Commit | Line | Data |
---|---|---|
33eb6f2a JB |
1 | <?php |
2 | $form_flight_id = filter_input(INPUT_POST, "flight_id", FILTER_SANITIZE_STRING); | |
3 | $form_class_name = filter_input(INPUT_POST, "class_name", FILTER_SANITIZE_STRING); | |
4 | $form_place_price = filter_input(INPUT_POST, "place_price", FILTER_VALIDATE_FLOAT); | |
5 | $form_nb_place = filter_input(INPUT_POST, "nb_place", FILTER_VALIDATE_INT); | |
6 | $form_return_flight = filter_input(INPUT_POST, "return_flight", FILTER_VALIDATE_BOOLEAN); | |
7 | ||
8 | global $is_logged_in; | |
9 | if (!$is_logged_in) { | |
a2f7a729 | 10 | echo "Please login first. <br>"; |
33eb6f2a JB |
11 | redirect("index.php?page=login", 2); |
12 | } | |
13 | ||
14 | $input_failure = false; | |
15 | ||
16 | if (!$form_place_price) { | |
17 | echo "Prix invalide. <br>"; | |
18 | $input_failure = true; | |
19 | } | |
20 | ||
21 | if (!$form_nb_place) { | |
22 | echo "Nombre de place(s) invalide. <br>"; | |
23 | $input_failure = true; | |
24 | } | |
25 | ||
26 | if (!$form_return_flight) { | |
27 | echo "Vol retour invalide. <br>"; | |
28 | $input_failure = true; | |
29 | } | |
30 | ||
f78b3417 | 31 | if (!$input_failure && $is_logged_in && !empty($form_nb_place) && !empty($form_class_name)) { |
33eb6f2a JB |
32 | global $connection; |
33 | $client_id = get_client_id($_SESSION['email']); | |
34 | $nb_booked = nb_booked($client_id, $form_flight_id); | |
35 | if (!empty($nb_booked)) { | |
36 | echo "Vous avez déjà réservé ce vol, vous allez être redirigé vers la liste de vos réservations dans 2 secondes. <br>"; | |
37 | redirect("index.php?page=reservations", 2); | |
0a87f453 JB |
38 | include('footer.html'); |
39 | exit(); | |
33eb6f2a JB |
40 | } |
41 | $sql_pquery = "insert into RESERVATIONS (NumCl, NumVol, Classe, NbPlaces) | |
42 | values (?, ?, ?, ?)"; | |
43 | $connection->prepare_query($sql_pquery); | |
44 | $connection->prepared_query_bind_param("issi", array($client_id, $form_flight_id, $form_class_name, $form_nb_place)); | |
45 | $connection->run_prepared_query(); | |
46 | $connection->close_prepared_query(); | |
47 | $sql_pquery = "select VilleD, DateD, VilleA, DateA from VOLS, DEFCLASSES | |
48 | where DEFCLASSES.NumVol = VOLS.NumVol and | |
49 | VOLS.NumVol = ? and Classe = ?"; | |
50 | $connection->prepare_query($sql_pquery); | |
51 | $connection->prepared_query_bind_param("ss", array($form_flight_id, $form_class_name)); | |
52 | $connection->run_prepared_query(); | |
53 | $connection->get_pquery_result(); | |
54 | $rows = $connection->get_result_array(); | |
55 | $connection->close_prepared_query(); | |
56 | foreach ($rows as $row) { | |
f78b3417 | 57 | echo "(Simulation de paiement d'une réservation) <br>"; |
33eb6f2a JB |
58 | echo "Vous avez réservé et payé " . $form_nb_place . " place(s) sur le vol " .$form_flight_id . |
59 | " au départ de " . $row['VilleD']. " à " . $row['DateD'] . " arrivant à " . $row['VilleA'] . " à " . $row['DateA'] . | |
01135b89 | 60 | " pour un montant total de " . $form_place_price * $form_nb_place . "€. <br>"; |
33eb6f2a JB |
61 | } |
62 | if ($form_return_flight) { | |
63 | redirect("index.php?page=search", 3); | |
64 | $_SESSION['current_flight_id'] = $form_flight_id; | |
65 | $_SESSION['return_flight'] = $form_return_flight; | |
66 | } else { | |
67 | redirect("index.php?page=reservations", 3); | |
68 | } | |
f78b3417 JB |
69 | } else { |
70 | echo "Make an error message. <br>"; | |
33eb6f2a JB |
71 | } |
72 | ||
73 | ?> |