|
28 | 28 | } |
29 | 29 | $styleLocation = $_POST["default_style_location"]; |
30 | 30 | $customDetailsRequired = $_POST["customFieldRequired"]; |
31 | | - $product_id = $_SESSION["product_id"]; |
| 31 | + // prefer explicit product_id from POST, fallback to session |
| 32 | + $product_id = isset($_POST['product_id']) ? intval($_POST['product_id']) : (isset($_SESSION["product_id"]) ? intval($_SESSION["product_id"]) : 0); |
| 33 | + if ($product_id === 0) { |
| 34 | + echo json_encode(array('success' => false, 'error' => 'product_id not provided')); |
| 35 | + exit; |
| 36 | + } |
32 | 37 | $sizeAvailable = $_POST["sizeAvailable"]; |
33 | 38 |
|
34 | | - // Attempt to insert new design into table |
| 39 | + // fetch existing filenames |
| 40 | + $fstmt = $conn->prepare("SELECT filename_front, filename_back FROM products WHERE product_id = ? LIMIT 1"); |
| 41 | + $fstmt->bind_param("i", $product_id); |
| 42 | + $fstmt->execute(); |
| 43 | + $fres = $fstmt->get_result(); |
| 44 | + $existingFront = ''; |
| 45 | + $existingBack = ''; |
| 46 | + if ($fres && $fres->num_rows > 0) { |
| 47 | + $frow = $fres->fetch_assoc(); |
| 48 | + $existingFront = $frow['filename_front']; |
| 49 | + $existingBack = $frow['filename_back']; |
| 50 | + } |
| 51 | + |
| 52 | + $newFront = $existingFront; |
| 53 | + $newBack = $existingBack; |
| 54 | + |
| 55 | + // handle explicit removal flags (delete current file and clear DB filename) |
| 56 | + if (isset($_POST['remove_front']) && $_POST['remove_front'] == '1') { |
| 57 | + // Prevent deleting the side that is configured as the default style location |
| 58 | + if ($styleLocation === 'front') { |
| 59 | + echo json_encode(array('success' => false, 'error' => 'Cannot delete front design because default style location is front')); |
| 60 | + exit; |
| 61 | + } |
| 62 | + if ($existingFront && $existingFront !== '') { |
| 63 | + $oldPath = UPLOAD_DIR . $existingFront; |
| 64 | + if (file_exists($oldPath)) {@unlink($oldPath);} |
| 65 | + } |
| 66 | + $newFront = ''; |
| 67 | + } |
| 68 | + |
| 69 | + if (isset($_POST['remove_back']) && $_POST['remove_back'] == '1') { |
| 70 | + // Prevent deleting the side that is configured as the default style location |
| 71 | + if ($styleLocation === 'back') { |
| 72 | + echo json_encode(array('success' => false, 'error' => 'Cannot delete back design because default style location is back')); |
| 73 | + exit; |
| 74 | + } |
| 75 | + if ($existingBack && $existingBack !== '') { |
| 76 | + $oldPath = UPLOAD_DIR . $existingBack; |
| 77 | + if (file_exists($oldPath)) {@unlink($oldPath);} |
| 78 | + } |
| 79 | + $newBack = ''; |
| 80 | + } |
| 81 | + |
| 82 | + // handle uploaded files if provided |
| 83 | + if (isset($_FILES['frontFile']) && $_FILES['frontFile']['error'] === UPLOAD_ERR_OK) { |
| 84 | + $file = $_FILES['frontFile']; |
| 85 | + $orig = basename($file['name']); |
| 86 | + // check DB for existing use of this filename by other products |
| 87 | + $check = $conn->prepare("SELECT product_id FROM products WHERE (filename_front = ? OR filename_back = ?) AND product_id != ? LIMIT 1"); |
| 88 | + $check->bind_param("ssi", $orig, $orig, $product_id); |
| 89 | + $check->execute(); |
| 90 | + $cres = $check->get_result(); |
| 91 | + if ($cres && $cres->num_rows > 0) { |
| 92 | + echo json_encode(array('success' => false, 'error' => 'Filename "' . $orig . '" is already used by another product')); |
| 93 | + exit; |
| 94 | + } |
| 95 | + $target = UPLOAD_DIR . $orig; |
| 96 | + // delete the old product file first (per requirement) |
| 97 | + if ($existingFront && $existingFront !== '') { |
| 98 | + $oldPath = UPLOAD_DIR . $existingFront; |
| 99 | + if (file_exists($oldPath)) {@unlink($oldPath);} |
| 100 | + } |
| 101 | + // if a file already exists at the target filename, remove it so we cleanly replace |
| 102 | + if (file_exists($target)) {@unlink($target);} |
| 103 | + if (!move_uploaded_file($file['tmp_name'], $target)) { |
| 104 | + echo json_encode(array('success' => false, 'error' => 'Cannot upload front file')); |
| 105 | + exit; |
| 106 | + } |
| 107 | + $newFront = $orig; |
| 108 | + } |
| 109 | + |
| 110 | + if (isset($_FILES['backFile']) && $_FILES['backFile']['error'] === UPLOAD_ERR_OK) { |
| 111 | + $file = $_FILES['backFile']; |
| 112 | + $orig = basename($file['name']); |
| 113 | + // check DB for existing use of this filename by other products |
| 114 | + $check = $conn->prepare("SELECT product_id FROM products WHERE (filename_front = ? OR filename_back = ?) AND product_id != ? LIMIT 1"); |
| 115 | + $check->bind_param("ssi", $orig, $orig, $product_id); |
| 116 | + $check->execute(); |
| 117 | + $cres = $check->get_result(); |
| 118 | + if ($cres && $cres->num_rows > 0) { |
| 119 | + echo json_encode(array('success' => false, 'error' => 'Filename "' . $orig . '" is already used by another product')); |
| 120 | + exit; |
| 121 | + } |
| 122 | + $target = UPLOAD_DIR . $orig; |
| 123 | + // delete the old product file first (per requirement) |
| 124 | + if ($existingBack && $existingBack !== '') { |
| 125 | + $oldPath = UPLOAD_DIR . $existingBack; |
| 126 | + if (file_exists($oldPath)) {@unlink($oldPath);} |
| 127 | + } |
| 128 | + // if a file already exists at the target filename, remove it so we cleanly replace |
| 129 | + if (file_exists($target)) {@unlink($target);} |
| 130 | + if (!move_uploaded_file($file['tmp_name'], $target)) { |
| 131 | + echo json_encode(array('success' => false, 'error' => 'Cannot upload back file')); |
| 132 | + exit; |
| 133 | + } |
| 134 | + $newBack = $orig; |
| 135 | + } |
| 136 | + |
| 137 | + // Update product including possible new filenames |
35 | 138 | $query = $conn->prepare("UPDATE products |
36 | | - SET product_name = ?, price = ?, tag_list = ?, tColors = ?, lColors = ?, cColors = ?, hColors = ?, categories = ?, subcategories = ?, default_style = ?, style_size = ?, default_style_location = ?, CustomDetailsRequired = ?, sizesAvailable = ? |
| 139 | + SET product_name = ?, price = ?, tag_list = ?, tColors = ?, lColors = ?, cColors = ?, hColors = ?, categories = ?, subcategories = ?, default_style = ?, style_size=?, default_style_location = ?, CustomDetailsRequired = ?, sizesAvailable = ?, filename_front = ?, filename_back = ? |
37 | 140 | WHERE product_id = ?;"); |
38 | | - $query->bind_param("sssssssssssssss", $productName, $price, $tags, $tColors, $lColors, $cColors, $hColors, $categories, $subcategories, $defaultStyle, $styleSize, $styleLocation, $customDetailsRequired, $sizeAvailable, $product_id); |
| 141 | + $query->bind_param("ssssssssssssssssi", $productName, $price, $tags, $tColors, $lColors, $cColors, $hColors, $categories, $subcategories, $defaultStyle, $styleSize, $styleLocation, $customDetailsRequired, $sizeAvailable, $newFront, $newBack, $product_id); |
39 | 142 | if (!$query->execute()) { |
40 | 143 | // If insertion fails, return error message |
41 | | - echo json_encode("ERR: Insertion failed to execute" . $query->error); |
| 144 | + echo json_encode(array('success' => false, 'error' => 'DB update failed: ' . $query->error)); |
42 | 145 | } |
43 | 146 | else { |
44 | | - echo json_encode(1); |
| 147 | + echo json_encode(array('success' => true)); |
45 | 148 | } |
46 | 149 | } |
47 | 150 |
|
|
0 commit comments