diff --git a/productpage.php b/productpage.php
index 47af509..ef67f64 100644
--- a/productpage.php
+++ b/productpage.php
@@ -21,6 +21,18 @@ if ($checkResult->num_rows === 0) {
include __DIR__ . '/404.php';
exit;
}
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['delete_review']) && isset($_POST['delete_review_id'])) {
+ if (!empty($_SESSION['user_roles']) && in_array('ADMIN', $_SESSION['user_roles'], true)) {
+ $deleteId = (int)$_POST['delete_review_id'];
+ $delStmt = $conn->prepare("DELETE FROM reviews WHERE reviewID = ?");
+ $delStmt->bind_param("i", $deleteId);
+ $delStmt->execute();
+ $delStmt->close();
+ echo "";
+ exit;
+ }
+}
?>
@@ -330,7 +342,7 @@ if ($checkResult->num_rows === 0) {
num_rows === 0) {
+
+
+
+
+