<?php session_start(); include("../../../config/main_function.php"); $secure = "cAh3DrJACzw4RbU"; $connection = connectDB($secure); $bank_id = getRandomID2(10, 'tbl_bank', 'bank_id'); $bank_name = mysqli_real_escape_string($connection, $_POST['bank_name']); $account_number = mysqli_real_escape_string($connection, $_POST['account_number']); $account_name = mysqli_real_escape_string($connection, $_POST['account_name']); if ($connection) { if ($_FILES['logo_image']["name"] != "") { $file = explode(".", $_FILES['logo_image']['name']); $file_num = count($file) - 1; $file_surname = $file[$file_num]; $filename_images = md5(date("dmYhis") . rand(1000, 9999)) . "." . $file_surname; $target_file = "../../img/" . $filename_images; if (move_uploaded_file($_FILES["logo_image"]["tmp_name"], $target_file)) { $logo = $filename_images; } else { $logo = ""; } } if ($_FILES['qr_image']["name"] != "") { $file = explode(".", $_FILES['qr_image']['name']); $file_num = count($file) - 1; $file_surname = $file[$file_num]; $filename_images = md5(date("dmYhis") . rand(1000, 9999)) . "." . $file_surname; $target_file = "../../img/" . $filename_images; if (move_uploaded_file($_FILES["qr_image"]["tmp_name"], $target_file)) { $bank_qrcode = $filename_images; } else { $bank_qrcode = ""; } } $sql_insert = "INSERT INTO tbl_bank SET bank_id = '$bank_id', bank_name = '$bank_name', account_number = '$account_number', account_name = '$account_name', bank_qrcode = '$bank_qrcode', logo = '$logo'"; $res_insert = mysqli_query($connection, $sql_insert) or die($connection->error); if ($res_insert) { $arr['result'] = 1; } else { $arr['result'] = 0; } } else { $arr['result'] = 9; } echo json_encode($arr);