<?php
require_once('session.php');
require_once('../config/koneksi.php');

if (isset($_POST['submit'])) {
    $trxID = mysqli_real_escape_string($conn, $_POST['trxID']);
    $kode = date('YmdHis');
    $created_date = date('Y-m-d H:i:s');

    // Validasi transaksi
    $sql = mysqli_query($conn, "SELECT * FROM `tb_transaksi` WHERE kd_transaksi = '$trxID' LIMIT 1") or die(mysqli_error($conn));
    $trx = mysqli_fetch_array($sql);

    if (!$trx) {
        die("Transaksi tidak ditemukan.");
    }

    if ($trx['status'] != 0) {
        // Jika sudah dikonfirmasi sebelumnya, langsung redirect
        header('Location:../m/history.php');
        exit();
    }

    // Validasi file
    $allowed_types = ['image/jpg', 'image/jpeg', 'image/png'];
    $file = $_FILES['image'];
    $filename = $file['name'];
    $type = strtolower($file['type']);
    $size = $file['size'];
    $tmp_name = $file['tmp_name'];
    $error = $file['error'];

    // Jika tidak ada file
    if ($error !== UPLOAD_ERR_OK) {
        header('Location:../m/payment.php?trxID='.$trxID.'&notif=1');
        exit();
    }

    // Ekstensi file
    $ext = strtolower(pathinfo($filename, PATHINFO_EXTENSION));
    $newname = 'bukti_'.$trxID.'_'.$kode.'.'.$ext;
    $upload_dir = "../uploads/konfirmasi/";

    // Pastikan folder ada
    if (!is_dir($upload_dir)) {
        mkdir($upload_dir, 0777, true);
    }

    // Validasi tipe
    if (!in_array($type, $allowed_types)) {
        header('Location:../m/payment.php?trxID='.$trxID.'&notif=1');
        exit();
    }

    // Pindahkan file upload
    if (move_uploaded_file($tmp_name, $upload_dir . $newname)) {
        // Update tabel transaksi
        $query = mysqli_query($conn, "
            UPDATE `tb_transaksi` 
            SET 
                `note` = '".mysqli_real_escape_string($conn, $newname)."',
                `status` = 1,
                `konfirmasi_at` = '".$created_date."'
            WHERE kd_transaksi = '$trxID'
        ") or die(mysqli_error($conn));

        header('Location:../m/history.php?notif=konfirmasi_berhasil');
        exit();
    } else {
        header('Location:../m/payment.php?trxID='.$trxID.'&notif=1');
        exit();
    }
}
?>