| 1 | <?php |
| 2 | $bank_currency='Kč'; |
| 3 | global $bank_table; |
| 4 | $bank_table='transaction'; |
| 5 | |
| 6 | function bank_name($name) { |
| 7 | return strtolower(trim($name)); |
| 8 | } |
| 9 | |
| 10 | function bank_transaction($ctx, $from, $to, $comment, $amount=0) { |
| 11 | global $bank_table; |
| 12 | $author=$ctx->db->quote($ctx->db->auth->get_user_id()); |
| 13 | $from=$ctx->db->quote(bank_name($from)); |
| 14 | $to=$ctx->db->quote(bank_name($to)); |
| 15 | $amount=$ctx->db->quote($amount); |
| 16 | $comment=$ctx->db->quote(trim($comment)); |
| 17 | |
| 18 | $sql="INSERT INTO `${bank_table}` (`${bank_table}_time`, `${bank_table}_from`, `${bank_table}_to`, `${bank_table}_amount`, `${bank_table}_author`, `${bank_table}_comment`) VALUES (now(), $from, $to, $amount, $author, $comment);"; |
| 19 | $ctx->db->safe_query($sql); |
| 20 | } |
| 21 | |
| 22 | function bank_get_accounts($ctx, $all=false) { |
| 23 | global $bank_table; |
| 24 | $fetch = $ctx->db->safe_query_fetch("SELECT DISTINCT ${bank_table}_to FROM ${bank_table} ORDER BY ${bank_table}_to;"); |
| 25 | foreach($fetch as $account) if($all || $account[$bank_table.'_to'][0]!='_') $accounts[]=$account[$bank_table.'_to']; |
| 26 | return $accounts; |
| 27 | } |
| 28 | |
| 29 | function bank_get_last_to($ctx, $account) { |
| 30 | global $bank_table; |
| 31 | $account=$ctx->db->quote(bank_name($account)); |
| 32 | $fetch = $ctx->db->safe_query_fetch("SELECT ${bank_table}_to FROM ${bank_table} WHERE ${bank_table}_from=$account ORDER BY ${bank_table}_time DESC LIMIT 1;"); |
| 33 | return $fetch[0][$bank_table.'_to']; |
| 34 | } |
| 35 | |
| 36 | function bank_add_account($ctx, $name) { |
| 37 | bank_transaction($ctx, $name, $name, "Created account \"$name\""); |
| 38 | } |
| 39 | |
| 40 | function bank_get_total($ctx, $account, $string=false) { |
| 41 | global $bank_table; |
| 42 | $account_sql=$ctx->db->quote($account); |
| 43 | $result = $ctx->db->safe_query_fetch("SELECT SUM(${bank_table}_amount) FROM `${bank_table}` WHERE `${bank_table}_to`=$account_sql;"); |
| 44 | $deposits = $result[0]["SUM(${bank_table}_amount)"]; |
| 45 | $result = $ctx->db->safe_query_fetch("SELECT SUM(${bank_table}_amount) FROM `${bank_table}` WHERE `${bank_table}_from`=$account_sql;"); |
| 46 | $withdrawals = $result[0]["SUM(${bank_table}_amount)"]; |
| 47 | if($string) return "$deposits-$withdrawals"; |
| 48 | return $deposits-$withdrawals; |
| 49 | } |
| 50 | function bank_rename_account($ctx, $old, $new) { |
| 51 | global $bank_table; |
| 52 | if(in_array($new, bank_get_accounts($ctx, true))) return false; |
| 53 | $old=$ctx->db->quote($old); |
| 54 | $new=$ctx->db->quote($new); |
| 55 | |
| 56 | return $ctx->db->safe_query( |
| 57 | "START TRANSACTION;". |
| 58 | "UPDATE ${bank_table} SET `${bank_table}_to`=$new WHERE `${bank_table}_to`=$old;". |
| 59 | "UPDATE ${bank_table} SET `${bank_table}_from`=$new WHERE `${bank_table}_from`=$old;". |
| 60 | "COMMIT;" |
| 61 | ); |
| 62 | } |
| 63 | |
| 64 | function bank_get_overview($ctx) { |
| 65 | global $bank_table; |
| 66 | $accounts = bank_get_accounts($ctx); |
| 67 | foreach($accounts as $acc) $overview[]=array("${bank_table}_account"=>$acc,"${bank_table}_total"=>bank_get_total($ctx, $acc)); |
| 68 | return $overview; |
| 69 | } |
| 70 | |
| 71 | if(isset($_POST['create_account'])) { |
| 72 | bank_add_account($this, $_POST['account_name']); |
| 73 | $this->post_redirect_get("$URL_INTERNAL","Účet byl vytvořen"); |
| 74 | } |
| 75 | if(isset($_POST['rename_account'])) { |
| 76 | if(bank_rename_account($this, $_POST['account_old'], $_POST['account_new'])) { |
| 77 | $this->post_redirect_get("$URL_INTERNAL","Účet byl upraven"); |
| 78 | } else { |
| 79 | $this->post_redirect_get("$URL_INTERNAL","Takový účet již existuje!", false); |
| 80 | } |
| 81 | } |
| 82 | if(isset($_POST['transaction'])) { |
| 83 | if(!is_numeric($_POST['amount']) || $_POST['amount'] < 0) $this->post_redirect_get("$URL_INTERNAL?account=".$_POST['account_from'],"Lze převádět jen kladné částky", true); |
| 84 | $comment=trim($_POST['comment']); |
| 85 | if(strlen($comment)<4) $this->post_redirect_get("$URL_INTERNAL?account=".$_POST['account_from'],"Komentář musí mít alespoň 4 znaky!",true); |
| 86 | bank_transaction($this, $_POST['account_from'], $_POST['account_to'], $_POST['comment'], $_POST['amount']); |
| 87 | $this->post_redirect_get("$URL_INTERNAL?account=".$_POST['account_from'],"Transakce byla provedena"); |
| 88 | } |
| 89 | |
| 90 | //bank_add_account($this, 'material'); |
| 91 | echo("<a href='$URL/'>Banka</a> - "); |
| 92 | echo("<a href='$URL/admin'>Správa účtů</a> - "); |
| 93 | echo("Účty: "); |
| 94 | $accounts = bank_get_accounts($this, $SUBPATH[0]=='admin'); |
| 95 | foreach($accounts as $account) echo("<a href='$URL?account=$account'>$account</a>, "); |
| 96 | |
| 97 | switch($SUBPATH[0]) { |
| 98 | default: |
| 99 | |
| 100 | if(!isset($_GET['account'])) { |
| 101 | echo("<h1>Banka</h1>"); |
| 102 | echo ("<h2>Stav</h2>"); |
| 103 | $result = $this->db->safe_query_fetch("SELECT COUNT(${bank_table}_amount) as troughput FROM ${bank_table};"); |
| 104 | echo("Transakcí: ".$result[0]['troughput']."<br />"); |
| 105 | $result = $this->db->safe_query_fetch("SELECT SUM(${bank_table}_amount) as troughput FROM ${bank_table};"); |
| 106 | echo("Obrat: ".$result[0]['troughput'].' '.$bank_currency); |
| 107 | $result = $this->db->safe_query_fetch("SELECT * FROM `${bank_table}` ORDER BY ${bank_table}_time DESC;"); |
| 108 | echo $this->html->render_item_table(bank_get_overview($this),'bank'); |
| 109 | echo ("<h2>Přehled transakcí</h2>"); |
| 110 | } else { |
| 111 | $account=bank_name($_GET['account']); |
| 112 | $account_sql=$this->db->quote($account); |
| 113 | echo("<h1>Účet: ".$account." (".bank_get_total($this,$account).$bank_currency.")</h1>"); |
| 114 | |
| 115 | ?> |
| 116 | <form action="?" method="POST"> |
| 117 | Převést <input type="number" name="amount" value="" /> <?php echo $bank_currency; ?> |
| 118 | z účtu <?php echo $account; ?> <input type="hidden" name="account_from" value="<?php echo $account; ?>" /> |
| 119 | na účet <select name='account_to'> |
| 120 | <?php |
| 121 | //Ziskat posledni cilovy ucet a presunout na zacatek $accounts |
| 122 | $last=bank_get_last_to($this,$account); |
| 123 | unset($accounts[array_search($last,$accounts)]); |
| 124 | array_unshift($accounts,$last); |
| 125 | |
| 126 | foreach($accounts as $acc) echo("<option value='$acc'>$acc</option>"); |
| 127 | ?> |
| 128 | </select> (pozor! zamysli se! převádíš peníze nebo dluhy?!)<br /><br /> |
| 129 | Důvod: <input type="text" name="comment" maxlength="128" style="width:64em;" /> |
| 130 | <input type="submit" name="transaction" value="Převést" /> |
| 131 | </form> |
| 132 | <?php |
| 133 | |
| 134 | echo(bank_get_total($this,$account,true)." $bank_currency"); |
| 135 | $result = $this->db->safe_query_fetch("SELECT * FROM `${bank_table}` WHERE `${bank_table}_to`=$account_sql OR `${bank_table}_from`=$account_sql ORDER BY ${bank_table}_time DESC;"); |
| 136 | } |
| 137 | echo $this->html->render_item_table($result,$bank_table); |
| 138 | |
| 139 | break; |
| 140 | case 'admin': |
| 141 | ?> |
| 142 | </p> |
| 143 | <form action="<?php echo $ASSISTANT; ?>" method="POST" > |
| 144 | Account: |
| 145 | <input type="text" name="account_name" /> |
| 146 | <input type="submit" name="create_account" value="Create account" /> |
| 147 | </form> |
| 148 | <form action="<?php echo $ASSISTANT; ?>" method="POST" > |
| 149 | Account: <select name='account_old'> |
| 150 | <?php foreach($accounts as $acc) echo("<option value='$acc'>$acc</option>"); ?> |
| 151 | </select> |
| 152 | <input type="text" name="account_new" /> |
| 153 | <input type="submit" name="rename_account" value="Rename account" /> (účty začínající podtržítkem nebudou běžně viditelné) |
| 154 | </form> |
| 155 | </p> |
| 156 | <?php |
| 157 | break; |
| 158 | } |