-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathadmin_add_books.php
122 lines (95 loc) · 4.61 KB
/
admin_add_books.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
<?php
$title = 'Add Book';
include './php/config.php';
session_start();
$admin_id = $_SESSION['admin_id'];
if(!isset($admin_id)){
header('location:login.php');
}
if(isset($_POST['addBook'])){
$title = mysqli_real_escape_string($con, $_POST['title']);
$author = mysqli_real_escape_string($con, $_POST['author']);
$publisher = mysqli_real_escape_string($con, $_POST['publisher']);
$price = $_POST['price'];
$quantity = $_POST['qty'];
$category = $_POST['category'];
$description = mysqli_real_escape_string($con, $_POST['description']);
$image = $_FILES['image']['name'];
$image_tmp = $_FILES['image']['tmp_name'];
$image_folder = './src/uploads/'.$image;
$select_books = mysqli_query($con, "SELECT * FROM books WHERE title = '$title'") or die('query failed');
if(mysqli_num_rows($select_books) > 0){
echo '<script>alert("Book already added!")</script>';
}else {
$sql = "INSERT INTO books (title, author, publisher, price, qty, category_id , description, image) VALUES ('$title', '$author', '$publisher', '$price', '$quantity', '$category', '$description', '$image')";
$result = mysqli_query($con, $sql);
if($result){
move_uploaded_file($image_tmp, $image_folder);
echo '<script>alert("Book Added Successfully!");
window.location.href="admin_book_list.php";</script>';
} else {
echo '<script>alert("Book not added!")</script>';
}
}
}
include './templates/admin_header.php';
?>
<div class="main-container b-main">
<?php include './templates/admin_navigation.php' ?>
<div class="container">
<div class="form-container">
<h2>Add Book</h2>
<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post" enctype="multipart/form-data">
<div class="input-field">
<i class="fas fa-book"></i>
<input type="text" name="title" id="title" placeholder="Title" required>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<input type="text" name="author" id="author" placeholder="Author" required>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<input type="text" name="publisher" id="publisher" placeholder="Publisher" required>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<input type="number" min="0" name="price" id="price" placeholder="Price" required>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<input type="text" name="qty" id="qty" placeholder="Quantity" required>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<select id="category" name="category" required>
<option value=" " disable selected>- Select Category -</option>
<?php
$select_category_names= mysqli_query($con, "SELECT * FROM categories") or die('query failed');
if(mysqli_num_rows($select_category_names) > 0){
while($fetch_category_names = mysqli_fetch_assoc($select_category_names)){
?>
<option value="<?php echo $fetch_category_names['id'];?>"><?php echo $fetch_category_names['name']; ?></option>
<?php
}
} else {
echo '<p class="empty">No categories found!</p>';
}
?>
</select>
</div>
<div class="input-field description-field">
<textarea name="description" id="description" cols="30" rows="15" placeholder="Description"></textarea>
</div>
<div class="input-field">
<i class="fas fa-book"></i>
<input type="file" accept="image/jpg, image/jpeg, image/png" name="image" id="image" placeholder="Image" required>
</div>
<input type="submit" name="addBook" value="Add Book" class="submit-btn btn">
</form>
</div>
</div>
</div>
<?php
include './templates/footer.php';
?>