一个简单的PHP购物车系统

1、需求分析

  •  我们需要找到一种将数据库连接到用户的浏览器的方法。用户能够按目录浏览商品。
  •  用户应该能够从商品目录中选取商品以便此后的购买。我们也要能够记录他们选中的物品。
  •  当用户完成购买,要合计他们的订单,获取运送商品细节,并处理付款。
  •  创建一个管理界面,以便管理员在上面添加、编辑图书和目录。

2、解决方案

2.1 用户视图



2.2 管理员视图


2.3 Book-O-Rama中的文件列表

名称

模块

描述

index.php

目录

网站首页,显示系统中的图书目录

show_cat.php

目录

显示特定目录包含的所有图书

show_book.php

目录

显示特定图书的详细信息

show_cart.php

购物车

显示用户购物车的内容。也用来向购物车添加图书

checkout.php

购物车

向用户显示所有的订单细节。获取商品运送细节

purchase.php

购物车

从用户获取付款细节

process.php

购物车

处理付款细节,将订单添加到数据库

login.php

管理

允许管理员登录进行修改

logout.php

管理

管理员退出

admin.php

管理

主管理菜单

change_password_form.php

管理

允许管理员修改密码的表格

change_password.php

管理

修改管理员密码

insert_category_form.php

管理

允许管理员向数据库中添加一个目录的表格

insert_category.php

管理

向数据库中插入新目录

insert_book_form.php

管理

管理员添加新书到系统的表单

insert_book.php

管理

将新书插入到数据库

edit_category_form.php

管理

管理员编辑目录的表单

edit_category.php

管理

更新数据库中的目录

edit_book_form.php

管理

管理员编辑图书信息的表单

edit_book.php

管理

更新数据库中的图书信息

delete_category.php

管理

从数据库中删除一个目录

delete_book.php

管理

从数据库中删除一本图书

book_sc_fns.php

函数

该应用程序的包含文件集合

admin_fns.php

函数

管理脚本使用的函数集合

book_fns.php

函数

用以保存和获取图书数据的函数集合

order_fns.php

函数

用以保存和获取订单数据的函数集合

output_fns.php

函数

输出HTML的函数集合

data_valid_fns.php

函数

验证用户输入数据的函数集合

db_fns.php

函数

连接book_sc数据库的函数集合

user_auth_fns.php

函数

授权管理员用户的函数集合

book_sc.sql

SQL

创建book_sc数据库的SQL

populate.sql

SQL

插入样本数据到book_sc数据库中的SQL


3、实现数据库

3.1 创建book_sc数据库的SQL代码

CREATE DATABASE book_sc; #创建book_sc数据库

USE book_sc;	#使用book_sc数据库

CREATE TABLE customers #创建用户表
(
	customerid INT UNSIGNED NOT NULL AUTO_INCREMENT PRIMARY KEY,
	name CHAR(60) NOT NULL,
	address CHAR(80) NOT NULL,
	city CHAR(30) NOT NULL,
	state CHAR(10),
	zip CHAR(10),
	country CHAR(20) NOT NULL
);

CREATE TABLE orders	#创建订单表
(
	orderid INT UNSIGNED NOT NULL AUTO_INCREMENT PRIMARY KEY,
	customerid INT UNSIGNED NOT NULL,
	amount FLOAT(6,2),
	date DATE NOT NULL,
	order_status CHAR(10),
	ship_name CHAR(60) NOT NULL,
	ship_address CHAR(80) NOT NULL,
	ship_city CHAR(30) NOT NULL,
	ship_state CHAR(20),
	ship_zip CHAR(10),
	ship_country CHAR(20) NOT NULL
);

CREATE TABLE books #创建图书表
(
	isbn CHAR(13) NOT NULL PRIMARY KEY,
	author CHAR(80),
	title CHAR(100),
	catid INT UNSIGNED,
	price FLOAT(4,2) NOT NULL,
	description VARCHAR(255)
);

CREATE TABLE categories #创建目录表
(
	catid INT UNSIGNED NOT NULL AUTO_INCREMENT PRIMARY KEY,
	catname CHAR(60) NOT NULL
);

CREATE TABLE order_items #订单物品表
(
	orderid INT UNSIGNED NOT NULL,
	isbn CHAR(13) NOT NULL,
	item_price FLOAT(4,2) NOT NULL,
	quantity TINYINT UNSIGNED NOT NULL,
	PRIMARY KEY(orderid,isbn)
);

CREATE TABLE admin #管理员表
(
	username char(16) NOT NULL PRIMARY KEY,
	password CHAR(40) NOT NULL
);

GRANT SELECT,INSERT,UPDATE,DELETE
on book_sc.*
to book_sc@localhost IDENTIFIED by 'password';

3.2 数据库测试数据文档

USE book_sc;


INSERT INTO books VALUES ('0672329166','Luke Welling and Laura Thomson','PHP and MySQL Web Development',1,49.99,
'PHP & MySQL Web Development teaches the reader to develop dynamic, secure e-commerce web sites. You will learn to integrate and implement these technologies by following real-world examples and working sample projects.');
INSERT INTO books VALUES ('067232976X','Julie Meloni','Sams Teach Yourself PHP, MySQL and Apache All-in-One',1,34.99,
'Using a straightforward, step-by-step approach, each lesson in this book builds on the previous ones, enabling you to learn the essentials of PHP scripting, MySQL databases, and the Apache web server from the ground up.');
INSERT INTO books VALUES ('0672319241','Sterling Hughes and Andrei Zmievski','PHP Developer\'s Cookbook',1,39.99,
'Provides a complete, solutions-oriented guide to the challenges most often faced by PHP developers\r\nWritten specifically for experienced Web developers, the book offers real-world solutions to real-world needs\r\n');

INSERT INTO categories VALUES (1,'Internet');
INSERT INTO categories VALUES (2,'Self-help');
INSERT INTO categories VALUES (5,'Fiction');
INSERT INTO categories VALUES (4,'Gardening');

INSERT INTO admin VALUES ('admin', sha1('admin'));

4、实现在线目录


 主页-目录

由以下代码实现:

4.1 index.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 网站首页,显示系统中的图书目录
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();    //开始会话
    do_html_header('Welcome to Book-O-Rama');   //页头
    
    echo "<p>Please choose a category:</p>";
    
    $cat_array = get_categories();  //从数据库获取目录
    
    display_categories($cat_array); //显示目录链接
    
    if(isset($_SESSION['admin_user']))  //如果是管理员,显示管理员操作
        display_button("admin.php","admin-menu","Admin Menu");
    do_html_footer();   //页尾
?>

4.2 book_fns.php文件中的函数get_categories()

function get_categories()   //从数据库中获取目录列表
    {
        $conn = db_connect();   //连接数据库
        $query = "select catid,catname from categories";
        $result = @$conn ->query($query);
        if(!$result)    //查询失败,返回false
            return false;
        $num_cats = @$result ->num_rows;
        if($num_cats == 0)  //数据库中无目录,返回false
            return false;
        $result = db_result_to_array($result);
        return $result;
    }

4.3 output_fns.php文件中的函数display_categories()

function display_categories($cat_array) //输出目录
    {
        if(!is_array($cat_array))
        {
            echo "<p>No categories currently available</p>";
            return;
        }
        echo "<ul>";
        foreach($cat_array as $row)
        {
            $url = "show_cat.php?catid=". $row['catid'];
            $title = $row['catname'];
            echo "<li>";
            do_html_URL($url,$title);
            echo "</li>";
        }
        echo "</ul>";
        echo "<hr/>";
    }

4.4 db_fns.php文件中的函数db_result_to_array()

function db_result_to_array($result)   //结果到数组
    {
        $res_array = array();
        
        for($count = 0; $row = $result ->fetch_assoc(); $count++)
            $res_array[$count] = $row;
        
        return $res_array;
    }




Internet目录下的所有图书

 由以下代码实现:

4.5 show_cat.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 显示特定目录包含的所有图书
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    @$catid = $_GET['catid'];
    $name = get_category_name($catid);
    
    do_html_header($name);
    
    $book_array = get_books($catid);
    
    display_books($book_array);
    
    //如果是管理员,显示管理界面按钮
    if(isset($_SESSION['admin_user']))
    {
        display_button("index.php","continue","Continue Shopping");
        display_button("admin.php","admin-menu","Admin Menu");
        display_button("edit_category_form.php?catid=". $catid,"edit-category","Edit Category");
    }
    else    //否则显示主界面按钮
    {
        display_button("index.php","continue-shopping","Continue Shopping");
    }
    do_html_footer();
?>

4.7 book_fns.php文件中的函数get_category_name()

function get_category_name($catid)    //获取目录名
    {
        $conn = db_connect();   //连接数据库
        $query = "select catname from categories where catid = '". $catid ."'";
        $result = @$conn ->query($query);
        if(!$result)    //查询失败,原因为查询出错
            return false;
            
        $num_cats = @$result ->num_rows;
        
        if($num_cats == 0)  //查询失败,原因为无目录
            return false;
        $row = $result ->fetch_object();
        return $row ->catname;
    }

4.8 book_fns.php文件中的函数get_books()

function get_books($catid)  //从数据库中获取图书
    {
        if((!$catid) || ($catid == '')) //如果目录ID为空
            return false;
            
        $conn = db_connect();
        $query = "select * from books where catid = '". $catid ."'";
        $result = @$conn ->query($query);
        if(!$result)    //查询失败,原因为查询出错
            return false;
            
        $num_books = @$result ->num_rows;
        
        if($num_books == 0) //查询失败,原因为无图书
            return false;
        
        $result = db_result_to_array($result);
        return $result;
    }

4.9 output_fns文件中的函数display_books()

function display_books($book_array) //输出图书
    {
        if(!is_array($book_array))
            echo "<p>No books currently available in this category</p>";
        else    //有图书,建表
        {
            echo "<table width = \"100%\" border=\"0\">";
            
            foreach($book_array as $row)
            {
                $url = "show_book.php?isbn=". $row['isbn'];
                echo "<tr><td>";
                //  如果图片存在
                if(@file_exists("images/". $row['isbn'] .".jpg"))
                {
                    $title = "<img src=\"images/". $row['isbn'] .".jpg\" style=\"border: 1px solid black\"/>";
                    do_html_URL($url,$title);
                }
                else
                    echo " ";
                
                echo "</td><td>";
                $title = $row['title'] ." by ". $row['author'];
                do_html_URL($url,$title);
                echo "</td></tr>";
            }
            echo "</table>";
        }
        echo "<hr/>";
    }




PHP and MySQL Web Development的详细信息
由以下代码实现:

4.10 show_book.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 显示特定图书的详细信息
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    $isbn = $_GET['isbn'];
    
    $book = get_book_details($isbn);
    do_html_header($book['title']);
    display_book_details($book);
    
    //设置继续按钮
    $target = "index.php";
    if($book['catid'])
        $target = "show_cat.php?catid = ". $book['catid'];
    
    //如果是管理员,显示编辑链接
    if(check_admin_user())
    {
        display_button("edit_book_form.php?isbn=". $isbn,"edit-item","Edit Item");
        display_button("admin.php","admin-menu","Admin Menu");
        display_button($target,"continue","Continue");
    }
    else
    {
        display_button("show_cart.php?new=". $isbn,"add-to-cart","Add". $book['title']." To My Shopping Cart");
        display_button($target,"continue-shopping","Continue Shopping");
    }
    do_html_footer();
?>

4.11 book_fns.php文件中的函数get_book_details()

function get_book_details($isbn)    //从数据库中获取一本图书的详细说明
    {
        if((!$isbn) || ($isbn == ''))   //如果图书统一书号为空
            return false;
        
        $conn = db_connect();   //连接数据库
        $query = "select * from books where isbn = '". $isbn ."'";
        $result = @$conn ->query($query);
        if(!$result)    //查询失败,原因为查询出错
            return false;
        $result = @$result ->fetch_assoc();
        return $result;
    }

4.12 output_fns.php文件中的函数display_book_details()

function display_book_details($book)    //输出图书详细说明
    {
        if(is_array($book))
        {
            echo "<table><tr>";
            //  如果图片存在
            if(@file_exists("images/". $book['isbn'] .".jpg"))
            {
                $size = getimagesize("images/". $book['isbn'] .".jpg");
                if(($size[0] > 0) && ($size[1] > 0))
                {
                    echo "<td><img src=\"images/". $book['isbn'] .".jpg\" style=\"border: 1px solid black\"/></td>";
                }
            }
            echo "<td><ul>";
            echo "<li><strong>Author:</strong>";
            echo $book['author'];
            echo "</li><li><strong>ISBN:</strong>";
            echo $book['isbn'];
            echo "</li><li><strong>Our Price:</strong>";
            echo number_format($book['price'],2);
            echo "</li><li><strong>Description:</strong>";
            echo $book['description'];
            echo "</li></ul></td></tr></table>";
        }
        else
        {
            echo "<p>The details of this book cannot be displayed at this time.</p>";
        }
        echo "<hr/>";
    }


5、实现购物车


不使用参数的脚本只显示购物车的内容

带有参数new的脚本将添加一个物品到购物车

由以下代码实现:

5.1 show_cart.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 显示用户购物车的内容。也用来向购物车添加图书
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    @$new = $_GET['new'];
    
    if($new)
    {
        if(!isset($_SESSION['cart']))   //购物车中无物品
        {
            $_SESSION['cart'] =array();
            $_SESSION['items'] = 0;
            $_SESSION['total_price'] = '0.00';
        }
        
        if(isset($_SESSION['cart'][$new]))
        {
            $_SESSION['cart'][$new]++;
        }
        else
        {
            $_SESSION['cart'][$new] = 1;
        }
        
        $_SESSION['total_price'] = calculate_price($_SESSION['cart']);
        $_SESSION['items'] = calculate_items($_SESSION['cart']);
    }
    
    if(isset($_POST['save']))
    {
        foreach($_SESSION['cart'] as $isbn => $qty)
        {
            if($_POST[$isbn] == '0')
                unset($_SESSION['cart'][$isbn]);
            else
                $_SESSION['cart'][$isbn] = $_POST[$isbn];
        }

        $_SESSION['total_price'] = calculate_price($_SESSION['cart']);
        $_SESSION['items'] = calculate_items($_SESSION['cart']);
    }
    
    do_html_header("Your shopping cart");
    
    if((@$_SESSION['cart']) && (array_count_values($_SESSION['cart'])))
    {
        display_cart($_SESSION['cart']);
    }
    else
    {
        echo "<p>There are no items in your cart</p><hr/>";
    }
    
    $target = "index.php";
    
    //如果只有一种物品添加到购物车,可以继续购物
    if($new)
    {
        $details = get_book_details($new);
        if($details['catid'])
        {
            $target = "show_cat.php?catid=". $details['catid'];
        }
    }
    
    display_button($target,"continue-shopping","Continue Shopping");
    
    //SSL链接--需要配置,PS:没配置,所以不能使用
//    $path = $_SERVER['PHP_SELF'];   //获取路径
//    $server = $_SERVER['SERVER_NAME'];  //获取主机名
//    $path = str_replace('show_cart.php','',$path);
//    display_button("https://". $server . $path ."checkout.php","go-to-checkout","Go To Checkout");
    
    //非SSL链接
    display_button("checkout.php","go-to-checkout","Go To Checkout");

    do_html_footer(); 
?>

5.2 output_fns.php文件中的函数display_cart()

function display_cart($cart,$change = true,$images = 1)  //显示购物车
    {
        echo "<table border=\"0\" width=\"100%\" cellspacing=\"0\">
                <form action=\"show_cart.php\" method=\"post\">
                    <tr>
                        <th colspan=\"". (1 + $images) ."\" bgcolor=\" #cccccc\">Item</th>
                        <th bgcolor=\"#cccccc\">Price</th>
                        <th bgcolor=\"#cccccc\">Quantity</th>
                        <th bgcolor=\"#cccccc\">Total</th>
                    </tr>";
        //输出购物车中每一项
        foreach($cart as $isbn => $qty)
        {
            $book = get_book_details($isbn);
            echo "<tr>";
            if($images == true) 
            {
                echo "<td align=\"left\">";
                if(file_exists("images/". $isbn .".jpg"))
                {
                    $size = getimagesize("images/". $isbn .".jpg");
                    if(($size[0] > 0) && ($size[1] > 1))    //图片长宽
                    {
                        echo "<img src=\"images/". $isbn .".jpg\"
                                style=\"border: 1px solid black\"
                                width=\"". ($size[0] / 3) ."\"
                                height=\"". ($size[1] / 3) ."\"/>";
                    }
                }
                else
                    echo " ";
                echo "</td>";
            }
            echo "<td align=\"left\">
                    <a href=\"show_book.php?isbn=". $isbn ."\">". $book['title'] ."</a> by". $book['author'] ."</td>
                    <td align=\"center\">\$". number_format($book['price'],2) ."</td><td align=\"center\">";
            
            //如果允许更改数量
            if ($change == true) 
            {
                echo "<input type=\"text\" name=\"".$isbn."\" value=\"".$qty."\" size=\"3\">";
            } 
            else 
            {
                echo $qty;
            }
                echo "</td><td align=\"center\">\$".number_format($book['price']*$qty,2)."</td></tr>\n";
  }

        
        //总数
        echo "<tr>
                <th colspan=\"". (2 + $images) ."\" bgcolor = \"#cccccc\"> </th>
                <th align = \"center\" bgcolor=\"#cccccc\">". $_SESSION['items'] ."</th>
                <th align = \"center\" bgcolor=\"#cccccc\">\$". number_format($_SESSION['total_price'],2) ."</th></tr>";
        
        //保存按钮
        if($change == true)
        {
            echo "<tr>
                    <td colspan = \"". (2 + $images) ."\"> </td>
                    <td align = \"center \">
                        <input type=\"hidden\" name=\"save\"value=\"true\" />
                        <input type = \"image\" src = \"images/save-changes.gif\" border = \" 0 \" alt = \" Save Changes \" />
                    </td>
                    <td> </td>
                    </tr>";
        }
        echo "</form></table>";
    }

5.3 book_fns.php文件中的函数calculate_price()

function calculate_price($cart)     //计算购物车中物品总价
    {
        $price = 0.0;
        if(is_array($cart))
        {
            $conn = db_connect();
            foreach($cart as $isbn => $qty)
            {
                $query = "select price from books where isbn ='". $isbn ."'";
                $result = $conn ->query($query);
                if($result)
                {
                    $item = $result ->fetch_object();
                    $item_price = $item ->price;
                    $price += $item_price * $qty;
                }
            }
        }
        return $price;
    }

5.4 book_fns.php文件中的函数calculate_items()

function calculate_items($cart) //计算购物车中的物品总数
    {
        $items = 0;
        if(is_array($cart))
        {
            foreach($cart as $isbn => $qty)
                $items += $qty;
        }
        return $items;
    }



获取顾客的详细信息

由以下代码实现:

5.5 checkout.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 向用户显示所有的订单细节。获取商品运送细节
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    do_html_header("Checkout");
    
    if((@$_SESSION['cart']) && (array_count_values($_SESSION['cart'])))
    {
        display_cart($_SESSION['cart'],false,0);
        display_checkout_form();
    }
    else
    {
        echo "<p>Thers are no items in your cart</p>";
    }
    
    display_button("show_cart.php","continue-shopping","Continue Shopping");
    
    do_html_footer();
?>

5.6 output_fns.php文件中的display_checkout_form()

function display_checkout_form()    //输出付款台界面
    {
        ?>
            <br />
            <table border="0" width="100%" cellspacng="0">
                <form action="purchase.php" method="post">
                    <tr>    <!--客户信息-->
                        <th colspan="2" bgcolor="#cccccc">Your Details</th>
                    </tr>
                    <tr>
                        <td>Name</td>
                        <td><input type="text" name="name" value="" maxlength="40" size="40"/></td>
                    </tr>
                    <tr>
                        <td>Address</td>
                        <td><input type="text" name="address" value="" maxlength="40" size="40"/></td>
                    </tr>
                    <tr>
                        <td>City/Suburb</td>
                        <td><input type="text" name="city" value="" maxlength="20" size="40"/></td>
                    </tr>
                    <tr>
                        <td>State/Province</td>
                        <td><input type="text" name="state" value="" maxlength="20" size="40"/></td>
                    </tr>
                    <tr>
                        <td>Postal Code or Zip Code</td>
                        <td><input type="text" name="zip" value="" maxlength="10" size="40"/></td>
                    </tr>
                    <tr>
                        <td>Country</td>
                        <td><input type="text" name="country" value="" maxlength="10" size="40"/></td>
                    </tr>
                    
                    <tr>    <!--运单信息-->
                        <th colspan="2" bgcolor="#cccccc">Shipping Address(leave blank if as above)</th>
                    </tr>
                    <tr>
                        <td>Name</td>
                        <td><input type="text" name="ship_name" maxlength=""/></td>
                    </tr>
                    <tr>
                        <td>Address</td>
                        <td><input type="text" name="ship_address" value="" maxlength="40" size="40"/></td>
                    </tr>
                    <tr>
                        <td>City/Suburb</td>
                        <td><input type="text" name="ship_city" value="" maxlength="20" size="40"/></td>
                    </tr>
                    <tr>
                        <td>State/Province</td>
                        <td><input type="text" name="ship_state" value="" maxlength="20" size="40"/></td>
                    </tr>
                    <tr>
                        <td>Postal Code or Zip Code</td>
                        <td><input type="text" name="ship_zip" value="" maxlength="10" size="40"/></td>
                    </tr>
                    <tr>
                        <td>Country</td>
                        <td><input type="text" name="ship_country" value="" maxlength="20" size="40"/></td>
                    </tr>
                    <tr>
                        <td colspan="2" align="center">
                            <p>
                                <strong>Please press Purchase to confirm your purchase, or Continue Shopping to add or remove items.</strong>
                            </p>
                            <?php display_form_button("purchase","Purchase There Items"); ?>
                        </td>
                    </tr>
                </form>
            </table>
            <hr />
        <?php
    }



已填写好信息的订单

获取客户信用卡信息

由以下代码实现:

5.7 purchase.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 从用户获取付款细节
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    do_html_header("Checkout");
    
    //创建变量
    $name = $_POST['name'];
    $address = $_POST['address'];
    $city = $_POST['city'];
    $zip = $_POST['zip'];
    $country = $_POST['country'];
    
    //如果订单细节填满
    if(($_SESSION['cart']) && ($name) && ($address) && ($city) && ($zip) && ($country))
    {
        if(insert_order($_POST) != false)
        {
            display_cart($_SESSION['cart'],false,0);
            
            display_shipping(calculate_shipping_cost());
            
            display_card_form($name);
            
            display_button("show_cart.php","continue-shopping","Continue Shopping");
        }
        else
        {
            echo "<p>Could not store data, please try again.</p><hr/>";
            display_button('checkout.php','back','Back');
        }
    }
    else
    {
        echo "<p>You did not fill in all the fields, please try again.</p><hr/>";
        display_button('checkout.php','back','Back');
    }
    do_html_footer();
?>

5.8 order_fns.php文件中的函数insert_order()

function insert_order($order_details)   //提取订单细节作为变量
    {
        extract($order_details);
        
        //设置邮寄地址为当前地址
        if((!$ship_name) && (!$ship_address) && (!$ship_city) && (!$ship_state) && (!$ship_zip) &&(!$ship_country))
        {
            $ship_name = $name;
            $ship_address = $address;
            $ship_city = $city;
            $ship_state = $state;
            $ship_zip = $zip;
            $ship_country = $country;
        }
        
        //连接数据库
        $conn = db_connect();
        
        //事务开始,必须关闭自动提交
        $conn ->autocommit(false);
        
        $query = "select customrid from customers where
                    name ='". $name ."' and address = '". $address ."'
                    and city = '". $city ."' and state = '". $state ."'
                    and zip = '". $zip ."' and country = '". $country ."'";
                    
        $result = $conn ->query($query);
        
        if(@$result ->num_rows > 0)
        {
            $customer = $result ->fetch_object();
            $customerid = $customer ->customerid;
        }
        else
        {
            $query = "insert into customers values
                    ('','". $name ."','". $address ."','". $city ."','". $state ."','". $zip ."','". $country ."')";
            $result = $conn ->query($query);
            
            if(!$result)
                return false;
        }
        
        $customerid = $conn ->insert_id;    //返回上次查询中自增量的ID
        
        $date = date("Y-m-d");
        
        $query ="insert into orders values
                ('','". $customerid ."','". $_SESSION['total_price'] ."','". $date ."','PARTIAL','". $ship_name ."','". $ship_address ."','". $ship_city ."','". $ship_state ."','". $ship_zip ."','". $ship_country ."')";
                
        $result = $conn ->query($query);
        if(!$result)
            return false;
            
        $query = "select orderid from orders where
                    customerid ='". $customerid ."' and
                    amount > (". $_SESSION['total_price'] ."-.001) and
                    amount < (". $_SESSION['total_price'] ."+.001) and
                    date ='". $date ."' and
                    order_status = 'PARTIAL' and
                    ship_name ='". $ship_name ."' and
                    ship_address ='". $ship_address ."' and
                    ship_city ='". $ship_city ."' and
                    ship_state ='". $ship_state ."' and
                    ship_zip ='". $ship_zip ."' and
                    ship_country ='". $ship_country ."'";
        
        $result = $conn ->query($query);
        
        if($result ->num_rows > 0)
        {
            $order = $result ->fetch_object();
            $orderid = $order ->orderid;
        }
        else
            return false;
        
        foreach($_SESSION['cart'] as $isbn => $quantity)
        {
            $detail = get_book_details($isbn);
            $query = "delete from order_items where
                      orderid = '". $orderid ."' and isbn = '". $isbn ."'";
            $result = $conn ->query($query);
            
            $query = "insert into order_items values
                        ('". $orderid ."','". $isbn ."',". $detail['price'] .",$quantity)";
            $result = $conn ->query($query);
            if(!$result)
                return false;
        }
        
        //事务关闭,开启自动提交
        $conn ->commit();
        $conn ->autocommit(true);
        
        return $orderid;
    }

5.9 output_fns.php文件中的函数display_shipping()

function display_shipping($shipping)    //输出包含运费的总价
    {
        ?>
            <table border="0" width="100%" cellspacing="0">
                <tr>
                    <td align="left">Shipping</td>
                    <td align="right"> <?php echo number_format($shipping, 2); ?></td>
                </tr>
                <tr>
                    <th bgcolor="#cccccc" align="left">TOTAL INCLUDING SHIPPING</th>
                    <th bgcolor="#cccccc" align="right">$ <?php echo number_format($shipping+$_SESSION['total_price'], 2); ?></th>
                </tr>
            </table>
            <br />
        <?php
    }

5.10 output_fns.php文件中的函数display_card_form()

function display_card_form($name)   //输出信用卡信息
    {
        ?>
            <table border="0" width="100%" cellspacing="0">
                <form action="process.php" method="post">
                    <tr>
                        <th colspan="2" bgcolor="#cccccc">Credit Card Details</th>
                    </tr>
                    <tr>
                        <td>Type</td>
                        <td>
                            <select name="card_type">
                                <option value="VISA">VISA</option>
                                <option value="MasterCard">MasterCard</option>
                                <option value="American Express">American Express</option>
                            </select>
                        </td>
                    </tr>
                    <tr>
                        <td>Number</td>
                        <td><input type="text" name="card_number" value="" maxlength="16" size="40"/></td>
                    </tr>
                    <tr>
                        <td>AMEX code (if required)</td>
                        <td><input type="text" name="amex_code" value="" maxlength="4" size="4"/></td>
                    </tr>
                    <tr>
                        <td>Expiry Date</td>
                        <td>Month
                            <select name="card_month">
                                <option value="01">01</option>
                                <option value="02">02</option>
                                <option value="03">03</option>
                                <option value="04">04</option>
                                <option value="05">05</option>
                                <option value="06">06</option>
                                <option value="07">07</option>
                                <option value="08">08</option>
                                <option value="09">09</option>
                                <option value="10">10</option>
                                <option value="11">11</option>
                                <option value="12">12</option>
                            </select>
                            Year
                            <select name="card_year">
                                <?php
                                    for($y = date("Y"); $y < date("Y") + 10; $y++)
                                        echo "<option value =\"". $y ."\">" . $y ."</option>";
                                ?>
                            </select>
                        </td>
                    </tr>
                    <tr>
                        <td>Name on Card</td>
                        <td><input type="text" name="card_name" value="<?php echo $name; ?>" maxlength="40" size="40"/></td>
                    </tr>
                    <tr>
                        <td colspan="2" align="center">
                            <p>
                                <strong>Please press Purchase to confirm yout purchase, or Continue Shopping to add or remove items</strong>
                            </p>
                            <?php display_form_button('purchase','Purchase These Items'); ?>
                        </td>
                    </tr>
            </table>
        <?php
    }

5.11 db_fns.php文件中的函数db_connect()

function db_connect()   //连接数据库
    {
        $result = new mysqli('localhost','book_sc','password','book_sc');
        if(!$result)    //连接失败
            return false;
        $result ->autocommit(true);
        return $result;
    }




6、实现付款


已填写好信息的信用卡详细信息

购物成功

由以下代码实现:

6.1 process.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 处理付款细节,将订单添加到数据库
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    do_html_header('Checkout');
    
    //创建变量
    $card_type = $_POST['card_type'];
    $card_number = $_POST['card_number'];
    $card_month = $_POST['card_month'];
    $card_year = $_POST['card_year'];
    $card_name = $_POST['card_name'];
    
    if(($_SESSION['cart']) && ($card_type) && ($card_number) && ($card_month) && ($card_year) &&($card_name))
    {
        //显示没有图片,不允许更改数量的购物车
        display_cart($_SESSION['cart'],false,0);
        
        display_shipping(calculate_shipping_cost());
        
        if(process_card($_POST))
        {
            //清空购物车
            session_destroy();
            //这里可以写一些关于信用卡接口调用的函数,调用银行写好的接口
            echo "<p>Thank you for shopping with us. Your order has been placed.</p>";
            
            display_button("index.php","continue-shopping","Continue Shopping");
        }
        else
        {
            echo "<p>Could not process your card. Please contact the card issuer or try again.</p>";
            display_button("purchase.php","back","Back");
        }
    }
    else
    {
        echo "<p>You did not fill in all the fields,please try again.</p><hr/>";
        display_button("purchase.php","back","Back");
    }
    do_html_footer();
?>


7、实现一个管理界面


登录界面

由以下代码实现:

7.1 admin.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 主管理菜单
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    
    session_start();
    
    if((@$_POST['username']) && (@$_POST['passwd']))  //尝试登陆
    {
        $username = $_POST['username'];
        $passwd = $_POST['passwd'];
        
        if(login($username,$passwd))
        {
            $_SESSION['admin_user'] = $username;
        }
        else
        {
            do_html_header("Problem:");
            echo "<p>You could not be logged in.<br />
                    You must be logged in to view this page.</p>";
            do_html_URL('login.php','Login');
            do_html_footer();
            exit;
        }
    }
    
    do_html_header("Administration");
    
    if(check_admin_user())
    {
        display_admin_menu();
    }
    else
    {
        echo "<p>You are not authorized to enter the administration area.</p>";
        do_html_URL('login.php','Login');
    }
    do_html_footer();
?>

7.2 user_auth_fns.php文件中的函数login()

function login($username,$password) //登录
    {
        $conn = db_connect();   //连接数据库
        
        if(!$conn)
            return 0;
        
        //检查用户名唯一性
        $query = "select * from admin where username='". $username ."'
                    and password = sha1('". $password ."')";
        $result = $conn ->query($query);
        
        if(!$result)
            return 0;
            
        if($result ->num_rows > 0)
            return 1;
        else
            return 0;
    }

7.3 user_auth_fns.php文件中的函数check_admin_user()

function check_admin_user() //检查是否是管理员
    {
        if(isset($_SESSION['admin_user']))
            return true;
        else
            return false;
    }



管理主界面

由以下代码实现:


7.4 output_fns.php文件中的函数display_admin_menu()

function display_admin_menu()   //输出管理员菜单
    {
        ?>
        <br />
        <a href="index.php">Go to main site</a><br />
        <a href="insert_category_form.php">Add a new category</a><br />
        <a href="insert_book_form.php">Add a new book</a><br />
        <a href="change_password_form.php">Change admin password</a><br />
        <?php   
    }

    function display_button($target,$image,$alt)    //显示按钮
    {
        echo "<div align= \" center \"><a href=\"". $target ."\">
                <img src=\"images/". $image .".gif\"
                alt=\"". $alt ."\" border = \" 0 \" height = \" 50 \"
                width = \" 135 \" /></a></div>";
    }



目录添加

目录添加成功

目录页中可以看出多了Novel目录

由以下代码实现:

7.5 insert_category_form.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 允许管理员向数据库中添加一个目录的表格
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含
    require_once('book_sc_fns.php');
    session_start();
    
    do_html_header();
    if(check_admin_user())
    {
        display_category_form();
        do_html_URL("admin.php","Back to administrtion menu");
    }
    else
    {
        echo "<p>You are not authorized to enter the administation area.</p>";
    }
    do_html_footer();
?>

7.6 insert_category.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 向数据库中插入新目录
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含
    require_once('book_sc_fns.php');
    session_start();
    
    do_html_header("Adding a category");
    if(check_admin_user())
    {
        if(filled_out($_POST))
        {
            $catname =$_POST['catname'];
            if(insert_category($catname))
            {
                echo "<p>Category \"". $catname ."\" was added to the database.</p>";
            }
            else
            {
                echo "<p>Category \"". $catname ."\" could not be added to the database.</p>";
            }
        }
        else
        {
            echo "<p>You have not filled out the form. Please try again.</p>";
        }
        do_html_URL("admin.php","Back to administration menu");
    }
    else
    {
        echo "<p>You are not authorised to view this page.</p>";
    }
    do_html_footer();
?>




管理员目录界面

目录编辑界面-可更新,删除

目录更新成功

目录主界面可以看到该目录更改成功

由以下代码实现:

7.7 edit_category_form.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 管理员编辑目录的表单
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    session_start();
    
    do_html_header("Edit category");
    if(check_admin_user())
    {
        if($catname = get_category_name($_GET['catid']))
        {
            $catid = $_GET['catid'];
            $cat = compact('catname','catid');
            display_category_form($cat);
        }
        else
        {
            echo "<p>Could not retrieve category details.</p>";
        }
        do_html_URL("admin.php","Back to administration menu");
    }
    else
    {
        echo "<p>You are not authorized to enter the administration area.</p>";
    }
    do_html_footer();
?>

7.8 edit_category.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 更新数据库中的目录
 */
    //require_once语句和require语句完全相同,唯一区别是PHP会检查该文件是否已经被包含过,如果是则不会再次包含。
    require_once('book_sc_fns.php');
    session_start();
    
    do_html_header("Updating category");
    if(check_admin_user())
    {
        if(filled_out($_POST))
        {
            if(update_category($_POST['catid'],$_POST['catname']))
            {
                echo "<p>Category was updated.</p>";
            }
            else
            {
                echo "<p>Category could not be updated.</p>";
            }
        }
        else
        {
            echo "<p>you have not filled out the form. Please try again.</p>";
        }
        do_html_URL("admin.php","Back to administration menu");
    }
    else
    {
        echo "<p>You are not authorised to view this page.</p>";
    }
    do_html_footer();
?>

7.9 admin_fns.php

<?php

/**
 * @author switch
 * @copyright 2015
 * 管理脚本使用的函数集合
 */
    function display_category_form($category = '')  //显示目录表单
    {
        //如果传入存在目录,进入编辑模式
        $edit = is_array($category);
        ?>
            <form method="post" action="<?php echo $edit ? 'edit_category.php' :'insert_category.php'; ?>">
                <table border="0">
                    <tr>
                        <td>Category Name:</td>
                        <td><input type="text" name="catname" size="40" maxlength="40" value="<?php echo $edit ? $category['catname'] : ''; ?>"/></td>
                    </tr>
                    <tr>
                        <td <?php if(!$edit){echo "colspan=2";} ?> align="center">
                            <?php
                                if($edit)
                                {
                                    echo "<input type=\"hidden\" name=\"catid\" value=\"". $category['catid'] ."\" />";
                                }
                            ?>
                            <input type="submit" value="<?php echo $edit ? 'Update' : 'Add'; ?> Category"/></form>
                        </td>
                        <?php
                            if($edit)   //允许删除存在目录
                            {
                                echo "<td>
                                    <form method=\"post\" action=\"delete_category.php\">
                                    <input type=\"hidden\" name=\"catid\" value=\"". $category['catid'] ."\" />
                                    <input type=\"submit\" value=\"Delete category\" />
                                    </form></td>";
                            }
                        ?>
                    </tr>
                </table>
        <?php
    }

    function display_book_form($book = '')  //显示图书表单
    {
        //如果传入图书存在,进入编辑模式
        $edit = is_array($book);
        ?>
        
        <form method="post" action="<?php echo $edit ? 'edit_book.php' : 'insert_book.php'; ?>">
            <table border="0">
                <tr>
                    <td>ISBN:</td>
                    <td><input type="text" name="isbn" value="<?php echo $edit ? $book['isbn'] : ''; ?>" /></td>
                </tr>
                <tr>
                    <td>Book Title:</td>
                    <td><input type="text" name="title" value="<?php echo $edit ? $book['title'] : ''; ?>" /></td>
                </tr>
                <tr>
                    <td>Book Author:</td>
                    <td><input type="text" name="author" value="<?php echo $edit ? $book['author'] : ''; ?>"/></td>
                </tr>
                <tr>
                    <td>Category:</td>
                    <td>
                        <select name="catid">
                            <?php
                                $cat_array = get_categories();
                                foreach($cat_array as $thiscat)
                                {
                                    echo "<option value=\"". $thiscat['catid'] ."\"";
                                    if(($edit) && ($thiscat['catid'] == $book['catid']))
                                    {
                                        echo " selected";
                                    }
                                    echo ">". $thiscat['catname'] ."</option>";
                                }
                            ?>
                        </select>
                    </td>
                </tr>
                <tr>
                    <td>Price:</td>
                    <td><input type="text" name="price" value="<?php echo $edit ? $book['price'] : ''; ?>" /></td>
                </tr>
                <tr>
                    <td>Description:</td>
                    <td><textarea rows="3" cols="50" name="description"><?php echo $edit ? $book['description'] : ''; ?></textarea></td>
                </tr>
                <tr>
                    <td <?php if (!$edit) { echo "colspan=2"; }?> align="center">
                    <?php
                        if ($edit)
                            echo "<input type=\"hidden\" name=\"oldisbn\" value=\"".$book['isbn']."\" />";?>
                        <input type="submit" value="<?php echo $edit ? 'Update' : 'Add'; ?> Book" /></form></td>
                    <?php
                        if ($edit) 
                        {
                            echo "<td>
                                    <form method=\"post\" action=\"delete_book.php\">
                                    <input type=\"hidden\" name=\"isbn\" value=\"".$book['isbn']."\" />
                                    <input type=\"submit\" value=\"Delete book\"/>
                                </form></td>";

                        }
                    ?>
                    </td>
                </tr>
            </table>
        </form>
    <?php
    }
    
    function display_password_form()    //显示更改密码表单
    {
        ?>
            <br />
            <form action="change_password.php" method="post">
                <table width="250" cellpadding="2" cellspacing="0" bgcolor="#cccccc">
                    <tr>
                        <td>Old password:</td>
                        <td><input type="password" name="old_passwd" size="16" maxlength="16"/></td>
                    </tr>
                    <tr>
                        <td>New password:</td>
                        <td><input type="password" name="new_passwd" size="16" maxlength="16"/></td>
                    </tr>
                    <tr>
                        <td>Repeat new password:</td>
                        <td><input type="password" name="new_passwd2" size="16" maxlength="16"/></td>
                    </tr>
                    <tr>
                        <td colspan="2" align="center"><input type="submit" value="Change password"/></td>
                    </tr>
                </table>
            </form>
            <br />
        <?php
    }
    
    function insert_category($catname)  //目录插入
    {
        $conn = db_connect();   //数据库连接
        
        $query = "select *
                    from categories
                    where catname='". $catname ."'";
        $result = $conn ->query($query);
        if((!$result) || ($result ->num_rows != 0))
            return false;
        
        $query = "insert into categories values
                ('','". $catname ."')";
        $result = $conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    }
    
    function insert_book($isbn,$title,$author,$catid,$price,$description)   //图书插入
    {
        $conn = db_connect();   //连接数据库
        
        $query = "select * from books
                    where isbn='". $isbn ."'";
        $result = $conn ->query($query);
        if((!$result) || ($result ->num_rows != 0))
            return false;
        
        $query = "insert into books values
                ('". $isbn ."','". $author ."','". $title ."',
                '". $catid ."','". $price ."','". $description ."')";

        
        $result = $conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    }
    
    function update_category($catid,$catname)   //更改目录名称
    {
        $conn = db_connect();   //连接数据库
        
        $query = "update categories
                    set catname='". $catname ."'
                    where catid='". $catid ."'";
        $result = @$conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    }
    
    function update_book($oldisbn,$isbn,$title,$author,$catid,$price,$description)
    {
        $conn = db_connect();   //连接数据库
        
        $query = "update books
                    set isbn='". $isbn ."',
                    title='". $title ."',
                    author='". $author ."',
                    catid='". $catid ."',
                    price ='". $price ."',
                    description='". $description ."'
                    where isbn='". $oldisbn ."'";
        $result = @$conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    }
    
    function delete_category($catid)    //删除目录
    {
        $conn = db_connect();   //连接数据库
        
        $query = "select *
                    from books
                    where catid='". $catid ."'";
        $result = @$conn ->query($query);
        if((!$result) || (@$result ->num_rows > 0)) //如果该目录有图书,无法删除该目录
            return false;
        
        $query = "delete from categories
                    where catid='". $catid ."'";
        $result = @$conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    }
    
    function delete_book($isbn) //删除图书
    {
        $conn = db_connect();   //连接数据库
            
        $query = "delete from books
                    where isbn='". $isbn ."'";
        $result = @$conn ->query($query);
        if(!$result)
            return false;
        else
            return true;
    } 
?>

7.10 目录删除操作,图书添加,更新,删除操作基本与上述操作差不多,这里就不在演示,可以下载代码查看




8、扩展

本项目创建了一个相当简单的PHP购物车系统。我们还可以对它进行许多改进和提高:
  • 在真正的在线商店,可能必须建立一些订单记录和实施系统——在这个系统中,用户无法看到已经预定了的订单。
  • 顾客希望在不必与我们联系的前提下就能检查到他们的订单处理情况。用户应当可以通过一种身份验证方式使之能够查看自己以前的订单,并且也可以将操作与个人情况紧密地结合起来。也更方便我们收集一些用户习惯信息。
  • 图书的图片可以通过FTP之类的服务传输到该网站的图像目录并给它们取一个合适的名字。可以把文件上载到图片插入页,以使该操作方便一些。
  • 可以添加用户登录、个性化设置以及书目推荐、在线评论、会员制度、库存级别检查等。可以添加的功能是非常多的。

9、源代码



已标记关键词 清除标记
相关推荐
©️2020 CSDN 皮肤主题: 大白 设计师:CSDN官方博客 返回首页