File "placeorder.php"
Full Path: /home/quiczmwg/lightspringdigitals.com/admin/functions/placeorder.php
File size: 3.33 KB
MIME-type: text/x-php
Charset: utf-8
<?php
session_start();
include '../config.php';
if(isset($_POST["addProductBtn"])){
// $payment_id = mysqli_real_escape_string($con, $_POST['payment_id']);
if (!empty($_SESSION["product_ordering_cart"])){
$total = 0;
foreach ($_SESSION["product_ordering_cart"] as $keys => $values)
{
$total = $total += $values["item_quantity"] * $values["item_price"];
}}
// echo $total;
$name = mysqli_real_escape_string($conn, $_POST['name']);
$email = mysqli_real_escape_string($conn, $_POST['email']);
$phone = mysqli_real_escape_string($conn, $_POST['phone']);
$pay_method = mysqli_real_escape_string($conn, $_POST['pay_method']);
$address = mysqli_real_escape_string($conn, $_POST['address']);
$quantity= $values["item_quantity"];
$price = $values["item_price"];
$userid = md5(date("dhis").rand(1111,9999));
$tracking_no = "sharmacoder".rand(1111,9999).substr($phone,2);
$insert_query = "INSERT INTO order_items (tracking_no, userid, dname, email, phone, pay_method, address, qty, price, total) VALUES ('$tracking_no', '$userid', '$name', '$email', '$phone', '$pay_method', '$address', '$quantity', '$price', '$total' ) ";
$insert_query_run = mysqli_query($conn, $insert_query);
if($insert_query_run)
{
$deleteCartQuery = "DELETE FROM carts WHERE userid='$userid' ";
$deleteCartQuery_run = mysqli_query($conn, $deleteCartQuery);
// $_SESSION["placeOrderBtn"] = "Order placed Successfully";
echo '<script>alert ("Order placed Successfully")</script>';
echo '<script>window.location="../concept/my_orders.php"</script>';
// header('Location: my_orders.php');
die();
}
}{
echo '<script>alert ("Order not successfully placed")</script>';
}
?>
<!-- $tracking_no = "sharmacoder".rand(1111,9999).substr($phone,2);
$insert_query = "INSERT INTO orders (tracking_no, userid, name, email, phone, address, pincode, total_price, payment_mode) VALUES ('$tracking_no', '$userid', '$name', '$email', '$phone', '$address', '$pincode', '$total', '$payment_mode' ) ";
$insert_query_run = mysqli_query($con, $insert_query);
if($insert_query_run)
{
$order_id = mysqli_insert_id($con);
foreach ($_SESSION["design_shoping_cart"] as $keys => $values){
$prod_name = $values["item_name"];
$prod_qty = $values["item_quantity"];
$price = $values["item_price"];
$insert_items_query = "INSERT INTO order_items (order_id, prod_name, qty, price) VALUES ('$order_id', '$prodi_name', '$prod_qty', '$price')";
$insert_items_query_run = mysqli_query($con, $insert_items_query);
}
$deleteCartQuery = "DELETE FROM carts WHERE userid='$userid' ";
$deleteCartQuery_run = mysqli_query($con, $deleteCartQuery);
// $_SESSION["placeOrderBtn"] = "Order placed Successfully";
echo '<script>alert ("Order placed Successfully")</script>';
echo '<script>window.location="../my_orders.php"</script>';
// header('Location: my_orders.php');
die();
} -->