Perancangan Aplikasi Forum Diskusi Berbasis Web

(1)

LAMPIRAN

<title>Forum DIskusi - Mari Berdiskusi Disini</title>

(2)

var auto_refresh = setInterval(

<nav class="navbar navbar-default navbar-fixed-top" role="navigation" id="navbar"> class="fa fa-edit fa-fw"></i> Postingan</a> </li>

(3)

<?php

switch($_GET['menu']){ default:

?>

<! INDEX --->

<i class="fa fa- fa-fw"></i> Diskusi Terbaru

</div>

<div class="panel-body"> <div class="list-group"> <?php

$kompromi=mysql_query("SELECT * FROM komprom ORDER BY id_komprom DESC LIMIT 20");

while($k=mysql_fetch_array($kompromi)) {

echo "<a href=index.php?menu=kompromi&id=$k[id_komprom] class=\"list-group-item\" ><i class=\"fa fa-tasks fa-fw\"></i> $k[judul]

<span class=\"pull-right text-muted small\"> <em>$k[tanggal]</em>

</span> </a>"; }

?> </div>

</div> </div>

</div>

</div>

<?php break;

case "kompromi": ?>

<! Menu POSTINGAN --->

if (form.komentar.value == ""){

(4)

return (false); }

return (true); }

</script>

<?php

$cekterbuka=mysql_query("SELECT * FROM komprom WHERE id_komprom=$_GET[id]");

$ck=mysql_fetch_array($cekterbuka);

if($ck[status] == 0) { //include "list-user.php"; }

else {

} ?>

<i class="fa fa-comments fa-fw"></i> Ruang Diskusi

</div>

<div class="panel-body"> <?php

$kompromi1=mysql_query("SELECT * FROM komprom WHERE id_komprom=$_GET[id]");

$k=mysql_fetch_array($kompromi1);

$tampilkanjoin=mysql_query("SELECT * FROM `join` WHERE

username_request='$_SESSION[namauser]' AND id_komprom='$_GET[id]'");

$u=mysql_fetch_array($tampilkanjoin);

?>

<div class="panel panel-default"> <div class="panel-heading"> <h4 class="panel-title"> <?php echo "$k[judul] - Oleh: <b>$k[username]</b>"; ?>

</h4> </div>

(5)

</div>

$_SESSION[namauser] OR $u[status_join]==1 OR $k[status]==1 ) {

$join=mysql_query("SELECT

* FROM `join` WHERE username_request='$_SESSION[namauser]' AND id_komprom='$_GET[id]'");

echo "<input type='submit' value='Anda Tidak Diizinkan Untuk Bergabung' class='btn btn-danger btn-lg btn-block'>";

}

else {

(6)

}

type='submit' value='Join' class='btn btn-primary btn-lg btn-block'>

</form>";

if (form.keterangan.value == ""){

alert("Kotak Laporan Tidak Boleh Kosong."); form.keterangan.focus();

(7)

$kompromi1=mysql_query("SELECT * FROM komprom AS a, komentar AS b WHERE a.id_komprom=b.id_komprom AND b.id_komentar='$_GET[id]' AND a.id_komprom='$_GET[komprom]' ORDER BY b.username");

$k=mysql_fetch_array($kompromi1);

$tampilkanjoin=mysql_query("SELECT * FROM `join` WHERE username_request='$_SESSION[namauser]'");

$u=mysql_fetch_array($tampilkanjoin); ?>

</h4> </div>

<div class="panel-body"> <form

action="aksi.php?menu=inputlaporan" method="post" onSubmit="return validasi(this)">

<label>Isikan keterangan dibawah ini untuk dilaporkan kepada Administrator</label>

</form>

</div> </div> </div>

</div> </div>

</div>

(8)

<?php

<tr><th>No</th><th>Judul</th><th>Tanggal

Posting</th><th>Status Forum</th><th>Pilihan</th></tr></thead> <tbody>";

$tampil=mysql_query("SELECT * FROM komprom WHERE username = '$_SESSION[namauser]' ORDER BY id_komprom DESC");

$no=1;

(9)

</a>";

echo "</tbody></table></div>"; ?>

<form method=POST action='aksi.php?menu=insertpostingan'> <input type=hidden name=username

value='$_SESSION[namauser]'>

(10)

<label class=\"control-label\" for=\"inputSuccess1\">Judul</label>

</div>

<label class=\"control-label\" for=\"inputSuccess1\">Keterangan</label>

</div>

</table>

<input type=button value=Batal onclick=self.history.back() class=\"btn btn-danger btn-sm\"></form>";

?>

</div>

src="vendors/ckeditor/adapters/jquery.js"></script>

src="vendors/tinymce/js/tinymce/tinymce.min.js"></script>

$(function() { // Bootstrap

$('#bootstrap-editor').wysihtml5();

// Ckeditor standard

$( 'textarea#ckeditor_standard' ).ckeditor({width:'98%', height: '150px', toolbar: [

{ name: 'document', items: [ 'Source', '-',

'NewPage', 'Preview', '-', 'Templates' ] }, // Defines toolbar

group with name (used to create voice label) and items in 3 subgroups.

[ 'Cut', 'Copy', 'Paste', 'PasteText',

'PasteFromWord', '-', 'Undo', 'Redo' ], // Defines

(11)

{ name: 'basicstyles', items: [ 'Bold', 'Italic' ] }

]});

$( 'textarea#ckeditor_full' ).ckeditor({width:'98%', height: '150px'});

});

// Tiny MCE tinymce.init({

selector: "#tinymce_basic", plugins: [

"advlist autolink lists link image charmap print preview anchor",

"searchreplace visualblocks code fullscreen", "insertdatetime media table contextmenu paste" ],

});

selector: "#tinymce_full", plugins: [

"advlist autolink lists link image charmap print preview hr anchor pagebreak",

"searchreplace wordcount visualblocks visualchars code fullscreen",

"insertdatetime media nonbreaking save table contextmenu directionality",

"emoticons template paste textcolor" ],

toolbar2: "print preview media | forecolor backcolor emoticons",

image_advtab: true, templates: [

{title: 'Test template 1', content: 'Test 1'}, {title: 'Test template 2', content: 'Test 2'} ]

});

</script>

<?php break;

(12)

<!--- Menu Lihat Join

<tr><th>No</th><th>Nama</th><th>Pada Judul</th><th>Pilihan</th></tr></thead>

<tbody>";

$tampil=mysql_query("SELECT * FROM `join` a, komprom b WHERE a.username_join = '$_SESSION[namauser]' AND

a.id_komprom=b.id_komprom AND a.status_join='0'"); $no=1;

while ($r=mysql_fetch_array($tampil)){ echo "<tr><td>$no</td>

(13)

<! Menu PROFIL

if (form.password.value == ""){ alert("Password Wajib Diisi."); form.password.focus();

$tampil=mysql_query("SELECT * FROM users WHERE username = '$_SESSION[namauser]'");

$r=mysql_fetch_array($tampil);

echo "

echo "<img src='assets/img/user.jpg'>"; }

(14)

echo "<img src='assets/img/$r[foto]' width=100px>";

}

echo "<input type=file name=fupload></div> <div class=\"form-group\">

<label class=\"control-label\" for=\"inputSuccess1\">Password (Wajib Diisi)</label>

</div>

?>

</div>

<?php break; } ?>

</div>

src="assets/plugins/bootstrap/bootstrap.min.js"></script> <script

src="assets/plugins/metisMenu/jquery.metisMenu.js"></script> <script src="assets/plugins/pace/pace.js"></script> <script src="assets/scripts/siminta.js"></script>

</body>

(15)

Admin.php

<title>Forum Diskusi - admin</title>

<body>

<div id="wrapper">

(16)

<ul class="dropdown-menu dropdown-messages"> <li><a href="admin.php?menu=users"><i class="fa fa-edit fa-fw"></i> Daftar User</a> </li>

<li><a href="logout.php"><i class="fa fa-sign-out fa-fw"></i> Logfa-sign-out</a></li>

</ul>

</li>

</ul>

</nav>

<?php

switch($_GET['menu']){ default:

?>

<! INDEX --->

<i class="fa fa-tasks fa-fw"></i> Diskusi Terpopuler

</div>

<div class="panel-body"> <div class="list-group"> <?php

$kompromi=mysql_query("SELECT * FROM laporan WHERE status='0' ORDER BY id_laporan DESC LIMIT 20");

$hitung=mysql_num_rows($kompromi);

if($hitung == '0') { echo "Tidak Ada Laporan"; }

else {

(17)

echo "<a

href=admin.php?menu=laporan&komprom=$k[id_komprom]&komentar=$k[id_ko mentar]&id=$k[id_laporan] class=\"list-group-item\" ><i class=\"fa fa-tasks fa-fw\"></i> $k[pelapor] Melaporkan Komentar $k[dilapor]

<span class=\"pull-right text-muted small\"> <em>$k[tanggal]</em>

if (form.komentar.value == ""){

alert("Form Komentar Tidak Boleh Kosong."); form.komentar.focus(); FROM laporan AS a, komprom AS b, komentar AS c WHERE

a.id_komprom=b.id_komprom AND a.id_komentar=c.id_komentar AND a.id_komprom='$_GET[komprom]' AND a.id_komentar='$_GET[komentar]' AND a.id_laporan='$_GET[id]'");

(18)

$tampilkanjoin=mysql_query("SELECT * FROM `join` WHERE username_request='$_SESSION[namauser]'");

$u=mysql_fetch_array($tampilkanjoin); ?>

</h4> </div>

<div class="panel-body"> <?php include "config/ClassGost.php";

$data = "$k[komentar]";

$datajudul = "$k[judul]";

$key = "Kriptografi-Metoda-GOST-Ardito!!";

$gost=new ClassGost;

//$data_encoded=$gost->Encode($data, $key);

$datajudul_encoded=$gost->Encode($datajudul, $key);

$data_encoded=$gost->Encode($data, $key);

echo " <form method=POST

action='aksi.php?menu=nonaktiflaporan'>

<input type=hidden name=dilapor value='$k[dilapor]'> <input type=hidden name=komprom

value='$_GET[komprom]'>

Pada diskusi:<br>

<b>$k[judul]</b><br><br>

(19)

<b>$k[komentar]</b><br><br>";

$tampil=mysql_query("SELECT * FROM tbl_users WHERE level<>'admin' ORDER BY id_users");

$no=1;

(20)

echo "<tr><td>$no</td>

<td>$r[nama_depan]</td>

<td>$r[username]</td> <td>$r[email]</td> </tr>";

$no++; }

<form method=POST action='aksi.php?menu=insertpostingan'> <input type=hidden name=username

value='$_SESSION[namauser]'>

(21)

'NewPage', 'Preview', '-', 'Templates' ] }, // Defines toolbar

group with name (used to create voice label) and items in 3 subgroups.

[ 'Cut', 'Copy', 'Paste', 'PasteText',

'PasteFromWord', '-', 'Undo', 'Redo' ], // Defines

toolbar group without name.

{ name: 'basicstyles', items: [ 'Bold', 'Italic' ] }

(22)

"advlist autolink lists link image charmap print preview anchor",

"searchreplace visualblocks code fullscreen", "insertdatetime media table contextmenu paste" ],

});

selector: "#tinymce_full", plugins: [

"advlist autolink lists link image charmap print preview hr anchor pagebreak",

"searchreplace wordcount visualblocks visualchars code fullscreen",

"insertdatetime media nonbreaking save table contextmenu directionality",

"emoticons template paste textcolor" ],

(23)

<thead>

<tr><th>No</th><th>Nama</th><th>Pada Judul</th><th>Pilihan</th></tr></thead>

<tbody>";

$tampil=mysql_query("SELECT * FROM `join` a, komprom b WHERE a.username_join = '$_SESSION[namauser]' AND

a.id_komprom=b.id_komprom AND a.status_join='0'"); $no=1;

while ($r=mysql_fetch_array($tampil)){ echo "<tr><td>$no</td>

(24)

return (false);

$tampil=mysql_query("SELECT * FROM users WHERE username = '$_SESSION[namauser]'");

$r=mysql_fetch_array($tampil);

echo "

echo "<img src='assets/img/user.jpg'>"; }

else {

echo "<img src='assets/img/$r[foto]' width=100px>";

}

echo "<input type=file name=fupload></div> <div class=\"form-group\">

(25)

</div>

<?php break; } ?>

</div>

src="assets/plugins/metisMenu/jquery.metisMenu.js"></script> <script src="assets/plugins/pace/pace.js"></script> <script src="assets/scripts/siminta.js"></script>

(26)

Login.php <?php

session_start(); error_reporting(0);

include 'config/koneksi.php';

if(!empty($_POST)){

$username = $_POST['username']; $password = md5($_POST['password']);

$sql = "select * from tbl_users where username='".$username."' and password='".$password."'";

#echo $sql."<br />";

$query = mysql_query($sql) or die (mysql_error());

// pengecekan query valid atau tidak if($query){

$row = mysql_num_rows($query); $r = mysql_fetch_array($query);

// jika $row > 0 atau username dan password ditemukan if($row > 0){

session_start();

include "timeout.php";

$_SESSION[namauser] = $r[username]; $_SESSION[namalengkap] = $r[nama_depan]; $_SESSION[passuser] = $r[password]; $_SESSION[leveluser] = $r[level];

// session timeout $_SESSION[login] = 1; timer();

$sid_lama = session_id();

session_regenerate_id();

$sid_baru = session_id();

mysql_query("UPDATE tbl_users SET id_session='$sid_baru' WHERE username='$username'");

header('location:index.php'); }

else{

$error="<br>Username Atau Password Salah"; }

} } ?>

(27)

<head>

<title>Forum DIskusi - Mari Berdiskusi Disini</title>

</head>

<div class="container"> placeholder="ID Login Anda" name="username" type="text" autofocus required autocomplete="off"> input when using this as a form -->

(28)

</fieldset> </form>

<?php echo "<div align='center'><font color='#ff0000'><b>$error</b></font></div>"; ?>

</div> </div> </div> </div> </div>

src="assets/plugins/metisMenu/jquery.metisMenu.js"></script>

</body>

</html>

Cek_login.php

<?php

include "config/koneksi.php";

function anti_injection($data){

$filter =

mysql_real_escape_string(stripslashes(strip_tags(htmlspecialchars($d ata,ENT_QUOTES))));

return $filter;

}

$username = anti_injection($_POST['username']);

$pass = anti_injection(md5($_POST['password']));

(29)

$login=mysql_query("SELECT * FROM tbl_users WHERE username='$username' AND password='$pass'");

$ketemu=mysql_num_rows($login);

$r=mysql_fetch_array($login);

// Apabila username dan password ditemukan

if ($ketemu > 0){

session_start();

include "timeout.php";

$_SESSION[namauser] = $r[username];

$_SESSION[namalengkap] = $r[nama_depan];

$_SESSION[passuser] = $r[password];

$_SESSION[leveluser] = $r[level];

// session timeout

$_SESSION[login] = 1;

timer();

$sid_lama = session_id();

session_regenerate_id();

$sid_baru = session_id();

mysql_query("UPDATE tbl_users SET id_session='$sid_baru' WHERE username='$username'");

(30)

}

else{

$error="

type=text/css>

<center><font face='tahoma' size='3'><b>LOGIN GAGAL ! </b></font><br><hr><br>

<font size='8' color='red' face='comic sans ms'><blink>Username atau Password Anda tidak benar !!!</blink></font><br>

Atau account Anda sedang diblokir.<br>

<a href=login.php><b>ULANGI LAGI</b></a></center>

</div>";

}

(31)

Logout.php <?php

session_start(); session_destroy(); error_reporting(0);

include "config/koneksi.php"; header('location:login.php'); ?>

Registrasi.php <!DOCTYPE html> <html>

<head>

<title>KomproM.NET - Kompromikan Semuanya Disini</title>

</head>

</div>

<h3 class="panel-title">Form Registrasi</h3> </div>

(32)

</div>

</fieldset> </form>

</div> </div> </div> </div> </div>

src="assets/plugins/metisMenu/jquery.metisMenu.js"></script>

</body>

(33)

Aksi.php

<?php

session_start();

error_reporting(0);

include "config/koneksi.php";

include "config/fungsi_thumb.php";

include('config/ClassGost.php');

$key = "Kriptografi-Metoda-GOST-Ardito!!";

$tgl=date("Y-m-d");

$menu=$_GET[menu];

if($menu=='insertpostingan') {

mysql_query("INSERT INTO komprom (username,

judul,

keterangan,

tanggal,

status)

VALUES ('$_POST[username]',

'$_POST[judul]',

'$_POST[keterangan]',

'$tgl',

'$_POST[status]')");

header('location:index.php?menu=postingan');

(34)

elseif($menu=='hapuspostingan') {

mysql_query("DELETE FROM komprom WHERE id_komprom = '$_GET[id]'");

}

elseif($menu=='komentar') {

$tgl=date("Y-m-d");

$lokasi_file = $_FILES['fupload']['tmp_name'];

$tipe_file = $_FILES['fupload']['type'];

$nama_file = $_FILES['fupload']['name'];

$acak = rand(1,99);

$nama_file_unik = $acak.$nama_file;

if (empty($lokasi_file)){

mysql_query("INSERT INTO komentar (id_komprom,

username,

komentar,

tanggal)

VALUES ('$_POST[komprom]',

'$_SESSION[namauser]',

'$_POST[komentar]',

'$tgl')");

}

else {

UploadGambar($nama_file_unik);

(35)

username,

komentar,

tanggal,

gambar)

VALUES ('$_POST[komprom]',

'$_SESSION[namauser]',

'$_POST[komentar]',

'$tgl',

'$nama_file_unik')");

}

header('location:index.php?menu=kompromi&id='.$_POST[komprom]);

}

// Update Profil

elseif ($menu == 'updateprofil'){

$lokasi_file = $_FILES['fupload']['tmp_name'];

$tipe_file = $_FILES['fupload']['type'];

$nama_file = $_FILES['fupload']['name'];

$acak = rand(1,99);

$nama_file_unik = $acak.$nama_file;

$pass_baru=md5($_POST[password]);

if (empty($lokasi_file)){

mysql_query("UPDATE users SET

(36)

email='$_POST[email]',

password='$pass_baru'

WHERE username = '$_POST[username]'");

}

else{

UploadImage($nama_file_unik);

mysql_query("UPDATE users SET

nama_depan='$_POST[nama]',

email='$_POST[email]',

password='$pass_baru',

foto ='$nama_file_unik'

WHERE username = '$_POST[username]'");

}

header('location:index.php?menu=profil');

}

elseif ($menu=='join')

{

mysql_query("INSERT INTO `join`(ìd_komprom`, ùsername_join`, ùsername_request`)

VALUES ('$_POST[id_komprom]',

'$_POST[username_join]',

(37)

header('location:index.php?menu=kompromi&id='.$_POST[id_komprom]);

}

elseif ($menu=='requestjoin')

{

mysql_query("UPDATE `join` SET status_join='$_GET[status]' WHERE id_join='$_GET[id]'");

}

elseif ($menu=='inputlaporan')

{

mysql_query("INSERT INTO `laporan`

(`id_komentar`,`id_komprom`,`pelapor`,`dilapor`,`laporan`)

VALUES ('$_POST[komentar]',

'$_POST[komprom]',

'$_POST[pelapor]',

'$_POST[dilapor]',

'$_POST[keterangan]')");

echo "<script>alert('Komentar $_POST[dilapor] Telah Dilaporkan Kepada Administrator'); window.location = 'index.php' </script>";

}

elseif ($menu=='nonaktiflaporan')

{

mysql_query("UPDATE laporan SET status = '1' WHERE

id_komprom='$_POST[komprom]' AND id_komentar='$_POST[komentar]' AND id_laporan='$_POST[laporan]'");

mysql_query("UPDATE komentar SET status = '1' WHERE

id_komprom='$_POST[komprom]' AND id_komentar='$_POST[komentar]'");

(38)

}

(39)

Timeline.php

<?php

session_start(); error_reporting(0); include

"config/koneksi.php";

include "config/fungsi_indotgl.php";

$panggil =

mysql_query("SELECT a.username, a.id_komentar, a.komentar, a.tanggal, a.id_komprom, a.gambar, b.username, b.foto, a.status

FROM komentar AS a, tbl_users AS b

WHERE a.username = b.username AND a.id_komprom = '$_GET[id]' ORDER BY a.id_komentar");

$no=1;

while($c=mysql_fetch_array($panggil)) {

$tgl=tgl_indo($c[tanggal]);

if(($no % 2) == 0){ $li = "<li class='timeline-inverted'>";

} else{

$li = "<li>"; }

?>

<?php echo "$li"; ?>

<div class="timeline-badge"> <?php

if($c[foto] == '') {

echo "<img src='assets/img/user.jpg' class='gambar'>";

} else { echo "<img src='assets/img/$c[foto]' class='gambar'>";

(40)

</div>

<div class="timeline-panel"> <?php

if($c[username] <> '$_SESSION[namauser]' AND $c[status] == '1') {

} else { ?> <div class="box-tools pull-right"> <div class="btn-group">

<ul class="dropdown-menu" role="menu"> <li><a href="<?php echo "?menu=laporkan-obrolan&komprom=$c[id_komprom]&id=$c[id_komentar]"; ?>">Laporkan Komentar</a></li>

</ul> </div> </div>

<?php

} ?>

<p>

</div>

<div class="timeline-body"> <?php

if($c[status] == '1') {

echo "<font color='#ff0000'>Komentar Ini Telah Di Nonaktifkan Oleh Administrator.</font>";

} else {

echo "$c[komentar] <br>"; if($c[gambar]!='') {

echo "<img src='gambar/$c[gambar]' width='30%'>"; }

}

?> </div>

(41)

<?php