<?php
include_once 'connection.php';
if(isset($_POST['submit']))
{
$file = rand(1000,100000)."-".$_FILES['photo']['name'];
$file_loc = $_FILES['photo']['tmp_name'];
$file_size = $_FILES['photo']['size'];
$file_type = $_FILES['photo']['type'];
$folder="profiles/";
// new file size in KB
$new_size = $file_size/2048;
// new file size in KB
// make file name in lower case
$new_file_name = strtolower($file);
// make file name in lower case
$final_file=str_replace(' ','-',$new_file_name);
if(move_uploaded_file($file_loc,$folder.$final_file))
{
$sql=mysql_query("Select * from profiles Where email='$userid'");
$row=mysql_num_rows($sql);
if($row>0)
{
$query=mysql_query("UPDATE profiles SET photo='$final_file' WHERE email='$userid'") or die(mysql_error());
$query=mysql_query("UPDATE profiles SET type='$file_type' WHERE email='$userid'") or die(mysql_error());
$query=mysql_query("UPDATE profiles SET name='$new_size' WHERE email='$userid'") or die(mysql_error());
?>
<script>
alert('Updated Successfull');
window.location.href='profile.php?success';
</script>
<?php }
$sql="INSERT INTO profiles(id,email,photo,type,name) VALUES('','$userid','$final_file','$file_type','$new_size')";
mysql_query($sql);
?>
<script>
alert('successfully uploaded');
window.location.href='profile.php?success';
</script>
<?php
}
else
{
?>
<script>
alert('error while uploading file');
window.location.href='profile.php?fail';
</script>
<?php
}
}
?>