format("Y-m-d"); $signedTime =date('H:i:s'); if(isset($_POST['done'])){ $myUID = mysql_escape_string($_POST['myUID']); //$SignedDate = mysql_escape_string($_POST['SignedDate']); //$SignedTime = mysql_escape_string($_POST['SignedTime']); $MyTOPCode = mysql_escape_string($_POST['MyTOPCode']); $tokenKey = mysql_escape_string($_POST['tokenKey']); $myPONumberA = mysql_escape_string($_POST['myPONumber']); $myKeyID = mysql_escape_string($_POST['myKeyID']); $myPONumber = str_replace(' ', '', $myPONumberA); $getOTPCode = mysql_result(mysql_query("SELECT `otp_approval` FROM `prf_purchase_order` WHERE `po_number`=$myPONumber AND `token`='$tokenKey'"),0); if($getOTPCode == $MyTOPCode){ $MyAPIcode = mysql_result(mysql_query("SELECT `SMSAPICode` FROM `asa_versioning_db` WHERE `type`='Live'"),0); $MyPasswd = mysql_result(mysql_query("SELECT `SMSAPIPass` FROM `asa_versioning_db` WHERE `type`='Live'"),0); mysql_query("UPDATE `prf_purchase_order` SET `date_approved`='$prfDate', `po_status`='3',`time_approved`='$signedTime',`approved_by`='$myUID' WHERE `po_number`=$myPONumber AND `token`='$tokenKey'"); mysql_query("UPDATE `prf_request_detl` SET `item_status`='9' WHERE `po_code`=$myPONumber"); //mysql_query("UPDATE `prf_validate_links` SET `completed` = '1' WHERE code='$myKeyID'"); mysql_query("UPDATE `prf_validate_links` SET `completed` = '1' WHERE `po_code`='$myPONumber'"); $getPODetl = mysql_query("SELECT * FROM `prf_request_detl` WHERE `po_code`='$myPONumber' AND `deleted`=0"); while($row=mysql_fetch_array($getPODetl)){ $Message ="Your request for ".$row['item_description']."has been prepared and document is now ready to be sent to supplier."; $refCodeID = $row['header_ref_code']; $uniqueRefID = $myUID; $requestorID = mysql_result(mysql_query("SELECT `request_by` FROM `prf_request_hdr` WHERE `reference_code`='$refCodeID'"),0); mysql_query("INSERT INTO prf_ff_message(ref_code,sender_id,message,send_to,sms,email,date,time) VALUES('{$refCodeID}','{$uniqueRefID}','{$Message}','{$requestorID}','sms','email','{$prfDate}','{$signedTime}')"); mysql_query("UPDATE `prf_request_hdr` SET `current_status`='9' WHERE `reference_code`='$refCodeID'"); } //$exID = $xRow['u_id']; //$SMSMessage = "Purchase Order (PO) has been routed to you for your Approval //https://www.autohub.ph/connect/home/poapr.php?uid=".$exID."&id=".$myPONumber."&token=".$tokenKey; //$empMobile = $xRow['usr_mobile']; //$result = itexmo($empMobile, $SMSMessage,$MyAPIcode,$MyPasswd); //$result = itexmoAA($empMobile, $SMSMessage,$MyAPIcode,$MyPasswd); //if ($result == ""){ // //echo ''; //}else if ($result == 0){ // //echo "SMS Sent!"; //} //else{ // //echo "Error Num ". $result . " was encountered!"; //} echo "PO Number ".$myPONumber." has been approved. PO will not be ready to be routed to supplier. Thank you!"; }else{ echo "ERROR: Invalid OTP Code. Please contact your system admin for assistance."; } //echo ''; } ?>