ok

Mini Shell

Direktori : /home2/selectio/www/ramali.in/dashboard/old/eCart - v5.0.0/public/
Upload File :
Current File : /home2/selectio/www/ramali.in/dashboard/old/eCart - v5.0.0/public/add-subcategory-form.php

<?php
include_once('includes/functions.php');
$function = new functions;
include_once('includes/custom-functions.php');
$fn = new custom_functions;
?>
<?php
if (isset($_POST['btnAdd'])) {
    if (ALLOW_MODIFICATION == 0 && !defined(ALLOW_MODIFICATION)) {
        echo '<label class="alert alert-danger">This operation is not allowed in demo panel!.</label>';
        return false;
    }
    if ($permissions['subcategories']['create'] == 1) {
        $target_path = './upload/images/';
        if (!is_dir($target_path)) {
            mkdir($target_path, 0777, true);
        }
        $subcategory_name = $db->escapeString($fn->xss_clean($_POST['subcategory_name']));
        $slug = $db->escapeString($function->slugify($fn->xss_clean($_POST['subcategory_name'])));
        $sql = "SELECT slug FROM subcategory";
        $db->sql($sql);
        $res = $db->getResult();
        $i = 1;
        foreach ($res as $row) {
            if ($slug == $row['slug']) {
                $slug = $slug . '-' . $i;
                $i++;
            }
        }
        $category_subtitle = $db->escapeString($fn->xss_clean($_POST['category_subtitle']));
        $main_category = $db->escapeString($fn->xss_clean($_POST['main_category_name']));

        // get image info
        $menu_image = $db->escapeString($fn->xss_clean($_FILES['category_image']['name']));
        $image_error = $db->escapeString($fn->xss_clean($_FILES['category_image']['error']));
        $image_type = $db->escapeString($fn->xss_clean($_FILES['category_image']['type']));

        // create array variable to handle error
        $error = array();

        if (empty($subcategory_name)) {
            $error['subcategory_name'] = " <span class='label label-danger'>Required!</span>";
        }
        if (empty($category_subtitle)) {
            $error['category_subtitle'] = " <span class='label label-danger'>Required!</span>";
        }

        // common image file extensions
        $allowedExts = array("gif", "jpeg", "jpg", "png");

        // get image file extension
        error_reporting(E_ERROR | E_PARSE);
        $extension = end(explode(".", $_FILES["category_image"]["name"]));

        if ($image_error > 0) {
            $error['category_image'] = " <span class='label label-danger'>Not Uploaded!!</span>";
        } else {
            $result = $fn->validate_image($_FILES["category_image"]);
            if ($result) {
                $error['category_image'] = " <span class='label label-danger'>Image type must jpg, jpeg, gif, or png!</span>";
            }
        }

        if (!empty($subcategory_name) && !empty($category_subtitle) && empty($error['category_image'])) {

            // create random image file name
            $string = '0123456789';
            $file = preg_replace("/\s+/", "_", $_FILES['category_image']['name']);

            $menu_image = $function->get_random_string($string, 4) . "-" . date("Y-m-d") . "." . $extension;

            // upload new image
            $upload = move_uploaded_file($_FILES['category_image']['tmp_name'], 'upload/images/' . $menu_image);

            // insert new data to menu table
            $upload_image = 'upload/images/' . $menu_image;
            $sql_query = "INSERT INTO subcategory (category_id, name, slug, subtitle, image)
						VALUES('$main_category', '$subcategory_name', '$slug', '$category_subtitle', '$upload_image')";


            // Execute query
            $db->sql($sql_query);
            // store result 
            $result = $db->getResult();
            if (!empty($result)) {
                $result = 0;
            } else {
                $result = 1;
            }
            if ($result == 1) {
                $error['add_category'] = " <section class='content-header'><span class='label label-success'>Sub Category Added Successfully</span></section>";
            } else {
                $error['add_category'] = " <span class='label label-danger'>Failed add category</span>";
            }
        }
    } else {
        $error['check_permission'] = " <section class='content-header'><span class='label label-danger'>You have no permission to create subcategory</span></section>";
    }
}

if (isset($_POST['btnCancel'])) {
    header("location:subcategories.php");
}

?>
<section class="content-header">
    <h1>Add Sub Category<small><a href='subcategories.php'> <i class='fa fa-angle-double-left'></i>&nbsp;&nbsp;&nbsp;Back to Sub Categories</a></small></h1>
    <?php echo isset($error['add_category']) ? $error['add_category'] : ''; ?>
    <ol class="breadcrumb">
        <li><a href="home.php"><i class="fa fa-home"></i> Home</a></li>
    </ol>
    <hr />
</section>
<section class="content">
    <div class="row">
        <div class="col-md-6">
            <?php if ($permissions['subcategories']['create'] == 0) { ?>
                <div class="alert alert-danger">You have no permission to create subcategory.</div>
            <?php } ?>
            <!-- general form elements -->
            <div class="box box-primary">
                <div class="box-header with-border">
                    <h3 class="box-title">Add Sub Category</h3>
                </div><!-- /.box-header -->
                <!-- form start -->
                <form method="post" enctype="multipart/form-data">
                    <div class="box-body">
                        <div class="form-group">
                            <label for="exampleInputEmail1">Main Category</label><?php echo isset($error['main_category_name']) ? $error['main_category_name'] : ''; ?>
                            <select class="form-control" id="main_category_name" name="main_category_name" required>
                                <option value="">--Select Main Category--</option>
                                <?php
                                if ($permissions['categories']['read'] == 1) {
                                    $sql = "SELECT * FROM category";
                                    $db->sql($sql);
                                    $res = $db->getResult();
                                    foreach ($res as $category) {
                                        echo "<option value='" . $category['id'] . "'>" . $category['name'] . "</option>";
                                    }
                                }
                                ?>
                            </select>
                        </div>
                        <div class="form-group">
                            <label for="exampleInputEmail1">Sub Category Name</label><?php echo isset($error['subcategory_name']) ? $error['subcategory_name'] : ''; ?>
                            <input type="text" class="form-control" name="subcategory_name" required>
                        </div>
                        <div class="form-group">
                            <label for="exampleInputEmail1">Sub Category Subtitle</label><?php echo isset($error['category_subtitle']) ? $error['category_subtitle'] : ''; ?>
                            <input type="text" class="form-control" name="category_subtitle" required>
                        </div>
                        <div class="form-group">
                            <label for="exampleInputFile">Image&nbsp;&nbsp;&nbsp;*Please choose square image of larger than 350px*350px & smaller than 550px*550px.</label><?php echo isset($error['category_image']) ? $error['category_image'] : ''; ?>
                            <input type="file" name="category_image" id="category_image" required />
                        </div>
                    </div><!-- /.box-body -->

                    <div class="box-footer">
                        <button type="submit" class="btn btn-primary" name="btnAdd">ADD</button>
                        <input type="reset" class="btn-warning btn" value="Clear" />

                    </div>
                </form>
            </div><!-- /.box -->
            <?php echo isset($error['check_permission']) ? $error['check_permission'] : ''; ?>
        </div>
    </div>
</section>

<div class="separator"> </div>

<?php $db->disconnect(); ?>

Zerion Mini Shell 1.0