if(isset($_POST['submit'])){ $email = mysqli_escape_string($con,$_POST['ema

1. if(isset($_POST['submit'])){
2. $email = mysqli_escape_string($con,$_POST['email']);
3. $username = mysqli_escape_string($con,$_POST['username']);
4. $password = md5($_POST['password']);
5. $phone =$_POST['phone'];
6. $alamat=$_POST['alamat];
7. $namapersonal=$_POST['namapersonal'];
8. $sqlcekemail = "SELECT emailuser FROM bf_user_santara WHERE emailuser = '$email' ";
9. $resultcekemail = mysqli_query($con,$sqlcekemail);
10. if(!mysqli_num_rows($resultcekemail) > 0){
11. $sqlcekusername = "SELECT username FROM bf_user_santara WHERE username = '$username' ";
12. $resultcekusername = mysqli_query($con,$sqlcekusername);
13. if(!mysqli_num_rows($resultcekusername) > 0){
14. $sqlinsertpersonal = "INSERT INTO bf_personal_user (idpersonal,namapersonal,alamat,phone) VALUES ('','$namapersonal','$alamat','$phone') ";
15. mysqli_query($con,$sqlinsertpersonal);
16.  
17. $selectidpersonal = "SELECT max(idpersonal) FROM bf_personal_user LIMIT 1 ";
18. $resultselectid = mysqli_query($con,$selectidpersonal);
19. $rowidpersonal = mysqli_fetch_assoc($resultselectid);
20. $idpersonal = $rowidpersonal['max(idpersonal)'];
21.  
22. $created = date("Y-m-d H:i:s");
23.  
24. $sqlinsertuser = "INSERT INTO bf_user_santara (iduser, username, password, emailuser, typeuser, idclient, created_on) VALUES ('','$username','$password','$email', '1', '$idpersonal', '$created') ";
25. mysqli_query($con,$sqlinsertuser);
26.  
27. $sqlinsertclient = "INSERT INTO bf_client (idclient,typeid) VALUES ('$idpersonal','2') ";
28. mysqli_query($con,$sqlinsertclient);
29.  
30. $_SESSION['sukses'] = 1;
31. header('location:success.php');
32. } else {
33. $error = 'Username';
34. }
35. } else {
36. $error = 'E-mail';
37. }
38. }
39. ?>