[php]<?php
if (isset($_POST[‘submit’])) {
$expected = array('category','lastname','firstname', 'bktc', 'expertise','bstreet1','bstreet2','bcity','bstate','bzip','bphone','bfax','hstreet1','hstreet2','hcity','hstate','hzip','hphone','hfax','email','rate','ssn','tax','cv','comments','attorney','client','matter','case');
// set required fields
$required = array('category','lastname', 'firstname', 'bktc','expertise');
// set default values for variables that might not exist
foreach ($_POST as $key => $value) {
// assign to temporary variable and strip whitespace if not an array
$temp = is_array($value) ? $value : trim($value);
// if empty and required, add to $missing array
if (empty($temp) && in_array($key, $required)) {
$missing[] = $key;
} elseif (in_array($key, $expected)) {
// otherwise, assign to a variable of the same name as $key
${$key} = $temp;
}
}
// var_dump($missing);
if (empty($missing) && empty($errors)){
//post to sql
//if($_SESSION['completed']&&(!isset($_SESSION['last_form_id'])||$_SESSION['form_id']!=$_SESSION['last_form_id'])){
include("dbconn.inc.php");
//foreach($expected)
$expertise = $_POST['expertise'];
$lastname = $_POST['lastname'];
$firstname = $_POST['firstname'];
$category = $_POST['category'];
$bktc = $_POST['bktc'];
$layman = $_POST['layman'];
$acceptable_extensions[0] = "pdf";
$acceptable_extensions[1] = "jpg";
$acceptable_extensions[2] = "gif";
$acceptable_extensions[3] = "doc";
$acceptable_extensions[4] = "ppt";
$acceptable_extensions[5] = "xls";
$acceptable_extensions[6] = "xsl";
$acceptable_extensions[7] = "PDF";
$acceptable_extensions[8] = "JPG";
$acceptable_extensions[9] = "GIF";
$acceptable_extensions[10] = "DOC";
$acceptable_extensions[11] = "PPT";
$acceptable_extensions[12] = "XLS";
$acceptable_extensions[13] = "XSL";
$acceptable_extensions[14] = "txt";
$acceptable_extensions[15] = "TXT";
$acceptable_extensions[16] = "csv";
$acceptable_extensions[17] = "CSV";
$acceptable_extensions[18] = "docx";
$acceptable_extensions[19] = "DOCX";
$fileName = $_FILES['datafile']['name'];
$tmpName = $_FILES['datafile']['tmp_name'];
$fileSize = $_FILES['datafile']['size'];
$fileType = $_FILES['datafile']['type'];
$fp = fopen($tmpName, 'r');
$content = fread($fp, filesize($tmpName));
$content = addslashes($content);
fclose($fp);
if(!get_magic_quotes_gpc())
{
$fileName = addslashes($fileName);
}
//$sql = "INSERT INTO test1 (expertise, lastname, firstname, category, bktc) VALUES ('$expertise', '$lastname', '$firstname', '$category', '$bktc')";
$sql = "INSERT INTO test1 (expertise, lastname, firstname, category, bktc, layman, name, size, type, content )
VALUES ('$expertise', '$lastname', '$firstname', '$category', '$bktc', '$layman','$fileName', '$fileSize', '$fileType','$content')";
//mysql_query($sql, $conn);
if (!mysql_query($sql,$conn)) { //wa s getting double cause query running twice
die('Error: '.mysql_error());
}
// $category="";
// $bktc="";
// $bstate="";
// $hstate="";
// $_POST['category']="";
// $_POST['bktc']="";
// $_POST['bstate']="";
// $_POST['hstate']="";
mysql_close($conn);
header('Location: thank_you1.php');
exit;
//$_SESSION['last_form_id']=$_SESSION['form_id'];
//$_SESSION['completed']="";
/*}else{
die('Error: already submitted');
}*/
}
}
else
{
$_SESSION[’’]="";
}
?>[/php]