Skip to content
Snippets Groups Projects
Commit 24e5a34b authored by Arya Pradipta's avatar Arya Pradipta
Browse files

adding security

parent e759d740
Branches
No related merge requests found
Pipeline #5239 passed with stages
in 8 minutes and 33 seconds
<?php <?php
#ambil json nya kelompok sebelah
$json = file_get_contents('http://pplk2b.if.itb.ac.id/api/user');
$obj = json_decode($json);
$obj = $obj->data;
// $arrSearch = array_search($_POST['email'], $obj);
// print_r($obj);
$arrSearch = false;
foreach ($obj as $iterate) {
if ($iterate->email == $_POST['email']) {
$arrSearch = $iterate;
break;
}
}
if ($arrSearch == false) {
echo ('Email tidak terdaftar.');
echo (' Klik <a href="admin/akun.html">disini</a> untuk kembali.');
exit();
}
$tmpName = $_FILES['file']['tmp_name']; $tmpName = $_FILES['file']['tmp_name'];
// var_dump(file($tmpName)); // var_dump(file($tmpName));
$csvAsArray = array_map('str_getcsv', file($tmpName)); $csvAsArray = array_map('str_getcsv', file($tmpName));
...@@ -23,3 +41,4 @@ $stmt = $conn->query($sqlInsert); ...@@ -23,3 +41,4 @@ $stmt = $conn->query($sqlInsert);
$conn->close(); $conn->close();
echo ('Pengisian data sukses!'); echo ('Pengisian data sukses!');
echo (' Klik <a href="admin/akun.html">disini</a> untuk kembali.');
<html lang="en">
<head>
<meta charset="utf-8">
<link rel="icon" href="favicon.ico">
<title>Akun</title>
<!-- Bootstrap core CSS -->
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css" integrity="sha384-Gn5384xqQ1aoWXA+058RXPxPg6fy4IWvTNh0E263XmFcJlSAwiGgFAW/dAiS6JXm" crossorigin="anonymous">
</head>
<body>
<h1>Halaman Pendaftaran User</h1>
<br> <br>
<form method="post" enctype="multipart/form-data" action="../addUser.php"> <form method="post" enctype="multipart/form-data" action="../addUser.php">
<table> <table>
<tr> <tr>
...@@ -10,6 +23,16 @@ ...@@ -10,6 +23,16 @@
<td><input type="submit" name="submit" /></td> <td><input type="submit" name="submit" /></td>
</tr> </tr>
</table> </table>
<input type="hidden" id="email" name="email" value="null">
</form> </form>
Download contoh file csv <a href="Template_Tambah_User.csv">disini</a> Download contoh file csv <a href="Template_Tambah_User.csv">disini</a>
<script>
var email = prompt("Masukkan email admin\nHarap memasukkan email sesuai dengan email admin dari PMO-Talent", "");
document.getElementById("email").value = email;
</script>
</body>
</html>
\ No newline at end of file
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment