'bg-primary-subtle text-primary', 'UNDER_REVIEW' => 'bg-info-subtle text-info-emphasis', 'ADDITIONAL_INFO_REQUIRED' => 'bg-warning-subtle text-warning-emphasis', 'APPROVED' => 'bg-success-subtle text-success-emphasis', 'REJECTED' => 'bg-danger-subtle text-danger-emphasis', 'CANCELLED' => 'bg-dark-subtle text-dark', default => 'bg-light text-dark', }; } function dbMode(): string { global $pdo, $conn; if (isset($pdo) && $pdo instanceof PDO) return 'pdo'; if (isset($conn) && $conn instanceof mysqli) return 'mysqli'; die('Database connection not available in config.php'); } function dbFetchAllRows(string $sql, array $params = []): array { global $pdo, $conn; if (dbMode() === 'pdo') { $stmt = $pdo->prepare($sql); $stmt->execute($params); return $stmt->fetchAll(PDO::FETCH_ASSOC); } $stmt = $conn->prepare($sql); if (!$stmt) return []; if ($params) { $types = ''; $bind = []; foreach ($params as $p) { $types .= is_int($p) ? 'i' : 's'; $bind[] = $p; } $stmt->bind_param($types, ...$bind); } $stmt->execute(); $res = $stmt->get_result(); $rows = $res ? $res->fetch_all(MYSQLI_ASSOC) : []; $stmt->close(); return $rows; } function dbFetchOneRow(string $sql, array $params = []): ?array { $rows = dbFetchAllRows($sql, $params); return $rows[0] ?? null; } function dbExecuteStatement(string $sql, array $params = []): bool { global $pdo, $conn; if (dbMode() === 'pdo') { $stmt = $pdo->prepare($sql); return $stmt->execute($params); } $stmt = $conn->prepare($sql); if (!$stmt) return false; if ($params) { $types = ''; $bind = []; foreach ($params as $p) { $types .= is_int($p) ? 'i' : 's'; $bind[] = $p; } $stmt->bind_param($types, ...$bind); } $ok = $stmt->execute(); $stmt->close(); return $ok; } function dbFetchOneValue(string $sql, array $params = []): mixed { $row = dbFetchOneRow($sql, $params); if (!$row) return null; return array_values($row)[0] ?? null; } function columnExists(string $table, string $column): bool { static $cache = []; $key = $table . '.' . $column; if (array_key_exists($key, $cache)) return $cache[$key]; $exists = dbFetchOneValue("SELECT COUNT(*) AS cnt FROM information_schema.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = ? AND COLUMN_NAME = ?", [$table, $column]); $cache[$key] = ((int)$exists > 0); return $cache[$key]; } function verificationTelegramSelectSql(): string { $parts = []; if (columnExists('bot_int_transfer_verifications', 'telegram_chat_id')) { $parts[] = "v.telegram_chat_id"; } else { $parts[] = "'' AS telegram_chat_id"; } if (columnExists('bot_int_transfer_verifications', 'telegram_user_id')) { $parts[] = "v.telegram_user_id"; } else { $parts[] = "'' AS telegram_user_id"; } if (columnExists('bot_int_transfer_verifications', 'telegram_username')) { $parts[] = "v.telegram_username"; } else { $parts[] = "'' AS telegram_username"; } return ', ' . implode(', ', $parts); } function fetchVerificationRowById(int $id): ?array { return dbFetchOneRow( "SELECT v.*, u.name AS user_name, u.email AS user_email, u.mobile AS user_mobile" . verificationTelegramSelectSql() . " " . " FROM bot_int_transfer_verifications v " . " LEFT JOIN users u ON u.id = v.user_id " . " WHERE v.id = ? LIMIT 1", [$id] ); } function customerTelegramChatId(array $row): string { foreach (['telegram_chat_id', 'telegram_user_id'] as $key) { $value = trim((string)($row[$key] ?? '')); if ($value !== '') return $value; } return ''; } function customerTelegramIdentitySummary(array $row): string { $chatId = trim((string)($row['telegram_chat_id'] ?? '')); $userId = trim((string)($row['telegram_user_id'] ?? '')); $username = trim((string)($row['telegram_username'] ?? '')); $parts = []; if ($chatId !== '') $parts[] = 'Chat ID: ' . $chatId; if ($userId !== '') $parts[] = 'User ID: ' . $userId; if ($username !== '') $parts[] = 'Username: @' . ltrim($username, '@'); return $parts ? implode(' | ', $parts) : '—'; } function dataRow(string $label, string $value): void { echo '
' . e($label) . '
' . e($value) . '
'; } function maskDocumentNumber(?string $value): string { $value = trim((string)$value); if ($value === '') return '—'; $len = strlen($value); if ($len <= 4) return str_repeat('*', max(0, $len - 1)) . substr($value, -1); return str_repeat('*', max(0, $len - 4)) . substr($value, -4); } function normalizeServerPreviewPath(?string $path): ?string { $path = trim((string)$path); if ($path === '') return null; if (preg_match('~^https?://~i', $path)) return $path; $publicPath = str_replace('\\', '/', $path); if (str_starts_with($publicPath, __DIR__)) { $publicPath = substr($publicPath, strlen(__DIR__)); } if (!str_starts_with($publicPath, '/')) { $publicPath = '/' . ltrim($publicPath, '/'); } return $publicPath; } function previewType(?string $path, string $title): string { $path = strtolower((string)$path); $title = strtolower($title); if (str_contains($title, 'video') || preg_match('/\.(mp4|mov|webm|m4v|3gp)$/', $path)) return 'video'; if (preg_match('/\.(jpg|jpeg|png|gif|webp)$/', $path)) return 'image'; return 'other'; } function telegramApiToken(): string { global $token; if (isset($token) && trim((string)$token) !== '') { return trim((string)$token); } return ''; } function sendTelegramMessageToCustomer(string $chatId, string $message, ?array $replyMarkup = null): array { $token = telegramApiToken(); if ($token === '') { return ['ok' => false, 'error' => 'Telegram bot token not available.']; } $payload = [ 'chat_id' => $chatId, 'text' => $message, 'parse_mode' => 'HTML', 'disable_web_page_preview' => true, ]; if ($replyMarkup) { $payload['reply_markup'] = json_encode($replyMarkup, JSON_UNESCAPED_UNICODE); } $ch = curl_init("https://api.telegram.org/bot{$token}/sendMessage"); curl_setopt_array($ch, [ CURLOPT_RETURNTRANSFER => true, CURLOPT_POST => true, CURLOPT_POSTFIELDS => $payload, CURLOPT_TIMEOUT => 30, ]); $response = curl_exec($ch); $curlErr = curl_error($ch); $httpCode = (int)curl_getinfo($ch, CURLINFO_HTTP_CODE); curl_close($ch); if ($response === false) { return ['ok' => false, 'error' => 'cURL error: ' . $curlErr]; } $decoded = json_decode($response, true); if ($httpCode !== 200 || !is_array($decoded) || empty($decoded['ok'])) { return ['ok' => false, 'error' => $decoded['description'] ?? ('Telegram API HTTP ' . $httpCode)]; } return ['ok' => true]; } function buildCustomerStatusMessage(array $row, string $status, string $officerMessage, string $reviewedBy): string { $customerName = trim((string)($row['full_name'] ?: $row['user_name'] ?: 'Customer')); $reference = trim((string)($row['reference_code'] ?? '—')); $statusLabel = formatStatusLabel($status); $serviceEnabled = (int)($row['service_enabled'] ?? 0) === 1; $headline = match ($status) { 'APPROVED' => '✅ International Transfer Verification Approved', 'REJECTED' => '❌ International Transfer Verification Not Approved', 'ADDITIONAL_INFO_REQUIRED' => '📌 Additional Information / Re-Upload Required', 'UNDER_REVIEW' => '🔎 Verification Under Review', 'CANCELLED' => '⛔ Verification Request Cancelled', default => '📄 Verification Status Update', }; $serviceLine = $serviceEnabled ? "Service Access: International Transfer service has been enabled on your account.\n" : "Service Access: International Transfer service is currently not enabled on your account.\n"; $defaultMessage = match ($status) { 'APPROVED' => 'We are pleased to inform you that your International Transfer verification request has been approved successfully. You may now proceed to use International Transfer services through your FinoviaPay Telegram banking channel, subject to your available account limits and applicable service controls.', 'REJECTED' => 'We regret to inform you that your International Transfer verification request could not be approved at this time. Kindly review the officer remarks below carefully. You may submit a fresh verification request once the required corrections have been completed.', 'ADDITIONAL_INFO_REQUIRED' => 'Your verification request has been reviewed and additional information is required before we can proceed further. Please review the officer remarks below carefully and complete the requested re-upload / correction at the earliest convenience.', 'UNDER_REVIEW' => 'Your verification request has been received successfully and is currently under review by our Compliance Department. You will be notified once the review process has been completed.', 'CANCELLED' => 'Your International Transfer verification request has been marked as cancelled. If this was not expected, please contact FinoviaPay Customer Care for assistance.', default => 'Your International Transfer verification request has been updated. Please review the latest status and officer remarks below.', }; $officerMessage = trim($officerMessage) !== '' ? trim($officerMessage) : $defaultMessage; return $headline . "\n\n" . 'Dear ' . e($customerName) . ",\n\n" . 'Reference ID: ' . e($reference) . "\n" . 'Current Status: ' . e($statusLabel) . "\n" . $serviceLine . "\n" . e($officerMessage) . "\n\n" . 'Reviewed By: ' . e($reviewedBy) . "\n" . 'Support Note: If you require any assistance, please contact FinoviaPay Customer Care through the Telegram banking desk and quote your reference ID above.' . "\n\n" . '— FinoviaPay Compliance Department\nWorldwide Digital Internet Banking'; } $id = (int)($_GET['id'] ?? $_POST['id'] ?? 0); if ($id <= 0) die('Invalid verification request ID.'); $successMsg = ''; $errorMsg = ''; $warningMsg = ''; $row = fetchVerificationRowById($id); if (!$row) die('Verification request not found.'); if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['update_verification'])) { $newStatus = trim((string)($_POST['status'] ?? '')); $adminNotes = trim((string)($_POST['admin_notes'] ?? '')); $officerMessage = trim((string)($_POST['officer_message'] ?? '')); $notifyCustomer = isset($_POST['notify_customer']) ? 1 : 0; $serviceEnabled = isset($_POST['service_enabled']) ? 1 : 0; $reviewedBy = (string)($_SESSION['agent_name'] ?? $_SESSION['admin_name'] ?? $_SESSION['username'] ?? 'Admin Officer'); $allowed = ['PENDING_REVIEW','UNDER_REVIEW','ADDITIONAL_INFO_REQUIRED','APPROVED','REJECTED','CANCELLED']; if (!in_array($newStatus, $allowed, true)) { $errorMsg = 'Invalid status selected.'; } else { if ($newStatus === 'APPROVED') { $serviceEnabled = 1; } if (in_array($newStatus, ['REJECTED', 'ADDITIONAL_INFO_REQUIRED', 'CANCELLED', 'PENDING_REVIEW', 'UNDER_REVIEW'], true) && !isset($_POST['service_enabled'])) { $serviceEnabled = 0; } $historyRemarks = trim($adminNotes); if ($officerMessage !== '') { $historyRemarks .= ($historyRemarks !== '' ? "\n\n" : '') . 'Customer Message: ' . $officerMessage; } if ($historyRemarks === '') { $historyRemarks = 'Status updated from officer review panel.'; } $ok = dbExecuteStatement( "UPDATE bot_int_transfer_verifications SET status = ?, service_enabled = ?, admin_notes = ?, reviewed_by = ?, reviewed_at = NOW() WHERE id = ? LIMIT 1", [$newStatus, $serviceEnabled, $adminNotes, $reviewedBy, $id] ); if ($ok) { dbExecuteStatement( "INSERT INTO bot_int_transfer_verification_status_history (verification_id, status_code, status_title, remarks, changed_by, created_at) VALUES (?, ?, ?, ?, ?, NOW())", [$id, $newStatus, formatStatusLabel($newStatus), $historyRemarks, $reviewedBy] ); $successMsg = 'Verification request updated successfully.'; $chatId = customerTelegramChatId($row); if ($notifyCustomer && $chatId !== '') { $notifyRow = $row; $notifyRow['service_enabled'] = $serviceEnabled; $result = sendTelegramMessageToCustomer( $chatId, buildCustomerStatusMessage($notifyRow, $newStatus, $officerMessage, $reviewedBy), [ 'inline_keyboard' => [ [ ['text' => '📊 Check Verification Status', 'callback_data' => 'int_transfer_verification_status'], ], [ ['text' => '🆘 Speak with Customer Service', 'callback_data' => 'talk_to_agent'], ], [ ['text' => '🏦 Back to Main Menu', 'callback_data' => 'main_menu'], ], ] ] ); if ($result['ok']) { $successMsg .= ' Customer Telegram notification sent successfully.'; } else { $warningMsg = 'Verification was updated, but Telegram notification could not be delivered: ' . ($result['error'] ?? 'Unknown error'); } } elseif ($notifyCustomer && $chatId === '') { $warningMsg = 'Verification was updated, but no Telegram chat identity was saved on this verification request. Please ensure the customer submits a fresh request after the Telegram identity columns are enabled and mapped in the bot flow.'; } $row = fetchVerificationRowById($id); } else { $errorMsg = 'Unable to update verification request.'; } } } $historyRows = dbFetchAllRows( "SELECT * FROM bot_int_transfer_verification_status_history WHERE verification_id = ? ORDER BY id DESC", [$id] ); $customerPreviewMessage = buildCustomerStatusMessage( $row, (string)($row['status'] ?? 'PENDING_REVIEW'), '', (string)($row['reviewed_by'] ?: 'FinoviaPay Compliance Officer') ); ?> International Transfer Verification View
Back to Requests Compliance Review Record

International Transfer Verification View

Review AML details, uploaded verification materials, officer notes, customer notification message, and service activation status from one page.
Service Access
Submitted
Reviewed
Telegram ID
Customer & AML Information
Identity Document Information
Uploaded Verification Materials
<?= e($title) ?> preview
Telegram File ID
Server Path
Review & Update
>
Use this for re-upload instructions, approval wording, rejection reason, or any compliance briefing you want the customer to receive.
Notification behavior: Approved requests automatically enable the service. Rejected / Re-upload / Cancelled statuses keep service access disabled unless you manually change it later.
Customer Message Preview
Status Timeline
No status history available yet.
Changed by: