prepare("INSERT INTO bookings (user_id, car_id) VALUES (?, ?)"); $stmt->execute([$userId, $carId]); $stmt = $pdo->prepare("UPDATE cars SET status = 'reserved' WHERE id = ?"); $stmt->execute([$carId]); $booking_success = "Your booking request has been sent!"; } // Handle Review if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['submit_review'])) { if (!isset($_SESSION['user_id'])) { header("Location: login.php"); exit(); } $userId = $_SESSION['user_id']; $rating = $_POST['rating']; $review = $_POST['review']; $stmt = $pdo->prepare("INSERT INTO reviews (car_id, user_id, rating, review) VALUES (?, ?, ?, ?)"); $stmt->execute([$carId, $userId, $rating, $review]); $review_success = "Your review has been submitted for approval!"; } $stmt = $pdo->prepare("SELECT * FROM cars WHERE id = ?"); $stmt->execute([$carId]); $car = $stmt->fetch(PDO::FETCH_ASSOC); if (!$car) { header("Location: car_list.php"); exit(); } // Fetch Reviews $stmt = $pdo->prepare("SELECT r.*, u.username FROM reviews r JOIN users u ON r.user_id = u.id WHERE r.car_id = ? AND r.status = 'approved' ORDER BY r.created_at DESC"); $stmt->execute([$carId]); $reviews = $stmt->fetchAll(PDO::FETCH_ASSOC); $projectName = htmlspecialchars($car['make'] . ' ' . $car['model']); ?> <?= $projectName ?>
<?= $projectName ?>

Year:

Price: $

Status:

Reviews

Leave a Review

Log in to leave a review.

-

Rating:

No reviews yet.