82 lines
2.7 KiB
PHP
82 lines
2.7 KiB
PHP
<?php
|
|
include 'header.php';
|
|
require_once '../db/config.php';
|
|
|
|
// Check if the user is logged in as a restaurant owner
|
|
if (!isset($_SESSION['user_id']) || $_SESSION['role'] !== 'restaurant_owner') {
|
|
header('Location: ../restaurant_login.php');
|
|
exit;
|
|
}
|
|
|
|
$menu_item_id = $_GET['id'] ?? null;
|
|
if (!$menu_item_id) {
|
|
header('Location: menu.php');
|
|
exit;
|
|
}
|
|
|
|
$pdo = db();
|
|
|
|
// Get the restaurant ID associated with the logged-in user
|
|
$stmt = $pdo->prepare("SELECT id FROM restaurants WHERE user_id = ?");
|
|
$stmt->execute([$_SESSION['user_id']]);
|
|
$restaurant = $stmt->fetch();
|
|
|
|
if (!$restaurant) {
|
|
header('Location: ../index.php');
|
|
exit;
|
|
}
|
|
$restaurant_id = $restaurant['id'];
|
|
|
|
// Get the menu item and verify it belongs to the correct restaurant
|
|
$stmt = $pdo->prepare("SELECT * FROM menu_items WHERE id = ? AND restaurant_id = ?");
|
|
$stmt->execute([$menu_item_id, $restaurant_id]);
|
|
$item = $stmt->fetch();
|
|
|
|
if (!$item) {
|
|
// If the item doesn't exist or doesn't belong to this owner, redirect
|
|
header('Location: menu.php');
|
|
exit;
|
|
}
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
|
|
$name = $_POST['name'] ?? '';
|
|
$description = $_POST['description'] ?? '';
|
|
$price = $_POST['price'] ?? '';
|
|
|
|
if ($name && $price) {
|
|
$stmt = $pdo->prepare("UPDATE menu_items SET name = ?, description = ?, price = ? WHERE id = ? AND restaurant_id = ?");
|
|
$stmt->execute([$name, $description, $price, $menu_item_id, $restaurant_id]);
|
|
header('Location: menu.php');
|
|
exit;
|
|
} else {
|
|
$error = "Name and price are required.";
|
|
}
|
|
}
|
|
?>
|
|
|
|
<div class="container mt-4">
|
|
<h2>Edit Menu Item</h2>
|
|
|
|
<?php if (isset($error)): ?>
|
|
<div class="alert alert-danger"><?php echo $error; ?></div>
|
|
<?php endif; ?>
|
|
|
|
<form action="edit_menu_item.php?id=<?php echo $item['id']; ?>" method="POST">
|
|
<div class="mb-3">
|
|
<label for="name" class="form-label">Name</label>
|
|
<input type="text" class="form-control" id="name" name="name" value="<?php echo htmlspecialchars($item['name']); ?>" required>
|
|
</div>
|
|
<div class="mb-3">
|
|
<label for="description" class="form-label">Description</label>
|
|
<textarea class="form-control" id="description" name="description"><?php echo htmlspecialchars($item['description']); ?></textarea>
|
|
</div>
|
|
<div class="mb-3">
|
|
<label for="price" class="form-label">Price</label>
|
|
<input type="number" step="0.01" class="form-control" id="price" name="price" value="<?php echo htmlspecialchars($item['price']); ?>" required>
|
|
</div>
|
|
<button type="submit" class="btn btn-primary">Update Item</button>
|
|
<a href="menu.php" class="btn btn-secondary">Cancel</a>
|
|
</form>
|
|
</div>
|
|
|
|
<?php include 'footer.php'; ?>
|