You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
90 lines
2.8 KiB
90 lines
2.8 KiB
<?php
|
|
session_start();
|
|
session_id(trim($_GET['sid']));
|
|
setlocale(LC_MONETARY, 'it_IT.UTF-8');
|
|
|
|
include_once './config.php';
|
|
include_once './database.php';
|
|
include_once './send_mail.php';
|
|
|
|
header("Access-Control-Allow-Origin: *");
|
|
header("Content-Type: application/json; charset=UTF-8");
|
|
header("Access-Control-Allow-Methods: POST");
|
|
header("Access-Control-Max-Age: 3600");
|
|
header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
|
|
|
|
$databaseService = new DatabaseService();
|
|
$conn = $databaseService->getConnection();
|
|
|
|
|
|
$data = json_decode(file_get_contents("php://input"));
|
|
$shipping = array(
|
|
"full_name" => $data->profile->first_name." ".$data->profile->last_name,
|
|
"address" => $data->profile->address,
|
|
"city" => $data->profile->city,
|
|
"zip_code" => $data->profile->zip_code,
|
|
"province" => $data->profile->province
|
|
);
|
|
|
|
$query = "INSERT INTO `orders`
|
|
(`id`, `uid`, `date`, `items`, `total`, `status`, `token`, `shipping`, `traking`)
|
|
VALUES (NULL, ".intval($data->uid).", NOW(), '".json_encode($data->cart)."', ".floatval($data->total).",
|
|
'".($data->paid ? 'PAID' : 'CREATED')."',
|
|
'".trim($data->token)."',
|
|
'".json_encode($shipping)."', '')";
|
|
|
|
$stmt = $conn->prepare($query);
|
|
|
|
if($stmt->execute()) {
|
|
|
|
$toEmail = $data->profile->email;
|
|
$toName = $data->profile->first_name." ".$data->profile->last_name;
|
|
$subject = 'Ordine n. '.$conn->lastInsertId();
|
|
$body = emailHeader();
|
|
|
|
$body .= '<tr style="margin: 0; padding: 10px">
|
|
<td style="border-bottom: 1px solid #323232;"></td>
|
|
<td style="border-bottom: 1px solid #323232; font-weight: bold">Quantità</td>
|
|
<td style="border-bottom: 1px solid #323232;; font-weight: bold">Prezzo</td>
|
|
</tr>';
|
|
|
|
foreach($data->cart as $item) {
|
|
$body .= '<tr style="margin: 0; padding: 10px">
|
|
<td style="border-bottom: 1px solid #323232; padding: 20px"><img alt="iolovolio" src="http://iolovolio.com/images/products/'.$item->pid.'.png" height="100"></td>
|
|
<td style="border-bottom: 1px solid #323232;">'.$item->qty.' </td>
|
|
<td style="border-bottom: 1px solid #323232;">'.money_format('%.2n', $item->price).' </td>
|
|
</tr>';
|
|
}
|
|
|
|
$body .= emailFooter();
|
|
|
|
$sent = sendEmail($toEmail, $toName, $subject, $body);
|
|
if($sent === true) {
|
|
http_response_code(200);
|
|
echo json_encode(
|
|
array(
|
|
"status" => 200,
|
|
"id" => $conn->lastInsertId(),
|
|
"mail" => $sent
|
|
));
|
|
} else {
|
|
http_response_code(400);
|
|
echo json_encode(
|
|
array(
|
|
"status" => 400,
|
|
"message" => $sent,
|
|
"query" => $query
|
|
));
|
|
}
|
|
} else {
|
|
http_response_code(400);
|
|
echo json_encode(
|
|
array(
|
|
"status" => 400,
|
|
"message" => "Error inserting new order",
|
|
"query" => $query
|
|
));
|
|
}
|
|
|
|
?>
|
|
|