/**
* Method used to log the changes made against a specific issue.
*
* @param integer $iss_id The issue ID
* @param integer $usr_id The ID of the user.
* @param integer|string $htt_id The type ID of this history event.
* @param string $summary The summary of the changes
* @param array $context parameters used in summary
*/
public static function add($iss_id, $usr_id, $htt_id, $summary, $context = array())
{
if (!is_numeric($htt_id)) {
$htt_id = History::getTypeID($htt_id);
}
$params = array('his_iss_id' => $iss_id, 'his_usr_id' => $usr_id, 'his_created_date' => Date_Helper::getCurrentDateGMT(), 'his_summary' => $summary, 'his_context' => json_encode($context), 'his_htt_id' => $htt_id);
$stmt = 'INSERT INTO {{%issue_history}} SET ' . DB_Helper::buildSet($params);
try {
DB_Helper::getInstance()->query($stmt, $params);
} catch (DbException $e) {
}
}
/**
* Method used to update the values stored in the database.
*
* @access public
* @return integer 1 if the update worked properly, any other value otherwise
*/
function updateValues()
{
global $HTTP_POST_VARS;
$prj_id = Auth::getCurrentProject();
$issue_id = Misc::escapeInteger($HTTP_POST_VARS["issue_id"]);
$old_values = Custom_Field::getValuesByIssue($prj_id, $issue_id);
// get the types for all of the custom fields being submitted
$stmt = "SELECT\n fld_id,\n fld_type\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "custom_field\n WHERE\n fld_id IN (" . implode(", ", Misc::escapeInteger(@array_keys($HTTP_POST_VARS['custom_fields']))) . ")";
$field_types = $GLOBALS["db_api"]->dbh->getAssoc($stmt);
// get the titles for all of the custom fields being submitted
$stmt = "SELECT\n fld_id,\n fld_title\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "custom_field\n WHERE\n fld_id IN (" . implode(", ", Misc::escapeInteger(@array_keys($HTTP_POST_VARS['custom_fields']))) . ")";
$field_titles = $GLOBALS["db_api"]->dbh->getAssoc($stmt);
$updated_fields = array();
foreach ($HTTP_POST_VARS["custom_fields"] as $fld_id => $value) {
$fld_id = Misc::escapeInteger($fld_id);
// security check
$sql = "SELECT\n fld_min_role\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "custom_field\n WHERE\n fld_id = {$fld_id}";
$min_role = $GLOBALS["db_api"]->dbh->getOne($sql);
if ($min_role > Auth::getCurrentRole()) {
continue;
}
$option_types = array('multiple', 'combo');
if (!in_array($field_types[$fld_id], $option_types)) {
// check if this is a date field
if ($field_types[$fld_id] == 'date') {
$value = $value['Year'] . "-" . $value['Month'] . "-" . $value['Day'];
if ($value == '--') {
$value = '';
}
}
// first check if there is actually a record for this field for the issue
$stmt = "SELECT\n icf_id,\n icf_value\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_custom_field\n WHERE\n icf_iss_id=" . $issue_id . " AND\n icf_fld_id={$fld_id}";
$res = $GLOBALS["db_api"]->dbh->getRow($stmt, DB_FETCHMODE_ASSOC);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
}
$icf_id = $res['icf_id'];
$icf_value = $res['icf_value'];
if ($icf_value == $value) {
continue;
}
if (empty($icf_id)) {
// record doesn't exist, insert new record
$stmt = "INSERT IGNORE INTO\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_custom_field\n (\n icf_iss_id,\n icf_fld_id,\n icf_value\n ) VALUES (\n " . $issue_id . ",\n {$fld_id},\n '" . Misc::escapeString($value) . "'\n )";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
}
} else {
// record exists, update it
$stmt = "UPDATE\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_custom_field\n SET\n icf_value='" . Misc::escapeString($value) . "'\n WHERE\n icf_id={$icf_id}";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
}
}
if ($field_types[$fld_id] == 'textarea') {
$updated_fields[$field_titles[$fld_id]] = '';
} else {
$updated_fields[$field_titles[$fld_id]] = History::formatChanges($icf_value, $value);
}
} else {
$old_value = Custom_Field::getDisplayValue($HTTP_POST_VARS['issue_id'], $fld_id, true);
if (!is_array($old_value)) {
$old_value = array($old_value);
}
if (!is_array($value)) {
$value = array($value);
}
if (count(array_diff($old_value, $value)) > 0 || count(array_diff($value, $old_value)) > 0) {
$old_display_value = Custom_Field::getDisplayValue($HTTP_POST_VARS['issue_id'], $fld_id);
// need to remove all associated options from issue_custom_field and then
// add the selected options coming from the form
Custom_Field::removeIssueAssociation($fld_id, $HTTP_POST_VARS["issue_id"]);
if (@count($value) > 0) {
Custom_Field::associateIssue($HTTP_POST_VARS["issue_id"], $fld_id, $value);
}
$new_display_value = Custom_Field::getDisplayValue($HTTP_POST_VARS['issue_id'], $fld_id);
$updated_fields[$field_titles[$fld_id]] = History::formatChanges($old_display_value, $new_display_value);
}
}
}
Workflow::handleCustomFieldsUpdated($prj_id, $issue_id, $old_values, Custom_Field::getValuesByIssue($prj_id, $issue_id));
Issue::markAsUpdated($HTTP_POST_VARS["issue_id"]);
// need to save a history entry for this
if (count($updated_fields) > 0) {
// log the changes
$changes = '';
$i = 0;
foreach ($updated_fields as $key => $value) {
if ($i > 0) {
$changes .= "; ";
}
if (!empty($value)) {
$changes .= "{$key}: {$value}";
} else {
$changes .= "{$key}";
}
$i++;
}
History::add($HTTP_POST_VARS["issue_id"], Auth::getUserID(), History::getTypeID('custom_field_updated'), "Custom field updated ({$changes}) by " . User::getFullName(Auth::getUserID()));
}
return 1;
}
/**
* Returns the last person to close the issue
*
* @param integer $issue_id The ID of the issue
* @return integer usr_id
*/
function getIssueCloser($issue_id)
{
$sql = "SELECT\n his_usr_id\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_history\n WHERE\n his_iss_id = " . Misc::escapeInteger($issue_id) . " AND\n his_htt_id = '" . History::getTypeID('issue_closed') . "'\n ORDER BY\n his_created_date DESC\n LIMIT 1";
$res = $GLOBALS["db_api"]->dbh->getOne($sql);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return 0;
}
return $res;
}
/**
* Converts a note to a draft or an email
*
* @access public
* @param $note_id The id of the note
* @param $target What the not should be converted too
* @param $authorize_sender If the sender should be added to authorized senders list.
*/
function convertNote($note_id, $target, $authorize_sender = false)
{
$note_id = Misc::escapeInteger($note_id);
$issue_id = Note::getIssueID($note_id);
$email_account_id = Email_Account::getEmailAccount();
$blocked_message = Note::getBlockedMessage($note_id);
$unknown_user = Note::getUnknownUser($note_id);
$structure = Mime_Helper::decode($blocked_message, true, true);
$body = Mime_Helper::getMessageBody($structure);
$sender_email = strtolower(Mail_API::getEmailAddress($structure->headers['from']));
if ($target == 'email') {
if (Mime_Helper::hasAttachments($blocked_message)) {
$has_attachments = 1;
} else {
$has_attachments = 0;
}
list($blocked_message, $headers) = Mail_API::rewriteThreadingHeaders($issue_id, $blocked_message, @$structure->headers);
$t = array('issue_id' => $issue_id, 'ema_id' => $email_account_id, 'message_id' => @$structure->headers['message-id'], 'date' => Date_API::getCurrentDateGMT(), 'from' => @$structure->headers['from'], 'to' => @$structure->headers['to'], 'cc' => @$structure->headers['cc'], 'subject' => @$structure->headers['subject'], 'body' => @$body, 'full_email' => @$blocked_message, 'has_attachment' => $has_attachments, 'headers' => $headers);
// need to check for a possible customer association
if (!empty($structure->headers['from'])) {
$details = Email_Account::getDetails($email_account_id);
// check from the associated project if we need to lookup any customers by this email address
if (Customer::hasCustomerIntegration($details['ema_prj_id'])) {
// check for any customer contact association
list($customer_id, ) = Customer::getCustomerIDByEmails($details['ema_prj_id'], array($sender_email));
if (!empty($customer_id)) {
$t['customer_id'] = $customer_id;
}
}
}
if (empty($t['customer_id'])) {
$update_type = 'staff response';
$t['customer_id'] = "NULL";
} else {
$update_type = 'customer action';
}
$res = Support::insertEmail($t, $structure, $sup_id);
if ($res != -1) {
Support::extractAttachments($issue_id, $blocked_message);
// notifications about new emails are always external
$internal_only = false;
// special case when emails are bounced back, so we don't want to notify the customer about those
if (Notification::isBounceMessage($sender_email)) {
$internal_only = true;
}
Notification::notifyNewEmail(Auth::getUserID(), $issue_id, $t, $internal_only, false, '', $sup_id);
Issue::markAsUpdated($issue_id, $update_type);
Note::remove($note_id, false);
History::add($issue_id, Auth::getUserID(), History::getTypeID('note_converted_email'), "Note converted to e-mail (from: " . @$structure->headers['from'] . ") by " . User::getFullName(Auth::getUserID()));
// now add sender as an authorized replier
if ($authorize_sender) {
Authorized_Replier::manualInsert($issue_id, @$structure->headers['from']);
}
}
return $res;
} else {
// save message as a draft
$res = Draft::saveEmail($issue_id, $structure->headers['to'], $structure->headers['cc'], $structure->headers['subject'], $body, false, $unknown_user);
// remove the note, if the draft was created successfully
if ($res) {
Note::remove($note_id, false);
History::add($issue_id, Auth::getUserID(), History::getTypeID('note_converted_draft'), "Note converted to draft (from: " . @$structure->headers['from'] . ") by " . User::getFullName(Auth::getUserID()));
}
return $res;
}
}
/**
* Method used to update an existing draft response.
*
* @access public
* @param integer $issue_id The issue ID
* @param integer $emd_id The email draft ID
* @param string $to The primary recipient of the draft
* @param string $cc The secondary recipients of the draft
* @param string $subject The subject of the draft
* @param string $message The draft body
* @param integer $parent_id The ID of the email that this draft is replying to, if any
* @return integer 1 if the update worked, -1 otherwise
*/
function update($issue_id, $emd_id, $to, $cc, $subject, $message, $parent_id = FALSE)
{
$issue_id = Misc::escapeInteger($issue_id);
$emd_id = Misc::escapeInteger($emd_id);
$parent_id = Misc::escapeInteger($issue_id);
if (empty($parent_id)) {
$parent_id = 'NULL';
}
$usr_id = Auth::getUserID();
// update previous draft and insert new record
$stmt = "UPDATE\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "email_draft\n SET\n emd_updated_date='" . Date_API::getCurrentDateGMT() . "',\n emd_status = 'edited'\n WHERE\n emd_id={$emd_id}";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
Issue::markAsUpdated($issue_id, "draft saved");
History::add($issue_id, $usr_id, History::getTypeID('draft_updated'), 'Email message draft updated by ' . User::getFullName($usr_id));
Draft::saveEmail($issue_id, $to, $cc, $subject, $message, $parent_id, false, false);
return 1;
}
}
/**
* Method used to remove a specific phone support entry from the
* application.
*
* @access public
* @param integer $phone_id The phone support entry ID
* @return integer 1 if the removal worked, -1 or -2 otherwise
*/
function remove($phone_id)
{
$phone_id = Misc::escapeInteger($phone_id);
$stmt = "SELECT\n phs_iss_id,\n phs_ttr_id,\n phs_usr_id\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "phone_support\n WHERE\n phs_id={$phone_id}";
$details = $GLOBALS["db_api"]->dbh->getRow($stmt, DB_FETCHMODE_ASSOC);
if ($details['phs_usr_id'] != Auth::getUserID()) {
return -2;
}
$stmt = "DELETE FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "phone_support\n WHERE\n phs_id={$phone_id}";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
Issue::markAsUpdated($details["phs_iss_id"]);
// need to save a history entry for this
History::add($details["phs_iss_id"], Auth::getUserID(), History::getTypeID('phone_entry_removed'), 'Phone Support entry removed by ' . User::getFullName(Auth::getUserID()));
if (!empty($details["phs_ttr_id"])) {
$time_result = Time_Tracking::removeEntry($details["phs_ttr_id"], $details['phs_usr_id']);
if ($time_result == 1) {
return 2;
} else {
return $time_result;
}
} else {
return 1;
}
}
}
/**
* Method used to update the duplicated issues for a given
* issue ID.
*
* @param integer $issue_id The issue ID
* @return integer 1 if the update worked, -1 otherwise
*/
public function updateDuplicates($issue_id)
{
$ids = self::getDuplicateList($issue_id);
if ($ids == '') {
return -1;
}
$ids = array_keys($ids);
$stmt = "UPDATE\n {{%issue}}\n SET\n iss_updated_date=?,\n iss_last_internal_action_date=?,\n iss_last_internal_action_type='updated',\n iss_prc_id=?,";
$params = array(Date_Helper::getCurrentDateGMT(), Date_Helper::getCurrentDateGMT(), $_POST['category']);
if (@$_POST['keep'] == 'no') {
$stmt .= 'iss_pre_id=?,';
$params[] = $_POST['release'];
}
$stmt .= '
iss_pri_id=?,
iss_sta_id=?,
iss_res_id=?
WHERE
iss_id IN (' . DB_Helper::buildList($ids) . ')';
$params[] = $_POST['priority'];
$params[] = $_POST['status'];
$params[] = $_POST['resolution'];
$params = array_merge($params, $ids);
try {
DB_Helper::getInstance()->query($stmt, $params);
} catch (DbException $e) {
return -1;
}
// record the change
$issue_id = (int) $issue_id;
$usr_id = Auth::getUserID();
$full_name = User::getFullName($usr_id);
$htt_id = History::getTypeID('duplicate_update');
foreach ($ids as $iss_id) {
History::add($iss_id, $usr_id, $htt_id, 'The details for issue #{issue_id} were updated by {user} and the changes propagated to the duplicated issues', array('issue_id' => $issue_id, 'user' => $full_name));
}
return 1;
}
/**
* Check if this email needs to be blocked and if so, block it.
*
*
*/
function blockEmailIfNeeded($email)
{
global $HTTP_POST_VARS;
if (empty($email['issue_id'])) {
return false;
}
$issue_id = $email['issue_id'];
$prj_id = Issue::getProjectID($issue_id);
$sender_email = strtolower(Mail_API::getEmailAddress($email['headers']['from']));
if (Mail_API::isVacationAutoResponder($email['headers']) || Notification::isBounceMessage($sender_email) || !Support::isAllowedToEmail($issue_id, $sender_email)) {
// add the message body as a note
$HTTP_POST_VARS = array('blocked_msg' => $email['full_email'], 'title' => @$email['headers']['subject'], 'note' => Mail_API::getCannedBlockedMsgExplanation($issue_id) . $email['body']);
// avoid having this type of message re-open the issue
if (Mail_API::isVacationAutoResponder($email['headers'])) {
$closing = true;
} else {
$closing = false;
}
$res = Note::insert(Auth::getUserID(), $issue_id, $email['headers']['from'], false, $closing);
// associate the email attachments as internal-only files on this issue
if ($res != -1) {
Support::extractAttachments($issue_id, $email['full_email'], true, $res);
}
$HTTP_POST_VARS['issue_id'] = $issue_id;
$HTTP_POST_VARS['from'] = $sender_email;
// avoid having this type of message re-open the issue
if (Mail_API::isVacationAutoResponder($email['headers'])) {
$email_type = 'vacation-autoresponder';
} else {
$email_type = 'routed';
}
Workflow::handleBlockedEmail($prj_id, $issue_id, $HTTP_POST_VARS, $email_type);
// try to get usr_id of sender, if not, use system account
$usr_id = User::getUserIDByEmail(Mail_API::getEmailAddress($email['from']));
if (!$usr_id) {
$usr_id = APP_SYSTEM_USER_ID;
}
// log blocked email
History::add($issue_id, $usr_id, History::getTypeID('email_blocked'), "Email from '" . $email['from'] . "' blocked.");
return true;
}
return false;
}
include_once APP_INC_PATH . "class.project.php";
include_once APP_INC_PATH . "class.issue.php";
include_once APP_INC_PATH . "class.status.php";
include_once APP_INC_PATH . "class.notification.php";
include_once APP_INC_PATH . "class.note.php";
include_once APP_INC_PATH . "db_access.php";
$day_limit = 4;
$sql = "SELECT \n\t\t\tiss_id,iss_prj_id\n\t\tFROM \n\t\t\t`ev_issue` \n\t\t\tleft join ev_status on sta_id = `iss_sta_id` \n\t\twhere \n\t\t\tsta_is_closed = 0 \n\t\t\tand `iss_control_status` = 'Answered' \n\t\t\tand iss_last_response_date < subdate(now(),interval {$day_limit} day);\n\t\t";
$issues = $GLOBALS["db_api"]->dbh->getAll($sql);
$closed_id = Status::getStatusID('Closed');
$c = 0;
$k = 0;
foreach ($issues as $issue) {
$res = Issue::setStatus($issue[0], $closed_id);
if ($res == 1) {
History::add($HTTP_GET_VARS["iss_id"], 0, History::getTypeID('status_changed'), "Issue automatically set to status '" . Status::getStatusTitle(7) . "' due to ({$day_limit}) day inactivity ");
Notification::notify($issue[0], 'closed');
}
$c++;
}
$killed_id = Status::getStatusID('Killed');
$sql = "SELECT \n\t\t\tiss_id\n\t\tFROM \n\t\t\t`ev_issue` \n\t\t\tleft join ev_status on sta_id = `iss_sta_id` \n\t\twhere \n\t\t\tsta_is_closed = 1\n\t\t\tand `iss_sta_id` = '{$killed_id}'\n\t\t";
$issues = $GLOBALS["db_api"]->dbh->getCol($sql);
foreach ($issues as $issue) {
$GLOBALS["db_api"]->dbh->query("DELETE FROM `ev_issue` where iss_id = '" . $issue . "'");
$GLOBALS["db_api"]->dbh->query("DELETE FROM `ev_subscription` where sub_iss_id = '" . $issue . "'");
$GLOBALS["db_api"]->dbh->query("DELETE FROM `ev_issue_user` where isu_iss_id = '" . $issue . "'");
$GLOBALS["db_api"]->dbh->query("DELETE FROM `ev_issue_history` where his_iss_id = '" . $issue . "'");
$GLOBALS["db_api"]->dbh->query("DELETE FROM `ev_issue_user_replier` where iur_iss_id = '" . $issue . "'");
$k++;
}
/**
* Method used to remove an existing set of requirements.
*
* @access public
* @return integer -1 if an error occurred or 1 otherwise
*/
function remove()
{
global $HTTP_POST_VARS;
$items = implode(", ", Misc::escapeInteger($HTTP_POST_VARS["item"]));
$stmt = "SELECT\n isr_iss_id\n FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_requirement\n WHERE\n isr_id IN ({$items})";
$issue_id = $GLOBALS["db_api"]->dbh->getOne($stmt);
$stmt = "DELETE FROM\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_requirement\n WHERE\n isr_id IN ({$items})";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
Issue::markAsUpdated($issue_id);
// need to save a history entry for this
History::add($issue_id, Auth::getUserID(), History::getTypeID('impact_analysis_removed'), 'Impact analysis removed by ' . User::getFullName(Auth::getUserID()));
return 1;
}
}
/**
* Method used to remove all rows associated with a set of
* subscription IDs
*
* @param array $items The list of subscription IDs
* @return boolean
*/
public static function remove($items)
{
$itemlist = DB_Helper::buildList($items);
$stmt = "SELECT\n sub_iss_id\n FROM\n {{%subscription}}\n WHERE\n sub_id IN ({$itemlist})";
$issue_id = DB_Helper::getInstance()->getOne($stmt, $items);
$usr_id = Auth::getUserID();
$user_fullname = User::getFullName($usr_id);
$htt_id = History::getTypeID('notification_removed');
foreach ($items as $sub_id) {
$subscriber = self::getSubscriber($sub_id);
$stmt = 'DELETE FROM
{{%subscription}}
WHERE
sub_id=?';
DB_Helper::getInstance()->query($stmt, array($sub_id));
$stmt = 'DELETE FROM
{{%subscription_type}}
WHERE
sbt_sub_id=?';
DB_Helper::getInstance()->query($stmt, array($sub_id));
History::add($issue_id, $usr_id, $htt_id, 'Notification list entry ({email}) removed by {user}', array('email' => $subscriber, 'user' => $user_fullname));
}
Issue::markAsUpdated($issue_id);
return true;
}
exit;
}
// since emails associated with issues are sent to the notification list, not the to: field, set the to field to be blank
// this field should already be blank, but may also be unset.
if (!empty($issue_id)) {
$HTTP_POST_VARS['to'] = '';
}
if (@$HTTP_POST_VARS["cat"] == "send_email") {
$res = Support::sendEmail($HTTP_POST_VARS['parent_id']);
$tpl->assign("send_result", $res);
if (!@empty($HTTP_POST_VARS['new_status'])) {
$res = Issue::setStatus($issue_id, $HTTP_POST_VARS['new_status']);
Issue::updateControlStatus($issue_id);
if ($res != -1) {
$new_status = Status::getStatusTitle($HTTP_POST_VARS['new_status']);
History::add($issue_id, $usr_id, History::getTypeID('status_changed'), "Status changed to '{$new_status}' by " . User::getFullName($usr_id) . " when sending an email");
}
}
// remove the existing email draft, if appropriate
if (!empty($HTTP_POST_VARS['draft_id'])) {
Draft::remove($HTTP_POST_VARS['draft_id']);
}
// enter the time tracking entry about this new email
if (!empty($HTTP_POST_VARS['time_spent'])) {
$HTTP_POST_VARS['issue_id'] = $issue_id;
$HTTP_POST_VARS['category'] = Time_Tracking::getCategoryID('Email Discussion');
$HTTP_POST_VARS['summary'] = 'Time entry inserted when sending outgoing email.';
Time_Tracking::insertEntry();
}
} elseif (@$HTTP_POST_VARS["cat"] == "save_draft") {
$res = Draft::saveEmail($issue_id, $HTTP_POST_VARS["to"], $HTTP_POST_VARS["cc"], $HTTP_POST_VARS["subject"], $HTTP_POST_VARS["message"], $HTTP_POST_VARS["parent_id"]);
/**
* Method used to associate a new checkin with an existing issue
*
* @access public
* @param integer $issue_id The issue ID
* @param integer $i The offset of the file that was changed
* @return integer 1 if the update worked, -1 otherwise
*/
function logCheckin($issue_id, $i)
{
global $HTTP_GET_VARS;
$stmt = "INSERT INTO\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_checkin\n (\n isc_iss_id,\n isc_module,\n isc_filename,\n isc_old_version,\n isc_new_version,\n isc_created_date,\n isc_username,\n isc_commit_msg\n ) VALUES (\n {$issue_id},\n '" . Misc::escapeString($HTTP_GET_VARS["module"]) . "',\n '" . Misc::escapeString($HTTP_GET_VARS["files"][$i]) . "',\n '" . Misc::escapeString($HTTP_GET_VARS["old_versions"][$i]) . "',\n '" . Misc::escapeString($HTTP_GET_VARS["new_versions"][$i]) . "',\n '" . Date_API::getCurrentDateGMT() . "',\n '" . Misc::escapeString($HTTP_GET_VARS["username"]) . "',\n '" . Misc::escapeString($HTTP_GET_VARS["commit_msg"]) . "'\n )";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
// need to mark this issue as updated
Issue::markAsUpdated($issue_id, 'scm checkin');
// need to save a history entry for this
History::add($issue_id, APP_SYSTEM_USER_ID, History::getTypeID('scm_checkin_associated'), 'SCM Checkins associated by SCM user \'' . $HTTP_GET_VARS["username"] . '\'.');
return 1;
}
}
/**
* Method used to update the details of a given subscription.
*
* @access public
* @param integer $sub_id The subscription ID
* @return integer 1 if the update worked, -1 otherwise
*/
function update($sub_id)
{
global $HTTP_POST_VARS;
$sub_id = Misc::escapeInteger($sub_id);
$stmt = "SELECT\r\n sub_iss_id,\r\n sub_usr_id\r\n FROM\r\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "subscription\r\n WHERE\r\n sub_id={$sub_id}";
list($issue_id, $usr_id) = $GLOBALS["db_api"]->dbh->getRow($stmt);
$email = strtolower(Mail_API::getEmailAddress($HTTP_POST_VARS["email"]));
$usr_id = User::getUserIDByEmail($email);
if (!empty($usr_id)) {
$email = '';
} else {
$usr_id = 0;
$email = Misc::escapeString($HTTP_POST_VARS["email"]);
}
$prj_id = Issue::getProjectID($issue_id);
// call workflow to modify actions or cancel adding this user.
$actions = array();
$subscriber_usr_id = false;
$workflow = Workflow::handleSubscription($prj_id, $issue_id, $subscriber_usr_id, $email, $actions);
if ($workflow === false) {
// cancel subscribing the user
return -2;
}
// always set the type of notification to issue-level
$stmt = "UPDATE\r\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "subscription\r\n SET\r\n sub_level='issue',\r\n sub_email='" . Misc::escapeString($email) . "',\r\n sub_usr_id={$usr_id}\r\n WHERE\r\n sub_id={$sub_id}";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
$stmt = "DELETE FROM\r\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "subscription_type\r\n WHERE\r\n sbt_sub_id={$sub_id}";
$GLOBALS["db_api"]->dbh->query($stmt);
// now add them all again
for ($i = 0; $i < count($HTTP_POST_VARS["actions"]); $i++) {
Notification::addType($sub_id, $HTTP_POST_VARS["actions"][$i]);
}
// need to mark the issue as updated
Issue::markAsUpdated($issue_id);
// need to save a history entry for this
History::add($issue_id, Auth::getUserID(), History::getTypeID('notification_updated'), "Notification list entry ('" . Notification::getSubscriber($sub_id) . "') updated by " . User::getFullName(Auth::getUserID()));
return 1;
}
}
/**
* Sets the group of the issue.
*
* @access public
* @param integer $issue_id The ID of the issue
* @param integer $group_id The ID of the group
* @return integer 1 if successful, -1 or -2 otherwise
*/
function setGroup($issue_id, $group_id)
{
$issue_id = Misc::escapeInteger($issue_id);
$group_id = Misc::escapeInteger($group_id);
$current = Issue::getDetails($issue_id);
if ($current["iss_grp_id"] == $group_id) {
return -2;
}
$stmt = "UPDATE\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue\n SET\n iss_grp_id = {$group_id}\n WHERE\n iss_id = {$issue_id}";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
}
$current_user = Auth::getUserID();
if (empty($current_user)) {
$current_user = APP_SYSTEM_USER_ID;
}
History::add($issue_id, $current_user, History::getTypeID('group_changed'), "Group changed (" . History::formatChanges(Group::getName($current["iss_grp_id"]), Group::getName($group_id)) . ") by " . User::getFullName($current_user));
return 1;
}
$tpl->assign("delete_phone_result", $res);
} elseif (@$HTTP_GET_VARS["cat"] == "new_status") {
// XXX: need to call the workflow api in the following function?
$res = Issue::setStatus($HTTP_GET_VARS["iss_id"], $HTTP_GET_VARS["new_sta_id"], true);
if ($res == 1) {
History::add($HTTP_GET_VARS["iss_id"], $usr_id, History::getTypeID('status_changed'), "Issue manually set to status '" . Status::getStatusTitle($HTTP_GET_VARS["new_sta_id"]) . "' by " . User::getFullName($usr_id));
}
$tpl->assign("new_status_result", $res);
} elseif (@$HTTP_GET_VARS["cat"] == "new_category") {
$res = Issue::setCategory($HTTP_GET_VARS["iss_id"], $HTTP_GET_VARS["iss_prc_id"], true);
if ($res == 1) {
History::add($HTTP_GET_VARS["iss_id"], $usr_id, History::getTypeID('status_changed'), "Issue manually set to category '" . Category::getTitle($HTTP_GET_VARS["iss_prc_id"]) . "' by " . User::getFullName($usr_id));
}
$tpl->assign("new_status_result", $res);
} elseif (@$HTTP_GET_VARS["cat"] == "new_project") {
$res = Issue::setProject($HTTP_GET_VARS["iss_id"], $HTTP_GET_VARS["iss_prj_id"], true);
if ($res == 1) {
History::add($HTTP_GET_VARS["iss_id"], $usr_id, History::getTypeID('status_changed'), "Issue manually set to project '" . Project::getName($HTTP_GET_VARS["iss_prj_id"]) . "' by " . User::getFullName($usr_id));
}
$tpl->assign("new_status_result", $res);
} elseif (@$HTTP_GET_VARS['cat'] == 'authorize_reply') {
$res = Authorized_Replier::addUser($HTTP_GET_VARS["iss_id"], $usr_id);
$tpl->assign('authorize_reply_result', $res);
} elseif (@$HTTP_GET_VARS['cat'] == 'remove_quarantine') {
if (Auth::getCurrentRole() > User::getRoleID('Developer')) {
$res = Issue::setQuarantine($HTTP_GET_VARS['iss_id'], 0);
$tpl->assign('remove_quarantine_result', $res);
}
}
$tpl->assign("current_user_prefs", Prefs::get($usr_id));
$tpl->displayTemplate();
/**
* Method used to remotely add an authorized replier to a given issue.
*
* @access public
* @param integer $issue_id The issue ID
* @param integer $usr_id The user ID of the person performing the change
* @param boolean $replier The user ID of the authorized replier
* @return integer The status ID
*/
function remoteAddAuthorizedReplier($issue_id, $usr_id, $replier)
{
$res = Authorized_Replier::manualInsert($issue_id, $replier, false);
if ($res != -1) {
// save a history entry about this...
History::add($issue_id, $usr_id, History::getTypeID('remote_replier_added'), $replier . " remotely added to authorized repliers by " . User::getFullName($usr_id));
}
return $res;
}
function update($his_id, $match)
{
$sql = "UPDATE\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "issue_history\n SET\n his_htt_id = '" . History::getTypeID($match["status"]) . "'";
if ($match["user"] != false) {
$sql .= ", his_usr_id = " . $match["user"] . " ";
}
$sql .= "\n WHERE\n his_id = {$his_id}";
$res = $GLOBALS["db_api"]->dbh->query($sql);
if (PEAR::isError($res)) {
echo "<pre>";
print_r($res);
exit(1);
}
}
/**
* Method used to remotely record a time tracking entry.
*
* @access public
* @param integer $issue_id The issue ID
* @param integer $usr_id The user ID
* @param integer $cat_id The time tracking category ID
* @param string $summary The summary of the work entry
* @param integer $time_spent The time spent in minutes
* @return integer 1 if the insert worked, -1 otherwise
*/
function recordRemoteEntry($issue_id, $usr_id, $cat_id, $summary, $time_spent)
{
$stmt = "INSERT INTO\n " . APP_DEFAULT_DB . "." . APP_TABLE_PREFIX . "time_tracking\n (\n ttr_ttc_id,\n ttr_iss_id,\n ttr_usr_id,\n ttr_created_date,\n ttr_time_spent,\n ttr_summary\n ) VALUES (\n " . Misc::escapeInteger($cat_id) . ",\n " . Misc::escapeInteger($issue_id) . ",\n " . Misc::escapeInteger($usr_id) . ",\n '" . Date_API::getCurrentDateGMT() . "',\n " . Misc::escapeInteger($time_spent) . ",\n '" . Misc::escapeString($summary) . "'\n )";
$res = $GLOBALS["db_api"]->dbh->query($stmt);
if (PEAR::isError($res)) {
Error_Handler::logError(array($res->getMessage(), $res->getDebugInfo()), __FILE__, __LINE__);
return -1;
} else {
Issue::markAsUpdated($issue_id);
// need to save a history entry for this
History::add($issue_id, $usr_id, History::getTypeID('remote_time_added'), 'Time tracking entry submitted remotely by ' . User::getFullName($usr_id));
return 1;
}
}
@($issue_id = $HTTP_GET_VARS["issue_id"] ? $HTTP_GET_VARS["issue_id"] : $HTTP_POST_VARS["issue_id"]);
$details = Issue::getDetails($issue_id);
$tpl->assign("issue_id", $issue_id);
$tpl->assign("issue", $details);
if (!Issue::canAccess($issue_id, $usr_id)) {
$tpl->setTemplate("permission_denied.tpl.html");
$tpl->displayTemplate();
exit;
}
if (@$HTTP_POST_VARS["cat"] == "post_note") {
// change status
if (!@empty($HTTP_POST_VARS['new_status'])) {
$res = Issue::setStatus($issue_id, $HTTP_POST_VARS['new_status']);
if ($res != -1) {
$new_status = Status::getStatusTitle($HTTP_POST_VARS['new_status']);
History::add($issue_id, $usr_id, History::getTypeID('status_changed'), "Status changed to '{$new_status}' by " . User::getFullName($usr_id));
}
}
$res = Note::insert($usr_id, $issue_id);
$tpl->assign("post_result", $res);
// enter the time tracking entry about this phone support entry
if (!empty($HTTP_POST_VARS['time_spent'])) {
$HTTP_POST_VARS['issue_id'] = $issue_id;
$HTTP_POST_VARS['category'] = $HTTP_POST_VARS['time_category'];
$HTTP_POST_VARS['summary'] = 'Time entry inserted when sending an internal note.';
Time_Tracking::insertEntry();
}
} elseif (@$HTTP_GET_VARS["cat"] == "reply") {
if (!@empty($HTTP_GET_VARS["id"])) {
$note = Note::getDetails($HTTP_GET_VARS["id"]);
$date = Misc::formatReplyDate($note["timestamp"]);
/**
* Routes a draft to the correct issue.
*
* @param string $full_message The complete draft.
*/
function route_drafts($full_message)
{
global $HTTP_POST_VARS;
// save the full message for logging purposes
Draft::saveRoutedMessage($full_message);
if (preg_match("/^(boundary=).*/m", $full_message)) {
$pattern = "/(Content-Type: multipart\\/)(.+); ?\r?\n(boundary=)(.*)\$/im";
$replacement = '$1$2; $3$4';
$full_message = preg_replace($pattern, $replacement, $full_message);
}
// need some validation here
if (empty($full_message)) {
return array(66, "Error: The email message was empty.\n");
}
//
// DON'T EDIT ANYTHING BELOW THIS LINE
//
// remove the reply-to: header
if (preg_match("/^(reply-to:).*/im", $full_message)) {
$full_message = preg_replace("/^(reply-to:).*\n/im", '', $full_message, 1);
}
// check if the draft interface is even supposed to be enabled
$setup = Setup::load();
if (@$setup['draft_routing']['status'] != 'enabled') {
return array(78, "Error: The email draft interface is disabled.\n");
}
$prefix = $setup['draft_routing']['address_prefix'];
// escape plus signs so '*****@*****.**' becomes a valid address
$prefix = str_replace('+', '\\+', $prefix);
$mail_domain = quotemeta($setup['draft_routing']['address_host']);
if (empty($prefix)) {
return array(78, "Error: Please configure the email address prefix.\n");
}
if (empty($mail_domain)) {
return array(78, "Error: Please configure the email address domain.\n");
}
$structure = Mime_Helper::decode($full_message, true, false);
// find which issue ID this email refers to
@preg_match("/{$prefix}(\\d*)@{$mail_domain}/i", $structure->headers['to'], $matches);
@($issue_id = $matches[1]);
// validation is always a good idea
if (empty($issue_id)) {
// we need to try the Cc header as well
@preg_match("/{$prefix}(\\d*)@{$mail_domain}/i", $structure->headers['cc'], $matches);
if (!empty($matches[1])) {
$issue_id = $matches[1];
} else {
return array(65, "Error: The routed draft had no associated Eventum issue ID or had an invalid recipient address.\n");
}
}
$prj_id = Issue::getProjectID($issue_id);
// check if the sender is allowed in this issue' project and if it is an internal user
$users = Project::getUserEmailAssocList($prj_id, 'active', User::getRoleID('Customer'));
$sender_email = strtolower(Mail_API::getEmailAddress($structure->headers['from']));
$user_emails = array_map('strtolower', array_values($users));
if (!in_array($sender_email, $user_emails)) {
return array(77, "Error: The sender of this email is not allowed in the project associated with issue #{$issue_id}.\n");
}
Auth::createFakeCookie(User::getUserIDByEmail($sender_email), $prj_id);
$body = Mime_Helper::getMessageBody($structure);
Draft::saveEmail($issue_id, @$structure->headers['to'], @$structure->headers['cc'], @$structure->headers['subject'], $body, false, false, false);
// XXX: need to handle attachments coming from drafts as well?
History::add($issue_id, Auth::getUserID(), History::getTypeID('draft_routed'), "Draft routed from " . $structure->headers['from']);
return true;
}
