Something to get you rolling:
$sql = "";
$oid = "someid"; //don't know what that is so I gave it a value
$id = !empty($_GET['id']) ? preg_replace("#[^0-9]#","",$_GET['id']) : "111";
$name = !empty($_GET['name']) ? preg_replace("#[^0-9a-zA-Z\- ]#","",$_GET['name']) : "name";
$price = !empty($_GET['price']) ? preg_replace("#[^0-9]#","",$_GET['price']) : "999";
$supplier = !empty($_GET['supplier']) ? preg_replace("#[^0-9a-zA-Z\- ]#","",$_GET['supplier']) : "SUPPLIER";
$category = !empty($_GET['category']) ? preg_replace("#[^0-9a-zA-Z\- ]#","",$_GET['category']) : "CATEGORY";
$basketArray = array();
$basketArray['id'] = $id;
$basketArray['name'] = $name;
$basketArray['price'] = $price;
$basketArray['supplier'] = $supplier;
$basketArray['category'] = $category;
$basketArray['qty'] = 1;
//$price = $_GET['price'];
$subtotal = !empty($_SESSION['subtotal']) ? $_SESSION['subtotal'] : "0";
$found = false;
//print_r($basketArray);
if(!empty($_SESSION['basket'])) {
foreach($_SESSION['basket'] as $key) {
foreach($key as $x=>$y){
echo $x."-".$y."<br />";
if($y == $id) {
$found = true;
echo "<h1>found</h1>";
break;
}
}
}
}
if(!$found) {
$subtotal = ($subtotal + $price);
$_SESSION['subtotal'] = $subtotal;
$_SESSION['basket'][] = $basketArray;
//insert data to DB
$sql = "INSERT INTO orders VALUES(0,'".$id."','".$oid."','".$name."','".$pric e."','".$supplier."','".$category."')";
}else{
//update quantity
$sql = "UPDATE orders.....";
}
//header("Location: foodItems.php?category=".$category."" );
//exit();
//print_r($_SESSION['basket']);
if($sql != ""){
echo "<h1>".$sql."</h1>";
//$result = mysql_query($sql, $connection)
//or die("MySQL Error: ".mysql_error());
} |