prepare($sql); $stmt->bind_param("issdssssssi", $artist_id, $title, $description, $price, $sale_price, $image_path, $size, $medium, $category, $tags, $copyright); if ($stmt->execute()) { header("Location: paintings.php?status=success"); exit(); } else { die("Database Error: " . $stmt->error); } } // ======================================================== // 2. EDIT PAINTING // ======================================================== if (isset($_POST['edit_painting'])) { $p_id = filter_var($_POST['painting_id'], FILTER_SANITIZE_NUMBER_INT); $title = trim($_POST['title']); $description = trim($_POST['description']); $price = floatval($_POST['price']); $sale_price = !empty($_POST['sale_price']) ? floatval($_POST['sale_price']) : NULL; $size = trim($_POST['size_dimensions']); $medium = trim($_POST['medium']); $category = trim($_POST['subject_category']); $tags = trim($_POST['tags']); $copyright = isset($_POST['copyright']) ? 1 : 0; $image_path = $_POST['existing_image_path']; $wm_text = "UCF"; if (!empty($_FILES['painting_image']['name'])) { $uploaded_path = handleImageUpload($_FILES['painting_image'], $wm_text); if ($uploaded_path) $image_path = $uploaded_path; } $sql = "UPDATE paintings SET title=?, description=?, price=?, sale_price=?, image_path=?, size_dimensions=?, medium=?, subject_category=?, tags=?, copyright_confirmed=? WHERE id=? AND artist_id=?"; $stmt = $conn->prepare($sql); $stmt->bind_param("ssdssssssiii", $title, $description, $price, $sale_price, $image_path, $size, $medium, $category, $tags, $copyright, $p_id, $artist_id); if ($stmt->execute()) { header("Location: paintings.php?status=updated"); exit(); } else { die("Database Error: " . $stmt->error); } } // ======================================================== // 3. DELETE PAINTING // ======================================================== if (isset($_POST['delete_painting'])) { $p_id = filter_var($_POST['painting_id'], FILTER_SANITIZE_NUMBER_INT); $stmt = $conn->prepare("DELETE FROM paintings WHERE id=? AND artist_id=?"); $stmt->bind_param("ii", $p_id, $artist_id); if ($stmt->execute()) { header("Location: paintings.php?status=deleted"); exit(); } } ?>