[PHP REQ by faris18787] Authentification Confirm from Emailmbro aplikasi dreDSync V.1.0 gw dah beres hihi, oya mbro coba pelajari script ini:
<?
//MAIL CONFIRMATION
//Author: dr.emi [www.dremi.info]
session_start();
define("_MAIL", "webmaster@dremi.info");
if($_GET['cPub'] == 'SendConfirm')
{
mail(_MAIL, "Confirm for #".rand()."",
"This is just confirm sample
Click this link to complete process:
http://localhost/drev8-01/web/tips/mail-confirm.php?cPub=Confirm&cID=".rand()."
Thank !
Admin",
"From: \"Administrator\" <admin@admin.com>\n".
"X-IP-Address: $_SERVER[REMOTE_ADDR]\n".
"X-Mailer: Auto Confirm dr.emi\n".
"X-Priority: 1\n");
echo "Confirm Sent !";
}
elseif($_GET['cPub'] == 'Confirm')
{
if(is_numeric($_GET['cID']))
{
echo "Confirm request for $_GET[cID]:<BR>APPROVED ?<BR>
<a href='$_SERVER[PHP_SELF]?cPub=Complete&cAct=Yes&cID=$_GET[cID]'>Yes</a> OR
<a href='$_SERVER[PHP_SELF]?cPub=Complete&cAct=No&cID=$_GET[cID]'>No</a> ";
}
}
elseif($_GET['cPub'] == 'Complete')
{
if($_GET['cAct'] == 'Yes' && is_numeric($_GET['cID']))
{
if(!session_is_registered('user'))
{
if(isset($_POST['submit']))
{
//login validation here
if($_POST['user'] == 'root' && $_POST['pass'] == '12')
{
$user = $_POST['user'];
$cID = $_POST['cID'];
session_register('user');
session_register('cID');
header("location:$_SERVER[PHP_SELF]?$_POST[redir]");
/*
echo"<br>Redirect progress..<br>Please Stand By.. <br>
<a href='$_SERVER[PHP_SELF]?$_POST[redir]'>Direct Link</a><br>
<meta http-equiv=\"refresh\" content=\"3;URL=$_SERVER[PHP_SELF]?$_POST[redir]\" />";
*/
}
else
{
header("location:$_SERVER[PHP_SELF]?$_POST[redir]");
}
}
else
{
echo "<form name=login method=post action=''>
<input type=hidden name=cID value='$_GET[cID]'>
<input type=hidden name=redir value='$_SERVER[QUERY_STRING]'>
User: <input type=text name=user><br>
Pass: <input type=password name=pass><br>
<input type=submit name=submit value=login><br>
</form>";
}
}
else
{
echo "Confirmation for #$_SESSION[cID] has completed ! Thanks !<br>
<a href='$_SERVER[PHP_SELF]?cPub=Logut'>Logout</a>";
}
}
elseif($_GET['cAct'] == 'No' && is_numeric($_GET['cID']))
{
echo "Confirmation for #$_GET[cID] has canceled ! Thanks !<br>
<a href='$_SERVER[PHP_SELF]'>Back to simulation</a>";
}
}
elseif($_GET['cPub'] == 'Logut')
{
unset($user);
unset($cID);
session_destroy();
header("location:$_SERVER[PHP_SELF]");
}
else
{
echo "This is confirmation link, just for simulation !<br>
Link Simulation:<br>
<a href='$_SERVER[PHP_SELF]?cPub=Confirm&cID=".rand()."'>
Confirm Now !</a>
<br><br>
Email Simulation:<br>
<a href='$_SERVER[PHP_SELF]?cPub=SendConfirm'>
Confirm Now !</a>
";
}
?>
Inti : user akan mendapatkan link berupa pattern konfirmasi url, dimana setelah diklik akan dilakukan authentifikasi user dan pass, jika sudah login maka konfirmasi akan dipersilahkan, jika tidak kembali ke form login.
tros login pada script cuma sample, gunakan validasi login selengkapna dan seaman aman na, liat lagi referensi di tutorial cara login make user pass session dan database.
alamat redirect setelah login, ada pada baris
<input type=hidden name=redir value='$_SERVER[QUERY_STRING]'>
jadi setelah login bakalan langsung di redirect ke url konfirmasi yang udah tersimpan sementara pada variable redir oleh inputan text na.
pada kasus sebenarna, lu bisa pake validasi target header untuk aksi loginna, misal: jika pattern query string kosong maka header na adalah indexadmin.php tapi kalo pattern query string na ada (user membuka url lengkap dengan variable yang digunakan) maka header na adalah $_SERVER[QUERY_STRING].
<?
if($_POST['redir'] != '')
{
header("location:indexadmin.php?".$_POST['redir']);
}
else
{
header("location:indexadmin.php");
}
?>
semoga bermanfaat.
