Untitled

<?php
  require "../auth.php";
?>
<html>
<head>
    <meta charset="utf-8">
    <title>Измененеие данных</title>
</head>
<body>
<?php
include_once("../dbconnect.php");

$id = $_GET["id"];

$query = "SELECT * FROM orders WHERE order_id='$id'";
$result = mysql_query($query);

$row = mysql_fetch_assoc($result);

?>

<form method="post" action="editorder.php">
<table>

    <tr><td>Имя клиента(id&nbsp;<?php echo $row['client_id'] ?>):</td></tr>
    <?php $result = mysql_query(" SELECT * FROM clients ORDER BY client_id DESC"); ?>
<tr><td><select required name="client_id">
    <?php while($row = mysql_fetch_assoc($result)){ ?>
    <option value="<?php echo $row['client_id'] ?>" >(id&nbsp;<?php echo $row['client_id'] ?>)&nbsp;<?php echo $row['client_name'] ?></option><?php } ?>
    </select></td></tr>
    <?php
        $id = $_GET["id"];
        $result = mysql_query("SELECT * FROM orders WHERE order_id='$id'");
        $row = mysql_fetch_assoc($result); ?>

<tr><td>Техника(id&nbsp;<?php echo $row['tech_id'] ?>):</td></tr>
    <?php $result = mysql_query(" SELECT * FROM tech ORDER BY tech_id DESC"); ?>
<tr><td><select required name="tech_id">
    <?php while($row = mysql_fetch_assoc($result)){ ?>
    <option value="<?php echo $row['tech_id'] ?>" >(id&nbsp;<?php echo $row['tech_id'] ?>)&nbsp;<?php echo $row['prod'] ?>&nbsp;<?php echo $row['model'] ?></option><?php } ?>
</select></td></tr>
    <?php
        $id = $_GET["id"];
        $result = mysql_query("SELECT * FROM orders WHERE order_id='$id'");
        $row = mysql_fetch_assoc($result); ?>

<tr><td>Мастер(id&nbsp;<?php echo $row['rm_id'] ?>):</td></tr>
    <?php $result = mysql_query(" SELECT * FROM repairmans "); ?>
<tr><td><select required name="rm_id">
    <?php while($row = mysql_fetch_assoc($result)){ ?>
    <option value="<?php echo $row['rm_id'] ?>" >(id&nbsp;<?php echo $row['rm_id'] ?>)&nbsp;<?php echo $row['rm_name'] ?></option><?php } ?>
</select></td></tr>
    <?php
        $id = $_GET["id"];
        $result = mysql_query("SELECT * FROM orders WHERE order_id='$id'");
        $row = mysql_fetch_assoc($result); ?>

<tr><td>Платеж(id&nbsp;<?php echo $row['payment_id'] ?>):</td></tr>
    <?php $result = mysql_query(" SELECT * FROM payments ORDER BY payment_id DESC"); ?>
<tr><td><select required name="payment_id">
    <?php while($row = mysql_fetch_assoc($result)){ ?>
    <option value="<?php echo $row['payment_id'] ?>" >(id&nbsp;<?php echo $row['payment_id'] ?>)&nbsp;<?php echo $row['summ'] ?></option><?php } ?>
</select></td></tr>
    <?php
        //$id = $_GET["id"];
        //$result = mysql_query("SELECT * FROM orders WHERE order_id='$id'");
        //$row = mysql_fetch_assoc($result); ?>


    <tr><td>Статус заказа(<?php if($row['order_status'] == 1){  echo "Выполнен";    }   else{   echo "Не выполнен";   } ?>):</td></tr>
    <tr><td><select name="order_status">
        <option></option>
        <option value='1'>Выполнен</option>
        <option value='0'>Не выполнен</option>
    </select></td></tr>


<tr><td><input type="submit" name="save" value="Сохранить"></td></tr>
</table>
</form>
<?php
        include_once("../dbconnect.php");

        echo $id;
        if(isset($_POST['save'])){

        $client_id = strip_tags(trim($_POST['client_id']));
        $tech_id = strip_tags(trim($_POST['tech_id']));
        $rm_id = strip_tags(trim($_POST['rm_id']));
        $payment_id = strip_tags(trim($_POST['payment_id']));
        //$datev = strtotime($_POST["datev"]);
        //$datev = date('Y-m-d H:i:s', $datev);
        $order_status = strip_tags(trim($_POST['order_status']));

        mysql_query(" UPDATE orders SET client_id='$client_id',tech_id='$tech_id',rm_id='$rm_id',payment_id='$payment_id',order_status='$order_status' WHERE order_id='$id' ");

        mysql_close();

        //header("Location: orders.php");
}
?>
    <a href="orders.php">Вернуться назад</a>
</body>
</html>