blob: 6c6a1a9a0ec2a1f1aa2120caa19afa52e9b27252 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
|
<% include('/elements/header-popup.html', "$action Customer Note") %>
<% include('/elements/error.html') %>
<FORM ACTION="<% popurl(1) %>process/cust_main_note.cgi" METHOD=POST>
<INPUT TYPE="hidden" NAME="custnum" VALUE="<% $custnum %>">
<INPUT TYPE="hidden" NAME="notenum" VALUE="<% $notenum %>">
<BR><BR>
<TEXTAREA NAME="comment" ROWS="12" COLS="60">
<% $comment %>
</TEXTAREA>
<BR><BR>
<INPUT TYPE="submit" VALUE="<% $notenum ? "Apply Changes" : "Add Note" %>">
</FORM>
</BODY>
</HTML>
<%init>
my $comment;
my $notenum = '';
if ( $cgi->param('error') ) {
$comment = $cgi->param('comment');
} elsif ( $cgi->param('notenum') =~ /^(\d+)$/ ) {
$notenum = $1;
die "illegal query ". $cgi->keywords unless $notenum;
my $note = qsearchs('cust_main_note', { 'notenum' => $notenum });
die "no such note: ". $notenum unless $note;
$comment = $note->comments;
}
$cgi->param('custnum') =~ /^(\d+)$/ or die "illeagl custnum";
my $custnum = $1;
my $action = $notenum ? 'Edit' : 'Add';
die "access denied"
unless $FS::CurrentUser::CurrentUser->access_right("$action customer note");
</%init>
|
