Refactored admin transactions
* Properly generate the bind_params statement * Extended from Base Class * Added methods to Base Class Addresses #536
This commit is contained in:
Sebastian Grewe
parent
4b3534ce61
commit
52f58807b0
@ -8,6 +8,7 @@ if (!defined('SECURITY'))
|
|||||||
// some cross-class functions.
|
// some cross-class functions.
|
||||||
class Base {
|
class Base {
|
||||||
private $sError = '';
|
private $sError = '';
|
||||||
|
private $values = array(), $types = '';
|
||||||
|
|
||||||
public function setDebug($debug) {
|
public function setDebug($debug) {
|
||||||
$this->debug = $debug;
|
$this->debug = $debug;
|
||||||
@ -30,6 +31,9 @@ class Base {
|
|||||||
public function setToken($token) {
|
public function setToken($token) {
|
||||||
$this->token = $token;
|
$this->token = $token;
|
||||||
}
|
}
|
||||||
|
public function setBlock($block) {
|
||||||
|
$this->block= $block;
|
||||||
|
}
|
||||||
public function setBitcoin($bitcoin) {
|
public function setBitcoin($bitcoin) {
|
||||||
$this->bitcoin = $bitcoin;
|
$this->bitcoin = $bitcoin;
|
||||||
}
|
}
|
||||||
@ -89,5 +93,24 @@ class Base {
|
|||||||
$this->debug->append("Unable to update " . $field['name'] . " with " . $field['value'] . " for ID $id");
|
$this->debug->append("Unable to update " . $field['name'] . " with " . $field['value'] . " for ID $id");
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* We may need to generate our bind_param list
|
||||||
|
**/
|
||||||
|
public function addParam($type, &$value) {
|
||||||
|
$this->values[] = $value;
|
||||||
|
$this->types .= $type;
|
||||||
|
}
|
||||||
|
public function getParam() {
|
||||||
|
$array = array_merge(array($this->types), $this->values);
|
||||||
|
// See here why we need this: http://stackoverflow.com/questions/16120822/mysqli-bind-param-expected-to-be-a-reference-value-given
|
||||||
|
if (strnatcmp(phpversion(),'5.3') >= 0) {
|
||||||
|
$refs = array();
|
||||||
|
foreach($array as $key => $value)
|
||||||
|
$refs[$key] = &$array[$key];
|
||||||
|
return $refs;
|
||||||
|
}
|
||||||
|
return $array;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
?>
|
?>
|
||||||
|
|||||||
@ -4,29 +4,11 @@
|
|||||||
if (!defined('SECURITY'))
|
if (!defined('SECURITY'))
|
||||||
die('Hacking attempt');
|
die('Hacking attempt');
|
||||||
|
|
||||||
class Transaction {
|
class Transaction extends Base {
|
||||||
private $sError = '';
|
private $sError = '';
|
||||||
private $table = 'transactions';
|
private $table = 'transactions';
|
||||||
private $tableBlocks = 'blocks';
|
|
||||||
public $num_rows = 0;
|
public $num_rows = 0;
|
||||||
|
|
||||||
public function __construct($debug, $mysqli, $config, $block, $user) {
|
|
||||||
$this->debug = $debug;
|
|
||||||
$this->mysqli = $mysqli;
|
|
||||||
$this->config = $config;
|
|
||||||
$this->block = $block;
|
|
||||||
$this->user = $user;
|
|
||||||
$this->debug->append("Instantiated Transaction class", 2);
|
|
||||||
}
|
|
||||||
|
|
||||||
// get and set methods
|
|
||||||
private function setErrorMessage($msg) {
|
|
||||||
$this->sError = $msg;
|
|
||||||
}
|
|
||||||
public function getError() {
|
|
||||||
return $this->sError;
|
|
||||||
}
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Add a new transaction to our class table
|
* Add a new transaction to our class table
|
||||||
* @param account_id int Account ID to book transaction for
|
* @param account_id int Account ID to book transaction for
|
||||||
@ -109,7 +91,8 @@ class Transaction {
|
|||||||
if (!empty($value)) {
|
if (!empty($value)) {
|
||||||
switch ($key) {
|
switch ($key) {
|
||||||
case 'type':
|
case 'type':
|
||||||
$aFilter[] = "t.type = '$value'";
|
$aFilter[] = "t.type = ?";
|
||||||
|
$this->addParam('s', $value);
|
||||||
break;
|
break;
|
||||||
case 'status':
|
case 'status':
|
||||||
switch ($value) {
|
switch ($value) {
|
||||||
@ -127,10 +110,12 @@ class Transaction {
|
|||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case 'account':
|
case 'account':
|
||||||
$aFilter[] = "LOWER(a.username) = LOWER('$value')";
|
$aFilter[] = "LOWER(a.username) = LOWER(?)";
|
||||||
|
$this->addParam('s', $value);
|
||||||
break;
|
break;
|
||||||
case 'address':
|
case 'address':
|
||||||
$aFilter[] = "t.coin_address = '$value'";
|
$aFilter[] = "t.coin_address = ?";
|
||||||
|
$this->addParam('s', $value);
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -143,12 +128,16 @@ class Transaction {
|
|||||||
ORDER BY id DESC
|
ORDER BY id DESC
|
||||||
LIMIT ?,?
|
LIMIT ?,?
|
||||||
";
|
";
|
||||||
|
// Add some other params to query
|
||||||
|
$this->addParam('i', $start);
|
||||||
|
$this->addParam('i', $limit);
|
||||||
$stmt = $this->mysqli->prepare($sql);
|
$stmt = $this->mysqli->prepare($sql);
|
||||||
if ($this->checkStmt($stmt) && $stmt->bind_param('ii', $start, $limit) && $stmt->execute() && $result = $stmt->get_result()) {
|
if ($this->checkStmt($stmt) && $stmt->bind_param('ii', $start, $limit) && $stmt->execute() && $result = $stmt->get_result()) {
|
||||||
// Fetch matching row count
|
// Fetch matching row count
|
||||||
$num_rows = $this->mysqli->prepare("SELECT FOUND_ROWS() AS num_rows");
|
$num_rows = $this->mysqli->prepare("SELECT FOUND_ROWS() AS num_rows");
|
||||||
if ($num_rows->execute() && $row_count = $num_rows->get_result()->fetch_object()->num_rows)
|
if ($num_rows->execute() && $row_count = $num_rows->get_result()->fetch_object()->num_rows)
|
||||||
$this->num_rows = $row_count;
|
$this->num_rows = $row_count;
|
||||||
|
if ($this->checkStmt($stmt) && call_user_func_array( array($stmt, 'bind_param'), $this->getParam()) && $stmt->execute() && $result = $stmt->get_result())
|
||||||
return $result->fetch_all(MYSQLI_ASSOC);
|
return $result->fetch_all(MYSQLI_ASSOC);
|
||||||
}
|
}
|
||||||
$this->debug->append('Unable to fetch transactions');
|
$this->debug->append('Unable to fetch transactions');
|
||||||
@ -178,15 +167,6 @@ class Transaction {
|
|||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
private function checkStmt($bState) {
|
|
||||||
if ($bState ===! true) {
|
|
||||||
$this->debug->append("Failed to prepare statement: " . $this->mysqli->error);
|
|
||||||
$this->setErrorMessage('Internal application Error');
|
|
||||||
return false;
|
|
||||||
}
|
|
||||||
return true;
|
|
||||||
}
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Get all donation transactions
|
* Get all donation transactions
|
||||||
* Used on donors page
|
* Used on donors page
|
||||||
@ -278,4 +258,9 @@ class Transaction {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
$transaction = new Transaction($debug, $mysqli, $config, $block, $user);
|
$transaction = new Transaction();
|
||||||
|
$transaction->setDebug($debug);
|
||||||
|
$transaction->setMysql($mysqli);
|
||||||
|
$transaction->setConfig($config);
|
||||||
|
$transaction->setBlock($block);
|
||||||
|
$transaction->setUser($user);
|
||||||
|
|||||||
@ -14,6 +14,7 @@ if (!$smarty->isCached('master.tpl', $smarty_cache_key)) {
|
|||||||
$debug->append('No cached version available, fetching from backend', 3);
|
$debug->append('No cached version available, fetching from backend', 3);
|
||||||
$aTransactions = $transaction->getAllTransactions(@$_REQUEST['start'], @$_REQUEST['filter'], $iLimit);
|
$aTransactions = $transaction->getAllTransactions(@$_REQUEST['start'], @$_REQUEST['filter'], $iLimit);
|
||||||
$iCountTransactions = $transaction->num_rows;
|
$iCountTransactions = $transaction->num_rows;
|
||||||
|
empty($_REQUEST['start']) ? $start = 0 : $start = $_REQUEST['start'];
|
||||||
$aTransactionTypes = $transaction->getTypes();
|
$aTransactionTypes = $transaction->getTypes();
|
||||||
if (!$aTransactions) $_SESSION['POPUP'][] = array('CONTENT' => 'Could not find any transaction', 'TYPE' => 'errormsg');
|
if (!$aTransactions) $_SESSION['POPUP'][] = array('CONTENT' => 'Could not find any transaction', 'TYPE' => 'errormsg');
|
||||||
$smarty->assign('LIMIT', $iLimit);
|
$smarty->assign('LIMIT', $iLimit);
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user