Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- require("mainconfig.php");
- $msg_type = "nothing";
- $site_key = "6LcRzDIUAAAAALKWHcExLVdoR6HuuZCCaE5Ux9yx";
- $secret_key = "6LcRzDIUAAAAAB0pT4vHiRdKAXMK0vOtZs_qthJc";
- if(isset($_POST['g-recaptcha-response']))
- {
- $api_url = 'https://www.google.com/recaptcha/api/siteverify?secret=' . $secret_key . '&response='.$_POST['g-recaptcha-response'];
- $response = @file_get_contents($api_url);
- $recaptcha = json_decode($response, true);
- }
- if (isset($_SESSION['user'])) {
- $sess_username = $_SESSION['user']['username'];
- $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$sess_username'");
- $data_user = mysqli_fetch_assoc($check_user);
- if (mysqli_num_rows($check_user) == 0) {
- header("Location: ".$cfg_baseurl."logout.php");
- } else if ($data_user['status'] == "Suspended") {
- header("Location: ".$cfg_baseurl."logout.php");
- }
- $check_order = mysqli_query($db, "SELECT SUM(price) AS total FROM orders WHERE user = '$sess_username'");
- $data_order = mysqli_fetch_assoc($check_order);
- $check_worder = mysqli_query($db, "SELECT * FROM orders WHERE user = '$sess_username'");
- $count_worder = mysqli_num_rows($check_worder);
- $count_users = mysqli_num_rows(mysqli_query($db, "SELECT * FROM users"));
- } else {
- if (isset($_POST['login'])) {
- if(!isset($_POST['setuju'])){
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Silahkan ceklis dahulu.";
- }else{
- $post_username = htmlspecialchars(addslashes(mysqli_real_escape_string($db, trim($_POST['username']))));
- $post_password = htmlspecialchars(addslashes(mysqli_real_escape_string($db, trim($_POST['password']))));
- $post_password = md5($post_password);
- if (empty($post_username) || empty($post_password)) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Mohon mengisi semua input.";
- } else {
- $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$post_username'");
- if (mysqli_num_rows($check_user) == 0) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Username atau password salah.";
- } else {
- $data_user = mysqli_fetch_assoc($check_user);
- if (!password_verify($post_password, $data_user['password'])) {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Username atau password salah.";
- } else if ($data_user['status'] == "Suspended") {
- $msg_type = "error";
- $msg_content = "<b>Gagal:</b> Akun nonaktif.";
- } else {
- // kode
- $agent = $_SERVER['HTTP_USER_AGENT'];
- $ip = $_SERVER['REMOTE_ADDR'];
- $db->query("INSERT INTO login_history VALUES('','$post_username','$date','$time','$ip','$agent')");
- $_SESSION['user'] = $data_user;
- header("Location: ".$cfg_baseurl);
- }
- }
- }
- }
- }
- }
- include("lib/header.php");
- ?>
- <h3>
- <div class="pull-right text-center">
- </div><small><?php echo $cfg_webname; ?> -> Masuk </small>
- </h3>
- <div class="row">
- <div class="col-md-offset-3 col-md-6">
- <div class="panel panel-default">
- <div class="panel-heading">
- <h3 class="panel-title"><i class="fa fa-user"></i> Masuk</h3>
- </div>
- <div class="panel-body">
- <?php
- if ($msg_type == "error") {
- ?>
- <div class="alert alert-danger">
- <a href="#" class="close" data-dismiss="alert" aria-label="close">×</a>
- <i class="fa fa-times-circle"></i>
- <?php echo $msg_content; ?>
- </div>
- <?php
- }
- ?>
- <form class="form-horizontal" role="form" method="POST">
- <div class="form-group">
- <label class="col-md-2 control-label">Username</label>
- <div class="col-md-10">
- <input type="text" name="username" class="form-control" placeholder="Username">
- </div>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label">Password</label>
- <div class="col-md-10">
- <input type="password" name="password" class="form-control" placeholder="Password">
- </div>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label"></label>
- <div class="col-md-10">
- <div class="checkbox icheck">
- <label>
- <input name="setuju" type="checkbox"> Saya menyetujui <a href="/terms">Syarat & Ketentuan</a> dari PanelMedia
- </label>
- </div>
- </div>
- </div>
- <div class="form-group">
- <div class="col-md-offset-2 col-md-10">
- <button type="submit" class="btn btn-success btn-bordered waves-effect w-md waves-light" name="login">Masuk</button>
- </div></div>
- <center><div class="rblikebox"> <div> <iframe src="https://www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/panel-media.net/&width=245&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=270" scrolling="no" frameborder="0" scrolling="no" style="border: medium none; overflow: hidden; height: 270px; width: 245px;background:#fff;"></iframe></div></center>
- </div>
- </form>
- </div>
- <div class="panel-footer">
- Belum punya akun? <a class="btn btn-default btn-sm" href="<?php echo $cfg_registerurl; ?>">Daftar!</a>
- Lupa Password? <a class="btn btn-default btn-sm" href="/forgot.php">Klik Disini</a><div><div>
- <center><footer class="main-footer">
- <!-- To the right -->
- </div>
- <!-- Default to the left -->
- <strong>Copyright © 2018 <a href="https://panelmedia.net/">Panel Media</a></strong>
- </footer>
- </div>
- </div>
- </div>
- </div>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement