Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- include_once "../config.php";
- include "functions.php";
- include "../includes/db.php";
- $passed = 0;
- $number_passed = 0;
- $_SESSION['message'] = "<ul>";
- if ($_POST['dogbreed'] &&
- $_POST['description'] &&
- $_POST['country_code'] &&
- $_POST['price'] &&
- $_POST['discount_rate']) {
- if (!is_numeric($_POST['price']) || !is_numeric($_POST['discount_rate'])) {
- $_SESSION['message'] .= "<li>Price and discount rate must be in numeric form.</li>";
- } else {
- $number_passed = 1;
- $passed = 1;
- }
- if ($passed = 1) {
- $sql = "INSERT INTO dogbreeds (dogbreed, description, country_code, price, discount_rate)
- VALUES (
- '" . $_POST['dogbreed'] . "',
- '" . $_POST['description'] . "',
- '" . $_POST['country_code'] . "',
- '" . $_POST['price'] . "',
- '" . $_POST['discount_rate'] . "'
- )";
- $result = mysqli_query($_SESSION['dblink'],$sql);
- if ($result) {
- $_SESSION['message'] .= "Record added!";
- } else {
- $_SESSION['message'] .= "Record NOT added! " . mysqli_error($_SESSION['dblink']);
- }
- $_SESSION['message'] .= "</ul>";
- header("Location: " . SITE_URL . "/admin");
- } else {
- header("Location: " . SITE_URL . "/admin");
- }
- } else {
- $_SESSION['message'] .= "<li>Please fill in ALL fields.</li></ul>";
- header("Location: " . SITE_URL . "/admin");
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement