PageRenderTime 56ms CodeModel.GetById 28ms RepoModel.GetById 0ms app.codeStats 0ms

/src/htdocs/plugins/class.ib.avangard.php

https://github.com/aig/ofx
PHP | 229 lines | 152 code | 48 blank | 29 comment | 15 complexity | 132776ce268f3367386301131d98645c MD5 | raw file
    

  1. <?php
    2. 

  2. /*
    3. 

  3.  * Copyright (c) AIG
    4. 

  4.  * aignospam at gmail.com
    5. 

  5.  *
    6. 

  6.  * Redistribution and use in source and binary forms, with or without
    7. 

  7.  * modification, are permitted provided that the following conditions
    8. 

  8.  * are met:
    9. 

  9.  * 1. Redistributions of source code must retain the above copyright
    10. 

  10.  *    notice, this list of conditions and the following disclaimer.
    11. 

  11.  * 2. Redistributions in binary form must reproduce the above copyright
    12. 

  12.  *    notice, this list of conditions and the following disclaimer in the
    13. 

  13.  *    documentation and/or other materials provided with the distribution.
    14. 

  14.  *
    15. 

  15.  * THIS SOFTWARE IS PROVIDED BY AUTHOR AND CONTRIBUTORS ``AS IS'' AND
    16. 

  16.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    17. 

  17.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    18. 

  18.  * ARE DISCLAIMED.  IN NO EVENT SHALL AUTHOR OR CONTRIBUTORS BE LIABLE
    19. 

  19.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    20. 

  20.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
    21. 

  21.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
    22. 

  22.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    23. 

  23.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
    24. 

  24.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
    25. 

  25.  * SUCH DAMAGE.
    26. 

  26.  */
    27. 

  27. 

  28. class IB_AVANGARD extends IB
    29. 

  29. {
    30. 

  30.   private $_account_list;
    31. 

  31.   private $_main_page;
    32. 

  32. 

  33.   function __construct() {
    34. 

  34.     parent::__construct("avangard");
    35. 

  35.     $this->_account_list = null;
    36. 

  36.   }
    37. 

  37. 

  38.   function login($user, $fish) {
    39. 

  39.     // try to log in.
    40. 

  40.     $result = $this->curlLogin($user, $fish);
    41. 

  41. 

  42.     if (!$result) return false;
    43. 

  43. 

  44.     if (!preg_match('/window.location="(faces\/pages\/firstpage\?ticket=.*?)"/', $result, $match)) {
    45. 

  45.         return false;
    46. 

  46.     }
    47. 

  47. 

  48.     // fetch main IB page.
    49. 

  49.     $result = $this->curlMain($match[1]);
    50. 

  50. 

  51.     $this->_main_page  = iconv('cp1251', 'utf-8', html_entity_decode($result, ENT_COMPAT, 'cp1251'));
    52. 

  52. 

  53.     $this->_account_list = array();
    54. 

  54.     
    55. 

  55.     if (preg_match_all('/>((?:40817|42307|42306)\d{3}\d{12})/', $this->_main_page, $matches)) {
    56. 

  56.       foreach ($matches[1] as $account_id) {
    57. 

  57.         $this->_account_list[] = new BankAccount($account_id);
    58. 

  58.       }
    59. 

  59.     }
    60. 

  60. 

  61.     return true;
    62. 

  62.   }
    63. 

  63. 

  64.   private function getStateToken($page) {
    65. 

  65.     if (preg_match('/name="oracle\.adf\.faces\.STATE_TOKEN"\s+value="(\d+)"/', $page, $match)) {
    66. 

  66.       return $match[1];
    67. 

  67.     }
    68. 

  68. 

  69.     return false;
    70. 

  70.   }
    71. 

  71. 

  72.   public function getAccountBalance($account_id, $inctran = false) {
    73. 

  73.     if (!preg_match('/' 
    74. 

  74.                   . $account_id
    75. 

  75.                   . '.*?"Детальная информация по счету".*?submitForm\(\'f\'\,1\,\{source:\'(.*?)\'\}\).*?"Выписка по счету"/', $this->_main_page, $action_match)) 
    76. 

  76.     {
    77. 

  77.       throw new Exception("Unknown bank account: $account_id");
    78. 

  78.     }
    79. 

  79. 

  80.     $source = $action_match[1];
    81. 

  81. 

  82.     $state_token = $this->getStateToken($this->_main_page);
    83. 

  83. 

  84.     $ch = curl_init();
    85. 

  85.     curl_setopt($ch, CURLOPT_URL, "https://www.avangard.ru/ibAvn/faces/pages/accounts/all_acc.jspx");
    86. 

  86.     curl_setopt($ch, CURLOPT_POST, 1);
    87. 

  87.     curl_setopt($ch, CURLOPT_POSTFIELDS, "oracle.adf.faces.FORM=f&"
    88. 

  88.                                         ."oracle.adf.faces.STATE_TOKEN=$state_token&"
    89. 

  89.                                         ."source=" . urlencode($source));
    90. 

  90.     $result = $this->curlExec($ch);
    91. 

  91. 

  92.     $page  = iconv('cp1251', 'utf-8', html_entity_decode($result, ENT_COMPAT, 'cp1251'));
    93. 

  93. 

  94.     if (!preg_match('/' 
    95. 

  95.                   . $account_id 
    96. 

  96.                   . '<\/label><\/td><td class="x2p x62"><span style="display:none;">\-?[\d\s]+.\d+<\/span><div><\/div>'
    97. 

  97.                   . '<label for="f:leftAccTbl:0:selLeftAcc">\s*(\-?[\d\s]+.\d+)</', $page, $match)) 
    98. 

  98.     {
    99. 

  99.       return false;
    100. 

  100.     }
    101. 

  101. 

  102.     $info = array();
    103. 

  103. 

  104.     $info['balance'] = preg_replace("/\s/", '', $match[1]);
    105. 

  105. 

  106.     if (empty($inctran)) {
    107. 

  107.       return $info;
    108. 

  108.     }
    109. 

  109. 

  110.     // GnuCash does not set <INCTRAN> INCLUDE field to N, when check balance
    111. 

  111.     if ($inctran == '19700101') {
    112. 

  112.       return $info;
    113. 

  113.     }
    114. 

  114. 

  115.     $start_date = strftime('%d.%m.%Y', strtotime("$inctran" . "000000"));
    116. 

  116. 

  117.     if (!preg_match('/name="f:finishdate" value="(\d+\.\d+\.\d+)"/', $page, $match)) {
    118. 

  118.       return $info;
    119. 

  119.     }
    120. 

  120. 

  121.     $finish_date = $match[1];
    122. 

  122. 

  123.     $regexp = '/' . $account_id . '.*?submitForm\(\\\\\'f\\\\\'\,1\,\{source:\\\\\'(.*?)\\\\\'\}\).*?"Показать"/s';
    124. 

  124. 

  125.     if (!preg_match($regexp, $page, $match)) {
    126. 

  126.       return $info;
    127. 

  127.     }
    128. 

  128. 

  129.     $source = urlencode($match[1]);
    130. 

  130. 

  131.     $state_token = $this->getStateToken($page);
    132. 

  132. 

  133.     $fields = "f%3Astartdate=$start_date&"
    134. 

  134.              ."f%3Afinishdate=$finish_date&"
    135. 

  135.              ."f%3AleftAccTbl%3Aselected=0&"
    136. 

  136.              ."f%3AleftAccTbl%3ArangeStart=0&"
    137. 

  137.              ."f%3AleftCardTbl%3A_us=0&"
    138. 

  138.              ."f%3AleftCardTbl%3A_us=1&"
    139. 

  139.              ."f%3AleftCardTbl%3ArangeStart=0&"
    140. 

  140.              ."oracle.adf.faces.FORM=f&oracle.adf.faces.STATE_TOKEN=$state_token&"
    141. 

  141.              ."source=$source&"
    142. 

  142.              ."event=&"
    143. 

  143.              ."f%3AleftCardTbl%3A_sm=";
    144. 

  144. 

  145.     $ch = curl_init();
    146. 

  146.     curl_setopt($ch, CURLOPT_URL, "https://www.avangard.ru/ibAvn/faces/pages/accounts/acc_stat.jspx");
    147. 

  147.     curl_setopt($ch, CURLOPT_POST, 1);
    148. 

  148.     curl_setopt($ch, CURLOPT_POSTFIELDS, $fields);
    149. 

  149.     $result = $this->curlExec($ch);
    150. 

  150. 

  151.     $page  = iconv('cp1251', 'utf-8', html_entity_decode($result, ENT_COMPAT, 'cp1251'));
    152. 

  152. 

  153.     $info['trn_list'] = $this->parseTransactionList($page);
    154. 

  154. 

  155.     return $info;
    156. 

  156.   }
    157. 

  157. 

  158.   private function parseTransactionList($page) {
    159. 

  159.     $transaction_list = array();
    160. 

  160. 

  161.     if (!preg_match('/ПРОВЕДЕННЫЕ ПО КАРТСЧЕТУ ОПЕРАЦИИ(.*?)Исходящий остаток средств на картсчете/s', $page, $match)) {
    162. 

  162.       return $transaction_list;
    163. 

  163.     }
    164. 

  164. 

  165.     // $1: date, $2: ammount, $3: tr_datetime, $4: tr_card, $5: tr_amount, $6: currency, $7: tr_description
    166. 

  166.     $regexp = '/(\d{2}\.\d{2}\.\d{4})\s*<\/td>\s*<td[^>]+>\s*<\/td>.*?([\d ]+\.\d+).*?Покупка.*?(\d{2}\.\d{2}\.\d{4}\s\d{2}:\d{2}:\d{2}).*?Карта.*?\*(\d{4})\..*?Сумма.*?([\d ]+\.\d+).*?>(...)\..*?>Место\s([^<]+)/s';
    167. 

  167. 

  168.     if (preg_match_all($regexp, $match[1], $matches)) {
    169. 

  169.       for ($i = 0; $i < count($matches[0]); $i++) {
    170. 

  170.         $transaction = array();
    171. 

  171.         $transaction['trntype'] = 'POS';
    172. 

  172.         $transaction['dtposted'] = substr($matches[1][$i], 6, 4) 
    173. 

  173.                                  . substr($matches[1][$i], 3, 2) 
    174. 

  174.                                  . substr($matches[1][$i], 0, 2);
    175. 

  175.         $transaction['trnamt'] = '-' . preg_replace('/\s/', '', $matches[2][$i]);
    176. 

  176.     	$transaction['card'] = $matches[4][$i];
    177. 

  177.     	$transaction['orgamount'] = preg_replace('/\s/', '', $matches[5][$i]);
    178. 

  178.         $transaction['fitid'] = md5($matches[1][$i].$matches[2][$i].$matches[3][$i].$matches[4][$i].$matches[6][$i].$matches[7][$i]);
    179. 

  179.         $transaction['dtuser'] = $matches[3][$i];
    180. 

  180.         $transaction['origcurrency'] = $matches[6][$i];
    181. 

  181.         $transaction['name'] = $matches[7][$i];
    182. 

  182.         $transaction_list[] = $transaction;
    183. 

  183.       }
    184. 

  184.     }
    185. 

  185. 

  186.     return $transaction_list;
    187. 

  187.   }
    188. 

  188. 

  189.   function getAccountList() {
    190. 

  190.     return $this->_account_list;
    191. 

  191.   }
    192. 

  192. 

  193.   private function curlLogin($user, $fish) {
    194. 

  194.     $ch = curl_init();
    195. 

  195.     curl_setopt($ch, CURLOPT_URL, "http://www.avangard.ru/rus/index.wbp");
    196. 

  196.     $result = $this->curlExec($ch);
    197. 

  197. 

  198.     if (!preg_match('/<INPUT\s+value="login"\s+name="([^\"]+)"/i', $result, $match)) {
    199. 

  199.       return false;
    200. 

  200.     }
    201. 

  201. 

  202.     $login_name = $match[1];
    203. 

  203. 

  204.     $password = decryptPassword($user, CONFIG::getValue('ib.avangard', 'user.password'), $fish);
    205. 

  205. 

  206.     $ch = curl_init();
    207. 

  207.     curl_setopt($ch, CURLOPT_URL, "https://www.avangard.ru/client4/afterlogin");
    208. 

  208.     curl_setopt($ch, CURLOPT_POST, 1);
    209. 

  209.     curl_setopt($ch, CURLOPT_POSTFIELDS, "$login_name=login&"
    210. 

  210.                                         ."65783213-C4EC-46C3-AEF5-172B7C75C400.redirect=%2Frus%2Findex.wbp&"
    211. 

  211.                                         ."login_v=&"
    212. 

  212.                                         ."login=$user&"
    213. 

  213.                                         ."passwd_v=&"
    214. 

  214.                                         ."passwd=$password&"
    215. 

  215.                                         ."x=20&y=7");
    216. 

  216.     $result = $this->curlExec($ch);
    217. 

  217. 

  218.     return $result;
    219. 

  219.   }
    220. 

  220. 

  221.   private function curlMain($url) {
    222. 

  222.     $ch = curl_init();
    223. 

  223.     curl_setopt($ch, CURLOPT_URL, "https://www.avangard.ru/ibAvn/" . $url);
    224. 

  224.     $result = $this->curlExec($ch);
    225. 

  225. 

  226.     return $result;
    227. 

  227.   }
    228. 

  228. }
    229. 

  229. ?>
    230.