-
Notifications
You must be signed in to change notification settings - Fork 13
/
send_funds_action.php
141 lines (99 loc) · 3.61 KB
/
send_funds_action.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
<?php
include "validate_customer.php";
include "header.php";
include "customer_navbar.php";
include "customer_sidebar.php";
include "session_timeout.php";
/* Set appropriate error number if errors are encountered.
Key (for err_no) :
-1 = Connection Error.
0 = Successful Transaction.
1 = Insufficient Funds.
2 = Wrong password entered.
*/
$err_no = -1;
if (isset($_GET['cust_id'])) {
$receiver_id = $_GET['cust_id'];
}
$sender_id = $_SESSION['loggedIn_cust_id'];
$amt = mysqli_real_escape_string($conn, $_POST["amt"]);
$password = mysqli_real_escape_string($conn, $_POST["password"]);
$sql0 = "SELECT * FROM customer WHERE cust_id=".$sender_id." AND pwd='".$password."'";
$result0 = $conn->query($sql0);
$row0 = $result0->fetch_assoc();
$sql5 = "SELECT * FROM customer WHERE cust_id=".$receiver_id;
$result5 = $conn->query($sql5);
$row5 = $result5->fetch_assoc();
if (($result0->num_rows) > 0) {
$sql1 = "SELECT balance FROM passbook".$sender_id." ORDER BY trans_id DESC LIMIT 1";
$result1 = $conn->query($sql1);
$row1 = $result1->fetch_assoc();
$sender_balance = $row1["balance"];
$updated_sender_balance = $sender_balance - $amt;
if($updated_sender_balance >= 0) {
$sql2 = "SELECT balance FROM passbook".$receiver_id." ORDER BY trans_id DESC LIMIT 1";
$result2 = $conn->query($sql2);
$row2 = $result2->fetch_assoc();
$receiver_balance = $row2["balance"];
$updated_receiver_balance = $receiver_balance + $amt;
$sql3 = "INSERT INTO passbook".$sender_id." VALUES(
NULL,
NOW(),
'Sent to: ".$row5["first_name"]." ".$row5["last_name"].", AC/No: ".$row5["account_no"]."',
'$amt',
'0',
'$updated_sender_balance'
)";
$sql4 = "INSERT INTO passbook".$receiver_id." VALUES(
NULL,
NOW(),
'Received from: ".$row0["first_name"]." ".$row0["last_name"].", AC/No: ".$row0["account_no"]."',
'0',
'$amt',
'$updated_receiver_balance'
)";
if (($conn->query($sql3) === TRUE) && ($conn->query($sql4) === TRUE)) {
$err_no = 0;
}
}
else {
$err_no = 1;
}
}
else {
$err_no = 2;
}
?>
<!DOCTYPE html>
<html>
<head>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" href="action_style.css">
</head>
<body>
<div class="flex-container">
<div class="flex-item">
<?php
if ($err_no == -1) { ?>
<p id="info">
<?php echo "Connection Error ! Please try again later.\n"; ?></p>
<?php } ?>
<?php
if ($err_no == 0) { ?>
<p id="info"><?php echo "Transfer Successful !\n"; ?></p>
<?php } ?>
<?php
if ($err_no == 1) { ?>
<p id="info"><?php echo "Insufficient Funds !\n"; ?></p>
<?php } ?>
<?php
if ($err_no == 2) { ?>
<p id="info"><?php echo "Wrong password entered !\n"; ?></p>
<?php } ?>
</div>
<div class="flex-item">
<a href="beneficiary.php" class="button">Go Back</a>
</div>
</div>
</body>
</html>