def withdraw(currency): if not is_logged_in(session): flash("Please log in to perform that action.", "error") return home_page("ltc_btc") if not config.is_valid_currency(currency): flash("Invalid Currency!", "error") return account_page() if request.method == 'GET': return account_page(withdraw=currency) elif request.method == 'POST': if 'amount' not in request.form or 'address' not in request.form: flash("Please enter an address and an amount!", "error") return account_page() try: total = string_to_currency_unit( request.form['amount'], config.get_multiplier(currency)) except: flash("Invalid amount!", "error") return account_page() if check_balance(currency, session['userid']) < total or total < 0: flash("Balance too low to execute withdrawal!", "error") return account_page() # TODO: add valid address checking adjustbalance(currency, session['userid'], -1 * total) co = CompletedOrder( currency + "_" + currency, "WITHDRAWAL", total, 0, session['userid'], is_withdrawal=True, withdrawal_address=request.form['address']) db_session.add(co) db_session.commit() flash("Deposit to " + request.form['address'] + " completed!", "success") return account_page()
def addorder(): """ Checks balance and essential stuff, generates an order ID then adds order to a redis queue. """ instrument = request.form['currency_pair'] if not is_logged_in(session): flash("Please log in to perform that action.", "error") return home_page(instrument) # They shouldn't be able to modify the trade pair, if it isnt valid either # I messed up somewhere or they are trying to do something wrong if not config.is_valid_instrument(instrument): flash("Unknown Error, contact the administrator!", "error") return home_page("ltc_btc") base_currency = request.form['currency_pair'].split("_")[0] quote_currency = request.form['currency_pair'].split("_")[1] try: rprice = Decimal(request.form['price']) ramount = string_to_currency_unit( request.form['amount'], config.get_multiplier(base_currency)) print(ramount) except Exception as e: print(e) flash("Please enter numerical values for price and amount!", "error") return home_page(instrument) if ramount < 1: # TODO: find a good amount for this flash("Transaction amount too low!", "error") return home_page(instrument) if rprice <= 0: flash("Price must be greater than 0!", "error") return home_page(instrument) getcontext().prec = 6 whole, dec = ExtendedContext.divmod( rprice * ramount / config.get_multiplier(base_currency), Decimal(1)) total = int( whole * config.get_multiplier(base_currency) + dec * config.get_multiplier(base_currency)) print("total: " + str(total)) uid = session['userid'] orderid = generate_password_hash(str(random.random())) instrument = request.form['currency_pair'] bidtable = instrument + "/bid" asktable = instrument + "/ask" if request.form['ordertype'] == 'buy': currency = quote_currency if check_balance(currency, session['userid']) < total: flash("Balance too low to execute order!", "error") return home_page(instrument) else: adjustbalance(currency, session['userid'], -1 * total) elif request.form['ordertype'] == 'sell': currency = base_currency if check_balance(currency, uid) < ramount: flash("Balance too low to execute order!", "error") return home_page(instrument) else: adjustbalance(currency, uid, -1 * ramount) else: # invalid order type, they must have been messing around flash("Unknown Error, contact the administrator!", "error") return home_page(instrument) redis.hmset(orderid, {"ordertype": request.form['ordertype'], "instrument": request.form['currency_pair'], "amount": ramount, "uid": uid, "price": rprice}) redis.rpush("order_queue", orderid) redis.sadd(str(uid) + "/orders", orderid) flash("Order placed successfully!","dismissable") return home_page(instrument)