Viewing file:  upload_photo.php (1.26 KB) -rw-r--r--
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?php
include 'connect.php';
if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['photo']) && isset($_POST['enrollment'])) {
$enrollment = trim($_POST['enrollment']);
$uploadDir = '../data/files/';
$photo = $_FILES['photo'];
$extension = pathinfo($photo['name'], PATHINFO_EXTENSION);
$newFileName = $enrollment . '_' . time() . '.' . $extension; // unique filename
$targetPath = $uploadDir . $newFileName;
// Validate upload
if ($photo['error'] === 0 && in_array($extension, ['jpg', 'jpeg', 'png', 'gif'])) {
if (move_uploaded_file($photo['tmp_name'], $targetPath)) {
// Save new path to DB
$update = "UPDATE certificate SET photo = ? WHERE enrollment = ?";
$stmt = mysqli_prepare($link, $update);
mysqli_stmt_bind_param($stmt, 'ss', $newFileName, $enrollment);
if (mysqli_stmt_execute($stmt)) {
echo "<script>alert('Photo updated successfully.'); window.location.href = 'registration_edit.php';</script>";
} else {
echo "DB update failed.";
}
} else {
echo "File upload failed.";
}
} else {
echo "Invalid file type or error in upload.";
}
} else {
echo "Invalid request.";
}
?>
|