ubah supaya bank bs tetap
This commit is contained in:
ody
parent
a0f74b1a7f
commit
5ec1bd97de
86
loginn.php
86
loginn.php
@ -7,7 +7,8 @@ if(isset($_POST['login'])){
|
|||||||
$username = mysqli_real_escape_string($conn, $_POST['username']);
|
$username = mysqli_real_escape_string($conn, $_POST['username']);
|
||||||
$password = $_POST['password'];
|
$password = $_POST['password'];
|
||||||
|
|
||||||
$sql = "SELECT id, username, password, balance FROM users WHERE username = ?";
|
// PAKAI KOLOM BANK, BUKAN BALANCE
|
||||||
|
$sql = "SELECT id, username, password, bank FROM users WHERE username = ?";
|
||||||
$stmt = mysqli_prepare($conn, $sql);
|
$stmt = mysqli_prepare($conn, $sql);
|
||||||
mysqli_stmt_bind_param($stmt, "s", $username);
|
mysqli_stmt_bind_param($stmt, "s", $username);
|
||||||
mysqli_stmt_execute($stmt);
|
mysqli_stmt_execute($stmt);
|
||||||
@ -16,20 +17,18 @@ if(isset($_POST['login'])){
|
|||||||
if (mysqli_num_rows($result) > 0) {
|
if (mysqli_num_rows($result) > 0) {
|
||||||
$user = mysqli_fetch_assoc($result);
|
$user = mysqli_fetch_assoc($result);
|
||||||
|
|
||||||
// Password verification
|
if($password === $user['password']) {
|
||||||
if($password === $user['password']) { // atau password_verify() jika di-hash
|
|
||||||
|
// SESSION PAKAI BANK
|
||||||
// Set semua data session
|
|
||||||
$_SESSION['user_id'] = $user['id'];
|
$_SESSION['user_id'] = $user['id'];
|
||||||
$_SESSION['username'] = $user['username'];
|
$_SESSION['username'] = $user['username'];
|
||||||
$_SESSION['balance'] = intval($user['balance']); // PASTIKAN integer
|
$_SESSION['bank'] = intval($user['bank']);
|
||||||
|
|
||||||
// Update last login
|
|
||||||
$update_sql = "UPDATE users SET last_login = NOW() WHERE id = ?";
|
$update_sql = "UPDATE users SET last_login = NOW() WHERE id = ?";
|
||||||
$update_stmt = mysqli_prepare($conn, $update_sql);
|
$update_stmt = mysqli_prepare($conn, $update_sql);
|
||||||
mysqli_stmt_bind_param($update_stmt, "i", $user['id']);
|
mysqli_stmt_bind_param($update_stmt, "i", $user['id']);
|
||||||
mysqli_stmt_execute($update_stmt);
|
mysqli_stmt_execute($update_stmt);
|
||||||
|
|
||||||
header("Location: html.php");
|
header("Location: html.php");
|
||||||
exit;
|
exit;
|
||||||
} else {
|
} else {
|
||||||
@ -55,7 +54,6 @@ if(isset($_POST['register'])){
|
|||||||
$password = $_POST['password'];
|
$password = $_POST['password'];
|
||||||
$confirm_password = $_POST['confirm_password'];
|
$confirm_password = $_POST['confirm_password'];
|
||||||
|
|
||||||
// Validasi
|
|
||||||
if(empty($username) || empty($password)) {
|
if(empty($username) || empty($password)) {
|
||||||
$error = 'All fields are required.';
|
$error = 'All fields are required.';
|
||||||
} elseif($password !== $confirm_password) {
|
} elseif($password !== $confirm_password) {
|
||||||
@ -63,7 +61,6 @@ if(isset($_POST['register'])){
|
|||||||
} elseif(strlen($password) < 6) {
|
} elseif(strlen($password) < 6) {
|
||||||
$error = 'Password must be at least 6 characters.';
|
$error = 'Password must be at least 6 characters.';
|
||||||
} else {
|
} else {
|
||||||
// Cek username sudah ada
|
|
||||||
$check_sql = "SELECT id FROM users WHERE username = ?";
|
$check_sql = "SELECT id FROM users WHERE username = ?";
|
||||||
$check_stmt = mysqli_prepare($conn, $check_sql);
|
$check_stmt = mysqli_prepare($conn, $check_sql);
|
||||||
mysqli_stmt_bind_param($check_stmt, "s", $username);
|
mysqli_stmt_bind_param($check_stmt, "s", $username);
|
||||||
@ -73,27 +70,22 @@ if(isset($_POST['register'])){
|
|||||||
if(mysqli_stmt_num_rows($check_stmt) > 0) {
|
if(mysqli_stmt_num_rows($check_stmt) > 0) {
|
||||||
$error = 'Username already exists.';
|
$error = 'Username already exists.';
|
||||||
} else {
|
} else {
|
||||||
// Password hashing untuk keamanan
|
$hashed_password = $password;
|
||||||
// UNTUK TESTING: simpan plain text (tidak direkomendasikan)
|
|
||||||
$hashed_password = $password; // HAPUS INI DI PRODUKSI
|
// INSERT KE KOLOM BANK, BUKAN BALANCE
|
||||||
|
$insert_sql = "INSERT INTO users (username, password, bank, created_at)
|
||||||
// UNTUK PRODUKSI: gunakan password_hash()
|
VALUES (?, ?, 1000, NOW())";
|
||||||
// $hashed_password = password_hash($password, PASSWORD_DEFAULT);
|
|
||||||
|
|
||||||
// Insert user baru dengan saldo awal
|
|
||||||
$insert_sql = "INSERT INTO users (username, password, balance, created_at)
|
|
||||||
VALUES (?, ?, 1000, NOW())";
|
|
||||||
$insert_stmt = mysqli_prepare($conn, $insert_sql);
|
$insert_stmt = mysqli_prepare($conn, $insert_sql);
|
||||||
mysqli_stmt_bind_param($insert_stmt, "ss", $username, $hashed_password);
|
mysqli_stmt_bind_param($insert_stmt, "ss", $username, $hashed_password);
|
||||||
|
|
||||||
if(mysqli_stmt_execute($insert_stmt)) {
|
if(mysqli_stmt_execute($insert_stmt)) {
|
||||||
$success = 'Registration successful! You can now login.';
|
$success = 'Registration successful! You can now login.';
|
||||||
// Auto login setelah register (opsional)
|
|
||||||
$user_id = mysqli_insert_id($conn);
|
$user_id = mysqli_insert_id($conn);
|
||||||
$_SESSION['user_id'] = $user_id;
|
$_SESSION['user_id'] = $user_id;
|
||||||
$_SESSION['username'] = $username;
|
$_SESSION['username'] = $username;
|
||||||
$_SESSION['balance'] = 1000;
|
$_SESSION['bank'] = 1000;
|
||||||
|
|
||||||
header("Location: html.php");
|
header("Location: html.php");
|
||||||
exit;
|
exit;
|
||||||
} else {
|
} else {
|
||||||
@ -103,48 +95,4 @@ if(isset($_POST['register'])){
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
?>
|
?>
|
||||||
<!DOCTYPE html>
|
<?
|
||||||
<html>
|
|
||||||
<head>
|
|
||||||
<title>Register</title>
|
|
||||||
<link rel="stylesheet" href="login.css">
|
|
||||||
</head>
|
|
||||||
<body>
|
|
||||||
<div class="container">
|
|
||||||
<div class="logo">
|
|
||||||
<h1>OCAGamingHub</h1>
|
|
||||||
<p>Create your account</p>
|
|
||||||
</div>
|
|
||||||
|
|
||||||
<div class="form-container">
|
|
||||||
<?php if(!empty($error)): ?>
|
|
||||||
<div class="error-message show"><?=htmlspecialchars($error)?></div>
|
|
||||||
<?php endif; ?>
|
|
||||||
|
|
||||||
<?php if(!empty($success)): ?>
|
|
||||||
<div class="success-message show"><?=htmlspecialchars($success)?></div>
|
|
||||||
<?php endif; ?>
|
|
||||||
|
|
||||||
<form method="POST">
|
|
||||||
<div class="form-group">
|
|
||||||
<label>Username</label>
|
|
||||||
<input type="text" name="username" required>
|
|
||||||
</div>
|
|
||||||
|
|
||||||
<div class="form-group">
|
|
||||||
<label>Password</label>
|
|
||||||
<input type="password" name="password" required>
|
|
||||||
</div>
|
|
||||||
|
|
||||||
<div class="form-group">
|
|
||||||
<label>Confirm Password</label>
|
|
||||||
<input type="password" name="confirm_password" required>
|
|
||||||
</div>
|
|
||||||
|
|
||||||
<button type="submit" name="register" class="btn btn-signin">Register</button>
|
|
||||||
<a href="loginn.php" class="btn btn-signup">Back to Login</a>
|
|
||||||
</form>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</body>
|
|
||||||
</html>
|
|
||||||
Loading…
x
Reference in New Issue
Block a user