Memberikan hak akses dengan php session

proseslogin.php

<?php
session_start();
include "koneksi.php";

if(isset($_POST['username']) && ($_POST['password'])){
	 header('location:index.php');
     $username = mysqli_real_escape_string($_POST['username']);
     $password = mysqli_real_escape_string($_POST['password']);
     $sql = "select * from user where username = '$username' AND password = '$password'";
     $result = $conn->query($sql) or die('Terjadi Kesalahan : '.$conn->mysqli_error);

    if ($result->mysqli_num_rows > 0){
          $row = $result->mysqli_fetch_array();

		  $_SESSION['login'] = true;
          $_SESSION['username'] = $row['username'];
          $_SESSION['nama'] = $row['nama'];
          $_SESSION['level'] = $row['administrator' or 'manajemen' or 'peminjam'];
          $_SESSION['id_user'] = $row['id_user'];
          header("location:index.php");
		  echo "<script>alert('Selamat Datang...');location.href='index.php'</script>";
    }else{
          echo "<script>alert('Maaf, username atau password salah..');location.href='login.php'</script>";
    }
}else{
     echo "<script>alert('Maaf, username atau password salah..');location.href='login.php'</script>";
}

?>

index.php

<?php
include "koneksi.php";
session_start();
$nama = $_SESSION['nama'];
$level = 'administrator' or 'manajemen' or 'peminjam';
	if (!isset($_SESSION['username'])){

		$level_a = $_SESSION['level'] == 'administrator';
		$level_m = $_SESSION['level'] == 'manajemen';
		$level_p = $_SESSION['level'] == 'peminjam';
?>
<html>
	<head>
	<title>Tampilan Utama</title>
	<link rel="stylesheet" type="text/css" href="css/index.css">
	</head>
	<body>
	<?php
	include "header.php";
	?>
	<div id="content">
	</div>



	<div id="footer">
	</div>
</body>
<?php
}
?>

header.php

<?php
	if $level=='administrator'{?>
		<div id="wrapper">
		<div id="header">
		<br>
		<P>Selamat datang, <?php echo $nama ?></P>
		<br>
		<a href="admin.php" class="tombol">Home</a>
		<a href="pinjamadmin1.php" class="tombol">Entri Peminjaman Barang</a>
		<a href="" class="tombol">Entri Data Barang</a>
		<a href="" class="tombol">Tentang</a>
		<a href="logout.php" class="tombol">Keluar</a>
		</div>';
	<?php
		}else if $level=='manajemen'{ ?>
		<div id="wrapper">
		<div id="header">
		<br>
		<P>Selamat datang, <?php echo $_SESSION["nama"]?></P>
		<br>
		<a href="manajemen.php" class="tombol">Home</a>
		<a href="" class="tombol">Entri Data Barang</a>
		<a href="" class="tombol">Laporan</a>
		<a href="" class="tombol">Tentang</a>
		<a href="logout.php" class="tombol">Keluar</a>
		</div>
	<?php
		}else if $level=='peminjam'{ ?>
		<div id="wrapper">
		<div id="header">
		<br>
		<P>Selamat datang, <?php echo $_SESSION["nama"]?></P>
		<br>
		<a href="peminjam.php" class="tombol">Home</a>
		<a href="" class="tombol">Entri Peminjaman Barang</a>
		<a href="" class="tombol">Tentang</a>
		<a href="logout.php" class="tombol">Keluar</a>
		</div>
	<?php
		}
	?>

gan saya mau buat hak akses jadi klo login sebagai admin nanti di index bakal tampil tombol a,b,c. klo sebagai manajemen e,f,g kira2 salah saya dimna yah? $level nya gak mau kebaca jd yg tampil sebagai administrator trus walaupun login dengan hak akses yg lain. mohon pencerhannya

avatar randishady25
@randishady25

15 Kontribusi 1 Poin

Diperbarui 5 tahun yang lalu

1 Jawaban:

<pre> session_start(); </pre> session start taruh di file koneksi.php, taruh paling atas <pre> &lt;?php

include "koneksi.php";

if(isset($_POST['username']) && ($_POST['password'])){

 $username = mysqli_real_escape_string($_POST[&#039;username&#039;]);
 $password = mysqli_real_escape_string($_POST[&#039;password&#039;]);
 $sql = &quot;select * from user where username = &#039;$username&#039; AND password = &#039;$password&#039;&quot;;
 $result = $conn-&amp;gt;query($sql) or die(&#039;Terjadi Kesalahan : &#039;.$conn-&amp;gt;mysqli_error);

if ($result-&amp;gt;mysqli_num_rows &amp;gt; 0){
      $row = $result-&amp;gt;mysqli_fetch_array();
	  
	  $_SESSION[&#039;login&#039;] = true;
      $_SESSION[&#039;username&#039;] = $row[&#039;username&#039;];
      $_SESSION[&#039;nama&#039;] = $row[&#039;nama&#039;];
      $_SESSION[&#039;level&#039;] = $row[&#039;level&#039;];
      $_SESSION[&#039;id_user&#039;] = $row[&#039;id_user&#039;];
      header(&quot;location:index.php&quot;);
	  echo &quot;&amp;lt;script&amp;gt;alert(&#039;Selamat Datang...&#039;);location.href=&#039;index.php&#039;&amp;lt;/script&amp;gt;&quot;;
}else{
      echo &quot;&amp;lt;script&amp;gt;alert(&#039;Maaf, username atau password salah..&#039;);location.href=&#039;login.php&#039;&amp;lt;/script&amp;gt;&quot;;
}

}else{ echo "&lt;script&gt;alert('Maaf, username atau password salah..');location.href='login.php'&lt;/script&gt;"; }

?&gt; </pre>

###########3

<pre> &lt;?php include "koneksi.php"; $nama = $_SESSION['nama']; &lt;html&gt; &lt;head&gt; &lt;title&gt;Tampilan Utama&lt;/title&gt; &lt;link rel="stylesheet" type="text/css" href="css/index.css"&gt; &lt;/head&gt; &lt;body&gt; &lt;?php include "header.php"; ?&gt; &lt;div id="content"&gt; &lt;/div&gt;

&amp;lt;div id=&quot;footer&quot;&amp;gt;
&amp;lt;/div&amp;gt;

&lt;/body&gt; &lt;?php } ?&gt; </pre> ###########

<pre> &lt;?php if $_SESSION['level']=='administrator'{?&gt; &lt;div id="wrapper"&gt; &lt;div id="header"&gt; &lt;br&gt; &lt;P&gt;Selamat datang, &lt;?php echo $nama ?&gt;&lt;/P&gt; &lt;br&gt; &lt;a href="admin.php" class="tombol"&gt;Home&lt;/a&gt; &lt;a href="pinjamadmin1.php" class="tombol"&gt;Entri Peminjaman Barang&lt;/a&gt; &lt;a href="" class="tombol"&gt;Entri Data Barang&lt;/a&gt; &lt;a href="" class="tombol"&gt;Tentang&lt;/a&gt; &lt;a href="logout.php" class="tombol"&gt;Keluar&lt;/a&gt; &lt;/div&gt;'; &lt;?php }else if $_SESSION['level']=='manajemen'{ ?&gt; &lt;div id="wrapper"&gt; &lt;div id="header"&gt; &lt;br&gt; &lt;P&gt;Selamat datang, &lt;?php echo $_SESSION["nama"]?&gt;&lt;/P&gt; &lt;br&gt; &lt;a href="manajemen.php" class="tombol"&gt;Home&lt;/a&gt; &lt;a href="" class="tombol"&gt;Entri Data Barang&lt;/a&gt; &lt;a href="" class="tombol"&gt;Laporan&lt;/a&gt; &lt;a href="" class="tombol"&gt;Tentang&lt;/a&gt; &lt;a href="logout.php" class="tombol"&gt;Keluar&lt;/a&gt; &lt;/div&gt; &lt;SESSION['level']=='peminjam'{ ?&gt; &lt;div id="wrapper"&gt; &lt;div id="header"&gt; &lt;br&gt; &lt;P&gt;Selamat datang, &lt;?php echo $_SESSION["nama"]?&gt;&lt;/P&gt; &lt;br&gt; &lt;a href="peminjam.php" class="tombol"&gt;Home&lt;/a&gt; &lt;a href="" class="tombol"&gt;Entri Peminjaman Barang&lt;/a&gt; &lt;a href="" class="tombol"&gt;Tentang&lt;/a&gt; &lt;a href="logout.php" class="tombol"&gt;Keluar&lt;/a&gt; &lt;/div&gt; &lt;?php } ?&gt; </pre>

semoga berhasil

avatar zakkiaz
@zakkiaz

10 Kontribusi 2 Poin

Dipost 5 tahun yang lalu

Login untuk ikut Jawaban