<?php include_once('includes/connect_database.php'); include_once('functions.php'); require_once("thumbnail_images.class.php"); ?> <div id="content" class="container col-md-12"> <?php if(isset($_GET['id'])){ $ID = $_GET['id']; }else{ $ID = ""; } // create array variable to store category data $category_data = array(); $sql_query = "SELECT cid, category_name FROM tbl_news_category ORDER BY cid ASC"; $stmt_category = $connect->stmt_init(); if($stmt_category->prepare($sql_query)) { // Execute query $stmt_category->execute(); // store result $stmt_category->store_result(); $stmt_category->bind_result($category_data['cid'], $category_data['category_name'] ); } $sql_query = "SELECT news_image FROM tbl_news WHERE nid = ?"; $stmt = $connect->stmt_init(); if($stmt->prepare($sql_query)) { // Bind your variables to replace the ?s $stmt->bind_param('s', $ID); // Execute query $stmt->execute(); // store result $stmt->store_result(); $stmt->bind_result($previous_news_image); $stmt->fetch(); $stmt->close(); } if(isset($_POST['btnEdit'])){ $news_heading = $_POST['news_heading']; $cid = $_POST['cid']; $news_date = $_POST['news_date']; $news_description = $_POST['news_description']; // get image info $news_image = $_FILES['news_image']['name']; $image_error = $_FILES['news_image']['error']; $image_type = $_FILES['news_image']['type']; // create array variable to handle error $error = array(); if(empty($news_heading)){ $error['news_heading'] = " <span class='label label-danger'>Required, please fill out this field!!</span>"; } if(empty($cid)){ $error['cid'] = " <span class='label label-danger'>Required, please fill out this field!!</span>"; } if(empty($news_date)){ $error['news_date'] = " <span class='label label-danger'>Required, please fill out this field!!</span>"; } if(empty($news_description)){ $error['news_description'] = " <span class='label label-danger'>Required, please fill out this field!!</span>"; } // common image file extensions $allowedExts = array("gif", "jpeg", "jpg", "png"); // get image file extension error_reporting(E_ERROR | E_PARSE); $extension = end(explode(".", $_FILES["news_image"]["name"])); if(!empty($news_image)){ if(!(($image_type == "image/gif") || ($image_type == "image/jpeg") || ($image_type == "image/jpg") || ($image_type == "image/x-png") || ($image_type == "image/png") || ($image_type == "image/pjpeg")) && !(in_array($extension, $allowedExts))){ $error['news_image'] = "*<span class='label label-danger'>Image type must jpg, jpeg, gif, or png!</span>"; } } if( !empty($news_heading) && !empty($cid) && !empty($news_date) && !empty($news_description) && empty($error['news_image'])){ if(!empty($news_image)){ // create random image file name $string = '0123456789'; $file = preg_replace("/\s+/", "_", $_FILES['news_image']['name']); $function = new functions; $news_image = $function->get_random_string($string, 4)."-".date("Y-m-d").".".$extension; // delete previous image $delete = unlink('upload/'."$previous_news_image"); $delete = unlink('upload/thumbs/'."$previous_news_image"); // upload new image $unggah = 'upload/'.$news_image; $upload = move_uploaded_file($_FILES['news_image']['tmp_name'], $unggah); error_reporting(E_ERROR | E_PARSE); copy($news_image, $unggah); $thumbpath= 'upload/thumbs/'.$news_image; $obj_img = new thumbnail_images(); $obj_img->PathImgOld = $unggah; $obj_img->PathImgNew =$thumbpath; $obj_img->NewWidth = 72; $obj_img->NewHeight = 72; if (!$obj_img->create_thumbnail_images()) { echo "Thumbnail not created... please upload image again"; exit; } // updating all data $sql_query = "UPDATE tbl_news SET news_heading = ? , cat_id = ?, news_date = ?, news_image = ?, news_description = ? WHERE nid = ?"; $upload_image = $news_image; $stmt = $connect->stmt_init(); if($stmt->prepare($sql_query)) { // Bind your variables to replace the ?s $stmt->bind_param('ssssss', $news_heading, $cid, $news_date, $upload_image, $news_description, $ID); // Execute query $stmt->execute(); // store result $update_result = $stmt->store_result(); $stmt->close(); } }else{ // updating all data except image file $sql_query = "UPDATE tbl_news SET news_heading = ? , cat_id = ?, news_date = ?, news_description = ? WHERE nid = ?"; $stmt = $connect->stmt_init(); if($stmt->prepare($sql_query)) { // Bind your variables to replace the ?s $stmt->bind_param('sssss', $news_heading, $cid, $news_date, $news_description, $ID); // Execute query $stmt->execute(); // store result $update_result = $stmt->store_result(); $stmt->close(); } } // check update result if($update_result){ $error['update_data'] = " <span class='label label-primary'>Success update news.</span>"; }else{ $error['update_data'] = " <span class='label label-danger'>Failed to update news.</span>"; } } } // create array variable to store previous data $data = array(); $sql_query = "SELECT * FROM tbl_news WHERE nid = ?"; $stmt = $connect->stmt_init(); if($stmt->prepare($sql_query)) { // Bind your variables to replace the ?s $stmt->bind_param('s', $ID); // Execute query $stmt->execute(); // store result $stmt->store_result(); $stmt->bind_result($data['nid'], $data['news_heading'], $data['cid'], $data['Price'], $data['news_date'], $data['news_image'], $data['news_description'] ); $stmt->fetch(); $stmt->close(); } ?> <div class="col-md-12"> <h1>Edit News <?php echo isset($error['update_data']) ? $error['update_data'] : '';?></h1> <hr /> </div> <form method="post" enctype="multipart/form-data"> <div class="col-md-9"> <div class="col-md-12"> <label>Menu Name :</label><?php echo isset($error['news_heading']) ? $error['news_heading'] : '';?> <input type="text" name="news_heading" class="form-control" value="<?php echo $data['news_heading']; ?>"/> </div> <div class="col-md-3"> <br> <label>News Date :</label><?php echo isset($error['news_date']) ? $error['news_date'] : '';?> <input type="text" name="news_date" id="news_date" value="<?php echo $data['news_date']; ?>" class="form-control"> <br/> <label>Category :</label><?php echo isset($error['cid']) ? $error['cid'] : '';?> <select name="cid" class="form-control"> <?php while($stmt_category->fetch()){ if($category_data['cid'] == $data['cid']){?> <option value="<?php echo $category_data['cid']; ?>" selected="<?php echo $data['cid']; ?>" ><?php echo $category_data['category_name']; ?></option> <?php }else{ ?> <option value="<?php echo $category_data['cid']; ?>" ><?php echo $category_data['category_name']; ?></option> <?php }} ?> </select> <br/> <label>Image :</label><?php echo isset($error['news_image']) ? $error['news_image'] : '';?> <input type="file" name="news_image" id="news_image"/><br /> <img src="upload/<?php echo $data['news_image']; ?>" width="210" height="160"/> </div> <div class="col-md-9"> <br> <label>News Description :</label><?php echo isset($error['news_description']) ? $error['news_description'] : '';?> <textarea name="news_description" id="news_description" class="form-control" rows="16"><?php echo $data['news_description']; ?></textarea> <script type="text/javascript" src="css/js/ckeditor/ckeditor.js"></script> <script type="text/javascript"> CKEDITOR.replace( 'news_description' ); </script> </div> </div> <div class="col-md-3"> <br/> <div class="panel panel-default"> <div class="panel-heading">Add</div> <div class="panel-body"> <input type="submit" class="btn-primary btn" value="Update" name="btnEdit" /> </div> </div> </div> </form> <div class="separator"> </div> </div> <?php $stmt_category->close(); include_once('includes/close_database.php'); ?>