invisio v2.0

<?php
include('../../../config/main_function.php');
$secure = "cAh3DrJACzw4RbU";
$connection = connectDB($secure);

$company_id = mysqli_real_escape_string($connection, $_POST['company_id']);
$company_name = mysqli_real_escape_string($connection, $_POST['company_name']);
$license_no = mysqli_real_escape_string($connection, $_POST['license_no']);
$legalentity_number = mysqli_real_escape_string($connection, $_POST['legalentity_number']);
$company_address = mysqli_real_escape_string($connection, $_POST['company_address']);
$zipcode = mysqli_real_escape_string($connection, $_POST['zipcode']);
$company_district_id = mysqli_real_escape_string($connection, $_POST['company_district_id']);
$phone = mysqli_real_escape_string($connection, $_POST['phone']);
$email = mysqli_real_escape_string($connection, $_POST['email']);
$phone_line = mysqli_real_escape_string($connection, $_POST['phone_line']);
$authorized_person = mysqli_real_escape_string($connection, $_POST['authorized_person']);
$vat_registered = mysqli_real_escape_string($connection, $_POST['vat_registered']);
$company_status = mysqli_real_escape_string($connection, $_POST['company_status']);
$registered_capital = mysqli_real_escape_string($connection, $_POST['registered_capital']);

// $establishment_year = mysqli_real_escape_string($connection, $_POST['establishment_year']);

$date = explode('/', $_POST['establishment_year']);
$establishment_year = date('Y-m-d', strtotime($date['0'] ."-" . $date['1'] . "-" . $date['2']));

$comp_district_id = $company_district_id;
$sqlAddressCard = "SELECT `tbl_district`.`district_name_th` , `tbl_amphoe`.`amphoe_name_th` , `tbl_province`.`province_name_th` , `tbl_district`.`district_zipcode` FROM `tbl_district` 
JOIN `tbl_amphoe` ON `tbl_amphoe`.`amphoe_id` = `tbl_district`.`ref_amphoe`
JOIN `tbl_province` ON `tbl_province`.`province_id` = `tbl_amphoe`.`ref_province`
WHERE `tbl_district`.`district_id` = '$comp_district_id'";
$rsAddressCard = mysqli_query($connection, $sqlAddressCard);
$rowAddressCard = mysqli_fetch_array($rsAddressCard);
$compAddress = $company_address . " ตำบล " . $rowAddressCard['district_name_th'] . " อำเภอ" . $rowAddressCard['amphoe_name_th'] . " จังหวัด" . $rowAddressCard['province_name_th'] . " " . $rowAddressCard['district_zipcode'];

if ($connection) {

// $sql_insert = "INSERT INTO tbl_company_info SET  
    //     company_id = '$company_id',
    //     company_name = '$company_name',
    //     license_no = '$license_no',
    //     legalentity_number = '$legalentity_number',
    //     address = '$compAddress',
    //     phone = '$phone',
    //     email = '$email',
    //     phone_line = '$phone_line',
    //     authorized_person = '$authorized_person',
    //     vat_registered = '$vat_registered',
    //     company_status = '$company_status'
    //     registered_capital = '$registered_capital'
    //     ";
   $sql_insert = "INSERT INTO tbl_company_info SET  
        company_id = '$company_id',
        company_name = '$company_name',
        license_no = '$license_no',
        legalentity_number = '$legalentity_number',
        address = '$company_address',
        phone = '$phone',
        email = '$email',
        phone_line = '$phone_line',
        authorized_person = '$authorized_person',
        vat_registered = '$vat_registered',
        company_status = '$company_status',
        registered_capital = '$registered_capital',
        establishment_year = '$establishment_year'";

$res_insert = mysqli_query($connection, $sql_insert)  or die($connection->error);

if ($res_insert) {
        $arr['result'] = 1;
    } else {
        $arr['result'] = 0;
    }
} else {
    $arr['result'] = 9;
}

mysqli_close($connection);
echo json_encode($arr);