Same product id, quantity not growing

Tossyy

When I add the product twice, it keep displaying in a new line, with new quantity. I want the quantity to update. what I'm doing wrong? here's the code:

 <?
include "functions.php";
if(!$_SESSION['logged']){die();}
$_POST['taxes']=str_replace('undefined,','',$_POST['taxes']);
if(empty($_SESSION['products']))$_SESSION['products']=array();

if($_POST['action']=='add'){
$_POST[$qty]=str_replace(',','.',$_POST[$qty]);
    $_SESSION['products'][]=$_POST;
}
if($_POST['action']=='delete'){
    unset($_SESSION['products'][$_POST['id']]);
}    

if($_POST['action']=='update'){
    if($_POST['rule']==0)$_SESSION['products'][$_POST['id']]['qty']-=1;
    if($_POST['rule']==1)$_SESSION['products'][$_POST['id']]['qty']+=1;
}
?>

thanks.

traq

Tossyy;11038243 wrote:
When I add the product twice, it keep displaying in a new line, with new quantity. I want the quantity to update. what I'm doing wrong?

Well, you're not showing us the part of your code that actually displays anything. That might help. But I would suspect your trouble starts here:

if($_POST['action']=='add'){
    $_POST[$qty]=str_replace(',','.',$_POST[$qty]);
    $_SESSION['products'][]=$_POST;
}

You're adding a new item to your array without regard to what that item contains.

If you wanted the quantity to update, wouldn't you be using [font=monospace]action=update[/font] (not [font=monospace]add[/font])?

Also, looking at your "update" code, it seems you're expecting [font=monospace]$_SESSION["products"][/font] to be indexed by id (but if they were populated using the "add" code above, they'd have simple numeric indexes)…?

Weedpacket

Also, every element of the [font=monospace]$_SESSION['products'][/font] array would contain a copy of the entire submitted form as it existed at the time it was added.

Tossyy

here's the inserting part:

}		

	if(isset($_POST['step2'])){
		mysql_query("insert into invoices(client_name,client_email,client_phone,client_address,client_location,payment_method,vat,total,currency,date) values('".$_SESSION['order']['client_name']."','".$_SESSION['order']['client_email']."','".$_SESSION['order']['client_phone']."','".$_SESSION['order']['client_address']."','".$_SESSION['order']['client_location']."','".$_SESSION['order']['payment_method']."','".$cfg['vat']."','".$_SESSION['total_order']."','".$cfg['currency']."','".time()."')")or die(mysql_error()."1");
			$id=mysql_insert_id();

		foreach($_SESSION['products'] as $tag=>$val){
			mysql_query("insert into products(title,description,qty,price,taxes,invoice) values('".$val['title']."','".$val['description']."','".$val['qty']."','".$val['price']."','".$val['taxes']."','".$id."')")or die(mysql_error()."2");
		}		
		unset($_SESSION['products'],$_SESSION['order']);
		$_SESSION['invoice']=$id;
		header("Location: add.php?step=3");
	}

johanafm

Stop using the mysql extension. Use [man]mysqli[/man] or [man]PDO[/man].
The same info can be found both at php.net and mysql.com

This extension is deprecated as of PHP 5.5.0, and is not recommended for writing new code as it will be removed in the future. Instead, either the mysqli or PDO_MySQL extension should be used. See also the MySQL API Overview for further help while choosing a MySQL API.

I would recommend using PDO because it supports named placeholders for prepared statements. You'd be adviced to use prepared statements when using external data with your queries. On top of that, prepared statements with named placeholders would do a lot for the readability of your queries.

Consider for example your product insert query, which at least I find a lot more readable this way.

# Where $db would be an instance of PDO
$stmt = $db->prepare("insert into products
(title,description,qty,price,taxes,invoice) values
(:title, :description, :quantity, :price, :taxes, :id)");
$stmt->execute([
    'title'         => $val['title'],
    'description'   => $val['description'],
    'quantity'      => $val['qty'],
    'price'         => $val['price'],
    'taxes'         => $val['taxes'],
    'id'            => $id
];

But first off, you would still have your entire posted form in the $SESSION['products'] array. Including $SESSION['products']['action'] which is one of 'add', 'delete', 'update'.

Apart from that, what does $_POST actually contain? Specifically, how do you transfer product information? And how do you add additional products to the form before it is being submitted?

traq

Tossyy;11038253 wrote:
here's the inserting part …

Why is that interesting? Your original question was about how your information is being displayed, and that's the code that I asked to see.

The code that inserts to your database isn't strictly relevant to your question (though it would do well to be updated, as @ suggests; ext/mysql has been outdated since 2004. [font=monospace]die[/font] is also a very undesirable way to handle errors).