1 <?php
2
3 session_start();
4 require "admin/includes/functions.php";
5 require "admin/includes/db.php";
6
7 if($_SERVER['REQUEST_METHOD'] == 'POST') {
8
9 if(isset($_POST['order_info'])) {
10
11 $values = "VALUES";
12
13 $name = htmlentities($_POST['name'], ENT_QUOTES, 'UTF-8');// preg_replace("#[^a-zA-Z ]#", "", $_POST['name']);
14 $addr = htmlentities($_POST['addr'], ENT_QUOTES, 'UTF-8');//preg_replace("#[^a-zA-Z0-9 ]#", "", $_POST['addr']);
15 $email = htmlentities($_POST['email'], ENT_QUOTES, 'UTF-8');
16 $phone = preg_replace("#[^0-9]#", "", $_POST['phone']);
17 $food = htmlentities($_POST['food'], ENT_QUOTES, 'UTF-8');
18 $price = htmlentities($_POST['price'], ENT_QUOTES, 'UTF-8');
19
20 if($name != "" && $addr != "" && $email != "" && $phone != "" && $food != "" && $price != "") {
21
22 $insert = $db->query("INSERT INTO basket(customer_name, contact_number, address, email, total, status, date_made) VALUES('".$name."', '".$phone."', '".$addr."', '".$email."', '".$price."', 'pending', NOW())");
23
24 if($insert) {
25
26 $ins_id = $db->insert_id;
27
28 $food_array = explode(",", $food);
29
30 foreach($food_array as $key => $value) {
31
32 if(trim($value) != "") {
33
34 $exp = explode("-", $value);
35
36 $values .= "('".$ins_id."', '".$exp[0]."', '".$exp[1]."'),";
37
38 }
39
40 }
41
42 $values = rtrim($values, ",");
43
44 $save_item = $db->query("INSERT INTO items(order_id, food, qty) ".$values." ");
45
46 if($save_item) {
47
48 $_SESSION['order_id'] = "ORD_".$ins_id;
49 $_SESSION['name'] = $name;
50
51 echo "success";
52
53 }
54
55 }
56
57 }else{
58
59 echo "Incomplete Form Data";
60
61 }
62
63
64 }elseif(isset($_POST['item_id_qty']) && $_POST['item_id_qty'] != "") {
65
66 $explode_var = explode("_", htmlentities($_POST['item_id_qty']));
67
68 $item_to_adjust = $explode_var[1];
69 $quantity = $explode_var[0];
70
71 if ($quantity >= 100) { $quantity = 99; }
72 if ($quantity < 1) { $quantity = 1; }
73 if ($quantity == "") { $quantity = 1; }
74 $i = 0;
75 foreach ($_SESSION["cart_array"] as $each_item) {
76 $i++;
77 while (list($key, $value) = each($each_item)) {
78 if ($key == "item_id" && $value == $item_to_adjust) {
79 // That item is in cart already so let's adjust its quantity using array_splice()
80 array_splice($_SESSION["cart_array"], $i-1, 1, array(array("item_id" => $item_to_adjust, "quantity" => $quantity)));
81 } // close if condition
82 } // close while loop
83 }
84
85 $sql = $db->query("SELECT * FROM food WHERE id='$item_to_adjust' LIMIT 1");
86 while ($row = $sql->fetch_assoc()) {
87
88 $price = $row['food_price'];
89
90 }
91 $pricetotal = $price * $quantity;
92
93 echo $pricetotal;
94
95 }
96
97 }
98
99 ?>
