+ Paper:
+
+
+
+
"""
+
+def _txn_ref(entry_id: int, s: dict) -> str:
+ prefix = (s.get("txn_ref_prefix") or "TXN").strip()
+ return f"{prefix}{entry_id:07d}"
+
+def _logo_html(s: dict) -> str:
+ url = (s.get("logo_url") or "").strip()
+ if not url:
+ return ""
+ align = s.get("logo_align", "left")
+ max_w = int(s.get("logo_max_width", 200) or 200)
+ max_h = int(s.get("logo_max_height", 80) or 80)
+ style = f"max-width:{max_w}px;max-height:{max_h}px;"
+ css_cl = f"biz-logo align-{align}" if align in ("left","center","right") else "biz-logo"
+ return f'{name}
')
+
+ if addr and contacts:
+ parts.append(
+ f''
+ f'
'
+ )
+ elif addr:
+ parts.append(f'{"
".join(addr)}
'
+ f'".join(addr)}
{"
".join(contacts)}
'
+ f'".join(contacts)}
{"
".join(addr)}
')
+ elif contacts:
+ parts.append(f'".join(addr)}
{"
".join(contacts)}
')
+
+ return '".join(contacts)}
' + "\n".join(parts) + "
"
+
+def _rx_cell(label: str, value: str, extra_cls: str = "") -> str:
+ val_cls = ("rx-val " + extra_cls).strip()
+ return f'{label}
{value}
+
Account Statement
+
+ Member: {member['name']} — #{member['member_number']} —
+ Generated: {_now_display(s)}
+
+| Date and Time | Reference | Type | Venue | +Staff | Amount | Balance | +
|---|
Current Balance: {fmt(bal)}
+{('') if footer else ''}
+{_print_size_script(s)}"""
+
+@app.get("/receipt/{entry_id}", response_class=HTMLResponse)
+def receipt(entry_id: int):
+ s = _settings
+ with db_conn() as conn:
+ entry = conn.execute("SELECT * FROM ledger_entries WHERE id=?", (entry_id,)).fetchone()
+ if not entry: raise HTTPException(404, "Receipt not found")
+ member = conn.execute("SELECT * FROM members WHERE id=?", (entry["member_id"],)).fetchone()
+ bal_after = conn.execute("""
+ SELECT COALESCE(SUM(CASE WHEN type='topup' THEN amount ELSE -amount END),0)
+ FROM ledger_entries WHERE member_id=? AND id<=?
+ """, (entry["member_id"], entry_id)).fetchone()[0]
+
+ sym, div = s.get("currency_symbol","£"), s.get("currency_divisor",100)
+ def fmt(p): return f"{sym}{p/div:.2f}"
+
+ txn_ref = _txn_ref(entry_id, s)
+ etype = entry["type"]
+ venue_name = s.get("bar_name","Bar") if entry["venue"]=="bar" else s.get("cashier_name","Cashier")
+ tf_type = entry["transfer_type"] or ""
+ tf_ref = entry["transfer_ref"] or ""
+ timestamp = _fmt_dt(entry["created_at"], s)
+
+ lbl_staff = s.get("lbl_staff", "STAFF")
+ lbl_txn = s.get("lbl_transaction", "TRANSACTION")
+ lbl_txn_time = s.get("lbl_txn_time", "TRANSACTION TIME")
+ lbl_remaining = s.get("lbl_remaining_balance", "REMAINING BALANCE")
+
+ if etype == "topup":
+ title = s.get("lbl_topup_receipt", "TOP-UP RECEIPT")
+ footer = s.get("receipt_footer_cashier") or s.get("receipt_footer","")
+ lbl_tf_sec = s.get("lbl_balance_transfer", "BALANCE TRANSFER")
+ lbl_amount = s.get("lbl_amount_topup", "AMOUNT TOPPED-UP")
+ tf_label = "Top-up"
+ amount_cls = "large credit"
+ elif etype == "withdrawal":
+ title = s.get("lbl_withdrawal_receipt","WITHDRAWAL RECEIPT")
+ footer = s.get("receipt_footer_cashier") or s.get("receipt_footer","")
+ lbl_tf_sec = s.get("lbl_balance_transfer", "BALANCE TRANSFER")
+ lbl_amount = s.get("lbl_amount_withdrawal","AMOUNT WITHDRAWN")
+ tf_label = "Withdrawal"
+ amount_cls = "large charge"
+ else:
+ title = s.get("lbl_receipt", "RECEIPT")
+ footer = s.get("receipt_footer_charge") or s.get("receipt_footer","")
+ lbl_charge = s.get("lbl_charge_venue", "CHARGE")
+ lbl_amount = s.get("lbl_amount_charged", "AMOUNT CHARGED")
+
+ if etype == "charge":
+ body_html = f"""
+ {_rx_cell(lbl_staff, entry['staff_name'])}
+ {_rx_cell(lbl_txn, txn_ref)}
+
++
+ {_rx_cell(lbl_charge, venue_name)}
+ {_rx_cell(lbl_txn_time, timestamp)}
+
++
+ {_rx_cell(lbl_amount, fmt(entry['amount']), 'large charge')}
+ {_rx_cell(lbl_remaining, fmt(bal_after), 'large')}
+
"""
+ else:
+ lbl_tf_type = s.get("lbl_transfer_type", "TRANSFER TYPE")
+ lbl_tf_ref = s.get("lbl_transfer_ref", "TRANSFER REFERENCE")
+ body_html = f"""
+ {_rx_cell(lbl_staff, entry['staff_name'])}
+ {_rx_cell(lbl_txn, txn_ref)}
+
++
+ {_rx_cell(lbl_tf_sec, tf_label)}
+ {_rx_cell(lbl_txn_time, timestamp)}
+
++
+ {_rx_cell(lbl_amount, fmt(entry['amount']), amount_cls)}
+ {_rx_cell(lbl_remaining, fmt(bal_after), 'large')}
+
++
+ {_rx_cell(lbl_tf_type, tf_type or '—')}
+ {_rx_cell(lbl_tf_ref, tf_ref or '—')}
+
"""
+
+ return f"""
++
{title}
+{body_html}
++{('') if footer else ''} +{_print_size_script(s)}""" + +# --------------------------------------------------------------------------- +# Products +# --------------------------------------------------------------------------- + +@app.get("/products") +def list_products(q: Optional[str] = None, active_only: bool = True, + user: dict = Depends(current_user)): + with db_conn() as conn: + conds, params = [], [] + if active_only: conds.append("active=1") + if q: + conds.append("(name LIKE ? OR brand LIKE ? OR search_tags LIKE ?)") + p = f"%{q}%"; params += [p, p, p] + sql = "SELECT * FROM products" + (" WHERE " + " AND ".join(conds) if conds else "") + " ORDER BY name" + rows = conn.execute(sql, params).fetchall() + return [{"id": r["id"], "name": r["name"], "brand": r["brand"], + "price": r["price"], "price_display": format_amount(r["price"]), + "member_price": r["member_price"], + "member_price_display": format_amount(r["member_price"]) if r["member_price"] else None, + "search_tags": r["search_tags"], "active": bool(r["active"])} for r in rows] + +@app.post("/products") +def create_product(body: ProductCreate, user: dict = Depends(current_user)): + with db_conn() as conn: + cur = conn.execute( + "INSERT INTO products (name,brand,price,member_price,search_tags) VALUES (?,?,?,?,?)", + (body.name, body.brand, body.price, body.member_price, body.search_tags) + ) + return {"id": cur.lastrowid, "ok": True} + +# --------------------------------------------------------------------------- +# Legacy staff name list (backward compat with cashier.html / bar.html) +# --------------------------------------------------------------------------- + +@app.get("/staff") +def get_staff(user: dict = Depends(current_user)): + return {"staff": load_staff()} + +@app.post("/staff") +def add_staff(body: StaffAdd, user: dict = Depends(current_user)): + name = body.name.strip() + if not name: raise HTTPException(400, "Name cannot be empty") + staff = load_staff() + if name not in staff: + staff.append(name); save_staff(staff) + return {"staff": sorted(staff)} + +@app.delete("/staff/{name}") +def remove_staff(name: str, user: dict = Depends(current_user)): + staff = [s for s in load_staff() if s != name] + save_staff(staff) + return {"staff": staff} + +# --------------------------------------------------------------------------- +# Admin – staff accounts +# --------------------------------------------------------------------------- + +@app.get("/admin/staff-accounts") +def list_staff_accounts(user: dict = Depends(admin_user)): + with db_conn() as conn: + rows = conn.execute( + "SELECT id,name,username,role,active,created_at FROM staff_accounts ORDER BY name" + ).fetchall() + return [dict(r) for r in rows] + +@app.post("/admin/staff-accounts") +def create_staff_account(body: StaffAccountCreate, user: dict = Depends(admin_user)): + if body.role not in ("cashier", "pos-staff", "admin"): + raise HTTPException(400, "Role must be 'cashier', 'pos-staff', or 'admin'") + with db_conn() as conn: + if conn.execute("SELECT id FROM staff_accounts WHERE username=?", + (body.username.strip(),)).fetchone(): + raise HTTPException(400, "Username already taken") + pw = bcrypt.hashpw(body.password.encode(), bcrypt.gensalt()).decode() + cur = conn.execute( + "INSERT INTO staff_accounts (name,username,password_hash,role) VALUES (?,?,?,?)", + (body.name.strip(), body.username.strip(), pw, body.role) + ) + return {"id": cur.lastrowid, "ok": True} + +@app.put("/admin/staff-accounts/{account_id}") +def update_staff_account(account_id: int, body: StaffAccountUpdate, + user: dict = Depends(admin_user)): + with db_conn() as conn: + if not conn.execute("SELECT id FROM staff_accounts WHERE id=?", (account_id,)).fetchone(): + raise HTTPException(404, "Account not found") + updates = {} + if body.name is not None: updates["name"] = body.name.strip() + if body.username is not None: + if conn.execute("SELECT id FROM staff_accounts WHERE username=? AND id!=?", + (body.username.strip(), account_id)).fetchone(): + raise HTTPException(400, "Username already taken") + updates["username"] = body.username.strip() + if body.password is not None: + updates["password_hash"] = bcrypt.hashpw(body.password.encode(), bcrypt.gensalt()).decode() + if body.role is not None: + if body.role not in ("cashier","pos-staff","admin"): raise HTTPException(400, "Invalid role") + updates["role"] = body.role + if body.active is not None: + updates["active"] = 1 if body.active else 0 + if updates: + conn.execute( + f"UPDATE staff_accounts SET {', '.join(f'{k}=?' for k in updates)} WHERE id=?", + list(updates.values()) + [account_id] + ) + return {"ok": True} + +@app.delete("/admin/staff-accounts/{account_id}") +def delete_staff_account(account_id: int, user: dict = Depends(admin_user)): + if account_id == user["user_id"]: + raise HTTPException(400, "Cannot delete your own account") + with db_conn() as conn: + row = conn.execute("SELECT * FROM staff_accounts WHERE id=?", (account_id,)).fetchone() + if not row: raise HTTPException(404, "Account not found") + if row["role"] == "admin": + if conn.execute("SELECT COUNT(*) FROM staff_accounts WHERE role='admin'").fetchone()[0] <= 1: + raise HTTPException(400, "Cannot delete the last admin account") + conn.execute("DELETE FROM staff_accounts WHERE id=?", (account_id,)) + return {"ok": True} + +# --------------------------------------------------------------------------- +# Admin – app settings +# --------------------------------------------------------------------------- + +@app.get("/admin/settings") +def get_admin_settings(user: dict = Depends(admin_user)): + return _settings + +_OVERDRAFT_POLICIES = ("never", "always", "staff_override", "admin_override", "staff_block") + +@app.post("/admin/settings") +def update_admin_settings(body: AppSettingsUpdate, user: dict = Depends(admin_user)): + if body.overdraft_policy is not None and body.overdraft_policy not in _OVERDRAFT_POLICIES: + raise HTTPException(400, "Invalid overdraft policy") + with db_conn() as conn: + for field in body.model_fields_set: + val = getattr(body, field) + if val is not None: + conn.execute( + "INSERT OR REPLACE INTO app_settings (key,value) VALUES (?,?)", + (field, json.dumps(val)) + ) + refresh_settings() + return _settings + +# --------------------------------------------------------------------------- +# Admin – logo upload +# --------------------------------------------------------------------------- + +@app.post("/admin/logo") +async def upload_logo(file: UploadFile = File(...), user: dict = Depends(admin_user)): + content_type = file.content_type or "" + if not content_type.startswith("image/"): + raise HTTPException(400, "Only image files are allowed") + suffix = Path(file.filename or "logo.png").suffix.lower() + if suffix not in (".png", ".jpg", ".jpeg", ".gif", ".webp", ".svg"): + suffix = ".png" + dest = static_dir / f"logo{suffix}" + dest.write_bytes(await file.read()) + url = f"/static/logo{suffix}" + with db_conn() as conn: + conn.execute("INSERT OR REPLACE INTO app_settings (key,value) VALUES (?,?)", + ("logo_url", json.dumps(url))) + refresh_settings() + return {"url": url} + +# --------------------------------------------------------------------------- +# Config (public – loaded by frontend before login screen shows) +# --------------------------------------------------------------------------- + +@app.get("/config") +def get_config(): + s = dict(_settings) + s["currency_unit"] = s.get("currency_major", "pounds") + raw_tt = s.get("transfer_types", "Bank Transfer,Cash,QR") + s["transfer_types"] = [t.strip() for t in raw_tt.split(",") if t.strip()] + return s + +if __name__ == "__main__": + import uvicorn + uvicorn.run("main:app", host="0.0.0.0", port=8000, reload=True) diff --git a/manage.py b/manage.py new file mode 100644 index 0000000..73017ff --- /dev/null +++ b/manage.py @@ -0,0 +1,141 @@ +#!/usr/bin/env python3 +""" +ClubLedger management CLI +Run from the server terminal (NOT through the web UI). +The app does not need to be stopped first for reset-admin; +it MUST be stopped before reset-db. + +Usage: + python manage.py reset-admin – reset an admin account password + python manage.py reset-db – wipe all data and start fresh +""" + +import sys +import getpass +import sqlite3 +from pathlib import Path + +DB_PATH = Path("clubledger.db") + + +def _connect(): + if not DB_PATH.exists(): + print(f"Database not found: {DB_PATH}") + print("Start the app at least once to create it.") + sys.exit(1) + conn = sqlite3.connect(str(DB_PATH)) + conn.row_factory = sqlite3.Row + conn.execute("PRAGMA journal_mode=WAL") + return conn + + +def cmd_reset_admin(): + """Interactively reset the password for an admin account.""" + import bcrypt + + conn = _connect() + admins = conn.execute( + "SELECT id, name, username FROM staff_accounts WHERE role='admin' ORDER BY name" + ).fetchall() + + if not admins: + print("No admin accounts exist.") + print("Start the app — it will create the default admin/admin account automatically.") + conn.close() + sys.exit(0) + + if len(admins) == 1: + target = admins[0] + else: + print("Admin accounts:") + for i, a in enumerate(admins, 1): + print(f" {i}. {a['name']} ({a['username']})") + while True: + raw = input("Select account number: ").strip() + try: + target = admins[int(raw) - 1] + break + except (ValueError, IndexError): + print(" Invalid — enter the number shown above.") + + print(f"\nResetting password for: {target['name']} ({target['username']})") + while True: + pw = getpass.getpass("New password: ") + if len(pw) < 4: + print(" Password must be at least 4 characters.") + continue + pw2 = getpass.getpass("Confirm password: ") + if pw != pw2: + print(" Passwords do not match — try again.") + continue + break + + hashed = bcrypt.hashpw(pw.encode(), bcrypt.gensalt()).decode() + conn.execute( + "UPDATE staff_accounts SET password_hash=? WHERE id=?", + (hashed, target["id"]), + ) + conn.commit() + conn.close() + print(f"\nDone. Password updated for '{target['username']}'.") + print("Any existing sessions for this account will still be valid until they expire (8 h).") + print("Restart the app now to invalidate all active sessions immediately.") + + +def cmd_reset_db(): + """Delete all data files and prepare for a clean start.""" + print("=" * 60) + print(" DATABASE RESET") + print("=" * 60) + print() + print("This will permanently delete:") + print(" • All members and their balances") + print(" • All transactions and receipts") + print(" • All staff accounts") + print(" • All app settings") + print() + print("STOP THE APP before continuing.") + print() + confirm = input('Type RESET to confirm (anything else cancels): ').strip() + if confirm != "RESET": + print("Cancelled — nothing was changed.") + sys.exit(0) + + deleted = [] + for suffix in ("", "-wal", "-shm"): + p = DB_PATH.parent / (DB_PATH.name + suffix) + if p.exists(): + p.unlink() + deleted.append(p.name) + + if deleted: + print(f"\nDeleted: {', '.join(deleted)}") + else: + print("\nNo database files found — nothing to delete.") + + print() + print("Reset complete. Start the app to create a fresh database.") + print("Default admin credentials after restart: username=admin password=admin") + print("Change the password immediately after logging in.") + + +# --------------------------------------------------------------------------- + +COMMANDS = { + "reset-admin": (cmd_reset_admin, "Reset an admin account password"), + "reset-db": (cmd_reset_db, "Wipe all data and start fresh (irreversible)"), +} + + +def usage(): + print(__doc__) + print("Commands:") + for name, (_, desc) in COMMANDS.items(): + print(f" {name:<16} {desc}") + sys.exit(1) + + +if __name__ == "__main__": + if len(sys.argv) < 2 or sys.argv[1] not in COMMANDS: + usage() + COMMANDS[sys.argv[1]][0]() diff --git a/requirements.txt b/requirements.txt new file mode 100644 index 0000000..d36de0e --- /dev/null +++ b/requirements.txt @@ -0,0 +1,4 @@ +fastapi +uvicorn[standard] +bcrypt +python-multipart diff --git a/run.bat b/run.bat new file mode 100644 index 0000000..67e1ed9 --- /dev/null +++ b/run.bat @@ -0,0 +1,3 @@ +python -m venv .venv +.venv\Scripts\pip install -r requirements.txt +.venv\Scripts\python main.py diff --git a/run.sh b/run.sh new file mode 100644 index 0000000..e8213af --- /dev/null +++ b/run.sh @@ -0,0 +1,14 @@ +#!/bin/bash +# Run ClubLedger – creates a virtualenv if needed, ensures deps are installed, starts the server. +set -e + +VENV=".venv" + +if [ ! -d "$VENV" ]; then + echo "Creating virtual environment..." + python3 -m venv "$VENV" +fi + +"$VENV/bin/pip" install -r requirements.txt + +exec "$VENV/bin/python" main.py "$@" diff --git a/static/app.js b/static/app.js new file mode 100644 index 0000000..b8f1e62 --- /dev/null +++ b/static/app.js @@ -0,0 +1,642 @@ +/* ClubLedger – main SPA */ + +let currentUser = null; +let cashierMember = null; +let barMember = null; +let editMemberId = null; +let editAccountId = null; + +// --------------------------------------------------------------------------- +// Boot – check session, then either show login or start the app +// --------------------------------------------------------------------------- +(async function boot() { + // Load config first so the login page shows the club name + await loadConfig(); + document.getElementById('loginBrand').textContent = cfg.club_name; + + let me = null; + try { me = await apiFetch('/auth/me'); } catch (e) { /* not logged in */ } + + if (!me) { showLogin(); return; } + currentUser = me; + await startApp(); +})(); + +function showLogin() { + document.getElementById('loginOverlay').classList.remove('hidden'); + document.getElementById('loginUsername').focus(); + document.getElementById('loginForm').addEventListener('submit', doLogin, { once: true }); +} + +async function doLogin(e) { + e.preventDefault(); + const username = document.getElementById('loginUsername').value.trim(); + const password = document.getElementById('loginPassword').value; + try { + currentUser = await apiFetch('/auth/login', { + method: 'POST', + headers: { 'Content-Type': 'application/json' }, + body: JSON.stringify({ username, password }) + }); + document.getElementById('loginOverlay').classList.add('hidden'); + await startApp(); + } catch (err) { + setMsg('loginMsg', err.message, 'err'); + document.getElementById('loginForm').addEventListener('submit', doLogin, { once: true }); + } +} + +async function doLogout() { + try { await fetch('/auth/logout', { method: 'POST' }); } catch (e) { /* ignore */ } + currentUser = null; + // Reset tab visibility for next login + document.getElementById('adminTabBtn').classList.add('hidden'); + document.querySelector('[data-view="cashier"]').classList.remove('hidden'); + document.querySelector('[data-view="bar"]').classList.remove('hidden'); + // Reset to members tab + document.querySelectorAll('.nav-btn').forEach(b => b.classList.remove('active')); + document.querySelector('[data-view="members"]').classList.add('active'); + document.querySelectorAll('.view').forEach(v => v.classList.add('hidden')); + document.getElementById('view-members').classList.remove('hidden'); + showLogin(); +} + +function populateTransferTypes() { + const types = Array.isArray(cfg.transfer_types) ? cfg.transfer_types : []; + ['cashierTransferType', 'withdrawalTransferType'].forEach(id => { + const sel = document.getElementById(id); + if (!sel) return; + const prev = sel.value; + sel.innerHTML = '' + + types.map(t => ``).join(''); + if (prev && types.includes(prev)) sel.value = prev; + }); +} + +async function startApp() { + document.getElementById('loginOverlay').classList.add('hidden'); + await loadConfig(); + populateTransferTypes(); + + const brand = document.getElementById('navBrand'); + if (brand) brand.textContent = cfg.club_name; + document.getElementById('navUser').textContent = currentUser.name; + + // Role-based tab visibility + if (currentUser.role === 'admin') { + document.getElementById('adminTabBtn').classList.remove('hidden'); + } + if (currentUser.role === 'pos-staff') { + document.querySelector('[data-view="cashier"]').classList.add('hidden'); + } + if (currentUser.role === 'cashier') { + document.querySelector('[data-view="bar"]').classList.add('hidden'); + } + + // Nav tab switching + document.querySelectorAll('.nav-btn').forEach(btn => { + btn.addEventListener('click', () => { + document.querySelectorAll('.nav-btn').forEach(b => b.classList.remove('active')); + btn.classList.add('active'); + document.querySelectorAll('.view').forEach(v => v.classList.add('hidden')); + document.getElementById('view-' + btn.dataset.view).classList.remove('hidden'); + if (btn.dataset.view === 'admin') loadAdminView(); + }); + }); + + // Form submit handlers + document.getElementById('registerForm').addEventListener('submit', e => { e.preventDefault(); registerMember(); }); + document.getElementById('editForm').addEventListener('submit', e => { e.preventDefault(); saveEdit(); }); + document.getElementById('editAccountForm').addEventListener('submit', e => { e.preventDefault(); saveEditAccount(); }); + document.getElementById('settingsForm').addEventListener('submit', e => { e.preventDefault(); saveSettings(); }); + document.getElementById('addAccountForm').addEventListener('submit', e => { e.preventDefault(); addAccount(); }); + + // Enter-key on search inputs + document.getElementById('memberSearch').addEventListener('keydown', e => { if (e.key === 'Enter') searchMembers(); }); + document.getElementById('cashierSearch').addEventListener('keydown', e => { if (e.key === 'Enter') cashierSearchMembers(); }); + document.getElementById('barSearch').addEventListener('keydown', e => { if (e.key === 'Enter') barSearchMembers(); }); + + searchMembers(); +} + +// --------------------------------------------------------------------------- +// Amount helpers (users enter major units, we send minor units) +// --------------------------------------------------------------------------- + +const ROLE_LABELS = { admin: 'Admin', cashier: 'Cashier', 'pos-staff': 'POS Staff' }; +function fmtRole(role) { return ROLE_LABELS[role] || role; } + +function toMinor(inputId) { + const v = parseFloat(document.getElementById(inputId).value); + if (isNaN(v) || v <= 0) return null; + return Math.round(v * cfg.currency_divisor); +} + +// --------------------------------------------------------------------------- +// Members view +// --------------------------------------------------------------------------- +async function registerMember() { + const number = document.getElementById('reg-number').value.trim(); + const name = document.getElementById('reg-name').value.trim(); + const pin = document.getElementById('reg-pin').value; + if (!number || !name || !pin) { setMsg('registerMsg', 'All fields required.', 'err'); return; } + try { + const m = await apiFetch('/members', { + method: 'POST', headers: { 'Content-Type': 'application/json' }, + body: JSON.stringify({ member_number: number, name, pin }) + }); + setMsg('registerMsg', `Registered: ${m.name} (#${m.member_number})`, 'ok'); + document.getElementById('registerForm').reset(); + searchMembers(); + } catch (err) { setMsg('registerMsg', err.message, 'err'); } +} + +async function searchMembers() { + const q = document.getElementById('memberSearch').value.trim(); + try { + const members = await apiFetch(q ? `/members?q=${encodeURIComponent(q)}` : '/members'); + renderMemberTable(members); + } catch (e) { console.error(e); } +} + +function renderMemberTable(members) { + const tbody = document.querySelector('#memberTable tbody'); + if (!members.length) { + tbody.innerHTML = '
+
+
`).join('');
+ } catch (e) { console.error(e); }
+}
+
+function selectCashierMember(id, name, number, balance, balanceDisplay) {
+ cashierMember = { id, name, number };
+ document.getElementById('cashierMemberList').innerHTML = '';
+ document.getElementById('cashierSelected').innerHTML =
+ `${esc(name)} #${esc(number)} Balance: ${esc(balanceDisplay)}`;
+ document.getElementById('cashierForm').classList.remove('hidden');
+ setMsg('cashierTopupMsg', '', '');
+ setMsg('cashierWithdrawalMsg', '', '');
+ setMsg('cashierMsg', '', '');
+}
+
+function clearCashierSelection() {
+ cashierMember = null;
+ document.getElementById('cashierForm').classList.add('hidden');
+ document.getElementById('cashierAmount').value = '';
+ document.getElementById('cashierTransferType').value = '';
+ document.getElementById('cashierTransferRef').value = '';
+ document.getElementById('cashierNote').value = '';
+ document.getElementById('withdrawalAmount').value = '';
+ document.getElementById('withdrawalPin').value = '';
+ document.getElementById('withdrawalTransferType').value = '';
+ document.getElementById('withdrawalTransferRef').value = '';
+ document.getElementById('withdrawalNote').value = '';
+ setMsg('cashierTopupMsg', '', '');
+ setMsg('cashierWithdrawalMsg', '', '');
+ setMsg('cashierMsg', '', '');
+}
+
+async function doTopup() {
+ if (!cashierMember) return;
+ const amount = toMinor('cashierAmount');
+ const transferType = document.getElementById('cashierTransferType').value || null;
+ const transferRef = document.getElementById('cashierTransferRef').value.trim() || null;
+ const note = document.getElementById('cashierNote').value.trim() || null;
+ if (!amount) { setMsg('cashierTopupMsg', 'Enter a valid amount.', 'err'); return; }
+ try {
+ const r = await apiFetch('/topup', {
+ method: 'POST', headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_id: cashierMember.id, amount, note,
+ transfer_type: transferType, transfer_ref: transferRef })
+ });
+ window.open(`/receipt/${r.entry_id}`, '_blank');
+ document.getElementById('cashierAmount').value = '';
+ document.getElementById('cashierTransferType').value = '';
+ document.getElementById('cashierTransferRef').value = '';
+ document.getElementById('cashierNote').value = '';
+ setMsg('cashierTopupMsg', `Top-up complete. New balance: ${r.new_balance_display}`, 'ok');
+ } catch (err) { setMsg('cashierTopupMsg', err.message, 'err'); }
+}
+
+async function doWithdrawal() {
+ if (!cashierMember) return;
+ const amount = toMinor('withdrawalAmount');
+ const pin = document.getElementById('withdrawalPin').value;
+ const transferType = document.getElementById('withdrawalTransferType').value || null;
+ const transferRef = document.getElementById('withdrawalTransferRef').value.trim() || null;
+ const note = document.getElementById('withdrawalNote').value.trim() || null;
+ if (!amount) { setMsg('cashierWithdrawalMsg', 'Enter a valid amount.', 'err'); return; }
+ if (!pin) { setMsg('cashierWithdrawalMsg', 'PIN is required.', 'err'); return; }
+ try {
+ const r = await apiFetch('/withdrawal', {
+ method: 'POST', headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_id: cashierMember.id, amount, pin, note,
+ transfer_type: transferType, transfer_ref: transferRef })
+ });
+ window.open(`/receipt/${r.entry_id}`, '_blank');
+ document.getElementById('withdrawalAmount').value = '';
+ document.getElementById('withdrawalPin').value = '';
+ document.getElementById('withdrawalTransferType').value = '';
+ document.getElementById('withdrawalTransferRef').value = '';
+ document.getElementById('withdrawalNote').value = '';
+ setMsg('cashierWithdrawalMsg', `Withdrawal complete. New balance: ${r.new_balance_display}`, 'ok');
+ } catch (err) { setMsg('cashierWithdrawalMsg', err.message, 'err'); }
+}
+
+// ---------------------------------------------------------------------------
+// Bar view
+// ---------------------------------------------------------------------------
+async function barSearchMembers() {
+ const q = document.getElementById('barSearch').value.trim();
+ try {
+ const members = await apiFetch(q ? `/members?q=${encodeURIComponent(q)}` : '/members');
+ document.getElementById('barMemberList').innerHTML = members.map(m => `
+ ${esc(m.name)}
#${esc(m.member_number)}
${esc(m.balance_display)}
+
+
+
`).join('');
+ } catch (e) { console.error(e); }
+}
+
+function selectBarMember(id, name, number, balance, balanceDisplay) {
+ barMember = { id, name, number };
+ document.getElementById('barMemberList').innerHTML = '';
+ document.getElementById('barSelected').innerHTML =
+ `${esc(name)} #${esc(number)} Balance: ${esc(balanceDisplay)}`;
+ document.getElementById('barForm').classList.remove('hidden');
+ setMsg('barMsg', '', '');
+}
+
+function clearBarSelection() {
+ barMember = null;
+ document.getElementById('barForm').classList.add('hidden');
+ document.getElementById('barAmount').value = '';
+ document.getElementById('barPin').value = '';
+ document.getElementById('barNote').value = '';
+ setMsg('barMsg', '', '');
+}
+
+async function doCharge() {
+ if (!barMember) return;
+ const amount = toMinor('barAmount');
+ const pin = document.getElementById('barPin').value;
+ const note = document.getElementById('barNote').value.trim();
+ if (!amount) { setMsg('barMsg', 'Enter a valid amount.', 'err'); return; }
+ if (!pin) { setMsg('barMsg', 'PIN required.', 'err'); return; }
+ try {
+ const r = await apiFetch('/charge', {
+ method: 'POST', headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_id: barMember.id, amount, pin, note: note || null })
+ });
+ window.open(`/receipt/${r.entry_id}`, '_blank');
+ setMsg('barMsg', `Charge complete. New balance: ${r.new_balance_display}`, 'ok');
+ clearBarSelection();
+ } catch (err) { setMsg('barMsg', err.message, 'err'); }
+}
+
+// ---------------------------------------------------------------------------
+// Admin view
+// ---------------------------------------------------------------------------
+async function loadAdminView() {
+ await Promise.all([loadAdminSettings(), loadStaffAccounts()]);
+ setupLogoUpload();
+}
+
+let _logoUploadWired = false;
+function setupLogoUpload() {
+ if (_logoUploadWired) return;
+ const input = document.getElementById('s-logo-upload');
+ if (!input) return;
+ _logoUploadWired = true;
+ input.addEventListener('change', async function() {
+ const file = this.files[0];
+ if (!file) return;
+ const fd = new FormData();
+ fd.append('file', file);
+ try {
+ const r = await fetch('/admin/logo', { method: 'POST', body: fd });
+ const json = await r.json();
+ if (!r.ok) throw new Error(json.detail || 'Upload failed');
+ document.getElementById('s-logo-url').value = json.url;
+ setMsg('logoUploadMsg', 'Logo uploaded.', 'ok');
+ } catch (e) { setMsg('logoUploadMsg', e.message, 'err'); }
+ this.value = '';
+ });
+}
+
+async function loadAdminSettings() {
+ try {
+ const s = await apiFetch('/admin/settings');
+ const div = s.currency_divisor || 100;
+ const majorUnit = s.currency_major || 'major units';
+ // General
+ document.getElementById('s-club-name').value = s.club_name || '';
+ document.getElementById('s-currency-symbol').value = s.currency_symbol || '';
+ document.getElementById('s-currency-major').value = s.currency_major || '';
+ document.getElementById('s-currency-minor').value = s.currency_minor || '';
+ document.getElementById('s-currency-divisor').value = div;
+ document.getElementById('s-min-topup').value = ((s.min_topup || 0) / div).toFixed(2);
+ document.getElementById('s-max-topup').value = ((s.max_topup || 0) / div).toFixed(2);
+ document.getElementById('s-max-charge').value = ((s.max_charge || 0) / div).toFixed(2);
+ document.getElementById('s-overdraft-policy').value = s.overdraft_policy || 'never';
+ document.getElementById('s-timezone').value = s.timezone || '';
+ document.getElementById('s-paper-size').value = s.paper_size || 'A4';
+ document.getElementById('s-min-hint').textContent = `in ${majorUnit}`;
+ document.getElementById('s-max-hint').textContent = `in ${majorUnit}`;
+ document.getElementById('s-charge-hint').textContent= `in ${majorUnit}`;
+ // Business address
+ document.getElementById('s-biz-address1').value = s.biz_address1 || '';
+ document.getElementById('s-biz-address2').value = s.biz_address2 || '';
+ document.getElementById('s-biz-address3').value = s.biz_address3 || '';
+ document.getElementById('s-biz-address4').value = s.biz_address4 || '';
+ document.getElementById('s-biz-country').value = s.biz_country || '';
+ document.getElementById('s-biz-phone').value = s.biz_phone || '';
+ document.getElementById('s-biz-email').value = s.biz_email || '';
+ document.getElementById('s-biz-website').value = s.biz_website || '';
+ // Branding
+ document.getElementById('s-logo-url').value = s.logo_url || '';
+ document.getElementById('s-logo-align').value = s.logo_align || 'left';
+ document.getElementById('s-logo-max-width').value = s.logo_max_width || '';
+ document.getElementById('s-logo-max-height').value = s.logo_max_height || '';
+ document.getElementById('s-bar-name').value = s.bar_name || '';
+ document.getElementById('s-cashier-name').value = s.cashier_name || '';
+ // Transactions
+ document.getElementById('s-txn-ref-prefix').value = s.txn_ref_prefix || '';
+ // transfer_types from /admin/settings is the raw comma-separated string
+ const rawTT = Array.isArray(s.transfer_types) ? s.transfer_types.join(',') : (s.transfer_types || '');
+ document.getElementById('s-transfer-types').value = rawTT;
+ // Receipt labels
+ document.getElementById('s-lbl-receipt').value = s.lbl_receipt || '';
+ document.getElementById('s-lbl-topup-receipt').value = s.lbl_topup_receipt || '';
+ document.getElementById('s-lbl-withdrawal-receipt').value = s.lbl_withdrawal_receipt || '';
+ document.getElementById('s-lbl-staff').value = s.lbl_staff || '';
+ document.getElementById('s-lbl-transaction').value = s.lbl_transaction || '';
+ document.getElementById('s-lbl-charge').value = s.lbl_charge_venue || '';
+ document.getElementById('s-lbl-txn-time').value = s.lbl_txn_time || '';
+ document.getElementById('s-lbl-amount-charged').value = s.lbl_amount_charged || '';
+ document.getElementById('s-lbl-remaining-balance').value = s.lbl_remaining_balance || '';
+ document.getElementById('s-lbl-balance-transfer').value = s.lbl_balance_transfer || '';
+ document.getElementById('s-lbl-amount-topup').value = s.lbl_amount_topup || '';
+ document.getElementById('s-lbl-amount-withdrawal').value = s.lbl_amount_withdrawal || '';
+ document.getElementById('s-lbl-transfer-type').value = s.lbl_transfer_type || '';
+ document.getElementById('s-lbl-transfer-ref').value = s.lbl_transfer_ref || '';
+ // Footers
+ document.getElementById('s-receipt-footer').value = s.receipt_footer || '';
+ document.getElementById('s-receipt-footer-charge').value = s.receipt_footer_charge || '';
+ document.getElementById('s-receipt-footer-cashier').value = s.receipt_footer_cashier || '';
+ } catch (err) { setMsg('settingsMsg', err.message, 'err'); }
+}
+
+function _sv(id) { return document.getElementById(id).value; }
+function _svt(id) { return _sv(id).trim(); }
+
+async function saveSettings() {
+ const div = parseInt(_sv('s-currency-divisor'), 10) || 100;
+ const body = {
+ // General
+ club_name: _svt('s-club-name'),
+ currency_symbol: _svt('s-currency-symbol'),
+ currency_major: _svt('s-currency-major'),
+ currency_minor: _svt('s-currency-minor'),
+ currency_divisor: div,
+ min_topup: Math.round(parseFloat(_sv('s-min-topup')) * div),
+ max_topup: Math.round(parseFloat(_sv('s-max-topup')) * div),
+ max_charge: Math.round(parseFloat(_sv('s-max-charge')) * div),
+ overdraft_policy: _sv('s-overdraft-policy'),
+ timezone: _svt('s-timezone'),
+ paper_size: _sv('s-paper-size'),
+ // Business address
+ biz_address1: _svt('s-biz-address1'),
+ biz_address2: _svt('s-biz-address2'),
+ biz_address3: _svt('s-biz-address3'),
+ biz_address4: _svt('s-biz-address4'),
+ biz_country: _svt('s-biz-country'),
+ biz_phone: _svt('s-biz-phone'),
+ biz_email: _svt('s-biz-email'),
+ biz_website: _svt('s-biz-website'),
+ // Branding
+ logo_url: _svt('s-logo-url'),
+ logo_align: _sv('s-logo-align'),
+ logo_max_width: parseInt(_sv('s-logo-max-width'), 10) || null,
+ logo_max_height: parseInt(_sv('s-logo-max-height'), 10) || null,
+ bar_name: _svt('s-bar-name'),
+ cashier_name: _svt('s-cashier-name'),
+ // Transactions
+ txn_ref_prefix: _svt('s-txn-ref-prefix'),
+ transfer_types: _svt('s-transfer-types'),
+ // Receipt labels
+ lbl_receipt: _svt('s-lbl-receipt'),
+ lbl_topup_receipt: _svt('s-lbl-topup-receipt'),
+ lbl_withdrawal_receipt: _svt('s-lbl-withdrawal-receipt'),
+ lbl_staff: _svt('s-lbl-staff'),
+ lbl_transaction: _svt('s-lbl-transaction'),
+ lbl_charge_venue: _svt('s-lbl-charge'),
+ lbl_txn_time: _svt('s-lbl-txn-time'),
+ lbl_amount_charged: _svt('s-lbl-amount-charged'),
+ lbl_remaining_balance: _svt('s-lbl-remaining-balance'),
+ lbl_balance_transfer: _svt('s-lbl-balance-transfer'),
+ lbl_amount_topup: _svt('s-lbl-amount-topup'),
+ lbl_amount_withdrawal: _svt('s-lbl-amount-withdrawal'),
+ lbl_transfer_type: _svt('s-lbl-transfer-type'),
+ lbl_transfer_ref: _svt('s-lbl-transfer-ref'),
+ // Footers
+ receipt_footer: _sv('s-receipt-footer'),
+ receipt_footer_charge: _sv('s-receipt-footer-charge'),
+ receipt_footer_cashier: _sv('s-receipt-footer-cashier'),
+ };
+ try {
+ await apiFetch('/admin/settings', {
+ method: 'POST', headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify(body)
+ });
+ setMsg('settingsMsg', 'Settings saved.', 'ok');
+ await loadConfig();
+ populateTransferTypes();
+ document.querySelectorAll('.currency-unit').forEach(el => { el.textContent = cfg.currency_major || cfg.currency_unit; });
+ if (document.getElementById('navBrand'))
+ document.getElementById('navBrand').textContent = cfg.club_name;
+ } catch (err) { setMsg('settingsMsg', err.message, 'err'); }
+}
+
+// Staff accounts table
+async function loadStaffAccounts() {
+ try {
+ const accounts = await apiFetch('/admin/staff-accounts');
+ const tbody = document.querySelector('#staffAccountsTable tbody');
+ tbody.innerHTML = accounts.map(a => `
+ ${esc(m.name)}
#${esc(m.member_number)}
${esc(m.balance_display)}
+
+
+
+
+
+
+
+
diff --git a/static/bar.js b/static/bar.js
new file mode 100644
index 0000000..23adcbd
--- /dev/null
+++ b/static/bar.js
@@ -0,0 +1,74 @@
+/* ClubLedger – bar page */
+
+let barMember = null;
+
+(async function init() {
+ await loadConfig();
+ await loadStaffInto('barStaff');
+
+ document.getElementById('barSearch').addEventListener('keydown', e => { if (e.key === 'Enter') barSearchMembers(); });
+})();
+
+// ---------------------------------------------------------------------------
+// Member selection
+// ---------------------------------------------------------------------------
+async function barSearchMembers() {
+ const q = document.getElementById('barSearch').value.trim();
+ const url = q ? `/members?q=${encodeURIComponent(q)}` : '/members';
+ try {
+ const members = await apiFetch(url);
+ const list = document.getElementById('barMemberList');
+ list.innerHTML = members.map(m => `
+
+
+
+Charge Account
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
`).join('');
+ } catch (e) { console.error(e); }
+}
+
+function selectBarMember(id, name, number, balance, balanceDisplay) {
+ barMember = { id, name, number };
+ document.getElementById('barMemberList').innerHTML = '';
+ document.getElementById('barSelected').innerHTML =
+ `${esc(name)} #${esc(number)} Balance: ${esc(balanceDisplay)}`;
+ document.getElementById('barForm').classList.remove('hidden');
+ setMsg('barMsg', '', '');
+}
+
+function clearBarSelection() {
+ barMember = null;
+ document.getElementById('barForm').classList.add('hidden');
+ document.getElementById('barAmount').value = '';
+ document.getElementById('barPin').value = '';
+ document.getElementById('barNote').value = '';
+ setMsg('barMsg', '', '');
+}
+
+// ---------------------------------------------------------------------------
+// Charge
+// ---------------------------------------------------------------------------
+async function doCharge() {
+ if (!barMember) return;
+ const amount = parseInt(document.getElementById('barAmount').value, 10);
+ const pin = document.getElementById('barPin').value;
+ const staff = document.getElementById('barStaff').value;
+ const note = document.getElementById('barNote').value.trim();
+ if (!amount || isNaN(amount) || amount <= 0) { setMsg('barMsg', 'Enter a valid amount.', 'err'); return; }
+ if (!pin) { setMsg('barMsg', 'PIN required.', 'err'); return; }
+ if (!staff) { setMsg('barMsg', 'Select a staff member.', 'err'); return; }
+ try {
+ const r = await apiFetch('/charge', {
+ method: 'POST',
+ headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_id: barMember.id, amount, pin, staff_name: staff, note: note || null })
+ });
+ window.open(`/receipt/${r.entry_id}`, '_blank');
+ setMsg('barMsg', `Charge complete. New balance: ${r.new_balance_display}`, 'ok');
+ clearBarSelection();
+ } catch (e) {
+ setMsg('barMsg', e.message, 'err');
+ }
+}
diff --git a/static/cashier.html b/static/cashier.html
new file mode 100644
index 0000000..e32add2
--- /dev/null
+++ b/static/cashier.html
@@ -0,0 +1,98 @@
+
+
+
+
+
+
+
+ ${esc(m.name)}
+ #${esc(m.member_number)}
+ ${esc(m.balance_display)}
+
+
+
+
+
+
+
+
+
diff --git a/static/cashier.js b/static/cashier.js
new file mode 100644
index 0000000..f016316
--- /dev/null
+++ b/static/cashier.js
@@ -0,0 +1,132 @@
+/* ClubLedger – cashier page */
+
+let cashierMember = null;
+
+(async function init() {
+ await loadConfig();
+ await loadStaffInto('cashierStaff');
+
+ // load initial staff chips
+ try {
+ const data = await apiFetch('/staff');
+ renderStaffChips(data.staff);
+ } catch (e) { /* ignore */ }
+
+ document.getElementById('registerForm').addEventListener('submit', async e => {
+ e.preventDefault();
+ await registerMember();
+ });
+
+ document.getElementById('memberSearch').addEventListener('keydown', e => { if (e.key === 'Enter') searchMembers(); });
+ document.getElementById('cashierSearch').addEventListener('keydown', e => { if (e.key === 'Enter') cashierSearchMembers(); });
+ document.getElementById('staffNameInput').addEventListener('keydown', e => { if (e.key === 'Enter') addStaff(); });
+
+ searchMembers();
+})();
+
+// ---------------------------------------------------------------------------
+// Register
+// ---------------------------------------------------------------------------
+async function registerMember() {
+ const number = document.getElementById('reg-number').value.trim();
+ const name = document.getElementById('reg-name').value.trim();
+ const pin = document.getElementById('reg-pin').value;
+ if (!number || !name || !pin) { setMsg('registerMsg', 'All fields required.', 'err'); return; }
+ try {
+ const m = await apiFetch('/members', {
+ method: 'POST',
+ headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_number: number, name, pin })
+ });
+ setMsg('registerMsg', `Registered: ${m.name} (#${m.member_number})`, 'ok');
+ document.getElementById('registerForm').reset();
+ searchMembers();
+ } catch (e) {
+ setMsg('registerMsg', e.message, 'err');
+ }
+}
+
+// ---------------------------------------------------------------------------
+// Member list
+// ---------------------------------------------------------------------------
+async function searchMembers() {
+ const q = document.getElementById('memberSearch').value.trim();
+ const url = q ? `/members?q=${encodeURIComponent(q)}` : '/members';
+ try {
+ const members = await apiFetch(url);
+ const tbody = document.querySelector('#memberTable tbody');
+ if (!members.length) {
+ tbody.innerHTML = '
+
+
+
+ Register New Member
+ + +
+
+
+
+ Top Up Account
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Members
+
+
+
+
+ | # | Name | Balance | Joined |
|---|
+
+
+Staff
+
+
+
+
+
+
+
+
`).join('');
+ } catch (e) { console.error(e); }
+}
+
+function selectCashierMember(id, name, number, balance, balanceDisplay) {
+ cashierMember = { id, name, number };
+ document.getElementById('cashierMemberList').innerHTML = '';
+ document.getElementById('cashierSelected').innerHTML =
+ `${esc(name)} #${esc(number)} Balance: ${esc(balanceDisplay)}`;
+ document.getElementById('cashierForm').classList.remove('hidden');
+ setMsg('cashierMsg', '', '');
+}
+
+function clearCashierSelection() {
+ cashierMember = null;
+ document.getElementById('cashierForm').classList.add('hidden');
+ document.getElementById('cashierAmount').value = '';
+ document.getElementById('cashierNote').value = '';
+ setMsg('cashierMsg', '', '');
+}
+
+async function doTopup() {
+ if (!cashierMember) return;
+ const amount = parseInt(document.getElementById('cashierAmount').value, 10);
+ const staff = document.getElementById('cashierStaff').value;
+ const note = document.getElementById('cashierNote').value.trim();
+ if (!amount || isNaN(amount) || amount <= 0) { setMsg('cashierMsg', 'Enter a valid amount.', 'err'); return; }
+ if (!staff) { setMsg('cashierMsg', 'Select a staff member.', 'err'); return; }
+ try {
+ const r = await apiFetch('/topup', {
+ method: 'POST',
+ headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ member_id: cashierMember.id, amount, staff_name: staff, note: note || null })
+ });
+ window.open(`/receipt/${r.entry_id}`, '_blank');
+ setMsg('cashierMsg', `Top-up complete. New balance: ${r.new_balance_display}`, 'ok');
+ clearCashierSelection();
+ searchMembers();
+ } catch (e) {
+ setMsg('cashierMsg', e.message, 'err');
+ }
+}
diff --git a/static/common.js b/static/common.js
new file mode 100644
index 0000000..bdedb58
--- /dev/null
+++ b/static/common.js
@@ -0,0 +1,112 @@
+/* ClubLedger – shared helpers */
+
+let cfg = { currency_unit: 'pence', currency_symbol: '£', currency_divisor: 100, club_name: 'ClubLedger' };
+
+async function loadConfig() {
+ try {
+ const r = await fetch('/config');
+ cfg = await r.json();
+ const brand = document.getElementById('navBrand');
+ if (brand) brand.textContent = cfg.club_name;
+ document.title = document.title.replace('ClubLedger', cfg.club_name);
+ document.querySelectorAll('.currency-unit').forEach(el => { el.textContent = cfg.currency_unit; });
+ } catch (e) { /* use defaults */ }
+}
+
+function fmtAmount(pence) {
+ return cfg.currency_symbol + (pence / cfg.currency_divisor).toFixed(2);
+}
+
+function balanceClass(v) {
+ return v < 0 ? 'balance-neg' : 'balance-pos';
+}
+
+function setMsg(id, text, type) {
+ const el = document.getElementById(id);
+ el.textContent = text;
+ el.className = 'msg ' + (type || '');
+}
+
+async function apiFetch(url, opts) {
+ const r = await fetch(url, opts);
+ const json = await r.json();
+ if (!r.ok) throw new Error(json.detail || 'Server error');
+ return json;
+}
+
+function esc(str) {
+ if (str == null) return '';
+ return String(str)
+ .replace(/&/g, '&')
+ .replace(//g, '>')
+ .replace(/"/g, '"')
+ .replace(/'/g, ''');
+}
+
+// ---------------------------------------------------------------------------
+// Staff dropdown
+// ---------------------------------------------------------------------------
+
+async function loadStaffInto(selectId) {
+ const sel = document.getElementById(selectId);
+ if (!sel) return;
+ try {
+ const data = await apiFetch('/staff');
+ const saved = sessionStorage.getItem('lastStaff') || '';
+ sel.innerHTML = '' +
+ data.staff.map(n => ``).join('');
+ sel.addEventListener('change', () => {
+ if (sel.value) sessionStorage.setItem('lastStaff', sel.value);
+ });
+ } catch (e) { console.error('Could not load staff', e); }
+}
+
+async function refreshAllStaffDropdowns() {
+ try {
+ const data = await apiFetch('/staff');
+ const saved = sessionStorage.getItem('lastStaff') || '';
+ document.querySelectorAll('select[id$="Staff"]').forEach(sel => {
+ sel.innerHTML = '' +
+ data.staff.map(n => ``).join('');
+ });
+ renderStaffChips(data.staff);
+ } catch (e) { console.error(e); }
+}
+
+function renderStaffChips(staffList) {
+ const div = document.getElementById('staffChips');
+ if (!div) return;
+ div.innerHTML = staffList.map(n => `
+
+ ${esc(n)}
+
+ `).join('');
+}
+
+async function addStaff() {
+ const input = document.getElementById('staffNameInput');
+ const name = input.value.trim();
+ if (!name) return;
+ try {
+ const data = await apiFetch('/staff', {
+ method: 'POST',
+ headers: { 'Content-Type': 'application/json' },
+ body: JSON.stringify({ name })
+ });
+ input.value = '';
+ setMsg('staffMsg', `Added: ${name}`, 'ok');
+ renderStaffChips(data.staff);
+ await refreshAllStaffDropdowns();
+ } catch (e) {
+ setMsg('staffMsg', e.message, 'err');
+ }
+}
+
+async function removeStaff(name) {
+ try {
+ const data = await apiFetch(`/staff/${encodeURIComponent(name)}`, { method: 'DELETE' });
+ renderStaffChips(data.staff);
+ await refreshAllStaffDropdowns();
+ } catch (e) { console.error(e); }
+}
diff --git a/static/index.html b/static/index.html
new file mode 100644
index 0000000..4463b3c
--- /dev/null
+++ b/static/index.html
@@ -0,0 +1,382 @@
+
+
+
+
+
+
+
+ ${esc(m.name)}
+ #${esc(m.member_number)}
+ ${esc(m.balance_display)}
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/static/style.css b/static/style.css
new file mode 100644
index 0000000..fd53bef
--- /dev/null
+++ b/static/style.css
@@ -0,0 +1,290 @@
+/* ClubLedger – main styles */
+*, *::before, *::after { box-sizing: border-box; margin: 0; padding: 0; }
+
+:root {
+ --primary: #1a56db;
+ --primary-dark: #1140a6;
+ --danger: #d63b3b;
+ --danger-dark: #a82e2e;
+ --success: #1a7f3c;
+ --bg: #f4f6fb;
+ --panel-bg: #ffffff;
+ --border: #d1d5db;
+ --text: #111827;
+ --muted: #6b7280;
+ --nav-bg: #1a1a2e;
+ --nav-text: #e0e0e0;
+}
+
+body { font-family: 'Segoe UI', system-ui, sans-serif; background: var(--bg); color: var(--text); min-height: 100vh; }
+
+/* ---- Nav ---- */
+nav {
+ background: var(--nav-bg);
+ color: var(--nav-text);
+ display: flex;
+ align-items: center;
+ padding: 0 20px;
+ height: 52px;
+ gap: 8px;
+ position: sticky;
+ top: 0;
+ z-index: 100;
+}
+.brand { font-size: 1.2rem; font-weight: 700; letter-spacing: .5px; margin-right: 16px; color: #fff; }
+.nav-btn {
+ background: transparent;
+ border: 2px solid transparent;
+ color: var(--nav-text);
+ padding: 6px 16px;
+ border-radius: 6px;
+ cursor: pointer;
+ font-size: .95rem;
+ transition: background .15s, border-color .15s;
+}
+.nav-btn:hover { background: rgba(255,255,255,.1); }
+.nav-btn.active { border-color: #4a9eff; color: #fff; }
+
+.nav-link {
+ color: var(--nav-text);
+ text-decoration: none;
+ padding: 6px 16px;
+ border-radius: 6px;
+ border: 2px solid transparent;
+ font-size: .95rem;
+ transition: background .15s, border-color .15s;
+}
+.nav-link:hover { background: rgba(255,255,255,.1); }
+.nav-link.active { border-color: #4a9eff; color: #fff; }
+
+/* ---- Views ---- */
+.view { max-width: 900px; margin: 28px auto; padding: 0 16px; display: flex; flex-direction: column; gap: 24px; }
+.hidden { display: none !important; }
+
+/* ---- Panel ---- */
+.panel { background: var(--panel-bg); border: 1px solid var(--border); border-radius: 10px; padding: 24px; }
+.panel h2 { font-size: 1.15rem; margin-bottom: 18px; color: var(--text); }
+
+/* ---- Forms ---- */
+.form-row { display: flex; flex-direction: column; gap: 4px; margin-bottom: 14px; }
+.form-row label { font-size: .85rem; font-weight: 600; color: var(--muted); }
+.form-row input {
+ padding: 9px 12px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ font-size: 1rem;
+ outline: none;
+ transition: border-color .15s;
+}
+.form-row input:focus { border-color: var(--primary); }
+
+.search-row { display: flex; gap: 8px; margin-bottom: 14px; }
+.search-row input { flex: 1; padding: 9px 12px; border: 1px solid var(--border); border-radius: 6px; font-size: 1rem; outline: none; }
+.search-row input:focus { border-color: var(--primary); }
+
+/* ---- Buttons ---- */
+.btn {
+ padding: 9px 20px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ background: #fff;
+ cursor: pointer;
+ font-size: .95rem;
+ transition: background .15s;
+ margin-right: 6px;
+}
+.btn:hover { background: #f0f0f0; }
+.btn-primary { background: var(--primary); color: #fff; border-color: var(--primary); }
+.btn-primary:hover { background: var(--primary-dark); }
+.btn-danger { background: var(--danger); color: #fff; border-color: var(--danger); }
+.btn-danger:hover { background: var(--danger-dark); }
+
+/* ---- Data table ---- */
+.data-table { width: 100%; border-collapse: collapse; font-size: .93rem; margin-top: 8px; }
+.data-table th { background: #f0f2f7; padding: 8px 10px; text-align: left; font-weight: 600; border-bottom: 2px solid var(--border); }
+.data-table td { padding: 8px 10px; border-bottom: 1px solid #eee; }
+.data-table tr:last-child td { border-bottom: none; }
+.data-table tr:hover td { background: #f9f9ff; }
+.num { text-align: right; font-variant-numeric: tabular-nums; }
+.balance-pos { color: var(--success); font-weight: 600; }
+.balance-neg { color: var(--danger); font-weight: 600; }
+
+/* ---- Member pick list ---- */
+.member-pick-list { margin-bottom: 14px; }
+.member-pick-item {
+ display: flex;
+ justify-content: space-between;
+ align-items: center;
+ padding: 10px 14px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ margin-bottom: 6px;
+ cursor: pointer;
+ transition: background .12s, border-color .12s;
+}
+.member-pick-item:hover { background: #eef2ff; border-color: var(--primary); }
+.member-pick-name { font-weight: 600; }
+.member-pick-sub { font-size: .83rem; color: var(--muted); }
+
+/* ---- Selected member box ---- */
+.selected-member-box {
+ background: #eef2ff;
+ border: 1px solid #c7d2f7;
+ border-radius: 8px;
+ padding: 12px 16px;
+ margin-bottom: 16px;
+ font-size: .95rem;
+}
+.selected-member-box strong { font-size: 1.05rem; }
+
+/* ---- Cashier dual-action panels ---- */
+.cashier-action-panel {
+ border: 1px solid var(--border);
+ border-radius: 8px;
+ padding: 16px;
+ margin-bottom: 12px;
+}
+.cashier-action-panel h3 {
+ margin: 0 0 12px;
+ font-size: 1rem;
+ color: var(--muted);
+ text-transform: uppercase;
+ letter-spacing: .04em;
+}
+
+/* ---- Product results ---- */
+.product-results { margin-bottom: 14px; }
+.product-item {
+ display: flex;
+ justify-content: space-between;
+ align-items: center;
+ padding: 8px 12px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ margin-bottom: 5px;
+ cursor: pointer;
+ transition: background .12s;
+}
+.product-item:hover { background: #f0fff4; border-color: #34d399; }
+.product-price { font-weight: 700; color: var(--primary); }
+
+/* ---- Staff chips ---- */
+.staff-chips { display: flex; flex-wrap: wrap; gap: 8px; margin-top: 8px; }
+.staff-chip {
+ display: inline-flex;
+ align-items: center;
+ gap: 6px;
+ background: #eef2ff;
+ border: 1px solid #c7d2f7;
+ border-radius: 20px;
+ padding: 4px 10px 4px 12px;
+ font-size: .88rem;
+}
+.chip-del {
+ background: none;
+ border: none;
+ cursor: pointer;
+ color: #888;
+ font-size: 1rem;
+ line-height: 1;
+ padding: 0;
+}
+.chip-del:hover { color: var(--danger); }
+
+/* ---- Select / dropdown ---- */
+.form-row select {
+ padding: 9px 12px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ font-size: 1rem;
+ outline: none;
+ background: #fff;
+ cursor: pointer;
+ transition: border-color .15s;
+}
+.form-row select:focus { border-color: var(--primary); }
+
+/* ---- Row action buttons ---- */
+.row-actions { white-space: nowrap; }
+.row-btn { padding: 4px 10px !important; font-size: .82rem !important; margin-right: 4px !important; }
+
+/* ---- Edit modal ---- */
+.modal-overlay {
+ position: fixed;
+ inset: 0;
+ background: rgba(0,0,0,.45);
+ display: flex;
+ align-items: center;
+ justify-content: center;
+ z-index: 200;
+}
+.modal {
+ background: #fff;
+ border-radius: 10px;
+ padding: 28px 32px;
+ width: 420px;
+ max-width: calc(100vw - 32px);
+ box-shadow: 0 20px 60px rgba(0,0,0,.3);
+}
+.modal h3 { font-size: 1.1rem; margin-bottom: 18px; }
+.modal-actions { display: flex; gap: 8px; margin-top: 18px; }
+
+/* ---- Messages ---- */
+.msg { margin-top: 12px; padding: 10px 14px; border-radius: 6px; font-size: .93rem; }
+.msg:empty { display: none; }
+.msg.ok { background: #d1fae5; color: #065f46; border: 1px solid #6ee7b7; }
+.msg.err { background: #fee2e2; color: #991b1b; border: 1px solid #fca5a5; }
+
+/* ---- Login overlay ---- */
+.login-overlay {
+ position: fixed;
+ inset: 0;
+ background: #1a1a2e;
+ display: flex;
+ align-items: center;
+ justify-content: center;
+ z-index: 500;
+}
+.login-card {
+ background: #fff;
+ border-radius: 12px;
+ padding: 40px;
+ width: 380px;
+ max-width: calc(100vw - 32px);
+ box-shadow: 0 20px 60px rgba(0,0,0,.4);
+}
+.login-card h1 { font-size: 1.6rem; margin-bottom: 4px; text-align: center; }
+.login-sub { text-align: center; color: var(--muted); font-size: .9rem; margin-bottom: 24px; }
+
+/* ---- Nav right (user + logout) ---- */
+.nav-right { margin-left: auto; display: flex; align-items: center; gap: 12px; }
+.nav-user { color: #aaa; font-size: .88rem; }
+.nav-logout {
+ background: transparent;
+ border: 1px solid #555;
+ color: #ccc;
+ padding: 4px 12px;
+ border-radius: 4px;
+ cursor: pointer;
+ font-size: .85rem;
+ transition: background .15s;
+}
+.nav-logout:hover { background: rgba(255,255,255,.1); }
+
+/* ---- Admin form extras ---- */
+.label-hint { font-weight: 400; color: #aaa; font-size: .8rem; }
+.form-row textarea {
+ padding: 9px 12px;
+ border: 1px solid var(--border);
+ border-radius: 6px;
+ font-size: 1rem;
+ outline: none;
+ resize: vertical;
+ font-family: inherit;
+ transition: border-color .15s;
+}
+.form-row textarea:focus { border-color: var(--primary); }
+.form-row-check { flex-direction: row !important; align-items: center; gap: 8px; }
+.form-row-check label { font-weight: 400; color: var(--text); font-size: 1rem; }
+.panel-divider { border: none; border-top: 1px solid var(--border); margin: 20px 0; }
+.sub-heading { font-size: 1rem; margin-bottom: 14px; color: var(--text); }
+
+
+ Register New Member
+ + +
+
+
+
+
+Members
+
+
+
+
+ | # | Name | Balance | Joined |
|---|