Polish the reservation modification code.

[Project_webapp.git] / includes / formmodify.php

diff --git a/includes/formmodify.php b/includes/formmodify.php
index 20e53f651226f558038b5a53b60b80baf4d7487c..2a612a65101ae4926b1983a4fd358b7ac7ff3f7d 100644 (file)
--- a/includes/formmodify.php
+++ b/includes/formmodify.php
@@ -3,15 +3,28 @@ $form_flight_id = filter_input(INPUT_POST, "flight_id", FILTER_SANITIZE_STRING);
 $form_nb_place = filter_input(INPUT_POST, "nb_place", FILTER_VALIDATE_INT);
 $form_class_name = filter_input(INPUT_POST, "class_name", FILTER_SANITIZE_STRING);
 
-global $connection;
-$client_id = get_client_id($_SESSION['email']);
-$sql_pquery = "update RESERVATIONS
+$input_failure = false;
+
+if (!$form_nb_place) {
+    echo "Nombre de place(s) invalide. <br>";
+    $input_failure = true;
+}
+
+if (!$input_failure && !empty($form_nb_place) && !empty($form_class_name)) {
+    global $connection;
+    $client_id = get_client_id($_SESSION['email']);
+    $sql_pquery = "update RESERVATIONS
                    set NbPlaces = ?, Classe = ?
                    where NumCl = ? and NumVol = ?";
-$connection->prepare_query($sql_pquery);
-$connection->prepared_query_bind_param("isis", array($form_nb_place, $form_class_name, $client_id, $form_flight_id));
-$connection->run_prepared_query();
-$connection->close_prepared_query();
-echo "Modifications enregistre&#769;es. <br>";
-redirect("index.php?page=reservations", 3);
+    $connection->prepare_query($sql_pquery);
+    $connection->prepared_query_bind_param("isis", array($form_nb_place, $form_class_name, $client_id, $form_flight_id));
+    $connection->run_prepared_query();
+    $connection->close_prepared_query();
+    echo "Modifications enregistre&#769;es. <br>";
+    redirect("index.php?page=reservations", 3);
+} else {
+    echo "Make an error message. <br>";
+    echo "<a href=\"javascript:history.go(-1)\">Retour</a>";
+}
+
 ?>