<?php require_once('session.php'); require_once('../config/koneksi.php'); if (isset($_POST['submit'])) { $trxID = mysqli_real_escape_string($conn, $_POST['trxID']); $kode = date('YmdHis'); $created_date = date('Y-m-d H:i:s'); // Validasi transaksi $sql = mysqli_query($conn, "SELECT * FROM `tb_transaksi` WHERE kd_transaksi = '$trxID' LIMIT 1") or die(mysqli_error($conn)); $trx = mysqli_fetch_array($sql); if (!$trx) { die("Transaksi tidak ditemukan."); } if ($trx['status'] != 0) { // Jika sudah dikonfirmasi sebelumnya, langsung redirect header('Location:../m/history.php'); exit(); } // Validasi file $allowed_types = ['image/jpg', 'image/jpeg', 'image/png']; $file = $_FILES['image']; $filename = $file['name']; $type = strtolower($file['type']); $size = $file['size']; $tmp_name = $file['tmp_name']; $error = $file['error']; // Jika tidak ada file if ($error !== UPLOAD_ERR_OK) { header('Location:../m/payment.php?trxID='.$trxID.'&notif=1'); exit(); } // Ekstensi file $ext = strtolower(pathinfo($filename, PATHINFO_EXTENSION)); $newname = 'bukti_'.$trxID.'_'.$kode.'.'.$ext; $upload_dir = "../uploads/konfirmasi/"; // Pastikan folder ada if (!is_dir($upload_dir)) { mkdir($upload_dir, 0777, true); } // Validasi tipe if (!in_array($type, $allowed_types)) { header('Location:../m/payment.php?trxID='.$trxID.'&notif=1'); exit(); } // Pindahkan file upload if (move_uploaded_file($tmp_name, $upload_dir . $newname)) { // Update tabel transaksi $query = mysqli_query($conn, " UPDATE `tb_transaksi` SET `note` = '".mysqli_real_escape_string($conn, $newname)."', `status` = 1, `konfirmasi_at` = '".$created_date."' WHERE kd_transaksi = '$trxID' ") or die(mysqli_error($conn)); header('Location:../m/history.php?notif=konfirmasi_berhasil'); exit(); } else { header('Location:../m/payment.php?trxID='.$trxID.'&notif=1'); exit(); } } ?> SIMPAN PERUBAHAN