pbmc-cmod/app/Controllers/API_Users.php

<?php
namespace App\Controllers;

use CodeIgniter\RESTful\ResourceController;

class API_Users extends ResourceController {
	protected $format = 'json';
	
	public function index()	{
		$db = \Config\Database::connect();

		$usercityid = session()->get('usercityid');
		if($usercityid==1){$filterquery=" AND uc.CITYID = 1";}
		else if($usercityid==2){$filterquery=" AND uc.CITYID = 2";}
		else{$filterquery=" ";}

		$sql = "select u.USERID, u.USERNAME, uc.CITYNAME ,u1.USERROLEID, ur.USERROLENAME 
				from cmod.dbo.CM_USERS u1 
				full join USERS u on u.USERID=u1.USERID
				left join cmod.dbo.CM_USERS us on us.USERID=u.USERID
				left join cmod.dbo.CM_USERSCITY uc on uc.CITYID=us.CITYID
				left join cmod.dbo.CM_USERROLES ur on ur.USERROLEID=u1.USERROLEID
				where ( u.LOCKEDACCOUNT is null or u.LOCKEDACCOUNT=0 ) $filterquery";
		$query = $db->query($sql);
		$results = $query->getResultArray();
		
		$data['users'] = $results;
        return $this->respond($data,200);
	}
	
	public function savePass() {
		$db = \Config\Database::connect();
		$userid = $this->request->getPost('userid');
		$pass = $this->request->getPost('pass');
		$password = password_hash($pass,PASSWORD_DEFAULT);
		$sql = "update cmod.dbo.CM_USERS set PASSWORD='$password' where USERID='$userid'";
		if( $db->query($sql) )  {
			return $this->respond(['message' => 'Save Success'],201);
		} else {
			$response = [
				'errors' => $db->errors(),
				'message' => 'Invalids'
			];
	       return $this->fail($response , 409);
        }
	}
	
	public function saveRole() {
		$db = \Config\Database::connect();
		$userid = $this->request->getPost('userid');
		$userroleid = $this->request->getPost('userroleid');
		$sql = "if (not exists (select * from cmod.dbo.CM_USERS where USERID='$userid')) BEGIN
		INSERT INTO cmod.dbo.CM_USERS(USERID, USERROLEID, CREATEDATE) VALUES
			('$userid','$userroleid', GETDATE())
	END ELSE BEGIN
		UPDATE cmod.dbo.CM_USERS set USERROLEID='$userroleid' where USERID='$userid'
	END";
		if( $db->query($sql) )  {
			return $this->respond(['message' => 'Save Success'],201);
		} else {
			$response = [
				'errors' => $db->errors(),
				'message' => 'Invalids'
			];
	       return $this->fail($response , 409);
        }
	}
}
todo : user n dict_tests 2024-11-12 16:45:01 +07:00			`<?php`
			`namespace App\Controllers;`

all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`use CodeIgniter\RESTful\ResourceController;`

rbac done 2024-12-04 11:11:02 +07:00			`class API_Users extends ResourceController {`
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`protected $format = 'json';`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`public function index() {`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`$db = \Config\Database::connect();`
Update Users pada role Admin, Perbaikan pada User Afrita dan Login 2025-01-28 13:48:24 +07:00
			`$usercityid = session()->get('usercityid');`
			`if($usercityid==1){$filterquery=" AND uc.CITYID = 1";}`
			`else if($usercityid==2){$filterquery=" AND uc.CITYID = 2";}`
			`else{$filterquery=" ";}`

			`$sql = "select u.USERID, u.USERNAME, uc.CITYNAME ,u1.USERROLEID, ur.USERROLENAME`
			`from cmod.dbo.CM_USERS u1`
			`full join USERS u on u.USERID=u1.USERID`
			`left join cmod.dbo.CM_USERS us on us.USERID=u.USERID`
			`left join cmod.dbo.CM_USERSCITY uc on uc.CITYID=us.CITYID`
			`left join cmod.dbo.CM_USERROLES ur on ur.USERROLEID=u1.USERROLEID`
			`where ( u.LOCKEDACCOUNT is null or u.LOCKEDACCOUNT=0 ) $filterquery";`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`$query = $db->query($sql);`
			`$results = $query->getResultArray();`
todo : user n dict_tests 2024-11-12 16:45:01 +07:00
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`$data['users'] = $results;`
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`return $this->respond($data,200);`
			`}`
todo : user n dict_tests 2024-11-12 16:45:01 +07:00
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`public function savePass() {`
			`$db = \Config\Database::connect();`
			`$userid = $this->request->getPost('userid');`
			`$pass = $this->request->getPost('pass');`
			`$password = password_hash($pass,PASSWORD_DEFAULT);`
			`$sql = "update cmod.dbo.CM_USERS set PASSWORD='$password' where USERID='$userid'";`
			`if( $db->query($sql) ) {`
			`return $this->respond(['message' => 'Save Success'],201);`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`} else {`
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`$response = [`
			`'errors' => $db->errors(),`
			`'message' => 'Invalids'`
			`];`
			`return $this->fail($response , 409);`
			`}`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`}`

all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`public function saveRole() {`
fix tubecomment, add users edit role, todo users edit pass, users set 2024-11-14 16:48:38 +07:00			`$db = \Config\Database::connect();`
all fix (next dict_tests) 2024-11-20 16:55:21 +07:00			`$userid = $this->request->getPost('userid');`
			`$userroleid = $this->request->getPost('userroleid');`
			`$sql = "if (not exists (select * from cmod.dbo.CM_USERS where USERID='$userid')) BEGIN`
			`INSERT INTO cmod.dbo.CM_USERS(USERID, USERROLEID, CREATEDATE) VALUES`
			`('$userid','$userroleid', GETDATE())`
			`END ELSE BEGIN`
			`UPDATE cmod.dbo.CM_USERS set USERROLEID='$userroleid' where USERID='$userid'`
			`END";`
			`if( $db->query($sql) ) {`
			`return $this->respond(['message' => 'Save Success'],201);`
			`} else {`
			`$response = [`
			`'errors' => $db->errors(),`
			`'message' => 'Invalids'`
			`];`
			`return $this->fail($response , 409);`
			`}`
			`}`
			`}`