%PDF- %PDF-
Mini Shell

Mini Shell

Direktori : /home/riacommer/domains/gasworld.com.my/private_html/admin/api/
Upload File :
Create Path :
Current File : /home/riacommer/domains/gasworld.com.my/private_html/admin/api/transaction.php

<?php
//error_reporting(-1); //report all error!
include_once("security.php");
include_once("db.php");
//[transaction]

//for delete only - disabled the delete
if(isset($_GET["id"])){
	/*if($_GET["id"]!=""){
		$id = $_GET["id"];
		$sql = "DELETE FROM sa_transaction WHERE id='$id'";
		mysql_query($sql);
		header("Location: http://" .$_SERVER['HTTP_HOST'] . str_replace("/api", "", dirname($_SERVER['PHP_SELF'])) ."/bank_agent.php");
	} else {*/
		header("Location: http://" .$_SERVER['HTTP_HOST'] . str_replace("/api", "", dirname($_SERVER['PHP_SELF'])) ."/400.php");
	//}
} else {
//for create, update
if(isset($_POST["act"])){
	$act = trim($_POST["act"]);
	
	$member_id = trim($_POST["member_id"]);
	$transaction_type = trim($_POST["transaction_type"]);
	$product_id = trim($_POST["product_id"]);
	$transaction_id = trim($_POST["transaction_id"]);
	$amount = trim($_POST["amount"]);
	$bank_agent_id = trim($_POST["bank_agent_id"]);
	$status = trim($_POST["status"]);
	$reason = trim($_POST["reason"]);
	$note = trim($_POST["note"]);

	$deposit=0;
	$withdrawal=0;
	$transfer=0;
	$bonus=0;
	
	if(strtolower($transaction_type)=="deposit"){
		$deposit = $amount;
	} else if(strtolower($transaction_type)=="withdrawal"){
		$withdrawal = $amount;
	} else if(strtolower($transaction_type)=="transfer"){
		$transfer = $amount;
	} else if(strtolower($transaction_type)=="bonus"){
		$bonus = $amount;
	}
	
	if($act=="create"){
		$sql = "INSERT INTO sa_transaction (member_id, product_id, transaction_id, bank_agent_id, deposit, withdrawal, transfer, bonus, status, reason, note, created_date) VALUES ('$member_id', '$product_id', '$transaction_id', '$bank_agent_id', '$deposit', '$withdrawal', '$transfer', '$bonus', '$status', '$reason', '$note', now())";
		mysql_query($sql);
		header("Location: http://" .$_SERVER['HTTP_HOST'] . str_replace("/api", "", dirname($_SERVER['PHP_SELF'])) ."/transaction.php");
	} else if($act=="update"){
		$id = trim($_POST["id"]);
		$sql = "UPDATE sa_transaction SET member_id='$member_id', product_id='$product_id', transaction_id='$transaction_id', bank_agent_id='$bank_agent_id', deposit='$deposit', withdrawal='$withdrawal', transfer='$transfer', bonus='$bonus', status='$status', reason='$reason', note='$note', last_updated=now() WHERE id='$id'";
		mysql_query($sql);
		header("Location: http://" .$_SERVER['HTTP_HOST'] . str_replace("/api", "", dirname($_SERVER['PHP_SELF'])) ."/transaction.php");
	}
} else {
	header("Location: http://" .$_SERVER['HTTP_HOST'] . str_replace("/api", "", dirname($_SERVER['PHP_SELF'])) ."/400.php");
}

}
?>

Zerion Mini Shell 1.0