500000) { echo "Sorry, your file is too large."; $uploadOk = 0; } // Allow certain file formats if($imageFileType != "jpg" && $imageFileType != "png" && $imageFileType != "jpeg" && $imageFileType != "gif" ) { echo "Sorry, only JPG, JPEG, PNG & GIF files are allowed."; $uploadOk = 0; } // Check if $uploadOk is set to 0 by an error if ($uploadOk == 0) { echo "Sorry, your file was not uploaded."; // if everything is ok, try to upload file } else { if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) { echo "The file ". basename( $_FILES["fileToUpload"]["name"]). " has been uploaded."; } else { echo "Sorry, there was an error uploading your file."; } } //Set Variables $event_id = mysqli_real_escape_string($conn, $_POST['event']); $description = mysqli_real_escape_string($conn, $_POST['description']); $is_ongoing = mysqli_real_escape_string($conn, $_POST['is_ongoing']); $end_date_time = mysqli_real_escape_string($conn, $_POST['end_date_time']); $user = mysqli_real_escape_string($conn, $_POST['user']); //Get timestamp $timestamp = new DateTime(); $update_date_time = date_format($timestamp, 'Y/m/d H:i'); //Insert event update into event updates table $update_query = "INSERT INTO event_updates (update_desc, update_date_time, update_is_ongoing, end_date_time, event_id, update_user, update_image) VALUES ('$description', '$update_date_time', '$is_ongoing', '$end_date_time', '$event_id', '$user', '$image_link')"; //Update value of is_ongoing in main events table $is_ongoing_endtime_query = "UPDATE events SET is_ongoing='$is_ongoing', date_time_end='$end_date_time' WHERE event_id='$event_id'"; //Set variables for email //MySQL queries to get Unit Name and Alert $unitname_query = "SELECT unit_name FROM units AS units INNER JOIN events AS events ON events.unit_id=units.unit_id WHERE events.event_id=".$_POST['event'].""; $unitname_query_run = mysqli_query($conn, $unitname_query); $unitname_array = mysqli_fetch_assoc($unitname_query_run); $unitname = $unitname_array['unit_name']; $alertname_query = "SELECT alert_name FROM alerts AS alerts INNER JOIN events AS events ON events.alert_id=alerts.alert_id WHERE events.event_id=".$_POST['event'].""; $alertname_query_run = mysqli_query($conn, $alertname_query); $alertname_array = mysqli_fetch_assoc($alertname_query_run); $alertname = $alertname_array['alert_name']; $start_date_time_query = "SELECT date_time_start FROM events WHERE event_id=".$_POST['event'].""; $start_date_time_query_run = mysqli_query($conn, $start_date_time_query); $start_date_time_array = mysqli_fetch_assoc($start_date_time_query_run); $start_date_time = $start_date_time_array['date_time_start']; $description_for_email = nl2br($_POST['description']); //If successful, redirect back to index.php and send email, else tell user that it failed. $event_update = mysqli_query($conn, $is_ongoing_endtime_query); $result = mysqli_query($conn, $update_query); if($result){ echo("Event added, redirecting..."); sleep (2); header('Location: ../index.php'); //Set Email Info $to = "TOEMAIL@DOMAIN.com"; $subject = "Updated BMS Alert: ".$unitname." ".$alertname.""; $headers = "MIME-Version: 1.0" . "\r\n"; $headers .= "Content-type:text/html;charset=UTF-8" . "\r\n"; $headers .= "From: FROMEMAIL@DOMAIN.com"; $message = " BMS Unit: ".$unitname."
Type of Alert: ".$alertname."
Start Date / Time: ".$start_date_time."
End Date / Time: ".$end_date_time."
Description: ".$description_for_email."
Updated by: ".$user."
Image Link (if any): ".$image_link."
Event Link: https://DOMAIN.com/bms/viewevent.php?eventid=$event_id

This message generated by https://DOMAIN.com/bms "; //WordWrap the message $message_wrapped = wordwrap($message, 70, "\n", true); //Send the email mail($to,$subject,$message_wrapped,$headers); } else{ echo('Error! Please go back and try again'); } $conn->close(); ?>