ok

Mini Shell

Direktori : /proc/thread-self/root/proc/self/root/home/ngwcolle/public_html/admin/
Upload File :
Current File : //proc/thread-self/root/proc/self/root/home/ngwcolle/public_html/admin/edit-principal.php

<?php session_start();
//DB conncetion
error_reporting(E_ERROR | E_WARNING | E_PARSE);
include_once('includes/config.php');
if (empty($_SESSION['token'])) {
    $_SESSION['token'] = bin2hex(random_bytes(32));
    $_SESSION["token-expire"] = time() + 3600; // 1 hour = 3600 secs
}
//validating Session
if (strlen($_SESSION['aid'] == 0)) {
    header('location:logout.php');
} else {
    $teamid = $_GET['teamid'];
    if (isset($_POST['submit'])) {
         if (hash_equals($_SESSION["token"], $_POST["token"])) {
        $pname = strtoupper($_POST['pname']);
        $doj = $_POST['doj'];
        $qual = strtoupper($_POST['psa']);
        $mobile = $_POST['pcont'];
        $add = $_POST['paddress'];

        $query = mysqli_query($con, "update tbl_principal set pname='$pname',joiningdate='$doj',qualification='$qual',mobno='$mobile',address='$add' where id='$teamid'");
        if ($query) {
            echo '<script>alert("Principal Profile updated Successfully.")</script>';
            echo "<script>window.location.href ='manage-principal.php'</script>";
        } else {
            echo '<script>alert("Something Went Wrong. Please try again.")</script>';
        }
         }
         else {
            echo '<script>alert("Malicious Data found & submitted. Please try again.")</script>';
        }
    }
    
    
    
}
?>

<!DOCTYPE html>
<html lang="en">

<head>

    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
    <meta name="description" content="">
    <meta name="author" content="">

    <title> Principal Incumbancy</title>

    <!-- Custom fonts for this template-->
    <link href="vendor/fontawesome-free/css/all.min.css" rel="stylesheet" type="text/css">
    <link href="https://fonts.googleapis.com/css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i" rel="stylesheet">

    <!-- Custom styles for this template-->
    <link href="css/sb-admin-2.min.css" rel="stylesheet">
    <style type="text/css">
        label {
            font-size: 16px;
            font-weight: bold;
            color: #000;
        }
    </style>

</head>

<body id="page-top">

    <!-- Page Wrapper -->
    <div id="wrapper">

        <?php include_once('includes/sidebar.php'); ?>

        <!-- Content Wrapper -->
        <div id="content-wrapper" class="d-flex flex-column">

            <!-- Main Content -->
            <div id="content">

                <!-- Topbar -->
                <?php include_once('includes/topbar.php'); ?>
                <!-- End of Topbar -->

                <!-- Begin Page Content -->
                <div class="container-fluid">

                    <!-- Page Heading -->
                    <h1 class="h3 mb-4 text-gray-800">New Principal Joining</h1>
                    <form method="post" name="adminprofile" enctype="multipart/form-data">
 <input type="hidden" name="token" value="<?php echo htmlentities($_SESSION['token']); ?>">

                        <?php
                        $query = mysqli_query($con, "select * from tbl_principal where id='$teamid'");
                        while ($row = mysqli_fetch_array($query)) {
                        ?>

                            <div class="row">

                                <div class="col-lg-12 col-sm-12 col-md-12">

                                    <!-- Basic Card Example -->
                                    <div class="card shadow mb-4">

                                        <div class="card-body">

                                            <!-- form starts -->
                                            <div class="container py-2">
                                                <div class="row">
                                                    <div class="col-md-12 mx-auto">

                                                        <div class="form-group row">
                                                            <div class="col-sm-6">
                                                                <label for="inputFirstname">Name of the Principal</label>
                                                                <input type="text" class="form-control" id="inputFirstname" name="pname" value="<?php echo $row['pname']; ?>" required placeholder="Name of the Principal">
                                                            </div>
                                                            <div class="col-sm-6">
                                                                <label for="inputLastname">Date of joining</label>
                                                                <input type="date" class="form-control" name="doj" id="inputAddressLine1" value="<?php echo $row['joiningdate']; ?>" required>

                                                            </div>
                                                        </div>
                                                        <div class="form-group row">
                                                            <div class="col-sm-6">
                                                                <label for="inputAddressLine1">Highest Qualification</label>
                                                                <input type="text" class="form-control" required name="psa" id="inputAddressLine1" value="<?php echo $row['qualification']; ?>" placeholder="Qualification">
                                                            </div>
                                                            <div class="col-sm-6">
                                                                <label for="inputAddressLine2">Contact No.</label>
                                                                <input type="number" class="form-control" required name="pcont" id="inputAddressLine1" value="<?php echo $row['mobno']; ?>" placeholder="Contact Details">
                                                            </div>
                                                        </div>
                                                        <div class="form-group row">
                                                            <!-- <div class="col-sm-12">
                                                                    <label for="inputAddressLine2">Upload Photograph</label>
                                                                    <input type="file" class="form-control" id="file-upload" required name="cdate" onchange="return fileValidation()" placeholder="Years of Experience">
                                                                </div> -->
                                                            <div class="col-sm-6">
                                                                <label for="inputCity">Address</label>
                                                                <textarea name="paddress" id="" cols="30" rows="4" required class="form-control"><?php echo $row['address']; ?></textarea>

                                                            </div>


                                                        </div>

                                                        <button type="submit" class="btn btn-primary px-4 float-right" name="submit">Update</button>

                                                    </div>
                                                </div>
                                            </div>
                                            <!-- form ends -->

                                        <?php } ?>











                                        </div>
                                    </div>

                                </div>



                            </div>
                    </form>

                </div>
                <!-- /.container-fluid -->

            </div>
            <!-- End of Main Content -->

            <?php include_once('includes/footer.php'); ?>

        </div>
        <!-- End of Content Wrapper -->

    </div>
    <!-- End of Page Wrapper -->

    <!-- Scroll to Top Button-->

    <?php include_once('includes/footer2.php'); ?>


    <!-- Bootstrap core JavaScript-->
    <script src="vendor/jquery/jquery.min.js"></script>
    <script src="vendor/bootstrap/js/bootstrap.bundle.min.js"></script>

    <!-- Core plugin JavaScript-->
    <script src="vendor/jquery-easing/jquery.easing.min.js"></script>

    <!-- Custom scripts for all pages-->
    <script src="js/sb-admin-2.min.js"></script>
    <script>
        /* javascript function to validate file type */
        function fileValidation() {
            var inputElement = document.getElementById('file-upload');
            var files = inputElement.files;
            if (files.length == 0) {
                alert("Please choose a file first...");
                return false;
            } else {
                var filename = files[0].name;

                /* getting file extenstion eg- .jpg,.png, etc */
                var extension = filename.substr(filename.lastIndexOf("."));

                /* define allowed file types */
                var allowedExtensionsRegx = /(\.jpg|\.jpeg|\.png|\.gif)$/i;

                /* testing extension with regular expression */
                var isAllowed = allowedExtensionsRegx.test(extension);

                if (isAllowed) {
                    alert("File type is valid for the upload");
                    /* file upload logic goes here... */
                } else {
                    alert("Invalid File Type.Choose image/Photo file Only");
                    inputElement.value = '';

                    return false;
                }
            }
        }
    </script>
</body>

</html>
<?php ?>

Zerion Mini Shell 1.0