false, 'message' => 'Invalid input.']);
exit;
}
try {
$pdo = db();
$stmt = $pdo->prepare("INSERT INTO contact_submissions (name, email, message) VALUES (?, ?, ?)");
$stmt->execute([$name, $email, $message]);
} catch (PDOException $e) {
// In a real app, you would log this error.
http_response_code(500);
echo json_encode(['success' => false, 'message' => 'Database error.']);
exit;
}
$to = 'usmanabdulhamidsaleh4@gmail.com';
$subject = 'New Contact Form Submission';
$emailBody = "You have a new contact form submission:
"
. ""
. "- Name: " . htmlspecialchars($name) . "
"
. "- Email: " . htmlspecialchars($email) . "
"
. "- Message:
" . nl2br(htmlspecialchars($message)) . " "
. "
";
$result = MailService::sendMail($to, $subject, $emailBody, strip_tags($emailBody), ['reply_to' => $email]);
if ($result['success']) {
echo json_encode(['success' => true, 'message' => 'Message sent successfully!']);
} else {
// In a real app, you would log this error.
http_response_code(500);
echo json_encode(['success' => false, 'message' => 'Failed to send email.']);
}
} else {
http_response_code(405);
echo json_encode(['success' => false, 'message' => 'Method not allowed.']);
}