CitrusDB 2.4 Manual

• Un-tar and un-gzip the citrus file wherever you want the CitrusDB program to be located on your web server.
• Create a MySQL database called "citrus" using the citrus.sql file. You can do this using a utility like phpMyAdmin or the command line like the one shown here:

        mysqladmin create citrus
        mysql citrus < /path/to/citrusdb/citrus.sql 
  

• Create a MySQL database user with access to the citrus database you just created.
• Edit the configuration file: /citrusdb/include/config.inc.php
• Change the database host, to your server name, often this will be the localhost it is all on one server. Enter your database username and password that you just created before.

        $sys_dbhost='localhost';
        $sys_dbuser='username';
        $sys_dbpasswd='password';
  

• Change the path to citrus variable to the filesystem path of your installation:

  On a unix installation it may be something like these depending on where you installed your citrus files:

        $path_to_citrus='/home/username/citrusdb';
  
        or
  
        $path_to_citrus='/var/www/citrusdb';
  

  On a windows installation it may be something like:

        $path_to_citrus='C:\apache\htdocs\citrusdb';
  

• Change the hidden hash var to your own secret hashphrase. You will never need to remember this hashphrase so you can make it as complicated as you want.

        $hidden_hash_var='youmustchangethis';
  

• Edit the $lang variable to point to your local language file. This localization file holds the values for all the text in CitrusDB as well as the currency symbol used. Please note that CitrusDB can only work with one currency.

        $lang = './include/local/us-english.inc.php';
  

• Set the regular url and ssl url prefixes for your site. You should use the same name for both the regular url and ssl url with the only difference being http or https for the protocol. This will ensure the session cookie assigned during ssl login is available to the regular http url as well. You may use a self-signed certificate for this function as long as all the users of the database have that SSL certificate installed into their browsers. The CitrusDB project is an affiliate of Certs4Less where you can get an SSL certificate signed by a number of certificate authorities at different levels of authentication.

        $url_prefix = "http://server.example.com/citrusdb/";
        $ssl_url_prefix = "https://server.example.com/citrusdb/";
  

• Set the gpg command that will be used for encryption of stored credit card data. In order to use gpg you must generate a public and private keypair. It is probably a good idea to generate a gpg keypair just for citrusdb to use. This public key can then be used on the order side to store credit card numbers before they are imported as well as storing cards entered directly into citrusdb.

  To generate a keypair run the command: gpg –gen-key

  I recommend using the shortest recommended key length of 1024 bits since this key will be used over and over again, using the shorter key length will make decryption faster. This is a trade off of speed vs. strength. One could also use gpg with the symmetric encryption option or any other encryption system that can output an OpenPGP ascii armor message format. Symmetric encryption could be significantly faster, however it will require protection of the passphrase that is used when encrypting the card data.

  The example shown below stores the gpg key as the www-data user in their home directory. This home directory was created for the user that the web server is running as. This is the easiest way to make sure that the web server running citrusdb has access to the keys that it will use to encrypt and decrypt the card data. If the web server where you run citrusdb is inside your network and dedicated to your internal use this should not be an issue. If you are unable to do this, then you will need to modify the permissions of your .gnupg folder and the keyrings inside of it to be readable by everyone. This is less desireable as it may expose them to other users of that system as well as cause permission problems in the future if you edit keys.

        $gpg_command = "/usr/bin/gpg --homedir /home/www-data/.gnupg
        --armor --batch -e -r 'CitrusDB'";
  

• Set the gpg decrypt command that is used when decrypting the cards for batch exports or when re-keying the data. The decrypt command must include the –passphrase-fd 0 command because the passphrase will be passed to gpg by citrus's decryption function.

        $gpg_decrypt = "/usr/bin/gpg --homedir /home/www-data/.gnupg
        --passphrase-fd 0 --yes --no-tty --skip-verify --decrypt";
  

• Set the gpg sign command will be used by citrus to verify the passphrase entered before creating a batch file.

        $gpg_sign = "/usr/bin/gpg --homedir /home/www-data/.gnupg
        --passphrase-fd 0 --yes --no-tty --clearsign -u 'CitrusDB'";
  

• If you would like to use an LDAP server to authenticate users you can setup the ldap variables. Set the ldap_enable variable to TRUE and the other variables to correspond to your LDAP configuration. You should make sure you have configured your ldap server to work with ssl so that the data passed between the web server and the ldap server is not able to be intercepted by using the ldaps protocol.
• You will need to have the user configured inside of the citrus user utilities to allow them to login with LDAP, but you can manage their password using your LDAP system.

       $ldap_enable = FALSE;
       $ldap_host = 'ldaps://localhost';
       $ldap_dn = 'ou=webapps,dc=localhost';
       $ldap_protocol_version = 3;
       $ldap_uid_field = 'uid'; 
  

• If you have an xmpp or jabber server for ticket notifications you can setup those xmpp account variables to allow citrus to send ticket notifications via xmpp instant messages.

  $xmpp_server = "";
  $xmpp_user = "";
  $xmpp_password = "";
  $xmpp_domain = "";
  

• A shipment tracking website URL like the one for US Postal, FedEx, or UPS can be entered if you want to use the field asset tracking number field when shipping field assets to customers.

  $tracking_url = "http://trkcnfrm1.smi.usps.com/PTSInternetWeb/InterLabelInquiry.do?origTrackNum=";
  

• add a cron job to run the statusupdate script (available in the citrusdb folder) every night or after billing is done for the day. This script will update the customer's account status and create a file that can be used to activate and deactivate customer services automatically.
• Go to your web site address /citrusdb/index.php, you can log in with username "admin", password "test" to start.

You have now finished the main installation of CitrusDB. It's a good idea to login and change your admin password first. If you are not going to install the customer account manager can skip to Chapter 2 - Setup, to continue to setup of the internal CitrusDB application.

CitrusDB also includes an online customer component for customers to view information about their own account, request changes, and make updates. The online customer account manager is stored in the /online folder of the CitrusDB download. It is a simple interface for customers to login using their customer number and password of their choice.

The online folder is meant to be installed on a separate web server. If you have a firewall, you'll want to configure it to allow access to the database server from this web server, so that the online component can query the customer information. It is also recommended to make a new login name and password for use by the online customer component that has more restrictions than your normal database user from the main system. This new database login name should restrict the access to your citrus database to SELECT only, allowing INSERT for only the customer_history table and SELECT, INSERT, UPDATE, and DELETE for the session2 table.

The online customer system is configured similarly to the main system by editing the config.inc.php file inside the citrusdb/online/include folder. There are some additional variables to configure for the online customer system.

The $payment_url variable should be set to whatever online form or payment system you have such as authorize.net, paypal, your own custom form etc.

The $notify_user variable holds a username from the internal system that will be notified of new requests that customers make online.

When a there is a new installation or critical security update, you will want to be able to upgrade your installation to the latest release. To update from an older version to a newer one:

• Backup the php files by copying them to another location and backup your citrus database by using a utility like mysqldump.

        mysqldump –user <username> –password <passwd> db_name > backup.sql
  

• After you have backed up your current installation, replace the old citrusdb files with the new ones from the package you downloaded
• Edit the config.inc.php in /citrusdb/include with the database and path information from your old config file.
• To update your database schema from the old to the new, open the update.php file in your web browser (www.example.com/citrusdb/update.php) and click the Update button.
• Your database has now been updated, and you are ready to use your new version of CitrusDB.
• If you are upgrading from version 1.x to 2.x you will need to make sure you have setup the new gpg commands in the config file and then run the encryptcards script to encrypt the cards in the database.

After you have installed CitrusDB the first thing you should do is login with the default username (admin) and password (test) and then go update the password to something new. To update the password, click on the Tools icon, and then click on Change Password. Enter a new password for the default admin user.

The login system will stop your login attempts from your IP address if you fail to login with the correct username and password after 5 tries in the last 24 hours. If this happens, your IP address must be removed from the login_failures table by the database administrator.

The Organization Configuration section holds information about the company or organization using CitrusDB. This should be the first thing you configure when setting up CitrusDB. The information is used in many places for invoices, billing, and customer messages.

The Billed By field holds the organization's brand name. If you have more than one organization brand name you can add multiple organization brands using the Add link to create more than one organization listing. This is used to create bills under different brand names and different credit card batches for those brands. If your organization does not need multiple brands you can simply edit the default configuration.

Enter the organization's name that will appear on the bill in the Billed By field. Then the street, city, state, zip, phone, and email information. The billing phone and billing email will appear on the printed and emailed invoices.

Credit Card Export Variable Order is the order of the variables that are exported in the credit card batch file for processing by your credit card processing system. You can export a number of different variables. All the available variables are listed at the bottom of the organization screen. Please note that you need to put the $ in front of the variable name so that they are evaluated correctly. CitrusDB will insert the words "CREDIT" or "CHARGE" in quotes at the beginning of the variables, depending on what kind of credit card transaction this is. The recommended export format uses comma and quote delimited items. You must keep the commas between the items and quotes around them to make sure other systems can import the information correctly.

"$mybilling_id","$invoice_number,"$billing_ccnum","$billing_ccexp","$abstotal"...

Export File Prefix is is appended to the beginning of all credit card batch files exported by citrus. If you have multiple organizations exporting from the same citrus system, you can use this file prefix name to identify which exported batches belong to which organization.

Past Due Days are the number of days an account is past due before the status is updated by the statusupdate script to one of the three different past due status types: Past Due, Turned Off, or Canceled. Past Due accounts will be noted as past due and will be notified in email by the statusupdate script about their status. A Turned Off status will cause the account to send a disable message to the account activation system, which can then disable access to the account. An account in a Turned Off status should be disabled and non-working. The Canceled status is for accounts that have been through the first two phases of being past due and have not yet paid for services. Canceled will send a delete message to the account activation system. The account should be removed from your systems, and if you have a collections department or processing system, can be forwarded to them for past due amount recovery.

Carrier Dependent Past Due Days are for third party services that have special requirements when they are turned off. They act the same as normal Past Due Days however they have a Shutoff Notice period in between being Past Due and having their service being Turned Off. This shutoff notice is to notify the customer that their service will be turned off and also to notify the billing group that the service is in jeopardy of being shutoff. The billing group will receive notifications when this service is to be turned off or canceled, since they will need to be able to contact the third party service carrier to handle type of cancel request.

The next fields are the four different kinds of invoice notes that are printed at the bottom of the invoices according to the account status. The Default Invoice Note is printed on an account in good standing, usually this is a note thanking them for using your services. The Past Due Invoice Note is printed on invoices while an account is in the Past Due status. The Turned Off Invoice Note is printed on invoices while an account is in the Turned Off status. The Collections Invoice Note is printed on invoices for accounts in the collections status. These messages can be overridden by entering a custom message in the Notes field on the customer's billing record.

The declined subject and message field hold the data used in the email that is sent to customers when their credit card has been declined. Here you should enter a message that will prompt them to contact you and get their billing information up to date.

The last field is an invoice footer field that holds text that will be placed at the bottom of every invoice.

After you have setup the organization information you are ready to save your changes and continue setting up your CitrusDB system.

The settings tool holds system wide settings for citrus.

At the top of the Settings screen you will see a Citrus Database Version and Citrus Software Version. The database version is the version of the SQL Schema that is being used. The software version indicates the version of the software application files. These two versions should be the same. If they are different it may mean that you have not run the update script to update your database to the correct version or that you are running a Pre-release version of CitrusDB.

The Path to Credit Card File should be set to a file path on the server to a folder that is outside the path of the web server and other network processes. When credit card and account activation data is created it will be saved to a new file inside this folder. You can then write scripts that will automatically process new files left in that folder, or download those files to process them manually. You should make a new folder to store this data in, for example, on a Unix system you can set this to something like

   /var/billing 

and on a Windows system it can be set to a path such as

   C:\billing

This will keep this data outside of the web server path, but will still allow it to be accessed by 3rd party scripts running on the server that can process this data automatically.

The Default Group is used by the support notes and privileges system to allow notifications to certain users. Normally leaving this as the default of "users" is recommended.

The Billing Group is a group that you will need to create if you are using the carrier dependent services functions or if you are using the Field Asset feature. The status update script will send the billing group notes if a carrier dependent service is in a bad billing status, like past due, turned off, or canceled with fees owed. The field asset feature will send a note to billing whenever a device is returned so that the billing group knows the customer has returned a device and can take measures necessary to adjust their bill.

The Shipping Group is a group that you will need to create if you are going to use the Ship Field Asset feature. Ship Field Assets lets you associate a field asset like a CPE or other device with that customer's service. The shipping group will get a note when a field asset is setup to be shipped.

The carrier dependent cancel url is for third party carrier dependent services. This can link to an internal web form or other form when a carrier dependent service is canceled to notify the third party carrier that this service is to be canceled.

The Billing Date Rollover time should be set to the time of day when new accounts created after this time will not be billed until the next billing day. This is used to prevent new accounts from being given the current billing date after the batch has already been processed for the day. This time field is in 24 hour time format.

The Weekend indicators allow the billing system to automatically skip certain days when assigning new billing dates to new customers. This is especially usefull for billing around weekends, so that a new customer's billing date does not fall on a weekend. You can choose what days of the week you want to assign as weekends here.

The Users Tool will allow you to add CitrusDB database users. This is used to add your staff personnel that will be using the database to access customer information and billing. The user tool will show you a list of current users. In the default installation there will be two users present. An admin user that has all privileges to edit everything about the database, and an online user that is used to demonstrate the online customer account manager's message notification. If you have not yet done so, you should change the password for both the Admin user and Online Request user to something new.

To add a new user click Add New Database User. You will then be presented with a form to fill out, including the user's real name, their username, and their password. You will also choose their tool privileges here. Admin privileges will allow access to add new users, edit billing types, add new services, and add new modules. The Manager privilege will allow access to the credit card import/export features, invoices, payments, reports, and account activation. All other users should have No selected for both Admin and Manager privileges.

You can edit existing users by clicking the Edit link next to their name. This will allow you to change their tool privileges, their username, and their password. You can also delete a user by clicking the Delete link next to their name. When you delete a user or change their username, any notes they have made will stay in the database under their old username. You will also need to update any groups they are a part of to include their new username.

The Groups tool is used to assign users to different groups for notification and permission purposes. By default all the users who are added to the database are put in the "users" group. This should probably not be changed, since it affects access to many pieces of the system. You can add as many other groups as necessary. For instance, if you have a group of people who perform shipping duties, you might make a shipping group and assign them to this group. When a particular piece of equipment is needed you can send a note to the shipping group, which will notify all the individuals in that group about your message. When someone in the group marks the message finished, it will dissapear from view of all the people in the group.

This is also where you will add the billing group you specified in the settings tool if you are using the carrier dependent service functions.

The Edit Billing Types tool will allow you to edit what billing types are available in the customer's billing record. CitrusDB comes with a number of billing types already created, so you may not need to create more. In fact, it may be better to delete those that you do not need, so they don't get in the way. There are 6 methods of billing:

• creditcard: For billing via a credit card batch export.
• einvoice: For emailing invoices. The invoice is in pdf format, and will be sent to the email address indicated on the billing record.
• invoice: For printed invoices.
• prepaycc: For prepayments done with a creditcard. A prepaid account will not have it's payment dates updated until payment is made, it will not go into a Past Due status, it will become Not Renewed, and should be turned off if left un-renewed.
• prepay: For prepayments done via checks, cash, or electronic funds transfer. A prepaid account will not have it's payment dates updated until payment is made, it will not go into a Past Due status, it will become Not Renewed, and should be turned off if left un-renewed.
• free: For free accounts. These accounts will never be billed and will never be past due. The free billing type can be used for items like demo accounts or temporary free items.

If you need to add new billing types, they can be added using the form at the bottom of the Edit Billing Types tool window. You will need to provide the name of the new billing type. This will show up in the list in the billing record. The frequency of the billing type. This frequency is used to determine how often (in months) that billing type is processed. For example a Monthly billing type would use a frequency of 1, a Yearly billing type would use a frequency of 12 (for the 12 months between bills). There is also a special case frequency of 0 (zero) for a free or one time billing type. Lastly, select what billing method this new billing type will use, creditcard, prepay, invoice, einvoice, etc.

You can remove billing types from the database, however before doing so you will want to make sure that none of your current billing records are using that billing type, otherwise they may not get billed properly.

CitrusDB has a table in the database called "holiday". This table consists of just one date field called "holiday_date" that holds dates that are billing holidays when billing is not preformed. If a new customer's billing date should fall on one of these days it will be moved up a day until it does not fall on a holiday. You should determine what holidays there are during the year that are not already covered by the weekends setting when billing will not be performed and add those dates to the table. This table can only be edited by using a database editor such as phpMyAdmin or SQL insert queries.

CitrusDB comes with a default example service, credit, and prorate services. To make CitrusDB work for your organization you will have to add your services using the Edit Services tool. CitrusDB can support many different kinds of services, one time services and fees, recurring services, taxes and fees, linked or bundled services, and services with measured usage or hourly cost.

Open the Edit Services tool to see all your current services. Click Add New Service to begin adding the services that you provide.

Setup Fees and Bundled services are added like any other service using the Add New Service function. After you have added the setup fee or bundle service, choose the Link Services item to connect them to the service it goes with. For example, you may make a link From a Monthly Service Account to a Service Account Setup Fee. Now whenever a Monthly Service Account is added, the Setup Fee is automatically added to the service record also.

CitrusDB comes with some default tax rates for certain locations. This data may be incorrect or out of date, please consult your local tax code to make sure you are billing for the correct tax amounts.

To add a new tax rate click the Taxes link in the Service Editor. and then click on Tax Rates. At the bottom of the Tax Rates screen is a form to add new Tax Rates. The Description holds the name of the tax, for example “Massachusetts Sales Tax”. The Rate holds the percentage of the tax, for a 5% tax enter “0.05”. The If-Field holds the name of the field in the customer record that is checked to see if this tax applies to the customer. For example, if the tax is based on what state a customer is in, enter “state”. The field names are the names according to the SQL database names for matching customer table columns, and will usually be in all lower case. The last field is the If Value, if this tax is for customers who are only in the state of Massachusetts, enter “MA” in the Value field. You can leave the If Field and If Value fields blank if the tax is applied regardless of the customer attributes.

You can remove tax rates by clicking on the Delete link. Make sure you do not have any services associated with that tax rate before removing it, or you may not bill them correctly.

Field assets refer to devices out in the field like customer premises equipment (CPE) or other devices you want to track that are associated with a service.

To add Field Assets to a service first you must setup what Field Assets types are available for each category of service. Open the edit services tool and click on Edit Field Asset Types. Here you can enter the device description, choose the status of current for devices that you are currently shipping to your customers. If you have devices in the field but do not ship them to customers anymore you can change the device to the old status using this same edit screen. You can enter the weight of the device here which is not used yet, but may be used some day to calculate a shipping fee. Finally choose what service category that this device belongs to.

Now that you have added your Field Assets when you edit a customers' service you will see a choice called Ship Field Asset under the service attributes. If you want to track a field asset shipment you can then choose the type of field asset you are shipping and then enter the device details and shipping information. This will now associate this device with that service record and will show you that device on the service edit screen.

If one returns the field asset device you can edit the customer's service record and click on Return Device and enter information about why the device has been returned.

CitrusDB comes with a number of searches pre-installed in the searches table. Search fields are edited in each module's search.php file and show up on the search page. You will probably want to create search queries for your new service attributes, so you can find services by the specific attributes that have been specified in their options/attributes table. You can add new searches by adding a new row to the searches table. For example in the query field:

   SELECT * FROM customer WHERE phone LIKE '%%s1%%' 

This will allow you to search the customer table for a phone number. The %%s1%% will be replaced with the information filled out in the search form. Then link to the search row id using a small input form in the corresponding module search.php page. In this case you would edit the /modules/customer/search.php file and add new html for a form:

   <form ACTION="index.php?load=dosearch&type=fs" METHOD="POST">
   Find Phone Number: <input type=text name=s1>
   <input type=hidden name=id value=4> 
   <-- "4" is the id of the row in the searches table -->
   <input type=submit name=submit value="search" class=smallbutton>
   <form>

You can search with multiple field inputs by naming each field s1, s2, s3, s4, or s5.

You can add a link to the right of the service attribute field that will allow users to query a web address with that service attribute. This can be used for things like checking the finger results on a Unix server or checking other account status through a website. The URL Options Links are stored in a table called options_urls. You can add new links or edit existing ones using SQL queries or a utility like phpMyAdmin. The URL link is matched by the name of the attributes table field, so any attributes table with a matching name will get a link next to it. For example if you have a username field and you want people to be able to run a finger.cgi on any attribute table field with a name of username you would make a new entry into the options_url table with the fieldname of username and a url such as

   http://www.example.com/finger.cgi?%s1%

the %s1% is a place holder where the value of the attribute will be put into the URL.

You have now completed the setup of CitrusDB to work with your organization. You can now begin adding customers and billing them for services!

After CitrusDB has been setup and customers have been entered into the database, the most common thing one will do when first dealing with a customer is search for their record in the database. To search for a customer record, click the Search icon at the top of the screen. This will show you the available searches you can perform. You can find customers by their account number, their name, their company, and many other bits of customer information. Additional searches can be added by the server administrator by editing the searches table and search.php files, detailed in chapter two.

When you have a new customer to add to the database click the New icon at the top of the screen. This will prompt you to fill in some standard customer information, such as their name, address, and phone number. After you have filled in their information, click the Add button. This will make a new customer record, and take you to the customer record where you can begin adding their new service and billing records by clicking on the service and billing tabs on the left. Adding new service and billing records is detailed below. After you have added service and billing records for the customer, that record is considered complete and ready for billing and service provisioning.

To edit the customer's record click the Edit Customer link at the top of the customer record screen. This will allow you to edit the information about the customer, such as their address, phone number, or email address. When you edit the customer record, this does not automaticaly affect their billing record. After you have saved your changes to the customer record you will be promted to update the billing record with the matching information. Click Yes if the customer's billing information should match. Otherwise you will need to edit the billing record seperately.

If a customer wishes to cancel their services and will no longer have any customer relationship with your organization, you can cancel a customer using the Cancel link at the top of the customer record. You will then be asked if you are sure you want to cancel this customer. When you cancel a customer it will deactivate all the services on their account and the account will no longer generate new bills for services. If you want to un-cancel the customer's record you can click the Uncancel customer link that will show up on a canceled customer record. Add their services back onto the account, and edit their billing so that it begins billing them as before.

After you have added a customer record you'll want to edit their billing record. Click the Billing tab on the left side. If this is a new customer, the billing record will have copied the customer address from the custsomer record, but will have empty billing method and may have ivalid billing dates. If the customer's contact information will not match their billing contact information, you must edit the record to add their billing address information to the billing record. You are then ready to edit their rest of their billing record.

Most customers will have just one default billing record. Alternate billing records can be associated with services when those services require billing that differs from the customer's default. To edit the default billing record click the Edit Default Billing link at the top. If you need to edit an alternate billing record, click the alternate billing record's ID number in the alternate billing list. This will bring up the billing record editor.

In the billing record editor you can update their billing address, phone, email and billing type. When you add a new customer billing record much of the address information will be copied from the customer information so that billing can be processed. If you didn't copy the customer information into the billing record when editing the customer record, you'll need to start by filling in the customer's billing contact information. This will hold the address that an invoice is mailed to, the email address an e-invoice is emailed to, and the address that a credit card is verified against.

You will also choose the billing type here. There are many billing types to choose from. Depending on what kind of services the customer has, it may restrict what billing types are compatible with that service. A service cannot have a billing type that has a billing cycle frequency that is smaller than the service frequency. For example, if the customer has a service on their record that is a Quarterly Subscription Service that is billed every 3 months, they must have a billing type that is also billed every 3 months or a greater multiple of 3 months, such as yearly (which will multiply that service cost * 4 when billed yearly). This is one of the reasons you may need to add alternate billing types to an account, if the customer has services that are billed at many different intervals.

When you add a new billing record the next billing date is filled in with today's date, or if it is a holiday or after the billing rollover time setup by the server administrator, the next available billing date. A From date of today, and a To date that is automatically set according to the length of the billing cycle specified by the chosen billing type. The payment due date is also entered as today's date on a new billing record. A payment due date of today may be fine when billing is done by daily credit card batches, however if the service is invoiced or billed differently, this date may need to be edited. The payment due date is very important to get right if you are using the statusupdate script to automatically update customer status information. That script relies on the payment due date to determine what status the account should be in, whether to turn it off or back on etc.

When accounts are billed by credit card, invoice, or einvoice, the billing dates are moved forward automatically according to the billing type's cycle. Accounts with a prepaid billing type will have their billing dates automatically moved forward after the currently due payment has been made.

The Invoice Maintenance link is available for each billing record. This allows you to view all the invoices or bills ever generated for this account. Here you can reprint the invoice in pdf or html format, or re-email the invoice to the customer by clicking the email link. Invoices that have not been associated with payments yet may be removed by clicking the Remove link. When an invoice is removed, the billing history record, and details of the items on that invoice is also removed. Invoices will usually only be removed when a billing issue requires making a new replacement invoice. You may also use the Enter Payment link to open a payment screen with the invoice information already filled in.

The Refund Report link available on each billing record allows you to indicate which services to refund on that billing record. Credit card billing type refunds will be added to the refund batch run from the refund batch tool. Invoice or E-Invoiced billing type refunds will need to be processed manually. It will show you a list of all services billed to that billing record and allow you to indicate a refund amount for those services that have already been paid for.

If billing is not performed daily, the next billing date field may need to be edited to conform to your billing cycles, and prorate service types will need to be added to the account to make up the difference in price.

Most installations of citrusdb include a pre-made Prorate service. This service may be hidden from view of regular users, an admin or manager may need to add the Prorate type using Show All. If you do not have a pre-made Prorate service you will need to add one. A Prorate service is simply a service with a frequency of zero, a Price rate of 1, and a Usage Label of whatever currency you are using.

First add the service they are getting to their account and then add a onetime prorate service to the customer's account. When adding the prorate service set the Measured Usage Multiple to the amount you want to prorate the account for to get it into the right billing cycle. You need to do a little math here on your own. For example, if you add a 19.95 service, in a 30 day month each day is 0.665 cents. If you want to bill them on July 1st, and today is June 8th, then there are 22 days of prorated service, which is 14.63. So put 14.63 in the Multiple field. Their first bill will then equal 34.58 with the service item plus the prorate item.

In the billing section for that customer you would set their next billing date to be July 1st, set the from date to July 1st also, and then it will fill in the to date equal to whatever number of months the billing type covers starting July 1st, so if you had a monthly invoice service the to date would be August 1st. This will make the billing dates at the top of the invoice not exactly match the prorate time period since there is a prorate item in there and they really started service on the 8th. In the prorate description one could put the date of the prorate period.

The service record tab will show you a list of the current services that are on the account. To add new services to an account click Add Service on the Services tab. This will bring you to a list of all the services available for sale. Scroll down the list, or choose the service category to jump to a category of services to choose from. Click the Add button to begin adding the service.

When you are adding a service, it will then bring up the service editor which will allow you to fill in fields for any service attributes and the measured usage amount, if the service is billed via measured usage, such as per hour, per minute, or per megabyte. After you have filled in any attribute information necessary, click the Add button. You will then be returned to the list of services on the account, and will see the new service listed there. The service will be added with the default billing type. If there are other services linked with the one you added, or if the service has taxes associated with it, those will be shown also. If the service has others linked to it, those will also have been added to the record, such as setup fees or bundled services.

If you add a service that requires a different billing frequency, you will get a message that says “Fix Billing Frequency”. If you have not setup the customer's billing record yet, you can ignore this message for now. This error will appear if their billing type has a billing cycle that is less than the service frequency. For example, you will receive this error when the account has a billing type with a monthly cycle such as a monthly credit card bill, but a service that should be billed yearly, such as a yearly Internet service subscription. If the customer has alternate billing types that should be used for that service, click the Edit button and choose the alternate billing ID from the menu to assign this service to that billing record. You may want to add a different, but comparable service that is billed monthly so they can keep their billing simple, or make a new alternate billing type and assign this service to that new billing type.

Customer notes show support tickets that are associated with this customer. They are visible in the Notes tab at the bottom of the screen. To add a new support note to this customer click the Support module tab on the left and enter the note you want to leave on this record.

You can choose to notify a certain CitrusDB user, a group of users, or nobody at all if you just want the note to be on the record, but no action needs to be taken.

Each Customer Record has a Billing Status field that will show the current status of the customer. The following status types may be shown depending on the customer's situation:

• New: account has no billing history
• Free: account has a billing type of free
• Not Renewed: a prepaid account that has not been renewed before it's bill to date.
• Authorized: a credit card or invoice account that is paid up to date
• Declined: a credit card account whose most recent charge was declined
• Declined 2X: a credit card account whose two most recent charges were declined
• Pending: an account with no next billing date, this usually means the account is pending an account change.
• Past Due: an account that has amounts past due, but not yet turned off or sent to collections status.
• Turned off: an account that has been put in the Turned Off status, due to being past due with no payment made for a specific amount of days.
• Collections: an account that has been put in the Collections status by the billing group, due to being turned off with no payment for a specific amount of days.
• Canceled: an account that has been canceled, this is indicated by a cancel date on the customer record
• Cancel w/Fee: an account that has been canceled, but still has amounts past due.

The Billing history tab is shown at the bottom of each screen. Click this tab to view the billing history for that customer. You will see all bills generated for this account, no matter what payment type they are. It will show you the date the bill was generated, what the date range of the bill was, what the new charges on the bill were, and the total charges on the bill. You can click the Invoice Number link to view a snapshot of an invoice for that billing history record.

The Payment History tab is shown at the bottom of each screen. Here you can view all the payments made to this account, when the payment was made, the payment status, what type of payment it was, the AVS or Address Verification status for credit card payments, and how much the payment was for.

The Billing Details tab is at the bottom of each screen. It will show you the details of each item ever billed. It shows the date it was billed, the name of the service, the invoice number the service was on, the amount the service was billed for, and how much of the service has been paid for. You can click the Invoice Number link to view a snapshot of the invoice that service was listed on.

If a credit card gets declined and the customer wishes to try running the credit card billing again, you can click the Rerun link in the Billing record. This will cause the credit card on the billing record to be billed for any past due amounts on the date specified in the Rerun Date field. It will not charge the credit card any new service charges, only those that are past due. If the next available billing date to rerun the card matches the customer's Next Billing Date you will get an error that the card will be run normally on the next billing date. This will bill the customer for their past due amounts and any recurring service charges.

Welcome letters may be printed by users with manager privileges. To view the welcome letters go to the Tools section and click on the Welcome Letters icon. This will create a web page on your screen with welcome letters for each new service activated today. Simply print this page from your browser and mail these letters to your customers to welcome them to their new service. The welcome letter can be changed by editing the text near the end of your printwelcome.php file in the citrusdb/tools folder.

   "trxcode","ccnum","ccexpire","amount","billingid","Y/N","avs"

Having up to date backups are very important for a billing system, since your whole business will rely on it for their day-to-day work. You should implement a backup policy that takes into account your uptime requirements. Backups can be performed nightly or as needed using the standard MySQL backup utility mysqldump:

   mysqldump –user <username> –password <passwd> db_name > backup.sql 

This command can be added to a nightly cron script on a Unix server, or a windows batch script.

All the tabs on the left side, such as the default ones of Customer, Services, Billing, and Support are called modules. You can add new tabs here that hold your own information by adding a new custom module with your own php code that does whatever you need it to do, such as querying database tables, or storing additional customer information that is unique to your operation. A module is simply a folder inside the modules folder with an index.php file and other files that make up the functions of the module. Some modules may or may not need all these functions. If they don't need the function, please make an empty file for that function.

If you are making a new module, it should conform to a few functions to make sure one can use the major functions of any module without knowing all of it's details.

The following files are required, index.php, create.php, edit.php, delete.php, and search.php file. When making a new custom module you may want to start with one that is already there. I recommend copying the Support module and renaming it. The Support module is one of the smaller modules and a good starting place to edit it and make your own modules.

• index.php

This is the default file. It has code to include the other files when called with edit=on or similar it will also provide the view of the data by default

example of index.php:

   if(constant("INDEX_CITRUS") <> 1){
    echo "You must be logged in to run this.  Goodbye.";
    exit;
   }
   
   if (!defined("INDEX_CITRUS")) {
    echo "You must be logged in to run this.  Goodbye.";
    exit;
   }

   include('include/permissions.inc');

   if ($edit) {
     if ($pallow_modify) {
       include('edit.php'); 
     } else permission_error();
   } else if ($create) {
     if ($pallow_create) { 
       include('create.php');
     } else permission_error();
   } else if ($delete) {
      if ($pallow_remove) {
        include('delete.php');
      } else permission_error();
   } else if ($pallow_view) {
      //
      // YOUR DEFAULT CODE GOES HERE
      //
   } else permission_error();

• create.php this will be used to create a new record for that module function. for example, with the services module, this would create a new service for that customer, called with create=on
• edit.php this will be used to edit a record for that module function. for example, with the billing module, this would edit the billing for the specified billing id, called with edit=on, often called with an id value to specify a billing_id, or user_service_id etc.
• delete.php this will be used to delete a record for that modules function. for example, with the services module, this would remove the service from that customer, called with delete=on
• search.php this will be included in the main search page. it will not be called through the index.php file it will either be empty if your modules doesn't need search ability, or have form html for searching the data that your module deals with

example of search.php:

   <form ACTION="index.php?load=dosearch&type=fs" METHOD="POST">
   Company Name: <input type=text name=s1>
   <input type=hidden name=id value=2> <!-- the id of this search in
   the searches table --> 
   <input type=submit name=submit value="Search" class=smallbutton>
   </form>

After you have created your module, you'll need to install it into the system. Copy your module folder into the modules folder of CitrusDB. Open the Edit Modules tool and click Add Module. This will ask you for the Common Name of the module, this is the name you want it to be called in the Tab on the left that users will see. The Module Name is the name of the folder that the module is stored in, this field is case sensitive. The Sort Order field is a number that determines what order the tabs are sorted in.

There is a script included in the citrusdb folder named statusupdate. This script can be run nightly in a unix cron job or windows task scheduler. It will create a file in the path you specified in the general configuration (the same path as credit card data) with a list of accounts to ADD, DELETE, ENABLE and DISABLE today.

The statusupdate script will also email messages to customers and make a pdf file for printed messages to be mailed by the billing adminstrator regarding their past due accounts. These messages can be edited in the language files using the $l_notice_text_ variables.

This file can be used in conjunction with other cron jobs or scripts that check for new account files and process them automatically. You may want to make a shell script that calls the statusupdate script and then calls your own account activation script that works on the file created by statusupdate.

It will print an ADD line for new services added today. A DELETE line for services that have a removal date of today. An ENABLE entry for services that should be turned back on today that were previously disabled. A DISABLE line for services that should be shut off today such as accounts with declined credit cards or past due. It prints them in a standard text format that could be processed by an activation script at a later time.

Example:

   "ACTION","category","Customer Name","Service Description","field1",...

• The ACTION will hold the value ADD, DELETE, ENABLE, or DISABLE to indicate what should be done to the account
• The category field holds the category you assigned to that service. This will allow your custom activation script to check this field and do things to specific categories of service, without having to parse the whole service description.
• This is the customer's name, often entered into the data with their account
• This is the description of the service being added from the database
• The last fields are holding data from whatever fields have been specified for that service in the Activation String field in the service editor. It will print them all for that service, so it will be a variable number of fields. You will probably want to specify the same fields for each category of service so you will know what fields you are looking at when you read the category name earlier in the line.

The credit card batch format is in a quote and comma separated format that can be edited by changing the Credit Card Export Variable field in the General Configuration.

Each transaction will look something like this example:

   "CHARGE","111","4353","4111111111111111","0810","19.95","01234","5 Example St."

The first field in the first line of a card record will be the words CHARGE or CREDIT to indicate whether the transaction is a charge or a credit, after the first field you can use any of the following variables:

• $user: this is the database user that ran the export tool
• $batchid: this is the id of the batch, there is a unique batch id for each export created
• $mybilling_id: this is the billing record id that is being billed
• $invoice_number: this is the invoice number for this bill, it is unique to this one bill
• $billing_name: this is the name in the billing record
• $billing_company: the company in the billing record
• $billing_street: the street on the billing record
• $billing_city: the city on the billing record
• $billing_state: the state on the billing record
• $billing_zip: the zip code on the billing record
• $billing_acctnum: the customer's account number
• $billing_ccnum: the customer's credit card number
• $billing_ccexp: the customer's credit card expirationdate
• $billing_fromdate: the billing from date on the billing record
• $billing_todate: the billing to date on the billing record
• $billing_payment_due_date: the payment due date on the billing record
• $mydate: the date in Y-m-d date format (eg: 2007-04-19)
• $abstotal: the absolute value of total, if the bill total is negative it will not be exported with the credit card batch. The refund tool must be used to refund an account's credit card.

The results of the credit card batch will need to be imported into CitrusDB. The format for this is a comma separated file with the following fields (all on one line):

   "trx code","cc number","cc expire","amount","billing id",
   "approved(Y) or declined(N)", "avs"

• trx code: the unique transaction code assigned to this one transaction by the bank or by you
• cc number: holds the credit card number, should probably be imported in a format with most of the information hidden like

       4***********1111
  

• cc expire: the expiration date of the card that was run.
• amount: the amount of the transaction
• the billing id that connects this transaction to a citrusdb billing record.
• The uppercase letter "Y" or "N" that indicates whether the transaction was successfully approved (Y) or declined (N). You can place other text after the Y or N if you want to indicate other transaction codes or things like whether the transaction was live or in a batch.
• avs: this field can hold address verification result codes if those are available to you.

You may need to create a script that converts your bank output into the format above that CitrusDB will import. The only required data are the transaction code, billing id, and approved or declined, the other fields can be left blank if they are unavailable. Upon importing this file accounts will have their billing status updated accordingly.

Online order forms can save the order data and you can use Import New Accounts tool to import the orders into CitrusDB. The New Accounts tool can also be used when migrating to CitrusDB, by importing existing customer records into citrus with all their customer, billing, and service information. Here is an example of what each line in order data file should look like (normally each line is on one line and does not have blank lins between each, it is printed this way to show up in the instructions more clearly.)

   Online, Test User, Test Company, 523 Test Ave., Testcity, CA, USA,
   95113, 408-555-5555, 408-555-6666, 408-555-7777, user@example.com,
   , What is your favorite color, red, testpassword, 1
    
   Test User, Test Company, 1 Test Street, Testcity, MA, USA, 01234,
   555-555-1234, 555-555-1235, test@example.com, 1, 4***********1111,
   0406
    
   3, usernm, passwd, Linux, 1 Test Street, Cisco Thing     
   
   3, nameuser, wordpass, Windows, 123 Test Street, USB Thing    
   
   -----BEGIN PGP MESSAGE-----
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA     
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   -----END PGP MESSAGE-----

The first line of the import record is the customer data, the second line is the billing data. The credit card number here should be masked with ****'s in it so that one cannot view it. The real card number will be stored in the encrypted PGP text below. The third section of lines are for services to add to the account upon import. The final lines are for the PGP ascii armored credit card data so that you can encrypt the data with your public key before importing it into the database, preferably directly in the order system that is saving these new customers. If the customer does not use a credit card you will need to include the –—BEGIN PGP MESSAGE–— and ——END PGP MESSAGE–— lines with nothing in between them. This denotes the end of that customer record. (normally each line is on one line and does not have spaces between lines, but is printed this way to show up in the instructions correctly.)

Field definitions:

   source, name, company, street, city, state, country, zip, phone,
   alt_phone, fax, contact_email, tax_exempt_id, secret_question,
   secret_answer, account_manager_password, organization_id
     
   Name, Company, Street, City, State, Country, Zip, Phone, Fax,
   Email, Billing Type ID, Masked Creditcard Number, Creditcard
   Expiration
   
   Service ID, (any fields that make up the services options_table) in
   this case, Username, Password, OS, Street, Device     
   
   -----BEGIN PGP MESSAGE-----
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA     
   aSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tAaSC14RMoRD3tA
   -----END PGP MESSAGE-----

You can create bills for service usage manually by adding the service using the service record for that customer and typing in their measured usage for that service. If you have many many services that have usage tracked automatically, for example minutes of a phone call or megabytes transferred you can create a custom import script to input this usage data in to a new one time service charge for the customer every month, or whatever period you are billing them by.

To input service usage data you will first need to create some place holder services that have a pricerate that is equal to the service's unit cost. For example, if you have a service that costs $1.00 per megabyte, you can make a new one time service called “Megabyte Use” with a price of $1.00 and a frequency of 0 (zero) so it is a one time fee. This is a one time service because a new service with that month's usage will be entered every month or billing period. When you add this service to a customer you would fill in the measured usage field with the number of megabytes they have used, say they used 100 megabytes, then it will multiply their usage by the price and give you a total of $100 for that service.

To automate this service usage input you will need to make a script that inputs new service records into your MySQL database. Adding new services to a customer is done by making entries into the user_services table. In order to insert this information you'll need know the customer's account number, the id of the service that you are adding, and the amount of usage units. PHP code to do this query with the ADODB layer that CitrusDB uses will look something like this:

   // make the creation date YYYY-MM-DD HOUR:MIN:SEC
   $mydate = date("Y-m-d H:i:s");

   // get the default billing id for the customer's record
   $query = "SELECT * FROM customer 
   WHERE account_number = $account_number";
   $DB->SetFetchMode(ADODB_FETCH_ASSOC);
   $result = $DB->Execute($query) or die ("$l_queryfailed");
   $myresult = $result->fields; 
   $default_billing_id = $myresult['default_billing_id'];
   
   // insert the new service into the user_services table
   $query = "INSERT into user_services (account_number,
   master_service_id, billing_id, start_datetime, salesperson, 
   usage_multiple) 
   VALUES ('$account_number', '$serviceid', '$default_billing_id',
   '$mydate', '$user', '$usage')";
   $result = $DB->Execute($query) or die ("$l_queryfailed");

If there is an options table that you want to put attributes into you'll also need to insert that information:

   // use the mysql_insert_id command to get the ID of the row the
   // user_services insert you just did was set to.
   $myinsertid = $DB->Insert_ID();

   $query = "INSERT into options_table_name
   (user_services,field1,field2,field3...) 
   VALUES ($myinsertid,$field1, $field2, $field3...)";
   $result = $DB->Execute($query) or die ("$l_queryfailed");

This code will usually be put inside a loop that is reading the input file that stores the usage data and inputs it into the database.

If you have a form on your website for customers to update their credit card information, you can use this tool to import their new information into their default billing record. Click the Tools icon and select the Credit Card Changes icon. This tool is used to import credit card changes that have been sent in via external methods such as online forms or email messages, usually done after a card has declined and a notice has been sent to the customer. The format for this file is:

The format for this file is:

account_number, name, street, city, state,zip,card_number (masked), card_expiration_date
-----BEGIN PGP MESSAGE-----
ASCiiARM0R3DD4TAASCiiARM0R3DD4TAASCiiARM0R3DD4TA
-----END PGP MESSAGE-----

• account number: account number for the customer's record
• name: the customer's name
• street: the customer's street address
• city: the customer's city
• state: the customer's state
• zip: the customer's zip code
• ccnumber: the customer's new credit card number in masked form with ****'s
• ccexpire: the customer's new card expiration date
• PGP MESSAGE BLOCK will hold the card number encrypted with the public key

This will update the credit card number on all billing id's assigned to that customer.

You'll need to create a form cgi that saves data in this format and download this file from your web server's periodically. You'll probably want to download and empty this file every day to check if new updates have been made. This will update the credit card number on all billing id's assigned to that customer.

Most of the pieces of CitrusDB, such as invoicing, e-invoicing, importing new accounts, exporting credit cards, importing credit cards, and activating accounts, can be automatically run at specific times. It relies on the server's cron scheduling services on unix servers to run the commands at a specified time, or on a windows server you could do something similar with the Task Scheduler.

There is one part of citrusdb that should be run every day and take advantage of a cron or task schedule. That is the statusupdate script. This must be run every day to update the billing status of accounts and also creates a file that contains account information that can be used to process account changes, new accounts, and removed accounts.

PHP has a command line interpreter that can be used to execute the citrusdb files. On a unix server this can be used much like the perl or shell interpreter is used, so you can put the path to your php executable like:

   #!/usr/local/bin/php 

at the top of the script you want to run. On windows servers you would run it with a command that is something like:

   C:\path\to\php\php.exe <filename.php>

To run a CitrusDB script from the command line you'll need to make a copy of the script to edit, in this case the einvoice.php file which is inside of the tools/modules/billing folder. It may be best to move it up a few levels to the citrusdb folder itself so your include path's are easier to figure out. With the new copy, you'll need to edit it to include the stuff from the includes files, just like it's included in the index.php file normally, so you'll need to put these near the top of the script:

   // Includes
   include('./include/config.inc.php');
   include("$lang");
   include('./include/database.inc.php');
   include('./include/billing.inc.php');
   require './include/citrus_base.php';

Then you'll need to write some php code in the new script to generate the input you want, such as today's date in the billing_date that is being processed, since the form isn't being accessed by the web, all the input and output needs to be handled there. You can also remove some things from your new script like the code that prints the form interface and since this is all going to be accessed by the computer with pre-programmed input.

    // determine if they are a prepaycc or creditcard type
    // if they are prepaycc then update the billing dates
    $query = "SELECT b.id b_id, b.billing_type b_billing_type, 
    b.next_billing_date b_next_billing_date, 
    b.from_date b_from_date, b.to_date b_to_date,
    t.frequency t_frequency,
    t.id t_id, t.method t_method FROM billing b 
    LEFT JOIN billing_types t ON b.billing_type = t.id
    WHERE b.id = '$billing_id'";

    $typeresult = $DB->Execute($query) 
    or die ("$l_queryfailed");

    $mytyperesult = $typeresult->fields;
    $billingmethod = $mytyperesult['t_method'];
    $mybillingdate = $mytyperesult['b_next_billing_date'];
    $myfromdate = $mytyperesult['b_from_date'];
    $mytodate = $mytyperesult['b_to_date'];
    $mybillingfreq = $mytyperesult['t_frequency'];
    
    if ($response_id == 'N') {
     // declined or credit (first letter of response code is an 'N')
     
     $query = "INSERT INTO payment_history              
     (creation_date, transaction_code, billing_id, 
     creditcard_number,creditcard_expire, response_code, 
     billing_amount, status, payment_type, avs_response)
     VALUES(CURRENT_DATE,'$transaction_code','$billing_id',
     '$cardnumber','$cardexp','$response_code','$amount',
     'declined','$billingmethod','$avs_response')";
     
     $result = $DB->Execute($query) or die ("query failed");   

    } else {
     // authorized (first letter of response code is a 'Y')

     $query = "INSERT INTO payment_history (creation_date, 
     transaction_code, billing_id, creditcard_number, 
     creditcard_expire, response_code, billing_amount, 
     status, payment_type,avs_response) 
     VALUES(CURRENT_DATE,'$transaction_code','$billing_id',
     '$cardnumber','$cardexp','$response_code','$amount',
     'authorized','$billingmethod','$avs_response')";

     $result = $DB->Execute($query) or die ("query failed");

     // update the next_billing_date, to_date, 
     // from_date, and payment_due_date for prepay/prepaycc 
     if ($billingmethod == 'prepaycc' OR  $billingmethod == 'prepay') {
      // to get the to_date, double the frequency
      $doublefreq = $mybillingfreq * 2;
    
      // insert the new dates
      $query = "UPDATE billing SET 
      next_billing_date = DATE_ADD('$mybillingdate', 
      INTERVAL '$mybillingfreq' MONTH),
      from_date = DATE_ADD('$myfromdate', 
      INTERVAL '$mybillingfreq' MONTH),
      to_date = DATE_ADD('$myfromdate', 
      INTERVAL '$doublefreq' MONTH),
      payment_due_date = DATE_ADD('$myfromdate', 
      INTERVAL '$mybillingfreq' MONTH)
      WHERE id = '$billing_id'";
      $updateresult = $DB->Execute($query) or die ("query failed");
     }
    
     // update the billing_details for things that still 
     // need to be paid up
     $query = "SELECT * FROM billing_details 
     WHERE paid_amount < billed_amount 
     AND billing_id = $billing_id";
     $DB->SetFetchMode(ADODB_FETCH_ASSOC);
     $result = $DB->Execute($query) or die ("query failed");
     
     while (($myresult = $result->FetchRow()) and ($amount > 0)) {
      $id = $myresult['id'];
      $paid_amount = $myresult['paid_amount'];
      $billed_amount = $myresult['billed_amount'];
     
      // calculate owed 
      $owed = $billed_amount - $paid_amount;
     
      if ($amount >= $owed) {
       $amount = $amount - $owed;
       $fillamount = $owed + $paid_amount;
       $query = "UPDATE billing_details 
       SET paid_amount = '$fillamount' WHERE id = $id";
       $greaterthanresult = $DB->Execute($query) 
       or die ("query failed");
      } else { 
       // amount is  less than owed
       $available = $amount;
       $amount = 0;
       $fillamount = $available + $paid_amount;
       $query = "UPDATE billing_details 
       SET paid_amount = '$fillamount' WHERE id = $id";
       $lessthanresult = $DB->Execute($query) 
       or die ("query failed");
      } //end if
     } // end while
    } // end if

Besides the GPG and SSL configuration CitrusDB has a few places where you will want to pay special attention to your settings to make sure that your security is maintained. The username and password used in the configuration to open the database should have the minimal permissions necessary to access your citrus database and perform the operations. For the internal main system this means giving the user access privileges to just the citrus database and the MySQL Data and Structure privileges. For the online public system you must restrict the access much more. Make a different database user with access to the citrus database, but this new database login name should restrict the access to your citrus database to SELECT only, and use table specific privileges that allows only SELECT and INSERT to the customer_history table and SELECT, INSERT, UPDATE, and DELETE in the session2 table.

In the configuration you should set the $hidden_hash_var to something hard to guess. This passphrase is used to create a unique cookie value for your CitrusDB login. You should use a different passphrase for the internal and online public system. You do not need to remember this passphrase, so I encourage you to make it as complicated as you want.

In the general configuration there is a place for the Path To Credit Card variable. This should be set to the path to the folder you wish to store imported and exported credit card data inside. The path should be outside of your web server's file path, and if possible outside of PHP's include path to keep it away from http queries.

Your citrusdb server should be installed in your secure data center on a segment of the network that is only accessible from your internal LAN. Cardholder data should not be stored on a server connected to the internet.

Passwords to access the server, database, and web interface should be strong to help prevent password guessing. Strong passwords avoid the use of dictionary words or all numbers, they include upper and lower case letters, numbers, and punctuation symbols. Longer passwords are stronger than short ones, even just a few letters can make it significantly harder to brute force.

Passwords in CitrusDB are stored in a salted bcrypt or md5 hash to make them harder to recover from the database. If a user forgets their password the administrator will need to set a new one using the User editing tool. If the administrator forgets their password, they will need direct access to the database via SQL queries or a utility like phpMyAdmin to put a new password on their user record. You will need to hash your password using the phpass framework before you paste it into the database record.

New cards entered into the system are encrypted by the configured GPG command, however if you have a previous version of citrusdb with card data already in it you will need to encrypt the cards that are already heald in the system.

You will want to pick a time period to keep this data. After that period has passed, then remove that data from your system.

You will want to keep logs of the activity that occurs on the server holding citrusdb and periodically review those logs.

CitrusDB logs it's activity via the sql database in the activity_log table.

This table keeps track of the following:

• The Date and Time of the activity
• The CitrusDB user who generated the request if they are logged in
• IP Address the request came from
• The account number of the record the activity occured on
• The type of activity, login, logout, view, edit, create, delete, undelete, export, import, cancel, or uncancel
• The type of record, either the tools dashboard screen, customer record, billing record, service record, or creditcard record
• The record id number if the activity occured on an specific record
• The result of the request, either a success which most queries will be, or a failure, such as a login failure.

This table of data should be exported out of the database by a seperate log watching script as often as necessary to satisfy your reporting needs.

Keeping your CitrusDB installation up-to-date is also important when there are critical security fixes. You can sign up for the CitrusDB announce mailing list to be kept up to date on any updates to CitrusDB, including critical security updates. Visit https://lists.sourceforge.net/lists/listinfo/citrusdb-announce to join for the mailing list.

   gpg --gen-key

Please select what kind of key you want:
   (1) DSA and Elgamal (default)
   (2) DSA (sign only)
   (5) RSA (sign only)
Your selection? 1
DSA keypair will have 1024 bits.
ELG-E keys may be between 1024 and 4096 bits long.
What keysize do you want? (2048) 1024

Please specify how long the key should be valid.
         0 = key does not expire
      <n>  = key expires in n days
      <n>w = key expires in n weeks
      <n>m = key expires in n months
      <n>y = key expires in n years
Key is valid for? (0) 0
Key does not expire at all

Real name: MyName
Email address: MyEmail@example.com
Comment: 
You selected this USER-ID:
    "MyName <MyEmail@example.com>"

You need a Passphrase to protect your secret key.

enter passphrase
re-enter passphrase

We need to generate a lot of random bytes. It is a good idea to perform
some other action (type on the keyboard, move the mouse, utilize the
disks) during the prime generation; this gives the random number
generator a better chance to gain enough entropy.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.
gpg: key 3F9D1764 marked as ultimately trusted
public and secret key created and signed.

gpg –list-keys

gpg –list-secret-keys

gpg –export -a "User Name" > public.key

gpg –export-secret-key -a "User Name" > private.key

gpg –import public.key

gpg –allow-secret-key-import –import private.key

gpg –delete-key "User Name"

gpg –delete-secret-key "User Name"

gpg -e -u "Sender User Name" -r "Recipient User Name" –armor filename

gpg -d filename.gpg

gpg –edit-key

You should only sign keys that you know are authentic.

run: gpg –edit-key "username" at the prompt enter: sign

Run gpg –edit-key "username" at the prompt enter: trust

1 = I don't know or won't say 2 = I do NOT trust 3 = I trust marginally 4 = I trust fully 5 = I trust ultimately m = back to the main menu

The keys you created for citrus can be set to trusted ultimately.

gpg –gen-revoke

­-homedir This will specify the path to the .gnupg folder that contains the key files to be used

­-armor This will encode the output in ASCII Armor format.

­-batch This will tell gpg that it to run in batch mode.

­-no-secmem-warning Some Operating systems may give a warning about secure memory. This will supress that warning.

­-passphrase-fd 0 This will take a passphrase from stdin instead of interactively.

­-passphrase-file filename This will read the passphrase from the file specified instead of interactively.

­-yes answer yes to any prompts

­-symmetric use symmetric encryption instead of asymmetric Using a symmetric encryption is usually faster than the regular asymmetric encryption of gpg, however it requires a way to maintain the security of the passphrase when encrypting the data since there is no keyfile and the same passphrase is used both for encryption and decryption.

­-personal-cipher-preferences string Set the list of personal cipher preferences to string. Use gpg

­-version to get a list of available algorithms, and use none to set no preference at all. This allows the user to factor in their own preferred algorithms when algorithms are chosen via recipient key preferences. The most highly ranked cipher in this list is also used for the –symmetric encryption command.

­-no-tty This will tell gpg not to expect any TTY input

­-skip-verify This will tell gpg to skip the verification of signatures. It can make gpg faster when one does not need to verify signatures.