Kamis, 11 Maret 2021

buat file profil.php

Maret 11, 2021    No comments

 buat file (profil.php)

<?php

if( empty( $_SESSION['iduser'] ) ){

$_SESSION['err'] = '<strong>ERROR!</strong> Anda harus login terlebih dahulu.';

header('Location: ./');

die();

} else {

if( isset( $_REQUEST['sub'] )){

echo '<h2><b>Ganti Password</b></h2><br><br>';

$iduser = $_SESSION['iduser'];

if(isset($_REQUEST['submit'])){

//pastikan bahwa password lama benar

$pass1 = $_REQUEST['pass1'];

$pass2 = $_REQUEST['pass2'];

$sql = mysql_query("SELECT password FROM user WHERE iduser='$iduser' AND password=md5('$pass1')");

if(mysql_num_rows($sql) > 0){

$do = mysql_query("UPDATE user SET password=md5('$pass2') WHERE iduser='$iduser'");

if($sql > 0){

header('Location: ./logout.php');

die();

} else {

echo 'ada ERROR dg query';

}

} else {

//akses ilegal, paksa LOGOUT!

echo '<div class="alert alert-danger force-logout"><strong>ERROR:</strong> Password lama tidak sesuai! Anda mungkin tidak memiliki akses ke halaman ini.</div>';

}

} else {

?>

<form method="post" action="admin.php?hlm=user&sub=pass" class="form-horizontal" role="form">

<div class="form-group">

<label for="pass1" class="col-sm-3 control-label">Password Lama</label>

<div class="col-sm-4">

<input type="password" class="form-control" id="pass1" name="pass1" placeholder="Password lama" required autofocus>

</div>

</div>

<div class="form-group">

<label for="pass2" class="col-sm-3 control-label">Password Baru</label>

<div class="col-sm-4">

<input type="password" class="form-control" id="pass2" name="pass2" placeholder="Password baru" required>

<small>setelah menekan tombol "Simpan", anda akan diminta melakukan Login ulang.</small>

</div>

</div>

<div class="form-group">

<div class="col-sm-offset-3 col-sm-9">

<button type="submit" name="submit" class="btn btn-success">Simpan</button>

<a href="./admin.php?hlm=user" class="btn btn-link">Batal</a>

</div>

</div>

</form>

<?php

}

} else {

echo '<h2>Profil Anda</h2><br><br>';

echo '<div class="col-md-5"><table class="table table-striped">';

echo '<tr><td width="130">Nama Lengkap</td><td>: '.$_SESSION['fullname'].'</td></tr>';

echo '<tr><td width="130">Username</td><td>: '.$_SESSION['username'].'</td></tr>';

echo '<tr><td width="130">Password</td><td>: <em>tidak ditampilkan</em>';

echo '<a href="admin.php?hlm=user&sub=pass" class="btn btn-warning btn-xs pull-right">Ganti Password</a>';

echo '</td></tr>';

echo '</table></div>';

}

}

?>

0 comments:

Posting Komentar