1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
|
<?php require_once "inc/configure.php";
$refid = (int) filter_var($_REQUEST['refid'], FILTER_SANITIZE_NUMBER_INT);
//vdump($_REQUEST);
if( $_POST['action']=="customer_stamp_modify" && $refid){
//vdump($_REQUEST); vdump($_FILES);// exit;
$sql_param[':refid'] = $refid;
$sql_param[':stamp_remark'] = filter_var($_REQUEST['stamp_remark'], FILTER_SANITIZE_STRING);
//$createby = filter_var($_SESSION['user'], FILTER_SANITIZE_STRING);
$sql_param[':lastupby'] = filter_var($_SESSION['user'], FILTER_SANITIZE_STRING);
if ($_FILES['stamp_image']['name'] <> '')
{
$f = $_FILES['stamp_image']['name'];
$filename = getImgName("Engraving", $f, $refid);
//echo INV_PRODUCT_IMG_PATH.$filename;
copy ($_FILES['stamp_image']['tmp_name'], MASTER_CUSTOMER_IMG_PATH.$filename)
or die ("Could not copy image");
createthumb(MASTER_CUSTOMER_IMG_PATH.$filename, MASTER_CUSTOMER_IMG_PATH.THUMB_PATH.$filename, 300, 300);
}
else{
}
$sql_field='';
if($filename){
$sql_param[':stamp_path'] = MASTER_CUSTOMER_IMG_PATH;
$sql_param[':stamp_src'] = $filename;
$sql_field = "stamp_src = :stamp_src,
stamp_path = :stamp_path,";
}
$sql = "UPDATE master_customer SET
stamp_remark = :stamp_remark,
$sql_field
lastupby = :lastupby,
lastupdate = GETDATE()
WHERE refid = :refid";
$sth = $dbh->prepare($sql);
$q= $sth->execute( $sql_param );
/*echo $sth->getSQL( $sql_param );*/
pdo_showerror($sth, $q);
//exit;
header("Location: master_customer_stamp_done.php?refid=$refid&msg=Saved.");
print "Saved.";
exit;
}
print "Invalid Request";
|