<?php
require_once "database.php";

if (isset($_POST['update'])) {
    foreach ($_POST as $k => $v) {
        $$k = htmlspecialchars(stripslashes(trim($v)));
    }
    $updater = substr($_COOKIE["token"], 0, strpos($_COOKIE["token"],"."));
    switch ($contract_status) {
        case "P":
            $sql = "status_2_dt = NOW(), ";
            break;
        case "Y":
            $sql = "status_3_dt = NOW(), ";
            break;
        case "X":
            $sql = "status_4_dt = NOW(), ";
            break;
    }
    $db_query  = "update contractapply_main set status = '$contract_status', ".$sql;
    $db_query .= "updater = '$updater', update_dt = NOW() ";
    $db_query .= "where id = '$id'";
    $rs = mysqli_query($link, $db_query);
    mysqli_close($link);
    header("Location: contractapply-index.php");
}
?>