Ejemplo n.º 1
0
 $var_replymatter = $_POST['txtRpMatter'];
 $var_ereplymatter = $_POST['txtRpMatterE'];
 $var_pntitle = $_POST['txtPnTitle'];
 $var_pnmatter = $_POST['txtPnMatter'];
 $var_addtokb = $_POST['chkaddtokb'];
 $var_category = $_POST['cmbCategory'];
 $var_deptid = $_POST['txtDeptId'];
 $var_status = $_POST['cmbStatus'];
 $var_tkowner = $_POST['chktkowner'];
 $var_ntuser = $_POST['chkntuser'];
 $var_timespent = $_POST['txtTimeSpent'];
 $var_pvtmessage = $_POST['txtRpPvtMesssage'];
 $var_lock = $_POST['chklock'];
 $var_cc = $_POST['txtCC'];
 $var_uploaded_files = $_POST['uploadedfiles'];
 $validsave = validateSave($var_tid);
 /*
 //		 echo "validsave".$validsave;
 //		 exit;
 echo $_POST['blockrefresh'];
 exit;
 		  if($_POST['blockrefresh']=="1"){
 		    $var_message="Reply already sent";
 		    require("./includes/replied.php");
 		    exit;
 		  }
 */
 if ($validsave == "1") {
     //insert into personal notes
     if (trim($var_pntitle) != "" and trim($var_pnmatter) != "") {
         $sql = "insert into sptbl_personalnotes(nPNId,nStaffId,nTicketId,vStaffLogin,";
// +----------------------------------------------------------------------+
// | Authors: roshith<*****@*****.**>                                  |
// |                                                                      |
// +----------------------------------------------------------------------+
if ($_GET["stylename"] != "") {
    $var_styleminus = $_GET["styleminus"];
    $var_stylename = $_GET["stylename"];
    $var_styleplus = $_GET["styleplus"];
} else {
    $var_styleminus = $_POST["styleminus"];
    $var_stylename = $_POST["stylename"];
    $var_styleplus = $_POST["styleplus"];
}
$var_staffid = $_SESSION["sess_staffid"];
if ($_POST["postback"] == "A") {
    if (validateSave() == true) {
        $var_flag = true;
        $var_deptassign_id = trim($_POST["cmbDepartment"]);
        $var_tosave = trim(mysql_real_escape_string($_POST['tosave']));
        /*				if($var_tosave != "") {
        					$sql = "Select nDeptId from sptbl_depts where nDeptParent IN($var_tosave)";
        	echo $sql;
        					if(mysql_num_rows(executeSelect($sql,$conn)) > 0){
        						$var_flag = false;
        					}
        				}
                */
        if ($var_flag == true) {
            $sql = "delete from  sptbl_staffdept where nDeptId='" . mysql_real_escape_string($var_deptassign_id) . "'";
            executeQuery($sql, $conn);
            if (logActivity()) {