{

# Select Stock

db_connect();

$stock = "<select name='stkid'>";

$sql = "SELECT stkid,stkdes,stkcod FROM stock";

$stkRslt = db_exec($sql);

if(pg_numrows($stkRslt) < 1){

return "There is no stock found in Cubit.";

}else{

while($stk = pg_fetch_array($stkRslt)){

$stock .= "<option value='$stk[stkid]'>($stk[stkcod]) $stk[stkdes]</option>";

}

}

$stock .="</select>";

//layout

$slct = "

<h3>Select Stock</h3>

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."'>

<form action='".SELF."' method=post name=form>

<input type=hidden name=key value=details>

<tr><th>Select Stock</th></tr>

<tr class='bg-odd'><td valign=center>$stock</td></tr>

<tr><td><input type=button value='&laquo Cancel' onClick='javascript:history.back();'><input type=submit value='Buy &raquo'></td></tr>

</form>

</table>

<p>

<table border=0 cellpadding='2' cellspacing='1'>

<tr><th>Quick Links</th></tr>

<tr class='bg-odd'><td><a href='stock-add.php'>Add Stock</a></td></tr>

<tr class='bg-even'><td><a href='stock-view.php'>View Stock</a></td></tr>

<script>document.write(getQuicklinkSpecial());</script>

</table>";

return $slct;

{

# get vars

foreach ($_POST as $key => $value) {

$$key = $value;

}

# validate input

require_lib("validate");

$v = new validate ();

$v->isOk ($stkid, "num", 1, 50, "Invalid Stock ID.");

# display errors, if any

if ($v->isError ()) {

$confirm = "";

$errors = $v->getErrors();

foreach ($errors as $e) {

$confirm .= "<li class=err>-".$e["msg"]."<br>";

}

return $confirm;

}

# Select Stock

db_connect();

$sql = "SELECT stkid,stkdes,stkcod,buom,suom FROM stock WHERE stkid = '$stkid'";

$stkRslt = db_exec($sql) or errDie("Unable to access databse.", SELF);

if(pg_numrows($stkRslt) < 1){

return "<li> Invalid Stock ID.";

}else{

$stk = pg_fetch_array($stkRslt);

}

# select bank account

$bank = "<select name=bankacc>";

$sql = "SELECT * FROM bankacct ORDER BY accname ASC";

$banks = db_exec($sql);

if(pg_numrows($banks) < 1){

return "<li class=err> There are no bank accounts found in Cubit.

<p><input type=button onClick='JavaScript:history.back();' value='&laquo; Correct Selection'>";

}

while($acc = pg_fetch_array($banks)){

$bank .= "<option value=$acc[bankid]>$acc[accname]</option>";

}

$bank .="</select>";

// Layout

$view = "<h3>Buy Stock</h3>

<form action='".SELF."' method=post name=form>

<input type=hidden name=key value=confirm>

<input type=hidden name=stkid value='$stkid'>

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."' width=300>

<tr><th>Field</th><th>Value</th></tr>

<tr class='bg-odd'><td>Stock code</td><td>$stk[stkcod]</td></tr>

<tr class='bg-even'><td>Stock description</td><td>$stk[stkdes]</td></tr>

<tr class='bg-odd'><td>Date</td><td valign=center><input type=text size=2 name=day maxlength=2 value='".date("d")."'>-<input type=text size=2 name=mon maxlength=2 value='".date("m")."'>-<input type=text size=4 name=year maxlength=4 value='".date("Y")."'> DD-MM-YYYY</td></tr>

<tr class='bg-even'><td>Buying units</td><td><input type=text size=10 name='buom'> x $stk[buom]</td></tr>

<tr class='bg-odd'><td>Selling units</td><td><input type=text size=10 name='suom'> x $stk[suom]</td></tr>

<tr class='bg-even'><td>Cost Amount</td><td>".CUR." <input type=text size=9 name='csamt'></td></tr>

<tr class='bg-odd'><td>Bank Account</td><td>$bank</td></tr>

<tr><td><input type=button value='&laquo Cancel' onClick='javascript:history.back();'></td><td align=right><input type=submit value='Add &raquo'></td></tr>

</table>

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."' width=100>

<tr><th>Quick Links</th></tr>

<tr class='bg-odd'><td><a href='stock-add.php'>Add Stock</a></td></tr>

<tr class='bg-even'><td><a href='stock-view.php'>View Stock</a></td></tr>

<script>document.write(getQuicklinkSpecial());</script>

</form>

</table>";

return $view;

{

# get vars

foreach ($_POST as $key => $value) {

$$key = $value;

}

# validate input

require_lib("validate");

$v = new validate ();

$v->isOk ($stkid, "num", 1, 50, "Invalid Stock ID.");

$v->isOk ($day, "num", 1,2, "Invalid order Date day.");

$v->isOk ($mon, "num", 1,2, "Invalid order Date month.");

$v->isOk ($year, "num", 1,4, "Invalid order Date Year.");

$v->isOk ($csamt, "float", 1, 20, "Invalid cost amount.");

$v->isOk ($buom, "num", 0, 20, "Invalid buying units.");

$v->isOk ($suom, "num", 0, 20, "Invalid selling units.");

$v->isOk ($bankacc, "num", 1, 50, "Invalid Bank Account.");

$date = $day."-".$mon."-".$year;

if(!checkdate($mon, $day, $year)){

$v->isOk ($date, "num", 1, 1, "Invalid date.");

}

# display errors, if any

if ($v->isError ()) {

$confirm = "";

$errors = $v->getErrors();

foreach ($errors as $e) {

$confirm .= "<li class=err>".$e["msg"];

}

$confirm .= "<p><input type=button onClick='JavaScript:history.back();' value='&laquo; Correct submission'>";

return $confirm;

}

$buom += 0;

$suom += 0;

# Select Stock

db_connect();

$sql = "SELECT * FROM stock WHERE stkid = '$stkid'";

$stkRslt = db_exec($sql) or errDie("Unable to access databse.", SELF);

if(pg_numrows($stkRslt) < 1){

return "<li> Invalid Stock ID.";

}else{

$stk = pg_fetch_array($stkRslt);

}

if($buom < 1 && $suom < 1){

return "Your units bought calculate to zero. Please enter values.";

}

# Get bank account name

db_connect();

$sql = "SELECT * FROM bankacct WHERE bankid = '$bankacc'";

$bankRslt = db_exec($sql);

if(pg_numrows($bankRslt) < 1){

return "<li class=err>ERROR : Invalid Bank Account Number.

<p><input type=button onClick='JavaScript:history.back();' value='&laquo; Correct Selection'>";

}

$bank = pg_fetch_array($bankRslt);

// Layout

$confirm = "<h3>Buy Stock</h3>

<h4>Confirm Entry</h4>

<form action='".SELF."' method=post name=form>

<input type=hidden name=key value=write>

<input type=hidden name=stkid value='$stkid'>

<input type=hidden name=date value='$date'>

<input type=hidden name=csamt value='$csamt'>

<input type=hidden name=buom value='$buom'>

<input type=hidden name=suom value='$suom'>

<input type=hidden name=bankacc value='$bankacc'>

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."' width=300>

<tr><th>Field</th><th>Value</th></tr>

<tr class='bg-odd'><td>Stock code</td><td>$stk[stkcod]</td></tr>

<tr class='bg-even'><td>Stock description</td><td>$stk[stkdes]</td></tr>

<tr class='bg-odd'><td>Date</td><td>$date</td></tr>

<tr class='bg-even'><td>Buying units</td><td>$buom x $stk[buom]</td></tr>

<tr class='bg-odd'><td>Selling units</td><td>$suom x $stk[suom]</td></tr>

<tr class='bg-even'><td>Cost Amount</td><td>".CUR." $csamt</td></tr>

<tr class='bg-odd'><td>Bank Account</td><td>$bank[accname]</td></tr>

<tr><td><input type=button value='&laquo Cancel' onClick='javascript:history.back();'></td><td align=right><input type=submit value='Confirm &raquo'></td></tr>

</table>

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."' width=100>

<tr><th>Quick Links</th></tr>

<tr class='bg-odd'><td><a href='stock-add.php'>Add Stock</a></td></tr>

<tr class='bg-even'><td><a href='stock-view.php'>View Stock</a></td></tr>

<script>document.write(getQuicklinkSpecial());</script>

</form>

</table>";

return $confirm;

{

//processes

db_connect();

# get vars

foreach ($_POST as $key => $value) {

$$key = $value;

}

# validate input

require_lib("validate");

$v = new validate ();

$v->isOk ($stkid, "num", 1, 50, "Invalid Stock ID.");

$v->isOk ($date, "date", 1,14, "Invalid Date.");

$v->isOk ($csamt, "float", 1, 20, "Invalid cost amount.");

$v->isOk ($buom, "num", 0, 20, "Invalid buying units.");

$v->isOk ($suom, "num", 0, 20, "Invalid selling units.");

$v->isOk ($bankacc, "num", 1, 50, "Invalid Bank Account.");

# display errors, if any

if ($v->isError ()) {

$confirm = "";

$errors = $v->getErrors();

foreach ($errors as $e) {

$confirm .= "<li class=err>".$e["msg"];

}

$confirm .= "<p><input type=button onClick='JavaScript:history.back();' value='&laquo; Correct submission'>";

return $confirm;

}

# Select Stock

db_connect();

$sql = "SELECT * FROM stock WHERE stkid = '$stkid'";

$stkRslt = db_exec($sql) or errDie("Unable to access stock database.", SELF);

if(pg_numrows($stkRslt) < 1){

return "<li> Invalid Stock ID.";

}else{

$stk = pg_fetch_array($stkRslt);

}

# Calculate total units bought

$units = 0;

if($buom > 0){

$units += ($buom * $stk['rate']);

}

if($suom > 0){

$units += $suom;

}

$refnum = getrefnum($date);

// Get Bank account [the traditional way re: hook of hook]

core_connect();

$sql = "SELECT * FROM bankacc WHERE accid = '$bankacc'";

$rslt = db_exec($sql) or errDie("Unable to retrieve bank account link from Cubit",SELF);

# check if link exists

if(pg_numrows($rslt) <1){

return "<li class=err> ERROR : The bank account that you selected doesn't appear to have an account linked to it.";

}

$bank = pg_fetch_array($rslt);

$bankaccid = $bank["accnum"];

// Update stock

db_connect();

$sql = "UPDATE stock SET units = (units + '$units'), csamt = (csamt + '$csamt') WHERE stkid = '$stkid'";

$rslt = db_exec($sql) or errDie("Unable to insert stock to Cubit.",SELF);

$sdate = explode("-", $date);

$sdate = $sdate[2]."-".$sdate[1]."-".$sdate[0];

// insert into stockk purchased

$Sql = "INSERT INTO stock_purch(stkid, date, units, cost) VALUES('$stkid', '$sdate', '$units', '$csamt')";

$Rslt = db_exec($Sql) or errDie("Unable to insert stock to Cubit.",SELF);

# Write Trans(debit_account_id, credit_account_id, date, refnum, amount_[11111.00], details)

writetrans($stk['accid'], $bankaccid, $date, $refnum, $csamt, "bought $units x $stk[stkdes]");

$write ="

<table border=0 cellpadding='".TMPL_tblCellPadding."' cellspacing='".TMPL_tblCellSpacing."' width='50%'>

<tr><th>Bought Stock Recorded</th></tr>

<tr class=datacell><td>Bought Stock, $stk[stkdes] ($stk[stkcod]) has been successfully added to Cubit.</td></tr>

</table>

<p>

<table border=0 cellpadding='2' cellspacing='1'>

<tr><th>Quick Links</th></tr>

<tr class='bg-odd'><td><a href='stock-add.php'>Add Stock</a></td></tr>

<tr class='bg-even'><td><a href='stock-view.php'>View Stock</a></td></tr>

<script>document.write(getQuicklinkSpecial());</script>

</table>";

return $write;

{

# validate input

require_lib("validate");

$v = new validate ();

$v->isOk ($ctacc, "num", 1, 50, "Invalid Account to be Credited.");

$v->isOk ($dtacc, "num", 1, 50, "Invalid Account to be Debited.");

$v->isOk ($date, "date", 1, 14, "Invalid date.");

$v->isOk ($refnum, "num", 1, 50, "Invalid reference number.");

$v->isOk ($amount, "float", 1, 20, "Invalid Amount.");

$v->isOk ($details, "string", 0, 255, "Invalid Details.");

# display errors, if any

if ($v->isError ()) {

$write = "";

$errors = $v->getErrors();

foreach ($errors as $e) {

$write .= "<li class=err>".$e["msg"];

}

$write .= "<p><input type=button onClick='JavaScript:history.back();' value='&laquo; Correct submission'>";

return $write;

}

# date format

$date = explode("-", $date);

$date = $date[2]."-".$date[1]."-".$date[0];

# begin sql transaction

# pglib_transaction ("BEGIN") or errDie("Unable to start a database transaction.",SELF);

// Insert the records into the transect table

db_conn(PRD_DB);

$sql = "INSERT INTO transect(debit, credit, date, refnum, amount, author, details) VALUES('$dtacc', '$ctacc', '$date', '$refnum', '$amount', '".USER_NAME."', '$details')";

$transRslt = db_exec($sql) or errDie("Unable to insert Transaction details to database",SELF);

// Update the balances by adding appropriate values to the trial_bal Table

core_connect();

$ctbal = "UPDATE trial_bal SET credit = (credit + '$amount') WHERE accid = '$ctacc'";

$dtbal = "UPDATE trial_bal SET debit = (debit + '$amount') WHERE accid = '$dtacc'";

$ctbalRslt = db_exec($ctbal) or errDie("Unable to update credit balance for credited account.",SELF);

$dtbalRslt = db_exec($dtbal) or errDie("Unable to update debit balance for debited account.",SELF);

# commit sql transaction

# pglib_transaction ("COMMIT") or errDie("Unable to finish a database transaction.",SELF);