2 % $cgi->param('error', $error);
3 <% $cgi->redirect(popurl(3). 'misc/order_pkg.html?'. $cgi->query_string ) %>
5 % my $frag = "cust_pkg". $cust_pkg->pkgnum;
6 % my $show = $curuser->default_customer_view =~ /^(jumbo|packages)$/
9 % my $redir_url = popurl(3)
10 % ."view/cust_main.cgi?custnum=$custnum$show;fragment=$frag#$frag";
12 % # for going right to a provision service after ordering a package
14 % $redir_url = popurl(3)."edit/".$part_svc->svcdb.".cgi?".
15 % "pkgnum=".$cust_pkg->pkgnum. ";svcpart=$svcpart";
16 % $redir_url .= ";qualnum=$qualnum" if $qualnum;
18 <% header('Package ordered') %>
19 <SCRIPT TYPE="text/javascript">
20 // XXX fancy ajax rebuild table at some point, but a page reload will do for now
22 // XXX chop off trailing #target and replace... ?
23 window.top.location = '<% $redir_url %>';
31 my $curuser = $FS::CurrentUser::CurrentUser;
34 unless $curuser->access_right('Order customer package');
36 #untaint custnum (probably not necessary, searching for it is escape enough)
37 $cgi->param('custnum') =~ /^(\d+)$/
38 or die 'illegal custnum '. $cgi->param('custnum');
40 my $cust_main = qsearchs({
41 'table' => 'cust_main',
42 'hashref' => { 'custnum' => $custnum },
43 'extra_sql' => ' AND '. $FS::CurrentUser::CurrentUser->agentnums_sql,
45 die 'unknown custnum' unless $cust_main;
47 #probably not necessary, taken care of by cust_pkg::check
48 $cgi->param('pkgpart') =~ /^(\d+)$/
49 or die 'illegal pkgpart '. $cgi->param('pkgpart');
51 $cgi->param('refnum') =~ /^(\d*)$/
52 or die 'illegal refnum '. $cgi->param('refnum');
54 $cgi->param('locationnum') =~ /^(\-?\d*)$/
55 or die 'illegal locationnum '. $cgi->param('locationnum');
57 $cgi->param('discountnum') =~ /^(\-?\d*)$/
58 or die 'illegal discountnum '. $cgi->param('discountnum');
61 # for going right to a provision service after ordering a package
62 my( $svcpart, $part_svc ) = ( '', '' );
63 if ( $cgi->param('svcpart') ) {
64 $cgi->param('svcpart') =~ /^(\-?\d*)$/
65 or die 'illegal svcpart '. $cgi->param('svcpart');
67 $part_svc = qsearchs('part_svc', { 'svcpart' => $svcpart } )
68 or die "unknown svcpart $svcpart";
72 if ( $cgi->param('qualnum') ) {
73 $cgi->param('qualnum') =~ /^(\d+)$/ or die 'illegal qualnum';
78 my $cust_pkg = new FS::cust_pkg {
79 'custnum' => $custnum,
80 'pkgpart' => $pkgpart,
81 'start_date' => ( scalar($cgi->param('start_date'))
82 ? parse_datetime($cgi->param('start_date'))
85 'no_auto' => scalar($cgi->param('no_auto')),
87 'locationnum' => $locationnum,
88 'discountnum' => $discountnum,
89 #for the create a new discount case
90 'discountnum__type' => scalar($cgi->param('discountnum__type')),
91 'discountnum_amount' => scalar($cgi->param('discountnum_amount')),
92 'discountnum_percent' => scalar($cgi->param('discountnum_percent')),
93 'discountnum_months' => scalar($cgi->param('discountnum_months')),
94 'contract_end' => ( scalar($cgi->param('contract_end'))
95 ? parse_datetime($cgi->param('contract_end'))
98 #'discountnum_disabled' => scalar($cgi->param('discountnum_disabled')),
101 my %opt = ( 'cust_pkg' => $cust_pkg );
103 if ( $locationnum == -1 ) {
104 my $cust_location = new FS::cust_location {
105 map { $_ => scalar($cgi->param($_)) }
106 qw( custnum address1 address2 city county state zip country geocode )
108 $opt{'cust_location'} = $cust_location;
111 my $error = $cust_main->order_pkg( \%opt );