PNG
�
���
IHDR�������������x����sBIT����|�d��� pHYs�������+������tEXtSoftware�www.inkscape.org<���,tEXtComment�
File Manager
File Manager
Viewing File: verify_conversion.php
<?php
require_once "../config.php";
session_start();
// ---------------- Security Check ----------------
// Ensure the user is coming from the exchange page with valid pending data
if (!isset($_SESSION['auth']) || !isset($_SESSION['pending_conversion']) || !isset($_SESSION['verification_required'])) {
header("Location: crypto_exchange.php");
exit;
}
// ---------------- Setup Variables ----------------
$pending = $_SESSION['pending_conversion'];
$restriction = $_SESSION['verification_required']; // Contains Admin's Code, Title, Message, Loading Limit
$user_id = $_SESSION['auth'];
$error = "";
// Defaults if admin left fields blank
$loading_limit = !empty($restriction['loading_limit']) ? (int)$restriction['loading_limit'] : 95;
$page_title = !empty($restriction['title']) ? $restriction['title'] : "Security Check";
$page_msg = !empty($restriction['message']) ? $restriction['message'] : "To ensure the security of your assets, a One-Time Password (OTP) is required to complete this conversion.";
// ---------------- Handle Cancellation ----------------
if (isset($_GET['action']) && $_GET['action'] === 'cancel') {
unset($_SESSION['pending_conversion']);
unset($_SESSION['verification_required']);
header("Location: crypto_exchange.php?msg=cancelled");
exit;
}
// ---------------- Handle OTP Submission ----------------
if ($_SERVER["REQUEST_METHOD"] === "POST") {
$entered_code = trim($_POST['code'] ?? '');
// Verify against the Admin's set code
if ($entered_code === $restriction['verification_code']) {
// --- CODE IS CORRECT: EXECUTE EXCHANGE ---
try {
$pdo->beginTransaction();
// 1. Recalculate Amounts (Security Best Practice)
$gross_fiat = $pending['crypto_amount'] * $pending['rate'];
$fee_amount = ($gross_fiat * $pending['fee_percent']) / 100;
$net_fiat = $gross_fiat - $fee_amount;
// 2. Deduct Crypto
$stmt = $pdo->prepare("UPDATE crypto_wallets SET balance = balance - ? WHERE user_id = ? AND coin_symbol = ?");
$stmt->execute([$pending['crypto_amount'], $user_id, $pending['coin_symbol']]);
// 3. Credit Bank Account (Net Fiat)
$stmt = $pdo->prepare("UPDATE accounts SET balance = balance + ? WHERE id = UNHEX(?) AND user_id = ?");
$stmt->execute([$net_fiat, $pending['target_account_hex'], $user_id]);
// 4. Log Transaction
$txId = bin2hex(random_bytes(16));
$metadata = json_encode([
"type" => "crypto_exchange_verified",
"from" => $pending['coin_symbol'],
"gross" => $gross_fiat,
"fee" => $fee_amount,
"net" => $net_fiat
]);
$stmt = $pdo->prepare("INSERT INTO transactions (id, status, amount, to_account_id, metadata, created_by, settled_at) VALUES (UNHEX(?), 'settled', ?, UNHEX(?), ?, ?, NOW())");
$stmt->execute([$txId, $net_fiat, $pending['target_account_hex'], $metadata, $user_id]);
$pdo->commit();
// 5. Clear Session & Redirect
unset($_SESSION['pending_conversion']);
unset($_SESSION['verification_required']);
echo "<script>
alert('✅ Verification Successful! Funds Credited.');
window.location.href='crypto_exchange.php';
</script>";
exit;
} catch (Exception $e) {
$pdo->rollBack();
$error = "System Error: " . $e->getMessage();
}
} else {
$error = "❌ Invalid Code. Please try again.";
}
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Verify Conversion</title>
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css">
<style>
/* Mature Banking UI */
:root { --primary: #0C4DA2; --bg: #f4f7fa; --text: #1a1f36; }
body { font-family: 'Segoe UI', sans-serif; background: var(--bg); display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; }
.container { background: white; padding: 40px 30px; border-radius: 16px; box-shadow: 0 15px 35px rgba(0,0,0,0.1); width: 100%; max-width: 400px; text-align: center; position: relative; }
/* Header with Back Button */
.header-row { display: flex; align-items: center; margin-bottom: 25px; }
.cancel-btn { background: none; border: none; font-size: 18px; color: #666; cursor: pointer; margin-right: 15px; }
.cancel-btn:hover { color: var(--primary); }
.title { font-weight: 600; font-size: 16px; color: var(--text); }
/* Loader */
#loading-view { display: block; }
.loader-ring { width: 100px; height: 100px; margin: 0 auto 20px; position: relative; }
.circular-chart { display: block; margin: 0 auto; max-width: 100%; max-height: 100%; }
.circle-bg { fill: none; stroke: #eee; stroke-width: 3.8; }
.circle { fill: none; stroke-width: 3.8; stroke-linecap: round; stroke: var(--primary); transition: stroke-dasharray 0.1s linear; }
.percentage { fill: #333; font-family: sans-serif; font-weight: bold; font-size: 0.5em; text-anchor: middle; }
/* Form View */
#form-view { display: none; opacity: 0; transition: opacity 0.5s ease; }
.secure-icon { font-size: 40px; color: var(--primary); background: #ecf4ff; width: 70px; height: 70px; line-height: 70px; border-radius: 50%; margin: 0 auto 15px; }
.msg-box { background: #fff8e1; color: #856404; padding: 15px; border-radius: 8px; margin-bottom: 20px; border: 1px solid #ffeeba; font-size: 13px; line-height: 1.5; text-align: left; }
input { width: 100%; padding: 14px; border: 1px solid #ccc; border-radius: 8px; margin-bottom: 15px; font-size: 18px; text-align: center; letter-spacing: 4px; box-sizing: border-box; }
input:focus { border-color: var(--primary); outline: none; }
button { width: 100%; background: var(--primary); color: white; padding: 14px; border: none; border-radius: 8px; font-size: 16px; font-weight: bold; cursor: pointer; transition: 0.2s; }
button:hover { background: #093b80; }
.error { background: #fee2e2; color: #991b1b; padding: 10px; border-radius: 6px; margin-bottom: 15px; font-size: 14px; }
.status-text { color: #666; font-size: 14px; animation: pulse 1.5s infinite; }
@keyframes pulse { 0% { opacity: 0.6; } 50% { opacity: 1; } 100% { opacity: 0.6; } }
</style>
</head>
<body>
<div class="container">
<div class="header-row">
<button class="cancel-btn" onclick="confirmCancel()"><i class="fas fa-arrow-left"></i></button>
<span class="title">Conversion Verification</span>
</div>
<div id="loading-view">
<div class="loader-ring">
<svg viewBox="0 0 36 36" class="circular-chart">
<path class="circle-bg" d="M18 2.0845 a 15.9155 15.9155 0 0 1 0 31.831 a 15.9155 15.9155 0 0 1 0 -31.831" />
<path class="circle" id="progress-circle" stroke-dasharray="0, 100" d="M18 2.0845 a 15.9155 15.9155 0 0 1 0 31.831 a 15.9155 15.9155 0 0 1 0 -31.831" />
<text x="18" y="20.35" class="percentage" id="percentage-text">0%</text>
</svg>
</div>
<h3 style="margin:0 0 10px 0;">Processing...</h3>
<div class="status-text" id="status-message">Initiating blockchain sequence...</div>
</div>
<div id="form-view">
<div class="secure-icon"><i class="fas fa-shield-alt"></i></div>
<h3 style="margin:0 0 15px 0;"><?= htmlspecialchars($page_title) ?></h3>
<?php if($error): ?>
<div class="error"><?= $error ?></div>
<?php endif; ?>
<div class="msg-box">
<?= nl2br(htmlspecialchars($page_msg)) ?>
</div>
<form method="POST">
<label style="display:block; text-align:left; font-size:12px; font-weight:600; margin-bottom:5px; color:#555;">ENTER OTP CODE</label>
<input type="text" name="code" placeholder="000000" required autocomplete="off">
<button type="submit">Confirm Conversion</button>
</form>
</div>
</div>
<script>
// --- Configuration ---
const limit = <?= $loading_limit ?>;
const hasError = <?= $error ? 'true' : 'false' ?>;
// --- Elements ---
const loader = document.getElementById('loading-view');
const form = document.getElementById('form-view');
const circle = document.getElementById('progress-circle');
const text = document.getElementById('percentage-text');
const msg = document.getElementById('status-message');
const messages = [
"Validating wallet signature...",
"Checking network congestion...",
"Securing conversion rate...",
"Verifying ledger status...",
"Finalizing security check..."
];
function confirmCancel() {
if(confirm("Are you sure you want to cancel this conversion?")) {
window.location.href = "?action=cancel";
}
}
if (hasError) {
// Skip animation if there's an error (user entered wrong code)
loader.style.display = 'none';
form.style.display = 'block';
form.style.opacity = 1;
} else {
// Start Animation
let current = 0;
let msgIndex = 0;
const interval = setInterval(() => {
current++;
// Update Circle & Text
circle.setAttribute("stroke-dasharray", `${current}, 100`);
text.textContent = current + "%";
// Cycle Messages
if (current % 20 === 0 && msgIndex < messages.length - 1) {
msgIndex++;
msg.textContent = messages[msgIndex];
}
// Stop at Limit
if (current >= limit) {
clearInterval(interval);
msg.textContent = "Verification Required";
msg.style.color = "#d9534f";
setTimeout(() => {
loader.style.display = 'none';
form.style.display = 'block';
setTimeout(() => { form.style.opacity = 1; }, 50);
}, 500);
}
}, 40); // 40ms speed
}
</script>
</body>
</html>
�b�� �IDATxytVսϓ�22� ��A@�I�R�:hCi�Z[v*E:WũZA ^d�Q�e�Q @ !�jZ'>gsV仿$|?g)&x-E�IENT ;�@x�T.i%-X�}�Sv��S5.r/��UHz^_$-W"�w)Ɗ/�@Z &IoX��P$K}��JzX:;`�� �&, �ŋui,e6mX
�Եr��Kb1ԗ)����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A������݀!I*]R;I2$e�Z#ORZSrr�6mteffu*((Pu'v{����DIߔ4^pIm��'77WEEE�;vƎ�4-����$]'RI{���\I&G� ��:IHJ
�DWBB=\WRm�
��o$K(V�9��ABB.�}jѢv��`^?IOȅ}���ڶmG�}T#FJ`5��6$-���ھ}F�I&v;0(h;��Б����38CӧOWf!;�A
�i:F��_m�9s&�|��q�%=#���wZprrrl��a
�A� &��P\\СC[A#�!� {��olF}
`E2}�MK/v�V��)i�{��4BffV\|ۭX��`�b�@kɶ@��%i$K���z5zhmX���[��IXZ��` 'b%$�r5�M4º��/l
ԃ�ߖ��xhʔ)[@=}
K6IM}^��5k㏷݆z
ΗÿO:gdGBmyT/�@+Vɶ�纽zl.yit뭷zV��0[Y^�>Wsqs}\/�@$(T7f.Inݺi����R$푔n.�~?H))\Z��RW'Mo~v
Ov�6oԃ���xz!��S,&xm/yɞԟ?'ua�S�ѽb,�8GלKboi&3�t7Y,�)JJ�����c[nzӳd�E�&K�sZLӄ��I���?�@���&�%ӟ۶mSMMњ0�iؐSZ,���|J+N
�~�,0A�0!5%Q-�YQQa�3��}$_vVr�f9f?S��8`��z���D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����d�qP,تmMmg��1V?�rSI꒟]u|l
R�CyEf٢9�jURbztѰ!m5~tGj2DhG*{H9)꒟ר3:(+3\?/;TUݭʴ~S6lڧUJ�*�i$d(#=Yݺd{,p|3B))���q:vN0Y.jkק6;Sɶ�VzHJJЀ-utѹսk>QUU�\~]fFnK?�&ߡ�5b=z9)^|u�_k-[��y%ZNU6 7Mi�:]ۦ�tk�[n
�X(e6��Bb."8cۭ|~te��uu�w|ήI-5"~U�k;ZicEm�N/:]M>
��c�Q^uiƞ�??Ң�p�c#��TUU3UakNwA`�:�Y_V-8.KKfRi�tv*
�9S6ֿj,Ճ�NOMߤ]z^fOh|<>�@Å5���_�/Iu?{SY4hK�/2�]�4%it5�q]GGe��2%iR|
�W&�f��*^]??v�q[LgE_3f}Fxu~}qd-ږFxu~I N��>\;͗O֊:̗WJ�@���Bh�W�=y�|GgwܷH_NY�?)�Tdi'?խw�hlmQi� ��!SUUs�w4kӺe�4rfxu�-[nHt�MFj}H_u~w>)oV}(T'ebʒv3_[+vn����@Ȭ\S}ot}w=k�HFnxg�S 0eޢm�~l}u�qZf�F��oZuuEg
�`z�t~?�b;t%�>WTkķh[����2eG8LIWx,�^\thr�l^Ϊ�{�=dž�<}qV@ �⠨W�y^L�F_>0Uk��D�uʫuCs$)I��v�:IK�;��6ֲ4{^6����եm+l��3>݆�uM 9�u�����?>Zc�}g~qhKwڭ�e���FMM~pМuq�ǿz6Tb@8�@Y|jx]�(^]gf}�M"tG
����-w.@�vOqh~/HII�`���S[l.6nØXL9v�U���cOoB\�xo�Ǥ'T&I��Ǎ�Qw_wpv[kmO{w~>#=P1P�ɞa-we:iǏlHo꒟f9SzH?+shk%Fs:����q��VhqY�`jvO'ρ?PyX3lх]˾uV{ݞ]1,MzYNW~̈́�joYn}ȚF߾mS]F� z+EDxm/���d{F�{-W-4wY듏:??_gPf
^3��ecg ���ҵs�8R2מz�@T�A�N�Gj)}CNi/R~}c:5{!�ZHӋӾ�6}T]��G�]7W6^�n
9*,Y�qOZj�:P?Q� D���FL|?-^.Ɵ7��}fFhxe2Ps���cz1�&�5\��cn[=Vn�[ĶE鎀u�ˌd3GII ��k;lNmشOuuRVfBE]ۣ��e���Ӷu�
:X-[(�e�r4~LHi6�:Ѻ@ԅ��r���ST�0�trk%$Č�0���ez"� *�z�"�T/X9|8.C5Feg}�C�Q%͞�ˣJ�v�L/?�����j^��h��&��9xF`њZ�(��&��yF&Iݻf�g�����#W;3^{Wo^4'v������V[[K';+mӍִ]��AC�@��W?1^{එyh�����+^]fm~iԵ]��AB�@WTk̏t�uR?l.OIHiYyԶ]��Aˀ�7c:q}ힽaf6Z~қ�m(+sK4{^6}T�*UUu]�n.:kx{:2 ��_m=�sAߤU@?���Z-Vކе��z왍Nэ{�|5��� pڶn�b
p-@sPg]0G7fy-M{GCF'%{4`���=$-Ge\��eU:m+Zt'W�jO!O�AF�@ik&t݆�ϥ�_
e}=]��"���Wz_.͜E3leW�������Fih|t-wZۍ-uw=6���YN�{6|}��|�*={Ѽn.�S��.�z1z�jۻTH]흾 D�uD�v��mvK�.`���V]yY~sI@t?/ϓ. �����m&[�"��+P?MzovV�ЫG3-�G�RR��[�(!!\_,�^%?v�@���ҵő
m`Y)te�m8GM��x.))A]Y�i`ViW`��?^�~!�S#^+ѽ��GZj?Vģ����0.))AlzL*�]�OXrY���`DBBLOj{-MH'ii-ϰ�o�k7^��
�)쭡��b]UXS�ְmռY|5�*cֽk�0B7镹%ڽP#�8nȎq}mJr23�_>�l�E5$iwui+ ��H~F`�IjƵ�@q
��\�� ��@#qG�0"��.�0"����� l���������`������.�0!����� ,��AQ�HN6�qz�kKJ#�o;`Xv�2>,tێJJ7Z/*�A���.@fفjMzk�g�����@Tv�ZH3Zxu6Ra'%O?/�d���Q�5x�Yk�U]Rֽkق@���Da�S^RS�ּ5�|BeHNN͘p
��H�v���cYcC5:y
#`οb;�z����2��.!kr}gUWkyZn=�f ����P�v��s�n3p~�;4p˚=ē~NmI] ��¾�0lH[_L�hs�h_�ғߤ�c_њe��c)��g�7V�IZ5�yrgk̞W#IjӪv>՞y睝M8[��|�]\շ�8M�6%|@P����ZڨI-m>=k�=��'a�iRo-x�?>Q.����}�`Ȏ:Wsm�u u� ��>
.@,&;�+!!�˱tﭧD����Qw�RW\v�F\~Q7>sp���Yw�$�%A~;~}6���¾�g��&if_��=j,v+U���L�1(tW�a�ke�:�@Ș>j$Gq2t7S?v�L|]u/ .(�0�E��6Mk6hiۺzښOr�ifޱxm/Gx>� �Lal%%~{lBsR4*�}{0Z/�tN�IɚpV�^#�Lf:u@k#RS�u
=S^ZyuR/�.@n&z~B=0eg�뺆#�,Þ[����B�/?H �uUf7y
Wy}Bw�egל`�Wh(||`l`.;Ws�?V@"�c:iɍL֯PGv�6z�ctM̠':wuW��;d=;E�veD}9J�@���B(�0iհ���bvP1{\P&G7DIy�_$-Q��jm~Yrr&]C�Dv%��bh|�Yzni�_���R�;kg}nJOIIw��y�u�L}{ЌNj}:+3Y?:W�J/N+Rzd=hb�;d�j͒suݔ@NKMԄ�jqzC5�@y°h�L�m;*5ezᕏ=ep
�XL�n?מ:r`��۵�tŤZ|1v`V뽧_csج'ߤ%oTuumk%%%h)uy]Nk�[n
�'b2 ��l.=�͜E%�gf$[c;s:�V-͞WߤWh-j7]4��=F-X]>ZLSi[Y*We;�Zan(Ӈ�W|e(HNNP�5[=
r4tP�
�&0<�p�c#�`vTNV
GFqvTi�*�Tyam$ߏWyE*�VJKMTfF�w�����>'�$-ؽ.Ho.8c�"@���D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A~�j*�֘,��N;Pi3599h=g�oض��L��giJ5փy~�}&Zd9�p֚
e:|hL`�`b/d9�p?�fgg+%%hMg�Xosج�, �ΩOl0Zh=x�djL���mhݻ��o��O��[g_l,�8a]٭+ӧ0�$I�]����c]:粹:Teꢢ"5a^Kgh,&�=��=�՟�^߶ߢE�ܹS J}I%:8��
IDAT~,9/ʃ�PW'Mo�}zNƍ쨓zPb��NZ~^z�=4mswg;5 Y�~�SVMR��XUյڱRf?s:w
;�6��H:º���i�5�-maM�&O�3�;�1IKeam��Zh͛7+##v+c� ~u~ca]�GnF'ټL~����PPPbn
v�oC���4R,�ӟgg��%hq}�@#M4IÇ��� �Oy^xM��Zx
) ���yO�w��@HkN˖-Sǎ�mb]X�@�n+i͖��!++K3gd\��$mt$^���Yf��J�\�8PRF��)77Wא!Cl����$i:��@@_o�G��� I{$# ��8磌ŋ9�1A�(�Im7��֭>}ߴJq�7ޗt^� -[ԩSj*�}�%]&'
-��ɓ'ꫯVzzvB#;�a
�7@GxI{�jƌ�.LÇ�WBB7�`O"I$�/@R���@�eee@���۷��>}0���,ɒ2$53Xs|cS~r�pTYYY}� k�Hc��%&k�.], �@��A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A�����D���A������@lT<%''*Lo^={رc5h %$�+CnܸQ3fҥK}vUVVs9G�
R,_{�xˇ�3��o߾;TTTd�}�馛]uuuG~iԩ�@4����bn�vmv�fϞ�/Peeeq}}�z���a
�I~,誫{UWW뮻}_~YƍSMMMYχ��֝waw��\�ď�cxꩧtE�ƍ�կ_?۷5�@u���?�1kNׯWzz/wy>}zj3 k��(ٺu�q_Zvf̘:~��AB�Q&r|��!�%KҥKg�����Ԟ={<_X-z� !�C�yFUUz~��AB�QIIIjݺ�W��$���UXXDٳZ~��AB�Qƍec�W��$<�(~<��RSSvZujjjԧO�ZQu�@4 8m&&&jԩg��$�ď�1h ͟?_{768��@��g
�=�@���`)))5o6m�3����)��ѣƌ�J;wҿUTT��/KZR{��~a=�@��0o<*狔�iFɶ[ˎ�;T]]��OX�@�?K.ۈxN ����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������p����������pP���fl߾]��,{ァk۶mڿo5�����BTӦMӴiӴ|r D����B2e�|An�!D��y'tkΝ[A��� $***t5'
"���!駟�oa�D�����nΝ�:t֭[g�D����ШQ�0����6qD;@���� x M6v�(����Piizm�Z����4e�w��"��@��������̴ixf������[~-F���ٱc�&I�Z����2|n�!�?�$��@{[�HTɏ����#@h�����Ȏ����I�#�_m��(���F��/6Z3�z'\r,�����r!;�w2Z3j=~�G���Y�7"I$i����I.����p_"����?���p�����N`�����y�D���D�����?:��� �_����������������������� �G����ÿa���b7�����J�!���Bx���@0 ���Bo�����
����cG���������@`1C�����[���@0G����
����@`0C�����_���u�����V1 ���aC���X����>���W�` ���|�������`!���<�����S�`"���<�.�����`#���c�����`�?�����c�A����������C���4
?����c���� �p#����~���@0����?:���0���8&����_�M���Q1���J�h#����?���/`���7;����I����������q�7���a�w���Q����A����1�H���p
�!��#�<���8/#��@1Ul7��=S=K.4Z�?�E����_$i�@��������!���1�!E���4�?���`����P_�� ��������@��B���ă�1���0#���:�"����a�U,xb��F�Y1
[n��|��n
���#'��v��EH:`�x��b
��#��v����D��4�Y hi.i&�EΖv#��O�� H��4�IŶ�}:Ik��h��@�tZRF���#�(tXҙ��zZ ?�I3l7��q��@õ|ۍ�1,�G��puY�� �Ꮿ@�hJv#��x��xk$
v#�9��5�}_$��c �S#=+"K�{F�*m7`#�%H:NRS��p6I?sIՖ{A�p$I�$�I:QRv2$Z�@UJ*$]<��F�O4�����IENDB`