Edit add_review.php

9e20ea7a · 65160023 · 7303d669 · 9e20ea7a
Commit 9e20ea7a authored 4 months ago by 65160023
--- a/add_review.php
+++ b/add_review.php
 <?php
-error_reporting(E_ALL);
-ini_set('display_errors', 1);
 include 'components/connect.php';
-session_start(); // ตรวจสอบว่ามี session หรือไม่
-$user_id = $_SESSION['user_id'] ?? ''; // ตรวจสอบว่าผู้ใช้ล็อกอินหรือไม่
 if(isset($_GET['get_id'])){
   $get_id = $_GET['get_id'];
 }else{
+   $get_id = '';
   header('location:all_posts.php');
-   exit();
 }
 if(isset($_POST['submit'])){
-   if(!empty($user_id)){
-      function create_unique_id(){
+   if($user_id != ''){
-         return uniqid();
-      }
      $id = create_unique_id();
-      $title = filter_var($_POST['title'], FILTER_SANITIZE_STRING);
+      $title = $_POST['title'];
-      $description = filter_var($_POST['description'], FILTER_SANITIZE_STRING);
+      $title = filter_var($title, FILTER_SANITIZE_STRING);
-      $rating = filter_var($_POST['rating'], FILTER_SANITIZE_STRING);
+      $description = $_POST['description'];
+      $description = filter_var($description, FILTER_SANITIZE_STRING);
+      $rating = $_POST['rating'];
+      $rating = filter_var($rating, FILTER_SANITIZE_STRING);
-      try {
      $verify_review = $conn->prepare("SELECT * FROM `reviews` WHERE post_id = ? AND user_id = ?");
      $verify_review->execute([$get_id, $user_id]);
@@ -35,13 +31,13 @@ if(isset($_POST['submit'])){
         $add_review->execute([$id, $get_id, $user_id, $rating, $title, $description]);
         $success_msg[] = 'Review added!';
      }
-      } catch (PDOException $e) {
-         die("Error: " . $e->getMessage());
-      }
   }else{
      $warning_msg[] = 'Please login first!';
   }
 }
 ?>
 <!DOCTYPE html>
 <html lang="en">
@@ -50,13 +46,21 @@ if(isset($_POST['submit'])){
   <meta http-equiv="X-UA-Compatible" content="IE=edge">
   <meta name="viewport" content="width=device-width, initial-scale=1.0">
   <title>add review</title>
+   <!-- custom css file link  -->
   <link rel="stylesheet" href="css/style.css">
 </head>
 <body>
+<!-- header section starts  -->
 <?php include 'components/header.php'; ?>
+<!-- header section ends -->
+<!-- add review section starts  --> 
 <section class="account-form">
   <form action="" method="post">
      <h3>post your review</h3>
      <p class="placeholder">review title <span>*</span></p>
@@ -72,11 +76,19 @@ if(isset($_POST['submit'])){
         <option value="5">5</option>
      </select>
      <input type="submit" value="submit review" name="submit" class="btn">
-      <a href="view_post.php?get_id=<?= htmlspecialchars($get_id); ?>" class="option-btn">go back</a>
+      <a href="view_post.php?get_id=<?= $get_id; ?>" class="option-btn">go back</a>
   </form>
 </section>
+<!-- add review section ends -->
+<!-- sweetalert cdn link  -->
 <script src="https://cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js"></script>
+<!-- custom js file link  -->
 <script src="js/script.js"></script>
+<?php include 'components/alers.php'; ?>
 </body>
 </html>
\ No newline at end of file