escape(trim($_POST['note']));
$status = $db -> escape(trim($_POST['status']));
$record_id = $db -> escape(trim($_POST['report_id']));
$employee_id = $db -> escape(trim($_POST['employee_id'])); //id of requestor
$approver_employee_id = $_SESSION['user']['id'];
// echo "SELECT `status` FROM `report_status` WHERE `report_id` = '$record_id' AND employee_id='$approver_employee_id' ";exit;
$report_status_check = $db -> select("SELECT `status` FROM `report_status` WHERE `report_id` = '$record_id' AND employee_id='$approver_employee_id' ");
if(intval($report_status_check) <> 0){
$return_arr['status'] = 0;
$return_arr['status_check'] = $report_status_check;
echo json_encode($return_arr);
return;
}
$db -> sql_query("UPDATE `report_status` SET `status`='$status',`notes`='$note',`date` = NOW() WHERE `report_id` = '$record_id' AND employee_id='$approver_employee_id' ");
$control_number = $db -> select("SELECT `control_number` FROM `report` WHERE `id` = '$record_id' ");
$suffix = ""; if($_SESSION['user']['suffix_name'] != 'None'){ $suffix = $_SESSION['user']['suffix_name']; }
$employee_name_approver = $_SESSION['user']['first_name'].' '.$_SESSION['user']['middle_name'].' '.$_SESSION['user']['last_name'].' '.$suffix;
switch($status){
case "1":
$report_message = $_GLOBALS['report_approved_messsage'];
break;
case "2":
$report_message = $_GLOBALS['report_declined_messsage'];
break;
}
$notification = new Notification();
$notification::insertNotification('2',
$record_id/*record id of specific record */ ,
$employee_id, /*employee_id of person who recieve the notif*/
$approver_employee_id,
sprintf($report_message,$employee_name_approver,'',"",'',''),
$db);
$employee_contact_owner = "";
$employee_email_owner = "";
$employee_contact = $db -> sql_query("SELECT ec.`email_address`,ec.`contact_number` FROM `employee_contact` ec
INNER JOIN employee e
ON ec.employee_id=e.employee_id WHERE e.id = '$employee_id'");
while($row1 = $employee_contact->fetch_assoc()) {
$employee_contact_owner = $row1['contact_number'];
$employee_email_owner = $row1['email_address'];
}
$send_sms = new SMS();
$send_sms::sendSMS(
$employee_contact_owner,
sprintf($report_message,$employee_name_approver,$control_number,"\r\nClick to view: ",$variable['site_link'].'requested_reports.php',$_GLOBALS['sms_footer']),
$variable);
$send_mail = new Mail();
$send_mail::sendMail(
$employee_email_owner,
$variable['site_name'],
sprintf($report_message,$employee_name_approver,$control_number,'
Click to view: ',$variable['site_link'].'requested_reports.php',$_GLOBALS['email_footer']),
$variable);
// echo "SELECT concat(e.employee_id, ' - ',e.first_name,' ',e.last_name) as name, rs.`status`,DATE_FORMAT(date,'%M %d, %Y - %h:%i %p') as date, rs.`notes` FROM `report_status` rs INNER JOIN employee e ON rs.employee_id = e.employee_id WHERE rs.report_id = '$record_id' ORDER BY rs.date ASC";exit;
$list_query = $db -> sql_query("SELECT concat(e.employee_id, ' - ',e.first_name,' ',e.last_name) as name, rs.`status`,DATE_FORMAT(date,'%M %d, %Y - %h:%i %p') as date, rs.`notes` FROM `report_status` rs INNER JOIN employee e ON rs.employee_id = e.id WHERE rs.report_id = '$record_id' ORDER BY rs.date ASC");
$approver_table = "";
while($row = $list_query->fetch_assoc()) {
$report_status = 'Pending';
switch("".$row['status'].""){
case '0':
$report_status = 'Pending';
break;
case '1':
$report_status = 'Approved';
break;
case '2':
$report_status = 'Declined';
break;
}
$approver_table = $approver_table . "
| ".$row['name']." |
".$report_status." |
".$row['date']." |
".$row['notes']." |
";
}
$return_arr['approver_list'] = $approver_table;
$return_arr['status'] = 1;
echo json_encode($return_arr);
function isNotEmpty($data){
return preg_match('/\S/', $data);
}
?>