diff --git a/job_details.php b/job_details.php index 99a4b1a..60e4dd9 100644 --- a/job_details.php +++ b/job_details.php @@ -1,13 +1,15 @@ 0) { // Check if the job exists if ($result->num_rows > 0) { $job = $result->fetch_assoc(); + $is_employer = ($_SESSION['user_type'] === 'Employer'); + $is_job_owner = ($is_employer && isset($_SESSION['employer_id']) && $_SESSION['employer_id'] == $job['employer_id']); + } else { echo "Job not found."; exit(); @@ -34,10 +39,10 @@ if ($job_id > 0) { exit(); } -// Check if the logged-in user is a job seeker +// Check if the logged-in user is a job seeker,employer and is the one who posted the job $is_job_seeker = ($_SESSION['user_type'] === 'Job seeker'); $is_employer = ($_SESSION['user_type'] === 'Employer'); - +$_isemployer_id = ($_SESSION['employer_id'] ==='employer_id'); // Handle job application if (isset($_POST['apply']) && $is_job_seeker) { // Get seeker_id from session @@ -57,7 +62,7 @@ if (isset($_POST['apply']) && $is_job_seeker) { } } // Handle job deletion (for employers only) -if (isset($_POST['remove']) && $is_employer) { +if (isset($_POST['remove']) && $is_employer && $is_job_owner ) { $conn->begin_transaction(); // Start a transaction try { @@ -222,7 +227,7 @@ if (isset($_POST['remove']) && $is_employer) { - +