function drop_old_sla_table() { echo "Deleting the table 'tincident_sla_graph'...\n"; $sql = "DROP TABLE IF EXISTS tincident_sla_graph"; process_sql($sql); echo "Deleting the table 'tincident_sla_graph'... DONE\n"; }
function workorders_insert_note($id, $user, $note, $date) { $sql = sprintf('INSERT INTO ttodo_notes (`id_todo`,`written_by`,`description`, `creation`) VALUES (%d, "%s", "%s", "%s")', $id, $user, $note, $date); $res = process_sql($sql, 'insert_id'); mail_workorder($id, 4, $res); return $res; }
function mysql_session_gc($maxlifetime = 300) { global $config; if (isset($config['session_timeout'])) { $maxlifetime = $config['session_timeout']; } $CutoffTime = time() - $maxlifetime; $retval = process_sql("DELETE FROM tsessions_php \n\t\t\tWHERE last_active < {$CutoffTime}"); return $retval; }
SET timestamp = "%s", duration = %.2f, description = "%s", have_cost = %d, id_profile = %d, public = %d, id_user = "******", work_home = %d WHERE id = %d', $timestamp, $duration, $description, $have_cost, $id_profile, $public, $wu_user, $work_home, $id_workunit); $result = process_sql ($sql); if ($id_task !=0) { // Old old association process_sql ("DELETE FROM tworkunit_task WHERE id_workunit = $id_workunit"); // Create new one $sql = sprintf ('INSERT INTO tworkunit_task (id_task, id_workunit) VALUES (%d, %d)', $id_task, $id_workunit); $result = process_sql ($sql, 'insert_id'); } $result_output = ui_print_success_message (__('Workunit updated'), '', true, 'h3', true); audit_db ($config["id_user"], $config["REMOTE_ADDR"], "PWU", "Updated PWU. $description"); if ($result !== false) { set_task_completion ($id_task); } } $multiple_wu_report = array(); if ($operation == 'multiple_wu_insert') { //Walk post array looking for $i = 1;
if ($id_parent == 0) { $idParentValue = 'NULL'; } else { $idParentValue = sprintf('%d', $id_parent); } // DONT use MySQL NOW() or UNIXTIME_NOW() because // Integria can override localtime zone by a user-specified timezone. $timestamp = print_mysql_timestamp(); $sql = sprintf('INSERT INTO tincidencia (inicio, actualizacion, titulo, descripcion, id_usuario, estado, prioridad, id_grupo, id_creator, notify_email, id_task, resolution, id_incident_type, sla_disabled, email_copy, epilog) VALUES ("%s", "%s", "%s", "%s", "%s", %d, %d, %d, "%s", %d, %d, %d, %d, %d, "%s", "%s")', $timestamp, $timestamp, $title, $description, $id_user_responsible, $estado, $priority, $group_id, $id_creator, $email_notify, $id_task, $resolution, $id_incident_type, $sla_disabled, $email_copy, $epilog); $id = process_sql($sql, 'insert_id'); if ($id !== false) { /* Update inventory objects in incident */ update_incident_inventories($id, array($id_inventory)); $result_msg = ui_print_success_message(__('Successfully created') . ' (id #' . $id . ')', '', true); $result_msg .= '<h4><a href="index.php?sec=incidents&sec2=operation/incidents_simple/incident&id=' . $id . '">' . __('Please click here to continue working with ticket #') . $id . "</a></h4>"; audit_db($config["id_user"], $config["REMOTE_ADDR"], "Ticket created", "User " . $config['id_user'] . " created ticket #" . $id); incident_tracking($id, INCIDENT_CREATED); //Add traces and statistic information incidents_set_tracking($id, 'create', $priority, $estado, $resolution, $id_user_responsible, $group_id); // Email notify to all people involved in this incident if ($email_notify) { mail_incident($id, $id_user_responsible, "", 0, 1); } //insert data to incident type fields if ($id_incident_type > 0) {
function calendar_get_users_holidays_date_range($start, $end, $id_user) { $mysql_start = date('Y-m-d', $start); $mysql_end = date('Y-m-d', $end); $user_clause = ""; if (is_array($id_user)) { $aux_ids = array(); foreach ($id_user as $iu) { array_push($aux_ids, "'" . $iu . "'"); } $user_clause = "id_user IN (" . join(",", $aux_ids) . ")"; } else { $user_clause = "id_user = '******'"; } $sql = sprintf("SELECT tworkunit.timestamp AS date, tworkunit.id_user as user FROM tworkunit, tworkunit_task WHERE \n\t\t\t\t\t{$user_clause} AND tworkunit_task.id_workunit = tworkunit.id AND tworkunit_task.id_task =-1 AND \n\t\t\t\t\ttimestamp >= '{$mysql_start}' AND timestamp <= '{$mysql_end}' ORDER BY date ASC"); $res = process_sql($sql); if (!$res) { $res = array(); } $holidays = array(); $holidays_counters = array(); $holidays_last_day = array(); foreach ($res as $r) { if (!isset($holidays[$r["user"]])) { $holidays[$r["user"]] = array(); $holidays_counters[$r["user"]] = -1; $holidays_last_day[$r["user"]] = 0; } //Calculate start and end for the holiday value if (isset($holidays_last_day[$r["user"]])) { //Last day minus current day is 1 we increase dates for stored holidays $last_time = strtotime($holidays_last_day[$r["user"]]); $current_time = strtotime($r["date"]); $day_in_seconds = 24 * 3600; if ($current_time - $last_time <= $day_in_seconds) { $pos = $holidays_counters[$r["user"]]; $holidays[$r["user"]][$pos]["end"] = strtotime($r["date"]); $holidays_last_day[$r["user"]] = strtotime($r["date"]); } else { array_push($holidays[$r["user"]], array("start" => strtotime($r["date"]), "end" => strtotime($r["date"]))); $holidays_last_day[$r["user"]] = $r["date"]; $holidays_counters[$r["user"]]++; } } //Update last day $holidays_last_day[$r["user"]] = $r["date"]; } $full_holidays = array(); $colors = array("#aa3333", "#33aa33", "#3a3a3a", "#3333aa", "#045FB4", "#DF7401", "#01DF3A", "#BE81F7", "#8181F7", "#81BEF7", "#F781F3", "#F7D358", "#F78181", "#FA8258", "#BCF5A9", "#A9A9F5", "#D0A9F5", "#E2A9F3", "#A9F5D0", "#A9F5E1", "#BDBDBD", "#E6E6E6", "#F6CECE", "#6AA4B2", "#6AB277", "#B28E6A", "#B26A97", "#776AB2", "#A58EB4", "#8EB490", "#8E96B4", "#B48E98"); $i = 0; $colors_size = count($colors); foreach ($holidays as $key => $values) { $i = $i % $colors_size; $name = get_db_value("nombre_real", "tusuario", "id_usuario", $key); $url = "index.php?sec=users&sec2=operation/user_report/holidays_calendar&custom_dates=1&id_user="******"name" => safe_output($name), "dates" => $values, "bgColor" => $colors[$i], "link" => $url)); $i++; } return $full_holidays; }
} else { foreach ($all_people as $person) { $result = explode('/', $person); $id_user = $result[0]; $id_role = $result[1]; $filter['id_role'] = $id_role; $filter['id_user'] = $id_user; $filter['id_task'] = $id_task; $role_name = get_db_value('name', 'trole', 'id', $id_role); $result_sql = get_db_value_filter('id_user', 'trole_people_task', $filter); if ($result_sql !== false) { echo "<h3 class='error'>" . __('Not created. Role already exists: ') . $id_user . ' / ' . $role_name . "</h3>"; } else { $sql = "INSERT INTO trole_people_task\n\t\t\t\t\t(id_task, id_user, id_role) VALUES\n\t\t\t\t\t({$id_task}, '{$id_user}', '{$id_role}')"; task_tracking($id_task, TASK_MEMBER_ADDED); $id_task_inserted = process_sql($sql, 'insert_id'); if ($id_task_inserted !== false) { $result_output .= "<h3 class='suc'>" . __('Successfully created: ') . $id_user . ' / ' . $role_name . "</h3>"; audit_db($config["id_user"], $config["REMOTE_ADDR"], "User/Role added to task", "User {$id_user} added to task " . get_db_value("name", "ttask", "id", $id_task)); } else { $update_mode = 0; $create_mode = 1; $result_output .= "<h3 class='error'>" . __('Not created. Error inserting data: ') . $id_user . ' / ' . $role_name . "</h3>"; } } } } } // --------------------- // Edition / View mode // ---------------------
function um_component_is_blacklisted($component, $name) { global $config; switch ($config["dbtype"]) { case "mysql": $result = process_sql('SELECT COUNT(*) AS blacklisted FROM ' . DB_PREFIX . 'tupdate_component_blacklist WHERE component = "' . $component->name . '" AND name = "' . $name . '"'); break; case "postgresql": case "oracle": $result = process_sql('SELECT COUNT(*) AS blacklisted FROM ' . DB_PREFIX . 'tupdate_component_blacklist WHERE component = \'' . $component->name . '\' AND name = \'' . $name . '\''); break; } if ($result === false) { echo '<strong>Error getting blacklist item</strong> <br />'; return false; } $retval = um_std_from_result($result); return $retval->blacklisted ? true : false; }
public function deleteWorkOrder($id_workorder) { $result = process_sql("DELETE FROM ttodo WHERE id = {$id_workorder}"); if ($result) { return true; } return false; }
function sql_insert($table, $values) { //Empty rows or values not processed if (empty($values)) { return false; } $values = (array) $values; $query = sprintf("INSERT INTO `%s` ", $table); $fields = array(); $values_str = ''; $i = 1; $max = count($values); foreach ($values as $field => $value) { //Add the correct escaping to values if ($field[0] != "`") { $field = "`" . $field . "`"; } array_push($fields, $field); if (is_null($value)) { $values_str .= "NULL"; } elseif (is_int($value) || is_bool($value)) { $values_str .= sprintf("%d", $value); } else { if (is_float($value) || is_double($value)) { $values_str .= sprintf("%f", $value); } else { $values_str .= sprintf("'%s'", $value); } } if ($i < $max) { $values_str .= ","; } $i++; } $query .= '(' . implode(', ', $fields) . ')'; $query .= ' VALUES (' . $values_str . ')'; return process_sql($query, 'insert_id'); }
} // --------------- // Set progress // --------------- if ($set_progress > -1 ) { $todo = get_db_row ("ttodo", "id", get_parameter ("id")); if (! get_workorder_acl($todo["id"])) { no_permission(); } $datetime = date ("Y-m-d H:i:s"); $sql_update = "UPDATE ttodo SET progress = $set_progress, last_update = '$datetime' WHERE id = ".$todo["id"]; $result = process_sql($sql_update); } // --------------- // CREATE new todo (form) // --------------- if ($operation == "create" || $operation == "update" || $operation == "view") { if ($operation == "create") { echo "<h2>".__('New Work order')."</h2><h4>".__('Add work')."</h4>"; $progress = 0; $priority = 2; $name = ''; $description = ''; $creator = $config["id_user"];
function user_search_result($filter, $ajax, $size_page, $offset, $clickin, $search_text, $disabled_user, $level, $group, $from_tickets = false) { global $config; if ($filter != 0) { $offset = $filter['offset']; $search_text = $filter['search_text']; $disabled_user = $filter['disabled_user']; $level = $filter['level']; $group = $filter['group']; } $search = "WHERE 1=1 "; if ($search_text != "") { $search .= " AND (id_usuario LIKE '%{$search_text}%' OR comentarios LIKE '%{$search_text}%' OR nombre_real LIKE '%{$search_text}%' OR direccion LIKE '%{$search_text}%')"; } if ($disabled_user > -1) { $search .= " AND disabled = {$disabled_user}"; } if ($level > -10) { $search .= " AND nivel = {$level}"; } if ($group == -1) { $search .= " AND tusuario.id_usuario NOT IN (select id_usuario from tusuario_perfil)"; } else { if ($group > 0) { $search .= " AND tusuario.id_usuario = ANY (SELECT id_usuario FROM tusuario_perfil WHERE id_grupo = {$group})"; } } $query1 = "SELECT * FROM tusuario {$search} ORDER BY id_usuario"; if ($from_tickets) { $query1 = users_get_allowed_users_query($config['id_user'], $filter); } $count = get_db_sql("SELECT COUNT(id_usuario) FROM tusuario {$search} "); $sql1 = "{$query1} LIMIT {$offset}, " . $size_page; echo "<div class='divresult'>"; pagination($count, "index.php?sec=users&sec2=godmode/usuarios/lista_usuarios&search_text=" . $search_text . "&disabled_user="******"&level=" . $level . "&group=" . $group, $offset, true); $resq1 = process_sql($sql1); if (!$resq1) { echo ui_print_error_message(__("No users"), '', true, 'h3', true); } else { echo '<table width="100%" class="listing">'; if ($filter == 0) { echo '<th>' . print_checkbox('all_user_checkbox', 1, false, true); echo '<th title="' . __('Enabled/Disabled') . '">' . __('E/D'); echo '<th title="' . __('Enabled login') . '">' . __('Enabled login'); } echo '<th>' . __('User ID'); echo '<th>' . __('Name'); echo '<th>' . __('Company'); echo '<th>' . __('Last contact'); echo '<th>' . __('Profile'); if ($filter == 0) { echo '<th>' . __('Delete'); } // Init vars $nombre = ""; $nivel = ""; $comentarios = ""; $fecha_registro = ""; if ($resq1) { foreach ($resq1 as $rowdup) { $nombre = $rowdup["id_usuario"]; $nivel = $rowdup["nivel"]; $realname = $rowdup["nombre_real"]; $fecha_registro = $rowdup["fecha_registro"]; $avatar = $rowdup["avatar"]; if ($rowdup["nivel"] == 0) { $nivel = "<img src='images/group.png' title='" . __("Grouped user") . "'>"; } elseif ($rowdup["nivel"] == 1) { $nivel = "<img src='images/integria_mini_logo.png' title='" . __("Administrator") . "'>"; } else { $nivel = "<img src='images/user_gray.png' title='" . __("Standalone user") . "'>"; } $disabled = $rowdup["disabled"]; $id_company = $rowdup["id_company"]; $enabled_login = $rowdup["enable_login"]; echo "<tr>"; if ($filter == 0) { echo "<td>"; echo print_checkbox_extended("user-" . $rowdup["id_usuario"], $rowdup["id_usuario"], false, false, "", "class='user_checkbox'", true); echo "<td>"; if ($disabled == 1) { echo "<img src='images/lightbulb_off.png' title='" . __("Disabled") . "'> "; } echo "<td>"; if ($enabled_login == 1) { echo "<img src='images/accept.png' title='" . __("Enabled login") . "'> "; } else { echo "<img src='images/fail.png' title='" . __("Disabled login") . "'> "; } } echo "<td>"; if ($filter == 0) { echo "<a href='index.php?sec=users&sec2=godmode/usuarios/configurar_usuarios&update_user="******"'>" . ucfirst($nombre) . "</a>"; } else { $url = "javascript:loadContactUser(\"" . $nombre . "\",\"" . $clickin . "\");"; echo "<a href='" . $url . "'>" . ucfirst($nombre) . "</a>"; } echo "<td style=''>" . $realname; $company_name = (string) get_db_value('name', 'tcompany', 'id', $id_company); echo "<td>" . $company_name . "</td>"; echo "<td style=''>" . human_time_comparation($fecha_registro); echo "<td>"; print_user_avatar($nombre, true); echo " "; if ($config["enteprise"] == 1) { $sql1 = 'SELECT * FROM tusuario_perfil WHERE id_usuario = "' . $nombre . '"'; $result = mysql_query($sql1); echo "<a href='#' class='tip'> <span>"; if (mysql_num_rows($result)) { while ($row = mysql_fetch_array($result)) { echo dame_perfil($row["id_perfil"]) . "/ "; echo dame_grupo($row["id_grupo"]) . "<br>"; } } else { echo __('This user doesn\'t have any assigned profile/group'); } echo "</span></a>"; } echo $nivel; if ($filter == 0) { echo '<td align="center">'; echo '<a href="index.php?sec=users&sec2=godmode/usuarios/lista_usuarios&borrar_usuario=' . $nombre . '" onClick="if (!confirm(\'' . __('Are you sure?') . '\')) return false;"><img src="images/cross.png"></a>'; echo '</td>'; } } } echo "</table>"; } echo "</div>"; }
// Todo: Delete the invoice files from disk if ($invoice["id_attachment"] != ""){ process_sql ("DELETE FROM tattachment WHERE id_attachment = ". $invoice["id_attachment"]); } $res = process_sql ("DELETE FROM tinvoice WHERE id = $id_invoice"); if ($res > 0) { $company_name = get_db_value('name', 'tcompany', 'id', $invoice['id_company']); audit_db ($config["id_user"], $config["REMOTE_ADDR"], "Invoice deleted", "Invoice Bill ID: ".$invoice['bill_id'].", Company: $company_name"); //update last activity $datetime = date ("Y-m-d H:i:s"); $comments = __("Invoice deleted by ".$config['id_user']); $sql_add = sprintf ('INSERT INTO tcompany_activity (id_company, written_by, date, description) VALUES (%d, "%s", "%s", "%s")', $invoice['id_company'], $config["id_user"], $datetime, $comments); process_sql ($sql_add); $sql_activity = sprintf ('UPDATE tcompany SET last_update = "%s" WHERE id = %d', $datetime, $invoice['id_company']); $result_activity = process_sql ($sql_activity); } } } // Lock/Unlock INVOICE // ---------------- if ($lock_invoice == 1 && $id_invoice) { $locked = crm_is_invoice_locked ($id_invoice); $res = crm_change_invoice_lock ($config["id_user"], $id_invoice); if ($res === -1) { // -1 equals to false permission to lock or unlock the invoice audit_db ($config["id_user"], $config["REMOTE_ADDR"], "ACL Violation", "Trying to lock/unlock an invoice"); include ("general/noaccess.php"); exit;
/** * This function returns an array with the descendants ids of the * company id passed as an argument. */ function get_company_descendants($id_company) { global $config; $text_id_companies = ""; $id_companies = array(); if (is_array($id_company)) { for ($i = 0; $i < count($id_company); $i++) { $text_id_companies .= $id_company[$i]; if ($i < count($id_company) - 1) { $text_id_companies .= ", "; } } } else { $text_id_companies .= $id_company; } $sql = "SELECT id FROM tcompany WHERE id_parent IN (" . $text_id_companies . ")"; $result = process_sql($sql); foreach ($result as $row) { $id_companies[] = $row['id']; } if (count($id_companies) >= 1) { $id_companies = array_merge($id_companies, get_company_descendants($id_companies)); } return $id_companies; }
/** * This function deletes tevent workflow data with more than X days. */ function delete_old_workflow_event_data() { global $config; $DELETE_DAYS = (int) $config["max_days_workflow_events"]; if ($DELETE_DAYS > 0) { $limit = date("Y/m/d H:i:s", strtotime("now") - $DELETE_DAYS * 86400); $sql = "DELETE FROM tevent WHERE timestamp < '{$limit}'\n\t\t\tAND `type` LIKE '%WORKFLOW%'"; process_sql($sql); } }
private function showIncidents ($message = "") { $system = System::getInstance(); $ui = Ui::getInstance(); $ui->createPage(); $back_href = 'index.php?page=home'; $ui->createDefaultHeader(__("Tickets"), $ui->createHeaderButton( array('icon' => 'back', 'pos' => 'left', 'text' => __('Back'), 'href' => $back_href))); $ui->beginContent(); // Message popup if ($message != "") { $options = array( 'popup_id' => 'message_popup', 'popup_custom' => true, 'popup_content' => $message ); $ui->addPopup($options); $ui->contentAddHtml("<script type=\"text/javascript\"> $(document).on('pageshow', function() { $(\"div.popup-back\") .click(function (e) { e.preventDefault(); $(this).remove(); }) .show(); }); </script>"); } $ui->contentBeginCollapsible(__('Filter')); $options = array( 'action' => "index.php?page=incidents", 'method' => 'POST', 'data-ajax' => 'false' ); $ui->beginForm($options); // Filter search $options = array( 'name' => 'filter_search', 'label' => __('Search'), 'value' => $this->filter_search ); $ui->formAddInputSearch($options); // Filter status $values = array(); $values[0] = __('Any'); $values[-10] = __('Not closed'); $status_table = process_sql ("select * from tincident_status"); foreach ($status_table as $status) { $values[$status['id']] = __($status['name']); } $options = array( 'name' => 'filter_status', 'title' => __('Status'), 'label' => __('Status'), 'items' => $values, 'selected' => $this->filter_status ); $ui->formAddSelectBox($options); // Filter owner $options = array( 'name' => 'filter_owner', 'id' => 'text-filter_owner', 'label' => __('Owner'), 'value' => $this->filter_owner, 'placeholder' => __('Owner'), 'autocomplete' => 'off' ); $ui->formAddInputText($options); // Owner autocompletion // List $ui->formAddHtml("<ul id=\"ul-autocomplete_owner\" data-role=\"listview\" data-inset=\"true\"></ul>"); // Autocomplete binding $ui->bindMobileAutocomplete("#text-filter_owner", "#ul-autocomplete_owner"); $options = array( 'name' => 'submit_button', 'text' => __('Apply filter'), 'data-icon' => 'search' ); $ui->formAddSubmitButton($options); $form_html = $ui->getEndForm(); $ui->contentCollapsibleAddItem($form_html); $ui->contentEndCollapsible("collapsible-filter", "d"); // Incidents listing $html = $this->getIncidentsList(); $ui->contentAddHtml($html); if ($this->getCountIncidents() > $system->getPageSize()) { $ui->contentAddHtml('<div style="text-align:center;" id="loading_rows"> <img src="../images/spinner.gif"> ' . __('Loading...') . '</img> </div>'); $this->addIncidentsLoader(); } $ui->endContent(); // Foooter buttons // New $button_new = "<a href='index.php?page=incident' data-role='button' data-ajax='false' data-icon='plus'>".__('New')."</a>\n"; // Pagination // $filter = ""; // if ($this->filter_search != '') { // $filter .= "&filter_search=".$this->filter_search; // } // if ($this->filter_status) { // $filter .= "&filter_status=".$this->filter_status; // } // if ($this->filter_owner != '') { // $filter .= "&filter_owner=".$this->filter_owner; // } // $paginationCG = $ui->getPaginationControgroup("incidents$filter", $this->offset, $this->getNumPages()); $ui->createFooter($button_new); $ui->showFooter(); $ui->showPage(); }
if (!$result2) { echo "<h3 class='error'>" . __('An error ocurred setting the permissions for the task ' . $data) . "</h3>"; } } else { echo "<h3 class='error'>" . __('The task ' . $data . ' could not be created') . "</h3>"; } } } } } $project_name = get_db_value("name", "tproject", "id", $id_project); echo "<h1>" . __("Task planning") . " » {$project_name}</h1>"; //Calculate task summary stats! //Draw task status statistics by hand! $sql = sprintf("SELECT id, completion FROM ttask WHERE id_project = %d", $id_project); $res = process_sql($sql); if (empty($res)) { $res = array(); } $verified = 0; $completed = 0; $in_process = 0; $pending = 0; foreach ($res as $r) { if ($r['completion'] < 40) { $pending++; } else { if ($r['completion'] < 90) { $in_process++; } else { if ($r['completion'] < 100) {
if ($ku["user"]) { if (isset($key_users_info[$ku["user"]])) { $key_users_info[$ku["user"]] .= ", ".$ku["role"]; } else { $key_users_info[$ku["user"]] = $ku["role"]; } } } //Get all users with a workunit in the incident $sql = sprintf("SELECT W.id_user FROM tworkunit W, tworkunit_incident WI WHERE W.id = WI.id_workunit AND WI.id_incident = %d", $id_incident); $wu_users = process_sql($sql); foreach ($wu_users as $wu) { if (!isset($key_users_info[$wu["id_user"]])) { $key_users_info[$wu["id_user"]] = __("Participant"); } } $incident_contacts = array(); foreach ($inventories as $inventory) { $contacts = get_inventory_contacts ($inventory['id'], false); foreach ($contacts as $contact) { $data = array ();
function combo_download_categories($id_category, $show_any = false, $label = false, $return = false) { global $config; enterprise_include('include/functions_form.php'); $result = enterprise_hook('combo_download_categories_extra', array($id_category, $show_any, $label, true)); if ($result === ENTERPRISE_NOT_HOOK) { $sql = "SELECT * FROM tdownload_category ORDER BY 2"; $result = process_sql($sql); if ($result == false) { $result = array(); } $categories = array(); foreach ($result as $row) { if (give_acl($config["id_user"], $row["id_group"], "KR")) { $categories[$row["id"]] = $row["name"]; } } if ($show_any) { $nothing = __('Any'); } else { $nothing = ''; } if ($label) { $label = __('Category'); } else { $label = false; } $result = print_select($categories, 'id_category', $id_category, '', $nothing, 0, $return, 0, false, $label); } if ($return) { return $result; } else { echo $result; } }
echo "<div class='divresult'>"; pagination($total_events, "index.php?sec=godmode&sec2=godmode/setup/audit&text={$text}&action={$action}", $offset); $table = new StdClass(); $table->width = '100%'; $table->class = 'listing'; $table->head = array(); $table->head[0] = __('Accion'); $table->head[1] = __('User'); $table->head[2] = __('IP'); $table->head[3] = __('Description'); $table->head[4] = __('Extra info'); $table->head[5] = __('Timestamp'); $table->data = array(); $sql = sprintf('SELECT * FROM tsesion %s ORDER by utimestamp DESC LIMIT %d OFFSET %d', $where, $config["block_size"], $offset); $events = process_sql($sql); if ($events === false) { $events = array(); } foreach ($events as $event) { $data = array(); $data[0] = $event["accion"]; $data[1] = $event["ID_usuario"]; $data[2] = $event["IP_origen"]; $data[3] = $event["descripcion"]; $data[4] = $event["extra_info"]; $data[5] = $event["fecha"]; array_push($table->data, $data); } print_table($table); echo "</div>";
echo ui_print_success_message (__("Successfully deleted"), '', true, 'h3', true); } } // Upload file if (isset($_GET["upload"])) { if (isset($_POST['upfile']) && ( $_POST['upfile'] != "" )){ //if file $filename= $_POST['upfile']; $file_tmp = sys_get_temp_dir().'/'.$filename; $size = filesize ($file_tmp); $description = get_parameter ("description", ""); $sql = sprintf("INSERT INTO tattachment (id_lead, id_usuario, filename, description, timestamp, size) VALUES (%d, '%s', '%s', '%s', '%s', %d)", $id, $config["id_user"], $filename, $description, date('Y-m-d H:i:s'), $size); $id_attach = process_sql ($sql, 'insert_id'); $filename_encoded = $id_attach . "_" . $filename; // Copy file to directory and change name $file_target = $config["homedir"]."/attachment/".$filename_encoded; if (!(copy($file_tmp, $file_target))){ echo ui_print_error_message (__("Could not be attached"), '', true, 'h3', true); } else { // Delete temporal file echo ui_print_success_message (__("Successfully attached"), '', true, 'h3', true); $location = $file_target; unlink ($file_tmp); }
$config["enable_pass_policy"] = get_parameter("enable_pass_policy", 0); $config["pass_size"] = get_parameter("pass_size", 4); $config["pass_needs_numbers"] = get_parameter("pass_needs_numbers", 0); $config["pass_needs_symbols"] = get_parameter("pass_needs_symbols", 0); $config["pass_expire"] = get_parameter("pass_expire", 0); $config["first_login"] = get_parameter("first_login", 1); $config["mins_fail_pass"] = get_parameter("mins_fail_pass", 5); $config["number_attempts"] = get_parameter("number_attempts", 5); } update_config_token("timezone", $config["timezone"]); //TODO: Change all "process_sqlxxx" for update_config_token in following code: update_config_token("language_code", $config["language_code"]); update_config_token("sitename", $config["sitename"]); update_config_token("max_file_size", $config["max_file_size"]); process_sql("DELETE FROM tconfig WHERE token = 'incident_reporter'"); process_sql("INSERT INTO tconfig (token, value) VALUES ('incident_reporter', '" . $config["incident_reporter"] . "')"); update_config_token("api_acl", $config["api_acl"]); update_config_token("api_password", $config["api_password"]); update_config_token("error_log", $config["error_log"]); update_config_token("first_day_week", $config["first_day_week"]); update_config_token("access_protocol", $config["access_protocol"]); update_config_token("access_port", $config["access_port"]); update_config_token("url_updatemanager", $config["url_updatemanager"]); update_config_token("access_public", $config["access_public"]); update_config_token("loginhash_pwd", $config["loginhash_pwd"]); update_config_token("csv_standard_encoding", $config["csv_standard_encoding"]); update_config_token("enable_update_manager", $config["enable_update_manager"]); update_config_token("max_direct_download", $config["max_direct_download"]); if ($is_enterprise) { update_config_token("enable_pass_policy", $config["enable_pass_policy"]); update_config_token("pass_size", $config["pass_size"]);
function graph_ticket_activity_calendar($incidents) { global $config; // Iterates through the incidents array to fill the incidents ids array $incidents_ids = array(); foreach ($incidents as $incident) { $incidents_ids[] = $incident['id_incidencia']; } if (empty($incidents_ids)) { $ids = 0; } else { $ids = implode(",", $incidents_ids); } $sql = "SELECT COUNT(id_it) AS num, DATE(timestamp) AS date\n\t\t\tFROM tincident_track\n\t\t\tWHERE id_incident IN ({$ids})\n\t\t\tGROUP BY date\n\t\t\tORDER BY date ASC"; $track_data = process_sql($sql); // Iterates through the track data array to get their max value $max_value = 0; foreach ($track_data as $key => $value) { if ($value['num'] > $max_value) { $max_value = $value['num']; } } // Iterates through the incidents array and fill the incidents ids array passed by reference $data = array(); foreach ($track_data as $key => $value) { $data[$value['date']] = $value['num'] * 100 / $max_value; } $output = ""; $date_start = $track_data[0]['date']; end($track_data); $last_key = key($track_data); $date_end = $track_data[$last_key]['date']; $datetime1 = date_create($date_start); $datetime2 = date_create($date_end); $interval = date_diff($datetime1, $datetime2); if ($interval->y > 0 && ($interval->m > 0 || $interval->d > 0)) { $udate_start = strtotime($date_start); $udate_end = strtotime($date_end); $year_start = date('Y', $udate_start); $year_end = date('Y', $udate_end); for ($i = $year_start; $i <= $year_end; $i++) { if ($i == $year_start) { $output .= print_activity_calendar($data, $date_start, $year_start . "-12-31", true); } elseif ($i == $year_end) { $output .= print_activity_calendar($data, $year_end . "-01-01", $date_end, true); } else { $output .= print_activity_calendar($data, $i . "-01-01", $i . "-12-31", true); } } } else { $output .= print_activity_calendar($data, $date_start, $date_end, true); } return $output; }
default_company = %d, welcome_email = "%s", email_queue = "%s", default_profile = %d, nivel = %d, id_incident_type = %d, email_from = "%s", email_group = "%s" WHERE id_grupo = %d', $parent, $name, $icon, $forced_email, $banner, $id_user_default, $soft_limit, $hard_limit, $enforce_soft_limit, $id_sla, $id_inventory, $autocreate_user, $grant_access, $send_welcome, $default_company, $welcome_email, $email_queue, $default_profile, $user_level, $incident_type, $email_from, $email_group, $id); $result = process_sql($sql); if ($result === false) { echo '<h3 class="error">' . __('There was a problem modifying group') . '</h3>'; } else { audit_db($config["id_user"], $config["REMOTE_ADDR"], "Group management", "Modified group now called '{$name}'"); echo '<h3 class="suc">' . __('Successfully updated') . '</h3>'; } } // Delete group if ($delete_group) { $name = get_db_sql("SELECT nombre FROM tgrupo WHERE id_grupo = {$id}"); $sql = sprintf('DELETE FROM tgrupo WHERE id_grupo = %d', $id); $result = process_sql($sql); if ($result === false) { echo '<h3 class="error">' . __('There was a problem deleting group') . '</h3>'; } else { audit_db($config["id_user"], $config["REMOTE_ADDR"], "Group management", "Deleted group '{$name}'"); echo '<h3 class="suc">' . __('Successfully deleted') . '</h3>'; } } $offset = get_parameter("offset", 0); $search_text = get_parameter("search_text", ""); echo "<table class='search-table' style='width: 99%;'><form name='bskd' method=post action='index.php?sec=users&sec2=godmode/grupos/lista_grupos'>"; echo "<td>"; echo "<b>" . __('Search text') . "</b> "; print_input_text("search_text", $search_text, '', 40, 0, false); echo "</td>"; echo "<td>";
no_permission(); } // MAIN LIST OF PROJECTS GROUPS echo "<h1>" . __("Projects overview") . "</h1>"; // ------------- // Show headers // ------------- echo "<table width='99%' class='listing'>"; echo "<tr>"; echo "<th>" . __("Project group"); echo "<th>" . __("Icon"); echo "<th>" . __("# Projects"); // ------------- // Show DATA TABLE // ------------- $project_groups = process_sql("SELECT * FROM tproject_group ORDER by name"); if ($project_groups === false) { $project_groups = array(); } $nogroup = array(); $nogroup["id"] = 0; $nogroup["name"] = __('Without group'); $nogroup["icon"] = '../group.png'; $project_groups[] = $nogroup; $first = true; foreach ($project_groups as $group) { if ($group['id'] == 0) { $prefix = 'last_'; } elseif ($first) { $prefix = 'first_'; $first = false;
<?php require_once 'php-sql-parser.php'; $parser = new PHPSQLParser(); if (count($argv) == 1) { echo "usage: \n"; echo "php " . $argv[0] . " [schema] < inserts.sql\n"; echo "-------------------------------------\n\nThis script expects a file to be redirected to STDIN. \n\nIt expects the file to be a set of INSERT ... SELECT statements.\n\nEach statement should be terminated by a semicolon (;)\n\nThe script takes one commandline argument. This argument specifies a schema. The specified schema is used for:\nA) The location into which to place the materialized view(s)\nB) The location to use for tables that are not explicitly prefixed with a schema name in the FROM clause of the SELECT statement.\n\n"; exit; } $sql = file_get_contents('php://stdin'); process_sql($sql, @mysql_escape_string($argv[1])); function process_parsed($p, $default_db = "") { $q = new StdClass(); $q->mode = 'INCREMENTAL'; if (!empty($p['GROUP'])) { $q->group = true; } else { $q->group = false; } $output = ""; $notes = ""; #process the select list foreach ($p['SELECT'] as $s) { $expr = "CALL flexviews.add_expr(@mvid,'"; switch ($s['expr_type']) { case 'colref': if ($q->group) { $expr .= "GROUP','"; } else {
$is_enterprise = false; if (file_exists("enterprise/load_enterprise.php")) { $is_enterprise = true; } /* Tabs list */ print_setup_tabs('mail', $is_enterprise); $update = (bool) get_parameter("update"); $pending_ok = (bool) get_parameter("pending_ok"); $pending_delete = (bool) get_parameter("pending_delete"); if ($pending_ok) { echo "<h3 class='suc'>" . __('Mail queue refreshed') . "</h3>"; process_sql("UPDATE tpending_mail SET attempts = 0, status = 0 WHERE status = 1"); } if ($pending_delete) { echo "<h3 class='suc'>" . __('Mail queue deleted') . "</h3>"; process_sql("DELETE FROM tpending_mail"); } if ($update) { $config["notification_period"] = (int) get_parameter("notification_period", 86400); $config["FOOTER_EMAIL"] = (string) get_parameter("footer_email", ""); $config["HEADER_EMAIL"] = (string) get_parameter("header_email", ""); $config["mail_from"] = (string) get_parameter("mail_from"); $config["smtp_user"] = (string) get_parameter("smtp_user"); $config["smtp_pass"] = (string) get_parameter("smtp_pass"); $config["smtp_host"] = (string) get_parameter("smtp_host"); $config["smtp_port"] = (string) get_parameter("smtp_port"); $config["news_smtp_user"] = (string) get_parameter("news_smtp_user"); $config["news_smtp_pass"] = (string) get_parameter("news_smtp_pass"); $config["news_smtp_host"] = (string) get_parameter("news_smtp_host"); $config["news_smtp_port"] = (string) get_parameter("news_smtp_port"); $config["pop_user"] = (string) get_parameter("pop_user");
function check_email_queue($get_count = false) { global $config; $sql = "SELECT COUNT(*) FROM tpending_mail"; $count_aux = process_sql($sql); $count = $count_aux[0][0]; if ($get_count) { return $count; } if (!isset($config['max_pending_mail'])) { $config['max_pending_mail'] = 15; } if ($count < $config['max_pending_mail']) { return true; } return false; }
if ($send) { if ($subject != "" and $from != "" and $to != "") { echo "<h3 class='suc'>" . __('Mail queued') . "</h3>"; integria_sendmail($to, $subject, $mail, false, "", $from, true); if ($cco != "") { integria_sendmail($cco, $subject, $mail, false, "", $from, true); } $datetime = date("Y-m-d H:i:s"); // Update tracking $sql = sprintf('INSERT INTO tlead_history (id_lead, id_user, timestamp, description) VALUES (%d, "%s", "%s", "%s")', $id, $config["id_user"], $datetime, "Forwarded lead by mail to {$to}"); process_sql($sql); // Update activity $comments = __("Forwarded lead by mail to {$to}") . "
" . $mail; // this adds 
 $sql = sprintf('INSERT INTO tlead_activity (id_lead, written_by, creation, description) VALUES (%d, "%s", "%s", "%s")', $id, $config["id_user"], $datetime, $comments); process_sql($sql); } else { echo "<h3 class='error'>" . __('Could not be created') . "</h3>"; } } // Mark with case ID $subject = __("Lead forward") . " [#{$id}] : " . $lead["company"] . " / " . $lead["country"]; $mail = __("Hello"); $mail .= "\n\n"; $mail .= __("Lead details") . ":\n\n"; $mail .= " " . __("Name") . ": " . $lead["fullname"] . "\n"; $mail .= " " . __("Company") . ": " . $lead["company"] . "\n"; $mail .= " " . __("Position") . ": " . $lead["position"] . "\n"; $mail .= " " . __("Country") . ": " . $lead["country"] . "\n"; $mail .= " " . __("Language") . ": " . $lead["id_language"] . "\n"; $mail .= " " . __("Email") . ": " . $lead["email"] . "\n";
function api_delete_user($return_type, $params) { // Cannot delete the admin user if ($params === 'admin') { return; } $sql = sprintf('DELETE FROM tusuario WHERE id_usuario = "%s"', $params); $ret = process_sql($sql); $res = 0; if ($ret) { $res = 1; } if ($return_type == 'xml') { $return = "<xml>\n"; $return .= "<user>\n"; $return .= "<exists>"; $return .= "<![CDATA[" . $res . "]]>"; $return .= "</exists>\n"; $return .= "</user>\n"; $return .= "</xml>\n"; } else { $return = $res; } return $return; }