#include "../cokebank.h"
#include <sqlite3.h>
-#define DEBUG 1
+#define DEBUG 0
const char * const csBank_DatabaseSetup =
"CREATE TABLE IF NOT EXISTS accounts ("
int Bank_SetFlags(int AcctID, int Mask, int Value);
int Bank_GetBalance(int AcctID);
char *Bank_GetAcctName(int AcctID);
+ int Bank_IsPinValid(int AcctID, int Pin);
+void Bank_SetPin(int AcctID, int Pin);
sqlite3_stmt *Bank_int_MakeStatemnt(sqlite3 *Database, const char *Query);
+ int Bank_int_QueryNone(sqlite3 *Database, const char *Query, char **ErrorMessage);
sqlite3_stmt *Bank_int_QuerySingle(sqlite3 *Database, const char *Query);
int Bank_int_IsValidName(const char *Name);
}
// Check structure
- rv = sqlite3_exec(gBank_Database, "SELECT acct_id FROM accounts LIMIT 1", NULL, NULL, &errmsg);
+ rv = Bank_int_QueryNone(gBank_Database, "SELECT acct_id FROM accounts LIMIT 1", &errmsg);
if( rv == SQLITE_OK )
{
// NOP
{
sqlite3_free(errmsg);
// Create tables
- rv = sqlite3_exec(gBank_Database, csBank_DatabaseSetup, NULL, NULL, &errmsg);
+ rv = Bank_int_QueryNone(gBank_Database, csBank_DatabaseSetup, &errmsg);
if( rv != SQLITE_OK ) {
fprintf(stderr, "Bank_Initialise - SQLite Error: %s\n", errmsg);
sqlite3_free(errmsg);
return 1;
}
- Log_Info("SQLite database rebuilt");
+ Log_Info("SQLite database rebuilt (%s)", Argument);
}
else
{
/*
* Move Money
*/
-int Bank_Transfer(int SourceUser, int DestUser, int Ammount, const char *Reason)
+int Bank_Transfer(int SourceUser, int DestUser, int Ammount, const char *Reason __attribute__((unused)))
{
char *query;
int rv;
Reason = ""; // Shut GCC up
// Begin SQL Transaction
- sqlite3_exec(gBank_Database, "BEGIN TRANSACTION", NULL, NULL, NULL);
+ Bank_int_QueryNone(gBank_Database, "BEGIN TRANSACTION", NULL);
// Take from the source
- query = mkstr("UPDATE accounts SET acct_balance=acct_balance-%i,acct_last_seen=datetime('now') WHERE acct_id=%i", Ammount, SourceUser);
- printf("query = \"%s\"\n", query);
- rv = sqlite3_exec(gBank_Database, query, NULL, NULL, &errmsg);
+ query = mkstr("UPDATE accounts SET acct_balance=acct_balance%+i,acct_last_seen=datetime('now') WHERE acct_id=%i", -Ammount, SourceUser);
+// printf("query = \"%s\"\n", query);
+ rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
free(query);
if( rv != SQLITE_OK )
{
fprintf(stderr, "Bank_Transfer - SQLite Error: %s\n", errmsg);
sqlite3_free(errmsg);
- sqlite3_exec(gBank_Database, "ROLLBACK", NULL, NULL, NULL);
+ Bank_int_QueryNone(gBank_Database, "ROLLBACK", NULL);
return 1;
}
// Give to the destination
- query = mkstr("UPDATE accounts SET acct_balance=acct_balance+%i,acct_last_seen=datetime('now') WHERE acct_id=%i", Ammount, DestUser);
- printf("query = \"%s\"\n", query);
- rv = sqlite3_exec(gBank_Database, query, NULL, NULL, &errmsg);
+ query = mkstr("UPDATE accounts SET acct_balance=acct_balance%+i,acct_last_seen=datetime('now') WHERE acct_id=%i", Ammount, DestUser);
+// printf("query = \"%s\"\n", query);
+ rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
free(query);
if( rv != SQLITE_OK )
{
fprintf(stderr, "Bank_Transfer - SQLite Error: %s\n", errmsg);
sqlite3_free(errmsg);
- sqlite3_exec(gBank_Database, "ROLLBACK", NULL, NULL, NULL);
+ Bank_int_QueryNone(gBank_Database, "ROLLBACK", NULL);
return 1;
}
// Commit transaction
- sqlite3_exec(gBank_Database, "COMMIT", NULL, NULL, NULL);
+ Bank_int_QueryNone(gBank_Database, "COMMIT", NULL);
return 0;
}
#endif
// Execute Query
- rv = sqlite3_exec(gBank_Database, query, NULL, NULL, &errmsg);
+ rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
if( rv != SQLITE_OK )
{
fprintf(stderr, "Bank_SetUserFlags - SQLite Error: %s\n", errmsg);
/*
* Get an account ID from a name
*/
-int Bank_GetAcctByName(const char *Name)
+int Bank_GetAcctByName(const char *Name, int bCreate)
{
char *query;
sqlite3_stmt *statement;
int ret;
- if( !Bank_int_IsValidName(Name) ) return -1;
+// printf("Bank_GetAcctByName: (Name='%s',bCreate=%i)\n", Name, bCreate);
+
+ if( !Bank_int_IsValidName(Name) ) {
+// printf("RETURN: -1 (Bad name)");
+ return -1;
+ }
query = mkstr("SELECT acct_id FROM accounts WHERE acct_name='%s' LIMIT 1", Name);
statement = Bank_int_QuerySingle(gBank_Database, query);
free(query);
- if( !statement ) return -1;
+ if( !statement ) {
+// printf("User not found\n");
+ if( bCreate ) return Bank_CreateAcct(Name);
+ return -1;
+ }
ret = sqlite3_column_int(statement, 0);
sqlite3_finalize(statement);
- if( ret == 0 ) return -1;
+// printf("ret = %i\n", ret);
+
+ if( ret == 0 ) {
+ return -1;
+ }
return ret;
}
query = strdup("INSERT INTO accounts (acct_name) VALUES (NULL)");
}
- rv = sqlite3_exec(gBank_Database, query, NULL, NULL, &errmsg);
+ rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
if( rv != SQLITE_OK )
{
fprintf(stderr, "Bank_CreateAcct - SQLite Error: '%s'\n", errmsg);
return sqlite3_last_insert_rowid(gBank_Database);
}
+int Bank_IsPinValid(int AcctID, int Pin)
+{
+ char *query = mkstr("SELECT acct_id FROM accounts WHERE acct_id=%i AND acct_pin=%i LIMIT 1", AcctID, Pin);
+ sqlite3_stmt *statement = Bank_int_QuerySingle(gBank_Database, query);
+ free(query);
+
+ if( statement ) {
+ sqlite3_finalize(statement);
+ }
+
+ return (statement != NULL);
+}
+
+void Bank_SetPin(int AcctID, int Pin)
+{
+ char *errmsg;
+ char *query = mkstr("UPDATE accounts SET acct_pin=%i WHERE acct_id=%i", Pin, AcctID);
+ int rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
+ if( rv != SQLITE_OK )
+ {
+ fprintf(stderr, "Bank_CreateAcct - SQLite Error: '%s'\n", errmsg);
+ fprintf(stderr, "Query = '%s'\n", query);
+ sqlite3_free(errmsg);
+ free(query);
+ return ;
+ }
+ free(query);
+}
/*
* Create an iterator for user accounts
*/
int Bank_GetUserAuth(const char *Salt, const char *Username, const char *Password)
{
Salt = Password = Username; // Shut up GCC
+ Password = Salt;
// DEBUG HACKS!
- #if 1
+ #if 0
return Bank_GetAcctByName(Username);
#else
return -1;
// Insert card
query = mkstr("INSERT INTO cards (acct_id,card_name) VALUES (%i,'%s')",
AcctID, CardID);
- rv = sqlite3_exec(gBank_Database, query, NULL, NULL, &errmsg);
+ rv = Bank_int_QueryNone(gBank_Database, query, &errmsg);
if( rv == SQLITE_CONSTRAINT )
{
sqlite3_free(errmsg);
return ret;
}
+int Bank_int_QueryNone(sqlite3 *Database, const char *Query, char **ErrorMessage)
+{
+ #if DEBUG
+ printf("Bank_int_QueryNone: (Query='%s')\n", Query);
+ #endif
+ return sqlite3_exec(Database, Query, NULL, NULL, ErrorMessage);
+}
+
/*
* Create a SQLite statement and query it for the first row
* Returns NULL if the the set is empty
// Prepare query
ret = Bank_int_MakeStatemnt(Database, Query);
if( !ret ) {
- #if DEBUG
+ #if DEBUG >= 2
printf("Bank_int_QuerySingle: RETURN NULL ret=NULL\n");
#endif
return NULL;
rv = sqlite3_step(ret);
// - Empty result set
if( rv == SQLITE_DONE ) {
- #if DEBUG
+ #if DEBUG >= 2
printf("Bank_int_QuerySingle: RETURN NULL (rv == SQLITE_DONE)\n");
#endif
return NULL;
return NULL;
}
- #if DEBUG
+ #if DEBUG >= 2
printf("Bank_int_QuerySingle: RETURN %p\n", ret);
#endif
return ret;
*/
int Bank_int_IsValidName(const char *Name)
{
+ if( !Name ) return 0;
while(*Name)
{
if( *Name == '\'' ) return 0;