implemented new logic for prodajno mjesto

Author: pavleerg

backend/fira.js

@@ -15,10 +15,14 @@
  * @param {string} order.currency - Currency code (e.g. "EUR")
  * @param {Array}  order.items - Array of receipt items
  */
-export async function handleOrderFiscalization(order) {
+export async function handleOrderFiscalization(order, options = {}) {
   if (!order.paymentType) {
     throw new Error(`Order ${order.code} is missing paymentType. Must be KARTICA or GOTOVINA.`);
   }
+  const { firaApiKey, prodajnoMjestoNaziv } = options;
+  if (!firaApiKey) {
+    throw new Error("FIRA API ključ nije proslijeđen. Odaberite prodajno mjesto u admin postavkama.");
+  }
 
   // Skip free orders - no invoice needed
   // if (order.total === 0) {
@@ -108,7 +112,7 @@ export async function handleOrderFiscalization(order) {
     lineItems,
   };
 
-  console.log(`Sending to FIRA: ${JSON.stringify(data, null, 2)}`);
+  console.log(`Sending to FIRA [${prodajnoMjestoNaziv || "unknown"}]: ${JSON.stringify(data, null, 2)}`);
 
   // MOCK response (comment out when using real FIRA)
   // const mockResponse = {

backend/index.js

@@ -427,6 +427,22 @@ app.post("/api/receipts", requireAuth, async (req, res) => {
       return res.status(400).json({ error: "Invalid paymentType. Must be GOTOVINA, KARTICA, or TRANSAKCIJSKI" });
     }
 
+    // Validate active prodajno mjesto exists BEFORE creating anything in DB
+    const appSettings = await prisma.appSettings.findUnique({
+      where: { id: 1 },
+      include: { prodajnoMjesto: true },
+    });
+    if (!appSettings?.prodajnoMjesto) {
+      return res.status(400).json({ error: "Nije odabrano prodajno mjesto. Odaberite prodajno mjesto u admin postavkama." });
+    }
+    let firaApiKey;
+    try {
+      firaApiKey = decrypt(appSettings.prodajnoMjesto.firaApiKey);
+      if (!firaApiKey) throw new Error("Prazan ključ");
+    } catch {
+      return res.status(500).json({ error: "Greška pri dešifriranju API ključa prodajnog mjesta." });
+    }
+
     // Create billing address if provided
     let billingAddressId = null;
     if (billingAddress) {
@@ -473,6 +489,7 @@ app.post("/api/receipts", requireAuth, async (req, res) => {
         internalNote,
         discountValue,
         shippingCost,
+        prodajnoMjestoNaziv: appSettings.prodajnoMjesto.name,
         items: {
           create: items.map((item) => ({
             name: item.name,
@@ -509,7 +526,7 @@ app.post("/api/receipts", requireAuth, async (req, res) => {
       currency: receipt.currency,
       paymentType: receipt.paymentType,
       items: receipt.items,
-    });
+    }, { firaApiKey, prodajnoMjestoNaziv: appSettings.prodajnoMjesto.name });
 
     if (firaResult && firaResult.invoiceNumber) {
       try {
@@ -547,7 +564,7 @@ app.post("/api/receipts", requireAuth, async (req, res) => {
     if (Math.abs(calculatedBrutto - brutto) > 0.01) {
         return res.status(400).json({ error: "Total amount mismatch." });
     }
-    res.status(201).json(receipt);
+    res.status(201).json({ ...receipt, prodajnoMjestoNaziv: appSettings.prodajnoMjesto.name });
   } catch (error) {
     res.status(400).json({ error: error.message });
   }
@@ -848,14 +865,62 @@ app.post("/api/reports", requireAuth, async (req, res) => {
 });
 
 
+// ========== APP SETTINGS API ==========
+
+// GET trenutno odabrano prodajno mjesto
+app.get('/api/settings/active-location', requireAuth, async (req, res) => {
+  if (req.user.role !== "ADMIN") return res.status(403).json({ error: "Unauthorized" });
+  try {
+    const settings = await prisma.appSettings.findUnique({
+      where: { id: 1 },
+      include: { prodajnoMjesto: true },
+    });
+    if (!settings || !settings.prodajnoMjesto) {
+      return res.json({ selectedProdajnoMjestoId: null, prodajnoMjesto: null });
+    }
+    res.json({
+      selectedProdajnoMjestoId: settings.selectedProdajnoMjestoId,
+      prodajnoMjesto: { ...settings.prodajnoMjesto, firaApiKey: "********" },
+    });
+  } catch (error) {
+    res.status(500).json({ error: "Greška" });
+  }
+});
+
+// PUT odabir aktivnog prodajnog mjesta
+app.put('/api/settings/active-location', requireAuth, async (req, res) => {
+  if (req.user.role !== "ADMIN") return res.status(403).json({ error: "Unauthorized" });
+  const { prodajnoMjestoId } = req.body;
+  try {
+    const settings = await prisma.appSettings.upsert({
+      where: { id: 1 },
+      update: { selectedProdajnoMjestoId: prodajnoMjestoId ?? null },
+      create: { id: 1, selectedProdajnoMjestoId: prodajnoMjestoId ?? null },
+      include: { prodajnoMjesto: true },
+    });
+    res.json({
+      selectedProdajnoMjestoId: settings.selectedProdajnoMjestoId,
+      prodajnoMjesto: settings.prodajnoMjesto
+        ? { ...settings.prodajnoMjesto, firaApiKey: "********" }
+        : null,
+    });
+  } catch (error) {
+    res.status(500).json({ error: "Greška pri ažuriranju" });
+  }
+});
+
 // GET all prodajna mjesta
 app.get('/api/prodajna-mjesta', async (req, res) => {
   try {
     const locations = await prisma.prodajnoMjesto.findMany();
-    const safeLocations = locations.map(loc => ({
-      ...loc,
-      firaApiKey: "********" // Don't send the real key back to the UI!
-    }));
+    const safeLocations = locations.map(loc => {
+      let maskedKey = "********";
+      try {
+        const real = decrypt(loc.firaApiKey);
+        maskedKey = `****${real.slice(-4)}`;
+      } catch { /* leave as ******** if decryption fails */ }
+      return { ...loc, firaApiKey: maskedKey };
+    });
     res.json(safeLocations);
   } catch (error) {
     res.status(500).json({ error: "Greška" });
@@ -882,7 +947,7 @@ app.post('/api/prodajna-mjesta', async (req, res) => {
       }
     });
 
-    res.json(newLocation);
+    res.json({ ...newLocation, firaApiKey: "********" });
   } catch (error) {
     // THIS LOG IS CRUCIAL: Check your terminal for this output!
     console.error("CRITICAL BACKEND ERROR:", error.message);
@@ -899,11 +964,15 @@ app.put('/api/prodajna-mjesta/:id', async (req, res) => {
   const { id } = req.params;
   const { name, businessSpace, paymentDevice, firaApiKey, active } = req.body;
   try {
+    const data = { name, businessSpace, paymentDevice, active };
+    if (firaApiKey && firaApiKey !== "********") {
+      data.firaApiKey = encrypt(firaApiKey);
+    }
     const updated = await prisma.prodajnoMjesto.update({
       where: { id: parseInt(id) },
-      data: { name, businessSpace, paymentDevice, firaApiKey, active }
+      data,
     });
-    res.json(updated);
+    res.json({ ...updated, firaApiKey: "********" });
   } catch (error) {
     res.status(500).json({ error: "Greška pri ažuriranju" });
   }

backend/prisma/migrations/20260323000000_add_app_settings/migration.sql

@@ -0,0 +1,11 @@
+-- CreateTable
+CREATE TABLE "AppSettings" (
+    "id" INTEGER NOT NULL DEFAULT 1,
+    "selectedProdajnoMjestoId" INTEGER,
+
+    CONSTRAINT "AppSettings_pkey" PRIMARY KEY ("id"),
+    CONSTRAINT "ensure_single_row" CHECK (id = 1)
+);
+
+-- AddForeignKey
+ALTER TABLE "AppSettings" ADD CONSTRAINT "AppSettings_selectedProdajnoMjestoId_fkey" FOREIGN KEY ("selectedProdajnoMjestoId") REFERENCES "ProdajnoMjesto"("id") ON DELETE SET NULL ON UPDATE CASCADE;

backend/prisma/migrations/20260323000001_add_prodajno_mjesto_naziv/migration.sql

@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "Receipt" ADD COLUMN "prodajnoMjestoNaziv" TEXT;

backend/prisma/schema.prisma

@@ -98,6 +98,7 @@ model Receipt {
   internalNote          String?
   discountValue         Decimal  @db.Decimal(10, 2) @default(0)
   shippingCost          Decimal  @db.Decimal(10, 2) @default(0)
+  prodajnoMjestoNaziv   String?
   status                ReceiptStatus @default(RACUN)
   items                 ReceiptItem[]
   transaction           Transaction?
@@ -184,4 +185,11 @@ model ProdajnoMjesto {
   paymentDevice   String
   firaApiKey      String
   active          Boolean  @default(true)
+  appSettings     AppSettings[]
+}
+
+model AppSettings {
+  id                       Int              @id @default(1)
+  selectedProdajnoMjestoId Int?
+  prodajnoMjesto           ProdajnoMjesto?  @relation(fields: [selectedProdajnoMjestoId], references: [id])
 }

frontend/src/components/Sidebar.jsx

@@ -35,7 +35,7 @@ export default function Sidebar() {
     <div className="sidebar">
       <div className="sidebar-header">
         <h1>Fiskalna</h1>
-        {user && <p className="user-name">{user.name} v1.2</p>}
+        {user && <p className="user-name">{user.name}</p>}
       </div>
 
       <nav className="sidebar-nav">

frontend/src/pages/Prodaja.jsx

@@ -14,8 +14,8 @@ export default function Prodaja() {
   const [categories, setCategories] = useState([]);
   const [selectedItems, setSelectedItems] = useState([]);
   const [paymentMethod, setPaymentMethod] = useState("Gotovina");
-  const [locations, setLocations] = useState([]);
   const [selectedLocationId, setSelectedLocationId] = useState("");
+  const [activeLocation, setActiveLocation] = useState(null);
   const [loading, setLoading] = useState(true);
   const [searchParams] = useSearchParams();
   const [offlineCount, setOfflineCount] = useState(0);
@@ -38,22 +38,27 @@ export default function Prodaja() {
     fetchCategories();
 
     const fetchLocations = async () => {
-    try {
-      const response = await fetch(`${import.meta.env.VITE_API_URL}/api/prodajna-mjesta`, { credentials: "include" });
-      const data = await response.json();
-      if (response.ok && Array.isArray(data)) {
-        setLocations(data.filter(loc => loc.active));
-        if (data.length > 0 && !selectedLocationId) {
+      try {
+        const response = await fetch(`${import.meta.env.VITE_API_URL}/api/prodajna-mjesta`, { credentials: "include" });
+        const data = await response.json();
+        if (response.ok && Array.isArray(data) && data.length > 0 && !selectedLocationId) {
           setSelectedLocationId(String(data[0].id));
         }
-      } else {
-        setLocations([]);
+      } catch { /* ignore */ }
+    };
+
+    const fetchActiveLocation = async () => {
+      try {
+        const response = await fetch(`${import.meta.env.VITE_API_URL}/api/settings/active-location`, { credentials: "include" });
+        const data = await response.json();
+        setActiveLocation(data.prodajnoMjesto ?? null);
+      } catch {
+        setActiveLocation(null);
       }
-    } catch {
-      setLocations([]);
-    }
     };
+
     fetchLocations();
+    fetchActiveLocation();
   }, [selectedLocationId]);
 
   const fetchArticles = async () => {
@@ -197,6 +202,14 @@ export default function Prodaja() {
         return `https://porezna.gov.hr/rn?jir=${jir}&datv=${datv}&izn=${iznFormatted}`;
       };
 
+      if (receipt.prodajnoMjestoNaziv && activeLocation?.name !== receipt.prodajnoMjestoNaziv) {
+        try {
+          const locRes = await fetch(`${import.meta.env.VITE_API_URL}/api/settings/active-location`, { credentials: "include" });
+          const locData = await locRes.json();
+          setActiveLocation(locData.prodajnoMjesto ?? null);
+        } catch { /* ignore */ }
+      }
+
       printFunction({
         num: receipt.invoiceNumber || receipt.receiptNumber,
         payment: paymentMethod,
@@ -207,7 +220,7 @@ export default function Prodaja() {
         tax: receipt.taxValue ?? totalTax,
         jir: receipt.jir ?? "",
         zki: receipt.zki ?? "",
-        location: locations.find((loc) => String(loc.id) === String(selectedLocationId))?.name || "",
+        location: receipt.prodajnoMjestoNaziv || activeLocation?.name || "",
         link: buildPoreznaLink(receipt.jir, receipt.invoiceDate || receipt.createdAt || new Date(), receipt.brutto ?? totalBrutto),
         phone: "0916043415",
         email: "info@kset.org",
@@ -340,22 +353,11 @@ export default function Prodaja() {
 
       <div style={{ display: 'flex', alignItems: 'center', justifyContent: 'space-between', marginBottom: '20px', flexWrap: 'wrap', gap: '10px' }}>
         <div style={{ display: 'flex', alignItems: 'center', gap: '10px' }}>
-          <h1 style={{ margin: 0 }}>
-            Prodaja
-          </h1>
-          <label style={{ fontSize: '14px', color: '#333' }}>
-            Prodajno mjesto:
-            <select
-              value={selectedLocationId}
-              onChange={(e) => setSelectedLocationId(e.target.value)}
-              style={{ marginLeft: '8px', padding: '5px 8px', borderRadius: '4px', border: '1px solid #ccc' }}
-            >
-              <option value="">(nije odabrano)</option>
-              {locations.map(loc => (
-                <option key={loc.id} value={loc.id}>{loc.name} ({loc.businessSpace})</option>
-              ))}
-            </select>
-          </label>
+          <h1 style={{ margin: 0 }}>Prodaja</h1>
+          {activeLocation
+            ? <span style={{ fontSize: '0.9rem', color: '#fff', background: '#e67e22', padding: '4px 10px', borderRadius: '20px' }}>Prodajno mjesto: {activeLocation.name}</span>
+            : <span style={{ fontSize: '0.85rem', color: '#c0392b', background: '#fdecea', padding: '4px 10px', borderRadius: '20px' }}>Nije odabrano prodajno mjesto</span>
+          }
         </div>
         {offlineCount > 0 && (
             <span style={{color: 'red', fontSize: '14px', marginLeft: '10px'}}> 

frontend/src/pages/Racuni.jsx

@@ -142,7 +142,7 @@ export default function Racuni() {
                   <td>
                     {new Date(receipt.createdAt).toLocaleTimeString("hr-HR", {hour: '2-digit', minute: '2-digit', second: '2-digit'})}
                   </td>
-                  <td>{receipt.prodajnoMjesto?.name || "N/A"}</td>
+                  <td>{receipt.prodajnoMjestoNaziv || "N/A"}</td>
                   <td>{receipt.paymentType}</td>
                   <td><span className="currency">{parseFloat(receipt.brutto).toFixed(2)}</span></td>
                   <td>