--- /dev/null
+<?php
+$form_flight_id = filter_input(INPUT_POST, "flight_id", FILTER_SANITIZE_STRING);
+$form_class_name = filter_input(INPUT_POST, "class_name", FILTER_SANITIZE_STRING);
+$form_modify = filter_input(INPUT_POST, "modify", FILTER_SANITIZE_STRING);
+$form_cancel = filter_input(INPUT_POST, "cancel", FILTER_SANITIZE_STRING);
+
+if (isset($form_modify) && isset($form_flight_id) && isset($form_class_name)) {
+ echo $form_modify;
+} elseif (isset($form_cancel) && isset($form_flight_id) && isset($form_class_name)) {
+ //FIXME: Add a confirmation step
+ $client_id = get_client_id($_SESSION['email']);
+ global $connection;
+ $sql_pquery = "delete from RESERVATIONS
+ where NumCl = ? and NumVol = ? and Classe = ?";
+ $connection->prepare_query($sql_pquery);
+ $connection->prepared_query_bind_param("iss", array($client_id, $form_flight_id, $form_class_name));
+ $connection->run_prepared_query();
+ $connection->close_prepared_query();
+ echo "Votre réservation a été annulée. <br>";
+ redirect("index.php?page=reservations", 3);
+} else {
+ echo "Make an error message. <br>";
+}
+
+?>