-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathforget_password_logged.php
112 lines (110 loc) · 7.17 KB
/
forget_password_logged.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
<?php
// we will only start the session with session_start() IF the session isn't started yet //
if (session_status() == PHP_SESSION_NONE) {
session_start();
}
?>
<?php
// including the conn.php to establish connection with database //
include "conn.php";
?>
<?php
// if user_id is defined then we will logou first then only redirect //
if (isset($_SESSION["user_id"])) {
// logout function specifically for cashier //
if (isset($_SESSION['order_id']) && (($_SESSION['order_id']) != "")) {
// begin the query of deletion of the related order, and clearing the $_SESSION back to empty string, then replace them with the new value //
// but first we have to update the Foreign Key of the related table to NULL in order to delete the order due to SYNTAX //
$UPDATENULL = "UPDATE user_order SET user_id = NULL, brand_id = NULL, cashier_id = NULL WHERE order_id = '".$_SESSION['order_id']."' AND paid = 0";
$UPDATENULLQ = mysqli_query($con, $UPDATENULL);
if (mysqli_affected_rows($con) < 1) {
// if there's no result then inform the user and show the possible SQL error //
echo "<script>alert('WARNING: Order ID can\'t be updated, you will be return back to Cashier Panel. Possible Error: ".mysqli_error($con)."');";
echo "window.location.href='cashier_panel.html';</script>";
} else {
// if we're able to update the Foreign Key, proceeds to another related table to update their Foreign Key as well //
echo "<script>alert('Notice: Order ID: ".$_SESSION['order_id']." updated, now updating another table\'s Foreign Key in order to proceed the deletion...');</script>";
// then we've to first get the transaction_id from the related records in transaction_record table so in latter process we will able to delete the record specifically //
// the variable will be an array to hold all the transaction_id //
$transaction_id = "";
// defining and execute the query which finds all the related transaction records //
$TRANSID = "SELECT * FROM transaction_record WHERE order_id = '".$_SESSION['order_id']."'";
$TRANSIDQ = mysqli_query($con, $TRANSID);
if (mysqli_num_rows($TRANSIDQ) < 1) {
// if we're able to retrieve the transaction_id, alert the user about it //
echo "<script>alert('WARNING: Unable to retrieve transaction_records under Order ID: ".$_SESSION['order_id'].", or there\'s no record existing in the transaction record table. Checking the types of error occured...');</script>";
// if there's no record under transaction_record table, then we can straight delete the order_id //
$DELETEORD = "DELETE FROM user_order WHERE paid < 1 AND order_id = '".$_SESSION['order_id']."'";
$DELETEORDQ = mysqli_query($con, $DELETEORD);
if (mysqli_affected_rows($con) < 1) {
// if there's no result then inform the user and show the possible SQL error //
echo "<script>alert('WARNING: Order ID: ".$_SESSION['order_id']." can\'t be deleted, it\'s highly possible that the fault is on SQL Query. Possible Error: ".mysqli_error($con)."');";
echo "window.location.href='cashier_panel.html';</script>";
} else {
// if the deletion is a success then exit() immediately, and declare the related $_SESSION to empty string //
$_SESSION['brand_id'] = "";
$_SESSION['order_id'] = "";
$_SESSION['buyer_id'] = "";
echo "<script>alert('Notice: Deletion Process completed. Continue to proceed your intended progress.');";
echo "window.location.href='cashier_panel.html';</script>";
}
} else {
$result = $con->query($TRANSID);
if ($result->num_rows > 0) {
// if there's a result then begin to put the related transaction id into the variable //
while ($row = $result->fetch_assoc()) {
$transaction_id[] = $row["transaction_id"];
}
}
// once we got all the transaction_id then we proceed to update the transaction_record table //
$UPDATENULL = "UPDATE transaction_record SET meal_id = NULL, meal_brand_id = NULL, order_id = NULL WHERE order_id = '".$_SESSION['order_id']."'";
$UPDATENULLQ = mysqli_query($con, $UPDATENULL);
if (mysqli_affected_rows($con) < 1) {
// if there's no result then inform the user and show the possible SQL error //
echo "<script>alert('WARNING: Transaction Record ID can\'t be updated, you will be return back to Cashier Panel. Possible Error: ".mysqli_error($con)."');";
echo "window.location.href='cashier_panel.html';</script>";
} else {
// if we've updated the table, begin the process of deletion //
echo "<script>alert('Notice: Transaction Record ID updated, now begin the deletion of the related information.');</script>";
$DELETEORD = "DELETE FROM user_order WHERE paid < 1 AND order_id = '".$_SESSION['order_id']."'";
$DELETEORDQ = mysqli_query($con, $DELETEORD);
if (mysqli_affected_rows($con) < 1) {
// if there's no result then inform the user and show the possible SQL error //
echo "<script>alert('WARNING: Order ID: ".$_SESSION['order_id']." can\'t be deleted, you will be return back to Cashier Panel. Possible Error: ".mysqli_error($con)."');";
echo "window.location.href='cashier_panel.html';</script>";
} else {
// if we've deleted the related info in order table, begin the final deletion on transaction_record table //
echo "<script>alert('Notice: Order ID: ".$_SESSION['order_id']." deleted, now begin the deletion of the related information.');</script>";
while (list($key,$val) = @each ($transaction_id)) {
$DELETETRANS = "DELETE FROM transaction_record WHERE transaction_id = $val";
$DELETETRANSQ = mysqli_query($con, $DELETETRANS);
if (mysqli_affected_rows($con) < 1) {
// if we are unable to delete the transaction record, something must gone wrong //
echo "<script>alert('WARNING: Unable to delete the Transaction ID: ".$val.". Please try again. Possible Error: ".mysqli_error($con)."');";
echo "</script>";
} else {
echo "<script>alert('Notice: Deleted Transaction ID: ".$val.".');";
echo "</script>";
}
}
// if we have reached this point then deletion process is completed, and begin to revert the $_SESSION back to empty string //
$_SESSION['brand_id'] = "";
$_SESSION['order_id'] = "";
$_SESSION['buyer_id'] = "";
echo "<script>alert('Notice: Deletion Process completed. Continue to proceed your intended progress.');";
echo "window.location.href='cashier_panel.html';</script>";
}
}
}
}
}
session_destroy();
echo "<script>alert('Notice: In order to reset your password, you\'ve to first logged out to proceed the process. Now logging you out...');";
echo "window.location.href='forget_password.html';</script>";
exit();
} else {
echo "<script>alert('Notice: Now redirecting to the page to reset your password.');";
echo "window.location.href='forget_password.html';</script>";
exit();
}
?>