Untitled


<?php
require_once '../config.php';
require_once 'header.php';
require_once 'logincheck.php';

$bookname_error=$author_error=$price_error=$category_error=$image_err="";
$bookname=$author=$Price=$category=$image=$status="";

if(isset($_POST['submit'])){

	//validate book name
	if(empty($_POST['book_name'])){
		$bookname_error="please enter book name";

	}else{
		$bookname=test_input($_POST['book_name']);
		$name_pattern='/^[a-zA-Z]+$/';
		if(!preg_match($name_pattern,$bookname)){
			$bookname_error="please enter valid book name";
	}
}
//validate author name
	if(empty($_POST['author'])){
		$author_error="please enter author name";

	}else{
		$author=test_input($_POST['author']);
		$author_pattern='/^[a-zA-Z]+$/';
		if(!preg_match($author_pattern,$author)){
		$$author_error="please enter valid author name";
	}

 }
 //validate price
	if(empty($_POST['price'])){
		$price_error="please enter price";

	}else{
		$price=test_input($_POST['price']);
		$price_pattern='/^[1-9]+$/';
		if(!preg_match($price_pattern,$price)){
		$price_error="please enter valid price";
	}

 }

  //validate price
	if(empty($_POST['category'])){
		$category_error="please enter category";

	}else{
		$category=test_input($_POST['category']);
		$category_pattern='/^[a-zA-Z]+$/';
		if(!preg_match($category_pattern,$category)){
		$category_error="please enter valid category";
	}

 }

 //validate book image
	if(!isset($_FILES['book_img'])){
		$image_err="please select image";
	} else{
		$target="images/";
		$file_name=$_FILES['book_img']['name'];
		$file_type=$_FILES['book_img']['type'];
		$file_size=$_FILES['book_img']['size'];
		$temp_name=$_FILES['book_img']['tmp_name'];
		$allowed=array('jpg'=>'image/jpg','jpeg'=>'image/jpeg');
		if(!in_array($file_type,$allowed)){
			$image_err="please select jpg/jpeg file";

		}
		$maxsize=1*1024*1024;
		if($file_size>$maxsize){
			$image_err="file size greater than 1 MB";
		}
		if(in_array($file_type,$allowed)&& $file_size<$maxsize && $_FILES['book_img']['error']===0){
			$newname=rand().$file_name;
			$target=$target.$newname;
			$image=$target;
			move_uploaded_file($temp_name,$target);


		}
	}
	if(empty($bookname_error)&& empty($author_error) && empty($price_error) && empty($category_error)&& empty($image_err))
	{
		$sql="INSERT INTO books values('','$bookname','$image','$author','','$price','$category')";
		if(mysqli_query($link,$sql)){
			$status='<div class="alert alert-success">successfully added book</div>';

		}else{
			$status='<div class="alert alert-success">error adding books</div>';
		}
	}
}

function test_input($data){
	$data=trim($data);
	$data=stripcslashes($data);
	$data=htmlspecialchars($data);
	return $data;
}
?>
<div class="container">
	<div class="row">

	 <div class="col-lg-12">

		<div class="row">
		<div class="col-sm-3"></div>
		<div class="col-sm-5">
		<h4 class="text-warning">Provide below details to add book</h4><br>
		<span><?php echo $status ?></span>
		<form class="form" method="POST" enctype="multipart/form-data">
		<div class="form-group">
		<label for="">Name of Book</label>
		<input type="text" name="book_name" value="" class="form-control">
		<span class="text-danger"><?php echo $bookname_error; ?></span>
		</div>

		<div class="form-group">
		<label for="">Author</label>
		<input type="text" name="author" value="" class="form-control">
		<span class="text-danger"><?php echo $author_error; ?></span>
		</div>

		<div class="form-group">
		<label for="">Price</label>
		<input type="text" name="price" value="" class="form-control">
		<span class="text-danger"><?php echo $price_error; ?></span>
		</div>

		<div class="form-group">
		<label for="">category</label>
		<input type="text" name="category" value="" class="form-control">
		<span class="text-danger"><?php echo $category_error; ?></span>
		</div>

		<div class="form-group">
		<label for="">Upload Book Image</label>
		<input type="file" name="book_img" value="book_img" class="form-control">
		<span class="text-danger"><?php echo $image_err; ?></span>
		</div>

		<div class="form-group">
		<input type="submit" name="submit" value="add book" class="btn btn-success">
		</div>

  </form>
		</div>
		<div class="col-sm-4"></div>
		</div>

		</div>


</div>
</div>
<?php
require_once 'footer.php';
?>