getConnection(); if ($method === 'POST') { $input = getJsonInput(); $errors = validateRequired($input, ['name', 'email', 'message']); if (!empty($errors)) { jsonResponse(['error' => implode(', ', $errors)], 400); } if (!isValidEmail($input['email'])) { jsonResponse(['error' => 'Invalid email address'], 400); } $id = generateUuid(); $stmt = $db->prepare(" INSERT INTO contacts (id, name, email, message, created_at) VALUES (?, ?, ?, ?, NOW()) "); $stmt->execute([ $id, sanitizeString($input['name']), sanitizeString($input['email']), $input['message'] ]); jsonResponse(['message' => 'Contact form submitted successfully']); } jsonResponse(['error' => 'Method not allowed'], 405);