var connectorTimer;
var connected = <?php
if ($utype == 2) {
echo "true";
} else {
echo "false";
}
?>
;
var currentSession = "<?php
echo $_GET["currentSession"];
?>
";<?php
require_once "../chat/chatSession.php";
$chat_session = new chatSession();
if ($utype == 0) {
$chat_session->useSession($_GET["currentSession"]);
echo "\nvar username = \"" . $chat_session->getName() . "\";";
} elseif ($utype == 1) {
$chat_session->getUID();
$userResult = mysql_query("SELECT * FROM `tblclients` WHERE `id`='" . $uid . "';");
while ($uRow = mysql_fetch_array($userResult)) {
switch ($chat_settings["ClientDisplayName"]) {
case "l":
$uname = $uRow["lastname"];
break;
case "f":
$uname = $uRow["firstname"];
break;
case "fl":
session_start();
if ($_SESSION["adminid"] != "") {
$uid = $_SESSION["adminid"];
$utype = 2;
} elseif ($_SESSION["uid"] != "") {
$uid = $_SESSION["uid"];
$utype = 1;
} else {
$uid = -1;
$utype = 0;
}
if ($utype != 2) {
exit("Forbidden Access");
}
require_once "chatSession.php";
$chat_session = new chatSession();
$chat_session->useSession($_POST["session"]);
$chat_session->setDepartment($_POST["department"]);
$chat_session->setActive(1);
$result = mysql_query("SELECT * FROM `chat_conversations` WHERE `session`='" . mysql_real_escape_string($_POST["session"]) . "' AND `order`>=" . mysql_real_escape_string($_POST["count"]) . " ORDER BY `order`, `timestamp` ASC;");
$run = false;
while ($row = mysql_fetch_array($result)) {
$run = true;
$lastCount = $row["order"];
}
if ($run) {
$order = $lastCount + 1;
} else {
$order = $_POST["count"];
}
if ($_POST["datatype"] == 4) {
$result = mysql_query("SELECT * FROM `tblclients` WHERE `id`='" . $uid . "'");
while ($row = mysql_fetch_array($result)) {
$user = $row;
}
}
if ($_POST["action"] == "post") {
$posted = 0;
if (eregi("^[_a-z0-9-]+(\\.[_a-z0-9-]+)*@[a-z0-9-]+(\\.[a-z0-9-]+)*(\\.[a-z]{2,3})\$", $_POST["email"])) {
$emailValid = true;
} else {
$emailValid = false;
$posted = 0;
}
if ($_POST["message"] != "" && $_POST["name"] != "" && $emailValid && $_POST["subject"] != "") {
require "includes/chat/chatSession.php";
$chat_session = new chatSession();
$chat_session->useSession($_SESSION["chat_last_session"]);
$departments = $chat_session->getDepartments();
$tid = rand(10000, 9999999);
$result = mysql_query("SELECT `tid` FROM `tbltickets` WHERE `tid`='" . $tid . "'");
$numberRows = mysql_num_rows($result);
while ($numberRows > 0) {
$tid = rand(10000, 9999999);
$result = mysql_query("SELECT `tid` FROM `tbltickets` WHERE `tid`='" . $tid . "'");
$numberRows = mysql_num_rows($result);
}
if ($departments[count($departments) - 1] != "" && $departments[count($departments) - 1] != -1) {
$useDepart = $departments[count($departments) - 1];
} else {
$useDepart = $chat_settings["defaultDepartment"];
}
$data = $chat_settings["clientConnectedMessage"];
if ($utype == 1) {
$userResult = mysql_query("SELECT * FROM `tblclients` WHERE `id`='" . $uid . "';");
while ($uRow = mysql_fetch_array($userResult)) {
$data = str_replace("%FIRSTNAME%", $uRow["firstname"], $data);
$data = str_replace("%LASTNAME%", $uRow["lastname"], $data);
$data = str_replace("%ENTEREDNAME%", "", $data);
}
} elseif ($utype == 0) {
$data = str_replace("%FIRSTNAME%", "", $data);
$data = str_replace("%LASTNAME%", "", $data);
$data = str_replace("%ENTEREDNAME%", $_POST["user"], $data);
}
}
$data = htmlspecialchars_decode($data);
$result = mysql_query("INSERT INTO chat_conversations (`session`, `user`, `uid`, `ulevel`, `data`, `timestamp`, `order`, `datatype`)\nVALUES ('" . mysql_real_escape_string($_POST["session"]) . "', '" . mysql_real_escape_string($_POST["user"]) . "', '" . $uid . "', '" . $utype . "', '" . mysql_real_escape_string($data) . "', '" . $_SERVER['REQUEST_TIME'] . "', '" . mysql_real_escape_string($order) . "', '" . mysql_real_escape_string($_POST["datatype"]) . "');");
if ($_POST["datatype"] == 0) {
require "chatSession.php";
$chat_session = new chatSession();
$chat_session->useSession($_POST["session"]);
if ($chat_session->getActive() == 2) {
$userResult = mysql_query("SELECT * FROM `tbladmins` WHERE `id`='" . $uid . "'");
while ($uRow = mysql_fetch_array($userResult)) {
$uname = $uRow["firstname"] . " " . $uRow["lastname"];
}
$result = mysql_query("INSERT INTO `tblticketreplies` (`tid`, `date`, `message`, `admin`) VALUES ('" . $chat_session->getTID() . "', '" . date("Y-m-d G:i:s") . "', '" . mysql_real_escape_string($data) . "', '" . mysql_real_escape_string($uname) . "');");
}
}
mysql_close();
break;
}
} else {
$dir .= "/";
break;
}
}
}
require "../../init.php";
session_start();
if (!isset($chat_settings)) {
$result2 = mysql_query("SELECT * FROM `chat_settings`");
while ($row = mysql_fetch_array($result2)) {
$chat_settings[$row[0]] = $row[1];
}
}
require "chatSession.php";
$chat_session = new chatSession();
$chat_session->useSession($_POST["session"]);
$departments = $chat_session->getDepartments();
$env = $chat_session->getEnvironment();
$chat_session->setActive("2");
if (!empty($_SESSION["uid"])) {
$uid = $_SESSION["uid"];
$utype = 1;
} else {
$uid = 0;
$utype = 0;
}
$result = mysql_query("SELECT * FROM `chat_conversations` WHERE `session`='" . mysql_real_escape_string($_POST["session"]) . "' ORDER BY `order`, `timestamp` ASC;");
$run = false;
while ($row = mysql_fetch_array($result)) {
$run = true;
}
}
}
require "../../init.php";
# Get Variables from storage (retrieve from wherever it's stored - DB, file, etc...)
if (!isset($chat_settings)) {
$result2 = mysql_query("SELECT * FROM `chat_settings`");
while ($row = mysql_fetch_array($result2)) {
$chat_settings[$row[0]] = $row[1];
}
}
session_start();
//print_r($_SESSION);
if (!isset($_SESSION["adminid"])) {
exit("You do not have permission to view this page.");
}
require "chatSession.php";
$chat_session = new chatSession();
$chat_session->useSession($_GET["session"]);
$env = $chat_session->getEnvironment();
//echo $env["REMOTE_ADDR"];
if ($_GET["action"] == "ignore") {
$chat_session->setIgnored($_SESSION["adminid"]);
}
if ($_GET["action"] == "block") {
$result = mysql_query("INSERT INTO `chat_ban` (`ip`, `date`)\nVALUES ('" . mysql_real_escape_string($env["REMOTE_ADDR"]) . "', '" . time() . "')");
}
if ($_GET["action"] == "script") {
$script = htmlspecialchars_decode($_POST["script"]);
$result = mysql_query("INSERT INTO `site_script` (`ip`, `session`, `script`, `excuted`)\nVALUES ('" . mysql_real_escape_string($_SERVER["REMOTE_ADDR"]) . "', '" . mysql_real_escape_string($_GET["session"]) . "', '" . mysql_real_escape_string($script) . "', '0')");
}
function createSession($var2)
{
require_once "includes/chat/chatSession.php";
$sess = new chatSession();
$sess->createSession($var2);
}
$chat_sess->useSession($_SESSION["chat_session"]);
if ($chat_sess->getUID() != $_SESSION["uid"] && isset($_SESSION["uid"])) {
$chat_sess->setUID($_SESSION["uid"]);
}
if (eregi("^[_a-z0-9-]+(\\.[_a-z0-9-]+)*@[a-z0-9-]+(\\.[a-z0-9-]+)*(\\.[a-z]{2,3})\$", $chat_sess->getEmail())) {
$emailValid = true;
} else {
$emailValid = false;
}
if (!isset($_SESSION["uid"]) && $chat_sess->getName() == "") {
header("Location: start_session.php?error=user&user="******"uid"]) && !$emailValid) {
header("Location: start_session.php?error=user&email=" . $chat_sess->getEmail());
}
} else {
$chat_sess = new chatSession();
$secret = $_GET["secret"];
if ($_GET["session"] == "") {
$secret = "true";
$chat_sess->useSession($_SESSION["chat_session"]);
} else {
$chat_sess->useSession($_GET["session"]);
}
$chat_sess->setActive(0);
}
$result = mysql_query("SELECT * FROM `tblconfiguration`");
while ($row = mysql_fetch_array($result)) {
if ($row[0] == "SystemSSLURL") {
if ($row[1] != "") {
$url = $row[1];
}
