Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once "dbconn.php";
- $upload_dir = "../../assets/foto";
- $kata_sandi = isset($_POST["kata_sandi"]) ? $_POST["kata_sandi"] : "FALSE";
- $kata_sandi2 = isset($_POST["kata_sandi2"]) ? $_POST["kata_sandi2"] : "FALSE";
- $id_pengguna = isset($_POST["id_pengguna"]) ? $_POST["id_pengguna"] : "FALSE";
- $foto = isset($_FILES["foto"]["name"]) ? $_FILES["foto"]["name"] : "FALSE";
- if ($kata_sandi == $kata_sandi2) {
- if (empty($kata_sandi2)) {
- try {
- $sql1 = $con->prepare("UPDATE tbl_pengguna SET foto = ? WHERE id_pengguna = ?");
- // $sql1->bindParam(1, $foto);
- // $sql1->bindParam(2, $id_pengguna);
- $param = array( $foto, $id_pengguna) ; //karena tak ada filter disini jd buat apa ketik binParam
- $result = $sql1->execute($param);
- move_uploaded_file($_FILES['foto']['tmp_name'], "$upload_dir/$foto");
- // header("location: http://tasselearning.ac.id/e-learning/mahasiswa/index.php?file=gantidatadiri");
- } catch (PDOException $e) {
- echo $e->getMessage();
- }
- }
- else {
- //======================YANG INI OK
- try {
- $new_katasandi2 = password_hash($kata_sandi2, PASSWORD_DEFAULT);
- $sql1 = $con->prepare("UPDATE tbl_pengguna SET kata_sandi = ? WHERE id_pengguna = ?");
- // $sql1->bindParam(1, $new_katasandi2);
- // $sql1->bindParam(2, $id_pengguna);
- //------------------$result
- $param = array( $new_katasandi2, $id_pengguna) ; //karena tak ada filter disini jd buat apa ketik binParam
- $sql1->execute($param);
- header("location: http://tasselearning.ac.id/e-learning/mahasiswa/index.php?file=gantidatadiri");
- } catch (PDOException $e) {
- echo $e->getMessage();
- }
- }
- }
- else{
- echo 'Kata Sandi tidak sesuai'; //harusnya ada
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement