0) {
// 1. Verify the order exists, belongs to the user, and is delivered
$stmt = $db->prepare("SELECT * FROM orders WHERE id = ? AND user_id = ?");
$stmt->execute([$order_id, $user_id]);
$order = $stmt->fetch();
if (!$order) {
$error_message = "This order could not be found or does not belong to you.";
} elseif ($order['status'] !== 'Delivered') {
$error_message = "You can only review orders that have been delivered.";
} else {
// 2. Check if a review already exists for this order
$stmt_rating = $db->prepare("SELECT id FROM ratings WHERE order_id = ?");
$stmt_rating->execute([$order_id]);
if ($stmt_rating->fetch()) {
$error_message = "You have already submitted a review for this order.";
}
}
} else {
$error_message = "No order was specified.";
}
?>
Leave a Review
' . $_SESSION['success_message'] . '';
unset($_SESSION['success_message']);
}
if (isset($_SESSION['error_message'])) {
echo '' . $_SESSION['error_message'] . '
';
unset($_SESSION['error_message']);
}
?>
You are reviewing Order #