2024-02-16 15:35:01 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
require_once("../config.php");
|
|
|
|
|
require_once("../lib/functions.php");
|
|
|
|
|
|
|
|
|
|
$strDescription = htmlentities(trim($_POST['description']));
|
|
|
|
|
$strDescription = addslashes($strDescription);
|
|
|
|
|
$numDefect = (isset($_POST['defect'])) ? $_POST['defect'] : 0;
|
|
|
|
|
$id = (int) $_POST['loc_id'];
|
2024-03-15 22:19:22 +01:00
|
|
|
$filename = "";
|
|
|
|
|
$allowed_extensions = array("jpg", "jpeg", "png", "gif");
|
2024-02-16 15:35:01 +01:00
|
|
|
|
|
|
|
|
$boolUploadOk=false;
|
2024-03-12 17:40:20 +01:00
|
|
|
if ($boolUpload && ($_FILES['uploadfile']['size']>0)) {
|
2024-03-15 22:19:22 +01:00
|
|
|
$file=$_FILES['uploadfile'];
|
|
|
|
|
$fileinfo = @getimagesize($file["tmp_name"]);
|
2024-02-16 15:35:01 +01:00
|
|
|
if (!empty($fileinfo)) {
|
|
|
|
|
//$info=read_gps_location($_FILES["uploadfile"]["tmp_name"]);
|
2024-03-15 22:19:22 +01:00
|
|
|
$file_extension = pathinfo($file["name"], PATHINFO_EXTENSION);
|
|
|
|
|
if (!in_array(strtolower($file_extension), $allowed_extensions)) {
|
|
|
|
|
echo "Invalid file type. Please upload only jpg, jpeg, png, or gif images.";
|
|
|
|
|
exit();
|
2024-02-16 15:35:01 +01:00
|
|
|
}
|
2024-03-15 22:19:22 +01:00
|
|
|
$strNewfilename = uniqid("", true) . "." . $file_extension;
|
|
|
|
|
while (file_exists($uploaddir . $strNewfilename)) {
|
|
|
|
|
$strNewfilename = uniqid("", true) . "." . $file_extension;
|
|
|
|
|
}
|
|
|
|
|
if (move_uploaded_file($file['tmp_name'], $uploaddir.$strNewfilename)) {
|
|
|
|
|
$filename=$strNewfilename;//$file['name'];
|
|
|
|
|
$filesize=$file['size'];
|
|
|
|
|
$filetype=$file['type'];
|
2024-02-16 15:35:01 +01:00
|
|
|
$boolUploadOk = true;
|
|
|
|
|
} else {
|
|
|
|
|
die("Upload failed with error code " . $_FILES['file']['error']);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$stmt = $db->prepare("UPDATE location SET description= :description, defect = :defect WHERE id= :id");
|
|
|
|
|
|
|
|
|
|
$stmt->bindValue(':description', $strDescription);
|
|
|
|
|
$stmt->bindValue(':defect', $numDefect);
|
|
|
|
|
$stmt->bindValue(':id', $id);
|
|
|
|
|
$r=$stmt->execute();
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// Store File Upload
|
|
|
|
|
if ($boolUploadOk) {
|
|
|
|
|
$strSQL="INSERT INTO files (loc_id,filename,filesize,filetype) VALUES (:loc_id,:filename,:filesize,:filetype)";
|
|
|
|
|
$stmt = $db->prepare($strSQL);
|
|
|
|
|
$stmt->bindValue(':loc_id',$id);
|
|
|
|
|
$stmt->bindValue(':filename',$filename);
|
|
|
|
|
$stmt->bindValue(':filesize',$filesize);
|
|
|
|
|
$stmt->bindValue(':filetype',$filetype);
|
|
|
|
|
$stmt->execute();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$result = array(
|
|
|
|
|
"id" => $id,
|
2024-03-12 17:40:20 +01:00
|
|
|
"description" => stripslashes(nl2br($strDescription)),
|
2024-02-16 15:35:01 +01:00
|
|
|
"defect" => $arrDefect[$numDefect],
|
|
|
|
|
"filename" => $filename,
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
echo json_encode($result);
|
|
|
|
|
|
