One Hat Cyber Team

Edit File Name: ajax.php

<?php
session_start();
include("config.php");

if(isset($_SESSION['id']) AND isset($_SESSION['fullname'])){
	if($_SESSION['id'] != "" AND $_SESSION['fullname'] != ""){
		if(isset($_POST['action'])){
			if($_POST['action'] == "addupdate"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO updatesnew(id,version,changelog,dateadd,trash) VALUES ('0','".sanitize_vars($_POST['version'])."','".sanitize_vars($_POST['changelog'])."','".time()."','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE updatesnew SET version='".sanitize_vars($_POST['version'])."',changelog='".sanitize_vars($_POST['changelog'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteupdate"){
				$req = $bdd->prepare("UPDATE updatesnew SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreupdate"){
				$req = $bdd->prepare("UPDATE updatesnew SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteupdatepermanently"){
				$req = $bdd->prepare("DELETE FROM updatesnew WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadupdatesnew"){
				?>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td>Version</td>
						<td>Nouveau changement</td>
						<td>Date ajout</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM updatesnew WHERE trash='".$_POST['state']."' ORDER BY dateadd DESC";
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><span><?php echo $row['version'];?></span></td>
						<td><pre><?php echo $row['changelog'];?></pre></td>
						<td style="width:1%;"><span><?php echo gmdate("d/m/Y H:i",$row['dateadd']);?></span></td>
						<td>
							<a href="javascript:;" class="lx-edit lx-edit-update lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-version="<?php echo $row['version'];?>"
								data-changelog="<?php echo $row['changelog'];?>" data-title="update"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-update lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td>Version</td>
						<td>Nouveau changement</td>
						<td>Date ajout</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> mise(s) à jour de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> mise(s) à jour de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}			
			
			if($_POST['action'] == "loadupdates"){
				?>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td>Version</td>
						<td>Nouveau changement</td>
						<td>Date mise à jour</td>
					</tr>
					<?php
					$req = "SELECT * FROM updates WHERE trash='".$_POST['state']."' ORDER BY dateadd DESC";
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><span><?php echo $row['version'];?></span></td>
						<td><pre><?php echo $row['changelog'];?></pre></td>
						<td><span><?php echo gmdate("d/m/Y H:i",$row['dateadd']);?></span></td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td>Version</td>
						<td>Nouveau changement</td>
						<td>Date mise à jour</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> mise(s) à jour de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> mise(s) à jour de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}
			
			if($_POST['action'] == "adduser"){
				if($_POST['id'] == "0"){
					$back = $bdd->query("SELECT id FROM users WHERE email='".$_POST['email']."'");
					if($back->rowCount() == 0){
						$req = $bdd->prepare("INSERT INTO users(id,fullname,picture,email,password,phone,stockout,emailstockout,type,roles,productslist,citieslist,storeslist,idplayer,iddevice,datesignup,dateactive,trash) VALUES ('0','".sanitize_vars($_POST['fullname'])."','avatar.png','".sanitize_vars($_POST['email'])."','".sanitize_vars($_POST['password'])."','".sanitize_vars($_POST['phone'])."','','','moderator','".sanitize_vars(substr($_POST['roles'],1))."','','','','','0','".time()."','".time()."','1')");
						$req->execute();
					}
					else{
						echo "Email exist déja !!";
					}
				}
				else{
					$req = $bdd->prepare("UPDATE users SET fullname='".sanitize_vars($_POST['fullname'])."',password='".sanitize_vars($_POST['password'])."',phone='".sanitize_vars($_POST['phone'])."',roles='".sanitize_vars(substr($_POST['roles'],1))."',storeslist='".sanitize_vars($_POST['storeslist'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteuser"){
				$req = $bdd->prepare("UPDATE users SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreuser"){
				$req = $bdd->prepare("UPDATE users SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteuserpermanently"){
				$req = $bdd->prepare("DELETE FROM users WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadusers"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-user"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-user"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Boutiques à traités</td>
						<td>Droits <i class="fa fa-sort" data-sort="roles"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM users WHERE type='moderator' AND trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND (fullname LIKE '%".sanitize_vars($_POST['keyword'])."%' OR phone LIKE '%".sanitize_vars($_POST['keyword'])."%' OR email LIKE '%".sanitize_vars($_POST['keyword'])."%')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (datesignup BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="user" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['fullname'];?></span></td>
						<td><span><?php echo $row['phone'];?></span></td>
						<td><span><?php echo $row['email'];?></span></td>
						<td><span><?php echo str_replace("\n","<br />",$row['storeslist']);?></span></td>
						<td><span><?php echo str_replace(",",", ",$row['roles']);?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-user lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-email="<?php echo $row['email'];?>"
								data-password="<?php echo $row['password'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-storeslist="<?php echo $row['storeslist'];?>"
								data-roles=",<?php echo $row['roles'];?>" data-title="user"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-user lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-user" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-user" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Boutiques à traités</td>
						<td>Droits <i class="fa fa-sort" data-sort="roles"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> modérateur(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> modérateur(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}
			
			if($_POST['action'] == "editaccount"){
				$req = $bdd->prepare("UPDATE users SET fullname='".sanitize_vars($_POST['fullname'])."',picture='".sanitize_vars($_POST['picture'])."',phone='".sanitize_vars($_POST['phone'])."' WHERE id='".$_SESSION['id']."'");
				$req->execute();
			}

if($_POST['action'] == "editpassword"){
				if($_POST['oldpassword'] == "" OR $_POST['newpassword1'] == "" OR $_POST['newpassword2'] == ""){
					echo '2';
				}
				else{
					$back = $bdd->query("SELECT * FROM users WHERE id='".$_SESSION['id']."' AND password='".$_POST['oldpassword']."'");
					if($back->rowCount() == 0){
						echo '3';
					}
					elseif($_POST['newpassword1'] != $_POST['newpassword2']){
						echo '4';
					}
					else{
						$req = $bdd->prepare("UPDATE users SET password='".sanitize_vars($_POST['newpassword1'])."' WHERE id='".$_SESSION['id']."'");
						$req->execute();
						echo '1';
					}
				}
			}

if($_POST['action'] == "editnbrows"){
				$back = $bdd->query("SELECT id FROM parametres WHERE user='".$_SESSION['id']."'");
				if($back->rowCount() == 0){
					$req = $bdd->prepare("INSERT INTO parametres(id,user,nbrows,rowcolor) VALUE('','".$_SESSION['id']."','".$_POST['nbrows']."','')");
				}
				else{
					$req = $bdd->prepare("UPDATE parametres SET nbrows='".$_POST['nbrows']."' WHERE user='".$_SESSION['id']."'");
				}
				$req->execute();
			}
			
			if($_POST['action'] == "editsettings"){
				if($_SESSION['type'] == "moderator"){
					$back = $bdd->query("SELECT id FROM settings");
					if($back->rowCount() == 0){
						$req = $bdd->prepare("INSERT INTO settings(id,logo,sav,store,rib,onesignal,iddevice,smstoken,generalstock,allstates,allfields,addwithstate,splitorders,splitinvoices,autorelaunch,currency) VALUE('','".$_POST['lggo']."','".$_POST['sav']."','".$_POST['store']."','".$_POST['rib']."','".$_POST['onesignal']."','".$_POST['iddevice']."','".$_POST['smstoken']."','".$_POST['generalstock']."','".$_POST['allstates']."','".$_POST['allfields']."','".$_POST['addwithstate']."','".$_POST['splitorders']."','".$_POST['splitinvoices']."','".$_POST['autorelaunch']."','".$_POST['currency']."')");
					}
					else{
						$req = $bdd->prepare("UPDATE settings SET logo='".$_POST['logo']."',sav='".$_POST['sav']."',store='".$_POST['store']."',rib='".$_POST['rib']."',onesignal='".$_POST['onesignal']."',iddevice='".$_POST['iddevice']."',smstoken='".$_POST['smstoken']."',generalstock='".$_POST['generalstock']."',allstates='".$_POST['allstates']."',currency='".$_POST['currency']."',allfields='".$_POST['allfields']."',addwithstate='".$_POST['addwithstate']."',splitorders='".$_POST['splitorders']."',splitinvoices='".$_POST['splitinvoices']."',autorelaunch='".$_POST['autorelaunch']."'");
					}
					$req->execute();
				}
				$back = $bdd->query("SELECT id FROM parametres WHERE user='".$_SESSION['id']."'");
				if($back->rowCount() == 0){
					$req = $bdd->prepare("INSERT INTO parametres(id,user,nbrows,rowcolor) VALUE('','".$_SESSION['id']."','".$_POST['nbrows']."','".$_POST['rowcolor']."')");
				}
				else{
					$req = $bdd->prepare("UPDATE parametres SET nbrows='".$_POST['nbrows']."',rowcolor='".$_POST['rowcolor']."' WHERE user='".$_SESSION['id']."'");
				}
				$req->execute();				
			}

if($_POST['action'] == "addworker"){
				if($_POST['id'] == "0"){
					$back = $bdd->query("SELECT id FROM users WHERE email='".$_POST['email']."'");
					if($back->rowCount() == 0){
						$req = $bdd->prepare("INSERT INTO users(id,fullname,picture,email,password,phone,stockout,emailstockout,type,roles,productslist,citieslist,storeslist,idplayer,iddevice,datesignup,dateactive,trash) VALUES ('0','".sanitize_vars($_POST['fullname'])."','avatar.png','".sanitize_vars($_POST['email'])."','".sanitize_vars($_POST['password'])."','".sanitize_vars($_POST['phone'])."','','','worker','".sanitize_vars(substr($_POST['roles'],1))."','".sanitize_vars($_POST['productslist'])."','".sanitize_vars($_POST['citieslist'])."','','','".sanitize_vars($_POST['iddevice'])."','".time()."','".time()."','1')");
						$req->execute();
					}
					else{
						echo "Email exist déja !!";
					}
				}
				else{
					$req = $bdd->prepare("UPDATE users SET fullname='".sanitize_vars($_POST['fullname'])."',password='".sanitize_vars($_POST['password'])."',phone='".sanitize_vars($_POST['phone'])."',roles='".sanitize_vars(substr($_POST['roles'],1))."',productslist='".sanitize_vars($_POST['productslist'])."',citieslist='".sanitize_vars($_POST['citieslist'])."',iddevice='".sanitize_vars($_POST['iddevice'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteworker"){
				$req = $bdd->prepare("UPDATE users SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreworker"){
				$req = $bdd->prepare("UPDATE users SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteworkerpermanently"){
				$req = $bdd->prepare("DELETE FROM users WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadworkers"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-worker"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-worker"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Produits à traités</td>
						<td>Villes à traités</td>
						<td>SeMySMS ID Device <i class="fa fa-sort" data-sort="iddevice"></i></td>
						<td>Notifications</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM users WHERE type='worker' AND trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND (fullname LIKE '%".sanitize_vars($_POST['keyword'])."%' OR phone LIKE '%".sanitize_vars($_POST['keyword'])."%' OR email LIKE '%".sanitize_vars($_POST['keyword'])."%')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (datesignup BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="worker" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['fullname'];?></span></td>
						<td><span><?php echo $row['phone'];?></span></td>
						<td><span><?php echo $row['email'];?></span></td>
						<td><span><?php echo str_replace("\n","<br />",$row['productslist']);?></span></td>
						<td><span><?php echo str_replace("\n","<br />",$row['citieslist']);?></span></td>
						<td><span><?php echo $row['iddevice'];?></span></td>
						<td><span><?php echo str_replace(",",", ",$row['roles']);?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-worker lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-email="<?php echo $row['email'];?>"
								data-password="<?php echo $row['password'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-productslist="<?php echo $row['productslist'];?>"
								data-citieslist="<?php echo $row['citieslist'];?>"
								data-iddevice="<?php echo $row['iddevice'];?>"
								data-roles=",<?php echo $row['roles'];?>" data-title="worker"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-worker lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-worker" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-worker" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Produits à traités</td>
						<td>Villes à traités</td>
						<td>SeMySMS ID Device <i class="fa fa-sort" data-sort="iddevice"></i></td>
						<td>Notifications</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> employé(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> employé(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addproduct"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO products(id,title,ref,price,bprice,description,link,pictures,dateadd,trash) VALUES ('0','".sanitize_vars($_POST['title'])."','".sanitize_vars($_POST['ref'])."','".sanitize_vars($_POST['price'])."','".sanitize_vars($_POST['bprice'])."','".sanitize_vars($_POST['description'])."','".sanitize_vars($_POST['link'])."','','".time()."','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE products SET title='".sanitize_vars($_POST['title'])."',ref='".sanitize_vars($_POST['ref'])."',price='".sanitize_vars($_POST['price'])."',bprice='".sanitize_vars($_POST['bprice'])."',description='".sanitize_vars($_POST['description'])."',link='".sanitize_vars($_POST['link'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "duplicateproduct"){
				$req = $bdd->prepare("INSERT INTO `products` (title,ref,price,bprice,description,link,pictures,dateadd,trash)
									SELECT title,ref,price,bprice,description,link,pictures,'".time()."',trash
									FROM products 
									WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "saveplayer"){
				if($_POST['player'] != ""){
					$req = $bdd->prepare("UPDATE users SET idplayer='".$_POST['player']."' WHERE id='".$_SESSION['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteproduct"){
				$req = $bdd->prepare("UPDATE products SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreproduct"){
				$req = $bdd->prepare("UPDATE products SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteproductpermanently"){
				$req = $bdd->prepare("DELETE FROM products WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadproducts"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-product"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-product"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Titre<i class="fa fa-sort" data-sort="title"></i></td>
						<td>Référence <i class="fa fa-sort" data-sort="ref"></i></td>
						<td>Prix d'achat <i class="fa fa-sort" data-sort="bprice"></i></td>
						<td>Prix de vente <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Description</td>
						<td style="width:160px;">Photos</td>
						<td>Date d'ajout <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM products WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND (title LIKE '%".sanitize_vars($_POST['keyword'])."%' OR ref LIKE '%".sanitize_vars($_POST['keyword'])."%' OR price LIKE '%".sanitize_vars($_POST['keyword'])."%')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="product" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['title'];?></span></td>
						<td><span><?php echo $row['ref'];?></span></td>
						<td><span><?php echo $row['bprice'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span></td>
						<td>
							<span><?php echo str_replace("\n","<br />",$row['description']);?></span>
							<?php
							if($row['link'] != ""){
							?>
							<a href="<?php echo $row['link'];?>" target="_blank">Voir le produit</a>
							<?php
							}
							?>
						</td>
						<td>
							<?php
							if($row['pictures'] != ""){
								$pictures = explode(",",$row['pictures']);
								?>
							<div class="lx-photos-preview">
								<?php
								if(preg_match("#Stock générale|Agent stock#",$_SESSION['roles'])){
								?>
								<a href="javascript:;" data-allpics="<?php echo $row['pictures'];?>" data-pic="<?php echo $pictures[1];?>"  data-id="<?php echo $row['id'];?>"><i class="material-icons">close</i></a>
								<?php
								}
								?>
								<img src="uploads/cropped_<?php echo $pictures[1];?>" />
							</div>
								<?php
								for($i=1;$i<count($pictures);$i++){
									?>
							<a href="javascript:;" class="lx-show-pictures" data-pic="<?php echo $pictures[$i];?>"><?php echo $i;?></a>
									<?php
								}
							}
							?>
							<div class="lx-upload-photos">
								<input type="file" name="uploadphotos[]" id="uploadphotos<?php echo $row['id'];?>" data-id="<?php echo $row['id'];?>" multiple="multiple" accept="image/x-png,image/jpeg" />
								<a href="javascript:;" class="">Ajouter photo</a>
							</div>
						</td>
						<td><span><?php echo gmdate("d/m/Y",$row['dateadd']);?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-product lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-titl="<?php echo $row['title'];?>"
								data-ref="<?php echo $row['ref'];?>" 
								data-bprice="<?php echo $row['bprice'];?>" 
								data-price="<?php echo $row['price'];?>" 
								data-description="<?php echo $row['description'];?>" 
								data-link="<?php echo $row['link'];?>" data-title="product"><i class="fa fa-edit"></i></a>
								<a href="javascript:;" class="lx-delete lx-duplicate-product" data-id="<?php echo $row['id'];?>"><i class="far fa-copy"></i></a>
								<a href="javascript:;" class="lx-delete lx-delete-product lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-product" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-product" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Titre<i class="fa fa-sort" data-sort="title"></i></td>
						<td>Référence <i class="fa fa-sort" data-sort="ref"></i></td>
						<td>Prix d'achat <i class="fa fa-sort" data-sort="bprice"></i></td>
						<td>Prix de vente <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Description</td>
						<td>Photos</td>
						<td>Date d'ajout <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> produit(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> produit(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}
			
			if($_POST['action'] == "addcity"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO cities VALUES('0','".sanitize_vars($_POST['city'])."','1')");
					$req->execute();
				}
				else{
					$back = $bdd->query("SELECT city FROM cities WHERE id='".$_POST['id']."'");
					$row = $back->fetch();
					$req = $bdd->prepare("UPDATE cities SET city='".sanitize_vars($_POST['city'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
					$req = $bdd->prepare("UPDATE commands SET city='".sanitize_vars($_POST['city'])."' WHERE city='".$row['city']."'");
					$req->execute();	
					$req = $bdd->prepare("UPDATE shippingfees SET city='".sanitize_vars($_POST['city'])."' WHERE city='".$row['city']."'");
					$req->execute();
					$req = $bdd->prepare("UPDATE statistics SET city='".sanitize_vars($_POST['city'])."' WHERE city='".$row['city']."'");
					$req->execute();					
				}
			}
			
			if($_POST['action'] == "deletecity"){
				$req = $bdd->prepare("UPDATE cities SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "recitiecity"){
				$req = $bdd->prepare("UPDATE cities SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletecitypermanently"){
				$req = $bdd->prepare("DELETE FROM cities WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadcities"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-cities"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-cities"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Ville</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM cities WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND city LIKE '%".$_POST['keyword']."%'";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="city" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo ucfirst(strtolower($row['city']));?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-city lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-city="<?php echo ucfirst(strtolower($row['city']));?>" data-title="city"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-city lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-recity-city" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-city" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> ville(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> ville(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "adddlm"){
				if($_POST['id'] == "0"){
					$back = $bdd->query("SELECT id FROM users WHERE email='".$_POST['email']."'");
					if($back->rowCount() == 0){
						$req = $bdd->prepare("INSERT INTO users(id,fullname,picture,email,password,phone,stockout,emailstockout,type,roles,productslist,citieslist,storeslist,idplayer,iddevice,datesignup,dateactive,trash) VALUES ('0','".sanitize_vars($_POST['fullname'])."','avatar.png','".sanitize_vars($_POST['email'])."','".sanitize_vars($_POST['password'])."','".sanitize_vars($_POST['phone'])."','".sanitize_vars($_POST['stockout'])."','".sanitize_vars($_POST['emailstockout'])."','dlm','".sanitize_vars(substr($_POST['roles'],1))."','','','','','','".time()."','".time()."','1')");
						$req->execute();
					}
					else{
						echo "Email exist déja !!";
					}
				}
				else{
					$req = $bdd->prepare("UPDATE users SET fullname='".sanitize_vars($_POST['fullname'])."',password='".sanitize_vars($_POST['password'])."',phone='".sanitize_vars($_POST['phone'])."',stockout='".sanitize_vars($_POST['stockout'])."',emailstockout='".sanitize_vars($_POST['emailstockout'])."',roles='".sanitize_vars(substr($_POST['roles'],1))."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deletedlm"){
				$req = $bdd->prepare("UPDATE users SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoredlm"){
				$req = $bdd->prepare("UPDATE users SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deletedlmpermanently"){
				$req = $bdd->prepare("DELETE FROM users WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loaddlm"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-dlm"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-dlm"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>StockOUT/MyLiv <i class="fa fa-sort" data-sort="stockout"></i></td>
						<td>Droits <i class="fa fa-sort" data-sort="roles"></i></td>
						<td>Date inscription <i class="fa fa-sort" data-sort="datesignup"></i></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
					<?php
					$req = "SELECT * FROM users WHERE type='dlm' AND trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND (fullname LIKE '%".sanitize_vars($_POST['keyword'])."%' OR phone LIKE '%".sanitize_vars($_POST['keyword'])."%' OR email LIKE '%".sanitize_vars($_POST['keyword'])."%')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (datesignup BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="dlm" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['fullname'];?></span></td>
						<td><span><?php echo $row['phone'];?></span></td>
						<td><span><?php echo $row['email'];?></span></td>
						<td>
							<span><?php echo $row['stockout'];?></span>
							<span><?php echo $row['emailstockout'];?></span>
						</td>
						<td><span><?php echo str_replace(",",", ",$row['roles']);?></span></td>
						<td><span><?php echo gmdate("d/m/Y H:i",$row['datesignup']);?></span></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-dlm lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-email="<?php echo $row['email'];?>"
								data-password="<?php echo $row['password'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-stockout="<?php echo $row['stockout'];?>"
								data-emailstockout="<?php echo $row['emailstockout'];?>"
								data-roles=",<?php echo $row['roles'];?>" data-title="dlm"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-dlm lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-dlm" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-dlm" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Droits <i class="fa fa-sort" data-sort="roles"></i></td>
						<td><?php echo $settings['store'];?> <i class="fa fa-sort" data-sort="stockout"></i></td>
						<td>Date inscription <i class="fa fa-sort" data-sort="datesignup"></i></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> livreur(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> livreur(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addsubdlm"){
				if($_POST['id'] == "0"){
					$back = $bdd->query("SELECT id FROM users WHERE email='".$_POST['email']."'");
					if($back->rowCount() == 0){
						$req = $bdd->prepare("INSERT INTO users(id,fullname,picture,email,password,phone,stockout,emailstockout,type,roles,productslist,citieslist,storeslist,idplayer,iddevice,datesignup,dateactive,trash) VALUES ('0','".sanitize_vars($_POST['fullname'])."','avatar.png','".sanitize_vars($_POST['email'])."','".sanitize_vars($_POST['password'])."','".sanitize_vars($_POST['phone'])."','','','subdlm','','','','','','','".time()."','".time()."','1')");
						$req->execute();
						$back = $bdd->query("SELECT id FROM users WHERE email='".$_POST['email']."'");
						$row = $back->fetch();
						$req = $bdd->prepare("INSERT INTO subdlm(id,dlm,subdlm) VALUES ('0','".sanitize_vars($_POST['dlm'])."','".sanitize_vars($row['id'])."')");
						$req->execute();
					}
					else{
						echo "Email exist déja !!";
					}
				}
				else{
					$req = $bdd->prepare("UPDATE users SET fullname='".sanitize_vars($_POST['fullname'])."',password='".sanitize_vars($_POST['password'])."',phone='".sanitize_vars($_POST['phone'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
					$req = $bdd->prepare("UPDATE subdlm SET dlm='".sanitize_vars($_POST['dlm'])."' WHERE subdlm='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deletesubdlm"){
				$req = $bdd->prepare("UPDATE users SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoresubdlm"){
				$req = $bdd->prepare("UPDATE users SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deletesubdlmpermanently"){
				$req = $bdd->prepare("DELETE FROM users WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadsubdlm"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-subdlm"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-subdlm"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<?php
						if($_SESSION['type'] == "moderator"){
							?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
							<?php
						}
						?>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Date inscription <i class="fa fa-sort" data-sort="datesignup"></i></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
					<?php
					$req = "SELECT * FROM subdlm sd,users u WHERE sd.subdlm=u.id AND type='subdlm' AND trash='".$_POST['state']."'";
					if($_SESSION['type'] == "dlm"){
						$req .= " AND dlm='".$_SESSION['id']."'";
					}	
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}						
					if($_POST['keyword'] != ""){
						$req .= " AND (fullname LIKE '%".sanitize_vars($_POST['keyword'])."%' OR phone LIKE '%".sanitize_vars($_POST['keyword'])."%' OR email LIKE '%".sanitize_vars($_POST['keyword'])."%')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (datesignup BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY u.id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="subdlm" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						?>
						<td><span><?php echo $row['fullname'];?></span></td>
						<td><span><?php echo $row['phone'];?></span></td>
						<td><span><?php echo $row['email'];?></span></td>
						<td><span><?php echo gmdate("d/m/Y H:i",$row['datesignup']);?></span></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-subdlm lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-dlm="<?php echo $row['dlm'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-email="<?php echo $row['email'];?>"
								data-password="<?php echo $row['password'];?>"
								data-phone="<?php echo $row['phone'];?>" data-title="subdlm"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-subdlm lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-subdlm" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-subdlm" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<?php
						if($_SESSION['type'] == "moderator"){
							?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
							<?php
						}
						?>
						<td>Nom et prénom <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Téléphone <i class="fa fa-sort" data-sort="phone"></i></td>
						<td>E-mail <i class="fa fa-sort" data-sort="email"></i></td>
						<td>Date inscription <i class="fa fa-sort" data-sort="datesignup"></i></td>
						<?php
						if($_SESSION['type'] != "worker"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> sous livreur(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> sous livreur(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addshipment"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO shipments(id,product,qty,dlm,receipt,received,datesent,datereceived,trash) VALUES ('0','".sanitize_vars(substr($_POST['product'],1))."','".sanitize_vars(substr($_POST['qty'],1))."','".sanitize_vars($_POST['dlm'])."','','off','".time()."','','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE shipments SET product='".sanitize_vars(substr($_POST['product'],1))."',qty='".sanitize_vars(substr($_POST['qty'],1))."',dlm='".sanitize_vars($_POST['dlm'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteshipment"){
				$req = $bdd->prepare("UPDATE shipments SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreshipment"){
				$req = $bdd->prepare("UPDATE shipments SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteshipmentpermanently"){
				$req = $bdd->prepare("DELETE FROM shipments WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadshipments"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-shipment"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-shipment"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Accusé d'envoi</td>
						<td>Date d'envoi <i class="fa fa-sort" data-sort="datesent"></i></td>
						<td>Date de reception <i class="fa fa-sort" data-sort="datereceived"></i></td>
						<td>Reçu <i class="fa fa-sort" data-sort="received"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
					<?php
					$req = "SELECT * FROM shipments WHERE trash='".$_POST['state']."'".$user;
					if($_POST['keyword'] != ""){
						$req .= " AND (product IN(SELECT id FROM products WHERE title LIKE '%".trim($_POST['keyword'])."%' OR ref LIKE '%".trim($_POST['keyword'])."%') OR dlm IN(SELECT id FROM users WHERE fullname LIKE '%".trim($_POST['keyword'])."%' AND type='dlm'))";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['product'] != ""){
						$req .= " AND (product='".$_POST['product']."' OR product LIKE '".$_POST['product'].",%' OR product LIKE '%,".$_POST['product'].",%' OR product LIKE '%,".$_POST['product']."')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (datesent BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="shipment" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td>
							<?php
							$i = 0;
							$qtys = explode(",",$row['qty']);
							$back1 = $bdd->query("SELECT title FROM products WHERE id IN(".(substr($row['product'],-1)!=","?$row['product']:0).") ORDER BY FIELD(id,".(substr($row['product'],-1)!=","?$row['product']:0).")");
							while($row1 = $back1->fetch()){
								?>
							<span><?php echo $row1['title']." x ".$qtys[$i];?></span>
								<?php
								$i++;
							}
							?>
						</td>
						<?php
						if($_SESSION['type'] == "moderator"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						?>
						<td width="100">
							<?php
							if($row['receipt'] != ""){
								?>
							<img src="uploads/<?php echo $row['receipt'];?>" class="lx-receipt-img lx-open-popup" data-title="zoomimg" />
								<?php
							}
							if($_SESSION['type'] == "moderator"){
							?>
							<div class="lx-upload-receipt">
								<input type="file" name="uploadreceipt" id="uploadreceipt<?php echo $row['id'];?>" class="uploadreceipt" data-id="<?php echo $row['id'];?>" accept="image/x-png,image/jpeg" />
								<a href="javascript:;" class="">Uploader</a>
							</div>
							<?php
							}
							?>
						</td>
						<td><span><?php echo gmdate("d/m/Y",$row['datesent']);?></span></td>
						<td>
							<?php
							if($row['datereceived'] != ""){
								?>
							<span><?php echo gmdate("d/m/Y",$row['datereceived']);?></span>
								<?php
							}
							else{
								?>
							<em>&mdash;</em>
								<?php
							}
							?>
						</td>	
						<td>
							<?php
							if($row['received'] == "on"){
								?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
								<?php
							}
							else{
								?>
							<div class="lx-on-off" data-state="<?php echo $row['received']?>" data-table="shipments" data-column="received" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>
								<?php
							}
							?>
						</td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>						
						<td>
							<?php
							if($row['received'] == 'off'){
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-shipment lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-product="<?php echo $row['product'];?>"
								data-qty="<?php echo $row['qty'];?>" 
								data-dlm="<?php echo $row['dlm'];?>" data-title="shipment"><i class="fa fa-edit"></i></a>
								<a href="printshipment.php?id=<?php echo $row['id'];?>" class="lx-edit"><i class="fa fa-print"></i></a>
								<a href="javascript:;" class="lx-delete lx-delete-shipment lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-shipment" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-shipment" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							}
							else{
								?>
								<a href="printshipment.php?id=<?php echo $row['id'];?>" class="lx-edit"><i class="fa fa-print"></i></a>
								<?php
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Accusé d'envoi</td>
						<td>Date d'envoi <i class="fa fa-sort" data-sort="datesent"></i></td>
						<td>Date de reception <i class="fa fa-sort" data-sort="datereceived"></i></td>
						<td>Reçu <i class="fa fa-sort" data-sort="received"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> envoi(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> envoi(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addstock"){
				if($_POST['id'] == "0"){
					$products = explode(",",$_POST['product']);
					for($i=0;$i<count($products);$i++){
						$back = $bdd->query("SELECT id FROM products WHERE title='".$products[$i]."'");
						$row = $back->fetch();
						$req = $bdd->prepare("INSERT INTO stocks(id,product,qty,broken,details,dlm,dateadd,trash) VALUES ('0','".sanitize_vars($row['id'])."','".sanitize_vars($_POST['qty'])."','".sanitize_vars($_POST['broken'])."','".sanitize_vars($_POST['details'])."','".sanitize_vars($_POST['dlm'])."','".time()."','1')");
						$req->execute();
					}
				}
				else{
					$back = $bdd->query("SELECT id FROM products WHERE title='".$_POST['product']."'");
					$row = $back->fetch();
					$req = $bdd->prepare("UPDATE stocks SET product='".sanitize_vars($row['id'])."',qty='".sanitize_vars($_POST['qty'])."',broken='".sanitize_vars($_POST['broken'])."',details='".sanitize_vars($_POST['details'])."',dlm='".sanitize_vars($_POST['dlm'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deletestock"){
				$req = $bdd->prepare("UPDATE stocks SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restorestock"){
				$req = $bdd->prepare("UPDATE stocks SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deletestockpermanently"){
				$req = $bdd->prepare("DELETE FROM stocks WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadstocks"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-stock"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-stock"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Qté initial <i class="fa fa-sort" data-sort="qty"></i></td>
						<td>Qté Livré/En cours/Expédié</td>
						<td>Qté Endommagé</td>
						<td>Qté restant</td>
						<td>Plus de détail</td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Date 1<sup>ér</sup> envoi <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<?php
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "dlm"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
					<?php
					$req = "SELECT * FROM stocks WHERE trash='".$_POST['state']."'".$user;
					if($_POST['keyword'] != ""){
						$req .= " AND (product IN(SELECT id FROM products WHERE title LIKE '%".trim($_POST['keyword'])."%' OR ref LIKE '%".trim($_POST['keyword'])."%') OR dlm IN(SELECT id FROM users WHERE fullname LIKE '%".trim($_POST['keyword'])."%' AND type='dlm'))";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['product'] != ""){
						$req .= " AND product='".$_POST['product']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					$tqty = 0;
					$tdelivered = 0;
					$tbroken = 0;
					$tleft = 0;
					$tencour = 0;
					while($row = $back->fetch()){
						$sm = 0;
						$back1 = $bdd->query("SELECT qty,product FROM commands WHERE (product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."') AND phase='shipping' AND state IN('Livré','En cours','Expédié')");
						while($row1 = $back1->fetch()){
							$stocks = explode(",",$row1['product']);
							$j = 0;
							for($i=0;$i<count($stocks);$i++){
								if($stocks[$i] == $row['id']){
									$j = $i;
								}
							}
							$qtys = explode(",",$row1['qty']);
							$sm += $qtys[$j];
						}
						$back1 = $bdd->query("SELECT qty,product FROM commandsarchive WHERE (product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."') AND phase='shipping' AND state IN('Livré','En cours','Expédié')");
						while($row1 = $back1->fetch()){
							$stocks = explode(",",$row1['product']);
							$j = 0;
							for($i=0;$i<count($stocks);$i++){
								if($stocks[$i] == $row['id']){
									$j = $i;
								}
							}
							$qtys = explode(",",$row1['qty']);
							$sm += $qtys[$j];
						}
						?>
					<tr style="<?php if(($row['qty'] - $sm - $row['broken']) <= 0){echo "background:rgba(".hexdec("ff").",".hexdec("e5").",".hexdec("e5").",0.5)";}?>">
						<td><label><input type="checkbox" name="stock" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td>
							<?php
							$back1 = $bdd->query("SELECT title FROM products WHERE id='".$row['product']."'");
							$row1 = $back1->fetch();
							?>
							<span><?php echo $row1['title'];?></span>
						</td>
						<td><span><?php echo $row['qty'];$tqty += $row['qty'];?></span></td>
						<td><span><?php echo $sm;$tdelivered += $sm;?></span></td>
						<td><span><?php echo $row['broken'];$tbroken += $row['broken'];?></span></td>
						<td><span><?php echo ($row['qty']-$sm-$row['broken']);$tleft += ($row['qty']-$sm-$row['broken']);?></span></td>
						<td><span><?php echo $row['details'];?></span></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						?>
						<td><span><?php echo gmdate("d/m/Y",$row['dateadd']);?></span></td>	
						<?php
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "dlm"){
						?>						
						<td>
							<?php
							if($_POST['state'] == 1){
								if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "dlm"){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-stock lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-product="<?php echo $row['product'];?>"
								data-qty="<?php echo $row['qty'];?>" 
								data-broken="<?php echo $row['broken'];?>" 
								data-details="<?php echo $row['details'];?>" 
								data-dlm="<?php echo $row['dlm'];?>" data-title="stock"><i class="fa fa-edit"></i>
								<?php
								}
								if($_SESSION['type'] == "moderator"){
									?>
								</a><a href="javascript:;" class="lx-delete lx-delete-stock lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
									<?php
								}
							}
							else{
								if($_SESSION['type'] == "moderator"){
								?>
							<a href="javascript:;" class="lx-edit lx-restore-stock" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-stock" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
								}
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td><?php echo $tqty;?></td>
						<td><?php echo $tdelivered;?></td>
						<td><?php echo $tbroken;?></td>
						<td><?php echo $tleft;?></td>
						<td>Plus de détail</td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Date 1<sup>ér</sup> envoi <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<?php
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "dlm"){
						?>
						<td>Action</td>
						<?php
						}
						?>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> stock(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> stock(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addttstock"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO ttstock(id,product,qty,price,dateadd,trash) VALUES ('0','".sanitize_vars($_POST['product'])."','".sanitize_vars($_POST['qty'])."','".sanitize_vars($_POST['price'])."','".time()."','1')");
					$req->execute();
					if($settings['generalstock'] == "1"){
						$back = $bdd->query("SELECT id FROM users WHERE type='dlm' AND trash='1'");
						while($row = $back->fetch()){
							$req = $bdd->prepare("INSERT INTO stocks(id,product,qty,broken,details,dlm,dateadd,trash) VALUES ('0','".sanitize_vars($_POST['product'])."','0','0','0','".$row['id']."','".time()."','1')");
							$req->execute();
						}
					}
				}
				else{
					$req = $bdd->prepare("UPDATE ttstock SET product='".sanitize_vars($_POST['product'])."',qty='".sanitize_vars($_POST['qty'])."',price='".sanitize_vars($_POST['price'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deletettstock"){
				$req = $bdd->prepare("UPDATE ttstock SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restorettstock"){
				$req = $bdd->prepare("UPDATE ttstock SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deletettstockpermanently"){
				$req = $bdd->prepare("DELETE FROM ttstock WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadttstock"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-ttstock"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-ttstock"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Qté initiale <i class="fa fa-sort" data-sort="qty"></i></td>
						<td>Qté livré</td>
						<td>Qté en cours</td>
						<td>Qté retourné</td>
						<td>Qté restante au magasin</td>
						<td>Prix</td>
						<td>Date d'ajout <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM ttstock WHERE trash='".$_POST['state']."'";
					if($_POST['product'] != ""){
						$req .= " AND product='".$_POST['product']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="ttstock" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td>
							<?php
							$back1 = $bdd->query("SELECT title FROM products WHERE id='".$row['product']."'");
							$row1 = $back1->fetch();
							?>
							<span><?php echo $row1['title'];?></span>
						</td>
						<td><span><?php echo $row['qty'];?></span></td>
						<?php
						$req = "SELECT id FROM commands WHERE phase='shipping' AND state='Livré' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq = $back1->rowCount();
						$req = "SELECT id FROM commandsarchive WHERE phase='shipping' AND state='Livré' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq += $back1->rowCount();
						?>
						<td><span><?php echo $tq;?></span></td>
						<?php
						$req = "SELECT id FROM commands WHERE phase='shipping' AND state NOT IN('Livré') AND state NOT LIKE '%Retour%' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq1 = $back1->rowCount();
						$req = "SELECT id FROM commandsarchive WHERE phase='shipping' AND state NOT IN('Livré') AND state NOT LIKE '%Retour%' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq1 += $back1->rowCount();
						?>
						<td><span><?php echo $tq1;?></span></td>
						<?php
						$req = "SELECT id FROM commands WHERE phase='shipping' AND state LIKE '%Retour%' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq2 = $back1->rowCount();
						$req = "SELECT id FROM commandsarchive WHERE phase='shipping' AND state LIKE '%Retour%' AND (";
						$i = 1;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['product']."'");
						while($row1 = $back1->fetch()){
							if($i == 1){
								$req .= "product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							else{
								$req .= " OR product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."'";
							}
							$i = 2;
						}
						if($back1->rowCount() == 0){
							$req .= "1=2";
						}
						$req .= ")";
						$back1 = $bdd->query($req);
						$tq2 += $back1->rowCount();
						?>
						<td><span><?php echo $tq2;?></span></td>
						<td><span><?php echo $row['qty'] - $tq - $tq1;?></span></td>
						<td><span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo gmdate("d/m/Y",$row['dateadd']);?></span></td>	
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-ttstock lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-product="<?php echo $row['product'];?>"
								data-qty="<?php echo $row['qty'];?>" 
								data-price="<?php echo $row['price'];?>" data-title="ttstock"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-ttstock lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-ttstock" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-ttstock" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Qté initiale <i class="fa fa-sort" data-sort="qty"></i></td>
						<td>Qté livré</td>
						<td>Qté en cours</td>
						<td>Qté retourné</td>
						<td>Qté restante au magasin</td>
						<td>Prix</td>
						<td>Date d'ajout <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> stock(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> stock(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}
			
			if($_POST['action'] == "addpack"){
				$req = $bdd->prepare("UPDATE sites SET pack='".sanitize_vars($_POST['pack'])."' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletesite"){
				$req = $bdd->prepare("DELETE FROM sites WHERE id='".$_POST['id']."'");
				$req->execute();
			}			
			
			if($_POST['action'] == "loadsites"){
				?>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Site <i class="fa fa-sort" data-sort="baseurl"></i></td>
						<td>Full Link <i class="fa fa-sort" data-sort="link"></i></td>
						<td>Pack <i class="fa fa-sort" data-sort="pack"></i></td>
						<td>Durée d'installation</td>
						<td>Date Installation <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Paid <i class="fa fa-sort" data-sort="paid"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT *,(dateadd + (pack * 30 * 24 * 60 * 60) - ".time().") AS rest FROM sites WHERE 1=1";
					if($_POST['keyword'] != ""){
						$req .= " AND (baseurl LIKE '%".trim($_POST['keyword'])."%' OR link LIKE '%".trim($_POST['keyword'])."%')";
					}
					if($_POST['pack'] != ""){
						$req .= " AND pack='".$_POST['pack']."'";
					}
					if($_POST['rest'] != ""){
						$req .= " AND ((dateadd + (pack * 30 * 24 * 60 * 60) - 1590937687) < ".$_POST['rest']." AND pack<>0)";
					}					
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						$bg = "";
						if(round($row['rest']/60/60/24) < 8 AND $row['pack'] != "0"){
							$bg = "background:rgba(255,0,0,0.05);";
						}
						?>
					<tr style="<?php echo $bg;?>">
						<td><label><input type="checkbox" name="site" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><a href="https://<?php echo $row['baseurl'];?>" target="_blank"><?php echo $row['baseurl'];?></a></td>
						<td><span><?php echo $row['link'];?></span></td>
						<td>
							<span>
								<?php
									if($row['pack'] == "0"){
										echo "Illimité";
									}
									elseif($row['pack'] == "1"){
										echo "30 jours période d'essai";
									}									
									else{
										echo $row['pack']." mois";
									}
								?>
							</span>
						</td>
						<td>
							<span>Il y a <?php echo ($row['dateadd'] != "")?round((time() - $row['dateadd'])/60/60/24):"0";?> jour(s)</span>
							<span><?php echo ($row['rest'] > 0)?round($row['rest']/60/60/24)." jour(s) restant(s)":"";?></span>
						</td>
						<td><span><?php echo ($row['dateadd'] != "")?gmdate("d/m/Y H:i",$row['dateadd']):"";?></span></td>
						<td>
							<?php
							if($row['paid'] == "on"){
								?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
								<?php
							}
							else{
								?>
							<div class="lx-on-off" data-state="<?php echo $row['paid']?>" data-table="sites" data-column="paid" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>
								<?php
							}
							?>
						</td>
						<td>
							<a href="javascript:;" class="lx-edit lx-edit-pack lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-pack="<?php echo $row['pack'];?>" data-title="pack"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-site lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Site <i class="fa fa-sort" data-sort="baseurl"></i></td>
						<td>Full Link <i class="fa fa-sort" data-sort="link"></i></td>
						<td>Pack <i class="fa fa-sort" data-sort="pack"></i></td>
						<td>Durée d'installation</td>
						<td>Date Installation <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Paid <i class="fa fa-sort" data-sort="paid"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> site(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> site(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addtrackingstate"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO trackingstates VALUES('0','".sanitize_vars($_POST['state'])."','".sanitize_vars(substr($_POST['phases'],1))."','".sanitize_vars($_POST['color'])."','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE trackingstates SET state='".sanitize_vars($_POST['state'])."',color='".sanitize_vars($_POST['color'])."',phases='".sanitize_vars(substr($_POST['phases'],1))."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}
			
			if($_POST['action'] == "deletetrackingstate"){
				$req = $bdd->prepare("UPDATE trackingstates SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoretrackingstate"){
				$req = $bdd->prepare("UPDATE trackingstates SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletetrackingstatepermanently"){
				$req = $bdd->prepare("DELETE FROM trackingstates WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadtrackingstates"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-trackingstates"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-trackingstates"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Etat</td>
						<td>Etape</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM trackingstates WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND state LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="trackingstate" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row['color'];?>;color:#FFFFFF;border-radius:4px;"><?php echo $row['state'];?></span></td>
						<td><span><?php echo str_replace(",",", ",$row['phases']);?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-trackingstate lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-state="<?php echo $row['state'];?>"
								data-color="<?php echo $row['color'];?>"
								data-phases=",<?php echo $row['phases'];?>" data-title="trackingstate"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-trackingstate lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-trackingstate" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-trackingstate" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Etat</td>
						<td>Etape</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> état(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> état(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addstore"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO stores VALUES('0','".sanitize_vars($_POST['name'])."','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE stores SET name='".sanitize_vars($_POST['name'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}
			
			if($_POST['action'] == "deletestore"){
				$req = $bdd->prepare("UPDATE stores SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restorestore"){
				$req = $bdd->prepare("UPDATE stores SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletestorepermanently"){
				$req = $bdd->prepare("DELETE FROM stores WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadstores"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-stores"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-stores"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Boutique</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM stores WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND name LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="store" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['name'];?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-store lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-name="<?php echo $row['name'];?>" data-title="store"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-store lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-store" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-store" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Etat</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> boutique(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> boutique(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addshippingfee"){
				if($_POST['id'] == "0"){
					$cities = explode(",",$_POST['city']);
					for($i=0;$i<count($cities);$i++){
						$req = $bdd->prepare("INSERT INTO shippingfees VALUES('0','".sanitize_vars($_POST['dlm'])."','".sanitize_vars($cities[$i])."','".sanitize_vars($_POST['deliveredfees'])."','".sanitize_vars($_POST['canceledfees'])."','".sanitize_vars($_POST['refusedfees'])."','".sanitize_vars($_POST['changedfees'])."','1')");
						$req->execute();						
					}
				}
				else{
					$cities = explode(",",$_POST['city']);
					$req = $bdd->prepare("UPDATE shippingfees SET dlm='".sanitize_vars($_POST['dlm'])."',city='".sanitize_vars($cities[0])."',deliveredfees='".sanitize_vars($_POST['deliveredfees'])."',canceledfees='".sanitize_vars($_POST['canceledfees'])."',refusedfees='".sanitize_vars($_POST['refusedfees'])."',changedfees='".sanitize_vars($_POST['changedfees'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}
			
			if($_POST['action'] == "deleteshippingfee"){
				$req = $bdd->prepare("UPDATE shippingfees SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "reshippingfeeshippingfee"){
				$req = $bdd->prepare("UPDATE shippingfees SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deleteshippingfeepermanently"){
				$req = $bdd->prepare("DELETE FROM shippingfees WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadshippingfees"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-shippingfee"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-shippingfee"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Livreur</td>
						<td>Ville</td>
						<td>Frais livré</td>
						<td>Frais annulé</td>
						<td>Frais refusé</td>
						<td>Frais changé</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM shippingfees WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND city LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="shippingfee" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<?php
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<td><span><?php echo $row['city'];?></span></td>
						<td><span><?php echo $row['deliveredfees'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo $row['canceledfees'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo $row['refusedfees'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo $row['changedfees'];?> <?php echo $settings['currency'];?></span></td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-shippingfee lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-dlm="<?php echo $row['dlm'];?>"
								data-city="<?php echo $row['city'];?>"
								data-deliveredfees="<?php echo $row['deliveredfees'];?>"
								data-canceledfees="<?php echo $row['canceledfees'];?>"
								data-refusedfees="<?php echo $row['refusedfees'];?>"
								data-changedfees="<?php echo $row['changedfees'];?>" data-title="shippingfee"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-shippingfee lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-reshippingfee-shippingfee" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-shippingfee" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Livreur</td>
						<td>Ville</td>
						<td>Frais livré</td>
						<td>Frais annulé</td>
						<td>Frais refusé</td>
						<td>Frais changé</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> frais de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> frais de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addconfirmation"){
				if($_POST['id'] == "0"){
					$rand = '';
					do{
						$rand = 'CMD-'.gmdate('dmY').'-'.random();
						$back = $bdd->query("SELECT id FROM commands WHERE code='".$rand."'");
					}
					while($back->rowCount() != 0);
					$req = $bdd->prepare("INSERT INTO commands(id,code,product,qty,dlm,subdlm,worker,store,source,fullname,phone,address,city,price,fees,phase,state,datereported,reason,note,workers,invoiced,dateadd,dateupdate,trash) VALUES ('0','".$rand."','".sanitize_vars(substr($_POST['product'],1))."','".sanitize_vars(substr($_POST['qty'],1))."','".sanitize_vars($_POST['dlm'])."','','".$_POST['worker']."','".sanitize_vars($_POST['store'])."','".sanitize_vars($_POST['source'])."','".sanitize_vars($_POST['fullname'])."','".sanitize_vars($_POST['phone'])."','".sanitize_vars($_POST['address'])."','".sanitize_vars($_POST['city'])."','".sanitize_vars($_POST['price'])."','0','confirmation','".sanitize_vars($_POST['state'])."','".sanitize_vars($_POST['datereported'])."','".sanitize_vars($_POST['reason'])."','".sanitize_vars($_POST['note'])."','".$_POST['worker']."','off','".time()."','".time()."','1')");
					$req->execute();
					$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$rand."','En cours','".$_SESSION['fullname']."','".time()."')");
					$req->execute();
				}
				else{
					$req = "";
					if($_POST['city'] != "" AND $_POST['city'] != "null"){
						$req .= ",city='".sanitize_vars($_POST['city'])."'";
					}
					if($_POST['product'] != "" AND substr($_POST['product'],1) != "null"){
						$req .= ",product='".sanitize_vars(substr($_POST['product'],1))."',qty='".sanitize_vars(substr($_POST['qty'],1))."'";
					}
					$req = $bdd->prepare("UPDATE commands SET dlm='".sanitize_vars($_POST['dlm'])."',worker='".sanitize_vars($_POST['worker'])."',store='".sanitize_vars($_POST['store'])."',source='".sanitize_vars($_POST['source'])."',fullname='".sanitize_vars($_POST['fullname'])."',phone='".sanitize_vars($_POST['phone'])."',address='".sanitize_vars($_POST['address'])."'".$req.",price='".sanitize_vars($_POST['price'])."',state='".sanitize_vars($_POST['state'])."',datereported='".sanitize_vars($_POST['datereported'])."',reason='".sanitize_vars($_POST['reason'])."',note='".sanitize_vars($_POST['note'])."',dateupdate='".time()."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "grabcommand"){
				$req = "";
				$productslist = explode("\n",$_SESSION['productslist']);
				if(count($productslist) > 0){
					$req .= " AND (";
					for($i=0;$i<count($productslist);$i++){
						if($i == 0){
							$req .= "product LIKE '%".$productslist[$i]."%'";
						}
						else{
							$req .= " OR product LIKE '%".$productslist[$i]."%'";
						}
					}	
					$req .= ")";
				}
				$citieslist = explode("\n",$_SESSION['citieslist']);
				if(count($citieslist) > 0){
					$req .= " AND (";
					for($i=0;$i<count($citieslist);$i++){
						if($i == 0){
							$req .= "city LIKE '%".$citieslist[$i]."%'";
						}
						else{
							$req .= " OR city LIKE '%".$citieslist[$i]."%'";
						}
					}	
					$req .= ")";
				}
				$encours = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND worker='".$_SESSION['id']."' AND state='Nouveau' AND trash='1'".$req);
				if($encours->rowCount() == 0){
					$back = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND worker='0' AND state='Nouveau' AND trash='1'".$req." ORDER BY dateadd DESC");
					if($back->rowCount() > 0){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE commands SET worker='".$_SESSION['id']."',workers='".$_SESSION['id']."' WHERE id='".$row['id']."'");
						$req->execute();
					}
					else{
						echo "Il y a pas de commandes pour le moment essayer plus tard";
					}
				}
				else{
					echo "Vous avez déja des commandes nouveau à confirmés";
				}
			}

if($_POST['action'] == "deleteconfirmation"){
				$back = $bdd->query("SELECT code FROM commands WHERE phase='confirmation' AND id='".$_POST['id']."'");
				$command = $back->fetch();				
				$req = $bdd->prepare("UPDATE commands SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
				saveLog($_SESSION['fullname']." a supprimé (corbeille) la commande N° ".$command['code']);
			}
			
			if($_POST['action'] == "restoreconfirmation"){
				$req = $bdd->prepare("UPDATE commands SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteconfirmationpermanently"){
				$back = $bdd->query("SELECT code FROM commands WHERE phase='confirmation' AND id='".$_POST['id']."'");
				$command = $back->fetch();	
				$req = $bdd->prepare("DELETE FROM commands WHERE id='".$_POST['id']."'");
				$req->execute();
				saveLog($_SESSION['fullname']." a supprimé la commande N° ".$command['code']);
			}
			
			if($_POST['action'] == "editstateconfirmation"){
				if($_SESSION['type'] == "worker"){
					$req = $bdd->prepare("UPDATE users SET dateactive='".time()."' WHERE id='".$_SESSION['id']."'");
					$req->execute();
				}
				$back = $bdd->query("SELECT code,state,phone,worker FROM commands WHERE phase='confirmation' AND id='".$_POST['id']."'");
				$command = $back->fetch();
				$req = $bdd->prepare("UPDATE commands SET state='".sanitize_vars($_POST['state'])."',datereported='".sanitize_vars(strtotime(str_replace("/","-",$_POST['datereported'])))."',reason='".sanitize_vars($_POST['reason'])."',note='".sanitize_vars($_POST['note'])."',dateupdate='".time()."' WHERE id='".$_POST['id']."'");
				$req->execute();
				$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','".sanitize_vars($_POST['state'])."','".$_SESSION['fullname']."','".time()."')");
				$req->execute();
				if($_POST['state'] != $command['state']){
					saveLog($_SESSION['fullname']." a changé l\'état du commande N° ".$command['code']." de [".$command['state']."] à [".$_POST['state']."]");
				}
				$back = $bdd->query("SELECT * FROM sms WHERE state='".sanitize_vars($_POST['state'])."' AND phase='Confirmation' AND trash='1' AND active='on'");
				if($back->rowCount() > 0){
					$sms = $back->fetch();
					if($sms['content'] != ""){
						$back = $bdd->query("SELECT iddevice FROM users WHERE id='".$command['worker']."'");
						$user = $back->fetch();
						sendSMS($command['phone'],$sms['content'],$user['iddevice'],$settings['smstoken']);
					}
				}
			}

if($_POST['action'] == "refreshconfirmation"){
				$req = "";
				if($_POST['worker'] != "0"){
					$req = ",workers=CONCAT(workers,',',".sanitize_vars($_POST['worker']).")";
				}
				if($_POST['ids'] != ""){
					$req = $bdd->prepare("UPDATE commands SET worker='".sanitize_vars($_POST['worker'])."',state='Nouveau'".$req.",note='',dateupdate='".time()."' WHERE id IN(".$_POST['ids'].")");
					$req->execute();
					$back = $bdd->query("SELECT code FROM commands WHERE phase='confirmation' AND id IN(".$_POST['ids'].")");
					while($command = $back->fetch()){
						$req = $bdd->prepare("DELETE FROM commandshistory WHERE command='".$command['code']."'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','Nouveau','".$_SESSION['fullname']."','".time()."')");
						$req->execute();
					}					
				}
				else{
					if($_POST['nbcmd'] > 0){
						$back = $bdd->query("SELECT id FROM commands WHERE state='Nouveau' AND worker='0' AND trash='1' LIMIT 0,".$_POST['nbcmd']);
						while($row = $back->fetch()){
							$req = $bdd->prepare("UPDATE commands SET worker='".sanitize_vars($_POST['worker'])."',state='Nouveau'".$req.",note='',dateupdate='".time()."' WHERE id IN(".$row['id'].")");
							$req->execute();							
						}	
					}	
				}
			}
			
			if($_POST['action'] == "loadconfirmation"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-confirmation"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-confirmation"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Validé</td>
						<td>Action</td>
					</tr>
					<?php
					$altuser = $user;
					if($_SESSION['type'] == "worker" AND $_POST['keyword'] == ""){
						$altuser = " AND worker='".$_SESSION['id']."'";
					}
					$req = "SELECT * FROM commands WHERE phase='confirmation' AND trash='".$_POST['state']."'".$altuser;
					if($_POST['keyword'] != ""){
						$req .= " AND (code LIKE '%".trim($_POST['keyword'])."%' OR product LIKE '%".trim($_POST['keyword'])."%' OR fullname LIKE '%".trim($_POST['keyword'])."%' OR phone LIKE '%".trim($_POST['keyword'])."%' OR address LIKE '%".trim($_POST['keyword'])."%' OR city LIKE '%".trim($_POST['keyword'])."%' OR note LIKE '%".trim($_POST['keyword'])."%' OR product IN(SELECT id FROM products WHERE title LIKE '%".trim($_POST['keyword'])."%' OR ref LIKE '%".trim($_POST['keyword'])."%') OR dlm IN(SELECT id FROM users WHERE fullname LIKE '%".trim($_POST['keyword'])."%' AND type='dlm'))";
					}
					if($_POST['worker'] != "" AND $_POST['keyword'] == ""){
						$req .= " AND worker='".$_POST['worker']."'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['city'] != ""){
						$req .= " AND city='".$_POST['city']."'";
					}
					if($_POST['product'] != ""){
						$req .= " AND (";
						$i = 1;
						$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
						while($row = $back->fetch()){
							if($i == 1){
								$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							else{
								$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							$i = 2;
						}
						$req .= ")";
					}
					if($_SESSION['storeslist'] != ""){
						$req .= " AND store IN(".$_SESSION['storeslist'].")";
					}
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['source'] != ""){
						$req .= " AND source='".$_POST['source']."'";
					}
					if($_POST['statee'] != ""){
						$req .= " AND state IN ('".str_replace(",","','",$_POST['statee'])."')";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartupdate'] != "" AND $_POST['dateendupdate'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartupdate']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendupdate'])) + (60*60*24) - 1;
						$req .= " AND (dateupdate BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartreport'] != "" AND $_POST['dateendreport'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartreport']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendreport'])) + (60*60*24) - 1;
						$req .= " AND (datereported BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY dateupdate";
					}
					$req .= " ".$_POST['orderby'];
					$back3 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					$tqty = 0;
					while($row = $back->fetch()){
						$back1 = $bdd->query("SELECT * FROM trackingstates WHERE state='".$row['state']."'");
						$state = $back1->fetch();
						$background = "";
						if($parametres['rowcolor'] == "1"){
							$background = "background:rgba(".hexdec(substr($state['color'],1,2)).",".hexdec(substr($state['color'],3,2)).",".hexdec(substr($state['color'],5,2)).",0.2)";
						}
						?>
					<tr style="<?php echo $background;?>">
						<td>
							<?php
							if($_SESSION['type'] == "moderator" OR ($_SESSION['type'] == "worker" AND $_SESSION['id'] == $row['worker'])){
								?>
							<label><input type="checkbox" name="command" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label>
								<?php
							}
							?>
						</td>
						<td>
							<span><a href="javascript:;" class="lx-show-history lx-open-popup" style="color:#242424;font-weight:500;white-space:nowrap;" data-id="<?php echo $row['code'];?>" data-title="commandhistory"><?php echo $row['code'];?></a><br />
							<?php echo $row['fullname'];?><br />
							<?php
							$back1 = $bdd->query("SELECT id FROM commands WHERE phone='".$row['phone']."' AND id<>'".$row['id']."' AND trash='1'");
							$back2 = $bdd->query("SELECT id FROM commands WHERE phone='".$row['phone']."' AND id<>'".$row['id']."' AND state='Black list' AND trash='1'");
							$style = "color:#242424;font-weight:500;";
							if($back2->rowCount() > 0){
								$style = "display:inline-block;padding:2px 5px;font-weight:500;background:#242424;color:#FFFFFF;border-radius:4px;cursor:pointer;";
							}
							elseif($back1->rowCount() > 0){
								$style = "display:inline-block;padding:2px 5px;font-weight:500;background:#FFA500;color:#FFFFFF;border-radius:4px;cursor:pointer;";
							}							
							?>
							<a href="tel:<?php echo $row['phone'];?>" style="<?php echo $style;?>"><?php echo $row['phone'];?></a><br />
							<?php echo $row['address'];?><br />
							<?php echo $row['city'];?></span>
							<?php
							if($row['dlm'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['dlm']."'");
								$row1 = $back1->fetch();
								?>
							<span style="font-weight:500;"><?php echo $row1['fullname']." (".$row1['phone'].")";?></span>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							$recapproduct = "";
							$smsproduct = "";
							if(preg_match("#^[0-9]+(,[0-9]+)*$#",$row['product'])){
								$i = 0;
								$qtys = explode(",",$row['qty']);
								$back1 = $bdd->query("SELECT product FROM stocks WHERE id IN(".$row['product'].") ORDER BY FIELD(id,".$row['product'].")");
								while($row1 = $back1->fetch()){
									$back2 = $bdd->query("SELECT title FROM products WHERE id='".$row1['product']."'");
									$row2 = $back2->fetch();
									?>
							<span><?php echo $row2['title']." x ".$qtys[$i];?></span>
									<?php
									$tqty += $qtys[$i];
									$i++;
									$smsproduct .= " + ".$row2['title'];
								}
							}
							else{
								$recapproduct = $row['product'];
								$smsproduct = $row['product'];
								$products = explode(",",$row['product']);
								$qtys = explode(",",$row['qty']);
								for($i=0;$i<count($products);$i++){
									?>
							<span><?php echo $products[$i]." x ".$qtys[$i];?></span>
									<?php
									$tqty += $qtys[$i];
								}							
							}
							?>
						</td>
						<td><span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span></td>
						<?php
						$back1 = $bdd->query("SELECT color FROM trackingstates WHERE state='".$row['state']."'");
						$row1 = $back1->fetch();
						?>
						<td>
							<?php
							if($_SESSION['type'] == "worker"){
								if($_SESSION['id'] == $row['worker']){
									?>
							<span <?php if($row['invoiced'] == "off"){echo " class='lx-edit-state lx-open-popup' data-id='".$row['id']."' data-state='".$row['state']."' data-datereported='".($row['datereported']!=""?gmdate('d/m/Y',$row['datereported']):'')."' data-reason='".$row['reason']."' data-note='".$row['note']."' data-title='editstateconfirmation'";}?> style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color'];?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span>
									<?php
									if($row['datereported'] != ""){
										?>
							<span><?php echo gmdate("d/m/Y",$row['datereported']);?></span>
									<?php
									}
									if($row['reason'] != ""){
										?>
							<span><?php echo $row['reason'];?></span>
										<?php
									}
								}
								else{
									?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color'];?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span>
									<?php
									if($row['datereported'] != ""){
										?>
							<span><?php echo gmdate("d/m/Y",$row['datereported']);?></span>
									<?php
									}
									if($row['reason'] != ""){
										?>
							<span><?php echo $row['reason'];?></span>
										<?php
									}
								}
							}
							else{
								?>
							<span <?php if($row['invoiced'] == "off"){echo " class='lx-edit-state lx-open-popup' data-id='".$row['id']."' data-state='".$row['state']."' data-datereported='".($row['datereported']!=""?gmdate('d/m/Y',$row['datereported']):'')."' data-reason='".$row['reason']."' data-note='".$row['note']."' data-title='editstateconfirmation'";}?> style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color'];?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span>
								<?php
								if($row['datereported'] != ""){
									?>
							<span><?php echo gmdate("d/m/Y",$row['datereported']);?></span>
									<?php
								}
								if($row['reason'] != ""){
									?>
							<span><?php echo $row['reason'];?></span>
									<?php
								}							
							}
							?>
						</td>
						<td>
							<?php
							$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['worker']."'");
							$row1 = $back1->fetch();
							$workerphone = $row1['phone'];
							if($row['worker'] != "0"){
								?>
							<span><?php echo $row1['fullname'];?></span>
								<?php
							}
							$back1 = $bdd->query("SELECT name FROM stores WHERE id='".$row['store']."'");
							$row1 = $back1->fetch();
							$store = $row1['name'];
							?>							
							<span><?php echo ($row1['name']!=""?"<b>".$row1['name']."</b>":"&mdash;");?></span>
							<span><?php echo ($row['source']!=""?$row['source']:"&mdash;");?></span>
							<span><?php echo ($row['note']!=""?$row['note']:"&mdash;");?></span>
							<?php
							if($_SESSION['type'] == "moderator"){
								$workers = explode(",",$row['workers']);
								for($i=0;$i<count($workers);$i++){
									$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$workers[$i]."'");
									if($back1->rowCount() > 0){
										$row1 = $back1->fetch();
										?>
							<span><strong>Confirmation <?php echo $i;?>: </strong><?php echo $row1['fullname'];?></span>
										<?php
									}
								}
							}
							?>
							<?php
							$back1 = $bdd->query("SELECT id FROM commands WHERE dateadd > '".($row['dateadd'] - (60*60*24*3))."' AND id<>'".$row['id']."' AND phone='".$row['phone']."' AND trash='1'");
							if($back1->rowCount() > 0){
								?>
							<strong style="color:red;">Commande peut être double</strong>
								<?php
							}
							?>
						</td>
						<td>
							<span><b>Date ajout:</b><br /><?php echo ($row['dateadd']!=""?gmdate("d/m/Y H:i",$row['dateadd']):"&mdash;");?></span>
							<span><b>Date mise à jour:</b><br /><?php echo ($row['dateupdate']!=""?gmdate("d/m/Y H:i",$row['dateupdate']):"&mdash;");?></span>
						</td>
						<td>
							<?php
							if($row['phase'] == "confirmation" 
								AND $row['state'] == "Confirmé" 
								AND $row['dlm'] != "0" 
								AND $row['city'] != "" 
								AND $row['city'] != "null"){
							?>
							<div class="lx-on-off" data-state="off" data-table="commands" data-column="phase" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>	
							<?php
							}
							?>
						</td>
						<td>
							<?php
							if($_SESSION['type'] == "moderator" OR ($_SESSION['type'] == "worker" AND $_SESSION['id'] == $row['worker'])){
								if($_POST['state'] == 1){
									?>
							<a href="javascript:;" class="lx-edit lx-edit-confirmation lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-product="<?php echo $row['product'];?>"
								data-recapproduct="<?php echo $recapproduct;?>"
								data-qty="<?php echo $row['qty'];?>" 
								data-dlm="<?php echo $row['dlm'];?>"
								data-source="<?php echo $row['source'];?>"
								data-store="<?php echo $row['store'];?>"
								data-worker="<?php echo $row['worker'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-address="<?php echo $row['address'];?>"
								data-city="<?php echo $row['city'];?>"
								data-recapcity="<?php echo $row['city'];?>"
								data-price="<?php echo $row['price'];?>"
								data-state="<?php echo $row['state'];?>"
								data-datereported="<?php echo ($row['datereported']!=""?gmdate('d/m/Y',$row['datereported']):'');?>"
								data-reason="<?php echo $row['reason'];?>"
								data-note="<?php echo $row['note'];?>"
								data-title="confirmation"><i class="fa fa-edit"></i></a>
									<?php
									if(preg_match("#SMS#",$_SESSION['roles'])){
									?>							
							<a href="javascript:;" class="lx-delete lx-send-sms-confirmation lx-open-popup"
								data-id="<?php echo $row['id'];?>"
								data-store="<?php echo $store;?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-product="<?php echo $smsproduct;?>"
								data-price="<?php echo $row['price'];?>"
								data-workerphone="<?php echo $workerphone;?>"
								data-title="smsconfirmation" data-id="<?php echo $row['id'];?>"><i class="fa fa-paper-plane"></i></a>
									<?php
									}
									if($_SESSION['type'] == "moderator"){
									?>							
							<a href="javascript:;" class="lx-delete lx-delete-confirmation lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
									<?php
									}
								}
								else{
									?>
							<a href="javascript:;" class="lx-edit lx-restore-confirmation" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a>
									<?php
									if($_SESSION['type'] == "moderator"){
									?>
							<a href="javascript:;" class="lx-delete lx-delete-permanently-confirmation" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
									<?php
									}
								}
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits (<?php echo $tqty;?>) <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<td>Validé</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back3->rowCount();?>" />
				<?php
				if($back3->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back3->rowCount();?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "addcommand"){
				if($_POST['id'] == "0"){
					$rand = '';
					do{
						$rand = 'CMD-'.gmdate('dmY').'-'.random();
						$back = $bdd->query("SELECT id FROM commands WHERE code='".$rand."'");
					}
					while($back->rowCount() != 0);
					$req = $bdd->prepare("INSERT INTO commands(id,code,product,qty,dlm,subdlm,worker,store,source,fullname,phone,address,city,price,fees,phase,state,datereported,reason,note,workers,invoiced,dateadd,dateupdate,trash) VALUES ('0','".$rand."','".sanitize_vars(substr($_POST['product'],1))."','".sanitize_vars(substr($_POST['qty'],1))."','".sanitize_vars($_POST['dlm'])."','','".$_POST['worker']."','".sanitize_vars($_POST['store'])."','".sanitize_vars($_POST['source'])."','".sanitize_vars($_POST['fullname'])."','".sanitize_vars($_POST['phone'])."','".sanitize_vars($_POST['address'])."','".sanitize_vars($_POST['city'])."','".sanitize_vars($_POST['price'])."','".sanitize_vars($_POST['fees'])."','shipping','En cours','','','','".sanitize_vars($_POST['worker'])."','off','".time()."','".time()."','1')");
					$req->execute();
					$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$rand."','En cours','".$_SESSION['fullname']."','".time()."')");
					$req->execute();
					$back = $bdd->query("SELECT idplayer FROM users WHERE id='".$_POST['dlm']."'");
					$row = $back->fetch();
					if($row['idplayer'] != ""){
						$i = 0;
						$products = "";
						$qtys = explode(",",substr($_POST['qty'],1));
						$back1 = $bdd->query("SELECT * FROM stocks WHERE id IN(".substr($_POST['product'],1).")");
						while($row1 = $back1->fetch()){
							$back2 = $bdd->query("SELECT * FROM products WHERE id='".$row1['product']."'");
							$row2 = $back2->fetch();
							$products .= " + " . $row2['ref']." x ".$qtys[$i];
							$i++;
						}
						sendMessage($row['idplayer'],$settings['store'].": ".$_POST['fullname']." (".$_POST['phone'].") [".$_POST['address']." ".$_POST['city']."]",substr($products,3),"tel:".$_POST['phone'],$settings['onesignal']);
					}
				}
				else{
					$back = $bdd->query("SELECT id,code,qty,dlm,city,price,state FROM commands WHERE phase='shipping' AND id='".$_POST['id']."'");
					$command = $back->fetch();
					if($command['state'] == "Livré"){
						if($command['price'] != $_POST['price']){
							$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
							$row = $back->fetch();
							$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							$price = ($_POST['price'] - $city['deliveredfees']) - ($command['price'] - $city['deliveredfees']);
							$req = $bdd->prepare("UPDATE factures SET price=(price+".$price.") WHERE code='".$row['facture']."'");
							$req->execute();
						}
						if($command['fees'] != $_POST['fees']){
							$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
							$row = $back->fetch();
							$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							$price = ($_POST['price'] - $_POST['fees'] - $city['deliveredfees']) - ($command['price'] - $command['fees'] - $city['deliveredfees']);
							$req = $bdd->prepare("UPDATE factures SET price=(price+".$price.") WHERE code='".$row['facture']."'");
							$req->execute();
						}
					}
					$req = $bdd->prepare("UPDATE commands SET product='".sanitize_vars(substr($_POST['product'],1))."',qty='".sanitize_vars(substr($_POST['qty'],1))."',dlm='".sanitize_vars($_POST['dlm'])."',store='".sanitize_vars($_POST['store'])."',source='".sanitize_vars($_POST['source'])."',fullname='".sanitize_vars($_POST['fullname'])."',phone='".sanitize_vars($_POST['phone'])."',address='".sanitize_vars($_POST['address'])."',city='".sanitize_vars($_POST['city'])."',price='".sanitize_vars($_POST['price'])."',fees='".sanitize_vars($_POST['fees'])."',workers='".sanitize_vars($_POST['worker'])."',dateupdate='".time()."' WHERE id='".$_POST['id']."'");
					$req->execute();
					if($command['fees'] != $_POST['fees']){
						saveLog($_SESSION['fullname']." a changé les frais supplémentaire du commande N° ".$command['code']." de [".$command['price']." DH] à [".$_POST['price']." DH]");
					}
					if($command['price'] != $_POST['price']){
						saveLog($_SESSION['fullname']." a changé le prix du commande N° ".$command['code']." de [".$command['price']." DH] à [".$_POST['price']." DH]");
					}
					if($command['qty'] != substr($_POST['qty'],1)){
						saveLog($_SESSION['fullname']." a changé la quantité du commande N° ".$command['code']." de [".$command['qty']."] à [".substr($_POST['qty'],1)."]");
					}					
				}
			}

if($_POST['action'] == "deletecommand"){
				$back = $bdd->query("SELECT code FROM commands WHERE phase='shipping' AND id='".$_POST['id']."'");
				$command = $back->fetch();				
				$req = $bdd->prepare("UPDATE commands SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
				saveLog($_SESSION['fullname']." a supprimé (corbeille) la commande N° ".$command['code']);
			}
			
			if($_POST['action'] == "restorecommand"){
				$req = $bdd->prepare("UPDATE commands SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deletecommandpermanently"){
				$back = $bdd->query("SELECT code FROM commands WHERE phase='shipping' AND id='".$_POST['id']."'");
				$command = $back->fetch();	
				$req = $bdd->prepare("DELETE FROM commands WHERE id='".$_POST['id']."'");
				$req->execute();
				saveLog($_SESSION['fullname']." a supprimé la commande N° ".$command['code']);
			}
			
			if($_POST['action'] == "editstate"){
				if($_SESSION['type'] == "worker"){
					$req = $bdd->prepare("UPDATE users SET dateactive='".time()."' WHERE id='".$_SESSION['id']."'");
					$req->execute();
				}
				$back = $bdd->query("SELECT id,code,product,dlm,store,worker,phone,city,price,fees,state FROM commands WHERE phase='shipping' AND id='".$_POST['id']."'");
				$command = $back->fetch();
				$req = $bdd->prepare("UPDATE commands SET state='".sanitize_vars($_POST['state'])."',datereported='".sanitize_vars(strtotime(str_replace("/","-",$_POST['datereported'])))."',note='".sanitize_vars($_POST['note'])."',dateupdate='".time()."' WHERE id='".$_POST['id']."'");
				$req->execute();
				$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','".sanitize_vars($_POST['state'])."','".$_SESSION['fullname']."','".time()."')");
				$req->execute();
				$reqstore = "";
				if($settings['splitinvoices'] == 1){
					$reqstore = "AND store='".$command['store']."'";
				}
				if($_POST['state'] == "Livré" AND $command['state'] != "Livré"){
					$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();	
						$price = $command['price'] - $command['fees'] - $city['deliveredfees'];
						$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$_POST['id']."')");
						$req->execute();
						$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
						$req->execute();
					}
					else{
						$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						$price = $command['price'] - $command['fees'] - $city['deliveredfees'];						
						$rand = '';
						do{
							$rand = 'FCT-'.gmdate('dmY').'-'.random();
							$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
						}
						while($back2->rowCount() != 0);
						$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$_POST['id']."')");
						$req->execute();
					}
				}
				elseif($_POST['state'] != "Livré" AND $command['state'] == "Livré"){
					$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
					$city = $back->fetch();
					$price = $command['price'] - $command['fees'] - $city['deliveredfees'];					
					$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$_POST['id']."'");
					$row = $back->fetch();
					$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$_POST['id']."'");
					$req->execute();
					$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
					$req->execute();
				}
				if($_POST['state'] == "Refusé" AND $command['state'] != "Refusé"){
					$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['refusedfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['refusedfees'];
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$_POST['id']."')");
							$req->execute();
							$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
							$req->execute();
						}
					}
					else{
						$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['refusedfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['refusedfees'];
							$rand = '';
							do{
								$rand = 'FCT-'.gmdate('dmY').'-'.random();
								$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
							}
							while($back2->rowCount() != 0);
							$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
							$req->execute();
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$_POST['id']."')");
							$req->execute();
						}
					}
				}
				elseif($_POST['state'] != "Refusé" AND $command['state'] == "Refusé" AND !preg_match("#retour#i",$_POST['state'])){
					$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
					$city = $back->fetch();
					if($city['refusedfees'] != 0 OR $settings['allstates'] == "1"){
						$price = 0 - $city['refusedfees'];
						$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$_POST['id']."'");
						$row = $back->fetch();
						$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$_POST['id']."'");
						$req->execute();
						$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
						$req->execute();
					}
				}
				if($_POST['state'] == "Annulé" AND $command['state'] != "Annulé"){
					$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['canceledfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['canceledfees'];
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$_POST['id']."')");
							$req->execute();
							$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
							$req->execute();
						}
					}
					else{
						$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['canceledfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['canceledfees'];
							$rand = '';
							do{
								$rand = 'FCT-'.gmdate('dmY').'-'.random();
								$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
							}
							while($back2->rowCount() != 0);
							$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
							$req->execute();
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$_POST['id']."')");
							$req->execute();
						}
					}
				}
				elseif($_POST['state'] != "Annulé" AND $command['state'] == "Annulé" AND !preg_match("#retour#i",$_POST['state'])){
					$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
					$city = $back->fetch();
					if($city['canceledfees'] != 0 OR $settings['allstates'] == "1"){
						$price = 0 - $city['canceledfees'];
						$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$_POST['id']."'");
						$row = $back->fetch();
						$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$_POST['id']."'");
						$req->execute();
						$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
						$req->execute();
					}
				}
				if($_POST['state'] == "Change" AND $command['state'] != "Change"){
					$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['changedfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['changedfees'];
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$_POST['id']."')");
							$req->execute();
							$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
							$req->execute();
						}
					}
					else{
						$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
						$city = $back->fetch();
						if($city['changedfees'] != 0 OR $settings['allstates'] == "1"){
							$price = 0 - $city['changedfees'];
							$rand = '';
							do{
								$rand = 'FCT-'.gmdate('dmY').'-'.random();
								$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
							}
							while($back2->rowCount() != 0);
							$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
							$req->execute();
							$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$_POST['id']."')");
							$req->execute();
						}
					}
				}
				elseif($_POST['state'] != "Change" AND $command['state'] == "Change"){
					$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
					$city = $back->fetch();
					if($city['changedfees'] != 0 OR $settings['allstates'] == "1"){
						$price = 0 - $city['changedfees'];
						$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$_POST['id']."'");
						$row = $back->fetch();
						$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$_POST['id']."'");
						$req->execute();
						$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
						$req->execute();
					}
				}
				
				if($_POST['state'] == "Livré" AND $command['state'] != "Livré" AND $command['state'] != "Annulé" AND $command['state'] != "Refusé"){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered+1) WHERE id='".$row['id']."'");
						$req->execute();
					}
					else{
						$req = $bdd->prepare("INSERT INTO statistics VALUES ('0','".$command['dlm']."','".$command['city']."','".$command['product']."','".$command['worker']."','1','0','".(strtotime(gmdate("d-m-Y"))+1)."')");
						$req->execute();
					}					
				}
				elseif($_POST['state'] == "Livré" AND ($command['state'] == "Annulé" OR $command['state'] == "Refusé")){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered+1),canceled=(canceled-1) WHERE id='".$row['id']."'");
						$req->execute();
					}				
				}
				elseif(($_POST['state'] == "Annulé" OR $_POST['state'] == "Refusé") AND $command['state'] != "Livré" AND $command['state'] != "Annulé" AND $command['state'] != "Refusé"){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET canceled=(canceled+1) WHERE id='".$row['id']."'");
						$req->execute();
					}
					else{
						$req = $bdd->prepare("INSERT INTO statistics VALUES ('0','".$command['dlm']."','".$command['city']."','".$command['product']."','".$command['worker']."','0','1','".(strtotime(gmdate("d-m-Y"))+1)."')");
						$req->execute();
					}						
				}
				elseif(($_POST['state'] == "Annulé" OR $_POST['state'] == "Refusé") AND $command['state'] == "Livré"){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered-1),canceled=(canceled+1) WHERE id='".$row['id']."'");
						$req->execute();
					}						
				}
				elseif(($_POST['state'] != "Livré" AND $_POST['state'] != "Annulé" AND $_POST['state'] != "Refusé") AND $command['state'] == "Livré"){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered-1) WHERE id='".$row['id']."'");
						$req->execute();
					}						
				}
				elseif(($_POST['state'] != "Livré" AND $_POST['state'] != "Annulé" AND $_POST['state'] != "Refusé") AND ($command['state'] == "Annulé" OR $command['state'] == "Refusé")){
					$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
					if($back->rowCount() == 1){
						$row = $back->fetch();
						$req = $bdd->prepare("UPDATE statistics SET canceled=(canceled-1) WHERE id='".$row['id']."'");
						$req->execute();
					}						
				}
				if($_POST['state'] != $command['state']){
					saveLog($_SESSION['fullname']." a changé l\'état du commande N° ".$command['code']." de [".$command['state']."] à [".$_POST['state']."]");
				}
				
				$back = $bdd->query("SELECT content FROM sms WHERE state='".sanitize_vars($_POST['state'])."' AND phase='Livraison' AND trash='1' AND active='on'");
				if($back->rowCount() > 0){
					$sms = $back->fetch();
					if($sms['content'] != ""){
						$back = $bdd->query("SELECT iddevice FROM users WHERE id='".$command['worker']."'");
						$user = $back->fetch();
						sendSMS($command['phone'],$sms['content'],$user['iddevice'],$settings['smstoken']);
					}
				}
			}		
			
			if($_POST['action'] == "loadcommands"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-command"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-command"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Facturé <i class="fa fa-sort" data-sort="invoiced"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<?php
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "worker"){
							?>
						<td>Validé</td>
							<?php
						}
						?>
						<td>Action</td>
					</tr>
					<?php
					$altuser = $user;
					if($_SESSION['type'] == "worker"){
						$altuser = " AND worker='".$_SESSION['id']."'";
					}
					$req = "SELECT * FROM commands WHERE phase='shipping' AND trash='".$_POST['state']."'".$altuser;
					if($_POST['keyword'] != ""){
						$req .= " AND (code LIKE '%".trim($_POST['keyword'])."%' OR fullname LIKE '%".trim($_POST['keyword'])."%' OR phone LIKE '%".trim($_POST['keyword'])."%' OR address LIKE '%".trim($_POST['keyword'])."%' OR city LIKE '%".trim($_POST['keyword'])."%' OR note LIKE '%".trim($_POST['keyword'])."%' OR product IN(SELECT id FROM products WHERE title LIKE '%".trim($_POST['keyword'])."%' OR ref LIKE '%".trim($_POST['keyword'])."%') OR dlm IN(SELECT id FROM users WHERE fullname LIKE '%".trim($_POST['keyword'])."%' AND type='dlm'))";
					}
					if($_POST['worker'] != ""){
						$req .= " AND worker='".$_POST['worker']."'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['subdlm'] != ""){
						$req .= " AND subdlm='".$_POST['subdlm']."'";
					}
					if($_POST['city'] != ""){
						$req .= " AND city='".$_POST['city']."'";
					}
					if($_POST['product'] != ""){
						$req .= " AND (";
						$i = 1;
						$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
						while($row = $back->fetch()){
							if($i == 1){
								$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							else{
								$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							$i = 2;
						}
						$req .= ")";
					}
					if($_SESSION['storeslist'] != ""){
						$req .= " AND store IN(".$_SESSION['storeslist'].")";
					}
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['source'] != ""){
						$req .= " AND source='".$_POST['source']."'";
					}
					if($_POST['statee'] != ""){
						$req .= " AND state IN ('".str_replace(",","','",$_POST['statee'])."')";
					}
					if($_POST['invoiced'] != ""){
						$req .= " AND invoiced='".$_POST['invoiced']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartupdate'] != "" AND $_POST['dateendupdate'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartupdate']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendupdate'])) + (60*60*24) - 1;
						$req .= " AND (dateupdate BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartreport'] != "" AND $_POST['dateendreport'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartreport']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendreport'])) + (60*60*24) - 1;
						$req .= " AND (datereported BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY CASE WHEN state IN('En cours','Interessé') THEN 0 ELSE 1 END, dateupdate";
					}
					$req .= " ".$_POST['orderby'];
					$back3 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
						$state = $back1->fetch();
						$background = "";
						if($parametres['rowcolor'] == "1"){
							$background = "background:rgba(".hexdec(substr($state['color'],1,2)).",".hexdec(substr($state['color'],3,2)).",".hexdec(substr($state['color'],5,2)).",0.2)";
						}
						?>
					<tr style="<?php echo $background;?>">
						<td><label><input type="checkbox" name="command" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td>
							<span><a href="javascript:;" class="lx-show-history lx-open-popup" style="color:#242424;font-weight:500;white-space:nowrap;" data-id="<?php echo $row['code'];?>" data-title="commandhistory"><?php echo $row['code'];?></a><br />
							<?php echo $row['fullname'];?><br />
							<?php
							$back1 = $bdd->query("SELECT id FROM commands WHERE phone='".$row['phone']."' AND id<>'".$row['id']."' AND trash='1'");
							?>
							<a href="tel:<?php echo $row['phone'];?>" style="<?php echo ($back1->rowCount()>0)?"display:inline-block;padding:2px 5px;font-weight:500;background:#FFA500;color:#FFFFFF;border-radius:4px;cursor:pointer;":"color:#242424;font-weight:500;";?>"><?php echo $row['phone'];?></a><br />
							<?php echo $row['address'];?><br />
							<?php echo $row['city'];?></span>
							<?php
							$shipcamp = "";
							$id = "";
							$key = "";							
							if($_SESSION['type'] != "dlm" AND $row['dlm'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone,stockout,emailstockout FROM users WHERE id='".$row['dlm']."'");
								$row1 = $back1->fetch();
								?>
							<span style="font-weight:500;"><?php echo $row1['fullname']." (".$row1['phone'].")";?></span>
								<?php
								$shipcamp = $row1['fullname'];
								$id = $row1['stockout'];
								$key = $row1['emailstockout'];
							}
							if(!is_numeric($row['subdlm'])){
								?>
							<span style="font-weight:500;"><?php echo $row['subdlm'];?></span>
								<?php
							}
							elseif($row['subdlm'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['subdlm']."'");
								$row1 = $back1->fetch();
								?>
							<span style="font-weight:500;"><?php echo $row1['fullname']." (".$row1['phone'].")";?></span>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							if(preg_match("#^[0-9]+(,[0-9]+)*$#",$row['product'])){
								$i = 0;
								$qtys = explode(",",$row['qty']);
								$back1 = $bdd->query("SELECT product FROM stocks WHERE id IN(".$row['product'].") ORDER BY FIELD(id,".$row['product'].")");
								while($row1 = $back1->fetch()){
									$back2 = $bdd->query("SELECT title FROM products WHERE id='".$row1['product']."'");
									$row2 = $back2->fetch();
									?>
							<span><?php echo $row2['title']." x ".$qtys[$i];?></span>
									<?php
									$i++;
								}
							}
							else{
								$products = explode(",",$row['product']);
								$qtys = explode(",",$row['qty']);
								for($i=0;$i<count($products);$i++){
									?>
							<span><?php echo $products[$i]." x ".$qtys[$i];?></span>
									<?php
								}							
							}
							?>
						</td>
						<td>
							<span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span>
							<?php
							if($row['fees'] > 0){
								?>
							<span>Frais sup:<?php echo $row['fees'];?> <?php echo $settings['currency'];?></span>
								<?php
							}
							?>
						</td>
						<?php
						$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
						$row1 = $back1->fetch();
						?>
						<td>
							<span <?php if($row['invoiced'] == "off"){echo " class='lx-edit-state lx-open-popup' data-id='".$row['id']."' data-state='".$row['state']."' data-datereported='".($row['datereported']!=""?gmdate('d/m/Y',$row['datereported']):'')."' data-note='".$row['note']."' data-title='editstate'";}?> style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color']!=""?$row1['color']:"#BEBEBE";?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span>
							<?php
							if($row['datereported'] != ""){
								?>
							<span><?php echo gmdate("d/m/Y",$row['datereported']);?></span>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							if(preg_match("#Livré|Annulé|Refusé|Change#",$row['state'])){
								if($row['invoiced'] == 'off'){
									?>
						<span style="display:inline-block;padding:2px 5px;font-weight:500;background:orange;color:#FFFFFF;border-radius:4px;">Non</span>
									<?php
								}
								else{
									?>
						<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
									<?php
								}
							}
							?>
						</td>
						<td>
							<?php
							if($row['worker'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['worker']."'");
								$row1 = $back1->fetch();
								?>
							<span><?php echo $row1['fullname'];?> 
								<?php
								if($_SESSION['type'] == "dlm" OR $_SESSION['type'] == "subdlm"){
									?>
								(<a href="tel:<?php echo $row1['phone'];?>" style="color:#242424;"><?php echo $row1['phone'];?></a>)
									<?php
								}
								?>
							</span>
								<?php
							}
							$back1 = $bdd->query("SELECT name FROM stores WHERE id='".$row['store']."'");
							$row1 = $back1->fetch();
							?>							
							<span><?php echo ($row1['name']!=""?"<b>".$row1['name']."</b>":"&mdash;");?></span>
							<span><?php echo ($row['source']!=""?$row['source']:"&mdash;");?></span>
							<span><?php echo ($row['note']!=""?$row['note']:"&mdash;");?></span>
						</td>
						<td>
							<span><b>Date ajout:</b><br /><?php echo ($row['dateadd']!=""?gmdate("d/m/Y H:i",$row['dateadd']):"&mdash;");?></span>
							<span><b>Date mise à jour:</b><br /><?php echo ($row['dateupdate']!=""?gmdate("d/m/Y H:i",$row['dateupdate']):"&mdash;");?></span>
						</td>
						<?php
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "worker"){
						?>	
						<td>
							<?php
							if($row['phase'] == "shipping" AND $row['state'] == "En cours"){
							?>
							<div class="lx-on-off lx-on-off-blue" data-state="on" data-table="commands" data-column="phase" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>	
							<?php
							}
							?>						
						</td>
						<?php
						}
						if($_SESSION['type'] == "moderator" OR $_SESSION['type'] == "worker" OR $_SESSION['roles'] == "Mise à jour commandes"){
						?>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-command lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-product="<?php echo $row['product'];?>"
								data-qty="<?php echo $row['qty'];?>" 
								data-dlm="<?php echo $row['dlm'];?>"
								data-source="<?php echo $row['source'];?>"
								data-store="<?php echo $row['store'];?>"
								data-worker="<?php echo $row['worker'];?>"
								data-fullname="<?php echo $row['fullname'];?>"
								data-phone="<?php echo $row['phone'];?>"
								data-address="<?php echo $row['address'];?>"
								data-city="<?php echo $row['city'];?>"
								data-price="<?php echo $row['price'];?>"
								data-fees="<?php echo $row['fees'];?>" data-title="command"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-print-ticket lx-open-popup" data-title="tickets" data-id="<?php echo $row['id'];?>"><i class="fa fa-print"></i></a><a href="printblorder.php?id=<?php echo $row['id'];?>" class="lx-delete"><i class="fa fa-file"></i></a>
								<?php
								if($_SESSION['type'] == "moderator"){
								?>
							<a href="javascript:;" class="lx-delete lx-delete-command lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
								}
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-command" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a>
								<?php
								if($_SESSION['type'] == "moderator"){
								?>							
							<a href="javascript:;" class="lx-delete lx-delete-permanently-command" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
								}
							}
							$back1 = $bdd->query("SELECT code FROM factures f,facturesdetails fd WHERE f.code=fd.facture AND command='".$row['id']."'");
							if($back1->rowCount() > 0){
								$row1 = $back1->fetch();
								?>
							<span><a href="printfacture.php?f=<?php echo $row1['code'];?>" class="lx-fct">FCT-<?php echo substr($row1['code'],13);?></a></span>
								<?php
							}
							?>
						</td>
						<?php
						}
						else{
						?>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-delete lx-print-ticket lx-open-popup" data-title="tickets" data-id="<?php echo $row['id'];?>"><i class="fa fa-print"></i></a>
								<?php
							}
							?>
						</td>
						<?php
						}
						?>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Facturé <i class="fa fa-sort" data-sort="invoiced"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
							?>
						<td>Validé</td>
							<?php
						}
						?>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back3->rowCount();?>" />
				<?php
				if($back3->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back3->rowCount();?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "loadcommandsarchive"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-command"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-command"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Facturé <i class="fa fa-sort" data-sort="invoiced"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
					</tr>
					<?php
					$altuser = $user;
					if($_SESSION['type'] == "worker"){
						$altuser = " AND worker='".$_SESSION['id']."'";
					}
					$req = "SELECT * FROM commandsarchive WHERE phase='shipping' AND trash='".$_POST['state']."'".$altuser;
					if($_POST['keyword'] != ""){
						$req .= " AND (code LIKE '%".trim($_POST['keyword'])."%' OR fullname LIKE '%".trim($_POST['keyword'])."%' OR phone LIKE '%".trim($_POST['keyword'])."%' OR address LIKE '%".trim($_POST['keyword'])."%' OR city LIKE '%".trim($_POST['keyword'])."%' OR note LIKE '%".trim($_POST['keyword'])."%' OR product IN(SELECT id FROM products WHERE title LIKE '%".trim($_POST['keyword'])."%' OR ref LIKE '%".trim($_POST['keyword'])."%') OR dlm IN(SELECT id FROM users WHERE fullname LIKE '%".trim($_POST['keyword'])."%' AND type='dlm'))";
					}
					if($_POST['worker'] != ""){
						$req .= " AND worker='".$_POST['worker']."'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['subdlm'] != ""){
						$req .= " AND subdlm='".$_POST['subdlm']."'";
					}
					if($_POST['city'] != ""){
						$req .= " AND city='".$_POST['city']."'";
					}
					if($_POST['product'] != ""){
						$req .= " AND (";
						$i = 1;
						$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
						while($row = $back->fetch()){
							if($i == 1){
								$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							else{
								$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
							}
							$i = 2;
						}
						$req .= ")";
					}
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['source'] != ""){
						$req .= " AND source='".$_POST['source']."'";
					}
					if($_POST['statee'] != ""){
						$req .= " AND state IN ('".str_replace(",","','",$_POST['statee'])."')";
					}
					if($_POST['invoiced'] != ""){
						$req .= " AND invoiced='".$_POST['invoiced']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartupdate'] != "" AND $_POST['dateendupdate'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartupdate']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendupdate'])) + (60*60*24) - 1;
						$req .= " AND (dateupdate BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['datestartreport'] != "" AND $_POST['dateendreport'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestartreport']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateendreport'])) + (60*60*24) - 1;
						$req .= " AND ((datereported BETWEEN '".$datestart."' AND '".$dateend."') OR datereported='')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY CASE WHEN state IN('En cours','Interessé') THEN 0 ELSE 1 END, dateupdate";
					}
					$req .= " ".$_POST['orderby'];
					$back3 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
						$state = $back1->fetch();
						$background = "";
						if($parametres['rowcolor'] == "1"){
							$background = "background:rgba(".hexdec(substr($state['color'],1,2)).",".hexdec(substr($state['color'],3,2)).",".hexdec(substr($state['color'],5,2)).",0.2)";
						}
						?>
					<tr style="<?php echo $background;?>">
						<td><label><input type="checkbox" name="command" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td>
							<span><a href="javascript:;" class="lx-show-history lx-open-popup" style="color:#242424;font-weight:500;white-space:nowrap;" data-id="<?php echo $row['code'];?>" data-title="commandhistory"><?php echo $row['code'];?></a><br />
							<?php echo $row['fullname'];?><br />
							<?php
							$back1 = $bdd->query("SELECT id FROM commands WHERE phone='".$row['phone']."' AND id<>'".$row['id']."' AND trash='1'");
							?>
							<a href="tel:<?php echo $row['phone'];?>" style="<?php echo ($back1->rowCount()>0)?"display:inline-block;padding:2px 5px;font-weight:500;background:#FFA500;color:#FFFFFF;border-radius:4px;cursor:pointer;":"color:#242424;font-weight:500;";?>"><?php echo $row['phone'];?></a><br />
							<?php echo $row['address'];?><br />
							<?php echo $row['city'];?></span>
							<?php
							if($_SESSION['type'] != "dlm" AND $row['dlm'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['dlm']."'");
								$row1 = $back1->fetch();
								?>
							<span style="font-weight:500;"><?php echo $row1['fullname']." (".$row1['phone'].")";?></span>
								<?php
							}
							if(!is_numeric($row['subdlm'])){
								?>
							<span style="font-weight:500;"><?php echo $row['subdlm'];?></span>
								<?php
							}
							elseif($row['subdlm'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['subdlm']."'");
								$row1 = $back1->fetch();
								?>
							<span style="font-weight:500;"><?php echo $row1['fullname']." (".$row1['phone'].")";?></span>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							if(preg_match("#^[0-9]+(,[0-9]+)*$#",$row['product'])){
								$i = 0;
								$qtys = explode(",",$row['qty']);
								$back1 = $bdd->query("SELECT product FROM stocks WHERE id IN(".$row['product'].") ORDER BY FIELD(id,".$row['product'].")");
								while($row1 = $back1->fetch()){
									$back2 = $bdd->query("SELECT title FROM products WHERE id='".$row1['product']."'");
									$row2 = $back2->fetch();
									?>
							<span><?php echo $row2['title']." x ".$qtys[$i];?></span>
									<?php
									$i++;
								}
							}
							else{
								$products = explode(",",$row['product']);
								$qtys = explode(",",$row['qty']);
								for($i=0;$i<count($products);$i++){
									?>
							<span><?php echo $products[$i]." x ".$qtys[$i];?></span>
									<?php
								}							
							}
							?>
						</td>
						<td>
							<span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span>
							<?php
							if($row['fees'] > 0){
								?>
							<span>Frais sup:<?php echo $row['fees'];?> <?php echo $settings['currency'];?></span>
								<?php
							}
							?>
						</td>
						<?php
						$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
						$row1 = $back1->fetch();
						?>
						<td>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color']!=""?$row1['color']:"#BEBEBE";?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span>
							<?php
							if($row['datereported'] != ""){
								?>
							<span><?php echo gmdate("d/m/Y",$row['datereported']);?></span>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							if(preg_match("#Livré|Annulé|Refusé|Change#",$row['state'])){
								if($row['invoiced'] == 'off'){
									?>
						<span style="display:inline-block;padding:2px 5px;font-weight:500;background:orange;color:#FFFFFF;border-radius:4px;">Non</span>
									<?php
								}
								else{
									?>
						<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
									<?php
								}
							}
							?>
						</td>
						<td>
							<?php
							if($row['worker'] != "0"){
								$back1 = $bdd->query("SELECT fullname,phone FROM users WHERE id='".$row['worker']."'");
								$row1 = $back1->fetch();
								?>
							<span><?php echo $row1['fullname'];?> 
								<?php
								if($_SESSION['type'] == "dlm" OR $_SESSION['type'] == "subdlm"){
									?>
								(<a href="tel:<?php echo $row1['phone'];?>" style="color:#242424;"><?php echo $row1['phone'];?></a>)
									<?php
								}
								?>
							</span>
								<?php
							}
							$back1 = $bdd->query("SELECT name FROM stores WHERE id='".$row['store']."'");
							$row1 = $back1->fetch();
							?>							
							<span><?php echo ($row1['name']!=""?"<b>".$row1['name']."</b>":"&mdash;");?></span>
							<span><?php echo ($row['source']!=""?$row['source']:"&mdash;");?></span>
							<span><?php echo ($row['note']!=""?$row['note']:"&mdash;");?></span>
						</td>
						<td>
							<span><b>Date ajout:</b><br /><?php echo ($row['dateadd']!=""?gmdate("d/m/Y H:i",$row['dateadd']):"&mdash;");?></span>
							<span><b>Date mise à jour:</b><br /><?php echo ($row['dateupdate']!=""?gmdate("d/m/Y H:i",$row['dateupdate']):"&mdash;");?></span>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
						<td>Produits <i class="fa fa-sort" data-sort="product"></i></td>
						<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
						<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
						<td>Facturé <i class="fa fa-sort" data-sort="invoiced"></i></td>
						<td>Boutique, Employé et note <i class="fa fa-sort" data-sort="store"></i></td>
						<td>Date <i class="fa fa-sort" data-sort="dateadd"></i></td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back3->rowCount();?>" />
				<?php
				if($back3->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back3->rowCount();?> commande(s) de <?php echo $back3->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "getozonestate"){
				$back = $bdd->query("SELECT id,stockout,emailstockout FROM users WHERE fullname LIKE '%ozon%' AND type='dlm' AND trash='1'");
				while($row = $back->fetch()){
					$back1 = $bdd->query("SELECT id,code FROM commands WHERE dlm='".$row['id']."' AND phase='shipping' AND state NOT IN('Livré','Retour client reçu') AND trash='1'");
					while($row1 = $back1->fetch()){
						$ozonestate = getOzonState($row['stockout'],$row['emailstockout'],$row1['code']);
						$req = $bdd->prepare("UPDATE commands SET state='".$ozonestate."',dateupdate='".time()."' WHERE id='".$row1['id']."'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$row['code']."','".sanitize_vars($ozonestate)."','".$_SESSION['fullname']."','".time()."')");
						$req->execute();
					}
				}
			}
			
			if($_POST['action'] == "showcommandhistory"){
				$back = $bdd->query("SELECT code,fullname,phone,address,city FROM commands WHERE code='".$_POST['id']."'");
				$row = $back->fetch();
				?>
				<div class="lx-command-history">
					<p><?php echo $row['fullname'];?> (<?php echo $row['phone'];?>)</p>
					<p><?php echo $row['address'];?> <?php echo $row['city'];?></p>
					<div class="lx-table">
						<table>
							<tr>
								<td>Date mise à jour</td>
								<td>Etat</td>
								<td>Utilisateur</td>
							</tr>
							<?php
							$back = $bdd->query("SELECT * FROM commandshistory WHERE command='".$row['code']."' ORDER BY dateadd");
							while($row = $back->fetch()){
								$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
								$state = $back1->fetch();
								?>					
							<tr>
								<td><span><?php echo gmdate("d/m/Y H:i",$row['dateadd']);?></span></td>
								<td><span style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $state['color'];?>;color:#FFFFFF;border-radius:4px;cursor:pointer;"><?php echo $row['state'];?></span></td>
								<td><span><?php echo $row['agent'];?></span></td>
							</tr>
								<?php
							}
							?>
						</table>
					</div>				
				</div>
				<?php
			}

if($_POST['action'] == "deletebl"){
				$req = $bdd->prepare("DELETE FROM bls WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "loadbls"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-bl"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-bl"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Code <i class="fa fa-sort" data-sort="product"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						if($_SESSION['type'] != "subdlm"){
						?>
						<td>Sous livreur <i class="fa fa-sort" data-sort="subdlm"></i></td>
						<?php
						}
						?>
						<td>Nb. commandes</td>
						<td>Date creation <i class="fa fa-sort" data-sort="datecreated"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM bls WHERE trash='".$_POST['state']."'".$user;
					if($_POST['keyword'] != ""){
						$req .= " AND code LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_POST['subdlm'] != ""){
						$req .= " AND subdlm='".$_POST['subdlm']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="bl" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><a href="printbl.php?tid=<?php echo $row['cmds'];?>&dlm=<?php echo $row['dlm'];?>&subdlm=<?php echo $row['subdlm'];?>"><?php echo $row['code'];?></a></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						if($_SESSION['type'] != "subdlm"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['subdlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						?>
						<td><?php echo count(explode(",",$row['cmds']))-1;?></td>
						<td><span><?php echo ($row['dateadd']!=""?gmdate("d/m/Y",$row['dateadd']):"&mdash;");?></span></td>
						<td>
							<a href="javascript:;" class="lx-delete lx-print-ticket lx-open-popup" data-title="tickets" data-id="<?php echo $row['cmds'];?>"><i class="fa fa-print"></i></a>
							<a href="javascript:;" class="lx-delete lx-delete-bl lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Code <i class="fa fa-sort" data-sort="product"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						if($_SESSION['type'] != "subdlm"){
						?>
						<td>Sous livreur <i class="fa fa-sort" data-sort="subdlm"></i></td>
						<?php
						}
						?>
						<td>Nb. commandes</td>
						<td>Date creation <i class="fa fa-sort" data-sort="datecreated"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> bon(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> bon(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if(preg_match("#loadfacturecommandstoadd|loadfacturecommandsadded#",$_POST['action'])){
				?>
				<div>
					<table cellpadding="0" cellspacing="0">
						<tr class="lx-first-tr">
							<?php
							if(preg_match("#loadfacturecommandstoadd#",$_POST['action'])){
								?>
							<td><label><input type="checkbox" name="selectall" value="facturecommands" /><del class="checkmark"></del></label></td>
								<?php
							}
							else{
								?>
							<td></td>
								<?php
							}
							?>
							<td>Destinataire <i class="fa fa-sort" data-sort="fullname"></i></td>
							<td>Ville <i class="fa fa-sort" data-sort="city"></i></td>
							<td>Prix <i class="fa fa-sort" data-sort="price"></i></td>
							<td>Etat <i class="fa fa-sort" data-sort="state"></i></td>
							<td>Date ajout <i class="fa fa-sort" data-sort="dateadd"></i></td>
						</tr>
						<?php
						$req = "SELECT * FROM commands WHERE 1=1";
						if(preg_match("#loadfacturecommandstoadd#",$_POST['action'])){
							$req .= " AND invoiced='off' AND state IN('Livré','Refusé','Annulé','Retour client reçu') AND trash='1'";
						}
						else{
							$req .= " AND id IN(".(($_POST['commands']!="")?$_POST['commands']:0).") AND trash='1'";
						}
						if($_POST['dlm'] != ""){
							$req .= " AND dlm='".$_POST['dlm']."'";
						}
						$req .= " ORDER BY dateadd DESC";
						$back = $bdd->query($req);
						while($row = $back->fetch()){
							?>
						<tr>
							<?php
							if(preg_match("#loadfacturecommandstoadd#",$_POST['action'])){
								?>
							<td><label><input type="checkbox" name="facturecommands" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
								<?php
							}
							else{
								?>
							<td><a href="javascript:;" class="lx-commands-to-remove" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a></td>
								<?php
							}
							?>
							<td>
								<span><strong><?php echo $row['code'];?></strong><span>
								<span><?php echo $row['fullname'];?><span>
								<span><?php echo $row['phone'];?><span>
								<span><?php echo $row['address'];?><span>
							</td>
							<td><span><?php echo $row['city'];?><span></td>
							<td><span><?php echo $row['price'];?>DH</span></td>
							<?php
							$back1 = $bdd->query("SELECT state,color FROM trackingstates WHERE state='".$row['state']."'");
							$row1 = $back1->fetch();
							?>
							<td><span style="display:inline-block;padding:2px 5px;font-weight:500;background:<?php echo $row1['color'];?>;color:#FFFFFF;border-radius:4px;"><?php echo $row1['state'];?></span></td>
							<td><span><?php echo ($row['dateadd']!=""?gmdate("d/m/y H:i",$row['dateadd']):"&mdash;");?></span></td>
						</tr>
							<?php
						}
						?>
					</table>
					<?php
					if($back->rowCount() == 0){
						?>
					<div style="padding:40px 0px;text-align:center;border:1px solid #EEEEEE;">
						<p style="margin:0px;font-weight:400;">Pas de commands pour ajouter/supprimer à cette facture</p>
					</div>
						<?php
					}
					?>
				</div>
				<p><?php echo $back->rowCount();?> commands de <?php echo $back->rowCount();?></p>
				<?php
			}
			
			if($_POST['action'] == "addfacture"){
				$rand = '';
				do{
					$rand = 'FCT-'.date('dmY').'-'.random();
					$back = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
				}
				while($back->rowCount() != 0);
				$commands = explode(",",$_POST['commands']);
				$req = "";
				if($_POST['id'] == 0){
					$req = $bdd->prepare("INSERT INTO factures(id,code,dlm,nbcommands,price,note,validated,received,datecreated,datereceived,trash) VALUES('0','".$rand."','".sanitize_vars($_POST['user'])."','".count($commands)."','0','','off','off','".time()."','','1')");
					$req->execute();
					$req = $bdd->prepare("UPDATE commands SET invoiced='on' WHERE id IN(".$_POST['commands'].")");
					$req->execute();	
					for($i=0;$i<count($commands);$i++){
						$req = $bdd->prepare("INSERT INTO facturesdetails VALUES('','".$rand."','".$commands[$i]."')");
						$req->execute();						
					}
					$req = " code='".$rand."'";
				}
				else{
					$back = $bdd->query("SELECT code,command FROM factures f,facturesdetails fd WHERE f.code=fd.facture AND f.id='".$_POST['id']."'");
					while($row = $back->fetch()){
						$req = $bdd->prepare("UPDATE commands SET invoiced='off' WHERE id='".$row['command']."'");
						$req->execute();
						$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$row['command']."' AND facture='".$row['code']."'");
						$req->execute();	
					}
					for($i=0;$i<count($commands);$i++){
						$req = $bdd->prepare("UPDATE commands SET invoiced='on' WHERE id='".$commands[$i]."'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO facturesdetails VALUES('','".$rand."','".$commands[$i]."')");
						$req->execute();
					}
					$req = $bdd->prepare("UPDATE factures SET nbcommands='".count($commands)."' WHERE id='".$_POST['id']."'");
					$req->execute();
					$req = " id='".$_POST['id']."'";
				}
				$price = 0;
				$back = $bdd->query("SELECT * FROM commands WHERE id IN(".(($_POST['commands']!="")?$_POST['commands']:0).")");
				while($row = $back->fetch()){
					$back1 = $bdd->query("SELECT * FROM shippingfees WHERE city='".$row['city']."' AND dlm='".$row['dlm']."'");
					$city = $back1->fetch();
					if($row['state'] == "Livré"){
						$price += $row['price'] - $city['deliveredfees'];						
					}
					elseif($row['state'] == "Refusé"){
						$price += 0 - $city['refusedfees'];
					}
					else{
						$price += 0 - $city['canceledfees'];
					}
				}
				$req = $bdd->prepare("UPDATE factures SET price='".$price."' WHERE".$req);
				$req->execute();
			}

if($_POST['action'] == "editnotefacture"){
				$req = $bdd->prepare("UPDATE factures SET note='".$_POST['note']."',price='".$_POST['price']."',nbcommands='".$_POST['nbcommands']."' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletefacture"){
				$req = $bdd->prepare("UPDATE factures SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restorefacture"){
				$req = $bdd->prepare("UPDATE factures SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletefacturepermanently"){
				$req = $bdd->prepare("DELETE FROM factures WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "loadfactures"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-factures"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-factures"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Code <i class="fa fa-sort" data-sort="code"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						if($settings['splitinvoices'] == 1){
						?>
						<td>Boutique <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Nb. com.</td>
						<td>Montant</td>
						<td>Date création et cloture <i class="fa fa-sort" data-sort="datecreated"></i></td>
						<td>Date versement <i class="fa fa-sort" data-sort="datereceived"></i></td>
						<td>Cloturé <i class="fa fa-sort" data-sort="validated"></i></td>
						<td>Versé <i class="fa fa-sort" data-sort="received"></i></td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM factures WHERE trash='".$_POST['state']."'".$user;
					if($_POST['keyword'] != ""){
						$req .= " AND code LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['dlm'] != ""){
						$req .= " AND dlm='".$_POST['dlm']."'";
					}
					if($_SESSION['storeslist'] != ""){
						$req .= " AND store IN(".$_SESSION['storeslist'].")";
					}
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['validated'] != ""){
						$req .= " AND validated='".$_POST['validated']."'";
					}
					if($_POST['received'] != ""){
						$req .= " AND received='".$_POST['received']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND ((datecreated BETWEEN '".$datestart."' AND '".$dateend."') OR (datereceived BETWEEN '".$datestart."' AND '".$dateend."'))";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						$colis = "";
						$back1 = $bdd->query("SELECT command FROM facturesdetails WHERE facture='".$row['code']."'");
						while($row1 = $back1->fetch()){
							$colis .= ",".$row1['command'];
						}
						$colis = substr($colis,1);
						?>
					<tr>
						<td><label><input type="checkbox" name="facture" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><a href="printfacture.php?f=<?php echo $row['code'];?>"><?php echo $row['code'];?></a></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['fullname'];?></span></td>
						<?php
						}
						if($settings['splitinvoices'] == 1){
						$back1 = $bdd->query("SELECT name FROM stores WHERE id='".$row['store']."'");
						$row1 = $back1->fetch();
						?>
						<td><span><?php echo $row1['name'];?></span></td>
						<?php
						}
						?>
						<td><span><?php echo $row['nbcommands'];?></span></td>
						<td>
							<span><?php echo $row['price'];?> <?php echo $settings['currency'];?></span>
							<?php
							if($row['note'] != ""){
								?>
							<b><?php echo $row['note'];?></b>
								<?php
							}
							?>
						</td>
						<td><span><?php echo ($row['datecreated']!=""?gmdate("d/m/Y",$row['datecreated']):"&mdash;");?></span></td>
						<td><span><?php echo ($row['datereceived']!=""?gmdate("d/m/Y",$row['datereceived']):"&mdash;");?></span></td>
						<td>
							<?php
							if($row['validated'] == "on"){
								?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
								<?php
							}
							else{
								?>
							<div class="lx-on-off" data-state="<?php echo $row['validated']?>" data-table="factures" data-column="validated" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>
								<?php
							}
							?>
						</td>
						<td>
							<?php
							if($_SESSION['type'] == "moderator"){
							$class = '';
							if($row['received'] == "on"){
								$class = ' lx-on-off-blue';
							}
							?>
							<div class="lx-on-off<?php echo $class?>" data-state="<?php echo $row['received']?>" data-table="factures" data-column="received" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>
							<?php
							}
							else{
								if($row['received'] == 'off'){
									?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:orange;color:#FFFFFF;border-radius:4px;">Non</span>
									<?php
								}
								else{
									?>
							<span style="display:inline-block;padding:2px 5px;font-weight:500;background:#71b44c;color:#FFFFFF;border-radius:4px;">Oui</span>
									<?php
								}
							}
							?>
						</td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-note-facture lx-open-popup" data-price="<?php echo $row['price'];?>" data-nbcommands="<?php echo $row['nbcommands'];?>" data-note="<?php echo $row['note'];?>" data-title="notefacture" data-id="<?php echo $row['id'];?>"><i class="fa fa-comment"></i></a>
								<?php
								if($_SESSION['type'] == "moderator"){
									?>
							<a href="javascript:;" class="lx-edit lx-edit-facture lx-open-popup" 
								data-id="<?php echo $row['id'];?>" 
								data-dlm="<?php echo $row['dlm'];?>"
								data-commands="<?php echo $colis;?>"
								data-count="<?php echo $row['nbcommands'];?>" data-title="facture" title="Modifier"><i class="fa fa-edit"></i></a>
							<a href="javascript:;" class="lx-delete lx-delete-facture lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
									<?php
								}
							}
							else{
								if($_SESSION['type'] == "moderator"){
									?>
							<a href="javascript:;" class="lx-edit lx-restore-facture" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-facture" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
									<?php
								}
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Code <i class="fa fa-sort" data-sort="code"></i></td>
						<?php
						if($_SESSION['type'] == "moderator"){
						?>
						<td>Livreur <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						if($settings['splitinvoices'] == 1){
						?>
						<td>Boutique <i class="fa fa-sort" data-sort="dlm"></i></td>
						<?php
						}
						?>
						<td>Nb. com.</td>
						<td>Montant</td>
						<td>Date création et cloture <i class="fa fa-sort" data-sort="datecreated"></i></td>
						<td>Date versement <i class="fa fa-sort" data-sort="datereceived"></i></td>
						<td>Cloturé <i class="fa fa-sort" data-sort="validated"></i></td>
						<td>Versé <i class="fa fa-sort" data-sort="received"></i></td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> facture(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> facture(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}
			
			if($_POST['action'] == "addexpense"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO expenses(id,cost,type,description,dateadd,trash) VALUES ('0','".sanitize_vars($_POST['cost'])."','".sanitize_vars($_POST['type'])."','".sanitize_vars($_POST['description'])."','".time()."','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE expenses SET cost='".sanitize_vars($_POST['cost'])."',type='".sanitize_vars($_POST['type'])."',description='".sanitize_vars($_POST['description'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}

if($_POST['action'] == "deleteexpense"){
				$req = $bdd->prepare("UPDATE expenses SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "restoreexpense"){
				$req = $bdd->prepare("UPDATE expenses SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "deleteexpensepermanently"){
				$req = $bdd->prepare("DELETE FROM expenses WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadexpenses"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-expense"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-expense"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Montant <i class="fa fa-sort" data-sort="cost"></i></td>
						<td>Type <i class="fa fa-sort" data-sort="type"></i></td>
						<td>Plus de détail</td>
						<td>Date ajout</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM expenses WHERE trash='".$_POST['state']."'".$user;
					if($_POST['keyword'] != ""){
						$req .= " AND (cost LIKE '%".trim($_POST['keyword'])."%' OR type LIKE '%".trim($_POST['keyword'])."%') OR description LIKE '%".trim($_POST['keyword'])."%')";
					}
					if($_POST['type'] != ""){
						$req .= " AND type='".$_POST['type']."'";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="expense" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['cost'];?> <?php echo $settings['currency']?></span></td>
						<td><span><?php echo $row['type'];?></span></td>
						<td><span><?php echo $row['description'];?></span></td>
						<td><span><?php echo gmdate("d/m/Y",$row['dateadd']);?></span></td>	
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-expense lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-cost="<?php echo $row['cost'];?>"
								data-type="<?php echo $row['type'];?>"								
								data-description="<?php echo $row['description'];?>" data-title="expense"><i class="fa fa-edit"></i>
								</a><a href="javascript:;" class="lx-delete lx-delete-expense lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-restore-expense" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-expense" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Montant <i class="fa fa-sort" data-sort="cost"></i></td>
						<td>Type <i class="fa fa-sort" data-sort="type"></i></td>
						<td>Plus de détail</td>
						<td>Date ajout</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> dépense(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> dépense(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}			
			
			if($_POST['action'] == "loadprofit"){
				?>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td>Produit</td>
						<td>Nb. Commandes</td>
						<td>PU Achat</td>
						<td>Qté Vendu</td>
						<td>PT Achat</td>
						<td>PT Vente</td>
						<td>Frais de livraison</td>
						<td>Publicité</td>
						<td>CPD</td>
						<td>Bénéfices</td>
					</tr>
					<?php
					$tcom = 0;
					$pub = 0;
					$tqty = 0;
					$ptb = 0;
					$pts = 0;
					$tf = 0;
					$profit = 0;
					$req = "SELECT id,title,bprice FROM products";
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						$k = 0;
						$sm = 0;
						$tprice = 0;
						$tfees = 0;
						$back1 = $bdd->query("SELECT id FROM stocks WHERE product='".$row['id']."'");
						while($row1 = $back1->fetch()){
							$req = "SELECT qty,product,dlm,city,price FROM commands WHERE (product='".$row1['id']."' OR product LIKE '".$row1['id'].",%' OR product LIKE '%,".$row1['id'].",%' OR product LIKE '%,".$row1['id']."') AND phase='shipping' AND state IN('Livré')";
							if($_SESSION['storeslist'] != ""){
								$req .= " AND store IN(".$_SESSION['storeslist'].")";
							}
							if($_POST['store'] != ""){
								$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
							}
							if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
								$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
								$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
								$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
							}
							$back2 = $bdd->query($req);
							while($row2 = $back2->fetch()){
								$stocks = explode(",",$row2['product']);
								$j = 0;
								for($i=0;$i<count($stocks);$i++){
									if($stocks[$i] == $row1['id']){
										$j = $i;
									}
								}
								$qtys = explode(",",$row2['qty']);
								$sm += $qtys[$j];
								$tprice += ($row2['price']/count($stocks));
								$back3 = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
								$row3 = $back3->fetch();
								$tfees += ($row3['deliveredfees']/count($stocks));
								$k++;
							}
						}
						if($sm > 0){
						?>
					<tr>
						<td style="white-space:nowrap;"><span><?php echo $row['title'];?></span></td>
						<td><span><?php echo $k;$tcom+=$k;?></span></td>
						<td><span><?php echo $row['bprice'];$pub+=$row['bprice'];?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo $sm;$tqty+=$sm;?></span></td>
						<td><span><?php echo $row['bprice']*$sm;$ptb+=($row['bprice']*$sm);?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tprice);$pts+=$tprice;?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tfees);$tf+=$tfees;?> <?php echo $settings['currency'];?></span></td>						
						<td style="width:1%;padding:0px;">
							<input type="text" name="adscost" placeholder="Frais d'ads" style="padding:10px;background:#FBFBFB;box-shadow:0px 0px 4px #EEEEEE inset;border:1px solid #EEEEEE;" />
						</td>
						<td><span>0 DH</span></td>
						<td><span><?php echo round($tprice-($row['bprice']*$sm)-$tfees);$profit+=($tprice-($row['bprice']*$sm)-$tfees);?> <?php echo $settings['currency'];?></span></td>
					</tr>
						<?php	
						}
					}
					$k = 0;
					$sm = 0;
					$tprice = 0;
					$tfees = 0;
					$req = "SELECT code,qty,product,dlm,city,price,state FROM commands WHERE phase='shipping' AND state IN('Refusé','Retourné')";
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					$back2 = $bdd->query($req);
					while($row2 = $back2->fetch()){
						if($row2['state'] == "Refusé"){
							$sm += $row2['qty'];
							$tprice += 0;
							$back3 = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
							$row3 = $back3->fetch();
							$tfees += $row3['refusedfees'];	
							$k++;
						}
						else{
							$back3 = $bdd->query("SELECT state FROM commandshistory WHERE command='".$row2['code']."' ORDER BY id DESC LIMIT 1,1");
							$row3 = $back3->fetch();
							if($row3['state'] == "Refusé"){
								$sm += $row2['qty'];
								$tprice += 0;
								$back3 = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
								$row3 = $back3->fetch();
								$tfees += $row3['refusedfees'];	
								$k++;
							}							
						}
					}
					?>
					<tr>
						<td style="white-space:nowrap;"><span>Refusé</span></td>
						<td><span><?php echo $k;?></span></td>
						<td><span>0 DH</span></td>
						<td><span><?php echo $sm;?></span></td>
						<td><span>0 <?php echo $settings['currency'];?></span></td>
						<td><span>0 <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tfees);$tf+=$tfees;?> <?php echo $settings['currency'];?></span></td>						
						<td style="width:1%;padding:0px;">
							<input type="text" name="adscost" placeholder="Frais d'ads" style="padding:10px;background:#FBFBFB;box-shadow:0px 0px 4px #EEEEEE inset;border:1px solid #EEEEEE;" />
						</td>
						<td><span>0 DH</span></td>					
						<td><span><?php echo round(0-(0*$sm)-$tfees);$profit+=(0-(0*$sm)-$tfees);?> <?php echo $settings['currency'];?></span></td>
					</tr>
					<?php
					$k = 0;
					$sm = 0;
					$tprice = 0;
					$tfees = 0;
					$req = "SELECT code,qty,product,dlm,city,price,state FROM commands WHERE phase='shipping' AND state IN('Annulé','Retourné')";
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					$back2 = $bdd->query($req);
					while($row2 = $back2->fetch()){
						if($row2['state'] == "Annulé"){
							$sm += $row2['qty'];
							$tprice += 0;
							$back3 = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
							$row3 = $back3->fetch();
							$tfees += $row3['refusedfees'];	
							$k++;
						}
						else{
							$back3 = $bdd->query("SELECT state FROM commandshistory WHERE command='".$row2['code']."' ORDER BY id DESC LIMIT 1,1");
							$row3 = $back3->fetch();
							if($row3['state'] == "Annulé"){
								$sm += $row2['qty'];
								$tprice += 0;
								$back3 = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
								$row3 = $back3->fetch();
								$tfees += $row3['refusedfees'];	
								$k++;
							}							
						}
					}
					?>
					<tr>
						<td style="white-space:nowrap;"><span>Annulé</span></td>
						<td><span><?php echo $k;?></span></td>
						<td><span>0 DH</span></td>
						<td><span><?php echo $sm;?></span></td>
						<td><span>0 <?php echo $settings['currency'];?></span></td>
						<td><span>0 <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tfees);$tf+=$tfees;?> <?php echo $settings['currency'];?></span></td>						
						<td style="width:1%;padding:0px;">
							<input type="text" name="adscost" placeholder="Frais d'ads" style="padding:10px;background:#FBFBFB;box-shadow:0px 0px 4px #EEEEEE inset;border:1px solid #EEEEEE;" />
						</td>
						<td><span>0 DH</span></td>					
						<td><span><?php echo round(0-(0*$sm)-$tfees);$profit+=(0-(0*$sm)-$tfees);?> <?php echo $settings['currency'];?></span></td>
					</tr>
					<?php
					$k = 0;
					$sm = 0;
					$tprice = 0;
					$tfees = 0;
					$req = "SELECT qty,product,dlm,city,price FROM commands WHERE product='0' AND phase='shipping' AND state IN('Livré')";
					if($_POST['store'] != ""){
						$req .= " AND (store IN(SELECT id FROM stores WHERE name IN('".str_replace(",","','",$_POST['store'])."'))".(preg_match("#Sans boutique#",$_POST['store'])?" OR store='0'":"").")";
					}
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					$back2 = $bdd->query($req);
					while($row2 = $back2->fetch()){
						$sm += $row2['qty'];
						$tprice += $row2['price'];
						$back3 = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$row2['dlm']."' AND city='".$row2['city']."'");
						$row3 = $back3->fetch();
						$tfees += $row3['deliveredfees'];
						$k++;
					}
					?>
					<tr>
						<td style="white-space:nowrap;"><span>Autres</span></td>
						<td><span><?php echo $k;$tcom+=$k;?></span></td>
						<td><span>0 DH</span></td>
						<td><span><?php echo $sm;$tqty+=$sm;?></span></td>
						<td><span><?php echo 0;$ptb+=0;?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tprice);$pts+=$tprice;?> <?php echo $settings['currency'];?></span></td>
						<td><span><?php echo round($tfees);$tf+=$tfees;?> <?php echo $settings['currency'];?></span></td>						
						<td style="width:1%;padding:0px;">
							<input type="text" name="adscost" placeholder="Frais d'ads" style="padding:10px;background:#FBFBFB;box-shadow:0px 0px 4px #EEEEEE inset;border:1px solid #EEEEEE;" />
						</td>
						<td><span>0 DH</span></td>					
						<td><span><?php echo round($tprice-(0*$sm)-$tfees);$profit+=($tprice-(0*$sm)-$tfees);?> <?php echo $settings['currency'];?></span></td>
					</tr>
					<tr class="lx-first-tr">
						<td>Produit</td>
						<td><?php echo $tcom;?></td>
						<td><?php echo $pub;?> <?php echo $settings['currency'];?></td>
						<td><?php echo $tqty;?></td>
						<td><?php echo $ptb;?> <?php echo $settings['currency'];?></td>
						<td><?php echo round($pts);?> <?php echo $settings['currency'];?></td>
						<td><?php echo round($tf);?> <?php echo $settings['currency'];?></td>
						<td style="width:1%;padding:0px;">
							<input type="text" name="adscost" placeholder="Frais d'ads" style="padding:10px;background:#FBFBFB;box-shadow:0px 0px 4px #EEEEEE inset;border:1px solid #EEEEEE;" />						
						</td>
						<td><span>0 DH</span></td>
						<td><?php echo round($profit);?> <?php echo $settings['currency'];?></td>
					</tr>
				</table>
				<?php
			}			
			
			if($_POST['action'] == "addsms"){
				if($_POST['id'] == "0"){
					$req = $bdd->prepare("INSERT INTO sms VALUES('0','".sanitize_vars($_POST['message'])."','".sanitize_vars($_POST['state'])."','".sanitize_vars($_POST['phase'])."','off','1')");
					$req->execute();
				}
				else{
					$req = $bdd->prepare("UPDATE sms SET content='".sanitize_vars($_POST['message'])."',state='".sanitize_vars($_POST['state'])."',phase='".sanitize_vars($_POST['phase'])."' WHERE id='".$_POST['id']."'");
					$req->execute();
				}
			}
			
			if($_POST['action'] == "sendsms"){
				sendSMS($_POST['phone'],$_POST['message'],$_POST['worker'],$settings['smstoken']);
			}

if($_POST['action'] == "sendsmsconfirmation"){
				$message = "";
				if($_POST['type'] == "0"){
					$message = "السلام عليكم ".$_POST['fullname']."، معاك حسن من موقع ".$_POST['store']."، كنتاصلو بك على ود الطلب لي درتي عندنا ديال ".$_POST['product']."، إلا بغيتي تأكد الطلب ديالك تاصل بهنا على هاد الرقم ".$_POST['workerphone']."، شكرا";
					$req = $bdd->prepare("UPDATE commands SET note=CONCAT(note,' + SMS NORMAL') WHERE id='".$_POST['id']."'");
				}
				else{
					$message = "السلام عليكم ".$_POST['fullname']."، موقع ".$_POST['store']." كيقدم ليك عرض خاص، تخفيض مهم على ".$_POST['product']." لي طلبتي، ".$_POST['price']." درهم حاليا، إلا بغيتي تستافد من هاد العرض تاصل بسرعة بالرقم التالي ".$_POST['workerphone']."، شكرا";
					$req = $bdd->prepare("UPDATE commands SET price='".sanitize_vars($_POST['price'])."',note=CONCAT(note,' + SMS PROMO') WHERE id='".$_POST['id']."'");
				}
				$req->execute();				
				sendSMS($_POST['phone'],$message,$_POST['sender'],$settings['smstoken']);
			}	
			
			if($_POST['action'] == "deletesms"){
				$req = $bdd->prepare("UPDATE sms SET trash='0' WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "resmsms"){
				$req = $bdd->prepare("UPDATE sms SET trash='1' WHERE id='".$_POST['id']."'");
				$req->execute();
			}

if($_POST['action'] == "deletesmspermanently"){
				$req = $bdd->prepare("DELETE FROM sms WHERE id='".$_POST['id']."'");
				$req->execute();
			}
			
			if($_POST['action'] == "loadsms"){
				?>
				<a href="javascript:;" class="lx-trash lx-trash-sms"><i class="fa fa-trash-alt"></i> Corbeille</a>
				<a href="javascript:;" class="lx-trash lx-published-sms"><i class="fa fa-bars"></i> Publiés</a>
				<table cellpadding="0" cellspacing="0">
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Message</td>
						<td>Etat</td>
						<td>Phase</td>
						<td>Active</td>
						<td>Action</td>
					</tr>
					<?php
					$req = "SELECT * FROM sms WHERE trash='".$_POST['state']."'";
					if($_POST['keyword'] != ""){
						$req .= " AND name LIKE '%".trim($_POST['keyword'])."%'";
					}
					if($_POST['sortby'] != ""){
						$req .= " ORDER BY ".$_POST['sortby'];
					}
					else{
						$req .= " ORDER BY id";
					}
					$req .= " ".$_POST['orderby'];
					$back2 = $bdd->query($req);
					$req .= " LIMIT ".$_POST['start'].",".$_POST['nbpage'];
					$back = $bdd->query($req);
					while($row = $back->fetch()){
						?>
					<tr>
						<td><label><input type="checkbox" name="sms" value="<?php echo $row['id'];?>" /><del class="checkmark"></del></label></td>
						<td><span><?php echo $row['content'];?></span></td>
						<td><span><?php echo $row['state'];?></span></td>
						<td><span><?php echo $row['phase'];?></span></td>
						<td>
							<?php
							$class = '';
							if($row['active'] == "on"){
								$class = ' lx-on-off-blue';
							}
							?>
							<div class="lx-on-off<?php echo $class?>" data-state="<?php echo $row['active']?>" data-table="sms" data-column="active" data-id="<?php echo $row['id'];?>">
								<div class="lx-on-off-fill">
									<i class="material-icons">check</i>
									<span></span>
								</div>
							</div>
						</td>
						<td>
							<?php
							if($_POST['state'] == 1){
								?>
							<a href="javascript:;" class="lx-edit lx-edit-sms lx-open-popup" 
								data-id="<?php echo $row['id'];?>"
								data-state="<?php echo $row['state'];?>"
								data-phase="<?php echo $row['phase'];?>" 
								data-message="<?php echo $row['content'];?>" data-title="sms"><i class="fa fa-edit"></i></a><a href="javascript:;" class="lx-delete lx-delete-sms lx-open-popup" data-title="deleterecord" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							else{
								?>
							<a href="javascript:;" class="lx-edit lx-resms-sms" data-id="<?php echo $row['id'];?>"><i class="fa fa-upload"></i></a><a href="javascript:;" class="lx-delete lx-delete-permanently-sms" data-id="<?php echo $row['id'];?>"><i class="fa fa-trash"></i></a>
								<?php
							}
							?>
						</td>
					</tr>
						<?php
					}
					?>
					<tr class="lx-first-tr">
						<td><label><input type="checkbox" name="selectall" value="selectall" /><del class="checkmark"></del></label></td>
						<td>Message</td>
						<td>Etat</td>
						<td>Phase</td>
						<td>Active</td>
						<td>Action</td>
					</tr>
				</table>
				<input type="hidden" id="posts" value="<?php echo $back2->rowCount();?>" />
				<?php
				if($back2->rowCount() > ($_POST['start'] + $_POST['nbpage'])){
				?>
				<p><?php echo ($_POST['start'] + $_POST['nbpage']);?> SMS(s) de <?php echo $back2->rowCount();?></p>
				<?php
				}
				else{
				?>
				<p><?php echo $back2->rowCount();?> SMS(s) de <?php echo $back2->rowCount();?></p>
				<?php			
				}
			}

if($_POST['action'] == "changestate"){
				if($_POST['table'] == "shipments"){
					$back = $bdd->query("SELECT dlm,product,qty,received FROM shipments WHERE id='".$_POST['id']."'");
					$row = $back->fetch();
					if($_POST['state'] == "on" AND $row['received'] == "off"){
						$req = $bdd->prepare("UPDATE shipments SET datereceived='".time()."' WHERE id='".$_POST['id']."'");
						$req->execute();
						$products = explode(",",$row['product']);
						$qtys = explode(",",$row['qty']);
						for($i=0;$i<count($products);$i++){
							$back = $bdd->query("SELECT id FROM stocks WHERE product='".$products[$i]."' AND dlm='".$row['dlm']."' AND trash='1'");
							if($back->rowCount() != 0){
								$req = $bdd->prepare("UPDATE stocks SET qty=qty+".$qtys[$i]." WHERE product='".$products[$i]."' AND dlm='".$row['dlm']."' AND trash='1'");
								$req->execute();
							}
							else{
								$req = $bdd->prepare("INSERT INTO stocks(id,product,qty,broken,details,dlm,dateadd,trash) VALUES ('0','".sanitize_vars($products[$i])."','".sanitize_vars($qtys[$i])."','0','','".sanitize_vars($row['dlm'])."','".time()."','1')");
								$req->execute();
							}
						}
					}
					elseif($_POST['state'] == "off" AND $row['received'] == "on"){
						$products = explode(",",$row['product']);
						$qtys = explode(",",$row['qty']);
						for($i=0;$i<count($products);$i++){
							$req = $bdd->prepare("UPDATE stocks SET qty=qty-".$qtys[$i]." WHERE product='".$products[$i]."' AND dlm='".$row['dlm']."'");
							$req->execute();
						}						
					}
				}
				if($_POST['table'] == "factures" AND $_POST['column'] == "received"){
					$back = $bdd->query("SELECT fd.facture AS facture,fd.command AS command FROM factures f,facturesdetails fd WHERE f.code=fd.facture AND f.id='".$_POST['id']."'");
					$facture = "";
					while($row = $back->fetch()){
						$facture = $row['facture'];
						if($_POST['state'] == "on"){
							$req = $bdd->prepare("UPDATE commands SET invoiced='on' WHERE id='".$row['command']."'");
						}
						else{
							$req = $bdd->prepare("UPDATE commands SET invoiced='off' WHERE id='".$row['command']."'");
						}
						$req->execute();
					}
					$req = $bdd->prepare("UPDATE factures SET datereceived='".time()."' WHERE id='".$_POST['id']."'");
					$req->execute();	
					if($_POST['state'] == "on"){
						saveLog($_SESSION['fullname']." a marqué la facture N° ".$facture." comme versé");
					}
					else{
						saveLog($_SESSION['fullname']." a marqué la facture N° ".$facture." comme non versé");
					}					
				}
				if($_POST['table'] == "factures" AND $_POST['column'] == "validated"){
					$back = $bdd->query("SELECT code FROM factures WHERE id='".$_POST['id']."'");
					$row = $back->fetch();
					if($_POST['state'] == "on"){
						saveLog($_SESSION['fullname']." a marqué la facture N° ".$row['code']." comme cloturé");
					}
					else{
						saveLog($_SESSION['fullname']." a marqué la facture N° ".$row['code']." comme non cloturé");
					}	
					$req = $bdd->prepare("UPDATE factures SET datecreated='".time()."' WHERE id='".$_POST['id']."'");
					$req->execute();					
				}
				if($_POST['table'] == "commands" AND $_POST['column'] == "phase"){
					$back = $bdd->query("SELECT code,product,qty,dlm,fullname,phone,address,city,price,state,note FROM commands WHERE id='".$_POST['id']."'");
					$command = $back->fetch();		
					if($_POST['state'] == "on"){
						$req = $bdd->prepare("UPDATE `".$_POST['table']."` SET `".$_POST['column']."`='shipping',state='En cours' WHERE id='".$_POST['id']."' AND state='Confirmé'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','En cours','".$_SESSION['fullname']."','".time()."')");
						$req->execute();
						$back = $bdd->query("SELECT fullname,stockout,emailstockout,idplayer FROM users WHERE id='".$command['dlm']."'");
						$row = $back->fetch();
						if($row['idplayer'] != ""){
							$i = 0;
							$products = "";
							$qtys = explode(",",$command['qty']);
							$back1 = $bdd->query("SELECT * FROM stocks WHERE id IN(".$command['product'].")");
							while($row1 = $back1->fetch()){
								$back2 = $bdd->query("SELECT * FROM products WHERE id='".$row1['product']."'");
								$row2 = $back2->fetch();
								$products .= " + " . $row2['ref']." x ".$qtys[$i];
								$i++;
							}
							sendMessage($row['idplayer'],$command['fullname']." (".$command['phone'].") [".$command['address']." ".$command['city']."]",substr($products,3),"tel:".$command['phone'],$settings['onesignal']);
						}
						if($row['stockout'] != "" AND $row['emailstockout'] != ""){
							$product = "";
							if(preg_match("#^[0-9]+(,[0-9]+)*$#",$command['product'])){
								$i = 0;
								$qtys = explode(",",$command['qty']);
								$back1 = $bdd->query("SELECT product FROM stocks WHERE id IN(".$command['product'].") ORDER BY FIELD(id,".$command['product'].")");
								while($row1 = $back1->fetch()){
									$back2 = $bdd->query("SELECT title FROM products WHERE id='".$row1['product']."'");
									$row2 = $back2->fetch();
									$product .= ",".$row2['title']." x ".$qtys[$i];
									$i++;
								}
							}
							else{
								$product = $command['product'];						
							}							
							if(preg_match("#ozon#i",$row['fullname'])){
								sentOzonOrder($row['stockout'],$row['emailstockout'],$command['code'],$command['fullname'],$command['phone'],$command['city'],$command['address'],$product,$command['price']);
							}
							else{
								sendToStockOUT($row['stockout'],$row['emailstockout'],$command['code'],$product,$command['qty'],$command['fullname'],$command['phone'],$command['address'],$command['city'],$command['price']);
							}
						}
					}
					else{
						$req = $bdd->prepare("UPDATE `".$_POST['table']."` SET `".$_POST['column']."`='confirmation',state='Confirmé' WHERE id='".$_POST['id']."' AND product<>'' AND state='En cours'");
						$req->execute();	
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','Confirmé','".$_SESSION['fullname']."','".time()."')");
						$req->execute();							
					}
				}
				if($_POST['table'] != "commands" AND $_POST['column'] != "phase"){
					$req = $bdd->prepare("UPDATE `".$_POST['table']."` SET `".$_POST['column']."`='".$_POST['state']."' WHERE id='".$_POST['id']."'");
					$req->execute();					
				}
			}

if($_POST['action'] == "updatebulk"){
				if($_POST['state'] == "delete"){
					$req = $bdd->prepare("UPDATE `".$_POST['table']."` SET trash='0' WHERE `".$_POST['column']."` IN(".$_POST['ids'].")");
					$req->execute();
				}
				elseif($_POST['state'] == "deletepermenantly"){	
					$req = $bdd->prepare("DELETE FROM `".$_POST['table']."` WHERE `".$_POST['column']."` IN(".$_POST['ids'].")");
					$req->execute();
				}
				elseif($_POST['state'] == "restore"){	
					$req = $bdd->prepare("UPDATE `".$_POST['table']."` SET trash='1' WHERE `".$_POST['column']."` IN(".$_POST['ids'].")");
					$req->execute();
				}
				elseif($_POST['state'] == "validate"){	
					$back = $bdd->query("SELECT id,code,product,qty,dlm,fullname,phone,address,city,state FROM commands WHERE id IN(".$_POST['ids'].") AND phase='confirmation' AND state='Confirmé'");
					while($command = $back->fetch()){		
						$req = $bdd->prepare("UPDATE commands SET `phase`='shipping',state='En cours' WHERE id='".$command['id']."'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','En cours','".$_SESSION['fullname']."','".time()."')");
						$req->execute();
						$back1 = $bdd->query("SELECT idplayer FROM users WHERE id='".$command['dlm']."'");
						$row = $back1->fetch();
						if($row['idplayer'] != ""){
							$i = 0;
							$products = "";
							$qtys = explode(",",$command['qty']);
							$back1 = $bdd->query("SELECT * FROM stocks WHERE id IN(".$command['product'].")");
							while($row1 = $back1->fetch()){
								$back2 = $bdd->query("SELECT * FROM products WHERE id='".$row1['product']."'");
								$row2 = $back2->fetch();
								$products .= " + " . $row2['ref']." x ".$qtys[$i];
								$i++;
							}
							sendMessage($row['idplayer'],$command['fullname']." (".$command['phone'].") [".$command['address']." ".$command['city']."]",substr($products,3),"tel:".$command['phone'],$settings['onesignal']);
						}
					}
				}
				elseif($_POST['state'] == "addtoarchive"){
					$req = $bdd->prepare("INSERT INTO commandsarchive SELECT * FROM commands WHERE id IN(".$_POST['ids'].")");
					$req->execute();	
					$req = $bdd->prepare("DELETE FROM commands WHERE id IN(".$_POST['ids'].")");
					$req->execute();					
				}
				elseif($_POST['state'] == "removefromarchive"){
					$req = $bdd->prepare("INSERT INTO commands SELECT * FROM commandsarchive WHERE id IN(".$_POST['ids'].")");
					$req->execute();	
					$req = $bdd->prepare("DELETE FROM commandsarchive WHERE id IN(".$_POST['ids'].")");
					$req->execute();					
				}
				else{
					$backcommand = $bdd->query("SELECT id,code,product,dlm,worker,store,city,price,fees,state FROM commands WHERE phase='shipping' AND id IN(".$_POST['ids'].")");
					while($command = $backcommand->fetch()){
						$req = $bdd->prepare("UPDATE commands SET state='".sanitize_vars($_POST['state'])."',dateupdate='".time()."' WHERE id='".$command['id']."'");
						$req->execute();
						$req = $bdd->prepare("INSERT INTO commandshistory(id,command,state,agent,dateadd) VALUES ('0','".$command['code']."','".sanitize_vars($_POST['state'])."','".$_SESSION['fullname']."','".time()."')");
						$req->execute();
						$reqstore = "";
						if($settings['splitinvoices'] == 1){
							$reqstore = "AND store='".$command['store']."'";
						}
						if($_POST['state'] == "Livré" AND $command['state'] != "Livré"){
							$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();	
								$price = $command['price'] - $command['fees'] - $city['deliveredfees'];
								$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$command['id']."')");
								$req->execute();
								$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
								$req->execute();
							}
							else{
								$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								$price = $command['price'] - $command['fees'] - $city['deliveredfees'];						
								$rand = '';
								do{
									$rand = 'FCT-'.gmdate('dmY').'-'.random();
									$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
								}
								while($back2->rowCount() != 0);
								$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
								$req->execute();
								$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$command['id']."')");
								$req->execute();
							}
						}
						elseif($_POST['state'] != "Livré" AND $command['state'] == "Livré"){
							$back = $bdd->query("SELECT deliveredfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							$price = $command['price'] - $command['fees'] - $city['deliveredfees'];					
							$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
							$row = $back->fetch();
							$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$command['id']."'");
							$req->execute();
							$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
							$req->execute();
						}
						if($_POST['state'] == "Refusé" AND $command['state'] != "Refusé"){
							$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['refusedfees'] != 0){
									$price = 0 - $city['refusedfees'];
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$command['id']."')");
									$req->execute();
									$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
									$req->execute();
								}
							}
							else{
								$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['refusedfees'] != 0){
									$price = 0 - $city['refusedfees'];
									$rand = '';
									do{
										$rand = 'FCT-'.gmdate('dmY').'-'.random();
										$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
									}
									while($back2->rowCount() != 0);
									$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
									$req->execute();
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$command['id']."')");
									$req->execute();
								}
							}
						}
						elseif($_POST['state'] != "Refusé" AND $command['state'] == "Refusé" AND !preg_match("#retour#i",$_POST['state'])){
							$back = $bdd->query("SELECT refusedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							if($city['refusedfees'] != 0){
								$price = 0 - $city['refusedfees'];
								$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
								$row = $back->fetch();
								$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$command['id']."'");
								$req->execute();
								$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
								$req->execute();
							}
						}
						if($_POST['state'] == "Annulé" AND $command['state'] != "Annulé"){
							$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['canceledfees'] != 0){
									$price = 0 - $city['canceledfees'];
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$command['id']."')");
									$req->execute();
									$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
									$req->execute();
								}
							}
							else{
								$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['canceledfees'] != 0){
									$price = 0 - $city['canceledfees'];
									$rand = '';
									do{
										$rand = 'FCT-'.gmdate('dmY').'-'.random();
										$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
									}
									while($back2->rowCount() != 0);
									$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
									$req->execute();
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$command['id']."')");
									$req->execute();
								}
							}
						}
						elseif($_POST['state'] != "Annulé" AND $command['state'] == "Annulé" AND !preg_match("#retour#i",$_POST['state'])){
							$back = $bdd->query("SELECT canceledfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							if($city['canceledfees'] != 0){
								$price = 0 - $city['canceledfees'];
								$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
								$row = $back->fetch();
								$req = $bdd->prepare("DELETE FROM facturesdetails WHERE cogmmand='".$command['id']."'");
								$req->execute();
								$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
								$req->execute();
							}
						}
						if($_POST['state'] == "Change" AND $command['state'] != "Change"){
							$back = $bdd->query("SELECT code FROM factures WHERE dlm='".$command['dlm']."' AND validated='off' AND trash='1'".$reqstore);
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['changedfees'] != 0){
									$price = 0 - $city['changedfees'];
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$row['code']."','".$command['id']."')");
									$req->execute();
									$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands+1),price=(price+".$price.") WHERE code='".$row['code']."'");
									$req->execute();
								}
								else{
									$req = $bdd->prepare("DELETE FROM facturesdetails WHERE facture='".$row['code']."' AND command='".$command['id']."'");
									$req->execute();
								}
							}
							else{
								$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
								$city = $back->fetch();
								if($city['changedfees'] != 0){
									$price = 0 - $city['changedfees'];
									$rand = '';
									do{
										$rand = 'FCT-'.gmdate('dmY').'-'.random();
										$back2 = $bdd->query("SELECT id FROM factures WHERE code='".$rand."'");
									}
									while($back2->rowCount() != 0);
									$req = $bdd->prepare("INSERT INTO factures VALUES ('0','".$rand."','".$command['dlm']."','".$command['store']."','1','".$price."','','off','off','".time()."','','1')");
									$req->execute();
									$req = $bdd->prepare("INSERT INTO facturesdetails VALUES ('0','".$rand."','".$command['id']."')");
									$req->execute();
								}
							}
						}
						elseif($_POST['state'] != "Change" AND $command['state'] == "Change"){
							$back = $bdd->query("SELECT changedfees FROM shippingfees WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND trash='1'");
							$city = $back->fetch();
							if($city['changedfees'] != 0){
								$price = 0 - $city['changedfees'];
								$back = $bdd->query("SELECT facture FROM facturesdetails WHERE command='".$command['id']."'");
								$row = $back->fetch();
								$req = $bdd->prepare("DELETE FROM facturesdetails WHERE command='".$command['id']."'");
								$req->execute();
								$req = $bdd->prepare("UPDATE factures SET nbcommands=(nbcommands-1),price=(price-".$price.") WHERE code='".$row['facture']."'");
								$req->execute();
							}
						}
						
						if($_POST['state'] == "Livré" AND $command['state'] != "Livré" AND $command['state'] != "Annulé" AND $command['state'] != "Refusé"){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered+1) WHERE id='".$row['id']."'");
								$req->execute();
							}
							else{
								$req = $bdd->prepare("INSERT INTO statistics VALUES ('0','".$command['dlm']."','".$command['city']."','".$command['product']."','".$command['worker']."','1','0','".(strtotime(gmdate("d-m-Y"))+1)."')");
								$req->execute();
							}					
						}
						elseif($_POST['state'] == "Livré" AND ($command['state'] == "Annulé" OR $command['state'] == "Refusé")){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered+1),canceled=(canceled-1) WHERE id='".$row['id']."'");
								$req->execute();
							}				
						}
						elseif(($_POST['state'] == "Annulé" OR $_POST['state'] == "Refusé") AND $command['state'] != "Livré" AND $command['state'] != "Annulé" AND $command['state'] != "Refusé"){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET canceled=(canceled+1) WHERE id='".$row['id']."'");
								$req->execute();
							}
							else{
								$req = $bdd->prepare("INSERT INTO statistics VALUES ('0','".$command['dlm']."','".$command['city']."','".$command['product']."','".$command['worker']."','0','1','".(strtotime(gmdate("d-m-Y"))+1)."')");
								$req->execute();
							}						
						}
						elseif(($_POST['state'] == "Annulé" OR $_POST['state'] == "Refusé") AND $command['state'] == "Livré"){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered-1),canceled=(canceled+1) WHERE id='".$row['id']."'");
								$req->execute();
							}						
						}
						elseif(($_POST['state'] != "Livré" AND $_POST['state'] != "Annulé" AND $_POST['state'] != "Refusé") AND $command['state'] == "Livré"){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET delivered=(delivered-1) WHERE id='".$row['id']."'");
								$req->execute();
							}						
						}
						elseif(($_POST['state'] != "Livré" AND $_POST['state'] != "Annulé" AND $_POST['state'] != "Refusé") AND ($command['state'] == "Annulé" OR $command['state'] == "Refusé")){
							$back = $bdd->query("SELECT id FROM statistics WHERE dlm='".$command['dlm']."' AND city='".$command['city']."' AND product='".$command['product']."' AND worker='".$command['worker']."' AND (dateadd BETWEEN ".strtotime(gmdate("d-m-Y"))." AND ".(strtotime(gmdate("d-m-Y")) + (60*60*24) - 1).")");
							if($back->rowCount() == 1){
								$row = $back->fetch();
								$req = $bdd->prepare("UPDATE statistics SET canceled=(canceled-1) WHERE id='".$row['id']."'");
								$req->execute();
							}						
						}
						if($_POST['state'] != $command['state']){
							saveLog($_SESSION['fullname']." a changé l\'état du commande N° ".$command['code']." de [".$command['state']."] à [".$_POST['state']."]");
						}
					}
				}
			}

if($_POST['action'] == "loadlog"){
				?>
				<tr>
					<td>Date mise à jour et description</td>
				</tr>
				<?php
				if(file_exists("logs/log-".str_replace("/","-",$_POST['datelog']).".txt")){
					$data = file_get_contents("logs/log-".str_replace("/","-",$_POST['datelog']).".txt");
					$log = explode("\n",$data);
					for($i=0;$i<count($log);$i++){
						?>
				<tr>
					<td><span><?php echo $log[$i];?></span></td>
				</tr>
						<?php
					}		
				}				
			}
			
			if($_POST['action'] == "allnotifs"){
				if($_SESSION['type'] == "moderator"){
					$req = "";
					if($_SESSION['storeslist'] != ""){
						$req = " AND store IN(".$_SESSION['storeslist'].")";
					}
					$shipments = $bdd->query("SELECT id FROM shipments WHERE received='off' AND trash='1'");
					$confirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state='Nouveau' AND trash='1'".$req);
					$pdrconfirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND (state LIKE '%Pas de réponse%' OR state LIKE '%Injoignable%') AND trash='1'".$req);
					$reported = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state='Reporté' AND trash='1'".$req);
					$waitingconfirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state IN('En attente de confirmation','Whatsapp Photos') AND trash='1'".$req);
					$commands = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND state='En cours' AND trash='1'".$req);
					$ozoneurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%ozon%') AND state IN('Annulé','Reporté','Refusé','Injoignable','Pas de réponse + SMS','En Voyage','Pas Reponse-Siege-01','Pas Reponse-Siege-02','Pas Reponse-Siege-03','Programmé','Boite Vocal','Hors-zone','Client intéressé','Erreur Numero') AND trash='1'".$req);
					$atlasurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%atlas%') AND state IN('Annulé','Demande de suivi','Fausse destination','Hors zone','Injoignable','Interessé','Pas de réponse','Reporté','Refusé') AND trash='1'".$req);
					$factures = $bdd->query("SELECT id FROM factures WHERE validated='on' AND received='off' AND trash='1'".$req);
					$notifs = '{ notifs : [';
					$notifs .= '{ "shipments" : "'.$shipments->rowCount().'" , "confirmation" : "'.$confirmation->rowCount().'" , "pdrconfirmation" : "'.$pdrconfirmation->rowCount().'" , "reported" : "'.$reported->rowCount().'" , "waitingconfirmation" : "'.$waitingconfirmation->rowCount().'" , "commands" : "'.$commands->rowCount().'" , "ozoneurgent" : "'.$ozoneurgent->rowCount().'" , "atlasurgent" : "'.$atlasurgent->rowCount().'" , "factures" : "'.$factures->rowCount().'" }';
					$notifs .= '] }';
				}
				elseif($_SESSION['type'] == "worker"){
					$confirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state='Nouveau' AND worker='0' AND trash='1'");
					$pdrconfirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND (state LIKE '%Pas de réponse%' OR state LIKE '%Injoignable%') AND worker='".$_SESSION['id']."' AND trash='1'");
					$reported = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state='Reporté' AND worker='".$_SESSION['id']."' AND trash='1'");
					$waitingconfirmation = $bdd->query("SELECT id FROM commands WHERE phase='confirmation' AND state IN('En attente de confirmation','Whatsapp Photos') AND worker='".$_SESSION['id']."' AND trash='1'");
					$commands = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND worker='".$_SESSION['id']."' AND state='En cours' AND trash='1'");
					$ozoneurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND worker='".$_SESSION['id']."' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%ozon%') AND state IN('Annulé','Reporté','Refusé','Injoignable','Pas de réponse + SMS','En Voyage','Pas Reponse-Siege-01','Pas Reponse-Siege-02','Pas Reponse-Siege-03','Programmé','Boite Vocal','Hors-zone','Client intéressé','Erreur Numero') AND trash='1'");
					$atlasurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND worker='".$_SESSION['id']."' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%atlas%') AND state IN('Annulé','Demande de suivi','Fausse destination','Hors zone','Injoignable','Interessé','Pas de réponse','Reporté','Refusé') AND trash='1'");
					$notifs = '{ notifs : [';
					$notifs .= '{ "shipments" : "0" , "confirmation" : "'.$confirmation->rowCount().'" , "pdrconfirmation" : "'.$pdrconfirmation->rowCount().'" , "reported" : "'.$reported->rowCount().'" , "waitingconfirmation" : "'.$waitingconfirmation->rowCount().'" , "commands" : "'.$commands->rowCount().'" , "ozoneurgent" : "'.$ozoneurgent->rowCount().'" , "atlasurgent" : "'.$atlasurgent->rowCount().'" , "factures" : "0" }';
					$notifs .= '] }';
				}
				elseif($_SESSION['type'] == "dlm"){
					$shipments = $bdd->query("SELECT id FROM shipments WHERE dlm='".$_SESSION['id']."' AND received='off' AND trash='1'");
					$commands = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND dlm='".$_SESSION['id']."' AND state='En cours' AND trash='1'");
					$ozoneurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND dlm='".$_SESSION['id']."' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%ozon%') AND state IN('Annulé','Reporté','Refusé','Injoignable','Pas de réponse + SMS','En Voyage','Pas Reponse-Siege-01','Pas Reponse-Siege-02','Pas Reponse-Siege-03','Programmé','Boite Vocal','Hors-zone','Client intéressé','Erreur Numero') AND trash='1'");
					$atlasurgent = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND dlm='".$_SESSION['id']."' AND dlm IN(SELECT id FROM users WHERE type='dlm' AND fullname LIKE '%atlas%') AND state IN('Annulé','Demande de suivi','Fausse destination','Hors zone','Injoignable','Interessé','Pas de réponse','Reporté','Refusé') AND trash='1'");
					$factures = $bdd->query("SELECT id FROM factures WHERE dlm='".$_SESSION['id']."' AND validated='on' AND received='off' AND trash='1'");
					$notifs = '{ notifs : [';
					$notifs .= '{ "shipments" : "'.$shipments->rowCount().'" , "confirmation" : "0" , "pdrconfirmation" : "0" , "reported" : "0" , "waitingconfirmation" : "0" , "commands" : "'.$commands->rowCount().'" , "ozoneurgent" : "'.$ozoneurgent->rowCount().'" , "atlasurgent" : "'.$atlasurgent->rowCount().'" , "factures" : "'.$factures->rowCount().'" }';
					$notifs .= '] }';
				}
				echo $notifs;
			}
			
			if($_POST['action'] == "loadkpi"){
				$req = $user;
				if($_POST['worker'] != ""){
					$req .= " AND worker='".$_POST['worker']."'";
				}
				if($_POST['dlm'] != ""){
					$req .= " AND dlm='".$_POST['dlm']."'";
				}
				if($_POST['city'] != ""){
					$req .= " AND city='".$_POST['city']."'";
				}
				if($_POST['product'] != ""){
					$req .= " AND (";
					$i = 1;
					$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
					while($row = $back->fetch()){
						if($i == 1){
							$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						else{
							$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						$i = 2;
					}
					$req .= ")";
				}
				if($_POST['store'] != ""){
					$req .= " AND store='".$_POST['store']."'";
				}
				if($_POST['source'] != ""){
					$req .= " AND source='".$_POST['source']."'";
				}
				if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
					$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
					$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
					$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
				}
				$back = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND trash='1'".$req);
				$nbtotal = $back->rowCount();
				if($nbtotal == 0){
					$nbtotal = 1;
				}
				?>
				<div data-tab="1">
				<?php
				if($_SESSION['type'] != "worker"){
				?>
				<div class="lx-g2 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #000000;">
						<a href="commands.php?s=En cours,Expédié,Injoignable,Pas de réponse,Pas de réponse 2 fois,Pas de réponse 3 fois,Pas de réponse 4 fois,Pas de réponse 5 fois,Reporté,Interessé">
							<span>Total commandes</span>
							<div class="lx-clear-fix"></div>
							<strong>100%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Livré') AND trash='1'".$req);
				?>
				<div class="lx-g2 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Livré</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-clear-fix"></div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('En cours','Expédié') AND trash='1'".$req);
				?>
				<div class="lx-g4 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #FFAA00;">
						<a href="commands.php?s=En cours,Expédié">
							<span>En cours & Expédié</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND (state IN('Injoignable') OR state LIKE '%Pas de réponse%') AND trash='1'".$req);
				?>
				<div class="lx-g4 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #FF7700;">
						<a href="commands.php?s=Injoignable,Pas de réponse,Pas de réponse 2 fois,Pas de réponse 3 fois,Pas de réponse 4 fois,Pas de réponse 5 fois">
							<span>PDR & Injoignable</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Reporté','Interessé') AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g4 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #00CCFF;">
						<a href="commands.php?s=Reporté,Interessé">
							<span>Reporté & Interessé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Annulé','Refusé','Retourné') AND trash='1'".$req);
				?>
				<div class="lx-g4 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #CC0000;">
						<a href="commands.php?s=Annulé,Refusé,Retourné">
							<span>Annulé & Refusé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-clear-fix"></div>
				<?php
				$req1 = "";
				if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
					$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
					$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
					$req1 .= " AND (datereceived BETWEEN '".$datestart."' AND '".$dateend."')";
				}
				$back = $bdd->query("SELECT SUM(price) AS sm FROM factures WHERE trash='1'".$user.$req1);
				$row = $back->fetch();
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Livré') AND trash='1'".$req);
				?>
				<div class="lx-g3 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Total chiffre d'affaires</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $row['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT SUM(price) AS sm FROM factures WHERE received='on' AND trash='1'".$user.$req1);
				$row = $back->fetch();
				$chfv = $row['sm'];
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Livré') AND invoiced='on' AND trash='1'".$req);
				?>
				<div class="lx-g3 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Chiffre d'affaires versé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $row['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT SUM(price) AS sm FROM factures WHERE received='off' AND trash='1'".$user.$req1);
				$row = $back->fetch();
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Livré') AND invoiced='off' AND trash='1'".$req);
				?>
				<div class="lx-g3 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Chiffre d'affaires non versé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $row['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-clear-fix"></div>
				<?php
				if($_SESSION['type'] == "moderator"){
					$req = "";
					if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
						$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
						$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
						$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
					}
					$back = $bdd->query("SELECT SUM(cost) AS sm FROM expenses WHERE type='Dépense' AND trash='1'".$req);
					$row = $back->fetch();
					?>
				<div class="lx-g3 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #00CCFF;">
						<a href="commands.php?s=Livré">
							<span>Dépenses</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $row['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
					<?php
					$back = $bdd->query("SELECT SUM(cost) AS sm FROM expenses WHERE type='Revenu' AND trash='1'".$req);
					$row1 = $back->fetch();
					?>
				<div class="lx-g3 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Revenus</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $row1['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-g3 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="commands.php?s=Livré">
							<span>Chiffre d'affaires en caisse</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo $chfv-$row['sm']+$row1['sm'];?> <?php echo $settings['currency'];?></strong>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-clear-fix"></div>
				<?php
				}
				}
				else{
				$back = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND state IN('Livré') AND trash='1'".$req);
				?>
				<div class="lx-g5 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #008000;">
						<a href="javascript:;">
							<span>Livré</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND state IN('En cours','Expédié') AND trash='1'".$req);
				?>
				<div class="lx-g5 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #FFAA00;">
						<a href="javascript:;">
							<span>En cours & Expédié</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND (state IN('Injoignable') OR state LIKE '%Pas de réponse%') AND trash='1'".$req);
				?>
				<div class="lx-g5 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #FF7700;">
						<a href="javascript:;">
							<span>PDR & Injoignable</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands c WHERE phase='shipping' AND state IN('Reporté','Interessé') AND trash='1'".$req);
				?>
				<div class="lx-g5 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #00CCFF;">
						<a href="javascript:;">
							<span>Reporté & Interessé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT id FROM commands WHERE phase='shipping' AND state IN('Annulé','Refusé','Retourné') AND trash='1'".$req);
				?>
				<div class="lx-g5 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #CC0000;">
						<a href="javascript:;">
							<span>Annulé & Refusé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($back->rowCount()*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $back->rowCount();?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<div class="lx-clear-fix"></div>
				<?php					
				}
				?>
				</div>
				<div data-tab="2">
				<?php
				$back = $bdd->query("SELECT id FROM commands WHERE trash='1'".$req);
				$nbtotal = $back->rowCount();
				if($nbtotal == 0){
					$nbtotal = 1;
				}
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #242424;">
						<a href="javascript:;">
							<span>Tous</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE phase='confirmation' AND state='Nouveau' AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #828282;">
						<a href="javascript:;">
							<span>Nouveau</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE (phase='shipping' OR state='Confirmé') AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #7EC855;">
						<a href="commands.php">
							<span>Confirmé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>
				<?php
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE phase='confirmation' AND state='Reporté' AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #00CCFF;">
						<a href="javascript:;">
							<span>Reporté</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>		
				<?php
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE phase='confirmation' AND (state='Injoignable' OR state LIKE 'Pas de réponse%') AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-pl-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #FF7700;">
						<a href="javascript:;">
							<span>PDR & Injoignable</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>	
				<?php
				$back = $bdd->query("SELECT COUNT(id) AS nb FROM commands c WHERE phase='confirmation' AND state='Annulé' AND trash='1'".$req);
				$row = $back->fetch();
				?>
				<div class="lx-g6 lx-plr-0 lx-pb-0 lx-plr-0-mob">
					<div class="lx-state-count" style="border-bottom:4px solid #CC0000;">
						<a href="javascript:;">
							<span>Annulé</span>
							<div class="lx-clear-fix"></div>
							<strong><?php echo round(($row['nb']*100)/$nbtotal,2)?>%</strong>
							<br />
							<del><?php echo $row['nb'];?> commandes</del>
							<div class="lx-clear-fix"></div>
						</a>
					</div>
				</div>					
				</div>
				<?php
			}

if($_POST['action'] == "loaddlmrate"){
				$req = $user;
				if($_SESSION['type'] == "worker"){
					$req .= " AND worker='".$_SESSION['id']."'";
				}
				if($_POST['product'] != ""){
					$req .= " AND (";
					$i = 1;
					$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
					while($row = $back->fetch()){
						if($i == 1){
							$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						else{
							$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						$i = 2;
					}
					$req .= ")";
				}
				if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
					$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
					$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
					$req .= " AND (dateupdate BETWEEN '".$datestart."' AND '".$dateend."')";
				}
				?>
				<tr>
					<td>Livreur</td>
					<td>Livrés</td>
					<td>En cours</td>
					<td>Annulé</td>
				</tr>
				<?php
				$back = $bdd->query("SELECT dlm,COUNT(id) AS nbdelivered,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND dlm=c.dlm)) AS sm FROM commands c WHERE phase='shipping' AND state='Livré'".$req." GROUP BY dlm ORDER BY sm DESC");
				while($row = $back->fetch()){
					$back1 = $bdd->query("SELECT fullname FROM users WHERE id='".$row['dlm']."'");
					$row1 = $back1->fetch();
					?>
				<tr>
					<td><span><?php echo $row1['fullname'];?></span></td>
					<td><span><?php echo $row['nbdelivered']." (".round($row['sm'],2)."%)";?></span></td>
					<?php
					$back1 = $bdd->query("SELECT dlm,COUNT(id) AS nbencours,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND dlm=c.dlm)) AS sm FROM commands c WHERE phase='shipping' AND state NOT IN('Livré','Annulé','Refusé','Retourné') AND dlm='".$row['dlm']."'".$req." GROUP BY dlm ORDER BY sm DESC");
					$row1 = $back1->fetch();
					?>
					<td><span><?php echo ($row1['nbencours']!=""?$row1['nbencours']:"0")." (".round($row1['sm'],2)."%)";?></span></td>
					<?php
					$back1 = $bdd->query("SELECT dlm,COUNT(id) AS nbcanceled,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND dlm=c.dlm)) AS sm FROM commands c WHERE phase='shipping' AND state IN('Annulé','Refusé','Retourné') AND dlm='".$row['dlm']."'".$req." GROUP BY dlm ORDER BY sm DESC");
					$row1 = $back1->fetch();
					?>
					<td><span><?php echo ($row1['nbcanceled']!=""?$row1['nbcanceled']:"0")." (".round($row1['sm'],2)."%)";?></span></td>
				</tr>
					<?php
				}
			}
			
			if($_POST['action'] == "loadcityrate"){
				$req = $user;
				if($_SESSION['type'] == "worker"){
					$req .= " AND worker='".$_SESSION['id']."'";
				}
				if($_POST['product'] != ""){
					$req .= " AND (";
					$i = 1;
					$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
					while($row = $back->fetch()){
						if($i == 1){
							$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						else{
							$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						$i = 2;
					}
					$req .= ")";
				}
				if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
					$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
					$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
					$req .= " AND (dateupdate BETWEEN '".$datestart."' AND '".$dateend."')";
				}
				?>
				<tr>
					<td>Ville</td>
					<td>Livrés</td>
					<td>En cours</td>
					<td>Annulé</td>
				</tr>
				<?php
				$back = $bdd->query("SELECT city,COUNT(id) AS nbdelivered,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND city=c.city)) AS sm FROM commands c WHERE phase='shipping' AND state='Livré'".$req." GROUP BY city ORDER BY sm DESC");
				while($row = $back->fetch()){
					?>
				<tr>
					<td><span><?php echo $row['city'];?></span></td>
					<td><span><?php echo $row['nbdelivered']." (".round($row['sm'],2)."%)";?></span></td>
					<?php
					$back1 = $bdd->query("SELECT city,COUNT(id) AS nbencours,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND city=c.city)) AS sm FROM commands c WHERE phase='shipping' AND state NOT IN('Livré','Annulé','Refusé','Retourné') AND city='".$row['city']."'".$req." GROUP BY city ORDER BY sm DESC");
					$row1 = $back1->fetch();
					?>
					<td><span><?php echo ($row1['nbencours']!=""?$row1['nbencours']:"0")." (".round($row1['sm'],2)."%)";?></span></td>
					<?php
					$back1 = $bdd->query("SELECT city,COUNT(id) AS nbcanceled,((COUNT(id)*100)/(SELECT COUNT(id) FROM commands WHERE phase='shipping' AND city=c.city)) AS sm FROM commands c WHERE phase='shipping' AND state IN('Annulé','Refusé','Retourné') AND city='".$row['city']."'".$req." GROUP BY city ORDER BY sm DESC");
					$row1 = $back1->fetch();
					?>
					<td><span><?php echo ($row1['nbcanceled']!=""?$row1['nbcanceled']:"0")." (".round($row1['sm'],2)."%)";?></span></td>
				</tr>
					<?php
				}
			}
			
			if($_POST['action'] == "loadsales"){
				$result = file_get_contents("https://akaymo.delivery/checksitestate.php?state=".$_SERVER['SERVER_NAME']);
				if($result != ""){
				?>
				<div class="lx-sales">
					<p><?php echo $result;?></p>
				</div>
				<?php
				}
			}

if($_POST['action'] == "checkupdate"){
				$result = file_get_contents("https://akaymo.delivery/checkupdate.php?step=1");
				if($result != ""){
					$back = $bdd->query("SELECT version FROM updates ORDER BY dateadd DESC LIMIT 0,1");
					$row = $back->fetch();
					if($result == $row['version']){
						?>
				<div class="lx-update">
					<p>Votre application est mis à jour, version installer <?php echo $row['version'];?> !</p>
				</div>
						<?php
					}
					else{
						$result = file_get_contents("https://akaymo.delivery/checkupdate.php?step=2");
						?>
				<div class="lx-update">
					<p><?php echo $result;?></p>
				</div>						
						<?php
					}
				}
				else{
					$back = $bdd->query("SELECT version FROM updates ORDER BY dateadd DESC LIMIT 0,1");
					$row = $back->fetch();
					?>
				<div class="lx-update">
					<p>Votre application est mis à jour, version installer <?php echo $row['version'];?> !</p>
				</div>
					<?php
				}
			}
			
			if($_POST['action'] == "updatestep1"){
				file_put_contents("gstock-".$_POST['version'].".zip", fopen("https://akaymo.delivery/updates/gstock-".$_POST['version'].".zip", 'r'));
				$zip = new ZipArchive;
				$res = $zip->open('gstock-'.$_POST['version'].'.zip');
				$zip->extractTo('./');
				$zip->close();
				unlink("gstock-".$_POST['version'].".zip");
				$req = $bdd->prepare("INSERT INTO updates(id,version,changelog,dateadd,trash) VALUES('','".$_POST['version']."','".$_POST['changelog']."','".time()."','1')");
				$req->execute();
			}	
			
			if($_POST['action'] == "updatestep2"){
				$data = "";
				$back = $bdd->query("SHOW TABLES");
				while($row = $back->fetch()){
					$back1 = $bdd->query("SELECT * FROM ".$row[0]);
					if($back1->rowCount() > 0){
						$data .= "INSERT IGNORE INTO `".$row[0]."`(";
						$columns = "";
						$back1 = $bdd->query("SHOW COLUMNS FROM ".$row[0]);
						while($row1 = $back1->fetch()){
							$columns .= ",`".$row1[0]."`";
						}
						$columns = substr($columns,1);
						$data .= $columns.") VALUES";
						$rows = "";
						$back1 = $bdd->query("SELECT * FROM ".$row[0]);
						while($row1 = $back1->fetch()){
							$rows .= ",(";
							$values = "";
							for($i=0;$i<(count($row1)/2);$i++){
								$values .= ",'".addslashes($row1[$i])."'";
							}
							$values = substr($values,1);
							$rows .= $values.")";
						}
						$rows = substr($rows,1);
						$data .= $rows.";\r\n";
					}
				}
				file_put_contents("backup.data",$data);
			}

if($_POST['action'] == "updatestep3"){
				$back = $bdd->query("SHOW TABLES");
				while($row = $back->fetch()){
					$req = $bdd->prepare("DROP TABLE ".$row[0]);
					$req->execute();
				}
				$newdb = file_get_contents('newdb.data');
				$req = $bdd->prepare($newdb);
				$req->execute();
				$data = file_get_contents('backup.data');
				$req = $bdd->prepare($data);
				$req->execute();
				unlink("newdb.data");
				unlink("backup.data");
			}
				
			if($_POST['action'] == "loadchartdata"){
				$req = "SELECT SUM(delivered) AS smd,SUM(canceled) AS smc,dateadd FROM statistics WHERE 1=1".$user;
				if($_POST['worker'] != ""){
					$req .= " AND worker='".$_POST['worker']."'";
				}
				if($_POST['dlm'] != ""){
					$req .= " AND dlm='".$_POST['dlm']."'";
				}
				if($_POST['city'] != ""){
					$req .= " AND city='".$_POST['city']."'";
				}
				if($_POST['product'] != ""){
					$req .= " AND (";
					$i = 1;
					$back = $bdd->query("SELECT id FROM stocks WHERE product='".$_POST['product']."'");
					while($row = $back->fetch()){
						if($i == 1){
							$req .= "product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						else{
							$req .= " OR product='".$row['id']."' OR product LIKE '".$row['id'].",%' OR product LIKE '%,".$row['id'].",%' OR product LIKE '%,".$row['id']."'";
						}
						$i = 2;
					}
					$req .= ")";
				}
				if($_POST['datestart'] != "" AND $_POST['dateend'] != ""){
					$datestart = strtotime(str_replace("/","-",$_POST['datestart']));
					$dateend = strtotime(str_replace("/","-",$_POST['dateend'])) + (60*60*24) - 1;
					$req .= " AND (dateadd BETWEEN '".$datestart."' AND '".$dateend."')";
				}
				$req .= " GROUP BY dateadd";
				$back = $bdd->query($req);
				$dates = "";
				$delivered = "";
				$canceled = "";
				while($row = $back->fetch()){
					$dates .= ",".gmdate("d/m/Y",$row['dateadd']);
					$delivered .= ",".$row['smd'];
					$canceled .= ",".$row['smc'];
				}
				$dates = substr($dates,1);
				$delivered = substr($delivered,1);
				$canceled = substr($canceled,1);
				echo $dates."|".$delivered."|".$canceled;
			}			
		}
	}
}

function sendMessage($ids,$subject,$cta,$url,$app_id){
	$ids = explode(",",$ids);
	$heading = array(
		"en" => $subject
	);	
	$content = array(
		"en" => $cta
	);
	$fields = array(
		'app_id' => $app_id,
		'include_player_ids' => $ids,
		'data' => array("foo" => "bar"),
		'headings' => $heading,
		'contents' => $content,
		'url' => $url
	);
	
	$fields = json_encode($fields);
	
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, "https://onesignal.com/api/v1/notifications");
	curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json; charset=utf-8'));
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
	curl_setopt($ch, CURLOPT_HEADER, FALSE);
	curl_setopt($ch, CURLOPT_POST, TRUE);
	curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
	curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
	$response = curl_exec($ch);
	curl_close($ch);
	//return $response;
}

function sanitize_vars($var){
	if(preg_match("#script|select|update|delete|concat|create|table|union|length|show_table|mysql_list_tables|mysql_list_fields|mysql_list_dbs#i",$var)){
		$var = "";
	}
	return htmlspecialchars(addslashes(trim($var)));
}

function random(){
	$alphabet = "0123456789";
	$pass = array(); //remember to declare $pass as an array
	$alphaLength = strlen($alphabet) - 1; //put the length -1 in cache
	for ($j = 0; $j < 5; $j++) {
		$n = rand(0, $alphaLength);
		$pass[] = $alphabet[$n];
	}
	return implode($pass);
}

function saveLog($action){
	$data = date("d/m/Y H:i")." - ".$action;
	$data .= "\r\n";
	file_put_contents("logs/log-".date("d-m-Y").".txt",$data,FILE_APPEND);
}

function sendSMS($phone,$msg,$device,$smstoken){
	$url = "https://semysms.net/api/3/sms.php"; //Url address for sending SMS
	$phone = $phone; // Phone number
	$msg = $msg;  // Message
	$device = $device;  //  Device code
	$token = $smstoken;  //  Your token (secret)
	
	$data = array(
		"phone" => $phone,
		"msg" => $msg,
		"device" => $device,
		"token" => $token
	);
	
	$curl = curl_init($url);
	curl_setopt($curl, CURLOPT_POST, true);
	curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
	curl_setopt($curl, CURLOPT_RETURNTRANSFER, TRUE);
	curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
	curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);     
	$output = curl_exec($curl);
	curl_close($curl);
	echo $output;
}

function sendToStockOUT($url,$email,$code,$product,$qty,$fullname,$phone,$address,$city,$price){
	if(preg_match("#http#",$url)){
		$url = $url."/rcorderstockout.php?email=".urlencode($email)."&code=".urlencode($code)."&product=".urlencode($product)."&qty=".$qty."&fullname=".urlencode($fullname)."&phone=".urlencode($phone)."&city=".urlencode($city)."&address=".urlencode($address)."&price=".$price;
		$ch = curl_init();
		curl_setopt($ch, CURLOPT_URL, $url);
		curl_setopt($ch, CURLOPT_HEADER, false);
		$result = curl_exec($ch);
		curl_close($ch);	
	}
}

function getOzonState($id,$key,$code){
	$url = "https://api.ozonexpress.ma/customers/".$id."/".$key."/tracking";
	$code = $code;

$data = array(
		"tracking-number" => $code
	);

$curl = curl_init($url);
	curl_setopt($curl, CURLOPT_POST, true);
	curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
	curl_setopt($curl, CURLOPT_RETURNTRANSFER, TRUE);
	curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
	curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);     
	$output = curl_exec($curl);
	curl_close($curl);
	$data = json_decode($output,true);
	$state = "";
	if($data['TRACKING']['MESSAGE'] == "Tracking number not found"){
		$state = $data['TRACKING']['MESSAGE'];
	}
	else{
		$state = $data['TRACKING']['LAST_TRACKING']['STATUT'];
		if($state == "Retourné"){
			$state = trim(str_replace("Commentaire: ","",$data['TRACKING']['LAST_TRACKING']['COMMENT']));
			if($state == "Reçu par client"){
				$state = "Retour client reçu";
			}
		}
	}
	return $state;
}

function sentOzonOrder($id,$key,$code,$fullname,$phone,$city,$address,$note,$price){
	$url = "https://api.ozonexpress.ma/customers/".$id."/".$key."/add-parcel";
	$code = $code;
	$fullname = $fullname;
	$phone = $phone;
	$city = getCityID($city);
	$address = $address;
	$note = $note;
	$price = $price;
	
	$data = array(
		"tracking-number" => $code,
		"parcel-receiver" => $fullname,
		"parcel-phone" => $phone,
		"parcel-city" => $city,
		"parcel-address" => $address,
		"parcel-note" => $note,
		"parcel-price" => $price
	);
	print_r($data);
	$curl = curl_init($url);
	curl_setopt($curl, CURLOPT_POST, true);
	curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
	curl_setopt($curl, CURLOPT_RETURNTRANSFER, TRUE);
	curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
	curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);     
	$output = curl_exec($curl);
	curl_close($curl);
	echo $output;
}