prepare($sql)) {
$stmt->bind_param("i", $_SESSION['id']);
$stmt->execute();
$stmt->bind_result($hashed_password);
$stmt->fetch();
$stmt->close();
if (!password_verify($current_password, $hashed_password)) {
$error = 'La password non è corretta.';
} else {
// Elimina gli ordini associati all'utente
$sql_delete_order_items = "DELETE oi FROM OrderItems oi JOIN Orders o ON oi.OrderID = o.OrderID WHERE o.UserID = ?";
$stmt_delete_order_items = $conn->prepare($sql_delete_order_items);
$stmt_delete_order_items->bind_param("i", $_SESSION['id']);
$stmt_delete_order_items->execute();
$stmt_delete_order_items->close();
$sql_delete_orders = "DELETE FROM Orders WHERE UserID = ?";
$stmt_delete_orders = $conn->prepare($sql_delete_orders);
$stmt_delete_orders->bind_param("i", $_SESSION['id']);
$stmt_delete_orders->execute();
$stmt_delete_orders->close();
$sql_delete_user = "DELETE FROM Users WHERE UserID = ?";
$stmt_delete_user = $conn->prepare($sql_delete_user);
$stmt_delete_user->bind_param("i", $_SESSION['id']);
$stmt_delete_user->execute();
$stmt_delete_user->close();
session_unset();
session_destroy();
$message = 'Il tuo account è stato eliminato insieme a tutti i tuoi ordini.';
}
} else {
$error = 'Errore nel database.';
}
}
}
?>