prepare("SELECT product_id FROM order_items WHERE order_id = ?");
$stmtItems->execute([$order_id]);
$items = $stmtItems->fetchAll();
foreach ($items as $item) {
// Find available key
$kStmt = $pdo->prepare("SELECT id, license_key FROM license_keys WHERE product_id = ? AND status = 'available' LIMIT 1");
$kStmt->execute([$item['product_id']]);
$keyData = $kStmt->fetch();
if ($keyData) {
// Mark key used
$pdo->prepare("UPDATE license_keys SET status = 'used', order_id = ? WHERE id = ?")->execute([$order_id, $keyData['id']]);
$key_message .= "\nKey: " . $keyData['license_key'];
}
}
// B. Update Order Status
$note = "Paid via Paytm (TXN: $txn_id). " . $key_message;
$stmt = $pdo->prepare("UPDATE orders SET status = 'completed', payment_method = 'Paytm', user_note = ? WHERE id = ?");
$stmt->execute([$note, $order_id]);
// C. Redirect to Thank You
header("Location: thank_you.php?order_id=" . $order_id . "&status=success");
} else {
// Payment Failed
echo "Payment Failed.
Reason: " . $_POST['RESPMSG'] . "
";
echo "Try Again";
}
} else {
echo "Security Error
Checksum mismatch.
";
}
?>