24 lines
806 B
PHP
24 lines
806 B
PHP
<?php
|
|
include "../../ConnectDB.php";
|
|
session_start();
|
|
$username = mysqli_real_escape_string($conn, $_SESSION['username']);
|
|
$usertype = mysqli_real_escape_string($conn, $_SESSION['user_type']);
|
|
|
|
if(isset($_GET["name"], $_GET["quantity"])) {
|
|
$name = $_GET["name"];
|
|
$quantity = $_GET["quantity"];
|
|
|
|
if(($usertype == "seller" && $quantity >= 0 && $quantity <= 100) || ($usertype == "buyer" && $quantity >= 0)){
|
|
$add = "UPDATE $usertype SET $name = $quantity WHERE name='$username'";
|
|
$res = mysqli_query($conn, $add);
|
|
}
|
|
else{
|
|
echo "<script type='text/javascript'>
|
|
alert('Please input a valid amount of fruit!');
|
|
</script>";
|
|
}
|
|
}
|
|
header('Location: ../cart_index.php');
|
|
?>
|
|
|