OrderContol.php
1.68 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
<?php
// Подключение
include_once ($_SERVER['DOCUMENT_ROOT'] . "/config/config.php");
include_once ($_SERVER['DOCUMENT_ROOT'] . "/account/func/func.php");
switch ($_REQUEST['jaction'])
{
case 'tel-save':
// имя поля
preg_match ('/^user\[(.+)\]/', $_GET['field'], $field);
$field = $field[1];
// находим заказ
$sql = '
SELECT user_id
FROM `catalogs_orders`
WHERE id = '.(int)$_GET['order_id'];
$result = mysql_query($sql) or die(mysql_error());
if (mysql_affected_rows() > 0)
{
$row = mysql_fetch_assoc ($result);
// меняем заказ
$field_order = $field == 'tel' ? 'phone' : 'phonemob';
$sql = '
UPDATE `catalogs_orders`
SET '.$field_order.' = "'.$_GET['value'].'"
WHERE id = '.(int)$_GET['order_id'].'
';
$result = mysql_query($sql) or die(mysql_error());
// меняем пользователя
$sql = '
UPDATE `zlo_users`
SET '.$field.' = "'.$_GET['value'].'"
WHERE id = '.(int)$row['user_id'].'
';
$result = mysql_query($sql) or die(mysql_error());
echo json_encode (array (
'html' => htmlMessage ('success', 'Телефон успешно сохранен')
));
}
else
{
echo json_encode (array (
'html' => htmlMessage ('error', 'Заказ не найден!')
));
}
break;
}