From 73a8b906d0618d4a60da3b339a99856556130a43 Mon Sep 17 00:00:00 2001
From: Cheng <lkmd555@masada.com.tw>
Date: Fri, 5 Jan 2024 17:53:17 +0800
Subject: [PATCH] =?UTF-8?q?API=E5=90=88=E7=B4=84=E4=BF=9D=E9=A4=8A?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 wms/T8_APItest.php                    | 148 ++--
 wms/T8_Authorization.php              |  21 +-
 wms/T8_Authorization_from_bpm.php     |  22 +-
 wms/contract/api/T8salIncomeApply.php |  36 +
 wms/contract/api/postContractData.php | 930 ++++++++++++++------------
 wms/contract/api/test.json            | 115 ++++
 wms/contract/api/testT8API.php        | 163 ++---
 wms/fun_global.php                    |  36 +-
 wms/mkt/pricereview-check.php         |  62 +-
 wms/mkt/pricereview-index.php         |   9 +-
 wms/mkt/pricereview-record-check.php  |  59 +-
 11 files changed, 890 insertions(+), 711 deletions(-)
 create mode 100644 wms/contract/api/T8salIncomeApply.php
 create mode 100644 wms/contract/api/test.json

diff --git a/wms/T8_APItest.php b/wms/T8_APItest.php
index 92c1e1e8..c2fe6d18 100644
--- a/wms/T8_APItest.php
+++ b/wms/T8_APItest.php
@@ -3,88 +3,72 @@ include "T8_Authorization.php";
 echo "ii";
 ?>
 <script>
-  get_Auth();
-  window.addEventListener('message', function(event) {
-    if (event.origin === "http://localhost:3000" && (typeof event.data === "string")) {
-      // if (event.origin === "https://masada.com.tw" && (typeof event.data === "string")) {
-      var validation = event.data;
-      console.log("event");
-      console.log(validation);
+  let validation = get_Auth();
+  // window.addEventListener('message', function(event) {
+  // console.log('123')
+  // if (event.origin === "http://localhost:3000" && (typeof event.data === "string")) {
+  // if (event.origin === "https://masada.com.tw" && (typeof event.data === "string")) {
+  console.log(validation)
+  // var validation = event.data;
+  // console.log("event");
+  // console.log(validation);
 
-      // var corsurl = 'http://cors-anywhere.herokuapp.com/';
-      var apiurl = 'https://erp.masada.com.tw:780/twWebAPI/V1/SALINCOMEAPPLY/PostERPData';
-      headerParam = {
-        CHI_Authorization: `${validation}`,
-      };
-      var body = [{
-          "name": "salIncomeApplyMaster",
-          "rows": [{
-            "BillNo": "B23100061",
-            "BillDate": 20231220,
-            "OrgId": "1000",
-            "FOrgId": "1000",
-            "TypeId": "RAS",
-            "BpOrgId": "1000",
-            "BizPartnerId": "B23100061",
-            "CurrId": "TWD",
-            "CurrOAmount": 1,
-            "CurrLAmount": 1,
-            "PersonId": "M0065",
-            "DtOrgId": "1000",
-            "DueToId": "B23100061",
-            "TaxId": "ST005",
-            "CompId": "1001",
-            "CreatorId": "M0225"
-          }]
-        },
-        {
-          "name": "salIncomeApplyDetail",
-          "rows": [{
-              "BillNo": "B23100061",
-              "IncomeId": "A40004",
-              "TaxId": "ST005",
-              "RowCode": 1,
-              "RowNo": 1,
-              "ItemType": "1",
-              "SPrice": 10000,
-              "SQuantity": 2,
-              "ProjectId": "B23100061",
-              "FromSourceTag": 0,
-              "CU_MaterialId": "3MH00112"
-            },
-            {
-              "BillNo": "B23100061",
-              "IncomeId": "A40004",
-              "TaxId": "ST005",
-              "RowCode": 2,
-              "RowNo": 2,
-              "ItemType": "1",
-              "SPrice": 10000,
-              "SQuantity": 2,
-              "ProjectId": "B23100061",
-              "FromSourceTag": 0,
-              "CU_MaterialId": "3MH00112"
-            }
-          ],
-
-        }
-      ];
-      var json = JSON.stringify(body);
-      obj = {
-        type: 'POST',
-        // url: `${corsurl}${apiurl}`,
-        url: `${apiurl}`,
-        dataType: 'json',
-        headers: headerParam,
-        data: json,
-        // dataType: "json",
-        success: function(res) {
-          console.log(res.Status);
-          console.log(res.ErrorMsg);
-          console.log(res.Data);
-        }
-      };
-      jQuery.ajax(obj);
+  // var corsurl = 'http://cors-anywhere.herokuapp.com/';
+  var apiurl = 'https://erp.masada.com.tw:780/twWebAPI/V1/SALINCOMEAPPLY/PostERPData';
+  headerParam = {
+    CHI_Authorization: `${validation}`,
+  };
+  var body = [{
+      "name": "salIncomeApplyMaster",
+      "rows": [{
+        "BillNo": "B23100061",
+        "BillDate": 20231220,
+        "OrgId": "1000",
+        "FOrgId": "1000",
+        "TypeId": "RAS",
+        "BpOrgId": "1000",
+        "BizPartnerId": "B23100061",
+        "CurrId": "TWD",
+        "CurrOAmount": 1,
+        "CurrLAmount": 1,
+        "PersonId": "M0065",
+        "DtOrgId": "1000",
+        "DueToId": "B23100061",
+        "TaxId": "ST005",
+        "CompId": "1001"
+      }]
+    },
+    {
+      "name": "salIncomeApplyDetail",
+      "rows": [{
+        "BillNo": "B23100061",
+        "IncomeId": "A40003",
+        "TaxId": "ST005",
+        "RowCode": 12,
+        "ItemType": "1",
+        "SPrice": 10000,
+        "SQuantity": 1,
+        "FromSourceTag": 0,
+        "FromBillNo": ""
+      }]
+    }
+  ];
+  var json = JSON.stringify(body);
+  obj = {
+    type: 'POST',
+    // url: `${corsurl}${apiurl}`,
+    url: `${apiurl}`,
+    dataType: 'json',
+    headers: headerParam,
+    data: json,
+    // dataType: "json",
+    success: function(res) {
+      console.log(res.Status);
+      console.log(res.ErrorMsg);
+      console.log(res.Data);
     }
-  })
+  };
+  jQuery.ajax(obj);
+  // }
+  // })
 </script>
\ No newline at end of file
diff --git a/wms/T8_Authorization.php b/wms/T8_Authorization.php
index d906dbbc..a1a756ce 100644
--- a/wms/T8_Authorization.php
+++ b/wms/T8_Authorization.php
@@ -1,21 +1,23 @@
 <script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script>
 <?php
-$now = gmdate("YmdHis");
-$data = 'admin.' . $now;
+$currentTime = time();
+$twoMinutesLater = $currentTime - (2 * 60);
+$now = gmdate("YmdHis", $twoMinutesLater);
+$data = 'M0000.' . $now;
 $sign = hash_hmac('SHA256', $data, 'B2D6395D2883E26C', false);
 
 ?>
 
 <script>
     function get_Auth() {
-        var api_key = 'B2D6395D2883E26C';
+        var api_key = '964C834F7BF2BB70';
         var validation = "";
         // var corsurl = 'http://cors-anywhere.herokuapp.com/';
         // var apiurl = 'http://60.244.87.101:880//twWebAPI/GetAuth';
         var apiurl = 'https://erp.masada.com.tw:780/twWebAPI/GetAuth'
         headerParam = {
-            UserId: 'admin',
-            Pwd: 'chi',
+            UserId: 'M0000',
+            Pwd: 'M012290493119',
             TimestampUTC: <?= $now ?>,
             Sign: '<?= $sign ?>'
         };
@@ -27,12 +29,15 @@ $sign = hash_hmac('SHA256', $data, 'B2D6395D2883E26C', false);
             headers: headerParam,
             success: function(res) {
                 validation = res.Data['CHI_Authorization'];
-                console.log("validation：", validation);
-                window.parent.postMessage(validation, 'http://localhost:3000');
+                console.log(validation);
+                // console.log(res);
+                // console.log()
+                // window.parent.postMessage(validation,'http://localhost:3000');
                 // window.parent.postMessage(validation,'https://masada.com.tw');
+                return validation;
             }
         };
         jQuery.ajax(obj);
-
+        // return jQuery.ajax(obj);
     }
 </script>
\ No newline at end of file
diff --git a/wms/T8_Authorization_from_bpm.php b/wms/T8_Authorization_from_bpm.php
index f797b7a7..05069bca 100644
--- a/wms/T8_Authorization_from_bpm.php
+++ b/wms/T8_Authorization_from_bpm.php
@@ -5,16 +5,18 @@ $user_password = "M012290493119";
 
 function get_Auth($user_id = "M0000", $user_password = "M012290493119")
 {
+    $currentTime = time();
+    $twoMinutesLater = $currentTime - (2 * 60);
 
-    $now = gmdate("YmdHis");
+    $now = gmdate("YmdHis", $twoMinutesLater);
     $data = "$user_id." . $now;
     $sign = hash_hmac('SHA256', $data, 'B2D6395D2883E26C', false);
 
 
-    // $apiurl = 'https://erp.masada.com.tw:780/twWebAPI/GetAuth';
+    // $apiurl = 'https://erp.masada.com.tw:880/twWebAPI/GetAuth';
     // $apiurl = 'http://60.244.87.101:880//twWebAPI/GetAuth';
-    $apiurl = 'http://10.10.145.2:880//twWebAPI/GetAuth';
-    // $apiurl = 'https://erp.masada.com.tw:780/twWebAPI/GetAuth';
+    // $apiurl = 'http://10.10.145.2:880//twWebAPI/GetAuth';
+    $apiurl = 'https://erp.masada.com.tw:780/twWebAPI/GetAuth';
 
     $headerParam = [
         "UserId: $user_id",
@@ -29,15 +31,21 @@ function get_Auth($user_id = "M0000", $user_password = "M012290493119")
     curl_setopt($ch, CURLOPT_HTTPHEADER, $headerParam);
 
     $response = curl_exec($ch);
+    echo $response;
     if ($response === false) {
-        echo 'Curl error: ' . curl_error($ch);
+        echo '123Curl error: ' . curl_error($ch);
     } else {
-        print_r($response);
-        exit;
+        // print_r($response);
+        // exit;
         $result = json_decode($response, true);
         $validation = $result['Data']['CHI_Authorization'];
+        echo '<pre>';
+        print_r($result);
+        echo '</pre>';
         return $validation;
     }
 
     curl_close($ch);
 }
+// $data = [];
+// get_Auth();
diff --git a/wms/contract/api/T8salIncomeApply.php b/wms/contract/api/T8salIncomeApply.php
new file mode 100644
index 00000000..2403d1a7
--- /dev/null
+++ b/wms/contract/api/T8salIncomeApply.php
@@ -0,0 +1,36 @@
+<?php
+require_once("../../T8_Authorization_from_bpm.php");
+
+function T8API($data)
+{
+    echo '<pre>';
+    print_r(json_encode($data));
+    echo '</pre>';
+
+    $api_url = 'https://erp.masada.com.tw:780/twWebAPI/V1/SALINCOMEAPPLY/PostERPData';
+    $validation = get_Auth();
+    $header = [
+        "CHI_Authorization :" . $validation
+    ];
+    $ch = curl_init();
+    curl_setopt($ch, CURLOPT_URL, $api_url); // 设置请求的URL
+    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
+    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
+    curl_setopt($ch, CURLOPT_POST, 1);
+    curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($data));
+    curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
+    $response = curl_exec($ch);
+    if ($response === false) {
+        echo 'Curl error: ' . curl_error($ch);
+    } else {
+        $result = json_decode($response, true);
+        // $validation = $result['Data']['CHI_Authorization'];
+        echo '<pre>';
+        print_r($result);
+        echo '</pre>';
+        return $result;
+    }
+
+    curl_close($ch);
+}
+// T8API($data);
diff --git a/wms/contract/api/postContractData.php b/wms/contract/api/postContractData.php
index e63e9c76..45c58743 100644
--- a/wms/contract/api/postContractData.php
+++ b/wms/contract/api/postContractData.php
@@ -8,344 +8,343 @@ include_once("./upload_chk.php");
 ini_set('date.timezone', 'Asia/Taipei');
 //保養簽回
 if (isset($_POST["contractno"]) && $_POST["contractno"] != "" && isset($_POST['contracttype']) && $_POST['contracttype'] == 'b') {
-    try {
-        $created_at = date('Y-m-d H:i:s');
-        $contractno = !empty($_POST['contractno']) ? $_POST['contractno'] : null;
-        $total_price = !empty($_POST['total_price']) ? $_POST['total_price'] : null;
-        $vat = !empty($_POST['vat']) ? $_POST['vat'] : null;
-        $mtype = !empty($_POST['mtype']) ? $_POST['mtype'] : null;
-        $opendoor = !empty($_POST['opendoor']) ? $_POST['opendoor'] : null;
-        $phone = !empty($_POST['phone']) ? $_POST['phone'] : null;
-        $email = !empty($_POST['email']) ? $_POST['email'] : null;
-        $mworker = !empty($_POST['mworker']) ? $_POST['mworker'] : null;
-        $mcycle = !empty($_POST['mcycle']) ? $_POST['mcycle'] : null;
-        $salesman = !empty($_POST['salesman']) ? $_POST['salesman'] : null;
-        $contract_begin_date = !empty($_POST['contract_begin_date']) ? $_POST['contract_begin_date'] : null;
-        $contract_end_date = !empty($_POST['contract_end_date']) ? $_POST['contract_end_date'] : null;
-        $address = !empty($_POST['address']) ? $_POST['address'] : null;
-        $area = !empty($_POST['area']) ? $_POST['area'] : null;
-        $customer = !empty($_POST['customer']) ? $_POST['customer'] : null;
-        $partyA = !empty($_POST['partyA']) ? $_POST['partyA'] : null;
-        $partyAaddress = !empty($_POST['partyAaddress']) ? $_POST['partyAaddress'] : null;
-        $partyAphone = !empty($_POST['partyAphone']) ? $_POST['partyAphone'] : null;
-        $partyAemail = !empty($_POST['partyAemail']) ? $_POST['partyAemail'] : null;
-        $user_id = !empty($_POST['user_id']) ? $_POST['user_id'] : null;
-        $user_name = !empty($_POST['user_name']) ? $_POST['user_name'] : null;
-        $num = !empty($_POST['num']) ? $_POST['num'] : null;
-        $files = !empty($_FILES['files']) ? $_FILES['files'] : null;
-        $elevators = !empty($_POST['elevators']) ? json_decode($_POST['elevators'], true) : [];
-        $payType = !empty($_POST['payType']) ? $_POST['payType'] : null;
-        // validate
-        $fail_arr = [];
-        if ($contractno === '') return $fail_arr[] = '合約號為必填';
-
-        if ($total_price == '')  $fail_arr[] = '合約總價為必填';
-        if ($vat == '')  $fail_arr[] = '統一編號為必填';
-        if ($mtype == '')  $fail_arr[] = '維修型態為必填';
-        if ($phone == '')  $fail_arr[] = '客戶電話為必填';
-        if ($email == '')  $fail_arr[] = 'Email為必填';
-        if ($mworker == '')  $fail_arr[] = '保養員為必填';
-        if ($mcycle == '')  $fail_arr[] = '保養頻率為必填';
-        if ($salesman == '')  $fail_arr[] = '營業員為必填';
-        if ($contract_begin_date == '')  $fail_arr[] = '合約開始時間為必填';
-        if ($contract_end_date == '')  $fail_arr[] = '合約結束時間為必填';
-        if ($address == '')  $fail_arr[] = '地址為必填';
-        if ($area == '')  $fail_arr[] = '區域為必填';
-        if ($customer == '')  $fail_arr[] = '客戶為必填';
-        if ($partyA == '')  $fail_arr[] = '業務聯繫人為必填';
-        if ($partyAaddress == '')  $fail_arr[] = '業務聯繫人地址為必填';
-        if ($partyAphone == '')  $fail_arr[] = '業務聯繫人電話為必填';
-        if ($partyAemail == '')  $fail_arr[] = '業務聯繫人Email為必填';
-        if ($num == '')  $fail_arr[] = '電梯數量為必填';
-        if ($payType == '') $fail_arr[] = '付款方式為必填';
-        if (count($fail_arr) > 0) {
-            header("HTTP/1.1 422 Unprocessable Entity");
-            echo json_encode($fail_arr);
-            exit();
-        }
+    // try {
+    $created_at = date('Y-m-d H:i:s');
+    $contractno = !empty($_POST['contractno']) ? $_POST['contractno'] : null;
+    $total_price = !empty($_POST['total_price']) ? $_POST['total_price'] : null;
+    $vat = !empty($_POST['vat']) ? $_POST['vat'] : null;
+    $mtype = !empty($_POST['mtype']) ? $_POST['mtype'] : null;
+    $opendoor = !empty($_POST['opendoor']) ? $_POST['opendoor'] : null;
+    $phone = !empty($_POST['phone']) ? $_POST['phone'] : null;
+    $email = !empty($_POST['email']) ? $_POST['email'] : null;
+    $mworker = !empty($_POST['mworker']) ? $_POST['mworker'] : null;
+    $mcycle = !empty($_POST['mcycle']) ? $_POST['mcycle'] : null;
+    $salesman = !empty($_POST['salesman']) ? $_POST['salesman'] : null;
+    $contract_begin_date = !empty($_POST['contract_begin_date']) ? $_POST['contract_begin_date'] : null;
+    $contract_end_date = !empty($_POST['contract_end_date']) ? $_POST['contract_end_date'] : null;
+    $address = !empty($_POST['address']) ? $_POST['address'] : null;
+    $area = !empty($_POST['area']) ? $_POST['area'] : null;
+    $customer = !empty($_POST['customer']) ? $_POST['customer'] : null;
+    $partyA = !empty($_POST['partyA']) ? $_POST['partyA'] : null;
+    $partyAaddress = !empty($_POST['partyAaddress']) ? $_POST['partyAaddress'] : null;
+    $partyAphone = !empty($_POST['partyAphone']) ? $_POST['partyAphone'] : null;
+    $partyAemail = !empty($_POST['partyAemail']) ? $_POST['partyAemail'] : null;
+    $user_id = !empty($_POST['user_id']) ? $_POST['user_id'] : null;
+    $user_name = !empty($_POST['user_name']) ? $_POST['user_name'] : null;
+    $num = !empty($_POST['num']) ? $_POST['num'] : null;
+    $files = !empty($_FILES['files']) ? $_FILES['files'] : null;
+    $elevators = !empty($_POST['elevators']) ? json_decode($_POST['elevators'], true) : [];
+    $payType = !empty($_POST['payType']) ? $_POST['payType'] : null;
+    // validate
+    $fail_arr = [];
+    if ($contractno === '') return $fail_arr[] = '合約號為必填';
+
+    if ($total_price == '')  $fail_arr[] = '合約總價為必填';
+    if ($vat == '')  $fail_arr[] = '統一編號為必填';
+    if ($mtype == '')  $fail_arr[] = '維修型態為必填';
+    if ($phone == '')  $fail_arr[] = '客戶電話為必填';
+    if ($email == '')  $fail_arr[] = 'Email為必填';
+    if ($mworker == '')  $fail_arr[] = '保養員為必填';
+    if ($mcycle == '')  $fail_arr[] = '保養頻率為必填';
+    if ($salesman == '')  $fail_arr[] = '營業員為必填';
+    if ($contract_begin_date == '')  $fail_arr[] = '合約開始時間為必填';
+    if ($contract_end_date == '')  $fail_arr[] = '合約結束時間為必填';
+    if ($address == '')  $fail_arr[] = '地址為必填';
+    if ($area == '')  $fail_arr[] = '區域為必填';
+    if ($customer == '')  $fail_arr[] = '客戶為必填';
+    if ($partyA == '')  $fail_arr[] = '業務聯繫人為必填';
+    if ($partyAaddress == '')  $fail_arr[] = '業務聯繫人地址為必填';
+    if ($partyAphone == '')  $fail_arr[] = '業務聯繫人電話為必填';
+    if ($partyAemail == '')  $fail_arr[] = '業務聯繫人Email為必填';
+    if ($num == '')  $fail_arr[] = '電梯數量為必填';
+    if ($payType == '') $fail_arr[] = '付款方式為必填';
+    if (count($fail_arr) > 0) {
+        header("HTTP/1.1 422 Unprocessable Entity");
+        echo json_encode($fail_arr);
+        exit();
+    }
 
-        //create account table
-        $accounttype = "A";
-        $accountid = $vat;
-        $pwd = "123";
-        $name = $partyA;
-        $tel = $phone ?? '';
-        $repairerid = $mworker;
-        $creater = $user_id;
-        $create_at = date('Y-m-d H:i:s');
-
-        $conn->beginTransaction();
-
-        $sql_str = "INSERT INTO account (accounttype, accountid, pwd, name, tel, address, email, repairerid, creater, create_at) VALUES (:accounttype, :accountid, :pwd, :name, :tel, :address, :email, :repairerid, :creater, :create_at)";
-        $stmt = $conn->prepare($sql_str);
-        $stmt->bindParam(':accounttype', $accounttype);
-        $stmt->bindParam(':accountid', $accountid);
-        $stmt->bindParam(':pwd', $pwd);
-        $stmt->bindParam(':name', $name);
-        $stmt->bindParam(':tel', $tel);
-        $stmt->bindParam(':address', $address);
-        $stmt->bindParam(':email', $email);
-        $stmt->bindParam(':repairerid', $repairerid);
-        $stmt->bindParam(':creater', $creater);
-        $stmt->bindParam(':create_at', $create_at);
-        $stmt->execute();
-
-        //create contract table
-
-        $contracttype = $mtype;
-        $company = $partyA;
-        $taxid = $vat;
-        $tel = $phone;
-        $promiser = $partyA;
-        $contractperson = $partyA;
-
-        $contractaddress = $address;
-        $contracttel = $phone;
-        $contractemail = $email;
-        $contract_employee = $salesman;
-        $start_date = $contract_begin_date;
-        $end_date = $contract_end_date;
-
-        $sql_str = "INSERT INTO contract (contracttype, contractno, company, taxid, address, tel, promiser, contractperson, contractaddress, contracttel, contractemail, contract_employee, start_date, end_date, creater, create_at) VALUES (:contracttype, :contractno, :company, :taxid, :address, :tel, :promiser, :contractperson, :contractaddress, :contracttel, :contractemail, :contract_employee, :start_date, :end_date, :creater, :create_at)";
-        $stmt = $conn->prepare($sql_str);
-        $stmt->bindParam(':contracttype', $contracttype);
-        $stmt->bindParam(':contractno', $contractno);
-        $stmt->bindParam(':company', $company);
-        $stmt->bindParam(':taxid', $taxid);
-        $stmt->bindParam(':address', $address);
-        $stmt->bindParam(':tel', $tel);
-        $stmt->bindParam(':promiser', $promiser);
-        $stmt->bindParam(':contractperson', $contractperson);
-        $stmt->bindParam(':contractaddress', $contractaddress);
-        $stmt->bindParam(':contracttel', $contracttel);
-        $stmt->bindParam(':contractemail', $contractemail);
-        $stmt->bindParam(':contract_employee', $contract_employee);
-        $stmt->bindParam(':start_date', $start_date);
-        $stmt->bindParam(':end_date', $end_date);
-        $stmt->bindParam(':creater', $creater);
-        $stmt->bindParam(':create_at', $create_at);
-        $stmt->execute();
-
-        //create facility table
-        $createFacilityNo = new CreateFacilityNo();
-        $dailyNecessities = [
-            'MAE100' => 'X',
-            'MAM200' => 'W',
-            'MAH100' => 'H',
-            'MAQ100' => 'Z',
-            'MAF100' => 'F',
-            'MAZ100' => 'B',
-        ];
-        $facility_arr = [];
-        foreach ($elevators as $elevator) {
-            $facility_arr[] = $dailyNecessities[$elevator['spec']];
+    //create account table
+    $accounttype = "A";
+    $accountid = $vat;
+    $pwd = "123";
+    $name = $partyA;
+    $tel = $phone ?? '';
+    $repairerid = $mworker;
+    $creater = $user_id;
+    $create_at = date('Y-m-d H:i:s');
+
+    // $conn->beginTransaction();
+
+    // $sql_str = "INSERT INTO account (accounttype, accountid, pwd, name, tel, address, email, repairerid, creater, create_at) VALUES (:accounttype, :accountid, :pwd, :name, :tel, :address, :email, :repairerid, :creater, :create_at)";
+    // $stmt = $conn->prepare($sql_str);
+    // $stmt->bindParam(':accounttype', $accounttype);
+    // $stmt->bindParam(':accountid', $accountid);
+    // $stmt->bindParam(':pwd', $pwd);
+    // $stmt->bindParam(':name', $name);
+    // $stmt->bindParam(':tel', $tel);
+    // $stmt->bindParam(':address', $address);
+    // $stmt->bindParam(':email', $email);
+    // $stmt->bindParam(':repairerid', $repairerid);
+    // $stmt->bindParam(':creater', $creater);
+    // $stmt->bindParam(':create_at', $create_at);
+    // $stmt->execute();
+
+    //create contract table
+
+    $contracttype = $mtype;
+    $company = $partyA;
+    $taxid = $vat;
+    $tel = $phone;
+    $promiser = $partyA;
+    $contractperson = $partyA;
+
+    $contractaddress = $address;
+    $contracttel = $phone;
+    $contractemail = $email;
+    $contract_employee = $salesman;
+    $start_date = $contract_begin_date;
+    $end_date = $contract_end_date;
+
+    // $sql_str = "INSERT INTO contract (contracttype, contractno, company, taxid, address, tel, promiser, contractperson, contractaddress, contracttel, contractemail, contract_employee, start_date, end_date, creater, create_at) VALUES (:contracttype, :contractno, :company, :taxid, :address, :tel, :promiser, :contractperson, :contractaddress, :contracttel, :contractemail, :contract_employee, :start_date, :end_date, :creater, :create_at)";
+    // $stmt = $conn->prepare($sql_str);
+    // $stmt->bindParam(':contracttype', $contracttype);
+    // $stmt->bindParam(':contractno', $contractno);
+    // $stmt->bindParam(':company', $company);
+    // $stmt->bindParam(':taxid', $taxid);
+    // $stmt->bindParam(':address', $address);
+    // $stmt->bindParam(':tel', $tel);
+    // $stmt->bindParam(':promiser', $promiser);
+    // $stmt->bindParam(':contractperson', $contractperson);
+    // $stmt->bindParam(':contractaddress', $contractaddress);
+    // $stmt->bindParam(':contracttel', $contracttel);
+    // $stmt->bindParam(':contractemail', $contractemail);
+    // $stmt->bindParam(':contract_employee', $contract_employee);
+    // $stmt->bindParam(':start_date', $start_date);
+    // $stmt->bindParam(':end_date', $end_date);
+    // $stmt->bindParam(':creater', $creater);
+    // $stmt->bindParam(':create_at', $create_at);
+    // $stmt->execute();
+
+    //create facility table
+    $createFacilityNo = new CreateFacilityNo();
+    $dailyNecessities = [
+        'MAE100' => 'X',
+        'MAM200' => 'W',
+        'MAH100' => 'H',
+        'MAQ100' => 'Z',
+        'MAF100' => 'F',
+        'MAZ100' => 'B',
+    ];
+    $facility_arr = [];
+    foreach ($elevators as $elevator) {
+        $facility_arr[] = $dailyNecessities[$elevator['spec']];
+    }
+    echo json_encode($facility_arr);
+    // 電梯做番號
+    $facilityno = $createFacilityNo->makeBFacilityNo("T", $facility_arr, (int)$num);
+    // if ($user_id == 'M0225') {
+    //     echo '<pre>';
+    //     print_r($facilityno);
+    //     echo '</pre>';
+    //     exit();
+    // }
+    echo json_encode($facilityno);
+    echo '-------';
+    $sql_str = "SELECT accountid, name FROM account WHERE accountid = :accountid";
+    $stmt = $conn->prepare($sql_str);
+    $stmt->bindParam(':accountid', $mworker);
+    $stmt->execute();
+    $worker = $stmt->fetch(PDO::FETCH_ASSOC);
+    $customerid = $vat;
+    $define = "B";
+    $repairtype = $mtype;
+    $repairerid = $mworker;
+    $repairername = $worker['name'];
+    // foreach ($elevators as $idx => $elevator) {
+    //     $sql_str = "INSERT INTO facility (contractno, define, facilityno, latitude, longitude, customerid, weight, numberofpassenger, numberofstop, numberoffloor, opentype, speed, repairtype, maintainance, facility_kind, address, repairerid, repairername, creater, create_at, area, takecertificatedate, licensedate)
+    //   VALUES (:contractno, :define, :facilityno, :latitude, :longitude, :customerid, :weight, :numberofpassenger, :numberofstop, :numberoffloor, :opentype, :speed, :repairtype, :maintainance, :facility_kind, :address, :repairerid, :repairername, :creater, :create_at, :area, :takecertificatedate, :licensedate)";
+    //     $stmt = $conn->prepare($sql_str);
+    //     $stmt->bindParam(':contractno', $contractno);
+    //     $stmt->bindParam(':define', $define);
+    //     $stmt->bindParam(':facilityno', $facilityno[$idx]);
+    //     $stmt->bindParam(':latitude', $elevator['latitude']);
+    //     $stmt->bindParam(':longitude', $elevator['longitude']);
+    //     $stmt->bindParam(':customerid', $customerid);
+    //     $stmt->bindParam(':weight', $elevator['weight']);
+    //     $stmt->bindParam(':numberofpassenger', $elevator['persons']);
+    //     $stmt->bindParam(':numberofstop', $elevator['stop']);
+    //     $stmt->bindParam(':numberoffloor', $elevator['floors']);
+    //     $stmt->bindParam(':opentype', $elevator['opendoor']);
+    //     $stmt->bindParam(':speed', $elevator['speed']);
+    //     $stmt->bindParam(':repairtype', $repairtype);
+    //     $stmt->bindParam(':maintainance', $elevator['maintainance']);
+    //     $stmt->bindParam(':facility_kind', $elevator['spec']);
+    //     $stmt->bindParam(':address', $address);
+    //     $stmt->bindParam(':repairerid', $repairerid);
+    //     $stmt->bindParam(':repairername', $repairername);
+    //     $stmt->bindParam(':creater', $creater);
+    //     $stmt->bindParam(':create_at', $create_at);
+    //     $stmt->bindParam(':area', $area);
+    //     $stmt->bindParam(':takecertificatedate', $elevator['takecertificatedate']);
+    //     $stmt->bindParam(':licensedate', $elevator['useful_date']);
+    //     $result = $stmt->execute();
+    // }
+
+    //create schedule table
+
+    $comboNo = new CreateComboNo($mcycle, $contract_begin_date, $contract_end_date);
+    $comboArr =  json_decode($comboNo->getComboNo(), true);
+    // foreach ($facilityno as $no) {
+    //     foreach ($comboArr as $combo) {
+    //         $sql_str = 'INSERT INTO schedule (contractno, facilityno, combono, repairerid, repairername, duedate, creater, create_at) VALUES (:contractno, :facilityno, :combono, :repairerid, :repairername, :duedate, :creater, :create_at)';
+    //         $stmt = $conn->prepare($sql_str);
+    //         $stmt->bindParam(':contractno', $contractno);
+    //         $stmt->bindParam(':facilityno', $no);
+    //         $stmt->bindParam(':combono', $combo[0]);
+    //         $stmt->bindParam(':repairerid', $repairerid);
+    //         $stmt->bindParam(':repairername', $repairername);
+    //         $stmt->bindParam(':duedate', $combo[1]);
+    //         $stmt->bindParam(':creater', $creater);
+    //         $stmt->bindParam(':create_at', $create_at);
+    //         $result = $stmt->execute();
+    //     }
+    // }
+    // create contract_b_signed_back table
+    $contract_type = $mtype;
+    $company = $customer;
+    $customer_no = $vat;
+    $salesperson = $salesman;
+    $customer_phone = $phone;
+    $customer_email = $email;
+    $repairman = $mworker;
+    $cycle = $mcycle;
+    $contact_person = $partyA;
+    $contact_address = $partyAaddress;
+    $contact_phone = $partyAphone;
+    $contract_email = $partyAemail;
+    $elevators_number = $num;
+    $bonus = 1000;
+    $max_bonus = 2000;
+
+    if (!empty($files)) {
+        $englisharr = range('a', 'z');
+        $file = $_FILES['files'];
+        $file_name = $file['name'];
+        $file_type = $file['type'];
+        $tmp_name = $file['tmp_name'];
+        $file_size = $file['size'];
+        $error = $file['error'];
+        $newfiles = [];
+        foreach ($files as $file) {
+            $i = 0;  //新陣列的索引編號
+            foreach ($file as $key => $val) {
+                $newfiles[$i]['name']     = $files['name'][$key];
+                $newfiles[$i]['type']     = $files['type'][$key];
+                $newfiles[$i]['tmp_name'] = $files['tmp_name'][$key];
+                $newfiles[$i]['error']    = $files['error'][$key];
+                $newfiles[$i]['size']     = $files['size'][$key];
+                $i++;
+            } //foreach 第2層 end
         }
-        echo json_encode($facility_arr);
-        // 電梯做番號
-        $facilityno = $createFacilityNo->makeBFacilityNo("T", $facility_arr, (int)$num);
-        // if ($user_id == 'M0225') {
-        //     echo '<pre>';
-        //     print_r($facilityno);
-        //     echo '</pre>';
-        //     exit();
-        // }
-        echo json_encode($facilityno);
-        echo '-------';
-        $sql_str = "SELECT accountid, name FROM account WHERE accountid = :accountid";
-        $stmt = $conn->prepare($sql_str);
-        $stmt->bindParam(':accountid', $mworker);
-        $stmt->execute();
-        $worker = $stmt->fetch(PDO::FETCH_ASSOC);
-        $customerid = $vat;
-        $define = "B";
-        $repairtype = $mtype;
-        $repairerid = $mworker;
-        $repairername = $worker['name'];
-        foreach ($elevators as $idx => $elevator) {
-            $sql_str = "INSERT INTO facility (contractno, define, facilityno, latitude, longitude, customerid, weight, numberofpassenger, numberofstop, numberoffloor, opentype, speed, repairtype, maintainance, facility_kind, address, repairerid, repairername, creater, create_at, area, takecertificatedate, licensedate)
-          VALUES (:contractno, :define, :facilityno, :latitude, :longitude, :customerid, :weight, :numberofpassenger, :numberofstop, :numberoffloor, :opentype, :speed, :repairtype, :maintainance, :facility_kind, :address, :repairerid, :repairername, :creater, :create_at, :area, :takecertificatedate, :licensedate)";
-            $stmt = $conn->prepare($sql_str);
-            $stmt->bindParam(':contractno', $contractno);
-            $stmt->bindParam(':define', $define);
-            $stmt->bindParam(':facilityno', $facilityno[$idx]);
-            $stmt->bindParam(':latitude', $elevator['latitude']);
-            $stmt->bindParam(':longitude', $elevator['longitude']);
-            $stmt->bindParam(':customerid', $customerid);
-            $stmt->bindParam(':weight', $elevator['weight']);
-            $stmt->bindParam(':numberofpassenger', $elevator['persons']);
-            $stmt->bindParam(':numberofstop', $elevator['stop']);
-            $stmt->bindParam(':numberoffloor', $elevator['floors']);
-            $stmt->bindParam(':opentype', $elevator['opendoor']);
-            $stmt->bindParam(':speed', $elevator['speed']);
-            $stmt->bindParam(':repairtype', $repairtype);
-            $stmt->bindParam(':maintainance', $elevator['maintainance']);
-            $stmt->bindParam(':facility_kind', $elevator['spec']);
-            $stmt->bindParam(':address', $address);
-            $stmt->bindParam(':repairerid', $repairerid);
-            $stmt->bindParam(':repairername', $repairername);
-            $stmt->bindParam(':creater', $creater);
-            $stmt->bindParam(':create_at', $create_at);
-            $stmt->bindParam(':area', $area);
-            $stmt->bindParam(':takecertificatedate', $elevator['takecertificatedate']);
-            $stmt->bindParam(':licensedate', $elevator['useful_date']);
-            $result = $stmt->execute();
+        $max_size  = 4096 * 4096;                     //設定允許上傳檔案容量的最大值(1M)
+        $allow_ext = array('jpeg', 'jpg', 'png', 'JPG', 'JPEG', 'PNG', 'GIF');   //設定允許上傳檔案的類型
+        $path      = '../images/contracts/';
+        if (!file_exists($path)) {
+            mkdir($path);
         }
-
-        //create schedule table
-
-        $comboNo = new CreateComboNo($mcycle, $contract_begin_date, $contract_end_date);
-        $comboArr =  json_decode($comboNo->getComboNo(), true);
-        foreach ($facilityno as $no) {
-            foreach ($comboArr as $combo) {
-                $sql_str = 'INSERT INTO schedule (contractno, facilityno, combono, repairerid, repairername, duedate, creater, create_at) VALUES (:contractno, :facilityno, :combono, :repairerid, :repairername, :duedate, :creater, :create_at)';
+        $msg_result = '';  //負責接收所有檔案檢測後的回傳訊息
+        $datetime = (string)date('YmdHis');
+        $files_id = 'b' . $datetime; // 保養=>b + 日期時間
+        foreach ($newfiles as $key => $file) {
+            $randNum = rand(1000, 9999);
+            $randEnglish = $englisharr[rand(0, 25)];
+            $file_name = 'b' . (string)date('YmdHis') . $randNum . $randEnglish . $randNum . $file['name'];
+            $msg = upload_chk($file, $path, $max_size, $allow_ext,  $file_name);
+            if ($msg == 1) {
+                $msg = '檔案傳送成功！';
+                $sql_str = "INSERT INTO contract_back_files (files_id, file_name, file_mime, file_size, created_at, created_by) VALUES (:files_id, :file_name, :file_mime, :file_size, :created_at, :created_by)";
                 $stmt = $conn->prepare($sql_str);
-                $stmt->bindParam(':contractno', $contractno);
-                $stmt->bindParam(':facilityno', $no);
-                $stmt->bindParam(':combono', $combo[0]);
-                $stmt->bindParam(':repairerid', $repairerid);
-                $stmt->bindParam(':repairername', $repairername);
-                $stmt->bindParam(':duedate', $combo[1]);
-                $stmt->bindParam(':creater', $creater);
-                $stmt->bindParam(':create_at', $create_at);
-                $result = $stmt->execute();
-            }
-        }
-        // create contract_b_signed_back table
-        $contract_type = $mtype;
-        $company = $customer;
-        $customer_no = $vat;
-        $salesperson = $salesman;
-        $customer_phone = $phone;
-        $customer_email = $email;
-        $repairman = $mworker;
-        $cycle = $mcycle;
-        $contact_person = $partyA;
-        $contact_address = $partyAaddress;
-        $contact_phone = $partyAphone;
-        $contract_email = $partyAemail;
-        $elevators_number = $num;
-        $bonus = 1000;
-        $max_bonus = 2000;
-
-        if (!empty($files)) {
-            $englisharr = range('a', 'z');
-            $file = $_FILES['files'];
-            $file_name = $file['name'];
-            $file_type = $file['type'];
-            $tmp_name = $file['tmp_name'];
-            $file_size = $file['size'];
-            $error = $file['error'];
-            $newfiles = [];
-            foreach ($files as $file) {
-                $i = 0;  //新陣列的索引編號
-                foreach ($file as $key => $val) {
-                    $newfiles[$i]['name']     = $files['name'][$key];
-                    $newfiles[$i]['type']     = $files['type'][$key];
-                    $newfiles[$i]['tmp_name'] = $files['tmp_name'][$key];
-                    $newfiles[$i]['error']    = $files['error'][$key];
-                    $newfiles[$i]['size']     = $files['size'][$key];
-                    $i++;
-                } //foreach 第2層 end
-            }
-            $max_size  = 4096 * 4096;                     //設定允許上傳檔案容量的最大值(1M)
-            $allow_ext = array('jpeg', 'jpg', 'png', 'JPG', 'JPEG', 'PNG', 'GIF');   //設定允許上傳檔案的類型
-            $path      = '../images/contracts/';
-            if (!file_exists($path)) {
-                mkdir($path);
+                $stmt->bindParam(':files_id', $files_id);
+                $stmt->bindParam(':file_name', $file_name);
+                $stmt->bindParam(':file_mime', $file['type']);
+                $stmt->bindParam(':file_size', $file['size']);
+                $stmt->bindParam(':created_at', $created_at);
+                $stmt->bindParam(':created_by', $user_id);
+                $stmt->execute();
             }
-            $msg_result = '';  //負責接收所有檔案檢測後的回傳訊息
-            $datetime = (string)date('YmdHis');
-            $files_id = 'b' . $datetime; // 保養=>b + 日期時間
-            foreach ($newfiles as $key => $file) {
-                $randNum = rand(1000, 9999);
-                $randEnglish = $englisharr[rand(0, 25)];
-                $file_name = 'b' . (string)date('YmdHis') . $randNum . $randEnglish . $randNum . $file['name'];
-                $msg = upload_chk($file, $path, $max_size, $allow_ext,  $file_name);
-                if ($msg == 1) {
-                    $msg = '檔案傳送成功！';
-                    $sql_str = "INSERT INTO contract_back_files (files_id, file_name, file_mime, file_size, created_at, created_by) VALUES (:files_id, :file_name, :file_mime, :file_size, :created_at, :created_by)";
-                    $stmt = $conn->prepare($sql_str);
-                    $stmt->bindParam(':files_id', $files_id);
-                    $stmt->bindParam(':file_name', $file_name);
-                    $stmt->bindParam(':file_mime', $file['type']);
-                    $stmt->bindParam(':file_size', $file['size']);
-                    $stmt->bindParam(':created_at', $created_at);
-                    $stmt->bindParam(':created_by', $user_id);
-                    $stmt->execute();
-                }
-                $msg_result .= '第' . ($key + 1) . '個上傳檔案的結果：' . $msg . '<br/>';
-                $src_name = $path . $file['name'];
-                if (file_exists($src_name)) {
-                    //副檔名
-                    $extname  = pathinfo($src_name, PATHINFO_EXTENSION);
-                    //主檔名
-                    $basename = basename($src_name, '.' . $extname);
-                }
+            $msg_result .= '第' . ($key + 1) . '個上傳檔案的結果：' . $msg . '<br/>';
+            $src_name = $path . $file['name'];
+            if (file_exists($src_name)) {
+                //副檔名
+                $extname  = pathinfo($src_name, PATHINFO_EXTENSION);
+                //主檔名
+                $basename = basename($src_name, '.' . $extname);
             }
-        } else {
-            $files = null;
         }
-        $sql_str = "INSERT INTO contract_b_signed_back (contract_no, contract_type, company, customer_no, salesperson, contract_start_date, contract_end_date, total_price,payType, customer_phone, customer_email, repairman, cycle, contact_person, contact_address, contact_phone, contact_email, elevators_number, area, address, files_id, bonus, max_bonus, created_at, created_by) 
+    } else {
+        $files = null;
+    }
+    $sql_str = "INSERT INTO contract_b_signed_back (contract_no, contract_type, company, customer_no, salesperson, contract_start_date, contract_end_date, total_price,payType, customer_phone, customer_email, repairman, cycle, contact_person, contact_address, contact_phone, contact_email, elevators_number, area, address, files_id, bonus, max_bonus, created_at, created_by) 
                 VALUES (:contract_no, :contract_type, :company, :customer_no, :salesperson, :contract_start_date, :contract_end_date, :total_price, :payType ,:customer_phone, :customer_email, :repairman, :cycle, :contact_person, :contact_address, :contact_phone, :contact_email, :elevators_number, :area, :address, :files_id, :bonus, :max_bonus, :created_at, :created_by)";
-        $stmt = $conn->prepare($sql_str);
-        $stmt->bindParam(":contract_no", $contractno);
-        $stmt->bindParam(":contract_type", $contract_type);
-        $stmt->bindParam(":company", $company);
-        $stmt->bindParam(":customer_no", $customer_no);
-        $stmt->bindParam(":salesperson", $salesperson);
-        $stmt->bindParam(":contract_start_date", $contract_begin_date);
-        $stmt->bindParam(":contract_end_date", $contract_end_date);
-        $stmt->bindParam(":total_price", $total_price);
-        $stmt->bindParam(":customer_phone", $customer_phone);
-        $stmt->bindParam(":customer_email", $customer_email);
-        $stmt->bindParam(":repairman", $repairman);
-        $stmt->bindParam(":cycle", $cycle);
-        $stmt->bindParam(":contact_person", $contact_person);
-        $stmt->bindParam(":contact_address", $contact_address);
-        $stmt->bindParam(":contact_phone", $contact_phone);
-        $stmt->bindParam(":contact_email", $contact_email);
-        $stmt->bindParam(":elevators_number", $elevators_number);
-        $stmt->bindParam(":area", $area);
-        $stmt->bindParam(":address", $address);
-        $stmt->bindParam(":files_id", $files_id);
-        $stmt->bindParam(":bonus", $bonus);
-        $stmt->bindParam(":max_bonus", $max_bonus);
-        $stmt->bindParam(":created_at", $created_at);
-        $stmt->bindParam(":created_by", $user_id);
-        $stmt->bindParam(':payType', $payType);
-
-        $stmt->execute();
-
-        // $date = date('Y-m-sH-s-i');
-        // $createTime = str_replace("-", '', $date);
-        // $sql = "INSERT INTO comCustomer(BizPartnerId,PersonId,CreatorId,IsInUsed,InvoiceAddress,CreateTime)VALUES(:BizPartnerId,:PersonId,:CreatorId,1,:InvoiceAddress,:CreateTime)";
-        // $stmt = $connT8->prepare($sql);
-        // $stmt->bindParam(':BizPartnerId', $contractno);
-        // $stmt->bindParam(':PersonId', $salesman);
-        // $stmt->bindParam(':CreatorId', $user_id);
-        // $stmt->bindParam(':InvoiceAddress', $address);
-        // $stmt->bindParam(':CreateTime', $createTime);
+    $stmt = $conn->prepare($sql_str);
+    $stmt->bindParam(":contract_no", $contractno);
+    $stmt->bindParam(":contract_type", $contract_type);
+    $stmt->bindParam(":company", $company);
+    $stmt->bindParam(":customer_no", $customer_no);
+    $stmt->bindParam(":salesperson", $salesperson);
+    $stmt->bindParam(":contract_start_date", $contract_begin_date);
+    $stmt->bindParam(":contract_end_date", $contract_end_date);
+    $stmt->bindParam(":total_price", $total_price);
+    $stmt->bindParam(":customer_phone", $customer_phone);
+    $stmt->bindParam(":customer_email", $customer_email);
+    $stmt->bindParam(":repairman", $repairman);
+    $stmt->bindParam(":cycle", $cycle);
+    $stmt->bindParam(":contact_person", $contact_person);
+    $stmt->bindParam(":contact_address", $contact_address);
+    $stmt->bindParam(":contact_phone", $contact_phone);
+    $stmt->bindParam(":contact_email", $contact_email);
+    $stmt->bindParam(":elevators_number", $elevators_number);
+    $stmt->bindParam(":area", $area);
+    $stmt->bindParam(":address", $address);
+    $stmt->bindParam(":files_id", $files_id);
+    $stmt->bindParam(":bonus", $bonus);
+    $stmt->bindParam(":max_bonus", $max_bonus);
+    $stmt->bindParam(":created_at", $created_at);
+    $stmt->bindParam(":created_by", $user_id);
+    $stmt->bindParam(':payType', $payType);
 
-        // $stmt->execute();
-        // T8insert($_POST, $facilityno);
-
-        header('Content-Type: application/json');
-        $jsonData = json_encode($files);
+    $stmt->execute();
 
-        $conn->commit();
-    } catch (PDOException $e) {
-        $conn->rollback();
-        http_response_code(404);
-        echo $e->getMessage();
-        die('Error!:' . $e->getMessage());
-    }
+    // $date = date('Y-m-sH-s-i');
+    // $createTime = str_replace("-", '', $date);
+    // $sql = "INSERT INTO comCustomer(BizPartnerId,PersonId,CreatorId,IsInUsed,InvoiceAddress,CreateTime)VALUES(:BizPartnerId,:PersonId,:CreatorId,1,:InvoiceAddress,:CreateTime)";
+    // $stmt = $connT8->prepare($sql);
+    // $stmt->bindParam(':BizPartnerId', $contractno);
+    // $stmt->bindParam(':PersonId', $salesman);
+    // $stmt->bindParam(':CreatorId', $user_id);
+    // $stmt->bindParam(':InvoiceAddress', $address);
+    // $stmt->bindParam(':CreateTime', $createTime);
+
+    // $stmt->execute();
+    T8insert($_POST, $facilityno);
+
+    //     header('Content-Type: application/json');
+    //     $jsonData = json_encode($files);
+
+    //     $conn->commit();
+    // } catch (PDOException $e) {
+    //     $conn->rollback();
+    //     http_response_code(404);
+    //     echo $e->getMessage();
+    //     die('Error!:' . $e->getMessage());
+    // }
 };
 
 function T8insert($data, $facilityno)
 {
     require_once("../connt8.php");
-    include "../../T8_Authorization.php";
-
+    require_once("./T8salIncomeApply.php");
     $contractno = !empty($data['contractno']) ? $data['contractno'] : null; // 合約號
     $address = !empty($data['address']) ? $data['address'] : null; // 客戶地址
     $customer = !empty($data['customer']) ? $data['customer'] : null; //企業名稱
@@ -382,78 +381,78 @@ function T8insert($data, $facilityno)
         echo 'Error';
         exit;
     }
-    if (empty($result)) {
-        // 若 客戶資料為空，新增一筆到 comCustomer
-        // 新增客戶資料
-        $sql = "INSERT INTO comBusinessPartner
-        (BizPartnerId,BizPartnerName,BusinessAttr,CountryId,WorkTelNo,BizToDate,TaxNo,EnterpriseName,ContactAddress,EMail,CreatorId,CreateTime,BizPartnerTypeId)
-        VALUES(:BizPartnerId,:BizPartnerName,1,'TW',:WorkTelNo,99999999,:TaxNo,:EnterpriseName,:ContactAddress,:EMail,:CreatorId,:CreateTime,'10')";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':BizPartnerId', $contractno);
-        $stmt->bindParam(':BizPartnerName', $partyA);
-        $stmt->bindParam(':WorkTelNo', $phone);
-        $stmt->bindParam(':TaxNo', $vat);
-        $stmt->bindParam(':EnterpriseName', $customer);  //企業名稱
-        $stmt->bindParam(':ContactAddress', $partyAaddress);
-        $stmt->bindParam(':EMail', $email);
-        $stmt->bindParam(':CreatorId', $user_id);
-        $stmt->bindParam(':CreateTime', $createTime);
-
-        $stmt->execute();
-
-        $sql = "INSERT INTO comCustomer
-        (OrgId,BizPartnerTypeId,CurrId,BizPartnerId,PersonId,CreatorId,IsInUsed,InvoiceAddress,CreateTime)
-        VALUES('1000','10','TWD',:BizPartnerId,:PersonId,:CreatorId,1,:InvoiceAddress,:CreateTime)";
-        $stmt = $connT8->prepare($sql);
-
-        $stmt->bindParam(':BizPartnerId', $contractno);
-        $stmt->bindParam(':PersonId', $salesman);
-        $stmt->bindParam(':CreatorId', $user_id);
-        $stmt->bindParam(':InvoiceAddress', $address);
-        $stmt->bindParam(':CreateTime', $createTime);
-
-        $stmt->execute();
-    } else {
-        //     // 若客戶資料不為空，更新該客戶資訊。
-        $sql = "UPDATE comCustomer SET 
-            PersonId=:PersonId,
-            InvoiceAddress=:InvoiceAddress,
-            LastOperatorId=:LastOperatorId,
-            LastOperateTime=:LastOperateTime
-            WHERE BizPartnerId=:BizPartnerId
-            ";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':PersonId', $salesman);
-        $stmt->bindParam(':InvoiceAddress', $address);
-        $stmt->bindParam(':LastOperatorId', $user_id);
-        $stmt->bindParam(':LastOperateTime', $createTime);
-        $stmt->bindParam(':BizPartnerId', $contractno);
-        $stmt->execute();
-
-
-        $sql = "UPDATE comBusinessPartner SET
-            BizPartnerName=:BizPartnerName,
-            WorkTelNo=:WorkTelNo,
-            TaxNo=:TaxNo,
-            EnterpriseName=:EnterpriseName,
-            ContactAddress=:ContactAddress,
-            EMail=:EMail,
-            LastOperatorId=:LastOperatorId,
-            LastOperateTime=:LastOperateTime
-            WHERE BizPartnerId = :BizPartnerId
-            ";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':BizPartnerName', $partyA);
-        $stmt->bindParam(':WorkTelNo', $phone);
-        $stmt->bindParam(':TaxNo', $vat);
-        $stmt->bindParam(':EnterpriseName', $customer);
-        $stmt->bindParam(':ContactAddress', $partyAaddress);
-        $stmt->bindParam(':EMail', $email);
-        $stmt->bindParam(':LastOperatorId', $user_id);
-        $stmt->bindParam(':LastOperateTime', $createTime);
-        $stmt->bindParam(':BizPartnerId', $contractno);
-        $stmt->execute();
-    }
+    // if (empty($result)) {
+    //     // 若 客戶資料為空，新增一筆到 comCustomer
+    //     // 新增客戶資料
+    //     $sql = "INSERT INTO comBusinessPartner
+    //     (BizPartnerId,BizPartnerName,BusinessAttr,CountryId,WorkTelNo,BizToDate,TaxNo,EnterpriseName,ContactAddress,EMail,CreatorId,CreateTime,BizPartnerTypeId)
+    //     VALUES(:BizPartnerId,:BizPartnerName,1,'TW',:WorkTelNo,99999999,:TaxNo,:EnterpriseName,:ContactAddress,:EMail,:CreatorId,:CreateTime,'10')";
+    //     $stmt = $connT8->prepare($sql);
+    //     $stmt->bindParam(':BizPartnerId', $contractno);
+    //     $stmt->bindParam(':BizPartnerName', $partyA);
+    //     $stmt->bindParam(':WorkTelNo', $phone);
+    //     $stmt->bindParam(':TaxNo', $vat);
+    //     $stmt->bindParam(':EnterpriseName', $customer);  //企業名稱
+    //     $stmt->bindParam(':ContactAddress', $partyAaddress);
+    //     $stmt->bindParam(':EMail', $email);
+    //     $stmt->bindParam(':CreatorId', $user_id);
+    //     $stmt->bindParam(':CreateTime', $createTime);
+
+    //     $stmt->execute();
+
+    //     $sql = "INSERT INTO comCustomer
+    //     (OrgId,BizPartnerTypeId,CurrId,BizPartnerId,PersonId,CreatorId,IsInUsed,InvoiceAddress,CreateTime)
+    //     VALUES('1000','10','TWD',:BizPartnerId,:PersonId,:CreatorId,1,:InvoiceAddress,:CreateTime)";
+    //     $stmt = $connT8->prepare($sql);
+
+    //     $stmt->bindParam(':BizPartnerId', $contractno);
+    //     $stmt->bindParam(':PersonId', $salesman);
+    //     $stmt->bindParam(':CreatorId', $user_id);
+    //     $stmt->bindParam(':InvoiceAddress', $address);
+    //     $stmt->bindParam(':CreateTime', $createTime);
+
+    //     $stmt->execute();
+    // } else {
+    //     //     // 若客戶資料不為空，更新該客戶資訊。
+    //     $sql = "UPDATE comCustomer SET 
+    //         PersonId=:PersonId,
+    //         InvoiceAddress=:InvoiceAddress,
+    //         LastOperatorId=:LastOperatorId,
+    //         LastOperateTime=:LastOperateTime
+    //         WHERE BizPartnerId=:BizPartnerId
+    //         ";
+    //     $stmt = $connT8->prepare($sql);
+    //     $stmt->bindParam(':PersonId', $salesman);
+    //     $stmt->bindParam(':InvoiceAddress', $address);
+    //     $stmt->bindParam(':LastOperatorId', $user_id);
+    //     $stmt->bindParam(':LastOperateTime', $createTime);
+    //     $stmt->bindParam(':BizPartnerId', $contractno);
+    //     $stmt->execute();
+
+
+    //     $sql = "UPDATE comBusinessPartner SET
+    //         BizPartnerName=:BizPartnerName,
+    //         WorkTelNo=:WorkTelNo,
+    //         TaxNo=:TaxNo,
+    //         EnterpriseName=:EnterpriseName,
+    //         ContactAddress=:ContactAddress,
+    //         EMail=:EMail,
+    //         LastOperatorId=:LastOperatorId,
+    //         LastOperateTime=:LastOperateTime
+    //         WHERE BizPartnerId = :BizPartnerId
+    //         ";
+    //     $stmt = $connT8->prepare($sql);
+    //     $stmt->bindParam(':BizPartnerName', $partyA);
+    //     $stmt->bindParam(':WorkTelNo', $phone);
+    //     $stmt->bindParam(':TaxNo', $vat);
+    //     $stmt->bindParam(':EnterpriseName', $customer);
+    //     $stmt->bindParam(':ContactAddress', $partyAaddress);
+    //     $stmt->bindParam(':EMail', $email);
+    //     $stmt->bindParam(':LastOperatorId', $user_id);
+    //     $stmt->bindParam(':LastOperateTime', $createTime);
+    //     $stmt->bindParam(':BizPartnerId', $contractno);
+    //     $stmt->execute();
+    // }
     // echo '<pre>';
     // print_r($elevators['maintainance']);
     // echo '</pre>';
@@ -472,17 +471,17 @@ function T8insert($data, $facilityno)
     // echo '</pre>';
 
     // //新增於 comProject。合約 table
-    $sql = "INSERT INTO comProject(ProjectId,ProjectName,TypeId,ValidityFromDate,ValidityToDate,CreateTime,CreatorId,IsInUsed) 
-    VALUES(:ProjectId,:ProjectName,:TypeId,:ValidityFromDate,:ValidityToDate,:CreateTime,:CreatorId,1)";
-    $stmt = $connT8->prepare($sql);
-    $stmt->bindParam(':ProjectId', $contractno);
-    $stmt->bindParam(':ProjectName', $customer);
-    $stmt->bindParam(':TypeId', $type);
-    $stmt->bindParam(':ValidityFromDate', $beginDate);
-    $stmt->bindParam(':ValidityToDate', $endDate);
-    $stmt->bindParam(':CreateTime', $createTime);
-    $stmt->bindParam(':CreatorId', $user_id);
-    $stmt->execute();
+    // $sql = "INSERT INTO comProject(ProjectId,ProjectName,TypeId,ValidityFromDate,ValidityToDate,CreateTime,CreatorId,IsInUsed) 
+    // VALUES(:ProjectId,:ProjectName,:TypeId,:ValidityFromDate,:ValidityToDate,:CreateTime,:CreatorId,1)";
+    // $stmt = $connT8->prepare($sql);
+    // $stmt->bindParam(':ProjectId', $contractno);
+    // $stmt->bindParam(':ProjectName', $customer);
+    // $stmt->bindParam(':TypeId', $type);
+    // $stmt->bindParam(':ValidityFromDate', $beginDate);
+    // $stmt->bindParam(':ValidityToDate', $endDate);
+    // $stmt->bindParam(':CreateTime', $createTime);
+    // $stmt->bindParam(':CreatorId', $user_id);
+    // $stmt->execute();
 
     // // 新增電梯數
     foreach ($elevators as $index => $elevator) {
@@ -490,39 +489,92 @@ function T8insert($data, $facilityno)
         // print_r($elevator);
         // echo '</pre>';
 
-        $sql = "INSERT INTO comMaterial
-        (FOrgid,MaterialId,MaterialTypeId,MaterialCategoryId,CreatorId,CreateTime) 
-        VALUES ('1000',:MaterialId,'10','E',:CreatorId,:CreateTime)";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':MaterialId', $facilityno[$index]);
-        $stmt->bindParam(':CreatorId', $user_id);
-        $stmt->bindParam(':CreateTime', $createTime);
-        $stmt->execute();
-
-        $sql = "INSERT INTO comMaterialGroup
-        (MaterialTypeId,MaterialId,MaterialName,MaterialCategoryId,IsInUsed,UnitId,CreatorId,CreateTime) 
-        VALUES ('10',:MaterialId,:MaterialName,'E',1,'SET',:CreatorId,:CreateTime)";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':MaterialId', $facilityno[$index]);
-        $stmt->bindParam(':MaterialName', $customer);
-        $stmt->bindParam(':CreatorId', $user_id);
-        $stmt->bindParam(':CreateTime', $createTime);
-        $stmt->execute();
-
-        $sql = "INSERT INTO comMaterialPurchases
-        (Orgid,MaterialTypeId,MaterialId,CurrId,SUnitId,TaxId,CreatorId,CreateTime) 
-        VALUES ('1000','10',:MaterialId,'TWD','SET','ST005',:CreatorId,:CreateTime)";
-        $stmt = $connT8->prepare($sql);
-        $stmt->bindParam(':MaterialId', $facilityno[$index]);
-        $stmt->bindParam(':CreatorId', $user_id);
-        $stmt->bindParam(':CreateTime', $createTime);
-        $stmt->execute();
-?>
-        <script>
-
-        </script>
-<?php
+        // $sql = "INSERT INTO comMaterial
+        // (FOrgid,MaterialId,MaterialTypeId,MaterialCategoryId,CreatorId,CreateTime) 
+        // VALUES ('1000',:MaterialId,'10','E',:CreatorId,:CreateTime)";
+        // $stmt = $connT8->prepare($sql);
+        // $stmt->bindParam(':MaterialId', $facilityno[$index]);
+        // $stmt->bindParam(':CreatorId', $user_id);
+        // $stmt->bindParam(':CreateTime', $createTime);
+        // $stmt->execute();
+
+        // $sql = "INSERT INTO comMaterialGroup
+        // (MaterialTypeId,MaterialId,MaterialName,MaterialCategoryId,IsInUsed,UnitId,CreatorId,CreateTime) 
+        // VALUES ('10',:MaterialId,:MaterialName,'E',1,'SET',:CreatorId,:CreateTime)";
+        // $stmt = $connT8->prepare($sql);
+        // $stmt->bindParam(':MaterialId', $facilityno[$index]);
+        // $stmt->bindParam(':MaterialName', $customer);
+        // $stmt->bindParam(':CreatorId', $user_id);
+        // $stmt->bindParam(':CreateTime', $createTime);
+        // $stmt->execute();
+
+        // $sql = "INSERT INTO comMaterialPurchases
+        // (Orgid,MaterialTypeId,MaterialId,CurrId,SUnitId,TaxId,CreatorId,CreateTime) 
+        // VALUES ('1000','10',:MaterialId,'TWD','SET','ST005',:CreatorId,:CreateTime)";
+        // $stmt = $connT8->prepare($sql);
+        // $stmt->bindParam(':MaterialId', $facilityno[$index]);
+        // $stmt->bindParam(':CreatorId', $user_id);
+        // $stmt->bindParam(':CreateTime', $createTime);
+        // $stmt->execute();
+
+        // $arr = [];
+        $IncomeId = [
+            'A40006' => 1,
+            'A40007' => 4,
+            'A40003' => 12,
+            'A40004' => 6,
+            'A40005' => 2
+        ];
+        $SQuantity = $elevator['maintain_months'] / $IncomeId[$payType];  //分幾期 => 總共保養月 / 分期月
+        for ($i = 1; $i <= $IncomeId[$payType]; $i++) {
+            $rows_data = [
+                "BillNo" => " $contractno ",
+                "IncomeId" => " $payType ",
+                "TaxId" => "ST005",
+                "RowCode" => $i,
+                "RowNo" => $i,
+                "ItemType" => 1,
+                "SPrice" =>  $elevator['sold_price'],
+                "SQuantity" => $SQuantity,
+                "ProjectId" => " $contractno ",
+                "FromSourceTag" => 0,
+                "CU_MaterialId" => " $facilityno[$index] "
+            ];
+            $salIncomeApplyDetail_rows[] = $rows_data;
+        }
     }
 
-    $connT8->commit();
+    $salIncomeApplyMaster_rows = [
+        "BillNo" => "$contractno",
+        "BillDate" => $date_1,
+        "OrgId" => "1000",
+        "FOrgId" => "1000",
+        "TypeId" => "RAS",
+        "BpOrgId" => "1000",
+        "BizPartnerId" => "$contractno",
+        "CurrId" => "TWD",
+        "CurrOAmount" => 1,
+        "CurrLAmount" => 1,
+        "PersonId" => "$salesman",
+        "DtOrgId" => "1000",
+        "DueToId" => "$contractno",
+        "TaxId" => "ST005",
+        "CompId" => "1001",
+        "CreatorId" => "$user_id"
+    ];
+
+    $salIncomeApplyMaster = [
+        'name' => "salIncomeApplyMaster",
+        'rows' => [$salIncomeApplyMaster_rows]
+    ];
+
+    $salIncomeApplyDetail = [
+        'name' => "salIncomeApplyDetail",
+        'rows' => $salIncomeApplyDetail_rows
+    ];
+    $API_body[] = $salIncomeApplyMaster;
+    $API_body[] = $salIncomeApplyDetail;
+    T8API($API_body);
+    // json_encode($API_body);
+    // $connT8->commit();
 }
diff --git a/wms/contract/api/test.json b/wms/contract/api/test.json
new file mode 100644
index 00000000..83da16d0
--- /dev/null
+++ b/wms/contract/api/test.json
@@ -0,0 +1,115 @@
+[
+    {
+        "name": "salIncomeApplyMaster",
+        "rows": [
+            {
+                "BillNo": "B23100060",
+                "BillDate": "2024-01-5215-52",
+                "OrgId": "1000",
+                "FOrgId": "1000",
+                "TypeId": "RAS",
+                "BpOrgId": "1000",
+                "BizPartnerId": "B23100060",
+                "CurrId": "TWD",
+                "CurrOAmount": 1,
+                "CurrLAmount": 1,
+                "PersonId": "M0065",
+                "DtOrgId": "1000",
+                "DueToId": "B23100060",
+                "TaxId": "ST005",
+                "CompId": "1001",
+                "CreatorId": "M0225"
+            }
+        ]
+    },
+    {
+        "name": "salIncomeApplyDetail",
+        "rows": [
+            {
+                "BillNo": " B23100060 ",
+                "IncomeId": " A40007 ",
+                "TaxId": "ST005",
+                "RowCode": 1,
+                "RowNo": 1,
+                "ItemType": 1,
+                "SPrice": 1250,
+                "SQuantity": 3,
+                "ProjectId": " B23100060 ",
+                "FromSourceTag": 0,
+                "CU_MaterialId": " 4TZ53201 "
+            },
+            {
+                "BillNo": " B23100060 ",
+                "IncomeId": " A40007 ",
+                "TaxId": "ST005",
+                "RowCode": 2,
+                "RowNo": 2,
+                "ItemType": 1,
+                "SPrice": 1250,
+                "SQuantity": 3,
+                "ProjectId": " B23100060 ",
+                "FromSourceTag": 0,
+                "CU_MaterialId": " 4TZ53201 "
+            },
+            {
+                "BillNo": " B23100060 ",
+                "IncomeId": " A40007 ",
+                "TaxId": "ST005",
+                "RowCode": 3,
+                "RowNo": 3,
+                "ItemType": 1,
+                "SPrice": 1250,
+                "SQuantity": 3,
+                "ProjectId": " B23100060 ",
+                "FromSourceTag": 0,
+                "CU_MaterialId": " 4TZ53201 "
+            },
+            {
+                "BillNo": " B23100060 ",
+                "IncomeId": " A40007 ",
+                "TaxId": "ST005",
+                "RowCode": 4,
+                "RowNo": 4,
+                "ItemType": 1,
+                "SPrice": 1250,
+                "SQuantity": 3,
+                "ProjectId": " B23100060 ",
+                "FromSourceTag": 0,
+                "CU_MaterialId": " 4TZ53201 "
+            }
+        ]
+    }
+]
+
+
+[
+    {
+        "name": "OtherStockOutMtable",
+        "rows": [
+            {
+                "BillNo": "Z001",
+                "BillDate": 20210427,
+                "OrgId": "1000",
+                "FOrgId": "1000",
+                "TypeId": "OD",
+                "BizPartnerId": "Z001",
+                "PersonId": "Z001",
+                "DeptId": "T001",
+                "CompId": "1000"
+            }
+        ]
+    },
+    {
+        "name": "OtherStockOutDetail",
+        "rows": [
+            {
+                "BillNo": "Z001",
+                "RowCode": 1,
+                "MaterialId": "Z001",
+                "SupplyOrgId": "1000",
+                "SQuantity": 1,
+                "WarehouseId": "10"
+            }
+        ]
+    }
+]
\ No newline at end of file
diff --git a/wms/contract/api/testT8API.php b/wms/contract/api/testT8API.php
index 9b71cbac..dab6cd29 100644
--- a/wms/contract/api/testT8API.php
+++ b/wms/contract/api/testT8API.php
@@ -1,108 +1,61 @@
 <?php
-$now = gmdate("YmdHis");
-$data = 'M0000.' . $now;
-$sign = hash_hmac('SHA256', $data, 'B2D6395D2883E26C', false);
-
-$test = [
-    "A40005" => 2,
-    "A40001" => 3,
-    "A40002" => 4,
+require_once('../../T8_Authorization_from_bpm.php');
+$validation = get_Auth();
+$data = [
+    [
+        "name" => "OtherStockOutMtable",
+        "rows" => [
+            [
+                "BillNo" => "00850110", // 單據編號 varchar(20)
+                "BillDate" => 20210427, // 單據日期 int
+                "OrgId" => "1000",      //組織  varchar(20)
+                "FOrgId" => "1000",     //核算組織 varchar(20)
+                "TypeId" => "OS",       //單據類型  varchar(10)
+                "BizPartnerId" => "",   //往來對象(供應商) 可為空
+                "PersonId" => "C0003",  // 經辦人員 varchar(20)
+                "DeptId" => "250",      // 經辦部門 varchar(20)
+                "CompId" => "1001"      // 公司 varchar(20)
+            ]
+        ]
+    ], [
+        "name" => "OtherStockOutDetail",
+        "rows" => [
+            [
+                "BillNo" => "00850110", //單據編號 varchar(20)
+                "RowCode" => 1,         // 序號  int(10)
+                "MaterialId" => "MX00021003",  // 產品代碼 -> 產品集成 varchar(40)
+                "SupplyOrgId" => "1000", // 供貨組織代碼 varchar(20)
+                "SQuantity" => 1,       // 交易數量 numeric(19)
+                "WarehouseId" => "100"  // 倉庫代碼 varchar(20)
+            ]
+        ]
+    ]
 ];
-echo '<pre>';
-print_r($test['A40001']);
-echo '</pre>';
-$payType = 'A0005';
-?>
-
-<script src="https://code.jquery.com/jquery-3.4.1.js" integrity="sha256-WpOohJOqMqqyKL9FccASB9O0KwACQJpFTUBLTYOVvVU=" crossorigin="anonymous"></script>
-<script>
-    // var body = [{
-    //         "name": "salIncomeApplyMaster",
-    //         "rows": [{
-    //             "BillNo": "Z001",
-    //             "BillDate": 20160811,
-    //             "OrgId": "1000",
-    //             "FOrgId": "1000",
-    //             "TypeId": "RR",
-    //             "BpOrgId": "1000",
-    //             "BizPartnerId": "C002",
-    //             "CurrId": "RMB",
-    //             "CurrOAmount": 1,
-    //             "CurrLAmount": 1,
-    //             "PersonId": "T001",
-    //             "DtOrgId": "1000",
-    //             "DueToId": "C002",
-    //             "TaxId": "123",
-    //             "CompId": "1000"
-    //         }]
-    //     },
-    //     {
-    //         "name": "salIncomeApplyDetail",
-    //         "rows": [{
-    //             "BillNo": "Z001",
-    //             "IncomeId": "F203",
-    //             "TaxId": "ST003",
-    //             "RowCode": 1,
-    //             "ItemType": "1",
-    //             "SPrice": 50,
-    //             "SQuantity": 1,
-    //             "FromSourceTag": 0,
-    //             "FromBillNo": "123"
-    //         }]
-    //     }
-    // ]
-
-    // var json = JSON.stringify(body);
-    // console.log(json);
-    // //     obj = {
-    // //         type: 'POST',
-    // //         // url: `${corsurl}${apiurl}`,
-    // //         url: `${apiurl}`,
-    // //         dataType: 'json',
-    // //         headers: headerParam,
-    // //         data: json,
-    // //         // dataType: "json",
-    // //         success: function(res) {
-    // //             console.log(res.Status);
-    // //             console.log(res.ErrorMsg);
-    // //             console.log(res.Data);
-    // //         }
-    // //     };
-    // //     jQuery.ajax(obj);
-    // //     // }
-    // // })
-    // $.ajax({
-    //     url: 'https://127.0.0.1:780/twWebAPI/V1/SALINCOMEAPPLY/PostERPData',
-    //     method: 'POST',
-    //     dataType: 'json',
-    //     // headers: headerParam,
-    //     data: body,
-    //     success: function(res) {
-    //         console.log('Success');
-    //     },
-    //     error: function(err) {
-    //         console.log(err);
-    //     }
-    // })
-    let No = 'B123';
-    let arr = [];
-    for (let i = 1; i < 5; i++) {
-        let obj = {
-            'No': No,
-            'name': '12344',
-            'mum': i
-        };
-        // let arr = [];
-        arr.push(obj);
-    }
-    console.log(JSON.stringify(arr));
-
-    let obj = {
-        'A0004': 3,
-        'A0005': 4
-    }
+// $data = file_get_contents('test.json');
+// echo '<pre>';
+// print_r($data);
+// echo '</pre>';
+$api_url = 'https://erp.masada.com.tw:780/twWebAPI/V1/STKOTHERSTOCKOUT/PostERPData';
+$header = [
+    "CHI_Authorization :" . $validation
+];
+$ch = curl_init();
+curl_setopt($ch, CURLOPT_URL, $api_url); // 设置请求的URL
+curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
+curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
+curl_setopt($ch, CURLOPT_POST, 1);
+curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($data));
+curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
+$response = curl_exec($ch);
+if ($response === false) {
+    echo 'Curl error: ' . curl_error($ch);
+} else {
+    $result = json_decode($response, true);
+    // $validation = $result['Data']['CHI_Authorization'];
+    echo '<pre>';
+    print_r($result);
+    echo '</pre>';
+    return $result;
+}
 
-    for (let i = 1; i <= obj.<?= $payType ?>; i++) {
-        console.log(i);
-    }
-</script>
\ No newline at end of file
+curl_close($ch);
diff --git a/wms/fun_global.php b/wms/fun_global.php
index c57b3a3d..ca0647ba 100644
--- a/wms/fun_global.php
+++ b/wms/fun_global.php
@@ -91,14 +91,22 @@ function pricereview_class($rate, $user_id, &$ret = [], $special_fee)
     $res = mysqli_query($link, $sql);
     while ($row = mysqli_fetch_assoc($res)) {
         if ($row["manager"] == "M0001") return; // 董事長略過
-        if ($row["manager"] != "M0060" && $row["manager"] != "M0006" && $row["manager"] != "M0008") {
-            $ret[1] = $row["manager"] . ",,";
-            pricereview_class($rate, $row["manager"], $ret,  $special_fee);
+        if ($user_id == 'TEST01') {
+            $ret[1] =   "test04,,";
+            $ret[2] =   "test02,,";
+            $ret[3] =   "test03,,";
+            $ret[4] =   "test05,,";
+            return $ret;
         } else {
-            $ret[2] = "M0024,,<##>M0107,,";         // 業務部專員：M0024許伃廷、M0107許紓晴(第2關有多位審核人)
-            $ret[3] = "M0060,,";                    // 業務協理
-            if ($rate < 80 || $special_fee > 0) {
-                $ret[4] = "M0006,,";    // 總經理
+            if ($row["manager"] != "M0060" && $row["manager"] != "M0006" && $row["manager"] != "M0008") {
+                $ret[1] = $row["manager"] . ",,";
+                pricereview_class($rate, $row["manager"], $ret,  $special_fee);
+            } else {
+                $ret[2] = "M0024,,<##>M0107,,";         // 業務部專員：M0024許伃廷、M0107許紓晴(第2關有多位審核人)
+                $ret[3] = "M0060,,";                    // 業務協理
+                if ($rate < 80 || $special_fee > 0) {
+                    $ret[4] = "M0006,,";    // 總經理
+                }
             }
         }
     }
@@ -122,10 +130,18 @@ function pricereview_renovate_class($rate, $user_id, $renovate_flag)
     $res = mysqli_query($link, $sql);
     if ($row = mysqli_fetch_assoc($res)) {
         if ($row["manager"] == "M0001") return; // 董事長略過
-        if ($row["manager"] != "M0060" && $row["manager"] != "M0006" && $row["manager"] != "M0008") {
-            $ret[1] = $row["manager"];
+        if ($row["manager"] == "TEST04" || $user_id = 'TEST01') {
+            $ret[1] =   "test04,,";
+            $ret[2] =   "test02,,";
+            $ret[3] =   "test03,,";
+            $ret[4] =   "test05,,";
+            return $ret;
         } else {
-            $ret[1] = $user_id;
+            if ($row["manager"] != "M0060" && $row["manager"] != "M0006" && $row["manager"] != "M0008") {
+                $ret[1] = $row["manager"];
+            } else {
+                $ret[1] = $user_id;
+            }
         }
     }
     mysqli_free_result($res);
diff --git a/wms/mkt/pricereview-check.php b/wms/mkt/pricereview-check.php
index 37d899bb..da0b84d8 100644
--- a/wms/mkt/pricereview-check.php
+++ b/wms/mkt/pricereview-check.php
@@ -68,22 +68,26 @@ foreach ($res as $data) {
     if (!empty($row_s["sign1"])) list($person1, $status1, $dtte1)  = explode(",", $row_s["sign1"]);
     else $person1 = $status1 = $dtte1 = "";
     if (!empty($row_s["sign2"])) {
-        if ($st == 2 && (preg_match("/Y/", $row_s["sign2"]) || preg_match("/N/", $row_s["sign2"]))) {
-            echo "<script>";
-            echo "alert('請勿重覆審核!');";
-            echo "location.href='pricereview-index.php?function_name=pricereview&" . $token_link . "';";
-            echo "</script>";
-            exit;
-        }
-        $sign2_arr = explode("<##>", $row_s["sign2"]);  // M0024,,<##>M0175,,
-        $person2_arr = [];
-        foreach ($sign2_arr as $v) {
-            list($person2, $status2, $dtte2) = explode(",", $v);
-            if (strlen($v) == 7) {  // 未審
-                $person2_arr[] = $person2;
-            } else {
-                unset($person2_arr);
-                break;
+        if ($user_id == "TEST02") {
+            list($person2, $status2, $dtte2)  = explode(",", $row_s["sign2"]);
+        } else {
+            if ($st == 2 && (preg_match("/Y/", $row_s["sign2"]) || preg_match("/N/", $row_s["sign2"]))) {
+                echo "<script>";
+                echo "alert('請勿重覆審核!');";
+                echo "location.href='pricereview-index.php?function_name=pricereview&" . $token_link . "';";
+                echo "</script>";
+                exit;
+            }
+            $sign2_arr = explode("<##>", $row_s["sign2"]);  // M0024,,<##>M0175,,
+            $person2_arr = [];
+            foreach ($sign2_arr as $v) {
+                list($person2, $status2, $dtte2) = explode(",", $v);
+                if (strlen($v) == 7) {  // 未審
+                    $person2_arr[] = $person2;
+                } else {
+                    unset($person2_arr);
+                    break;
+                }
             }
         }
     } else $person2 = $status2 = $dtte2 = "";
@@ -118,13 +122,13 @@ foreach ($res as $data) {
     if ($st == 1 && ($person1 == $user_id) && ($status1 == "") || $user_id == 'TEST04') {
         $sign_on = 1;
     }
-    if ($st == 2 && ($person2 == $user_id || (isset($person2_arr) && in_array($user_id, $person2_arr))) && ($status2 == "")) {
+    if ($st == 2 && ($person2 == $user_id || (isset($person2_arr) && in_array($user_id, $person2_arr))) && ($status2 == "") || $user_id == 'TEST02') {
         $sign_on = 1;
     }
-    if ($st == 3 && ($person3 == $user_id) && ($status3 == "")) {
+    if ($st == 3 && ($person3 == $user_id) && ($status3 == "") || $user_id == 'TEST03') {
         $sign_on = 1;
     }
-    if ($st == 4 && ($person4 == $user_id) && ($status4 == "")) {
+    if ($st == 4 && ($person4 == $user_id) && ($status4 == "") || $user_id == 'TEST05') {
         $sign_on = 1;
     }
     // $sign_total=關卡數
@@ -286,12 +290,12 @@ foreach ($res as $data) {
                         mihtml += "<h5>OPTION</h5>";
                         console.log(data.content[k]);
                         Object.keys(data.content[k][14]).forEach(function(m) {
-                            if(data.content[k][14][m][0] != '') {
+                            if (data.content[k][14][m][0] != '') {
                                 mihtml += "<li>" + data.content[k][14][m][0] + "：" + commafy(data.content[k][14][m][1]) + "</li>";
                             }
                         });
                         Object.keys(data.content[k][16]).forEach(function(m) {
-                            if(data.content[k][16][m][0] != ''){
+                            if (data.content[k][16][m][0] != '') {
                                 mihtml += "<li>" + data.content[k][16][m][0] + "：" + commafy(data.content[k][16][m][1]) + "</li>";
                             }
                         });
@@ -556,7 +560,7 @@ foreach ($res as $data) {
                         $item_amt_B_all = 0;
                         $total_qty = 0;
                         foreach ($option_arr as $item_no => $val) {
-                            if($val['item_qty'] <= 0){
+                            if ($val['item_qty'] <= 0) {
                                 continue;
                             }
                             $total_qty = $total_qty + $val['item_qty'];
@@ -575,11 +579,11 @@ foreach ($res as $data) {
                             $idx++;
                         }
                         ?>
-                        <?php if($total_qty > 0): ?>
-                        <tr>
-                            <td colspan="4">小計</td>
-                            <td colspan="3"><input type="text" name="option_amt" id="option_amt" class="form-control dollar-right" size="8" value="<?= number_format($item_amt_B_all); ?>"></td>
-                        </tr>
+                        <?php if ($total_qty > 0) : ?>
+                            <tr>
+                                <td colspan="4">小計</td>
+                                <td colspan="3"><input type="text" name="option_amt" id="option_amt" class="form-control dollar-right" size="8" value="<?= number_format($item_amt_B_all); ?>"></td>
+                            </tr>
                         <?php endif; ?>
                     </tbody>
                 </table>
@@ -940,7 +944,7 @@ foreach ($res as $data) {
                     <li>營業權限85%以上；85-80%呈至區處長審核；80%以下呈至總經理審核。</li>
                 </ul>
             </div>
-            
+
             <div class="table-responsive">
                 <table class="table table-bordered">
                     <thead>
@@ -1016,7 +1020,7 @@ foreach ($res as $data) {
                     <input type="text" name="checker" id="checker" value="<?= $user_id; ?>" readonly>
                     <button type="submit" name="status" id="status_n" value="N" onclick="if (!confirm('確定不同意？')) return false;"><?php echo ($sign_total == $st) ? "結案(不同意)" : "不同意(退回)"; ?></button>
                     <button type="submit" name="status" id="status_y" value="Y" onclick="if (!confirm('確定同意？')) return false;">同意(上呈)</button>
-                    <?php if ($st == 3) : ?>
+                    <?php if ($st == 3 || $st == 4) : ?>
                         <button type="submit" name="status" id="status_yy" value="YY" onclick="if (!confirm('確定同意？')) return false;">同意(結案)</button>
                     <?php endif; ?>
                 <?php } else { ?>
diff --git a/wms/mkt/pricereview-index.php b/wms/mkt/pricereview-index.php
index d4fc5869..f3d93000 100644
--- a/wms/mkt/pricereview-index.php
+++ b/wms/mkt/pricereview-index.php
@@ -338,7 +338,7 @@ if ($data) :
                                 elseif ($ustatus == "N") $str = "<span class=\"glyphicon glyphicon-ban-circle\" title=\"不同意\"></span>";
                                 $str .= "<br>" . $accountname_arr[$uperson] . "<br>" . $udtte;
                             } else {
-                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 2) && (in_array($user_id, $ss_arr["sign_nt"]))) {
+                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 2) && (in_array($user_id, $ss_arr["sign_nt"])) || $user_id == 'TEST02') {
                                     $str = "<span class=\"glyphicon glyphicon-user\"></span>";
                                     $str = "待簽核";
                                     $str = "<a href=\"pricereview-check.php?st=2&id=" . $data["id"] . "&" . $para . "\" class=\"btn btn-primary btn-sm\">" . $str . "</a>";
@@ -383,13 +383,16 @@ if ($data) :
                         <td>
                             <?php
                             $str = $uperson = $ustatus = $udtte = "";
+
                             if (!empty($sign3)) list($uperson, $ustatus, $udtte) = explode(",", $sign3);
                             if ($ustatus) {
                                 if ($ustatus == "Y" || $ustatus == "YY") $str = "<span class=\"glyphicon glyphicon-ok\" title=\"同意\"></span>";
                                 elseif ($ustatus == "N") $str = "<span class=\"glyphicon glyphicon-ban-circle\" title=\"不同意\"></span>";
                                 $str .= "<br>" . $accountname_arr[$uperson] . "<br>" . $udtte;
                             } else {
-                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 3) && (in_array($user_id, $ss_arr["sign_nt"]))) {
+                                // if ($user_id == 'test03') {
+
+                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 3) && (in_array($user_id, $ss_arr["sign_nt"])) || $user_id == 'TEST03') {
                                     $str = "<span class=\"glyphicon glyphicon-user\"></span>";
                                     $str = "待簽核";
                                     $str = "<a href=\"pricereview-check.php?st=3&id=" . $data["id"] . "&" . $para . "\" class=\"btn btn-primary btn-sm\">" . $str . "</a>";
@@ -435,7 +438,7 @@ if ($data) :
                                 elseif ($ustatus == "N") $str = "<span class=\"glyphicon glyphicon-ban-circle\" title=\"不同意\"></span>";
                                 $str .= "<br>" . $accountname_arr[$uperson] . "<br>" . $udtte;
                             } else {
-                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 4) && (in_array($user_id, $ss_arr["sign_nt"]))) {
+                                if (($data["status"] == "YS") && ($ss_arr["sign_st"] == 4) && (in_array($user_id, $ss_arr["sign_nt"])) || $user_id == 'TEST05') {
                                     $str = "<span class=\"glyphicon glyphicon-user\"></span>";
                                     $str = "待簽核";
                                     $str = "<a href=\"pricereview-check.php?st=4&id=" . $data["id"] . "&" . $para . "\" class=\"btn btn-primary btn-sm\">" . $str . "</a>";
diff --git a/wms/mkt/pricereview-record-check.php b/wms/mkt/pricereview-record-check.php
index 094273da..5f27183e 100644
--- a/wms/mkt/pricereview-record-check.php
+++ b/wms/mkt/pricereview-record-check.php
@@ -25,21 +25,25 @@ if (isset($_POST['status'])) {
         if ($st == 1) {
             $sql = "sign1 = '$checker,$status,$check_date', sign1_note = '$sign_note'";
         } elseif ($st == 2) {
-            if ($sign_now > 1) {
-                echo "<script>";
-                echo "alert('請勿重覆審核。');";
-                echo "location.href='pricereview-index.php?function_name=pricereview&".$token_link."';";
-                echo "</script>";
-                exit;
-            }
-            $sign2_ori_arr = explode("<##>", $sign2_ori);
-            $sign2_upd_arr = [];
-            foreach ($sign2_ori_arr as $k => $v) {
-                list($a, $b, $c) = explode(",", $v);
-                if ($a == $checker) $sign2_upd_arr[$k] = $checker.",".$status.",".$check_date;
-                else $sign2_upd_arr[$k] = $v;
+            if ($user_id == 'TEST02') {
+                $sql = "sign2 = '$checker,$status,$check_date', sign2_note = '$sign_note'";
+            } else {
+                if ($sign_now > 1) {
+                    echo "<script>";
+                    echo "alert('請勿重覆審核。');";
+                    echo "location.href='pricereview-index.php?function_name=pricereview&" . $token_link . "';";
+                    echo "</script>";
+                    exit;
+                }
+                $sign2_ori_arr = explode("<##>", $sign2_ori);
+                $sign2_upd_arr = [];
+                foreach ($sign2_ori_arr as $k => $v) {
+                    list($a, $b, $c) = explode(",", $v);
+                    if ($a == $checker) $sign2_upd_arr[$k] = $checker . "," . $status . "," . $check_date;
+                    else $sign2_upd_arr[$k] = $v;
+                }
+                $sql = "sign2 = '" . implode("<##>", $sign2_upd_arr) . "', sign2_note = '$sign_note'";
             }
-            $sql = "sign2 = '".implode("<##>", $sign2_upd_arr)."', sign2_note = '$sign_note'";
         } elseif ($st == 3) {
             $sql = "sign3 = '$checker,$status,$check_date', sign3_note = '$sign_note'";
         } else {
@@ -48,7 +52,7 @@ if (isset($_POST['status'])) {
         if ($status == "N") {
             $sql2 .= "status = 'YN'";
             $end_flow = 1;
-        } elseif ($sign_total == ($sign_now+1)) {
+        } elseif ($sign_total == ($sign_now + 1)) {
             if ($user_id == "M0006") {
                 $final_price_total = str_replace(",", "", $final_price_total);
                 if ($final_price_total > 0) {
@@ -60,11 +64,10 @@ if (isset($_POST['status'])) {
                 $sql2 .= "status = 'YY'";
             }
             $end_flow = 1;
-        }elseif($status == 'YY'){
+        } elseif ($status == 'YY') {
             $sql2 .= "status = 'YY'";
             $end_flow = 1;
-        } 
-        else {
+        } else {
             $do_assign = 1;
         }
         if ($item_no_all) {
@@ -106,9 +109,9 @@ if (isset($_POST['status'])) {
                     $next_signer[] = substr($v, 0, 5);
                 }
             } elseif (strlen($row[1]) == 8) {
-                $next_signer = substr(str_replace(",","",$row[1]), 1);
+                $next_signer = substr(str_replace(",", "", $row[1]), 1);
             } elseif (strlen($row[2]) == 8) {
-                $next_signer = substr(str_replace(",","",$row[2]), 1);
+                $next_signer = substr(str_replace(",", "", $row[2]), 1);
             }
             do_assign("prm01", $id, $contractno_h, $next_signer, $st);
 
@@ -117,11 +120,11 @@ if (isset($_POST['status'])) {
             $ret = accountid2email($next_signer);
             if (!empty($ret)) {
                 foreach ($ret as $uid => $uemail) {
-                    $mail_list[] = [$uid, $uemail];    
+                    $mail_list[] = [$uid, $uemail];
                 }
-                include dirname(__DIR__)."/class/Cmail.php";
+                include dirname(__DIR__) . "/class/Cmail.php";
                 $sendmail = new Cmail;
-                $title = "【新梯價審通知】卷號：".$contractno_h;
+                $title = "【新梯價審通知】卷號：" . $contractno_h;
                 $content = "<p>您有待簽核案件，請至<a href=\"http://oa.masada.com.tw\">客戶管理 > 價格審查_新梯</a>，點擊「待簽核」進行作業，謝謝！</p>";
                 //print_r($mail_list);
                 $sendmail->sendx($title, $content, $mail_list);
@@ -131,13 +134,13 @@ if (isset($_POST['status'])) {
             end_flow("prm", "prm01", $id, $contractno_h);
         }
     }
-    
+
     mysqli_close($link);
     echo "<script type ='text/JavaScript'>";
-    if($fromsign == 1){
-        echo "location.href='../sign/list.php?system_id=prm&flow_id=prm01&function_name=show&".$token_link."';";
-    }else{
-        echo "location.href='pricereview-check.php?id=".$id."&function_name=pricereview&".$token_link."';";
+    if ($fromsign == 1) {
+        echo "location.href='../sign/list.php?system_id=prm&flow_id=prm01&function_name=show&" . $token_link . "';";
+    } else {
+        echo "location.href='pricereview-check.php?id=" . $id . "&function_name=pricereview&" . $token_link . "';";
     }
     echo "</script>";
 }