<?php
include_once("session.php");
include_once("settings.php");

/*echo "<pre>";
print_r($_REQUEST);
print_r($_FILES);
echo "</pre>";*/


foreach ($_REQUEST as $key => $value){
	$$key = $value;
}
$prefix	=	time();
$target_path	=	"../cat_images/testimonial/";
$target_path	=	$target_path . basename($prefix.$_FILES['testImage']['name']); 
$EditDescription	=	addslashes($EditDescription);
if($_REQUEST['mode']	==	"Edit"){
	if($_FILES['testImage']['name']!=""){
		if(move_uploaded_file($_FILES['testImage']['tmp_name'], $target_path)) {
			chmod($target_path,0777); 
			//	echo "The file ". basename( $_FILES['file']['name']). " has been uploaded";
			$upload_image	=	basename($prefix.$_FILES['testImage']['name']);				
		}
		$sql	=	"update  `tblTestimonial` set `Company_Name`='".$company_name."',`Employee_Name`='".$employee_name."',`Employee_Post`='".$employee_post."',`Testimonial`='".$EditDescription."',`Image`='".$upload_image."' where `Testimonial_Id`='".$id."'";
	}
	else{
		$sql	=	"update  `tblTestimonial` set `Company_Name`='".$company_name."',`Employee_Name`='".$employee_name."',`Employee_Post`='".$employee_post."',`Testimonial`='".$EditDescription."' where `Testimonial_Id`='".$id."'";
	}
}
else{
	if($_FILES['testImage']['name']!=""){
		if(move_uploaded_file($_FILES['testImage']['tmp_name'], $target_path)) {
			chmod($target_path,0777); 
			//echo "The file ". basename( $_FILES['file']['name']). " has been uploaded";
			$upload_image=basename($prefix.$_FILES['testImage']['name']);				
		}		
	}
	$sql	=	"insert into `tblTestimonial` (`Company_Name`,`Employee_Name`,`Employee_Post`,`Testimonial`,`Image`)value('".$company_name."','".$employee_name."','".$employee_post."','".$EditDescription."','".$upload_image."')";
}
$result		=	mysql_query($sql) or die(mysql_error());

?>
<script>
document.location="testimonial_list.php?page=listtestimonial"
</script>