home search add"; echo "

---

"; if (!(isset($_POST["title"]) && isset($_POST["description"]) && isset($_POST["address"]) && isset($_POST["zip"]) && isset($_POST["price"]) && isset($_POST["hours"]) && isset($_POST["minutes"]) && isset($_POST["ampm"]) && isset($_POST["month"]) && isset($_POST["day"]) && isset($_POST["year"]))) die ("Error! Missing parameters."); define( '_ALEX_PROJECT2_EXEC', 1 ); require_once("config.php"); $conn = mysql_connect(DB_HOST . ":" . DB_PORT, DB_USER, DB_PASS); if (!$conn) die("Error! Cannot connect to MySQL Database."); mysql_select_db(DB_NAME); // verify inputs date_default_timezone_set("America/New_York"); $minutes = intval($_POST["minutes"]); if ($minutes == -1) $minutes = 0; else if ($minutes >= 60 || $minutes <0) die("Error! Incorrect minutes value."); $hours = intval($_POST["hours"]); if ($hours == -1) $hours = 12; // default time 12:00 - noon else if ($hours > 12 || $hours <= 0) die("Error! Incorrect hours value."); $month = intval($_POST["month"]); if ($month > 12 || $month < 1) die("Error! Incorrect month value."); $day = intval($_POST["day"]); if ($day > 31 || $day < 1) die("Error! Incorrect day value."); $year = intval($_POST["year"]); if ($year > date("y")+5 || $year < date("y")) die("Error! Year out of range."); // compute time if ($_POST["ampm"]=="pm") $hours += 12; $time = mktime($hours, $minutes, 0, $month, $day, $year); // prepare other inputs for query $name = str_replace("'", "''", $_POST["title"]); $description = str_replace("'", "''", $_POST["description"]); $address = str_replace("'", "''", $_POST["address"]); $zip = intval($_POST["zip"]); $price = round ((float)$_POST["price"], 2); $sql = "INSERT INTO events2 (`username`,`type`,`description`,`title`,`address`,`zip`,`price`,`time`) VALUES ('Project1_demo', 'Project1_demo', '{$description}','{$name}','{$address}',{$zip},{$price},{$time});"; mysql_query($sql) OR die(mysql_error()); echo "Success! Entry added."; ?>