toString(); $stmt = "INSERT INTO tickets (uuid, title, description, status, created_by) VALUES (:tktuuid, :title, :description, 'New', :user)"; $sql = $db->prepare($stmt); $sql->bindParam(':tktuuid', $tkt_uuid); $sql->bindParam(':title', $_POST['title']); $sql->bindParam(':description', $_POST['description']); $sql->bindParam(':user', $_SESSION['uuid']); $sql->execute(); } catch (PDOException $e) { $alert = array("danger", "Failed to create request: " . $e->getMessage()); } // If file is uploaded, process that if(isset($_FILES['file']) && $_FILES['file']['name'] != "") { try { $file_uuid = Uuid::uuid4()->toString(); $file_name = $_FILES['file']['name']; $file_size = $_FILES['file']['size']; $file_type = $_FILES['file']['type']; $file_tmp = $_FILES['file']['tmp_name']; move_uploaded_file($file_tmp,$_ENV['ATTACHMENTS_PATH']."/".$file_uuid); $stmt = "INSERT INTO ticket_uploads (id, ticket, user, filename) VALUES (:fileuuid, :ticket, :user, :name)"; $sql = $db->prepare($stmt); $sql->bindParam(':fileuuid', $file_uuid); $sql->bindParam(':ticket', $tkt_uuid); $sql->bindParam(':user', $_SESSION['uuid']); $sql->bindParam(':name', $file_name); $sql->execute(); } catch (PDOException $e) { $alert = array("danger", "Failed to upload file: " . $e->getMessage()); } } $newURL = "/view?rid=" . $tkt_uuid; echo(""); } ?>