dc/d01/newonlinesign_8php_source.html

<?php

/* Copyright (C) 2001-2002  Rodolphe Quiedeville  <rodolphe@quiedeville.org>

 * Copyright (C) 2006-2017  Laurent Destailleur   <eldy@users.sourceforge.net>

 * Copyright (C) 2009-2012  Regis Houssin     <regis.houssin@inodbox.com>

 * Copyright (C) 2023   anthony Berton      <anthony.berton@bb2a.fr>

 * Copyright (C) 2024       Frédéric France             <frederic.france@free.fr>

 * Copyright (C) 2024-2025  MDW             <mdeweerd@users.noreply.github.com>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


if (!defined('NOLOGIN')) {

  define("NOLOGIN", 1); // This means this output page does not require to be logged.

}

if (!defined('NOCSRFCHECK')) {

  define("NOCSRFCHECK", 1); // We accept to go on this page from external web site.

}

if (!defined('NOIPCHECK')) {

  define('NOIPCHECK', '1'); // Do not check IP defined into conf $dolibarr_main_restrict_ip

}

if (!defined('NOBROWSERNOTIF')) {

  define('NOBROWSERNOTIF', '1');

}


// For MultiCompany module.

// Do not use GETPOST here, function is not defined and define must be done before including main.inc.php

// Because 2 entities can have the same ref.

$entity = (!empty($_GET['entity']) ? (int) $_GET['entity'] : (!empty($_POST['entity']) ? (int) $_POST['entity'] : 1));

if (is_numeric($entity)) {

  define("DOLENTITY", $entity);

}


// Load Dolibarr environment

require '../../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/company.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/payments.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/functions2.lib.php';

require_once DOL_DOCUMENT_ROOT.'/product/class/product.class.php';

require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';


// Load translation files

$langs->loadLangs(array("main", "other", "dict", "bills", "companies", "errors", "members", "paybox", "stripe", "propal", "commercial"));


// Security check

// No check on module enabled. Done later according to $validpaymentmethod


// Get parameters

$action = GETPOST('action', 'aZ09');

$cancel = GETPOST('cancel', 'alpha');

$confirm = GETPOST('confirm', 'alpha');


$refusepropal = GETPOST('refusepropal', 'alpha');

$message = GETPOST('message', 'aZ09');


// Input are:

// type ('invoice','order','contractline'),

// id (object id),

// amount (required if id is empty),

// tag (a free text, required if type is empty)

// currency (iso code)


$suffix = GETPOST("suffix", 'aZ09');

$source = (string) GETPOST("source", 'alpha');

$ref = $REF = GETPOST("ref", 'alpha');

$urlok = '';

$urlko = '';


if ($source == '') {

  $source = 'proposal';

}

if (!empty($refusepropal)) {

  $action = "refusepropal";

}


// Define $urlwithroot

//$urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));

//$urlwithroot=$urlwithouturlroot.DOL_URL_ROOT;   // This is to use external domain name found into config file

$urlwithroot = DOL_MAIN_URL_ROOT; // This is to use same domain name than current. For Paypal payment, we can use internal URL like localhost.


// Complete urls for post treatment

$SECUREKEY = GETPOST("securekey"); // Secure key


if (!empty($source)) {

  $urlok .= 'source='.urlencode($source).'&';

  $urlko .= 'source='.urlencode($source).'&';

}

if (!empty($REF)) {

  $urlok .= 'ref='.urlencode($REF).'&';

  $urlko .= 'ref='.urlencode($REF).'&';

}

if (!empty($SECUREKEY)) {

  $urlok .= 'securekey='.urlencode($SECUREKEY).'&';

  $urlko .= 'securekey='.urlencode($SECUREKEY).'&';

}

if (!empty($entity)) {

  $urlok .= 'entity='.urlencode((string) ($entity)).'&';

  $urlko .= 'entity='.urlencode((string) ($entity)).'&';

}

$urlok = preg_replace('/&$/', '', $urlok); // Remove last &

$urlko = preg_replace('/&$/', '', $urlko); // Remove last &


$creditor = $mysoc->name;


$type = $source;

if (!$action) {

  if ($source && !$ref) {

    httponly_accessforbidden($langs->trans('ErrorBadParameters')." - ref missing", 400, 1);

  }

}


// Check securitykey

$securekeyseed = '';

if ($source == 'proposal') {

  $securekeyseed = getDolGlobalString('PROPOSAL_ONLINE_SIGNATURE_SECURITY_TOKEN');

} elseif ($source == 'contract') {

  $securekeyseed = getDolGlobalString('CONTRACT_ONLINE_SIGNATURE_SECURITY_TOKEN');

} elseif ($source == 'fichinter') {

  $securekeyseed = getDolGlobalString('FICHINTER_ONLINE_SIGNATURE_SECURITY_TOKEN');

} elseif ($source == 'societe_rib') {

  $securekeyseed = getDolGlobalString('SOCIETE_RIB_ONLINE_SIGNATURE_SECURITY_TOKEN');

}

if (!dol_verifyHash($securekeyseed.$type.$ref.(isModEnabled('multicompany') ? $entity : ''), $SECUREKEY, '0')) {

  httponly_accessforbidden('Bad value for securitykey. Value provided '.dol_escape_htmltag($SECUREKEY).' does not match expected value for ref='.dol_escape_htmltag($ref), 403, 1);

}


if ($source == 'proposal') {

  require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';

  $object = new Propal($db);

  $result = $object->fetch(0, $ref, '', $entity);

} elseif ($source == 'contract') {

  require_once DOL_DOCUMENT_ROOT.'/contrat/class/contrat.class.php';

  $object = new Contrat($db);

  $result = $object->fetch(0, $ref);

} elseif ($source == 'fichinter') {

  require_once DOL_DOCUMENT_ROOT.'/fichinter/class/fichinter.class.php';

  $object = new Fichinter($db);

  $result = $object->fetch(0, $ref);

} elseif ($source == 'societe_rib') {

  require_once DOL_DOCUMENT_ROOT.'/societe/class/companybankaccount.class.php';

  $object = new CompanyBankAccount($db);

  $result = $object->fetch(0, $ref);

} elseif ($source == 'expedition') {

  require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';

  $object = new Expedition($db);

  $result = $object->fetch(0, $ref);

} else {

  httponly_accessforbidden($langs->trans('ErrorBadParameters')." - Bad value for source. Value not supported.", 400, 1);

}


// Initialize a technical object to manage hooks of page. Note that conf->hooks_modules contains an array of hook context

$hookmanager->initHooks(array('onlinesign'));


$error = 0;


/*

 * Actions

 */


if ($action == 'confirm_refusepropal' && $confirm == 'yes') { // Test on pemrission not required here. Public form. Security checked on the securekey and on mitigation

  $db->begin();


  $sql  = "UPDATE ".MAIN_DB_PREFIX."propal";

  $sql .= " SET fk_statut = ".((int) $object::STATUS_NOTSIGNED).", note_private = '".$db->escape($object->note_private)."', date_signature = '".$db->idate(dol_now())."'";

  $sql .= " WHERE rowid = ".((int) $object->id);


  dol_syslog(__FILE__, LOG_DEBUG);

  $resql = $db->query($sql);

  if (!$resql) {

    $error++;

  }


  if (!$error) {

    $db->commit();


    $message = 'refused';

    setEventMessages("PropalRefused", null, 'warnings');

    if (method_exists($object, 'call_trigger')) {

      // Online customer is not a user, so we use the use that validates the documents

      $user = new User($db);

      $user->fetch($object->user_validation_id);

      $object->context = array('closedfromonlinesignature' => 'closedfromonlinesignature');

      $result = $object->call_trigger('PROPAL_CLOSE_REFUSED', $user);

      if ($result < 0) {

        $error++;

      }

    }

  } else {

    $db->rollback();

  }


  $object->fetch(0, $ref);

}


// $action == "dosign" is handled later...


/*

 * View

 */


$form = new Form($db);


$head = '';

if (getDolGlobalString('MAIN_SIGN_CSS_URL')) {

  $head = '<link rel="stylesheet" type="text/css" href="' . getDolGlobalString('MAIN_SIGN_CSS_URL').'?lang='.$langs->defaultlang.'">'."\n";

}


$conf->dol_hide_topmenu = 1;

$conf->dol_hide_leftmenu = 1;


$title = $langs->trans("OnlineSignature");


$replacemainarea = (empty($conf->dol_hide_leftmenu) ? '<div>' : '').'<div>';

llxHeader($head, $title, '', '', 0, 0, '', '', '', 'onlinepaymentbody', $replacemainarea, 1);


htmlPrintOnlineHeader($mysoc, $langs, 1, '', 'ONLINE_SIGN_IMAGE_PUBLIC_INTERFACE', 'ONLINE_SIGN_LOGO_'.$suffix, 'ONLINE_SIGN_LOGO');


if ($action == 'refusepropal') {

  print $form->formconfirm($_SERVER["PHP_SELF"].'?ref='.urlencode($ref).'&securekey='.urlencode($SECUREKEY).(isModEnabled('multicompany') ? '&entity='.$entity : ''), $langs->trans('RefusePropal'), $langs->trans('ConfirmRefusePropal', $object->ref), 'confirm_refusepropal', '', '', 1);

}


// Check link validity for param 'source' to avoid use of the examples as value

if (/* $source !== '' :never empty &&  */ in_array($ref, array('member_ref', 'contractline_ref', 'invoice_ref', 'order_ref', 'proposal_ref', ''))) {

  $langs->load("errors");

  dol_print_error_email('BADREFINONLINESIGNFORM', $langs->trans("ErrorBadLinkSourceSetButBadValueForRef", $source, $ref));

  // End of page

  llxFooter();

  $db->close();

  exit;

}


print '<span id="dolpaymentspan"></span>'."\n";

print '<div class="center">'."\n";

print '<form id="dolpaymentform" class="center" name="paymentform" action="'.$_SERVER["PHP_SELF"].'" method="POST">'."\n";

print '<input type="hidden" name="token" value="'.newToken().'">'."\n";

print '<input type="hidden" name="action" value="dosign">'."\n";

print '<input type="hidden" name="tag" value="'.GETPOST("tag", 'alpha').'">'."\n";

print '<input type="hidden" name="suffix" value="'.GETPOST("suffix", 'alpha').'">'."\n";

print '<input type="hidden" name="securekey" value="'.$SECUREKEY.'">'."\n";

print '<input type="hidden" name="entity" value="'.$entity.'" />';

print '<input type="hidden" name="page_y" value="" />';

print '<input type="hidden" name="source" value="'.$source.'" />';

print '<input type="hidden" name="ref" value="'.$ref.'" />';

print "\n";

print '<!-- Form to sign -->'."\n";


if ($source == 'proposal' && getDolGlobalString('PROPOSAL_IMAGE_PUBLIC_SIGN')) {

  print '<div class="backimagepublicproposalsign">';

  print '<img id="idPROPOSAL_IMAGE_PUBLIC_INTERFACE" src="' . getDolGlobalString('PROPOSAL_IMAGE_PUBLIC_SIGN').'">';

  print '</div>';

}


print '<table id="dolpublictable" summary="Payment form" class="center">'."\n";


// Output introduction text

$text = '';

if (getDolGlobalString('ONLINE_SIGN_NEWFORM_TEXT')) {

  $reg = array();

  if (preg_match('/^\‍((.*)\‍)$/', $conf->global->ONLINE_SIGN_NEWFORM_TEXT, $reg)) {

    $text .= $langs->trans($reg[1])."<br>\n";

  } else {

    $text .= getDolGlobalString('ONLINE_SIGN_NEWFORM_TEXT') . "<br>\n";

  }

  $text = '<tr><td align="center"><br>'.$text.'<br></td></tr>'."\n";

}

if (empty($text)) {

  if ($source == 'proposal') {

    $text .= '<tr><td class="textpublicpayment"><br><strong>'.$langs->trans("WelcomeOnOnlineSignaturePageProposal", $mysoc->name).'</strong></td></tr>'."\n";

    $text .= '<tr><td class="textpublicpayment opacitymedium">'.$langs->trans("ThisScreenAllowsYouToSignDocFromProposal", $creditor).'<br><br></td></tr>'."\n";

  } elseif ($source == 'contract') {

    $text .= '<tr><td class="textpublicpayment"><br><strong>'.$langs->trans("WelcomeOnOnlineSignaturePageContract", $mysoc->name).'</strong></td></tr>'."\n";

    $text .= '<tr><td class="textpublicpayment opacitymedium">'.$langs->trans("ThisScreenAllowsYouToSignDocFromContract", $creditor).'<br><br></td></tr>'."\n";

  } elseif ($source == 'fichinter') {

    $text .= '<tr><td class="textpublicpayment"><br><strong>'.$langs->trans("WelcomeOnOnlineSignaturePageFichinter", $mysoc->name).'</strong></td></tr>'."\n";

    $text .= '<tr><td class="textpublicpayment opacitymedium">'.$langs->trans("ThisScreenAllowsYouToSignDocFromFichinter", $creditor).'<br><br></td></tr>'."\n";

  } elseif ($source == 'expedition') {

    $text .= '<tr><td class="textpublicpayment"><br><strong>'.$langs->trans("WelcomeOnOnlineSignaturePageExpedition", $mysoc->name).'</strong></td></tr>'."\n";

    $text .= '<tr><td class="textpublicpayment opacitymedium">'.$langs->trans("ThisScreenAllowsYouToSignDocFromExpedition", $creditor).'<br><br></td></tr>'."\n";

  } else {

    $text .= '<tr><td class="textpublicpayment"><br><strong>'.$langs->trans("WelcomeOnOnlineSignaturePage".dol_ucfirst($source), $mysoc->name).'</strong></td></tr>'."\n";

    $text .= '<tr><td class="textpublicpayment opacitymedium">'.$langs->trans("ThisScreenAllowsYouToSignDocFrom".dol_ucfirst($source), $creditor).'<br><br></td></tr>'."\n";

  }

}

print $text;


// Output payment summary form

print '<tr><td align="center">';

print '<table with="100%" id="tablepublicpayment">';

if ($source == 'proposal') {

  print '<tr><td align="left" colspan="2" class="opacitymedium">'.$langs->trans("ThisIsInformationOnDocumentToSignProposal").' :</td></tr>'."\n";

} elseif ($source == 'contract') {

  print '<tr><td align="left" colspan="2" class="opacitymedium">'.$langs->trans("ThisIsInformationOnDocumentToSignContract").' :</td></tr>'."\n";

} elseif ($source == 'fichinter') {

  print '<tr><td align="left" colspan="2" class="opacitymedium">'.$langs->trans("ThisIsInformationOnDocumentToSignFichinter").' :</td></tr>'."\n";

} elseif ($source == 'expedition') {

  print '<tr><td align="left" colspan="2" class="opacitymedium">'.$langs->trans("ThisIsInformationOnDocumentToSignExpedition").' :</td></tr>'."\n";

} else {

  print '<tr><td align="left" colspan="2" class="opacitymedium">'.$langs->trans("ThisIsInformationOnDocumentToSign".dol_ucfirst($source)).' :</td></tr>'."\n";

}

$found = false;

$error = 0;


// Signature on commercial proposal

if ($source == 'proposal') {

  $found = true;

  $langs->load("proposal");


  $result = $object->fetch_thirdparty($object->socid);


  // Creditor

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Creditor");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$creditor.'</b>';

  print '<input type="hidden" name="creditor" value="'.$creditor.'">';

  print '</td></tr>'."\n";


  // Debitor

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$object->thirdparty->name.'</b>';

  print '</td></tr>'."\n";


  // Amount


  $amount = '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Amount");

  $amount .= '</td><td class="CTableRow2">';

  $amount .= '<b>'.price($object->total_ttc, 0, $langs, 1, -1, -1, getDolCurrency()).'</b>';

  if ($object->multicurrency_code != getDolCurrency()) {

    $amount .= ' ('.price($object->multicurrency_total_ttc, 0, $langs, 1, -1, -1, $object->multicurrency_code).')';

  }

  $amount .= '</td></tr>'."\n";


  // Call Hook amountPropalSign

  $parameters = array('source' => $source);

  $reshook = $hookmanager->executeHooks('amountPropalSign', $parameters, $object, $action); // Note that $action and $object may have been modified by hook

  if (empty($reshook)) {

    $amount .= $hookmanager->resPrint;

  } elseif ($reshook > 0) {

    $amount = $hookmanager->resPrint;

  }


  print $amount;


  // Object

  $text = '<b>'.$langs->trans("SignatureProposalRef", $object->ref).'</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Designation");

  print '</td><td class="CTableRow2">'.$text;


  $last_main_doc_file = $object->last_main_doc;


  if ($object->status == $object::STATUS_VALIDATED) {

    $object->last_main_doc = preg_replace('/_signed-(\d+)/', '', $object->last_main_doc); // We want to be sure to not work on the signed version


    if (empty($last_main_doc_file) || !dol_is_file(DOL_DATA_ROOT.'/'.$object->last_main_doc)) {

      // It seems document has never been generated, or was generated and then deleted.

      // So we try to regenerate it with its default template.

      $defaulttemplate = '';    // We force the use an empty string instead of $object->model_pdf to be sure to use a "main" default template and not the last one used.

      $object->generateDocument($defaulttemplate, $langs);

    }


    $directdownloadlink = $object->getLastMainDocLink('proposal');

    if ($directdownloadlink) {

      print '<br><a href="'.$directdownloadlink.'">';

      print img_mime($object->last_main_doc, '');

      print $langs->trans("DownloadDocument").'</a>';

    }

  } else {

    if ($object->status == $object::STATUS_NOTSIGNED) {

      $directdownloadlink = $object->getLastMainDocLink('proposal');

      if ($directdownloadlink) {

        print '<br><a href="'.$directdownloadlink.'">';

        print img_mime($last_main_doc_file, '');

        print $langs->trans("DownloadDocument").'</a>';

      }

    } elseif ($object->status == $object::STATUS_SIGNED || $object->status == $object::STATUS_BILLED) {

      if (preg_match('/_signed-(\d+)/', $last_main_doc_file)) { // If the last main doc has been signed

        $last_main_doc_file_not_signed = preg_replace('/_signed-(\d+)/', '', $last_main_doc_file);


        $datefilesigned = dol_filemtime($last_main_doc_file);

        $datefilenotsigned = dol_filemtime($last_main_doc_file_not_signed);


        if (empty($datefilenotsigned) || $datefilesigned > $datefilenotsigned) {  // If file signed is more recent

          $directdownloadlink = $object->getLastMainDocLink('proposal');

          if ($directdownloadlink) {

            print '<br><a href="'.$directdownloadlink.'">';

            print img_mime($object->last_main_doc, '');

            print $langs->trans("DownloadDocument").'</a>';

          }

        }

      }

    }

  }


  print '<input type="hidden" name="source" value="'.GETPOST("source", 'alpha').'">';

  print '<input type="hidden" name="ref" value="'.$object->ref.'">';

  print '</td></tr>'."\n";

} elseif ($source == 'contract') { // Signature on contract

  $found = true;

  $langs->load("contract");


  $result = $object->fetch_thirdparty($object->socid);


  // Proposer

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Proposer");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$creditor.'</b>';

  print '<input type="hidden" name="creditor" value="'.$creditor.'">';

  print '</td></tr>'."\n";


  // Target

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$object->thirdparty->name.'</b>';

  print '</td></tr>'."\n";


  // Object

  $text = '<b>'.$langs->trans("SignatureContractRef", $object->ref).'</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Designation");

  print '</td><td class="CTableRow2">'.$text;


  $last_main_doc_file = $object->last_main_doc;


  if (empty($last_main_doc_file) || !dol_is_file(DOL_DATA_ROOT.'/'.$object->last_main_doc)) {

    // It seems document has never been generated, or was generated and then deleted.

    // So we try to regenerate it with its default template.

    $defaulttemplate = '';    // We force the use an empty string instead of $object->model_pdf to be sure to use a "main" default template and not the last one used.

    $object->generateDocument($defaulttemplate, $langs);

  }


  $directdownloadlink = $object->getLastMainDocLink('contract');

  if ($directdownloadlink) {

    print '<br><a href="'.$directdownloadlink.'">';

    print img_mime($object->last_main_doc, '');

    if ($message == "signed") {

      print $langs->trans("DownloadSignedDocument").'</a>';

    } else {

      print $langs->trans("DownloadDocument").'</a>';

    }

  }


  print '<input type="hidden" name="source" value="'.GETPOST("source", 'alpha').'">';

  print '<input type="hidden" name="ref" value="'.$object->ref.'">';

  print '</td></tr>'."\n";

} elseif ($source == 'fichinter') {

  // Signature on fichinter

  $found = true;

  $langs->load("interventions");


  $result = $object->fetch_thirdparty($object->socid);


  // Proposer

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Proposer");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$creditor.'</b>';

  print '<input type="hidden" name="creditor" value="'.$creditor.'">';

  print '</td></tr>'."\n";


  // Target

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$object->thirdparty->name.'</b>';

  print '</td></tr>'."\n";


  // Object

  $text = '<b>'.$langs->trans("SignatureFichinterRef", $object->ref).'</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Designation");

  print '</td><td class="CTableRow2">'.$text;


  $last_main_doc_file = $object->last_main_doc;


  if (empty($last_main_doc_file) || !dol_is_file(DOL_DATA_ROOT.'/'.$object->last_main_doc)) {

    // It seems document has never been generated, or was generated and then deleted.

    // So we try to regenerate it with its default template.

    $defaulttemplate = '';    // We force the use an empty string instead of $object->model_pdf to be sure to use a "main" default template and not the last one used.

    $object->generateDocument($defaulttemplate, $langs);

  }


  $directdownloadlink = $object->getLastMainDocLink('fichinter');

  if ($directdownloadlink) {

    print '<br><a href="'.$directdownloadlink.'">';

    print img_mime($object->last_main_doc, '');

    if ($message == "signed") {

      print $langs->trans("DownloadSignedDocument").'</a>';

    } else {

      print $langs->trans("DownloadDocument").'</a>';

    }

  }

  print '<input type="hidden" name="source" value="'.GETPOST("source", 'alpha').'">';

  print '<input type="hidden" name="ref" value="'.$object->ref.'">';

  print '</td></tr>'."\n";

} elseif ($source == 'societe_rib') {

  $found = true;

  $langs->loadLangs(array("companies", "commercial", "withdrawals"));


  $result = $object->fetch_thirdparty();


  // Proposer

  print '<tr class="CTableRow2"><td class="CTableRow2">' . $langs->trans("CreditorName");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>' . $creditor . '</b>';

  print '<input type="hidden" name="creditor" value="' . $creditor . '">';

  print '</td></tr>' . "\n";


  // Target

  print '<tr class="CTableRow2"><td class="CTableRow2">' . $langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>' . $object->thirdparty->name . '</b>';

  print '</td></tr>' . "\n";


  // Object

  $text = '<b>' . $langs->trans("Signature" . dol_ucfirst($source) . "Ref", $object->ref) . '</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">' . $langs->trans("Designation");

  print '</td><td class="CTableRow2">' . $text;


  $last_main_doc_file = $object->last_main_doc;

  $diroutput = $conf->societe->multidir_output[$object->thirdparty->entity].'/'

      .dol_sanitizeFileName((string) $object->thirdparty->id).'/';

  if ((empty($last_main_doc_file) ||

    !dol_is_file($diroutput

      .$langs->transnoentitiesnoconv("SepaMandateShort").' '.$object->id."-".dol_sanitizeFileName($object->rum).".pdf"))

    &&  $message != "signed") {

    // It seems document has never been generated, or was generated and then deleted.

    // So we try to regenerate it with its default template.

    //$defaulttemplate = 'sepamandate';

    $defaulttemplate = getDolGlobalString("BANKADDON_PDF");


    $object->setDocModel($user, $defaulttemplate);

    $moreparams = array(

      'use_companybankid' => $object->id,

      'force_dir_output' => $diroutput

    );

    $result = $object->thirdparty->generateDocument($defaulttemplate, $langs, 0, 0, 0, $moreparams);

    $object->last_main_doc = $object->thirdparty->last_main_doc;

  }

  $directdownloadlink = $object->getLastMainDocLink('company');

  if ($directdownloadlink) {

    print '<br><a href="'.$directdownloadlink.'">';

    print img_mime($object->last_main_doc, '');

    if ($message == "signed") {

      print $langs->trans("DownloadSignedDocument").'</a>';

    } else {

      print $langs->trans("DownloadDocument").'</a>';

    }

  }

} elseif ($source == 'expedition') {

  // Signature on expedition

  $found = true;

  $langs->load("interventions");


  $result = $object->fetch_thirdparty($object->socid);


  // Proposer

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Proposer");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$creditor.'</b>';

  print '<input type="hidden" name="creditor" value="'.$creditor.'">';

  print '</td></tr>'."\n";


  // Target

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$object->thirdparty->name.'</b>';

  print '</td></tr>'."\n";


  // Object

  $text = '<b>'.$langs->trans("SignatureFichinterRef", $object->ref).'</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Designation");

  print '</td><td class="CTableRow2">'.$text;


  $last_main_doc_file = $object->last_main_doc;

  if (empty($last_main_doc_file) || !dol_is_file(DOL_DATA_ROOT.'/'.$object->last_main_doc)) {

    // It seems document has never been generated, or was generated and then deleted.

    // So we try to regenerate it with its default template.

    $defaulttemplate = '';    // We force the use an empty string instead of $object->model_pdf to be sure to use a "main" default template and not the last one used.

    $object->generateDocument($defaulttemplate, $langs);

  }

  $directdownloadlink = $object->getLastMainDocLink('', 0, 0);

  if ($directdownloadlink) {

    print '<br><a href="'.$directdownloadlink.'">';

    print img_mime($object->last_main_doc, '');

    if ($message == "signed") {

      print $langs->trans("DownloadSignedDocument").'</a>';

    } else {

      print $langs->trans("DownloadDocument").'</a>';

    }

  }

  print '<input type="hidden" name="source" value="'.GETPOST("source", 'alpha').'">';

  print '<input type="hidden" name="ref" value="'.$object->ref.'">';

  print '</td></tr>'."\n";

} else {

  $found = true;

  $langs->load('companies');


  if (!empty($object->socid) || !empty($object->fk_soc)) {

    $result = $object->fetch_thirdparty();

  }


  // Proposer

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Proposer");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$creditor.'</b>';

  print '<input type="hidden" name="creditor" value="'.$creditor.'">';

  print '</td></tr>'."\n";


  // Target

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("ThirdParty");

  print '</td><td class="CTableRow2">';

  print img_picto('', 'company', 'class="pictofixedwidth"');

  print '<b>'.$object->thirdparty->name.'</b>';

  print '</td></tr>'."\n";


  // Object

  $text = '<b>'.$langs->trans("Signature".dol_ucfirst($source)."Ref", $object->ref).'</b>';

  print '<tr class="CTableRow2"><td class="CTableRow2">'.$langs->trans("Designation");

  print '</td><td class="CTableRow2">'.$text;


  $last_main_doc_file = $object->last_main_doc;


  if (empty($last_main_doc_file) || !dol_is_file(DOL_DATA_ROOT.'/'.$object->last_main_doc)) {

    // It seems document has never been generated, or was generated and then deleted.

    // So we try to regenerate it with its default template.

    $defaulttemplate = '';    // We force the use an empty string instead of $object->model_pdf to be sure to use a "main" default template and not the last one used.

    $object->generateDocument($defaulttemplate, $langs);

  }


  $directdownloadlink = $object->getLastMainDocLink($source);

  if ($directdownloadlink) {

    print '<br><a href="'.$directdownloadlink.'">';

    print img_mime($object->last_main_doc, '');

    if ($message == "signed") {

      print $langs->trans("DownloadSignedDocument").'</a>';

    } else {

      print $langs->trans("DownloadDocument").'</a>';

    }

  }

}


// Call Hook addFormSign

$parameters = array('source' => $source);

$reshook = $hookmanager->executeHooks('addFormSign', $parameters, $object, $action); // Note that $action and $object may have been modified by hook


if (!$found && !$mesg) {

  $mesg = $langs->transnoentitiesnoconv("ErrorBadParameters");

}


if ($mesg) {

  print '<tr><td class="center" colspan="2"><br><div class="warning">'.dol_escape_htmltag($mesg).'</div></td></tr>'."\n";

}


print '</table>'."\n";

print "\n";


if ($action != 'dosign') {

  if ($found && !$error) {

    // We are in a management option and no error

  } else {

    dol_print_error_email('ERRORNEWONLINESIGN');

  }

} else {

  // Print

}


print '</td></tr>'."\n";

print '<tr><td class="center">';


if ($action == "dosign" && empty($cancel)) {

  // Show the field to sign

  print '<div class="tablepublicpayment">';

  print '<input type="text" class="paddingleftonly marginleftonly paddingrightonly marginrightonly marginbottomonly borderbottom" id="name"  placeholder="'.$langs->trans("Lastname").'" autofocus>';

  print '<div id="signature" style="border:solid;"></div>';

  print '</div>';

  print '<input type="button" class="small noborderbottom cursorpointer buttonreset" id="clearsignature" value="'.$langs->trans("ClearSignature").'">';


  // Do not use class="reposition" here: It breaks the submit and there is a message on top to say it's ok, so going back top is better.

  print '<div>';

  print '<input type="button" class="button marginleftonly marginrightonly" id="signbutton" value="'.$langs->trans("Sign").'">';

  print '<input type="submit" class="button butActionDelete marginleftonly marginrightonly" name="cancel" value="'.$langs->trans("Cancel").'">';

  print '</div>';


  // Define $urlwithroot

  $urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));

  $urlwithroot=$urlwithouturlroot.DOL_URL_ROOT;   // This is to use external domain name found into config file

  //$urlwithroot = DOL_MAIN_URL_ROOT; // This is to use same domain name than current. For Paypal payment, we can use internal URL like localhost.

  // TODO Replace DOL_URL_ROOT with $urlwithroot ?


  // Add js code managed into the div #signature

  $urltogo = $_SERVER["PHP_SELF"].'?ref='.urlencode($ref).'&source='.urlencode($source).'&message=signed&securekey='.urlencode($SECUREKEY).(isModEnabled('multicompany') ? '&entity='.(int) $entity : '');

  print '<script language="JavaScript" type="text/javascript" src="'.DOL_URL_ROOT.'/includes/jquery/plugins/jSignature/jSignature.js"></script>

  <script type="text/javascript">

  $(document).ready(function() {

    $("#signature").jSignature({ color:"#000", lineWidth:0, '.(empty($conf->dol_optimize_smallscreen) ? '' : 'width: 280, ').'height: 180});


    $("#signature").on("change",function(){

    $("#clearsignature").css("display","");

    $("#signbutton").attr("disabled",false);

    if(!$._data($("#signbutton")[0], "events")){

      $("#signbutton").on("click",function(){

        console.log("We click on button sign");

        document.body.style.cursor = \'wait\';

        var signature = $("#signature").jSignature("getData", "image");

        var name = document.getElementById("name").value;

        $.ajax({

          type: "POST",

          url: \''.DOL_URL_ROOT.'/core/ajax/onlineSign.php\',

          dataType: "text",

          data: {

            "action" : \'importSignature\',

            "token" : \''.newToken().'\',

            "signaturebase64" : signature,

            "onlinesignname" : name,

            "ref" : \''.dol_escape_js($REF).'\',

            "securekey" : \''.dol_escape_js($SECUREKEY).'\',

            "mode" : \''.dol_escape_js($source).'\',

            "entity" : \''.dol_escape_js((string) $entity).'\',

          },

          success: function(response) {

            if (response.trim() === "success") {

              console.log("Success on saving signature");

              window.location.replace(\''.dol_escape_js($urltogo).'\');

            } else {

              document.body.style.cursor = \'auto\';

              console.error(response);

              alert("Error on calling the core/ajax/onlineSign.php. See console log.");

            }

          },

          error: function(response) {

            document.body.style.cursor = \'auto\';

            console.error(response);

            alert("Error on calling the core/ajax/onlineSign.php. "+response.responseText);

          }

        });

      });

    }

    });


    $("#clearsignature").on("click",function(){

    $("#signature").jSignature("clear");

    $("#signbutton").attr("disabled",true);

    // document.getElementById("onlinesignname").value = "";

    });


    $("#signbutton").attr("disabled",true);

  });

  </script>';

} else {

  if ($source == 'proposal') {

    if ($object->status == $object::STATUS_SIGNED) {

      print '<br>';

      if ($message == 'signed') {

        print img_picto('', 'check', '', 0, 0, 0, '', 'size2x').'<br>';

        print '<span class="ok">'.$langs->trans("PropalSigned").'</span>';

      } else {

        print img_picto('', 'check', '', 0, 0, 0, '', 'size2x').'<br>';

        print '<span class="ok">'.$langs->trans("PropalAlreadySigned").'</span>';

      }

    } elseif ($object->status == $object::STATUS_NOTSIGNED) {

      print '<br>';

      if ($message == 'refused') {

        print img_picto('', 'cross', '', 0, 0, 0, '', 'size2x').'<br>';

        print '<span class="ok">'.$langs->trans("PropalRefused").'</span>';

      } else {

        print img_picto('', 'cross', '', 0, 0, 0, '', 'size2x').'<br>';

        print '<span class="warning">'.$langs->trans("PropalAlreadyRefused").'</span>';

      }

    } else {

      print '<input type="submit" class="butAction small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("SignPropal").'">';

      print '<input name="refusepropal" type="submit" class="butActionDelete small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("RefusePropal").'">';

    }

  } elseif ($source == 'contract') {

    if ($message == 'signed') {

      print '<span class="ok">'.$langs->trans("ContractSigned").'</span>';

    } else {

      print '<input type="submit" class="butAction small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("SignContract").'">';

    }

  } elseif ($source == 'fichinter') {

    if ($message == 'signed') {

      print '<span class="ok">'.$langs->trans("FichinterSigned").'</span>';

    } else {

      print '<input type="submit" class="butAction small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("SignFichinter").'">';

    }

  } elseif ($source == 'expedition') {

    if ($message == 'signed' || $object->signed_status == Expedition::$SIGNED_STATUSES['STATUS_SIGNED_SENDER']) {

      print '<span class="ok">'.$langs->trans("ExpeditionSigned").'</span>';

    } else {

      print '<input type="submit" class="butAction small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("SignExpedition").'">';

    }

  } else {

    if ($message == 'signed') {

      print '<span class="ok">'.$langs->trans(dol_ucfirst($source)."Signed").'</span>';

    } else {

      print '<input type="submit" class="butAction small wraponsmartphone marginbottomonly marginleftonly marginrightonly reposition" value="'.$langs->trans("Sign".dol_ucfirst($source)).'">';

    }

  }

}

print '</td></tr>'."\n";

print '</table>'."\n";


print '</form>'."\n";

print '</div>'."\n";

print '<br>';


htmlPrintOnlineFooter($mysoc, $langs);


llxFooter('', 'public');


$db->close();

$object
if(! $sortfield) if(! $sortorder) $object
Definition account.php:100

$dolibarr_main_url_root
global $dolibarr_main_url_root
Definition clicktodial.php:135

llxFooter
llxFooter($comment='', $zone='private', $disabledoutputofmessages=0)
Empty footer.
Definition wrapper.php:91

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader($head='', $title='', $help_url='', $target='', $disablejs=0, $disablehead=0, $arrayofjs='', $arrayofcss='', $morequerystring='', $morecssonbody='', $replacemainareaby='', $disablenofollow=0, $disablenoindex=0)
Empty header.
Definition wrapper.php:73

ref
$object ref
Definition info.php:90

CompanyBankAccount
Class to manage bank accounts description of third parties.
Definition companybankaccount.class.php:37

Contrat
Definition contrat.class.php:50

Expedition
Definition expedition.class.php:59

Fichinter
Definition fichinter.class.php:44

Form
Class to manage generation of HTML components Only common components must be here.
Definition html.form.class.php:57

Propal
Class to manage proposals.
Definition propal.class.php:56

User
Class to manage Dolibarr users.
Definition user.class.php:50

htmlPrintOnlineHeader
htmlPrintOnlineHeader($mysoc, $langs, $showlogo=1, $alttext='', $subimageconst='', $altlogo1='', $altlogo2='')
Show the header of a company in HTML public pages.
Definition company.lib.php:2864

htmlPrintOnlineFooter
htmlPrintOnlineFooter($fromcompany, $langs, $addformmessage=0, $suffix='', $object=null)
Show footer of company in HTML public pages.
Definition company.lib.php:2940

$mysoc
global $mysoc
Definition purchasesjournal.php:30

dol_filemtime
dol_filemtime($pathoffile)
Return time of a file.
Definition files.lib.php:745

dol_is_file
dol_is_file($pathoffile)
Return if path is a file.
Definition files.lib.php:617

dol_now
dol_now($mode='gmt')
Return date for now.
Definition functions.lib.php:4275

setEventMessages
setEventMessages($mesg, $mesgs, $style='mesgs', $messagekey='', $noduplicate=0, $attop=0)
Set event messages in dol_events session object.
Definition functions.lib.php:11205

dol_ucfirst
dol_ucfirst($string, $encoding="UTF-8")
Convert first character of the first word of a string to upper.
Definition functions.lib.php:2672

img_picto
img_picto($titlealt, $picto, $moreatt='', $pictoisfullpath=0, $srconly=0, $notitle=0, $alt='', $morecss='', $marginleftonlyshort=2, $allowothertags=array())
Show picto whatever it's its name (generic function)
Definition functions.lib.php:5577

dol_sanitizeFileName
dol_sanitizeFileName($str, $newstr='_', $unaccent=1, $includequotes=0, $allowdash=0)
Clean a string to use it as a file name.
Definition functions.lib.php:1925

img_mime
img_mime($file, $titlealt='', $morecss='')
Show MIME img of a file.
Definition functions.lib.php:6707

dol_escape_js
dol_escape_js($stringtoescape, $mode=0, $noescapebackslashn=0)
Returns text escaped for inclusion into javascript code.
Definition functions.lib.php:2269

newToken
newToken()
Return the value of token currently saved into session with name 'newtoken'.
Definition functions.lib.php:15451

getDolCurrency
getDolCurrency()
Return the main currency ('EUR', 'USD', ...)
Definition functions.lib.php:313

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:1033

dol_print_error_email
dol_print_error_email($prefixcode, $errormessage='', $errormessages=array(), $morecss='error', $email='')
Show a public email and error code to contact if technical error.
Definition functions.lib.php:6986

getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:258

isModEnabled
isModEnabled($module)
Is Dolibarr module enabled.
Definition functions.lib.php:440

dol_syslog
dol_syslog($message, $level=LOG_INFO, $ident=0, $suffixinfilename='', $restricttologhandler='', $logcontext=null)
Write log message into outputs.
Definition functions.lib.php:2743

dol_escape_htmltag
dol_escape_htmltag($stringtoescape, $keepb=0, $keepn=0, $noescapetags='', $escapeonlyhtmltags=0, $cleanalsojavascript=0)
Returns text escaped for inclusion in HTML alt or title or value tags, or into values of HTML input f...
Definition functions.lib.php:2503

name
$conf db name
Only used if Module[ID]Name translation string is not found.
Definition repair.php:128

httponly_accessforbidden
httponly_accessforbidden($message='1', $http_response_code=403, $stringalreadysanitized=0)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1331

dol_verifyHash
dol_verifyHash($chain, $hash, $type='0')
Compute a hash and compare it to the given one For backward compatibility reasons,...
Definition security.lib.php:365