2014-03-23 16:03:30 -04:00
< ? php
/*******************************************************************************
2015-09-12 00:46:46 -04:00
* Title : Help Desk Software HESK
2016-08-10 23:36:20 -04:00
* Version : 2.6 . 8 from 10 th August 2016
2015-09-12 00:46:46 -04:00
* Author : Klemen Stirn
* Website : http :// www . hesk . com
********************************************************************************
* COPYRIGHT AND TRADEMARK NOTICE
* Copyright 2005 - 2015 Klemen Stirn . All Rights Reserved .
* HESK is a registered trademark of Klemen Stirn .
* The HESK may be used and modified free of charge by anyone
* AS LONG AS COPYRIGHT NOTICES AND ALL THE COMMENTS REMAIN INTACT .
* By using this code you agree to indemnify Klemen Stirn from any
* liability that might arise from it ' s use .
* Selling the code for this program , in part or full , without prior
* written consent is expressly forbidden .
* Using this code , in part or full , to create derivate work ,
* new scripts or products is expressly forbidden . Obtain permission
* before redistributing this software over the Internet or in
* any other medium . In all cases copyright and header must remain intact .
* This Copyright is in full effect in any country that has International
* Trade Agreements with the United States of America or
* with the European Union .
* Removing any of the copyright notices without purchasing a license
* is expressly forbidden . To remove HESK copyright notice you must purchase
* a license for this script . For more information on how to obtain
* a license please visit the page below :
* https :// www . hesk . com / buy . php
*******************************************************************************/
define ( 'IN_SCRIPT' , 1 );
define ( 'HESK_PATH' , '../' );
define ( 'WYSIWYG' , 1 );
2015-09-26 21:50:04 -04:00
define ( 'VALIDATOR' , 1 );
2014-03-23 16:03:30 -04:00
2016-01-28 09:07:08 -05:00
define ( 'EXTRA_JS' , '<script src="' . HESK_PATH . 'internal-api/js/admin-ticket.js"></script>' );
2014-03-23 16:03:30 -04:00
/* Get all the required files and functions */
require ( HESK_PATH . 'hesk_settings.inc.php' );
require ( HESK_PATH . 'inc/common.inc.php' );
require ( HESK_PATH . 'inc/admin_functions.inc.php' );
2015-07-30 12:35:30 -04:00
require ( HESK_PATH . 'inc/status_functions.inc.php' );
2015-08-06 12:21:43 -04:00
require ( HESK_PATH . 'inc/view_attachment_functions.inc.php' );
2016-09-11 22:14:15 -04:00
require ( HESK_PATH . 'inc/mail_functions.inc.php' );
2014-03-23 16:03:30 -04:00
hesk_load_database_functions ();
hesk_session_start ();
hesk_dbConnect ();
hesk_isLoggedIn ();
/* Check permissions for this feature */
hesk_checkPermission ( 'can_view_tickets' );
2015-09-01 12:22:03 -04:00
$modsForHesk_settings = mfh_getSettings ();
2015-09-12 00:46:46 -04:00
$can_del_notes = hesk_checkPermission ( 'can_del_notes' , 0 );
$can_reply = hesk_checkPermission ( 'can_reply_tickets' , 0 );
$can_delete = hesk_checkPermission ( 'can_del_tickets' , 0 );
$can_edit = hesk_checkPermission ( 'can_edit_tickets' , 0 );
$can_archive = hesk_checkPermission ( 'can_add_archive' , 0 );
$can_assign_self = hesk_checkPermission ( 'can_assign_self' , 0 );
$can_view_unassigned = hesk_checkPermission ( 'can_view_unassigned' , 0 );
$can_change_cat = hesk_checkPermission ( 'can_change_cat' , 0 );
2016-10-05 17:53:23 -04:00
$can_change_own_cat = hesk_checkPermission ( 'can_change_own_cat' , 0 );
2015-09-12 00:46:46 -04:00
$can_ban_emails = hesk_checkPermission ( 'can_ban_emails' , 0 );
$can_unban_emails = hesk_checkPermission ( 'can_unban_emails' , 0 );
$can_ban_ips = hesk_checkPermission ( 'can_ban_ips' , 0 );
$can_unban_ips = hesk_checkPermission ( 'can_unban_ips' , 0 );
2016-10-05 17:53:23 -04:00
$can_resolve = hesk_checkPermission ( 'can_resolve' , 0 );
2014-03-23 16:03:30 -04:00
// Get ticket ID
$trackingID = hesk_cleanID () or print_form ();
2016-10-05 17:53:23 -04:00
// Load custom fields
require_once ( HESK_PATH . 'inc/custom_fields.inc.php' );
2015-09-12 00:46:46 -04:00
$_SERVER [ 'PHP_SELF' ] = 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 );
2014-03-23 16:03:30 -04:00
/* We will need timer function */
2015-09-12 00:46:46 -04:00
define ( 'TIMER' , 1 );
2014-03-23 16:03:30 -04:00
/* Get ticket info */
2015-09-12 00:46:46 -04:00
$res = hesk_dbQuery ( " SELECT `t1`.* , `t2`.name AS `repliername` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` AS `t1` LEFT JOIN ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " users` AS `t2` ON `t1`.`replierid` = `t2`.`id` WHERE `trackid`=' " . hesk_dbEscape ( $trackingID ) . " ' LIMIT 1 " );
2014-03-23 16:03:30 -04:00
/* Ticket found? */
2015-09-12 00:46:46 -04:00
if ( hesk_dbNumRows ( $res ) != 1 ) {
/* Ticket not found, perhaps it was merged with another ticket? */
$res = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` WHERE `merged` LIKE '%# " . hesk_dbEscape ( $trackingID ) . " #%' LIMIT 1 " );
if ( hesk_dbNumRows ( $res ) == 1 ) {
/* OK, found in a merged ticket. Get info */
$ticket = hesk_dbFetchAssoc ( $res );
hesk_process_messages ( sprintf ( $hesklang [ 'tme' ], $trackingID , $ticket [ 'trackid' ]), 'NOREDIRECT' , 'NOTICE' );
2014-03-23 16:03:30 -04:00
$trackingID = $ticket [ 'trackid' ];
2015-09-12 00:46:46 -04:00
} else {
/* Nothing found, error out */
hesk_process_messages ( $hesklang [ 'ticket_not_found' ], 'NOREDIRECT' );
print_form ();
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
} else {
/* We have a match, get ticket info */
$ticket = hesk_dbFetchAssoc ( $res );
2014-03-23 16:03:30 -04:00
}
/* Permission to view this ticket? */
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'owner' ] && $ticket [ 'owner' ] != $_SESSION [ 'id' ] && ! hesk_checkPermission ( 'can_view_ass_others' , 0 )) {
hesk_error ( $hesklang [ 'ycvtao' ]);
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
if ( ! $ticket [ 'owner' ] && ! $can_view_unassigned ) {
hesk_error ( $hesklang [ 'ycovtay' ]);
2014-03-23 16:03:30 -04:00
}
/* Set last replier name */
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'lastreplier' ]) {
if ( empty ( $ticket [ 'repliername' ])) {
$ticket [ 'repliername' ] = $hesklang [ 'staff' ];
}
} else {
$ticket [ 'repliername' ] = $ticket [ 'name' ];
2014-03-23 16:03:30 -04:00
}
/* Get category name and ID */
2015-09-12 00:46:46 -04:00
$result = hesk_dbQuery ( " SELECT `id`, `name`, `manager` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " categories` WHERE `id`=' " . intval ( $ticket [ 'category' ]) . " ' LIMIT 1 " );
2014-03-23 16:03:30 -04:00
/* If this category has been deleted use the default category with ID 1 */
2015-09-12 00:46:46 -04:00
if ( hesk_dbNumRows ( $result ) != 1 ) {
$result = hesk_dbQuery ( " SELECT `id`, `name`, `manager` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " categories` WHERE `id`='1' LIMIT 1 " );
2014-03-23 16:03:30 -04:00
}
$category = hesk_dbFetchAssoc ( $result );
2015-09-12 00:46:46 -04:00
$managerRS = hesk_dbQuery ( 'SELECT * FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'users` WHERE `id` = ' . intval ( $_SESSION [ 'id' ]));
2015-06-05 19:03:52 -04:00
$managerRow = hesk_dbFetchAssoc ( $managerRS );
$isManager = $managerRow [ 'id' ] == $category [ 'manager' ];
if ( $isManager ) {
$can_del_notes = $can_reply = $can_delete = $can_edit = $can_archive = $can_assign_self = $can_view_unassigned = $can_change_cat = true ;
}
2014-03-23 16:03:30 -04:00
/* Is this user allowed to view tickets inside this category? */
hesk_okCategory ( $category [ 'id' ]);
/* Delete post action */
2015-09-12 00:46:46 -04:00
if ( isset ( $_GET [ 'delete_post' ]) && $can_delete && hesk_token_check ()) {
$n = intval ( hesk_GET ( 'delete_post' ));
if ( $n ) {
/* Get last reply ID, we'll need it later */
$res = hesk_dbQuery ( " SELECT `id` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' ORDER BY `id` DESC LIMIT 1 " );
$last_reply_id = hesk_dbResult ( $res , 0 , 0 );
2014-03-23 16:03:30 -04:00
2015-01-11 11:45:56 -05:00
// Was this post submitted by staff and does it have any attachments?
2015-09-12 00:46:46 -04:00
$res = hesk_dbQuery ( " SELECT `dt`, `staffid`, `attachments` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `id`=' " . intval ( $n ) . " ' AND `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
2015-01-11 11:45:56 -05:00
$reply = hesk_dbFetchAssoc ( $res );
// If the reply was by a staff member update the appropriate columns
2015-09-12 00:46:46 -04:00
if ( $reply [ 'staffid' ]) {
2015-01-11 11:45:56 -05:00
// Is this the only staff reply? Delete "firstreply" and "firstreplyby" columns
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'staffreplies' ] <= 1 ) {
2015-01-11 11:45:56 -05:00
$staffreplies_sql = ' , `firstreply`=NULL, `firstreplyby`=NULL, `staffreplies`=0 ' ;
2015-09-12 00:46:46 -04:00
} // Are we deleting the first staff reply? Update "firstreply" and "firstreplyby" columns
elseif ( $reply [ 'dt' ] == $ticket [ 'firstreply' ] && $reply [ 'staffid' ] == $ticket [ 'firstreplyby' ]) {
2015-01-11 11:45:56 -05:00
// Get the new first reply info
2015-09-12 00:46:46 -04:00
$res = hesk_dbQuery ( " SELECT `dt`, `staffid` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' AND `id`!=' " . intval ( $n ) . " ' AND `staffid`!=0 ORDER BY `id` ASC LIMIT 1 " );
2015-01-11 11:45:56 -05:00
// Did we find the new first reply?
2015-09-12 00:46:46 -04:00
if ( hesk_dbNumRows ( $res )) {
2015-01-11 11:45:56 -05:00
$firstreply = hesk_dbFetchAssoc ( $res );
2015-09-12 00:46:46 -04:00
$staffreplies_sql = " , `firstreply`=' " . hesk_dbEscape ( $firstreply [ 'dt' ]) . " ', `firstreplyby`=' " . hesk_dbEscape ( $firstreply [ 'staffid' ]) . " ', `staffreplies`=`staffreplies`-1 " ;
} // The count must have been wrong, update it
else {
2015-01-11 11:45:56 -05:00
$staffreplies_sql = ' , `firstreply`=NULL, `firstreplyby`=NULL, `staffreplies`=0 ' ;
}
2015-09-12 00:46:46 -04:00
} // OK, this is not the first and not the only staff reply, just reduce number
else {
2015-01-11 11:45:56 -05:00
$staffreplies_sql = ' , `staffreplies`=`staffreplies`-1 ' ;
}
2015-09-12 00:46:46 -04:00
} else {
2015-01-11 11:45:56 -05:00
$staffreplies_sql = '' ;
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Delete any attachments to this post */
if ( strlen ( $reply [ 'attachments' ])) {
$hesk_settings [ 'server_path' ] = dirname ( dirname ( __FILE__ ));
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* List of attachments */
$att = explode ( ',' , substr ( $reply [ 'attachments' ], 0 , - 1 ));
foreach ( $att as $myatt ) {
list ( $att_id , $att_name ) = explode ( '#' , $myatt );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Delete attachment files */
$res = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id`=' " . intval ( $att_id ) . " ' LIMIT 1 " );
if ( hesk_dbNumRows ( $res ) && $file = hesk_dbFetchAssoc ( $res )) {
hesk_unlink ( $hesk_settings [ 'server_path' ] . '/' . $hesk_settings [ 'attach_dir' ] . '/' . $file [ 'saved_name' ]);
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Delete attachments info from the database */
hesk_dbQuery ( " DELETE FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id`=' " . intval ( $att_id ) . " ' LIMIT 1 " );
}
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Delete this reply */
hesk_dbQuery ( " DELETE FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `id`=' " . intval ( $n ) . " ' AND `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
2014-03-23 16:03:30 -04:00
/* Reply wasn't deleted */
2015-09-12 00:46:46 -04:00
if ( hesk_dbAffectedRows () != 1 ) {
hesk_process_messages ( $hesklang [ 'repl1' ], $_SERVER [ 'PHP_SELF' ]);
} else {
2015-01-11 11:45:56 -05:00
$closed_sql = '' ;
2015-01-17 10:32:57 -05:00
$changeStatusRs = hesk_dbQuery ( ' SELECT `id` , `LockedTicketStatus` , `IsCustomerReplyStatus` , `IsDefaultStaffReplyStatus` , `IsNewTicketStatus`
2015-09-12 00:46:46 -04:00
FROM `' . hesk_dbEscape($hesk_settings['db_pfix']) . 'statuses`
2015-01-17 10:32:57 -05:00
WHERE `LockedTicketStatus` = 1
OR `IsCustomerReplyStatus` = 1
OR `IsDefaultStaffReplyStatus` = 1
OR `IsNewTicketStatus` = 1 ' );
$lockedTicketStatus = '' ;
$customerReplyStatus = '' ;
$defaultStaffReplyStatus = '' ;
$newTicketStatus = '' ;
2015-09-12 00:46:46 -04:00
while ( $row = hesk_dbFetchAssoc ( $changeStatusRs )) {
2015-01-17 10:32:57 -05:00
if ( $row [ 'LockedTicketStatus' ]) {
$lockedTicketStatus = $row [ 'id' ];
} elseif ( $row [ 'IsCustomerReplyStatus' ]) {
$customerReplyStatus = $row [ 'id' ];
} elseif ( $row [ 'IsDefaultStaffReplyStatus' ]) {
$defaultStaffReplyStatus = $row [ 'id' ];
} elseif ( $row [ 'IsNewTicketStatus' ]) {
$newTicketStatus = $row [ 'id' ];
}
}
2015-01-11 11:45:56 -05:00
2015-09-12 00:46:46 -04:00
/* Reply deleted. Need to update status and last replier? */
$res = hesk_dbQuery ( " SELECT `dt`, `staffid` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' ORDER BY `id` DESC LIMIT 1 " );
if ( hesk_dbNumRows ( $res )) {
$replier_id = hesk_dbResult ( $res , 0 , 1 );
2014-03-23 16:03:30 -04:00
$last_replier = $replier_id ? 1 : 0 ;
2015-09-12 00:46:46 -04:00
/* Change status? */
2014-03-23 16:03:30 -04:00
$status_sql = '' ;
2015-09-12 00:46:46 -04:00
if ( $last_reply_id == $n ) {
$status = $ticket [ 'locked' ] ? $lockedTicketStatus : ( $last_replier ? $defaultStaffReplyStatus : $customerReplyStatus );
$status_sql = " , `status`=' " . intval ( $status ) . " ' " ;
2015-01-11 11:45:56 -05:00
// Update closedat and closedby columns as required
2015-09-12 00:46:46 -04:00
if ( $status == $lockedTicketStatus ) {
$closed_sql = " , `closedat`=NOW(), `closedby`= " . intval ( $_SESSION [ 'id' ]) . " " ;
2015-01-11 11:45:56 -05:00
}
2015-09-12 00:46:46 -04:00
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `lastchange`=NOW(), `lastreplier`=' { $last_replier } ', `replierid`=' " . intval ( $replier_id ) . " ', `replies`=`replies`-1 $status_sql $closed_sql $staffreplies_sql WHERE `id`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
} else {
2015-01-11 11:45:56 -05:00
// Update status, closedat and closedby columns as required
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'locked' ]) {
2015-01-17 10:32:57 -05:00
$status = $lockedTicketStatus ;
2015-09-12 00:46:46 -04:00
$closed_sql = " , `closedat`=NOW(), `closedby`= " . intval ( $_SESSION [ 'id' ]) . " " ;
} else {
2015-01-17 10:32:57 -05:00
$status = $newTicketStatus ;
2015-01-11 11:45:56 -05:00
$closed_sql = " , `closedat`=NULL, `closedby`=NULL " ;
}
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `lastchange`=NOW(), `lastreplier`='0', `status`=' $status ', `replies`=0 $staffreplies_sql WHERE `id`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
hesk_process_messages ( $hesklang [ 'repl' ], $_SERVER [ 'PHP_SELF' ], 'SUCCESS' );
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
} else {
hesk_process_messages ( $hesklang [ 'repl0' ], $_SERVER [ 'PHP_SELF' ]);
2014-03-23 16:03:30 -04:00
}
}
/* Delete notes action */
2015-09-12 00:46:46 -04:00
if ( isset ( $_GET [ 'delnote' ]) && hesk_token_check ()) {
$n = intval ( hesk_GET ( 'delnote' ));
if ( $n ) {
2015-01-11 11:45:56 -05:00
// Get note info
2015-09-12 00:46:46 -04:00
$res = hesk_dbQuery ( " SELECT `who`, `attachments` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` WHERE `id`= { $n } " );
2015-01-11 11:45:56 -05:00
2015-09-12 00:46:46 -04:00
if ( hesk_dbNumRows ( $res )) {
2015-01-11 11:45:56 -05:00
$note = hesk_dbFetchAssoc ( $res );
// Permission to delete note?
2015-09-12 00:46:46 -04:00
if ( $can_del_notes || $note [ 'who' ] == $_SESSION [ 'id' ]) {
2015-01-11 11:45:56 -05:00
// Delete note
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " DELETE FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` WHERE `id`=' " . intval ( $n ) . " ' LIMIT 1 " );
2015-01-11 11:45:56 -05:00
// Delete attachments
2015-09-12 00:46:46 -04:00
if ( strlen ( $note [ 'attachments' ])) {
2015-01-11 11:45:56 -05:00
$hesk_settings [ 'server_path' ] = dirname ( dirname ( __FILE__ ));
$attachments = array ();
2015-09-12 00:46:46 -04:00
$att = explode ( ',' , substr ( $note [ 'attachments' ], 0 , - 1 ));
foreach ( $att as $myatt ) {
2015-01-11 11:45:56 -05:00
list ( $att_id , $att_name ) = explode ( '#' , $myatt );
$attachments [] = intval ( $att_id );
}
2015-09-12 00:46:46 -04:00
if ( count ( $attachments )) {
$res = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id` IN ( " . implode ( ',' , $attachments ) . " ) " );
while ( $file = hesk_dbFetchAssoc ( $res )) {
hesk_unlink ( $hesk_settings [ 'server_path' ] . '/' . $hesk_settings [ 'attach_dir' ] . '/' . $file [ 'saved_name' ]);
2015-01-11 11:45:56 -05:00
}
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " DELETE FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id` IN ( " . implode ( ',' , $attachments ) . " ) " );
2015-01-11 11:45:56 -05:00
}
}
}
2014-03-23 16:03:30 -04:00
}
}
2015-01-11 11:45:56 -05:00
2015-09-12 00:46:46 -04:00
header ( 'Location: admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2014-03-23 16:03:30 -04:00
exit ();
}
/* Add a note action */
2015-09-12 00:46:46 -04:00
if ( isset ( $_POST [ 'notemsg' ]) && hesk_token_check ( 'POST' )) {
2015-01-11 11:45:56 -05:00
// Error buffer
$hesk_error_buffer = array ();
// Get message
2015-09-12 00:46:46 -04:00
$msg = hesk_input ( hesk_POST ( 'notemsg' ));
2014-03-23 16:03:30 -04:00
2015-01-11 11:45:56 -05:00
// Get attachments
2015-09-12 00:46:46 -04:00
if ( $hesk_settings [ 'attachments' ][ 'use' ]) {
2015-01-11 11:45:56 -05:00
require ( HESK_PATH . 'inc/posting_functions.inc.php' );
2015-08-02 16:51:24 -04:00
require ( HESK_PATH . 'inc/htmLawed.php' );
2015-01-11 11:45:56 -05:00
require ( HESK_PATH . 'inc/attachments.inc.php' );
$attachments = array ();
2015-12-28 12:47:51 -05:00
$use_legacy_attachments = hesk_POST ( 'use-legacy-attachments' , 0 );
if ( $use_legacy_attachments ) {
for ( $i = 1 ; $i <= $hesk_settings [ 'attachments' ][ 'max_number' ]; $i ++ ) {
$att = hesk_uploadFile ( $i );
if ( $att !== false && ! empty ( $att )) {
$attachments [ $i ] = $att ;
}
}
} else {
// The user used the new drag-and-drop system.
$temp_attachment_ids = hesk_POST_array ( 'attachment-ids' );
foreach ( $temp_attachment_ids as $temp_attachment_id ) {
// Simply get the temp info and move it to the attachments table
$temp_attachment = mfh_getTemporaryAttachment ( $temp_attachment_id );
$attachments [] = $temp_attachment ;
mfh_deleteTemporaryAttachment ( $temp_attachment_id );
2015-01-11 11:45:56 -05:00
}
}
2015-12-28 12:47:51 -05:00
2015-01-11 11:45:56 -05:00
}
2015-09-12 00:46:46 -04:00
$myattachments = '' ;
2015-01-11 11:45:56 -05:00
// We need message and/or attachments to accept note
2015-09-12 00:46:46 -04:00
if ( count ( $attachments ) || strlen ( $msg ) || count ( $hesk_error_buffer )) {
2015-01-11 11:45:56 -05:00
// Any errors?
2015-09-12 00:46:46 -04:00
if ( count ( $hesk_error_buffer ) != 0 ) {
2015-01-11 11:45:56 -05:00
$_SESSION [ 'note_message' ] = hesk_POST ( 'notemsg' );
// Remove any successfully uploaded attachments
2015-09-12 00:46:46 -04:00
if ( $hesk_settings [ 'attachments' ][ 'use' ]) {
2015-01-11 11:45:56 -05:00
hesk_removeAttachments ( $attachments );
}
$tmp = '' ;
2015-09-12 00:46:46 -04:00
foreach ( $hesk_error_buffer as $error ) {
2015-01-11 11:45:56 -05:00
$tmp .= " <li> $error </li> \n " ;
}
$hesk_error_buffer = $tmp ;
2015-09-12 00:46:46 -04:00
$hesk_error_buffer = $hesklang [ 'pcer' ] . '<br /><br /><ul>' . $hesk_error_buffer . '</ul>' ;
hesk_process_messages ( $hesk_error_buffer , 'admin_ticket.php?track=' . $ticket [ 'trackid' ] . '&Refresh=' . rand ( 10000 , 99999 ));
2015-01-11 11:45:56 -05:00
}
// Process attachments
2015-09-12 00:46:46 -04:00
if ( $hesk_settings [ 'attachments' ][ 'use' ] && ! empty ( $attachments )) {
foreach ( $attachments as $myatt ) {
hesk_dbQuery ( " INSERT INTO ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` (`ticket_id`,`saved_name`,`real_name`,`size`,`type`) VALUES (' " . hesk_dbEscape ( $trackingID ) . " ',' " . hesk_dbEscape ( $myatt [ 'saved_name' ]) . " ',' " . hesk_dbEscape ( $myatt [ 'real_name' ]) . " ',' " . intval ( $myatt [ 'size' ]) . " ', '1') " );
$myattachments .= hesk_dbInsertID () . '#' . $myatt [ 'real_name' ] . '#' . $myatt [ 'saved_name' ] . ',' ;
2015-01-11 11:45:56 -05:00
}
}
2014-11-28 22:17:47 -05:00
2015-01-11 11:45:56 -05:00
// Add note to database
$msg = nl2br ( hesk_makeURL ( $msg ));
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " INSERT INTO ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` (`ticket`,`who`,`dt`,`message`,`attachments`) VALUES (' " . intval ( $ticket [ 'id' ]) . " ',' " . intval ( $_SESSION [ 'id' ]) . " ',NOW(),' " . hesk_dbEscape ( $msg ) . " ',' " . hesk_dbEscape ( $myattachments ) . " ') " );
2014-03-23 16:03:30 -04:00
/* Notify assigned staff that a note has been added if needed */
2015-09-12 00:46:46 -04:00
$users = hesk_dbQuery ( " SELECT `email`, `notify_note` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " users` WHERE (`id`=' " . intval ( $ticket [ 'owner' ]) . " ' OR (`isadmin` = '1' AND `notify_note_unassigned` = '1')) AND `id` <> ' " . intval ( $_SESSION [ 'id' ]) . " ' " );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
if ( hesk_dbNumRows ( $users ) > 0 ) {
2014-11-24 21:46:08 -05:00
// 1. Generate the array with ticket info that can be used in emails
$info = array (
2015-09-12 00:46:46 -04:00
'email' => $ticket [ 'email' ],
'category' => $ticket [ 'category' ],
'priority' => $ticket [ 'priority' ],
'owner' => $ticket [ 'owner' ],
'trackid' => $ticket [ 'trackid' ],
'status' => $ticket [ 'status' ],
'name' => $_SESSION [ 'name' ],
'lastreplier' => $ticket [ 'lastreplier' ],
'subject' => $ticket [ 'subject' ],
'message' => stripslashes ( $msg ),
'dt' => hesk_date ( $ticket [ 'dt' ], true ),
'lastchange' => hesk_date ( $ticket [ 'lastchange' ], true ),
'attachments' => $myattachments ,
'id' => $ticket [ 'id' ],
2014-11-24 21:46:08 -05:00
);
// 2. Add custom fields to the array
2015-09-12 00:46:46 -04:00
foreach ( $hesk_settings [ 'custom_fields' ] as $k => $v ) {
2014-11-24 21:46:08 -05:00
$info [ $k ] = $v [ 'use' ] ? $ticket [ $k ] : '' ;
}
// 3. Make sure all values are properly formatted for email
$ticket = hesk_ticketToPlain ( $info , 1 , 0 );
/* Get email functions */
require ( HESK_PATH . 'inc/email_functions.inc.php' );
/* Format email subject and message for staff */
2015-09-12 00:46:46 -04:00
$subject = hesk_getEmailSubject ( 'new_note' , $ticket );
$message = hesk_getEmailMessage ( 'new_note' , $ticket , $modsForHesk_settings , 1 );
$htmlMessage = hesk_getHtmlMessage ( 'new_note' , $ticket , $modsForHesk_settings , 1 );
2015-09-03 21:58:05 -04:00
$hasMessage = hesk_doesTemplateHaveTag ( 'new_note' , '%%MESSAGE%%' , $modsForHesk_settings );
2015-04-18 22:20:47 -04:00
2014-11-24 21:46:08 -05:00
/* Send email to staff */
while ( $user = hesk_dbFetchAssoc ( $users )) {
2015-09-03 21:58:05 -04:00
hesk_mail ( $user [ 'email' ], $subject , $message , $htmlMessage , $modsForHesk_settings , array (), array (), $hasMessage );
2014-11-24 21:46:08 -05:00
}
2014-03-23 16:03:30 -04:00
}
}
2015-09-12 00:46:46 -04:00
header ( 'Location: admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2014-03-23 16:03:30 -04:00
exit ();
}
/* Update time worked */
2015-09-12 00:46:46 -04:00
if ( $hesk_settings [ 'time_worked' ] && ( $can_reply || $can_edit ) && isset ( $_POST [ 'h' ]) && isset ( $_POST [ 'm' ]) && isset ( $_POST [ 's' ]) && hesk_token_check ( 'POST' )) {
$h = intval ( hesk_POST ( 'h' ));
$m = intval ( hesk_POST ( 'm' ));
$s = intval ( hesk_POST ( 's' ));
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Get time worked in proper format */
2014-03-23 16:03:30 -04:00
$time_worked = hesk_getTime ( $h . ':' . $m . ':' . $s );
2015-09-12 00:46:46 -04:00
/* Update database */
$revision = sprintf ( $hesklang [ 'thist14' ], hesk_date (), $time_worked , $_SESSION [ 'name' ] . ' (' . $_SESSION [ 'user' ] . ')' );
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `time_worked`=' " . hesk_dbEscape ( $time_worked ) . " ', `history`=CONCAT(`history`,' " . hesk_dbEscape ( $revision ) . " ') WHERE `trackid`=' " . hesk_dbEscape ( $trackingID ) . " ' LIMIT 1 " );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Show ticket */
hesk_process_messages ( $hesklang [ 'twu' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2014-03-23 16:03:30 -04:00
}
2014-09-27 22:14:49 -04:00
/* Add child action */
if (( $can_reply || $can_edit ) && isset ( $_POST [ 'childTrackingId' ])) {
//-- Make sure this isn't the same ticket or one of its merged tickets.
2015-09-12 00:46:46 -04:00
$mergedTickets = hesk_dbQuery ( 'SELECT * FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . ' tickets ` WHERE ` trackid ` =
\ '' . hesk_dbEscape ( $trackingID ) . '\' AND `merged` LIKE \'%#' . hesk_dbEscape ( $_POST [ 'childTrackingId' ]) . '#%\'' );
2014-09-27 22:14:49 -04:00
if ( $_POST [ 'childTrackingId' ] == $trackingID || $mergedTickets -> num_rows > 0 ) {
2015-10-28 22:01:34 -04:00
hesk_process_messages ( $hesklang [ 'cannot_link_ticket_to_itself' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2014-09-27 22:14:49 -04:00
}
//-- Does the child exist?
2015-09-12 00:46:46 -04:00
$existRs = hesk_dbQuery ( 'SELECT * FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` WHERE `trackid` = \'' . hesk_dbEscape ( $_POST [ 'childTrackingId' ]) . '\'' );
2014-09-27 22:14:49 -04:00
if ( $existRs -> num_rows == 0 ) {
//-- Maybe it was merged?
2015-09-12 00:46:46 -04:00
$existRs = hesk_dbQuery ( 'SELECT `trackid` FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` WHERE `merged` LIKE \'#' . hesk_dbEscape ( $_POST [ 'childTrackingId' ]) . '#\'' );
2014-09-27 22:14:49 -04:00
if ( $existRs -> num_rows > 0 ) {
//-- Yes, it was merged. Set the child to the "new" ticket; not the merged one.
2016-06-07 12:16:17 -04:00
$exist = hesk_dbFetchAssoc ( $existRs );
2014-09-27 22:14:49 -04:00
$_POST [ 'childTrackingId' ] = $exist [ 'trackid' ];
} else {
2015-10-28 22:01:34 -04:00
hesk_process_messages ( sprintf ( $hesklang [ 'linked_ticket_does_not_exist' ], $_POST [ 'childTrackingId' ]), 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2014-09-27 22:14:49 -04:00
}
}
//-- Check if the ticket is already a child.
2015-09-12 00:46:46 -04:00
$childRs = hesk_dbQuery ( 'SELECT * FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` WHERE `parent` = ' . $ticket [ 'id' ] . ' AND `trackid` = \'' . $_POST [ 'childTrackingId' ] . '\'' );
2014-09-27 22:14:49 -04:00
if ( $childRs -> num_rows > 0 ) {
2015-10-28 22:01:34 -04:00
hesk_process_messages ( sprintf ( $hesklang [ 'is_already_linked' ], $_POST [ 'childTrackingId' ]), 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'NOTICE' );
2014-09-27 22:14:49 -04:00
}
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( 'UPDATE `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` SET `parent` = ' . $ticket [ 'id' ] . ' WHERE `trackid` = \'' . $_POST [ 'childTrackingId' ] . '\'' );
2015-10-28 22:01:34 -04:00
hesk_process_messages ( sprintf ( $hesklang [ 'link_added' ], $_POST [ 'childTrackingId' ]), 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2014-09-27 22:14:49 -04:00
}
/* Delete child action */
2014-09-28 00:07:25 -04:00
if (( $can_reply || $can_edit ) && isset ( $_GET [ 'deleteChild' ])) {
//-- Delete the relationship
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( 'UPDATE `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` SET `parent` = NULL WHERE `ID` = ' . hesk_dbEscape ( $_GET [ 'deleteChild' ]));
2015-10-28 22:01:34 -04:00
hesk_process_messages ( $hesklang [ 'ticket_no_longer_linked' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2014-09-28 00:07:25 -04:00
} elseif (( $can_reply || $can_edit ) && isset ( $_GET [ 'deleteParent' ])) {
//-- Delete the relationship
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( 'UPDATE `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'tickets` SET `parent` = NULL WHERE `ID` = ' . hesk_dbEscape ( $ticket [ 'id' ]));
2015-10-28 22:01:34 -04:00
hesk_process_messages ( $hesklang [ 'ticket_no_longer_linked' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2014-09-28 00:07:25 -04:00
}
2014-09-27 22:14:49 -04:00
2014-03-23 16:03:30 -04:00
/* Delete attachment action */
2015-09-12 00:46:46 -04:00
if ( isset ( $_GET [ 'delatt' ]) && hesk_token_check ()) {
if ( ! $can_delete || ! $can_edit ) {
hesk_process_messages ( $hesklang [ 'no_permission' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
$att_id = intval ( hesk_GET ( 'delatt' )) or hesk_error ( $hesklang [ 'inv_att_id' ]);
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
$reply = intval ( hesk_GET ( 'reply' , 0 ));
if ( $reply < 1 ) {
$reply = 0 ;
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
$note = intval ( hesk_GET ( 'note' , 0 ));
if ( $note < 1 ) {
2015-01-11 11:45:56 -05:00
$note = 0 ;
}
/* Get attachment info */
2015-09-12 00:46:46 -04:00
$res = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id`=' " . intval ( $att_id ) . " ' LIMIT 1 " );
if ( hesk_dbNumRows ( $res ) != 1 ) {
hesk_process_messages ( $hesklang [ 'id_not_valid' ] . ' (att_id)' , 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
2015-01-11 11:45:56 -05:00
}
2015-09-12 00:46:46 -04:00
$att = hesk_dbFetchAssoc ( $res );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Is ticket ID valid for this attachment? */
if ( $att [ 'ticket_id' ] != $trackingID ) {
hesk_process_messages ( $hesklang [ 'trackID_not_found' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ));
}
/* Delete file from server */
hesk_unlink ( HESK_PATH . $hesk_settings [ 'attach_dir' ] . '/' . $att [ 'saved_name' ]);
/* Delete attachment from database */
hesk_dbQuery ( " DELETE FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " attachments` WHERE `att_id`=' " . intval ( $att_id ) . " ' " );
/* Update ticket or reply in the database */
$revision = sprintf ( $hesklang [ 'thist12' ], hesk_date (), $att [ 'real_name' ], $_SESSION [ 'name' ] . ' (' . $_SESSION [ 'user' ] . ')' );
if ( $reply ) {
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ] . '#' . $att [ 'saved_name' ]) . " ,','') WHERE `id`=' " . intval ( $reply ) . " ' LIMIT 1 " );
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ]) . " ,','') WHERE `id`=' " . intval ( $reply ) . " ' LIMIT 1 " );
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `history`=CONCAT(`history`,' " . hesk_dbEscape ( $revision ) . " ') WHERE `id`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
} elseif ( $note ) {
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ] . '#' . $att [ 'saved_name' ]) . " ,','') WHERE `id`= { $note } LIMIT 1 " );
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ]) . " ,','') WHERE `id`= { $note } LIMIT 1 " );
} else {
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ] . '#' . $att [ 'saved_name' ]) . " ,','') WHERE `id`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `attachments`=REPLACE(`attachments`,' " . hesk_dbEscape ( $att_id . '#' . $att [ 'real_name' ]) . " ,',''), `history`=CONCAT(`history`,' " . hesk_dbEscape ( $revision ) . " ') WHERE `id`=' " . intval ( $ticket [ 'id' ]) . " ' LIMIT 1 " );
}
hesk_process_messages ( $hesklang [ 'kb_att_rem' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2014-03-23 16:03:30 -04:00
}
2015-05-23 14:53:38 -04:00
//-- Update location action
if ( isset ( $_POST [ 'latitude' ]) && isset ( $_POST [ 'longitude' ])) {
2015-09-12 00:46:46 -04:00
hesk_dbQuery ( " UPDATE ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets` SET `latitude` = ' " . hesk_dbEscape ( $_POST [ 'latitude' ]) . " ',
`longitude` = '" . hesk_dbEscape($_POST[' longitude ']) . "' WHERE `ID` = " . intval( $ticket['id'] ));
2015-05-23 14:53:38 -04:00
//redirect
2015-09-12 00:46:46 -04:00
hesk_process_messages ( $hesklang [ 'ticket_location_updated' ], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ), 'SUCCESS' );
2015-05-23 14:53:38 -04:00
}
2014-03-23 16:03:30 -04:00
/* Print header */
require_once ( HESK_PATH . 'inc/headerAdmin.inc.php' );
/* List of categories */
2015-07-03 22:23:09 -04:00
$orderBy = $modsForHesk_settings [ 'category_order_column' ];
2016-03-06 22:01:22 -05:00
$result = hesk_dbQuery ( " SELECT `id`,`name` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " categories` WHERE `usage` <> 2 ORDER BY ` " . $orderBy . " ` ASC " );
2015-09-12 00:46:46 -04:00
$categories_options = '' ;
while ( $row = hesk_dbFetchAssoc ( $result )) {
2014-11-21 00:00:17 -05:00
$selected = '' ;
2015-09-12 00:46:46 -04:00
if ( $row [ 'id' ] == $ticket [ 'category' ]) {
$selected = 'selected' ;
}
$categories_options .= '<option value="' . $row [ 'id' ] . '" ' . $selected . '>' . $row [ 'name' ] . '</option>' ;
2014-03-23 16:03:30 -04:00
}
/* List of users */
$admins = array ();
2015-09-12 00:46:46 -04:00
$result = hesk_dbQuery ( " SELECT `id`,`name`,`isadmin`,`categories`,`heskprivileges` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " users` WHERE `active` = '1' ORDER BY `name` ASC " );
while ( $row = hesk_dbFetchAssoc ( $result )) {
/* Is this an administrator? */
if ( $row [ 'isadmin' ]) {
$admins [ $row [ 'id' ]] = $row [ 'name' ];
continue ;
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
/* Not admin, is user allowed to view tickets? */
if ( strpos ( $row [ 'heskprivileges' ], 'can_view_tickets' ) !== false ) {
/* Is user allowed to access this category? */
$cat = substr ( $row [ 'categories' ], 0 );
$row [ 'categories' ] = explode ( ',' , $cat );
if ( in_array ( $ticket [ 'category' ], $row [ 'categories' ])) {
$admins [ $row [ 'id' ]] = $row [ 'name' ];
continue ;
}
}
2014-03-23 16:03:30 -04:00
}
/* Get replies */
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'replies' ]) {
2015-01-11 11:45:56 -05:00
$reply = '' ;
2015-09-12 00:46:46 -04:00
$result = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " replies` WHERE `replyto`=' " . intval ( $ticket [ 'id' ]) . " ' ORDER BY `id` " . ( $hesk_settings [ 'new_top' ] ? 'DESC' : 'ASC' ));
} else {
2015-01-11 11:45:56 -05:00
$reply = false ;
}
2014-03-23 16:03:30 -04:00
// Demo mode
2015-09-12 00:46:46 -04:00
if ( defined ( 'HESK_DEMO' )) {
$ticket [ 'email' ] = 'hidden@demo.com' ;
$ticket [ 'ip' ] = '127.0.0.1' ;
2014-03-23 16:03:30 -04:00
}
2015-04-09 22:08:23 -04:00
// If an email address is tied to this ticket, check if there are any others
$recentTickets = NULL ;
2015-09-12 00:46:46 -04:00
if ( $ticket [ 'email' ] != '' ) {
$recentTicketsSql = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " tickets`
WHERE `email` = '" . hesk_dbEscape($ticket[' email ']) . "' AND `trackid` <> '" . hesk_dbEscape($trackingID) . "' ORDER BY `lastchange` DESC LIMIT 5 " );
2015-04-09 22:08:23 -04:00
while ( $recentRow = hesk_dbFetchAssoc ( $recentTicketsSql )) {
if ( $recentTickets === NULL ) {
$recentTickets = array ();
}
array_push ( $recentTickets , $recentRow );
}
2015-04-09 22:33:15 -04:00
if ( $recentTickets !== NULL ) {
$recentTicketsWithStatuses = array ();
foreach ( $recentTickets as $recentTicket ) {
$newRecentTicket = $recentTicket ;
2015-07-28 12:47:13 -04:00
$thisTicketStatusRS = hesk_dbQuery ( " SELECT `ID`, `TextColor` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " statuses` WHERE `ID` = " . intval ( $recentTicket [ 'status' ]));
2015-04-09 22:33:15 -04:00
$theStatusRow = hesk_dbFetchAssoc ( $thisTicketStatusRS );
2015-07-28 12:47:13 -04:00
$newRecentTicket [ 'statusText' ] = mfh_getDisplayTextForStatusId ( $theStatusRow [ 'ID' ]);
2015-04-09 22:33:15 -04:00
$newRecentTicket [ 'statusColor' ] = $theStatusRow [ 'TextColor' ];
array_push ( $recentTicketsWithStatuses , $newRecentTicket );
}
$recentTickets = $recentTicketsWithStatuses ;
2015-04-09 22:08:23 -04:00
}
}
2016-09-11 22:14:15 -04:00
// TODO Here we go!
2014-03-23 16:03:30 -04:00
/* Print admin navigation */
require_once ( HESK_PATH . 'inc/show_admin_nav.inc.php' );
?>
2016-09-11 22:14:15 -04:00
< section class = " content " >
2016-09-14 22:09:56 -04:00
< ? php
/* This will handle error, success and notice messages */
hesk_handle_messages ();
?>
2016-09-11 22:14:15 -04:00
< h1 >< ? php echo $hesklang [ 'ticket_details' ]; ?> </h1>
2016-09-14 22:09:56 -04:00
< h2 >
< ? php
$tmp = '' ;
if ( $hesk_settings [ 'sequential' ]) {
$tmp = ' (' . $hesklang [ 'seqid' ] . ': ' . $ticket [ 'id' ] . ')' ;
}
echo $trackingID . $tmp ; ?>
</ h2 >
2016-09-11 22:14:15 -04:00
< div class = " box " >
< div class = " box-header " >
< h1 class = " box-title " >
< i class = " fa fa-user " ></ i >
2016-09-14 22:09:56 -04:00
< ? php
echo $ticket [ 'name' ];
if ( $ticket [ 'archive' ]) {
echo ' <span class="label label-primary"><i class="fa fa-tag"></i> ' . $hesklang [ 'archived' ] . '</span>' ;
}
if ( $ticket [ 'locked' ]) {
echo ' <span class="label label-primary"><i class="fa fa-lock"></i> ' . $hesklang [ 'loc' ] . '</span>' ;
}
?>
2016-09-11 22:14:15 -04:00
</ h1 >
< div class = " pull-right " >
2016-09-15 13:06:51 -04:00
< ? php echo hesk_getAdminButtons ( $category [ 'id' ]); ?>
2016-09-11 22:14:15 -04:00
</ div >
</ div >
< div class = " box-body " >
2016-09-14 22:09:56 -04:00
< div class = " callout callout-info " >
< div class = " row " >
< div class = " col-md-3 " >
< strong >< ? php echo $hesklang [ 'created_colon' ]; ?> </strong>
< ? php echo hesk_date ( $ticket [ 'dt' ], true ); ?>
2016-01-28 09:07:08 -05:00
</ div >
2016-09-14 22:09:56 -04:00
< div class = " col-md-3 " >
< strong >< ? php echo $hesklang [ 'updated_colon' ]; ?> </strong>
< ? php echo hesk_date ( $ticket [ 'lastchange' ], true ); ?>
2016-01-28 09:07:08 -05:00
</ div >
2016-09-14 22:09:56 -04:00
< ? php if ( $ticket [ 'language' ] !== NULL ) : ?>
< div class = " col-md-3 " >
< strong >< ? php echo $hesklang [ 'language_colon' ]; ?> </strong>
< ? php echo $ticket [ 'language' ]; ?>
</ div >
< div class = " col-md-3 " >
< strong >< ? php echo $hesklang [ 'last_replier_colon' ]; ?> </strong>
< ? php echo $ticket [ 'repliername' ]; ?>
</ div >
< ? php endif ; ?>
</ div >
</ div >
< div class = " row " >
< div class = " col-md-6 " >
< table class = " table table-striped " >
< tbody >
2016-09-15 22:06:22 -04:00
< ? php if ( $ticket [ 'email' ] !== '' ) : ?>
2016-09-14 22:09:56 -04:00
< tr >
< td >< b >< ? php echo $hesklang [ 'email' ]; ?> </b></td>
< td >
< a href = " mailto:<?php echo $ticket['email'] ; ?> " >< ? php echo $ticket [ 'email' ]; ?> </a>
< ? php
if ( $can_ban_emails && ! empty ( $ticket [ 'email' ])) {
if ( $email_id = hesk_isBannedEmail ( $ticket [ 'email' ])) {
if ( $can_unban_emails ) {
echo '<a href="banned_emails.php?a=unban&track=' . $trackingID . '&id=' . intval ( $email_id ) . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-ban icon-link red gray-on-hover " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['eisban'] . ' ' . $hesklang['click_unban'] . ' " ></ i >
</ a > ' ;
} else {
echo '<i class="fa fa-ban icon-link red" data-toggle="tooltip" data-placement="top" data-original-title="' . $hesklang [ 'eisban' ] . '"></i>' ;
}
} else {
echo '<a href="banned_emails.php?a=ban&track=' . $trackingID . '&email=' . urlencode ( $ticket [ 'email' ]) . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-ban icon-link gray red-on-hover " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['savebanemail'] . ' " ></ i >
</ a > ' ;
}
}
?>
</ td >
</ tr >
2016-09-15 22:06:22 -04:00
< ? php endif ; if ( $hesk_settings [ 'time_worked' ]) : ?>
< tr >
< td >< strong >< ? php echo $hesklang [ 'ip' ]; ?> </strong></td>
< td >
< ? php
// Format IP for lookup
if ( $ticket [ 'ip' ] == 'Unknown' || $ticket [ 'ip' ] == $hesklang [ 'unknown' ]) {
echo $hesklang [ 'unknown' ];
} else {
echo '<a href="../ip_whois.php?ip=' . urlencode ( $ticket [ 'ip' ]) . '">' . $ticket [ 'ip' ] . '</a>' ;
if ( $can_ban_ips ) {
if ( $ip_id = hesk_isBannedIP ( $ticket [ 'ip' ])) {
if ( $can_unban_ips ) {
echo '<a href="banned_ips.php?a=unban&track=' . $trackingID . '&id=' . intval ( $ip_id ) . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-ban red icon-link gray-on-hover " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['ipisban'] . ' ' . $hesklang['click_unban'] . ' " ></ i >
</ a > ' ;
} else {
echo '<i class="fa fa-ban icon-link red" data-toggle="tooltip" data-placement="top" data-original-title="' . $hesklang [ 'ipisban' ] . '"></i>' ;
}
} else {
echo '<a href="banned_ips.php?a=ban&track=' . $trackingID . '&ip=' . urlencode ( $ticket [ 'ip' ]) . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-ban gray icon-link red-on-hover " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['savebanip'] . ' " ></ i >
</ a > ' ;
}
}
}
?>
</ td >
</ tr >
2016-09-14 22:09:56 -04:00
< tr >
< td >< b >< ? php echo $hesklang [ 'ts' ]; ?> </b></td>
< td >
< span class = " click-to-edit " onclick = " Javascript:hesk_toggleLayerDisplay('modifytime') "
data - toggle = " tooltip " title = " <?php echo $hesklang['click_to_edit'] ; ?> " >
< ? php echo $ticket [ 'time_worked' ]; ?>
</ span >
< ? php
if ( $can_reply || $can_edit )
{
?> <?php $t = hesk_getHHMMSS($ticket['time_worked']); ?>
< div id = " modifytime " style = " display:none " >
< form data - toggle = " validator " class = " form-horizontal " method = " post " action = " admin_ticket.php " style = " margin:0px; padding:0px; " >
< div class = " form-group " >
< label for = " h " class = " col-sm-4 control-label " >< ? php echo $hesklang [ 'hh' ]; ?> </label>
< div class = " col-sm-8 " >
< input type = " text " name = " h " value = " <?php echo $t[0] ; ?> " size = " 3 "
data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ); ?> "
placeholder = " <?php echo htmlspecialchars( $hesklang['hh'] ); ?> "
class = " form-control input-sm " required >
</ div >
< div class = " col-sm-12 text-right " >
< div class = " help-block with-errors " ></ div >
</ div >
2015-09-26 21:50:04 -04:00
</ div >
2016-09-14 22:09:56 -04:00
< div class = " form-group input-group-sm " >
< label for = " m " class = " col-sm-4 control-label " >< ? php echo $hesklang [ 'mm' ]; ?> </label>
< div class = " col-sm-8 " >
< input type = " text " name = " m " value = " <?php echo $t[1] ; ?> " size = " 3 "
data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ); ?> "
placeholder = " <?php echo htmlspecialchars( $hesklang['mm'] ); ?> "
class = " form-control input-sm " required >
</ div >
< div class = " col-sm-12 text-right " >
< div class = " help-block with-errors " ></ div >
</ div >
2015-09-26 21:50:04 -04:00
</ div >
2016-09-14 22:09:56 -04:00
< div class = " form-group input-group-sm " >
< label for = " s " class = " col-sm-4 control-label " >< ? php echo $hesklang [ 'ss' ]; ?> </label>
< div class = " col-sm-8 " >
< input type = " text " name = " s " value = " <?php echo $t[2] ; ?> " size = " 3 "
data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ); ?> "
placeholder = " <?php echo htmlspecialchars( $hesklang['ss'] ); ?> "
class = " form-control input-sm " required >
</ div >
< div class = " col-sm-12 text-right " >
< div class = " help-block with-errors " ></ div >
</ div >
2015-09-26 21:50:04 -04:00
</ div >
2016-09-14 22:09:56 -04:00
< div class = " text-right " >
< div class = " btn-group btn-group-sm text-right " >
< input class = " btn btn-primary " type = " submit " value = " <?php echo $hesklang['save'] ; ?> " />
< a class = " btn btn-default " href = " Javascript:void(0) " onclick = " Javascript:hesk_toggleLayerDisplay('modifytime') " >< ? php echo $hesklang [ 'cancel' ]; ?> </a>
</ div >
2015-09-26 21:50:04 -04:00
</ div >
2016-09-14 22:09:56 -04:00
< input type = " hidden " name = " track " value = " <?php echo $trackingID ; ?> " />
< input type = " hidden " name = " token " value = " <?php hesk_token_echo(); ?> " />
</ form >
</ div >
< ? php
}
?>
</ td >
</ tr >
< ? php endif ; ?>
< tr >
< td >< strong >< ? php echo $hesklang [ 'linked_tickets' ]; ?> </strong></td>
< td >
< ? php
if ( $ticket [ 'parent' ] != null ) {
//-- Get the tracking ID of the parent
$parentRs = hesk_dbQuery ( 'SELECT `trackid` FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . ' tickets `
2016-06-07 12:16:17 -04:00
WHERE `ID` = ' . hesk_dbEscape($ticket[' parent ' ]));
2016-09-14 22:09:56 -04:00
$parent = hesk_dbFetchAssoc ( $parentRs );
echo '<a href="admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ) . ' & deleteParent = true " >
2015-09-12 00:46:46 -04:00
< i class = " fa fa-times-circle " data - toggle = " tooltip " data - placement = " top " title = " ' . $hesklang['delete_relationship'] . ' " ></ i ></ a > ' ;
2016-09-14 22:09:56 -04:00
echo ' <a href="admin_ticket.php?track=' . $parent [ 'trackid' ] . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '">' . $parent [ 'trackid' ] . '</a>' ;
}
//-- Check if any tickets have a parent set to this tracking ID
$hasRows = false ;
$childrenRS = hesk_dbQuery ( 'SELECT * FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . ' tickets `
2015-09-12 00:46:46 -04:00
WHERE `parent` = ' . hesk_dbEscape($ticket[' id ' ]));
2016-09-14 22:09:56 -04:00
while ( $row = hesk_dbFetchAssoc ( $childrenRS )) {
$hasRows = true ;
echo '<a href="admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '&deleteChild=' . $row [ 'id' ] . ' " >
2015-10-28 22:01:34 -04:00
< i class = " fa fa-times-circle font-icon red " data - toggle = " tooltip " data - placement = " top " title = " ' . $hesklang['unlink'] . ' " ></ i ></ a > ' ;
2016-09-14 22:09:56 -04:00
echo ' <a href="admin_ticket.php?track=' . $row [ 'trackid' ] . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '">' . $row [ 'trackid' ] . '</a>' ;
echo '<br>' ;
}
if ( ! $hasRows && $ticket [ 'parent' ] == null ) {
echo $hesklang [ 'none' ];
}
if ( $can_reply || $can_edit ) {
?>
< div id = " addChildText " >
< ? php echo '<a href="javascript:void(0)" onclick="toggleChildrenForm(true)"><i class="fa fa-plus-circle"></i> ' . $hesklang [ 'add_ticket' ] . '</a>' ; ?>
</ div >
< div id = " childrenForm " style = " display: none " >
< form action = " admin_ticket.php " method = " post " data - toggle = " validator " >
< div class = " form-group " >
< label for = " childTrackingId " class = " control-label " >
< ? php echo $hesklang [ 'trackID' ]; ?>
</ label >
< input type = " text " name = " childTrackingId " class = " form-control input-sm "
placeholder = " <?php echo htmlspecialchars( $hesklang['trackID'] ); ?> "
data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ); ?> "
required >
< div class = " help-block with-errors " ></ div >
</ div >
< div class = " btn-group " >
< input type = " submit " class = " btn btn-primary btn-sm "
value = " <?php echo $hesklang['save'] ; ?> " >
< a class = " btn btn-default btn-sm " href = " javascript:void(0) "
onclick = " toggleChildrenForm(false) " >
< ? php echo $hesklang [ 'cancel' ]; ?>
</ a >
</ div >
< input type = " hidden " name = " track " value = " <?php echo $trackingID ; ?> " />
< input type = " hidden " name = " token " value = " <?php hesk_token_echo(); ?> " />
</ form >
</ div >
< ? php } ?>
</ td >
</ tr >
</ tbody >
</ table >
</ div >
< div class = " col-md-6 " >
< table class = " table table-striped " >
< tbody >
< tr >
< td >< strong >< ? php echo $hesklang [ 'due_date' ]; ?> </strong></td>
< td >
< div id = " readonly-due-date " >
< span id = " due-date " data - toggle = " tooltip " title = " <?php echo $hesklang['click_to_edit'] ; ?> " >
< ? php
$due_date = $hesklang [ 'none' ];
if ( $ticket [ 'due_date' ] != null ) {
$due_date = hesk_date ( $ticket [ 'due_date' ], false , true , false );
$due_date = date ( 'Y-m-d' , $due_date );
}
echo $due_date ;
?> </span>
2015-10-28 22:01:34 -04:00
</ div >
2016-09-14 22:09:56 -04:00
< div id = " editable-due-date " style = " display: none " >
< div class = " form-group " >
< input title = " due-date " type = " text " class = " form-control datepicker " name = " due-date " value = " <?php echo $due_date == $hesklang['none'] ? '' : $due_date ; ?> " >
< p class = " help-block " >< ? php echo $hesklang [ 'clear_for_no_due_date' ]; ?> </p>
</ div >
< div class = " btn-group " >
< button id = " submit " class = " btn btn-primary " >< ? php echo $hesklang [ 'save' ]; ?> </button>
< button id = " cancel " class = " btn btn-default " >< ? php echo $hesklang [ 'cancel' ]; ?> </button>
</ div >
2015-10-28 22:01:34 -04:00
</ div >
2016-09-14 22:09:56 -04:00
</ td >
</ tr >
< tr >
< td >< strong >< ? php echo $hesklang [ 'replies' ]; ?> </strong></td>
< td >< ? php echo $ticket [ 'replies' ]; ?> </td>
</ tr >
< tr >
< td >< strong >< ? php echo $hesklang [ 'recent_tickets' ]; ?> </strong></td>
< td >
< ? php if ( $recentTickets === NULL ) : ?>
< p style = " margin: 0 " >< ? php echo $hesklang [ 'none' ]; ?> </p>
< ? php
else :
foreach ( $recentTickets as $recentTicket ) :
?>
< p style = " margin: 0 " >
< i class = " fa fa-circle " data - toggle = " tooltip " data - placement = " top "
style = " color: <?php echo $recentTicket['statusColor'] ; ?> "
title = " <?php echo sprintf( $hesklang['current_status_colon'] , $recentTicket['statusText'] ); ?> " ></ i >
< ? php echo '<a href="admin_ticket.php?track=' . $recentTicket [ 'trackid' ] . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '">' . $recentTicket [ 'trackid' ] . '</a>' ; ?>
</ p >
< ? php
endforeach ;
endif ;
?>
</ td >
</ tr >
</ tbody >
</ table >
</ div >
</ div >
2014-03-23 16:03:30 -04:00
</ div >
</ div >
2016-09-15 22:06:22 -04:00
< div class = " table-bordered status-row " >
< div class = " row no-margins med-low-priority " >
< ? php
2014-03-23 16:03:30 -04:00
2016-09-15 22:06:22 -04:00
$priorityLanguages = array (
0 => $hesklang [ 'critical' ],
1 => $hesklang [ 'high' ],
2 => $hesklang [ 'medium' ],
3 => $hesklang [ 'low' ]
);
$options = array ();
for ( $i = 0 ; $i < 4 ; $i ++ ) {
$selected = $ticket [ 'priority' ] == $i ? 'selected' : '' ;
array_push ( $options , '<option value="' . $i . '" ' . $selected . '>' . $priorityLanguages [ $i ] . '</option>' );
}
2014-08-09 22:09:11 -04:00
2016-09-15 22:06:22 -04:00
echo '<div class="ticket-cell-admin col-md-3 col-sm-12 ' ;
if ( $ticket [ 'priority' ] == 0 ) {
echo 'critical-priority">' ;
} elseif ( $ticket [ 'priority' ] == 1 ) {
echo 'high-priority">' ;
} else {
echo 'med-low-priority">' ;
}
2014-08-09 22:09:11 -04:00
2016-09-15 22:06:22 -04:00
echo '<p class="ticket-property-title">' . $hesklang [ 'priority' ] . '</p>' ;
2014-08-09 22:09:11 -04:00
2016-09-15 22:06:22 -04:00
echo ' < form style = " margin-bottom:0; " id = " changePriorityForm " action = " priority.php " method = " post " >
2014-08-09 22:09:11 -04:00
< span style = " white-space:nowrap; " >
2014-11-21 00:00:17 -05:00
< select class = " form-control " name = " priority " onchange = " document.getElementById( \ 'changePriorityForm \ ').submit(); " > ' ;
2016-09-15 22:06:22 -04:00
echo implode ( '' , $options );
echo '
2014-08-09 22:09:11 -04:00
</ select >
2015-09-12 00:46:46 -04:00
< input type = " submit " style = " display: none " value = " ' . $hesklang['go'] . ' " />< input type = " hidden " name = " track " value = " ' . $trackingID . ' " />
< input type = " hidden " name = " token " value = " ' . hesk_token_echo(0) . ' " /> ' ;
2016-09-15 22:06:22 -04:00
if ( $isManager ) {
echo '<input type="hidden" name="isManager" value="1">' ;
}
echo ' </ span >
2014-08-09 22:09:11 -04:00
</ form >
</ div > ' ;
2016-09-15 22:06:22 -04:00
echo '<div class="col-md-3 col-sm-12 ticket-cell-admin"><p class="ticket-property-title">' . $hesklang [ 'status' ] . '</p>' ;
$status_options = array ();
$results = mfh_getAllStatuses ();
foreach ( $results as $row ) {
$selected = $ticket [ 'status' ] == $row [ 'ID' ] ? 'selected' : '' ;
$status_options [ $row [ 'ID' ]] = '<option value="' . $row [ 'ID' ] . '" ' . $selected . '>' . mfh_getDisplayTextForStatusId ( $row [ 'ID' ]) . '</option>' ;
}
2014-03-23 16:03:30 -04:00
2016-09-15 22:06:22 -04:00
echo '
2014-08-09 22:09:11 -04:00
< form role = " form " id = " changeStatusForm " style = " margin-bottom:0; " action = " change_status.php " method = " post " >
< span style = " white-space:nowrap; " >
< select class = " form-control " onchange = " document.getElementById( \ 'changeStatusForm \ ').submit(); " name = " s " >
' . implode(' ', $status_options) . '
2014-03-23 16:03:30 -04:00
</ select >
2015-09-12 00:46:46 -04:00
< input type = " submit " style = " display:none; " value = " ' . $hesklang['go'] . ' " class = " btn btn-default " />< input type = " hidden " name = " track " value = " ' . $trackingID . ' " />
< input type = " hidden " name = " token " value = " ' . hesk_token_echo(0) . ' " /> ' ;
2016-09-15 22:06:22 -04:00
if ( $isManager ) {
echo '<input type="hidden" name="isManager" value="1">' ;
}
echo ' </ span >
2014-08-09 22:09:11 -04:00
</ form >
</ div > ' ;
2016-09-15 22:06:22 -04:00
echo '<div class="col-md-3 col-sm-12 ticket-cell-admin"><p class="ticket-property-title">' . $hesklang [ 'owner' ] . '</p>' ;
2014-03-23 16:03:30 -04:00
2016-09-15 22:06:22 -04:00
if ( hesk_checkPermission ( 'can_assign_others' , 0 ) || $isManager ) {
echo '
2014-08-09 22:09:11 -04:00
< form style = " margin-bottom:0; " id = " changeOwnerForm " action = " assign_owner.php " method = " post " >
< span style = " white-space:nowrap; " >
2014-11-21 00:00:17 -05:00
< select class = " form-control " name = " owner " onchange = " document.getElementById( \ 'changeOwnerForm \ ').submit(); " > ' ;
2016-09-15 22:06:22 -04:00
$selectedForUnassign = 'selected' ;
foreach ( $admins as $k => $v ) {
$selected = '' ;
if ( $k == $ticket [ 'owner' ]) {
$selectedForUnassign = '' ;
$selected = 'selected' ;
2015-09-12 00:46:46 -04:00
}
2016-09-15 22:06:22 -04:00
echo '<option value="' . $k . '" ' . $selected . '>' . $v . '</option>' ;
2015-09-12 00:46:46 -04:00
}
2016-09-15 22:06:22 -04:00
echo '<option value="-1" ' . $selectedForUnassign . '> > ' . $hesklang [ 'unas' ] . ' < </option>' ;
echo ' </ select >
< input type = " submit " style = " display: none " value = " ' . $hesklang['go'] . ' " >
< input type = " hidden " name = " track " value = " ' . $trackingID . ' " >
< input type = " hidden " name = " token " value = " ' . hesk_token_echo(0) . ' " >
</ span > ' ;
} else {
echo '<p class="ticket-property-text">' ;
echo isset ( $admins [ $ticket [ 'owner' ]]) ? $admins [ $ticket [ 'owner' ]] :
( $can_assign_self ? $hesklang [ 'unas' ] . ' [<a href="assign_owner.php?track=' . $trackingID . '&owner=' . $_SESSION [ 'id' ] . '&token=' . hesk_token_echo ( 0 ) . '">' . $hesklang [ 'asss' ] . '</a>]' : $hesklang [ 'unas' ]);
echo '</p>' ;
}
echo '</form></div>' ;
echo '<div class="col-md-3 col-sm-12 ticket-cell-admin"><p class="ticket-property-title">' . $hesklang [ 'category' ] . '</p>' ;
if ( $can_change_cat ) {
echo '
2014-08-09 22:09:11 -04:00
< form style = " margin-bottom:0; " id = " changeCategory " action = " move_category.php " method = " post " >
< span style = " white-space:nowrap; " >
< select name = " category " class = " form-control " onchange = " document.getElementById( \ 'changeCategory \ ').submit(); " >
2015-09-12 00:46:46 -04:00
' . $categories_options . '
2014-08-09 22:09:11 -04:00
</ select >
2016-09-15 22:06:22 -04:00
< input type = " submit " style = " display: none " value = " ' . $hesklang['go'] . ' " >
< input type = " hidden " name = " track " value = " ' . $trackingID . ' " >
< input type = " hidden " name = " token " value = " ' . hesk_token_echo(0) . ' " >
2014-08-09 22:09:11 -04:00
</ span >
2014-11-21 00:00:17 -05:00
</ form > ' ;
2016-09-15 22:06:22 -04:00
} else {
echo '<p class="ticket-property-text">' . $category [ 'name' ] . '</p>' ;
}
echo '</div>' ;
?>
</ div >
</ div >
2016-09-20 07:59:05 -04:00
< div class = " box box-warning " >
< div class = " box-header with-border " >
< h1 class = " box-title " >
< ? php echo $hesklang [ 'notes' ]; ?>
</ h1 >
< div class = " box-tools pull-right " >
< button type = " button " class = " btn btn-box-tool " data - widget = " collapse " >
< i class = " fa fa-minus " ></ i >
</ button >
</ div >
</ div >
< div class = " box-body " >
< ? php
$res = hesk_dbQuery ( " SELECT t1.*, t2.`name` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " notes` AS t1 LEFT JOIN ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " users` AS t2 ON t1.`who` = t2.`id` WHERE `ticket`=' " . intval ( $ticket [ 'id' ]) . " ' ORDER BY t1.`id` " . ( $hesk_settings [ 'new_top' ] ? 'DESC' : 'ASC' ));
if ( hesk_dbNumRows ( $res ) > 0 ) :
$first = true ;
while ( $note = hesk_dbFetchAssoc ( $res )) :
if ( ! $first ) {
echo '<hr>' ;
} else {
$first = false ;
}
?>
< div class = " row " >
< div class = " col-md-8 " >
< p >< i >< ? php echo $hesklang [ 'noteby' ]; ?>
< b >< ? php echo ( $note [ 'name' ] ? $note [ 'name' ] : $hesklang [ 'e_udel' ]); ?> </b></i>
- < ? php echo hesk_date ( $note [ 'dt' ], true ); ?> </p>
< ? php
// Message
echo $note [ 'message' ];
// Attachments
if ( $hesk_settings [ 'attachments' ][ 'use' ] && strlen ( $note [ 'attachments' ])) {
echo strlen ( $note [ 'message' ]) ? '<br><br>' : '' ;
$att = explode ( ',' , substr ( $note [ 'attachments' ], 0 , - 1 ));
$num = count ( $att );
foreach ( $att as $myatt ) {
list ( $att_id , $att_name ) = explode ( '#' , $myatt );
// Can edit and delete note (attachments)?
if ( $can_del_notes || $note [ 'who' ] == $_SESSION [ 'id' ]) {
// If this is the last attachment and no message, show "delete ticket" link
if ( $num == 1 && strlen ( $note [ 'message' ]) == 0 ) {
echo '<a href="admin_ticket.php?delnote=' . $note [ 'id' ] . '&track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '" onclick="return hesk_confirmExecute(\'' . hesk_makeJsString ( $hesklang [ 'pda' ]) . ' \ ' ); " >
< i class = " fa fa-times " style = " font-size:16px;color:red; " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['dela'] . ' " ></ i >
</ a > ' ;
} // Show "delete attachment" link
else {
echo '<a href="admin_ticket.php?delatt=' . $att_id . '&note=' . $note [ 'id' ] . '&track=' . $trackingID . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '" onclick="return hesk_confirmExecute(\'' . hesk_makeJsString ( $hesklang [ 'pda' ]) . ' \ ' ); " >
< i class = " fa fa-times " style = " font-size:16px;color:red; " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['dela'] . ' " ></ i >
</ a > ' ;
}
}
echo '
< a href = " ../download_attachment.php?att_id=' . $att_id . '&track=' . $trackingID . ' " >
< i class = " fa fa-paperclip " style = " font-size:16px; " data - toggle = " tooltip " data - placement = " top " data - original - title = " ' . $hesklang['dnl'] . ' ' . $att_name . ' " ></ i >
</ a >
< a href = " ../download_attachment.php?att_id=' . $att_id . '&track=' . $trackingID . ' " > ' . $att_name . ' </ a >< br />
' ;
}
}
?>
</ div >
< div class = " col-md-4 text-right " >
< ? php if ( $can_del_notes || $note [ 'who' ] == $_SESSION [ 'id' ]) { ?>
< a href = " edit_note.php?track=<?php echo $trackingID ; ?>&Refresh=<?php echo mt_rand(10000, 99999); ?>&note=<?php echo $note['id'] ; ?>&token=<?php hesk_token_echo(); ?> " >
< i class = " fa fa-pencil icon-link orange " data - toggle = " tooltip " title = " <?php echo $hesklang['ednote'] ; ?> " ></ i >
</ a >& nbsp ;
< a href = " admin_ticket.php?track=<?php echo $trackingID ; ?>&Refresh=<?php echo mt_rand(10000, 99999); ?>&delnote=<?php echo $note['id'] ; ?>&token=<?php hesk_token_echo(); ?> " >
< i class = " fa fa-times icon-link red " data - toggle = " tooltip " title = " <?php echo $hesklang['delnote'] ; ?> " ></ i >
</ a >
< ? php } ?>
</ div >
</ div >
2016-09-25 21:34:19 -04:00
< ? php
endwhile ;
else :
?>
< ? php echo $hesklang [ 'no_notes_for_this_ticket' ]; ?>
< ? php endif ; ?>
2016-09-20 07:59:05 -04:00
</ div >
< ? php if ( $can_reply ) : ?>
< div class = " box-footer " >
< button class = " btn btn-default pull-right " data - toggle = " modal " data - target = " #noteform " >
< i class = " fa fa-plus-circle " ></ i > < ? php echo $hesklang [ 'addnote' ]; ?>
</ button >
</ div >
< ? php endif ; ?>
</ div >
< div class = " modal fade " tabindex = " -1 " role = " dialog " id = " noteform " >
< div class = " modal-dialog " role = " document " >
< div class = " modal-content " >
< div class = " modal-header " >
< button type = " button " class = " close " data - dismiss = " modal " aria - label = " Close " >< span aria - hidden = " true " >& times ; </ span ></ button >
< h4 class = " modal-title " >< ? php echo $hesklang [ 'addnote' ]; ?> </h4>
</ div >
< form class = " form-horizontal " data - toggle = " validator " method = " post " action = " admin_ticket.php " style = " margin:0px; padding:0px; "
enctype = " multipart/form-data " >
< div class = " modal-body " >
< div class = " form-group " >
< label for = " note-message " class = " control-label col-sm-2 " >< ? php echo $hesklang [ 'message' ]; ?> </label>
< div class = " col-sm-10 " >
< textarea id = " note-message " style = " min-height: 150px " data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ) ?> " class = " form-control " name = " notemsg " rows = " 6 "
cols = " 60 " required >< ? php echo isset ( $_SESSION [ 'note_message' ]) ? stripslashes ( hesk_input ( $_SESSION [ 'note_message' ])) : '' ; ?> </textarea>
< div class = " help-block with-errors " ></ div >
</ div >
</ div >
< div class = " form-group " >
< label for = " note-attachments " class = " control-label col-sm-2 " >
< ? php echo $hesklang [ 'attachments' ]; ?>
</ label >
< div class = " col-sm-10 " >
< ? php build_dropzone_markup ( true , 'notesFiledrop' ); ?>
</ div >
</ div >
< ? php display_dropzone_field ( $hesk_settings [ 'hesk_url' ] . '/internal-api/ticket/upload-attachment.php' , 'notesFiledrop' ); ?>
</ div >
< div class = " modal-footer " >
< i >< ? php echo $hesklang [ 'nhid' ]; ?> </i>
< div class = " btn-group " >
< button type = " button " class = " btn btn-danger " data - dismiss = " modal " > Cancel </ button >
< input type = " submit " class = " btn btn-success " value = " <?php echo $hesklang['s'] ; ?> " >
</ div >
< input type = " hidden " name = " track " value = " <?php echo $trackingID ; ?> " >
< input type = " hidden " name = " token " value = " <?php hesk_token_echo(); ?> " >
</ div >
</ form >
</ div >
</ div >
</ div >
2016-09-18 21:58:16 -04:00
< ? php
/* Reply form on top? */
if ( $can_reply && $hesk_settings [ 'reply_top' ] == 1 ) {
hesk_printReplyForm ();
}
2016-09-20 07:59:05 -04:00
2016-09-25 21:34:19 -04:00
/* Do we need or have any canned responses? */
$can_options = hesk_printCanned ();
2016-09-20 07:59:05 -04:00
2016-09-25 21:34:19 -04:00
hesk_printTicketReplies ();
2016-09-15 22:06:22 -04:00
2016-09-25 21:34:19 -04:00
echo '<br>' ;
2014-03-23 16:03:30 -04:00
2016-09-25 21:34:19 -04:00
/* Reply form on bottom? */
if ( $can_reply && ! $hesk_settings [ 'reply_top' ]) {
hesk_printReplyForm ();
}
2015-09-12 00:46:46 -04:00
2016-09-25 21:34:19 -04:00
/* Display ticket history */
if ( strlen ( $ticket [ 'history' ])) {
2014-03-23 16:03:30 -04:00
?>
2016-09-25 21:34:19 -04:00
< div class = " box " >
< div class = " box-header with-border " >
< h1 class = " box-title " >
< ? php echo $hesklang [ 'thist' ]; ?>
</ h1 >
< div class = " box-tools pull-right " >
< button type = " button " class = " btn btn-box-tool " data - widget = " collapse " >
< i class = " fa fa-minus " ></ i >
</ button >
</ div >
</ div >
< div class = " box-body " >
< ? php echo $ticket [ 'history' ]; ?>
</ div >
</ div >
< ? php }
?>
</ section >
2016-04-13 22:00:24 -04:00
< div style = " display: none " >
< p id = " lang_ticket_due_date_updated " >< ? php echo $hesklang [ 'ticket_due_date_updated' ]; ?> </p>
< p id = " lang_none " >< ? php echo $hesklang [ 'none' ]; ?> </p>
< p id = " lang_error_updating_ticket_due_date " >< ? php echo $hesklang [ 'error_updating_ticket_due_date' ]; ?> </p>
</ div >
2014-03-23 16:03:30 -04:00
< ? php
/* Clear unneeded session variables */
hesk_cleanSessionVars ( 'ticket_message' );
hesk_cleanSessionVars ( 'time_worked' );
2015-01-11 11:45:56 -05:00
hesk_cleanSessionVars ( 'note_message' );
2014-03-23 16:03:30 -04:00
require_once ( HESK_PATH . 'inc/footer.inc.php' );
/*** START FUNCTIONS ***/
2016-09-15 13:06:51 -04:00
function hesk_getAdminButtons ( $category_id )
2014-03-23 16:03:30 -04:00
{
2016-09-14 22:09:56 -04:00
global $hesk_settings , $hesklang , $modsForHesk_settings , $ticket , $reply , $trackingID , $can_edit , $can_archive , $can_delete , $isManager ;
2014-03-23 16:03:30 -04:00
2016-09-11 22:14:15 -04:00
$options = '' ;
/* Edit post */
if ( $can_edit ) {
$tmp = $reply ? '&reply=' . $reply [ 'id' ] : '' ;
$mgr = $isManager ? '&isManager=true' : '' ;
2016-09-14 22:09:56 -04:00
$options .= '<a class="btn btn-default" href="edit_post.php?track=' . $trackingID . $tmp . $mgr . '"><i class="fa fa-pencil orange"></i> ' . $hesklang [ 'edit' ] . '</a> ' ;
}
/* Print ticket button */
$options .= '<a class="btn btn-default" href="../print.php?track=' . $trackingID . '"><i class="fa fa-print"></i> ' . $hesklang [ 'printer_friendly' ] . '</a> ' ;
/* Delete ticket */
if ( $can_delete ) {
if ( $reply ) {
$url = 'admin_ticket.php' ;
$tmp = 'delete_post=' . $reply [ 'id' ];
$txt = $hesklang [ 'delt' ];
} else {
$url = 'delete_tickets.php' ;
$tmp = 'delete_ticket=1' ;
$txt = $hesklang [ 'dele' ];
}
$options .= '<a class="btn btn-default" href="' . $url . '?track=' . $trackingID . '&' . $tmp . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '" onclick="return hesk_confirmExecute(\'' . hesk_makeJsString ( $txt ) . '?\');"><i class="fa fa-times red"></i> ' . $txt . '</a> ' ;
2016-09-11 22:14:15 -04:00
}
2014-03-23 16:03:30 -04:00
2016-09-11 22:14:15 -04:00
$dropdown = '
< div class = " btn-group " >
< button type = " button " class = " btn btn-default dropdown-toggle " data - toggle = " dropdown " aria - haspopup = " true " aria - expanded = " false " >
2016-09-14 22:09:56 -04:00
< i class = " fa fa-ellipsis-h " ></ i > ' . hesk_htmlspecialchars($hesklang[' more ']) . ' < span class = " caret " ></ span >
2016-09-11 22:14:15 -04:00
</ button >
2016-09-14 22:09:56 -04:00
< ul class = " dropdown-menu pull-right " > ' ;
// Location and UA
$has_location_or_user_agent = false ;
if ( $modsForHesk_settings [ 'display_user_agent_information' ]
&& $ticket [ 'user_agent' ] !== NULL
&& $ticket [ 'screen_resolution_height' ] !== NULL
&& $ticket [ 'screen_resolution_height' ] != 0
&& $ticket [ 'screen_resolution_width' ] !== NULL
&& $ticket [ 'screen_resolution_width' ] != 0
) {
$has_location_or_user_agent = true ;
$dropdown .=
'<li><a href="javascript:;" data-toggle="modal" data-target="#user-agent-modal"><i class="fa fa-desktop fa-fw"></i> ' . $hesklang [ 'device_information' ] . '</a></li>' ;
buildUserAgentModal ( $ticket [ 'user_agent' ], $ticket [ 'screen_resolution_width' ], $ticket [ 'screen_resolution_height' ]);
} else if ( $modsForHesk_settings [ 'display_user_agent_information' ]) {
$has_location_or_user_agent = true ;
$dropdown .=
'<li><span href="javascript:;" class="linkless-dropdown gray"><i class="fa fa-desktop fa-fw"></i> ' . $hesklang [ 'no_device_information' ] . '</span></li>' ;
}
?>
< ? php
if ( $modsForHesk_settings [ 'request_location' ]) {
$hasLocation = true ;
$has_location_or_user_agent = true ;
if ( strpos ( $ticket [ 'latitude' ], 'E' ) === false ) {
$locationText = $hesklang [ 'click_for_map' ];
$iconColor = '' ;
} else {
$hasLocation = false ;
$locationText = $hesklang [ 'location_unavailable' ];
$iconColor = 'class="grey"' ;
}
$dropdown .= '<li><a href="javascript:;" data-toggle="modal" data-target=".map-modal" ' . $iconColor . '><i class="fa fa-map-marker fa-fw"></i> ' . $locationText . ' </a></li>' ;
?>
< div id = " map-modal " class = " modal fade map-modal " tabindex = " -1 " role = " dialog "
aria - labelledby = " myLargeModalLabel " aria - hidden = " true " >
< div class = " modal-dialog modal-lg " >
< div class = " modal-content " >
< div class = " modal-header " >
< button type = " button " class = " close " data - dismiss = " modal " aria - label = " Close " >
< span aria - hidden = " true " >& times ; </ span >
</ button >
< h4 >< ? php echo $hesklang [ 'users_location' ]; ?> </h4>
</ div >
< div class = " modal-body " >
< ? php if ( $hasLocation ) : ?>
2016-09-15 13:06:51 -04:00
' < div id = " map " style = " height: 500px " ></ div >< br >
2016-09-14 22:09:56 -04:00
< address id = " friendly-location " style = " font-size: 13px " ></ address >
< p id = " save-for-address "
style = " font-size: 13px;display:none " >< ? php echo $hesklang [ 'save_to_see_updated_address' ]; ?> </p>
< script >
getFriendlyLocation ( < ? php echo $ticket [ 'latitude' ]; ?> ,
< ? php echo $ticket [ 'longitude' ]; ?> );
</ script >
< div class = " row " >
< form action = " admin_ticket.php " method = " post " role = " form " >
< input type = " hidden " name = " track "
value = " <?php echo $trackingID ; ?> " >
< input type = " hidden " name = " token "
value = " <?php hesk_token_echo(); ?> " >
< input type = " hidden " name = " latitude " id = " latitude "
value = " <?php echo $ticket['latitude'] ; ?> " >
< input type = " hidden " name = " longitude " id = " longitude "
value = " <?php echo $ticket['longitude'] ; ?> " >
< div class = " col-sm-12 " >
< div class = " btn-group " style = " display:none " id = " save-group " >
< input type = " submit " class = " btn btn-success "
value = " <?php echo $hesklang['save_location'] ; ?> " >
< button class = " btn btn-default " data - dismiss = " modal "
onclick = " closeAndReset(<?php echo $ticket['latitude'] ; ?>, <?php echo $ticket['longitude'] ; ?>) " >
< ? php echo $hesklang [ 'close_modal_without_saving' ]; ?>
</ button >
</ div >
< div class = " btn-group " >
< button id = " close-button " class = " btn btn-default "
data - dismiss = " modal " >< ? php echo $hesklang [ 'close_modal' ]; ?> </button>
</ div >
</ div >
</ form >
</ div >
< ? php
else :
$errorCode = explode ( '-' , $ticket [ 'latitude' ]);
$key = 'location_unavailable_' . $errorCode [ 1 ];
echo '<h5>' . $hesklang [ $key ] . '</h5>' ;
endif ;
?>
</ div >
</ div >
</ div >
</ div >
2016-09-11 22:14:15 -04:00
2016-09-14 22:09:56 -04:00
< ? php
// Only output JavaScript if we have coordinates
if ( strpos ( $ticket [ 'latitude' ], 'E' ) === false ) :
?>
< script >
var latitude = '' ;
latitude = < ? php echo $ticket [ 'latitude' ] != '' ? $ticket [ 'latitude' ] : - 1 ; ?> ;
var longitude = '' ;
longitude = < ? php echo $ticket [ 'longitude' ] != '' ? $ticket [ 'longitude' ] : - 1 ; ?> ;
initializeMapForStaff ( latitude , longitude , " <?php echo $hesklang['users_location'] ; ?> " );
</ script >
< ? php
endif ;
}
// If there is device info enabled or location, separate them from the rest of the items in the dropdown.
if ( $has_location_or_user_agent ) {
$dropdown .= '<li role="separator" class="divider"></li>' ;
}
2014-03-23 16:03:30 -04:00
2016-09-15 13:06:51 -04:00
/* Close/Reopen ticket link */
$random = rand ( 10000 , 99999 );
$statusSql = 'SELECT `ID`, `IsStaffClosedOption`, `IsStaffReopenedStatus` FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'statuses` WHERE `IsStaffClosedOption` = 1 OR `IsStaffReopenedStatus` = 1' ;
$statusRs = hesk_dbQuery ( $statusSql );
$staffClosedOptionStatus = array ();
$staffReopenedStatus = array ();
while ( $statusRow = hesk_dbFetchAssoc ( $statusRs )) {
if ( $statusRow [ 'IsStaffReopenedStatus' ] == 1 ) {
$staffReopenedStatus [ 'ID' ] = $statusRow [ 'ID' ];
} else {
$staffClosedOptionStatus [ 'ID' ] = $statusRow [ 'ID' ];
}
}
$isTicketClosedSql = 'SELECT `IsClosed`, `Closable` FROM `' . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . 'statuses` WHERE `ID` = ' . $ticket [ 'status' ];
$isTicketClosedRs = hesk_dbQuery ( $isTicketClosedSql );
$isTicketClosedRow = hesk_dbFetchAssoc ( $isTicketClosedRs );
$isTicketClosed = $isTicketClosedRow [ 'IsClosed' ];
$isClosable = $isTicketClosedRow [ 'Closable' ] == 'yes' || $isTicketClosedRow [ 'Closable' ] == 'sonly' ;
$mgr = $isManager ? '&isManager=1' : '' ;
if ( $isTicketClosed == 0 && $isClosable ) // Ticket is still open
{
$dropdown .= '<li><a href="change_status.php?track=' . $trackingID . $mgr . '&s=' . $staffClosedOptionStatus [ 'ID' ] . '&Refresh=' . $random . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-check-circle fa-fw " ></ i > ' . $hesklang[' close_action '] . ' </ a ></ li > ' ;
} elseif ( $isTicketClosed == 1 ) {
$dropdown .= '<li><a href="change_status.php?track=' . $trackingID . $mgr . '&s=' . $staffReopenedStatus [ 'ID' ] . '&Refresh=' . $random . '&token=' . hesk_token_echo ( 0 ) . ' " >
< i class = " fa fa-check-circle fa-fw " ></ i > ' . $hesklang[' open_action '] . ' </ a ></ li > ' ;
}
2014-03-23 16:03:30 -04:00
/* Lock ticket button */
2016-09-11 22:14:15 -04:00
if ( $can_edit ) {
2016-09-14 22:09:56 -04:00
$template = '<li><a href="lock.php?track=' . $trackingID . '&locked=%s&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '"><i class="fa fa-%s fa-fw"></i> %s</a></li>' ;
$dropdown .= $ticket [ 'locked' ]
? sprintf ( $template , 0 , 'unlock' , $hesklang [ 'tul' ])
: sprintf ( $template , 1 , 'lock' , $hesklang [ 'tlo' ]);
2015-09-12 00:46:46 -04:00
}
/* Tag ticket button */
2016-09-11 22:14:15 -04:00
if ( $can_archive ) {
2016-09-14 22:09:56 -04:00
$template = '<li><a href="archive.php?track=' . $trackingID . '&archived=%s&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '"><i class="fa fa-tag fa-fw"></i> %s</a></li>' ;
$dropdown .= $ticket [ 'archive' ]
? sprintf ( $template , 0 , $hesklang [ 'remove_archive' ])
: sprintf ( $template , 1 , $hesklang [ 'add_archive' ]);
2015-09-12 00:46:46 -04:00
}
/* Import to knowledgebase button */
if ( $hesk_settings [ 'kb_enable' ] && hesk_checkPermission ( 'can_man_kb' , 0 )) {
2016-09-14 22:09:56 -04:00
$dropdown .= '<li><a href="manage_knowledgebase.php?a=import_article&track=' . $trackingID . '"><i class="fa fa-lightbulb-o fa-fw"></i> ' . $hesklang [ 'import_kb' ] . '</a></li>' ;
2015-09-12 00:46:46 -04:00
}
2016-09-15 13:06:51 -04:00
/* Create ticket for same contact button */
$strippedName = strip_tags ( $ticket [ 'name' ]);
$strippedEmail = strip_tags ( $ticket [ 'email' ]);
$linkText = 'new_ticket.php?name=' . $strippedName . '&email=' . $strippedEmail . '&catid=' . $category_id . '&priority=' . $ticket [ 'priority' ];
foreach ( $hesk_settings [ 'custom_fields' ] as $k => $v ) {
if ( $v [ 'use' ] == 1 ) {
if ( $v [ 'type' ] == 'checkbox' ) {
$value = str_replace ( '<br />' , '-CHECKBOX-' , $ticket [ $k ]);
} else {
$value = $ticket [ $k ];
}
$strippedCustomField = strip_tags ( $value );
$linkText .= '&c_' . $k . '=' . $strippedCustomField ;
}
}
2015-09-12 00:46:46 -04:00
2016-09-15 13:06:51 -04:00
$dropdown .= '<li><a href="' . $linkText . '"><i class="fa fa-plus fa-fw"></i> ' . $hesklang [ 'create_based_on_contact' ] . '</a></li>' ;
2016-09-14 22:09:56 -04:00
$dropdown .= '</ul></div> ' ;
$options .= $dropdown ;
2014-03-23 16:03:30 -04:00
/* Return generated HTML */
return $options ;
} // END hesk_getAdminButtons()
2015-09-12 00:46:46 -04:00
function hesk_getAdminButtonsInTicket ( $reply = 0 , $white = 1 )
2014-03-23 16:03:30 -04:00
{
2015-09-12 00:46:46 -04:00
global $hesk_settings , $hesklang , $ticket , $reply , $trackingID , $can_edit , $can_archive , $can_delete , $isManager ;
2014-03-23 16:03:30 -04:00
2016-09-20 13:08:08 -04:00
$options = $reply ? '' : '<div class="pull-right">' ;
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Edit post */
if ( $can_edit ) {
$tmp = $reply ? '&reply=' . $reply [ 'id' ] : '' ;
2015-06-06 22:13:44 -04:00
$mgr = $isManager ? '&isManager=true' : '' ;
2016-09-17 21:42:25 -04:00
$options .= '<a class="btn btn-default" href="edit_post.php?track=' . $trackingID . $tmp . $mgr . '"><i class="fa fa-pencil orange"></i> ' . $hesklang [ 'edtt' ] . '</a> ' ;
2015-09-12 00:46:46 -04:00
}
/* Delete ticket */
if ( $can_delete ) {
if ( $reply ) {
$url = 'admin_ticket.php' ;
$tmp = 'delete_post=' . $reply [ 'id' ];
$txt = $hesklang [ 'delt' ];
} else {
$url = 'delete_tickets.php' ;
$tmp = 'delete_ticket=1' ;
$txt = $hesklang [ 'dele' ];
}
2016-09-17 21:42:25 -04:00
$options .= '<a class="btn btn-default" href="' . $url . '?track=' . $trackingID . '&' . $tmp . '&Refresh=' . mt_rand ( 10000 , 99999 ) . '&token=' . hesk_token_echo ( 0 ) . '" onclick="return hesk_confirmExecute(\'' . $txt . '?\');"><i class="fa fa-times red"></i> ' . $txt . '</a> ' ;
2015-09-12 00:46:46 -04:00
}
2014-03-23 16:03:30 -04:00
/* Return generated HTML */
2016-09-20 13:08:08 -04:00
$options .= $reply ? '' : '</div>' ;
2014-03-23 16:03:30 -04:00
return $options ;
} // END hesk_getAdminButtonsInTicket()
function print_form ()
{
2015-09-12 00:46:46 -04:00
global $hesk_settings , $hesklang ;
2014-03-23 16:03:30 -04:00
global $trackingID ;
2015-09-12 00:46:46 -04:00
/* Print header */
require_once ( HESK_PATH . 'inc/headerAdmin.inc.php' );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Print admin navigation */
require_once ( HESK_PATH . 'inc/show_admin_nav.inc.php' );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* This will handle error, success and notice messages */
hesk_handle_messages ();
?>
2015-06-07 01:18:30 -04:00
< div class = " row " >
< div class = " col-sm-10 col-sm-offset-1 " >
< h3 align = " left " >< ? php echo $hesklang [ 'view_existing' ]; ?> </a></h3>
2015-09-12 00:46:46 -04:00
2015-09-26 21:50:04 -04:00
< form data - toggle = " validator " action = " admin_ticket.php " method = " get " class = " form-horizontal " >
2015-06-07 01:18:30 -04:00
< div class = " form-group " >
< label for = " track " class = " control-label col-sm-3 " >< ? php echo $hesklang [ 'ticket_trackID' ]; ?> </label>
< div class = " col-sm-9 " >
< input type = " text " name = " track " maxlength = " 20 " size = " 35 " value = " <?php echo $trackingID ; ?> "
2015-09-26 21:50:04 -04:00
data - error = " <?php echo htmlspecialchars( $hesklang['this_field_is_required'] ); ?> "
placeholder = " <?php echo $hesklang['ticket_trackID'] ; ?> " class = " form-control " required >
< div class = " help-block with-errors " ></ div >
</ div >
</ div >
< div class = " form-group " >
< div class = " col-sm-9 col-sm-offset-3 " >
2015-06-07 01:18:30 -04:00
< input type = " submit " value = " <?php echo $hesklang['view_ticket'] ; ?> " class = " btn btn-default " >
2015-09-12 00:46:46 -04:00
< input type = " hidden " name = " Refresh " value = " <?php echo rand(10000, 99999); ?> " >
2015-06-07 01:18:30 -04:00
</ div >
</ div >
</ form >
</ div >
</ div >
2015-09-12 00:46:46 -04:00
< ? php
require_once ( HESK_PATH . 'inc/footer.inc.php' );
exit ();
2014-03-23 16:03:30 -04:00
} // End print_form()
2016-09-25 21:34:19 -04:00
function mfh_print_message () {
global $ticket , $hesklang , $hesk_settings , $modsForHesk_settings ;
?>
< li >< i class = " fa fa-comment bg-red " data - toggle = " tooltip " title = " <?php echo $hesklang['original_message'] ; ?> " ></ i >
< div class = " timeline-item " >
< span class = " time " >< i class = " fa fa-clock-o " ></ i > < ? php echo $ticket [ 'dt' ]; ?> </span>
< h3 class = " timeline-header " >< ? php echo $ticket [ 'name' ]; ?> </h3>
< div class = " timeline-body " >
< div class = " row " >
< div class = " col-md-3 text-right " >
< strong >< ? php echo $hesklang [ 'm_sub' ]; ?> </strong>
</ div >
< div class = " col-md-9 " >
< ? php echo $ticket [ 'subject' ]; ?>
</ div >
</ div >
< ? php foreach ( $hesk_settings [ 'custom_fields' ] as $k => $v ) {
if ( $v [ 'use' ] && $v [ 'place' ] == 0 ) {
if ( $modsForHesk_settings [ 'custom_field_setting' ]) {
$v [ 'name' ] = $hesklang [ $v [ 'name' ]];
}
echo '<div class="row">' ;
echo '<div class="col-md-3 text-right"><strong>' . $v [ 'name' ] . ':</strong></div>' ;
if ( $v [ 'type' ] == 'date' && ! empty ( $ticket [ $k ])) {
$dt = hesk_date ( $ticket [ $k ], false , false );
echo '<div class="col-md-9">' . hesk_dateToString ( $dt , 0 ) . '</div>' ;
} else {
echo '<div class="col-md-9">' . $ticket [ $k ] . '</div>' ;
}
echo '</div>' ;
}
}
?>
< div class = " row push-down-10 " >
< div class = " col-md-3 text-right " >
< strong >< ? php echo $hesklang [ 'message_colon' ]; ?> </strong>
</ div >
< div class = " col-md-9 " >
< ? php if ( $ticket [ 'html' ]) {
echo hesk_html_entity_decode ( $ticket [ 'message' ]);
} else {
echo $ticket [ 'message' ];
} ?>
</ div >
</ div >
< ? php
foreach ( $hesk_settings [ 'custom_fields' ] as $k => $v ) {
if ( $v [ 'use' ] && $v [ 'place' ]) {
if ( $modsForHesk_settings [ 'custom_field_setting' ]) {
$v [ 'name' ] = $hesklang [ $v [ 'name' ]];
}
echo '<div class="row">' ;
echo '<div class="col-md-3 text-right"><strong>' . $v [ 'name' ] . ':</strong></div>' ;
if ( $v [ 'type' ] == 'date' && ! empty ( $ticket [ $k ])) {
$dt = hesk_date ( $ticket [ $k ], false , false );
echo '<div class="col-md-9">' . hesk_dateToString ( $dt , 0 ) . '</div>' ;
} else {
echo '<div class="col-md-9">' . $ticket [ $k ] . '</div>' ;
}
echo '</div>' ;
}
}
?>
</ div >
< ? php if (( $hesk_settings [ 'attachments' ][ 'use' ] && strlen ( $ticket [ 'attachments' ]))
|| ( $hesk_settings [ 'kb_enable' ] && $hesk_settings [ 'kb_recommendanswers' ] && strlen ( $ticket [ 'articles' ]))) : ?>
< div class = " timeline-footer " >
< ? php
/* Attachments */
mfh_listAttachments ( $ticket [ 'attachments' ], 0 , true );
// Show suggested KB articles
if ( $hesk_settings [ 'kb_enable' ] && $hesk_settings [ 'kb_recommendanswers' ] && strlen ( $ticket [ 'articles' ])) {
$suggested = array ();
$suggested_list = '' ;
// Get article info from the database
$articles = hesk_dbQuery ( " SELECT `id`,`subject` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " kb_articles` WHERE `id` IN ( " . preg_replace ( '/[^0-9\,]/' , '' , $ticket [ 'articles' ]) . " ) " );
while ( $article = hesk_dbFetchAssoc ( $articles )) {
$suggested [ $article [ 'id' ]] = '<a href="../knowledgebase.php?article=' . $article [ 'id' ] . '">' . $article [ 'subject' ] . '</a><br />' ;
}
// Loop through the IDs to preserve the order they were suggested in
$articles = explode ( ',' , $ticket [ 'articles' ]);
foreach ( $articles as $article ) {
if ( isset ( $suggested [ $article ])) {
$suggested_list .= $suggested [ $article ];
}
}
// Finally print suggested articles
if ( strlen ( $suggested_list )) {
$suggested_list = '<hr /><i>' . $hesklang [ 'taws' ] . '</i><br />' . $suggested_list . ' ' ;
echo $_SESSION [ 'show_suggested' ] ? $suggested_list : '<a href="Javascript:void(0)" onclick="Javascript:hesk_toggleLayerDisplay(\'suggested_articles\')">' . $hesklang [ 'sska' ] . '</a><span id="suggested_articles" style="display:none">' . $suggested_list . '</span>' ;
}
}
?>
</ div >
< ? php endif ; ?>
< div class = " timeline-footer " >
< div class = " row " >
< div class = " col-md-12 text-right " >
< ? php echo hesk_getAdminButtonsInTicket ( 0 ); ?>
</ div >
</ div >
</ div >
</ div >
</ li >
< ? php
}
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
function hesk_printTicketReplies ()
{
2016-09-25 21:34:19 -04:00
global $hesklang , $hesk_settings , $result , $reply ;
2014-03-23 16:03:30 -04:00
2016-09-25 21:34:19 -04:00
echo '<ul class="timeline">' ;
if ( ! $hesk_settings [ 'new_top' ]) {
mfh_print_message ();
} else {
echo '<li class="today-top"><i class="fa fa-clock-o bg-gray" data-toggle="tooltip" title="' . $hesklang [ 'timeline_today' ] . '"></i></li>' ;
2015-09-12 00:46:46 -04:00
}
2015-01-11 11:45:56 -05:00
2015-09-12 00:46:46 -04:00
while ( $reply = hesk_dbFetchAssoc ( $result )) {
$reply [ 'dt' ] = hesk_date ( $reply [ 'dt' ], true );
?>
2016-09-20 13:08:08 -04:00
< li >
2016-09-23 22:14:39 -04:00
< ? php if ( $reply [ 'staffid' ]) : ?>
2016-09-25 21:34:19 -04:00
< i class = " fa fa-reply bg-orange " data - toggle = " tooltip " title = " <?php echo $hesklang['reply_by_staff'] ; ?> " ></ i >
2016-09-23 22:14:39 -04:00
< ? php else : ?>
2016-09-25 21:34:19 -04:00
< i class = " fa fa-share bg-blue " data - toggle = " tooltip " title = " <?php echo $hesklang['reply_by_customer'] ; ?> " ></ i >
2016-09-23 22:14:39 -04:00
< ? php endif ; ?>
2016-09-20 13:08:08 -04:00
< div class = " timeline-item " >
< span class = " time " >< i class = " fa fa-clock-o " ></ i > < ? php echo $reply [ 'dt' ]; ?> </span>
< h3 class = " timeline-header " >< ? php echo $reply [ 'name' ]; ?> </h3>
< div class = " timeline-body " >
< ? php
if ( $reply [ 'html' ]) {
echo hesk_html_entity_decode ( $reply [ 'message' ]);
} else {
echo $reply [ 'message' ];
} ?>
</ div >
< ? php
if ( $hesk_settings [ 'attachments' ][ 'use' ] && strlen ( $reply [ 'attachments' ])) :
?>
< div class = " timeline-footer " >
< ? php mfh_listAttachments ( $reply [ 'attachments' ], $reply [ 'id' ], true ); ?>
</ div >
< ? php endif ; ?>
2016-09-23 22:14:39 -04:00
< div class = " timeline-footer " >
< div class = " row " >
< div class = " col-md-6 " >
< ? php
/* Staff rating */
if ( $hesk_settings [ 'rating' ] && $reply [ 'staffid' ]) {
if ( $reply [ 'rating' ] == 1 ) {
echo '<p class="rate">' . $hesklang [ 'rnh' ] . '</p>' ;
} elseif ( $reply [ 'rating' ] == 5 ) {
echo '<p class="rate">' . $hesklang [ 'rh' ] . '</p>' ;
}
}
/* Show "unread reply" message? */
if ( $reply [ 'staffid' ] && ! $reply [ 'read' ]) {
echo '<p class="rate">' . $hesklang [ 'unread' ] . '</p>' ;
}
?>
</ div >
< div class = " col-md-6 text-right " >
< ? php echo hesk_getAdminButtonsInTicket (); ?>
</ div >
</ div >
2014-03-23 16:03:30 -04:00
</ div >
</ div >
2016-09-23 22:14:39 -04:00
</ li >
2014-03-23 16:03:30 -04:00
< ? php
2015-09-12 00:46:46 -04:00
}
2016-09-25 21:34:19 -04:00
if ( $hesk_settings [ 'new_top' ]) {
mfh_print_message ();
} else {
echo '<li><i class="fa fa-clock-o bg-gray" data-toggle="tooltip" title="' . $hesklang [ 'timeline_today' ] . '"></i></li>' ;
}
2016-09-20 13:08:08 -04:00
echo '</ul>' ;
2014-03-23 16:03:30 -04:00
2016-09-20 13:08:08 -04:00
return ;
2014-03-23 16:03:30 -04:00
} // End hesk_printTicketReplies()
2015-09-12 00:46:46 -04:00
function hesk_printReplyForm ()
{
global $hesklang , $hesk_settings , $ticket , $admins , $can_options , $options , $can_assign_self , $isManager , $modsForHesk_settings ;
?>
<!-- START REPLY FORM -->
2015-07-07 22:16:36 -04:00
< ? php if ( $modsForHesk_settings [ 'rich_text_for_tickets' ]) : ?>
< script type = " text/javascript " >
/* <![CDATA[ */
tinyMCE . init ({
2015-09-12 00:46:46 -04:00
mode : " textareas " ,
editor_selector : " htmlEditor " ,
elements : " content " ,
theme : " advanced " ,
convert_urls : false ,
theme_advanced_buttons1 : " cut,copy,paste,|,undo,redo,|,formatselect,fontselect,fontsizeselect,|,bold,italic,underline,strikethrough,|,justifyleft,justifycenter,justifyright,justifyfull " ,
theme_advanced_buttons2 : " sub,sup,|,charmap,|,bullist,numlist,|,outdent,indent,insertdate,inserttime,preview,|,forecolor,backcolor,|,hr,removeformat,visualaid,|,link,unlink,anchor,image,cleanup,code " ,
theme_advanced_buttons3 : " " ,
theme_advanced_toolbar_location : " top " ,
theme_advanced_toolbar_align : " left " ,
theme_advanced_statusbar_location : " bottom " ,
theme_advanced_resizing : true
2015-07-07 22:16:36 -04:00
});
/* ]]> */
</ script >
2016-09-18 21:58:16 -04:00
< ? php endif ; ?>
< div class = " box " >
< div class = " box-header with-border " >
< h1 class = " box-title " >
< ? php echo $hesklang [ 'add_reply' ]; ?>
</ h1 >
< div class = " box-tools pull-right " >
< button type = " button " class = " btn btn-box-tool " data - widget = " collapse " >
< i class = " fa fa-minus " ></ i >
</ button >
</ div >
</ div >
< div class = " box-body " >
2015-09-12 00:46:46 -04:00
< ? php
2016-09-18 21:58:16 -04:00
$onsubmit = 'onsubmit="force_stop();"' ;
if ( $modsForHesk_settings [ 'rich_text_for_tickets' ]) {
$onsubmit = 'onsubmit="force_stop();return validateRichText(\'message-help-block\', \'message-group\', \'message\', \'' . htmlspecialchars ( $hesklang [ 'this_field_is_required' ]) . '\')"' ;
2015-09-12 00:46:46 -04:00
}
2016-09-18 21:58:16 -04:00
?>
< form role = " form " data - toggle = " validator " class = " form-horizontal " method = " post " action = " admin_reply_ticket.php "
enctype = " multipart/form-data " name = " form1 " < ? php echo $onsubmit ; ?> >
< ? php
2014-03-23 16:03:30 -04:00
2016-09-18 21:58:16 -04:00
/* Ticket assigned to someone else? */
if ( $ticket [ 'owner' ] && $ticket [ 'owner' ] != $_SESSION [ 'id' ] && isset ( $admins [ $ticket [ 'owner' ]])) {
hesk_show_notice ( $hesklang [ 'nyt' ] . ' ' . $admins [ $ticket [ 'owner' ]]);
}
2014-03-23 16:03:30 -04:00
2016-09-18 21:58:16 -04:00
/* Ticket locked? */
if ( $ticket [ 'locked' ]) {
hesk_show_notice ( $hesklang [ 'tislock' ]);
}
2015-01-11 11:45:56 -05:00
2016-09-18 21:58:16 -04:00
// Track time worked?
if ( $hesk_settings [ 'time_worked' ]) {
?>
2015-09-12 00:46:46 -04:00
2016-09-18 21:58:16 -04:00
< div class = " form-group " >
< label for = " time_worked " class = " col-sm-3 control-label " >< ? php echo $hesklang [ 'ts' ]; ?> </label>
< div class = " col-sm-6 " >
< input type = " text " class = " form-control " name = " time_worked " id = " time_worked " size = " 10 "
value = " <?php echo(isset( $_SESSION['time_worked'] ) ? hesk_getTime( $_SESSION['time_worked'] ) : '00:00:00'); ?> " />
</ div >
< div class = " col-sm-3 text-right " >
< div class = " btn-group " >
< input type = " button " class = " btn btn-success " onclick = " ss() " id = " startb "
value = " <?php echo $hesklang['start'] ; ?> " />
< input type = " button " class = " btn btn-danger " onclick = " r() "
value = " <?php echo $hesklang['reset'] ; ?> " />
</ div >
</ div >
2015-09-12 00:46:46 -04:00
</ div >
2016-09-18 21:58:16 -04:00
< ? php
}
/* Do we have any canned responses? */
if ( strlen ( $can_options )) {
?>
< div class = " form-group " >
< label for = " saved_replies " class = " col-sm-3 control-label " >< ? php echo $hesklang [ 'saved_replies' ]; ?> </label>
< div class = " col-sm-9 " >
< label >< input type = " radio " name = " mode " id = " modeadd " value = " 1 "
checked = " checked " /> < ? php echo $hesklang [ 'madd' ]; ?> </label><br/>
< label >< input type = " radio " name = " mode " id = " moderep " value = " 0 " /> < ? php echo $hesklang [ 'mrep' ]; ?>
</ label >
< select class = " form-control " name = " saved_replies " onchange = " setMessage(this.value) " >
< option value = " 0 " > - < ? php echo $hesklang [ 'select_empty' ]; ?> -</option>
< ? php echo $can_options ; ?>
</ select >
2015-09-26 21:50:04 -04:00
</ div >
2014-03-23 16:03:30 -04:00
</ div >
2016-09-18 21:58:16 -04:00
< ? php
}
2014-03-23 16:03:30 -04:00
?>
2016-09-18 21:58:16 -04:00
< div class = " form-group " id = " message-group " >
< label for = " message " class = " col-sm-3 control-label " >< ? php echo $hesklang [ 'message' ]; ?> <span
class = " important " >*</ span ></ label >
2015-09-12 00:46:46 -04:00
2016-09-18 21:58:16 -04:00
< div class = " col-sm-9 " >
2015-01-17 10:32:57 -05:00
< span id = " HeskMsg " >
2015-09-12 00:46:46 -04:00
< textarea class = " form-control htmlEditor " name = " message " id = " message " rows = " 12 "
2015-09-26 21:50:04 -04:00
placeholder = " <?php echo htmlspecialchars( $hesklang['message'] ); ?> " cols = " 72 "
data - error = " <?php echo htmlspecialchars( $hesklang['enter_message'] ); ?> "
required >< ? php
2015-01-11 11:45:56 -05:00
// Do we have any message stored in session?
2015-09-12 00:46:46 -04:00
if ( isset ( $_SESSION [ 'ticket_message' ])) {
echo stripslashes ( hesk_input ( $_SESSION [ 'ticket_message' ]));
} // Perhaps a message stored in reply drafts?
else {
$res = hesk_dbQuery ( " SELECT `message` FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " reply_drafts` WHERE `owner`= " . intval ( $_SESSION [ 'id' ]) . " AND `ticket`= " . intval ( $ticket [ 'id' ]) . " LIMIT 1 " );
if ( hesk_dbNumRows ( $res ) == 1 ) {
2015-01-11 11:45:56 -05:00
echo hesk_dbResult ( $res );
}
}
2015-09-26 21:50:04 -04:00
?> </textarea>
< div class = " help-block with-errors " id = " message-help-block " ></ div ></ span >
2015-09-12 00:46:46 -04:00
</ div >
2014-03-23 16:03:30 -04:00
</ div >
< ? php
2016-09-18 21:58:16 -04:00
/* attachments */
if ( $hesk_settings [ 'attachments' ][ 'use' ]) {
?>
< div class = " form-group " >
< label for = " attachments " class = " col-sm-3 control-label " >< ? php echo $hesklang [ 'attachments' ]; ?> :</label>
2015-09-12 00:46:46 -04:00
2016-09-18 21:58:16 -04:00
< div class = " col-sm-9 " >
< ? php build_dropzone_markup ( true ); ?>
</ div >
</ div >
2015-09-12 00:46:46 -04:00
< ? php
2016-09-18 21:58:16 -04:00
display_dropzone_field ( $hesk_settings [ 'hesk_url' ] . '/internal-api/ticket/upload-attachment.php' );
}
?>
< div class = " form-group " >
< label for = " options " class = " col-sm-3 control-label " >< ? php echo $hesklang [ 'addop' ]; ?> :</label>
< div class = " col-sm-9 " >
< ? php
if ( $ticket [ 'owner' ] != $_SESSION [ 'id' ] && $can_assign_self ) {
if ( empty ( $ticket [ 'owner' ])) {
echo '<label><input type="checkbox" name="assign_self" value="1" checked="checked" /> <b>' . $hesklang [ 'asss2' ] . '</b></label><br />' ;
} else {
echo '<label><input type="checkbox" name="assign_self" value="1" /> ' . $hesklang [ 'asss2' ] . '</label><br />' ;
}
2014-03-23 16:03:30 -04:00
}
2014-06-25 00:22:22 -04:00
2016-09-18 21:58:16 -04:00
?>
< div class = " form-inline " >
< label >
< input type = " checkbox " name = " set_priority "
value = " 1 " /> < ? php echo $hesklang [ 'change_priority' ]; ?>
</ label >
< select class = " form-control " name = " priority " >
< ? php echo implode ( '' , $options ); ?>
</ select >
</ div >
< br />
2015-03-22 22:02:38 -04:00
< label >
2016-09-18 21:58:16 -04:00
< input type = " checkbox " name = " signature " value = " 1 "
checked = " checked " /> < ? php echo $hesklang [ 'attach_sign' ]; ?>
2015-09-12 00:46:46 -04:00
</ label >
2016-09-18 21:58:16 -04:00
( < a href = " profile.php " >< ? php echo $hesklang [ 'profile_settings' ]; ?> </a>)
< br />
< label >
< input type = " checkbox " name = " no_notify "
value = " 1 " < ? php echo ( $_SESSION [ 'notify_customer_reply' ] && ! empty ( $ticket [ 'email' ])) ? '' : 'checked="checked" ' ; ?> <?php if (empty($ticket['email'])) {
echo 'disabled' ;
} ?> > <?php echo $hesklang['dsen']; ?>
</ label >< br />< br />
< ? php if ( empty ( $ticket [ 'email' ])) {
echo '<input type="hidden" name="no_notify" value="1">' ;
} ?>
< input type = " hidden " name = " orig_id " value = " <?php echo $ticket['id'] ; ?> " />
< input type = " hidden " name = " token " value = " <?php hesk_token_echo(); ?> " />
< div class = " btn-group " >
< input class = " btn btn-primary " type = " submit " value = " <?php echo $hesklang['submit_reply'] ; ?> " >
< button type = " button " class = " btn btn-primary dropdown-toggle " data - toggle = " dropdown "
aria - expanded = " false " >
< span class = " caret " ></ span >
< span class = " sr-only " > Toggle Dropdown </ span >
</ button >
< ul class = " dropdown-menu " role = " menu " >
< li >< a >
< button class = " dropdown-submit " type = " submit " name = " submit_as_customer " >
< ? php echo $hesklang [ 'sasc' ]; ?>
</ button >
</ a ></ li >
< li class = " divider " ></ li >
< ? php
$statuses = mfh_getAllStatuses ();
foreach ( $statuses as $status ) {
echo ' < li >< a >
2015-09-12 00:46:46 -04:00
< button class = " dropdown-submit " type = " submit " name = " submit_as_status " value = " ' . $status['ID'] . ' " " >
' . $hesklang[' submit_reply '] . ' ' . $hesklang[' and_change_status_to '] . ' < b >
< span style = " color:' . $status['TextColor'] . ' " > ' . mfh_getDisplayTextForStatusId($status[' ID ']) . ' </ span ></ b >
2015-01-17 10:32:57 -05:00
</ button >
</ a ></ li > ' ;
2016-09-18 21:58:16 -04:00
}
?>
</ ul >
</ div >
< input class = " btn btn-default " type = " submit " name = " save_reply " value = " <?php echo $hesklang['sacl'] ; ?> " >
< ? php if ( $isManager ) : ?>
< input type = " hidden " name = " isManager " value = " 1 " >
< ? php endif ; ?>
2014-03-23 16:03:30 -04:00
</ div >
2015-06-27 22:06:27 -04:00
</ div >
2016-09-18 21:58:16 -04:00
</ form >
</ div >
</ div >
2015-09-12 00:46:46 -04:00
<!-- END REPLY FORM -->
< ? php
2014-03-23 16:03:30 -04:00
} // End hesk_printReplyForm()
function hesk_printCanned ()
{
2015-09-12 00:46:46 -04:00
global $hesklang , $hesk_settings , $can_reply , $ticket , $modsForHesk_settings ;
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* Can user reply to tickets? */
if ( ! $can_reply ) {
return '' ;
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
/* Get canned replies from the database */
$res = hesk_dbQuery ( " SELECT * FROM ` " . hesk_dbEscape ( $hesk_settings [ 'db_pfix' ]) . " std_replies` ORDER BY `reply_order` ASC " );
2014-03-23 16:03:30 -04:00
2015-09-12 00:46:46 -04:00
/* If no canned replies return empty */
if ( ! hesk_dbNumRows ( $res )) {
return '' ;
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
/* We do have some replies, print the required Javascript and select field options */
$can_options = '' ;
?>
< script language = " javascript " type = " text/javascript " ><!--
// -->
var myMsgTxt = new Array ();
myMsgTxt [ 0 ] = '' ;
< ? php
while ( $mysaved = hesk_dbFetchRow ( $res ))
2014-03-23 16:03:30 -04:00
{
2015-09-12 00:46:46 -04:00
$can_options .= '<option value="' . $mysaved [ 0 ] . '">' . $mysaved [ 1 ] . " </option> \n " ;
if ( $modsForHesk_settings [ 'rich_text_for_tickets' ]) {
$theMessage = hesk_html_entity_decode ( $mysaved [ 2 ]);
$theMessage = addslashes ( $theMessage );
echo 'myMsgTxt[' . $mysaved [ 0 ] . ']=\'' . str_replace ( " \r \n " , " \\ r \\ n' + \r \n ' " , $theMessage ) . " '; \n " ;
} else {
echo 'myMsgTxt[' . $mysaved [ 0 ] . ']=\'' . str_replace ( " \r \n " , " \\ r \\ n' + \r \n ' " , addslashes ( $mysaved [ 2 ])) . " '; \n " ;
2014-03-23 16:03:30 -04:00
}
}
2015-09-12 00:46:46 -04:00
?>
function setMessage ( msgid ) {
var isHtml = < ? php echo hesk_jsString ( $modsForHesk_settings [ 'rich_text_for_tickets' ]); ?> ;
var myMsg = myMsgTxt [ msgid ];
if ( myMsg == '' ) {
if ( document . form1 . mode [ 1 ] . checked ) {
document . getElementById ( 'message' ) . value = '' ;
2015-08-09 17:02:04 -04:00
}
2015-09-12 00:46:46 -04:00
return true ;
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
myMsg = myMsg . replace ( /%% HESK_ID %%/ g , '<?php echo hesk_jsString($ticket[' id ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_TRACKID %%/ g , '<?php echo hesk_jsString($ticket[' trackid ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_TRACK_ID %%/ g , '<?php echo hesk_jsString($ticket[' trackid ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_NAME %%/ g , '<?php echo hesk_jsString($ticket[' name ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_EMAIL %%/ g , '<?php echo hesk_jsString($ticket[' email ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_OWNER %%/ g , '<?php echo hesk_jsString( isset($admins[$ticket[' owner ']]) ? $admins[$ticket[' owner ']] : ' '); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom1 %%/ g , '<?php echo hesk_jsString($ticket[' custom1 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom2 %%/ g , '<?php echo hesk_jsString($ticket[' custom2 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom3 %%/ g , '<?php echo hesk_jsString($ticket[' custom3 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom4 %%/ g , '<?php echo hesk_jsString($ticket[' custom4 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom5 %%/ g , '<?php echo hesk_jsString($ticket[' custom5 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom6 %%/ g , '<?php echo hesk_jsString($ticket[' custom6 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom7 %%/ g , '<?php echo hesk_jsString($ticket[' custom7 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom8 %%/ g , '<?php echo hesk_jsString($ticket[' custom8 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom9 %%/ g , '<?php echo hesk_jsString($ticket[' custom9 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom10 %%/ g , '<?php echo hesk_jsString($ticket[' custom10 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom11 %%/ g , '<?php echo hesk_jsString($ticket[' custom11 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom12 %%/ g , '<?php echo hesk_jsString($ticket[' custom12 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom13 %%/ g , '<?php echo hesk_jsString($ticket[' custom13 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom14 %%/ g , '<?php echo hesk_jsString($ticket[' custom14 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom15 %%/ g , '<?php echo hesk_jsString($ticket[' custom15 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom16 %%/ g , '<?php echo hesk_jsString($ticket[' custom16 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom17 %%/ g , '<?php echo hesk_jsString($ticket[' custom17 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom18 %%/ g , '<?php echo hesk_jsString($ticket[' custom18 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom19 %%/ g , '<?php echo hesk_jsString($ticket[' custom19 ']); ?>' );
myMsg = myMsg . replace ( /%% HESK_custom20 %%/ g , '<?php echo hesk_jsString($ticket[' custom20 ']); ?>' );
if ( document . getElementById ) {
if ( document . getElementById ( 'moderep' ) . checked ) {
if ( isHtml ) {
tinymce . get ( " message " ) . setContent ( '' );
tinymce . get ( " message " ) . execCommand ( 'mceInsertRawHTML' , false , myMsg );
} else {
2015-10-23 00:10:36 -04:00
myMsg = $ ( '<textarea />' ) . html ( myMsg ) . text ();
$ ( '#message' ) . val ( myMsg ) . trigger ( 'input' );
2015-09-12 00:46:46 -04:00
}
}
else {
if ( isHtml ) {
var oldMsg = tinymce . get ( " message " ) . getContent ();
tinymce . get ( " message " ) . setContent ( '' );
tinymce . get ( " message " ) . execCommand ( 'mceInsertRawHTML' , false , oldMsg + myMsg );
} else {
2016-04-27 21:23:25 -04:00
var oldMsg = $ ( '#message' ) . val ();
var newMsg = $ ( '<textarea />' ) . html ( oldMsg + '\n' + myMsg ) . text ();
2015-10-23 00:10:36 -04:00
$ ( '#message' ) . val ( newMsg ) . trigger ( 'input' );
2015-09-12 00:46:46 -04:00
}
2015-08-09 17:02:04 -04:00
}
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
else {
if ( document . form1 . mode [ 0 ] . checked ) {
document . form1 . message . value = myMsg ;
}
else {
var oldMsg = document . form1 . message . value ;
document . form1 . message . value = oldMsg + myMsg ;
}
2014-03-23 16:03:30 -04:00
}
2015-09-12 00:46:46 -04:00
}
//-->
</ script >
2014-03-23 16:03:30 -04:00
< ? php
/* Return options for select box */
return $can_options ;
} // End hesk_printCanned()
2016-09-14 22:09:56 -04:00
function buildUserAgentModal ( $user_agent , $width , $height ) {
global $hesklang ;
echo '
< div id = " user-agent-modal " class = " modal fade " tabindex = " -1 " role = " dialog "
aria - hidden = " true " >
< div class = " modal-dialog modal-lg " >
< div class = " modal-content " >
< div class = " modal-header " >
< button type = " button " class = " close " data - dismiss = " modal " aria - label = " Close " >
< span aria - hidden = " true " >& times ; </ span >
</ button >
< h4 > ' . $hesklang[' device_information '] . ' </ h4 >
</ div >
< div class = " modal-body " >
< script >
var userAgent = platform . parse ( \ '' . addslashes ( $user_agent ) . ' \ ' );
console . log ( userAgent );
var screenResWidth = ' . intval($width) . ' ;
var screenResHeight = ' . intval($height) . ' ;
</ script >
< table class = " table table-striped " >
< tbody >
< tr >
< td >< strong > ' . $hesklang[' operating_system '] . ' </ strong >
</ td >
< td id = " operating-system " >& nbsp ; </ td >
< script > $ ( \ ' #operating-system\').html(userAgent.os.toString());</script>
</ tr >
< tr >
< td >< strong > ' . $hesklang[' browser '] . ' </ strong ></ td >
< td id = " browser " >& nbsp ; </ td >
< script > $ ( \ ' #browser\').html(userAgent.name + \' \' + userAgent.version);</script>
</ tr >
< tr >
< td >< strong > ' . $hesklang[' screen_resolution '] . ' </ strong >
</ td >
< td id = " screen-resolution " >& nbsp ; </ td >
< script > $ ( \ ' #screen-resolution\').html(screenResWidth + \' x \' + screenResHeight);</script>
</ tr >
</ tbody >
</ table >
</ div >
</ div >
</ div >
</ div > ' ;
}
2014-03-23 16:03:30 -04:00
?>
