query("SELECT foto FROM tb_parsil WHERE id=$id")->fetch_assoc(); if ($row && $row['foto'] && file_exists(__DIR__ . '/' . $row['foto'])) unlink(__DIR__ . '/' . $row['foto']); $stmt = $conn->prepare("DELETE FROM tb_parsil WHERE id = ?"); $stmt->bind_param('i', $id); echo $stmt->execute() ? json_encode(['status'=>'ok','message'=>'Data parsil berhasil dihapus']) : json_encode(['status'=>'error','message'=>$conn->error]); $conn->close(); exit; } // ---- GET ---- if ($method === 'GET') { $search = isset($_GET['q']) ? '%' . $conn->real_escape_string($_GET['q']) . '%' : null; if (isset($_GET['id'])) { $id = (int)$_GET['id']; $stmt = $conn->prepare("SELECT * FROM tb_parsil WHERE id = ?"); $stmt->bind_param('i', $id); $stmt->execute(); $data = $stmt->get_result()->fetch_assoc(); echo json_encode(['status'=>'ok','data'=>$data]); } elseif ($search) { $stmt = $conn->prepare("SELECT * FROM tb_parsil WHERE nama_pemilik LIKE ? OR no_sertifikat LIKE ? OR alamat LIKE ? ORDER BY created_at DESC"); $stmt->bind_param('sss', $search, $search, $search); $stmt->execute(); $rows = $stmt->get_result()->fetch_all(MYSQLI_ASSOC); echo json_encode(['status'=>'ok','data'=>$rows]); } else { $result = $conn->query("SELECT * FROM tb_parsil ORDER BY created_at DESC"); $rows = $result->fetch_all(MYSQLI_ASSOC); echo json_encode(['status'=>'ok','data'=>$rows]); } $conn->close(); exit; } // ---- POST ---- if ($method === 'POST') { $nama = $conn->real_escape_string($_POST['nama_pemilik'] ?? ''); $noSert = $conn->real_escape_string($_POST['no_sertifikat'] ?? ''); $status = $conn->real_escape_string($_POST['status_kepemilikan'] ?? 'SHM'); $luas = (float)($_POST['luas_m2'] ?? 0); $geojson = $conn->real_escape_string($_POST['geojson'] ?? ''); $alamat = $conn->real_escape_string($_POST['alamat'] ?? ''); $foto = ''; if (!empty($_FILES['foto']['name'])) { $ext = strtolower(pathinfo($_FILES['foto']['name'], PATHINFO_EXTENSION)); if (in_array($ext, ['jpg','jpeg','png','webp'])) { $fname = 'parsil_' . time() . '_' . rand(1000,9999) . '.' . $ext; if (move_uploaded_file($_FILES['foto']['tmp_name'], $uploadDir . $fname)) $foto = 'uploads/parsil/' . $fname; } } $stmt = $conn->prepare("INSERT INTO tb_parsil (nama_pemilik,no_sertifikat,status_kepemilikan,luas_m2,geojson,alamat,foto) VALUES (?,?,?,?,?,?,?)"); $stmt->bind_param('sssdsss', $nama, $noSert, $status, $luas, $geojson, $alamat, $foto); echo $stmt->execute() ? json_encode(['status'=>'ok','id'=>$conn->insert_id,'message'=>'Data parsil berhasil disimpan']) : json_encode(['status'=>'error','message'=>$conn->error]); $conn->close(); exit; } // ---- PUT ---- if ($method === 'PUT' || ($method === 'POST' && ($_POST['_method'] ?? '') === 'PUT')) { $id = (int)($_POST['id'] ?? 0); $nama = $conn->real_escape_string($_POST['nama_pemilik'] ?? ''); $noSert = $conn->real_escape_string($_POST['no_sertifikat'] ?? ''); $status = $conn->real_escape_string($_POST['status_kepemilikan'] ?? 'SHM'); $luas = (float)($_POST['luas_m2'] ?? 0); $geojson = $conn->real_escape_string($_POST['geojson'] ?? ''); $alamat = $conn->real_escape_string($_POST['alamat'] ?? ''); $row = $conn->query("SELECT foto FROM tb_parsil WHERE id=$id")->fetch_assoc(); $foto = $row['foto'] ?? ''; if (!empty($_FILES['foto']['name'])) { $ext = strtolower(pathinfo($_FILES['foto']['name'], PATHINFO_EXTENSION)); if (in_array($ext, ['jpg','jpeg','png','webp'])) { if ($foto && file_exists(__DIR__ . '/' . $foto)) unlink(__DIR__ . '/' . $foto); $fname = 'parsil_' . time() . '_' . rand(1000,9999) . '.' . $ext; if (move_uploaded_file($_FILES['foto']['tmp_name'], $uploadDir . $fname)) $foto = 'uploads/parsil/' . $fname; } } $stmt = $conn->prepare("UPDATE tb_parsil SET nama_pemilik=?,no_sertifikat=?,status_kepemilikan=?,luas_m2=?,geojson=?,alamat=?,foto=? WHERE id=?"); $stmt->bind_param('sssdsssi', $nama, $noSert, $status, $luas, $geojson, $alamat, $foto, $id); echo $stmt->execute() ? json_encode(['status'=>'ok','message'=>'Data parsil berhasil diupdate']) : json_encode(['status'=>'error','message'=>$conn->error]); $conn->close(); exit; } echo json_encode(['status'=>'error','message'=>'Method not allowed']); $conn->close();