PAL.C.T MINI SHELL
<div class='news_tittle'>
<h4> Data Pemesanan dan data anda </h4>
</div>
<?php
$email = $_POST['email'];
$password = md5($_POST['password']);
$sql = "SELECT * FROM kustomer WHERE email='$email' AND password='$password'";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
$row = mysql_num_rows($hasil);
if($_SESSION['namauser_staf'] != "" AND $_SESSION['id_kustomer'] != "")
{
if($_POST['no_invoice'] != "")
{
//$email_dipakai = $_POST[email];
$no_invoice = $_POST[no_invoice];
$_SESSION['no_invoice'] = $no_invoice;
//echo $_SESSION['no_invoice'];
}
else{
// $email_dipakai = $_SESSION['kustomer'];
$no_invoice = $_SESSION['no_invoice'];
//echo $no_invoice;
}
$sql = "SELECT * FROM kustomer WHERE id_kustomer = '$_SESSION[id_kustomer]' ";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
$row = 1;
}
elseif($_SESSION['namauser'] != "")
{
$row = 1;
if($_SESSION[leveluser] == "admin")
{
if($_POST['email'] != "")
{
$email_dipakai = $email;
}
else{
$email_dipakai = $_SESSION[namauser];
}
}
else{
if($email != "")
{
$email_dipakai = $email;
}
else{
$email_dipakai = $_SESSION[namauser];
}
}
}
else{
if($email != "")
{
$email_dipakai = $email;
}
else{
$email_dipakai = $_SESSION[namauser];
}
}
if($row == 0){
echo "Email atau Password Anda tidak benar<br />";
echo "<a href=javascript:history.go(-1)><b>Ulangi Lagi</b></a>";
}
else{
//echo "tes $email : $_SESSION[leveluser] ".$email_dipakai;
session_start();
$sid_baru = session_id();
if($_SESSION['kustomer'] != "")
{
$sql = "SELECT * FROM kustomer WHERE email='$email_dipakai'";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
$sqlh = "SELECT * FROM kustomer WHERE email='$email_dipakai'";
$hasilh = mysql_query($sqlh);
$rh = mysql_fetch_array($hasilh);
}
elseif($_SESSION['namauser'] != "")
{
if($_SESSION[leveluser] == "admin")
{
$sql = "SELECT * FROM kustomer WHERE email='$email_dipakai'";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
$sqlh = "SELECT * FROM kustomer WHERE email='$email_dipakai'";
$hasilh = mysql_query($sqlh);
$rh = mysql_fetch_array($hasilh);
}
else{
$sql = "SELECT * FROM kustomer WHERE email='$email_dipakai' AND password='$_SESSION[passuser]'";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
$sqlh = "SELECT * FROM kustomer WHERE email='$email_dipakai' AND password='$_SESSION[passuser]'";
$hasilh = mysql_query($sqlh);
$rh = mysql_fetch_array($hasilh);
}
}
else{
include "member/timeout.php";
$_SESSION['KCFINDER']=array();
$_SESSION['KCFINDER']['disabled'] = false;
$_SESSION['KCFINDER']['uploadURL'] = "../tinymcpuk/gambar";
$_SESSION['KCFINDER']['uploadDir'] = "../tinymcpuk/gambar";
$_SESSION[namauser] = $r[email];
$_SESSION[namalengkap] = $r[nama_lengkap];
$_SESSION[passuser] = $r[password];
$_SESSION[leveluser] = $r[level];
// session timeout
$_SESSION[login] = 1;
timer();
mysql_query("UPDATE users SET id_session='$sid_baru' WHERE email = '$email_dipakai'");
}
$alamat = $r[alamat];
if($_SESSION['namauser_staf'] != "" AND $_SESSION['id_kustomer'] != "")
{
$metode_pengiriman = "-";
}
else{
$metode_pengiriman = $r[metode_pengiriman];
}
echo "
<b>Data pemesan adalah sebagai berikut</b>: <br />
<table>
";
if($_SESSION['namauser_staf'] != "" AND $_SESSION['id_kustomer'] != "")
{ $a = mysql_fetch_array(mysql_query("SELECT * FROM kustomer WHERE id_kustomer = '$_SESSION[id_kustomer]'"));
$explode_alamat = explode("|",$a[alamat]);
$alamat = $explode_alamat[0];
$prov = $explode_alamat[1];
$kab = $explode_alamat[2];
$kec = $explode_alamat[3];
echo "
<tr><td>Nama </td><td> :</td><td> $a[nama_lengkap] </td></tr>
<tr><td>Perusahaan </td><td> :</td><td> $a[perusahaan] </td></tr>
<tr><td valign=top>Alamat </td><td valign=top> : </td><td> $alamat </td></tr>
<tr><td>Kota </td><td> :</td><td> $a[kota] </td></tr>
<tr><td>Kecamatan </td><td> :</td><td> $kec </td></tr>
<tr><td>Kab./Kota </td><td> :</td><td> $kab </td></tr>
<tr><td>Provinsi </td><td> :</td><td> $prov </td></tr>
<tr><td>Kode Pos </td><td> :</td><td> $a[kodepos] </td></tr>
<tr><td>Telpon </td><td> :</td><td> $a[telpon] </td></tr>
";
} else {
echo "
<tr><td>Nama </td><td> :</td><td> $r[nama_lengkap] </td></tr>
<tr><td>Perusahaan </td><td> :</td><td> $r[perusahaan] </td></tr>
<tr><td>E-mail </td><td> :</td><td> $email_dipakai </td></tr>
<tr><td valign=top>Alamat </td><td valign=top> : </td><td> $alamat </td></tr>
<tr><td>Kota </td><td> :</td><td> $r[kota] </td></tr>
<tr><td>Kode Pos </td><td> :</td><td> $r[kodepos] </td></tr>
<tr><td>Telpon </td><td> :</td><td> $r[telpon] </td></tr>
<tr><td>Metode Pengiriman </td><td> :</td><td> <b> $metode_pengiriman </b></tsd></tr>
"; }
echo "
</table>
<br><br>
<legend>Pembelian :</legend>";
/* MENAMPILKAN DATA BELANJAAN*/
$sql = mysql_query("SELECT * FROM orders_temp
WHERE id_session = '$sid'");
echo "
<form method=post action=aksi.php?module=keranjang&act=update>
<table border=0 cellpadding=3 align=center class='col-xs-12'>
<tbody>
<tr bgcolor=#6da6b1><th>No</th><th>Produk</th><th>Nama Produk</th><th>Berat(Berat Total)</th><th>Qty</th>
<th>Harga</th><th>Sub Total</th></tr>";
$no=1;
$berat = 1;
while($r=mysql_fetch_array($sql)){
//echo $r['kode'].", ".$r['id_produk'];
//echo $r[sumber];
// echo "SELECT * FROM produk, produk_main WHERE produk_main.kode_barang = '$r[kode]'
// AND produk.id_produk = '$r[id_produk]' AND produk_main.kode_barang = produk.kode";
if($r[sumber] == 'induk')
{
//$rs = mysql_fetch_array(mysql_query("SELECT * FROM produk, produk_main WHERE produk_main.kode_barang = '$r[kode]'
// AND produk.id_produk = '$r[id_produk]' AND produk_main.kode_barang = produk.kode"));
$rs = mysql_fetch_array(mysql_query("SELECT * FROM produk, produk_main WHERE produk_main.kode_barang = '$r[kode]'
AND produk.id_produk = '$r[id_produk]' AND produk_main.kode_barang = produk.kode "));
$rs = mysql_fetch_array(mysql_query("SELECT * FROM produk, produk_main WHERE produk_main.kode_barang = '$r[kode]'
AND produk_main.kode_barang = produk.kode "));
$nama_produk = $rs[nama_produk];
//echo $rs[id_];
//Cek, Produk di Subdomain atau tidak
$cek = mysql_fetch_array(mysql_query("SELECT * FROM brand WHERE id_brand = '$rs[id_brand]' "));
//echo $cek['url'];
if($cek['url'] == "") // Tidak ada Subdomain
{// echo "1";
$nama_produk = "<a target='_blank' href='".$base_url."produk-$rs[id_produk]-$rs[produk_seo].html'>$rs[nama_produk]</a>";
}
else{
//echo "2";
$url = $cek['url'];
$subdomain = explode('.', $url);
$subdomain = $subdomain[0];
$nama_produk = "<a target='_blank' href='".$base_url."sub/".$subdomain."-produk-$rs[id_produk]-$rs[produk_seo].html'>$rs[nama_produk]</a>";
}
//echo $r[id_produk];
$harga_tampil = tampil_list2($rs[harga], $rs[diskon], $rs[harga_promo]);
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = number_format(($harga_tampil),0,",",".");
$rs1 = mysql_fetch_array(mysql_query("SELECT * FROM produk, produk_main WHERE produk.kode = '$r[kode]' "));
$berat = $rs['berat'];
$gambar = "<img src='images/img_produk/small_$rs[foto1]'>";
}
elseif($r[sumber] == 'domain')
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM produk_subdomain, produk_main WHERE produk_subdomain.kode = '$r[kode]'
AND produk.id_produk = '$r[id_produk]' "));
$nama_produk = $rs[nama_produk_subdomain];
$harga_tampil = tampil_list2($rs[harga], $rs[diskon], $rs[harga_promo]);
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = number_format(($harga_tampil),0,",",".");
$berat = $rs['berat'];
$gambar = "<img src='images/img_produk/small_$rs[foto1]'>";
}
elseif($r[sumber] == 'fatools')
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM fatools WHERE kode_tool = '$r[kode]'
AND id = '$r[id_produk]' "));
$produk_seo = seo_title($rs['nama_tool']);
$url = "produk-$rs[id]-$produk_seo.html";
$nama_produk = "<a target='_blank' href='".$base_url."fatools/produk-$r[id_produk]-$produk_seo.html'>$rs[nama_tool] - $r[kode]</a>";
$harga_tampil = $rs[harga];
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = number_format(($harga_tampil),0,",",".");
$berat = $rs['berat'];
// $gambar = "<img src='subdomain/fatools/images/$rs[foto1]' class='col-xs-12'>";
$gambar = "<img src='fatools/images/$rs[foto1]' class='col-xs-12'>";
if(file_exists("fatools/images/$r[id_produk].jpg"))
{
$gambar = "<img src='fatools/images/$r[id_produk].jpg' class='col-xs-12'>";
}
else
{
$gambar = "<img src='fatools/images/$r[id_produk].JPG' class='col-xs-12'>";
}
}
elseif($r[sumber] == 'kaercher')
{
if($r[kode] == 1)
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM kaercher_home_produk
WHERE id_produk = '$r[id_produk]' "));
$berat = $rs['berat'];
$produk_seo = seo_title($rs['nama_produk']);
$url = "produk-$rs[id_produk]-$produk_seo.html";
$edith = mysql_query("SELECT * FROM kaercher_harga WHERE id_produk = '$r[id_produk]' AND id_data = '1' ");
$rh = mysql_fetch_array($edith);
}
elseif($r[kode] == 2)
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM kaercher_home_accessories
WHERE id_acc = '$r[id_produk]' "));
$berat = $rs['berat'];
$produk_seo = seo_title($rs['nama_acc']);
$url = "produk-$rs[id_acc]-$produk_seo.html";
$edith = mysql_query("SELECT * FROM kaercher_harga WHERE id_produk = '$r[id_produk]' AND id_data = '2' ");
$rh = mysql_fetch_array($edith);
}
elseif($r[kode] == 3)
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM kaercher_pro_produk
WHERE id_produk = '$r[id_produk]' "));
$berat = $rs['berat'];
$produk_seo = seo_title($rs['nama_produk']);
$url = "produk-$rs[id_produk]-$produk_seo.html";
$edith = mysql_query("SELECT * FROM kaercher_harga WHERE id_produk = '$r[id_produk]' AND id_data = '3' ");
$rh = mysql_fetch_array($edith);
}
elseif($r[kode] == 4)
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM kaercher_pro_accessories
WHERE id_acc = '$r[id_produk]' "));
$berat = $rs['berat'];
$produk_seo = seo_title($rs['nama_acc']);
$url = "produk-$rs[id_acc]-$produk_seo.html";
$edith = mysql_query("SELECT * FROM kaercher_harga WHERE id_produk = '$r[id_produk]' AND id_data = '4' ");
$rh = mysql_fetch_array($edith);
}
$harga_tampilas = $rh[harga];
$nama_produk = "<a target='_blank' href='".$base_url."kaercher/produk-$r[id_produk]-$produk_seo.html'> Kaercher - $rs[nama_produk]</a>";
$harga_tampil = $harga_tampilas;
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = format_rupiah(($harga_tampil));
if(file_exists("kaercher/images/img_produk/$r[foto1]"))
{
$gambar = "<img src='kaercher/images/img_produk/medium_$rs[foto1]' class='col-xs-12'>";
}
else
{
$gambar = "<img src='kaercher/images/img_produk/medium_$rs[foto1]' class='col-xs-12'>";
}
}
elseif($r[sumber] == 'rainbow')
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM rainbow WHERE kode = '$r[kode]'
AND id = '$r[id_produk]' "));
$produk_seo = seo_title($rs['nama_produk']);
$url = "produk-$rs[id]-$produk_seo.html";
$nama_produk = "<a target='_blank' href='".$base_url."rainbow/produk-$r[id_produk]-$produk_seo.html'>$rs[nama_produk] - $r[kode]</a>";
$harga_tampil = $rs[harga];
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = number_format(($harga_tampil),0,",",".");
$berat = $rs['berat'];
// $gambar = "<img src='subdomain/fatools/images/$rs[foto1]' class='col-xs-12'>";
$gambar = "<img src='rainbow/images/$rs[foto1]' class='col-xs-12'>";
if(file_exists("rainbow/images/$r[id_produk].jpg"))
{
$gambar = "<img src='rainbow/images/$r[id_produk].jpg' class='col-xs-12'>";
}
else
{
$gambar = "<img src='rainbow/images/$r[id_produk].JPG' class='col-xs-12'>";
}
}
elseif($r[sumber] == 'bosch')
{
$rs = mysql_fetch_array(mysql_query("SELECT * FROM bosch_produk, produk_main WHERE bosch_produk.kode = '$r[kode]'
AND produk_main.id_main_produk = '$r[id_produk]' "));
$rs = mysql_fetch_array(mysql_query("SELECT * FROM bosch_produk, produk_main WHERE produk_main.kode_barang = '$r[kode]'
AND produk_main.kode_barang = bosch_produk.kode "));
$produk_seo = seo_title($rs['nama_tool']);
$url = "bosch/produk-$rs[id_produk]-$rs[produk_seo].html";
$nama_produk = "<a target='_blank' href='".$base_url.$url."'>$rs[nama_produk]</a>";
$harga_tampil = tampil_list2($rs[harga], $rs[diskon], $rs[harga_promo]);
$harga1 = $rs['harga_t1']; $harga2 = $rs['harga_t2']; $harga3 = $rs['harga_t3']; $harga4 = $rs['harga_t4'];
$harga_tampil = harga_berdasarkan_t($harga_tampil, $harga1, $harga2, $harga3, $harga4);
$hargadisc = number_format(($harga_tampil),0,",",".");
$berat = $rs['berat'];
$gambar = "<img src='bosch/images/img_produk/$rs[foto1]' class='col-xs-12' style='max-width:200px;'>";
}
$subtotal = $harga_tampil * $r[jumlah];
$total = $total + $subtotal;
$subtotal_rp = format_rupiah($subtotal);
$sub_total_berat = $berat * $r[jumlah];
$total_berat = $total_berat + $sub_total_berat;
$total_rp = format_rupiah($total);
$harga = format_rupiah($rs[harga]);
echo "<tr bgcolor=#f0f0f0><td>$no</td><input type=hidden name=id[$no] value=$r[id_orders_temp]>
<td align=center><br>$gambar</td>
<td>$nama_produk</td>
<td>$berat ($sub_total_berat)</td>
<td>$r[jumlah]</td>
<td>$hargadisc</td>
<td>$subtotal_rp</td>
</tr>";
$no++;
}
echo "<tr><td colspan=2 align=left><!-- PPN / non PPN <select name='NPN' onChange='this.form.submit()'>";
if($_GET['id'] == "belanja-NPPN"){
echo "<option value = 'NPPN' > tanpa PPN </option>
<option value = 'PPN'> dengan PPN </option>";
$total_rp_awal = format_rupiah($total);
$total_rp_net = $total;
$total_hitung = format_rupiah(ceil($total_rp_net / 11));
$total = $total / 1.1;
$total_rp_akhir = "Rp. <b>".format_rupiah($total).",-</b>";
$perhitungan = "($total_hitung,-)";
$keterangan = "Harga belum termasuk PPN";
$grand_total = "<b>Total</b> (Tanpa PPN)";
$button_next = "<a href='selesai-belanja-NPPN.html' class='btn btn-success'> Selesai Belanja </a>";
$ket = "(harga belum termasuk PPN)";
$ket_ppn = "<b>PPN</b>";
}
elseif($_GET['id'] == "belanja-PPN")
{
echo "<option value = 'PPN'> dengan PPN </option>
<option value = 'NPPN'> tanpa PPN </option>";
$total_rp_awal = format_rupiah($total);
$keterangan = "Harga sudah termasuk PPN";
$button_next = "<a href='selesai-belanja-PPN.html' class='btn btn-success'> Selesai Belanja </a>";
$ket = "(harga termasuk PPN)";
}
else{
echo "<option value = 'PPN'> dengan PPN </option>
<option value = 'NPPN'> tanpa PPN </option>";
$total_rp_awal = format_rupiah($total);
$keterangan = "Harga sudah termasuk PPN";
$button_next = "<a href='selesai-belanja-PPN.html' class='btn btn-success'> Selesai Belanja </a>";
$ket = "(harga termasuk PPN)";
}
$email = $email_dipakai;
$password = md5($_POST['password']);
$sql = "SELECT * FROM kustomer WHERE email='$email' ";
$hasil = mysql_query($sql);
$r = mysql_fetch_array($hasil);
//echo $r['metode_pengiriman'].",";
$metode_pengiriman = $r['metode_pengiriman'];
$kode_unik = rand(100,1000);
$sql_jen = mysql_fetch_array(mysql_query("SELECT * FROM jne WHERE nama_kota like '$r[kota]' "));
$ongkir = $sql_jen['jne_reg'];
$berat_patokan = $max_berat;
// $total_berat = 21;
if($total_berat == 0)
{
$total_berat = 1;
}
else{
$total_berat = ceil($total_berat);
}
$kurir = $metode_pengiriman;
if($metode_pengiriman == "JNE" AND $total_berat <= $berat_patokan)
{
$ongkir = $total_berat * $ongkir;
$kurir = "JNE";
}
elseif($metode_pengiriman == "JNE" AND $total_berat > $berat_patokan)
{
$ongkir = 0;
$kurir = "JNE";
}
else{
$ongkir = 0;
$kurir = $metode_pengiriman;
}
$ongkir_tampil = format_rupiah($ongkir);
if($_SESSION['namauser_staf'] != "" AND $_SESSION['id_kustomer'] != "")
{
$kode_unik = 0;
$ongkir = 0;
}
$grand_total = $kode_unik + $total + $ongkir;
$grand_total_tampil = format_rupiah($grand_total);
echo "</select> -->
<br>
</td>
<td>
$metode_pengiriman,
$total_berat
</td>
<td colspan=3 align=right><br> Total </td>
<td colspan=3 align=right><br>$total_rp_awal,-</td>
</tr>
";
if($_SESSION['namauser_staf'] == "" AND $_SESSION['id_kustomer'] == "")
{
echo "<tr>
<td colspan=5 align=right> Kode Unik</td>
<td colspan=3 align=right> $kode_unik,- </td>
</tr>";
if($metode_pengiriman == "JNE" AND $total_berat <= $berat_patokan)
{
echo "
<tr>
<td colspan=5 align=right> Ongkir </td>
<td colspan=3 align=right> $ongkir_tampil,- </td>
</tr>";
}
elseif($metode_pengiriman == "JNE" AND $total_berat > $berat_patokan)
{
echo "
<tr>
<td colspan=5 align=right> Ongkir </td>
<td colspan=3 align=right> TBC,- </td>
</tr>";
}
}
echo "
<tr>
<td colspan=5 align=right> <b> Grand Total </b> </td>
<td colspan=3 align=right><b>Rp.$grand_total_tampil,- </b></td>
</tr>
</tbody>
</table>
</form>
";
?>
<form name=form2 action="simpan-transaksi-member.html" method=POST onSubmit=\"return validasi2(this)\">
<input type=hidden name='email' size=30 class='form-control' value="<?php echo $email_dipakai; ?> ">
<input type=hidden name='password' size=30 class='form-control' value="<?php echo $rh[password]; ?>">
<input id='no_invoice' type=hidden name='no_invoice' class='form-control' value="<?php echo $no_invoice; ?>">
<input id='kode_unik' type=hidden name=kode_unik class='form-control' value="<?php echo $kode_unik; ?>">
<input id='kurir' type=hidden name=kurir class='form-control' value="<?php echo $kurir; ?>">
<input id='metode_pengiriman' type=hidden name=metode_pengiriman class='form-control' value="<?php echo $metode_pengiriman; ?>">
<input id='ongkir' type=hidden name=ongkir class='form-control' value="<?php echo $ongkir; ?>">
<input id='berat_paket' type=hidden name=berat_paket class='form-control' value="<?php echo $total_berat; ?>">
Catatan Pemesanan : <br>
<textarea name="catatan" class='form-control'></textarea>
<hr>
<input type='submit' class='btn btn-primary pull-right' value='Confirm'>
<a href='javascript:history.go(-1)' class='btn btn-warning'>Batal</a>
</form>
<br><br>
<?php
}
?>
y~or�5J�={Ee�u磝Qk���ᯘG{?+]ן?�wM3X�^歌>{7پK>on\jy�R�g/=fOr�oNVv~Y+�NGuÝHWyw[eQʨSb>�>}Gmx[o[<�{Ϯ_qF�vM����IENDB`