PK
<?php
if ($_POST['doAction'] == "add" || $_POST['doAction'] == "edit") {
$review = mysqli_real_escape_string($conn, $_POST['review']);
$ratings = $_POST['ratings'];
$review_id = $_POST['review_id'];
$postby = mysqli_real_escape_string($conn, $_POST['postby']);
$status = $_POST['status'];
$date = $_POST['date'];
$product_id = $_POST['product_id'];
$fields = " prd_reviews set
product_id = '$product_id',
review = '$review',
ratings = '$ratings',
postby = '$postby',
status = '$status',
dt = '$date'
";
if ($_POST['doAction'] == "add") {
$query = "INSERT into $fields ";
mysqli_query($conn, $query) or die(mysqli_error($conn));
$review_id = mysqli_insert_id($conn);
$_SESSION['msg'] = "Record added successfully.";
} elseif ($_POST['doAction'] == "edit") {
$query = "UPDATE $fields
where review_id='" . $_GET['review_id'] . "'
";
mysqli_query($conn, $query) or die(mysqli_error($conn));
$review_id = $_POST['review_id'];
$_SESSION['msg'] = "Record updated successfully.";
}
echo "<script>window.location.href='main.php?action=product_reviews_view';</script>";
exit();
}
// Get review details
$review_id = $_GET['review_id'];
$query = "SELECT pr.*, p.pname
FROM prd_reviews pr
LEFT JOIN prd p ON p.pid = pr.product_id
WHERE pr.review_id = '$review_id'";
$result = mysqli_query($conn, $query);
$row = mysqli_fetch_array($result);
?>
<div class="content-wrapper">
<section class="content-header">
<div class="container-fluid">
<div class="row mb-2">
<div class="col-sm-6">
<h1>Edit Product Review</h1>
</div>
<div class="col-sm-6">
<ol class="breadcrumb float-sm-right">
<li class="breadcrumb-item"><a href="#">Home</a></li>
<li class="breadcrumb-item active">Edit Review</li>
</ol>
</div>
</div>
</div>
</section>
<section class="content">
<div class="row">
<div class="col-md-12">
<?php if(isset($_SESSION['msg'])){?>
<div class="alert alert-success"><strong>Success!</strong> <?php echo $_SESSION['msg'];?></div>
<?php unset($_SESSION['msg']); ?>
<?php }?>
<?php if(isset($_SESSION['errmsg'])){?>
<div class="alert alert-danger"><strong>Error!</strong> <?php echo $_SESSION['errmsg'];?></div>
<?php unset($_SESSION['errmsg']); ?>
<?php }?>
<div class="card card-primary">
<div class="card-header">
<h3 class="card-title">Edit Review for: <?php echo $row['pname']; ?></h3>
</div>
<form method="post" action="">
<input type="hidden" name="doAction" value="<?php if ($_GET['review_id'] != "") { echo "edit"; } else { echo "add"; } ?>">
<input type="hidden" name="review_id" value="<?php echo $review_id; ?>">
<div class="card-body">
<div class="row">
<div class="col-md-6 col-xs-12">
<div class="form-group">
<label>Product</label>
<select name="product_id" class="form-control" required>
<option value="">Select Product</option>
<?php
// Get parent categories
$cat_query = "SELECT * FROM cate WHERE parent_id = 0 ORDER BY bname";
$cat_result = mysqli_query($conn, $cat_query);
while($cat = mysqli_fetch_array($cat_result)) {
echo "<optgroup label='".$cat['bname']."'>";
// Get child categories
$sub_cat_query = "SELECT * FROM cate WHERE parent_id = ".$cat['ctid']." ORDER BY bname";
$sub_cat_result = mysqli_query($conn, $sub_cat_query);
while($sub_cat = mysqli_fetch_array($sub_cat_result)) {
// Get products in this category
$prd_query = "SELECT pid, pname FROM prd WHERE ctid = ".$sub_cat['ctid']." AND status = 1 ORDER BY pname";
$prd_result = mysqli_query($conn, $prd_query);
while($prd = mysqli_fetch_array($prd_result)) {
$selected = ($row['product_id'] == $prd['pid']) ? 'selected' : '';
echo "<option value='".$prd['pid']."' ".$selected."> ".$sub_cat['bname']." - ".$prd['pname']."</option>";
}
}
// Get products in parent category
$prd_query = "SELECT pid, pname FROM prd WHERE ctid = ".$cat['ctid']." AND status = 1 ORDER BY pname";
$prd_result = mysqli_query($conn, $prd_query);
while($prd = mysqli_fetch_array($prd_result)) {
$selected = ($row['product_id'] == $prd['pid']) ? 'selected' : '';
echo "<option value='".$prd['pid']."' ".$selected.">".$prd['pname']."</option>";
}
echo "</optgroup>";
}
?>
</select>
</div>
</div>
<div class="col-md-6 col-xs-12">
<div class="form-group">
<label>Rating</label>
<select name="ratings" class="form-control">
<?php for($i=1; $i<=5; $i++) { ?>
<option value="<?php echo $i; ?>" <?php echo ($row['ratings'] == $i ? 'selected' : ''); ?>><?php echo $i; ?> Star<?php echo ($i > 1 ? 's' : ''); ?></option>
<?php } ?>
</select>
</div>
</div>
</div>
<div class="form-group">
<label>Review</label>
<textarea name="review" class="form-control" rows="5"><?php echo $row['review']; ?></textarea>
</div>
<div class="row">
<div class="col-md-4">
<div class="form-group">
<label>Posted By</label>
<input type="text" name="postby" class="form-control" value="<?php echo $row['postby']; ?>" required>
</div>
</div>
<div class="col-md-4">
<div class="form-group">
<label>Status</label>
<select name="status" class="form-control">
<option value="1" <?php echo ($row['status'] == 1 ? 'selected' : ''); ?>>Active</option>
<option value="0" <?php echo ($row['status'] == 0 ? 'selected' : ''); ?>>Inactive</option>
</select>
</div>
</div>
<div class="col-md-4">
<div class="form-group">
<label>Date</label>
<input type="date" name="date" class="form-control" value="<?php echo $row['dt']; ?>" required>
</div>
</div>
</div>
</div>
<div class="card-footer">
<button type="submit" name="submit" class="btn btn-primary"><?php echo ($_GET['review_id'] ? "Update" : "Add"); ?> Review</button>
<a href="main.php?action=product_reviews_view" class="btn btn-default">Cancel</a>
</div>
</form>
</div>
</div>
</div>
</section>
</div>
PK 99