Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php session_start() ?>
- <html>
- <head>
- <link rel ="stylesheet" href = "BookieCSS.css">
- <title> More Details</title>
- </head>
- <body>
- <?php
- $user = "s4924120";
- $pass = "5b50422e33ba6259a49866513b21f3d3";
- $host = "127.0.0.1";
- $db = $user;
- $conn = mysqli_connect($host, $user, $pass, $db);
- if(mysqli_connect_error()) {
- echo "Failed to connect to MySQL: " . mysqli_connect_error();
- }
- ?>
- <h1>Bookie</h1>
- <?php
- if (isset($_SESSION["nameUser"])):?>
- <h2>Logged in as <?php echo $_SESSION["nameUser"] ?> </h2>
- <?php else:?>
- <h2> Logged in as a Guest</h2>
- <?php endif;?>
- <hr>
- <br>
- <form action = "ViewMoreDetails.php" method = "POST">
- <?php
- if (isset($_GET["bookID"])){
- $viewChoice = $_GET["bookID"];
- $query = "SELECT * FROM s4924120.book_tbl WHERE ISBN = '".$viewChoice."';";
- $result = mysqli_query($conn, $query);
- if (mysqli_num_rows($result) == 1){
- $row = mysqli_fetch_assoc($result);
- echo "<h2>".$row["book_name"]."</h2>";
- echo "<p>By ".$row["author"]."</p>";
- echo "<hr><br><br>";
- echo "<p>Category: ".$row["book_cat"]."<p>";
- echo "<br>";
- echo "<p>".$row["book_info"]."</p>";
- echo "<br>";
- echo "<p>Price: £".$row["book_price"]."</p>";
- echo "<br>";
- echo "<p>Stock Available: ".$row["book_stock"]."</p>";
- echo "<br>";
- echo "<p>Stock to order: ";
- echo "<br>";
- echo "<input type = 'number' name = 'stockPurchase'>";
- echo "<br>";
- echo "<input type = 'submit' id = 'mainButCss' name = 'orderBtn' value = 'Order'>";
- if (isset($_POST["orderBtn"])){
- $stockPurchase = $_POST["stockPurchase"];
- $storedStock = $row["book_stock"];
- if ($stockPurchase > $storedStock){
- echo "<script type = 'text/javascript'> alert('Cannot order more stock than is available'); </script>";
- $orderVal = false;
- }else{
- $orderVal = true;
- }
- if ($orderVal){
- $newStock = $row["book_stock"] - $stockPurchase;
- $query = "UPDATE s4924120.book_tbl SET book_stock = '".$newStock."' WHERE ISBN = '".$row["ISBN"]."';";
- $result = mysqli_query($conn, $query);
- if ($result) {
- $isbn = $row["ISBN"];
- $userID = $_SESSION["userID"];
- $query = "INSERT INTO s4924120.order_tbl (cust_id, ISBN, order_stock) VALUES ('$userID', '$isbn', $stockPurchase);";
- $result = mysqli_query($conn, $query);
- if ($result){
- mysqli_close($conn);
- header("Location: BookieHomepage.php");
- }
- }
- }
- }
- }
- }
- ?>
- </form>
- <form action = "BookieHomepage.php"><input type = "submit" name = "returnToPortalButton" id = "mainButCss" value = "Return to Main Page">
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement