prepare("INSERT INTO section (section_name) VALUES (:section_name)"); $stmt->bindParam(':section_name', $section_name); if ($stmt->execute()) { $message = "Section added successfully!"; $message_type = "success"; $section_name = ''; // Reset form } else { $message = "Error adding section. Please try again."; $message_type = "danger"; } } elseif ($_POST['action'] == 'edit') { // Update existing section $stmt = $DBcon->prepare("UPDATE section SET section_name = :section_name WHERE sn = :sn"); $stmt->bindParam(':section_name', $section_name); $stmt->bindParam(':sn', $sn); if ($stmt->execute()) { $message = "Section updated successfully!"; $message_type = "success"; $action = 'add'; // Reset to add mode $section_name = ''; // Reset form $sn = ''; } else { $message = "Error updating section. Please try again."; $message_type = "danger"; } } } catch (PDOException $e) { if ($e->getCode() == 23000) { $message = "Section name already exists. Please use a different name."; } else { $message = "Database error: " . $e->getMessage(); } $message_type = "danger"; } } } } // Handle delete request if (isset($_GET['delete'])) { $delete_id = sanitize_input($_GET['delete']); try { $stmt = $DBcon->prepare("DELETE FROM section WHERE sn = :sn"); $stmt->bindParam(':sn', $delete_id); if ($stmt->execute()) { $message = "Section deleted successfully!"; $message_type = "success"; } else { $message = "Error deleting section. Please try again."; $message_type = "danger"; } } catch (PDOException $e) { $message = "Database error: " . $e->getMessage(); $message_type = "danger"; } } // Handle edit request if (isset($_GET['edit'])) { $edit_id = sanitize_input($_GET['edit']); try { $stmt = $DBcon->prepare("SELECT * FROM section WHERE sn = :sn"); $stmt->bindParam(':sn', $edit_id); $stmt->execute(); if ($row = $stmt->fetch(PDO::FETCH_ASSOC)) { $sn = $row['sn']; $section_name = $row['section_name']; $action = 'edit'; } else { $message = "Section not found."; $message_type = "danger"; } } catch (PDOException $e) { $message = "Database error: " . $e->getMessage(); $message_type = "danger"; } } // Handle search if (isset($_GET['search'])) { $search_term = sanitize_input($_GET['search']); } // Fetch all sections for display $sections = []; $total_sections = 0; try { if (!empty($search_term)) { $stmt = $DBcon->prepare("SELECT * FROM section WHERE section_name LIKE :search ORDER BY sn"); $search_param = "%$search_term%"; $stmt->bindParam(':search', $search_param); } else { $stmt = $DBcon->prepare("SELECT * FROM section ORDER BY sn"); } $stmt->execute(); $sections = $stmt->fetchAll(PDO::FETCH_ASSOC); $total_sections = count($sections); } catch (PDOException $e) { $message = "Error fetching sections: " . $e->getMessage(); $message_type = "danger"; } ?>