booking.php

<?php
include('Components/db/db_connection.php');
include('Components/header.php');
include('Components/navbar.php');
include('Components/footer.php');

// check if form has been submitted
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
    $counselor_name = $_POST['counselor-name'];
    $session_time = $_POST['session-time'];
    $session_date = $_POST['session-date'];
    $status = $_POST['counseling-type'];
    $icnum = $_POST['client-ic'];
    $topics = $_POST['client-topic'];

    // Convert session_time to datetime format
    $session_datetime = date("Y-m-d H:i:s", strtotime($session_date . " " . $session_time));

    // Check if appointment already exists
    $query = "SELECT COUNT(*) as count FROM appointment WHERE appointment_date = '$session_datetime' AND name = '$counselor_name'";
    $result = mysqli_query($connection, $query);
    $count = mysqli_fetch_assoc($result)['count'];

    if ($count > 0) {
        // Appointment already exists, output error message
        echo '<div class="bg-red-100 border border-red-400 text-red-700 px-4 py-3 rounded relative mb-4" role="alert">
                <span class="block sm:inline">Tempahan gagal, waktu yang anda pilih telah ditempah oleh kaunselor lain. Sila pilih waktu yang lain.</span>
            </div>';
    } else {
        // Insert data into db
        $query = "INSERT INTO appointment (name,appointment_date,status,topics) VALUES ('$counselor_name','$session_datetime','$status','$topics')";
        mysqli_query($connection, $query);

        if (mysqli_affected_rows($connection) > 0) {
            echo '<div class="bg-green-100 border border-green-400 text-green-700 px-4 py-3 rounded relative mb-4" role="alert">
                    <span class="block sm:inline">Tempahan Disahkan</span>
                </div>';
        } else {
            echo '<div class="bg-red-100 border border-red-400 text-red-700 px-4 py-3 rounded relative mb-4" role="alert">
                    <span class="block sm:inline">Tempahan Tidak Disahkan, sila cuba lagi</span>
                </div>';
        }
    }
}
?>

<body class="bg-gray-100">

    <div class="container mx-auto my-4 p-4 bg-white rounded-lg shadow-lg">
        <h2 class="text-xl font-bold mb-4">Tempah sesi kaunseling anda</h2>

        <form method="POST" class="space-y-4">
            <?php
            // Add a CSRF token to the form
            $_SESSION['token'] = bin2hex(random_bytes(32));
            ?>
            <input type="hidden" name="token" value="<?php echo $_SESSION['token']; ?>">
            <div>
                <label for="counselor-name" class="block text-gray-700 font-bold mb-2">Nama Kaunselor:</label>
                <select id="counselor-name" name="counselor-name" class="w-full p-2 border rounded-md" required>
                    <option value="Mohd Khairulizam bin Ismail" selected>Mohd Khairulizam bin Ismail</option>
                </select>
                <div>
                    <label for="session-time" class="block text-gray-700 font-bold mb-2">Waktu Sesi:</label>
                    <select id="session-time" name="session-time" class="w-full p-2 border rounded-md" required>
                        <option value="" disabled selected>Pilih Waktu Sesi</option>
                        <option value="08:00:00">8 - 9 AM</option>
                        <option value="10:00:00">10 - 11 AM</option>
                        <option value="11:00:00">11 - 12 AM</option>
                    </select>
                </div>

                <div>
                    <label for="session-date" class="block text-gray-700 font-bold mb-2">Tarikh Sesi:</label>
                    <input type="date" id="session-date" name="session-date" class="w-full p-2 border rounded-md" required min="<?php echo date('Y-m-d'); ?>">
                    <span id="date-error" class="text-red-500 hidden">Sila pilih tarikh lain. Sesi tidak diadakan pada hujung minggu.</span>
                </div>

                <div>
                    <label for="counseling-type" class="block text-gray-700 font-bold mb-2">Jenis Kaunseling:</label>
                    <select id="counseling-type" name="counseling-type" class="w-full p-2 border rounded-md" required>
                        <option value="" disabled selected>Pilih Jenis Kaunseling</option>
                        <option value="Kaunseling Individu">Kaunseling Individu</option>
                        <option value="Kaunseling Kelompok">Kaunseling Kelompok</option>
                    </select>
                </div>

                <div>
                    <label for="client-topic" class="block text-gray-700 font-bold mb-2">Topik yang ingin Dibincangkan:</label>
                    <input type="text" id="client-topic" name="client-topic" class="w-full p-2 border rounded-md" required>
                </div>

                <div>
                    <label for="client-name" class="block text-gray-700 font-bold mb-2">Nombor IC:</label>
                    <input type="text" id="client-ic" name="client-ic" class="w-full p-2 border rounded-md" value="<?php echo $_SESSION['ic']; ?>" readonly>
                </div>

                <button type="submit" name="submit" class="bg-blue-500 hover:bg-blue-700 text-white font-bold py-2 px-4 rounded">
                    Tempah
                </button>

            </div>
        </form>
    </div>

    <script>
        const dateInput = document.getElementById('session-date');
        const dateError = document.getElementById('date-error');

        dateInput.addEventListener('change', () => {
            const selectedDate = new Date(dateInput.value);
            const dayOfWeek = selectedDate.getDay();

            if (dayOfWeek === 0 || dayOfWeek === 6) {
                dateError.classList.remove('hidden');
                dateInput.setCustomValidity('Sila pilih tarikh lain. Sesi tidak diadakan pada hujung minggu.');
            } else {
                dateError.classList.add('hidden');
                dateInput.setCustomValidity('');
            }
        });
    </script>
</body>

</html>