polygon-website-foss/api/admin/get-transactions.php

<?php require $_SERVER['DOCUMENT_ROOT'].'/api/private/core.php';
Polygon::ImportClass("Thumbnails");

api::initialize(["method" => "POST", "admin" => Users::STAFF, "secure" => true]);

$id = $_POST["id"];
$category = $_POST["category"];
$type = $_POST["type"] ?? false;
$page = $_POST["page"] ?? 1;
$result = [];

if(!in_array($category, ["User", "Asset"])) api::respond(400, false, "Bad Request");
if(!in_array($type, ["Purchases", "Sales"])) api::respond(400, false, "Bad Request");

if ($category == "User")
{
	$selector = $type == "Sales" ? "seller" : "purchaser";
	$member = $type == "Sales" ? "purchaser" : "seller";

}
else if ($category == "Asset")
{
	$selector = "assetId";
	$member = "purchaser";
}

$count = db::run("SELECT COUNT(*) FROM transactions WHERE $selector = :id", [":id" => $id])->fetchColumn();

$pages = ceil($count/15);
$offset = ($page - 1)*15;

$transactions = db::run(
	"SELECT transactions.*, users.username, assets.name FROM transactions 
	INNER JOIN users ON $member = users.id
	INNER JOIN assets ON transactions.assetId = assets.id 
	WHERE $selector = :id ORDER BY id DESC LIMIT 15 OFFSET $offset", 
	[":id" => $id]
);

if(!$transactions->rowCount()) api::respond(200, true, "No transactions have been logged");

while($transaction = $transactions->fetch(PDO::FETCH_OBJ))
{
	$memberID = $member == "purchaser" ? $transaction->purchaser : $transaction->seller;

	$result[] = 
	[
		"type" => $type == "Sales" ? "Sold" : "Purchased",
		"date" => date('j/n/y', $transaction->timestamp),
		"member_name" => $transaction->username,
		"member_id" => $memberID,
		"member_avatar" => Thumbnails::GetAvatar($memberID, 48, 48),
		"asset_name" => htmlspecialchars($transaction->name),
		"asset_id" => $transaction->assetId,
		"amount" => $transaction->amount,
		"flagged" => (bool) $transaction->flagged
	];
}

api::respond_custom(["status" => 200, "success" => true, "message" => "OK", "transactions" => $result, "pages" => $pages]);