X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=gl%2Fincludes%2Fdb%2Fgl_db_rates.inc;h=5d98dcb7afd166084b4214e1901d771d1a1078a9;hb=5838404faacacbe4f77dd77bc1cd88fabc213a02;hp=cba2e5afe2bcaef7ca7244521d86fd9b42c8b220;hpb=f12dbe7523bb1abc6cd69b009ef8f0be838f5348;p=fa-stable.git
diff --git a/gl/includes/db/gl_db_rates.inc b/gl/includes/db/gl_db_rates.inc
index cba2e5af..5d98dcb7 100644
--- a/gl/includes/db/gl_db_rates.inc
+++ b/gl/includes/db/gl_db_rates.inc
@@ -1,18 +1,19 @@
.
+***********************************************************************/
+include_once($path_to_root . "/includes/remote_url.inc");
//---------------------------------------------------------------------------------------------
-
function get_exchange_rate($rate_id)
{
- $sql = "SELECT * FROM ".TB_PREF."exchange_rates WHERE id=$rate_id";
+ $sql = "SELECT * FROM ".TB_PREF."exchange_rates WHERE id=".db_escape($rate_id);
$result = db_query($sql, "could not get exchange rate for $rate_id");
return db_fetch($result);
@@ -22,8 +23,8 @@ function get_exchange_rate($rate_id)
function get_date_exchange_rate($curr_code, $date_)
{
$date = date2sql($date_);
- $sql = "SELECT rate_buy FROM ".TB_PREF."exchange_rates WHERE curr_code='$curr_code'
- AND date_='$date'";
+ $sql = "SELECT rate_buy FROM ".TB_PREF."exchange_rates WHERE curr_code=".db_escape($curr_code)
+ ." AND date_='$date'";
$result = db_query($sql, "could not get exchange rate for $curr_code - $date_");
if(db_num_rows($result) == 0)
@@ -41,8 +42,8 @@ function update_exchange_rate($curr_code, $date_, $buy_rate, $sell_rate)
$date = date2sql($date_);
- $sql = "UPDATE ".TB_PREF."exchange_rates SET rate_buy=$buy_rate, rate_sell=$sell_rate
- WHERE curr_code='$curr_code' AND date_='$date'";
+ $sql = "UPDATE ".TB_PREF."exchange_rates SET rate_buy=$buy_rate, rate_sell=".db_escape($sell_rate)
+ ." WHERE curr_code=".db_escape($curr_code)." AND date_='$date'";
db_query($sql, "could not add exchange rate for $curr_code");
}
@@ -57,7 +58,8 @@ function add_exchange_rate($curr_code, $date_, $buy_rate, $sell_rate)
$date = date2sql($date_);
$sql = "INSERT INTO ".TB_PREF."exchange_rates (curr_code, date_, rate_buy, rate_sell)
- VALUES ('$curr_code', '$date', $buy_rate, $sell_rate)";
+ VALUES (".db_escape($curr_code).", '$date', ".db_escape($buy_rate)
+ .", ".db_escape($sell_rate).")";
db_query($sql, "could not add exchange rate for $curr_code");
}
@@ -65,60 +67,121 @@ function add_exchange_rate($curr_code, $date_, $buy_rate, $sell_rate)
function delete_exchange_rate($rate_id)
{
- $sql = "DELETE FROM ".TB_PREF."exchange_rates WHERE id=$rate_id";
+ $sql = "DELETE FROM ".TB_PREF."exchange_rates WHERE id=".db_escape($rate_id);
db_query($sql, "could not delete exchange rate $rate_id");
}
-//---------------------------------------------------------------------------------------------
+//-----------------------------------------------------------------------------
+// Retrieve exchange rate as of date $date from external source (usually inet)
+//
+function retrieve_exrate($curr_b, $date)
+{
+ $rate = hook_retrieve_exrate($curr_b, $date);
+ if (is_numeric($rate))
+ return $rate;
+ return get_extern_rate($curr_b, 'ECB', $date);
+}
+//-----------------------------------------------------------------------------
-function get_ecb_rate($curr_b)
+function get_extern_rate($curr_b, $provider = 'ECB', $date)
{
$curr_a = get_company_pref('curr_default');
- $ecb_filename = 'http://www.ecb.int/stats/eurofxref/eurofxref-daily.xml';
- $handle = @fopen($ecb_filename, 'rb');
+ if ($provider == 'ECB')
+ {
+ $filename = "/stats/eurofxref/eurofxref-daily.xml";
+ $site = "www.ecb.int";
+ }
+ elseif ($provider == 'YAHOO')
+ {
+ $filename = "/q?s={$curr_a}{$curr_b}=X";
+ $site = "finance.yahoo.com";
+ }
+ elseif ($provider == 'GOOGLE')
+ {
+ $filename = "/finance/converter?a=1&from={$curr_a}&to={$curr_b}";
+ $site = "finance.google.com";
+ }
$contents = '';
- if ($handle)
+
+ if (function_exists('curl_init'))
+ { // first check with curl as we can set short timeout;
+ $retry = 1;
+ do {
+ $ch = curl_init();
+ curl_setopt ($ch, CURLOPT_URL, 'http://'.$site.$filename);
+ curl_setopt ($ch, CURLOPT_COOKIEJAR, "cookie.txt");
+ curl_setopt ($ch, CURLOPT_HEADER, 0);
+ curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
+ // prevent warning while save_mode/open_basedir on (redireciton doesn't occur at least on ECB page)
+ if (!ini_get('save_mode') && !ini_get('open_basedir'))
+ curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
+ curl_setopt ($ch, CURLOPT_TIMEOUT, 3);
+ $contents = curl_exec ($ch);
+ curl_close($ch);
+ // due to resolver bug in some curl versions (e.g. 7.15.5)
+ // try again for constant IP.
+ $site="195.128.2.97";
+ } while( ($contents == '') && $retry--);
+
+ } else {
+ $contents = url_get_contents("http://".$site.$filename);
+ }
+ if (!$contents) {
+ display_warning(sprintf(_("Cannot retrieve currency rate from %s page. Please set the rate manually."), $provider));
+ }
+ if ($provider == 'ECB')
{
- do
+ $contents = str_replace (" |i";
+ preg_match ( $from_mask, $contents, $out );
+ $val_a = isset($out[1]) ? $out[1] : 0;
+ $val_a = str_replace ( ',', '', $val_a );
+ $to_mask = "||i";
+ preg_match ( $to_mask, $contents, $out );
+ $val_b = isset($out[1]) ? $out[1] : 0;
+ $val_b = str_replace ( ',', '', $val_b );
+ if ($val_b)
{
- $data = @fread( $handle, 4096 );
- if ( strlen ( $data ) == 0 )
- break;
- $contents .= $data; // with this syntax only text will be translated, whole text with htmlspecialchars($data)
+ $val = $val_a / $val_b;
}
- while (true);
- @fclose( $handle );
- } // end handle
- else
- {
- $ch = curl_init();
- curl_setopt ($ch, CURLOPT_URL, $ecb_filename);
- curl_setopt ($ch, CURLOPT_COOKIEJAR, "cookie.txt");
- curl_setopt ($ch, CURLOPT_HEADER, 0);
- curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt ($ch, CURLOPT_TIMEOUT, 120);
- $contents = curl_exec ($ch);
- curl_close($ch);
+ else
+ {
+ $val = 0;
+ }
}
- $contents = str_replace (" |i";
- preg_match ( $from_mask, $contents, $out );
- $val_a = isset($out[1]) ? $out[1] : 0;
- $val_a = str_replace ( ',', '', $val_a );
- $to_mask = "||i";
- preg_match ( $to_mask, $contents, $out );
- $val_b = isset($out[1]) ? $out[1] : 0;
- $val_b = str_replace ( ',', '', $val_b );
- if ($val_b)
+ elseif ($provider == 'YAHOO')
{
- $val = $val_a / $val_b;
- }
- else
- {
- $val = 0;
+ $val = '';
+ if (preg_match('/Last\sTrade:(.*?)Trade\sTime/s', $contents, $matches)) {
+ $val = strip_tags($matches[1]);
+ $val = str_replace(',', '', $val);
+ if ($val != 0)
+ $val = 1 / $val;
+ }
}
+ elseif ($provider == 'GOOGLE')
+ {
+ $val = '';
+ $regexp = "%([\d|.]+)\s+{$curr_a}\s+=\s+([\d|.]+)\s+{$curr_b}\s*%s";
+ if (preg_match($regexp, $contents, $matches))
+ {
+ $val = $matches[3];
+ $val = str_replace(',', '', $val);
+ if ($val != 0)
+ $val = 1 / $val;
+ }
+ }
return $val;
-} // end function get_ecb_rate
+} /* end function get_extern_rate */
+//-----------------------------------------------------------------------------
+
+function get_sql_for_exchange_rates()
+{
+ $sql = "SELECT date_, rate_buy, id FROM "
+ .TB_PREF."exchange_rates "
+ ."WHERE curr_code=".db_escape($_POST['curr_abrev'])."
+ ORDER BY date_ DESC";
+ return $sql;
+}
?>
\ No newline at end of file