private function saveProcess() { if ($_SERVER['REQUEST_METHOD'] != 'POST') { View::setMessageFlash("danger", "Form tidak valid"); return FALSE; } // form validation if (!filter_input(INPUT_POST, "form_token") || Form::isFormTokenValid(filter_input(INPUT_POST, "form_token"))) { View::setMessageFlash("danger", "Form tidak valid"); return FALSE; } // required fields $filter = array("name" => FILTER_SANITIZE_STRING, "phone" => FILTER_SANITIZE_STRING, "address" => FILTER_SANITIZE_STRING); $input = filter_input_array(INPUT_POST, $filter); if (in_array('', $input) || in_array(NULL, $input)) { View::setMessageFlash("danger", "Kolom tidak boleh kosong"); return FALSE; } // set member object $staff = Authentication::getUser(); $staff->setData('name', $input['name']); $staff->setData('phone', $input['phone']); $staff->setData('address', $input['address']); if (!($update = $staff->update())) { View::setMessageFlash("danger", "Penyimpanan Gagal"); return; } View::setMessageFlash("success", "Penyimpanan Berhasil"); }
/** * login process */ public static function login() { // form validation if (!filter_input(INPUT_POST, "form_token") || Form::isFormTokenValid(filter_input(INPUT_POST, "form_token"))) { View::setMessageFlash("danger", "Form tidak valid"); return FALSE; } if (!filter_input(INPUT_POST, "username") || !filter_input(INPUT_POST, "password")) { View::setMessageFlash("danger", "Masukkan Username dan Password"); return FALSE; } $username = filter_input(INPUT_POST, "username", FILTER_SANITIZE_STRING); $password = md5(filter_input(INPUT_POST, "password", FILTER_SANITIZE_STRING)); $mysqli = App::getConnection(true); $sql = "SELECT user_id FROM users WHERE username='******' AND password='******'"; if (!($query = $mysqli->query($sql))) { View::setMessageFlash("danger", $mysqli->error); return FALSE; } if ($query->num_rows == 0) { View::setMessageFlash("danger", "Username dan Password Salah"); return FALSE; } $row = $query->fetch_row(); $_SESSION['user_id'] = $row[0]; return TRUE; }
/** * render a page ( menampilkan sebuah halaman utuh) * * @param array $pageSetup Page Setup */ public static function renderPage($view = "", $pageSetup, $data = array()) { // merge array ( gabungkan array) self::$pageSetup = array_merge(self::$pageSetup, $pageSetup); // add site name at title if (isset($pageSetup['title'])) { self::$pageSetup['title'] = $pageSetup['title'] . ' - ' . SITE_NAME; } // if view file not found, render 404.php $inc_file = file_exists(SITE_DIR . '/views/' . $view) ? SITE_DIR . '/views/' . $view : SITE_DIR . '/views/' . "404.php"; // set form token Form::setFormToken(); // include view file include $inc_file; }
<?php echo View::renderFlashMessages(); ?> <div class="row"> <div class="col-lg-9"> <div class="panel panel-default panel-section"> <div class="panel-heading"> <div class="panel-title"><i class="fa fa-pencil panel-icon"></i> Edit Profile</div> </div> <div class="panel-body"> <?php $field_nama = new FormField('Nama Lengkap', 'text', 'name', $data['user']['name'], 'Nama Lengkap'); $field_nama->isRequired(TRUE); $field_telp = new FormField('Telp./HP', 'text', 'phone', $data['user']['phone'], 'No Telp / HP'); $field_telp->isRequired(TRUE); $field_address = new FormField('Alamat', 'textarea', 'address', $data['user']['address'], 'Alamat Lengkap'); $field_address->isRequired(TRUE); $form = new Form('profile-form', 'POST', './?p=staff-profile-save', 'form-horizontal'); $form->addField($field_nama); $form->addField($field_telp); $form->addField($field_address); $form->render(); ?> </div> </div> </div> </div>
<input type="text" name="username" class="form-control" placeholder="username" required /> </div> </div> <div class="form-group"> <label class="control-label">Password</label> <div class="input-group"> <span class="input-group-addon"><i class="fa fa-key"></i></span> <input type="password" name="password" class="form-control" placeholder="password" required /> </div> </div> <div class="text-center"> <input type="submit" name="login" value="Login" class="btn btn-default" /> </div> <?php echo Form::formToken(); ?> </form> </div> <div class="panel-footer text-right"> Belum punya akun? silahkan <a href="./register.php">Register <i class="fa fa-pencil"></i></a> </div> </div> </div> <div class="col-md-7 col-md-pull-5 col-sm-7 col-sm-pull-5"> <div class="login-logo hidden-xs"> <img src="assets/img/logo-white.png" > </div>