PlaceOrder.php

<?php
include "Conx.php";

header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Headers: Content-Type, Authorization');
header('Access-Control-Allow-Methods: POST, OPTIONS');
header('Content-Type: application/json');

$data = json_decode(file_get_contents('php://input'), true);

if (isset($data['userId'], $data['cartItems'], $data['grandTotal'], $data['address'], $data['cardNumber'], $data['expirationDate'])) {
    $user_id = $data['userId'];
    $cartItems = $data['cartItems'];
    $address = $data['address'];
    $card_number = $data['cardNumber'];
    $expiration_date = $data['expirationDate'];

    $conn->begin_transaction();

    try {
        foreach ($cartItems as $item) {
            $stmt = $conn->prepare(
                "INSERT INTO orders (user_id, product_id, price, quantity, totalPrice, image, order_date, Address, card_number, expiration_date) 
                VALUES (?, ?, ?, ?, ?, ?, NOW(), ?, ?, ?)"
            );

            $stmt->bind_param(
                "iididssss", // Updated types to match the columns
                $user_id,
                $item['product_id'],
                $item['price'],
                $item['quantity'],
                $item['totalPrice'],
                $item['image'],
                $address,
                $card_number,
                $expiration_date
            );

            if (!$stmt->execute()) {
                throw new Exception($stmt->error);
            }

            $stmt->close();
        }

        $conn->commit();
        echo json_encode(['success' => true, 'message' => 'Order placed successfully']);
    } catch (Exception $e) {
        $conn->rollback();
        echo json_encode(['success' => false, 'message' => 'Failed to place order', 'error' => $e->getMessage()]);
    }
} else {
    echo json_encode(['success' => false, 'message' => 'Invalid input data']);
}

$conn->close();
?>