File "creating_profile.php"
Full Path: /home/ccipcixf/public_html/miportal/creating_profile.php
File size: 5.67 KB
MIME-type: text/x-php
Charset: utf-8
<?php
session_start();
include("admin/includes/config.php");
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$user_id = $_SESSION['user_acc_id']; // Assumes user_id is stored in the session after login
$user_name = $_SESSION['user_acc_name']; // Assuming user_acc_name is set correctly
// Ensure that all $_POST fields are being received
$fullname = isset($_POST['fullname']) ? trim($_POST['fullname']) : null;
$phone = isset($_POST['user_phone']) ? trim($_POST['user_phone']) : null;
$gender = isset($_POST['user_gender']) ? $_POST['user_gender'] : null;
$dob = isset($_POST['user_dob']) ? $_POST['user_dob'] : null;
$address = isset($_POST['user_address']) ? trim($_POST['user_address']) : null;
$city = isset($_POST['user_city']) ? $_POST['user_city'] : null;
$age = isset($_POST['user_age']) ? $_POST['user_age'] : null;
$cnic = isset($_POST['user_cnic']) ? trim($_POST['user_cnic']) : null;
$user_payment = isset($_POST['user_payment']) ? $_POST['user_payment'] : null;
// Handle dynamic payment fields
$bank_name = $user_payment == 'bank' ? (isset($_POST['user_bankname']) ? trim($_POST['user_bankname']) : null) : null;
$bank_acc_title = $user_payment == 'bank' ? (isset($_POST['user_acctitle']) ? trim($_POST['user_acctitle']) : null) : null;
$bank_acc_number = $user_payment == 'bank' ? (isset($_POST['user_accnumber']) ? trim($_POST['user_accnumber']) : null) : null;
$nayapay_title = $user_payment == 'nayapay' ? (isset($_POST['user_acctitlenayapay']) ? trim($_POST['user_acctitlenayapay']) : null) : null;
$nayapay_number = $user_payment == 'nayapay' ? (isset($_POST['user_accnumbernayapay']) ? trim($_POST['user_accnumbernayapay']) : null) : null;
$sadapay_title = $user_payment == 'sadapay' ? (isset($_POST['user_acctitlesadapay']) ? trim($_POST['user_acctitlesadapay']) : null) : null;
$sadapay_number = $user_payment == 'sadapay' ? (isset($_POST['user_accnumbersadapay']) ? trim($_POST['user_accnumbersadapay']) : null) : null;
$easypaisa_title = $user_payment == 'easypaisa' ? (isset($_POST['user_acctitleeasypaisa']) ? trim($_POST['user_acctitleeasypaisa']) : null) : null;
$easypaisa_number = $user_payment == 'easypaisa' ? (isset($_POST['user_accnumbereasypaisa']) ? trim($_POST['user_accnumbereasypaisa']) : null) : null;
$jazzcash_title = $user_payment == 'jazzcash' ? (isset($_POST['user_acctitlejazzcash']) ? trim($_POST['user_acctitlejazzcash']) : null) : null;
$jazzcash_number = $user_payment == 'jazzcash' ? (isset($_POST['user_accnumberjazzcash']) ? trim($_POST['user_accnumberjazzcash']) : null) : null;
//Questions
$q1 = isset($_POST['q1']) ? $_POST['q1'] : null;
$q2 = isset($_POST['q2']) ? $_POST['q2'] : null;
$q3 = isset($_POST['q3']) ? $_POST['q3'] : null;
$q4 = isset($_POST['q4']) ? $_POST['q4'] : null;
$q5 = isset($_POST['q5']) ? $_POST['q5'] : null;
$q6 = isset($_POST['q6']) ? $_POST['q6'] : null;
$q7 = isset($_POST['q7']) ? $_POST['q7'] : null;
$q8 = isset($_POST['q8']) ? $_POST['q8'] : null;
$q9 = isset($_POST['q9']) ? $_POST['q9'] : null;
$q10 = isset($_POST['q10']) ? $_POST['q10'] : null;
$q11 = isset($_POST['q11']) ? $_POST['q11'] : null;
$q12 = isset($_POST['q12']) ? $_POST['q12'] : null;
$q13 = isset($_POST['q13']) ? $_POST['q13'] : null;
$agreement = isset($_POST['agreement']) ? 'Checked' : 'Not Checked';
// Profile Complete to Status 1
$profile_status = 1;
// Set status to inactive by default
$status = 'inactive';
// Validate image upload
if ($_FILES['profile_image']['error'] == UPLOAD_ERR_OK) {
$image_name = $_FILES['profile_image']['name'];
$image_tmp_name = $_FILES['profile_image']['tmp_name'];
$image_ext = strtolower(pathinfo($image_name, PATHINFO_EXTENSION));
$allowed_extensions = ['jpg', 'jpeg', 'png'];
if (!in_array($image_ext, $allowed_extensions)) {
$_SESSION['error'] = "Invalid image format. Only JPG, JPEG, and PNG are allowed.";
header("Location: setup_profile.php");
exit;
}
// Save the image
$new_image_name = "profile_" . $user_name . "." . $image_ext;
$upload_dir = "uploads/profile_images/";
move_uploaded_file($image_tmp_name, $upload_dir . $new_image_name);
} else {
// Handle the case where no image was uploaded or there was an error
$new_image_name = null; // or you can fetch the old image name if needed
}
// Update the user's profile in the database
$stmt = $pdo->prepare("UPDATE tb_user SET fullname = ?, phone = ?, gender = ?, dob = ?, address = ?, city = ?, age = ?, user_cnic = ?, user_payment = ?, bank_name = ?, bank_acc_title = ?, bank_acc_number = ?, nayapay_title = ?, nayapay_number = ?, sadapay_title = ?, sadapay_number = ?, easypaisa_title = ?, easypaisa_number = ?, jazzcash_title = ?, jazzcash_number = ?, user_image = ?, q9 = ?, q10 = ?, q11 = ?, q12 = ? , q13 = ? , q14 = ? , q15 = ?, q16 = ?, q17 = ? , q18 = ?, q19 = ?, q20 = ?, q21 = ?, agreement = ?, status = ?, profile_completed = ? WHERE user_id = ?");
$stmt->execute([$fullname, $phone, $gender, $dob, $address, $city, $age, $cnic, $user_payment, $bank_name, $bank_acc_title, $bank_acc_number, $nayapay_title, $nayapay_number, $sadapay_title, $sadapay_number, $easypaisa_title, $easypaisa_number, $jazzcash_title, $jazzcash_number, $new_image_name, $q1, $q2, $q3, $q4, $q5, $q6, $q7, $q8, $q9, $q10, $q11, $q12, $q13, $agreement, $status, $profile_status , $user_id]);
$_SESSION['success'] = "Profile updated successfully!";
header("Location: user_dashboard.php");
exit;
}