ÿØÿÛC  ÿØÿÛC  authorizeForUser($request->user('api'), 'view', Purchase::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $is_all_warehouses = $user->is_all_warehouses; // If the user is restricted, fetch their assigned warehouse IDs once and reuse below. if (! $is_all_warehouses) { $warehouse_ids = UserWarehouse::where('user_id', $user->id) ->pluck('warehouse_id') ->toArray(); } // How many items do you want to display. $perPage = $request->limit; $pageStart = \Request::get('page', 1); // Start displaying items from this number; $offSet = ($pageStart * $perPage) - $perPage; $order = $request->SortField; $dir = $request->SortType; $helpers = new helpers; // Filter fields With Params to retrieve $param = [ 0 => 'like', 1 => 'like', 2 => '=', 3 => 'like', 4 => '=', 5 => '=', ]; $columns = [ 0 => 'Ref', 1 => 'statut', 2 => 'provider_id', 3 => 'payment_statut', 4 => 'warehouse_id', 5 => 'date', ]; $data = []; $total = 0; // Check If User Has Permission View All Records $Purchases = Purchase::with('facture', 'provider', 'warehouse') ->where('deleted_at', '=', null) ->where(function ($query) use ($view_records) { if (! $view_records) { return $query->where('user_id', '=', Auth::user()->id); } }); if (! $is_all_warehouses) { $Purchases->whereIn('warehouse_id', $warehouse_ids); } // Multiple Filter $Filtred = $helpers->filter($Purchases, $columns, $param, $request) // Search With Multiple Param ->where(function ($query) use ($request) { return $query->when($request->filled('search'), function ($query) use ($request) { return $query->where('Ref', 'LIKE', "%{$request->search}%") ->orWhere('statut', 'LIKE', "%{$request->search}%") ->orWhere('GrandTotal', $request->search) ->orWhere('payment_statut', 'like', "$request->search") ->orWhere(function ($query) use ($request) { return $query->whereHas('provider', function ($q) use ($request) { $q->where('name', 'LIKE', "%{$request->search}%"); }); }) ->orWhere(function ($query) use ($request) { return $query->whereHas('warehouse', function ($q) use ($request) { $q->where('name', 'LIKE', "%{$request->search}%"); }); }); }); }); $totalRows = $Filtred->count(); if ($perPage == '-1') { $perPage = $totalRows; } $Purchases = $Filtred->offset($offSet) ->limit($perPage) ->orderBy($order, $dir) ->get(); foreach ($Purchases as $Purchase) { $item['id'] = $Purchase->id; $item['date'] = $Purchase['date'].' '.$Purchase['time']; $item['Ref'] = $Purchase->Ref; $item['warehouse_name'] = $Purchase['warehouse']->name; $item['discount'] = $Purchase->discount; $item['shipping'] = $Purchase->shipping; $item['statut'] = $Purchase->statut; $item['provider_id'] = $Purchase['provider']->id; $item['provider_name'] = $Purchase['provider']->name; $item['provider_email'] = $Purchase['provider']->email; $item['provider_tele'] = $Purchase['provider']->phone; $item['provider_code'] = $Purchase['provider']->code; $item['provider_adr'] = $Purchase['provider']->adresse; $item['GrandTotal'] = number_format($Purchase->GrandTotal, 2, '.', ''); $item['paid_amount'] = number_format($Purchase->paid_amount, 2, '.', ''); $item['due'] = number_format($item['GrandTotal'] - $item['paid_amount'], 2, '.', ''); $item['payment_status'] = $Purchase->payment_statut; if (PurchaseReturn::where('purchase_id', $Purchase['id'])->where('deleted_at', '=', null)->exists()) { $PurchaseReturn = PurchaseReturn::where('purchase_id', $Purchase['id'])->where('deleted_at', '=', null)->first(); $item['purchasereturn_id'] = $PurchaseReturn->id; $item['purchase_has_return'] = 'yes'; } else { $item['purchase_has_return'] = 'no'; } // Get documents count $item['documents_count'] = DB::table('purchase_documents') ->where('purchase_id', $Purchase['id']) ->whereNull('deleted_at') ->count(); $data[] = $item; } $suppliers = provider::where('deleted_at', '=', null)->get(['id', 'name']); $accounts = Account::where('deleted_at', '=', null)->orderBy('id', 'desc')->get(['id', 'account_name']); // get warehouses assigned to user $user_auth = auth()->user(); if ($user_auth->is_all_warehouses) { $warehouses = Warehouse::where('deleted_at', '=', null)->get(['id', 'name']); } else { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id)->pluck('warehouse_id')->toArray(); $warehouses = Warehouse::where('deleted_at', '=', null)->whereIn('id', $warehouses_id)->get(['id', 'name']); } $payment_methods = PaymentMethod::whereNull('deleted_at')->get(['id', 'name']); return response()->json([ 'totalRows' => $totalRows, 'purchases' => $data, 'suppliers' => $suppliers, 'warehouses' => $warehouses, 'accounts' => $accounts, 'payment_methods' => $payment_methods, ]); } // ------ Store new Purchase -------------\\ public function store(Request $request) { $this->authorizeForUser($request->user('api'), 'create', Purchase::class); request()->validate([ 'supplier_id' => 'required', 'warehouse_id' => 'required', 'Ref' => 'nullable|unique:purchases,Ref', ]); \DB::transaction(function () use ($request) { $order = new Purchase; $order->date = $request->date; $order->time = now()->toTimeString(); $order->Ref = !empty($request->Ref) ? $request->Ref : $this->getNumberOrder(); $order->provider_id = $request->supplier_id; $order->GrandTotal = $request->GrandTotal; $order->warehouse_id = $request->warehouse_id; $order->tax_rate = $request->tax_rate; $order->TaxNet = $request->TaxNet; $order->discount = $request->discount; $order->shipping = $request->shipping; $order->statut = $request->statut; $order->payment_statut = 'unpaid'; $order->notes = $request->notes; $order->user_id = Auth::user()->id; $order->save(); $data = $request['details']; foreach ($data as $key => $value) { $unit = Unit::where('id', $value['purchase_unit_id'])->first(); $orderDetails[] = [ 'purchase_id' => $order->id, 'quantity' => $value['quantity'], 'cost' => $value['Unit_cost'], 'purchase_unit_id' => $value['purchase_unit_id'], 'TaxNet' => $value['tax_percent'], 'tax_method' => $value['tax_method'], 'discount' => $value['discount'], 'discount_method' => $value['discount_Method'], 'product_id' => $value['product_id'], 'product_variant_id' => $value['product_variant_id'], 'total' => $value['subtotal'], 'imei_number' => $value['imei_number'], ]; if ($order->statut == 'received') { if ($value['product_variant_id'] !== null) { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $order->warehouse_id) ->where('product_id', $value['product_id']) ->where('product_variant_id', $value['product_variant_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte += $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte += $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } else { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $order->warehouse_id) ->where('product_id', $value['product_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte += $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte += $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } } } PurchaseDetail::insert($orderDetails); }, 10); return response()->json(['success' => true, 'message' => 'Purchase Created !!']); } // --------- Update Purchase -------------\\ public function update(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'update', Purchase::class); request()->validate([ 'warehouse_id' => 'required', 'supplier_id' => 'required', 'Ref' => 'nullable|unique:purchases,Ref,'.$id, ]); \DB::transaction(function () use ($request, $id) { $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $current_Purchase = Purchase::findOrFail($id); /** * Warehouses restriction * Allow if: * - user has access to all warehouses (is_all_warehouses = 1) * - OR sale warehouse_id is in user's assigned warehouses */ $user_auth = auth()->user(); if (! $user_auth->is_all_warehouses) { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id) ->pluck('warehouse_id') ->toArray(); if (empty($current_Purchase->warehouse_id) || ! in_array($current_Purchase->warehouse_id, $warehouses_id)) { return response()->json([ 'success' => false, 'message' => 'You are not allowed to access this sale (warehouse restriction).', ], 403); } } if (PurchaseReturn::where('purchase_id', $id)->where('deleted_at', '=', null)->exists()) { return response()->json(['success' => false, 'Return exist for the Transaction' => false], 403); } else { // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $current_Purchase); } $old_purchase_details = PurchaseDetail::where('purchase_id', $id)->get(); $new_purchase_details = $request['details']; $length = count($new_purchase_details); // Get Ids for new Details $new_products_id = []; foreach ($new_purchase_details as $new_detail) { $new_products_id[] = $new_detail['id']; } // Init Data with old Parametre $old_products_id = []; foreach ($old_purchase_details as $key => $value) { $old_products_id[] = $value->id; // check if detail has purchase_unit_id Or Null if ($value['purchase_unit_id'] !== null) { $unit = Unit::where('id', $value['purchase_unit_id'])->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $value['product_id']) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($value['purchase_unit_id'] !== null) { if ($current_Purchase->statut == 'received') { if ($value['product_variant_id'] !== null) { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->where('product_variant_id', $value['product_variant_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } else { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } } // Delete Detail if (! in_array($old_products_id[$key], $new_products_id)) { $PurchaseDetail = PurchaseDetail::findOrFail($value->id); $PurchaseDetail->delete(); } } } // Update Data with New request foreach ($new_purchase_details as $key => $prod_detail) { if ($prod_detail['no_unit'] !== 0) { $unit_prod = Unit::where('id', $prod_detail['purchase_unit_id'])->first(); if ($request['statut'] == 'received') { if ($prod_detail['product_variant_id'] !== null) { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $request->warehouse_id) ->where('product_id', $prod_detail['product_id']) ->where('product_variant_id', $prod_detail['product_variant_id']) ->first(); if ($unit_prod && $product_warehouse) { if ($unit_prod->operator == '/') { $product_warehouse->qte += $prod_detail['quantity'] / $unit_prod->operator_value; } else { $product_warehouse->qte += $prod_detail['quantity'] * $unit_prod->operator_value; } $product_warehouse->save(); } } else { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $request->warehouse_id) ->where('product_id', $prod_detail['product_id']) ->first(); if ($unit_prod && $product_warehouse) { if ($unit_prod->operator == '/') { $product_warehouse->qte += $prod_detail['quantity'] / $unit_prod->operator_value; } else { $product_warehouse->qte += $prod_detail['quantity'] * $unit_prod->operator_value; } $product_warehouse->save(); } } } $orderDetails['purchase_id'] = $id; $orderDetails['cost'] = $prod_detail['Unit_cost']; $orderDetails['purchase_unit_id'] = $prod_detail['purchase_unit_id']; $orderDetails['TaxNet'] = $prod_detail['tax_percent']; $orderDetails['tax_method'] = $prod_detail['tax_method']; $orderDetails['discount'] = $prod_detail['discount']; $orderDetails['discount_method'] = $prod_detail['discount_Method']; $orderDetails['quantity'] = $prod_detail['quantity']; $orderDetails['product_id'] = $prod_detail['product_id']; $orderDetails['product_variant_id'] = $prod_detail['product_variant_id']; $orderDetails['total'] = $prod_detail['subtotal']; $orderDetails['imei_number'] = $prod_detail['imei_number']; if (! in_array($prod_detail['id'], $old_products_id)) { PurchaseDetail::Create($orderDetails); } else { PurchaseDetail::where('id', $prod_detail['id'])->update($orderDetails); } } } $due = $request['GrandTotal'] - $current_Purchase->paid_amount; if ($due === 0.0 || $due < 0.0) { $payment_statut = 'paid'; } elseif ($due != $request['GrandTotal']) { $payment_statut = 'partial'; } elseif ($due == $request['GrandTotal']) { $payment_statut = 'unpaid'; } $update_data = [ 'date' => $request['date'], 'provider_id' => $request['supplier_id'], 'warehouse_id' => $request['warehouse_id'], 'notes' => $request['notes'], 'tax_rate' => $request['tax_rate'], 'TaxNet' => $request['TaxNet'], 'discount' => $request['discount'], 'shipping' => $request['shipping'], 'statut' => $request['statut'], 'GrandTotal' => $request['GrandTotal'], 'payment_statut' => $payment_statut, ]; if (!empty($request['Ref'])) { $update_data['Ref'] = $request['Ref']; } $current_Purchase->update($update_data); } }, 10); return response()->json(['success' => true, 'message' => 'Purchase Updated !!']); } // ------ Delete Purchase -------------\\ public function destroy(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'delete', Purchase::class); \DB::transaction(function () use ($id, $request) { $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $current_Purchase = Purchase::findOrFail($id); /** * Warehouses restriction * Allow if: * - user has access to all warehouses (is_all_warehouses = 1) * - OR sale warehouse_id is in user's assigned warehouses */ $user_auth = auth()->user(); if (! $user_auth->is_all_warehouses) { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id) ->pluck('warehouse_id') ->toArray(); if (empty($current_Purchase->warehouse_id) || ! in_array($current_Purchase->warehouse_id, $warehouses_id)) { return response()->json([ 'success' => false, 'message' => 'You are not allowed to access this sale (warehouse restriction).', ], 403); } } $old_purchase_details = PurchaseDetail::where('purchase_id', $id)->get(); if (PurchaseReturn::where('purchase_id', $id)->where('deleted_at', '=', null)->exists()) { return response()->json(['success' => false, 'Return exist for the Transaction' => false], 403); } else { // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === current_Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $current_Purchase); } foreach ($old_purchase_details as $key => $value) { // check if detail has purchase_unit_id Or Null if ($value['purchase_unit_id'] !== null) { $unit = Unit::where('id', $value['purchase_unit_id'])->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $value['product_id']) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($current_Purchase->statut == 'received') { if ($value['product_variant_id'] !== null) { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->where('product_variant_id', $value['product_variant_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } else { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } } } $current_Purchase->details()->delete(); $current_Purchase->update([ 'deleted_at' => Carbon::now(), ]); $Payment_purchase_data = PaymentPurchase::where('purchase_id', $id)->get(); foreach ($Payment_purchase_data as $Payment_purchase) { $account = Account::find($Payment_purchase->account_id); if ($account) { $account->update([ 'balance' => $account->balance + $Payment_purchase->montant, ]); } $Payment_purchase->delete(); } } }, 10); return response()->json(['success' => true, 'message' => 'Purchase Deleted !!']); } // -------------- Delete by selection ---------------\\ public function delete_by_selection(Request $request) { $this->authorizeForUser($request->user('api'), 'delete', Purchase::class); \DB::transaction(function () use ($request) { $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $selectedIds = $request->selectedIds; foreach ($selectedIds as $purchase_id) { if (PurchaseReturn::where('purchase_id', $purchase_id)->where('deleted_at', '=', null)->exists()) { return response()->json(['success' => false, 'Return exist for the Transaction' => false], 403); } else { $current_Purchase = Purchase::findOrFail($purchase_id); /** * Warehouses restriction * Allow if: * - user has access to all warehouses (is_all_warehouses = 1) * - OR sale warehouse_id is in user's assigned warehouses */ $user_auth = auth()->user(); if (! $user_auth->is_all_warehouses) { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id) ->pluck('warehouse_id') ->toArray(); if (empty($current_Purchase->warehouse_id) || ! in_array($current_Purchase->warehouse_id, $warehouses_id)) { return response()->json([ 'success' => false, 'message' => 'You are not allowed to access this sale (warehouse restriction).', ], 403); } } $old_purchase_details = PurchaseDetail::where('purchase_id', $purchase_id)->get(); // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === current_Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $current_Purchase); } foreach ($old_purchase_details as $key => $value) { // check if detail has purchase_unit_id Or Null if ($value['purchase_unit_id'] !== null) { $unit = Unit::where('id', $value['purchase_unit_id'])->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $value['product_id']) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($current_Purchase->statut == 'received') { if ($value['product_variant_id'] !== null) { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->where('product_variant_id', $value['product_variant_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } else { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $current_Purchase->warehouse_id) ->where('product_id', $value['product_id']) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte -= $value['quantity'] / $unit->operator_value; } else { $product_warehouse->qte -= $value['quantity'] * $unit->operator_value; } $product_warehouse->save(); } } } } $current_Purchase->details()->delete(); $current_Purchase->update([ 'deleted_at' => Carbon::now(), ]); $Payment_purchase_data = PaymentPurchase::where('purchase_id', $purchase_id)->get(); foreach ($Payment_purchase_data as $Payment_purchase) { $account = Account::find($Payment_purchase->account_id); if ($account) { $account->update([ 'balance' => $account->balance + $Payment_purchase->montant, ]); } $Payment_purchase->delete(); } } } }, 10); return response()->json(['success' => true, 'message' => 'Purchase Deleted !!']); } // ---------------- Get Details Purchase -----------------\\ public function show(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'view', Purchase::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $purchase = Purchase::with('details.product.unitPurchase') ->where('deleted_at', '=', null) ->findOrFail($id); $details = []; // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $purchase); } $purchase_data['Ref'] = $purchase->Ref; $purchase_data['date'] = $purchase->date.' '.$purchase->time; $purchase_data['statut'] = $purchase->statut; $purchase_data['note'] = $purchase->notes; $purchase_data['discount'] = $purchase->discount; $purchase_data['shipping'] = $purchase->shipping; $purchase_data['tax_rate'] = $purchase->tax_rate; $purchase_data['TaxNet'] = $purchase->TaxNet; $purchase_data['supplier_name'] = $purchase['provider']->name; $purchase_data['supplier_email'] = $purchase['provider']->email; $purchase_data['supplier_phone'] = $purchase['provider']->phone; $purchase_data['supplier_adr'] = $purchase['provider']->adresse; $purchase_data['supplier_tax'] = $purchase['provider']->tax_number; $purchase_data['warehouse'] = $purchase['warehouse']->name; $purchase_data['GrandTotal'] = number_format($purchase->GrandTotal, 2, '.', ''); $purchase_data['paid_amount'] = number_format($purchase->paid_amount, 2, '.', ''); $purchase_data['due'] = number_format($purchase_data['GrandTotal'] - $purchase_data['paid_amount'], 2, '.', ''); $purchase_data['payment_status'] = $purchase->payment_statut; if (PurchaseReturn::where('purchase_id', $id)->where('deleted_at', '=', null)->exists()) { $PurchaseReturn = PurchaseReturn::where('purchase_id', $id)->where('deleted_at', '=', null)->first(); $purchase_data['purchasereturn_id'] = $PurchaseReturn->id; $purchase_data['purchase_has_return'] = 'yes'; } else { $purchase_data['purchase_has_return'] = 'no'; } foreach ($purchase['details'] as $detail) { // -------check if detail has purchase_unit_id Or Null if ($detail->purchase_unit_id !== null) { $unit = Unit::where('id', $detail->purchase_unit_id)->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $detail->product_id) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($detail->product_variant_id) { $productsVariants = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id)->first(); $data['code'] = $productsVariants->code; $data['name'] = '['.$productsVariants->name.']'.$detail['product']['name']; } else { $data['code'] = $detail['product']['code']; $data['name'] = $detail['product']['name']; } $data['quantity'] = $detail->quantity; $data['total'] = $detail->total; $data['cost'] = $detail->cost; $data['unit_purchase'] = $unit->ShortName; if ($detail->discount_method == '2') { $data['DiscountNet'] = $detail->discount; } else { $data['DiscountNet'] = $detail->cost * $detail->discount / 100; } $tax_cost = $detail->TaxNet * (($detail->cost - $data['DiscountNet']) / 100); $data['Unit_cost'] = $detail->cost; $data['discount'] = $detail->discount; if ($detail->tax_method == '1') { $data['Net_cost'] = $detail->cost - $data['DiscountNet']; $data['taxe'] = $tax_cost; } else { $data['Net_cost'] = ($detail->cost - $data['DiscountNet'] - $tax_cost); $data['taxe'] = $detail->cost - $data['Net_cost'] - $data['DiscountNet']; } $data['is_imei'] = $detail['product']['is_imei']; $data['imei_number'] = $detail->imei_number; $details[] = $data; } $company = Setting::where('deleted_at', '=', null)->first(); return response()->json([ 'details' => $details, 'purchase' => $purchase_data, 'company' => $company, ]); } // --------------- Get Payments of Purchase ----------------\\ public function Get_Payments(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'view', PaymentPurchase::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $purchase = Purchase::findOrFail($id); // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $purchase); } $payments = PaymentPurchase::with('purchase', 'payment_method') ->where('purchase_id', $id) ->where(function ($query) use ($view_records) { if (! $view_records) { return $query->where('user_id', '=', Auth::user()->id); } })->orderBy('id', 'DESC')->get(); $due = $purchase->GrandTotal - $purchase->paid_amount; return response()->json(['payments' => $payments, 'due' => $due]); } // --------------- Check if Purchase Ref already exists ----------------\\ public function check_ref($ref) { $exists = Purchase::where('Ref', $ref)->where('deleted_at', null)->exists(); return response()->json(['exists' => $exists]); } // --------------- Reference Number of Purchase ----------------\\ public function getNumberOrder() { // Get prefix from settings, fallback to 'PR' if not set $setting = \App\Models\Setting::where('deleted_at', '=', null)->first(); $prefix = !empty($setting->purchase_prefix) ? $setting->purchase_prefix : 'PR'; // Get the last purchase with a reference that starts with the prefix $last = DB::table('purchases') ->where('Ref', 'like', $prefix.'_%') ->latest('id') ->first(); if ($last) { $item = $last->Ref; $nwMsg = explode('_', $item); // Ensure valid structure before processing if (isset($nwMsg[1]) && is_numeric($nwMsg[1])) { $inMsg = $nwMsg[1] + 1; $code = $nwMsg[0].'_'.str_pad($inMsg, 4, '0', STR_PAD_LEFT); } else { $code = $prefix.'_0001'; // Fallback if reference is corrupted } } else { $code = $prefix.'_0001'; } return $code; } // -------------- purchase PDF -----------\\ public function Purchase_pdf(Request $request, $id) { $details = []; $helpers = new helpers; $Purchase_data = Purchase::with('details.product.unitPurchase') ->where('deleted_at', '=', null) ->findOrFail($id); $purchase['supplier_name'] = $Purchase_data['provider']->name; $purchase['supplier_phone'] = $Purchase_data['provider']->phone; $purchase['supplier_adr'] = $Purchase_data['provider']->adresse; $purchase['supplier_email'] = $Purchase_data['provider']->email; $purchase['supplier_tax'] = $Purchase_data['provider']->tax_number; $purchase['TaxNet'] = number_format($Purchase_data->TaxNet, 2, '.', ''); $purchase['discount'] = number_format($Purchase_data->discount, 2, '.', ''); $purchase['shipping'] = number_format($Purchase_data->shipping, 2, '.', ''); $purchase['statut'] = $Purchase_data->statut; $purchase['Ref'] = $Purchase_data->Ref; $purchase['date'] = $Purchase_data->date.' '.$Purchase_data->time; $purchase['GrandTotal'] = number_format($Purchase_data->GrandTotal, 2, '.', ''); $purchase['paid_amount'] = number_format($Purchase_data->paid_amount, 2, '.', ''); $purchase['due'] = number_format($purchase['GrandTotal'] - $purchase['paid_amount'], 2, '.', ''); $purchase['payment_status'] = $Purchase_data->payment_statut; $detail_id = 0; foreach ($Purchase_data['details'] as $detail) { // -------check if detail has purchase_unit_id Or Null if ($detail->purchase_unit_id !== null) { $unit = Unit::where('id', $detail->purchase_unit_id)->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $detail->product_id) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($detail->product_variant_id) { $productsVariants = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id)->first(); $data['code'] = $productsVariants->code; $data['name'] = '['.$productsVariants->name.']'.$detail['product']['name']; } else { $data['code'] = $detail['product']['code']; $data['name'] = $detail['product']['name']; } $data['detail_id'] = $detail_id += 1; $data['quantity'] = number_format($detail->quantity, 2, '.', ''); $data['total'] = number_format($detail->total, 2, '.', ''); $data['unit_purchase'] = $unit->ShortName; $data['cost'] = number_format($detail->cost, 2, '.', ''); if ($detail->discount_method == '2') { $data['DiscountNet'] = number_format($detail->discount, 2, '.', ''); } else { $data['DiscountNet'] = number_format($detail->cost * $detail->discount / 100, 2, '.', ''); } $tax_cost = $detail->TaxNet * (($detail->cost - $data['DiscountNet']) / 100); $data['Unit_cost'] = number_format($detail->cost, 2, '.', ''); $data['discount'] = number_format($detail->discount, 2, '.', ''); if ($detail->tax_method == '1') { $data['Net_cost'] = $detail->cost - $data['DiscountNet']; $data['taxe'] = number_format($tax_cost, 2, '.', ''); } else { $data['Net_cost'] = ($detail->cost - $data['DiscountNet'] - $tax_cost); $data['taxe'] = number_format($detail->cost - $data['Net_cost'] - $data['DiscountNet'], 2, '.', ''); } $data['is_imei'] = $detail['product']['is_imei']; $data['imei_number'] = $detail->imei_number; $details[] = $data; } $settings = Setting::where('deleted_at', '=', null)->first(); $symbol = $helpers->Get_Currency_Code(); $Html = view('pdf.purchase_pdf', [ 'symbol' => $symbol, 'setting' => $settings, 'purchase' => $purchase, 'details' => $details, ])->render(); $arabic = new Arabic; $p = $arabic->arIdentify($Html); for ($i = count($p) - 1; $i >= 0; $i -= 2) { $utf8ar = $arabic->utf8Glyphs(substr($Html, $p[$i - 1], $p[$i] - $p[$i - 1])); $Html = substr_replace($Html, $utf8ar, $p[$i - 1], $p[$i] - $p[$i - 1]); } $pdf = PDF::loadHTML($Html); return $pdf->download('purchase.pdf'); } /** * Returns the purchase invoice HTML (rendered from pdf.purchase_pdf template) instead of a PDF. * Uses the same template (`pdf.purchase_pdf`) but returns raw HTML instead of a PDF. * This is used by the print functionality, which opens a popup, injects the HTML, and * calls window.print(). */ public function Purchase_PDF_Inline(Request $request, $id) { $details = []; $helpers = new helpers; $Purchase_data = Purchase::with('details.product.unitPurchase') ->where('deleted_at', '=', null) ->findOrFail($id); $purchase['supplier_name'] = $Purchase_data['provider']->name; $purchase['supplier_phone'] = $Purchase_data['provider']->phone; $purchase['supplier_adr'] = $Purchase_data['provider']->adresse; $purchase['supplier_email'] = $Purchase_data['provider']->email; $purchase['supplier_tax'] = $Purchase_data['provider']->tax_number; $purchase['TaxNet'] = number_format($Purchase_data->TaxNet, 2, '.', ''); $purchase['discount'] = number_format($Purchase_data->discount, 2, '.', ''); $purchase['shipping'] = number_format($Purchase_data->shipping, 2, '.', ''); $purchase['statut'] = $Purchase_data->statut; $purchase['Ref'] = $Purchase_data->Ref; $purchase['date'] = $Purchase_data->date.' '.$Purchase_data->time; $purchase['GrandTotal'] = number_format($Purchase_data->GrandTotal, 2, '.', ''); $purchase['paid_amount'] = number_format($Purchase_data->paid_amount, 2, '.', ''); $purchase['due'] = number_format($purchase['GrandTotal'] - $purchase['paid_amount'], 2, '.', ''); $purchase['payment_status'] = $Purchase_data->payment_statut; $detail_id = 0; foreach ($Purchase_data['details'] as $detail) { // -------check if detail has purchase_unit_id Or Null if ($detail->purchase_unit_id !== null) { $unit = Unit::where('id', $detail->purchase_unit_id)->first(); } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $detail->product_id) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); } if ($detail->product_variant_id) { $productsVariants = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id)->first(); $data['code'] = $productsVariants->code; $data['name'] = '['.$productsVariants->name.']'.$detail['product']['name']; } else { $data['code'] = $detail['product']['code']; $data['name'] = $detail['product']['name']; } $data['detail_id'] = $detail_id += 1; $data['quantity'] = number_format($detail->quantity, 2, '.', ''); $data['total'] = number_format($detail->total, 2, '.', ''); $data['unit_purchase'] = $unit ? $unit->ShortName : ''; $data['cost'] = number_format($detail->cost, 2, '.', ''); if ($detail->discount_method == '2') { $data['DiscountNet'] = number_format($detail->discount, 2, '.', ''); } else { $data['DiscountNet'] = number_format($detail->cost * $detail->discount / 100, 2, '.', ''); } $tax_cost = $detail->TaxNet * (($detail->cost - $data['DiscountNet']) / 100); $data['Unit_cost'] = number_format($detail->cost, 2, '.', ''); $data['discount'] = number_format($detail->discount, 2, '.', ''); if ($detail->tax_method == '1') { $data['Net_cost'] = $detail->cost - $data['DiscountNet']; $data['taxe'] = number_format($tax_cost, 2, '.', ''); } else { $data['Net_cost'] = ($detail->cost - $data['DiscountNet'] - $tax_cost); $data['taxe'] = number_format($detail->cost - $data['Net_cost'] - $data['DiscountNet'], 2, '.', ''); } $data['is_imei'] = $detail['product']['is_imei']; $data['imei_number'] = $detail->imei_number; $details[] = $data; } $settings = Setting::where('deleted_at', '=', null)->first(); $symbol = $helpers->Get_Currency_Code(); $Html = view('pdf.purchase_pdf', [ 'symbol' => $symbol, 'setting' => $settings, 'purchase' => $purchase, 'details' => $details, ])->render(); $arabic = new Arabic; $p = $arabic->arIdentify($Html); for ($i = count($p) - 1; $i >= 0; $i -= 2) { $utf8ar = $arabic->utf8Glyphs(substr($Html, $p[$i - 1], $p[$i] - $p[$i - 1])); $Html = substr_replace($Html, $utf8ar, $p[$i - 1], $p[$i] - $p[$i - 1]); } // When rendering as HTML in the browser, filesystem paths like public_path('images/...') // do not work as . Convert any ".../public/images/" path (Windows or Unix) // into a proper web URL so logos/images display. try { $webImagesPath = rtrim(url('images'), '/').'/'; $Html = preg_replace_callback( '~(?:[A-Za-z]:)?[\/\\\\][^"\']*?[\/\\\\]public[\/\\\\]images[\/\\\\]([^"\'>]+)~', function ($m) use ($webImagesPath) { $file = ltrim($m[1], '/\\'); return $webImagesPath.$file; }, $Html ); } catch (\Throwable $e) { // If anything goes wrong, fall back to the original HTML. } // Return raw HTML so the print popup can inject it and call window.print(). return response($Html); } // ---------------- Show Form Create Purchase ---------------\\ public function create(Request $request) { $this->authorizeForUser($request->user('api'), 'create', Purchase::class); // get warehouses assigned to user $user_auth = auth()->user(); if ($user_auth->is_all_warehouses) { $warehouses = Warehouse::where('deleted_at', '=', null)->get(['id', 'name']); } else { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id)->pluck('warehouse_id')->toArray(); $warehouses = Warehouse::where('deleted_at', '=', null)->whereIn('id', $warehouses_id)->get(['id', 'name']); } $suppliers = Provider::where('deleted_at', '=', null)->get(['id', 'name']); return response()->json([ 'warehouses' => $warehouses, 'suppliers' => $suppliers, ]); } // -------------Show Form Edit Purchase-----------\\ public function edit(Request $request, $id) { if (PurchaseReturn::where('purchase_id', $id)->where('deleted_at', '=', null)->exists()) { return response()->json(['success' => false, 'Return exist for the Transaction' => false], 403); } else { $this->authorizeForUser($request->user('api'), 'update', Purchase::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $Purchase_data = Purchase::with('details.product.unitPurchase') ->where('deleted_at', '=', null) ->findOrFail($id); /** * Warehouses restriction * Allow if: * - user has access to all warehouses (is_all_warehouses = 1) * - OR sale warehouse_id is in user's assigned warehouses */ $user_auth = auth()->user(); if (! $user_auth->is_all_warehouses) { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id) ->pluck('warehouse_id') ->toArray(); if (empty($Purchase_data->warehouse_id) || ! in_array($Purchase_data->warehouse_id, $warehouses_id)) { return response()->json([ 'success' => false, 'message' => 'You are not allowed to access this sale (warehouse restriction).', ], 403); } } $details = []; // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $Purchase_data); } if ($Purchase_data->provider_id) { if (Provider::where('id', $Purchase_data->provider_id)->where('deleted_at', '=', null)->first()) { $purchase['supplier_id'] = $Purchase_data->provider_id; } else { $purchase['supplier_id'] = ''; } } else { $purchase['supplier_id'] = ''; } if ($Purchase_data->warehouse_id) { if (Warehouse::where('id', $Purchase_data->warehouse_id)->where('deleted_at', '=', null)->first()) { $purchase['warehouse_id'] = $Purchase_data->warehouse_id; } else { $purchase['warehouse_id'] = ''; } } else { $purchase['warehouse_id'] = ''; } $purchase['Ref'] = $Purchase_data->Ref; $purchase['date'] = $Purchase_data->date; $purchase['tax_rate'] = $Purchase_data->tax_rate; $purchase['TaxNet'] = $Purchase_data->TaxNet; $purchase['discount'] = $Purchase_data->discount; $purchase['shipping'] = $Purchase_data->shipping; $purchase['statut'] = $Purchase_data->statut; $purchase['notes'] = $Purchase_data->notes; $detail_id = 0; foreach ($Purchase_data['details'] as $detail) { // -------check if detail has purchase_unit_id Or Null if ($detail->purchase_unit_id !== null) { $unit = Unit::where('id', $detail->purchase_unit_id)->first(); $data['no_unit'] = 1; } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $detail->product_id) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); $data['no_unit'] = 0; } if ($detail->product_variant_id) { $item_product = product_warehouse::where('product_id', $detail->product_id) ->where('deleted_at', '=', null) ->where('product_variant_id', $detail->product_variant_id) ->where('warehouse_id', $Purchase_data->warehouse_id) ->first(); $productsVariants = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id)->first(); $item_product ? $data['del'] = 0 : $data['del'] = 1; $data['code'] = $productsVariants->code; $data['name'] = '['.$productsVariants->name.']'.$detail['product']['name']; $data['product_variant_id'] = $detail->product_variant_id; if ($unit && $unit->operator == '/') { $data['stock'] = $item_product ? $item_product->qte * $unit->operator_value : 0; } elseif ($unit && $unit->operator == '*') { $data['stock'] = $item_product ? $item_product->qte / $unit->operator_value : 0; } else { $data['stock'] = 0; } } else { $item_product = product_warehouse::where('product_id', $detail->product_id) ->where('deleted_at', '=', null)->where('product_variant_id', '=', null) ->where('warehouse_id', $Purchase_data->warehouse_id)->first(); $item_product ? $data['del'] = 0 : $data['del'] = 1; $data['product_variant_id'] = null; $data['code'] = $detail['product']['code']; $data['name'] = $detail['product']['name']; if ($unit && $unit->operator == '/') { $data['stock'] = $item_product ? $item_product->qte * $unit->operator_value : 0; } elseif ($unit && $unit->operator == '*') { $data['stock'] = $item_product ? $item_product->qte / $unit->operator_value : 0; } else { $data['stock'] = 0; } } $data['id'] = $detail->id; $data['detail_id'] = $detail_id += 1; $data['quantity'] = $detail->quantity; $data['product_id'] = $detail->product_id; $data['unitPurchase'] = $unit->ShortName; $data['purchase_unit_id'] = $unit->id; $data['is_imei'] = $detail['product']['is_imei']; $data['imei_number'] = $detail->imei_number; if ($detail->discount_method == '2') { $data['DiscountNet'] = $detail->discount; } else { $data['DiscountNet'] = $detail->cost * $detail->discount / 100; } $tax_cost = $detail->TaxNet * (($detail->cost - $data['DiscountNet']) / 100); $data['Unit_cost'] = $detail->cost; $data['tax_percent'] = $detail->TaxNet; $data['tax_method'] = $detail->tax_method; $data['discount'] = $detail->discount; $data['discount_Method'] = $detail->discount_method; if ($detail->tax_method == '1') { $data['Net_cost'] = $detail->cost - $data['DiscountNet']; $data['taxe'] = $tax_cost; $data['subtotal'] = ($data['Net_cost'] * $data['quantity']) + ($tax_cost * $data['quantity']); } else { $data['Net_cost'] = ($detail->cost - $data['DiscountNet'] - $tax_cost); $data['taxe'] = $detail->cost - $data['Net_cost'] - $data['DiscountNet']; $data['subtotal'] = ($data['Net_cost'] * $data['quantity']) + ($tax_cost * $data['quantity']); } $details[] = $data; } // get warehouses assigned to user $user_auth = auth()->user(); if ($user_auth->is_all_warehouses) { $warehouses = Warehouse::where('deleted_at', '=', null)->get(['id', 'name']); } else { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id)->pluck('warehouse_id')->toArray(); $warehouses = Warehouse::where('deleted_at', '=', null)->whereIn('id', $warehouses_id)->get(['id', 'name']); } $suppliers = Provider::where('deleted_at', '=', null)->get(['id', 'name']); return response()->json([ 'details' => $details, 'purchase' => $purchase, 'suppliers' => $suppliers, 'warehouses' => $warehouses, ]); } } // ------------------- get_Products_by_purchase -----------------\\ public function get_Products_by_purchase(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'create', PurchaseReturn::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $Purchase_data = Purchase::with('details.product.unitPurchase') ->where('deleted_at', '=', null) ->findOrFail($id); $details = []; // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $Purchase_data); } $Return_detail['supplier_id'] = $Purchase_data->provider_id; $Return_detail['warehouse_id'] = $Purchase_data->warehouse_id; $Return_detail['purchase_id'] = $Purchase_data->id; $Return_detail['tax_rate'] = 0; $Return_detail['TaxNet'] = 0; $Return_detail['discount'] = 0; $Return_detail['shipping'] = 0; $Return_detail['statut'] = 'completed'; $Return_detail['notes'] = ''; $detail_id = 0; foreach ($Purchase_data['details'] as $detail) { // -------check if detail has purchase_unit_id Or Null if ($detail->purchase_unit_id !== null) { $unit = Unit::where('id', $detail->purchase_unit_id)->first(); $data['no_unit'] = 1; } else { $product_unit_purchase_id = Product::with('unitPurchase') ->where('id', $detail->product_id) ->first(); $unit = Unit::where('id', $product_unit_purchase_id['unitPurchase']->id)->first(); $data['no_unit'] = 0; } if ($detail->product_variant_id) { $item_product = product_warehouse::where('product_id', $detail->product_id) ->where('deleted_at', '=', null) ->where('product_variant_id', $detail->product_variant_id) ->where('warehouse_id', $Purchase_data->warehouse_id) ->first(); $productsVariants = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id)->first(); $item_product ? $data['del'] = 0 : $data['del'] = 1; $data['name'] = '['.$productsVariants->name.']'.$detail['product']['name']; $data['code'] = $productsVariants->code; $data['product_variant_id'] = $detail->product_variant_id; if ($unit && $unit->operator == '/') { $data['stock'] = $item_product ? $item_product->qte * $unit->operator_value : 0; } elseif ($unit && $unit->operator == '*') { $data['stock'] = $item_product ? $item_product->qte / $unit->operator_value : 0; } else { $data['stock'] = 0; } } else { $item_product = product_warehouse::where('product_id', $detail->product_id) ->where('deleted_at', '=', null)->where('product_variant_id', '=', null) ->where('warehouse_id', $Purchase_data->warehouse_id)->first(); $item_product ? $data['del'] = 0 : $data['del'] = 1; $data['product_variant_id'] = null; $data['code'] = $detail['product']['code']; $data['name'] = $detail['product']['name']; if ($unit && $unit->operator == '/') { $data['stock'] = $item_product ? $item_product->qte * $unit->operator_value : 0; } elseif ($unit && $unit->operator == '*') { $data['stock'] = $item_product ? $item_product->qte / $unit->operator_value : 0; } else { $data['stock'] = 0; } } $data['id'] = $detail->id; $data['detail_id'] = $detail_id += 1; $data['quantity'] = $detail->quantity; $data['purchase_quantity'] = $detail->quantity; $data['product_id'] = $detail->product_id; $data['unitPurchase'] = $unit->ShortName; $data['purchase_unit_id'] = $unit->id; $data['is_imei'] = $detail['product']['is_imei']; $data['imei_number'] = $detail->imei_number; if ($detail->discount_method == '2') { $data['DiscountNet'] = $detail->discount; } else { $data['DiscountNet'] = $detail->cost * $detail->discount / 100; } $tax_cost = $detail->TaxNet * (($detail->cost - $data['DiscountNet']) / 100); $data['Unit_cost'] = $detail->cost; $data['tax_percent'] = $detail->TaxNet; $data['tax_method'] = $detail->tax_method; $data['discount'] = $detail->discount; $data['discount_Method'] = $detail->discount_method; if ($detail->tax_method == '1') { $data['Net_cost'] = $detail->cost - $data['DiscountNet']; $data['taxe'] = $tax_cost; $data['subtotal'] = ($data['Net_cost'] * $data['quantity']) + ($tax_cost * $data['quantity']); } else { $data['Net_cost'] = ($detail->cost - $data['DiscountNet'] - $tax_cost); $data['taxe'] = $detail->cost - $data['Net_cost'] - $data['DiscountNet']; $data['subtotal'] = ($data['Net_cost'] * $data['quantity']) + ($tax_cost * $data['quantity']); } $details[] = $data; } return response()->json([ 'details' => $details, 'purchase_return' => $Return_detail, ]); } // ------------------- Get barcode products for a Purchase -----------------\\ public function get_barcode_products(Request $request, $id) { $this->authorizeForUser($request->user('api'), 'view', Purchase::class); $user = Auth::user(); // New way: Check user's record_view field (user-level boolean) // Backward compatibility: If record_view is null, fall back to role permission check $view_records = $user->hasRecordView(); $purchase = Purchase::with('details.product') ->where('deleted_at', '=', null) ->findOrFail($id); // Check If User Has Permission view All Records if (! $view_records) { // Check If User->id === Purchase->id $this->authorizeForUser($request->user('api'), 'check_record', $purchase); } $products = []; foreach ($purchase->details as $detail) { $product = $detail->product; if (! $product) { continue; } $item = []; $barcodeValue = null; $product_price = $product->price; if ($detail->product_variant_id) { $variant = ProductVariant::where('product_id', $detail->product_id) ->where('id', $detail->product_variant_id) ->first(); if ($variant) { $item['code'] = $variant->code; $item['name'] = '['.$variant->name.']'.$product->name; $barcodeValue = $variant->code; $product_price = $variant->price ?? $product->price; } else { $item['code'] = $product->code; $item['name'] = $product->name; $barcodeValue = $product->code; } } else { $item['code'] = $product->code; $item['name'] = $product->name; $barcodeValue = $product->code; } // Apply discount $price_discounted = $product_price; if ($product->discount != 0.0) { if ($product->discount_method == '1') { $discount = $product_price * $product->discount / 100; } else { $discount = $product->discount; } $price_discounted = $product_price - $discount; } // Apply tax if ($product->TaxNet != 0.0) { if ($product->tax_method == '1') { $tax_price = $price_discounted * $product->TaxNet / 100; $net_price = $price_discounted + $tax_price; } else { $net_price = $price_discounted; } } else { $net_price = $price_discounted; } $item['barcode'] = $barcodeValue; $item['Type_barcode'] = $product->Type_barcode ?: 'CODE128'; $item['Net_price'] = number_format($net_price, 2, '.', ''); $item['qte'] = $detail->quantity; $products[] = $item; } return response()->json([ 'warehouse_id' => $purchase->warehouse_id, 'products' => $products, ]); } // ------------- Send Email -----------\\ public function Send_Email(Request $request) { $this->authorizeForUser($request->user('api'), 'view', Purchase::class); // purchase $purchase = Purchase::with('provider')->where('deleted_at', '=', null)->findOrFail($request->id); $helpers = new helpers; $currency = $helpers->Get_Currency(); // settings $settings = Setting::where('deleted_at', '=', null)->first(); // the custom msg of sale $emailMessage = EmailMessage::getForLocale('purchase'); if ($emailMessage) { $message_body = $emailMessage->body; $message_subject = $emailMessage->subject; } else { $message_body = ''; $message_subject = ''; } // Tags $random_number = Str::random(10); $invoice_url = url('/api/purchase_pdf/'.$request->id.'?'.$random_number); $invoice_number = $purchase->Ref; $total_amount = $currency.' '.number_format($purchase->GrandTotal, 2, '.', ','); $paid_amount = $currency.' '.number_format($purchase->paid_amount, 2, '.', ','); $due_amount = $currency.' '.number_format($purchase->GrandTotal - $purchase->paid_amount, 2, '.', ','); $contact_name = $purchase['provider']->name; $business_name = $settings->CompanyName; // receiver email $receiver_email = $purchase['provider']->email; // replace the text with tags $message_body = str_replace('{contact_name}', $contact_name, $message_body); $message_body = str_replace('{business_name}', $business_name, $message_body); $message_body = str_replace('{invoice_url}', $invoice_url, $message_body); $message_body = str_replace('{invoice_number}', $invoice_number, $message_body); $message_body = str_replace('{total_amount}', $total_amount, $message_body); $message_body = str_replace('{paid_amount}', $paid_amount, $message_body); $message_body = str_replace('{due_amount}', $due_amount, $message_body); $email['subject'] = $message_subject; $email['body'] = $message_body; $email['company_name'] = $business_name; $this->Set_config_mail(); Mail::to($receiver_email)->send(new CustomEmail($email)); return response()->json(['message' => 'Email sent successfully'], 200); // return $mail; } // -------------------Sms Notifications -----------------\\ public function Send_SMS(Request $request) { $this->authorizeForUser($request->user('api'), 'view', Purchase::class); // purchase $purchase = Purchase::with('provider')->where('deleted_at', '=', null)->findOrFail($request->id); $helpers = new helpers; $currency = $helpers->Get_Currency(); // settings $settings = Setting::where('deleted_at', '=', null)->first(); $default_sms_gateway = sms_gateway::where('id', $settings->sms_gateway) ->where('deleted_at', '=', null)->first(); // the custom msg of purchase $smsMessage = SMSMessage::getForLocale('purchase'); if ($smsMessage) { $message_text = $smsMessage->text; } else { $message_text = ''; } // Tags $random_number = Str::random(10); $invoice_url = url('/api/purchase_pdf/'.$request->id.'?'.$random_number); $invoice_number = $purchase->Ref; $total_amount = $currency.' '.number_format($purchase->GrandTotal, 2, '.', ','); $paid_amount = $currency.' '.number_format($purchase->paid_amount, 2, '.', ','); $due_amount = $currency.' '.number_format($purchase->GrandTotal - $purchase->paid_amount, 2, '.', ','); $contact_name = $purchase['provider']->name; $business_name = $settings->CompanyName; // receiver Number $receiverNumber = $purchase['provider']->phone; // replace the text with tags $message_text = str_replace('{contact_name}', $contact_name, $message_text); $message_text = str_replace('{business_name}', $business_name, $message_text); $message_text = str_replace('{invoice_url}', $invoice_url, $message_text); $message_text = str_replace('{invoice_number}', $invoice_number, $message_text); $message_text = str_replace('{total_amount}', $total_amount, $message_text); $message_text = str_replace('{paid_amount}', $paid_amount, $message_text); $message_text = str_replace('{due_amount}', $due_amount, $message_text); // twilio if ($default_sms_gateway->title == 'twilio') { try { $account_sid = env('TWILIO_SID'); $auth_token = env('TWILIO_TOKEN'); $twilio_number = env('TWILIO_FROM'); $client = new Client_Twilio($account_sid, $auth_token); $client->messages->create($receiverNumber, [ 'from' => $twilio_number, 'body' => $message_text]); } catch (Exception $e) { return response()->json(['message' => $e->getMessage()], 500); } } // termii elseif ($default_sms_gateway->title == 'termii') { $client = new Client_termi; $url = 'https://api.ng.termii.com/api/sms/send'; $payload = [ 'to' => $receiverNumber, 'from' => env('TERMI_SENDER'), 'sms' => $message_text, 'type' => 'plain', 'channel' => 'generic', 'api_key' => env('TERMI_KEY'), ]; try { $response = $client->post($url, [ 'json' => $payload, ]); $result = json_decode($response->getBody(), true); return response()->json($result); } catch (\Exception $e) { Log::error('Termii SMS Error: '.$e->getMessage()); return response()->json(['status' => 'error', 'message' => 'Failed to send SMS'], 500); } } // ---- infobip elseif ($default_sms_gateway->title == 'infobip') { $BASE_URL = env('base_url'); $API_KEY = env('api_key'); $SENDER = env('sender_from'); $configuration = (new Configuration) ->setHost($BASE_URL) ->setApiKeyPrefix('Authorization', 'App') ->setApiKey('Authorization', $API_KEY); $client = new Client_guzzle; $sendSmsApi = new SendSMSApi($client, $configuration); $destination = (new SmsDestination)->setTo($receiverNumber); $message = (new SmsTextualMessage) ->setFrom($SENDER) ->setText($message_text) ->setDestinations([$destination]); $request = (new SmsAdvancedTextualRequest)->setMessages([$message]); try { $smsResponse = $sendSmsApi->sendSmsMessage($request); echo 'Response body: '.$smsResponse; } catch (Throwable $apiException) { echo 'HTTP Code: '.$apiException->getCode()."\n"; } } return response()->json(['success' => true]); } // purchase_send_whatsapp public function purchase_send_whatsapp(Request $request) { // purchase $purchase = Purchase::with('provider')->where('deleted_at', '=', null)->findOrFail($request->id); $helpers = new helpers; $currency = $helpers->Get_Currency(); // settings $settings = Setting::where('deleted_at', '=', null)->first(); // the custom msg of purchase $smsMessage = SMSMessage::getForLocale('purchase'); if ($smsMessage) { $message_text = $smsMessage->text; } else { $message_text = ''; } // Tags $random_number = Str::random(10); $invoice_url = url('/api/purchase_pdf/'.$request->id.'?'.$random_number); $invoice_number = $purchase->Ref; $total_amount = $currency.' '.number_format($purchase->GrandTotal, 2, '.', ','); $paid_amount = $currency.' '.number_format($purchase->paid_amount, 2, '.', ','); $due_amount = $currency.' '.number_format($purchase->GrandTotal - $purchase->paid_amount, 2, '.', ','); $contact_name = $purchase['provider']->name; $business_name = $settings->CompanyName; // receiver Number $receiverNumber = $purchase['provider']->phone; // Check if the phone number is empty or null if (empty($receiverNumber) || $receiverNumber == null || $receiverNumber == 'null' || $receiverNumber == '') { return response()->json(['error' => 'Phone number is missing'], 400); } // replace the text with tags $message_text = str_replace('{contact_name}', $contact_name, $message_text); $message_text = str_replace('{business_name}', $business_name, $message_text); $message_text = str_replace('{invoice_url}', $invoice_url, $message_text); $message_text = str_replace('{invoice_number}', $invoice_number, $message_text); $message_text = str_replace('{total_amount}', $total_amount, $message_text); $message_text = str_replace('{paid_amount}', $paid_amount, $message_text); $message_text = str_replace('{due_amount}', $due_amount, $message_text); return response()->json(['message' => $message_text, 'phone' => $receiverNumber]); } // ---------------- get_import_purchases ---------------\\ public function get_import_purchases(Request $request) { $this->authorizeForUser($request->user('api'), 'create', Purchase::class); // get warehouses assigned to user $user_auth = auth()->user(); if ($user_auth->is_all_warehouses) { $warehouses = Warehouse::where('deleted_at', '=', null)->get(['id', 'name']); } else { $warehouses_id = UserWarehouse::where('user_id', $user_auth->id)->pluck('warehouse_id')->toArray(); $warehouses = Warehouse::where('deleted_at', '=', null)->whereIn('id', $warehouses_id)->get(['id', 'name']); } $suppliers = Provider::where('deleted_at', '=', null)->get(['id', 'name']); return response()->json([ 'warehouses' => $warehouses, 'suppliers' => $suppliers, ]); } // ------ store_import_purchases -------------\\ public function store_import_purchases(Request $request) { $this->authorizeForUser($request->user('api'), 'create', Purchase::class); $data = $this->request_products_csv($request); request()->validate([ 'supplier_id' => 'required', 'warehouse_id' => 'required', 'Ref' => 'nullable|unique:purchases,Ref', ]); \DB::transaction(function () use ($request, $data) { $order = new Purchase; $order->date = $request->date; $order->time = now()->toTimeString(); $order->Ref = !empty($request->Ref) ? $request->Ref : $this->getNumberOrder(); $order->provider_id = $request->supplier_id; $order->GrandTotal = 0; $order->warehouse_id = $request->warehouse_id; $order->tax_rate = $request->tax_rate; $order->TaxNet = 0; $order->discount = $request->discount; $order->shipping = $request->shipping; $order->statut = $request->statut; $order->payment_statut = 'unpaid'; $order->notes = $request->notes; $order->user_id = Auth::user()->id; $order->save(); $total = 0; foreach ($data as $key => $value) { $product = Product::where('deleted_at', '=', null)->where('code', $value['productcode'])->first(); $unit = Unit::where('id', $product->unit_purchase_id)->first(); $total += $value['qty'] * $product->cost; $orderDetails[] = [ 'purchase_id' => $order->id, 'quantity' => $value['qty'], 'cost' => $product->cost, 'purchase_unit_id' => $product->unit_purchase_id, 'TaxNet' => 0, 'tax_method' => 1, 'discount' => 0, 'discount_method' => 2, 'product_id' => $product->id, 'product_variant_id' => null, 'total' => $value['qty'] * $product->cost, 'imei_number' => null, ]; if ($order->statut == 'received') { $product_warehouse = product_warehouse::where('deleted_at', '=', null) ->where('warehouse_id', $order->warehouse_id) ->where('product_id', $product->id) ->first(); if ($unit && $product_warehouse) { if ($unit->operator == '/') { $product_warehouse->qte += $value['qty'] / $unit->operator_value; } else { $product_warehouse->qte += $value['qty'] * $unit->operator_value; } $product_warehouse->save(); } } } PurchaseDetail::insert($orderDetails); // Calculte Grand_Total $purchase_data = Purchase::where('id', $order->id)->first(); $total_without_discount = $total - $purchase_data->discount; $TaxNet = ($total_without_discount * $purchase_data->tax_rate) / 100; $purchase_data->TaxNet = $TaxNet; $purchase_data->GrandTotal = $total_without_discount + $TaxNet + $purchase_data->shipping; $purchase_data->save(); }, 10); return response()->json(['success' => true, 'message' => 'Purchase Created !!']); } // import Products public function request_products_csv(Request $request) { ini_set('max_execution_time', 2000); $file = $request->file('products'); $ext = pathinfo($file->getClientOriginalName(), PATHINFO_EXTENSION); if ($ext != 'csv') { return response()->json([ 'msg' => 'must be in csv format', 'status' => false, ]); } else { // Read the CSV file $data = []; $rowcount = 0; if (($handle = fopen($file->getPathname(), 'r')) !== false) { $max_line_length = defined('MAX_LINE_LENGTH') ? MAX_LINE_LENGTH : 10000; $header = fgetcsv($handle, $max_line_length, ';'); // Use semicolon as the delimiter // Process the header row $escapedHeader = []; foreach ($header as $key => $value) { $lheader = strtolower($value); $escapedItem = preg_replace('/[^a-z]/', '', $lheader); $escapedHeader[] = $escapedItem; } $header_colcount = count($header); while (($row = fgetcsv($handle, $max_line_length, ';')) !== false) { // Use semicolon as the delimiter $row_colcount = count($row); if ($row_colcount == $header_colcount) { $entry = array_combine($escapedHeader, $row); $data[] = $entry; } else { return null; } $rowcount++; } fclose($handle); } else { return null; } // Clean the data $cleanedData = []; foreach ($data as $row) { $cleanedRow = []; foreach ($row as $key => $value) { $cleanedKey = trim($key); $cleanedRow[$cleanedKey] = $value; } $cleanedData[] = $cleanedRow; } // Check for duplicate productcode in CSV $productCodes = array_column($cleanedData, 'productcode'); if (count($productCodes) !== count(array_unique($productCodes))) { return response()->json([ 'msg' => 'Duplicate product code found in CSV file', 'status' => false, ]); } // Validate productcode existence in the database $missingProductCodes = []; foreach ($productCodes as $code) { if (! Product::where('code', $code)->exists()) { $missingProductCodes[] = $code; } } if (! empty($missingProductCodes)) { return response()->json([ 'msg' => 'The following product codes do not exist in the database: '.implode(', ', $missingProductCodes), 'status' => false, ]); } // Define validation rules $rules = []; foreach ($cleanedData as $index => $row) { $rules[$index.'.productcode'] = 'required'; $rules[$index.'.qty'] = 'required|numeric'; } // Validate the data $validator = validator()->make($cleanedData, $rules); if ($validator->fails()) { return response()->json([ 'msg' => 'Validation failed', 'errors' => $validator->errors(), 'status' => false, ]); } // Return the cleaned data return $cleanedData; } } // ------------- Get Purchase Documents ----------\\ public function getDocuments($purchaseId) { $this->authorizeForUser(request()->user('api'), 'view', Purchase::class); $purchase = Purchase::findOrFail($purchaseId); $documents = DB::table('purchase_documents') ->where('purchase_id', $purchaseId) ->where('deleted_at', null) ->orderBy('created_at', 'desc') ->get(); return response()->json([ 'documents' => $documents, 'status' => true ]); } // ------------- Upload Purchase Documents ----------\\ public function uploadDocuments(Request $request, $purchaseId) { $this->authorizeForUser($request->user('api'), 'update', Purchase::class); $purchase = Purchase::findOrFail($purchaseId); $request->validate([ 'documents.*' => 'required|file|max:10240', // Max 10MB per file ]); $uploadedDocuments = []; if ($request->hasFile('documents')) { // Create directory if it doesn't exist $uploadPath = public_path('images/purchase_documents'); if (!file_exists($uploadPath)) { mkdir($uploadPath, 0755, true); } foreach ($request->file('documents') as $file) { // Capture metadata BEFORE moving the file (tmp file is still readable) $originalName = $file->getClientOriginalName(); $size = $file->getSize(); $mimeType = $file->getMimeType(); $filename = time() . '_' . Str::random(10) . '_' . $originalName; // Move file to public/images/purchase_documents $file->move($uploadPath, $filename); $relativePath = 'images/purchase_documents/' . $filename; $documentId = DB::table('purchase_documents')->insertGetId([ 'purchase_id' => $purchaseId, 'name' => $originalName, 'path' => $relativePath, 'size' => $size, 'mime_type' => $mimeType, 'created_at' => Carbon::now(), 'updated_at' => Carbon::now(), ]); $uploadedDocuments[] = $documentId; } } return response()->json([ 'message' => 'Documents uploaded successfully', 'documents' => $uploadedDocuments, 'status' => true ]); } // ------------- Download Purchase Document ----------\\ public function downloadDocument($documentId) { $this->authorizeForUser(request()->user('api'), 'view', Purchase::class); $document = DB::table('purchase_documents') ->where('id', $documentId) ->where('deleted_at', null) ->first(); if (!$document) { return response()->json([ 'message' => 'Document not found in database', 'status' => false ], 404); } $filePath = public_path($document->path); if (!file_exists($filePath)) { return response()->json([ 'message' => 'Physical file not found on server', 'status' => false, 'path' => $document->path ], 404); } return response()->download($filePath, $document->name); } // ------------- Delete Purchase Document ----------\\ public function deleteDocument($documentId) { $this->authorizeForUser(request()->user('api'), 'delete', Purchase::class); $document = DB::table('purchase_documents') ->where('id', $documentId) ->where('deleted_at', null) ->first(); if (!$document) { return response()->json([ 'message' => 'Document not found', 'status' => false ], 404); } // Soft delete DB::table('purchase_documents') ->where('id', $documentId) ->update(['deleted_at' => Carbon::now()]); // Optionally delete the physical file $filePath = public_path($document->path); if (file_exists($filePath)) { unlink($filePath); } return response()->json([ 'message' => 'Document deleted successfully', 'status' => true ]); } }