-<%
-#
-# $Id: cust_pay.cgi,v 1.1 2001-07-30 07:36:04 ivan Exp $
-#
-# Usage: post form to:
-# http://server.name/path/cust_pay.cgi
-#
-# ivan@voicenet.com 96-dec-11
-#
-# rewrite ivan@sisd.com 98-mar-16
-#
-# Changes to allow page to work at a relative position in server
-# bmccane@maxbaud.net 98-apr-3
-#
-# $Log: cust_pay.cgi,v $
-# Revision 1.1 2001-07-30 07:36:04 ivan
-# templates!!!
-#
-# Revision 1.7 1999/02/28 00:03:43 ivan
-# removed misleading comments
-#
-# Revision 1.6 1999/01/25 12:19:09 ivan
-# yet more mod_perl stuff
-#
-# Revision 1.5 1999/01/19 05:13:53 ivan
-# for mod_perl: no more top-level my() variables; use vars instead
-# also the last s/create/new/;
-#
-# Revision 1.4 1999/01/18 22:47:54 ivan
-# s/create/new/g; and use fields('table_name')
-#
-# Revision 1.3 1998/12/30 23:03:28 ivan
-# bugfixes; fields isn't exported by derived classes
-#
-# Revision 1.2 1998/12/17 08:40:22 ivan
-# s/CGI::Request/CGI.pm/; etc
-#
+%if ($error) {
+% $cgi->param('error', $error);
+<% $cgi->redirect(popurl(2). 'cust_pay.cgi?'. $cgi->query_string ) %>
+%} elsif ( $field eq 'invnum' ) {
+<% $cgi->redirect(popurl(3). "view/cust_bill.cgi?$linknum") %>
+%} elsif ( $field eq 'custnum' ) {
+% if ( $cgi->param('apply') eq 'yes' ) {
+% my $cust_main = qsearchs('cust_main', { 'custnum' => $linknum })
+% or die "unknown custnum $linknum";
+% $cust_main->apply_payments( 'manual' => 1,
+% 'backdate_application' => ($_date < time-86400) );
+% }
+% if ( $link eq 'popup' ) {
+%
+<% header(emt('Payment entered')) %>
+ <SCRIPT TYPE="text/javascript">
+ window.top.location.reload();
+ </SCRIPT>
-use strict;
-use vars qw( $cgi $invnum $new $error );
-use CGI;
-use CGI::Carp qw(fatalsToBrowser);
-use FS::UID qw(cgisuidsetup);
-use FS::CGI qw(popurl);
-use FS::Record qw(fields);
-use FS::cust_pay;
+ </BODY></HTML>
+%
+% } elsif ( $link eq 'custnum' ) {
+<% $cgi->redirect(popurl(3). "view/cust_main.cgi?$linknum") %>
+% } else {
+% die "unknown link $link";
+% }
+%
+%}
+<%init>
-$cgi = new CGI;
-&cgisuidsetup($cgi);
+my $conf = FS::Conf->new;
-$cgi->param('invnum') =~ /^(\d*)$/ or die "Illegal svcnum!";
-$invnum = $1;
+$cgi->param('linknum') =~ /^(\d+)$/
+ or die "Illegal linknum: ". $cgi->param('linknum');
+my $linknum = $1;
-$new = new FS::cust_pay ( {
+$cgi->param('link') =~ /^(custnum|invnum|popup)$/
+ or die "Illegal link: ". $cgi->param('link');
+my $field = my $link = $1;
+$field = 'custnum' if $field eq 'popup';
+
+my $_date;
+if ( $FS::CurrentUser::CurrentUser->access_right('Backdate payment') ) {
+ $_date = parse_datetime($cgi->param('_date'));
+}
+else {
+ $_date = time;
+}
+
+my $new = new FS::cust_pay ( {
+ $field => $linknum,
+ _date => $_date,
map {
$_, scalar($cgi->param($_));
- #} qw(invnum paid _date payby payinfo paybatch)
- } fields('cust_pay')
+ } qw( paid payby payinfo paybatch
+ pkgnum discount_term
+ bank depositor account teller
+ )
+ #} fields('cust_pay')
+ # gatewaynum, processor, auth, order_number
+ # are for realtime payments only, and can't be entered manually
} );
-$error=$new->insert;
+my @rights = ('Post payment');
+push @rights, 'Post check payment' if $new->payby eq 'BILL';
+push @rights, 'Post cash payment' if $new->payby eq 'CASH';
-if ($error) {
- $cgi->param('error', $error);
- print $cgi->redirect(popurl(2). 'cust_pay.cgi?'. $cgi->query_string );
- exit;
-} else {
- print $cgi->redirect(popurl(3). "view/cust_bill.cgi?$invnum");
-}
+die "access denied"
+ unless $FS::CurrentUser::CurrentUser->access_right(\@rights);
+
+my $error ||= $new->insert( 'manual' => 1 );
-%>
+</%init>