Changeset 3371202

Timestamp:

10/01/2025 03:23:44 PM (5 months ago)

Author:

philiasolutions

Message:

• Bugs fixes and improvements
• Supports Multi-Vendor & Multi-Inventory (Dokan)

Location:

philia-integration

Files:

• tags/1.8.1/readme.txt (deleted)
• tags/1.9 (added)
• tags/1.9/assets (added)
• tags/1.9/assets/philia-api-settings.js (added)
• tags/1.9/assets/philia-api-sync.js (added)
• tags/1.9/assets/philia-cashier-fields.js (added)
• tags/1.9/includes (added)
• tags/1.9/includes/cashier (added)
• tags/1.9/includes/cashier/class-cashier-fields.php (added)
• tags/1.9/includes/cashier/lib (added)
• tags/1.9/includes/cashier/lib/SimpleXLSX.php (added)
• tags/1.9/includes/cashier/lib/SimpleXLSXEx.php (added)
• tags/1.9/includes/cashier/rest-routes (added)
• tags/1.9/includes/cashier/rest-routes/class-cashier-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-coupon-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-customer-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-invoice-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-product-category-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-product-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-report-route.php (added)
• tags/1.9/includes/cashier/rest-routes/class-reward-route.php (added)
• tags/1.9/includes/class-api-log.php (added)
• tags/1.9/includes/class-api-settings.php (added)
• tags/1.9/includes/class-core-api.php (added)
• tags/1.9/includes/class-login-redirect.php (added)
• tags/1.9/includes/class-philia-wallet.php (added)
• tags/1.9/includes/class-webhook-sender.php (added)
• tags/1.9/includes/templates (added)
• tags/1.9/includes/templates/wc-endpoint-wallet.php (added)
• tags/1.9/includes/templates/woo-wallet-partial-payment.php (added)
• tags/1.9/philia-integration.php (added)
• tags/1.9/readme.txt (added)
• trunk/includes/cashier/class-cashier-fields.php (modified) (5 diffs)
• trunk/includes/cashier/rest-routes/class-cashier-route.php (modified) (7 diffs)
• trunk/includes/cashier/rest-routes/class-invoice-route.php (modified) (10 diffs)
• trunk/includes/cashier/rest-routes/class-product-route.php (modified) (24 diffs)
• trunk/includes/cashier/rest-routes/class-reward-route.php (modified) (2 diffs)
• trunk/philia-integration.php (modified) (2 diffs)
• trunk/readme.txt (modified) (2 diffs)

philia-integration/trunk/includes/cashier/class-cashier-fields.php

@@ -60 +60 @@
         // Enqueue necessary JavaScript for AJAX
         add_action( 'admin_enqueue_scripts', array( $this, 'enqueue_scripts' ) );
+
+        // hook for register new seller
+        add_action('user_register', array( $this, 'dokan_spmv_clone_all_products_for_new_seller' ), 10, 2);
     }
 
@@ -156 +159 @@
             'philia_cashier_fields_section',
             array( 'field_name' => 'login_image_url' )
+        );
+
+        add_settings_field(
+            'shop_type',
+            __( 'Shop Type', 'philia-integration' ),
+            array( $this, 'shop_type_callback' ),
+            'philia-cashier-fields',
+            'philia_cashier_fields_section'
         );
 
@@ -291 +302 @@
 
     /**
+     * Renders the Shop Type select field on the settings page.
+     *
+     * @return void Outputs the HTML for the shop type select field.
+     */
+    public function shop_type_callback()
+    {
+        $cashier_fields = get_option( 'philia_cashier_fields' );
+        $value = isset( $cashier_fields['shop_type'] ) ? $cashier_fields['shop_type'] : '';
+        ?>
+        <select name="philia_cashier_fields[shop_type]" id="shop-type-field">
+            <option value=""><?php esc_html_e( 'Select Shop Type', 'philia-integration' ); ?></option>
+            <option value="single-shop" <?php selected( $value, 'single-shop' ); ?>><?php esc_html_e( 'Single Shop', 'philia-integration' ); ?></option>
+            <option value="multi-vendor" <?php selected( $value, 'multi-vendor' ); ?>><?php esc_html_e( 'Multi Vendor', 'philia-integration' ); ?></option>
+            <option value="multi-inventory" <?php selected( $value, 'multi-inventory' ); ?>><?php esc_html_e( 'Multi Inventory', 'philia-integration' ); ?></option>
+        </select>
+        <?php
+    }
+
+    /**
      * Enqueues necessary JavaScript files for AJAX actions on the settings page.
      *
@@ -313 +343 @@
 
     /**
+     * Automatically clones all base products for a new seller upon registration.
+     *
+     * This function hooks into the 'user_register' action. When a new user
+     * with the 'seller' role is created, it iterates through all published
+     * products. For each product group (identified by map_id), it creates a
+     * clone for the new seller, ensuring they only get one copy from each
+     * unique product line and not from other sellers' clones.
+     *
+     * @param int   $user_id  The ID of the newly registered user.
+     * @param array $userdata The user data array.
+     */
+    public function dokan_spmv_clone_all_products_for_new_seller($user_id, $userdata)
+    {
+        // 1. Check if the new user is a seller.
+        if ($userdata['role'] != 'seller' ) {
+            return;
+        }
+
+        // 2. Ensure Dokan SPMV functionality is active.
+        if (!class_exists('Dokan_SPMV_Products') || !class_exists('WC_Admin_Duplicate_Product')) {
+            error_log('Dokan SPMV or WooCommerce is not active. Cloning process aborted for user ID: ' . $user_id);
+            return;
+        }
+
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+        if( $shop_type != 'multi-inventory' ) {
+            // skip if shop type equal multi-inventory
+            return;
+        }
+
+        global $wpdb;
+        $spmv_products_instance = new \Dokan_SPMV_Products();
+        $dokan_product_map_table = $wpdb->prefix . 'dokan_product_map';
+
+        // Get all administrator user IDs
+        $admins = get_users( array(
+            'role'   => 'administrator',
+            'fields' => 'ID',
+        ) );
+
+        // 3. Get all original, published products.
+        $args = array(
+            'post_type'      => 'product',
+            'posts_per_page' => -1,
+            'post_status'    => 'publish',
+            'author__in'     => $admins,
+        );
+
+        $all_products_query = new \WP_Query($args);
+
+        if (!$all_products_query->have_posts()) {
+            return;
+        }
+
+        // 4. Loop through each product and clone it for the new seller.
+        while ($all_products_query->have_posts()) {
+            $all_products_query->the_post();
+            $original_product_id = get_the_ID();
+            $original_product = wc_get_product($original_product_id);
+
+            if (!$original_product) {
+                continue;
+            }
+
+            // Get the map_id to identify the product group.
+            $map_id = get_post_meta($original_product_id, '_has_multi_vendor', true);
+
+            // 5. CRITICAL CHECK: If a map_id exists, check if this seller already has a product in this group.
+            // This prevents cloning from other sellers' clones and ensures uniqueness.
+            if ($map_id) {
+                $existing_clone_count = $wpdb->get_var($wpdb->prepare(
+                    "SELECT COUNT(*) FROM `{$dokan_product_map_table}` WHERE `map_id` = %d AND `seller_id` = %d",
+                    $map_id,
+                    $user_id
+                ));
+
+                if ($existing_clone_count > 0) {
+                    // This seller already has a version of this product, so skip to the next one.
+                    continue;
+                }
+            }
+
+            // A. Duplicate the product post.
+            $wc_duplicator = new \WC_Admin_Duplicate_Product();
+            $cloned_product = $wc_duplicator->product_duplicate($original_product);
+            $cloned_product_id = $cloned_product->get_id();
+
+            if (!$cloned_product_id) {
+                continue;
+            }
+
+            // B. Set the desired status for the new product.
+            $product_status = apply_filters('dokan_cloned_product_status', dokan_get_new_post_status());
+
+            // C. Manage the mapping ID.
+            $update_product_ids = [];
+            if (!$map_id) {
+                // This is the first time this product is being cloned, create a new map_id.
+                $map_id = $spmv_products_instance->get_next_map_id();
+                $update_product_ids[] = $original_product_id; // Add original product to the map.
+            }
+            $update_product_ids[] = $cloned_product_id; // Add the new clone to the map.
+
+            // D. Update the mapping table and product meta.
+            if ($spmv_products_instance->set_map_id($map_id, $update_product_ids)) {
+                update_post_meta($original_product_id, '_has_multi_vendor', $map_id);
+                update_post_meta($cloned_product_id, '_has_multi_vendor', $map_id);
+            }
+
+            // E. Update the cloned product's author and status.
+            wp_update_post(array(
+                'ID'          => $cloned_product_id,
+                'post_author' => $user_id,
+                'post_status' => $product_status,
+                'post_title'  => $original_product->get_title(), // Ensure title is consistent.
+            ));
+
+            // F. Update the status in the custom dokan map table as well.
+            $spmv_products_instance->update_product_status($cloned_product_id, $product_status);
+
+            // G. Fire the action hook for compatibility with other functions.
+            do_action('dokan_spmv_create_clone_product', $cloned_product_id, $original_product_id, $map_id);
+        }
+
+        wp_reset_postdata();
+    }
+
+    /**
      * Callback for the settings section description.
      *
@@ -358 +517 @@
         $sanitized_input['logo_url']        = isset( $input['logo_url'] ) ? esc_url_raw( $input['logo_url'] ) : '';
         $sanitized_input['login_image_url'] = isset( $input['login_image_url'] ) ? esc_url_raw( $input['login_image_url'] ) : '';
+        $sanitized_input['shop_type']   = isset( $input['shop_type'] ) ? sanitize_text_field( $input['shop_type'] ) : '';
         $sanitized_input['barcode_field']   = isset( $input['barcode_field'] ) ? sanitize_text_field( $input['barcode_field'] ) : '';
 

philia-integration/trunk/includes/cashier/rest-routes/class-cashier-route.php

@@ -44 +44 @@
 
         if( empty( $username ) || empty( $password ) ) {
-            return new \WP_REST_Response(['error' => 'username and password is required.'], 401);
+            return new \WP_REST_Response(['error' => esc_attr__('username and password is required.', 'philia-integration') ], 401);
         }
     
@@ -51 +51 @@
     
         if (is_wp_error($user)) {
-            return new \WP_REST_Response(['error' => 'Invalid username or password.'], 401);
+            return new \WP_REST_Response(['error' => esc_attr__('Invalid username or password.', 'philia-integration') ], 401);
         }
     
         // Check user role
-        if (!in_array('philia_cashier', $user->roles) && !in_array('administrator', $user->roles) && !in_array('shop_manager', $user->roles)) {
-            return new \WP_REST_Response(['error' => 'Unauthorized role.'], 403);
+        if (!in_array('seller', $user->roles) && !in_array('philia_woo_cashier', $user->roles) && !in_array('administrator', $user->roles) && !in_array('shop_manager', $user->roles)) {
+            return new \WP_REST_Response(['error' => esc_attr__('Unauthorized role.', 'philia-integration') ], 403);
         }
     
@@ -66 +66 @@
         set_transient('philia_access_token_' . $user->ID, $access_token, $expiration);
         set_transient('philia_access_token_expires_' . $user->ID, $expiration, $expiration);
-    
-        return new \WP_REST_Response(['access_token' => $access_token, 'expires_in' => time() + $expiration], 200);
+
+        // Get primary role (if multiple roles exist, take the first one)
+        $user_role = !empty($user->roles) ? $user->roles[0] : '';
+
+        // Return token, expiry, and role
+        return new \WP_REST_Response([
+            'access_token' => $access_token,
+            'expires_in'   => time() + $expiration,
+            'role'         => $user_role
+        ], 200);
     }
 
@@ -80 +88 @@
 
         if (!is_array($cashier_settings)) {
-            return new \WP_REST_Response(['error' => 'No cashier fields found.'], 404);
+            return new \WP_REST_Response(['error' => esc_attr__('No cashier fields found.', 'philia-integration') ], 404);
         }
 
@@ -100 +108 @@
         $final_cashier_fields['logo_url'] = $cashier_settings['logo_url'];
         $final_cashier_fields['login_image_url'] = $cashier_settings['login_image_url'];
+        $final_cashier_fields['shop_type'] = $cashier_settings['shop_type'];
         
         return new \WP_REST_Response($final_cashier_fields, 200);
@@ -138 +147 @@
         $user_query = new \WP_User_Query([
             'limit' => -1,
-            'role__in' => ['philia_woo_cashier', 'shop_manager', 'administrator']
+            'role__in' => ['philia_woo_cashier', 'shop_manager', 'administrator', 'seller']
         ]);
 
@@ -157 +166 @@
     }
 
+    /**
+     * Retrieves the user info by the access token if valid and not expired.
+     *
+     * @param \WP_REST_Request $request The REST API request object.
+     * @return \WP_User|false User object if token is valid, false otherwise.
+     */
+    public static function get_user_by_token(\WP_REST_Request $request)
+    {
+        $headers = $request->get_headers();
+        $auth_header = isset($headers['authorization']) ? $headers['authorization'][0] : '';
+
+        if (empty($auth_header) || strpos($auth_header, 'API-Key ') !== 0) {
+            return false;
+        }
+
+        $access_token = str_replace('API-Key ', '', $auth_header);
+        $user_id = self::get_user_id_by_token($access_token);
+
+        if (!$user_id) {
+            return false;
+        }
+
+        return get_userdata($user_id);
+    }
 }
 

philia-integration/trunk/includes/cashier/rest-routes/class-invoice-route.php

@@ -100 +100 @@
         $page      = $request->get_param('page') ? absint($request->get_param('page')) : 1;
         $page_size = $request->get_param('page_size') ? absint($request->get_param('page_size')) : 10;
+        
+        $user_is_seller = 0;
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+        if ($user && in_array('seller', (array)$user->roles)) {
+            $user_is_seller = 1;
+        }
 
         // Build the query arguments. These arguments work for both HPOS and legacy storage.
@@ -130 +136 @@
             if (!$order instanceof \WC_Order) {
                 continue;
+            }
+
+            // check seller
+            $seller_ids = dokan_get_seller_id_by_order( $order->get_id() );
+
+            // Assuming one seller per order, get the first seller ID
+            $seller_id = ( is_array( $seller_ids ) ) ? reset( $seller_ids ) : (int) $seller_ids;
+
+            if ( $user_is_seller && $user->ID != $seller_id )
+            {
+                continue;
+            }
+
+            // get seller info
+            $store_info = [];
+            if( function_exists('dokan_get_seller_id_by_order'))
+            {
+                // Get the seller ID from the order
+                $seller_ids = dokan_get_seller_id_by_order( $order->get_id() );
+
+                // Assuming one seller per order, get the first seller ID
+                $seller_id = ( is_array( $seller_ids ) ) ? reset( $seller_ids ) : (int) $seller_ids;
+
+                if ( $seller_id )
+                {
+                    // Get the seller's user data
+                    $seller_data = get_userdata( $seller_id );
+
+                    // Get the seller's store information
+                    $store_info = dokan_get_store_info( $seller_id );
+
+                    // Retrieve the required information
+                    $store_info = [
+                        'seller_first_name' => $seller_data->first_name,
+                        'seller_last_name' => $seller_data->last_name,
+                        'store_name' => isset( $store_info['store_name'] ) ? $store_info['store_name'] : '',
+                        'store_phone' => isset( $store_info['phone'] ) ? $store_info['phone'] : ''
+                    ];
+                }
             }
 
@@ -160 +205 @@
                 'note'        => $order->get_customer_note(),
                 'products'    => $products,
+                'store_info'      => ( !empty( $store_info ) ) ? $store_info : null
             ];
         }
@@ -238 +284 @@
         $order_subtotal = floatval($order->get_subtotal());
         $order_total_tax = floatval($order->get_total_tax());
+
+        // get seller info
+        $store_info = [];
+        if( function_exists('dokan_get_seller_id_by_order'))
+        {
+            // Get the seller ID from the order
+            $seller_ids = dokan_get_seller_id_by_order( $order->get_id() );
+
+            // Assuming one seller per order, get the first seller ID
+            $seller_id = ( is_array( $seller_ids ) ) ? reset( $seller_ids ) : (int) $seller_ids;
+
+            if ( $seller_id )
+            {
+                // Get the seller's user data
+                $seller_data = get_userdata( $seller_id );
+
+                // Get the seller's store information
+                $store_info = dokan_get_store_info( $seller_id );
+
+                // Retrieve the required information
+                $store_info = [
+                    'seller_first_name' => $seller_data->first_name,
+                    'seller_last_name' => $seller_data->last_name,
+                    'store_name' => isset( $store_info['store_name'] ) ? $store_info['store_name'] : '',
+                    'store_phone' => isset( $store_info['phone'] ) ? $store_info['phone'] : ''
+                ];
+            }
+        }
 
         $data = [
@@ -256 +330 @@
             'cashier_fields'  => ($order->get_meta('_cashier_fields')) ? json_decode($order->get_meta('_cashier_fields'), true) : [],
             'used_coupons'    => $used_coupons,
+            'store_info'      => ( !empty( $store_info ) ) ? $store_info : null
         ];
 
@@ -391 +466 @@
                     $last_notice = end($notices);
                     if (isset($last_notice['notice'])) {
-                        $error_message = wc_strip_all_tags($last_notice['notice']);
+                        $error_message = esc_attr($last_notice['notice']);
                     }
                 }
@@ -407 +482 @@
     }
 
-/**
+    /**
      * Calculate invoice total, discounts, and coupon applications.
      * FINAL VERSION: Uses wc_attribute_label() and resolves all namespace issues.
@@ -418 +493 @@
         $global_coupons_param_input = $request->get_param('coupon');
         $customer_id = $request->has_param('user_id') ? intval($request->get_param('user_id')) : 0;
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
 
         if (empty($products_param) || !is_array($products_param)) {
@@ -439 +516 @@
                 $quantity = absint($product_data['quantity']);
                 $cart_item_data = ['philia_pos_index' => $index];
+
+                // set vendor for un-selected products
+                if ( function_exists( 'dokan_get_vendor_by_product' ) )
+                {
+                    if( $shop_type === 'multi-inventory' || $shop_type === 'multi-vendor')
+                    {
+                        $seller_id = dokan_get_vendor_by_product( $product_id );
+
+                        if ( ! $seller_id ) {
+                            $logged_user_info = Philia_Cashier_REST_Controller::get_user_by_token($request);
+                            if ( $logged_user_info ) {
+                                update_post_meta( $product_id, '_dokan_product_author', $logged_user_info->ID );
+                            }
+                        }
+                    }
+                }
 
                 $main_product = wc_get_product($product_id);
@@ -596 +689 @@
                     'price'           => round($original_price, wc_get_price_decimals()),
                     'quantity'        => $quantity,
+                    'stock'           => $product_obj->get_stock_quantity(),
                     'totalPrice'      => round($line_total_excl_tax, wc_get_price_decimals()),
                     'totalDiscount'   => round($line_discount_amount, wc_get_price_decimals()),

philia-integration/trunk/includes/cashier/rest-routes/class-product-route.php

@@ -116 +116 @@
     public function create_product(\WP_REST_Request $request)
     {
+        // check permission for access
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+
+        if (!$user) {
+            return new \WP_Error('invalid_token', 'Invalid access token or user not found.', ['status' => 401]);
+        }
+
+        $user_roles = (array) $user->roles;
+        $is_admin = in_array('administrator', $user_roles);
+        $is_seller = in_array('seller', $user_roles);
+
+        if (!$is_admin) {
+            if ($is_seller && $shop_type === 'multi-inventory') {
+                return new \WP_Error('permission_denied', esc_attr__('Sellers cannot create products in a multi-inventory setup.', 'philia-integration'), ['status' => 403]);
+            }
+            if ($is_seller && $shop_type !== 'multi-vendor') {
+                return new \WP_Error('permission_denied', esc_attr__('Sellers can only create products in a multi-vendor setup.', 'philia-integration'), ['status' => 403]);
+            }
+            if (!$is_seller) {
+                return new \WP_Error('permission_denied', esc_attr__('You do not have permission to create products.', 'philia-integration'), ['status' => 403]);
+            }
+        }
+
         $name          = sanitize_text_field($request->get_param('title'));
         $status_param  = intval($request->get_param('status'));
@@ -183 +208 @@
     public function update_product(\WP_REST_Request $request)
     {
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+
+        if (!$user) {
+            return new \WP_Error('invalid_token', 'Invalid access token or user not found.', ['status' => 401]);
+        }
+
         $product_id = intval($request->get_param('id'));
         $product = wc_get_product($product_id);
 
         if (!$product) {
-            return new \WP_Error('not_found', 'Product not found.', ['status' => 404]);
-        }
-
-        // Update common properties if they are provided in the request
-        $name = $request->get_param('title');
-        if ($name !== null) {
-            $product->set_name(sanitize_text_field($name));
-        }
-
-        $status_param = $request->get_param('status');
-        if ($status_param !== null) {
-            $product->set_status(intval($status_param) === 0 ? 'draft' : 'publish');
-        }
-        
-        $category_ids = $request->get_param('product_cat');
-        if ($category_ids !== null && is_array($category_ids)) {
-            $product->set_category_ids(array_map('intval', $category_ids));
-        }
-        
-        $sku = $request->get_param('sku');
-        if ($sku !== null) {
-            $product->set_sku(sanitize_text_field($sku));
-        }
-
-        // --- Product Type Specific Updates ---
-        if ($product->is_type('variable')) {
-            $variations_data = $request->get_param('variations');
-            if ($variations_data !== null && is_array($variations_data)) {
-                foreach ($variations_data as $v_data) {
-                    if (!is_array($v_data) || empty($v_data['id'])) continue;
-
-                    $variation = wc_get_product(intval($v_data['id']));
-                    if ($variation && $variation->is_type('variation') && $variation->get_parent_id() === $product_id) {
-                        
-                        if (isset($v_data['regular_price'])) {
-                            $variation->set_regular_price(floatval($v_data['regular_price']));
+            return new \WP_Error('not_found', esc_attr__('Product not found.', 'philia-integration'), ['status' => 404]);
+        }
+
+        $product_author_id = get_post_field('post_author', $product_id);
+        $user_roles = (array) $user->roles;
+        $is_admin = in_array('administrator', $user_roles);
+        $is_seller = in_array('seller', $user_roles);
+
+        // check product access only for owner
+        if (!$is_admin && $product_author_id != $user->ID) {
+            return new \WP_Error('permission_denied', esc_attr__('You do not have permission to edit this product.', 'philia-inegration'), ['status' => 403]);
+        }
+
+        // update product when user role is seller
+        if ($is_seller && $shop_type === 'multi-inventory') {
+            if ($product->is_type('variable')) {
+                $variations_data = $request->get_param('variations');
+                if (is_array($variations_data)) {
+                    foreach ($variations_data as $v_data) {
+                        if (empty($v_data['id'])) continue;
+                        $variation = wc_get_product(intval($v_data['id']));
+                        if ($variation && $variation->get_parent_id() === $product_id) {
+                            if (isset($v_data['regular_price'])) $variation->set_regular_price(floatval($v_data['regular_price']));
+                            if (isset($v_data['sale_price'])) $variation->set_sale_price($v_data['sale_price'] !== null ? floatval($v_data['sale_price']) : '');
+                            if (isset($v_data['stock'])) {
+                                $variation->set_manage_stock(true);
+                                $variation->set_stock_quantity(intval($v_data['stock']));
+                            }
+                            $variation->save();
                         }
-                        
-                        if (isset($v_data['sale_price'])) {
-                            $sale_price = $v_data['sale_price'] !== null ? floatval($v_data['sale_price']) : '';
-                            $variation->set_sale_price($sale_price);
+                    }
+                }
+            } else { // simple product
+                if ($request->get_param('regular_price') !== null) $product->set_regular_price(floatval($request->get_param('regular_price')));
+                if ($request->get_param('sale_price') !== null) $product->set_sale_price($request->get_param('sale_price') !== '' ? floatval($request->get_param('sale_price')) : '');
+                if ($request->get_param('stock') !== null) {
+                    $product->set_manage_stock(true);
+                    $product->set_stock_quantity(intval($request->get_param('stock')));
+                }
+            }
+            $product->save();
+            return new \WP_REST_Response(['id' => $product->get_id(), 'message' => 'Product inventory and price updated.'], 200);
+        }
+
+        if ($is_admin || ($is_seller && $shop_type === 'multi-vendor'))
+        {
+            // Update common properties if they are provided in the request
+            $name = $request->get_param('title');
+            if ($name !== null) {
+                $product->set_name(sanitize_text_field($name));
+            }
+
+            $status_param = $request->get_param('status');
+            if ($status_param !== null) {
+                $product->set_status(intval($status_param) === 0 ? 'draft' : 'publish');
+            }
+            
+            $category_ids = $request->get_param('product_cat');
+            if ($category_ids !== null && is_array($category_ids)) {
+                $product->set_category_ids(array_map('intval', $category_ids));
+            }
+            
+            $sku = $request->get_param('sku');
+            if ($sku !== null) {
+                $product->set_sku(sanitize_text_field($sku));
+            }
+
+            // --- Product Type Specific Updates ---
+            if ($product->is_type('variable')) {
+                $variations_data = $request->get_param('variations');
+                if ($variations_data !== null && is_array($variations_data)) {
+                    foreach ($variations_data as $v_data) {
+                        if (!is_array($v_data) || empty($v_data['id'])) continue;
+
+                        $variation = wc_get_product(intval($v_data['id']));
+                        if ($variation && $variation->is_type('variation') && $variation->get_parent_id() === $product_id) {
+                            
+                            if (isset($v_data['regular_price'])) {
+                                $variation->set_regular_price(floatval($v_data['regular_price']));
+                            }
+                            
+                            if (isset($v_data['sale_price'])) {
+                                $sale_price = $v_data['sale_price'] !== null ? floatval($v_data['sale_price']) : '';
+                                $variation->set_sale_price($sale_price);
+                            }
+                            
+                            if (isset($v_data['stock'])) {
+                                $variation->set_manage_stock(true);
+                                $variation->set_stock_quantity(intval($v_data['stock']));
+                            }
+                            
+                            $variation->save();
                         }
-                        
-                        if (isset($v_data['stock'])) {
-                            $variation->set_manage_stock(true);
-                            $variation->set_stock_quantity(intval($v_data['stock']));
-                        }
-                        
-                        $variation->save();
                     }
                 }
-            }
-        } else { // For simple products
-            $regular_price = $request->get_param('regular_price');
-            if ($regular_price !== null) {
-                $product->set_regular_price(floatval($regular_price));
-            }
-
-            $sale_price = $request->get_param('sale_price');
-            if ($sale_price !== null) {
-                $product->set_sale_price($sale_price !== '' ? floatval($sale_price) : '');
-            }
-
-            $stock = $request->get_param('stock');
-            if ($stock !== null) {
-                $product->set_manage_stock(true);
-                $product->set_stock_quantity(intval($stock));
-            }
-        }
-
-        $result = $product->save();
-        if (is_wp_error($result)) {
-            return new \WP_Error('product_save_failed', 'Failed to save product: ' . $result->get_error_message(), ['status' => 500]);
-        }
-
-        // --- Optional Updates (Barcode & Image) ---
-        $barcode = $request->get_param('barcode');
-        $barcode_field = get_option('philia_cashier_fields')['barcode_field'] ?? '';
-        if (!empty($barcode_field) && $barcode !== null) {
-            update_post_meta($product->get_id(), $barcode_field, sanitize_text_field($barcode));
-        }
-
-        $image = $request->get_file_params()['image'] ?? null;
-        if ($image && !empty($image['tmp_name'])) {
-            require_once ABSPATH . 'wp-admin/includes/image.php';
-            require_once ABSPATH . 'wp-admin/includes/file.php';
-            require_once ABSPATH . 'wp-admin/includes/media.php';
-            
-            $attachment_id = media_handle_upload('image', 0);
-            if (!is_wp_error($attachment_id)) {
-                set_post_thumbnail($product->get_id(), $attachment_id);
-            }
-        }
-
-        return new \WP_REST_Response(['id' => $product->get_id(), 'message' => 'Product updated.'], 200);
+            } else { // For simple products
+                $regular_price = $request->get_param('regular_price');
+                if ($regular_price !== null) {
+                    $product->set_regular_price(floatval($regular_price));
+                }
+
+                $sale_price = $request->get_param('sale_price');
+                if ($sale_price !== null) {
+                    $product->set_sale_price($sale_price !== '' ? floatval($sale_price) : '');
+                }
+
+                $stock = $request->get_param('stock');
+                if ($stock !== null) {
+                    $product->set_manage_stock(true);
+                    $product->set_stock_quantity(intval($stock));
+                }
+            }
+
+            $result = $product->save();
+            if (is_wp_error($result)) {
+                return new \WP_Error('product_save_failed', 'Failed to save product: ' . $result->get_error_message(), ['status' => 500]);
+            }
+
+            // --- Optional Updates (Barcode & Image) ---
+            $barcode = $request->get_param('barcode');
+            $barcode_field = get_option('philia_cashier_fields')['barcode_field'] ?? '';
+            if (!empty($barcode_field) && $barcode !== null) {
+                update_post_meta($product->get_id(), $barcode_field, sanitize_text_field($barcode));
+            }
+
+            $image = $request->get_file_params()['image'] ?? null;
+            if ($image && !empty($image['tmp_name'])) {
+                require_once ABSPATH . 'wp-admin/includes/image.php';
+                require_once ABSPATH . 'wp-admin/includes/file.php';
+                require_once ABSPATH . 'wp-admin/includes/media.php';
+                
+                $attachment_id = media_handle_upload('image', 0);
+                if (!is_wp_error($attachment_id)) {
+                    set_post_thumbnail($product->get_id(), $attachment_id);
+                }
+            }
+
+            return new \WP_REST_Response(['id' => $product->get_id(), 'message' => esc_attr__('Product updated.', 'philia-integration')], 200);
+        }
+
+        return new \WP_Error('permission_denied', 'You do not have permission to update products in this configuration.', ['status' => 403]);
     }
 
@@ -290 +369 @@
      * @return \WP_REST_Response|\WP_Error JSON response indicating result of deletion.
      */
-    public function delete_product(\WP_REST_Request $request) {
+    public function delete_product(\WP_REST_Request $request)
+    {
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+
+        if (!$user) {
+            return new \WP_Error('invalid_token', 'Invalid access token or user not found.', ['status' => 401]);
+        }
+
         $product_id = intval($request->get_param('id'));
         $product = wc_get_product($product_id);
@@ -296 +382 @@
         if (!$product) {
             return new \WP_Error('not_found', 'Product not found.', ['status' => 404]);
+        }
+
+        $product_author_id = get_post_field('post_author', $product_id);
+        $is_admin = in_array('administrator', (array)$user->roles);
+
+        if (!$is_admin && $product_author_id != $user->ID) {
+            return new \WP_Error('permission_denied', 'You do not have permission to delete this product.', ['status' => 403]);
         }
 
@@ -316 +409 @@
         $username = absint($request->get_param('username')) > 0 ? intval($request->get_param('username')) : null;
 
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+        
         $args = [
             'status' => ['publish'],
@@ -321 +417 @@
         ];
 
+        // filter products by seller or owner id
+        // if ($shop_type === 'multi-vendor' || $shop_type === 'multi-inventory') {
+        //     $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+        //     if ($user && !in_array('administrator', (array)$user->roles)) {
+                
+        //     }
+        // }
+        // get products by owner
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+        if( $shop_type != 'single-shop' )
+        {
+            $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+            $args['author'] = $user->ID;    
+        }
+        
         $category_id = $request->get_param('category');
         if (!empty($category_id) && absint($category_id) > 0) {
@@ -455 +567 @@
                     'id'                 => $variation->get_id(),
                     'barcode'            => $variation->get_sku(),
-                    'price'              => $variation->get_price(),
+                    'regular_price'      => (float) $variation->get_regular_price(),
+                    'sale_price'         => (float) $variation->get_sale_price(),
                     'discounted_price'   => $variation->get_price(),
                     'visible'            => $variation->is_visible(),
@@ -481 +594 @@
             'categories'        => $product->get_category_ids(),
             'category_names'    => $category_names,
-            'price'             => $product->get_price(),
+            'regular_price'     => (float) $product->get_regular_price(),
+            'sale_price'        => (float) $product->get_sale_price(),
             'description'       => $product->get_description(),
             'stock'             => $product->get_stock_quantity(),
@@ -498 +612 @@
     public function handle_product_import(\WP_REST_Request $request)
     {
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+
+        // check access for importing product
+        if (!$user || !in_array('administrator', (array)$user->roles)) {
+            return new \WP_Error('permission_denied', esc_attr__('You do not have permission to import products.', 'philia-integration'), ['status' => 403]);
+        }
+
         $files = $request->get_file_params();
 
@@ -552 +673 @@
 
                 set_transient('import_status_' . $import_id, $status, DAY_IN_SECONDS);
-                wp_schedule_single_event(time(), 'philia_process_product_import', [$import_id, $file_path]);
+                wp_schedule_single_event(time(), 'philia_process_product_import', [$import_id, $user->ID, $file_path]);
 
                 return new \WP_REST_Response([
@@ -597 +718 @@
         // Add the new key to the status array
         $status['progress_percentage'] = $percentage;
-        // --- END: ADDED CODE ---
 
         return new \WP_REST_Response($status, 200);
@@ -605 +725 @@
      * Main import processor function
      */
-    public static function run_import_processor($import_id, $file_path)
+    public static function run_import_processor($import_id, $user_id, $file_path)
     {
         $status = get_transient('import_status_' . $import_id);
@@ -645 +765 @@
                     switch (strtolower(trim($row['type'] ?? 'simple'))) {
                         case 'variable':
-                            $product_id = self::create_or_update_variable_product($row);
+                            $product_id = self::create_or_update_variable_product($row, $user_id);
                             if (!empty($row['barcode'])) {
                                 $variable_products_map[$row['barcode']] = $product_id;
@@ -657 +777 @@
                                 throw new \Exception("Parent product with barcode '{$parent_barcode}' not found.");
                             }
-                            self::create_or_update_variation($row, $parent_id);
+                            self::create_or_update_variation($row, $parent_id, $user_id);
                             break;
                             
                         case 'simple':
                         default:
-                            self::create_or_update_simple_product($row);
+                            self::create_or_update_simple_product($row, $user_id);
                             break;
                     }
@@ -695 +815 @@
     public function get_popular_products()
     {
+        $cashier_settings = get_option('philia_cashier_fields');
+        $shop_type = $cashier_settings['shop_type'] ?? 'single-shop';
+
         $args = [
             'status' => 'publish',
-            'limit' => 10, // Change this limit as needed
+            'limit' => 10,
             'orderby' => 'popularity',
         ];
 
+        // filter products by seller or owner id
+        if ($shop_type === 'multi-vendor' || $shop_type === 'multi-inventory') {
+            $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
+            if ($user && !in_array('administrator', (array)$user->roles)) {
+                $args['author'] = $user->ID;
+            }
+        }
+
         $products = wc_get_products($args);
+
         $product_data = array_map(function($product) {
             $image_url = wp_get_attachment_image_src( get_post_thumbnail_id( $product->get_id() ) , 'single-post-thumbnail' );
@@ -804 +936 @@
      * @return array
      */
-    protected function get_attributes( $product ) {
+    protected function get_attributes( $product )
+    {
         $attributes = array();
 
@@ -977 +1110 @@
      * Create or update simple product with attributes
      */
-    private static function create_or_update_simple_product(array $row) 
+    private static function create_or_update_simple_product(array $row, $user_id) 
     {
         $barcode = sanitize_text_field($row['barcode'] ?? '');
@@ -1016 +1149 @@
             }
         }
-        // --- END MODIFICATION ---
         
         // Stock management
@@ -1040 +1172 @@
         }
         
+        // Set product author if provided
+        if ($new_id) {
+            if ($user_id > 0) {
+                wp_update_post([
+                    'ID'          => $new_id,
+                    'post_author' => $user_id
+                ]);
+            }
+        }
+        
         return $new_id;
     }
@@ -1046 +1188 @@
      * Create or update variable product
      */
-    private static function create_or_update_variable_product(array $row) 
+    private static function create_or_update_variable_product(array $row, $user_id) 
     {
         $barcode = sanitize_text_field($row['barcode'] ?? '');
@@ -1077 +1219 @@
             self::set_product_barcode($new_id, $barcode);
         }
+
+        // Set product author if provided
+        if ($new_id) {
+            if ($user_id > 0) {
+                wp_update_post([
+                    'ID'          => $new_id,
+                    'post_author' => $user_id
+                ]);
+            }
+        }
         
         return $new_id;
@@ -1084 +1236 @@
      * Create or update product variation
      */
-    private static function create_or_update_variation(array $row, int $parent_id) 
+    private static function create_or_update_variation(array $row, int $parent_id, int $user_id) 
     {
         $barcode = sanitize_text_field($row['barcode'] ?? '');
@@ -1155 +1307 @@
         if ($new_id && !empty($barcode)) {
             self::set_product_barcode($new_id, $barcode);
+        }
+
+        // Set product author if provided
+        if ($new_id) {
+            if ($user_id > 0) {
+                wp_update_post([
+                    'ID'          => $new_id,
+                    'post_author' => $user_id
+                ]);
+            }
         }
         
@@ -1415 +1577 @@
 
 add_action( 'rest_api_init', 'Philia_API\register_philia_product_rest_controller' );
-add_action('philia_process_product_import', ['Philia_API\Philia_Product_REST_Controller', 'run_import_processor'], 10, 2);
+add_action('philia_process_product_import', ['Philia_API\Philia_Product_REST_Controller', 'run_import_processor'], 10, 3);

philia-integration/trunk/includes/cashier/rest-routes/class-reward-route.php

@@ -145 +145 @@
         $reward_id = absint( $request->get_param('reward_id') );
         $username = sanitize_text_field($request->get_param('username') );
+        $user = Philia_Cashier_REST_Controller::get_user_by_token($request);
 
         if( empty( $reward_id ) )
@@ -195 +196 @@
                     'post_author' => get_current_user_id(),
                     'post_type'   => 'shop_coupon',
+                    'post_author' => ( $user->ID  > 0 ) ? $user->ID : ''
                 );
 

philia-integration/trunk/philia-integration.php

@@ -3 +3 @@
  * Plugin Name: Philia Integration with WooCommerce
  * Description: Sending Users, Products, Categories and invoices from WooCommerce to Philia and Receive Coupons and Cashback from Philia
- * Version: 1.8.1
+ * Version: 1.9
  * Author: Philia
  * Author URI: https://fa.philia.vip
@@ -17 +17 @@
 
 // Define constants for plugin directory, URL, and table prefix.
-define('PHILIA_PLUGIN_VERSION', '1.8.1');
+define('PHILIA_PLUGIN_VERSION', '1.9');
 define('PHILIA_PLUGIN_DIR', plugin_dir_path(__FILE__));
 define('PHILIA_PLUGIN_URL', plugin_dir_url(__FILE__));

philia-integration/trunk/readme.txt

@@ -4 +4 @@
 Requires at least: 6.0
 Tested up to: 6.8
-Stable tag: 1.8.1
+Stable tag: 1.9
 License: GPL-2.0+
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
@@ -46 +46 @@
 == Changelog ==
 
+= 1.9 =
+* Bugs fixes and improvements
+* Supports Multi-Vendor & Multi-Inventory (Dokan)
+
 = 1.8.1 =
 * Bugs fixes and improvements