1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
|
<?php
$page_settings = array(
'formid' => 'Order', // for permission
'section' => 'Master', // parent/page title
'subsection' => 'Order', // page title
'domain' => 'order', // table/model name
'access' => 'GNu', // for permission
);
require_once "check_login.php";
$sql = "select profile_id,user_id
from `profile_user` as tb where user_id = ? and deleted = ? LIMIT 1";
$parameters = array($_SESSION['cmsloginid'], 0);
$row_profile = bind_pdo($sql, $parameters, "selectone");
$message = "";
//print_r($cms_user_info);
if($_POST["id"]){
$row = get_order((int)$_POST["id"]);
$id = $row['id'];
}
if($id){
if($row['status'] != 'paid' && ($row_profile['profile_id'] == 1 || $row_profile['profile_id'] == 2)){
unset($tmp_order_data);
$tmp_order_data['admin_fee'] = $_POST['admin_fee'];
$sql = mysql_install($tmp_order_data, 'order', 'edit','id');
$tmp_order_data['id'] = $id;
$arraykey = array_keys($tmp_order_data);
unset($parameters);
for ($i = 0; $i < count($arraykey); $i++) {
$parameters[$i] = $tmp_order_data[$arraykey[$i]];
}
bind_pdo($sql, $parameters);
}else{
$sql = "DELETE FROM `order_detail` where order_id = ? and tutor_status = 0 and tutor_status = 0 and solution_status = 0";
$parameters = array($id);
bind_pdo($sql, $parameters);
for($a=0;$a<$row['course_count'];$a++){
if($_POST['datetime'][$a]){
unset($tmp_order_data);
$tmp_order_data['order_id'] = $id;
$tmp_order_data['datetime'] = $_POST['datetime'][$a];
$tmp_order_data['tutor_status'] = 0;
$tmp_order_data['student_status'] = 0;
$tmp_order_data['sort'] = $a;
$sql = mysql_install($tmp_order_data, 'order_detail', 'add');
$arraykey = array_keys($tmp_order_data);
unset($parameters);
for ($i = 0; $i < count($arraykey); $i++) {
$parameters[$i] = $tmp_order_data[$arraykey[$i]];
}
bind_pdo($sql, $parameters);
}
}
}
}
header("Location: order_form.php?id=".$id);
?>
|