# KAYAL STORE FINANCE - REPOSITORY
================================================================================

Project Name: Kayal Store Finance
Created: 2025-09-29 03:27:27
Last Updated: 2025-09-29 03:28:01
Source ZIP: public_html.zip
Total Files: 19
Total Folders: 5

================================================================================
## FILE STRUCTURE
================================================================================

Kayal Store Finance/
├── assets
├── auth.php
├── bill.php
├── config/
│   └── database.php
├── css/
│   └── style.css
├── default.php
├── expenses.php
├── finance.php
├── includes/
│   ├── footer.php
│   └── header.php
├── index.php
├── js/
│   └── script.js
├── loan_calculator.php
├── login.php
├── logout.php
├── payment_slip.php
├── sales.php
├── settings.php
├── setup.php
└── users.php

================================================================================
## FILE CONTENTS
================================================================================

### FILE 1: auth.php
- Type: PHP
- Size: 3.83 KB
- Path: .
- Name: auth.php
------------------------------------------------------------
<?php
session_start();
require_once 'config/database.php';

class Auth {
    private $pdo;

    public function __construct($pdo) {
        $this->pdo = $pdo;
    }

    public function login($username, $password) {
        try {
            $stmt = $this->pdo->prepare("SELECT id, full_name, phone, username, password, role FROM users WHERE username = ? AND status = 'active'");
            $stmt->execute([$username]);
            $user = $stmt->fetch(PDO::FETCH_ASSOC);

            if ($user && password_verify($password, $user['password'])) {
                $_SESSION['user_id'] = $user['id'];
                $_SESSION['full_name'] = $user['full_name'];
                $_SESSION['username'] = $user['username'];
                $_SESSION['role'] = $user['role'];
                $_SESSION['phone'] = $user['phone'];
                
                // Create session token for additional security
                $token = bin2hex(random_bytes(32));
                $_SESSION['token'] = $token;
                
                // Store session in database
                $expires = date('Y-m-d H:i:s', strtotime('+24 hours'));
                $stmt = $this->pdo->prepare("INSERT INTO user_sessions (user_id, session_token, expires_at) VALUES (?, ?, ?)");
                $stmt->execute([$user['id'], $token, $expires]);
                
                return true;
            }
            return false;
        } catch (PDOException $e) {
            return false;
        }
    }

    public function logout() {
        if (isset($_SESSION['user_id']) && isset($_SESSION['token'])) {
            // Remove session from database
            $stmt = $this->pdo->prepare("DELETE FROM user_sessions WHERE user_id = ? AND session_token = ?");
            $stmt->execute([$_SESSION['user_id'], $_SESSION['token']]);
        }
        
        session_destroy();
        header("Location: login.php");
        exit();
    }

    public function isLoggedIn() {
        return isset($_SESSION['user_id']) && isset($_SESSION['username']);
    }

    public function requireLogin() {
        if (!$this->isLoggedIn()) {
            header("Location: login.php");
            exit();
        }
    }

    public function requireAdmin() {
        $this->requireLogin();
        if ($_SESSION['role'] !== 'admin') {
            header("Location: index.php");
            exit();
        }
    }

    public function isSetupCompleted() {
        try {
            $stmt = $this->pdo->prepare("SELECT setting_value FROM app_settings WHERE setting_key = 'setup_completed'");
            $stmt->execute();
            $result = $stmt->fetch(PDO::FETCH_ASSOC);
            return $result && $result['setting_value'] == '1';
        } catch (PDOException $e) {
            return false;
        }
    }

    public function createFirstAdmin($full_name, $phone, $username, $password) {
        try {
            // Check if setup is already completed
            if ($this->isSetupCompleted()) {
                return false;
            }

            $hashed_password = password_hash($password, PASSWORD_DEFAULT);
            $stmt = $this->pdo->prepare("INSERT INTO users (full_name, phone, username, password, role) VALUES (?, ?, ?, ?, 'admin')");
            $result = $stmt->execute([$full_name, $phone, $username, $hashed_password]);

            if ($result) {
                // Mark setup as completed
                $stmt = $this->pdo->prepare("UPDATE app_settings SET setting_value = '1' WHERE setting_key = 'setup_completed'");
                $stmt->execute();
                return true;
            }
            return false;
        } catch (PDOException $e) {
            return false;
        }
    }

    public function getUserRole() {
        return $_SESSION['role'] ?? null;
    }

    public function getUserName() {
        return $_SESSION['full_name'] ?? '';
    }
}

$auth = new Auth($pdo);
?>
-------------------- END OF FILE --------------------

### FILE 2: bill.php
- Type: PHP
- Size: 15.91 KB
- Path: .
- Name: bill.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

// Get sale ID from URL
$sale_id = $_GET['sale_id'] ?? 0;

if (!$sale_id) {
    header("Location: sales.php");
    exit();
}

try {
    // Fetch sale details
    $stmt = $pdo->prepare("
        SELECT s.*, u.full_name as created_by_name
        FROM sales s
        JOIN users u ON s.created_by = u.id
        WHERE s.id = ?
    ");
    $stmt->execute([$sale_id]);
    $sale = $stmt->fetch(PDO::FETCH_ASSOC);
    
    if (!$sale) {
        header("Location: sales.php");
        exit();
    }
    
    // Fetch sale items
    $stmt = $pdo->prepare("
        SELECT si.*, ps.name as product_name, u.unit_symbol
        FROM sales_items si
        JOIN products_services ps ON si.product_service_id = ps.id
        JOIN units u ON ps.unit_id = u.id
        WHERE si.sale_id = ?
        ORDER BY si.id
    ");
    $stmt->execute([$sale_id]);
    $sale_items = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
} catch (PDOException $e) {
    header("Location: sales.php");
    exit();
}

// Calculate totals
$subtotal = $sale['total_amount'];
$gst_amount = 0; // GST is 0% as requested
$total_amount = $subtotal + $gst_amount;
?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Bill - <?php echo htmlspecialchars($sale['bill_number']); ?></title>
    <style>
        * {
            margin: 0;
            padding: 0;
            box-sizing: border-box;
        }
        
        body {
            font-family: Arial, sans-serif;
            line-height: 1.4;
            color: #333;
            background: #fff;
        }
        
        .bill-container {
            max-width: 800px;
            margin: 0 auto;
            padding: 20px;
            background: white;
        }
        
        .no-print {
            margin-bottom: 20px;
            text-align: center;
        }
        
        .btn {
            display: inline-block;
            padding: 10px 20px;
            margin: 0 5px;
            border: none;
            border-radius: 5px;
            cursor: pointer;
            text-decoration: none;
            font-weight: bold;
            transition: all 0.3s ease;
        }
        
        .btn-primary {
            background: #1a237e;
            color: white;
        }
        
        .btn-secondary {
            background: #FFD700;
            color: #1a237e;
        }
        
        .btn:hover {
            transform: translateY(-1px);
            box-shadow: 0 2px 5px rgba(0,0,0,0.2);
        }
        
        .bill-header {
            text-align: center;
            border-bottom: 3px solid #1a237e;
            padding-bottom: 20px;
            margin-bottom: 30px;
        }
        
        .company-name {
            font-size: 28px;
            font-weight: bold;
            color: #1a237e;
            margin-bottom: 10px;
        }
        
        .company-address {
            font-size: 14px;
            color: #666;
            line-height: 1.6;
            margin-bottom: 10px;
        }
        
        .company-phones {
            font-size: 14px;
            color: #1a237e;
            font-weight: bold;
        }
        
        .bill-title {
            font-size: 24px;
            color: #1a237e;
            margin: 20px 0;
            text-align: center;
            background: #f5f5f5;
            padding: 10px;
            border-radius: 5px;
        }
        
        .bill-details {
            display: grid;
            grid-template-columns: 1fr 1fr;
            gap: 30px;
            margin-bottom: 30px;
        }
        
        .bill-info, .customer-info {
            background: #f9f9f9;
            padding: 15px;
            border-radius: 5px;
        }
        
        .info-title {
            font-size: 16px;
            font-weight: bold;
            color: #1a237e;
            margin-bottom: 10px;
            border-bottom: 2px solid #FFD700;
            padding-bottom: 5px;
        }
        
        .info-row {
            display: flex;
            justify-content: space-between;
            margin-bottom: 8px;
        }
        
        .info-label {
            font-weight: bold;
            color: #333;
        }
        
        .info-value {
            color: #666;
        }
        
        .items-table {
            width: 100%;
            border-collapse: collapse;
            margin-bottom: 30px;
            border: 2px solid #1a237e;
        }
        
        .items-table th {
            background: #1a237e;
            color: white;
            padding: 12px 8px;
            text-align: left;
            font-weight: bold;
        }
        
        .items-table td {
            padding: 10px 8px;
            border-bottom: 1px solid #ddd;
        }
        
        .items-table tr:nth-child(even) {
            background: #f9f9f9;
        }
        
        .text-right {
            text-align: right;
        }
        
        .text-center {
            text-align: center;
        }
        
        .totals-section {
            background: #f5f5f5;
            padding: 20px;
            border-radius: 5px;
            border: 2px solid #1a237e;
        }
        
        .totals-table {
            width: 100%;
            max-width: 400px;
            margin-left: auto;
        }
        
        .totals-table td {
            padding: 8px 15px;
            border-bottom: 1px solid #ddd;
        }
        
        .totals-table .total-row {
            font-weight: bold;
            font-size: 18px;
            background: #1a237e;
            color: white;
        }
        
        .payment-info {
            margin-top: 20px;
            padding: 15px;
            background: #e8f5e8;
            border-radius: 5px;
            border-left: 5px solid #4caf50;
        }
        
        .payment-pending {
            background: #fff3cd;
            border-left-color: #ff9800;
        }
        
        .bill-footer {
            margin-top: 40px;
            text-align: center;
            color: #666;
            font-size: 12px;
            border-top: 1px solid #ddd;
            padding-top: 20px;
        }
        
        .signature-section {
            margin-top: 50px;
            display: flex;
            justify-content: space-between;
        }
        
        .signature-box {
            text-align: center;
            width: 200px;
        }
        
        .signature-line {
            border-top: 1px solid #333;
            margin-top: 50px;
            padding-top: 5px;
            font-size: 12px;
        }
        
        /* Print Styles */
        @media print {
            .no-print {
                display: none !important;
            }
            
            .bill-container {
                margin: 0;
                padding: 0;
                max-width: none;
            }
            
            body {
                font-size: 12px;
            }
            
            .bill-header {
                margin-bottom: 20px;
                padding-bottom: 15px;
            }
            
            .company-name {
                font-size: 24px;
            }
            
            .bill-title {
                font-size: 20px;
                margin: 15px 0;
            }
            
            .bill-details {
                margin-bottom: 20px;
            }
            
            .items-table {
                margin-bottom: 20px;
            }
            
            .totals-section {
                margin-bottom: 20px;
            }
            
            .signature-section {
                margin-top: 30px;
            }
        }
        
        /* Mobile Responsive */
        @media (max-width: 768px) {
            .bill-container {
                padding: 10px;
            }
            
            .company-name {
                font-size: 24px;
            }
            
            .bill-title {
                font-size: 20px;
            }
            
            .bill-details {
                grid-template-columns: 1fr;
                gap: 15px;
            }
            
            .items-table {
                font-size: 12px;
            }
            
            .items-table th,
            .items-table td {
                padding: 6px 4px;
            }
            
            .signature-section {
                flex-direction: column;
                gap: 30px;
            }
            
            .signature-box {
                width: 100%;
            }
        }
        
        @media (max-width: 480px) {
            .company-name {
                font-size: 20px;
            }
            
            .company-address,
            .company-phones {
                font-size: 12px;
            }
            
            .items-table {
                font-size: 10px;
            }
            
            .totals-table {
                font-size: 12px;
            }
        }
    </style>
</head>
<body>
    <div class="bill-container">
        <!-- Print/Download Controls -->
        <div class="no-print">
            <button onclick="window.print()" class="btn btn-primary">🖨️ Print Bill</button>
            <a href="sales.php" class="btn btn-secondary">← Back to Sales</a>
        </div>
        
        <!-- Bill Header -->
        <div class="bill-header">
            <div class="company-name">KAYAL AQUA CONSULTANTS</div>
            <div class="company-address">
                Ethirmedu, Valayakaranoor Post<br>
                Komarapalayam - 638183, Tamil Nadu
            </div>
            <div class="company-phones">
                Ph: +91 80565 26579 / +91 96989 20008 / +91 88389 66048
            </div>
        </div>
        
        <!-- Bill Title -->
        <div class="bill-title">SALES INVOICE</div>
        
        <!-- Bill and Customer Details -->
        <div class="bill-details">
            <div class="bill-info">
                <div class="info-title">Bill Details</div>
                <div class="info-row">
                    <span class="info-label">Bill Number:</span>
                    <span class="info-value"><?php echo htmlspecialchars($sale['bill_number']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Date:</span>
                    <span class="info-value"><?php echo date('d-m-Y', strtotime($sale['sale_date'])); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Time:</span>
                    <span class="info-value"><?php echo date('h:i A', strtotime($sale['created_at'])); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Served By:</span>
                    <span class="info-value"><?php echo htmlspecialchars($sale['created_by_name']); ?></span>
                </div>
            </div>
            
            <div class="customer-info">
                <div class="info-title">Customer Details</div>
                <div class="info-row">
                    <span class="info-label">Name:</span>
                    <span class="info-value">
                        <?php echo $sale['customer_name'] ? htmlspecialchars($sale['customer_name']) : 'Walk-in Customer'; ?>
                    </span>
                </div>
                <div class="info-row">
                    <span class="info-label">Phone:</span>
                    <span class="info-value">
                        <?php echo $sale['customer_phone'] ? htmlspecialchars($sale['customer_phone']) : '-'; ?>
                    </span>
                </div>
                <div class="info-row">
                    <span class="info-label">Payment Status:</span>
                    <span class="info-value"><?php echo ucfirst(htmlspecialchars($sale['payment_status'])); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Payment Method:</span>
                    <span class="info-value"><?php echo $sale['payment_method'] == 'upi' ? 'UPI' : 'Cash'; ?></span>
                </div>
            </div>
        </div>
        
        <!-- Items Table -->
        <table class="items-table">
            <thead>
                <tr>
                    <th>S.No</th>
                    <th>Product/Service</th>
                    <th class="text-center">Quantity</th>
                    <th class="text-center">Unit</th>
                    <th class="text-right">Rate (₹)</th>
                    <th class="text-right">Amount (₹)</th>
                </tr>
            </thead>
            <tbody>
                <?php $sr_no = 1; ?>
                <?php foreach ($sale_items as $item): ?>
                    <tr>
                        <td class="text-center"><?php echo $sr_no++; ?></td>
                        <td><?php echo htmlspecialchars($item['product_name']); ?></td>
                        <td class="text-center"><?php echo number_format($item['quantity'], 3); ?></td>
                        <td class="text-center"><?php echo htmlspecialchars($item['unit_symbol']); ?></td>
                        <td class="text-right"><?php echo number_format($item['unit_price'], 2); ?></td>
                        <td class="text-right"><?php echo number_format($item['line_total'], 2); ?></td>
                    </tr>
                <?php endforeach; ?>
            </tbody>
        </table>
        
        <!-- Totals Section -->
        <div class="totals-section">
            <table class="totals-table">
                <tr>
                    <td><strong>Subtotal:</strong></td>
                    <td class="text-right">₹<?php echo number_format($subtotal, 2); ?></td>
                </tr>
                <tr>
                    <td><strong>GST (0%):</strong></td>
                    <td class="text-right">₹<?php echo number_format($gst_amount, 2); ?></td>
                </tr>
                <tr class="total-row">
                    <td><strong>TOTAL AMOUNT:</strong></td>
                    <td class="text-right"><strong>₹<?php echo number_format($total_amount, 2); ?></strong></td>
                </tr>
            </table>
        </div>
        
        <!-- Payment Information -->
        <div class="payment-info <?php echo $sale['payment_status'] != 'paid' ? 'payment-pending' : ''; ?>">
            <strong>Payment Status: </strong>
            <?php if ($sale['payment_status'] == 'paid'): ?>
                ✅ PAID via <?php echo $sale['payment_method'] == 'upi' ? 'UPI' : 'Cash'; ?>
            <?php elseif ($sale['payment_status'] == 'pending'): ?>
                ⏳ PAYMENT PENDING
            <?php else: ?>
                ⚠️ PARTIAL PAYMENT RECEIVED
            <?php endif; ?>
        </div>
        
        <!-- Notes Section -->
        <?php if ($sale['notes']): ?>
            <div style="margin-top: 20px; padding: 15px; background: #f0f8ff; border-radius: 5px; border-left: 5px solid #2196f3;">
                <strong>Notes:</strong> <?php echo htmlspecialchars($sale['notes']); ?>
            </div>
        <?php endif; ?>
        
        <!-- Signature Section -->
        <div class="signature-section">
            <div class="signature-box">
                <div class="signature-line">Customer Signature</div>
            </div>
            <div class="signature-box">
                <div class="signature-line">Authorized Signature</div>
            </div>
        </div>
        
        <!-- Footer -->
        <div class="bill-footer">
            <p><strong>Thank you for your business!</strong></p>
            <p>This is a computer generated invoice.</p>
            <p>For any queries, please contact us at the above phone numbers.</p>
        </div>
    </div>
    
    <script>
        // Auto-focus print dialog on page load (optional)
        // window.onload = function() { window.print(); }
        
        // Prevent right-click context menu (optional security)
        // document.addEventListener('contextmenu', e => e.preventDefault());
    </script>
</body>
</html>
-------------------- END OF FILE --------------------

### FILE 3: default.php
- Type: PHP
- Size: 15.99 KB
- Path: .
- Name: default.php
------------------------------------------------------------
<!DOCTYPE html>
<html lang="en">
    <head>
        <title>Default page</title>
        <link rel="icon" type="image/x-icon" href="https://hpanel.hostinger.com/favicons/hostinger.png">
        <meta charset="utf-8">
        <meta content="IE=edge,chrome=1" http-equiv="X-UA-Compatible">
        <meta content="Default page" name="description">
        <meta content="width=device-width, initial-scale=1" name="viewport">
        <link rel="preconnect" href="https://fonts.googleapis.com">
        <link href="https://fonts.googleapis.com/css2?family=DM+Sans&display=swap" rel="stylesheet">
        <link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;700&display=swap" rel="stylesheet">
        <style>
            body {
                margin: 0px;
                display: flex;
                flex-direction: column;
                align-items: center;
                justify-content: center;
                width: 100vw;
                height: 100vh;
                min-height: 675px;
                background-color: #F4F5FF;
            }
            p {
                width: 100%;
                left: 0px;
                font-size: 16px;
                font-family: 'DM Sans', sans-serif;
                font-weight: 400;
                letter-spacing: 0px;
                text-align: center;
                vertical-align: top;
                max-width: 550px;
                color: #727586;
                margin: 0px;
            }
            a:hover {
                cursor: pointer;
                color: #673DE6;
                text-decoration: underline;
            }
            h1 {
                font-family: 'DM Sans', sans-serif;
                font-size: 24px;
                font-weight: 700;
                letter-spacing: 0px;
                text-align: center;
                margin: 8px;
            }
            .content {
                display: flex;
                flex-direction: column;
                align-items: center;
                justify-content: center;
                width: 100%;
                height: 100%;
            }
            .ic-launch  {
                margin-left: 10.5px;
                width: 21px !important;
                height: 20px !important;
            }
            .link-container {
                margin-top: 32px;
                margin-bottom: 32px;
            }
            .link {
                display: flex;
                flex-direction: row;
                align-items: center;
                justify-content: center;
                font-family: 'DM Sans', sans-serif;
                font-style: normal;
                font-weight: 700;
                font-size: 14px;
                color: #673DE6;
                margin-top: 8px;
                text-decoration: none;
            }
            .main-image {
                width: 100%;
                max-width: 650px;
                max-height: 406px;
                height: auto;
            }
            .navigation {
                width: 100%;
                height: 72px;
                display: flex;
                margin: 0;
                padding: 0;
                flex-direction: row;
                align-items: center;
                justify-content: center;
                background-color: #36344D;
            }
            @media screen and (max-width: 580px) and (min-width: 0px) {
                h1, p, .link-container {
                    width: 80%;
                }
            }
            @media screen and (min-width: 650px) and (min-height: 0px) and (max-height: 750px) {
                .link-container {
                    margin-top: 12px;
                }
                h1 {
                    margin-top: 0px;
                    margin-bottom: 0px;
                }
            }
        </style>
    </head>
    <body>
        <nav class="navigation">
            <a href="https://hpanel.hostinger.com" rel="nofollow" target="_blank">
                <svg width="150" height="30" viewBox="0 0 150 30" fill="none" xmlns="http://www.w3.org/2000/svg">
                    <path fill-rule="evenodd" clip-rule="evenodd" d="M116.793 12.1444C117.376 11.4191 118.324 11.0565 119.634 11.0565C120.223 11.0565 120.767 11.1312 121.267 11.2811C121.765 11.4312 122.207 11.6077 122.592 11.8114L123.404 9.56372C123.307 9.50387 123.149 9.41962 122.926 9.31174C122.703 9.2036 122.421 9.09874 122.078 8.99714C121.735 8.89504 121.326 8.80526 120.851 8.72705C120.376 8.64935 119.844 8.60986 119.255 8.60986C118.389 8.60986 117.575 8.75421 116.811 9.04215C116.048 9.32984 115.383 9.75233 114.818 10.3099C114.253 10.8671 113.808 11.5481 113.484 12.3511C113.159 13.1546 112.997 14.0777 112.997 15.1211C112.997 16.1522 113.143 17.0696 113.438 17.8723C113.733 18.6755 114.151 19.3532 114.692 19.9045C115.233 20.4562 115.885 20.8754 116.649 21.1636C117.412 21.4511 118.263 21.5951 119.201 21.5951C120.295 21.5951 121.215 21.5197 121.961 21.3701C122.706 21.2204 123.247 21.0799 123.584 20.9478V14.7794H120.77V19.1133C120.602 19.1495 120.407 19.1734 120.184 19.1852C119.962 19.1971 119.694 19.2031 119.381 19.2031C118.804 19.2031 118.299 19.1043 117.866 18.9066C117.433 18.7087 117.073 18.4298 116.784 18.0699C116.496 17.7101 116.279 17.2816 116.135 16.7844C115.991 16.287 115.919 15.732 115.919 15.1211C115.919 13.8617 116.21 12.8699 116.793 12.1444ZM72.0952 19.1222C71.8367 19.1886 71.5091 19.2213 71.1124 19.2213C70.3189 19.2213 69.6483 19.1403 69.1015 18.9781C68.5539 18.8166 68.0939 18.6341 67.7216 18.4299L66.9277 20.6597C67.0962 20.756 67.3035 20.8576 67.5499 20.9658C67.7965 21.0736 68.0914 21.1755 68.4339 21.2713C68.7766 21.3671 69.1703 21.4478 69.6152 21.5142C70.0601 21.5801 70.5593 21.6133 71.1124 21.6133C72.7596 21.6133 73.9921 21.2924 74.8098 20.6507C75.6275 20.0094 76.0366 19.1071 76.0366 17.944C76.0366 17.345 75.9581 16.8357 75.8022 16.4158C75.6456 15.9961 75.408 15.6302 75.0897 15.3186C74.771 15.007 74.3709 14.7342 73.8902 14.5003C73.409 14.2664 72.8438 14.0298 72.1949 13.7896C71.8819 13.6817 71.5961 13.5771 71.3381 13.475C71.0793 13.3734 70.8508 13.2592 70.6523 13.1335C70.4541 13.0075 70.3005 12.8667 70.1926 12.7108C70.0844 12.5554 70.0299 12.3632 70.0299 12.1351C70.0299 11.7519 70.1774 11.467 70.472 11.2811C70.7666 11.0955 71.2506 11.002 71.9242 11.002C72.5253 11.002 73.0393 11.0714 73.4663 11.2089C73.8928 11.347 74.2807 11.5059 74.6297 11.6857L75.4411 9.47375C75.0443 9.25798 74.5392 9.05982 73.9263 8.88001C73.3129 8.70046 72.5853 8.60992 71.7437 8.60992C71.0339 8.60992 70.3968 8.69744 69.8316 8.87096C69.2664 9.04523 68.7857 9.29344 68.389 9.61734C67.992 9.9415 67.6856 10.3338 67.4689 10.7955C67.2525 11.257 67.1443 11.7755 67.1443 12.3512C67.1443 12.9268 67.2465 13.4152 67.451 13.8165C67.6553 14.2186 67.9201 14.5604 68.2445 14.842C68.5691 15.1239 68.9358 15.3578 69.3446 15.5434C69.7535 15.729 70.1623 15.8942 70.5714 16.0376C71.5091 16.3499 72.1704 16.6404 72.5553 16.9104C72.9399 17.1798 73.1326 17.519 73.1326 17.9264C73.1326 18.1183 73.1026 18.2923 73.0423 18.448C72.982 18.6039 72.8736 18.7387 72.7174 18.8521C72.5613 18.9668 72.3538 19.0565 72.0952 19.1222ZM54.4948 15.121C54.4948 15.7321 54.5697 16.2836 54.72 16.7752C54.8703 17.2671 55.087 17.6896 55.3697 18.0432C55.6517 18.3972 55.9977 18.6696 56.4068 18.8612C56.8154 19.0536 57.2843 19.1497 57.8137 19.1497C58.3304 19.1497 58.7965 19.0536 59.2117 18.8612C59.626 18.6696 59.9751 18.3972 60.2573 18.0432C60.5398 17.6896 60.7567 17.2671 60.907 16.7752C61.0573 16.2836 61.1325 15.7321 61.1325 15.121C61.1325 14.5091 61.0573 13.9546 60.907 13.457C60.7567 12.9595 60.5398 12.5343 60.2573 12.1802C59.9751 11.8266 59.626 11.5535 59.2117 11.3622C58.7965 11.1703 58.3304 11.0745 57.8137 11.0745C57.2843 11.0745 56.8154 11.1733 56.4068 11.371C55.9977 11.5689 55.6517 11.8447 55.3697 12.1986C55.087 12.5522 54.8703 12.9777 54.72 13.4751C54.5697 13.973 54.4948 14.5215 54.4948 15.121ZM64.0369 15.121C64.0369 16.1878 63.8772 17.1263 63.5592 17.935C63.2401 18.7445 62.8041 19.422 62.2512 19.9672C61.6981 20.5132 61.0396 20.9236 60.2762 21.1992C59.5127 21.4753 58.6918 21.6131 57.8143 21.6131C56.9603 21.6131 56.155 21.4753 55.3974 21.1992C54.6397 20.9236 53.9782 20.5132 53.4132 19.9672C52.8478 19.422 52.4034 18.7445 52.0785 17.935C51.7539 17.1263 51.5912 16.1878 51.5912 15.121C51.5912 14.0537 51.7597 13.1155 52.0964 12.3065C52.4329 11.4969 52.8871 10.8164 53.4584 10.265C54.0291 9.71347 54.6907 9.30004 55.4425 9.02417C56.1936 8.74805 56.9845 8.60999 57.8143 8.60999C58.6678 8.60999 59.4734 8.74805 60.2313 9.02417C60.9887 9.30004 61.65 9.71347 62.2152 10.265C62.7801 10.8164 63.2253 11.4969 63.5499 12.3065C63.8747 13.1155 64.0369 14.0537 64.0369 15.121ZM45.1113 8.89825H47.9253V21.3612H45.1113V16.0739H40.3856V21.3612H37.5717V8.89825H40.3856V13.6638H45.1113V8.89825ZM88.4326 8.89838V11.2904H84.6628V21.3613H81.8491V11.2904H78.079V8.89838H88.4326ZM94.3715 21.3616H91.5576V8.89838H94.3715V21.3616ZM106.967 21.3613C106.162 19.9347 105.29 18.5262 104.352 17.135C103.414 15.7441 102.416 14.4314 101.358 13.1964V21.3613H98.58V8.89838H100.871C101.267 9.2937 101.706 9.7793 102.187 10.3549C102.668 10.9306 103.158 11.5452 103.657 12.1985C104.156 12.8519 104.652 13.5293 105.145 14.2305C105.638 14.9318 106.101 15.606 106.534 16.2536V8.89838H109.33V21.3613H106.967ZM127.521 21.3613V8.89838H135.963V11.2542H130.335V13.6998H135.331V16.0021H130.335V19.0055H136.378V21.3613H127.521ZM143.046 11.1641C143.209 11.1523 143.391 11.1463 143.596 11.1463C144.498 11.1463 145.18 11.2753 145.643 11.5325C146.106 11.7911 146.337 12.2251 146.337 12.8367C146.337 13.4724 146.109 13.9223 145.652 14.1856C145.195 14.4497 144.437 14.5809 143.38 14.5809H142.586V11.2001C142.731 11.1885 142.884 11.1764 143.046 11.1641ZM147.745 9.75233C146.747 9.08666 145.311 8.75421 143.435 8.75421C142.917 8.75421 142.331 8.7781 141.676 8.82639C141.021 8.87391 140.387 8.95841 139.773 9.07761V21.3613H142.587V16.8108H143.976C144.217 17.099 144.458 17.4196 144.7 17.7737C144.941 18.1273 145.187 18.5015 145.433 18.8973C145.681 19.2931 145.922 19.701 146.158 20.1205C146.392 20.5402 146.625 20.9536 146.854 21.3613H150C149.784 20.9059 149.549 20.4414 149.297 19.9673C149.044 19.4941 148.783 19.0386 148.512 18.6011C148.242 18.1635 147.968 17.7438 147.691 17.3419C147.415 16.9403 147.151 16.5837 146.898 16.2716C147.655 15.9603 148.236 15.5313 148.638 14.9861C149.041 14.4406 149.243 13.7297 149.243 12.8548C149.243 11.4518 148.743 10.4177 147.745 9.75233Z" fill="white"/>
                    <path fill-rule="evenodd" clip-rule="evenodd" d="M0.000188531 14.046V0.000497794L7.0891 3.78046V10.1086L16.4734 10.1132L23.6773 14.046H0.000188531ZM18.3924 8.95058V0L25.6725 3.6859V13.1797L18.3924 8.95058ZM18.3924 26.1177V19.8441L8.93571 19.8375C8.94454 19.8793 1.61224 15.8418 1.61224 15.8418L25.6725 15.9547V30L18.3924 26.1177ZM-6.10352e-05 26.1177L0.000191176 16.9393L7.0891 21.0683V29.8033L-6.10352e-05 26.1177Z" fill="white"/>
                </svg>
            </a>
        </nav>
        <div class="content">
            <svg 
                class="main-image"
                width="650" 
                height="406" 
                viewBox="0 0 650 406" 
                fill="none"
                xmlns="http://www.w3.org/2000/svg"
                xmlns:xlink="http://www.w3.org/1999/xlink">
                <path d="M603.171 195.67L445.106 347.201V44.1392L603.171 195.67Z" stroke="#C4CCE8" stroke-miterlimit="10"/>
                <path d="M445.106 195.67L287.041 347.201V44.1392L445.106 195.67Z" stroke="#C4CCE8" stroke-miterlimit="10"/>
                <path d="M603.171 195.67H180.043" stroke="#C4CCE8" stroke-miterlimit="10"/>
                <path d="M57.0145 43H593.668C596.51 43 599.237 44.0612 601.247 45.9501C603.257 47.8391 604.387 50.401 604.387 53.0724V348.34H57.0145C54.1716 348.34 51.4452 347.279 49.435 345.39C47.4248 343.501 46.2954 340.939 46.2954 338.268V53.1252C46.288 51.798 46.5598 50.4826 47.0952 49.2544C47.6306 48.0263 48.4189 46.9097 49.415 45.9688C50.4111 45.0279 51.5953 44.2812 52.8994 43.7717C54.2036 43.2623 55.6021 43 57.0145 43V43Z" stroke="#C5CDE9" stroke-miterlimit="10"/>
                <path d="M65.1415 64.6472C67.4918 64.6472 69.3971 62.8618 69.3971 60.6595C69.3971 58.4572 67.4918 56.6719 65.1415 56.6719C62.7912 56.6719 60.8859 58.4572 60.8859 60.6595C60.8859 62.8618 62.7912 64.6472 65.1415 64.6472Z" stroke="#C5CDE9" stroke-miterlimit="10"/>
                <path d="M82.7718 65.7865C85.4579 65.7865 87.6354 63.7461 87.6354 61.2292C87.6354 58.7123 85.4579 56.6719 82.7718 56.6719C80.0858 56.6719 77.9083 58.7123 77.9083 61.2292C77.9083 63.7461 80.0858 65.7865 82.7718 65.7865Z" stroke="#C5CDE9" stroke-miterlimit="10"/>
                <path d="M100.402 65.7866C102.752 65.7866 104.658 64.0013 104.658 61.7989C104.658 59.5966 102.752 57.8113 100.402 57.8113C98.0519 57.8113 96.1466 59.5966 96.1466 61.7989C96.1466 64.0013 98.0519 65.7866 100.402 65.7866Z" stroke="#C5CDE9" stroke-miterlimit="10"/>
                <path d="M52.3747 171.744H39V184.277H52.3747V171.744Z" fill="#673CE5"/>
                <path d="M611.682 88.573H598.307V102.245H611.682V88.573Z" fill="#673CE5"/>
                <path d="M384.311 173.864C397.176 197.034 424.878 208.367 449.522 201.798C470.052 196.291 485.552 179.079 488.877 158.072" stroke="#673DE6" stroke-width="18" stroke-miterlimit="10"/>
                <path d="M569.199 264.276L517.516 232.922L484.055 281.351L535.738 312.705L569.199 264.276Z" fill="#673DE6"/>
                <rect x="76" y="55" width="325" height="308" fill="url(#pattern0)"/>
                <defs>
                <pattern id="pattern0" patternContentUnits="objectBoundingBox" width="1" height="1">
                <use xlink:href="#image0_793_7454" transform="translate(0 -0.0294456) scale(0.000431034 0.000453478)"/>
                </pattern>
                    <image 
                        id="image0_793_7454" 
                        width="2320"
                        height="2296"
                        href="https://assets.hostinger.com/content/hostinger_welcome/v2/man1.png"
                    />
                </defs>
            </svg>
            <h1>You Are All Set to Go!</h1>
            <p>All you have to do now is upload your website files and start your journey. Check out how to do that below:</p>
            <div class="link-container">
                <a 
                    class=link
                    href="https://support.hostinger.com/en/articles/4455931-how-can-i-migrate-website-to-hostinger"
                    rel="nofollow"
                    target="_blank"
                >
                    How can I migrate a website to Hostinger? 
                    <svg class="ic-launch" viewBox="0 0 21 20" fill="none" xmlns="http://www.w3.org/2000/svg">
                        <path 
                            fill-rule="evenodd" 
                            clip-rule="evenodd" 
                            d="M16.3333 15.8333H4.66667V4.16667H10.5V2.5H4.66667C3.74167 2.5 3 3.25 3 4.16667V15.8333C3 16.75 3.74167 17.5 4.66667 17.5H16.3333C17.25 17.5 18 16.75 18 15.8333V10H16.3333V15.8333ZM12.1667 2.5V4.16667H15.1583L6.96667 12.3583L8.14167 13.5333L16.3333 5.34167V8.33333H18V2.5H12.1667Z" 
                            fill="#673DE6"
                        />
                    </svg>
                </a>
                <a 
                    class="link"
                    href="https://support.hostinger.com/en/articles/3220304-how-to-install-wordpress-using-auto-installer"
                    rel="nofollow"
                    target="_blank"
                >
                    How to install WordPress using Auto Installer?
                    <svg class="ic-launch" viewBox="0 0 21 20" fill="none" xmlns="http://www.w3.org/2000/svg">
                        <path 
                            fill-rule="evenodd" 
                            clip-rule="evenodd" 
                            d="M16.3333 15.8333H4.66667V4.16667H10.5V2.5H4.66667C3.74167 2.5 3 3.25 3 4.16667V15.8333C3 16.75 3.74167 17.5 4.66667 17.5H16.3333C17.25 17.5 18 16.75 18 15.8333V10H16.3333V15.8333ZM12.1667 2.5V4.16667H15.1583L6.96667 12.3583L8.14167 13.5333L16.3333 5.34167V8.33333H18V2.5H12.1667Z" 
                            fill="#673DE6"
                        />
                    </svg>
                </a>
            </div>
            
        </div>
    </body>
</html>
-------------------- END OF FILE --------------------

### FILE 4: expenses.php
- Type: PHP
- Size: 34.05 KB
- Path: .
- Name: expenses.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Expenses Management';
$success_message = '';
$error_message = '';

// Get edit data if editing
$edit_expense = null;
if (isset($_GET['edit_expense'])) {
    try {
        $edit_stmt = $pdo->prepare("
            SELECT e.*, ec.category_name, es.subcategory_name, u.full_name as paid_by_name
            FROM expenses e
            JOIN expense_categories ec ON e.category_id = ec.id
            LEFT JOIN expense_subcategories es ON e.subcategory_id = es.id
            JOIN users u ON e.paid_by = u.id
            WHERE e.id = ?
        ");
        $edit_stmt->execute([$_GET['edit_expense']]);
        $edit_expense = $edit_stmt->fetch(PDO::FETCH_ASSOC);
    } catch (PDOException $e) {
        $error_message = 'Error fetching expense for editing.';
    }
}

// Handle form submissions
if ($_SERVER['REQUEST_METHOD'] == 'POST' && isset($_POST['action'])) {
    
    if ($_POST['action'] == 'add_expense' || $_POST['action'] == 'edit_expense') {
        $expense_id = $_POST['expense_id'] ?? null;
        $category_id = $_POST['category_id'] ?? 0;
        $subcategory_id = $_POST['subcategory_id'] ?? null;
        $description = trim($_POST['description'] ?? '');
        $amount = $_POST['amount'] ?? 0;
        $expense_date = $_POST['expense_date'] ?? '';
        $paid_to = trim($_POST['paid_to'] ?? '');
        $paid_by = $_POST['paid_by'] ?? 0;
        $paid_through = $_POST['paid_through'] ?? '';
        $notes = trim($_POST['notes'] ?? '');
        
        // Validation
        if (empty($category_id) || empty($description) || empty($amount) || empty($expense_date) || empty($paid_to) || empty($paid_by) || empty($paid_through)) {
            $error_message = 'All fields except subcategory and notes are required.';
        } elseif (!is_numeric($amount) || $amount <= 0) {
            $error_message = 'Please enter a valid amount greater than zero.';
        } else {
            try {
                if ($_POST['action'] == 'edit_expense' && $expense_id) {
                    // Update existing expense
                    $stmt = $pdo->prepare("
                        UPDATE expenses SET category_id = ?, subcategory_id = ?, description = ?, 
                                          amount = ?, expense_date = ?, paid_to = ?, paid_by = ?, 
                                          paid_through = ?, notes = ?
                        WHERE id = ?
                    ");
                    
                    $stmt->execute([
                        $category_id, $subcategory_id ?: null, $description, $amount, 
                        $expense_date, $paid_to, $paid_by, $paid_through, $notes, $expense_id
                    ]);
                    
                    $_SESSION['success_message'] = 'Expense updated successfully!';
                } else {
                    // Create new expense
                    $expense_number = 'EXP' . date('YmdHis') . rand(100, 999);
                    
                    $stmt = $pdo->prepare("
                        INSERT INTO expenses (expense_number, category_id, subcategory_id, description, amount, 
                                            expense_date, paid_to, paid_by, paid_through, notes, created_by) 
                        VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
                    ");
                    
                    $stmt->execute([
                        $expense_number, $category_id, $subcategory_id ?: null, $description, $amount,
                        $expense_date, $paid_to, $paid_by, $paid_through, $notes, $_SESSION['user_id']
                    ]);
                    
                    $_SESSION['success_message'] = 'Expense added successfully! Reference: ' . $expense_number;
                }
                
                header("Location: expenses.php");
                exit();
                
            } catch (Exception $e) {
                $error_message = 'Error processing expense: ' . $e->getMessage();
            }
        }
    }
    
    elseif ($_POST['action'] == 'delete_expense') {
        $expense_id = intval($_POST['expense_id'] ?? 0);
        
        if ($expense_id > 0) {
            try {
                $stmt = $pdo->prepare("DELETE FROM expenses WHERE id = ?");
                $result = $stmt->execute([$expense_id]);
                
                if ($result) {
                    $_SESSION['success_message'] = 'Expense deleted successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to delete expense.';
                }
                
            } catch (Exception $e) {
                $_SESSION['error_message'] = 'Error deleting expense: ' . $e->getMessage();
            }
        }
        
        header("Location: expenses.php");
        exit();
    }
    
    elseif ($_POST['action'] == 'export_expenses') {
        $export_filter_category = $_POST['export_filter_category'] ?? '';
        $export_filter_subcategory = $_POST['export_filter_subcategory'] ?? '';
        $export_filter_date_from = $_POST['export_filter_date_from'] ?? '';
        $export_filter_date_to = $_POST['export_filter_date_to'] ?? '';
        $export_filter_paid_by = $_POST['export_filter_paid_by'] ?? '';
        $export_filter_paid_through = $_POST['export_filter_paid_through'] ?? '';
        $export_filter_search = $_POST['export_filter_search'] ?? '';
        
        // Build export query with same filters
        $export_where_clause = "1=1";
        $export_params = [];
        
        if (!empty($export_filter_category)) {
            $export_where_clause .= " AND e.category_id = ?";
            $export_params[] = $export_filter_category;
        }
        
        if (!empty($export_filter_subcategory)) {
            $export_where_clause .= " AND e.subcategory_id = ?";
            $export_params[] = $export_filter_subcategory;
        }
        
        if (!empty($export_filter_date_from)) {
            $export_where_clause .= " AND e.expense_date >= ?";
            $export_params[] = $export_filter_date_from;
        }
        
        if (!empty($export_filter_date_to)) {
            $export_where_clause .= " AND e.expense_date <= ?";
            $export_params[] = $export_filter_date_to;
        }
        
        if (!empty($export_filter_paid_by)) {
            $export_where_clause .= " AND e.paid_by = ?";
            $export_params[] = $export_filter_paid_by;
        }
        
        if (!empty($export_filter_paid_through)) {
            $export_where_clause .= " AND e.paid_through = ?";
            $export_params[] = $export_filter_paid_through;
        }
        
        if (!empty($export_filter_search)) {
            $export_where_clause .= " AND (e.description LIKE ? OR e.paid_to LIKE ? OR e.notes LIKE ?)";
            $search_term = '%' . $export_filter_search . '%';
            $export_params[] = $search_term;
            $export_params[] = $search_term;
            $export_params[] = $search_term;
        }
        
        try {
            $export_stmt = $pdo->prepare("
                SELECT e.expense_number, e.expense_date, ec.category_name, 
                       COALESCE(es.subcategory_name, '-') as subcategory_name,
                       e.description, e.amount, e.paid_to, u.full_name as paid_by_name,
                       e.paid_through, e.notes
                FROM expenses e
                JOIN expense_categories ec ON e.category_id = ec.id
                LEFT JOIN expense_subcategories es ON e.subcategory_id = es.id
                JOIN users u ON e.paid_by = u.id
                WHERE $export_where_clause
                ORDER BY e.created_at DESC
            ");
            $export_stmt->execute($export_params);
            $export_data = $export_stmt->fetchAll(PDO::FETCH_ASSOC);
            
            $filename = 'expenses_export_' . date('Y-m-d_H-i-s') . '.csv';
            
            // Generate CSV
            header('Content-Type: text/csv');
            header('Content-Disposition: attachment; filename="' . $filename . '"');
            
            $output = fopen('php://output', 'w');
            
            // Add BOM for proper Excel UTF-8 support
            fwrite($output, "\xEF\xBB\xBF");
            
            // Headers
            fputcsv($output, [
                'Expense Number', 'Date', 'Category', 'Subcategory', 'Description', 
                'Amount', 'Paid To', 'Paid By', 'Payment Method', 'Notes'
            ]);
            
            foreach ($export_data as $row) {
                fputcsv($output, [
                    $row['expense_number'],
                    $row['expense_date'],
                    $row['category_name'],
                    $row['subcategory_name'],
                    $row['description'],
                    $row['amount'],
                    $row['paid_to'],
                    $row['paid_by_name'],
                    $row['paid_through'],
                    $row['notes']
                ]);
            }
            
            fclose($output);
            exit();
            
        } catch (PDOException $e) {
            $error_message = 'Error exporting data: ' . $e->getMessage();
        }
    }
}

// Fetch categories for dropdowns
try {
    $categories_stmt = $pdo->prepare("SELECT * FROM expense_categories WHERE status = 'active' ORDER BY category_name");
    $categories_stmt->execute();
    $categories = $categories_stmt->fetchAll(PDO::FETCH_ASSOC);
    
    // Fetch subcategories for dropdowns
    $subcategories_stmt = $pdo->prepare("
        SELECT es.*, ec.category_name 
        FROM expense_subcategories es 
        JOIN expense_categories ec ON es.category_id = ec.id 
        WHERE es.status = 'active' 
        ORDER BY ec.category_name, es.subcategory_name
    ");
    $subcategories_stmt->execute();
    $subcategories = $subcategories_stmt->fetchAll(PDO::FETCH_ASSOC);
    
    // Fetch users for dropdown
    $users_stmt = $pdo->prepare("SELECT id, full_name FROM users WHERE status = 'active' ORDER BY full_name");
    $users_stmt->execute();
    $users = $users_stmt->fetchAll(PDO::FETCH_ASSOC);
    
} catch (PDOException $e) {
    $categories = $subcategories = $users = [];
}

// Fetch expenses with filters
$filter_category = $_GET['filter_category'] ?? '';
$filter_subcategory = $_GET['filter_subcategory'] ?? '';
$filter_date_from = $_GET['filter_date_from'] ?? '';
$filter_date_to = $_GET['filter_date_to'] ?? '';
$filter_paid_by = $_GET['filter_paid_by'] ?? '';
$filter_paid_through = $_GET['filter_paid_through'] ?? '';
$filter_search = $_GET['filter_search'] ?? '';

$where_clause = "1=1";
$params = [];

if (!empty($filter_category)) {
    $where_clause .= " AND e.category_id = ?";
    $params[] = $filter_category;
}

if (!empty($filter_subcategory)) {
    $where_clause .= " AND e.subcategory_id = ?";
    $params[] = $filter_subcategory;
}

if (!empty($filter_date_from)) {
    $where_clause .= " AND e.expense_date >= ?";
    $params[] = $filter_date_from;
}

if (!empty($filter_date_to)) {
    $where_clause .= " AND e.expense_date <= ?";
    $params[] = $filter_date_to;
}

if (!empty($filter_paid_by)) {
    $where_clause .= " AND e.paid_by = ?";
    $params[] = $filter_paid_by;
}

if (!empty($filter_paid_through)) {
    $where_clause .= " AND e.paid_through = ?";
    $params[] = $filter_paid_through;
}

if (!empty($filter_search)) {
    $where_clause .= " AND (e.description LIKE ? OR e.paid_to LIKE ? OR e.notes LIKE ?)";
    $search_term = '%' . $filter_search . '%';
    $params[] = $search_term;
    $params[] = $search_term;
    $params[] = $search_term;
}

try {
    // Get expense stats
    $stats_stmt = $pdo->prepare("
        SELECT 
            COUNT(*) as total_expenses,
            COALESCE(SUM(amount), 0) as total_amount
        FROM expenses e WHERE $where_clause
    ");
    $stats_stmt->execute($params);
    $stats = $stats_stmt->fetch(PDO::FETCH_ASSOC);
    
    // Get expense records
    $expenses_stmt = $pdo->prepare("
        SELECT e.*, ec.category_name, 
               COALESCE(es.subcategory_name, '-') as subcategory_name,
               u.full_name as paid_by_name, uc.full_name as created_by_name
        FROM expenses e
        JOIN expense_categories ec ON e.category_id = ec.id
        LEFT JOIN expense_subcategories es ON e.subcategory_id = es.id
        JOIN users u ON e.paid_by = u.id
        JOIN users uc ON e.created_by = uc.id
        WHERE $where_clause
        ORDER BY e.created_at DESC
        LIMIT 100
    ");
    $expenses_stmt->execute($params);
    $expenses = $expenses_stmt->fetchAll(PDO::FETCH_ASSOC);
    
} catch (PDOException $e) {
    $stats = ['total_expenses' => 0, 'total_amount' => 0];
    $expenses = [];
    $error_message = 'Error fetching expense data.';
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Expenses Management</h1>
    <p class="page-subtitle">Track and manage your business expenses</p>
</div>

<?php if ($error_message): ?>
    <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
<?php endif; ?>

<!-- Stats -->
<div class="dashboard-grid mb-3">
    <div class="stat-card" style="background: linear-gradient(135deg, #f44336 0%, #e57373 100%);">
        <div class="stat-number"><?php echo $stats['total_expenses']; ?></div>
        <div class="stat-label">Total Expenses</div>
    </div>
    <div class="stat-card" style="background: linear-gradient(135deg, #ff9800 0%, #ffb74d 100%);">
        <div class="stat-number">₹<?php echo number_format($stats['total_amount'], 2); ?></div>
        <div class="stat-label">Total Amount</div>
    </div>
</div>

<!-- Add/Edit Expense -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_expense ? 'Edit Expense' : 'Add New Expense'; ?></h2>
    </div>
    
    <?php if (empty($categories)): ?>
        <div class="alert alert-warning">
            Please <a href="settings.php#categories-section">create expense categories</a> first.
        </div>
    <?php else: ?>
        <form method="POST" id="expenseForm">
            <input type="hidden" name="action" value="<?php echo $edit_expense ? 'edit_expense' : 'add_expense'; ?>">
            <?php if ($edit_expense): ?>
                <input type="hidden" name="expense_id" value="<?php echo $edit_expense['id']; ?>">
            <?php endif; ?>
            
            <!-- Expense Details -->
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1rem; margin-bottom: 2rem;">
                <div class="form-group">
                    <label class="form-label">Category *</label>
                    <select name="category_id" id="category_id" class="form-select" onchange="updateSubcategories()" required>
                        <option value="">Select Category</option>
                        <?php foreach ($categories as $category): ?>
                            <option value="<?php echo $category['id']; ?>" <?php echo ($edit_expense['category_id'] ?? '') == $category['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($category['category_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Subcategory</label>
                    <select name="subcategory_id" id="subcategory_id" class="form-select">
                        <option value="">Select Subcategory (Optional)</option>
                        <?php foreach ($subcategories as $subcategory): ?>
                            <option value="<?php echo $subcategory['id']; ?>" 
                                    data-category="<?php echo $subcategory['category_id']; ?>"
                                    <?php echo ($edit_expense['subcategory_id'] ?? '') == $subcategory['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($subcategory['subcategory_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Expense Date *</label>
                    <input type="date" name="expense_date" class="form-input" 
                           value="<?php echo $edit_expense ? $edit_expense['expense_date'] : date('Y-m-d'); ?>" required>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Amount (₹) *</label>
                    <input type="number" name="amount" class="form-input" step="0.01" min="0.01" 
                           placeholder="0.00" value="<?php echo $edit_expense['amount'] ?? ''; ?>" required>
                </div>
            </div>
            
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1rem; margin-bottom: 2rem;">
                <div class="form-group">
                    <label class="form-label">Description *</label>
                    <input type="text" name="description" class="form-input" 
                           placeholder="Brief description of expense" 
                           value="<?php echo htmlspecialchars($edit_expense['description'] ?? ''); ?>" required>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Paid To *</label>
                    <input type="text" name="paid_to" class="form-input" 
                           placeholder="Vendor/Supplier name" 
                           value="<?php echo htmlspecialchars($edit_expense['paid_to'] ?? ''); ?>" required>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Paid By *</label>
                    <select name="paid_by" class="form-select" required>
                        <option value="">Select User</option>
                        <?php foreach ($users as $user): ?>
                            <option value="<?php echo $user['id']; ?>" <?php echo ($edit_expense['paid_by'] ?? '') == $user['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($user['full_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Payment Method *</label>
                    <select name="paid_through" class="form-select" required>
                        <option value="">Select Method</option>
                        <option value="cash" <?php echo ($edit_expense['paid_through'] ?? '') == 'cash' ? 'selected' : ''; ?>>Cash</option>
                        <option value="upi" <?php echo ($edit_expense['paid_through'] ?? '') == 'upi' ? 'selected' : ''; ?>>UPI</option>
                        <option value="credit_card" <?php echo ($edit_expense['paid_through'] ?? '') == 'credit_card' ? 'selected' : ''; ?>>Credit Card</option>
                    </select>
                </div>
            </div>
            
            <div class="form-group">
                <label class="form-label">Notes</label>
                <textarea name="notes" class="form-textarea" rows="3" 
                          placeholder="Additional notes..."><?php echo htmlspecialchars($edit_expense['notes'] ?? ''); ?></textarea>
            </div>
            
            <div style="display: flex; gap: 1rem; flex-wrap: wrap;">
                <button type="submit" class="btn btn-primary"><?php echo $edit_expense ? 'Update Expense' : 'Add Expense'; ?></button>
                <?php if ($edit_expense): ?>
                    <a href="expenses.php" class="btn btn-secondary">Cancel</a>
                <?php endif; ?>
            </div>
        </form>
    <?php endif; ?>
</div>

<!-- Filters and Search -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">Filter & Export Expenses</h2>
    </div>
    
    <div style="display: grid; grid-template-columns: 1fr auto; gap: 2rem; align-items: start;">
        <!-- Filters Form -->
        <form method="GET">
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(150px, 1fr)); gap: 1rem; margin-bottom: 1rem;">
                <div class="form-group">
                    <label class="form-label">Category</label>
                    <select name="filter_category" id="filter_category" class="form-select" onchange="updateFilterSubcategories()">
                        <option value="">All Categories</option>
                        <?php foreach ($categories as $category): ?>
                            <option value="<?php echo $category['id']; ?>" <?php echo $filter_category == $category['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($category['category_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Subcategory</label>
                    <select name="filter_subcategory" id="filter_subcategory" class="form-select">
                        <option value="">All Subcategories</option>
                        <?php foreach ($subcategories as $subcategory): ?>
                            <option value="<?php echo $subcategory['id']; ?>" 
                                    data-category="<?php echo $subcategory['category_id']; ?>"
                                    <?php echo $filter_subcategory == $subcategory['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($subcategory['subcategory_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">From Date</label>
                    <input type="date" name="filter_date_from" class="form-input" value="<?php echo htmlspecialchars($filter_date_from); ?>">
                </div>
                
                <div class="form-group">
                    <label class="form-label">To Date</label>
                    <input type="date" name="filter_date_to" class="form-input" value="<?php echo htmlspecialchars($filter_date_to); ?>">
                </div>
                
                <div class="form-group">
                    <label class="form-label">Paid By</label>
                    <select name="filter_paid_by" class="form-select">
                        <option value="">All Users</option>
                        <?php foreach ($users as $user): ?>
                            <option value="<?php echo $user['id']; ?>" <?php echo $filter_paid_by == $user['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($user['full_name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
                
                <div class="form-group">
                    <label class="form-label">Payment Method</label>
                    <select name="filter_paid_through" class="form-select">
                        <option value="">All Methods</option>
                        <option value="cash" <?php echo $filter_paid_through == 'cash' ? 'selected' : ''; ?>>Cash</option>
                        <option value="upi" <?php echo $filter_paid_through == 'upi' ? 'selected' : ''; ?>>UPI</option>
                        <option value="credit_card" <?php echo $filter_paid_through == 'credit_card' ? 'selected' : ''; ?>>Credit Card</option>
                    </select>
                </div>
            </div>
            
            <div class="form-group">
                <label class="form-label">Search in Description/Paid To/Notes</label>
                <input type="text" name="filter_search" class="form-input" 
                       placeholder="Search..." value="<?php echo htmlspecialchars($filter_search); ?>">
            </div>
            
            <div style="display: flex; gap: 1rem; flex-wrap: wrap;">
                <button type="submit" class="btn btn-primary">Apply Filter</button>
                <a href="expenses.php" class="btn btn-secondary">Clear Filters</a>
            </div>
        </form>
        
        <!-- Export Form -->
        <div style="border-left: 2px solid #e0e0e0; padding-left: 1rem; min-width: 200px;">
            <div class="form-group">
                <label class="form-label">Export Options</label>
                
                <form method="POST">
                    <input type="hidden" name="action" value="export_expenses">
                    <input type="hidden" name="export_filter_category" value="<?php echo htmlspecialchars($filter_category); ?>">
                    <input type="hidden" name="export_filter_subcategory" value="<?php echo htmlspecialchars($filter_subcategory); ?>">
                    <input type="hidden" name="export_filter_date_from" value="<?php echo htmlspecialchars($filter_date_from); ?>">
                    <input type="hidden" name="export_filter_date_to" value="<?php echo htmlspecialchars($filter_date_to); ?>">
                    <input type="hidden" name="export_filter_paid_by" value="<?php echo htmlspecialchars($filter_paid_by); ?>">
                    <input type="hidden" name="export_filter_paid_through" value="<?php echo htmlspecialchars($filter_paid_through); ?>">
                    <input type="hidden" name="export_filter_search" value="<?php echo htmlspecialchars($filter_search); ?>">
                    
                    <button type="submit" class="btn btn-success" style="width: 100%;">
                        📊 Export to Excel
                    </button>
                </form>
            </div>
        </div>
    </div>
</div>

<!-- Expenses List -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">Expense Records</h2>
    </div>
    
    <?php if (empty($expenses)): ?>
        <div class="empty-state">
            <h3>No Expenses Found</h3>
            <p>Add your first expense using the form above.</p>
        </div>
    <?php else: ?>
        <div class="table-container">
            <table class="table">
                <thead>
                    <tr>
                        <th>Expense#</th>
                        <th>Date</th>
                        <th>Category</th>
                        <th>Description</th>
                        <th>Amount</th>
                        <th>Paid To</th>
                        <th>Paid By</th>
                        <th>Method</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($expenses as $expense): ?>
                        <tr>
                            <td><strong><?php echo htmlspecialchars($expense['expense_number']); ?></strong></td>
                            <td><?php echo date('M j, Y', strtotime($expense['expense_date'])); ?></td>
                            <td>
                                <?php echo htmlspecialchars($expense['category_name']); ?>
                                <?php if ($expense['subcategory_name'] != '-'): ?>
                                    <br><small style="color: #666;"><?php echo htmlspecialchars($expense['subcategory_name']); ?></small>
                                <?php endif; ?>
                            </td>
                            <td><?php echo htmlspecialchars($expense['description']); ?></td>
                            <td><strong>₹<?php echo number_format($expense['amount'], 2); ?></strong></td>
                            <td><?php echo htmlspecialchars($expense['paid_to']); ?></td>
                            <td><?php echo htmlspecialchars($expense['paid_by_name']); ?></td>
                            <td>
                                <?php 
                                $method_display = [
                                    'cash' => 'Cash',
                                    'upi' => 'UPI',
                                    'credit_card' => 'Credit Card'
                                ];
                                echo $method_display[$expense['paid_through']] ?? ucfirst($expense['paid_through']);
                                ?>
                            </td>
                            <td>
                                <div style="display: flex; gap: 0.5rem; flex-wrap: wrap; align-items: center;">
                                    <!-- Payment Slip Button -->
                                    <a href="payment_slip.php?expense_id=<?php echo $expense['id']; ?>" 
                                       class="btn btn-success" 
                                       style="padding: 0.3rem 0.6rem; font-size: 0.75rem; background: #4caf50;"
                                       target="_blank"
                                       title="Download Payment Slip">
                                        📄 Slip
                                    </a>
                                    
                                    <a href="expenses.php?edit_expense=<?php echo $expense['id']; ?>" 
                                       class="btn btn-secondary" 
                                       style="padding: 0.3rem 0.6rem; font-size: 0.75rem;">
                                        Edit
                                    </a>
                                    
                                    <form method="POST" style="display: inline;" onsubmit="return confirm('Delete this expense?');">
                                        <input type="hidden" name="action" value="delete_expense">
                                        <input type="hidden" name="expense_id" value="<?php echo $expense['id']; ?>">
                                        <button type="submit" 
                                                class="btn btn-danger" 
                                                style="padding: 0.3rem 0.6rem; font-size: 0.75rem;">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                        <?php if ($expense['notes']): ?>
                            <tr>
                                <td colspan="9" style="background: #f9f9f9; padding: 0.5rem 1rem; font-style: italic;">
                                    <strong>Notes:</strong> <?php echo htmlspecialchars($expense['notes']); ?>
                                </td>
                            </tr>
                        <?php endif; ?>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<script>
// Store subcategories data from PHP
const subcategoriesData = <?php echo json_encode($subcategories); ?>;

// Subcategory filtering for form
function updateSubcategories() {
    const categorySelect = document.getElementById('category_id');
    const subcategorySelect = document.getElementById('subcategory_id');
    const selectedCategory = categorySelect.value;
    
    // Store current selection
    const currentSubcategory = subcategorySelect.value;
    
    // Reset subcategory dropdown
    subcategorySelect.innerHTML = '<option value="">Select Subcategory (Optional)</option>';
    
    if (selectedCategory) {
        // Filter and add subcategories for selected category
        subcategoriesData.forEach(subcategory => {
            if (subcategory.category_id == selectedCategory) {
                const option = document.createElement('option');
                option.value = subcategory.id;
                option.textContent = subcategory.subcategory_name;
                option.setAttribute('data-category', subcategory.category_id);
                
                // Restore selection if it was previously selected
                if (subcategory.id == currentSubcategory) {
                    option.selected = true;
                }
                
                subcategorySelect.appendChild(option);
            }
        });
    }
}

// Subcategory filtering for filters
function updateFilterSubcategories() {
    const categorySelect = document.getElementById('filter_category');
    const subcategorySelect = document.getElementById('filter_subcategory');
    const selectedCategory = categorySelect.value;
    
    // Store current selection
    const currentSubcategory = subcategorySelect.value;
    
    // Reset subcategory dropdown
    subcategorySelect.innerHTML = '<option value="">All Subcategories</option>';
    
    if (selectedCategory) {
        // Filter and add subcategories for selected category
        subcategoriesData.forEach(subcategory => {
            if (subcategory.category_id == selectedCategory) {
                const option = document.createElement('option');
                option.value = subcategory.id;
                option.textContent = subcategory.subcategory_name;
                option.setAttribute('data-category', subcategory.category_id);
                
                // Restore selection if it was previously selected
                if (subcategory.id == currentSubcategory) {
                    option.selected = true;
                }
                
                subcategorySelect.appendChild(option);
            }
        });
    }
}

// Initialize subcategory dropdowns on page load
document.addEventListener('DOMContentLoaded', function() {
    // Initial load for form subcategories
    updateSubcategories();
    
    // Initial load for filter subcategories  
    updateFilterSubcategories();
    
    // Add event listeners
    const categorySelect = document.getElementById('category_id');
    if (categorySelect) {
        categorySelect.addEventListener('change', updateSubcategories);
    }
    
    const filterCategorySelect = document.getElementById('filter_category');
    if (filterCategorySelect) {
        filterCategorySelect.addEventListener('change', updateFilterSubcategories);
    }
});
</script>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 5: finance.php
- Type: PHP
- Size: 12.4 KB
- Path: .
- Name: finance.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Finance Management';
$error_message = '';

// Test database connection and table existence
try {
    // Test if tables exist
    $tables_check = [];
    
    $stmt = $pdo->query("SHOW TABLES LIKE 'investments'");
    $tables_check['investments'] = $stmt->rowCount() > 0;
    
    $stmt = $pdo->query("SHOW TABLES LIKE 'withdrawals'");
    $tables_check['withdrawals'] = $stmt->rowCount() > 0;
    
    $stmt = $pdo->query("SHOW TABLES LIKE 'emi_schedule'");
    $tables_check['emi_schedule'] = $stmt->rowCount() > 0;
    
    $stmt = $pdo->query("SHOW TABLES LIKE 'loan_payments'");
    $tables_check['loan_payments'] = $stmt->rowCount() > 0;
    
} catch (Exception $e) {
    $error_message = 'Database connection error: ' . $e->getMessage();
    $tables_check = [];
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Finance Management</h1>
    <p class="page-subtitle">Manage investments, loans, and financial operations</p>
    <div style="text-align: right; margin-top: 10px;">
        <a href="loan_calculator.php" class="btn btn-primary" target="_blank">🧮 Loan Calculator</a>
    </div>
</div>

<?php if ($error_message): ?>
    <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
<?php endif; ?>

<!-- Database Status Check -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">System Status</h2>
    </div>
    
    <div class="table-container">
        <table class="table">
            <thead>
                <tr>
                    <th>Database Table</th>
                    <th>Status</th>
                    <th>Action Required</th>
                </tr>
            </thead>
            <tbody>
                <?php 
                $required_tables = [
                    'investments' => 'Store investment records',
                    'withdrawals' => 'Store withdrawal records', 
                    'emi_schedule' => 'Store EMI payment schedules',
                    'loan_payments' => 'Store loan payment history'
                ];
                
                $all_tables_exist = true;
                foreach ($required_tables as $table => $description): 
                    $exists = $tables_check[$table] ?? false;
                    if (!$exists) $all_tables_exist = false;
                ?>
                    <tr>
                        <td><strong><?php echo $table; ?></strong><br><small><?php echo $description; ?></small></td>
                        <td>
                            <?php if ($exists): ?>
                                <span style="color: #4caf50; font-weight: bold;">✅ EXISTS</span>
                            <?php else: ?>
                                <span style="color: #f44336; font-weight: bold;">❌ MISSING</span>
                            <?php endif; ?>
                        </td>
                        <td>
                            <?php if (!$exists): ?>
                                <span style="color: #ff9800;">Create table using SQL script</span>
                            <?php else: ?>
                                <span style="color: #4caf50;">Ready to use</span>
                            <?php endif; ?>
                        </td>
                    </tr>
                <?php endforeach; ?>
            </tbody>
        </table>
    </div>
</div>

<?php if (!$all_tables_exist): ?>
    <!-- Setup Instructions -->
    <div class="card">
        <div class="card-header">
            <h2 class="card-title" style="color: #f44336;">⚠️ Setup Required</h2>
        </div>
        
        <div style="background: #fff3cd; padding: 1.5rem; border-radius: 8px; border-left: 5px solid #ff9800;">
            <h3 style="color: #856404; margin-bottom: 1rem;">Database Tables Missing</h3>
            <p style="color: #856404; margin-bottom: 1rem;">
                The finance system requires additional database tables to function properly. 
                Please follow these steps to set up the database:
            </p>
            
            <div style="background: #f8f9fa; padding: 1rem; border-radius: 5px; margin-bottom: 1rem;">
                <h4 style="color: #495057; margin-bottom: 0.5rem;">Step 1: Access your database</h4>
                <p style="color: #6c757d; margin-bottom: 0.5rem;">Log into phpMyAdmin or your database management tool</p>
                
                <h4 style="color: #495057; margin-bottom: 0.5rem;">Step 2: Run the SQL script</h4>
                <p style="color: #6c757d; margin-bottom: 0.5rem;">Execute the following SQL commands:</p>
                
                <textarea readonly style="width: 100%; height: 200px; font-family: monospace; font-size: 12px; background: #f1f3f4; border: 1px solid #ddd; padding: 0.5rem;">-- Finance Management Tables for Kayal Aqua

-- 1. Investments table
CREATE TABLE `investments` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `reference_number` varchar(50) NOT NULL,
  `investment_type` enum('liquid_individual','liquid_common','loan_emi','loan_interest') NOT NULL,
  `investment_date` date NOT NULL,
  `user_id` int(11) DEFAULT NULL,
  `amount` decimal(12,2) NOT NULL DEFAULT 0.00,
  `description` text DEFAULT NULL,
  `notes` text DEFAULT NULL,
  `loan_start_date` date DEFAULT NULL,
  `interest_rate` decimal(8,4) DEFAULT NULL,
  `tenure_months` int(11) DEFAULT NULL,
  `monthly_emi` decimal(10,2) DEFAULT NULL,
  `monthly_interest_rate` decimal(8,4) DEFAULT NULL,
  `monthly_interest` decimal(10,2) DEFAULT NULL,
  `loan_status` enum('active','closed') DEFAULT 'active',
  `created_by` int(11) NOT NULL,
  `created_at` timestamp NOT NULL DEFAULT current_timestamp(),
  `updated_at` timestamp NOT NULL DEFAULT current_timestamp() ON UPDATE current_timestamp(),
  PRIMARY KEY (`id`),
  UNIQUE KEY `reference_number` (`reference_number`),
  CONSTRAINT `investments_ibfk_1` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
  CONSTRAINT `investments_ibfk_2` FOREIGN KEY (`created_by`) REFERENCES `users` (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_uca1400_ai_ci;

-- 2. Withdrawals table
CREATE TABLE `withdrawals` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `reference_number` varchar(50) NOT NULL,
  `user_id` int(11) NOT NULL,
  `amount` decimal(10,2) NOT NULL,
  `withdrawal_date` date NOT NULL,
  `description` text DEFAULT NULL,
  `notes` text DEFAULT NULL,
  `created_by` int(11) NOT NULL,
  `created_at` timestamp NOT NULL DEFAULT current_timestamp(),
  `updated_at` timestamp NOT NULL DEFAULT current_timestamp() ON UPDATE current_timestamp(),
  PRIMARY KEY (`id`),
  UNIQUE KEY `reference_number` (`reference_number`),
  CONSTRAINT `withdrawals_ibfk_1` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`),
  CONSTRAINT `withdrawals_ibfk_2` FOREIGN KEY (`created_by`) REFERENCES `users` (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_uca1400_ai_ci;

-- 3. EMI Schedule table
CREATE TABLE `emi_schedule` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `investment_id` int(11) NOT NULL,
  `emi_number` int(11) NOT NULL,
  `due_date` date NOT NULL,
  `emi_amount` decimal(10,2) NOT NULL,
  `payment_date` date DEFAULT NULL,
  `status` enum('pending','paid','overdue') NOT NULL DEFAULT 'pending',
  `created_at` timestamp NOT NULL DEFAULT current_timestamp(),
  `updated_at` timestamp NOT NULL DEFAULT current_timestamp() ON UPDATE current_timestamp(),
  PRIMARY KEY (`id`),
  CONSTRAINT `emi_schedule_ibfk_1` FOREIGN KEY (`investment_id`) REFERENCES `investments` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_uca1400_ai_ci;

-- 4. Loan Payments table
CREATE TABLE `loan_payments` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `reference_number` varchar(50) NOT NULL,
  `investment_id` int(11) NOT NULL,
  `payment_amount` decimal(10,2) NOT NULL,
  `payment_type` enum('partial','closure') NOT NULL,
  `payment_date` timestamp NOT NULL DEFAULT current_timestamp(),
  `notes` text DEFAULT NULL,
  `created_by` int(11) NOT NULL,
  `created_at` timestamp NOT NULL DEFAULT current_timestamp(),
  PRIMARY KEY (`id`),
  UNIQUE KEY `reference_number` (`reference_number`),
  CONSTRAINT `loan_payments_ibfk_1` FOREIGN KEY (`investment_id`) REFERENCES `investments` (`id`) ON DELETE CASCADE,
  CONSTRAINT `loan_payments_ibfk_2` FOREIGN KEY (`created_by`) REFERENCES `users` (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_uca1400_ai_ci;</textarea>
                
                <h4 style="color: #495057; margin-bottom: 0.5rem; margin-top: 1rem;">Step 3: Refresh this page</h4>
                <p style="color: #6c757d;">After running the SQL script, refresh this page to continue with the finance setup.</p>
            </div>
            
            <div style="text-align: center;">
                <button onclick="window.location.reload()" class="btn btn-primary">🔄 Check Again</button>
            </div>
        </div>
    </div>

<?php else: ?>
    <!-- Finance System Ready -->
    <div class="card">
        <div class="card-header">
            <h2 class="card-title" style="color: #4caf50;">✅ System Ready</h2>
        </div>
        
        <div style="background: #e8f5e8; padding: 1.5rem; border-radius: 8px; border-left: 5px solid #4caf50;">
            <h3 style="color: #2e7d32; margin-bottom: 1rem;">Finance System Initialized</h3>
            <p style="color: #2e7d32; margin-bottom: 1rem;">
                All required database tables are present. The finance system is ready to use!
            </p>
            
            <div style="text-align: center;">
                <a href="finance.php?setup_complete=1" class="btn btn-primary">🚀 Launch Finance System</a>
            </div>
        </div>
    </div>
<?php endif; ?>

<!-- Quick Setup Guide -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">What's Next?</h2>
    </div>
    
    <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1rem;">
        <div style="background: #f0f8ff; padding: 1rem; border-radius: 8px; border-left: 5px solid #2196f3;">
            <h4 style="color: #1976d2; margin-bottom: 0.5rem;">1. Database Setup</h4>
            <p style="color: #1976d2; font-size: 0.9rem;">Create the required database tables using the SQL script above.</p>
        </div>
        
        <div style="background: #f0f8ff; padding: 1rem; border-radius: 8px; border-left: 5px solid #2196f3;">
            <h4 style="color: #1976d2; margin-bottom: 0.5rem;">2. Add Investments</h4>
            <p style="color: #1976d2; font-size: 0.9rem;">Record your business investments and capital contributions.</p>
        </div>
        
        <div style="background: #f0f8ff; padding: 1rem; border-radius: 8px; border-left: 5px solid #2196f3;">
            <h4 style="color: #1976d2; margin-bottom: 0.5rem;">3. Track Loans</h4>
            <p style="color: #1976d2; font-size: 0.9rem;">Manage EMI loans and interest-based loans with payment tracking.</p>
        </div>
        
        <div style="background: #f0f8ff; padding: 1rem; border-radius: 8px; border-left: 5px solid #2196f3;">
            <h4 style="color: #1976d2; margin-bottom: 0.5rem;">4. Balance Reports</h4>
            <p style="color: #1976d2; font-size: 0.9rem;">Generate comprehensive financial statements and profit/loss reports.</p>
        </div>
    </div>
</div>

<!-- Debug Information -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">Debug Information</h2>
    </div>
    
    <div class="table-container">
        <table class="table">
            <tbody>
                <tr>
                    <td><strong>PHP Version</strong></td>
                    <td><?php echo PHP_VERSION; ?></td>
                </tr>
                <tr>
                    <td><strong>Database Connection</strong></td>
                    <td style="color: <?php echo empty($error_message) ? '#4caf50' : '#f44336'; ?>">
                        <?php echo empty($error_message) ? '✅ Connected' : '❌ Error'; ?>
                    </td>
                </tr>
                <tr>
                    <td><strong>Current User</strong></td>
                    <td><?php echo htmlspecialchars($auth->getUserName()); ?> (<?php echo ucfirst($auth->getUserRole()); ?>)</td>
                </tr>
                <tr>
                    <td><strong>Server Time</strong></td>
                    <td><?php echo date('Y-m-d H:i:s'); ?></td>
                </tr>
            </tbody>
        </table>
    </div>
</div>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 6: index.php
- Type: PHP
- Size: 6.06 KB
- Path: .
- Name: index.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Dashboard';

// Fetch real statistics
try {
    // Sales statistics
    $stmt = $pdo->prepare("
        SELECT 
            COUNT(*) as total_sales_count,
            COALESCE(SUM(total_amount), 0) as total_sales_amount,
            COALESCE(SUM(CASE WHEN payment_status = 'pending' THEN total_amount ELSE 0 END), 0) as pending_amount
        FROM sales
    ");
    $stmt->execute();
    $sales_stats = $stmt->fetch(PDO::FETCH_ASSOC);
    
    // Products/Services count
    $stmt = $pdo->prepare("SELECT COUNT(*) as count FROM products_services WHERE status = 'active'");
    $stmt->execute();
    $products_count = $stmt->fetchColumn();
    
    // Recent sales for activity - now showing bills with their items
    $stmt = $pdo->prepare("
        SELECT s.*, 
               (SELECT GROUP_CONCAT(CONCAT(ps.name, ' (', si.quantity, ' ', u.unit_symbol, ')') SEPARATOR ', ')
                FROM sales_items si 
                JOIN products_services ps ON si.product_service_id = ps.id 
                JOIN units u ON ps.unit_id = u.id 
                WHERE si.sale_id = s.id) as items_summary
        FROM sales s 
        ORDER BY s.created_at DESC 
        LIMIT 5
    ");
    $stmt->execute();
    $recent_sales = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
} catch (PDOException $e) {
    $sales_stats = ['total_sales_count' => 0, 'total_sales_amount' => 0, 'pending_amount' => 0];
    $products_count = 0;
    $recent_sales = [];
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Dashboard</h1>
    <p class="page-subtitle">Welcome to Kayal Aqua Fish Business Management System</p>
</div>

<div class="dashboard-grid">
    <div class="stat-card">
        <div class="stat-number"><?php echo number_format($sales_stats['total_sales_count']); ?></div>
        <div class="stat-label">Total Sales</div>
    </div>
    
    <div class="stat-card" style="background: linear-gradient(135deg, #4caf50 0%, #66bb6a 100%);">
        <div class="stat-number">₹<?php echo number_format($sales_stats['total_sales_amount'], 2); ?></div>
        <div class="stat-label">Sales Revenue</div>
    </div>
    
    <div class="stat-card" style="background: linear-gradient(135deg, #ff9800 0%, #ffb74d 100%);">
        <div class="stat-number">₹<?php echo number_format($sales_stats['pending_amount'], 2); ?></div>
        <div class="stat-label">Pending Payments</div>
    </div>
    
    <div class="stat-card" style="background: linear-gradient(135deg, #2196f3 0%, #64b5f6 100%);">
        <div class="stat-number"><?php echo number_format($products_count); ?></div>
        <div class="stat-label">Active Products</div>
    </div>
</div>

<div class="card">
    <div class="card-header">
        <h2 class="card-title">Quick Actions</h2>
    </div>
    <div class="d-flex gap-2" style="flex-wrap: wrap;">
        <a href="sales.php" class="btn btn-primary">Record Sale</a>
        <a href="expenses.php" class="btn btn-secondary">Add Expense</a>
        <a href="investments.php" class="btn btn-primary">Track Investment</a>
        <a href="loans.php" class="btn btn-secondary">Manage Loans</a>
    </div>
</div>

<div class="card">
    <div class="card-header">
        <h2 class="card-title">Recent Activity</h2>
    </div>
    
    <?php if (empty($recent_sales)): ?>
        <div class="empty-state">
            <h3>No Recent Activity</h3>
            <p>Start by recording your first sale to see activity here.</p>
            <br>
            <a href="sales.php" class="btn btn-primary">Record Your First Sale</a>
        </div>
    <?php else: ?>
        <div class="table-container">
            <table class="table">
                <thead>
                    <tr>
                        <th>Bill#</th>
                        <th>Date</th>
                        <th>Items</th>
                        <th>Amount</th>
                        <th>Customer</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($recent_sales as $sale): ?>
                        <tr>
                            <td><strong><?php echo htmlspecialchars($sale['bill_number']); ?></strong></td>
                            <td><?php echo date('M j, Y', strtotime($sale['sale_date'])); ?></td>
                            <td>
                                <small><?php echo htmlspecialchars($sale['items_summary'] ?: 'No items'); ?></small>
                            </td>
                            <td><strong>₹<?php echo number_format($sale['total_amount'], 2); ?></strong></td>
                            <td>
                                <?php if ($sale['customer_name']): ?>
                                    <?php echo htmlspecialchars($sale['customer_name']); ?>
                                <?php else: ?>
                                    <span style="color: var(--dark-gray);">-</span>
                                <?php endif; ?>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
        
        <div style="text-align: center; padding: 1rem;">
            <a href="sales.php" class="btn btn-primary">View All Sales</a>
        </div>
    <?php endif; ?>
</div>

<div class="card">
    <div class="card-header">
        <h2 class="card-title">System Information</h2>
    </div>
    <div class="table-container">
        <table class="table">
            <tbody>
                <tr>
                    <td><strong>User Role</strong></td>
                    <td><?php echo ucfirst(htmlspecialchars($auth->getUserRole())); ?></td>
                </tr>
                <tr>
                    <td><strong>Login Time</strong></td>
                    <td><?php echo date('F j, Y, g:i a'); ?></td>
                </tr>
                <tr>
                    <td><strong>System Status</strong></td>
                    <td><span style="color: var(--success);">Active</span></td>
                </tr>
            </tbody>
        </table>
    </div>
</div>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 7: loan_calculator.php
- Type: PHP
- Size: 18.21 KB
- Path: .
- Name: loan_calculator.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Loan Calculator';

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Loan Calculator</h1>
    <p class="page-subtitle">Calculate EMI, Interest, and Payment Schedules</p>
</div>

<div style="display: grid; grid-template-columns: 1fr 1fr; gap: 2rem; margin-bottom: 2rem;">
    <!-- EMI Calculator -->
    <div class="card">
        <div class="card-header">
            <h2 class="card-title">EMI Calculator</h2>
        </div>
        
        <div class="form-group">
            <label class="form-label">Loan Amount (₹)</label>
            <input type="number" id="emi_loan_amount" class="form-input" step="1000" min="1000" 
                   placeholder="100000" value="100000" onchange="calculateEMI()">
        </div>
        
        <div class="form-group">
            <label class="form-label">Interest Rate (% per annum)</label>
            <input type="number" id="emi_interest_rate" class="form-input" step="0.1" min="0.1" 
                   placeholder="12" value="12" onchange="calculateEMI()">
        </div>
        
        <div class="form-group">
            <label class="form-label">Loan Tenure (Years)</label>
            <input type="number" id="emi_tenure_years" class="form-input" step="1" min="1" 
                   placeholder="5" value="5" onchange="calculateEMI()">
        </div>
        
        <div class="form-group">
            <label class="form-label">OR Tenure (Months)</label>
            <input type="number" id="emi_tenure_months" class="form-input" step="1" min="1" 
                   placeholder="60" value="60" onchange="calculateEMIFromMonths()">
        </div>
        
        <div style="background: #1a237e; color: white; padding: 1rem; border-radius: 8px; text-align: center;">
            <div style="font-size: 14px; margin-bottom: 5px;">Monthly EMI</div>
            <div id="emi_result" style="font-size: 24px; font-weight: bold;">₹0</div>
        </div>
        
        <div style="margin-top: 1rem; background: #f5f5f5; padding: 1rem; border-radius: 8px;">
            <div style="display: grid; grid-template-columns: 1fr 1fr; gap: 1rem;">
                <div>
                    <div style="font-size: 12px; color: #666;">Total Interest</div>
                    <div id="total_interest" style="font-weight: bold; color: #f44336;">₹0</div>
                </div>
                <div>
                    <div style="font-size: 12px; color: #666;">Total Amount</div>
                    <div id="total_amount" style="font-weight: bold; color: #333;">₹0</div>
                </div>
            </div>
        </div>
    </div>
    
    <!-- Simple Interest Calculator -->
    <div class="card">
        <div class="card-header">
            <h2 class="card-title">Simple Interest Calculator</h2>
        </div>
        
        <div class="form-group">
            <label class="form-label">Principal Amount (₹)</label>
            <input type="number" id="si_principal" class="form-input" step="1000" min="1000" 
                   placeholder="100000" value="100000" onchange="calculateSI()">
        </div>
        
        <div class="form-group">
            <label class="form-label">Interest Rate (% per month)</label>
            <input type="number" id="si_rate" class="form-input" step="0.1" min="0.1" 
                   placeholder="2" value="2" onchange="calculateSI()">
        </div>
        
        <div class="form-group">
            <label class="form-label">Time Period (Months)</label>
            <input type="number" id="si_time" class="form-input" step="1" min="1" 
                   placeholder="12" value="12" onchange="calculateSI()">
        </div>
        
        <div style="background: #4caf50; color: white; padding: 1rem; border-radius: 8px; text-align: center;">
            <div style="font-size: 14px; margin-bottom: 5px;">Monthly Interest</div>
            <div id="si_monthly_interest" style="font-size: 24px; font-weight: bold;">₹0</div>
        </div>
        
        <div style="margin-top: 1rem; background: #f5f5f5; padding: 1rem; border-radius: 8px;">
            <div style="display: grid; grid-template-columns: 1fr 1fr; gap: 1rem;">
                <div>
                    <div style="font-size: 12px; color: #666;">Total Interest</div>
                    <div id="si_total_interest" style="font-weight: bold; color: #f44336;">₹0</div>
                </div>
                <div>
                    <div style="font-size: 12px; color: #666;">Total Amount</div>
                    <div id="si_total_amount" style="font-weight: bold; color: #333;">₹0</div>
                </div>
            </div>
        </div>
    </div>
</div>

<!-- Payment Schedule -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">EMI Payment Schedule</h2>
        <div style="margin-top: 10px;">
            <button onclick="generatePaymentSchedule()" class="btn btn-primary">Generate Schedule</button>
            <button onclick="exportSchedule()" class="btn btn-success">Export to Excel</button>
        </div>
    </div>
    
    <div id="payment_schedule_container" style="display: none;">
        <div class="table-container">
            <table class="table" id="payment_schedule_table">
                <thead>
                    <tr>
                        <th>EMI #</th>
                        <th>EMI Date</th>
                        <th>Opening Balance</th>
                        <th>EMI Amount</th>
                        <th>Principal</th>
                        <th>Interest</th>
                        <th>Closing Balance</th>
                    </tr>
                </thead>
                <tbody id="payment_schedule_body">
                </tbody>
            </table>
        </div>
    </div>
</div>

<!-- Comparison Tool -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">Loan Comparison Tool</h2>
    </div>
    
    <div style="display: grid; grid-template-columns: 1fr 1fr 1fr; gap: 1rem; margin-bottom: 2rem;">
        <!-- Loan Option 1 -->
        <div style="border: 2px solid #e0e0e0; padding: 1rem; border-radius: 8px;">
            <h3 style="text-align: center; color: #1a237e; margin-bottom: 1rem;">Loan Option 1</h3>
            
            <div class="form-group">
                <label class="form-label">Amount (₹)</label>
                <input type="number" id="comp1_amount" class="form-input" value="100000" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Rate (% p.a.)</label>
                <input type="number" id="comp1_rate" class="form-input" value="12" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Tenure (Years)</label>
                <input type="number" id="comp1_tenure" class="form-input" value="5" onchange="compareLoans()">
            </div>
            
            <div style="background: #f5f5f5; padding: 0.8rem; border-radius: 5px; text-align: center;">
                <div style="font-size: 12px; color: #666;">Monthly EMI</div>
                <div id="comp1_emi" style="font-weight: bold; font-size: 18px;">₹0</div>
                <div style="font-size: 11px; color: #666; margin-top: 5px;">
                    Total: <span id="comp1_total">₹0</span>
                </div>
            </div>
        </div>
        
        <!-- Loan Option 2 -->
        <div style="border: 2px solid #e0e0e0; padding: 1rem; border-radius: 8px;">
            <h3 style="text-align: center; color: #1a237e; margin-bottom: 1rem;">Loan Option 2</h3>
            
            <div class="form-group">
                <label class="form-label">Amount (₹)</label>
                <input type="number" id="comp2_amount" class="form-input" value="100000" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Rate (% p.a.)</label>
                <input type="number" id="comp2_rate" class="form-input" value="10" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Tenure (Years)</label>
                <input type="number" id="comp2_tenure" class="form-input" value="5" onchange="compareLoans()">
            </div>
            
            <div style="background: #f5f5f5; padding: 0.8rem; border-radius: 5px; text-align: center;">
                <div style="font-size: 12px; color: #666;">Monthly EMI</div>
                <div id="comp2_emi" style="font-weight: bold; font-size: 18px;">₹0</div>
                <div style="font-size: 11px; color: #666; margin-top: 5px;">
                    Total: <span id="comp2_total">₹0</span>
                </div>
            </div>
        </div>
        
        <!-- Loan Option 3 -->
        <div style="border: 2px solid #e0e0e0; padding: 1rem; border-radius: 8px;">
            <h3 style="text-align: center; color: #1a237e; margin-bottom: 1rem;">Loan Option 3</h3>
            
            <div class="form-group">
                <label class="form-label">Amount (₹)</label>
                <input type="number" id="comp3_amount" class="form-input" value="100000" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Rate (% p.a.)</label>
                <input type="number" id="comp3_rate" class="form-input" value="15" onchange="compareLoans()">
            </div>
            
            <div class="form-group">
                <label class="form-label">Tenure (Years)</label>
                <input type="number" id="comp3_tenure" class="form-input" value="5" onchange="compareLoans()">
            </div>
            
            <div style="background: #f5f5f5; padding: 0.8rem; border-radius: 5px; text-align: center;">
                <div style="font-size: 12px; color: #666;">Monthly EMI</div>
                <div id="comp3_emi" style="font-weight: bold; font-size: 18px;">₹0</div>
                <div style="font-size: 11px; color: #666; margin-top: 5px;">
                    Total: <span id="comp3_total">₹0</span>
                </div>
            </div>
        </div>
    </div>
    
    <div id="comparison_result" style="background: #e8f5e8; padding: 1rem; border-radius: 8px; text-align: center; font-weight: bold; display: none;">
    </div>
</div>

<div style="text-align: center; margin-top: 2rem;">
    <a href="finance.php" class="btn btn-secondary">← Back to Finance</a>
</div>

<script>
// EMI Calculation Functions
function calculateEMI() {
    const principal = parseFloat(document.getElementById('emi_loan_amount').value) || 0;
    const annualRate = parseFloat(document.getElementById('emi_interest_rate').value) || 0;
    const tenureYears = parseFloat(document.getElementById('emi_tenure_years').value) || 0;
    
    if (principal <= 0 || annualRate <= 0 || tenureYears <= 0) return;
    
    const monthlyRate = (annualRate / 100) / 12;
    const tenureMonths = tenureYears * 12;
    
    // Update months field
    document.getElementById('emi_tenure_months').value = tenureMonths;
    
    const emi = (principal * monthlyRate * Math.pow(1 + monthlyRate, tenureMonths)) / 
                (Math.pow(1 + monthlyRate, tenureMonths) - 1);
    
    const totalAmount = emi * tenureMonths;
    const totalInterest = totalAmount - principal;
    
    document.getElementById('emi_result').textContent = '₹' + emi.toLocaleString('en-IN', {maximumFractionDigits: 0});
    document.getElementById('total_interest').textContent = '₹' + totalInterest.toLocaleString('en-IN', {maximumFractionDigits: 0});
    document.getElementById('total_amount').textContent = '₹' + totalAmount.toLocaleString('en-IN', {maximumFractionDigits: 0});
}

function calculateEMIFromMonths() {
    const tenureMonths = parseFloat(document.getElementById('emi_tenure_months').value) || 0;
    const tenureYears = tenureMonths / 12;
    
    document.getElementById('emi_tenure_years').value = tenureYears.toFixed(2);
    calculateEMI();
}

// Simple Interest Calculation
function calculateSI() {
    const principal = parseFloat(document.getElementById('si_principal').value) || 0;
    const rate = parseFloat(document.getElementById('si_rate').value) || 0;
    const time = parseFloat(document.getElementById('si_time').value) || 0;
    
    if (principal <= 0 || rate <= 0 || time <= 0) return;
    
    const monthlyInterest = (principal * rate) / 100;
    const totalInterest = monthlyInterest * time;
    const totalAmount = principal + totalInterest;
    
    document.getElementById('si_monthly_interest').textContent = '₹' + monthlyInterest.toLocaleString('en-IN', {maximumFractionDigits: 0});
    document.getElementById('si_total_interest').textContent = '₹' + totalInterest.toLocaleString('en-IN', {maximumFractionDigits: 0});
    document.getElementById('si_total_amount').textContent = '₹' + totalAmount.toLocaleString('en-IN', {maximumFractionDigits: 0});
}

// Payment Schedule Generation
function generatePaymentSchedule() {
    const principal = parseFloat(document.getElementById('emi_loan_amount').value) || 0;
    const annualRate = parseFloat(document.getElementById('emi_interest_rate').value) || 0;
    const tenureMonths = parseFloat(document.getElementById('emi_tenure_months').value) || 0;
    
    if (principal <= 0 || annualRate <= 0 || tenureMonths <= 0) {
        alert('Please enter valid values in EMI Calculator first.');
        return;
    }
    
    const monthlyRate = (annualRate / 100) / 12;
    const emi = (principal * monthlyRate * Math.pow(1 + monthlyRate, tenureMonths)) / 
                (Math.pow(1 + monthlyRate, tenureMonths) - 1);
    
    let openingBalance = principal;
    const tbody = document.getElementById('payment_schedule_body');
    tbody.innerHTML = '';
    
    const today = new Date();
    
    for (let i = 1; i <= tenureMonths; i++) {
        const interestAmount = openingBalance * monthlyRate;
        const principalAmount = emi - interestAmount;
        const closingBalance = openingBalance - principalAmount;
        
        const emiDate = new Date(today.getFullYear(), today.getMonth() + i, today.getDate());
        
        const row = tbody.insertRow();
        row.innerHTML = `
            <td>${i}</td>
            <td>${emiDate.toLocaleDateString('en-IN')}</td>
            <td>₹${openingBalance.toLocaleString('en-IN', {maximumFractionDigits: 0})}</td>
            <td>₹${emi.toLocaleString('en-IN', {maximumFractionDigits: 0})}</td>
            <td>₹${principalAmount.toLocaleString('en-IN', {maximumFractionDigits: 0})}</td>
            <td>₹${interestAmount.toLocaleString('en-IN', {maximumFractionDigits: 0})}</td>
            <td>₹${Math.max(0, closingBalance).toLocaleString('en-IN', {maximumFractionDigits: 0})}</td>
        `;
        
        openingBalance = Math.max(0, closingBalance);
    }
    
    document.getElementById('payment_schedule_container').style.display = 'block';
}

// Export Schedule to CSV
function exportSchedule() {
    const table = document.getElementById('payment_schedule_table');
    if (!table || table.rows.length <= 1) {
        alert('Please generate payment schedule first.');
        return;
    }
    
    let csv = 'EMI Payment Schedule\n\n';
    
    // Add loan details
    const principal = document.getElementById('emi_loan_amount').value;
    const rate = document.getElementById('emi_interest_rate').value;
    const tenure = document.getElementById('emi_tenure_months').value;
    
    csv += `Loan Amount:,₹${parseFloat(principal).toLocaleString('en-IN')}\n`;
    csv += `Interest Rate:,${rate}% per annum\n`;
    csv += `Tenure:,${tenure} months\n\n`;
    
    // Add table headers
    const headers = [];
    for (let i = 0; i < table.rows[0].cells.length; i++) {
        headers.push(table.rows[0].cells[i].textContent);
    }
    csv += headers.join(',') + '\n';
    
    // Add table data
    for (let i = 1; i < table.rows.length; i++) {
        const row = [];
        for (let j = 0; j < table.rows[i].cells.length; j++) {
            row.push(table.rows[i].cells[j].textContent);
        }
        csv += row.join(',') + '\n';
    }
    
    // Download CSV
    const blob = new Blob([csv], { type: 'text/csv;charset=utf-8;' });
    const link = document.createElement('a');
    const url = URL.createObjectURL(blob);
    link.setAttribute('href', url);
    link.setAttribute('download', 'emi_schedule_' + new Date().toISOString().split('T')[0] + '.csv');
    link.style.visibility = 'hidden';
    document.body.appendChild(link);
    link.click();
    document.body.removeChild(link);
}

// Loan Comparison
function compareLoans() {
    const loans = [];
    
    for (let i = 1; i <= 3; i++) {
        const amount = parseFloat(document.getElementById(`comp${i}_amount`).value) || 0;
        const rate = parseFloat(document.getElementById(`comp${i}_rate`).value) || 0;
        const tenure = parseFloat(document.getElementById(`comp${i}_tenure`).value) || 0;
        
        if (amount > 0 && rate > 0 && tenure > 0) {
            const monthlyRate = (rate / 100) / 12;
            const tenureMonths = tenure * 12;
            const emi = (amount * monthlyRate * Math.pow(1 + monthlyRate, tenureMonths)) / 
                        (Math.pow(1 + monthlyRate, tenureMonths) - 1);
            const total = emi * tenureMonths;
            
            document.getElementById(`comp${i}_emi`).textContent = '₹' + emi.toLocaleString('en-IN', {maximumFractionDigits: 0});
            document.getElementById(`comp${i}_total`).textContent = '₹' + total.toLocaleString('en-IN', {maximumFractionDigits: 0});
            
            loans.push({ option: i, emi: emi, total: total });
        }
    }
    
    if (loans.length >= 2) {
        loans.sort((a, b) => a.emi - b.emi);
        const best = loans[0];
        const resultDiv = document.getElementById('comparison_result');
        resultDiv.innerHTML = `🏆 Best Option: Loan Option ${best.option} with lowest EMI of ₹${best.emi.toLocaleString('en-IN', {maximumFractionDigits: 0})}`;
        resultDiv.style.display = 'block';
    }
}

// Initialize calculations on page load
document.addEventListener('DOMContentLoaded', function() {
    calculateEMI();
    calculateSI();
    compareLoans();
});
</script>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 8: login.php
- Type: PHP
- Size: 2.57 KB
- Path: .
- Name: login.php
------------------------------------------------------------
<?php
require_once 'auth.php';

// Check if setup is completed, if not redirect to setup
if (!$auth->isSetupCompleted()) {
    header("Location: setup.php");
    exit();
}

// Redirect if already logged in
if ($auth->isLoggedIn()) {
    header("Location: index.php");
    exit();
}

$error_message = '';

if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    $username = trim($_POST['username'] ?? '');
    $password = $_POST['password'] ?? '';
    
    if (empty($username) || empty($password)) {
        $error_message = 'Please enter both username and password.';
    } else {
        if ($auth->login($username, $password)) {
            header("Location: index.php");
            exit();
        } else {
            $error_message = 'Invalid username or password.';
        }
    }
}

$page_title = 'Login';
?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title><?php echo $page_title; ?> - Kayal Aqua Management</title>
    <link rel="stylesheet" href="css/style.css">
</head>
<body>
    <div class="login-container">
        <div class="login-card">
            <div class="login-logo">
                <h1>Kayal Aqua</h1>
                <p>Fish Business Management System</p>
            </div>
            
            <?php if ($error_message): ?>
                <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
            <?php endif; ?>
            
            <form method="POST" action="">
                <div class="form-group">
                    <label for="username" class="form-label">Username</label>
                    <input type="text" id="username" name="username" class="form-input" 
                           value="<?php echo htmlspecialchars($_POST['username'] ?? ''); ?>" 
                           required autocomplete="username" autofocus>
                </div>
                
                <div class="form-group">
                    <label for="password" class="form-label">Password</label>
                    <input type="password" id="password" name="password" class="form-input" 
                           required autocomplete="current-password">
                </div>
                
                <button type="submit" class="btn btn-primary btn-full">Login</button>
            </form>
            
            <div class="text-center mt-2">
                <small>© <?php echo date('Y'); ?> Kayal Aqua. All rights reserved.</small>
            </div>
        </div>
    </div>
    
    <script src="js/script.js"></script>
</body>
</html>
-------------------- END OF FILE --------------------

### FILE 9: logout.php
- Type: PHP
- Size: 50 B
- Path: .
- Name: logout.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->logout();
?>
-------------------- END OF FILE --------------------

### FILE 10: payment_slip.php
- Type: PHP
- Size: 16.17 KB
- Path: .
- Name: payment_slip.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

// Get expense ID from URL
$expense_id = $_GET['expense_id'] ?? 0;

if (!$expense_id) {
    header("Location: expenses.php");
    exit();
}

try {
    // Fetch expense details
    $stmt = $pdo->prepare("
        SELECT e.*, ec.category_name, 
               COALESCE(es.subcategory_name, '-') as subcategory_name,
               u.full_name as paid_by_name, uc.full_name as created_by_name
        FROM expenses e
        JOIN expense_categories ec ON e.category_id = ec.id
        LEFT JOIN expense_subcategories es ON e.subcategory_id = es.id
        JOIN users u ON e.paid_by = u.id
        JOIN users uc ON e.created_by = uc.id
        WHERE e.id = ?
    ");
    $stmt->execute([$expense_id]);
    $expense = $stmt->fetch(PDO::FETCH_ASSOC);
    
    if (!$expense) {
        header("Location: expenses.php");
        exit();
    }
    
} catch (PDOException $e) {
    header("Location: expenses.php");
    exit();
}

// Format payment method
$payment_methods = [
    'cash' => 'Cash',
    'upi' => 'UPI',
    'credit_card' => 'Credit Card'
];
$payment_method_display = $payment_methods[$expense['paid_through']] ?? ucfirst($expense['paid_through']);
?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Payment Slip - <?php echo htmlspecialchars($expense['expense_number']); ?></title>
    <style>
        * {
            margin: 0;
            padding: 0;
            box-sizing: border-box;
        }
        
        body {
            font-family: Arial, sans-serif;
            line-height: 1.4;
            color: #333;
            background: #fff;
        }
        
        .slip-container {
            max-width: 800px;
            margin: 0 auto;
            padding: 20px;
            background: white;
        }
        
        .no-print {
            margin-bottom: 20px;
            text-align: center;
        }
        
        .btn {
            display: inline-block;
            padding: 10px 20px;
            margin: 0 5px;
            border: none;
            border-radius: 5px;
            cursor: pointer;
            text-decoration: none;
            font-weight: bold;
            transition: all 0.3s ease;
        }
        
        .btn-primary {
            background: #1a237e;
            color: white;
        }
        
        .btn-secondary {
            background: #FFD700;
            color: #1a237e;
        }
        
        .btn:hover {
            transform: translateY(-1px);
            box-shadow: 0 2px 5px rgba(0,0,0,0.2);
        }
        
        .slip-header {
            text-align: center;
            border-bottom: 3px solid #1a237e;
            padding-bottom: 20px;
            margin-bottom: 30px;
        }
        
        .company-name {
            font-size: 28px;
            font-weight: bold;
            color: #1a237e;
            margin-bottom: 10px;
        }
        
        .company-address {
            font-size: 14px;
            color: #666;
            line-height: 1.6;
            margin-bottom: 10px;
        }
        
        .company-phones {
            font-size: 14px;
            color: #1a237e;
            font-weight: bold;
        }
        
        .slip-title {
            font-size: 24px;
            color: #1a237e;
            margin: 20px 0;
            text-align: center;
            background: #f5f5f5;
            padding: 10px;
            border-radius: 5px;
        }
        
        .slip-details {
            display: grid;
            grid-template-columns: 1fr 1fr;
            gap: 30px;
            margin-bottom: 30px;
        }
        
        .expense-info, .payment-info {
            background: #f9f9f9;
            padding: 15px;
            border-radius: 5px;
        }
        
        .info-title {
            font-size: 16px;
            font-weight: bold;
            color: #1a237e;
            margin-bottom: 10px;
            border-bottom: 2px solid #FFD700;
            padding-bottom: 5px;
        }
        
        .info-row {
            display: flex;
            justify-content: space-between;
            margin-bottom: 8px;
            min-height: 20px;
        }
        
        .info-label {
            font-weight: bold;
            color: #333;
            flex: 0 0 40%;
        }
        
        .info-value {
            color: #666;
            flex: 1;
            text-align: right;
        }
        
        .expense-details {
            background: #f5f5f5;
            padding: 20px;
            border-radius: 5px;
            border: 2px solid #1a237e;
            margin-bottom: 20px;
        }
        
        .expense-amount {
            text-align: center;
            background: #1a237e;
            color: white;
            padding: 15px;
            border-radius: 5px;
            margin: 20px 0;
        }
        
        .amount-label {
            font-size: 14px;
            margin-bottom: 5px;
        }
        
        .amount-value {
            font-size: 24px;
            font-weight: bold;
        }
        
        .amount-words {
            font-size: 12px;
            margin-top: 5px;
            font-style: italic;
        }
        
        .slip-footer {
            margin-top: 40px;
            text-align: center;
            color: #666;
            font-size: 12px;
            border-top: 1px solid #ddd;
            padding-top: 20px;
        }
        
        .signature-section {
            margin-top: 50px;
            display: flex;
            justify-content: space-between;
        }
        
        .signature-box {
            text-align: center;
            width: 200px;
        }
        
        .signature-line {
            border-top: 1px solid #333;
            margin-top: 50px;
            padding-top: 5px;
            font-size: 12px;
        }
        
        .watermark {
            position: relative;
            overflow: hidden;
        }
        
        .watermark::before {
            content: 'PAID';
            position: absolute;
            top: 50%;
            left: 50%;
            transform: translate(-50%, -50%) rotate(-45deg);
            font-size: 80px;
            font-weight: bold;
            color: rgba(76, 175, 80, 0.1);
            z-index: -1;
            pointer-events: none;
        }
        
        /* Print Styles */
        @media print {
            .no-print {
                display: none !important;
            }
            
            .slip-container {
                margin: 0;
                padding: 0;
                max-width: none;
            }
            
            body {
                font-size: 12px;
            }
            
            .slip-header {
                margin-bottom: 20px;
                padding-bottom: 15px;
            }
            
            .company-name {
                font-size: 24px;
            }
            
            .slip-title {
                font-size: 20px;
                margin: 15px 0;
            }
            
            .slip-details {
                margin-bottom: 20px;
            }
            
            .expense-details {
                margin-bottom: 15px;
            }
            
            .signature-section {
                margin-top: 30px;
            }
        }
        
        /* Mobile Responsive */
        @media (max-width: 768px) {
            .slip-container {
                padding: 10px;
            }
            
            .company-name {
                font-size: 24px;
            }
            
            .slip-title {
                font-size: 20px;
            }
            
            .slip-details {
                grid-template-columns: 1fr;
                gap: 15px;
            }
            
            .signature-section {
                flex-direction: column;
                gap: 30px;
            }
            
            .signature-box {
                width: 100%;
            }
            
            .info-row {
                flex-direction: column;
                align-items: flex-start;
            }
            
            .info-label {
                flex: none;
                margin-bottom: 2px;
            }
            
            .info-value {
                text-align: left;
            }
        }
        
        @media (max-width: 480px) {
            .company-name {
                font-size: 20px;
            }
            
            .company-address,
            .company-phones {
                font-size: 12px;
            }
            
            .amount-value {
                font-size: 20px;
            }
        }
    </style>
</head>
<body>
    <div class="slip-container watermark">
        <!-- Print/Download Controls -->
        <div class="no-print">
            <button onclick="window.print()" class="btn btn-primary">🖨️ Print Payment Slip</button>
            <a href="expenses.php" class="btn btn-secondary">← Back to Expenses</a>
        </div>
        
        <!-- Slip Header -->
        <div class="slip-header">
            <div class="company-name">KAYAL AQUA CONSULTANTS</div>
            <div class="company-address">
                Ethirmedu, Valayakaranoor Post<br>
                Komarapalayam - 638183, Tamil Nadu
            </div>
            <div class="company-phones">
                Ph: +91 80565 26579 / +91 96989 20008 / +91 88389 66048
            </div>
        </div>
        
        <!-- Slip Title -->
        <div class="slip-title">PAYMENT SLIP</div>
        
        <!-- Expense and Payment Details -->
        <div class="slip-details">
            <div class="expense-info">
                <div class="info-title">Expense Details</div>
                <div class="info-row">
                    <span class="info-label">Expense Number:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['expense_number']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Date:</span>
                    <span class="info-value"><?php echo date('d-m-Y', strtotime($expense['expense_date'])); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Time:</span>
                    <span class="info-value"><?php echo date('h:i A', strtotime($expense['created_at'])); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Category:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['category_name']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Subcategory:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['subcategory_name']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Created By:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['created_by_name']); ?></span>
                </div>
            </div>
            
            <div class="payment-info">
                <div class="info-title">Payment Details</div>
                <div class="info-row">
                    <span class="info-label">Paid To:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['paid_to']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Paid By:</span>
                    <span class="info-value"><?php echo htmlspecialchars($expense['paid_by_name']); ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Payment Method:</span>
                    <span class="info-value"><?php echo $payment_method_display; ?></span>
                </div>
                <div class="info-row">
                    <span class="info-label">Status:</span>
                    <span class="info-value" style="color: #4caf50; font-weight: bold;">PAID</span>
                </div>
            </div>
        </div>
        
        <!-- Expense Description -->
        <div class="expense-details">
            <div class="info-title">Expense Description</div>
            <div style="margin-top: 10px; font-size: 16px; color: #333;">
                <?php echo htmlspecialchars($expense['description']); ?>
            </div>
        </div>
        
        <!-- Amount Section -->
        <div class="expense-amount">
            <div class="amount-label">TOTAL AMOUNT PAID</div>
            <div class="amount-value">₹<?php echo number_format($expense['amount'], 2); ?></div>
            <div class="amount-words">
                Amount in words: <?php 
                // Simple number to words conversion for Indian currency
                function numberToWords($number) {
                    $ones = array(
                        '', 'One', 'Two', 'Three', 'Four', 'Five', 'Six', 'Seven', 'Eight', 'Nine',
                        'Ten', 'Eleven', 'Twelve', 'Thirteen', 'Fourteen', 'Fifteen', 'Sixteen',
                        'Seventeen', 'Eighteen', 'Nineteen'
                    );
                    
                    $tens = array(
                        '', '', 'Twenty', 'Thirty', 'Forty', 'Fifty', 'Sixty', 'Seventy', 'Eighty', 'Ninety'
                    );
                    
                    if ($number < 20) {
                        return $ones[$number];
                    } elseif ($number < 100) {
                        return $tens[intval($number / 10)] . ($number % 10 != 0 ? ' ' . $ones[$number % 10] : '');
                    } elseif ($number < 1000) {
                        return $ones[intval($number / 100)] . ' Hundred' . ($number % 100 != 0 ? ' ' . numberToWords($number % 100) : '');
                    } elseif ($number < 100000) {
                        return numberToWords(intval($number / 1000)) . ' Thousand' . ($number % 1000 != 0 ? ' ' . numberToWords($number % 1000) : '');
                    } elseif ($number < 10000000) {
                        return numberToWords(intval($number / 100000)) . ' Lakh' . ($number % 100000 != 0 ? ' ' . numberToWords($number % 100000) : '');
                    } else {
                        return numberToWords(intval($number / 10000000)) . ' Crore' . ($number % 10000000 != 0 ? ' ' . numberToWords($number % 10000000) : '');
                    }
                }
                
                $amount_parts = explode('.', number_format($expense['amount'], 2, '.', ''));
                $rupees = intval($amount_parts[0]);
                $paisa = intval($amount_parts[1]);
                
                $words = numberToWords($rupees) . ' Rupees';
                if ($paisa > 0) {
                    $words .= ' and ' . numberToWords($paisa) . ' Paisa';
                }
                $words .= ' Only';
                
                echo $words;
                ?>
            </div>
        </div>
        
        <!-- Notes Section -->
        <?php if ($expense['notes']): ?>
            <div style="margin-top: 20px; padding: 15px; background: #f0f8ff; border-radius: 5px; border-left: 5px solid #2196f3;">
                <strong>Notes:</strong> <?php echo htmlspecialchars($expense['notes']); ?>
            </div>
        <?php endif; ?>
        
        <!-- Signature Section -->
        <div class="signature-section">
            <div class="signature-box">
                <div class="signature-line">Paid By: <?php echo htmlspecialchars($expense['paid_by_name']); ?></div>
            </div>
            <div class="signature-box">
                <div class="signature-line">Authorized Signature</div>
            </div>
        </div>
        
        <!-- Footer -->
        <div class="slip-footer">
            <p><strong>Payment Confirmation</strong></p>
            <p>This is a computer generated payment slip.</p>
            <p>For any queries, please contact us at the above phone numbers.</p>
            <p>Generated on: <?php echo date('F j, Y g:i A'); ?></p>
        </div>
    </div>
    
    <script>
        // Prevent right-click context menu (optional security)
        // document.addEventListener('contextmenu', e => e.preventDefault());
    </script>
</body>
</html>
-------------------- END OF FILE --------------------

### FILE 11: sales.php
- Type: PHP
- Size: 46.04 KB
- Path: .
- Name: sales.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Sales Management';
$success_message = '';
$error_message = '';

// Get edit data if editing
$edit_sale = null;
$edit_sale_items = [];
if (isset($_GET['edit_sale'])) {
    try {
        $edit_stmt = $pdo->prepare("SELECT * FROM sales WHERE id = ?");
        $edit_stmt->execute([$_GET['edit_sale']]);
        $edit_sale = $edit_stmt->fetch(PDO::FETCH_ASSOC);
        
        if ($edit_sale) {
            $edit_items_stmt = $pdo->prepare("
                SELECT si.*, ps.name as product_name 
                FROM sales_items si 
                JOIN products_services ps ON si.product_service_id = ps.id 
                WHERE si.sale_id = ?
            ");
            $edit_items_stmt->execute([$edit_sale['id']]);
            $edit_sale_items = $edit_items_stmt->fetchAll(PDO::FETCH_ASSOC);
        }
    } catch (PDOException $e) {
        $error_message = 'Error fetching sale for editing.';
    }
}

// Handle form submissions
if ($_SERVER['REQUEST_METHOD'] == 'POST' && isset($_POST['action'])) {
    
    if ($_POST['action'] == 'record_sale' || $_POST['action'] == 'edit_sale') {
        $sale_id = $_POST['sale_id'] ?? null;
        $sale_date = $_POST['sale_date'] ?? '';
        $customer_name = trim($_POST['customer_name'] ?? '');
        $customer_phone = trim($_POST['customer_phone'] ?? '');
        $payment_status = $_POST['payment_status'] ?? 'paid';
        $payment_method = $_POST['payment_method'] ?? 'cash';
        $notes = trim($_POST['notes'] ?? '');
        
        // Get line items from individual form fields
        $products = $_POST['product_id'] ?? [];
        $quantities = $_POST['quantity'] ?? [];
        $unit_prices = $_POST['unit_price'] ?? [];
        $line_totals = $_POST['line_total'] ?? [];
        
        // Validation
        if (empty($sale_date)) {
            $error_message = 'Sale date is required.';
        } elseif (empty($products) || !is_array($products)) {
            $error_message = 'At least one product/service must be added.';
        } else {
            // Build line items array
            $line_items = [];
            $total_amount = 0;
            
            for ($i = 0; $i < count($products); $i++) {
                if (!empty($products[$i]) && !empty($quantities[$i]) && isset($unit_prices[$i]) && isset($line_totals[$i])) {
                    $product_id = intval($products[$i]);
                    $quantity = floatval($quantities[$i]);
                    $unit_price = floatval($unit_prices[$i]);
                    $line_total = floatval($line_totals[$i]);
                    
                    if ($product_id > 0 && $quantity > 0 && $unit_price >= 0 && $line_total >= 0) {
                        $line_items[] = [
                            'product_id' => $product_id,
                            'quantity' => $quantity,
                            'unit_price' => $unit_price,
                            'line_total' => $line_total
                        ];
                        $total_amount += $line_total;
                    }
                }
            }
            
            if (empty($line_items)) {
                $error_message = 'At least one valid product/service must be added.';
            } elseif ($total_amount <= 0) {
                $error_message = 'Total amount must be greater than zero.';
            } else {
                try {
                    // Start transaction
                    $pdo->beginTransaction();
                    
                    if ($_POST['action'] == 'edit_sale' && $sale_id) {
                        // Update existing sale
                        $sale_stmt = $pdo->prepare("
                            UPDATE sales SET sale_date = ?, customer_name = ?, customer_phone = ?, 
                                           total_amount = ?, payment_status = ?, payment_method = ?, notes = ?
                            WHERE id = ?
                        ");
                        
                        $sale_stmt->execute([
                            $sale_date, $customer_name, $customer_phone, 
                            $total_amount, $payment_status, $payment_method, $notes, $sale_id
                        ]);
                        
                        // Delete existing line items
                        $delete_items_stmt = $pdo->prepare("DELETE FROM sales_items WHERE sale_id = ?");
                        $delete_items_stmt->execute([$sale_id]);
                        
                        $action_message = 'Sale updated successfully!';
                    } else {
                        // Create new sale
                        $bill_number = 'BILL' . date('YmdHis') . rand(100, 999);
                        
                        $sale_stmt = $pdo->prepare("
                            INSERT INTO sales (bill_number, sale_date, customer_name, customer_phone, 
                                             total_amount, payment_status, payment_method, notes, created_by) 
                            VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)
                        ");
                        
                        $sale_stmt->execute([
                            $bill_number, $sale_date, $customer_name, $customer_phone, 
                            $total_amount, $payment_status, $payment_method, $notes, $_SESSION['user_id']
                        ]);
                        
                        $sale_id = $pdo->lastInsertId();
                        $action_message = 'Sale recorded successfully! Bill: ' . $bill_number;
                    }
                    
                    // Insert line items
                    $item_stmt = $pdo->prepare("
                        INSERT INTO sales_items (sale_id, product_service_id, quantity, unit_price, line_total) 
                        VALUES (?, ?, ?, ?, ?)
                    ");
                    
                    foreach ($line_items as $item) {
                        $item_stmt->execute([
                            $sale_id, $item['product_id'], $item['quantity'], 
                            $item['unit_price'], $item['line_total']
                        ]);
                    }
                    
                    $pdo->commit();
                    $_SESSION['success_message'] = $action_message;
                    
                    // Redirect to prevent form resubmission
                    header("Location: sales.php");
                    exit();
                    
                } catch (Exception $e) {
                    $pdo->rollBack();
                    $error_message = 'Error processing sale: ' . $e->getMessage();
                }
            }
        }
    }
    
    elseif ($_POST['action'] == 'delete_sale') {
        $sale_id = intval($_POST['sale_id'] ?? 0);
        
        if ($sale_id > 0) {
            try {
                $pdo->beginTransaction();
                
                // Delete sales items first
                $delete_items_stmt = $pdo->prepare("DELETE FROM sales_items WHERE sale_id = ?");
                $delete_items_stmt->execute([$sale_id]);
                
                // Delete sale
                $delete_sale_stmt = $pdo->prepare("DELETE FROM sales WHERE id = ?");
                $result = $delete_sale_stmt->execute([$sale_id]);
                
                if ($result) {
                    $pdo->commit();
                    $_SESSION['success_message'] = 'Sale deleted successfully.';
                } else {
                    $pdo->rollBack();
                    $_SESSION['error_message'] = 'Failed to delete sale.';
                }
                
            } catch (Exception $e) {
                $pdo->rollBack();
                $_SESSION['error_message'] = 'Error deleting sale: ' . $e->getMessage();
            }
        }
        
        header("Location: sales.php");
        exit();
    }
    
    elseif ($_POST['action'] == 'export_sales') {
        $export_detailed = $_POST['export_detailed'] ?? '0';
        $export_dashboard = $_POST['export_dashboard'] ?? '0';
        $export_filter_date_from = $_POST['export_filter_date_from'] ?? '';
        $export_filter_date_to = $_POST['export_filter_date_to'] ?? '';
        $export_filter_product = $_POST['export_filter_product'] ?? '';
        
        // Build export query with same filters
        $export_where_clause = "1=1";
        $export_params = [];
        
        if (!empty($export_filter_date_from)) {
            $export_where_clause .= " AND s.sale_date >= ?";
            $export_params[] = $export_filter_date_from;
        }
        
        if (!empty($export_filter_date_to)) {
            $export_where_clause .= " AND s.sale_date <= ?";
            $export_params[] = $export_filter_date_to;
        }
        
        if (!empty($export_filter_product)) {
            $export_where_clause .= " AND EXISTS (SELECT 1 FROM sales_items si WHERE si.sale_id = s.id AND si.product_service_id = ?)";
            $export_params[] = $export_filter_product;
        }
        
        try {
            if ($export_dashboard == '1') {
                // Export dashboard - product-wise summary
                $export_stmt = $pdo->prepare("
                    SELECT ps.name as product_name,
                           un.unit_symbol,
                           COUNT(DISTINCT s.id) as total_bills,
                           SUM(si.quantity) as total_quantity,
                           AVG(si.unit_price) as avg_unit_price,
                           SUM(si.line_total) as total_sales_amount
                    FROM sales s
                    JOIN sales_items si ON s.id = si.sale_id
                    JOIN products_services ps ON si.product_service_id = ps.id
                    JOIN units un ON ps.unit_id = un.id
                    WHERE $export_where_clause
                    GROUP BY ps.id, ps.name, un.unit_symbol
                    ORDER BY total_sales_amount DESC
                ");
                $export_stmt->execute($export_params);
                $export_data = $export_stmt->fetchAll(PDO::FETCH_ASSOC);
                
                // Get totals
                $totals_stmt = $pdo->prepare("
                    SELECT COUNT(DISTINCT s.id) as total_bills,
                           SUM(s.total_amount) as grand_total
                    FROM sales s
                    WHERE $export_where_clause
                ");
                $totals_stmt->execute($export_params);
                $totals = $totals_stmt->fetch(PDO::FETCH_ASSOC);
                
                $filename = 'sales_dashboard_' . date('Y-m-d_H-i-s') . '.csv';
                
                // Generate CSV
                header('Content-Type: text/csv');
                header('Content-Disposition: attachment; filename="' . $filename . '"');
                
                $output = fopen('php://output', 'w');
                
                // Dashboard header
                fputcsv($output, ['SALES DASHBOARD REPORT']);
                fputcsv($output, ['Generated on: ' . date('F j, Y g:i A')]);
                if (!empty($export_filter_date_from) || !empty($export_filter_date_to)) {
                    $period = 'Period: ';
                    if (!empty($export_filter_date_from)) $period .= 'From ' . date('M j, Y', strtotime($export_filter_date_from));
                    if (!empty($export_filter_date_to)) $period .= ' To ' . date('M j, Y', strtotime($export_filter_date_to));
                    fputcsv($output, [$period]);
                }
                if (!empty($export_filter_product)) {
                    $product_name = '';
                    foreach ($products_services as $ps) {
                        if ($ps['id'] == $export_filter_product) {
                            $product_name = $ps['name'];
                            break;
                        }
                    }
                    fputcsv($output, ['Product Filter: ' . $product_name]);
                }
                fputcsv($output, ['']); // Empty row
                
                // Summary totals
                fputcsv($output, ['SUMMARY']);
                fputcsv($output, ['Total Bills', $totals['total_bills']]);
                fputcsv($output, ['Grand Total Sales', number_format($totals['grand_total'], 2)]);
                fputcsv($output, ['']); // Empty row
                
                // Product-wise details
                fputcsv($output, ['PRODUCT-WISE SALES BREAKDOWN']);
                fputcsv($output, ['Product Name', 'Unit', 'Total Bills', 'Total Quantity', 'Avg Unit Price', 'Total Sales Amount']);
                
                foreach ($export_data as $row) {
                    fputcsv($output, [
                        $row['product_name'],
                        $row['unit_symbol'],
                        $row['total_bills'],
                        number_format($row['total_quantity'], 3),
                        number_format($row['avg_unit_price'], 2),
                        number_format($row['total_sales_amount'], 2)
                    ]);
                }
                
                fclose($output);
                exit();
                
            } elseif ($export_detailed == '1') {
                // Export detailed view
                $export_stmt = $pdo->prepare("
                    SELECT s.bill_number, s.sale_date, s.customer_name, s.customer_phone,
                           ps.name as product_name, si.quantity, un.unit_symbol,
                           si.unit_price, si.line_total, s.payment_status, s.payment_method, s.notes
                    FROM sales s
                    JOIN sales_items si ON s.id = si.sale_id
                    JOIN products_services ps ON si.product_service_id = ps.id
                    JOIN units un ON ps.unit_id = un.id
                    WHERE $export_where_clause
                    ORDER BY s.created_at DESC, s.id, si.id
                ");
                $export_stmt->execute($export_params);
                $export_data = $export_stmt->fetchAll(PDO::FETCH_ASSOC);
                
                $filename = 'sales_detailed_' . date('Y-m-d_H-i-s') . '.csv';
                $headers = ['Bill Number', 'Date', 'Customer Name', 'Customer Phone', 'Product', 'Quantity', 'Unit', 'Unit Price', 'Line Total', 'Payment Status', 'Payment Method', 'Notes'];
            } else {
                // Export summary view
                $export_stmt = $pdo->prepare("
                    SELECT s.bill_number, s.sale_date, s.customer_name, s.customer_phone,
                           s.total_amount, s.payment_status, s.payment_method, s.notes,
                           GROUP_CONCAT(CONCAT(ps.name, ' (', si.quantity, ' ', un.unit_symbol, ')') SEPARATOR ', ') as items
                    FROM sales s
                    LEFT JOIN sales_items si ON s.id = si.sale_id
                    LEFT JOIN products_services ps ON si.product_service_id = ps.id
                    LEFT JOIN units un ON ps.unit_id = un.id
                    WHERE $export_where_clause
                    GROUP BY s.id
                    ORDER BY s.created_at DESC
                ");
                $export_stmt->execute($export_params);
                $export_data = $export_stmt->fetchAll(PDO::FETCH_ASSOC);
                
                $filename = 'sales_summary_' . date('Y-m-d_H-i-s') . '.csv';
                $headers = ['Bill Number', 'Date', 'Customer Name', 'Customer Phone', 'Items', 'Total Amount', 'Payment Status', 'Payment Method', 'Notes'];
            }
            
            if ($export_dashboard != '1') {
                // Generate CSV for detailed/summary views
                header('Content-Type: text/csv');
                header('Content-Disposition: attachment; filename="' . $filename . '"');
                
                $output = fopen('php://output', 'w');
                fputcsv($output, $headers);
                
                foreach ($export_data as $row) {
                    if ($export_detailed == '1') {
                        fputcsv($output, [
                            $row['bill_number'],
                            $row['sale_date'],
                            $row['customer_name'],
                            $row['customer_phone'],
                            $row['product_name'],
                            $row['quantity'],
                            $row['unit_symbol'],
                            $row['unit_price'],
                            $row['line_total'],
                            $row['payment_status'],
                            $row['payment_method'],
                            $row['notes']
                        ]);
                    } else {
                        fputcsv($output, [
                            $row['bill_number'],
                            $row['sale_date'],
                            $row['customer_name'],
                            $row['customer_phone'],
                            $row['items'],
                            $row['total_amount'],
                            $row['payment_status'],
                            $row['payment_method'],
                            $row['notes']
                        ]);
                    }
                }
                
                fclose($output);
                exit();
            }
            
        } catch (PDOException $e) {
            $error_message = 'Error exporting data: ' . $e->getMessage();
        }
    }
}

// Fetch products/services
try {
    $products_stmt = $pdo->prepare("
        SELECT ps.*, u.unit_name, u.unit_symbol 
        FROM products_services ps 
        JOIN units u ON ps.unit_id = u.id 
        WHERE ps.status = 'active' 
        ORDER BY ps.name
    ");
    $products_stmt->execute();
    $products_services = $products_stmt->fetchAll(PDO::FETCH_ASSOC);
} catch (PDOException $e) {
    $products_services = [];
}

// Fetch sales with filters
$filter_date_from = $_GET['filter_date_from'] ?? '';
$filter_date_to = $_GET['filter_date_to'] ?? '';
$filter_product = $_GET['filter_product'] ?? '';
$detailed_view = $_GET['detailed_view'] ?? '0';

$where_clause = "1=1";
$params = [];

if (!empty($filter_date_from)) {
    $where_clause .= " AND s.sale_date >= ?";
    $params[] = $filter_date_from;
}

if (!empty($filter_date_to)) {
    $where_clause .= " AND s.sale_date <= ?";
    $params[] = $filter_date_to;
}

if (!empty($filter_product)) {
    $where_clause .= " AND EXISTS (SELECT 1 FROM sales_items si WHERE si.sale_id = s.id AND si.product_service_id = ?)";
    $params[] = $filter_product;
}

try {
    // Get sales stats
    $stats_stmt = $pdo->prepare("
        SELECT 
            COUNT(*) as total_sales,
            COALESCE(SUM(total_amount), 0) as total_revenue,
            COALESCE(SUM(CASE WHEN payment_status = 'paid' THEN total_amount ELSE 0 END), 0) as paid_amount
        FROM sales s WHERE $where_clause
    ");
    $stats_stmt->execute($params);
    $stats = $stats_stmt->fetch(PDO::FETCH_ASSOC);
    
    if ($detailed_view == '1') {
        // Get detailed view - each line item as separate row
        $sales_stmt = $pdo->prepare("
            SELECT s.*, u.full_name as created_by_name,
                   si.quantity, si.unit_price, si.line_total,
                   ps.name as product_name, un.unit_symbol
            FROM sales s
            JOIN users u ON s.created_by = u.id
            JOIN sales_items si ON s.id = si.sale_id
            JOIN products_services ps ON si.product_service_id = ps.id
            JOIN units un ON ps.unit_id = un.id
            WHERE $where_clause
            ORDER BY s.created_at DESC, s.id, si.id
            LIMIT 200
        ");
        $sales_stmt->execute($params);
        $sales = $sales_stmt->fetchAll(PDO::FETCH_ASSOC);
    } else {
        // Get sales records with items (summary view)
        $sales_stmt = $pdo->prepare("
            SELECT s.*, u.full_name as created_by_name,
                   (SELECT GROUP_CONCAT(
                       CONCAT(ps.name, ': ', si.quantity, ' ', u.unit_symbol, ' @ ₹', si.unit_price, ' = ₹', si.line_total) 
                       SEPARATOR '|'
                   )
                    FROM sales_items si 
                    JOIN products_services ps ON si.product_service_id = ps.id 
                    JOIN units u ON ps.unit_id = u.id 
                    WHERE si.sale_id = s.id) as items_summary
            FROM sales s
            JOIN users u ON s.created_by = u.id
            WHERE $where_clause
            ORDER BY s.created_at DESC
            LIMIT 50
        ");
        $sales_stmt->execute($params);
        $sales = $sales_stmt->fetchAll(PDO::FETCH_ASSOC);
    }
    
} catch (PDOException $e) {
    $stats = ['total_sales' => 0, 'total_revenue' => 0, 'paid_amount' => 0];
    $sales = [];
    $error_message = 'Error fetching sales data.';
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Sales Management</h1>
    <p class="page-subtitle">Record and track your fish sales</p>
</div>

<?php if ($error_message): ?>
    <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
<?php endif; ?>

<!-- Stats -->
<div class="dashboard-grid mb-3">
    <div class="stat-card">
        <div class="stat-number"><?php echo $stats['total_sales']; ?></div>
        <div class="stat-label">Total Sales</div>
    </div>
    <div class="stat-card">
        <div class="stat-number">₹<?php echo number_format($stats['total_revenue'], 2); ?></div>
        <div class="stat-label">Total Revenue</div>
    </div>
    <div class="stat-card" style="background: linear-gradient(135deg, #4caf50 0%, #66bb6a 100%);">
        <div class="stat-number">₹<?php echo number_format($stats['paid_amount'], 2); ?></div>
        <div class="stat-label">Paid Amount</div>
    </div>
</div>

<!-- Record Sale -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_sale ? 'Edit Sale' : 'Record New Sale'; ?></h2>
    </div>
    
    <?php if (empty($products_services)): ?>
        <div class="alert alert-warning">
            Please <a href="settings.php#products-section">create products or services</a> first.
        </div>
    <?php else: ?>
        <form method="POST" id="saleForm" onsubmit="return validateForm();">
            <input type="hidden" name="action" value="<?php echo $edit_sale ? 'edit_sale' : 'record_sale'; ?>">
            <?php if ($edit_sale): ?>
                <input type="hidden" name="sale_id" value="<?php echo $edit_sale['id']; ?>">
            <?php endif; ?>
            
            <!-- Sale Info -->
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1rem; margin-bottom: 2rem;">
                <div class="form-group">
                    <label class="form-label">Sale Date</label>
                    <input type="date" name="sale_date" class="form-input" value="<?php echo $edit_sale ? $edit_sale['sale_date'] : date('Y-m-d'); ?>" required>
                </div>
                <div class="form-group">
                    <label class="form-label">Customer Name</label>
                    <input type="text" name="customer_name" class="form-input" placeholder="Optional" value="<?php echo htmlspecialchars($edit_sale['customer_name'] ?? ''); ?>">
                </div>
                <div class="form-group">
                    <label class="form-label">Customer Phone</label>
                    <input type="text" name="customer_phone" class="form-input" placeholder="Optional" value="<?php echo htmlspecialchars($edit_sale['customer_phone'] ?? ''); ?>">
                </div>
            </div>
            
            <!-- Line Items -->
            <div class="card-header">
                <h3 class="card-title">Products/Services</h3>
            </div>
            
            <div id="lineItems">
                <?php if ($edit_sale && !empty($edit_sale_items)): ?>
                    <?php foreach ($edit_sale_items as $index => $item): ?>
                        <div class="line-item" style="display: grid; grid-template-columns: 1fr; gap: 1rem; margin-bottom: 1rem; padding: 1rem; background: #f9f9f9; border-radius: 8px;">
                            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(200px, 1fr)); gap: 1rem;">
                                <div class="form-group">
                                    <label class="form-label">Product/Service</label>
                                    <select name="product_id[]" class="form-select product-select" onchange="updatePrice(this)" required>
                                        <option value="">Select Product/Service</option>
                                        <?php foreach ($products_services as $ps): ?>
                                            <option value="<?php echo $ps['id']; ?>" 
                                                    data-rate="<?php echo $ps['unit_rate']; ?>"
                                                    data-symbol="<?php echo $ps['unit_symbol']; ?>"
                                                    <?php echo $item['product_service_id'] == $ps['id'] ? 'selected' : ''; ?>>
                                                <?php echo htmlspecialchars($ps['name']); ?> - ₹<?php echo number_format($ps['unit_rate'], 2); ?>/<?php echo $ps['unit_symbol']; ?>
                                            </option>
                                        <?php endforeach; ?>
                                    </select>
                                </div>
                                <div class="form-group">
                                    <label class="form-label">Quantity</label>
                                    <input type="number" name="quantity[]" class="form-input quantity-input" step="0.001" min="0.001" onchange="calculateTotal(this)" value="<?php echo $item['quantity']; ?>" required>
                                </div>
                                <div class="form-group">
                                    <label class="form-label">Unit Price (₹)</label>
                                    <input type="number" name="unit_price[]" class="form-input price-input" step="0.01" min="0" onchange="calculateTotal(this)" value="<?php echo $item['unit_price']; ?>" required>
                                </div>
                                <div class="form-group">
                                    <label class="form-label">Line Total (₹)</label>
                                    <input type="number" name="line_total[]" class="form-input total-input" step="0.01" min="0" onchange="updateGrandTotal()" value="<?php echo $item['line_total']; ?>" required>
                                </div>
                            </div>
                            <div style="text-align: center; margin-top: 0.5rem;">
                                <button type="button" class="btn btn-danger" onclick="removeLineItem(this)">Remove Item</button>
                            </div>
                        </div>
                    <?php endforeach; ?>
                <?php else: ?>
                    <!-- First line item -->
                    <div class="line-item" style="display: grid; grid-template-columns: 1fr; gap: 1rem; margin-bottom: 1rem; padding: 1rem; background: #f9f9f9; border-radius: 8px;">
                        <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(200px, 1fr)); gap: 1rem;">
                            <div class="form-group">
                                <label class="form-label">Product/Service</label>
                                <select name="product_id[]" class="form-select product-select" onchange="updatePrice(this)" required>
                                    <option value="">Select Product/Service</option>
                                    <?php foreach ($products_services as $ps): ?>
                                        <option value="<?php echo $ps['id']; ?>" 
                                                data-rate="<?php echo $ps['unit_rate']; ?>"
                                                data-symbol="<?php echo $ps['unit_symbol']; ?>">
                                            <?php echo htmlspecialchars($ps['name']); ?> - ₹<?php echo number_format($ps['unit_rate'], 2); ?>/<?php echo $ps['unit_symbol']; ?>
                                        </option>
                                    <?php endforeach; ?>
                                </select>
                            </div>
                            <div class="form-group">
                                <label class="form-label">Quantity</label>
                                <input type="number" name="quantity[]" class="form-input quantity-input" step="0.001" min="0.001" onchange="calculateTotal(this)" required>
                            </div>
                            <div class="form-group">
                                <label class="form-label">Unit Price (₹)</label>
                                <input type="number" name="unit_price[]" class="form-input price-input" step="0.01" min="0" onchange="calculateTotal(this)" required>
                            </div>
                            <div class="form-group">
                                <label class="form-label">Line Total (₹)</label>
                                <input type="number" name="line_total[]" class="form-input total-input" step="0.01" min="0" onchange="updateGrandTotal()" required>
                            </div>
                        </div>
                        <div style="text-align: center; margin-top: 0.5rem;">
                            <button type="button" class="btn btn-danger" onclick="removeLineItem(this)">Remove Item</button>
                        </div>
                    </div>
                <?php endif; ?>
            </div>
            
            <button type="button" class="btn btn-secondary" onclick="addLineItem()" style="margin-bottom: 2rem;">Add Another Item</button>
            
            <!-- Grand Total -->
            <div style="text-align: right; margin-bottom: 2rem;">
                <h3>Grand Total: ₹<span id="grandTotal">0.00</span></h3>
            </div>
            
            <!-- Payment Info -->
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(250px, 1fr)); gap: 1rem; margin-bottom: 2rem;">
                <div class="form-group">
                    <label class="form-label">Payment Status</label>
                    <select name="payment_status" class="form-select">
                        <option value="paid" <?php echo ($edit_sale['payment_status'] ?? '') == 'paid' ? 'selected' : ''; ?>>Paid</option>
                        <option value="pending" <?php echo ($edit_sale['payment_status'] ?? '') == 'pending' ? 'selected' : ''; ?>>Pending</option>
                        <option value="partial" <?php echo ($edit_sale['payment_status'] ?? '') == 'partial' ? 'selected' : ''; ?>>Partial</option>
                    </select>
                </div>
                <div class="form-group">
                    <label class="form-label">Payment Method</label>
                    <select name="payment_method" class="form-select">
                        <option value="cash" <?php echo ($edit_sale['payment_method'] ?? '') == 'cash' ? 'selected' : ''; ?>>Cash</option>
                        <option value="upi" <?php echo ($edit_sale['payment_method'] ?? '') == 'upi' ? 'selected' : ''; ?>>UPI</option>
                    </select>
                </div>
            </div>
            
            <div class="form-group">
                <label class="form-label">Notes</label>
                <textarea name="notes" class="form-textarea" rows="3" placeholder="Optional notes..."><?php echo htmlspecialchars($edit_sale['notes'] ?? ''); ?></textarea>
            </div>
            
            <div style="display: flex; gap: 1rem; flex-wrap: wrap;">
                <button type="submit" class="btn btn-primary" id="submitBtn"><?php echo $edit_sale ? 'Update Sale' : 'Record Sale'; ?></button>
                <?php if ($edit_sale): ?>
                    <a href="sales.php" class="btn btn-secondary">Cancel</a>
                <?php endif; ?>
            </div>
        </form>
    <?php endif; ?>
</div>

<!-- Filters -->
<div class="card">
    <div class="card-header">
        <h2 class="card-title">Filter & Export Sales</h2>
    </div>
    
    <div style="display: grid; grid-template-columns: 1fr auto; gap: 2rem; align-items: start;">
        <!-- Filters Form -->
        <form method="GET">
            <div style="display: grid; grid-template-columns: repeat(auto-fit, minmax(150px, 1fr)); gap: 1rem; margin-bottom: 1rem;">
                <div class="form-group">
                    <label class="form-label">From Date</label>
                    <input type="date" name="filter_date_from" class="form-input" value="<?php echo htmlspecialchars($filter_date_from); ?>">
                </div>
                <div class="form-group">
                    <label class="form-label">To Date</label>
                    <input type="date" name="filter_date_to" class="form-input" value="<?php echo htmlspecialchars($filter_date_to); ?>">
                </div>
                <div class="form-group">
                    <label class="form-label">Product Filter</label>
                    <select name="filter_product" class="form-select">
                        <option value="">All Products</option>
                        <?php foreach ($products_services as $ps): ?>
                            <option value="<?php echo $ps['id']; ?>" <?php echo $filter_product == $ps['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($ps['name']); ?>
                            </option>
                        <?php endforeach; ?>
                    </select>
                </div>
            </div>
            <div style="display: flex; gap: 1rem; flex-wrap: wrap;">
                <button type="submit" class="btn btn-primary">Apply Filter</button>
                <a href="sales.php" class="btn btn-secondary">Clear Filters</a>
            </div>
            <input type="hidden" name="detailed_view" value="<?php echo htmlspecialchars($detailed_view); ?>">
        </form>
        
        <!-- Export Form -->
        <div style="border-left: 2px solid #e0e0e0; padding-left: 1rem; min-width: 200px;">
            <div class="form-group">
                <label class="form-label">Export Options</label>
                
                <!-- Current View Export -->
                <form method="POST" style="margin-bottom: 0.5rem;">
                    <input type="hidden" name="action" value="export_sales">
                    <input type="hidden" name="export_detailed" value="<?php echo htmlspecialchars($detailed_view); ?>">
                    <input type="hidden" name="export_filter_date_from" value="<?php echo htmlspecialchars($filter_date_from); ?>">
                    <input type="hidden" name="export_filter_date_to" value="<?php echo htmlspecialchars($filter_date_to); ?>">
                    <input type="hidden" name="export_filter_product" value="<?php echo htmlspecialchars($filter_product); ?>">
                    
                    <button type="submit" class="btn btn-success" style="width: 100%; margin-bottom: 0.5rem;">
                        Export Current View
                        <?php echo $detailed_view == '1' ? '(Detailed)' : '(Summary)'; ?>
                    </button>
                </form>
                
                <!-- Dashboard Export -->
                <form method="POST">
                    <input type="hidden" name="action" value="export_sales">
                    <input type="hidden" name="export_dashboard" value="1">
                    <input type="hidden" name="export_filter_date_from" value="<?php echo htmlspecialchars($filter_date_from); ?>">
                    <input type="hidden" name="export_filter_date_to" value="<?php echo htmlspecialchars($filter_date_to); ?>">
                    <input type="hidden" name="export_filter_product" value="<?php echo htmlspecialchars($filter_product); ?>">
                    
                    <button type="submit" class="btn btn-primary" style="width: 100%;">
                        Export Dashboard Report
                    </button>
                </form>
            </div>
        </div>
    </div>
</div>

<!-- Sales List -->
<div class="card">
    <div class="card-header" style="display: flex; justify-content: space-between; align-items: center; flex-wrap: wrap; gap: 1rem;">
        <h2 class="card-title">Sales Records</h2>
        <div style="display: flex; gap: 0.5rem; flex-wrap: wrap;">
            <?php 
            $filter_params = http_build_query([
                'filter_date_from' => $filter_date_from,
                'filter_date_to' => $filter_date_to,
                'filter_product' => $filter_product
            ]);
            ?>
            <?php if ($detailed_view == '1'): ?>
                <a href="sales.php?<?php echo $filter_params; ?>&detailed_view=0" class="btn btn-secondary">Summary View</a>
            <?php else: ?>
                <a href="sales.php?<?php echo $filter_params; ?>&detailed_view=1" class="btn btn-primary">Detailed View</a>
            <?php endif; ?>
        </div>
    </div>
    
    <?php if (empty($sales)): ?>
        <div class="empty-state">
            <h3>No Sales Found</h3>
            <p>Record your first sale using the form above.</p>
        </div>
    <?php else: ?>
        <div class="table-container">
            <table class="table">
                <thead>
                    <tr>
                        <th>Bill#</th>
                        <th>Date</th>
                        <?php if ($detailed_view == '1'): ?>
                            <th>Product</th>
                            <th>Quantity</th>
                            <th>Unit Price</th>
                            <th>Line Total</th>
                        <?php else: ?>
                            <th>Items</th>
                            <th>Total</th>
                        <?php endif; ?>
                        <th>Customer</th>
                        <th>Payment</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($sales as $sale): ?>
                        <tr>
                            <td><strong><?php echo htmlspecialchars($sale['bill_number']); ?></strong></td>
                            <td><?php echo date('M j, Y', strtotime($sale['sale_date'])); ?></td>
                            
                            <?php if ($detailed_view == '1'): ?>
                                <td><?php echo htmlspecialchars($sale['product_name']); ?></td>
                                <td><?php echo number_format($sale['quantity'], 3); ?> <?php echo $sale['unit_symbol']; ?></td>
                                <td>₹<?php echo number_format($sale['unit_price'], 2); ?></td>
                                <td><strong>₹<?php echo number_format($sale['line_total'], 2); ?></strong></td>
                            <?php else: ?>
                                <td>
                                    <?php 
                                    if ($sale['items_summary']) {
                                        $items = explode('|', $sale['items_summary']);
                                        foreach ($items as $item) {
                                            echo '<div style="margin-bottom: 4px; font-size: 0.9rem;">' . htmlspecialchars($item) . '</div>';
                                        }
                                    } else {
                                        echo '<div style="color: var(--dark-gray);">No items</div>';
                                    }
                                    ?>
                                </td>
                                <td><strong>₹<?php echo number_format($sale['total_amount'], 2); ?></strong></td>
                            <?php endif; ?>
                            
                            <td>
                                <?php if ($sale['customer_name']): ?>
                                    <?php echo htmlspecialchars($sale['customer_name']); ?>
                                    <?php if ($sale['customer_phone']): ?>
                                        <br><small><?php echo htmlspecialchars($sale['customer_phone']); ?></small>
                                    <?php endif; ?>
                                <?php else: ?>
                                    -
                                <?php endif; ?>
                            </td>
                            <td>
                                <span style="color: <?php echo $sale['payment_status'] == 'paid' ? '#4caf50' : '#ff9800'; ?>">
                                    <?php echo ucfirst($sale['payment_status']); ?>
                                </span>
                                <br><small><?php echo $sale['payment_method'] == 'upi' ? 'UPI' : 'Cash'; ?></small>
                            </td>
                            <td>
                                <div style="display: flex; gap: 0.5rem; flex-wrap: wrap; align-items: center;">
                                    <!-- Download Bill Button -->
                                    <a href="bill.php?sale_id=<?php echo $sale['id']; ?>" 
                                       class="btn btn-success" 
                                       style="padding: 0.3rem 0.6rem; font-size: 0.75rem; background: #4caf50;"
                                       target="_blank"
                                       title="Download/Print Bill">
                                        📄 Bill
                                    </a>
                                    
                                    <?php if ($detailed_view != '1'): ?>
                                        <a href="sales.php?edit_sale=<?php echo $sale['id']; ?>" 
                                           class="btn btn-secondary" 
                                           style="padding: 0.3rem 0.6rem; font-size: 0.75rem;">
                                            Edit
                                        </a>
                                    <?php endif; ?>
                                    
                                    <form method="POST" style="display: inline;" onsubmit="return confirm('Delete this sale?');">
                                        <input type="hidden" name="action" value="delete_sale">
                                        <input type="hidden" name="sale_id" value="<?php echo $sale['id']; ?>">
                                        <button type="submit" 
                                                class="btn btn-danger" 
                                                style="padding: 0.3rem 0.6rem; font-size: 0.75rem;">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                        <?php if ($sale['notes'] && $detailed_view != '1'): ?>
                            <tr>
                                <td colspan="<?php echo $detailed_view == '1' ? '9' : '7'; ?>" style="background: #f9f9f9; padding: 0.5rem 1rem; font-style: italic;">
                                    <strong>Notes:</strong> <?php echo htmlspecialchars($sale['notes']); ?>
                                </td>
                            </tr>
                        <?php endif; ?>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<script>
let isSubmitting = false;

function updatePrice(selectElement) {
    const row = selectElement.closest('.line-item');
    const priceInput = row.querySelector('.price-input');
    const selected = selectElement.options[selectElement.selectedIndex];
    
    if (selected.value) {
        priceInput.value = selected.dataset.rate || '';
        calculateTotal(priceInput);
    } else {
        priceInput.value = '';
    }
}

function calculateTotal(input) {
    const row = input.closest('.line-item');
    const quantity = parseFloat(row.querySelector('.quantity-input').value) || 0;
    const price = parseFloat(row.querySelector('.price-input').value) || 0;
    const totalInput = row.querySelector('.total-input');
    
    totalInput.value = (quantity * price).toFixed(2);
    updateGrandTotal();
}

function updateGrandTotal() {
    const totalInputs = document.querySelectorAll('.total-input');
    let grandTotal = 0;
    
    totalInputs.forEach(input => {
        grandTotal += parseFloat(input.value) || 0;
    });
    
    document.getElementById('grandTotal').textContent = grandTotal.toFixed(2);
}

function addLineItem() {
    const container = document.getElementById('lineItems');
    const firstItem = container.querySelector('.line-item');
    const newItem = firstItem.cloneNode(true);
    
    // Reset values
    newItem.querySelectorAll('select, input').forEach(el => {
        el.value = '';
        if (el.type !== 'hidden') el.removeAttribute('required');
    });
    
    // Make first select required
    newItem.querySelector('.product-select').required = true;
    
    container.appendChild(newItem);
    updateGrandTotal();
}

function removeLineItem(button) {
    const container = document.getElementById('lineItems');
    if (container.children.length > 1) {
        button.closest('.line-item').remove();
        updateGrandTotal();
    } else {
        alert('At least one item is required.');
    }
}

function validateForm() {
    if (isSubmitting) {
        return false;
    }
    
    const grandTotal = parseFloat(document.getElementById('grandTotal').textContent);
    if (grandTotal <= 0) {
        alert('Please add at least one valid item.');
        return false;
    }
    
    isSubmitting = true;
    const submitBtn = document.getElementById('submitBtn');
    submitBtn.disabled = true;
    submitBtn.textContent = 'Processing...';
    
    return true;
}

// Initialize
document.addEventListener('DOMContentLoaded', function() {
    updateGrandTotal();
    
    // If editing, trigger calculations for existing items
    const existingItems = document.querySelectorAll('.total-input');
    if (existingItems.length > 0) {
        existingItems.forEach(input => {
            if (input.value) {
                updateGrandTotal();
            }
        });
    }
});
</script>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 12: settings.php
- Type: PHP
- Size: 42.85 KB
- Path: .
- Name: settings.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireLogin();

$page_title = 'Settings';
$success_message = '';
$error_message = '';

// Handle form submissions
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    try {
        switch ($_POST['action']) {
            case 'create_unit':
                $unit_name = trim($_POST['unit_name'] ?? '');
                $unit_symbol = trim($_POST['unit_symbol'] ?? '');
                $unit_type = $_POST['unit_type'] ?? '';
                
                if (empty($unit_name) || empty($unit_symbol) || empty($unit_type)) {
                    $error_message = 'All fields are required for unit creation.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM units WHERE unit_name = ? OR unit_symbol = ?");
                    $stmt->execute([$unit_name, $unit_symbol]);
                    if ($stmt->fetch()) {
                        $error_message = 'Unit name or symbol already exists.';
                    } else {
                        $stmt = $pdo->prepare("INSERT INTO units (unit_name, unit_symbol, unit_type, created_by) VALUES (?, ?, ?, ?)");
                        if ($stmt->execute([$unit_name, $unit_symbol, $unit_type, $_SESSION['user_id']])) {
                            $_SESSION['success_message'] = 'Unit created successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to create unit.';
                        }
                    }
                }
                break;
                
            case 'edit_unit':
                $unit_id = $_POST['unit_id'] ?? 0;
                $unit_name = trim($_POST['unit_name'] ?? '');
                $unit_symbol = trim($_POST['unit_symbol'] ?? '');
                $unit_type = $_POST['unit_type'] ?? '';
                
                if (empty($unit_name) || empty($unit_symbol) || empty($unit_type)) {
                    $error_message = 'All fields are required for unit update.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM units WHERE (unit_name = ? OR unit_symbol = ?) AND id != ?");
                    $stmt->execute([$unit_name, $unit_symbol, $unit_id]);
                    if ($stmt->fetch()) {
                        $error_message = 'Unit name or symbol already exists.';
                    } else {
                        $stmt = $pdo->prepare("UPDATE units SET unit_name = ?, unit_symbol = ?, unit_type = ? WHERE id = ?");
                        if ($stmt->execute([$unit_name, $unit_symbol, $unit_type, $unit_id])) {
                            $_SESSION['success_message'] = 'Unit updated successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to update unit.';
                        }
                    }
                }
                break;
                
            case 'delete_unit':
                $unit_id = $_POST['unit_id'] ?? 0;
                // Check if unit is being used by any products/services
                $stmt = $pdo->prepare("SELECT COUNT(*) FROM products_services WHERE unit_id = ?");
                $stmt->execute([$unit_id]);
                $usage_count = $stmt->fetchColumn();
                
                if ($usage_count > 0) {
                    $error_message = 'Cannot delete unit. It is being used by ' . $usage_count . ' product(s)/service(s).';
                } else {
                    $stmt = $pdo->prepare("DELETE FROM units WHERE id = ?");
                    if ($stmt->execute([$unit_id])) {
                        $_SESSION['success_message'] = 'Unit deleted successfully.';
                    } else {
                        $_SESSION['error_message'] = 'Failed to delete unit.';
                    }
                    header("Location: settings.php");
                    exit();
                }
                break;
                
            case 'create_expense_category':
                $category_name = trim($_POST['category_name'] ?? '');
                $description = trim($_POST['description'] ?? '');
                
                if (empty($category_name)) {
                    $error_message = 'Category name is required.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM expense_categories WHERE category_name = ?");
                    $stmt->execute([$category_name]);
                    if ($stmt->fetch()) {
                        $error_message = 'Category already exists.';
                    } else {
                        $stmt = $pdo->prepare("INSERT INTO expense_categories (category_name, description, created_by) VALUES (?, ?, ?)");
                        if ($stmt->execute([$category_name, $description, $_SESSION['user_id']])) {
                            $_SESSION['success_message'] = 'Expense category created successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to create category.';
                        }
                    }
                }
                break;
                
            case 'edit_expense_category':
                $category_id = $_POST['category_id'] ?? 0;
                $category_name = trim($_POST['category_name'] ?? '');
                $description = trim($_POST['description'] ?? '');
                
                if (empty($category_name)) {
                    $error_message = 'Category name is required.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM expense_categories WHERE category_name = ? AND id != ?");
                    $stmt->execute([$category_name, $category_id]);
                    if ($stmt->fetch()) {
                        $error_message = 'Category name already exists.';
                    } else {
                        $stmt = $pdo->prepare("UPDATE expense_categories SET category_name = ?, description = ? WHERE id = ?");
                        if ($stmt->execute([$category_name, $description, $category_id])) {
                            $_SESSION['success_message'] = 'Category updated successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to update category.';
                        }
                    }
                }
                break;
                
            case 'delete_expense_category':
                $category_id = $_POST['category_id'] ?? 0;
                // Check if category has subcategories
                $stmt = $pdo->prepare("SELECT COUNT(*) FROM expense_subcategories WHERE category_id = ?");
                $stmt->execute([$category_id]);
                $subcategory_count = $stmt->fetchColumn();
                
                if ($subcategory_count > 0) {
                    $error_message = 'Cannot delete category. It has ' . $subcategory_count . ' subcategory/subcategories.';
                } else {
                    $stmt = $pdo->prepare("DELETE FROM expense_categories WHERE id = ?");
                    if ($stmt->execute([$category_id])) {
                        $_SESSION['success_message'] = 'Category deleted successfully.';
                    } else {
                        $_SESSION['error_message'] = 'Failed to delete category.';
                    }
                    header("Location: settings.php");
                    exit();
                }
                break;
                
            case 'create_expense_subcategory':
                $category_id = $_POST['category_id'] ?? 0;
                $subcategory_name = trim($_POST['subcategory_name'] ?? '');
                $description = trim($_POST['description'] ?? '');
                
                if (empty($subcategory_name) || empty($category_id)) {
                    $error_message = 'Subcategory name and category are required.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM expense_subcategories WHERE category_id = ? AND subcategory_name = ?");
                    $stmt->execute([$category_id, $subcategory_name]);
                    if ($stmt->fetch()) {
                        $error_message = 'Subcategory already exists in this category.';
                    } else {
                        $stmt = $pdo->prepare("INSERT INTO expense_subcategories (category_id, subcategory_name, description, created_by) VALUES (?, ?, ?, ?)");
                        if ($stmt->execute([$category_id, $subcategory_name, $description, $_SESSION['user_id']])) {
                            $_SESSION['success_message'] = 'Expense subcategory created successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to create subcategory.';
                        }
                    }
                }
                break;
                
            case 'edit_expense_subcategory':
                $subcategory_id = $_POST['subcategory_id'] ?? 0;
                $category_id = $_POST['category_id'] ?? 0;
                $subcategory_name = trim($_POST['subcategory_name'] ?? '');
                $description = trim($_POST['description'] ?? '');
                
                if (empty($subcategory_name) || empty($category_id)) {
                    $error_message = 'Subcategory name and category are required.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM expense_subcategories WHERE category_id = ? AND subcategory_name = ? AND id != ?");
                    $stmt->execute([$category_id, $subcategory_name, $subcategory_id]);
                    if ($stmt->fetch()) {
                        $error_message = 'Subcategory already exists in this category.';
                    } else {
                        $stmt = $pdo->prepare("UPDATE expense_subcategories SET category_id = ?, subcategory_name = ?, description = ? WHERE id = ?");
                        if ($stmt->execute([$category_id, $subcategory_name, $description, $subcategory_id])) {
                            $_SESSION['success_message'] = 'Subcategory updated successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to update subcategory.';
                        }
                    }
                }
                break;
                
            case 'delete_expense_subcategory':
                $subcategory_id = $_POST['subcategory_id'] ?? 0;
                $stmt = $pdo->prepare("DELETE FROM expense_subcategories WHERE id = ?");
                if ($stmt->execute([$subcategory_id])) {
                    $_SESSION['success_message'] = 'Subcategory deleted successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to delete subcategory.';
                }
                header("Location: settings.php");
                exit();
                break;
                
            case 'create_product_service':
                $name = trim($_POST['name'] ?? '');
                $type = $_POST['type'] ?? '';
                $description = trim($_POST['description'] ?? '');
                $unit_id = $_POST['unit_id'] ?? 0;
                $unit_rate = $_POST['unit_rate'] ?? 0;
                
                if (empty($name) || empty($type) || empty($unit_id)) {
                    $error_message = 'Name, type, and unit are required.';
                } elseif (!is_numeric($unit_rate) || $unit_rate < 0) {
                    $error_message = 'Please enter a valid unit rate.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM products_services WHERE name = ?");
                    $stmt->execute([$name]);
                    if ($stmt->fetch()) {
                        $error_message = 'Product/Service name already exists.';
                    } else {
                        $stmt = $pdo->prepare("INSERT INTO products_services (name, type, description, unit_id, unit_rate, created_by) VALUES (?, ?, ?, ?, ?, ?)");
                        if ($stmt->execute([$name, $type, $description, $unit_id, $unit_rate, $_SESSION['user_id']])) {
                            $_SESSION['success_message'] = ucfirst($type) . ' created successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to create ' . $type . '.';
                        }
                    }
                }
                break;
                
            case 'edit_product_service':
                $ps_id = $_POST['ps_id'] ?? 0;
                $name = trim($_POST['name'] ?? '');
                $type = $_POST['type'] ?? '';
                $description = trim($_POST['description'] ?? '');
                $unit_id = $_POST['unit_id'] ?? 0;
                $unit_rate = $_POST['unit_rate'] ?? 0;
                
                if (empty($name) || empty($type) || empty($unit_id)) {
                    $error_message = 'Name, type, and unit are required.';
                } elseif (!is_numeric($unit_rate) || $unit_rate < 0) {
                    $error_message = 'Please enter a valid unit rate.';
                } else {
                    $stmt = $pdo->prepare("SELECT id FROM products_services WHERE name = ? AND id != ?");
                    $stmt->execute([$name, $ps_id]);
                    if ($stmt->fetch()) {
                        $error_message = 'Product/Service name already exists.';
                    } else {
                        $stmt = $pdo->prepare("UPDATE products_services SET name = ?, type = ?, description = ?, unit_id = ?, unit_rate = ? WHERE id = ?");
                        if ($stmt->execute([$name, $type, $description, $unit_id, $unit_rate, $ps_id])) {
                            $_SESSION['success_message'] = 'Product/Service updated successfully.';
                            header("Location: settings.php");
                            exit();
                        } else {
                            $error_message = 'Failed to update product/service.';
                        }
                    }
                }
                break;
                
            case 'delete_product_service':
                $ps_id = $_POST['ps_id'] ?? 0;
                $stmt = $pdo->prepare("DELETE FROM products_services WHERE id = ?");
                if ($stmt->execute([$ps_id])) {
                    $_SESSION['success_message'] = 'Product/Service deleted successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to delete product/service.';
                }
                header("Location: settings.php");
                exit();
                break;
                
            case 'toggle_unit_status':
                $unit_id = $_POST['unit_id'] ?? 0;
                $status = $_POST['status'] ?? 'active';
                $stmt = $pdo->prepare("UPDATE units SET status = ? WHERE id = ?");
                if ($stmt->execute([$status, $unit_id])) {
                    $_SESSION['success_message'] = 'Unit status updated successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to update unit status.';
                }
                header("Location: settings.php");
                exit();
                break;
                
            case 'toggle_category_status':
                $category_id = $_POST['category_id'] ?? 0;
                $status = $_POST['status'] ?? 'active';
                $stmt = $pdo->prepare("UPDATE expense_categories SET status = ? WHERE id = ?");
                if ($stmt->execute([$status, $category_id])) {
                    $_SESSION['success_message'] = 'Category status updated successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to update category status.';
                }
                header("Location: settings.php");
                exit();
                break;
                
            case 'toggle_product_status':
                $product_id = $_POST['product_id'] ?? 0;
                $status = $_POST['status'] ?? 'active';
                $stmt = $pdo->prepare("UPDATE products_services SET status = ? WHERE id = ?");
                if ($stmt->execute([$status, $product_id])) {
                    $_SESSION['success_message'] = 'Product/Service status updated successfully.';
                } else {
                    $_SESSION['error_message'] = 'Failed to update status.';
                }
                header("Location: settings.php");
                exit();
                break;
        }
    } catch (PDOException $e) {
        $error_message = 'Database error: ' . $e->getMessage();
    }
}

// Get edit data if editing
$edit_unit = null;
$edit_category = null;
$edit_subcategory = null;
$edit_ps = null;

if (isset($_GET['edit_unit'])) {
    $stmt = $pdo->prepare("SELECT * FROM units WHERE id = ?");
    $stmt->execute([$_GET['edit_unit']]);
    $edit_unit = $stmt->fetch(PDO::FETCH_ASSOC);
}

if (isset($_GET['edit_category'])) {
    $stmt = $pdo->prepare("SELECT * FROM expense_categories WHERE id = ?");
    $stmt->execute([$_GET['edit_category']]);
    $edit_category = $stmt->fetch(PDO::FETCH_ASSOC);
}

if (isset($_GET['edit_subcategory'])) {
    $stmt = $pdo->prepare("SELECT * FROM expense_subcategories WHERE id = ?");
    $stmt->execute([$_GET['edit_subcategory']]);
    $edit_subcategory = $stmt->fetch(PDO::FETCH_ASSOC);
}

if (isset($_GET['edit_ps'])) {
    $stmt = $pdo->prepare("SELECT * FROM products_services WHERE id = ?");
    $stmt->execute([$_GET['edit_ps']]);
    $edit_ps = $stmt->fetch(PDO::FETCH_ASSOC);
}

// Fetch data for display
try {
    // Fetch units
    $stmt = $pdo->prepare("SELECT * FROM units ORDER BY unit_type, unit_name");
    $stmt->execute();
    $units = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
    // Fetch expense categories
    $stmt = $pdo->prepare("SELECT * FROM expense_categories ORDER BY category_name");
    $stmt->execute();
    $categories = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
    // Fetch expense subcategories with category names
    $stmt = $pdo->prepare("
        SELECT es.*, ec.category_name 
        FROM expense_subcategories es 
        JOIN expense_categories ec ON es.category_id = ec.id 
        ORDER BY ec.category_name, es.subcategory_name
    ");
    $stmt->execute();
    $subcategories = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
    // Fetch products/services with unit info
    $stmt = $pdo->prepare("
        SELECT ps.*, u.unit_name, u.unit_symbol 
        FROM products_services ps 
        JOIN units u ON ps.unit_id = u.id 
        ORDER BY ps.type, ps.name
    ");
    $stmt->execute();
    $products_services = $stmt->fetchAll(PDO::FETCH_ASSOC);
    
} catch (PDOException $e) {
    $error_message = 'Failed to fetch data: ' . $e->getMessage();
    $units = $categories = $subcategories = $products_services = [];
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Settings</h1>
    <p class="page-subtitle">Configure your business settings and preferences</p>
</div>

<?php if ($error_message): ?>
    <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
<?php endif; ?>

<!-- Units Settings -->
<div class="card" id="units-section">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_unit ? 'Edit Unit' : 'Units Management'; ?></h2>
    </div>
    
    <form method="POST" action="">
        <input type="hidden" name="action" value="<?php echo $edit_unit ? 'edit_unit' : 'create_unit'; ?>">
        <?php if ($edit_unit): ?>
            <input type="hidden" name="unit_id" value="<?php echo $edit_unit['id']; ?>">
        <?php endif; ?>
        
        <div style="display: grid; grid-template-columns: 1fr 1fr 1fr auto auto; gap: 1rem; align-items: end;">
            <div class="form-group">
                <label for="unit_name" class="form-label">Unit Name</label>
                <input type="text" id="unit_name" name="unit_name" class="form-input" 
                       placeholder="e.g., Kilogram" value="<?php echo htmlspecialchars($edit_unit['unit_name'] ?? ''); ?>" required>
            </div>
            
            <div class="form-group">
                <label for="unit_symbol" class="form-label">Symbol</label>
                <input type="text" id="unit_symbol" name="unit_symbol" class="form-input" 
                       placeholder="e.g., kg" maxlength="10" value="<?php echo htmlspecialchars($edit_unit['unit_symbol'] ?? ''); ?>" required>
            </div>
            
            <div class="form-group">
                <label for="unit_type" class="form-label">Type</label>
                <select id="unit_type" name="unit_type" class="form-select" required>
                    <option value="">Select Type</option>
                    <option value="weight" <?php echo ($edit_unit['unit_type'] ?? '') == 'weight' ? 'selected' : ''; ?>>Weight</option>
                    <option value="length" <?php echo ($edit_unit['unit_type'] ?? '') == 'length' ? 'selected' : ''; ?>>Length</option>
                    <option value="time" <?php echo ($edit_unit['unit_type'] ?? '') == 'time' ? 'selected' : ''; ?>>Time</option>
                    <option value="volume" <?php echo ($edit_unit['unit_type'] ?? '') == 'volume' ? 'selected' : ''; ?>>Volume</option>
                    <option value="quantity" <?php echo ($edit_unit['unit_type'] ?? '') == 'quantity' ? 'selected' : ''; ?>>Quantity</option>
                </select>
            </div>
            
            <button type="submit" class="btn btn-primary"><?php echo $edit_unit ? 'Update' : 'Add'; ?> Unit</button>
            <?php if ($edit_unit): ?>
                <a href="settings.php#units-section" class="btn btn-secondary">Cancel</a>
            <?php endif; ?>
        </div>
    </form>
    
    <?php if (!empty($units)): ?>
        <div class="table-container mt-2">
            <table class="table">
                <thead>
                    <tr>
                        <th>Name</th>
                        <th>Symbol</th>
                        <th>Type</th>
                        <th>Status</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($units as $unit): ?>
                        <tr>
                            <td><?php echo htmlspecialchars($unit['unit_name']); ?></td>
                            <td><strong><?php echo htmlspecialchars($unit['unit_symbol']); ?></strong></td>
                            <td><?php echo ucfirst(htmlspecialchars($unit['unit_type'])); ?></td>
                            <td>
                                <span style="color: <?php echo $unit['status'] == 'active' ? 'var(--success)' : 'var(--error)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($unit['status'])); ?>
                                </span>
                            </td>
                            <td>
                                <div class="d-flex gap-1">
                                    <a href="settings.php?edit_unit=<?php echo $unit['id']; ?>#units-section" class="btn btn-secondary" style="padding: 0.3rem 0.8rem; font-size: 0.7rem;">Edit</a>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="toggle_unit_status">
                                        <input type="hidden" name="unit_id" value="<?php echo $unit['id']; ?>">
                                        <input type="hidden" name="status" value="<?php echo $unit['status'] == 'active' ? 'inactive' : 'active'; ?>">
                                        <button type="submit" class="btn <?php echo $unit['status'] == 'active' ? 'btn-danger' : 'btn-success'; ?>" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure?">
                                            <?php echo $unit['status'] == 'active' ? 'Disable' : 'Enable'; ?>
                                        </button>
                                    </form>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="delete_unit">
                                        <input type="hidden" name="unit_id" value="<?php echo $unit['id']; ?>">
                                        <button type="submit" class="btn btn-danger" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure you want to delete this unit? This action cannot be undone.">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<!-- Expense Categories -->
<div class="card" id="categories-section">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_category ? 'Edit Expense Category' : 'Expense Categories'; ?></h2>
    </div>
    
    <form method="POST" action="">
        <input type="hidden" name="action" value="<?php echo $edit_category ? 'edit_expense_category' : 'create_expense_category'; ?>">
        <?php if ($edit_category): ?>
            <input type="hidden" name="category_id" value="<?php echo $edit_category['id']; ?>">
        <?php endif; ?>
        
        <div style="display: grid; grid-template-columns: 1fr 2fr auto auto; gap: 1rem; align-items: end;">
            <div class="form-group">
                <label for="category_name" class="form-label">Category Name</label>
                <input type="text" id="category_name" name="category_name" class="form-input" 
                       placeholder="e.g., Feed Costs" value="<?php echo htmlspecialchars($edit_category['category_name'] ?? ''); ?>" required>
            </div>
            
            <div class="form-group">
                <label for="category_description" class="form-label">Description (Optional)</label>
                <input type="text" id="category_description" name="description" class="form-input" 
                       placeholder="Brief description" value="<?php echo htmlspecialchars($edit_category['description'] ?? ''); ?>">
            </div>
            
            <button type="submit" class="btn btn-primary"><?php echo $edit_category ? 'Update' : 'Add'; ?> Category</button>
            <?php if ($edit_category): ?>
                <a href="settings.php#categories-section" class="btn btn-secondary">Cancel</a>
            <?php endif; ?>
        </div>
    </form>
    
    <?php if (!empty($categories)): ?>
        <div class="table-container mt-2">
            <table class="table">
                <thead>
                    <tr>
                        <th>Category Name</th>
                        <th>Description</th>
                        <th>Status</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($categories as $category): ?>
                        <tr>
                            <td><strong><?php echo htmlspecialchars($category['category_name']); ?></strong></td>
                            <td><?php echo htmlspecialchars($category['description'] ?: '-'); ?></td>
                            <td>
                                <span style="color: <?php echo $category['status'] == 'active' ? 'var(--success)' : 'var(--error)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($category['status'])); ?>
                                </span>
                            </td>
                            <td>
                                <div class="d-flex gap-1">
                                    <a href="settings.php?edit_category=<?php echo $category['id']; ?>#categories-section" class="btn btn-secondary" style="padding: 0.3rem 0.8rem; font-size: 0.7rem;">Edit</a>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="toggle_category_status">
                                        <input type="hidden" name="category_id" value="<?php echo $category['id']; ?>">
                                        <input type="hidden" name="status" value="<?php echo $category['status'] == 'active' ? 'inactive' : 'active'; ?>">
                                        <button type="submit" class="btn <?php echo $category['status'] == 'active' ? 'btn-danger' : 'btn-success'; ?>" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure?">
                                            <?php echo $category['status'] == 'active' ? 'Disable' : 'Enable'; ?>
                                        </button>
                                    </form>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="delete_expense_category">
                                        <input type="hidden" name="category_id" value="<?php echo $category['id']; ?>">
                                        <button type="submit" class="btn btn-danger" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure you want to delete this category? This action cannot be undone.">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<!-- Expense Subcategories -->
<div class="card" id="subcategories-section">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_subcategory ? 'Edit Expense Subcategory' : 'Expense Subcategories'; ?></h2>
    </div>
    
    <form method="POST" action="">
        <input type="hidden" name="action" value="<?php echo $edit_subcategory ? 'edit_expense_subcategory' : 'create_expense_subcategory'; ?>">
        <?php if ($edit_subcategory): ?>
            <input type="hidden" name="subcategory_id" value="<?php echo $edit_subcategory['id']; ?>">
        <?php endif; ?>
        
        <div style="display: grid; grid-template-columns: 1fr 1fr 1fr auto auto; gap: 1rem; align-items: end;">
            <div class="form-group">
                <label for="category_id" class="form-label">Main Category</label>
                <select id="category_id" name="category_id" class="form-select" required>
                    <option value="">Select Category</option>
                    <?php foreach ($categories as $category): ?>
                        <?php if ($category['status'] == 'active'): ?>
                            <option value="<?php echo $category['id']; ?>" <?php echo ($edit_subcategory['category_id'] ?? '') == $category['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($category['category_name']); ?>
                            </option>
                        <?php endif; ?>
                    <?php endforeach; ?>
                </select>
            </div>
            
            <div class="form-group">
                <label for="subcategory_name" class="form-label">Subcategory Name</label>
                <input type="text" id="subcategory_name" name="subcategory_name" class="form-input" 
                       placeholder="e.g., Fish Feed" value="<?php echo htmlspecialchars($edit_subcategory['subcategory_name'] ?? ''); ?>" required>
            </div>
            
            <div class="form-group">
                <label for="subcategory_description" class="form-label">Description (Optional)</label>
                <input type="text" id="subcategory_description" name="description" class="form-input" 
                       placeholder="Brief description" value="<?php echo htmlspecialchars($edit_subcategory['description'] ?? ''); ?>">
            </div>
            
            <button type="submit" class="btn btn-primary"><?php echo $edit_subcategory ? 'Update' : 'Add'; ?> Subcategory</button>
            <?php if ($edit_subcategory): ?>
                <a href="settings.php#subcategories-section" class="btn btn-secondary">Cancel</a>
            <?php endif; ?>
        </div>
    </form>
    
    <?php if (!empty($subcategories)): ?>
        <div class="table-container mt-2">
            <table class="table">
                <thead>
                    <tr>
                        <th>Main Category</th>
                        <th>Subcategory</th>
                        <th>Description</th>
                        <th>Status</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($subcategories as $subcategory): ?>
                        <tr>
                            <td><?php echo htmlspecialchars($subcategory['category_name']); ?></td>
                            <td><strong><?php echo htmlspecialchars($subcategory['subcategory_name']); ?></strong></td>
                            <td><?php echo htmlspecialchars($subcategory['description'] ?: '-'); ?></td>
                            <td>
                                <span style="color: <?php echo $subcategory['status'] == 'active' ? 'var(--success)' : 'var(--error)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($subcategory['status'])); ?>
                                </span>
                            </td>
                            <td>
                                <div class="d-flex gap-1">
                                    <a href="settings.php?edit_subcategory=<?php echo $subcategory['id']; ?>#subcategories-section" class="btn btn-secondary" style="padding: 0.3rem 0.8rem; font-size: 0.7rem;">Edit</a>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="delete_expense_subcategory">
                                        <input type="hidden" name="subcategory_id" value="<?php echo $subcategory['id']; ?>">
                                        <button type="submit" class="btn btn-danger" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure you want to delete this subcategory? This action cannot be undone.">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<!-- Products/Services -->
<div class="card" id="products-section">
    <div class="card-header">
        <h2 class="card-title"><?php echo $edit_ps ? 'Edit Product/Service' : 'Products & Services'; ?></h2>
    </div>
    
    <form method="POST" action="">
        <input type="hidden" name="action" value="<?php echo $edit_ps ? 'edit_product_service' : 'create_product_service'; ?>">
        <?php if ($edit_ps): ?>
            <input type="hidden" name="ps_id" value="<?php echo $edit_ps['id']; ?>">
        <?php endif; ?>
        
        <div style="display: grid; grid-template-columns: 1fr 1fr 1fr 1fr 100px auto auto; gap: 1rem; align-items: end;">
            <div class="form-group">
                <label for="ps_name" class="form-label">Name</label>
                <input type="text" id="ps_name" name="name" class="form-input" 
                       placeholder="e.g., Live Fish" value="<?php echo htmlspecialchars($edit_ps['name'] ?? ''); ?>" required>
            </div>
            
            <div class="form-group">
                <label for="ps_type" class="form-label">Type</label>
                <select id="ps_type" name="type" class="form-select" required>
                    <option value="">Select Type</option>
                    <option value="product" <?php echo ($edit_ps['type'] ?? '') == 'product' ? 'selected' : ''; ?>>Product</option>
                    <option value="service" <?php echo ($edit_ps['type'] ?? '') == 'service' ? 'selected' : ''; ?>>Service</option>
                </select>
            </div>
            
            <div class="form-group">
                <label for="ps_unit_id" class="form-label">Unit</label>
                <select id="ps_unit_id" name="unit_id" class="form-select" required>
                    <option value="">Select Unit</option>
                    <?php foreach ($units as $unit): ?>
                        <?php if ($unit['status'] == 'active'): ?>
                            <option value="<?php echo $unit['id']; ?>" <?php echo ($edit_ps['unit_id'] ?? '') == $unit['id'] ? 'selected' : ''; ?>>
                                <?php echo htmlspecialchars($unit['unit_name'] . ' (' . $unit['unit_symbol'] . ')'); ?>
                            </option>
                        <?php endif; ?>
                    <?php endforeach; ?>
                </select>
            </div>
            
            <div class="form-group">
                <label for="ps_description" class="form-label">Description</label>
                <input type="text" id="ps_description" name="description" class="form-input" 
                       placeholder="Optional" value="<?php echo htmlspecialchars($edit_ps['description'] ?? ''); ?>">
            </div>
            
            <div class="form-group">
                <label for="ps_unit_rate" class="form-label">Rate (₹)</label>
                <input type="number" id="ps_unit_rate" name="unit_rate" class="form-input" 
                       step="0.01" min="0" placeholder="0.00" value="<?php echo $edit_ps['unit_rate'] ?? ''; ?>" required>
            </div>
            
            <button type="submit" class="btn btn-primary"><?php echo $edit_ps ? 'Update' : 'Add'; ?> Item</button>
            <?php if ($edit_ps): ?>
                <a href="settings.php#products-section" class="btn btn-secondary">Cancel</a>
            <?php endif; ?>
        </div>
    </form>
    
    <?php if (!empty($products_services)): ?>
        <div class="table-container mt-2">
            <table class="table">
                <thead>
                    <tr>
                        <th>Name</th>
                        <th>Type</th>
                        <th>Unit</th>
                        <th>Rate (₹)</th>
                        <th>Description</th>
                        <th>Status</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($products_services as $ps): ?>
                        <tr>
                            <td><strong><?php echo htmlspecialchars($ps['name']); ?></strong></td>
                            <td><?php echo ucfirst(htmlspecialchars($ps['type'])); ?></td>
                            <td><?php echo htmlspecialchars($ps['unit_name'] . ' (' . $ps['unit_symbol'] . ')'); ?></td>
                            <td>₹<?php echo number_format($ps['unit_rate'], 2); ?></td>
                            <td><?php echo htmlspecialchars($ps['description'] ?: '-'); ?></td>
                            <td>
                                <span style="color: <?php echo $ps['status'] == 'active' ? 'var(--success)' : 'var(--error)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($ps['status'])); ?>
                                </span>
                            </td>
                            <td>
                                <div class="d-flex gap-1">
                                    <a href="settings.php?edit_ps=<?php echo $ps['id']; ?>#products-section" class="btn btn-secondary" style="padding: 0.3rem 0.8rem; font-size: 0.7rem;">Edit</a>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="toggle_product_status">
                                        <input type="hidden" name="product_id" value="<?php echo $ps['id']; ?>">
                                        <input type="hidden" name="status" value="<?php echo $ps['status'] == 'active' ? 'inactive' : 'active'; ?>">
                                        <button type="submit" class="btn <?php echo $ps['status'] == 'active' ? 'btn-danger' : 'btn-success'; ?>" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure?">
                                            <?php echo $ps['status'] == 'active' ? 'Disable' : 'Enable'; ?>
                                        </button>
                                    </form>
                                    
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="delete_product_service">
                                        <input type="hidden" name="ps_id" value="<?php echo $ps['id']; ?>">
                                        <button type="submit" class="btn btn-danger" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure you want to delete this product/service? This action cannot be undone.">
                                            Delete
                                        </button>
                                    </form>
                                </div>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 13: setup.php
- Type: PHP
- Size: 5 KB
- Path: .
- Name: setup.php
------------------------------------------------------------
<?php
require_once 'auth.php';

// Redirect if setup is already completed
if ($auth->isSetupCompleted()) {
    header("Location: login.php");
    exit();
}

$error_message = '';
$success_message = '';

if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    $full_name = trim($_POST['full_name'] ?? '');
    $phone = trim($_POST['phone'] ?? '');
    $username = trim($_POST['username'] ?? '');
    $password = $_POST['password'] ?? '';
    $confirm_password = $_POST['confirm_password'] ?? '';
    
    // Validation
    if (empty($full_name) || empty($phone) || empty($username) || empty($password)) {
        $error_message = 'All fields are required.';
    } elseif ($password !== $confirm_password) {
        $error_message = 'Passwords do not match.';
    } elseif (strlen($password) < 6) {
        $error_message = 'Password must be at least 6 characters long.';
    } elseif (!preg_match('/^[0-9+\-\s]{10,15}$/', $phone)) {
        $error_message = 'Please enter a valid phone number.';
    } elseif (!preg_match('/^[a-zA-Z0-9_]{3,}$/', $username)) {
        $error_message = 'Username must be at least 3 characters and contain only letters, numbers, and underscore.';
    } else {
        // Create first admin user
        if ($auth->createFirstAdmin($full_name, $phone, $username, $password)) {
            $success_message = 'Admin user created successfully! You can now login.';
        } else {
            $error_message = 'Failed to create admin user. Please try again.';
        }
    }
}

$page_title = 'Initial Setup';
?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title><?php echo $page_title; ?> - Kayal Aqua Management</title>
    <link rel="stylesheet" href="css/style.css">
</head>
<body>
    <div class="login-container">
        <div class="login-card">
            <div class="login-logo">
                <h1>Kayal Aqua</h1>
                <p>Initial Setup - Create Admin User</p>
            </div>
            
            <?php if ($error_message): ?>
                <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
            <?php endif; ?>
            
            <?php if ($success_message): ?>
                <div class="alert alert-success">
                    <?php echo htmlspecialchars($success_message); ?>
                    <br><br>
                    <a href="login.php" class="btn btn-primary btn-full">Go to Login</a>
                </div>
            <?php else: ?>
                <form method="POST" action="">
                    <div class="form-group">
                        <label for="full_name" class="form-label">Full Name</label>
                        <input type="text" id="full_name" name="full_name" class="form-input" 
                               value="<?php echo htmlspecialchars($_POST['full_name'] ?? ''); ?>" 
                               required autocomplete="name">
                    </div>
                    
                    <div class="form-group">
                        <label for="phone" class="form-label">Phone Number</label>
                        <input type="tel" id="phone" name="phone" class="form-input" 
                               value="<?php echo htmlspecialchars($_POST['phone'] ?? ''); ?>" 
                               required autocomplete="tel">
                    </div>
                    
                    <div class="form-group">
                        <label for="username" class="form-label">Username</label>
                        <input type="text" id="username" name="username" class="form-input" 
                               value="<?php echo htmlspecialchars($_POST['username'] ?? ''); ?>" 
                               required autocomplete="username">
                        <small>Only letters, numbers, and underscore allowed. Minimum 3 characters.</small>
                    </div>
                    
                    <div class="form-group">
                        <label for="password" class="form-label">Password</label>
                        <input type="password" id="password" name="password" class="form-input" 
                               required autocomplete="new-password">
                        <small>Minimum 6 characters required.</small>
                        <div id="password-strength" style="font-size: 0.8rem; margin-top: 0.25rem;"></div>
                    </div>
                    
                    <div class="form-group">
                        <label for="confirm_password" class="form-label">Confirm Password</label>
                        <input type="password" id="confirm_password" name="confirm_password" class="form-input" 
                               required autocomplete="new-password">
                    </div>
                    
                    <button type="submit" class="btn btn-primary btn-full">Create Admin User</button>
                </form>
            <?php endif; ?>
        </div>
    </div>
    
    <script src="js/script.js"></script>
</body>
</html>
-------------------- END OF FILE --------------------

### FILE 14: users.php
- Type: PHP
- Size: 9.41 KB
- Path: .
- Name: users.php
------------------------------------------------------------
<?php
require_once 'auth.php';
$auth->requireAdmin(); // Only admin can access this page

$page_title = 'Users Management';
$success_message = '';
$error_message = '';

// Handle form submissions
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    if (isset($_POST['action'])) {
        switch ($_POST['action']) {
            case 'create_user':
                $full_name = trim($_POST['full_name'] ?? '');
                $phone = trim($_POST['phone'] ?? '');
                $username = trim($_POST['username'] ?? '');
                $password = $_POST['password'] ?? '';
                $role = $_POST['role'] ?? 'manager';
                
                // Validation
                if (empty($full_name) || empty($phone) || empty($username) || empty($password)) {
                    $error_message = 'All fields are required.';
                } elseif (strlen($password) < 6) {
                    $error_message = 'Password must be at least 6 characters long.';
                } elseif (!preg_match('/^[0-9+\-\s]{10,15}$/', $phone)) {
                    $error_message = 'Please enter a valid phone number.';
                } elseif (!preg_match('/^[a-zA-Z0-9_]{3,}$/', $username)) {
                    $error_message = 'Username must be at least 3 characters and contain only letters, numbers, and underscore.';
                } else {
                    try {
                        // Check if username already exists
                        $stmt = $pdo->prepare("SELECT id FROM users WHERE username = ?");
                        $stmt->execute([$username]);
                        if ($stmt->fetch()) {
                            $error_message = 'Username already exists.';
                        } else {
                            // Create new user
                            $hashed_password = password_hash($password, PASSWORD_DEFAULT);
                            $stmt = $pdo->prepare("INSERT INTO users (full_name, phone, username, password, role) VALUES (?, ?, ?, ?, ?)");
                            if ($stmt->execute([$full_name, $phone, $username, $hashed_password, $role])) {
                                $_SESSION['success_message'] = 'User created successfully.';
                                header("Location: users.php");
                                exit();
                            } else {
                                $error_message = 'Failed to create user.';
                            }
                        }
                    } catch (PDOException $e) {
                        $error_message = 'Database error: ' . $e->getMessage();
                    }
                }
                break;
                
            case 'toggle_status':
                $user_id = $_POST['user_id'] ?? 0;
                $new_status = $_POST['status'] ?? 'active';
                
                try {
                    $stmt = $pdo->prepare("UPDATE users SET status = ? WHERE id = ? AND id != ?");
                    if ($stmt->execute([$new_status, $user_id, $_SESSION['user_id']])) {
                        $_SESSION['success_message'] = 'User status updated successfully.';
                    } else {
                        $_SESSION['error_message'] = 'Failed to update user status.';
                    }
                } catch (PDOException $e) {
                    $_SESSION['error_message'] = 'Database error.';
                }
                header("Location: users.php");
                exit();
                break;
        }
    }
}

// Fetch all users
try {
    $stmt = $pdo->prepare("SELECT id, full_name, phone, username, role, status, created_at FROM users ORDER BY created_at DESC");
    $stmt->execute();
    $users = $stmt->fetchAll(PDO::FETCH_ASSOC);
} catch (PDOException $e) {
    $users = [];
    $error_message = 'Failed to fetch users.';
}

include 'includes/header.php';
?>

<div class="page-header">
    <h1 class="page-title">Users Management</h1>
    <p class="page-subtitle">Manage system users and their permissions</p>
</div>

<?php if ($error_message): ?>
    <div class="alert alert-error"><?php echo htmlspecialchars($error_message); ?></div>
<?php endif; ?>

<div class="card">
    <div class="card-header">
        <h2 class="card-title">Create New User</h2>
    </div>
    
    <form method="POST" action="">
        <input type="hidden" name="action" value="create_user">
        
        <div class="form-group">
            <label for="full_name" class="form-label">Full Name</label>
            <input type="text" id="full_name" name="full_name" class="form-input" 
                   value="<?php echo htmlspecialchars($_POST['full_name'] ?? ''); ?>" 
                   required>
        </div>
        
        <div class="form-group">
            <label for="phone" class="form-label">Phone Number</label>
            <input type="tel" id="phone" name="phone" class="form-input" 
                   value="<?php echo htmlspecialchars($_POST['phone'] ?? ''); ?>" 
                   required>
        </div>
        
        <div class="form-group">
            <label for="username" class="form-label">Username</label>
            <input type="text" id="username" name="username" class="form-input" 
                   value="<?php echo htmlspecialchars($_POST['username'] ?? ''); ?>" 
                   required>
        </div>
        
        <div class="form-group">
            <label for="password" class="form-label">Password</label>
            <input type="password" id="password" name="password" class="form-input" required>
            <div id="password-strength" style="font-size: 0.8rem; margin-top: 0.25rem;"></div>
        </div>
        
        <div class="form-group">
            <label for="role" class="form-label">Role</label>
            <select id="role" name="role" class="form-select" required>
                <option value="manager">Manager</option>
                <option value="admin">Admin</option>
            </select>
        </div>
        
        <button type="submit" class="btn btn-primary">Create User</button>
    </form>
</div>

<div class="card">
    <div class="card-header">
        <h2 class="card-title">Existing Users</h2>
    </div>
    
    <?php if (empty($users)): ?>
        <div class="empty-state">
            <h3>No Users Found</h3>
            <p>Create your first user using the form above.</p>
        </div>
    <?php else: ?>
        <div class="table-container">
            <table class="table">
                <thead>
                    <tr>
                        <th>Name</th>
                        <th>Username</th>
                        <th>Phone</th>
                        <th>Role</th>
                        <th>Status</th>
                        <th>Created</th>
                        <th>Actions</th>
                    </tr>
                </thead>
                <tbody>
                    <?php foreach ($users as $user): ?>
                        <tr>
                            <td><?php echo htmlspecialchars($user['full_name']); ?></td>
                            <td><?php echo htmlspecialchars($user['username']); ?></td>
                            <td><?php echo htmlspecialchars($user['phone']); ?></td>
                            <td>
                                <span style="color: <?php echo $user['role'] == 'admin' ? 'var(--error)' : 'var(--dark-navy)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($user['role'])); ?>
                                </span>
                            </td>
                            <td>
                                <span style="color: <?php echo $user['status'] == 'active' ? 'var(--success)' : 'var(--error)'; ?>">
                                    <?php echo ucfirst(htmlspecialchars($user['status'])); ?>
                                </span>
                            </td>
                            <td><?php echo date('M j, Y', strtotime($user['created_at'])); ?></td>
                            <td>
                                <?php if ($user['id'] != $_SESSION['user_id']): ?>
                                    <form method="POST" style="display: inline;">
                                        <input type="hidden" name="action" value="toggle_status">
                                        <input type="hidden" name="user_id" value="<?php echo $user['id']; ?>">
                                        <input type="hidden" name="status" value="<?php echo $user['status'] == 'active' ? 'inactive' : 'active'; ?>">
                                        <button type="submit" class="btn <?php echo $user['status'] == 'active' ? 'btn-danger' : 'btn-success'; ?>" 
                                                style="padding: 0.3rem 0.8rem; font-size: 0.7rem;"
                                                data-confirm="Are you sure you want to <?php echo $user['status'] == 'active' ? 'deactivate' : 'activate'; ?> this user?">
                                            <?php echo $user['status'] == 'active' ? 'Deactivate' : 'Activate'; ?>
                                        </button>
                                    </form>
                                <?php else: ?>
                                    <span style="color: var(--dark-gray); font-size: 0.8rem;">Current User</span>
                                <?php endif; ?>
                            </td>
                        </tr>
                    <?php endforeach; ?>
                </tbody>
            </table>
        </div>
    <?php endif; ?>
</div>

<?php include 'includes/footer.php'; ?>
-------------------- END OF FILE --------------------

### FILE 15: config/database.php
- Type: PHP
- Size: 967 B
- Path: config
- Name: database.php
------------------------------------------------------------
<?php
// Database configuration
define('DB_HOST', 'localhost');
define('DB_NAME', 'u752449863_kastore');
define('DB_USER', 'u752449863_kaadmin');
define('DB_PASS', 'S@n@h2016'); // Replace with your actual password

class Database {
    private $host = DB_HOST;
    private $db_name = DB_NAME;
    private $username = DB_USER;
    private $password = DB_PASS;
    private $conn = null;

    public function getConnection() {
        try {
            $this->conn = new PDO(
                "mysql:host=" . $this->host . ";dbname=" . $this->db_name . ";charset=utf8mb4",
                $this->username,
                $this->password,
                array(PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION)
            );
        } catch(PDOException $exception) {
            die("Connection error: " . $exception->getMessage());
        }
        return $this->conn;
    }
}

// Create database instance
$database = new Database();
$pdo = $database->getConnection();
?>
-------------------- END OF FILE --------------------

### FILE 16: css/style.css
- Type: CSS
- Size: 10.79 KB
- Path: css
- Name: style.css
------------------------------------------------------------
/* CSS Variables for Colors */
:root {
    --primary-yellow: #FFD700;
    --dark-navy: #1a237e;
    --light-navy: #3949ab;
    --white: #ffffff;
    --light-gray: #f5f5f5;
    --dark-gray: #666666;
    --success: #4caf50;
    --error: #f44336;
    --warning: #ff9800;
    --shadow: rgba(26, 35, 126, 0.1);
}

/* Utility Classes */
.text-center { text-align: center; }
.text-right { text-align: right; }
.mb-1 { margin-bottom: 0.5rem; }
.mb-2 { margin-bottom: 1rem; }
.mb-3 { margin-bottom: 1.5rem; }
.mt-1 { margin-top: 0.5rem; }
.mt-2 { margin-top: 1rem; }
.mt-3 { margin-top: 1.5rem; }
.d-none { display: none; }
.d-block { display: block; }
.d-flex { display: flex; }
.justify-between { justify-content: space-between; }
.align-center { align-items: center; }
.gap-1 { gap: 0.5rem; }
.gap-2 { gap: 1rem; }

/* Reset and Base Styles */
* {
    margin: 0;
    padding: 0;
    box-sizing: border-box;
}

html {
    scroll-behavior: smooth;
}

body {
    font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, sans-serif;
    line-height: 1.6;
    color: var(--dark-navy);
    background-color: var(--light-gray);
    min-height: 100vh;
    display: flex;
    flex-direction: column;
}

/* Header Styles */
.header {
    background: linear-gradient(135deg, var(--dark-navy) 0%, var(--light-navy) 100%);
    color: var(--white);
    padding: 1rem;
    box-shadow: 0 2px 10px var(--shadow);
    position: sticky;
    top: 0;
    z-index: 100;
}

.header-content {
    display: flex;
    justify-content: space-between;
    align-items: center;
    max-width: 1200px;
    margin: 0 auto;
}

.logo {
    font-size: 1.5rem;
    font-weight: 700;
    color: var(--primary-yellow);
    text-decoration: none;
}

.user-info {
    display: flex;
    align-items: center;
    gap: 1rem;
}

.user-name {
    font-weight: 500;
    font-size: 0.9rem;
}

.logout-btn {
    background: var(--primary-yellow);
    color: var(--dark-navy);
    border: none;
    padding: 0.5rem 1rem;
    border-radius: 5px;
    font-weight: 600;
    cursor: pointer;
    transition: all 0.3s ease;
    text-decoration: none;
    font-size: 0.8rem;
}

.logout-btn:hover {
    background: #ffed4e;
    transform: translateY(-1px);
}

/* Navigation */
.nav-container {
    background: var(--white);
    padding: 1rem;
    box-shadow: 0 2px 5px var(--shadow);
    margin-bottom: 1rem;
}

.nav-menu {
    display: grid;
    grid-template-columns: repeat(auto-fit, minmax(120px, 1fr));
    gap: 0.5rem;
    max-width: 1200px;
    margin: 0 auto;
}

.nav-item {
    display: block;
    text-align: center;
    padding: 0.8rem 0.5rem;
    background: var(--light-gray);
    color: var(--dark-navy);
    text-decoration: none;
    border-radius: 8px;
    font-weight: 500;
    font-size: 0.85rem;
    transition: all 0.3s ease;
    border: 2px solid transparent;
}

.nav-item:hover,
.nav-item.active {
    background: var(--primary-yellow);
    color: var(--dark-navy);
    border-color: var(--dark-navy);
    transform: translateY(-2px);
}

/* Main Content */
.main-content {
    flex: 1;
    max-width: 1200px;
    margin: 0 auto;
    width: 100%;
    padding: 0 1rem;
}

.page-header {
    margin-bottom: 2rem;
    text-align: center;
}

.page-title {
    font-size: 2rem;
    color: var(--dark-navy);
    margin-bottom: 0.5rem;
}

.page-subtitle {
    color: var(--dark-gray);
    font-size: 1rem;
}

/* Cards */
.card {
    background: var(--white);
    border-radius: 10px;
    padding: 1.5rem;
    margin-bottom: 1.5rem;
    box-shadow: 0 4px 15px var(--shadow);
    border: 1px solid #e0e0e0;
}

.card-header {
    border-bottom: 2px solid var(--primary-yellow);
    padding-bottom: 0.5rem;
    margin-bottom: 1rem;
}

.card-title {
    color: var(--dark-navy);
    font-size: 1.2rem;
    font-weight: 600;
}

/* Forms */
.form-group {
    margin-bottom: 1.5rem;
}

.form-label {
    display: block;
    margin-bottom: 0.5rem;
    font-weight: 600;
    color: var(--dark-navy);
    font-size: 0.9rem;
}

.form-input,
.form-select,
.form-textarea {
    width: 100%;
    padding: 0.8rem;
    border: 2px solid #e0e0e0;
    border-radius: 8px;
    font-size: 1rem;
    transition: all 0.3s ease;
    background: var(--white);
}

.form-input:focus,
.form-select:focus,
.form-textarea:focus {
    outline: none;
    border-color: var(--primary-yellow);
    box-shadow: 0 0 0 3px rgba(255, 215, 0, 0.1);
}

.form-textarea {
    resize: vertical;
    min-height: 100px;
}

/* Buttons */
.btn {
    display: inline-block;
    padding: 0.8rem 1.5rem;
    border: none;
    border-radius: 8px;
    font-weight: 600;
    cursor: pointer;
    transition: all 0.3s ease;
    text-decoration: none;
    font-size: 0.9rem;
    text-align: center;
    min-width: 100px;
}

.btn-primary {
    background: var(--dark-navy);
    color: var(--white);
}

.btn-primary:hover {
    background: var(--light-navy);
    transform: translateY(-1px);
}

.btn-secondary {
    background: var(--primary-yellow);
    color: var(--dark-navy);
}

.btn-secondary:hover {
    background: #ffed4e;
    transform: translateY(-1px);
}

.btn-success {
    background: var(--success);
    color: var(--white);
}

.btn-danger {
    background: var(--error);
    color: var(--white);
}

.btn-full {
    width: 100%;
}

/* Tables */
.table-container {
    overflow-x: auto;
    margin-bottom: 1rem;
}

.table {
    width: 100%;
    border-collapse: collapse;
    background: var(--white);
    border-radius: 8px;
    overflow: hidden;
    box-shadow: 0 2px 10px var(--shadow);
}

.table th,
.table td {
    padding: 1rem;
    text-align: left;
    border-bottom: 1px solid #e0e0e0;
}

.table th {
    background: var(--dark-navy);
    color: var(--white);
    font-weight: 600;
    font-size: 0.9rem;
}

.table tr:hover {
    background: #f9f9f9;
}

/* Alerts */
.alert {
    padding: 1rem;
    border-radius: 8px;
    margin-bottom: 1rem;
    font-weight: 500;
    border-left: 4px solid;
}

.alert-success {
    background: #e8f5e8;
    color: #2d5932;
    border-left-color: var(--success);
}

.alert-error {
    background: #fdeaea;
    color: #721c24;
    border-left-color: var(--error);
}

.alert-warning {
    background: #fff8e1;
    color: #663c00;
    border-left-color: var(--warning);
}

/* Loading Spinner */
.loading {
    display: inline-block;
    width: 20px;
    height: 20px;
    border: 3px solid #f3f3f3;
    border-top: 3px solid var(--primary-yellow);
    border-radius: 50%;
    animation: spin 1s linear infinite;
}

@keyframes spin {
    0% { transform: rotate(0deg); }
    100% { transform: rotate(360deg); }
}

/* Footer */
.footer {
    background: var(--dark-navy);
    color: var(--white);
    text-align: center;
    padding: 1rem;
    margin-top: auto;
}

/* Login Page Specific */
.login-container {
    min-height: 100vh;
    display: flex;
    align-items: center;
    justify-content: center;
    background: linear-gradient(135deg, var(--dark-navy) 0%, var(--light-navy) 100%);
    padding: 1rem;
}

.login-card {
    background: var(--white);
    padding: 2rem;
    border-radius: 15px;
    box-shadow: 0 10px 30px rgba(0, 0, 0, 0.2);
    width: 100%;
    max-width: 400px;
}

.login-logo {
    text-align: center;
    margin-bottom: 2rem;
}

.login-logo h1 {
    color: var(--dark-navy);
    font-size: 2rem;
    margin-bottom: 0.5rem;
}

.login-logo p {
    color: var(--dark-gray);
    font-size: 0.9rem;
}

/* Dashboard Grid */
.dashboard-grid {
    display: grid;
    grid-template-columns: repeat(auto-fit, minmax(250px, 1fr));
    gap: 1.5rem;
    margin-bottom: 2rem;
}

.stat-card {
    background: linear-gradient(135deg, var(--primary-yellow) 0%, #ffed4e 100%);
    color: var(--dark-navy);
    padding: 1.5rem;
    border-radius: 15px;
    text-align: center;
    box-shadow: 0 5px 15px rgba(255, 215, 0, 0.3);
    transition: transform 0.3s ease;
}

.stat-card:hover {
    transform: translateY(-2px);
}

.stat-number {
    font-size: 2rem;
    font-weight: 700;
    margin-bottom: 0.5rem;
}

.stat-label {
    font-weight: 600;
    opacity: 0.8;
}

/* Empty State */
.empty-state {
    text-align: center;
    padding: 3rem 1rem;
    color: var(--dark-gray);
}

.empty-state h3 {
    margin-bottom: 1rem;
    color: var(--dark-navy);
}

/* Mobile Responsive */
@media (max-width: 768px) {
    .header-content {
        flex-direction: column;
        gap: 0.5rem;
    }

    .user-info {
        justify-content: center;
    }

    .nav-menu {
        grid-template-columns: repeat(2, 1fr);
    }

    .page-title {
        font-size: 1.5rem;
    }

    .card {
        padding: 1rem;
    }

    .table th,
    .table td {
        padding: 0.5rem;
        font-size: 0.8rem;
    }

    .btn {
        padding: 0.7rem 1rem;
        font-size: 0.8rem;
    }
}

@media (max-width: 480px) {
    .nav-menu {
        grid-template-columns: 1fr;
    }
    
    .dashboard-grid {
        grid-template-columns: 1fr;
    }
}

/* Sales Line Items Styling */
.line-item-form {
    background: var(--light-gray);
    padding: 1rem;
    border-radius: 8px;
    margin-bottom: 1rem;
}

.line-items-table {
    margin-top: 1rem;
}

.line-items-table .table tfoot td {
    background: linear-gradient(135deg, var(--primary-yellow) 0%, #ffed4e 100%);
    color: var(--dark-navy);
    font-weight: 700;
    border-top: 3px solid var(--dark-navy);
}

.bill-section-divider {
    border-bottom: 2px solid var(--light-gray);
    padding-bottom: 1rem;
    margin-bottom: 2rem;
}

.payment-section-divider {
    border-top: 2px solid var(--light-gray);
    padding-top: 1rem;
    margin-top: 2rem;
}

/* Editable line total inputs */
.line-total-input {
    width: 100px;
    display: inline-block;
    padding: 0.4rem;
    font-size: 0.9rem;
    border: 2px solid var(--primary-yellow);
    border-radius: 4px;
    font-weight: bold;
}

.line-total-input:focus {
    outline: none;
    border-color: var(--dark-navy);
    box-shadow: 0 0 0 2px rgba(26, 35, 126, 0.1);
}

/* Sales history improvements */
.sales-item-details {
    font-size: 0.85rem;
    line-height: 1.3;
}

.sales-item-details > div {
    margin-bottom: 0.25rem;
    padding: 0.25rem 0;
    border-bottom: 1px dotted #e0e0e0;
}

.sales-item-details > div:last-child {
    border-bottom: none;
    margin-bottom: 0;
}

/* Button group for actions */
.btn-group {
    display: flex;
    gap: 0.5rem;
    flex-wrap: wrap;
}

@media (max-width: 768px) {
    .btn-group {
        flex-direction: column;
    }
    
    .line-total-input {
        width: 80px;
        font-size: 0.8rem;
    }
    
    .sales-item-details {
        font-size: 0.8rem;
    }
}
.text-right { text-align: right; }
.mb-1 { margin-bottom: 0.5rem; }
.mb-2 { margin-bottom: 1rem; }
.mb-3 { margin-bottom: 1.5rem; }
.mt-1 { margin-top: 0.5rem; }
.mt-2 { margin-top: 1rem; }
.mt-3 { margin-top: 1.5rem; }
.d-none { display: none; }
.d-block { display: block; }
.d-flex { display: flex; }
.justify-between { justify-content: space-between; }
.align-center { align-items: center; }
.gap-1 { gap: 0.5rem; }
.gap-2 { gap: 1rem; }
-------------------- END OF FILE --------------------

### FILE 17: includes/footer.php
- Type: PHP
- Size: 230 B
- Path: includes
- Name: footer.php
------------------------------------------------------------
</main>
    
    <footer class="footer">
        <p>&copy; <?php echo date('Y'); ?> Kayal Aqua. All rights reserved. | Fish Business Management System</p>
    </footer>
    
    <script src="js/script.js"></script>
</body>
</html>
-------------------- END OF FILE --------------------

### FILE 18: includes/header.php
- Type: PHP
- Size: 3.1 KB
- Path: includes
- Name: header.php
------------------------------------------------------------
<?php
// Check if user is logged in
if (!$auth->isLoggedIn() && basename($_SERVER['PHP_SELF']) !== 'login.php' && basename($_SERVER['PHP_SELF']) !== 'setup.php') {
    header("Location: login.php");
    exit();
}

// Get current page for navigation highlighting
$current_page = basename($_SERVER['PHP_SELF']);
?>
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title><?php echo isset($page_title) ? $page_title . ' - ' : ''; ?>Kayal Aqua Management</title>
    <link rel="stylesheet" href="css/style.css">
    <meta name="description" content="Kayal Aqua Fish Business Management System">
    <meta name="author" content="Kayal Aqua">
    <link rel="icon" type="image/x-icon" href="assets/favicon.ico">
</head>
<body>
    <?php if ($auth->isLoggedIn()): ?>
    <header class="header">
        <div class="header-content">
            <a href="index.php" class="logo">Kayal Aqua</a>
            <div class="user-info">
                <span class="user-name">Welcome, <?php echo htmlspecialchars($auth->getUserName()); ?></span>
                <a href="logout.php" class="logout-btn">Logout</a>
            </div>
        </div>
    </header>

    <nav class="nav-container">
        <div class="nav-menu">
            <a href="index.php" class="nav-item <?php echo $current_page == 'index.php' ? 'active' : ''; ?>">
                Dashboard
            </a>
            <?php if ($auth->getUserRole() == 'admin'): ?>
            <a href="users.php" class="nav-item <?php echo $current_page == 'users.php' ? 'active' : ''; ?>">
                Users
            </a>
            <?php endif; ?>
            <a href="sales.php" class="nav-item <?php echo $current_page == 'sales.php' ? 'active' : ''; ?>">
                Sales
            </a>
            <a href="expenses.php" class="nav-item <?php echo $current_page == 'expenses.php' ? 'active' : ''; ?>">
                Expenses
            </a>
            <a href="finance.php" class="nav-item <?php echo $current_page == 'finance.php' || $current_page == 'loan_calculator.php' ? 'active' : ''; ?>">
                Finance
            </a>
            <a href="settings.php" class="nav-item <?php echo $current_page == 'settings.php' ? 'active' : ''; ?>">
                Settings
            </a>
        </div>
    </nav>
    <?php endif; ?>

    <main class="main-content">
        <?php
        // Display session messages
        if (isset($_SESSION['success_message'])) {
            echo '<div class="alert alert-success">' . htmlspecialchars($_SESSION['success_message']) . '</div>';
            unset($_SESSION['success_message']);
        }
        
        if (isset($_SESSION['error_message'])) {
            echo '<div class="alert alert-error">' . htmlspecialchars($_SESSION['error_message']) . '</div>';
            unset($_SESSION['error_message']);
        }
        
        if (isset($_SESSION['warning_message'])) {
            echo '<div class="alert alert-warning">' . htmlspecialchars($_SESSION['warning_message']) . '</div>';
            unset($_SESSION['warning_message']);
        }
        ?>
-------------------- END OF FILE --------------------

### FILE 19: js/script.js
- Type: JS
- Size: 11.08 KB
- Path: js
- Name: script.js
------------------------------------------------------------
// Main JavaScript functions for Kayal Aqua Management System
document.addEventListener('DOMContentLoaded', function() {
    
    // Initialize the app
    initializeApp();
    
    // Auto-hide alerts after 5 seconds
    setTimeout(hideAlerts, 5000);
    
    // Add loading states to forms
    setupFormLoading();
    
    // Setup mobile menu if exists
    setupMobileMenu();
}

// Global error handler
window.addEventListener('error', function(e) {
    console.error('JavaScript error:', e.error);
    // Could implement error reporting here
});

// Global unhandled promise rejection handler
window.addEventListener('unhandledrejection', function(e) {
    console.error('Unhandled promise rejection:', e.reason);
    // Could implement error reporting here
    e.preventDefault();
}););

// Initialize application
function initializeApp() {
    // Set active navigation item
    setActiveNavigation();
    
    // Setup form validations
    setupFormValidations();
    
    // Setup confirmation dialogs
    setupConfirmations();
    
    // Handle anchor scrolling for edit forms
    handleEditFormScrolling();
}

// Set active navigation item based on current page
function setActiveNavigation() {
    const currentPage = window.location.pathname.split('/').pop() || 'index.php';
    const navItems = document.querySelectorAll('.nav-item');
    
    navItems.forEach(item => {
        const href = item.getAttribute('href');
        if (href === currentPage || (currentPage === '' && href === 'index.php')) {
            item.classList.add('active');
        } else {
            item.classList.remove('active');
        }
    });
}

// Auto-hide alert messages
function hideAlerts() {
    const alerts = document.querySelectorAll('.alert');
    alerts.forEach(alert => {
        alert.style.transition = 'opacity 0.5s ease-out';
        alert.style.opacity = '0';
        setTimeout(() => {
            if (alert.parentNode) {
                alert.parentNode.removeChild(alert);
            }
        }, 500);
    });
}

// Show alert message
function showAlert(message, type = 'success') {
    const alertDiv = document.createElement('div');
    alertDiv.className = `alert alert-${type}`;
    alertDiv.textContent = message;
    
    const mainContent = document.querySelector('.main-content');
    if (mainContent) {
        mainContent.insertBefore(alertDiv, mainContent.firstChild);
    }
    
    // Auto-hide after 5 seconds
    setTimeout(() => {
        hideAlert(alertDiv);
    }, 5000);
}

// Hide specific alert
function hideAlert(alertElement) {
    alertElement.style.transition = 'opacity 0.5s ease-out';
    alertElement.style.opacity = '0';
    setTimeout(() => {
        if (alertElement.parentNode) {
            alertElement.parentNode.removeChild(alertElement);
        }
    }, 500);
}

// Setup form loading states
function setupFormLoading() {
    const forms = document.querySelectorAll('form');
    
    forms.forEach(form => {
        form.addEventListener('submit', function(e) {
            const submitBtn = form.querySelector('button[type="submit"], input[type="submit"]');
            if (submitBtn) {
                const originalText = submitBtn.textContent || submitBtn.value;
                submitBtn.disabled = true;
                
                if (submitBtn.tagName === 'BUTTON') {
                    submitBtn.innerHTML = '<span class="loading"></span> ' + originalText;
                } else {
                    submitBtn.value = 'Processing...';
                }
                
                // Re-enable after 10 seconds as fallback
                setTimeout(() => {
                    submitBtn.disabled = false;
                    if (submitBtn.tagName === 'BUTTON') {
                        submitBtn.textContent = originalText;
                    } else {
                        submitBtn.value = originalText;
                    }
                }, 10000);
            }
        });
    });
}

// Setup form validations
function setupFormValidations() {
    // Phone number validation
    const phoneInputs = document.querySelectorAll('input[name="phone"]');
    phoneInputs.forEach(input => {
        input.addEventListener('input', function() {
            this.value = this.value.replace(/[^0-9+\-\s]/g, '');
        });
        
        input.addEventListener('blur', function() {
            if (this.value && !isValidPhone(this.value)) {
                showAlert('Please enter a valid phone number', 'error');
                this.focus();
            }
        });
    });
    
    // Username validation
    const usernameInputs = document.querySelectorAll('input[name="username"]');
    usernameInputs.forEach(input => {
        input.addEventListener('input', function() {
            this.value = this.value.replace(/[^a-zA-Z0-9_]/g, '').toLowerCase();
        });
    });
    
    // Password strength indicator
    const passwordInputs = document.querySelectorAll('input[name="password"]');
    passwordInputs.forEach(input => {
        input.addEventListener('input', function() {
            checkPasswordStrength(this);
        });
    });
}

// Validate phone number
function isValidPhone(phone) {
    const phoneRegex = /^[\+]?[0-9\-\s]{10,15}$/;
    return phoneRegex.test(phone.replace(/\s/g, ''));
}

// Check password strength
function checkPasswordStrength(passwordInput) {
    const password = passwordInput.value;
    const strengthIndicator = document.getElementById('password-strength');
    
    if (!strengthIndicator) return;
    
    let strength = 0;
    let message = '';
    let color = '';
    
    if (password.length >= 8) strength++;
    if (/[a-z]/.test(password)) strength++;
    if (/[A-Z]/.test(password)) strength++;
    if (/[0-9]/.test(password)) strength++;
    if (/[^A-Za-z0-9]/.test(password)) strength++;
    
    switch (strength) {
        case 0:
        case 1:
            message = 'Very Weak';
            color = '#f44336';
            break;
        case 2:
            message = 'Weak';
            color = '#ff9800';
            break;
        case 3:
            message = 'Fair';
            color = '#ffeb3b';
            break;
        case 4:
            message = 'Good';
            color = '#4caf50';
            break;
        case 5:
            message = 'Strong';
            color = '#2e7d32';
            break;
    }
    
    strengthIndicator.textContent = message;
    strengthIndicator.style.color = color;
}

// Setup confirmation dialogs
function setupConfirmations() {
    const deleteButtons = document.querySelectorAll('.btn-danger, [data-confirm]');
    
    deleteButtons.forEach(button => {
        button.addEventListener('click', function(e) {
            const message = this.dataset.confirm || 'Are you sure you want to perform this action?';
            if (!confirm(message)) {
                e.preventDefault();
                return false;
            }
        });
    });
}

// Setup mobile menu (if needed for future mobile navigation)
function setupMobileMenu() {
    const mobileMenuToggle = document.querySelector('.mobile-menu-toggle');
    const navMenu = document.querySelector('.nav-menu');
    
    if (mobileMenuToggle && navMenu) {
        mobileMenuToggle.addEventListener('click', function() {
            navMenu.classList.toggle('show');
        });
    }
}

// Utility function to format currency
function formatCurrency(amount) {
    return '₹' + parseFloat(amount).toLocaleString('en-IN', {
        minimumFractionDigits: 2,
        maximumFractionDigits: 2
    });
}

// Utility function to format date
function formatDate(dateString) {
    const date = new Date(dateString);
    return date.toLocaleDateString('en-IN', {
        year: 'numeric',
        month: 'short',
        day: 'numeric'
    });
}

// Utility function to validate email
function isValidEmail(email) {
    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
    return emailRegex.test(email);
}

// Utility function to show loading state
function showLoading(element) {
    element.disabled = true;
    element.innerHTML = '<span class="loading"></span> ' + element.textContent;
}

// Utility function to hide loading state
function hideLoading(element, originalText) {
    element.disabled = false;
    element.textContent = originalText;
}

// Function to handle AJAX requests
function makeRequest(url, method = 'GET', data = null) {
    return new Promise((resolve, reject) => {
        const xhr = new XMLHttpRequest();
        xhr.open(method, url, true);
        
        if (method === 'POST') {
            xhr.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded');
        }
        
        xhr.onreadystatechange = function() {
            if (xhr.readyState === 4) {
                if (xhr.status === 200) {
                    try {
                        const response = JSON.parse(xhr.responseText);
                        resolve(response);
                    } catch (e) {
                        resolve(xhr.responseText);
                    }
                } else {
                    reject(new Error('Request failed: ' + xhr.status));
                }
            }
        };
        
        xhr.send(data);
    });
}

// Global error handler
window.addEventListener('error', function(e) {
    console.error('JavaScript error:', e.error);
    // Could implement error reporting here
});

// Handle anchor scrolling for edit forms in settings page
function handleEditFormScrolling() {
    // Check if we're on settings page and have edit parameters
    const currentPage = window.location.pathname.split('/').pop();
    const urlParams = new URLSearchParams(window.location.search);
    
    if (currentPage === 'settings.php' || currentPage === '') {
        let targetSection = null;
        
        // Determine which section to scroll to based on URL parameters
        if (urlParams.has('edit_unit')) {
            targetSection = 'units-section';
        } else if (urlParams.has('edit_category')) {
            targetSection = 'categories-section';
        } else if (urlParams.has('edit_subcategory')) {
            targetSection = 'subcategories-section';
        } else if (urlParams.has('edit_ps')) {
            targetSection = 'products-section';
        }
        
        // Also check for hash in URL
        if (window.location.hash) {
            const hashSection = window.location.hash.substring(1);
            if (document.getElementById(hashSection)) {
                targetSection = hashSection;
            }
        }
        
        // Scroll to the target section if found
        if (targetSection) {
            setTimeout(() => {
                const element = document.getElementById(targetSection);
                if (element) {
                    element.scrollIntoView({
                        behavior: 'smooth',
                        block: 'start'
                    });
                    
                    // Add a subtle highlight effect
                    element.style.transition = 'background-color 0.3s ease';
                    element.style.backgroundColor = 'rgba(255, 215, 0, 0.1)';
                    setTimeout(() => {
                        element.style.backgroundColor = '';
                    }, 2000);
                }
            }, 100);
        }
    }
}
-------------------- END OF FILE --------------------


================================================================================
## SUMMARY
================================================================================

Repository contains 19 files total.
All file contents have been extracted and are shown above.
This repository snapshot was generated on: 2025-10-26 19:05:39

================================================================================
## END OF REPOSITORY
================================================================================