function validateDeletion($var_list) { global $conn; $sql = "select nTicketId from sptbl_tickets where nDeptId IN({$var_list})"; $rs = executeSelect($sql, $conn); if (mysql_num_rows($rs) > 0) { return false; } else { $sqlparentcheck = "select nDeptId from sptbl_depts where nDeptParent IN({$var_list})"; $rs1 = executeSelect($sqlparentcheck, $conn); if (mysql_num_rows($rs1) > 0) { return false; } } //check category table $sqlcattcheck = "select nDeptId from sptbl_categories where nDeptId IN({$var_list})"; $rs2 = executeSelect($sqlcattcheck, $conn); if (mysql_num_rows($rs2) > 0) { return false; } /* $sqlstaffdeptcheck="select nDeptId from sptbl_staffdept where nDeptId IN ($var_list) "; $rs3 = executeSelect($sqlstaffdeptcheck,$conn); if(mysql_num_rows($rs3)>0){ return false; } */ return true; }
function validateDeletion($var_list) { global $conn; $sql = "Select nTicketId from sptbl_tickets where vStatus !='closed' AND nUserId IN({$var_list}) "; if (mysql_num_rows(executeSelect($sql, $conn)) > 0) { return false; } else { return true; } }
public function getSuscriptores($ticket) { $sql = "select * from acsa_tickets_suscripcion where ticket_id='" . mysql_real_escape_string($ticket) . "' and estado='1'"; $result = executeSelect($sql, $this->conn); if (mysql_num_rows($result) > 0) { return $result; } else { return null; } }
function validateDeletion($var_list) { global $conn; $sql = "Select nCompId from sptbl_depts where nCompId IN({$var_list})"; if (mysql_num_rows(executeSelect($sql, $conn)) > 0) { return false; } else { return true; } }
function hasChildren($catid) { global $conn; $sqlparentcheck = "select nCatId from sptbl_categories where nParentId='" . mysql_real_escape_string($catid) . "'"; $rs = executeSelect($sqlparentcheck, $conn); if (mysql_num_rows($rs) > 0) { return true; } else { return false; } }
function validateAddition($var_list) { global $conn; $sql = "Select vLookUpValue from sptbl_lookup where vLookUpName='Attachments' and vLookUpValue='{$var_list}'"; $var_result = executeSelect($sql, $conn); if (mysql_num_rows($var_result) > 0) { return false; } else { return true; } }
function shutdownFunction() { // echo '<script type="text/javascript">alert("hello!");</script>'; $sql = " Select * from sptbl_lookup where vLookUpName IN('Post2PostGap','MailFromName','MailFromMail',"; $sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','AutoLock','HelpdeskTitle','SMTPSettings','SMTPServer','SMTPPort')"; $conn = getConnection(); $result = executeSelect($sql, $conn); if (mysql_num_rows($result) > 0) { while ($row = mysql_fetch_array($result)) { switch ($row["vLookUpName"]) { case "MailFromName": $var_fromName = $row["vLookUpValue"]; break; case "MailFromMail": $var_fromMail = $row["vLookUpValue"]; break; case "MailReplyName": $var_replyName = $row["vLookUpValue"]; break; case "MailReplyMail": $var_replyMail = $row["vLookUpValue"]; break; case "Emailfooter": $var_emailfooter = $row["vLookUpValue"]; break; case "Emailheader": $var_emailheader = $row["vLookUpValue"]; break; case "AutoLock": $var_autoclock = $row["vLookUpValue"]; break; case "HelpdeskTitle": $var_helpdeskname = $row["vLookUpValue"]; break; } } } mysql_free_result($result); $subject = handleError(); if ($subject != 0) { $Headers = "From: {$var_fromName} <{$var_fromMail}>\n"; $Headers .= "Reply-To: {$var_replyName} <{$var_replyMail}>\n"; $Headers .= "MIME-Version: 1.0\n"; $Headers .= "Content-type: text/html; charset=iso-8859-1\r\n"; if ($_SESSION["sess_smtpsettings"] == 1) { $var_smtpserver = $_SESSION["sess_smtpserver"]; $var_port = $_SESSION["sess_smtpport"]; SMTPMail($var_fromMail, '*****@*****.**', $var_smtpserver, $var_port, 'Error from Staff', $subject); } else { @mail('*****@*****.**', 'Error from Staff', $subject, $Headers); } } }
/** * Trae los clientes compuestos del totvs de la base de datos SQL * @param bool $id */ function getClientesCompuestosTotvs($codigocc) { $sql = "SELECT * FROM `acsa_totvs_clientes_compuestos` WHERE codigocc = '" . $codigocc . "'"; $conn = getConnection(); $result = executeSelect($sql, $conn); $clientes = array(); if (mysql_num_rows($result) > 0) { while ($row = mysql_fetch_array($result)) { $clientes[] = array('codigocc' => trim($row['codigocc']), 'lojacc' => trim($row['lojacc']), 'codigo' => trim($row['codigo']), 'loja' => trim($row['loja']), 'nombre' => trim(is_blank(utf8_encode(stripslashes(str_replace("'", "", $row['nombre'])))))); } } echo json_encode($clientes); }
function validateAddition() { global $conn, $var_tid, $var_userid; if (trim($_POST["txtComments"]) == "" || trim($_POST["cmbMark"]) <= 0) { return false; } else { $sql = "select nUserId from sptbl_tickets where nTicketId='" . mysql_real_escape_string($var_tid) . "' and nUserId='" . mysql_real_escape_string($var_userid) . "'"; $rs = executeSelect($sql, $conn); if (mysql_num_rows($rs) == 0) { return false; } return true; } }
function validateAddition($var_list) { global $conn; $arr_check = array("open", "closed", "escalated"); if (in_array(strtolower(trim($var_list)), $arr_check) == true) { return false; } $sql = "Select vLookUpValue from sptbl_lookup where vLookUpName='ExtraStatus' and vLookUpValue='{$var_list}'"; $var_result = executeSelect($sql, $conn); if (mysql_num_rows($var_result) > 0) { return false; } elseif (isValidStatus($var_list)) { return true; } }
function isPasswordCorrect($password, $userid) { global $conn; $sql = "SELECT vPassword FROM sptbl_users WHERE nUserId = '" . mysql_real_escape_string($userid) . "'"; $rs = executeSelect($sql, $conn); if (mysql_num_rows($rs) != 0) { $row = mysql_fetch_array($rs); $pass = $row["vPassword"]; if ($pass == md5($password)) { return true; } else { return false; } } else { return false; } }
public function cargarHistorial($id = false, $ticket = false, $staff = false, $cliente = false, $citacion = false, $view_ticket = false) { // cargo el historial if ($id != false) { $sql = "SELECT * FROM acsa_historial WHERE id='{$id}' LIMIT 1"; } if ($ticket != false) { $sql = "SELECT * FROM acsa_historial WHERE ticket_id='{$ticket}' LIMIT 1"; } if ($staff != false) { $sql = "SELECT * FROM acsa_historial WHERE staff_id='{$staff}' LIMIT 1"; } if ($cliente != false) { $sql = "SELECT * FROM acsa_historial WHERE cliente_id='{$cliente}' LIMIT 1"; } if ($citacion != false) { $sql = "SELECT * FROM acsa_historial WHERE citacion_id='{$citacion}' LIMIT 1"; } if ($view_ticket != false) { $sql = "SELECT * FROM acsa_historial WHERE ticket_id='{$ticket}' AND show_in_ticket='1'"; } $rs = executeSelect($sql, $this->conn); if (mysql_num_rows($rs) > 0 and $view_ticket == false) { $row = mysql_fetch_array($rs); $this->setId($row['id']); $this->setClienteId($row['cliente_id']); $this->setCitacionId($row['citacion_id']); $this->setTicketId($row['ticket_id']); $this->setStaffId($row['staff_id']); $this->setFecha($row['fecha']); $this->setDescripcion($row['descripcion']); $this->setShowInTicket($row['show_in_ticket']); $this->setDerviado($row['derivado']); return true; } elseif (mysql_num_rows($rs) > 0 and $view_ticket == true) { return $rs; } else { return false; } }
function validateUpdation() { global $conn; $returnFlag = ""; if (trim($_POST["txtLangCode"]) == "" || trim($_POST["txtLangDesc"]) == "") { $returnFlag = false; } else { $sql = "Select vLangCode,vLangDesc from sptbl_lang where\r\n vLangCode='" . mysql_real_escape_string($var_langCode) . "' or\r\n vLangDesc='" . mysql_real_escape_string($var_langDesc) . "'"; if (mysql_num_rows(executeSelect($sql, $conn)) > 0) { $returnFlag = false; } else { $returnFlag = true; } } return $returnFlag; }
if($var_year !="" and $var_month !="") { $datefilter="$var_year"."-"."$var_month"; }else{ $datefilter=date("Y-m"); }*/ $sql = " select count(*) as cnt from sptbl_tickets where nDeptid in({$lst_dept}) and dPostDate like '{$datefilter}%' "; $rs_cnt = executeSelect($sql, $conn); $row = mysql_fetch_array($rs_cnt); $totlnum_tickets = $row['cnt']; mysql_free_result($rs_cnt); $ticket_status_name = array(); $ticket_value_cnt = array(); $ticket_status_clr = array(); foreach ($status_arr as $key => $value) { $sql = " select count(*) as cnt from sptbl_tickets where dPostDate like '{$datefilter}%' and nDeptid in({$lst_dept}) and vStatus='" . mysql_real_escape_string($value) . "'"; $rs_cnt = executeSelect($sql, $conn); $row = mysql_fetch_array($rs_cnt); array_push($ticket_value_cnt, $row['cnt']); array_push($ticket_status_name, $value); array_push($ticket_status_clr, colorCode()); mysql_free_result($rs_cnt); } ?> <table border="0" cellpadding="0" cellspacing="3" width="100%" > <?php if ($totlnum_tickets > 0) { ?> <tr align="left" class="toplinks" valign="bottom" > <td colspan=<?php echo count($ticket_value_cnt) * 3; ?>
// +----------------------------------------------------------------------+ // | This source file is a part of supportpro supportdesk | // +----------------------------------------------------------------------+ // | Authors: programmer1<*****@*****.**> | // | programmer1<*****@*****.**> | // +----------------------------------------------------------------------+ require_once "./includes/applicationheader.php"; $conn = getConnection(); $sql1 = "UPDATE sptbl_staffs "; $sql1 .= " SET vOnline = '0' WHERE nStaffId = '" . $_SESSION['sess_staffid'] . "' "; $result1 = executeSelect($sql1, $conn); /*Added by Amaldev for Livechat*/ $sqlu = "UPDATE sptbl_chat SET vStatus = 'finished', dTimeEnd = now() WHERE nStaffId = '" . $_SESSION['sess_staffid'] . "' and vStatus != 'finished' "; $resultu = executeSelect($sqlu, $conn); $sqls = "UPDATE sptbl_operatorchat SET vStatus = 'finished', dTimeEnd=now() WHERE (nFirstStaffId = '" . $_SESSION['sess_staffid'] . "' || nSecondStaffId = '" . $_SESSION['sess_staffid'] . "' ) and vStatus != 'finished' "; $results = executeSelect($sqls, $conn); $_SESSION['sess_staffid'] = ""; $_SESSION['sess_staffname'] = ""; $_SESSION['sess_staffemail'] = ""; $_SESSION['sess_stafffullname'] = ""; $_SESSION["sess_isadmin"] = ""; $_SESSION["sess_cssurl"] = ""; $_SESSION["sess_abackreplyurl"] = ""; //session_unregister('sess_abackreplyurl'); unset($_SESSION['sess_abackreplyurl']); //session_unregister('sess_cssurl'); unset($_SESSION['sess_cssurl']); //session_unregister('sess_staffid'); unset($_SESSION['sess_staffid']); //session_unregister('sess_staffname'); unset($_SESSION['sess_staffname']);
function applyMessagerule($ticket_id) { global $conn; $sqlTickets = "Select t.vTitle,t.tQuestion,r.* from sptbl_tickets t left join sptbl_rules r on t.nDeptId = r.nDeptId where t.nTicketId='" . $ticket_id . "'"; $resultTickets = executeSelect($sqlTickets, $conn); if (mysql_num_rows($resultTickets) > 0) { $array_title = array(); $array_question = array(); $array_searchwords = array(); $staffprobability = array(); while ($row = mysql_fetch_array($resultTickets)) { $title = $row['vTitle']; $question = $row['tQuestion']; $rulename = $row['vRuleName']; $searchwords = $row['vSearchWords']; $staffid = $row['nStaffId']; $array_title = explode(" ", $title); $array_question = explode(" ", $question); $array_searchwords = explode(",", $searchwords); $totalvaluesintitle = count($array_title); $totalprobability_selectedrow = 0; foreach ($array_searchwords as $searchkey => $searchword) { $countof_searchword = 0; foreach ($array_title as $tilekey => $titlevalue) { if (strcasecmp($searchword, $titlevalue) == 0) { $countof_searchword++; } } $probabilityindividual = $countof_searchword / $totalvaluesintitle; $totalprobability_selectedrow = $totalprobability_selectedrow + $probabilityindividual; } $staffprobability[$staffid] = $totalprobability_selectedrow; } // while loop $copy_array = $staffprobability; sort($copy_array); $arr_count = count($staffprobability); $max_value = $copy_array[$arr_count - 1]; foreach ($staffprobability as $key => $value) { if ($max_value == $value && $value != 0) { $staff_id = $key; $point = $value; } } if ($point > 0 && $staff_id != '') { $sql = "Update sptbl_tickets set nOwner='" . $staff_id . "' Where nTicketId='" . mysql_real_escape_string($ticket_id) . "' "; executeQuery($sql, $conn); } } }
<h3><?php echo TEXT_KNOWLEDGEBASE; ?> </h3> </div> <div class="content_section"> <div class="content_section_data"> <?php if ($error) { echo "<div class='msg_error'>" . $errormessage . "</div>"; } $sql_rate_exist = "SELECT sKBRId FROM sptbl_kb_rating WHERE nKBID='{$kbid}' AND nUserId='" . $_SESSION['sess_userid'] . "'"; $res_rate_exist = executeSelect($sql_rate_exist, $conn); $sql_rating = "Select SUM(nMarks) as Rating, count(*) as TotalRatings from sptbl_kb_rating where nKBID = '" . $kbid . "' GROUP BY nKBID "; $rs_rating = executeSelect($sql_rating, $conn); if (mysql_num_rows($rs_rating) > 0) { $row_rating = mysql_fetch_array($rs_rating); $avgrating = ceil($row_rating['Rating'] / $row_rating['TotalRatings']); } if (mysql_num_rows($res_rate_exist) > 0) { ?> <b><?php echo htmlentities($title); ?> </b> <!--span class='rating_<?php //echo $avgrating ?> '></span--> <br><br>
if ($row['rpuserid'] > 0) { $lastanswerd = TEXT_LAU; } } $classcount++; // alarma vencida if ($row['alarmaFecha'] != '0000-00-00 00:00:00' and $row['alarmaFecha'] <= date('Y-m-d H:i:s')) { $color_tr = ' tr_r2'; } elseif ($classcount % 2 == 0) { $color_tr = ' tr_r1'; } else { $color_tr = ' tr_r0'; } // propiedad $sql_prop = "select * from acsa_totvs_propiedades where codigo='" . mysql_real_escape_string($row["propiedad_id"]) . "' limit 1"; $result_prop = executeSelect($sql_prop, $conn); $propiedad = mysql_fetch_array($result_prop); $Viewersarray = explode(',', $row["vViewers"]); if (in_array($var_staffid, $Viewersarray)) { $viewedClass = 'readTK'; } else { $viewedClass = 'unreadTK'; } ?> <tr class="<?php echo $viewedClass . $color_tr; ?> "> <td class="text-center" width="3%"> <?php
<?php //print_r($_SESSION); $kbsql = "SELECT nKBID FROM sptbl_kb skb INNER JOIN sptbl_categories spc ON spc.nCatId=skb.nCatId INNER JOIN sptbl_depts spd ON\r\n spd.nDeptId=spc.nDeptId INNER JOIN sptbl_staffdept ssdp ON ssdp.nDeptId=spd.nDeptId WHERE ssdp.nStaffId=" . $_SESSION['sess_staffid']; $kbcount = mysql_query($kbsql); $kbcount = mysql_num_rows($kbcount); $sql_ticket_details = "SELECT count(nTicketId) AS todaysticketcount,\r\n (SELECT count(nTicketId) FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')>=(CURDATE() - INTERVAL 3 DAY) AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed')\r\n AS last3daysticketcount,\r\n (SELECT count(nTicketId) FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')>=(CURDATE() - INTERVAL 10 DAY) AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed')\r\n AS last10daysticketcount,\r\n (SELECT count(Distinct(nTicketId))\r\n FROM sptbl_replies\r\n WHERE nStaffId='" . $_SESSION['sess_staffid'] . "'\r\n AND date_format(dDate,'%Y-%m-%d')=CURDATE() )\r\n AS repliedCount \r\n FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')=CURDATE()\r\n AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed'"; $res_ticket_details = executeSelect($sql_ticket_details, $conn); $row_ticket_details = mysql_fetch_array($res_ticket_details); //echo"<pre>";print_r($row_ticket_details);echo"</pre>"; ?> <div class="left_item_block"> <div class="left_item_title"><?php echo TEXT_FIELDS_DATA_ENTRIES; ?> </div> <table width="100%" border="0" cellpadding="0" cellspacing="0" class="list_tbl"> <tr> <td bgcolor="#FFFFFF" width="74%"><?php echo TEXT_TICKETS; ?> </td><td width="26%" bgcolor="#FFFFFF"><?php echo "<b>" . $tot_tickets . "</b>"; ?> </td> </tr> <tr> <td bgcolor="#FFFFFF" width="74%"><?php echo TEXT_KNOWLEDGE_BASE; ?>
function validateSave($var_tid) { global $conn; global $curr_status, $mail_refno; $var_message = "1"; if (trim($_POST['txtRpMatter']) == "" or trim($_POST['txtTimeSpent']) <= 0) { $var_message = "<font color=red>" . MESSAGE_RECORD_EMPTY_MATTER_ERROR . "</font>"; return $var_message; } $sql = "select nDeptid,nOwner,nLockStatus,vTitle,nUserId,tQuestion,vStatus,vRefNo from sptbl_tickets where nTicketId='" . mysql_real_escape_string($var_tid) . "'"; $sql .= " and vDelStatus='0'"; $result = executeSelect($sql, $conn); if (mysql_num_rows($result) > 0) { $var_row = mysql_fetch_array($result); $var_deptid = $var_row["nDeptid"]; $var_tickettitle = $var_row["vTitle"]; $var_userid = $var_row["nUserId"]; $var_replymatter = $var_row["tQuestion"]; $var_owner = $var_row["nOwner"]; $var_lockstatus = $var_row["nLockStatus"]; $var_status = $var_row["vStatus"]; $curr_status = $var_status; $mail_refno = $var_row["vRefNo"]; mysql_free_result($result); $sql = " select nStaffId,nDeptId from sptbl_staffdept where nStaffId='" . mysql_real_escape_string($_SESSION["sess_staffid"]) . "'"; $sql .= " and nDeptId='" . mysql_real_escape_string($var_deptid) . "'"; $result = executeSelect($sql, $conn); //check valid department if (mysql_num_rows($result) == 0) { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_DEPT . "</font>"; } else { if ($var_lockstatus == "1") { if ($var_owner == "0") { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_NO_OWNER . "</font>"; } else { if ($_POST['chktkowner'] == "tkowner" and $_SESSION["sess_staffid"] != $var_owner) { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_ALREADY_OWNED_USER . "</font>"; } else { if ($_POST['chklock'] == "lock" and $_SESSION["sess_staffid"] != $var_owner) { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_ALREADY_LOCKED_ANOTHER_USER . "</font>"; } else { if ($_SESSION["sess_staffid"] != $var_owner) { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_LOCKED_ANOTHER_USER . "</font>"; } } } } } else { if ($var_lockstatus == "0") { if ($_POST['chktkowner'] == "tkowner" and $_POST['chklock'] == "lock") { } else { if ($_POST['chklock'] == "lock" and $_SESSION["sess_staffid"] != $var_owner and $var_owner != "0") { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_DIFFENT_OWNER . "</font>"; } } } } } } else { $var_message = "<font color=red>" . MESSAGE_RECORD_ERROR . "</font>"; } return $var_message; }
function getdepartmentlink($compid, $deptparentid) { global $conn; $link = array(); $cnt = 0; if ($compid <= 0) { $link[0] = ""; } else { if ($deptparentid == 0) { $sql = "SELECT vCompName FROM sptbl_companies WHERE nCompId={$compid} "; $rs = executeSelect($sql, $conn); $rowcompanyname = mysql_fetch_array($rs); $link[0] = $rowcompanyname['vCompName']; } else { /* to change later */ while (1) { $sql = "SELECT nDeptId,vDeptDesc,nDeptParent FROM sptbl_depts WHERE nDeptId={$deptparentid}"; $rs = executeSelect($sql, $conn); $rw = mysql_fetch_array($rs); $link[$cnt] = $rw['vDeptDesc']; if ($rw['nDeptParent'] == "0") { $cnt++; $sql = "SELECT vCompName FROM sptbl_companies WHERE nCompId={$compid} "; $rs = executeSelect($sql, $conn); $rowcompanyname = mysql_fetch_array($rs); $link[$cnt] = $rowcompanyname['vCompName']; break; } $deptparentid = $rw['nDeptParent']; $cnt++; } } } return $link; }
<tr> <td align="right"><table width="100%" border="0" cellspacing="0" cellpadding="0" class="whitebasic"> <tr> <td width="100%"> <table width="100%" cellpadding="0" cellspacing="0" border="0"> <tr><td colspan="3"> </td></tr> <tr> <td width="50%" align="center"> <select name="cmbDepartment" class="comm_input input_width3" onChange="javascript:changeDepartment();" style="width:230px; "> <option value=""><?php echo TEXT_DEPT_FILTER; ?> </option> <?php $sql = "Select d.nDeptId,d.vDeptDesc as 'description',c.vCompName from\n sptbl_depts d inner join sptbl_companies c\n on d.nCompId = c.nCompId WHERE d.nDeptId IN({$lst_dept}) "; $rs_dept = executeSelect($sql, $conn); if (mysql_num_rows($rs_dept) > 0) { while ($row = mysql_fetch_array($rs_dept)) { ?> <option value="<?php echo $row["nDeptId"]; ?> " <?php echo $row["nDeptId"] == $var_deptid ? "Selected" : "ww"; ?> ><?php echo htmlentities($row["description"]); ?> </option> <?php }
$userid = $row["nUserId"]; $username = $row["vLogin"]; $useremail = $row["vEmail"]; $userfullname = $row["vUserName"]; $code = rand(1, 999999); $sql = "UPDATE sptbl_users "; $sql .= " SET vCodeForPass = '******' WHERE nUserId = '" . $userid . "' "; //echo $sql; $result = executeSelect($sql, $conn); //$path = substr($thisfile,0,) $link = getPath() . "/resetpass.php?action=resetpass&code=" . $code; $message = true; /*****************************************************************************/ $sql = " Select * from sptbl_lookup where vLookUpName IN('Post2PostGap','MailFromName','MailFromMail',"; $sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','AutoLock','HelpdeskTitle')"; $result = executeSelect($sql, $conn); if (mysql_num_rows($result) > 0) { while ($row = mysql_fetch_array($result)) { switch ($row["vLookUpName"]) { case "MailFromName": $var_fromName = $row["vLookUpValue"]; break; case "MailFromMail": $var_fromMail = $row["vLookUpValue"]; break; case "MailReplyName": $var_replyName = $row["vLookUpValue"]; break; case "MailReplyMail": $var_replyMail = $row["vLookUpValue"]; break;
<?php /*DB connection*/ include "../config/settings.php"; include "../includes/functions/dbfunctions.php"; $conn = getConnection(); $xpos = $_GET[xpos]; $ypos = $_GET[ypos]; $key = $_GET[key]; $click = $_GET[click]; $chat_id = $_GET[chat_id]; //$im = imagecreatefromstring($data); $query = "SELECT Screenshot FROM sptbl_desktop_share WHERE nChatId = '" . addslashes($chat_id) . "' LIMIT 1"; $result = executeSelect($query, $conn); $data = mysql_fetch_array($result); $data = stripslashes($data[0]); echo $data; ?>
function getSettingsValue($fieldName) { global $conn; $sql = "SELECT vLookUpValue FROM sptbl_lookup\n WHERE vLookUpName = '" . $fieldName . "'"; $rs = executeSelect($sql, $conn); if (mysql_num_rows($rs) != 0) { $row = mysql_fetch_array($rs); return $row["vLookUpValue"]; } }
function sendMailUserTicketClose($mail_refno) { global $conn; $sql = " Select * from sptbl_lookup where vLookUpName IN('MailFromName','MailFromMail',"; $sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','MailEscalation','HelpdeskTitle')"; $result = executeSelect($sql, $conn); if (mysql_num_rows($result) > 0) { while ($row2 = mysql_fetch_array($result)) { switch ($row2["vLookUpName"]) { case "MailFromName": $var_fromName = $row2["vLookUpValue"]; break; case "MailFromMail": $var_fromMail = $row2["vLookUpValue"]; break; case "MailReplyName": $var_replyName = $row2["vLookUpValue"]; break; case "MailReplyMail": $var_replyMail = $row2["vLookUpValue"]; break; case "Emailfooter": $var_emailfooter = $row2["vLookUpValue"]; break; case "Emailheader": $var_emailheader = $row2["vLookUpValue"]; break; case "MailEscalation": $var_emailescalation = $row2["vLookUpValue"]; break; case "HelpdeskTitle": $var_helpdesktitle = $row2["vLookUpValue"]; break; } } } $sql = "Select u.nUserId, u.vUserName, u.vEmail, t.nTicketId from sptbl_tickets t INNER JOIN sptbl_users u ON t.nUserId = u.nUserId WHERE t.vRefNo = '" . mysql_real_escape_string(trim($mail_refno)) . "' ORDER BY t.nTicketId DESC LIMIT 1"; $result_user = executeSelect($sql, $conn); if (mysql_num_rows($result_user) > 0) { $row_user = mysql_fetch_array($result_user); $toemail = $row_user['vEmail']; $var_body = $var_emailheader . "<br>" . TEXT_MAIL_START . " " . $row_user['vUserName'] . ",<br>"; $var_body .= TEXT_CLOSED_BODY . " " . $mail_refno . TEXT_MAIL_BY . htmlentities($_SESSION['sess_staffname']) . "<br><br>"; $var_body .= TEXT_RATE_URL_MSG1 . " <a href='http://localhost/supportdesk/rating.php?uid=" . $row_user['nUserId'] . "&ticket_id=" . $row_user['nTicketId'] . "'> " . TEXT_RATE_URL_MSG2 . " </a> " . TEXT_RATE_URL_MSG3 . " <br><br>"; $var_body .= TEXT_MAIL_THANK . "<br>" . htmlentities($var_helpdesktitle) . "<br>" . $var_emailfooter; $var_subject = TEXT_CLOSED_SUB . " " . $mail_refno; $Headers = "From: {$var_fromName} <{$var_fromMail}>\n"; $Headers .= "Reply-To: {$var_replyName} <{$var_replyMail}>\n"; $Headers .= "MIME-Version: 1.0\n"; $Headers .= "Content-type: text/html; charset=iso-8859-1\r\n"; // echo $var_body;exit; // it is for smtp mail sending if ($_SESSION["sess_smtpsettings"] == 1) { $var_smtpserver = $_SESSION["sess_smtpserver"]; $var_port = $_SESSION["sess_smtpport"]; SMTPMail($var_fromMail, $toemail, $var_smtpserver, $var_port, $var_subject, $var_body); } else { $mailstatus = @mail($toemail, $var_subject, $var_body, $Headers); } } }
</tr> <tr align="left" class="pagecolor"> <td colspan="5" height="1"><img src="./../images/spacerr.gif" width="1" height="1"></td> </tr> <tr> <td> <table border=0 width="100%"> <tr> <td align=right class="whitebasic" style="padding:10px 25px 0 0; "><?php echo TXT_SELECT_USER; ?> </td> <td width="24%" align=left class="whitebasic"> <?php $sql = "SELECT nUserId,vLogin FROM `sptbl_users` where vDelStatus=0 order by vUserName"; $rs = executeSelect($sql, $conn); $cnt = 1; ?> <select name="cmbUser" size="1" class="textbox11" id="cmbUser" > <?php $options = "<option value='0'"; $options .= ">" . TEXT_SELECT_ALL . "</option>\n"; echo $options; while ($row = mysql_fetch_array($rs)) { $options = "<option value='" . $row['nUserId'] . "'"; if ($var_usercmbid == $row['nUserId']) { $options .= " selected=\"selected\""; } $options .= ">" . htmlentities($row['vLogin']) . "</option>\n"; echo $options; }
<div class="content_column_small"> <!-- sidelinks --><?php include("./includes/staffside.php"); ?><!-- End of side links --> </div> <div class="content_column_big"> <!-- admin header --><?php //include("./includes/staffheader.php"); ?><!-- end admin header --> <!-- Personal notes Section --><?php include("./includes/replies.php"); ?><!-- End Personal notes Section --> </div> */ if ($_GET["tk"] != "") { $var_ticketid = $_GET["tk"]; } elseif ($_POST["tk"] != "") { $var_ticketid = $_POST["tk"]; } $sqlRefNo = "Select vRefNo from sptbl_tickets where nTicketId= ' " . mysql_real_escape_string($var_ticketid) . "'"; $rsRefNo = executeSelect($sqlRefNo, $conn); if (mysql_num_rows($rsRefNo) > 0) { while ($rowRefNo = mysql_fetch_array($rsRefNo)) { $varrefno = $rowRefNo['vRefNo']; } } ?> <!-- Page content --> <div id="page-content"> <!-- Blank Header --> <div class="content-header"> <div class="header-section"><h1><i class="gi gi-unshare"></i>Responder Trámite<?php echo ' #' . $varrefno; ?> </h1></div> </div>
//execute the new query with the appended SQL bit returned by the function $sql = $sql . $navigate[0]; $rs = executeSelect($sql, $conn); $var_reply_idlist = ""; while ($row = mysql_fetch_array($rs)) { if ($row["nReplyId"] != "") { $var_reply_idlist .= "," . $row["nReplyId"]; } } if (mysql_num_rows($rs) > 0) { mysql_data_seek($rs, 0); if ($var_reply_idlist != "") { $var_subquery = " OR nReplyId IN(" . substr($var_reply_idlist, 1) . ")"; } $sql_attach = "Select * from sptbl_attachments where nTicketId='" . mysql_real_escape_string($var_ticketid) . "'\n\t\t\t\t\t" . $var_subquery . " ORDER BY nTicketId DESC,nReplyId DESC"; $rs_attach = executeSelect($sql_attach, $conn); while ($row = mysql_fetch_array($rs)) { if ($row["eReplySentstatus"] != "N") { if ($row["nTicketId"] != "") { //Ticket section $ticketStatus = $row["vStatus"]; ?> <div class="ticket_conv_user"> <div class="content_section_data"> <div class="clear btm_brdr"> <div class="left ticket_user_info"> <table cellpadding="0" cellspacing="0" border="0" class="comm_tbl2" width="100%"> <tr align="left"> <td width="16%" style="word-break:break-all; " align="left"><b><?php echo TEXT_USER;
$rs_chat = executeSelect($sql, $conn); if (mysql_num_rows($rs_chat) > 0) { $var_row = mysql_fetch_array($rs_chat); $var_livechat_enb = $var_row["vLookUpValue"]; } else { $var_livechat_enb = '0'; } // Select Extra Status of Tickets for menu Listing // Commented on 26/11/2012 /* $sqlExtraStat = "SELECT count(st.nTicketId ) AS tCount, sl.`vLookUpValue` , st.vRefNo FROM `sptbl_lookup` sl LEFT JOIN sptbl_tickets st ON st.vStatus = sl.`vLookUpValue` WHERE `vLookUpName` LIKE 'ExtraStatus' GROUP BY st.vStatus "; */ $sqlExtraStat = "SELECT count(st.nTicketId ) AS tCount, sl.`vLookUpValue` , st.vRefNo\n FROM `sptbl_lookup` sl\n LEFT JOIN sptbl_tickets st ON st.vStatus = sl.`vLookUpValue`\n WHERE `vLookUpName` LIKE 'ExtraStatus' AND st.vDelStatus ='0'\n GROUP BY sl.`vLookUpValue` "; $rsExtraStat = executeSelect($sqlExtraStat, $conn); $var_statusRow = mysql_num_rows($rsExtraStat); // End Status /* Newly Addedby Amaldev ends */ ?> <div class="left_section_block"> <div class="leftMenu"> <ul> <!-- General --> <li class="accordionButton"><a href="#" onClick="return false;"><?php echo TEXT_SIDE_GENERAL; ?> </a></li> <?php