<?php

header("Content-Type: application/json");

require_once("../config/database.php");

$db = getDB();

$order_number =
$_GET['order_number'] ?? '';

if(empty($order_number)){

    echo json_encode([

        "success" => false,
        "message" => "Missing Order Number"
    ]);

    exit;
}

$order_number =
$db->real_escape_string(
    $order_number
);

$result =
$db->query("SELECT *

FROM orders

WHERE order_number='$order_number'

LIMIT 1");

if($result->num_rows == 0){

    echo json_encode([

        "success" => false,
        "message" => "Order Not Found"
    ]);

    exit;
}

$order =
$result->fetch_assoc();

echo json_encode([

    "success" => true,

    "order" => $order
]);