| Server IP : 3.111.61.48 / Your IP : 216.73.216.67 Web Server : Apache System : Linux ip-10-0-5-176 6.8.0-1057-aws #60~22.04.1-Ubuntu SMP Wed May 27 08:16:59 UTC 2026 x86_64 User : ubuntu ( 1000) PHP Version : 8.2.31 Disable Function : exec,passthru,shell_exec,system MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /var/www/vhost/itms.arukustech.com/public/api/ |
Upload File : |
<?php
require_once __DIR__ . '/../../app/db.php';
require_once __DIR__ . '/../../app/helpers/auth.php';
check_login();
$pdo = db();
$id = $_POST['id'] ?? 0;
if (!$id || empty($_FILES['invoice']['name'])) {
echo json_encode(['status'=>'error','message'=>'Invalid request']);
exit;
}
$dir = __DIR__ . '/../uploads/rented_invoices/';
if (!is_dir($dir)) mkdir($dir, 0755, true);
$ext = pathinfo($_FILES['invoice']['name'], PATHINFO_EXTENSION);
$name = 'rented_'.$id.'_'.time().'.'.$ext;
$path = $dir.$name;
if (move_uploaded_file($_FILES['invoice']['tmp_name'], $path)) {
$dbPath = '/uploads/rented_invoices/'.$name;
$pdo->prepare("
UPDATE rented_inventory
SET invoice_file = ?
WHERE id = ?
")->execute([$dbPath, $id]);
echo json_encode(['status'=>'success']);
} else {
echo json_encode(['status'=>'error','message'=>'Upload failed']);
}