-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathaddTrack.php
119 lines (87 loc) · 3.71 KB
/
addTrack.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
<?php
ob_start();
include 'inc/headNav.php';
include 'inc/config.php';
$trackTitle = $trackDescription = $trackDifficulty = $trackLocation = '';
$errors = array('title' => '', 'description' => '', 'difficulty' => '', 'location' => '');
#SHOW SQL
$sqlStatement = 'SELECT * FROM tracks ORDER BY created_at';
$sqlResult = mysqli_query($connect, $sqlStatement);
$tracks = mysqli_fetch_all($sqlResult, MYSQLI_ASSOC);
if(isset($_POST['submit'])){
if(empty($_POST['trackTitle']) || strlen($_POST['trackTitle']) <= 3 ){
$errors['title'] = "Naslov mora vsebovati vsaj 3 črke";
} else{
$trackTitle = $_POST['trackTitle'];
if(! preg_match('/^[a-zA-Z\s]+$/' ,$trackTitle)){
$errors['title'] = "Naslov lahko vsebuje samo črke in presledke";
}
}
if(empty($_POST['trackDescription']) || strlen($_POST['trackDescription']) <= 3 ){
$errors['description'] = "Opis mora vsebovati vsaj 3 črke";
} else{
$trackDescription = $_POST['trackDescription'];
}
if(empty($_POST['trackLocation']) || strlen($_POST['trackLocation']) <= 3){
$errors['location'] = "Lokacija mora vsebovati vsaj 3 črke";
} else{
$trackLocation = $_POST['trackLocation'];
}
if(!array_filter($errors)){
$trackTitle = mysqli_real_escape_string($connect, $_POST['trackTitle']);
$trackDescription = mysqli_real_escape_string($connect, $_POST['trackDescription']);
$trackDifficulty = mysqli_real_escape_string($connect, $_POST['trackDifficulty']);
$trackLocation = mysqli_real_escape_string($connect, $_POST['trackLocation']);
//create SQL
$sql = "INSERT INTO tracks(title,description,dif,location)
VALUES('$trackTitle','$trackDescription','$trackDifficulty','$trackLocation')";
//save to DB and check
if(mysqli_query($connect,$sql)){
header('Location: index.php#routes');
exit;
} else{
echo "Query error " . mysqli_error($connect);
}
}
}
ob_end_flush();
?>
<div class="container">
<div class="slim">
<img src="img/logo/logo.png" class="img-fluid round" alt="login_logo">
<form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="POST">
<div class="indent">
<div class="spacing">
<input type="text" class="form-control" name="trackTitle" placeholder="NASLOV" value="<?php echo htmlspecialchars($trackTitle); ?>">
<p class="formError"> <?php echo $errors['title']; ?> </p>
</div>
<div class="spacing">
<input type="text" name="trackDescription" class="form-control" placeholder="OPIS" value="<?php echo htmlspecialchars($trackDescription); ?>">
<p class="formError"> <?php echo $errors['description']; ?> </p>
</div>
<div class="spacing">
<input type="text" name="trackLocation" class="form-control" placeholder="LOKACIJA" value="<?php echo htmlspecialchars($trackLocation); ?>">
<p class="formError"> <?php echo $errors['location']; ?> </p>
</div>
<div class="spacing">
<select class="form-control form-control-lg" name="trackDifficulty">
<option value="1">Panorama</option>
<option value="2">Rush</option>
<option value="3">Racing</option>
<option value="4">City</option>
<option value="5">Group</option>
<option value="6">Novice</option>
<option value="7">Hillclimb</option>
<option value="8">Curves</option>
<option value="9">Tarmac</option>
<option value="10">Gravel</option>
</select> <br>
</div>
<input type="submit" name="submit" class="btn btn-lg btn-danger" value="Dodaj">
</div>
</form>
</div>
</div>
<?php $title = ' Footer';
include 'inc/title.php';
include 'inc/footer.php'; ?>