alert('pilih gambar terlebih dahulu!'); "; return false; } // cek apakah yang diupload adalah gambar $ekstensiGambarValid = ['jpg', 'jpeg', 'png']; $ekstensiGambar = explode('.', $namaFile); $ekstensiGambar = strtolower(end($ekstensiGambar)); if( !in_array($ekstensiGambar, $ekstensiGambarValid) ) { echo ""; return false; } // cek jika ukurannya terlalu besar if( $ukuranFile > 1000000 ) { echo ""; return false; } // lolos pengecekan, gambar siap diupload // generate nama gambar baru $namaFileBaru = uniqid(); $namaFileBaru .= '.'; $namaFileBaru .= $ekstensiGambar; move_uploaded_file($tmpName, 'img/' . $namaFileBaru); return $namaFileBaru; } function hapus($id) { global $conn; mysqli_query($conn, "DELETE FROM mahasiswa WHERE id = $id"); return mysqli_affected_rows($conn); } function ubah($data) { global $conn; $id = $data["id"]; $nrp = htmlspecialchars($data["nrp"]); $nama = htmlspecialchars($data["nama"]); $email = htmlspecialchars($data["email"]); $jurusan = htmlspecialchars($data["jurusan"]); $gambarLama = htmlspecialchars($data["gambarLama"]); // cek apakah user pilih gambar baru atau tidak if( $_FILES['gambar']['error'] === 4 ) { $gambar = $gambarLama; } else { $gambar = upload(); } $query = "UPDATE mahasiswa SET nrp = '$nrp', nama = '$nama', email = '$email', jurusan = '$jurusan', gambar = '$gambar' WHERE id = $id "; mysqli_query($conn, $query); return mysqli_affected_rows($conn); } function update_pelanggan($data) { global $conn; $id = $data["id"]; $nama = htmlspecialchars($data["nama"]); $email = htmlspecialchars($data["email"]); $alamat = htmlspecialchars($data["alamat"]); $query = "UPDATE user SET nama = '$nama', email = '$email', alamat = '$alamat' WHERE id = '$id' "; mysqli_query($conn, $query); return mysqli_affected_rows($conn); } function cari($keyword) { $query = "SELECT * FROM mahasiswa WHERE nama LIKE '%$keyword%' OR nrp LIKE '%$keyword%' OR email LIKE '%$keyword%' OR jurusan LIKE '%$keyword%' "; return query($query); } function registrasi($data) { global $conn; $id = ranID(); $nama = htmlspecialchars($data["nama"]); $email = strtolower(stripslashes($data["email"])); $password = mysqli_real_escape_string($conn, $data["password"]); $password2 = mysqli_real_escape_string($conn, $data["password2"]); $alamat = mysqli_real_escape_string($conn, $data["alamat"]); $image = mysqli_real_escape_string($conn, "default.png"); $role_id = mysqli_real_escape_string($conn, 2); $is_active = mysqli_real_escape_string($conn, 1); $date_created = time(); // cek email sudah ada atau belum $result = mysqli_query($conn, "SELECT email FROM user WHERE email = '$email'"); if( mysqli_fetch_assoc($result) ) { echo ""; return false; } // cek konfirmasi password if( $password !== $password2 ) { echo ""; return false; } // enkripsi password $password = password_hash($password, PASSWORD_DEFAULT); // tambahkan user baru ke database $query = "INSERT INTO user VALUES('$id', '$email', '$password', '$nama', '$alamat', '$image', '$role_id', '$is_active', '$date_created')"; mysqli_query($conn, $query); return mysqli_affected_rows($conn); } function tambahPelanggan($data) { global $conn; $id = ranID(); $email = htmlspecialchars($data["email"]); $password = password_hash("123456", PASSWORD_DEFAULT); $nama = htmlspecialchars($data["nama"]); $alamat = htmlspecialchars($data["alamat"]); $image = "default.png"; $role_id = 2; $is_active = 1; $date_created = time(); $query = "INSERT INTO user VALUES ('$id', '$email', '$password', '$nama', '$alamat', '$image', '$role_id', '$is_active', '$date_created') "; mysqli_query($conn, $query); return mysqli_affected_rows($conn); } function hapusPelanggan($id) { global $conn; mysqli_query($conn, "DELETE FROM user WHERE id = '$id'"); return mysqli_affected_rows($conn); }