Uploaded the files.

2024-05-17 16:57:41 -04:00 · 2024-05-17 16:57:41 -04:00 · 37661b3ee7
commit 37661b3ee7
374 changed files with 90632 additions and 0 deletions
--- a/checkout_process.php
+++ b/checkout_process.php
@ -0,0 +1,89 @@
+<?php
+session_start();
+include "db.php";
+if (isset($_SESSION["uid"])) {
+
+	$f_name = $_POST["firstname"];
+	$email = $_POST['email'];
+	$address = $_POST['address'];
+    $city = $_POST['city'];
+    $state = $_POST['state'];
+    $zip= $_POST['zip'];
+    $cardname= $_POST['cardname'];
+    $cardnumber= $_POST['cardNumber'];
+    $expdate= $_POST['expdate'];
+    $cvv= $_POST['cvv'];
+    $user_id=$_SESSION["uid"];
+    $cardnumberstr=(string)$cardnumber;
+    $total_count=$_POST['total_count'];
+    $prod_total = $_POST['total_price'];
+    
+    
+    $sql0="SELECT order_id from `orders_info`";
+    $runquery=mysqli_query($con,$sql0);
+    if (mysqli_num_rows($runquery) == 0) {
+        echo( mysqli_error($con));
+        $order_id=1;
+    }else if (mysqli_num_rows($runquery) > 0) {
+        $sql2="SELECT MAX(order_id) AS max_val from `orders_info`";
+        $runquery1=mysqli_query($con,$sql2);
+        $row = mysqli_fetch_array($runquery1);
+        $order_id= $row["max_val"];
+        $order_id=$order_id+1;
+        echo( mysqli_error($con));
+    }
+
+	$sql = "INSERT INTO `orders_info` 
+	(`order_id`,`user_id`,`f_name`, `email`,`address`, 
+	`city`, `state`, `zip`, `cardname`,`cardnumber`,`expdate`,`prod_count`,`total_amt`,`cvv`) 
+	VALUES ($order_id, '$user_id','$f_name','$email', 
+    '$address', '$city', '$state', '$zip','$cardname','$cardnumberstr','$expdate','$total_count','$prod_total','$cvv')";
+
+
+    if(mysqli_query($con,$sql)){
+        $i=1;
+        $prod_id_=0;
+        $prod_price_=0;
+        $prod_qty_=0;
+        while($i<=$total_count){
+            $str=(string)$i;
+            $prod_id_+$str = $_POST['prod_id_'.$i];
+            $prod_id=$prod_id_+$str;		
+            $prod_price_+$str = $_POST['prod_price_'.$i];
+            $prod_price=$prod_price_+$str;
+            $prod_qty_+$str = $_POST['prod_qty_'.$i];
+            $prod_qty=$prod_qty_+$str;
+            $sub_total=(int)$prod_price*(int)$prod_qty;
+            $sql1="INSERT INTO `order_products` 
+            (`order_pro_id`,`order_id`,`product_id`,`qty`,`amt`) 
+            VALUES (NULL, '$order_id','$prod_id','$prod_qty','$sub_total')";
+            if(mysqli_query($con,$sql1)){
+                $del_sql="DELETE from cart where user_id=$user_id";
+                if(mysqli_query($con,$del_sql)){
+                    echo"<script>window.location.href='order_successful.php'</script>";
+                }else{
+                    echo(mysqli_error($con));
+                }
+
+            }else{
+                echo(mysqli_error($con));
+            }
+            $i++;
+
+
+        }
+    }else{
+
+        echo(mysqli_error($con));
+        
+    }
+    
+}else{
+    echo"<script>window.location.href='index.php'</script>";
+}
+	
+
+
+
+
+?>