-
Notifications
You must be signed in to change notification settings - Fork 1
/
aksi.php
228 lines (211 loc) · 9.78 KB
/
aksi.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
<?php
require_once 'functions.php';
/** LOGIN **/
if ($act == 'login') {
$user = esc_field($_POST['user']);
$pass = esc_field($_POST['pass']);
$row = $db->get_row("SELECT * FROM tb_user WHERE user='$user' AND pass='$pass'");
if ($row) {
$_SESSION['login'] = $row->user;
$_SESSION['level'] = strtolower($row->level);
redirect_js("index.php");
} else {
print_msg("Salah kombinasi username dan password.");
}
} else if ($mod == 'password') {
$pass1 = $_POST['pass1'];
$pass2 = $_POST['pass2'];
$pass3 = $_POST['pass3'];
$row = $db->get_row("SELECT * FROM tb_user WHERE user='$_SESSION[login]' AND pass='$pass1'");
if ($pass1 == '' || $pass2 == '' || $pass3 == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif (!$row)
print_msg('Password lama salah.');
elseif ($pass2 != $pass3)
print_msg('Password baru dan konfirmasi password baru tidak sama.');
else {
$db->query("UPDATE tb_user SET pass='$pass2' WHERE user='$_SESSION[login]'");
print_msg('Password berhasil diubah.', 'success');
}
} elseif ($act == 'logout') {
unset($_SESSION['login']);
header("location:login.php");
}
/** user */
elseif ($mod == 'user_tambah') {
$kode_user = $_POST['kode_user'];
$nama_user = $_POST['nama_user'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$level = $_POST['level'];
if ($kode_user == '' || $user == '' || $pass == '' || $nama_user == '' || $level == '')
print_msg("Field yang bertanda * tidak boleh kosong!");
elseif ($db->get_row("SELECT * FROM tb_user WHERE kode_user='$kode_user' AND kode_user<>'$_GET[ID]'")) {
print_msg("Kode sudah ada!");
} elseif ($db->get_row("SELECT * FROM tb_user WHERE user='$user' AND kode_user<>'$_GET[ID]'")) {
print_msg("User sudah ada!");
} else {
$db->query("INSERT INTO tb_user (kode_user, user, pass, nama_user, level)
VALUES ('$kode_user', '$user', '$pass', '$nama_user', '$level')");
redirect_js("index.php?m=user");
}
} else if ($mod == 'user_ubah') {
$kode_user = $_POST['kode_user'];
$nama_user = $_POST['nama_user'];
$user = $_POST['user'];
$pass = $_POST['pass'];
$level = $_POST['level'];
if ($kode_user == '' || $user == '' || $pass == '' || $nama_user == '' || $level == '')
print_msg("Field yang bertanda * tidak boleh kosong!");
elseif ($db->get_row("SELECT * FROM tb_user WHERE user='$user' AND kode_user<>'$_GET[ID]'")) {
print_msg("User sudah ada!");
} else {
$db->query("UPDATE tb_user SET
user='$user',
pass='$pass',
nama_user='$nama_user',
level='$level'
WHERE kode_user='$_GET[ID]'");
redirect_js("index.php?m=user");
}
} else if ($act == 'user_hapus') {
$db->query("DELETE FROM tb_user WHERE kode_user='$_GET[ID]'");
header("location:index.php?m=user");
}
/** alternatif **/
elseif ($mod == 'alternatif_tambah') {
$kode = $_POST['kode'];
$nama = $_POST['nama'];
$keterangan = $_POST['keterangan'];
if ($kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_alternatif WHERE kode_alternatif='$kode'"))
print_msg("Kode sudah ada!");
else {
$db->query("INSERT INTO tb_alternatif (kode_alternatif, nama_alternatif, keterangan) VALUES ('$kode', '$nama', '$keterangan')");
$db->query("INSERT INTO tb_rel_alternatif(kode_alternatif, kode_kriteria, kode_sub)
SELECT '$kode', kode_kriteria, 0 FROM tb_kriteria");
redirect_js("index.php?m=alternatif");
}
} elseif ($mod == 'alternatif_ubah') {
$kode = $_POST['kode'];
$nama = $_POST['nama'];
$gambar = $_FILES['gambar'];
$keterangan = $_POST['keterangan'];
if ($kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_alternatif WHERE kode_alternatif='$kode' AND kode_alternatif<>'$_GET[ID]'"))
print_msg("Kode sudah ada!");
else {
$db->query("UPDATE tb_alternatif SET kode_alternatif='$kode', nama_alternatif='$nama', keterangan='$keterangan' WHERE kode_alternatif='$_GET[ID]'");
redirect_js("index.php?m=alternatif");
}
} elseif ($act == 'alternatif_hapus') {
$db->query("DELETE FROM tb_alternatif WHERE kode_alternatif='$_GET[ID]'");
$db->query("DELETE FROM tb_rel_alternatif WHERE kode_alternatif='$_GET[ID]'");
header("location:index.php?m=alternatif");
}
/** kriteria */
elseif ($mod == 'kriteria_tambah') {
$kode = $_POST['kode'];
$nama = $_POST['nama'];
if ($kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_kriteria WHERE kode_kriteria='$kode'"))
print_msg("Kode sudah ada!");
else {
$db->query("INSERT INTO tb_kriteria (kode_kriteria, nama_kriteria) VALUES ('$kode', '$nama')");
$db->query("INSERT INTO tb_rel_kriteria(ID1, ID2, nilai) SELECT '$kode', kode_kriteria, 1 FROM tb_kriteria");
$db->query("INSERT INTO tb_rel_kriteria(ID1, ID2, nilai) SELECT kode_kriteria, '$kode', 1 FROM tb_kriteria WHERE kode_kriteria<>'$kode'");
$db->query("INSERT INTO tb_rel_alternatif(kode_alternatif, kode_kriteria, kode_sub)
SELECT kode_alternatif, '$kode', 0 FROM tb_alternatif");
redirect_js("index.php?m=kriteria");
}
} else if ($mod == 'kriteria_ubah') {
$kode = $_POST['kode'];
$nama = $_POST['nama'];
if ($kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_kriteria WHERE kode_kriteria='$kode' AND kode_kriteria<>'$_GET[ID]'"))
print_msg("Kode sudah ada!");
else {
$db->query("UPDATE tb_kriteria SET kode_kriteria='$kode', nama_kriteria='$nama' WHERE kode_kriteria='$_GET[ID]'");
redirect_js("index.php?m=kriteria");
}
} else if ($act == 'kriteria_hapus') {
$db->query("DELETE FROM tb_kriteria WHERE kode_kriteria='$_GET[ID]'");
$db->query("DELETE FROM tb_rel_kriteria WHERE ID1='$_GET[ID]' OR ID2='$_GET[ID]'");
$db->query("DELETE FROM tb_rel_sub
WHERE ID1 IN(SELECT kode_sub FROM tb_sub WHERE kode_kriteria='$_GET[ID]')
OR ID2 IN(SELECT kode_sub FROM tb_sub WHERE kode_kriteria='$_GET[ID]')");
$db->query("DELETE FROM tb_rel_alternatif
WHERE kode_sub IN(SELECT kode_sub FROM tb_sub WHERE kode_kriteria='$_GET[ID]')");
$db->query("DELETE FROM tb_sub WHERE kode_kriteria='$_GET[ID]'");
$db->query("DELETE FROM tb_rel_alternatif WHERE kode_kriteria='$_GET[ID]'");
header("location:index.php?m=kriteria");
}
/** rel_alternatif */
else if ($act == 'rel_alternatif_ubah') {
foreach ((array) $_POST['nilai'] as $key => $val) {
$db->query("UPDATE tb_rel_alternatif SET kode_sub='$val' WHERE ID='$key'");
}
header("location:index.php?m=rel_alternatif");
}
/** rel_kriteria */
else if ($mod == 'rel_kriteria') {
$ID1 = $_POST['ID1'];
$ID2 = $_POST['ID2'];
$nilai = abs($_POST['nilai']);
if ($ID1 == $ID2 && $nilai <> 1)
print_msg("Kriteria yang sama harus bernilai 1.");
else {
$db->query("UPDATE tb_rel_kriteria SET nilai=$nilai WHERE ID1='$ID1' AND ID2='$ID2'");
$db->query("UPDATE tb_rel_kriteria SET nilai=1/$nilai WHERE ID2='$ID1' AND ID1='$ID2'");
print_msg("Nilai kriteria berhasil diubah.", 'success');
}
}
/** sub */
elseif ($mod == 'sub_tambah') {
$kode_kriteria = $_POST['kode_kriteria'];
$kode = $_POST['kode'];
$nama = $_POST['nama'];
if ($kode_kriteria == '' || $kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_sub WHERE kode_sub='$kode'"))
print_msg("Kode sudah ada!");
else {
$db->query("INSERT INTO tb_sub (kode_sub, kode_kriteria, nama_sub) VALUES ('$kode', '$kode_kriteria', '$nama')");
$db->query("INSERT INTO tb_rel_sub(ID1, ID2, nilai) SELECT '$kode', kode_sub, 1 FROM tb_sub");
$db->query("INSERT INTO tb_rel_sub(ID1, ID2, nilai) SELECT kode_sub, '$kode', 1 FROM tb_sub WHERE kode_sub<>'$kode'");
redirect_js("index.php?m=sub");
}
} else if ($mod == 'sub_ubah') {
$kode_kriteria = $_POST['kode_kriteria'];
$kode = $_POST['kode'];
$nama = $_POST['nama'];
if ($kode_kriteria == '' || $kode == '' || $nama == '')
print_msg("Field bertanda * tidak boleh kosong!");
elseif ($db->get_results("SELECT * FROM tb_sub WHERE kode_sub='$kode' AND kode_sub<>'$_GET[ID]'"))
print_msg("Kode sudah ada!");
else {
$db->query("UPDATE tb_sub SET kode_sub='$kode', kode_kriteria='$kode_kriteria', nama_sub='$nama' WHERE kode_sub='$_GET[ID]'");
redirect_js("index.php?m=sub");
}
} else if ($act == 'sub_hapus') {
$db->query("DELETE FROM tb_sub WHERE kode_sub='$_GET[ID]'");
$db->query("DELETE FROM tb_rel_sub WHERE ID1='$_GET[ID]' OR ID2='$_GET[ID]'");
header("location:index.php?m=sub");
}
/** rel_sub */
else if ($mod == 'rel_sub') {
$ID1 = $_POST['ID1'];
$ID2 = $_POST['ID2'];
$nilai = abs($_POST['nilai']);
if ($ID1 == $ID2 && $nilai <> 1)
print_msg("Kriteria yang sama harus bernilai 1.");
else {
$db->query("UPDATE tb_rel_sub SET nilai=$nilai WHERE ID1='$ID1' AND ID2='$ID2'");
$db->query("UPDATE tb_rel_sub SET nilai=1/$nilai WHERE ID2='$ID1' AND ID1='$ID2'");
print_msg("Nilai sub kriteria berhasil diubah.", 'success');
}
}