# strict, warning and other things snipped.

$posid = param('posid');
$name = param('name');
$phone = param('phone');
$email = param('email');
$resumeurl = param('resumeurl') || "none"; 

$resumefilename = upload('resumefile') || "none"; 
$resumefiletype = uploadInfo($resumefilename)->{'Content-Type'};

#check for correct file type
foreach $x (@filetype){
    if ($x eq $resumefiletype){
          $notype++;
    }       
}
if ($notype == 4) { die "Sorry we do not accept $resumefiletype files."; }
    
while (<$resumefilename>){
     $resumefile .= $_;
}
#insert into resumes
$statement = "INSERT INTO resumes (appid, posid, resumefilename, resumefiletype, resumefile, resumeurl) VALUES (?, ?, ?, ?, ?, ?)";
$sth = $dbh->prepare($statement) || die "Could not prepare statement: ".$dbh->errstr;
$sth->execute($appid, $posid, $resumefilename, $resumefiletype, $resumefile, $resumeurl) || die "Could not prepare statement: ".$dbh->errstr;