src/index.php

+<?php
+  header('Location: login.php');
+ ?>

src/js/complete-order.js

+function submitForm(){
+  var usernameField = document.getElementsByTagName('input')[1];
+  var emailField = document.getElementsByTagName('input')[2];
+  var cPasswdField = document.getElementsByTagName('input')[4];
+  var req1, req2, req3;
+  console.log(usernameField.value);
+  console.log(emailField.value);
+  //req1 = validate(usernameField.name, usernameField.value) && validate(emailField.name, emailField.value);
+  req1 = isValidated();
+  req2 = checkConfirmPasswd(cPasswdField);
+  req3 = isFilled();
+  console.log(req1, req2, req3);
+  return verifyAll(req1, req2, req3);
+}

src/js/edit-pref-loc.js

+function isFilled(){
+  var form = document.getElementsByTagName('input');
+  if (form[0].value == ''){
+    alert('Harap isi form..!!');
+    return false;
+  }
+  return true;
+}
+
+function editLoc(btn){
+  var row = btn.parentNode.parentNode.parentNode;
+  var locCol = row.children[1];
+  var tempVal = locCol.innerHTML;
+  locCol.innerHTML = '<input type="text" value="'+ tempVal + '">';
+  btn.children[0].src = "img/save.png";
+  btn.onclick = function () {saveLoc(tempVal);};
+  btn.parentNode.children[1].onclick = function() {location.reload();};
+}
+
+function saveLoc(oldVal){
+  var newVal = document.getElementsByTagName('input')[0].value;
+  var xmlhttp = new XMLHttpRequest();
+  xmlhttp.onreadystatechange = function() {
+    if (this.readyState == 4 && this.status == 200) {
+      // console.log(this.responseText);
+      if (this.responseText.slice(0,2) == 'OK'){
+        location.reload();
+      } else {
+        alert('Server Error');
+      }
+    }
+  };
+  xmlhttp.open("POST", location.href + '&type=update' , true);
+  xmlhttp.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
+  xmlhttp.send("oldVal=" + oldVal + "&newVal=" + newVal);
+}
+
+function delLoc(btn){
+  var row = btn.parentNode.parentNode.parentNode;
+  var locCol = row.children[1];
+  var tempVal = locCol.innerHTML;
+  var xmlhttp = new XMLHttpRequest();
+  xmlhttp.onreadystatechange = function() {
+    if (this.readyState == 4 && this.status == 200) {
+      console.log(this.responseText);
+      if (this.responseText.slice(0,2) == 'OK'){
+        location.reload();
+      } else {
+        alert('Error');
+      }
+    }
+  }
+  xmlhttp.open("DELETE", location.href + "&location=" + tempVal , true);
+  xmlhttp.send();
+}

src/js/fan.js

+//TAB HISTORY
+// Get the element with id="defaultOpen" and click on it
+document.getElementById("defaultOpen").click();
+function openTab(evt, tabName) {
+  // Declare all variables
+  var i, tabcontent, tablinks;
+
+  // Get all elements with class="tabcontent" and hide them
+  tabcontent = document.getElementsByClassName("tabcontent");
+  for (i = 0; i < tabcontent.length; i++) {
+      tabcontent[i].style.display = "none";
+  }
+
+  // Get all elements with class="tablinks" and remove the class "active"
+  tablinks = document.getElementsByClassName("tablinks");
+  for (i = 0; i < tablinks.length; i++) {
+      tablinks[i].className = tablinks[i].className.replace(" active", "");
+  }
+
+  // Show the current tab, and add an "active" class to the button that opened the tab
+  document.getElementById(tabName).style.display = "block";
+  evt.currentTarget.className += " active";
+}
+
+function hideCust(idhide, id){
+  var xmlhttp = new XMLHttpRequest();
+  xmlhttp.onreadystatechange = function() {
+    if (this.readyState == 4 && this.status == 200) {
+      document.getElementById(idhide).style.display = "none";
+    }
+  };
+  xmlhttp.open("GET", "hide.php?type=0&id="+id, true);
+  xmlhttp.send();
+}
+
+function hideDriver(idhide, id){
+  var xmlhttp = new XMLHttpRequest();
+  xmlhttp.onreadystatechange = function() {
+    if (this.readyState == 4 && this.status == 200) {
+      document.getElementById(idhide).style.display = "none";
+    }
+  };
+  xmlhttp.open("GET", "hide.php?type=1&id="+id, true);
+  xmlhttp.send();
+}
+
+
+//INPUT FILE
+// 'use strict';
+
+// ;( function ( document, window, index )
+// {
+//   var inputs = document.querySelectorAll( '.inputfile' );
+//   Array.prototype.forEach.call( inputs, function( input )
+//   {
+//     var label  = input.nextElementSibling,
+//       labelVal = label.innerHTML;
+
+//     input.addEventListener( 'change', function( e )
+//     {
+
+//       if( fileName )
+//         label.querySelector( 'span' ).innerHTML = fileName;
+//       else
+//         label.innerHTML = labelVal;
+//     });
+
+//     // Firefox bug fix
+//     input.addEventListener( 'focus', function(){ input.classList.add( 'has-focus' ); });
+//     input.addEventListener( 'blur', function(){ input.classList.remove( 'has-focus' ); });
+//   });
+// }( document, window, 0 ));
\ No newline at end of file

src/js/register.js

+function validate(field, str){
+  if (str.length != 0 && validateEmail(str)){
+    var xmlhttp = new XMLHttpRequest();
+    xmlhttp.onreadystatechange = function() {
+      if (this.readyState == 4 && this.status == 200) {
+        if (this.responseText == 'valid'){
+          if (field == 'username') {
+            document.getElementsByClassName('valid-status')[0].innerHTML = '<img class="stat-img" src="img/check.png" >';
+            document.getElementsByClassName('valid-status')[0].alt = 'valid';
+          } else {
+            document.getElementsByClassName('valid-status')[1].innerHTML = '<img class="stat-img" src="img/check.png" >';
+            document.getElementsByClassName('valid-status')[1].alt = 'valid';
+
+          }
+          return true;
+        } else {
+          if (field == 'username') {
+            document.getElementsByClassName('valid-status')[0].innerHTML = '<img class="stat-img" src="img/cross.png" >';
+            document.getElementsByClassName('valid-status')[0].alt = 'invalid';
+
+          } else {
+            document.getElementsByClassName('valid-status')[1].innerHTML = '<img class="stat-img" src="img/cross.png" >';
+            document.getElementsByClassName('valid-status')[1].alt = 'invalid';
+          }
+          return false;
+        }
+      }
+    };
+    xmlhttp.open("GET", "validate.php?form=" + field + "&value=" + str, true);
+    xmlhttp.send();
+  } else {
+    if (field == 'username') {
+      document.getElementsByClassName('valid-status')[0].innerHTML = '<img class="stat-img" src="img/cross.png" >';
+      document.getElementsByClassName('valid-status')[0].alt = 'invalid';
+
+    } else {
+      document.getElementsByClassName('valid-status')[1].innerHTML = '<img class="stat-img" src="img/cross.png" >';
+      document.getElementsByClassName('valid-status')[1].alt = 'invalid';
+
+    }
+  }
+}
+
+function checkConfirmPasswd(cpassform){
+  if (cpassform.value != document.getElementsByTagName('input')[3].value){
+    cpassform.style.border = '2px solid red';
+    return false;
+  } else {
+    cpassform.style.border = '';
+    return true;
+  }
+}
+
+function isFilled(){
+  var form = document.getElementsByClassName('form-control');
+  var isAllfilled = true;
+
+  for (var i = 0; i < form.length; i++){
+    if (form[i].value == ''){
+      isAllfilled = false;
+      break;
+    }
+  }
+  return isAllfilled;
+}
+
+function verifyAll(req1, req2, req3){
+  if (req1 && req2 && req3) return true;
+  alert('please fulfill all field..!!');
+  return false;
+}
+
+function isValidated() {
+  var usr = document.getElementsByClassName('valid-status')[0].alt;
+  var email = document.getElementsByClassName('valid-status')[1].alt;
+  return (usr == email && usr == 'valid');
+
+}
+
+function submitForm(){
+  var usernameField = document.getElementsByTagName('input')[1];
+  var emailField = document.getElementsByTagName('input')[2];
+  var cPasswdField = document.getElementsByTagName('input')[4];
+  var req1, req2, req3;
+  console.log(usernameField.value);
+  console.log(emailField.value);
+  //req1 = validate(usernameField.name, usernameField.value) && validate(emailField.name, emailField.value);
+  req1 = isValidated();
+  req2 = checkConfirmPasswd(cPasswdField);
+  req3 = isFilled();
+  console.log(req1, req2, req3);
+  return verifyAll(req1, req2, req3);
+}
+
+function validateEmail(email) {
+    var x = email;
+    var atpos = x.indexOf("@");
+    var dotpos = x.lastIndexOf(".");
+    if (atpos<1 || dotpos<atpos+2 || dotpos+2>=x.length) {
+        document.getElementsByClassName('valid-status')[1].innerHTML = '<img class="stat-img" src="img/cross.png" >';
+        document.getElementsByClassName('valid-status')[1].alt = 'invalid';
+        return false;
+    }else
+      return true;
+}
\ No newline at end of file

src/login.php

+<!DOCTYPE html>
+<html>
+  <head>
+    <meta charset="utf-8">
+    <title>Login</title>
+    <link rel="stylesheet" href="css/styles.css">
+    <link href="https://fonts.googleapis.com/css?family=Oswald" rel="stylesheet">
+  </head>
+  <body>
+    <div class="container login">
+      <div class="box">
+        <h1 class="no-background">
+          <span><b>LOGIN</b></span>
+        </h1>
+        <form class="form-group" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
+          <label>Username</label>
+          <input type="text" class="form-control" name="username" required>
+          <label>Password</label>
+          <input type="password" class="form-control" name="password" required><br><br>
+          <!-- <div class="invalid-text">Invalid username or password !</div> -->
+          <button type="submit" name="login" >GO!</button>
+        </form>
+        <a class="signup-link" href="register.php">Don't have an account?</a>
+        <br><br>
+      </div>
+    </div>
+  </body>
+</html>
+
+<?php
+require_once 'dbconfig.php';
+function authenticate($username, $password) {
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT id, username, pass FROM userinfo WHERE username=?';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "s", $username);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    if(mysqli_stmt_num_rows($stmt) == 1) {
+      mysqli_stmt_bind_result($stmt, $hasil_id, $hasil_username, $hasil_password);
+      if(mysqli_stmt_fetch($stmt)){
+        if(password_verify($password, $hasil_password)){
+          // Hasil match
+          return $hasil_id;
+        }
+      }
+    }
+  }
+
+}
+
+
+
+if (isset($_POST['login'])) {
+    if ( $id = authenticate($_POST['username'], $_POST['password'])){
+      header('Location: profile.php?id_active='.$id);
+    }else{
+      header('Location: login.php');
+    }
+
+  }
+
+
+?>

src/order-ojek.php

+<!DOCTYPE html>
+<?php
+  require_once 'dbconfig.php';
+
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT username, fullname, email, phoneno, isdriver, avg_vote, n_voters, img_name FROM userinfo WHERE id=?';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "i", $_GET['id_active']);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    mysqli_stmt_bind_result($stmt, $username, $fullname, $email, $phoneno, $isdriver, $avg_vote, $n_voters, $img_name);
+
+    mysqli_stmt_fetch($stmt);
+  }
+?>
+<html>
+  <head>
+    <title>Order Ojek</title>
+    <link rel="stylesheet" href="css/fan2.css"/>
+    <link href="https://fonts.googleapis.com/css?family=Oswald" rel="stylesheet">
+  </head>
+
+  <body>
+    <div class="card mcenter">
+
+      <div class="rowflex">
+        <div class="flexone">
+          <div>
+            <span class="font-header" style="color: green;">PR-</span><span class="font-header" style="color: red;">OJEK</span>
+          </div>
+          <div style="color: green;">
+            wushh... wushh... ngeeeeeeenggg...
+          </div>
+        </div>
+
+        <div class="mtop10 flexone textright">
+          <span>Hi, </span>
+          <span><b><?php echo $username ?></b> !</span><br/>
+          <a href="login.php">Logout</a>
+        </div>
+      </div>
+
+      <div class="mtop10 rowflex">
+        <div class="flexone box font-navbar selected-navbar"><a href="#">ORDER</a></div>
+        <div class="flexone box font-navbar"><a href="history.php?id_active=<?php echo $_GET['id_active'] ?>">HISTORY</a></div>
+        <div class="flexone box font-navbar"><a href="profile.php?id_active=<?php echo $_GET['id_active'] ?>">MY PROFILE</a></div>
+      </div>
+
+
+      <div class="mtop10">
+        <span class="font-title flexone">MAKE AN ORDER</span>
+      </div>
+
+      <div class="mtop10 rowflex">
+        <div class="rowflex order-step flexone box font-order selected-order">
+          <div class="number mr12">
+            1
+          </div>
+          <div class="left-align">
+            Select Destination
+          </div>
+        </div>
+        <div class="rowflex order-step flexone box font-order ">
+          <div class="number mr12 ">
+            2
+          </div>
+          <div class="left-align">
+            Select a Driver
+          </div>
+        </div>
+        <div class="rowflex order-step flexone box font-order">
+          <div class="number mr12">
+            3
+          </div>
+          <div class="left-align">
+            Complete your order
+          </div>
+        </div>
+      </div>
+
+      <form method="post" onsubmit="return isFilled()" action="select-driver.php?id_active=<?php echo $_GET['id_active'];?>">
+      <div class="rowflex mtop30">
+        <div class="labels mlauto">
+          Picking Point
+        </div>
+        <input class="mrauto" name='source' placeholder="  insert picking point"/>
+      </div>
+
+      <div class="rowflex mtop10">
+        <div class="labels mlauto">
+          Destination
+        </div>
+        <input class="mrauto" name='destination' placeholder="  insert destination"/>
+      </div>
+
+      <div class="rowflex mtop10">
+        <div class="labels mlauto">
+          Preferred Driver
+        </div>
+        <input class="mrauto" name='prefdriver' placeholder="  optional"/>
+      </div>
+
+      <div class="textcenter">
+        <input class="mtop30 button " type="submit" value="NEXT" />
+      </div>
+
+      </form>
+    </div>
+
+    </div>
+  </body>
+
+  <script>
+  function isFilled(){
+    var form = document.getElementsByTagName('input');
+
+    for (var i = 0; i < 2; i++){
+      if (form[i].value == ''){
+        alert('Harap isikan form yang wajib !');
+        return false;
+      }
+    }
+    return true;
+  }
+  </script>
+</html>

src/profile.php

+<!DOCTYPE html>
+
+
+<?php
+require_once 'dbconfig.php';
+
+    $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+    if (!$sqlconn) {
+      die('mySQL connection failed');
+    }
+
+    // Menyiapkan statement SELECT
+    $sqlquery = 'SELECT username, fullname, email, phoneno, isdriver, avg_vote, n_voters, img_name FROM userinfo WHERE id=?';
+    $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+    // Bind variables
+    mysqli_stmt_bind_param($stmt, "i", $_GET['id_active']);
+
+    if(mysqli_stmt_execute($stmt)){
+      // Simpan Hasil query
+      mysqli_stmt_store_result($stmt);
+      // username exist
+      mysqli_stmt_bind_result($stmt, $username, $fullname, $email, $phoneno, $isdriver, $avg_vote, $n_voters, $img_name);
+
+      mysqli_stmt_fetch($stmt);
+
+
+    /* PREFERED LOCATION */
+    $query_prefloc = 'SELECT location FROM prefloc WHERE prefloc.id=?';
+    $driver_prefloc = mysqli_prepare($sqlconn, $query_prefloc);
+
+    // Bind variables
+    mysqli_stmt_bind_param($driver_prefloc, "i", $_GET["id_active"]);
+
+    if(mysqli_stmt_execute($driver_prefloc)){
+      // Simpan Hasil query
+      mysqli_stmt_store_result($driver_prefloc);
+      // username exist
+      mysqli_stmt_bind_result($driver_prefloc, $location);
+    }
+ ?>
+
+<html>
+  <head>
+    <title>Profile</title>
+    <link href="https://fonts.googleapis.com/css?family=Oswald|Roboto" rel="stylesheet">
+    <link rel="stylesheet" href="css/fan2.css"/>
+  </head>
+
+  <body>
+    <div class="card mcenter bdrthin">
+
+      <div class="rowflex">
+        <div class="flexone">
+          <div>
+            <span class="font-header" style="color: green;">PR-</span>
+            <span class="font-header" style="color: red;">OJEK</span>
+          </div>
+          <div style="color: green;">
+            wushh... wushh... ngeeeeeeenggg...
+          </div>
+        </div>
+
+        <div class="mtop10 flexone textright">
+          <span>Hi, </span>
+          <span><b><?php echo $username ?></b> !</span><br  />
+          <a href="#">Logout</a>
+        </div>
+      </div>
+
+      <div class="mtop10 rowflex">
+        <div class="flexone box font-navbar"><a href="order-ojek.php?id_active=<?php echo $_GET['id_active'] ?>">ORDER</a></div>
+        <div class="flexone box font-navbar"><a href="history.php?id_active=<?php echo $_GET['id_active'] ?>">HISTORY</a></div>
+        <div class="flexone box font-navbar selected-navbar"><a href="">MY PROFILE</a></div>
+      </div>
+
+      <div class="mtop10">
+        <span class="font-title flexone">MY PROFILE</span>
+        <a href="<?php echo 'edit-profile.php?id_active='.$_GET['id_active'] ?>"> <img class="mtop10 float-right editpic flexone" src="img/pencil.png" /></a>
+      </div>
+
+
+      <div class="mtop30 textcenter" >
+        <?php echo '<img class="profilepic" src="img/' . $img_name . '" />' ?>
+
+        <div id="username">
+          @<?php echo $username?>
+        </div>
+        <div id="fullname">
+          <?php echo $fullname?>
+        </div>
+        <?php if($isdriver) {
+           echo '<span id="isdriver">Driver</span> | <span class="rating">&#9734; <b>'. $avg_vote . '</b></span> (' . $n_voters .'votes)'; }
+           else {
+             echo '<span>Non-Driver</span>';
+           }?>
+
+        <div id="email">
+          ✉ <?php echo $email?>
+        </div>
+        <div id="phone">
+          ☏ <?php echo $phoneno?>
+
+        </div>
+      </div>
+
+      <div class="mtop30">
+        <span class="font-header flexone pref-loc">PREFERRED LOCATIONS</span>
+        <a href="<?php echo 'edit-prefered-location.php?id_active='.$_GET['id_active']; ?>"><img class="mtop10 float-right editpic flexone" src="img/pencil.png" /></a>
+
+      </div>
+      <ul>
+        <?php 
+        while (mysqli_stmt_fetch($driver_prefloc)) {
+          $list = '
+          <li>
+            '.$location.'
+          </li>
+          ';
+
+          echo $list;
+        }
+        ?>
+      </ul>
+
+    </div>
+  </body>
+</html>
+
+<?php
+}
+ ?>

src/register.php

+<!DOCTYPE html>
+<html>
+  <head>
+    <meta charset="utf-8">
+    <title>Sign Up</title>
+    <link rel="stylesheet" href="css/styles.css">
+    <script src="js/register.js" charset="utf-8"></script>
+    <link href="https://fonts.googleapis.com/css?family=Oswald" rel="stylesheet">
+  </head>
+  <body>
+    <div class="container register">
+      <div class="box">
+        <h1 class="no-background">
+          <span><b>SIGN UP</b></span>
+        </h1>
+        <form onsubmit="return submitForm()" action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]); ?>" method="post">
+          <label>Your Name</label>
+          <input type="text" class="form-control" name="nama" >
+          <label>Username</label>
+          <input type="text" class="form-control validation" onkeyup="return validate(this.name,this.value)" name="username" ><span class="valid-status" alt='invalid'></span>
+          <label>Email</label>
+          <input type="text" class="form-control validation" onkeyup="return validate(this.name,this.value)" name="email" ><span class="valid-status" alt='invalid'></span>
+          <label>Password</label>
+          <input type="password" class="form-control" name="password" >
+          <label>Confirm Password</label>
+          <input type="password" class="form-control" onkeyup="checkConfirmPasswd(this)" name="cpassword" >
+          <label>Phone Number</label>
+          <input type="text" class="form-control" name="phone" ><br><br>
+          <div class="checkbox">
+            <input type="checkbox" class="checkbox" name="isdriver" value="true">Also sign me up as a driver
+          </div>
+          <button type="submit" class="btn-register">REGISTER</button>
+        </form>
+        <a class="signin-link" href="login.php">Already Have an account?</a>
+        <br><br>
+      </div>
+    </div>
+  </body>
+</html>
+
+<?php
+require_once 'dbconfig.php';
+
+function register($data){
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  // Menyiapkan statement INSERT
+
+  $sqlquery = 'INSERT INTO userinfo (username, fullname, email, pass, phoneno, isdriver) VALUES (?, ?, ?, ?, ?, ?)';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+  mysqli_stmt_bind_param($stmt, "sssssi", $data->username,  $data->nama, $data->email,$data->password, $data->phone, $data->isdriver);
+  if(mysqli_stmt_execute($stmt)){
+    return true;
+  }
+  return false;
+}
+
+// Eksekusi
+function authenticate($username, $password) {
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT id, username, pass FROM userinfo WHERE username=?';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "s", $username);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    if(mysqli_stmt_num_rows($stmt) == 1) {
+      mysqli_stmt_bind_result($stmt, $hasil_id, $hasil_username, $hasil_password);
+      if(mysqli_stmt_fetch($stmt)){
+        if(password_verify($password, $hasil_password)){
+          // Hasil match
+          return $hasil_id;
+        }
+      }
+    }
+  }
+
+}
+
+if($_SERVER['REQUEST_METHOD'] == 'POST'){
+  $data = new \stdClass();
+  $data->username = $_POST['username'];
+  $data->password = password_hash($_POST['password'], PASSWORD_BCRYPT);
+  $data->nama = $_POST['nama'];
+  $data->email = $_POST['email'];
+  $data->phone = $_POST['phone'];
+  $data->isdriver = isset($_POST['isdriver']) ? 1 : 0;
+
+  if (register($data)) {
+    // header('Location : /');
+    if ($id = authenticate($_POST['username'], $_POST['password'])){
+      // $_SESSION['user_id'] = $id;
+      if ($data->isdriver) {
+        header('Location: profile.php?id_active=' . $id);
+        exit;
+      } else {
+        header('Location: order-ojek.php');
+        exit;
+      }
+    }
+  }
+}
+
+ ?>

src/select-driver.php

+<!DOCTYPE html>
+
+<?php
+  require_once 'dbconfig.php';
+
+  // Create connection
+  $conn = new mysqli(DB_SERVER,DB_USERNAME,DB_PASSWORD,DB_NAME);
+  // Check connection
+  if ($conn->connect_error) {
+      die("Connection failed: " . $conn->connect_error);
+  }
+
+  /* GET USER INFO */
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT username, fullname, email, phoneno, isdriver, avg_vote, n_voters, img_name FROM userinfo WHERE id=?';
+  $stmt = mysqli_prepare($conn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "i", $_GET['id_active']);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    mysqli_stmt_bind_result($stmt, $username, $fullname, $email, $phoneno, $isdriver, $avg_vote, $n_voters, $img_name);
+
+    mysqli_stmt_fetch($stmt);
+  }
+
+  /* SELECT DRIVER */
+  $sql = "SELECT * FROM userinfo, prefloc WHERE userinfo.id = prefloc.id";
+
+ ?>
+<html>
+<head>
+  <title>Select Driver</title>
+  <link rel="stylesheet" type="text/css" href="css/fan.css">
+  <link href="https://fonts.googleapis.com/css?family=Oswald|Roboto" rel="stylesheet">
+</head>
+<body>
+  <!-- Start Header -->
+  <header class="container">
+    <div class="row">
+      <div class="col-6">
+        <div class="title"><span class="green">PR-</span><span class="red">OJEK</span></div>
+        <div class="green">wushh... wushh... ngeeeeeenggg...</div>
+      </div>
+      <div class="col-6 right-align mt10">
+        Hi, <b><?php echo $username ?> !</b><br>
+        <a href=""><span class="blue">Logout</span></a>
+      </div>
+    </div>
+    <!-- Start Navigation -->
+    <nav class="mt10">
+      <ul>
+        <li><a href="order-ojek.php?id_active=<?php echo $_GET['id_active'] ?>">Order</a></li>
+        <li><a href="#" class="active">History</a></li>
+        <li><a href="profile.php?id_active=<?php echo $_GET['id_active'] ?>">My Profile</a></li>
+      </ul>
+    </nav>
+    <!-- End Navigation -->
+  </header>
+  <!-- End Header -->
+  <!-- Start Main -->
+  <main class="container">
+    <h1 class="uppercase">Make An Order</h1>
+    <!-- Start Status -->
+    <div class="row status">
+      <div class="col-3 border mr25">
+        <div class="col-4 numb"><div class="round-numb center-center">1</div></div>
+        <div class="col-8 p5">Select Destination</div>
+      </div>
+      <div class="col-3 border mr25 active">
+        <div class="col-4 numb"><span class="round-numb center-center">2</span></div>
+        <div class="col-8 p5">Select a Driver</div>
+      </div>
+      <div class="col-3 border">
+        <div class="col-4 numb"><span class="round-numb center-center">3</span></div>
+        <div class="col-8 p5">Complete your order</div>
+      </div>
+    </div>
+    <!-- End Status -->
+    <!-- Start Preferred Drivers -->
+    <div class="row border mt10 br8 px10">
+      <h2 class="uppercase mt5">Preferred Drivers:</h2>
+      <ul class="driver">
+<?php
+  $result = $conn->query($sql);
+  $n_pref = 0;
+  if ($result->num_rows > 0) {
+    // output data of each row
+    while($row = $result->fetch_assoc()) {
+        if ($row['location'] == $_POST['source'] || $row['location'] == $_POST['destination']) {
+          if (isset($_POST['prefdriver']) && $row['username'] == $_POST['prefdriver']) {
+            $n_pref++;
+            echo
+              '<li class="row">'.
+                '<div class="col-4 photo-container p15 ">'.
+                  '<img src="img/'.$row['img_name'] .'" class="border">'.
+                '</div>'.
+                '<div class="col-8">'.
+                  '<h3 class="mb0">' . $row['fullname'] .'</h3>'.
+                  '<div class="rating"><span class="orange">&#9734; '. $row['avg_vote'] ."   ".'</span>('.$row['n_voters']. 'votes)</div>'.
+                //  <?php echo'.'complete-order.php?id_active='.$_GET['id_active'];
+                  '<form method="post" action="'. 'complete-order.php?id_active='.$_GET["id_active"]. '" >'.
+                    '<input type="hidden" name="source" value="'.$_POST["source"].' "/>'.
+                    '<input type="hidden" name="destination" value="'. $_POST['destination'] . '"/>'.
+                    '<input type="hidden" name="u_driver" value="'. $row['id']. '"/>'.
+                    '<div class="right-align mt25">'.
+                    '<input class="uppercase btn green-bg" type="submit" value="I choose you!"/>'.
+                    '</div>'.
+                  '</form>'.
+                '</div>'.
+              '</li>';
+          }
+        }
+    }
+
+  }
+
+    if ($n_pref == 0) {
+      echo '<div class="center-align mb25 grey">Nothing to display :(</div>';
+    }
+  ?>
+</ul>
+    </div>
+    <!-- End Preferred Drivers -->
+    <!-- Start Other Drivers -->
+    <div class="row border mt5 br16 px10">
+      <h2 class="uppercase mt5 mb0">Other Drivers:</h2>
+      <ul class="driver">
+        <?php
+          $result = $conn->query($sql);
+          $n_pref = 0;
+          if ($result->num_rows > 0) {
+            // output data of each row
+            while($row = $result->fetch_assoc()) {
+                if ($row['location'] == $_POST['source'] || $row['location'] == $_POST['destination']) {
+                  if (isset($_POST['prefdriver']) && $row['username'] != $_POST['prefdriver']) {
+                    $n_pref++;
+                    echo
+                      '<li class="row">'.
+                        '<div class="col-4 photo-container p15 ">'.
+                          '<img src="img/'.$row['img_name'] .'" class="border">'.
+                        '</div>'.
+                        '<div class="col-8">'.
+                          '<h3 class="mb0">' . $row['fullname'] .'</h3>'.
+                          '<div class="rating"><span class="orange">&#9734; '. $row['avg_vote'] ."   ".'</span>('.$row['n_voters']. 'votes)</div>'.
+                        //  <?php echo'.'complete-order.php?id_active='.$_GET['id_active'];
+                          '<form method="post" action="'. 'complete-order.php?id_active='.$_GET["id_active"]. '" >'.
+                            '<input type="hidden" name="source" value="'.$_POST["source"].' "/>'.
+                            '<input type="hidden" name="destination" value="'. $_POST['destination'] . '"/>'.
+                            '<input type="hidden" name="u_driver" value="'. $row['id']. '"/>'.
+                            '<div class="right-align mt25">'.
+                            '<input class="uppercase btn green-bg" type="submit" value="I choose you"/>'.
+                            '</div>'.
+                          '</form>'.
+                        '</div>'.
+                      '</li>';
+                  }
+                }
+            }
+
+          }
+
+            if ($n_pref == 0) {
+              echo '<div class="center-align mb25 grey">Nothing to display :(</div>';
+            }
+          ?>
+    </div>
+    <!-- End Other Drivers -->
+  </main>
+  <!-- End Main -->
+</body>
+</html>

src/update.php

+<?php
+require_once 'dbconfig.php';
+
+$sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+if (!$sqlconn) {
+  die('mySQL connection failed');
+}
+
+$username = $_POST["username"];
+
+if (isset($_FILES["fileToUpload"])){
+    $target_dir = "img/";
+    $target_file = $target_dir . basename($_FILES["fileToUpload"]["name"]);
+    $uploadOk = 1;
+    $imageFileType = pathinfo($target_file,PATHINFO_EXTENSION);
+    // Check if image file is a actual image or fake image
+    if(isset($_POST["submit"])) {
+        $check = getimagesize($_FILES["fileToUpload"]["tmp_name"]);
+        if($check !== false) {
+            echo "File is an image - " . $check["mime"] . ".";
+            $uploadOk = 1;
+        } else {
+            echo "File is not an image.";
+            $uploadOk = 0;
+        }
+    }
+    if ($_FILES["fileToUpload"]["size"] > 500000) {
+        echo "Sorry, your file is too large.";
+        $uploadOk = 0;
+    }
+    // Allow certain file formats
+    if($imageFileType != "jpg" && $imageFileType != "png" && $imageFileType != "jpeg"
+    && $imageFileType != "gif" ) {
+        echo "Sorry, only JPG, JPEG, PNG & GIF files are allowed.";
+        $uploadOk = 0;
+    }
+    // Check if $uploadOk is set to 0 by an error
+    if ($uploadOk == 0) {
+        echo "Sorry, your file was not uploaded.";
+    // if everything is ok, try to upload file
+    } else {
+        if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) {
+            echo "The file ". basename( $_FILES["fileToUpload"]["name"]). " has been uploaded.";
+            $newphoto = basename( $_FILES["fileToUpload"]["name"]);
+            $sqlquery = "UPDATE userinfo SET img_name=? WHERE username=?";
+            $stmt = mysqli_prepare($sqlconn, $sqlquery);
+            mysqli_stmt_bind_param($stmt, "ss", $newphoto, $username);
+            mysqli_stmt_execute($stmt);
+        } else {
+            echo "Sorry, there was an error uploading your file.";
+        }
+    }
+}
+
+if (isset($_POST["name"])) {
+  $newname = $_POST["name"];
+  $sqlquery = "UPDATE userinfo SET fullname=? WHERE username=?";
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+  mysqli_stmt_bind_param($stmt, "ss", $newname, $username);
+  mysqli_stmt_execute($stmt);
+}
+
+if (isset($_POST["phone"])) {
+  $newphone = $_POST["phone"];
+  $sqlquery = "UPDATE userinfo SET phoneno=? WHERE username=?";
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+  mysqli_stmt_bind_param($stmt, "ss", $newphone, $username);
+  mysqli_stmt_execute($stmt);
+}
+
+if (isset($_POST["isdriver"])){
+  $isdriver=1;
+  $sqlquery = "UPDATE userinfo SET isdriver=? WHERE username=?";
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+  mysqli_stmt_bind_param($stmt, "is", $isdriver, $username);
+  mysqli_stmt_execute($stmt);
+}else {
+  $isdriver=0;
+  $sqlquery = "UPDATE userinfo SET isdriver=? WHERE username=?";
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+  mysqli_stmt_bind_param($stmt, "is", $isdriver, $username);
+  mysqli_stmt_execute($stmt);
+}
+
+header('Location: profile.php?id_active=' . $_POST["id_active"]);
+?>
\ No newline at end of file

src/validate.php

+<?php
+require_once 'dbconfig.php';
+function validateUsername($username) {
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  //echo 'SUCCESS';
+
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT id FROM userinfo WHERE username=?';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "s", $username);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    if(mysqli_stmt_num_rows($stmt) == 1) {
+      mysqli_stmt_bind_result($stmt, $hasil_id);
+      if(mysqli_stmt_fetch($stmt)){
+        /* Hasil match buat session */
+        return $hasil_id;
+      }
+    }
+  }
+  return 0;
+}
+
+function validateEmail($email) {
+  $sqlconn = mysqli_connect(DB_SERVER, DB_USERNAME, DB_PASSWORD, DB_NAME);
+  if (!$sqlconn) {
+    die('mySQL connection failed');
+  }
+
+  // Menyiapkan statement SELECT
+  $sqlquery = 'SELECT id FROM userinfo WHERE email=?';
+  $stmt = mysqli_prepare($sqlconn, $sqlquery);
+
+  // Bind variables
+  mysqli_stmt_bind_param($stmt, "s", $email);
+
+  if(mysqli_stmt_execute($stmt)){
+    // Simpan Hasil query
+    mysqli_stmt_store_result($stmt);
+    // username exist
+    if(mysqli_stmt_num_rows($stmt) == 1) {
+      mysqli_stmt_bind_result($stmt, $hasil_id);
+      if(mysqli_stmt_fetch($stmt)){
+        /* Hasil match buat session */
+        return $hasil_id;
+      }
+    }
+  }
+  return 0;
+}
+if ($_SERVER['REQUEST_METHOD'] == 'GET'){
+  switch ($_GET['form']) {
+    case 'username':
+    if (validateUsername($_GET['value'])){
+      echo 'invalid';
+    } else {
+      echo 'valid';
+    }
+    break;
+
+    case 'email':
+    if (validateEmail($_GET['value'])){
+      echo 'invalid';
+    } else {
+      echo 'valid';
+    }
+    break;
+  }
+}
+// echo $response;
+ ?>