ok

Mini Shell

Direktori : /home/ngwcolle/public_html/admin/
Upload File :
Current File : //home/ngwcolle/public_html/admin/add-questionbank.php

<?php session_start();
//DB conncetion
include_once 'includes/config.php';
error_reporting(0);
// echo $_SESSION['token'];
if (empty($_SESSION['token'])){
    
    $_SESSION['token'] = bin2hex(random_bytes(32));
    $_SESSION['token-expire'] = time() + 3600; // 1 hour = 3600 secs
    // echo hash_equals($_SESSION['token'], $_POST['token']);
}
//validating Session
if (strlen($_SESSION['aid'] == 0)) {
    header('location:logout.php');
} else {

    if (isset($_POST['submit'])) {

       
        $examyear = $_POST['ryear'];
        $quesname = $_POST['pname'];
        $subject = $_POST['subject'];
        $semester = $_POST['semester'];
        $description = $_POST['description'];
        $filename = $_FILES['cdate']['name'];
        $filename = uniqid(rand()) . $filename;
        // destination of the file on the server
        $destination = '../upload/doc/' . $filename;
        // get the file extension
        $extension = pathinfo($filename, PATHINFO_EXTENSION);
        // the physical file on a temporary uploads directory on the server
        $file = $_FILES['cdate']['tmp_name'];
        if (hash_equals($_SESSION['token'], $_POST['token'])) {
            if (move_uploaded_file($file, $destination)) {
                $query = mysqli_query($con, "insert into tbl_question(quesname,examyear,subject,semester,description,docpath)
        values('$quesname','$examyear','$subject','$semester','$description','$filename')");
                if ($query) {
                    unset($_SESSION['token']);
                    unset($_SESSION['token-expire']);
                    echo '<script>alert("Question uploaded Successfully.")</script>';
                    echo "<script>window.location.href ='manage-question.php'</script>";

                } else {
                    echo '<script>alert("Something Went Wrong. Please try again.")</script>';
                }
            } else {
                echo "Failed to upload file.";
            }
        } else {
            echo '<script>alert("INvalid Token.")</script>';
        }

       

    }
    ?>

<!DOCTYPE html>
<html lang="en">

<head>

    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <meta name="description" content="">
    <meta name="author" content="">

    <title> Old Question Bank Upload</title>

    <!-- Custom fonts for this template-->
    <link href="vendor/fontawesome-free/css/all.min.css" rel="stylesheet" type="text/css">
    <link
        href="https://fonts.googleapis.com/css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i"
        rel="stylesheet">

    <!-- Custom styles for this template-->
    <link href="css/sb-admin-2.min.css" rel="stylesheet">
    <style type="text/css">
    label {
        font-size: 16px;
        font-weight: bold;
        color: #000;
    }
    </style>

</head>

<body id="page-top">

    <!-- Page Wrapper -->
    <div id="wrapper">

        <?php include_once 'includes/sidebar.php';?>

        <!-- Content Wrapper -->
        <div id="content-wrapper" class="d-flex flex-column">

            <!-- Main Content -->
            <div id="content">

                <!-- Topbar -->
                <?php include_once 'includes/topbar.php';?>
                <!-- End of Topbar -->

                <!-- Begin Page Content -->
                <div class="container-fluid">

                    <!-- Page Heading -->
                    <h1 class="h3 mb-4 text-gray-800">Old Questions Upload</h1>
                    <form method="post" name="adminprofile" enctype="multipart/form-data">
                    <input type="hidden" class="form-control" name="token" value="<?php echo $_SESSION['token'];?>">                 <div class="row">

                            <div class="col-lg-12 col-sm-12 col-md-12">

                                <!-- Basic Card Example -->
                                <div class="card shadow mb-4">

                                    <div class="card-body">

                                        <!-- form starts -->
                                        <div class="container py-2">
                                            <div class="row">
                                                <div class="col-md-12 mx-auto">

                                                    <div class="form-group row">
                                                        <div class="col-sm-6">
                                                            <label for="inputFirstname">Question Name</label>
                                                            <input type="text" required class="form-control"
                                                                id="inputFirstname" name="pname"
                                                                placeholder="Question Name">
                                                        </div>
                                                        <div class="col-sm-6">

                                                            <label for="inputAddressLine1">Year of Examination</label>
                                                            <select name="ryear" id="" class="form-control" required>
                                                                <option value="">--Select Year--</option>
                                                                <?php
for ($i = date("Y") - 13; $i <= date("Y"); $i++) {
        echo '<option value="' . $i . '">' . $i . '</option>' . PHP_EOL;
    }
    ?>
                                                            </select>

                                                        </div>
                                                    </div>
                                                    <div class="form-group row">
                                                        <div class="col-sm-6">
                                                            <label for="inputFirstname">Subject/Department</label>
                                                            <select name="subject" id="ptype" class="form-control"
                                                                required>
                                                                <option value="">--Select--</option>
                                                                <!-- <option value="Principal">Principal</option>
                            <option value="Admin">Admin</option>
                            <option value="Committee">Committee</option>
                            <option value="Department">Department</option>
                            <option value="Library">Library</option> -->
                                                                <?php

    $query = mysqli_query($con, "select * from tbl_subject where status=1 ");
    while ($category = mysqli_fetch_array($query)) {
        ?>
                                                                <option value="<?php echo $category["id"]; ?>">
                                                                    <?php echo $category["subname"]; ?></option>
                                                                <?php }?>

                                                            </select>
                                                        </div>
                                                        <div class="col-sm-6">

                                                            <label for="inputAddressLine1">Semester</label>
                                                            <select name="semester" id="" class="form-control" required>
                                                                <option value="">--Select Semester--</option>
                                                                <option value="1">1</option>
                                                                <option value="2">2</option>
                                                                <option value="3">3</option>
                                                                <option value="4">4</option>
                                                                <option value="5">5</option>
                                                                <option value="6">6</option>
                                                                <option value="0">Yearly</option>
                                                            </select>

                                                        </div>
                                                    </div>

                                                    <div class="form-group row">
                                                        <div class="col-sm-12">
                                                            <label for="inputCity">Description (Max 70
                                                                Characters)</label>
                                                            <textarea name="description" id="" cols="30" maxlength="50"
                                                                rows="3" class="form-control" required></textarea>
                                                            <!-- <input type="date" class="form-control" id="inputCity" name="cdate" placeholder="City"> -->
                                                        </div>


                                                    </div>

                                                    <div class="form-group row">
                                                        <div class="col-sm-12">
                                                            <label for="inputCity">Upload the Form/Document Scan (Only
                                                                Pdf/Images Allowed)</label>
                                                            <!-- <textarea name="content" id="" cols="30" rows="10" class="form-control"></textarea> -->
                                                            <input type="file" class="form-control" id="file-upload"
                                                                name="cdate" required
                                                                onchange="return fileValidation()">
                                                        </div>


                                                    </div>

                                                    <button type="submit" class="btn btn-primary px-4 float-right"
                                                        name="submit">Upload</button>

                                                </div>
                                            </div>
                                        </div>
                                        <!-- form ends -->













                                    </div>
                                </div>

                            </div>



                        </div>
                    </form>

                </div>
                <!-- /.container-fluid -->

            </div>
            <!-- End of Main Content -->

            <?php include_once 'includes/footer.php';?>

        </div>
        <!-- End of Content Wrapper -->

    </div>
    <!-- End of Page Wrapper -->

    <!-- Scroll to Top Button-->

    <?php include_once 'includes/footer2.php';?>


    <!-- Bootstrap core JavaScript-->
    <script src="vendor/jquery/jquery.min.js"></script>
    <script src="vendor/bootstrap/js/bootstrap.bundle.min.js"></script>

    <!-- Core plugin JavaScript-->
    <script src="vendor/jquery-easing/jquery.easing.min.js"></script>

    <!-- Custom scripts for all pages-->
    <script src="js/sb-admin-2.min.js"></script>
    <script>
    /* javascript function to validate file type */
    function fileValidation() {
        var inputElement = document.getElementById('file-upload');
        var files = inputElement.files;
        if (files.length == 0) {
            alert("Please choose a file first...");
            return false;
        } else {
            var filename = files[0].name;

            /* getting file extenstion eg- .jpg,.png, etc */
            var extension = filename.substr(filename.lastIndexOf("."));

            /* define allowed file types */
            var allowedExtensionsRegx = /(\.jpg|\.jpeg|\.png|\.gif|\.pdf)$/i;

            /* testing extension with regular expression */
            var isAllowed = allowedExtensionsRegx.test(extension);

            if (isAllowed) {
                alert("File type is valid for the upload");
                /* file upload logic goes here... */
            } else {
                alert("Invalid File Type.Choose image/PDF file Only");
                inputElement.value = '';

                return false;
            }
        }
    }
    </script>
</body>

</html>
<?php }?>

Zerion Mini Shell 1.0