<?php
defined(\'BASEPATH\') OR exit(\'No direct script access allowed\');
class Profile_qry extends CI_Model {
public function updateFoto()
{
$status = false;
$message = "File tidak ada";
if(isset( $_FILES[\'fotoprofile\'] ) == TRUE){
if($_FILES[\'fotoprofile\'][\'name\'] != ""){
$tipefile = $_FILES[\'fotoprofile\'][\'type\'];
$fileError = $_FILES[\'fotoprofile\'][\'error\'];
if($fileError == 0 && ($tipefile =="image/jpeg" || $tipefile == "image/png")){ // and $tipefile =="image/jpeg" format Gambar Harus JPG
$lokasiGambar = $_FILES[\'fotoprofile\'][\'tmp_name\'];
$tipefile = explode("/", $tipefile);
$data = fopen ($lokasiGambar, \'rb\');
$size=filesize ($lokasiGambar);
$contents= fread ($data, $size);
fclose ($data);
$encoded= $this->mssql_escape($contents);
unlink($lokasiGambar);
$blob_content= $encoded;
$file_name=\'fotouser\'.time().".".$tipefile[1];
$mime_type= ".".$tipefile[1];
$tgl_create= date("Y-m-d H:i:s");
$last_update= date("Y-m-d H:i:s");
$sql = "INSERT INTO dbo.tablefoto (userid, blob_content, file_name, mime_type, tgl_create, last_update) VALUES ({$this->db->escape($this->session->userdata(\'userid\'))},CAST($encoded AS VARBINARY(MAX)),{$this->db->escape($file_name)},{$this->db->escape($mime_type)},{$this->db->escape($tgl_create)},{$this->db->escape($last_update)}) ";
$insert = $this->db->simple_query($sql);
if ($insert) {
$status = true;
$message = "Berhasil menambahkan foto";
} else {
$message = $this->db->error();
}
}else{
$message ="Jenis file tidak didukung";
}
}else{
$message ="Nama file tidak ada";
}
}
return array(
\'status\'=>$status,
\'message\'=>$message,
\'userid\'=>$this->session->userdata(\'userid\')
);
}
function mssql_escape($data) {
if(is_numeric($data))
return $data;
$unpacked = unpack(\'H*hex\', $data);
return \'0x\' . $unpacked[\'hex\'];
}
}
/* End of file modelName.php */
/* Location: ./application/models/modelName.php */