Product Page

'. populateContent() .'

'; require '../layout.php'; function populateContent() { $server = 'mysql'; $username = 'student'; $password = 'student'; $schema = 'ibuy'; $pdo = new PDO('mysql:dbname=' . $schema . ';host=' . $server, $username, $password); $stmt = $pdo->prepare('SELECT * FROM listings WHERE listing_id= :listing_id'); $values = [ 'listing_id' => $_GET['listing_id'] ]; $stmt->execute($values); $listing = $stmt->fetch(); $stmt = $pdo->prepare('SELECT * FROM categories WHERE category_id = :category_id'); $values = [ 'category_id' => $listing['listing_category'] ]; $stmt->execute($values); $category = $stmt->fetch(); $stmt = $pdo->prepare('SELECT MAX(amount) FROM bids WHERE listing_id = :listing_id'); $values = [ 'listing_id' => $listing['listing_id'] ]; $stmt->execute($values); $bid = $stmt->fetch(); $stmt = $pdo->prepare('SELECT * FROM users WHERE email = :email'); $values = [ 'email' => $listing['listing_email'] ]; $stmt->execute($values); $user = $stmt->fetch(); $output = ' product name

'. $listing['listing_name'] .'

'. $category['category_name'] .'

Auction created by '. $user['first_name'].$user['last_name'] .'

Current bid: '. $bid['MAX(amount)'] .'

Time left:'. round((strtotime($listing['listing_deadline']) - strtotime(date('Y-m-d H:i:s')))/60,1 ) .' Minutes

'. $listing['listing_description'] .'

Reviews of User.Name

Ali said great ibuyer! Product as advertised and delivery was quick 29/09/2019
Dave said disappointing, product was slightly damaged and arrived slowly.22/07/2019
Susan said great value but the delivery was slow 22/07/2019

'; return $output; } ?>