R E D

NAME	SIZE	PERMISSION
accout	[ DIR ]	drwxr-xr-x
app	[ DIR ]	drwxr-xr-x
bootstrap	[ DIR ]	drwxr-xr-x
config	[ DIR ]	drwxr-xr-x
database-all	[ DIR ]	drwxr-xr-x
icon	[ DIR ]	drwxr-xr-x
Category.php	2.58 KB	-rwxr-xr-x
Confirm.php	14.04 KB	-rwxr-xr-x
Contact.php	1.02 KB	-rwxr-xr-x
Delivery.php	3.25 KB	-rwxr-xr-x
Login.php	5.65 KB	-rwxr-xr-x
LoginAdmin.php	3.48 KB	-rwxr-xr-x
Payment.php	2.41 KB	-rwxr-xr-x
Product.php	2.22 KB	-rwxr-xr-x
Register.php	7.02 KB	-rwxr-xr-x
api_line.php	1.26 KB	-rwxr-xr-x
banner.php	280 B	-rwxr-xr-x
banner2.php	473 B	-rwxr-xr-x
cart.php	4.64 KB	-rwxr-xr-x
customer.php	282 B	-rwxr-xr-x
detail_product.php	1.43 KB	-rwxr-xr-x
footer.php	1.68 KB	-rwxr-xr-x
function_get_login.php	1.26 KB	-rwxr-xr-x
index.php	552 B	-rwxr-xr-x
item_product.php	1.39 KB	-rwxr-xr-x
logout.php	74 B	-rwxr-xr-x
main.php	3.42 KB	-rwxr-xr-x
meta_tag.php	806 B	-rwxr-xr-x
navbar.php	7.57 KB	-rwxr-xr-x
new_product.php	1.54 KB	-rwxr-xr-x
pagination.php	1.49 KB	-rwxr-xr-x
script_js.php	422 B	-rwxr-xr-x
search.php	1.07 KB	-rwxr-xr-x
select_amphures.php	723 B	-rwxr-xr-x
select_districts.php	580 B	-rwxr-xr-x
select_provinces.php	727 B	-rwxr-xr-x
show_banner.php	871 B	-rwxr-xr-x
slide.php	2.18 KB	-rwxr-xr-x
slide_category.php	1.3 KB	-rwxr-xr-x
stockProduct.php	6.34 KB	-rwxr-xr-x
tb_unit.sql	1.48 KB	-rwxr-xr-x
test.php	821 B	-rwxr-xr-x
view.php	1.87 KB	-rwxr-xr-x
viewCategory.php	2.47 KB	-rwxr-xr-x
viewProduct.php	8.03 KB	-rwxr-xr-x
viewSubBusiness.php	2.65 KB	-rwxr-xr-x
viewSubCategory.php	2.63 KB	-rwxr-xr-x

Code Editor : Confirm.php

<?php session_start();
	include('config/connect.php');
	include('customer.php');
?>
<!doctype html>
<html lang="en">
  <head>
    <?php include('meta_tag.php');?>
    <title><?php echo $title;?></title>
  </head>
  <body>
    <?php include('navbar.php');?>
    
    
    <div class="container" id="Category">
        <br><h5 class="text-center">ยืนยันรายการสั่งซื้อสินค้า</h5><br>
        
        <div class="row">
            <div class="col-md-12 mt-2">
            
                <div class="card">
                	<div class="card-body">
                    <form id="form_confirm" name="form_confirm" method="post">
                      <table width="100%" class="table">
                        <thead>
                        <tr class="btn-theme">
                          <th width="65%">สินค้า</th>
                          <th class="text-center" width="8%">ราคา</th>
                          <th class="text-center" width="7%">จำนวน</th>
                          <th class="text-center" width="20%">รวม / รายการ</th>
                        </tr>
                        </thead>
                    <?php
                        $total=0;
                        foreach($_SESSION['cart'] as $product_id=>$qty)
                        {
							$product_status = "1";
							$stmt = $conn->prepare("SELECT p.*, c.category_name FROM tb_product AS p 
							INNER JOIN tb_category AS c ON p.category_id = c.category_id
							WHERE p.product_status=:product_status
							AND p.product_id=:product_id");
							$stmt->bindParam(':product_status', $product_status , PDO::PARAM_STR);
							$stmt->bindParam(':product_id', $product_id , PDO::PARAM_STR);
							$stmt->execute();
							$row2 = $stmt->fetch(PDO::FETCH_ASSOC);
                            $sum	= $row2['product_price']*$qty;
                            $total	+= $sum;
                        echo "<tr>";
                        echo "<td width=70%>" . $row2["product_name"] . "</td>";
                        echo "<td align='center' width='10%'>" .number_format($row2['product_price'],2) ."</td>";
                        echo "<td align='center' width='10%'>$qty</td>";
                        echo "<td align='center' width='10%'>".number_format($sum,2)."</td>";
                        echo "</tr>";
                        }
                        echo "<tr>";
                        echo "<td  align='right' colspan='3' bgcolor='#F9D5E3'><b>รวม</b></td>";
                        echo "<td align='center' bgcolor='#F9D5E3'>"."<b>".number_format($total,2)."</b>"."</td>";
                        echo "</tr>";
                    ?>
                    </table><br>
<hr>

<div class="row">
	<div class="col-md-2"></div>
    <div class="col-md-8">
    
<h3 align="center">ข้อมูลการจัดส่งสินค้า</h3>  
  <div class="form-group">
            <label>ช่องทางการชำระเงิน <font color="#FF0000">*</font></label>
            <div class="form-check">
      <?php
	  	$payment_status = "1";
        $stmt2 = $conn->prepare("SELECT payment_id, payment_name FROM tb_payment WHERE payment_status=:payment_status ORDER BY payment_id ASC");
		$stmt2->bindParam(':payment_status', $payment_status , PDO::PARAM_STR);
        $stmt2->execute();
        $result2 = $stmt2->fetchAll();
        $i = 1;
        foreach($result2 as $row2) {
      ?>
      <input type="radio" name="payment_id" id="payment_id<?php echo $i;?>" class="form-check-input" value="<?php echo $row2['payment_id'];?>" required>
      <label class="form-check-label"><?php echo $row2['payment_name'];?></label>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
      <?php $i++; } ?>
      </div> 
  <p></p> 
<div class="row">                
  <div class="form-group col-md-12">
    <label>ชื่อ - นามสกุล <font color="#FF0000">*</font></label>
    <input type="text" name="customer_fullname" value="<?php echo $record['customer_fullname'];?>" class="form-control" required>
  </div>
  <div class="form-group col-md-4">
    <label>ที่อยู่ <font color="#FF0000">*</font></label>
    <input type="text" name="customer_address" value="<?php echo $record['customer_address'];?>" class="form-control" required>
  </div>
  <div class="form-group col-md-4">
    <label>หมู่</label>
    <input type="text" name="customer_moo" maxlength="2" value="<?php echo $record['customer_moo'];?>" class="form-control" required>
  </div>
  <div class="form-group col-md-4">
    <label>ถนน</label>
    <input type="text" name="customer_road" value="<?php echo $record['customer_road'];?>" class="form-control" required>
  </div>
  <div class="form-group col-md-4">
    <label>ซอย</label>
    <input type="text" name="customer_soi" value="<?php echo $record['customer_soi'];?>" class="form-control" required>
  </div>
  <div class="form-group col-lg-4">
            <label>จังหวัด <font color="#FF0000">*</font></label>
            <select name="prov_id" id="prov" class="form-control" required>
                        <option value="">-- กรุณาเลือกจังหวัด --</option>
                        <?php
                            $stmt_p = $conn->prepare("SELECT * FROM provinces ORDER BY CONVERT (prov_name USING tis620) ASC");
							$stmt_p->execute();
							$result_p = $stmt_p->fetchAll();
							foreach($result_p as $row_p) {
                        ?>
                        <option value="<?php echo $row_p['prov_id']; ?>"><?php echo $row_p['prov_name']; ?></option>
                        <?php } ?>
                    </select> 
          </div>
          
          <div class="form-group col-lg-4">
            <label>อำเภอ <font color="#FF0000">*</font></label>
            <select name="amp_id" id="amp" class="form-control" required></select>
          </div>
          
          <div class="form-group col-lg-4">
            <label>ตำบล <font color="#FF0000">*</font></label>
            <select name="dis_id" id="dis" class="form-control" required></select>
          </div>

<div class="form-group col-lg-4">
            <label>รหัสไปรษณีย์ <font color="#FF0000">*</font></label>
            <input type="text" name="zipcode" value="<?php echo $record['zipcode'];?>" maxlength="5" class="form-control" required>
          </div>
  <div class="form-group">
    <label>เบอร์โทรศัพท์ <font color="#FF0000">*</font></label>
    <input type="text" name="customer_tel" maxlength="10" value="<?php echo $record['customer_tel'];?>" class="form-control" required>
  </div>
</div> 
  <input type="hidden" name="total" value="<?php echo $total;?>">
  <input type="hidden" name="customer_id" value="<?php echo $_SESSION['customer_id'];?>">
  <button type="submit" name="btnConfirm" class="btn btn-primary"><span class="fa fa-check"></span> ยืนยันการสั่งซื้อ</button>
      
    </div> 
    <div class="col-md-2"></div>
</div>                     
                    
                    
                    </form>   
<?php
	if(isset($_POST['btnConfirm'])){
		$customer_id = $_SESSION['customer_id'];
		//$user_id = $_POST['user_id'];
		$order_record =date('Y-m-d');
		$order_save = date('Y-m-d H:i:s');
		$order_total = $_POST['total'];
		$order_status = "1";
		$status_id = "1";
		$payment_id = $_POST['payment_id'];
		
		$customer_address = $_POST['customer_address'];
		$customer_moo = $_POST['customer_moo'];
		$customer_road = $_POST['customer_road'];
		$customer_soi = $_POST['customer_soi'];
		$prov_id = $_POST['prov_id'];
		$amp_id = $_POST['amp_id'];
		$dis_id = $_POST['dis_id'];
		$zipcode = $_POST['zipcode'];
		$customer_fullname = $_POST['customer_fullname'];
		$customer_tel = $_POST['customer_tel'];
		
		$getmonnyuser = "-";
		$discountuser = "-";
		$changemoney = "-";
		$user_id = 0;
		$datesave = date('Y-m-d H:i:s');
		
		$stmt = $conn->prepare("INSERT INTO tb_order_head(customer_id, order_record, order_save, order_total, order_status, status_id, payment_id, getmonnyuser, discountuser, changemoney, user_id) 
		VALUES (:customer_id, :order_record, :order_save, :order_total, :order_status, :status_id, :payment_id, :getmonnyuser, :discountuser, :changemoney, :user_id)");
		$stmt->bindParam(':customer_id', $customer_id , PDO::PARAM_INT);	
		$stmt->bindParam(':order_record', $order_record);
		$stmt->bindParam(':order_save', $order_save);	
		$stmt->bindParam(':order_total', $order_total , PDO::PARAM_INT);
		$stmt->bindParam(':order_status', $order_status , PDO::PARAM_STR);
		$stmt->bindParam(':status_id', $status_id , PDO::PARAM_STR);
		$stmt->bindParam(':payment_id', $payment_id , PDO::PARAM_STR);	
		
		$stmt->bindParam(':getmonnyuser', $getmonnyuser , PDO::PARAM_STR);
		$stmt->bindParam(':discountuser', $discountuser , PDO::PARAM_STR);
		$stmt->bindParam(':changemoney', $changemoney , PDO::PARAM_STR);
		$stmt->bindParam(':user_id', $user_id , PDO::PARAM_INT);
    	$result = $stmt->execute();
		$order_id = $conn->lastInsertId();
		
		
		$stmt3 = $conn->prepare("UPDATE tb_customer SET customer_address=:customer_address, customer_moo=:customer_moo, customer_road=:customer_road, customer_soi=:customer_soi, prov_id=:prov_id, amp_id=:amp_id, dis_id=:dis_id, zipcode=:zipcode WHERE customer_id=:customer_id");
		$stmt3->bindParam(':customer_id', $customer_id , PDO::PARAM_INT);
		$stmt3->bindParam(':customer_address', $customer_address , PDO::PARAM_STR);	
		$stmt3->bindParam(':customer_moo', $customer_moo , PDO::PARAM_STR);	
		$stmt3->bindParam(':customer_road', $customer_road , PDO::PARAM_STR);	
		$stmt3->bindParam(':customer_soi', $customer_soi , PDO::PARAM_STR);	
		$stmt3->bindParam(':prov_id', $prov_id , PDO::PARAM_INT);	
		$stmt3->bindParam(':amp_id', $amp_id , PDO::PARAM_INT);	
		$stmt3->bindParam(':dis_id', $dis_id , PDO::PARAM_INT);	
		$stmt3->bindParam(':zipcode', $zipcode , PDO::PARAM_STR);	
		$result3 = $stmt3->execute();
		
		foreach($_SESSION['cart'] as $product_id=>$qty)
		{
			$product_status = "1";
			$stmt2 = $conn->prepare("SELECT p.*, c.category_name FROM tb_product AS p 
			LEFT JOIN tb_category AS c ON p.category_id = c.category_id
			WHERE p.product_status=:product_status
			AND p.product_id=:product_id");
			$stmt2->bindParam(':product_status', $product_status , PDO::PARAM_STR);
			$stmt2->bindParam(':product_id', $product_id , PDO::PARAM_STR);
			$stmt2->execute();
			$row2 = $stmt2->fetch(PDO::FETCH_ASSOC);
			$total	= $row2['product_price']*$qty;
			$detail_price = $row2['product_price'];
			$product_id = $row2['product_id'];
			$product_item = $row2['product_item'];
			
			$stmt3 = $conn->prepare("INSERT INTO tb_order_detail(order_id, product_id, detail_qty, detail_price, detail_subtotal, datesave) 
			VALUES (:order_id, :product_id, :detail_qty, :detail_price, :detail_subtotal, :datesave)");
			$stmt3->bindParam(':order_id', $order_id , PDO::PARAM_INT);		
			$stmt3->bindParam(':product_id', $product_id , PDO::PARAM_INT);
			$stmt3->bindParam(':detail_qty', $qty , PDO::PARAM_INT);
			$stmt3->bindParam(':detail_price', $detail_price , PDO::PARAM_INT);	
			$stmt3->bindParam(':detail_subtotal', $total , PDO::PARAM_INT);	
			$stmt3->bindParam(':datesave', $datesave);
			$result3 = $stmt3->execute();
			
			$numstock = $product_item - $qty;
			$stmtx = $conn->prepare("UPDATE tb_product SET product_stock=:product_stock WHERE product_id=:product_id");
			$stmtx->bindParam(':product_id', $product_id , PDO::PARAM_INT);
			$stmtx->bindParam(':product_stock', $numstock , PDO::PARAM_INT);		
			$resultx = $stmtx->execute();
		
		}
		
		if($result && $result3){	
			include('api_line.php');		
			echo '
				<script>
					swal({
						title: "บันทึกข้อมูลการสั่งซื้อสำเร็จ", 
						icon: "success",
						button: "ตกลง",
						}).then( () => {
							location.href = "index"
										
						});	
				</script>
			';
			foreach($_SESSION['cart'] as $product_id)
			{	
				unset($_SESSION['cart']);
			}	
			
		}
		else
		{
			echo '
				<script>
					swal({
						title: "Error เกิดข้อผิดพลาด", 
						icon: "error",
						button: "ตกลง",
						}).then( () => {
							location.href = "'.$_SERVER['REQUEST_URI'].'"
										
						});	
				</script>
			';	
		}
	}
?>                      
                    
                    
                    </div>                 
                </div>
    
            </div> 
            
        </div> 
    </div> 
    
    <?php include('footer.php');?>
    
    <?php include('script_js.php');?>
    <script type="text/javascript">
            $(document).ready(function() {
                $('#prov').change(function() {
                    $.ajax({
                        type: 'POST',
                        data: {prov: $(this).val()},
                        url: 'select_provinces.php',
                        success: function(data) {
                            $('#amp').html(data);
                        }
                    });
                    return false;
                });
            });
      
            $(document).ready(function() {
                $('#amp').change(function() {
                    $.ajax({
                        type: 'POST',
                        data: {amp: $(this).val()},
                        url: 'select_amphures.php',
                        success: function(data) {
                            $('#dis').html(data);
                        }
                    });
                    return false;
                });
            });

$(document).ready(function() {
                $('#dis').change(function() {
                    $.ajax({
                        type: 'POST',
                        data: {dis: $(this).val()},
                        url: 'select_districts.php',
                        success: function(data) {
                            $('#id').html(data);
                        }
                    });
                    return false;
                });
            });
  </script>
  </body>
</html>

${this.title}

Code Editor : Confirm.php