API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 25th, 2020
8,800
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.92 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. session_start();
  3. require("../mainconfig.php");
  4. $page_type = "pulsa";
  5.  
  6. if (isset($_SESSION['user'])) {
  7. $sess_username = $_SESSION['user']['username'];
  8. $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$sess_username'");
  9. $data_user = mysqli_fetch_assoc($check_user);
  10. if (mysqli_num_rows($check_user) == 0) {
  11. header("Location: ".$cfg_baseurl."logout.php");
  12. } else if ($data_user['status'] == "Suspended") {
  13. header("Location: ".$cfg_baseurl."logout.php");
  14. }
  15.  
  16. include("../lib/header.php");
  17. $msg_type = "nothing";
  18.  
  19. if (isset($_POST['order'])) {
  20.  
  21. $post_service = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_POST['fitur'], ENT_QUOTES))));
  22. $post_phone = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_POST['phone'], ENT_QUOTES))));
  23. $post_zoneid = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_POST['zoneid'], ENT_QUOTES))));
  24. $post_transaksi = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_POST['transaksi'], ENT_QUOTES))));
  25. $post_pin = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_POST['pin'], ENT_QUOTES))));
  26.  
  27. $check_service = mysqli_query($db, "SELECT * FROM services_pulsa WHERE id = '$post_service' AND status = 'Active'");
  28. $data_service = mysqli_fetch_assoc($check_service);
  29.  
  30. $check_provider = mysqli_query($db, "SELECT * FROM provider WHERE code = '$provider'");
  31. $data_provider = mysqli_fetch_assoc($check_provider);
  32.  
  33. $price = $data_service['price'];
  34. $service = $data_service['name'];
  35. $pid = $data_service['pid'];
  36. $provider = $data_service['provider'];
  37. $tipe = $data_service['tipe'];
  38. $pesannya = $data_user['pesan'];
  39. if (empty($post_service) || empty($post_phone)) {
  40. $msg_type = "error";
  41. $msg_content = "<b>Gagal:</b> Mohon mengisi input.";
  42.  
  43. } else if (mysqli_num_rows($check_service) == 0) {
  44. $msg_type = "error";
  45. $msg_content = "<b>Gagal:</b> Layanan tidak ditemukan.";
  46. } else if ($data_user['balance'] < $price) {
  47. $msg_type = "error";
  48. $msg_content = "<b>Gagal:</b> Saldo Anda tidak mencukupi untuk melakukan pembelian ini.";
  49. } else {
  50.  
  51. // api data
  52. $api_link = $data_provider['link'];
  53. $api_key = $data_provider['api_key'];
  54. // end api data
  55.  
  56. if ($provider == "MANUAL") {
  57. $api_postdata = "";
  58. } else if ($provider == "DPEDIA") {
  59. $postdata = "api_key=apikeymu&service=$pid&phone=$post_phone&phone2=$post_zoneid";
  60. }
  61.  
  62. $ch = curl_init();
  63. curl_setopt($ch, CURLOPT_URL, "http://serverh2h.net/order/pulsa");
  64. curl_setopt($ch, CURLOPT_POST, 1);
  65. curl_setopt($ch, CURLOPT_POSTFIELDS, $postdata);
  66. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  67. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  68. $chresult = curl_exec($ch);
  69. // echo $chresult;
  70. curl_close($ch);
  71. $order_data = json_decode($chresult, true);
  72. $trx = $order_data['code_trx'];
  73. $err_msg = $order_data['error'];
  74. $oid = random_number(5);
  75. if (!$trx) {
  76. $msg_type = "error";
  77. $msg_content = "<b>Gagal!</b> Server Gangguan GBLK ! . ( ".$err_msg." )";
  78. } else {
  79. $poid = $trx;
  80. $check_top = mysqli_query($db, "SELECT * FROM top_user WHERE username = '$sess_username' AND method = 'Order'");
  81. $data_top = mysqli_fetch_assoc($check_top);
  82. $update_user = mysqli_query($db, "UPDATE users SET balance = balance-$price WHERE username = '$sess_username'");
  83. $update_user = mysqli_query($db, "UPDATE users SET balance_used = balance_used+$price WHERE username = '$sess_username'");
  84. if ($update_user == TRUE) {
  85. if (mysqli_num_rows($check_top) == 0) {
  86. $insert_order = mysqli_query($db, "INSERT INTO top_user (method, username, jumlah, total) VALUES ('Order', '$sess_username', '$price', '1')");
  87. } else {
  88. $insert_order = mysqli_query($db, "UPDATE top_user SET jumlah = ".$data_top['jumlah']."+$price, total = ".$data_top['total']."+1 WHERE username = '$sess_username' AND method = 'Order'");
  89. }
  90.  
  91. $insert_order = mysqli_query($db, "INSERT INTO `orders_pulsa` (`poid`, `oid`, `user`, `service`, `catatan`, `price`, `modal`, `untung`, `phone`, `status`, `datetime`, `provider`, `place_from`, `refund`) VALUES ('$poid', '$oid', '$sess_username', '$service', '$catatan', '$price', '$price', '0', '$post_phone', 'Pending', '$date $time', '$provider', 'WEB', '0')");
  92. $insert_order = mysqli_query($db, "INSERT INTO balance_history (username, action, type, quantity, price, msg, datetime) VALUES ('$sess_username', 'CUT BALANCE', 'ORDER', '1', '$price', 'Membuat pesanan $service . #ID Pesanan: $oid', '$date $time')");
  93.  
  94. if ($insert_order == TRUE) {
  95. $msg_type = "success";
  96. $msg_content = "Pesanan telah diterima.</b><br /><b>ID Pesanan:</b> $oid<br /><b>Layanan:</b> $service<br /><b>Biaya:</b> Rp ".number_format($price,0,',','.');
  97. } else {
  98. $msg_type = "error";
  99. $msg_content = "<b>Gagal:</b> Error system (2).";
  100. }
  101. } else {
  102. $msg_type = "error";
  103. $msg_content = "<b>Gagal:</b> Error system (1).";
  104. }
  105. }
  106. }
  107. }
  108.  
  109. $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$sess_username'");
  110. $data_user = mysqli_fetch_assoc($check_user);
  111. ?>
  112. <div class="row">
  113. <div class="offset-lg-3 col-lg-6">
  114. <div class="card-box">
  115. <ul class="nav nav-tabs tabs-bordered">
  116. <li class="nav-item">
  117. <a href="#charts-b1" data-toggle="tab" aria-expanded="false" class="nav-link active">
  118. Buat Pesanan
  119. </a>
  120. </li>
  121. <li class="nav-item">
  122. <a href="#information-b1" data-toggle="tab" aria-expanded="true" class="nav-link">
  123. Informasi
  124. </a>
  125. </li>
  126. </ul>
  127. <div class="tab-content">
  128. <div class="tab-pane fade show active" id="charts-b1">
  129. <?php
  130. if ($msg_type == "success") {
  131. ?>
  132. <div class="alert alert-success">
  133. <a href="#" class="close" data-dismiss="alert" aria-label="close">×</a>
  134. <i class="fa fa-check-circle"></i>
  135. <?php echo $msg_content; ?>
  136. </div>
  137. <?php
  138. } else if ($msg_type == "error") {
  139. ?>
  140. <div class="alert alert-danger">
  141. <a href="#" class="close" data-dismiss="alert" aria-label="close">×</a>
  142. <i class="fa fa-times-circle"></i>
  143. <?php echo $msg_content; ?>
  144. </div>
  145. <?php
  146. }
  147. ?>
  148. <form class="form-horizontal" role="form" method="POST">
  149. <div class="form-group">
  150. <label>Kategori<font color="red">*</font></label>
  151. <div class="col-md-12">
  152. <select class="form-control" name="kategori" id="kategori">
  153. <option value="0">Pilih salah satu...</option>
  154. <option value="PULSA">Pulsa Reguler</option>
  155. <option value="VGAME">Voucher Game Online</option>
  156. <option value="PKIN">Paket Data</option>
  157. <option value="PKSMS">Paket SMS</option>
  158. <option value="PT">Pulsa Transfer</option>
  159. <option value="TOKENPLN">Token PLN Prabayar</option>
  160. <option value="SALGO">Saldo Gojek/Driver</option>
  161. <option value="SPOTIFY">Spotify Premium </option>
  162. <option value="NETFLIX">Netflix Premium </option>
  163. <option value="WIFI">Wifi ID</option>
  164. <option value="LAINYA">Lainnya</option>
  165. </select>
  166. </div>
  167. </div>
  168. <div class="form-group">
  169. <label>Type<font color="red">*</font></label>
  170. <div class="col-md-12">
  171. <select class="form-control" id="jenis" name="jenis">
  172. <option value="0">Pilih Salah Satu</option>
  173. </select>
  174. </div>
  175. </div>
  176.  
  177. <div class="form-group">
  178. <label>Layanan<font color="red">*</font></label>
  179. <div class="col-md-12">
  180. <select class="form-control" id="fitur" name="fitur">
  181. <option value="0">Select one...</option>
  182. </select>
  183. </div></div>
  184.  
  185.  
  186. <div id="rates1"></div>
  187. <div id="rates"></div>
  188.  
  189. <button type="submit" class="pull-right btn btn-square btn-primary" name="order"><i class="fa fa-check-circle"></i> Submit </button>
  190. <button type="reset" class="btn btn-square btn-secondary"><i class="fa fa-refresh"></i> Ulangi</button>
  191. </form>
  192. </div>
  193. <!-- END panel-->
  194. <div class="tab-pane fade" id="information-b1">
  195.  
  196. <ul>
  197. <li><dt>Kategori</dt></li>
  198. Pilih Kategori yang diinginkan
  199.  
  200. <li><dt>Tipe</dt></li>
  201. Pilih Tipe Layanan yang diinginkan
  202.  
  203. <li><dt>Layanan</dt></li>
  204. Pilih Layanan/Produk yang diinginkan
  205.  
  206. <li><dt>Nomor Telepon</dt></li>
  207. <dd>Masukkan Nomor Handphone/Telepon yang akan diisi
  208. <li><dt>Klik 'Kirim'</dt></li>
  209. Setelah data diisi semua, klik 'Kirim'. Silakan lihat tabel dibawah ini, untuk melihat progress request transaksi. Lakukan refresh (tekan F5) untuk melihat update data.
  210. <li><dt>Lihat transaksi yang telah diproses</dt></li>
  211. <dd>Untuk melihat status transaksi yang telah diproses klik <a href="<?php echo $cfg_baseurl; ?>order/history/pulsa">Daftar Pesanan</a>
  212. </ul>
  213. </div>
  214. </div>
  215. </div>
  216. </div>
  217.  
  218.  
  219. <!-- end row -->
  220. <!-- end row -->
  221. <script type="text/javascript" src="https://code.jquery.com/jquery-1.10.2.js"></script>
  222. <script type="text/javascript">
  223. var htmlobjek;
  224. $(document).ready(function(){
  225. $("#kategori").change(function(){
  226. var kategori = $("#kategori").val();
  227. var jenis = $("#jenis").val();
  228. $.ajax({
  229. url: '<?php echo $cfg_baseurl; ?>inc/order_jenis.php',
  230. data: 'kategori=' +kategori,
  231. type: 'POST',
  232. dataType: 'html',
  233. success: function(msg){
  234. //jika data sukses diambil dari server kita tampilkan
  235. //di <select id=kota>
  236. $("#jenis").html(msg);
  237. }
  238. });
  239. });
  240.  
  241. $("#jenis").change(function(){
  242. var jenis = $("#jenis").val();
  243. $.ajax({
  244. url: '<?php echo $cfg_baseurl; ?>inc/order_service_pulsa.php',
  245. data: 'jenis='+jenis,
  246. type: 'POST',
  247. dataType: 'html',
  248. success: function(msg){
  249. $("#fitur").html(msg);
  250. }
  251. });
  252. });
  253.  
  254.  
  255. $("#fitur").change(function(){
  256. var fitur = $("#fitur").val();
  257. $.ajax({
  258. url: '<?php echo $cfg_baseurl; ?>inc/pulsa_rate.php',
  259. data: 'fitur='+fitur,
  260. type: 'POST',
  261. dataType: 'html',
  262. success: function(msg){
  263. $("#rates").html(msg);
  264. }
  265. });
  266. });
  267. $("#fitur").change(function(){
  268. var fitur = $("#fitur").val();
  269. $.ajax({
  270. url: '<?php echo $cfg_baseurl; ?>inc/pulsa_transaksi.php',
  271. data: 'fitur='+fitur,
  272. type: 'POST',
  273. dataType: 'html',
  274. success: function(msg){
  275. $("#rates1").html(msg);
  276. }
  277. });
  278. });
  279. });
  280. </script>
  281. <?php
  282. include("../lib/footer.php");
  283. } else {
  284. header("Location: ".$cfg_baseurl);
  285. }
  286. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!