Signed-off-by: Jérôme Benoit <jerome.benoit@piment-noir.org>
if (!$is_logged_in) {
echo "Please login first.";
redirect("index.php?page=login", 2);
if (!$is_logged_in) {
echo "Please login first.";
redirect("index.php?page=login", 2);
-if (!$input_failure && !empty($form_nb_place) && !empty($form_class_name)) {
+if (!$input_failure && $is_logged_in && !empty($form_nb_place) && !empty($form_class_name)) {
global $connection;
$client_id = get_client_id($_SESSION['email']);
$nb_booked = nb_booked($client_id, $form_flight_id);
global $connection;
$client_id = get_client_id($_SESSION['email']);
$nb_booked = nb_booked($client_id, $form_flight_id);
$rows = $connection->get_result_array();
$connection->close_prepared_query();
foreach ($rows as $row) {
$rows = $connection->get_result_array();
$connection->close_prepared_query();
foreach ($rows as $row) {
- echo "(Simulation de paiement d'une réservation) <br>"
+ echo "(Simulation de paiement d'une réservation) <br>";
echo "Vous avez réservé et payé " . $form_nb_place . " place(s) sur le vol " .$form_flight_id .
" au départ de " . $row['VilleD']. " à " . $row['DateD'] . " arrivant à " . $row['VilleA'] . " à " . $row['DateA'] .
" pour un montant de " . $form_place_price * $form_nb_place . "€. <br>";
echo "Vous avez réservé et payé " . $form_nb_place . " place(s) sur le vol " .$form_flight_id .
" au départ de " . $row['VilleD']. " à " . $row['DateD'] . " arrivant à " . $row['VilleA'] . " à " . $row['DateA'] .
" pour un montant de " . $form_place_price * $form_nb_place . "€. <br>";
} else {
redirect("index.php?page=reservations", 3);
}
} else {
redirect("index.php?page=reservations", 3);
}
+} else {
+ echo "Make an error message. <br>";
if (!$is_logged_in) {
echo "Please login first.";
redirect("index.php?page=login", 2);
if (!$is_logged_in) {
echo "Please login first.";
redirect("index.php?page=login", 2);
}
?>
<h1>Mes réservations</h1>
}
?>
<h1>Mes réservations</h1>