1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
|
<?php
require_once('check_login.php');
$messgae = "";
if(empty($_POST["code"])){
$messgae .= "Please enter code.\\n\\n";
}
if(empty($_POST["name_en"])){
$messgae .= "Please enter name.\\n\\n";
}
if(empty($_POST["address_en"])){
$messgae .= "Please enter address.\\n\\n";
}
if(empty($_POST["tel"])){
$messgae .= "Please enter telephone.\\n\\n";
}else{
if(!is_numeric($_POST["tel"])){
$messgae .= "Telephone should be in digital format.\\n\\n";
}
}
if(empty($_POST["fax"])){
$messgae .= "Please enter fax.\\n\\n";
}else{
if(!is_numeric($_POST["tel"])){
$messgae .= "Fax should be in digital format.\\n\\n";
}
}
if(empty($_POST["email"])){
$messgae .= "Please enter email.\\n\\n";
}else{
if (!filter_var($_POST["email"], FILTER_VALIDATE_EMAIL)) {
$messgae .= "Invalid email format";
}
}
if(!empty($messgae)){
echo "<script>alert('".$messgae."'); history.back();</script>";
exit;
}
$sql = "select max(sort) as max_sort from training_center where deleted = 0";
$row = bind_pdo($sql, NULL, "selectone");
$sort = $row{"max_sort"} + 1;
$sql = "insert into training_center set code =?, tel=?, fax=?, email=?, sort=?, createdate=?, createby=?, lastupdate=?, lastupby=?, ";
$parameters = array($_POST["code"], $_POST["tel"], $_POST["fax"], $_POST["email"], $sort, $nowdate, $_SESSION['cmsloginid'], $nowdate, $_SESSION['cmsloginid']);
foreach ($arraylangcode as $langcode => $langname) {
$sql .= "name_" . $langcode . "=?, address_" . $langcode . "=?, desc_" . $langcode . "=?, ";
$parameters[] = $_POST["name_" . $langcode];
$parameters[] = $_POST["address_" . $langcode];
$parameters[] = $_POST["desc_" . $langcode];
}
$sql = substr_replace($sql, "", -2);
bind_pdo($sql, $parameters);
$dbh = null;
header("Location: training_center_index.php?msg=1");
|