feat: dist/ pridan do repa pro server deploy
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
110
dist/api/admin/invoices.php
vendored
Normal file
110
dist/api/admin/invoices.php
vendored
Normal file
@@ -0,0 +1,110 @@
|
||||
<?php
|
||||
|
||||
/**
|
||||
* BOHA Automation - Invoices CRUD API
|
||||
*
|
||||
* GET /api/admin/invoices.php - Seznam faktur
|
||||
* GET /api/admin/invoices.php?action=detail&id=X - Detail faktury
|
||||
* GET /api/admin/invoices.php?action=next_number - Dalsi cislo faktury
|
||||
* GET /api/admin/invoices.php?action=order_data&id=X - Data objednavky pro pre-fill
|
||||
* GET /api/admin/invoices.php?action=stats - KPI statistiky (month, year)
|
||||
* POST /api/admin/invoices.php - Vytvoreni faktury
|
||||
* PUT /api/admin/invoices.php?id=X - Uprava faktury / zmena stavu
|
||||
* DELETE /api/admin/invoices.php?id=X - Smazani faktury
|
||||
*/
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
require_once dirname(__DIR__) . '/config.php';
|
||||
require_once dirname(__DIR__) . '/includes/JWTAuth.php';
|
||||
require_once dirname(__DIR__) . '/includes/AuditLog.php';
|
||||
require_once dirname(__DIR__) . '/includes/CnbRates.php';
|
||||
require_once dirname(__DIR__) . '/includes/PaginationHelper.php';
|
||||
require_once __DIR__ . '/handlers/invoices-handlers.php';
|
||||
|
||||
setCorsHeaders();
|
||||
setSecurityHeaders();
|
||||
setNoCacheHeaders();
|
||||
header('Content-Type: application/json; charset=utf-8');
|
||||
|
||||
$authData = JWTAuth::requireAuth();
|
||||
AuditLog::setUser($authData['user_id'], $authData['user']['username'] ?? 'unknown');
|
||||
|
||||
$method = $_SERVER['REQUEST_METHOD'];
|
||||
$action = $_GET['action'] ?? '';
|
||||
$id = isset($_GET['id']) ? (int) $_GET['id'] : null;
|
||||
|
||||
try {
|
||||
$pdo = db();
|
||||
|
||||
// Overdue detekce - jednou pred dispatchem (misto v kazdem handleru)
|
||||
if ($method === 'GET') {
|
||||
$pdo->exec("UPDATE invoices SET status = 'overdue' WHERE status = 'issued' AND due_date < CURDATE()");
|
||||
}
|
||||
|
||||
switch ($method) {
|
||||
case 'GET':
|
||||
requirePermission($authData, 'invoices.view');
|
||||
switch ($action) {
|
||||
case 'detail':
|
||||
if (!$id) {
|
||||
errorResponse('ID faktury je povinné');
|
||||
}
|
||||
handleGetDetail($pdo, $id);
|
||||
break;
|
||||
case 'next_number':
|
||||
requirePermission($authData, 'invoices.create');
|
||||
handleGetNextNumber($pdo);
|
||||
break;
|
||||
case 'order_data':
|
||||
requirePermission($authData, 'invoices.create');
|
||||
if (!$id) {
|
||||
errorResponse('ID objednávky je povinné');
|
||||
}
|
||||
handleGetOrderData($pdo, $id);
|
||||
break;
|
||||
case 'stats':
|
||||
requirePermission($authData, 'invoices.view');
|
||||
handleGetStats($pdo);
|
||||
break;
|
||||
default:
|
||||
handleGetList($pdo);
|
||||
}
|
||||
break;
|
||||
|
||||
case 'POST':
|
||||
requirePermission($authData, 'invoices.create');
|
||||
handleCreateInvoice($pdo, $authData);
|
||||
break;
|
||||
|
||||
case 'PUT':
|
||||
requirePermission($authData, 'invoices.edit');
|
||||
if (!$id) {
|
||||
errorResponse('ID faktury je povinné');
|
||||
}
|
||||
handleUpdateInvoice($pdo, $id);
|
||||
break;
|
||||
|
||||
case 'DELETE':
|
||||
requirePermission($authData, 'invoices.delete');
|
||||
if (!$id) {
|
||||
errorResponse('ID faktury je povinné');
|
||||
}
|
||||
handleDeleteInvoice($pdo, $id);
|
||||
break;
|
||||
|
||||
default:
|
||||
errorResponse('Metoda není povolena', 405);
|
||||
}
|
||||
} catch (PDOException $e) {
|
||||
error_log('Invoices API error: ' . $e->getMessage());
|
||||
if (DEBUG_MODE) {
|
||||
errorResponse('Chyba databáze: ' . $e->getMessage(), 500);
|
||||
} else {
|
||||
errorResponse('Chyba databáze', 500);
|
||||
}
|
||||
}
|
||||
|
||||
// --- Status transitions ---
|
||||
|
||||
/** @return list<string> */
|
||||
Reference in New Issue
Block a user