-
Notifications
You must be signed in to change notification settings - Fork 1
/
upload.php
42 lines (34 loc) · 1.21 KB
/
upload.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
<?php
ini_set('display_startup_errors', 1);
ini_set('display_errors', 1);
if (isset($_FILES['my_video'])) {
include "config.inc.php";
if(!isset($_SESSION['loggedin'])) { die('log in pls'); }
$logged = $_SESSION['username'];
$video_name = $_FILES['my_video']['name'];
$tmp_name = $_FILES['my_video']['tmp_name'];
$error = $_FILES['my_video']['error'];
$title = $_POST['title'];
$desc = $_POST['desc'];
$id = uniqid("video-", true);
if ($error === 0) {
$video_ex = pathinfo($video_name, PATHINFO_EXTENSION);
$video_ex_lc = strtolower($video_ex);
$allowed_exs = array("mp4");
if (in_array($video_ex_lc, $allowed_exs)) {
$new_video_name = $id. '.'.$video_ex_lc;
$video_upload_path = 'vi/videos/'.$new_video_name;
move_uploaded_file($tmp_name, $video_upload_path);
// db
$sqlled = "INSERT INTO video(title, description, author, mp4, thumb)
VALUES('$title', '$desc', '$logged', '$new_video_name', 'default')";
mysqli_query($sql, $sqlled);
header("Location: index.php?uploaded");
}else {
$em = "You can't upload files of this type";
header("Location: index.php?error=$em");
}
}
}else{
header("Location: index.php");
}