Mini Shell
| Direktori : /home/mhcadmin/eya/ |
|
|
| Current File : /home/mhcadmin/eya/UpdateTender.php |
<?php
session_start();
require_once 'config/config.php';
require_once 'include/auth_validate.php';
date_default_timezone_set('Africa/Blantyre');
$UploadedDate = date('Y-m-d H:i', time());
$today = date("d-m-Y");
/////// Code for new access control on header menu /////////////////////////
$User = $_SESSION['id'];
$UserAccessName="";
$result = mysqli_query( $connection,"SELECT * FROM admin_accounts WHERE id = '$User' ");
$num = mysqli_num_rows($result);
if ($num >0){
$rows = mysqli_fetch_array($result);
$UserAccessName = $rows['UserAccessName'];
}
$TenderID = $Name = $Description = $FileName = $ClosingDate = $CurrentBook = $fname = $sql = $name = $size = $type = $temp = "";
if ($_SERVER["REQUEST_METHOD"] == "POST") {
$TenderID = $_POST["TenderID"];
$Name = $_POST["FName"];
$Description = $_POST["Description"];
$FileName=$_FILES['file']['name'];
$ClosingDate = $_POST['ClosingDate'];
$CurrentBook = $_POST["CurrentBook"];
/// ------------ code to create an expiry date which be 90days after the expiry date -----------////
$date=date_create("$ClosingDate");
date_add($date,date_interval_create_from_date_string("180 days"));
$ExpiryDate = date_format($date,"Y-m-d");
if (!empty($FileName) != ""){
$name=$_FILES['file']['name'];
$size=$_FILES['file']['size'];
$type=$_FILES['file']['type'];
$temp=$_FILES['file']['tmp_name'];
// $caption1=$_POST['caption'];
// $link=$_POST['link'];
$fname = date("YmdHis").'_'.$name;
$chk = $conn->query("SELECT * FROM tenders where Download1 = '$name' ")->rowCount();
if($chk){
$i = 1;
$c = 0;
while($c == 0){
$i++;
$reversedParts = explode('.', strrev($name), 2);
$tname = (strrev($reversedParts[1]))."_".($i).'.'.(strrev($reversedParts[0]));
// var_dump($tname);exit;
$chk2 = $conn->query("SELECT * FROM tenders where Download1 = '$tname' ")->rowCount();
if($chk2 == 0){
$c = 1;
$name = $tname;
}
}
}
$move = move_uploaded_file($temp,"Tenders/".$fname);
if($move){
unlink("Tenders/$CurrentBook");
mysql_connect($dbhost,$dbuser,$dbpass)/* or die('the website is down for maintainance')*/;
mysql_select_db($dbname) or die(mysql_error());
$sql = mysqli_query($connection,"UPDATE tenders SET Name='$Name', Description='$Description', ClosingDate='$ClosingDate',
Status ='Current', ExpiryDate = '$ExpiryDate', Download1 = '$name', Download2 ='$fname', UploadedBy ='$User', UploadedDate ='$UploadedDate' WHERE TenderID ='$TenderID'");
}
else{
die(mysql_error());
}
}else {
$sql = mysqli_query($connection,"UPDATE tenders SET Name='$Name', Description='$Description', ClosingDate='$ClosingDate',
Status ='Current', ExpiryDate = '$ExpiryDate' WHERE TenderID ='$TenderID'");
}
$_SESSION['success'] = "Vacancy Record Updated successfully!";
header('location: ManageTenders.php');
//}
exit();
exit();
}
//We are using same form for adding and editing. This is a create form so declare $edit = false.
$edit = false;
require_once 'include/AdminHeader.php';
?>