$tgl = $_POST['tglLahir']; } else { $tgl = date('m-d-Y'); } } } $template = "userm_add_edit.tpl"; break; case "aktivasi": $id = custom_strips($_GET['id'], "@[\\\\'\"]@i"); //assign level $level = $usr->level(""); $smarty->assign("listLevel", $level); $smarty->assign("idChild", $id); if ($_POST['simpan']) { $id = custom_strips($_POST['idChild'], "@[\\\\'\"]@i"); $level = preg_replace("@[^0-9]@i", "", $_POST['level_membership']); if (!detectBlank($_POST)) { if ($usr->aktive($id)) { $sqla = "update tbl_membership set status = 1 where id='{$id}'"; //echo $sqla; if ($usr->exQ($sqla)) { $smarty->assign('pesan', "Membership berhasil diaktifkan !" . $meta); $smarty->assign('dshowMe', true); } else { $smarty->assign('pesan', "Membership gagal diaktifkan lakukan pengaktifan manual dari edit user!" . $meta); } } else { $smarty->assign('pesan', $usr->pesan); $smarty->assign('username', $_POST['username']); $smarty->assign('pwdc', $_POST['pwdc']);
function tambah(){ $usn = strtolower(custom_strips($_POST['username'],"@[\\\'\"]@i")); if(preg_match("@[^0-9a-z_]@i",$usn)){ $this->pesan = "Username hanya terdiri dari angka, huruf dan underscore [ _ ] !"; return false; }elseif($this->cekUser($usn)){ $this->pesan = "Username sudah ada. Silakan pilih username lain !"; return false; }else{ $pwd = md5(custom_strips($_POST['pwd'],"@[\\\'\"]@i")); $nama = custom_strips($_POST['nama'],"@[\\\'\"]@i"); $email = custom_strips($_POST['email'],"@[\\\'\"]@i"); $level = custom_strips($_POST['level'],"@[\\\'\"]@i"); $sql = "insert into tbl_admin(usn,pwd,nama,email,level) values('$usn','$pwd','$nama','$email','$level')"; #echo $sql; if($this->exQ($sql)){ return true; }else{ return false; } } }
function ubahPass($usn){ $pwd = md5(custom_strips($_POST['pwd'],"@[\\\'\"]@i")); $sql = "update tbl_admin set pwd='$pwd' where usn='$usn'"; #echo $sql; if($this->exQ($sql)){ return true; }else{ return false; } }
function tambah(){ //clear form $nama = custom_strips($_POST['nama'],"@[\\\'\"]@i"); $email = custom_strips($_POST['email'],"@[\\\'\"]@i"); //bikin idunique $tgl = preg_split('/-/',$_POST['tglLahir']); $tglnow = date("y"); $tglLahir = $_POST['tglLahir']; $unik = $this->genKode(3); if(!$_POST['idUnik']){ $idUnik = strtoupper(substr($nama,0,1)).".".substr($tgl[2],2,2).$tgl[1].$tgl[0].".".$tglnow.".".$unik; } else { $idUnik = custom_strips($_POST['idUnik'],"@[\\\'\"]@i"); } $tmpLahir = custom_strips($_POST['tmpLahir'],"@[\\\'\"]@i"); $alamat = custom_strips($_POST['alamat'],"@[\\\'\"]@i"); $negara = custom_strips($_POST['negara'],"@[\\\'\"]@i"); $noRumah = custom_strips($_POST['noRumah'],"@[\\\'\"]@i"); $noHp = custom_strips($_POST['noHp'],"@[\\\'\"]@i"); $hobby = custom_strips($_POST['hobby'],"@[\\\'\"]@i"); $ortu = custom_strips($_POST['ortu'],"@[\\\'\"]@i"); $noHportu = custom_strips($_POST['noHportu'],"@[\\\'\"]@i"); $handicap = custom_strips($_POST['handicap'],"@[\\\'\"]@i"); $golfClub = custom_strips($_POST['golfClub'],"@[\\\'\"]@i"); $rec = custom_strips($_POST['recomendation'],"@[\\\'\"]@i"); if($rec != 1){ $rec = 0; } $level = custom_strips($_POST['level'],"@[\\\'\"]@i"); $group = custom_strips($_POST['group'],"@[\\\'\"]@i"); $package = custom_strips($_POST['package'],"@[\\\'\"]@i"); $sql = "insert into tbl_membership (id,name,email,tglLahir,tmpLahir,alamat,negara,noRumah,noHp,hobby, ortu,noHportu,handicap,golfClub,recomendation,level,group_type,package,status) values('$idUnik','$nama','$email','$tglLahir','$tmpLahir', '$alamat','$negara','$noRumah','$noHp','$hobby','$ortu','$noHportu','$handicap','$golfClub','$rec','$level','$group','$package',0)"; if($this->exQ($sql)){ for($x=0;$x<=5;$x++){ $y .= $x; echo $y; if(($_POST['besT'.$x] || $_POST['year'.$x]) != ""){ $year = custom_strips($_POST['year'.$x],"@[\\\'\"]@i"); $best = custom_strips($_POST['besT'.$x],"@[\\\'\"]@i"); $sqlb = "insert into tbl_besttournament(id_member,location,year)values('$idUnik','$best','$year')"; $this->exQ($sqlb); } } return true; } else { return false; } }
function addReg(&$smarty) { $lanjut = true; if ($_REQUEST['tour_id'] == "" || $_REQUEST['tour_id'] == "value") { $lanjut = false; } if ($_REQUEST['player_name'] == "") { $lanjut = false; } if ($_REQUEST['player_parents'] == "") { $lanjut = false; } if ($_REQUEST['player_contactno'] == "") { $lanjut = false; } if ($_REQUEST['player_home_address'] == "") { $lanjut = false; } $player = new player(); $player->tour_id = custom_strips($_REQUEST['tour_id'], "@[\\\\'\"]@i"); $player->player_members_id = custom_strips($_REQUEST['player_member'], "@[\\\\'\"]@i"); $player->player_name = custom_strips($_REQUEST['player_name'], "@[\\\\'\"]@i"); $player->player_age = custom_strips($_REQUEST['player_age'], "@[\\\\'\"]@i"); $player->player_birthdate = custom_strips($_REQUEST['birth_date'], "@[\\\\'\"]@i"); $player->player_parents_name = custom_strips($_REQUEST['player_parents'], "@[\\\\'\"]@i"); $player->player_contactno = custom_strips($_REQUEST['player_contactno'], "@[\\\\'\"]@i"); $player->player_email = custom_strips($_REQUEST['player_email'], "@[\\\\'\"]@i"); $player->player_home_address = custom_strips($_REQUEST['player_home_address'], "@[\\\\'\"]@i"); $player->player_group = custom_strips($_REQUEST['player_group'], "@[\\\\'\"]@i"); $register = new tournaments_register(""); if ($lanjut) { $register->create_indentRegistrant($player); } return $lanjut; }
function edit(){ //data membership $nama = custom_strips($_POST['nama'],"@[\\\'\"]@i"); $email = custom_strips($_POST['email'],"@[\\\'\"]@i"); $tglLahir = $_POST['tglLahir']; $idUnik = custom_strips($_SESSION['userId'],"@[\\\'\"]@i"); $tmpLahir = custom_strips($_POST['tmpLahir'],"@[\\\'\"]@i"); $alamat = custom_strips($_POST['alamat'],"@[\\\'\"]@i"); $negara = custom_strips($_POST['negara'],"@[\\\'\"]@i"); $noRumah = custom_strips($_POST['noRumah'],"@[\\\'\"]@i"); $noHp = custom_strips($_POST['noHp'],"@[\\\'\"]@i"); $hobby = custom_strips($_POST['hobby'],"@[\\\'\"]@i"); $ortu = custom_strips($_POST['ortu'],"@[\\\'\"]@i"); $noHportu = custom_strips($_POST['noHportu'],"@[\\\'\"]@i"); $handicap = custom_strips($_POST['handicap'],"@[\\\'\"]@i"); $golfClub = custom_strips($_POST['golfClub'],"@[\\\'\"]@i"); $rec = custom_strips($_POST['recomendation'],"@[\\\'\"]@i"); if($rec != 1){ $rec = 0; } $group = custom_strips($_POST['group'],"@[\\\'\"]@i"); $package = custom_strips($_POST['package'],"@[\\\'\"]@i"); $sql = "update tbl_membership_temp set name='$nama',email='$email',tglLahir='$tglLahir',tmpLahir='$tmpLahir',alamat='$alamat', negara='$negara',noRumah='$noRumah',noHp='$noHp',hobby='$hobby',ortu='$ortu',noHportu='$noHportu',handicap='$handicap', golfClub='$golfClub',recomendation='$rec',group_type='$group',package='$package'"; //echo $sql; if($this->exQ($sql)){ //masukkan data table temporary for($x=1;$x<=5;$x++){ if(($_POST['best'.$x] || $_POST['year'.$x]) != ""){ $year = custom_strips($_POST['year'.$x],"@[\\\'\"]@i"); $best = custom_strips($_POST['best'.$x],"@[\\\'\"]@i"); $idb = $_POST['idb'.$x]; if($idb == ""){ $sqlb = "insert into tbl_besttournament_temp(id,id_member,location,year)values('$idb','$idUnik','$best','$year')"; } else { $sqlb = "update tbl_besttournament_temp set location='$best',year='$year' where id=$idb"; } if($this->exQ($sqlb)){ $this->pesan .= "<br>Data temporary best tournament ke".$x." berhasil dimasukkan<br>"; } else { $this->pesan .= "<br>Data temporary best tournament ke".$x." tidak berhasil dimasukkan<br>"; } } } return true; } else { return false; } }
$golfClub = custom_strips($_POST['golfClub'],"@[\\\'\"]@i"); $rec = custom_strips($_POST['recomendation'],"@[\\\'\"]@i"); if($rec != 1){ $rec = 0; } $jenisGroup = custom_strips($_POST['jenisGroup'],"@[\\\'\"]@i"); $package = custom_strips($_POST['package'],"@[\\\'\"]@i"); $sql = "insert into tbl_membership (id,name,email,tglLahir,tmpLahir,alamat,negara,noRumah,noHp,hobby, ortu,noHportu,handicap,golfClub,recomendation,group_type,package,status) values('$idUnik','$nama','$email','$tglLahir','$tmpLahir', '$alamat','$negara','$noRumah','$noHp','$hobby','$ortu','$noHportu','$handicap','$golfClub','$rec','$jenisGroup','$package',0)"; if($kDef->exQ($sql)){ for($x=1;$x<=5;$x++){ if(($_POST['besT'.$x] || $_POST['year'.$x]) != ""){ $year = custom_strips($_POST['year'.$x],"@[\\\'\"]@i"); $best = custom_strips($_POST['besT'.$x],"@[\\\'\"]@i"); $sqlb = "insert into tbl_besttournament(id_member,location,year)values('$idUnik','$best','$year')"; $kDef->exQ($sqlb); } } $smarty->assign("dShow",true); $meta = '<meta http-equiv="refresh" content="3;url=\''.$_SERVER['SCRIPT_NAME'].'?page=member\'" />'; $smarty->assign("pesan","Data berhasil dimasukkan".$meta); } else { $smarty->assign("pesan","Data gagal berhasil dimasukkan"); } } // tanggal if(!isset($_POST['tanggal'])){ $smarty->assign("tanggal",date("Y-m-d"));