API tools faq
paste
Advertisement
boldpanel

Untitled

boldpanel
May 19th, 2019
98
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.44 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3. session_start();
  4. require("../mainconfig.php");
  5. $page_type = "Buka Tiket";
  6.  
  7. if (isset($_SESSION['user'])) {
  8. $sess_username = $_SESSION['user']['username'];
  9. $check_user = $db->query("SELECT * FROM users WHERE username = '$sess_username'");
  10. $data_user = $check_user->fetch_array(MYSQLI_ASSOC);
  11. if ($check_user->num_rows == 0) {
  12. header("Location: ".$site_config['base_url']."user/logout.php");
  13. } else if ($data_user['status'] == "Suspended") {
  14. header("Location: ".$site_config['base_url']."user/logout.php");
  15. }
  16.  
  17. include("../lib/header.php");
  18. $msg_type = "nothing";
  19.  
  20. $post_target = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars($_GET['id']))));
  21. $check_ticket = $db->query("SELECT * FROM tickets WHERE id = '$post_target' AND user = '$sess_username'");
  22. $data_ticket = $check_ticket->fetch_array(MYSQLI_ASSOC);
  23.  
  24. $check_reply = $db->query("SELECT * FROM tickets_message WHERE ticket_id = '$post_target' AND sender = 'Admin'");
  25.  
  26. if ($check_ticket->num_rows == 0) {
  27. header("Location: ".$site_config['base_url']."ticket/new.php");
  28. $msg_type = "error";
  29. $msg_content = "<b>Gagal!</b> Ticket tidak ditemukan.";
  30. } else {
  31.  
  32. $db->query("UPDATE tickets SET seen_user = '1' WHERE id = '$post_target'");
  33. if (isset($_POST['submit'])) {
  34. $post_message = $db->real_escape_string(stripslashes(strip_tags(htmlspecialchars(abs($_POST['message'], ENT_QUOTES)))));
  35. if ($data_ticket['status'] == "Closed") {
  36. $msg_type = "error";
  37. $msg_content = '<b>Gagal!</b> Tiket telah ditutup.';
  38. } else if (empty($post_message)) {
  39. $msg_type = "error";
  40. $msg_content = "<b>Gagal!</b> Mohon mengisi semua input.";
  41. } else if (strlen($post_message) > 200) {
  42. $msg_type = "error";
  43. $msg_content = "<b>Gagal!</b> Pesan maks. 200 karakter.";
  44. } else {
  45. $last_update = "$date $time";
  46. $insert_ticket = $db->query("INSERT INTO tickets_message (ticket_id, sender, user, message, datetime) VALUES ('$post_target', 'Member', '$sess_username', '$post_message', '$last_update')");
  47. $update_ticket = $db->query("UPDATE tickets SET last_update = '$last_update' WHERE id = '$post_target'");
  48. if ($check_reply->num_rows > 0) {
  49. $db->query("UPDATE tickets SET status = 'Waiting', seen_admin = '0' WHERE id = '$post_target'");
  50. }
  51. if ($insert_ticket == TRUE) {
  52. $msg_type = "success";
  53. $msg_content = "<b>Berhasil!</b> Pesan terkirim.";
  54. } else {
  55. $msg_type = "error";
  56. $msg_content = "<b>Gagal!</b> System error.";
  57. }
  58. }
  59. }
  60. }
  61. ?>
  62. <div class="row">
  63. <div class="offset-lg-2 col-lg-8">
  64. <a href="<?php echo $site_config['base_url']; ?>ticket/new.php" class="btn btn-secondary btn-bordred m-b-20"><i class="fa fa-reply"></i> Kembali</a>
  65. <div class="card-box">
  66. <h4 class="m-t-0 text-uppercase header-title"><i class="fa fa-reply"></i> Balas Tiket</h4><hr>
  67.  
  68. <?php
  69. if ($msg_type == "success") {
  70. ?>
  71. <div class="alert alert-success alert-dismissable">
  72. <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button>
  73. <?php echo $msg_content; ?>
  74. </div>
  75. <?php
  76. } else if ($msg_type == "error") {
  77. ?>
  78. <div class="alert alert-danger alert-dismissable">
  79. <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button>
  80. <?php echo $msg_content; ?>
  81. </div>
  82. <?php
  83. }
  84. ?>
  85.  
  86. <div style="max-height: 400px; overflow: auto;">
  87. <div class="alert alert-info alert-white text-right">
  88. <b><?php echo $data_ticket['user']; ?></b><br /><?php echo nl2br($data_ticket['message']); ?><br /><i class="text-muted" style="font-size: 10px;"><?php echo $data_ticket['datetime']; ?></i>
  89. </div>
  90. <?php
  91. $check_message = $db->query("SELECT * FROM tickets_message WHERE ticket_id = '$post_target'");
  92. while ($data_message = $check_message->fetch_array(MYSQLI_ASSOC)) {
  93. if ($data_message['sender'] == "Admin") {
  94. $msg_alert = "success";
  95. $msg_text = "";
  96. $msg_sender = "Admin";
  97. } else {
  98. $msg_alert = "info";
  99. $msg_text = "text-right";
  100. $msg_sender = $data_message['user'];
  101. }
  102. ?>
  103. <div class="alert alert-<?php echo $msg_alert; ?> alert-white <?php echo $msg_text; ?>">
  104. <b><?php echo $msg_sender; ?></b><br /><?php echo nl2br($data_message['message']); ?><br /><i class="text-muted" style="font-size: 10px;"><?php echo $data_message['datetime']; ?></i>
  105. </div>
  106. <?php
  107. }
  108. ?>
  109. </div>
  110. </div>
  111. <div class="card-box">
  112. <form class="form-horizontal" role="form" method="POST">
  113. <div class="form-group row">
  114. <div class="col-md-12">
  115. <textarea name="message" class="form-control" placeholder="Pesan" rows="3" maxlength="200"></textarea>
  116. </div>
  117. </div>
  118. <div class="form-group row">
  119. <div class="col-md-12">
  120. <button type="cancel" class="btn btn-block btn-custom btn-bordred" name="submit"><i class="fa fa-send"></i> Balas </button>
  121. </div>
  122. </div>
  123. </form>
  124. </div>
  125. </div>
  126. </div>
  127.  
  128. <?php
  129. include("../lib/footer.php");
  130. } else {
  131. header("Location: ".$site_config['base_url']);
  132. }
  133. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!