prepare("SELECT * FROM inventory WHERE category = :cat ORDER BY created_at DESC"); $stmt->bindParam(':cat', $category); } else { $stmt = $conn->prepare("SELECT * FROM inventory ORDER BY created_at DESC"); } $stmt->execute(); $items = $stmt->fetchAll(); echo json_encode(["status" => "success", "data" => $items]); } elseif ($method == 'POST') { // Add new inventory item $data = json_decode(file_get_contents("php://input"), true); if(isset($data['category']) && isset($data['product_name']) && isset($data['price'])) { $stmt = $conn->prepare("INSERT INTO inventory (category, product_name, price, stock, image_url, description) VALUES (:cat, :name, :price, :stock, :img, :desc)"); $stock = isset($data['stock']) ? $data['stock'] : 0; $img = isset($data['image_url']) ? $data['image_url'] : ''; $desc = isset($data['description']) ? $data['description'] : ''; $stmt->bindParam(':cat', $data['category']); $stmt->bindParam(':name', $data['product_name']); $stmt->bindParam(':price', $data['price']); $stmt->bindParam(':stock', $stock); $stmt->bindParam(':img', $img); $stmt->bindParam(':desc', $desc); if($stmt->execute()) { echo json_encode(["status" => "success", "message" => "Item added.", "id" => $conn->lastInsertId()]); } else { echo json_encode(["status" => "error", "message" => "Failed to add item."]); } } else { echo json_encode(["status" => "error", "message" => "Missing required fields."]); } } elseif ($method == 'DELETE') { // Remove item parse_str(file_get_contents("php://input"), $delete_vars); $id = isset($delete_vars['id']) ? $delete_vars['id'] : (isset($_GET['id']) ? $_GET['id'] : null); if($id) { $stmt = $conn->prepare("DELETE FROM inventory WHERE id = :id"); $stmt->bindParam(':id', $id); if($stmt->execute()) { echo json_encode(["status" => "success", "message" => "Item deleted."]); } else { echo json_encode(["status" => "error", "message" => "Failed to delete item."]); } } else { echo json_encode(["status" => "error", "message" => "Item ID required."]); } } ?>