TwoTalesDev/4WDCSA.co.za
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Restore: Recover src/processors folder accidentally deleted during merge

Browse Source
This commit is contained in:
twotalesanimation
2025-12-04 15:19:52 +02:00
parent be2b757f4e
commit ac460ef97f
24 changed files with 2161 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
src/processors/submit_order.php Normal file
View File

@@ -0,0 +1,48 @@
<?php
session_start();
$rootPath = dirname(dirname(__DIR__));
require_once($rootPath . "/src/config/connection.php");
require_once($rootPath . "/src/config/functions.php");
// CSRF Token Validation
if (!isset($_POST['csrf_token']) || !validateCSRFToken($_POST['csrf_token'])) {
http_response_code(403);
echo json_encode(['status' => 'error', 'message' => 'Security token validation failed.']);
exit();
}
if (isset($_POST['tab_id']) && isset($_SESSION['cart'][$_POST['tab_id']])) {
$tab_id = (int) $_POST['tab_id']; // Ensure it's an integer
$drinks = $_SESSION['cart'][$tab_id];
$created_at = date('Y-m-d H:i:s');
$errors = []; // Array to store SQL errors
foreach ($drinks as $drink) {
$drink_id = (int) $drink['item_id']; // Ensure drink ID is an integer
$drink_name = $drink['item_name']; // No escaping needed with prepared statements
$drink_price = (float) $drink['item_price']; // Ensure price is a float
$user_id = (int) $drink['user_id']; // Convert to integer
// Insert each drink into the bar_transactions table using prepared statement
$stmt = $conn->prepare("INSERT INTO bar_transactions (user_id, tab_id, item_id, item_name, item_price) VALUES (?, ?, ?, ?, ?)");
$stmt->bind_param("iiisi", $user_id, $tab_id, $drink_id, $drink_name, $drink_price);
if (!$stmt->execute()) {
$errors[] = "Error inserting drink ID $drink_id: " . $conn->error;
}
}
if (empty($errors)) {
// Clear the cart for this tab after successful submission
unset($_SESSION['cart'][$tab_id]);
echo json_encode(['status' => 'success', 'message' => 'Order submitted successfully!']);
} else {
// Log all errors and return failure message
error_log(implode("\n", $errors)); // Log errors to the server
echo json_encode(['status' => 'error', 'message' => 'Some items failed to be added.', 'errors' => $errors]);
}
} else {
echo json_encode(['status' => 'error', 'message' => 'Cart is empty or tab ID is invalid.']);
}