43 lines
1018 B
PHP
43 lines
1018 B
PHP
<?php
|
|
header('Content-Type: application/json');
|
|
|
|
if (!isset($baseDir)) $baseDir = $_SERVER['DOCUMENT_ROOT'];
|
|
|
|
require_once $baseDir . '/../scripts/session_functions.php';
|
|
|
|
ini_wkvs_session();
|
|
|
|
check_user_permission('trainer');
|
|
|
|
verify_csrf();
|
|
|
|
$userId = $_SESSION['user_id_trainer'];
|
|
|
|
$type = 'tr';
|
|
|
|
$data = include $baseDir . '/../scripts/db/db-verbindung-script.php';
|
|
|
|
if ($data['success'] === false){
|
|
echo json_encode(['success' => false, 'message' => $data['message']]);
|
|
exit;
|
|
}
|
|
|
|
require $baseDir . '/../scripts/db/db-tables.php';
|
|
|
|
// --- Check for existing open order ---
|
|
$sql = "SELECT * FROM `$tableOrders` WHERE user_id = ? AND order_status = 0 LIMIT 1";
|
|
$stmt = $mysqli->prepare($sql);
|
|
$stmt->bind_param("i", $userId);
|
|
$stmt->execute();
|
|
$result = $stmt->get_result();
|
|
$result = $result->fetch_assoc();
|
|
$stmt->close();
|
|
|
|
if ($result) {
|
|
$_SESSION['order_id'] = $result['order_id'];
|
|
$_SESSION['order_preis'] = $result['preis'];
|
|
}
|
|
|
|
echo json_encode(['success' => true, 'result' => $result]);
|
|
exit;
|
|
?>
|