/
home
/
efamember
/
domains
/
efa-member.com
/
public_html
/
backoffice
/
ajax
/
setting_slide
/
up file
home
<?php include('../../../config/main_function.php'); $secure = "cAh3DrJACzw4RbU"; $connection = connectDB($secure); $slide_id = getRandomID(10, 'tbl_setting_slide', 'slide_id'); $create_user_id = mysqli_real_escape_string($connection, $_POST['create_user_id']); $slide_link = mysqli_real_escape_string($connection, $_POST['link_slide']); $slide_id = mysqli_real_escape_string($connection, $_POST['slide_id']); $visitors = mysqli_real_escape_string($connection, $_POST['visitors']); $general = mysqli_real_escape_string($connection, $_POST['general']); $extraordinary = mysqli_real_escape_string($connection, $_POST['extraordinary']); $ordinary = mysqli_real_escape_string($connection, $_POST['ordinary']); $employer = mysqli_real_escape_string($connection, $_POST['employer']); $company = mysqli_real_escape_string($connection, $_POST['company']); $agency = mysqli_real_escape_string($connection, $_POST['agency']); $worker = mysqli_real_escape_string($connection, $_POST['worker']); $list_order = list_order('tbl_setting_slide', 'list_order', ''); $insert = "INSERT INTO tbl_setting_slide SET slide_id = '$slide_id' ,slide_link = '$slide_link' ,create_user_id = '$create_user_id' ,visitors_access = '$visitors' ,general_access = '$general' ,extraordinary_access = '$extraordinary' ,ordinary_access = '$ordinary' ,employer_access = '$employer' ,company_access = '$company' ,agency_access = '$agency' ,worker_access = '$worker' ,list_order = '$list_order'"; $rs_insert = mysqli_query($connection, $insert) or die($connection->error); if ($rs_insert) { if ($_FILES['slide_image']["name"] != "") { $file = explode(".", $_FILES['slide_image']['name']); $file_num = count($file) - 1; $file_surname = $file[$file_num]; $filename_images = date("dmYhis") . rand(11, 99) . "." . $file_surname; $target_file = "../../../files/slide_files/" . $filename_images; if (move_uploaded_file($_FILES["slide_image"]["tmp_name"], $target_file)) { $update = "UPDATE tbl_setting_slide SET slide_image = '$filename_images' WHERE slide_id = '$slide_id';"; $rs_update = mysqli_query($connection, $update) or die($connection->error); if ($rs_update) { $result = 1; } else { $result = 0; } } else { $result = 0; } } else { $result = 0; } $result = 1; } else { $result = 0; } $arr['result'] = $result; echo json_encode($arr); mysqli_close($connection);