<?php include "../includes/db.php" ?>
<?php
session_start();
if(isset($_POST['post'])){
$message=mysqli_real_escape_string($connection,$_POST['message']);
$designation=$_POST['designation'];
$img_client_name=$_POST['client_name'];
$img = uniqid('uploaded-', true)
. '.' . strtolower(pathinfo($_FILES['image']['name'], PATHINFO_EXTENSION));
$img_Temp=$_FILES['image']['tmp_name'];
move_uploaded_file($img_Temp,"./images/banner/$img");
$query="INSERT INTO testimonials(message,designation,client_name,image) VALUES('{$message}','{$designation}','{$img_client_name}','{$img}') ";
$result=mysqli_query($connection,$query);
if($result){
$_SESSION['messages'] ="Successfully added";
header("Location:create_testimonials.php");
}
else{
$message="server error";
}
}
?>
|