API tools faq
paste
diamondpedia

Untitled

diamondpedia
Jul 7th, 2019
181
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 11.42 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. session_start();
  3. require("../mainconfig.php");
  4.  
  5. if (isset($_SESSION['user'])) {
  6. $sess_username = $_SESSION['user']['username'];
  7. $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$sess_username'");
  8. $data_user = mysqli_fetch_assoc($check_user);
  9. if (mysqli_num_rows($check_user) == 0) {
  10. header("Location: ".$cfg_baseurl."logout.php");
  11. } else if ($data_user['status'] == "Suspended") {
  12. header("Location: ".$cfg_baseurl."logout.php");
  13. }
  14.  
  15. include("../lib/header.php");
  16. $msg_type = "nothing";
  17.  
  18. if (isset($_POST['order'])) {
  19. $post_service = $db->real_escape_string(trim(filter($_POST['service'])));
  20. $post_target = $db->real_escape_string(trim(filter($_POST['target'])));
  21.  
  22.  
  23. $check_service = mysqli_query($db, "SELECT * FROM services_pulsa WHERE sid = '$post_service' AND status = 'Active'");
  24. $data_service = mysqli_fetch_assoc($check_service);
  25.  
  26. $check_orders = mysqli_query($db, "SELECT * FROM orders_pulsa WHERE data = '$post_target' AND status IN ('Pending','Processing')");
  27. $data_orders = mysqli_fetch_assoc($check_orders);
  28.  
  29. $price = $data_service['price'];
  30. $oid = random_number(3).random_number(4);
  31. $service = $data_service['service'];
  32. $provider = $data_service['provider'];
  33. $sid = $data_service['sid'];
  34. $category = $data_service['oprator'];
  35. $check_provider = mysqli_query($db, "SELECT * FROM provider WHERE code = '$provider'");
  36. $data_provider = mysqli_fetch_assoc($check_provider);
  37.  
  38. if (empty($post_service) || empty($post_target)) {
  39. $msg_type = "error";
  40. $msg_content = '<b>Gagal:</b> Mohon Mengisi Semua Input.<script>swal("Gagal!", "Mohon Mengisi Semua Input.", "error");</script>';
  41. } else if (mysqli_num_rows($check_provider) == 0) {
  42. $msg_type = "error";
  43. $msg_content = '<b>Gagal:</b> Server Sedang Mengalami Gangguan.<script>swal("Gagal!", "Server Sedang Mengalami Gangguan.", "error");</script>';
  44. } else if (mysqli_num_rows($check_service) == 0) {
  45. $msg_type = "error";
  46. $msg_content = '<b>Gagal:</b> Layanan Tidak Tersedia.<script>swal("Gagal!", "Layanan Tidak Tersedia.", "error");</script>';
  47. } else if (mysqli_num_rows($check_orders) == 1) {
  48. $msg_type = "error";
  49. $msg_content = '<b>Gagal:</b> Terdapat Pesanan Dengan No.HP Yang Sama & Berstatus Pending/Processing.<script>swal("Gagal!", "Terdapat Pesanan Dengan No.HP Yang Sama & Berstatus Pending/Processing.", "error");</script>';
  50. } else if ($data_user['balance'] < $price) {
  51. $msg_type = "error";
  52. $msg_content = '<b>Gagal:</b> Saldo Anda Tidak Mencukupi Untuk Melakukan Pesanan Ini.<script>swal("Gagal!", "Saldo Anda Tidak Mencukupi Untuk Melakukan Pesanan Ini.", "error");</script>';
  53. } else {
  54.  
  55. // api data
  56. $api_link = $data_provider['link'];
  57. $api_key = $data_provider['api_key'];
  58. // end api data
  59.  
  60. if ($provider == "MANUAL") {
  61. $api_postdata = "";
  62. $poid = $oid;
  63. } else if ($provider == "DPEDIA") {
  64. $api_postdata = "api_key=$api_key&service=$sid&phone=$post_target";
  65. $ch = curl_init();
  66. curl_setopt($ch, CURLOPT_URL, $api_link);
  67. curl_setopt($ch, CURLOPT_POST, 1);
  68. curl_setopt($ch, CURLOPT_POSTFIELDS, $api_postdata);
  69. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  70. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  71. $chresult = curl_exec($ch);
  72. curl_close($ch);
  73. $json_result = json_decode($chresult);
  74. $poid = $json_result->data->id;
  75. } else {
  76. die("System Error!");
  77. }
  78.  
  79. if (empty($poid)) {
  80. $msg_type = "error";
  81. $msg_content = "<b>Gagal:</b>".$json_result->data->pesan.".";
  82. } else {
  83. $check_top = mysqli_query($db, "SELECT * FROM top_users WHERE username = '$sess_username'");
  84. $data_top = mysqli_fetch_assoc($check_top);
  85. $update_user = mysqli_query($db, "UPDATE users SET balance = balance-$price WHERE username = '$sess_username'");
  86. if ($update_user == TRUE) {
  87. $insert_order = mysqli_query($db, "INSERT INTO balance_history (id, username, action, quantity, msg, date, time) VALUES ('', '$sess_username', 'Cut Balance', '$price', 'Pemesanan Pulsa Dengan ID Pesan : $oid', '$date', '$time')");
  88. $insert_order = mysqli_query($db, "INSERT INTO orders_pulsa (oid, poid, user, service, data, price, status, date, time, provider, place_from) VALUES ('$oid', '$poid', '$sess_username', '$service', '$post_target', '$price', 'Pending', '$date', '$time', '$provider', 'WEB')");
  89. if ($insert_order == TRUE) {
  90. if (mysqli_num_rows($check_top) == 0) {
  91. $insert_topup = mysqli_query($db, "INSERT INTO top_users (method, username, jumlah, total) VALUES ('Order', '$sess_username', '$price', '1')");
  92. } else {
  93. $insert_topup = mysqli_query($db, "UPDATE top_users SET jumlah = ".$data_top['jumlah']."+$price, total = ".$data_top['total']."+1 WHERE username = '$sess_username' AND method = 'Order'");
  94. }
  95. $msg_type = "success";
  96. $msg_content = "<b>Berhasil:</b> Pesanan Anda Telah Diterima.</b><br /><b>ID Pesanan:</b> $oid<br /><b>Nama Layanan:</b> $service<br /><b>Tujuan/Target:</b> $post_target<br /><b>Harga:</b> Rp ".number_format($price,0,',','.');
  97. } else {
  98. $msg_type = "error";
  99. $msg_content = "<b>Gagal:</b> System Error.";
  100. }
  101. } else {
  102. $msg_type = 'error';
  103. $msg_content = "<b>Gagal</b> System Error.";
  104. }
  105. }
  106. }
  107. }
  108. $check_user = mysqli_query($db, "SELECT * FROM users WHERE username = '$sess_username'");
  109. $data_user = mysqli_fetch_assoc($check_user);
  110. ?>
  111. <div class="col-md-12">
  112. <br/>
  113. </div>
  114. <div class="row">
  115. <div class="col-lg-12">
  116. <div class="alert alert-warning">
  117. <h4 class="text-uppercase">
  118. <i class="mdi mdi-bullhorn"></i> <b class="text-uppercase">Penting!</b></h3>
  119. Halo <?php echo $sess_username; ?>, Sebelum Membuat Pesanan Disarankan Untuk Membaca <b>Informasi</b> Terlebih Dahulu, Jika Anda Masuk Menggunakan PC Maka <b>Informasi</b> Terletak Disebelah Kanan Form Pesanan, Jika Anda Masuk Menggunakan <i>Smartphone / Mobile Phone</i> Maka <b>Informasi</b> Terletak Dibagian Bawah Form Pesanan.
  120. <br/>
  121. Terima Kasih.
  122. </div>
  123. </div>
  124. </div>
  125. <div class="row">
  126. <div class="col-md-7">
  127. <div class="panel panel-color panel-border panel-info">
  128. <div class="panel-heading">
  129. <h4 class="header-title"><i class="mdi mdi-cart"></i> Pemesanan Baru</h4>
  130. </div>
  131. <div class="panel-body">
  132. <?php
  133. if ($msg_type == "success") {
  134. ?>
  135. <div class="alert alert-info">
  136. <a href="#" class="close" data-dismiss="alert" aria-label="close">×</a>
  137. <i class="fa fa-check-circle"></i>
  138. <?php echo $msg_content; ?>
  139. </div>
  140. <?php
  141. } else if ($msg_type == "error") {
  142. ?>
  143. <div class="alert alert-danger">
  144. <a href="#" class="close" data-dismiss="alert" aria-label="close">×</a>
  145. <i class="fa fa-times-circle"></i>
  146. <?php echo $msg_content; ?>
  147. </div>
  148. <?php
  149. }
  150. ?>
  151. <form class="form-horizontal" method="POST">
  152. <input type="hidden" name="csrf_token" value="<?php echo $config['csrf_token'] ?>">
  153. <div class="form-group">
  154. <label class="col-md-2 control-label">Type Server</label>
  155. <div class="col-md-10">
  156. <select class="form-control" id="type" name="type">
  157. <option value="0">Pilih Salah Satu...</option>
  158. <option value="1">Pulsa Server 1</option>
  159. </select>
  160. </div>
  161. </div>
  162. <div class="form-group">
  163. <label class="col-md-2 control-label">Operator</label>
  164. <div class="col-md-10">
  165. <select class="form-control" id="category" name="category">
  166. <option value="0">Pilih Type Dahulu...</option>
  167. </select>
  168. </div>
  169. </div>
  170. <div class="form-group">
  171. <label class="col-md-2 control-label">Layanan</label>
  172. <div class="col-md-10">
  173. <select class="form-control" id="service" name="service">
  174. <option value="0">Pilih Operator Dahulu...</option>
  175. </select>
  176. </div>
  177. </div>
  178. <div class="form-group">
  179. <label class="col-md-2 control-label">Tujuan</label>
  180. <div class="col-md-10">
  181. <input type="text" name="target" class="form-control" placeholder="No HP / ID Game / No Meter">
  182. </div>
  183. </div>
  184. <div class="form-group">
  185. <label class="col-md-2 control-label">Total Harga</label>
  186. <div class="col-md-10">
  187. <input type="text" class="form-control" name="price" id="price" readonly>
  188. </div>
  189. </div>
  190. <div class="form-group">
  191. <div class="col-md-offset-2 col-md-10">
  192. <button type="submit" class="btn btn-info waves-effect w-md waves-light" name="order">Buat Pesanan</button>
  193. <button type="reset" class="btn btn-default waves-effect w-md waves-light">Ulangi</button>
  194. </div>
  195. </div>
  196. </form>
  197. </div>
  198. </div>
  199. </div>
  200. <div class="col-md-5">
  201. <div class="panel panel-border panel-info">
  202. <div class="panel-heading">
  203. <h4 class="header-title"><i class="mdi mdi-information-outline"></i> Peraturan Pemesanan</h4>
  204. </div>
  205. <div class="panel-body">
  206. <ul>
  207. <li>Pesan Pulsa/Kuota/Voucher Game. Masukkan Nomor Telepon Dengan Benar, Contoh 082136611003.</li>
  208. <li>Pesan Token PLN Masukkan Nomor Meter.</li>
  209. <li>Harap Masukan Target Dengan Benar, Tidak Ada Pengembalian Dana Untuk Kesalahan Pengguna Yang Pesanannya Sudah Terlajur Di Pesan.</li>
  210. </ul>
  211. </div>
  212. </div>
  213. </div>
  214. </div>
  215. <!-- end row -->
  216. <script type="text/javascript" src="https://code.jquery.com/jquery-1.10.2.js"></script>
  217. <script type="text/javascript">
  218. $(document).ready(function() {
  219. $("#type").change(function() {
  220. var type = $("#type").val();
  221. $.ajax({
  222. url: '<?php echo $cfg_baseurl; ?>inc/tipe_pulsa.php',
  223. data: 'type=' + type,
  224. type: 'POST',
  225. dataType: 'html',
  226. success: function(msg) {
  227. $("#category").html(msg);
  228. }
  229. });
  230. });
  231. $("#category").change(function() {
  232. var category = $("#category").val();
  233. $.ajax({
  234. url: '<?php echo $cfg_baseurl; ?>inc/order_service_pulsa.php',
  235. data: 'category=' + category,
  236. type: 'POST',
  237. dataType: 'html',
  238. success: function(msg) {
  239. $("#service").html(msg);
  240. }
  241. });
  242. });
  243. $("#service").change(function() {
  244. var service = $("#service").val();
  245. $.ajax({
  246. url: '<?php echo $cfg_baseurl; ?>inc/order_pulsa.php',
  247. data: 'service=' + service,
  248. type: 'POST',
  249. dataType: 'html',
  250. success: function(msg) {
  251. $("#price").val(msg);
  252. }
  253. });
  254. });
  255. });
  256. function get_total(quantity) {
  257. var rate = $("#rate").val();
  258. var result = eval(quantity) * rate;
  259. $('#total').val(result);
  260. }
  261. </script>
  262. <?php
  263. include("../lib/footer.php");
  264. } else {
  265. header("Location: ".$cfg_baseurl);
  266. }
  267. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!