ok
Direktori : /home2/selectio/www/thecomponents.in/admin/delivery-boy/ |
Current File : /home2/selectio/www/thecomponents.in/admin/delivery-boy/delete-order.php |
<?php ob_start(); // start session session_start(); // set time for session timeout $currentTime = time() + 25200; $expired = 3600; // if session not set go to login page if (!isset($_SESSION['delivery_boy_id']) && !isset($_SESSION['name'])) { header("location:index.php"); } // if current time is more than session timeout back to login page if ($currentTime > $_SESSION['timeout']) { session_destroy(); header("location:index.php"); } // destroy previous session timeout and create new one unset($_SESSION['timeout']); $_SESSION['timeout'] = $currentTime + $expired; ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <?php include "header.php"; ?> <html> <head> <title>Delete Order | <?= $settings['app_name'] ?> - Dashboard</title> </head> <body> <?php if (isset($_GET['id'])) { $ID = $_GET['id']; if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) { echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>'; return false; } $sql = "SELECT delivery_boy_id FROM orders WHERE id=" . $ID; $db->sql($sql); $res = $db->getResult(); if ($res[0]['delivery_boy_id'] != $_SESSION['id']) { echo "<script>alert('You are not allowed to delete this order.');top.location='orders.php';</script>"; return false; } $sql_query = "SELECT status FROM delivery_boys WHERE id=" . $_SESSION['id']; $db->sql($sql_query); $result = $db->getResult(); if ($result[0]['status'] == 0) { echo "<script>alert('It seems your acount is not active please contact admin for more info!.');top.location='orders.php';</script>"; return false; } } ?> <!-- Content Wrapper. Contains page content --> <div class="content-wrapper"> <?php include('public/confirm-delete-order.php'); ?> </div><!-- /.content-wrapper --> </body> </html> <?php include "footer.php"; ?>