function add_order($card_type, $card_number, $card_cvv, $card_expires) { global $db; $customer_id = $_SESSION['user']['customerID']; $billing_id = $_SESSION['user']['billingAddressID']; $shipping_id = $_SESSION['user']['shipAddressID']; $shipping_cost = shipping_cost(); $tax = tax_amount(cart_subtotal()); $order_date = date("Y-m-d H:i:s"); $query = ' INSERT INTO orders (customerID, orderDate, shipAmount, taxAmount, shipAddressID, cardType, cardNumber, cardExpires, billingAddressID) VALUES (:customer_id, :order_date, :ship_amount, :tax_amount, :shipping_id, :card_type, :card_number, :card_expires, :billing_id)'; $statement = $db->prepare($query); $statement->bindValue(':customer_id', $customer_id); $statement->bindValue(':order_date', $order_date); $statement->bindValue(':ship_amount', $shipping_cost); $statement->bindValue(':tax_amount', $tax); $statement->bindValue(':shipping_id', $shipping_id); $statement->bindValue(':card_type', $card_type); $statement->bindValue(':card_number', $card_number); $statement->bindValue(':card_expires', $card_expires); $statement->bindValue(':billing_id', $billing_id); $statement->execute(); $order_id = $db->lastInsertId(); $statement->closeCursor(); return $order_id; }
function add_order($card_type, $card_number, $card_cvv, $card_expires) { global $db; $customer_id = $_SESSION['user']['idkhachhang']; $billing_id = $_SESSION['user']['iddiachithanhtoan']; $shipping_id = $_SESSION['user']['iddiachigiaohang']; $shipping_cost = shipping_cost(); $tax = tax_amount(cart_subtotal()); $order_date = date("Y-m-d H:i:s"); $query = ' INSERT INTO donhang (idkhachhang, ngaydathang, phigiaohang, thue, iddiachigiaohang, loaithe, mathe, hansudungthe, iddiachithanhtoan) VALUES (:idkhachhang, :ngaydathang, :phigiaohang, :thue, :iddiachigiaohang, :loaithe, :mathe, :hansudungthe, :iddiachithanhtoan)'; $statement = $db->prepare($query); $statement->bindValue(':idkhachhang', $customer_id); $statement->bindValue(':ngaydathang', $order_date); $statement->bindValue(':phigiaohang', $shipping_cost); $statement->bindValue(':thue', $tax); $statement->bindValue(':iddiachigiaohang', $shipping_id); $statement->bindValue(':loaithe', $card_type); $statement->bindValue(':mathe', $card_number); $statement->bindValue(':hansudungthe', $card_expires); $statement->bindValue(':iddiachithanhtoan', $billing_id); $statement->execute(); $order_id = $db->lastInsertId(); $statement->closeCursor(); return $order_id; }
exit; } $action = filter_input(INPUT_POST, 'action'); if ($action == NULL) { $action = filter_input(INPUT_GET, 'action'); if ($action == NULL) { $action = 'confirm'; } } switch ($action) { case 'confirm': $cart = cart_get_items(); if (cart_product_count() == 0) { redirect('../cart'); } $subtotal = cart_subtotal(); $item_count = cart_item_count(); $item_shipping = 5; $shipping_cost = shipping_cost(); $shipping_address = get_address($_SESSION['user']['shipAddressID']); $state = $shipping_address['state']; $tax = tax_amount($subtotal); // function from order_db.php file $total = $subtotal + $tax + $shipping_cost; include 'checkout_confirm.php'; break; case 'payment': if (cart_product_count() == 0) { redirect($app_path . 'cart'); } $card_number = '';
"> </td> <td class="right"> <?php echo sprintf('$%.2f', $item['line_price']); ?> </td> </tr> <?php } ?> <tr id="cart_footer" > <td colspan="3" class="right" ><b>Subtotal</b></td> <td class="right"> <?php echo sprintf('$%.2f', cart_subtotal()); ?> </td> </tr> <tr> <td colspan="4" class="right"> <input type="submit" value="Update Cart"> </td> </tr> </table> </form> <?php } ?>
" /> </td> <td class="right"> <?php echo sprintf($item['line_price']); ?> </td> </tr> <?php } ?> <tr id="cart_footer" > <td colspan="3" class="right" ><b>Tổng cộng</b></td> <td class="right"> <?php echo sprintf(cart_subtotal()); ?> </td> </tr> <tr> <td colspan="4" class="right"> <input type="submit" value="Cập nhập giỏ hàng" /> </td> </tr> </table> </form> <?php } ?>