$query = "SELECT * ";
//prepare a query that displays all the sellers of the book
$query .= "FROM sell ";
$query .= "WHERE book_id = {$book_id}";
$seller_set = mysqli_query($connection, $query);
confirm_query($seller_set);
$output = "<h2>Buy This Book:</h2><h3>";
$has_seller = 0;
//check to see if there is a seller for the book (0 is false)
while ($seller = mysqli_fetch_assoc($seller_set)) {
$has_seller = 1;
//set to true
$output .= "<li>";
//HTML list to show all the selelrs
$sell_id = $seller["id"];
if (!already_bought($sell_id) && !is_seller($sell_id)) {
$output .= "<a href=\"buy.php?id=";
$output .= urlencode($sell_id);
$output .= "&book=";
$output .= urlencode($seller["book_id"]);
$output .= "\">";
}
$seller_info = $seller["seller_id"];
//store the seller's id for the query
//query to get information on the user to be printed
$query = "SELECT * ";
$query .= "FROM users ";
$query .= "WHERE id = {$seller_info} ";
//use the id to pull out information of the user
$query .= "LIMIT 1";
$seller_name = mysqli_query($connection, $query);
<?php
setcookie("test", 45, time() + 60 * 60 * 24 * 7);
require_once '../includes/dbconnection.php';
require_once '../includes/session.php';
require_once '../includes/form_processing.php';
//if user is logged in, log out first:
if (is_buyer() || is_seller()) {
clear_session();
}
if (isset($_POST['submit'])) {
//store form data to display back to the user:
$email = $_POST['email'];
// Process form from login.php
process_login_form();
if ($_POST['login_details']) {
$user = attempt_login($_POST['email'], $_POST['password']);
if ($user) {
//login successful
//restart the session
clear_session();
//$_SESSION['logged_in'] = 1;
$_SESSION['role'] = $user['role'];
$_SESSION['userId'] = $user['userId'];
$_SESSION['email'] = $user['email'];
$_SESSION['firstName'] = $user['firstName'];
$_SESSION['lastName'] = $user['lastName'];
//add address details
$_SESSION['street'] = $user['street'];
$_SESSION['number'] = $user['number'];
$_SESSION['zip'] = $user['zip'];
function is_seller_failure2()
{
clear_session();
$_SESSION['role'] = ROLE_BUYER;
assert(!is_seller());
}
<?php
//Dependencies
require_once "../includes/session.php";
require_once "../includes/navigation.php";
header("Location: login.php");
if (is_buyer()) {
redirect_to("buyer_account.php");
} elseif (is_seller()) {
redirect_to("seller_account.php");
} else {
redirect_to("login.php");
}
<?php
require_once "../includes/session.php";
require_once "../includes/navigation.php";
require_once "../includes/dbconnection.php";
if (is_seller()) {
include "../includes/layouts/header.php";
} else {
redirect_to("index.php");
}
$userId = $_SESSION['userId'];
?>
<div class="container">
<h1>My Account</h1>
<p>Welcome to your personal area. Here you can check your personal details as well as monitor your auctions.</p>
<div class="row">
<div class="col-md-2 menu-margin">
<ul class="nav nav-list">
<li>
<a href="#address">
Address
</a>
</li>
<li>
<a href="#auctions">
Auctions
</a>
</li>
