loginAdmin();
if(!loggedAdmin())
header('location: index.php');
$transaction = new TransactionCollection();
$clients = ClientCollection::getClients();
$isins = IsinCollection::getIsins();
$collection = new SecurityCollection();
$isinCollection = new IsinCollection;
$accounts = CustodyCollection::getAccountsForClientByTransactionId(mysql_real_escape_string($_GET['id']));
if(exist($_POST['button']))
{
$result = TransactionCollection::updateTransaction();
}
else
{
TransactionCollection::loadTransaction();
$result = array();
}
include("$templates/menu.php");
$clients = ClientCollection::getClients();
$isins = IsinCollection::getIsins();
include("$templates/transaction_edit.php");
include("$templates/footer.php");
?>
static public function updateClient()
{
$result = ClientCollection::verifyFields();
if(count($result))
return ($result);
$query = "UPDATE `user` SET `login` = '".$_POST['login']."' , `password` = '".$_POST['password']."' , `email` = '".$_POST['email']."' ,
`name` = '".$_POST['name']."' WHERE id = '".$_POST['id']."';";
mysql_query($query);
header('location: user_updated.php');
}
static public function verifyFields()
{
foreach($_POST as $key=>$value)
$_POST[$key] = mysql_real_escape_string($value);
$errors='';
$fields = array('client','aname');
$fieldsObligatory = array('client','aname');
$errorMessage = array('Client','Account name');
$result = array();
foreach($fieldsObligatory as $key=>$field):
if(!exist($_POST[$field]))
$result[] = $errorMessage[$key];
endforeach;
if(trim($_POST['client']))
if(!ClientCollection::getClients(trim($_POST['client'])))
die('Database error: not existant client.. please apply admin');
return $result;
}
<?php
include('../config.php');
include('../functions.php');
include('../classes/clientcollection.class.php');
loginAdmin();
if(!loggedAdmin())
header('location: index.php');
if(exist($_POST['add']))
$result = ClientCollection::addClient();
include("$templates/menu.php");
include("$templates/user_add.php");
include("$templates/footer.php");
?>
static public function verifyFields()
{
foreach($_POST as $key=>$value)
$_POST[$key] = mysql_real_escape_string($value);
$errors='';
$fields = array('currency','client','aname','amount','credit','valuec','debit','valued');
$fieldsDates = array('valuec','valued');
$fieldsNumbers= array('amount','credit','debit');
$fieldsObligatory = array('currency','client','aname','amount');
$errorMessage = array('Currency','Client','Account name','Amount');
$errorMessageDates= array('Credit date (should be YYYY-MM-DD)','Debit date (should be YYYY-MM-DD)');
$errorMessageNumbers= array('Amount should be number','Credit should be number','Debit should be number');
$result = array();
foreach($fieldsObligatory as $key=>$field):
if(!exist($_POST[$field]))
$result[] = $errorMessage[$key];
endforeach;
foreach($fieldsDates as $key=>$field)
if(trim($_POST[$field]))
if(trim($_POST[$field]) !== '0000-00-00')
if((!preg_match("/[0-9]{4}-[0-9]{2}-[0-9]{2}$/", $_POST[$field]))||(strtotime(trim($_POST[$field]))<1))
$result[] = $errorMessageDates[$key];
foreach($fieldsNumbers as $key=>$field)
if(trim($_POST[$field]))
if(!preg_match("/^[\d]{0,8}$/", $_POST[$field]))
$result[] = $errorMessageNumbers[$key];
if(trim($_POST['client']))
if(!ClientCollection::getClients(trim($_POST['client'])))
die('Database error: not existant client.. please apply admin');
if(trim($_POST['currency']))
if(!CurrencyCollection::getCurrencies(trim($_POST['currency'])))
die('Database error: not existant currency.. please apply admin');
return $result;
}
<?php
include('../config.php');
include('../functions.php');
include('../classes/clientcollection.class.php');
loginAdmin();
if(!loggedAdmin())
header('location: index.php');
if(exist($_POST['add']))
$result = ClientCollection::updateClient();
else
ClientCollection::loadClient();
include("$templates/menu.php");
include("$templates/user_edit.php");
include("$templates/footer.php");
?>
