} else {
From 6b8f6acf32d76427b606200b2a52a6553d07acf5 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 15:26:06 +0200
Subject: [PATCH 090/117] Update card.php
---
htdocs/contrat/card.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/contrat/card.php b/htdocs/contrat/card.php
index d07176d1670..232d5e0798b 100644
--- a/htdocs/contrat/card.php
+++ b/htdocs/contrat/card.php
@@ -1089,7 +1089,7 @@ if ($action == 'create') {
print ''.$langs->trans('ThirdParty').' ';
if ($socid > 0) {
print '';
- print $soc->getNomUrl(1, 'customer');
+ print $soc->getNomUrl(1);
print ' ';
} else {
From fae0b3c8bec15fe415561005ae7b98d2d98e8629 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 15:26:36 +0200
Subject: [PATCH 091/117] Update card.php
---
htdocs/contrat/card.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/contrat/card.php b/htdocs/contrat/card.php
index 232d5e0798b..470895a2c22 100644
--- a/htdocs/contrat/card.php
+++ b/htdocs/contrat/card.php
@@ -1296,7 +1296,7 @@ if ($action == 'create') {
$morehtmlref .= $form->editfieldkey("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $user->rights->contrat->creer, 'string', '', 0, 1);
$morehtmlref .= $form->editfieldval("RefSupplier", 'ref_supplier', $object->ref_supplier, $object, $user->rights->contrat->creer, 'string', '', null, null, '', 1, 'getFormatedSupplierRef');
// Thirdparty
- $morehtmlref .= ''.$langs->trans("OtherContracts").' )';
}
From faf1d52d9190747648c5a6fcbff3cf31a1fcb2de Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 16:32:22 +0200
Subject: [PATCH 092/117] Update card.php
---
htdocs/expedition/card.php | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index c4ec3504383..e020758fbbb 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -717,7 +717,7 @@ if (empty($reshook)) {
unset($_POST[$qty]);
}
}
- } else { // both product batch and stock are not activated.
+ } elsif (empty($conf->stock->enabled) && empty($conf->productbatch->enabled)) { // both product batch and stock are not activated.
$qty = "qtyl".$line_id;
$line->id = $line_id;
$line->qty = GETPOST($qty, 'int');
From 2ddebc123ab8eb67f1561555532a6b42d73a1ebf Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Sat, 28 Aug 2021 14:32:44 +0000
Subject: [PATCH 093/117] Fixing style errors.
---
htdocs/expedition/card.php | 10 +++++-----
1 file changed, 5 insertions(+), 5 deletions(-)
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index e020758fbbb..e8455c906ef 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -717,15 +717,15 @@ if (empty($reshook)) {
unset($_POST[$qty]);
}
}
- } elsif (empty($conf->stock->enabled) && empty($conf->productbatch->enabled)) { // both product batch and stock are not activated.
+ } elsif(empty($conf->stock->enabled) && empty($conf->productbatch->enabled)) { // both product batch and stock are not activated.
$qty = "qtyl".$line_id;
$line->id = $line_id;
$line->qty = GETPOST($qty, 'int');
$line->entrepot_id = 0;
- if ($line->update($user) < 0) {
- setEventMessages($line->error, $line->errors, 'errors');
- $error++;
- }
+ if ($line->update($user) < 0) {
+ setEventMessages($line->error, $line->errors, 'errors');
+ $error++;
+ }
unset($_POST[$qty]);
}
} else {
From 31ca781236bcb96a0c9812d6a20787e1b2a4805c Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 16:34:38 +0200
Subject: [PATCH 094/117] Update card.php
---
htdocs/expedition/card.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index e8455c906ef..8ab667780f0 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -717,7 +717,7 @@ if (empty($reshook)) {
unset($_POST[$qty]);
}
}
- } elsif(empty($conf->stock->enabled) && empty($conf->productbatch->enabled)) { // both product batch and stock are not activated.
+ } elseif (empty($conf->stock->enabled) && empty($conf->productbatch->enabled)) { // both product batch and stock are not activated.
$qty = "qtyl".$line_id;
$line->id = $line_id;
$line->qty = GETPOST($qty, 'int');
@@ -2262,7 +2262,7 @@ if ($action == 'create') {
print '';
// Qty to ship or shipped
From e60cf96c8eb669904c91e68fa845325c10832c80 Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Sat, 28 Aug 2021 14:35:01 +0000
Subject: [PATCH 095/117] Fixing style errors.
---
htdocs/expedition/card.php | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/htdocs/expedition/card.php b/htdocs/expedition/card.php
index 8ab667780f0..d4ea2fa006c 100644
--- a/htdocs/expedition/card.php
+++ b/htdocs/expedition/card.php
@@ -722,10 +722,10 @@ if (empty($reshook)) {
$line->id = $line_id;
$line->qty = GETPOST($qty, 'int');
$line->entrepot_id = 0;
- if ($line->update($user) < 0) {
- setEventMessages($line->error, $line->errors, 'errors');
- $error++;
- }
+ if ($line->update($user) < 0) {
+ setEventMessages($line->error, $line->errors, 'errors');
+ $error++;
+ }
unset($_POST[$qty]);
}
} else {
From 11497d4bf0c0f28d0dc5afaf2cfd5454ce922f84 Mon Sep 17 00:00:00 2001
From: henrynopo
Date: Sat, 28 Aug 2021 22:38:17 +0800
Subject: [PATCH 096/117] Update card.php
---
htdocs/compta/facture/card.php | 12 ++++--------
1 file changed, 4 insertions(+), 8 deletions(-)
diff --git a/htdocs/compta/facture/card.php b/htdocs/compta/facture/card.php
index 0386b30dcc5..2f56ef3b3a7 100644
--- a/htdocs/compta/facture/card.php
+++ b/htdocs/compta/facture/card.php
@@ -5071,7 +5071,7 @@ if ($action == 'create') {
}
print '';
print '';
- print ''.price($resteapayeraffiche).' ';
+ print ''.price($resteapayeraffiche).' ';
// Remainder to pay Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
@@ -5084,11 +5084,9 @@ if ($action == 'create') {
}
print '';
print ' ';
- print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
}
- print ' ';
-
// Retained warranty : usualy use on construction industry
if (!empty($object->situation_final) && !empty($object->retained_warranty) && $displayWarranty) {
// Billed - retained warranty
@@ -5127,7 +5125,7 @@ if ($action == 'create') {
print ' ('.$langs->trans('ExcessPaid').')';
}
print ' :';
- print ''.price($sign * $resteapayeraffiche).' ';
+ print ''.price($sign * $resteapayeraffiche).' ';
// Remainder to pay back Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
@@ -5140,11 +5138,9 @@ if ($action == 'create') {
}
print '';
print '';
- print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
}
- print ' ';
-
// Sold credit note
// print ''.$langs->trans('TotalTTC').' : ';
// print ''.price($sign *
From 444786b34fce30ff83f9d82ef702678d73f6be4d Mon Sep 17 00:00:00 2001
From: henrynopo
Date: Sat, 28 Aug 2021 22:52:06 +0800
Subject: [PATCH 097/117] Update card.php
---
htdocs/fourn/facture/card.php | 15 ++++++---------
1 file changed, 6 insertions(+), 9 deletions(-)
diff --git a/htdocs/fourn/facture/card.php b/htdocs/fourn/facture/card.php
index 660401e9131..5558bb26207 100644
--- a/htdocs/fourn/facture/card.php
+++ b/htdocs/fourn/facture/card.php
@@ -3236,7 +3236,7 @@ if ($action == 'create') {
}
print '';
print ' '.price($resteapayeraffiche).' ';
+ print ''.price($resteapayeraffiche).' '.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' ';
}
-
- print ' ';
+
} else // Credit note
{
$cssforamountpaymentcomplete = 'amountpaymentneutral';
@@ -3275,7 +3274,7 @@ if ($action == 'create') {
}
print '';
print '';
- print ''.price($sign * $resteapayeraffiche).' ';
+ print ''.price($sign * $resteapayeraffiche).' ';
// Remainder to pay back Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
@@ -3288,11 +3287,9 @@ if ($action == 'create') {
}
print '';
print '';
- print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
+ print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' ';
}
-
- print ' ';
-
+
// Sold credit note
// print ''.$langs->trans('TotalTTC').' : ';
// print ''.price($sign *
From 63427638d85d734d6b847dd742a43267e151854b Mon Sep 17 00:00:00 2001
From: stickler-ci
Date: Sat, 28 Aug 2021 14:54:16 +0000
Subject: [PATCH 098/117] Fixing style errors.
---
htdocs/fourn/facture/card.php | 5 ++---
1 file changed, 2 insertions(+), 3 deletions(-)
diff --git a/htdocs/fourn/facture/card.php b/htdocs/fourn/facture/card.php
index 5558bb26207..ce1e6a06136 100644
--- a/htdocs/fourn/facture/card.php
+++ b/htdocs/fourn/facture/card.php
@@ -3251,7 +3251,6 @@ if ($action == 'create') {
print ' '.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($object->multicurrency_tx*$resteapayeraffiche, 'MT')).' '.price($sign * $resteapayeraffiche).' ';
-
+
// Remainder to pay back Multicurrency
if ($object->multicurrency_code != $conf->currency || $object->multicurrency_tx != 1) {
print '';
@@ -3289,7 +3288,7 @@ if ($action == 'create') {
print ' ';
print ''.(!empty($object->multicurrency_code) ? $object->multicurrency_code : $conf->currency).' '.price(price2num($sign * $object->multicurrency_tx * $resteapayeraffiche, 'MT')).' '.$langs->trans('TotalTTC').' : ';
// print ''.price($sign *
From bb94ea73340b345d0abbe700ab41fd9f2f8c25ac Mon Sep 17 00:00:00 2001
From: Laurent Destailleur
Date: Sat, 28 Aug 2021 17:17:39 +0200
Subject: [PATCH 099/117] Fix debug car reception: Fill/reset link, colspan,
translation
---
htdocs/core/class/commonobject.class.php | 2 +-
htdocs/expedition/card.php | 34 +++++++++++++++---------
2 files changed, 23 insertions(+), 13 deletions(-)
diff --git a/htdocs/core/class/commonobject.class.php b/htdocs/core/class/commonobject.class.php
index 5df73f49f5c..cd7ea1af73c 100644
--- a/htdocs/core/class/commonobject.class.php
+++ b/htdocs/core/class/commonobject.class.php
@@ -7496,7 +7496,7 @@ abstract class CommonObject
if ($display_type == 'card') {
$out .= '