-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathorders_details_validation.php
98 lines (78 loc) · 2.73 KB
/
orders_details_validation.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<?php
session_start();
require_once "paths.php";
require_once($pSharedFunctions);
if (isset($_POST['name'])) {
$data_valid = true;
$id = $_SESSION['user_id'];
// Wartości opcjonalne!
$city = $_POST['city'];
$_SESSION['od_city'] = $city; // do formularza rejestracji jako value
$name = $_POST['name'];
$_SESSION['od_name'] = $name; // do formularza rejestracji jako value
if ((strlen($name) < 2) || (strlen($name) > 20)) {
$data_valid = false;
$_SESSION['ve_name'] = 'is-invalid';
} else if (!ctype_alpha($name)) {
$data_valid = false;
$_SESSION['ve_name'] = 'is-invalid';
} else {
$_SESSION['ve_name'] = 'is-valid';
}
$address = $_POST['address'];
$_SESSION['od_address'] = $address; // do formularza rejestracji jako value
if ((strlen($address) < 3) || (strlen($address) > 20)) {
$data_valid = false;
$_SESSION['ve_address'] = 'is-invalid';
} else {
$_SESSION['ve_address'] = 'is-valid';
}
$phone = trim($_POST['phone']);
$_SESSION['od_phone'] = $phone; // do formularza rejestracji jako value
if (strlen($phone) != 9 && !preg_match("/^[0-9]$/", $phone)) {
$data_valid = false;
$_SESSION['ve_phone'] = 'is-invalid';
} else {
$_SESSION['ve_phone'] = 'is-valid';
}
if ($data_valid) {
try {
// Łączenie z bazą danych jeśli reszta danych jest poprawna
require_once "connect.php";
} catch (Exception $e) {
$_SESSION['general_message'] .= ErrorMessageGenerator("Błąd serwera!");
$data_valid = false;
}
// Pobrac kody promocyjne i sprawdzic czy wprowadzony kod jest poprwany, jak nie to kod ustawic na 'Brak'
$code = $_POST['code'];
$_SESSION['od_code'] = $code;
$sth = $dbh->query("SELECT code FROM discounts");
$foundCode = false;
while ($row = $sth->fetch()) {
if ($row['code'] == $code) {
$foundCode = true;
break;
}
}
if (!$foundCode) {
$code = "Brak";
}
$sth = $dbh->query("SELECT MAX(idOrders) as orderCount FROM orders");
$idOrders = $sth->fetch()['orderCount'] + 1;
$_SESSION['idOrders'] = $idOrders;
try {
// dodac rekord do tabeli pOrdersDetails
$dbh->query("INSERT INTO `ordersdetails`(`idOrders`, `name`, `city`, `address`, `phone`, `discountCode`, `status`) VALUES ($idOrders,'$name','$city','$address','$phone','$code','W trakcie realizacji')");
} catch (Exception $e) {
$_SESSION['general_message'] .= ErrorMessageGenerator("Błąd podczas dodawania do bazy danych");
$_SESSION['general_message'] .= ErrorMessageGenerator("$e");
header("Location: $pOrdersDetails");
exit();
}
header("Location: $pOrdersAdd");
exit();
}
header("Location: $pOrdersDetails");
exit();
}
header("Location: $pHome");