����
������������������������������������
<?php
header("Access-Control-Allow-Origin: *");
header("Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS");
header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization");
// Set the timezone to PST
date_default_timezone_set('America/Los_Angeles');

$upload_date = date('Y-m-d');  // PST date
$upload_time = date('H:i:s');  // PST time
// api.php - API for Uploads and History
header('Content-Type: application/json');
require 'database.php';

$method = $_SERVER['REQUEST_METHOD'];

if ($method === 'POST' && isset($_FILES['fileUpload']) && isset($_POST['proposal_id'])) {
    $api_key = "b8ffc37f1bea242cc2de9a54db6a0b983c6b2a6e";
    $proposal_id = intval($_POST['proposal_id']);
    $fileName = $_FILES['fileUpload']['name'];
    $file_name = $_POST['fileName'];
     $uploadByName = $_POST['uploadByName'];
      $uploadByEmail = $_POST['uploadByEmail'];
    $file_tmp = $_FILES['fileUpload']['tmp_name'];
    $file_size = $_FILES['fileUpload']['size'];
    $file_ext = pathinfo($fileName, PATHINFO_EXTENSION);
    $allowed_exts = ['csv'];

    if (in_array($file_ext, $allowed_exts)) {
        $upload_dir = 'uploads/';
        if (!is_dir($upload_dir)) {
            mkdir($upload_dir, 0777, true);
        }
        $file_path = $upload_dir . time() . '_' . $fileName;
        
        if (move_uploaded_file($file_tmp, $file_path)) {
           $stmt = $conn->prepare("INSERT INTO uploads 
    (proposal_id, file_name, file_path, file_type, file_size, upload_date, upload_time, uploadByName, uploadByEmail) 
    VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)");

$stmt->bind_param("isssissss", $proposal_id, $file_name, $file_path, $file_ext, $file_size, $upload_date, $upload_time, $uploadByName, $uploadByEmail);

$stmt->execute();
$stmt->close();
            
            echo json_encode(['success' => 'File uploaded successfully']);

            // Now use the moved file path instead of $file_tmp
            // $apiUrl = "https://api.clientpoint.net/v4/clientpoint-files/upload-file";
            // $curl = curl_init();

            // $data = [
            //     'api_key' => $api_key,
            //     'clientpoint_id' => $proposal_id,
            //     'file_name' => $file_name,
            //     'document' => new CURLFile($file_path, mime_content_type($file_path), $fileName), // Use $file_path here
            //     'clientpoint_sign' => 'off',
            //     'type' => $file_ext
            // ];

            // curl_setopt_array($curl, [
            //     CURLOPT_URL => $apiUrl,
            //     CURLOPT_POST => true,
            //     CURLOPT_POSTFIELDS => $data,
            //     CURLOPT_RETURNTRANSFER => true,
            // ]);

            // $response = curl_exec($curl);
            // $error = curl_error($curl);
            // curl_close($curl);

            // if ($error) {
            //     echo json_encode(['error' => $error]);
            // } else {
            //     echo json_encode(['success' => 'File uploaded to API successfully']);
            // }
        } else {
            echo json_encode(['error' => 'File upload failed']);
        }
    } else {
        echo json_encode(['error' => 'Invalid file format']);
    }
}
 elseif ($method === 'GET' && isset($_GET['proposal_id'])) {
    $proposal_id = intval($_GET['proposal_id']);
    $result = $conn->query("SELECT * FROM uploads WHERE proposal_id = $proposal_id ORDER BY upload_date DESC, upload_time DESC");
    $files = [];
    while ($row = $result->fetch_assoc()) {
        $files[] = $row;
    }
    echo json_encode($files);
} else {
    echo json_encode(['error' => 'Invalid request']);
}
?>