MMCT TEAM

Server IP : 162.214.80.37 / Your IP : 216.73.216.83
Web Server : Apache
System : Linux sh013.webhostingservices.com 4.19.286-203.ELK.el7.x86_64 #1 SMP Wed Jun 14 04:33:55 CDT 2023 x86_64
User : imyrqtmy ( 2189)
PHP Version : 8.2.18
Disable Function : NONE
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON
Directory (0755) : /home2/imyrqtmy/public_html/destinationplanner/admin/
[ Home ]	[ C0mmand ]	[ Upload File ]
Current File : /home2/imyrqtmy/public_html/destinationplanner/admin/add_package.php
<?php

session_start();
include("includes/config.php");

if (isset($_POST['add_package'])) {

    $package_name = $_POST['package_name'];
    $day = $_POST['day'];
    $activity = $_POST['activity'];
    $destination_id = $_POST['destination_id'];
    $price = $_POST['price'];

    $country_weather = $_POST['country_weather'];
    $currency = $_POST['currency'];
    $local_time = $_POST['local_time'];
    // $top_destination = $_POST['top_destination'];
    $top_destination = isset($_POST['top_destination']) ? implode(',', array_map('trim', explode(',', $_POST['top_destination']))) : '';


    $transportation = $_POST['transportation'];
    $departure = $_POST['departure'];
    $person = $_POST['person'];
    $best_season = $_POST['best_season'];
    $minimum_age = $_POST['minimum_age'];
    $maximum_altitude = $_POST['maximum_altitude'];
    $tour_type = $_POST['tour_type'];
    $maximum_age = $_POST['maximum_age'];
    $accomodation = $_POST['accomodation'];
    $overview = $_POST['overview'];
    $itinerary = $_POST['itinerary'];
    $cost = $_POST['cost'];



    $photo = $_FILES['photo']['name'] ?? null; // Check if file exists
    $allowed_image_extensions = array('gif', 'png', 'jpg', 'jpeg', 'webp', 'WEBP');

    if ($photo) {
        $photo_file_extension = pathinfo($photo, PATHINFO_EXTENSION);

        if (!in_array($photo_file_extension, $allowed_image_extensions)) {
            $_SESSION['status'] = "The image file is not allowed. Please upload an image.";
            header('Location: package.php');
            exit;
        }

        move_uploaded_file($_FILES["photo"]["tmp_name"], "package/" . $photo);
    }

    // Prepare SQL query
    if ($photo) {
        $query = "INSERT INTO packages (package_name, day, activity, destination_id, price,  country_weather,  currency,  local_time,  top_destination, transportation, departure, person, best_season, minimum_age, maximum_altitude, tour_type, maximum_age, accomodation, overview, itinerary, cost,  photo) VALUES ('$package_name', '$day', '$activity', '$destination_id','$price',  '$country_weather',  '$currency',  '$local_time',  '$top_destination', '$transportation','$departure','$person','$best_season','$minimum_age','$maximum_altitude','$tour_type','$maximum_age','$accomodation','$overview','$itinerary','$cost', '$photo')";
    } else {
        $query = "INSERT INTO packages (package_name, day,  activity, destination_id, price,  country_weather,  currency,  local_time,  top_destination, transportation, departure, person, best_season, minimum_age, maximum_altitude, tour_type, maximum_age, accomodation, overview, itinerary, cost) VALUES ('$package_name', '$day', '$activity', '$destination_id','$price',  '$country_weather',  '$currency',  '$local_time',  '$top_destination', '$transportation','$departure','$person','$best_season','$minimum_age','$maximum_altitude','$tour_type','$maximum_age','$accomodation','$overview','$itinerary','$cost')";
    }

    $query_run = mysqli_query($conn, $query);

    if ($query_run) {
        $_SESSION['status'] = "Uploaded Successfully";
        echo "<script>window.location.href='view-package.php';</script>";
        exit;
    } else {
        $_SESSION['status'] = "Not Uploaded";
        echo "<script>window.location.href='package.php';</script>";
        exit;
    }
}




// update 

if(isset($_POST['update_package'])){
    $id = $_POST['id'];
    $package_name = $_POST['package_name'];
    $day = $_POST['day'];
    $activity = $_POST['activity'];
    $destination_id = $_POST['destination_id'];
    $price = $_POST['price'];

    $country_weather = $_POST['country_weather'];
    $currency = $_POST['currency'];
    $local_time = $_POST['local_time'];
    
    $top_destination = isset($_POST['top_destination']) ? trim($_POST['top_destination']) : '';
    $top_destination = str_replace(', ', ',', $top_destination); // Remove spaces after commas



    $transportation = $_POST['transportation'];
    $departure = $_POST['departure'];
    $person = $_POST['person'];
    $best_season = $_POST['best_season'];
    $minimum_age = $_POST['minimum_age'];
    $maximum_altitude = $_POST['maximum_altitude'];
    $tour_type = $_POST['tour_type'];
    $maximum_age = $_POST['maximum_age'];
    $accomodation = $_POST['accomodation'];
    $overview = $_POST['overview'];
    $itinerary = $_POST['itinerary'];
    $cost = $_POST['cost'];

    $old_photo = $_POST['image_old'];
    $update_photo_filename = $_FILES["photo"]["name"] ? $_FILES["photo"]["name"] : $old_photo;

    $query = "UPDATE packages SET 
    package_name='$package_name',
    day='$day',
    activity='$activity',
    destination_id='$destination_id',
    price='$price',

    country_weather='$country_weather',
    currency='$currency',
    local_time='$local_time',
    top_destination='$top_destination',

    transportation='$transportation',
    departure='$departure',
    person='$person',
    best_season='$best_season',
    minimum_age='$minimum_age',
    maximum_altitude='$maximum_altitude',
    tour_type='$tour_type',
    maximum_age='$maximum_age',
    maximum_altitude='$maximum_altitude',
    tour_type='$tour_type',
    maximum_age='$maximum_age',
    accomodation='$accomodation',
    overview='$overview',
    itinerary='$itinerary',
    cost='$cost',
    photo='$update_photo_filename' WHERE id ='$id' ";

    $query_run = mysqli_query($conn, $query);

    if($query_run){
      
        if($_FILES["photo"]["name"] !='' && $_FILES["photo"]["name"] != $old_photo){
            move_uploaded_file($_FILES["photo"]["tmp_name"], "package/".$_FILES["photo"]["name"]);
            unlink("package/". $old_photo);    
        }

     

        $_SESSION['status'] = "Updated Successfully";
          echo "<script>window.location.href='view-package.php';</script>";
  
        // header('Location: view-category.php');
    } else {
        $_SESSION['status'] = "Not Updated ";
                           echo "<script>window.location.href='view-package.php';</script>";

        // header('Location: view-category.php');
    }
}


// delete
if(isset($_POST['delete_package'])){
    $id = $_POST['delete_id'];
    $photo = $_POST['del_package'];

    $query = "DELETE FROM packages WHERE id = '$id'";
    $query_run = mysqli_query($conn, $query);

    if($query_run){
        $_SESSION['status'] = "Deleted Successfully";
                           echo "<script>window.location.href='view-package.php';</script>";

        // header('Location: view-category.php');
    } else {
        $_SESSION['status'] = "Not Deleted Successfully";
                           echo "<script>window.location.href='view-package.php';</script>";

        // header('Location: view-category.php');
    }
}
MMCT - 2023