28 lines
1.1 KiB
PHP
28 lines
1.1 KiB
PHP
<?php
|
|
// php/send_pesan.php
|
|
require_once 'koneksi.php';
|
|
if (session_status() === PHP_SESSION_NONE) { session_start(); }
|
|
header('Content-Type: text/plain');
|
|
|
|
$pengirimId = intval($_SESSION['user_id'] ?? 0);
|
|
if (!$pengirimId) { http_response_code(401); echo 'Tidak terautentikasi.'; exit; }
|
|
|
|
$penerimaId = !empty($_POST['penerima_id']) ? intval($_POST['penerima_id']) : null;
|
|
$judul = trim($_POST['judul'] ?? '');
|
|
$isi = trim($_POST['isi'] ?? '');
|
|
$jenis = trim($_POST['jenis'] ?? 'koordinasi');
|
|
|
|
if (!$judul || !$isi) { http_response_code(400); echo 'Judul dan isi wajib diisi.'; exit; }
|
|
$validJenis = ['permintaan_bantuan','koordinasi','pengumuman'];
|
|
if (!in_array($jenis, $validJenis)) $jenis = 'koordinasi';
|
|
|
|
$esc = fn($v) => mysqli_real_escape_string($conn, (string)$v);
|
|
$penerima = $penerimaId ? intval($penerimaId) : 'NULL';
|
|
|
|
$sql = "INSERT INTO pesan_komunikasi (pengirim_id, penerima_id, judul, isi, jenis)
|
|
VALUES ({$pengirimId}, {$penerima}, '{$esc($judul)}', '{$esc($isi)}', '{$esc($jenis)}')";
|
|
|
|
if (mysqli_query($conn, $sql)) { echo 'success'; }
|
|
else { http_response_code(500); echo mysqli_error($conn); }
|
|
?>
|