} ?> </TD></TR></TABLE> </TD> </TR> <TR> <TD ID = 'ctr 2nd'> <TABLE BORDER=0><TR><TD STYLE='WIDTH:<?php print $butts_width; ?> PX'></TD><TD> <?php if (intval($the_ticket_id) > 0) { // possibly none -- 2/15/12 show_ticket($the_ticket_id, NULL, NULL, FALSE); // hide map -2/7/12 } ?> </TD></TR></TABLE> </TD> </TR> </TABLE> <?php include "./incs/links.inc.php"; $get_print = array_key_exists('print', $_GET) ? $_GET['print'] : NULL; $get_id = array_key_exists('id', $_GET) ? $_GET['id'] : NULL; $get_sort_by_field = array_key_exists('sort_by_field', $_GET) ? $_GET['sort_by_field'] : NULL; $get_sort_value = array_key_exists('sort_value', $_GET) ? $_GET['sort_value'] : NULL;
if (array_key_exists('frm_responder', $_POST)) { for ($i = 0; $i < count($_POST['frm_responder']); $i++) { $responder .= $sep . $_POST['frm_responder'][$i]; // space separator for multiple responders $sep = " "; } } $frm_meridiem_asof = array_key_exists('frm_meridiem_asof', $_POST) ? $_POST[frm_meridiem_asof] : ""; $frm_asof = "{$_POST['frm_year_asof']}-{$_POST['frm_month_asof']}-{$_POST['frm_day_asof']} {$_POST['frm_hour_asof']}:{$_POST['frm_minute_asof']}:00{$frm_meridiem_asof}"; $result = mysql_query("UPDATE `{$GLOBALS['mysql_prefix']}action` SET `description`='{$_POST['frm_description']}', `responder` = '{$responder}', `updated` = '{$frm_asof}' WHERE `id`='{$_GET['id']}' LIMIT 1") or do_error('action_w.php::update action', 'mysql_query', mysql_error(), basename(__FILE__), __LINE__); $result = mysql_query("UPDATE `{$GLOBALS['mysql_prefix']}ticket` SET `updated` =\t'{$frm_asof}' WHERE id='{$_GET['ticket_id']}' LIMIT 1") or do_error('action_w.php::update action', 'mysql_query', mysql_error(), basename(__FILE__), __LINE__); $result = mysql_query("SELECT ticket_id FROM `{$GLOBALS['mysql_prefix']}action` WHERE `id`='{$_GET['id']}' LIMIT 1") or do_error('action_w.php::update action', 'mysql_query', mysql_error(), basename(__FILE__), __LINE__); $row = stripslashes_deep(mysql_fetch_array($result)); print '<BR /><BR /><FONT CLASS="header">Action updated</FONT><BR /><BR />'; add_header($_GET['ticket_id']); show_ticket($row['ticket_id']); } else { if ($get_action == 'edit') { //get and show action to update $query = "SELECT * FROM `{$GLOBALS['mysql_prefix']}action` WHERE `id`='{$_GET['id']}' LIMIT 1"; $result = mysql_query($query) or do_error($query, $query, mysql_error(), basename(__FILE__), __LINE__); $row = stripslashes_deep(mysql_fetch_array($result)); $responders = explode(" ", $row['responder']); // to array // dump (__LINE__); // dump ($responders); $do_yr_asof = true; ?> <SPAN STYLE='margin-left:83px;'><FONT CLASS="header">Edit Action</FONT></SPAN><BR /><BR /> <FORM METHOD="post" NAME='ed_frm' ACTION="action_w.php?id=<?php print $_GET['id'];
for ( i=0;i } */ </SCRIPT> </HEAD> <BODY><CENTER> <?php $get_id = array_key_exists('id', $_GET) ? $_GET['id'] : NULL; if ($get_id) { if ($_SESSION['internet']) { popup_ticket($get_id); } else { show_ticket($get_id, $print = 'false', $search = FALSE); } } echo "<CENTER><br clear = 'both'/><br /><br /><SPAN STYLE='background-color:white; font-weight:bold; color:black;'> {$ticket_addr} </SPAN>"; echo "<BR /><BR / ><U><SPAN onClick = 'window.close();' STYLE='background-color:white; font-weight:bold; color:black; text-decoration:underline'>Finished</SPAN></U> </CENTER>"; ?> <FORM NAME='to_closed' METHOD='get' ACTION = '<?php print basename(__FILE__); ?> '> <INPUT TYPE='hidden' NAME='status' VALUE='<?php print $GLOBALS['STATUS_CLOSED']; ?> '> </FORM> <FORM NAME='to_all' METHOD='get' ACTION = '<?php
function edit_ticket($id) { /* post changes */ global $addrs, $NOTIFY_TICKET; $post_frm_meridiem_problemstart = empty($_POST) || !empty($_POST) && empty($_POST['frm_meridiem_problemstart']) ? "" : $_POST['frm_meridiem_problemstart']; $post_frm_meridiem_booked_date = empty($_POST) || !empty($_POST) && empty($_POST['frm_meridiem_booked_date']) ? "" : $_POST['frm_meridiem_booked_date']; //10/1/09 $post_frm_affected = empty($_POST) || !empty($_POST) && empty($_POST['frm_affected']) ? "" : $_POST['frm_affected']; $_POST['frm_description'] = strip_html($_POST['frm_description']); //clean up HTML tags $post_frm_affected = strip_html($post_frm_affected); $_POST['frm_scope'] = strip_html($_POST['frm_scope']); /* if (get_variable('reporting')) { // if any change do automatic action reporting // if ($_POST[frm_affected] != $_POST[frm_affected_default]) report_action($GLOBALS[ACTION_AFFECTED],$_POST[frm_affected],0,$id); if ($_POST[frm_severity] != $_POST[frm_severity_default]) report_action($GLOBALS[ACTION_SEVERITY],get_severity($_POST[frm_severity_default]),get_severity($_POST[frm_severity]),$id); if ($_POST[frm_scope] != $_POST[frm_scope_default]) report_action($GLOBALS[ACTION_SCOPE],$_POST[frm_scope_default],0,$id); } */ if (!get_variable('military_time')) { //put together date from the dropdown box and textbox values if ($post_frm_meridiem_problemstart == 'pm') { $post_frm_meridiem_problemstart = ($post_frm_meridiem_problemstart + 12) % 24; } if (isset($_POST['frm_meridiem_booked_date'])) { //10/1/09 if ($_POST['frm_meridiem_booked_date'] == 'pm') { $_POST['frm_hour_booked_date'] = ($_POST['frm_hour_booked_date'] + 12) % 24; } } // if ($_POST['frm_meridiem_problemend'] == 'pm') $_POST['frm_hour_problemend'] = ($_POST['frm_hour_problemend'] + 12) % 24; } if (empty($post_frm_owner)) { $post_frm_owner = 0; } // $frm_problemstart = $_POST['frm_year_problemstart']-$_POST['frm_month_problemstart']-$_POST['frm_day_problemstart'] $_POST['frm_hour_problemstart']:$_POST['frm_minute_problemstart']:00"; $frm_problemstart = "{$_POST['frm_year_problemstart']}-{$_POST['frm_month_problemstart']}-{$_POST['frm_day_problemstart']} {$_POST['frm_hour_problemstart']}:{$_POST['frm_minute_problemstart']}:00{$post_frm_meridiem_problemstart}"; $curr_groups = $_POST['frm_exist_groups']; // 6/10/11 $groups = "," . implode(',', $_POST['frm_group']) . ","; // 6/10/11 // dump($_POST); // 6/10/11 if (!get_variable('military_time')) { //put together date from the dropdown box and textbox values if ($post_frm_meridiem_problemstart == 'pm') { $_POST['frm_hour_problemstart'] = ($_POST['frm_hour_problemstart'] + 12) % 24; } if (isset($_POST['frm_meridiem_problemend'])) { if ($_POST['frm_meridiem_problemend'] == 'pm') { $_POST['frm_hour_problemend'] = ($_POST['frm_hour_problemend'] + 12) % 24; } } if (isset($_POST['frm_meridiem_booked_date'])) { //10/1/09 if ($_POST['frm_meridiem_booked_date'] == 'pm') { $_POST['frm_hour_booked_date'] = ($_POST['frm_hour_booked_date'] + 12) % 24; } } } $frm_problemend = isset($_POST['frm_year_problemend']) ? quote_smart("{$_POST['frm_year_problemend']}-{$_POST['frm_month_problemend']}-{$_POST['frm_day_problemend']} {$_POST['frm_hour_problemend']}:{$_POST['frm_minute_problemend']}:00") : "NULL"; $frm_booked_date = isset($_POST['frm_year_booked_date']) ? quote_smart("{$_POST['frm_year_booked_date']}-{$_POST['frm_month_booked_date']}-{$_POST['frm_day_booked_date']} {$_POST['frm_hour_booked_date']}:{$_POST['frm_minute_booked_date']}:00") : "NULL"; //10/1/09 if ($_POST['frm_status'] != 1) { $frm_problemend = "NULL"; } // perform db update $now = mysql_format_date(time() - get_variable('delta_mins') * 60); $by = $_SESSION['user_id']; // 12/7/10 if (empty($post_frm_owner)) { $post_frm_owner = 0; } // 8/23/08, 9/20/08, 9/22/09 (Facility), 10/1/09 (receiving facility), 6/26/10 (911), 6/10/11 $query = "UPDATE `{$GLOBALS['mysql_prefix']}ticket` SET \n\t\t\t`contact`= " . quote_smart(trim($_POST['frm_contact'])) . ",\n\t\t\t`street`= " . quote_smart(trim($_POST['frm_street'])) . ",\n\t\t\t`city`= " . quote_smart(trim($_POST['frm_city'])) . ",\n\t\t\t`state`= " . quote_smart(trim($_POST['frm_state'])) . ",\n\t\t\t`phone`= " . quote_smart(trim($_POST['frm_phone'])) . ",\n\t\t\t`facility`= " . quote_smart(trim($_POST['frm_facility_id'])) . ",\n\t\t\t`rec_facility`= " . quote_smart(trim($_POST['frm_rec_facility_id'])) . ",\n\t\t\t`lat`= " . quote_smart(trim($_POST['frm_lat'])) . ",\n\t\t\t`lng`= " . quote_smart(trim($_POST['frm_lng'])) . ",\n\t\t\t`scope`= " . quote_smart(trim($_POST['frm_scope'])) . ",\n\t\t\t`owner`= " . quote_smart(trim($post_frm_owner)) . ",\n\t\t\t`severity`= " . quote_smart(trim($_POST['frm_severity'])) . ",\n\t\t\t`in_types_id`= " . quote_smart(trim($_POST['frm_in_types_id'])) . ",\n\t\t\t`status`=" . quote_smart(trim($_POST['frm_status'])) . ",\n\t\t\t`problemstart`=" . quote_smart(trim($frm_problemstart)) . ",\n\t\t\t`problemend`=" . $frm_problemend . ",\n\t\t\t`description`= " . quote_smart(trim($_POST['frm_description'])) . ",\n\t\t\t`comments`= " . quote_smart(trim($_POST['frm_comments'])) . ",\n\t\t\t`nine_one_one`= " . quote_smart(trim($_POST['frm_nine_one_one'])) . ",\n\t\t\t`booked_date`= \t\t{$frm_booked_date},\n\t\t\t`_by` = \t\t\t{$by}, \n\t\t\t`updated`='{$now}'\n\t\t\tWHERE ID='{$id}'"; $result = mysql_query($query) or do_error($query, 'mysql query failed', mysql_error(), __FILE__, __LINE__); $list = $_POST['frm_exist_groups']; // 6/10/11 $ex_grps = explode(',', $list); // 6/10/11 if ($curr_groups != $groups) { // 6/10/11 foreach ($_POST['frm_group'] as $posted_grp) { // 6/10/11 if (!in_array($posted_grp, $ex_grps)) { $tick_stat = $_POST['frm_status']; $query = "INSERT INTO `{$GLOBALS['mysql_prefix']}allocates` (`group` , `type`, `al_as_of` , `al_status` , `resource_id` , `sys_comments` , `user_id`) VALUES \n\t\t\t\t\t\t\t({$posted_grp}, 1, '{$now}', {$tick_stat}, {$id}, 'Allocated to Group' , {$by})"; $result = mysql_query($query) or do_error($query, 'mysql query failed', mysql_error(), basename(__FILE__), __LINE__); } } foreach ($ex_grps as $existing_grp) { // 6/10/11 print $existing_grp; if (in_array($existing_grp, get_allocates(4, $id))) { if (!in_array($existing_grp, $_POST['frm_group'])) { $query = "DELETE FROM `{$GLOBALS['mysql_prefix']}allocates` WHERE `type` = 1 AND `group` = '{$existing_grp}' AND `resource_id` = {$id}"; $result = mysql_query($query) or do_error($query, 'mysql query failed', mysql_error(), basename(__FILE__), __LINE__); } } } } $query = "SELECT * FROM `{$GLOBALS['mysql_prefix']}assigns` WHERE `ticket_id` = '{$id}' AND (`clear` IS NULL OR DATE_FORMAT(`clear`,'%y') = '00')"; $result = mysql_query($query) or do_error($query, 'mysql query failed', mysql_error(), basename(__FILE__), __LINE__); $num_assigns = mysql_num_rows($result); if ($num_assigns != 0) { // 4/4/11 - added to update any existing assigns record with any ticket changes. $query = "UPDATE `{$GLOBALS['mysql_prefix']}assigns` SET \n\t\t\t`as_of`='{$now}',\n\t\t\t`status_id`= " . quote_smart(trim($_POST['frm_status'])) . ",\n\t\t\t`user_id`= " . quote_smart(trim($post_frm_owner)) . ",\n\t\t\t`facility_id`= " . quote_smart(trim($_POST['frm_facility_id'])) . ",\n\t\t\t`rec_facility_id`= " . quote_smart(trim($_POST['frm_rec_facility_id'])) . "\n\t\t\tWHERE ticket_id='{$id}'"; $result = mysql_query($query) or do_error($query, 'mysql query failed', mysql_error(), basename(__FILE__), __LINE__); } do_log($GLOBALS['LOG_INCIDENT_CHANGE'], $id, 0); // report change - 3/25/10 if ($_POST['frm_status'] == $GLOBALS['STATUS_CLOSED']) { // log incident complete - repeats possible do_log($GLOBALS['LOG_INCIDENT_CLOSE'], $id, 0); } switch ($_POST['frm_fac_chng']) { // log facility changes - 3/25/10 case "0": // no change break; case "1": do_log($GLOBALS['LOG_FACILITY_INCIDENT_CHANGE'], $id, 0); //10/1/09 break; case "2": do_log($GLOBALS['LOG_CALL_REC_FAC_CHANGE'], $id); //10/7/09 break; case "3": do_log($GLOBALS['LOG_FACILITY_INCIDENT_CHANGE'], $id, 0); //10/1/09 do_log($GLOBALS['LOG_CALL_REC_FAC_CHANGE'], $id); //10/7/09 break; default: // 8/10/09 // dump($_POST['frm_fac_chng']); print "ERROR in " . basename(__FILE__) . " " . __LINE__ . "<BR />"; } // end switch () print '<FONT CLASS="header">Ticket <I>' . $_POST['frm_scope'] . '</I> has been updated</FONT><BR /><BR />'; /* show updated ticket */ // notify_user($id, $GLOBALS['NOTIFY_TICKET']); add_header($id); show_ticket($id); $addrs = notify_user($id, $GLOBALS['NOTIFY_TICKET_CHG']); // returns array or FALSE unset($_SESSION['active_ticket']); // 5/4/11 }
} if ($action_is_activated) { /************************************************************ ***** ***** All this section needs serious fixin'. It's just a copy-paste/place-holder thing. ***** ************************************************************/ //actions //$query = "SELECT *,UNIX_TIMESTAMP(date) AS date FROM action WHERE description REGEXP '$_POST[frm_query]'"; $query = "SELECT *, DATE_FORMAT(t_date,' %m/%d/%Y') AS `t_date` "; $query = $query . " FROM `action` WHERE `description` REGEXP '{$_POST['frm_query']}'"; $result = mysql_query($query) or do_error('search.php', 'search query <br>' . $query . '<br>failed, possibly illegal syntax', mysql_error()); if (mysql_num_rows($result) && !$ticket_found) { // display ticket in whole if just one returned $row = mysql_fetch_array($result); show_ticket($row[ticket_id]); //add_footer($row[id]); powered(); exit; } else { if (mysql_num_rows($result) == 1) { print '<TABLE BORDER="0"><TR><TD CLASS="td_header">Ticket</TD>' . "\n"; print '<TD CLASS="td_header">Date</TD>' . "\n"; print '<TD CLASS="td_header">Action</TD></TR>' . "\n"; while ($row = mysql_fetch_array($result)) { print "<TR><TD VALIGN=\"top\">#{$row['ticket_id']} </TD>" . "\n"; print "<TD NOWRAP VALIGN=\"top\">" . $row[t_date] . " </FONT></TD>" . "\n"; print '<TD><A HREF="' . $GLOBALS['MAIN_PAGE'] . '.php?id=' . $row[ticket_id] . '">' . $row[description] . '</A></TD></TR>\\n'; } print '</TABLE>'; } else {
; z-index:5001; cursor: pointer;" onclick="showDiv('region_boxes', 'collapse_regs', 'expand_regs');"><IMG SRC = "./markers/expand.png" ALIGN="right"></SPAN></div> <div class="bar" STYLE="color:red; z-index: 5000;" onmousedown="dragStart(event, 'boxB')"><i>Drag me</i></div> <div <div id="region_boxes" class="content" style="z-index: 5000;"></div> </div> </div> <?php } if ($get_print) { show_ticket($get_id, 'true'); print "<BR /><P ALIGN='left'>"; } else { if ($get_id) { add_header($get_id); show_ticket($get_id); print "<BR /><P ALIGN='left'>"; } else { if ($get_sort_by_field && $get_sort_value) { list_tickets($get_sort_by_field, $get_sort_value); } else { list_tickets(); } } } ?> <FORM NAME='to_closed' METHOD='get' ACTION = '<?php print basename(__FILE__); ?> '> <!-- 11/28/10 not now used - replaced with form to_listtype --> <INPUT TYPE='hidden' NAME='status' VALUE='<?php
// at least one $in_str = $sep = ""; for ($i = 0; $i < count($id_stack); $i++) { $in_str .= "{$sep}'{$id_stack[$i]}'"; $sep = ", "; } $query = "SELECT `id`, UNIX_TIMESTAMP(`problemstart`) AS `problemstart`, UNIX_TIMESTAMP(`updated`) AS `updated`, `scope`, `status`, `severity`,\n\t\t\t\tCONCAT_WS(' ',`street`,`city`,`state`) AS `addr`\n\t\t\t\tFROM `{$GLOBALS['mysql_prefix']}ticket` \n\t\t\t\tWHERE `status` <> {$GLOBALS['STATUS_RESERVED']} \n\t\t\t\tAND `id` IN ({$in_str})\n\t\t\t\tAND `status` LIKE " . quote_smart($_POST['frm_querytype']) . "\n\t\t\t\tORDER BY `severity` DESC, `problemstart` ASC"; // dump ($query); $result = mysql_query($query) or do_error($query, '', mysql_error(), basename(__FILE__), __LINE__); // ___________________________________ END NEW STUFF __________________ // dump(mysql_num_rows($result)); if (mysql_num_rows($result) == 1) { // display ticket in whole if just one returned $row = stripslashes_deep(mysql_fetch_assoc($result)); add_header($row['id']); show_ticket($row['id'], FALSE, $_POST['frm_query']); // include search term for highlighting exit; } elseif (mysql_num_rows($result) == 0) { print "<SPAN STYLE = 'margin-left:80px'><B>No matches found</B></SPAN><BR /><BR />"; } else { // more than one, list them print "<SPAN STYLE = 'margin-left:80px'><B>Matches</B>: tickets {$tick_hits}, actions {$act_hits}, persons {$per_hits}</SPAN><BR /><BR />"; print "<TABLE BORDER='0'><TR CLASS='even'>\n\t\t\t\t\t<TD CLASS='td_header'><SPAN STYLE = 'margin-left:2px;'>Ticket</SPAN></TD>\n\t\t\t\t\t<TD CLASS='td_header'><SPAN STYLE = 'margin-left:20px;'>Opened</SPAN></TD>\n\t\t\t\t\t<TD CLASS='td_header'><SPAN STYLE = 'margin-left:20px;'>Description</SPAN></TD>\n\t\t\t\t\t<TD CLASS='td_header'><SPAN STYLE = 'margin-left:20px;'>Location</SPAN></TD></TR>"; $counter = 0; while ($row = stripslashes_deep(mysql_fetch_assoc($result))) { // 8/28/08 if ($row['status'] == $GLOBALS['STATUS_CLOSED']) { $strike = "<strike>"; $strikend = "</strike>"; } else {