function validateDeletion($var_list)
{
global $conn;
$sql = "select nTicketId from sptbl_tickets where nDeptId IN({$var_list})";
$rs = executeSelect($sql, $conn);
if (mysql_num_rows($rs) > 0) {
return false;
} else {
$sqlparentcheck = "select nDeptId from sptbl_depts where nDeptParent IN({$var_list})";
$rs1 = executeSelect($sqlparentcheck, $conn);
if (mysql_num_rows($rs1) > 0) {
return false;
}
}
//check category table
$sqlcattcheck = "select nDeptId from sptbl_categories where nDeptId IN({$var_list})";
$rs2 = executeSelect($sqlcattcheck, $conn);
if (mysql_num_rows($rs2) > 0) {
return false;
}
/*
$sqlstaffdeptcheck="select nDeptId from sptbl_staffdept where nDeptId IN ($var_list) ";
$rs3 = executeSelect($sqlstaffdeptcheck,$conn);
if(mysql_num_rows($rs3)>0){
return false;
}
*/
return true;
}
function validateDeletion($var_list)
{
global $conn;
$sql = "Select nTicketId from sptbl_tickets where vStatus !='closed' AND nUserId IN({$var_list}) ";
if (mysql_num_rows(executeSelect($sql, $conn)) > 0) {
return false;
} else {
return true;
}
}
public function getSuscriptores($ticket)
{
$sql = "select * from acsa_tickets_suscripcion where ticket_id='" . mysql_real_escape_string($ticket) . "' and estado='1'";
$result = executeSelect($sql, $this->conn);
if (mysql_num_rows($result) > 0) {
return $result;
} else {
return null;
}
}
function validateDeletion($var_list)
{
global $conn;
$sql = "Select nCompId from sptbl_depts where nCompId IN({$var_list})";
if (mysql_num_rows(executeSelect($sql, $conn)) > 0) {
return false;
} else {
return true;
}
}
function hasChildren($catid)
{
global $conn;
$sqlparentcheck = "select nCatId from sptbl_categories where nParentId='" . mysql_real_escape_string($catid) . "'";
$rs = executeSelect($sqlparentcheck, $conn);
if (mysql_num_rows($rs) > 0) {
return true;
} else {
return false;
}
}
function validateAddition($var_list)
{
global $conn;
$sql = "Select vLookUpValue from sptbl_lookup where vLookUpName='Attachments' and vLookUpValue='{$var_list}'";
$var_result = executeSelect($sql, $conn);
if (mysql_num_rows($var_result) > 0) {
return false;
} else {
return true;
}
}
function shutdownFunction()
{
// echo '<script type="text/javascript">alert("hello!");</script>';
$sql = " Select * from sptbl_lookup where vLookUpName IN('Post2PostGap','MailFromName','MailFromMail',";
$sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','AutoLock','HelpdeskTitle','SMTPSettings','SMTPServer','SMTPPort')";
$conn = getConnection();
$result = executeSelect($sql, $conn);
if (mysql_num_rows($result) > 0) {
while ($row = mysql_fetch_array($result)) {
switch ($row["vLookUpName"]) {
case "MailFromName":
$var_fromName = $row["vLookUpValue"];
break;
case "MailFromMail":
$var_fromMail = $row["vLookUpValue"];
break;
case "MailReplyName":
$var_replyName = $row["vLookUpValue"];
break;
case "MailReplyMail":
$var_replyMail = $row["vLookUpValue"];
break;
case "Emailfooter":
$var_emailfooter = $row["vLookUpValue"];
break;
case "Emailheader":
$var_emailheader = $row["vLookUpValue"];
break;
case "AutoLock":
$var_autoclock = $row["vLookUpValue"];
break;
case "HelpdeskTitle":
$var_helpdeskname = $row["vLookUpValue"];
break;
}
}
}
mysql_free_result($result);
$subject = handleError();
if ($subject != 0) {
$Headers = "From: {$var_fromName} <{$var_fromMail}>\n";
$Headers .= "Reply-To: {$var_replyName} <{$var_replyMail}>\n";
$Headers .= "MIME-Version: 1.0\n";
$Headers .= "Content-type: text/html; charset=iso-8859-1\r\n";
if ($_SESSION["sess_smtpsettings"] == 1) {
$var_smtpserver = $_SESSION["sess_smtpserver"];
$var_port = $_SESSION["sess_smtpport"];
SMTPMail($var_fromMail, '*****@*****.**', $var_smtpserver, $var_port, 'Error from Staff', $subject);
} else {
@mail('*****@*****.**', 'Error from Staff', $subject, $Headers);
}
}
}
/**
* Trae los clientes compuestos del totvs de la base de datos SQL
* @param bool $id
*/
function getClientesCompuestosTotvs($codigocc)
{
$sql = "SELECT * FROM `acsa_totvs_clientes_compuestos` WHERE codigocc = '" . $codigocc . "'";
$conn = getConnection();
$result = executeSelect($sql, $conn);
$clientes = array();
if (mysql_num_rows($result) > 0) {
while ($row = mysql_fetch_array($result)) {
$clientes[] = array('codigocc' => trim($row['codigocc']), 'lojacc' => trim($row['lojacc']), 'codigo' => trim($row['codigo']), 'loja' => trim($row['loja']), 'nombre' => trim(is_blank(utf8_encode(stripslashes(str_replace("'", "", $row['nombre']))))));
}
}
echo json_encode($clientes);
}
function validateAddition()
{
global $conn, $var_tid, $var_userid;
if (trim($_POST["txtComments"]) == "" || trim($_POST["cmbMark"]) <= 0) {
return false;
} else {
$sql = "select nUserId from sptbl_tickets where nTicketId='" . mysql_real_escape_string($var_tid) . "' and nUserId='" . mysql_real_escape_string($var_userid) . "'";
$rs = executeSelect($sql, $conn);
if (mysql_num_rows($rs) == 0) {
return false;
}
return true;
}
}
function validateAddition($var_list)
{
global $conn;
$arr_check = array("open", "closed", "escalated");
if (in_array(strtolower(trim($var_list)), $arr_check) == true) {
return false;
}
$sql = "Select vLookUpValue from sptbl_lookup where vLookUpName='ExtraStatus' and vLookUpValue='{$var_list}'";
$var_result = executeSelect($sql, $conn);
if (mysql_num_rows($var_result) > 0) {
return false;
} elseif (isValidStatus($var_list)) {
return true;
}
}
function isPasswordCorrect($password, $userid)
{
global $conn;
$sql = "SELECT vPassword FROM sptbl_users WHERE nUserId = '" . mysql_real_escape_string($userid) . "'";
$rs = executeSelect($sql, $conn);
if (mysql_num_rows($rs) != 0) {
$row = mysql_fetch_array($rs);
$pass = $row["vPassword"];
if ($pass == md5($password)) {
return true;
} else {
return false;
}
} else {
return false;
}
}
public function cargarHistorial($id = false, $ticket = false, $staff = false, $cliente = false, $citacion = false, $view_ticket = false)
{
// cargo el historial
if ($id != false) {
$sql = "SELECT * FROM acsa_historial WHERE id='{$id}' LIMIT 1";
}
if ($ticket != false) {
$sql = "SELECT * FROM acsa_historial WHERE ticket_id='{$ticket}' LIMIT 1";
}
if ($staff != false) {
$sql = "SELECT * FROM acsa_historial WHERE staff_id='{$staff}' LIMIT 1";
}
if ($cliente != false) {
$sql = "SELECT * FROM acsa_historial WHERE cliente_id='{$cliente}' LIMIT 1";
}
if ($citacion != false) {
$sql = "SELECT * FROM acsa_historial WHERE citacion_id='{$citacion}' LIMIT 1";
}
if ($view_ticket != false) {
$sql = "SELECT * FROM acsa_historial WHERE ticket_id='{$ticket}' AND show_in_ticket='1'";
}
$rs = executeSelect($sql, $this->conn);
if (mysql_num_rows($rs) > 0 and $view_ticket == false) {
$row = mysql_fetch_array($rs);
$this->setId($row['id']);
$this->setClienteId($row['cliente_id']);
$this->setCitacionId($row['citacion_id']);
$this->setTicketId($row['ticket_id']);
$this->setStaffId($row['staff_id']);
$this->setFecha($row['fecha']);
$this->setDescripcion($row['descripcion']);
$this->setShowInTicket($row['show_in_ticket']);
$this->setDerviado($row['derivado']);
return true;
} elseif (mysql_num_rows($rs) > 0 and $view_ticket == true) {
return $rs;
} else {
return false;
}
}
function validateUpdation()
{
global $conn;
$returnFlag = "";
if (trim($_POST["txtLangCode"]) == "" || trim($_POST["txtLangDesc"]) == "") {
$returnFlag = false;
} else {
$sql = "Select vLangCode,vLangDesc from sptbl_lang where\r\n vLangCode='" . mysql_real_escape_string($var_langCode) . "' or\r\n vLangDesc='" . mysql_real_escape_string($var_langDesc) . "'";
if (mysql_num_rows(executeSelect($sql, $conn)) > 0) {
$returnFlag = false;
} else {
$returnFlag = true;
}
}
return $returnFlag;
}
if($var_year !="" and $var_month !="") {
$datefilter="$var_year"."-"."$var_month";
}else{
$datefilter=date("Y-m");
}*/
$sql = " select count(*) as cnt from sptbl_tickets where nDeptid in({$lst_dept}) and dPostDate like '{$datefilter}%' ";
$rs_cnt = executeSelect($sql, $conn);
$row = mysql_fetch_array($rs_cnt);
$totlnum_tickets = $row['cnt'];
mysql_free_result($rs_cnt);
$ticket_status_name = array();
$ticket_value_cnt = array();
$ticket_status_clr = array();
foreach ($status_arr as $key => $value) {
$sql = " select count(*) as cnt from sptbl_tickets where dPostDate like '{$datefilter}%' and nDeptid in({$lst_dept}) and vStatus='" . mysql_real_escape_string($value) . "'";
$rs_cnt = executeSelect($sql, $conn);
$row = mysql_fetch_array($rs_cnt);
array_push($ticket_value_cnt, $row['cnt']);
array_push($ticket_status_name, $value);
array_push($ticket_status_clr, colorCode());
mysql_free_result($rs_cnt);
}
?>
<table border="0" cellpadding="0" cellspacing="3" width="100%" >
<?php
if ($totlnum_tickets > 0) {
?>
<tr align="left" class="toplinks" valign="bottom" > <td colspan=<?php
echo count($ticket_value_cnt) * 3;
?>
// +----------------------------------------------------------------------+
// | This source file is a part of supportpro supportdesk |
// +----------------------------------------------------------------------+
// | Authors: programmer1<*****@*****.**> |
// | programmer1<*****@*****.**> |
// +----------------------------------------------------------------------+
require_once "./includes/applicationheader.php";
$conn = getConnection();
$sql1 = "UPDATE sptbl_staffs ";
$sql1 .= " SET vOnline = '0' WHERE nStaffId = '" . $_SESSION['sess_staffid'] . "' ";
$result1 = executeSelect($sql1, $conn);
/*Added by Amaldev for Livechat*/
$sqlu = "UPDATE sptbl_chat SET vStatus = 'finished', dTimeEnd = now() WHERE nStaffId = '" . $_SESSION['sess_staffid'] . "' and vStatus != 'finished' ";
$resultu = executeSelect($sqlu, $conn);
$sqls = "UPDATE sptbl_operatorchat SET vStatus = 'finished', dTimeEnd=now() WHERE (nFirstStaffId = '" . $_SESSION['sess_staffid'] . "' || nSecondStaffId = '" . $_SESSION['sess_staffid'] . "' ) and vStatus != 'finished' ";
$results = executeSelect($sqls, $conn);
$_SESSION['sess_staffid'] = "";
$_SESSION['sess_staffname'] = "";
$_SESSION['sess_staffemail'] = "";
$_SESSION['sess_stafffullname'] = "";
$_SESSION["sess_isadmin"] = "";
$_SESSION["sess_cssurl"] = "";
$_SESSION["sess_abackreplyurl"] = "";
//session_unregister('sess_abackreplyurl');
unset($_SESSION['sess_abackreplyurl']);
//session_unregister('sess_cssurl');
unset($_SESSION['sess_cssurl']);
//session_unregister('sess_staffid');
unset($_SESSION['sess_staffid']);
//session_unregister('sess_staffname');
unset($_SESSION['sess_staffname']);
function applyMessagerule($ticket_id)
{
global $conn;
$sqlTickets = "Select t.vTitle,t.tQuestion,r.* from sptbl_tickets t left join sptbl_rules r on t.nDeptId = r.nDeptId where t.nTicketId='" . $ticket_id . "'";
$resultTickets = executeSelect($sqlTickets, $conn);
if (mysql_num_rows($resultTickets) > 0) {
$array_title = array();
$array_question = array();
$array_searchwords = array();
$staffprobability = array();
while ($row = mysql_fetch_array($resultTickets)) {
$title = $row['vTitle'];
$question = $row['tQuestion'];
$rulename = $row['vRuleName'];
$searchwords = $row['vSearchWords'];
$staffid = $row['nStaffId'];
$array_title = explode(" ", $title);
$array_question = explode(" ", $question);
$array_searchwords = explode(",", $searchwords);
$totalvaluesintitle = count($array_title);
$totalprobability_selectedrow = 0;
foreach ($array_searchwords as $searchkey => $searchword) {
$countof_searchword = 0;
foreach ($array_title as $tilekey => $titlevalue) {
if (strcasecmp($searchword, $titlevalue) == 0) {
$countof_searchword++;
}
}
$probabilityindividual = $countof_searchword / $totalvaluesintitle;
$totalprobability_selectedrow = $totalprobability_selectedrow + $probabilityindividual;
}
$staffprobability[$staffid] = $totalprobability_selectedrow;
}
// while loop
$copy_array = $staffprobability;
sort($copy_array);
$arr_count = count($staffprobability);
$max_value = $copy_array[$arr_count - 1];
foreach ($staffprobability as $key => $value) {
if ($max_value == $value && $value != 0) {
$staff_id = $key;
$point = $value;
}
}
if ($point > 0 && $staff_id != '') {
$sql = "Update sptbl_tickets set nOwner='" . $staff_id . "' Where nTicketId='" . mysql_real_escape_string($ticket_id) . "' ";
executeQuery($sql, $conn);
}
}
}
<h3><?php
echo TEXT_KNOWLEDGEBASE;
?>
</h3>
</div>
<div class="content_section">
<div class="content_section_data">
<?php
if ($error) {
echo "<div class='msg_error'>" . $errormessage . "</div>";
}
$sql_rate_exist = "SELECT sKBRId FROM sptbl_kb_rating WHERE nKBID='{$kbid}' AND nUserId='" . $_SESSION['sess_userid'] . "'";
$res_rate_exist = executeSelect($sql_rate_exist, $conn);
$sql_rating = "Select SUM(nMarks) as Rating, count(*) as TotalRatings from sptbl_kb_rating where nKBID = '" . $kbid . "' GROUP BY nKBID ";
$rs_rating = executeSelect($sql_rating, $conn);
if (mysql_num_rows($rs_rating) > 0) {
$row_rating = mysql_fetch_array($rs_rating);
$avgrating = ceil($row_rating['Rating'] / $row_rating['TotalRatings']);
}
if (mysql_num_rows($res_rate_exist) > 0) {
?>
<b><?php
echo htmlentities($title);
?>
</b>
<!--span class='rating_<?php
//echo $avgrating
?>
'></span-->
<br><br>
if ($row['rpuserid'] > 0) {
$lastanswerd = TEXT_LAU;
}
}
$classcount++;
// alarma vencida
if ($row['alarmaFecha'] != '0000-00-00 00:00:00' and $row['alarmaFecha'] <= date('Y-m-d H:i:s')) {
$color_tr = ' tr_r2';
} elseif ($classcount % 2 == 0) {
$color_tr = ' tr_r1';
} else {
$color_tr = ' tr_r0';
}
// propiedad
$sql_prop = "select * from acsa_totvs_propiedades where codigo='" . mysql_real_escape_string($row["propiedad_id"]) . "' limit 1";
$result_prop = executeSelect($sql_prop, $conn);
$propiedad = mysql_fetch_array($result_prop);
$Viewersarray = explode(',', $row["vViewers"]);
if (in_array($var_staffid, $Viewersarray)) {
$viewedClass = 'readTK';
} else {
$viewedClass = 'unreadTK';
}
?>
<tr class="<?php
echo $viewedClass . $color_tr;
?>
">
<td class="text-center" width="3%">
<?php
<?php
//print_r($_SESSION);
$kbsql = "SELECT nKBID FROM sptbl_kb skb INNER JOIN sptbl_categories spc ON spc.nCatId=skb.nCatId INNER JOIN sptbl_depts spd ON\r\n spd.nDeptId=spc.nDeptId INNER JOIN sptbl_staffdept ssdp ON ssdp.nDeptId=spd.nDeptId WHERE ssdp.nStaffId=" . $_SESSION['sess_staffid'];
$kbcount = mysql_query($kbsql);
$kbcount = mysql_num_rows($kbcount);
$sql_ticket_details = "SELECT count(nTicketId) AS todaysticketcount,\r\n (SELECT count(nTicketId) FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')>=(CURDATE() - INTERVAL 3 DAY) AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed')\r\n AS last3daysticketcount,\r\n (SELECT count(nTicketId) FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')>=(CURDATE() - INTERVAL 10 DAY) AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed')\r\n AS last10daysticketcount,\r\n (SELECT count(Distinct(nTicketId))\r\n FROM sptbl_replies\r\n WHERE nStaffId='" . $_SESSION['sess_staffid'] . "'\r\n AND date_format(dDate,'%Y-%m-%d')=CURDATE() )\r\n AS repliedCount \r\n FROM sptbl_tickets\r\n WHERE date_format(dPostDate,'%Y-%m-%d')=CURDATE()\r\n AND nDeptId\r\n IN(SELECT nDeptId FROM sptbl_staffdept WHERE nStaffId='" . $_SESSION['sess_staffid'] . "')\r\n AND vStatus!='closed'";
$res_ticket_details = executeSelect($sql_ticket_details, $conn);
$row_ticket_details = mysql_fetch_array($res_ticket_details);
//echo"<pre>";print_r($row_ticket_details);echo"</pre>";
?>
<div class="left_item_block">
<div class="left_item_title"><?php
echo TEXT_FIELDS_DATA_ENTRIES;
?>
</div>
<table width="100%" border="0" cellpadding="0" cellspacing="0" class="list_tbl">
<tr>
<td bgcolor="#FFFFFF" width="74%"><?php
echo TEXT_TICKETS;
?>
</td><td width="26%" bgcolor="#FFFFFF"><?php
echo "<b>" . $tot_tickets . "</b>";
?>
</td>
</tr>
<tr>
<td bgcolor="#FFFFFF" width="74%"><?php
echo TEXT_KNOWLEDGE_BASE;
?>
function validateSave($var_tid)
{
global $conn;
global $curr_status, $mail_refno;
$var_message = "1";
if (trim($_POST['txtRpMatter']) == "" or trim($_POST['txtTimeSpent']) <= 0) {
$var_message = "<font color=red>" . MESSAGE_RECORD_EMPTY_MATTER_ERROR . "</font>";
return $var_message;
}
$sql = "select nDeptid,nOwner,nLockStatus,vTitle,nUserId,tQuestion,vStatus,vRefNo from sptbl_tickets where nTicketId='" . mysql_real_escape_string($var_tid) . "'";
$sql .= " and vDelStatus='0'";
$result = executeSelect($sql, $conn);
if (mysql_num_rows($result) > 0) {
$var_row = mysql_fetch_array($result);
$var_deptid = $var_row["nDeptid"];
$var_tickettitle = $var_row["vTitle"];
$var_userid = $var_row["nUserId"];
$var_replymatter = $var_row["tQuestion"];
$var_owner = $var_row["nOwner"];
$var_lockstatus = $var_row["nLockStatus"];
$var_status = $var_row["vStatus"];
$curr_status = $var_status;
$mail_refno = $var_row["vRefNo"];
mysql_free_result($result);
$sql = " select nStaffId,nDeptId from sptbl_staffdept where nStaffId='" . mysql_real_escape_string($_SESSION["sess_staffid"]) . "'";
$sql .= " and nDeptId='" . mysql_real_escape_string($var_deptid) . "'";
$result = executeSelect($sql, $conn);
//check valid department
if (mysql_num_rows($result) == 0) {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_DEPT . "</font>";
} else {
if ($var_lockstatus == "1") {
if ($var_owner == "0") {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_NO_OWNER . "</font>";
} else {
if ($_POST['chktkowner'] == "tkowner" and $_SESSION["sess_staffid"] != $var_owner) {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_ALREADY_OWNED_USER . "</font>";
} else {
if ($_POST['chklock'] == "lock" and $_SESSION["sess_staffid"] != $var_owner) {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_ALREADY_LOCKED_ANOTHER_USER . "</font>";
} else {
if ($_SESSION["sess_staffid"] != $var_owner) {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_LOCKED_ANOTHER_USER . "</font>";
}
}
}
}
} else {
if ($var_lockstatus == "0") {
if ($_POST['chktkowner'] == "tkowner" and $_POST['chklock'] == "lock") {
} else {
if ($_POST['chklock'] == "lock" and $_SESSION["sess_staffid"] != $var_owner and $var_owner != "0") {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR_DIFFENT_OWNER . "</font>";
}
}
}
}
}
} else {
$var_message = "<font color=red>" . MESSAGE_RECORD_ERROR . "</font>";
}
return $var_message;
}
function getdepartmentlink($compid, $deptparentid)
{
global $conn;
$link = array();
$cnt = 0;
if ($compid <= 0) {
$link[0] = "";
} else {
if ($deptparentid == 0) {
$sql = "SELECT vCompName FROM sptbl_companies WHERE nCompId={$compid} ";
$rs = executeSelect($sql, $conn);
$rowcompanyname = mysql_fetch_array($rs);
$link[0] = $rowcompanyname['vCompName'];
} else {
/* to change later */
while (1) {
$sql = "SELECT nDeptId,vDeptDesc,nDeptParent FROM sptbl_depts WHERE nDeptId={$deptparentid}";
$rs = executeSelect($sql, $conn);
$rw = mysql_fetch_array($rs);
$link[$cnt] = $rw['vDeptDesc'];
if ($rw['nDeptParent'] == "0") {
$cnt++;
$sql = "SELECT vCompName FROM sptbl_companies WHERE nCompId={$compid} ";
$rs = executeSelect($sql, $conn);
$rowcompanyname = mysql_fetch_array($rs);
$link[$cnt] = $rowcompanyname['vCompName'];
break;
}
$deptparentid = $rw['nDeptParent'];
$cnt++;
}
}
}
return $link;
}
<tr>
<td align="right"><table width="100%" border="0" cellspacing="0" cellpadding="0" class="whitebasic">
<tr>
<td width="100%">
<table width="100%" cellpadding="0" cellspacing="0" border="0">
<tr><td colspan="3"> </td></tr>
<tr>
<td width="50%" align="center">
<select name="cmbDepartment" class="comm_input input_width3" onChange="javascript:changeDepartment();" style="width:230px; ">
<option value=""><?php
echo TEXT_DEPT_FILTER;
?>
</option>
<?php
$sql = "Select d.nDeptId,d.vDeptDesc as 'description',c.vCompName from\n sptbl_depts d inner join sptbl_companies c\n on d.nCompId = c.nCompId WHERE d.nDeptId IN({$lst_dept}) ";
$rs_dept = executeSelect($sql, $conn);
if (mysql_num_rows($rs_dept) > 0) {
while ($row = mysql_fetch_array($rs_dept)) {
?>
<option value="<?php
echo $row["nDeptId"];
?>
" <?php
echo $row["nDeptId"] == $var_deptid ? "Selected" : "ww";
?>
><?php
echo htmlentities($row["description"]);
?>
</option>
<?php
}
$userid = $row["nUserId"];
$username = $row["vLogin"];
$useremail = $row["vEmail"];
$userfullname = $row["vUserName"];
$code = rand(1, 999999);
$sql = "UPDATE sptbl_users ";
$sql .= " SET vCodeForPass = '******' WHERE nUserId = '" . $userid . "' ";
//echo $sql;
$result = executeSelect($sql, $conn);
//$path = substr($thisfile,0,)
$link = getPath() . "/resetpass.php?action=resetpass&code=" . $code;
$message = true;
/*****************************************************************************/
$sql = " Select * from sptbl_lookup where vLookUpName IN('Post2PostGap','MailFromName','MailFromMail',";
$sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','AutoLock','HelpdeskTitle')";
$result = executeSelect($sql, $conn);
if (mysql_num_rows($result) > 0) {
while ($row = mysql_fetch_array($result)) {
switch ($row["vLookUpName"]) {
case "MailFromName":
$var_fromName = $row["vLookUpValue"];
break;
case "MailFromMail":
$var_fromMail = $row["vLookUpValue"];
break;
case "MailReplyName":
$var_replyName = $row["vLookUpValue"];
break;
case "MailReplyMail":
$var_replyMail = $row["vLookUpValue"];
break;
<?php /*DB connection*/ include "../config/settings.php"; include "../includes/functions/dbfunctions.php"; $conn = getConnection(); $xpos = $_GET[xpos]; $ypos = $_GET[ypos]; $key = $_GET[key]; $click = $_GET[click]; $chat_id = $_GET[chat_id]; //$im = imagecreatefromstring($data); $query = "SELECT Screenshot FROM sptbl_desktop_share WHERE nChatId = '" . addslashes($chat_id) . "' LIMIT 1"; $result = executeSelect($query, $conn); $data = mysql_fetch_array($result); $data = stripslashes($data[0]); echo $data; ?>
function getSettingsValue($fieldName)
{
global $conn;
$sql = "SELECT vLookUpValue FROM sptbl_lookup\n WHERE vLookUpName = '" . $fieldName . "'";
$rs = executeSelect($sql, $conn);
if (mysql_num_rows($rs) != 0) {
$row = mysql_fetch_array($rs);
return $row["vLookUpValue"];
}
}
function sendMailUserTicketClose($mail_refno)
{
global $conn;
$sql = " Select * from sptbl_lookup where vLookUpName IN('MailFromName','MailFromMail',";
$sql .= "'MailReplyName','MailReplyMail','Emailfooter','Emailheader','MailEscalation','HelpdeskTitle')";
$result = executeSelect($sql, $conn);
if (mysql_num_rows($result) > 0) {
while ($row2 = mysql_fetch_array($result)) {
switch ($row2["vLookUpName"]) {
case "MailFromName":
$var_fromName = $row2["vLookUpValue"];
break;
case "MailFromMail":
$var_fromMail = $row2["vLookUpValue"];
break;
case "MailReplyName":
$var_replyName = $row2["vLookUpValue"];
break;
case "MailReplyMail":
$var_replyMail = $row2["vLookUpValue"];
break;
case "Emailfooter":
$var_emailfooter = $row2["vLookUpValue"];
break;
case "Emailheader":
$var_emailheader = $row2["vLookUpValue"];
break;
case "MailEscalation":
$var_emailescalation = $row2["vLookUpValue"];
break;
case "HelpdeskTitle":
$var_helpdesktitle = $row2["vLookUpValue"];
break;
}
}
}
$sql = "Select u.nUserId, u.vUserName, u.vEmail, t.nTicketId from sptbl_tickets t INNER JOIN sptbl_users u ON t.nUserId = u.nUserId WHERE t.vRefNo = '" . mysql_real_escape_string(trim($mail_refno)) . "' ORDER BY t.nTicketId DESC LIMIT 1";
$result_user = executeSelect($sql, $conn);
if (mysql_num_rows($result_user) > 0) {
$row_user = mysql_fetch_array($result_user);
$toemail = $row_user['vEmail'];
$var_body = $var_emailheader . "<br>" . TEXT_MAIL_START . " " . $row_user['vUserName'] . ",<br>";
$var_body .= TEXT_CLOSED_BODY . " " . $mail_refno . TEXT_MAIL_BY . htmlentities($_SESSION['sess_staffname']) . "<br><br>";
$var_body .= TEXT_RATE_URL_MSG1 . " <a href='http://localhost/supportdesk/rating.php?uid=" . $row_user['nUserId'] . "&ticket_id=" . $row_user['nTicketId'] . "'> " . TEXT_RATE_URL_MSG2 . " </a> " . TEXT_RATE_URL_MSG3 . " <br><br>";
$var_body .= TEXT_MAIL_THANK . "<br>" . htmlentities($var_helpdesktitle) . "<br>" . $var_emailfooter;
$var_subject = TEXT_CLOSED_SUB . " " . $mail_refno;
$Headers = "From: {$var_fromName} <{$var_fromMail}>\n";
$Headers .= "Reply-To: {$var_replyName} <{$var_replyMail}>\n";
$Headers .= "MIME-Version: 1.0\n";
$Headers .= "Content-type: text/html; charset=iso-8859-1\r\n";
// echo $var_body;exit;
// it is for smtp mail sending
if ($_SESSION["sess_smtpsettings"] == 1) {
$var_smtpserver = $_SESSION["sess_smtpserver"];
$var_port = $_SESSION["sess_smtpport"];
SMTPMail($var_fromMail, $toemail, $var_smtpserver, $var_port, $var_subject, $var_body);
} else {
$mailstatus = @mail($toemail, $var_subject, $var_body, $Headers);
}
}
}
</tr>
<tr align="left" class="pagecolor">
<td colspan="5" height="1"><img src="./../images/spacerr.gif" width="1" height="1"></td>
</tr>
<tr>
<td>
<table border=0 width="100%">
<tr>
<td align=right class="whitebasic" style="padding:10px 25px 0 0; "><?php
echo TXT_SELECT_USER;
?>
</td>
<td width="24%" align=left class="whitebasic">
<?php
$sql = "SELECT nUserId,vLogin FROM `sptbl_users` where vDelStatus=0 order by vUserName";
$rs = executeSelect($sql, $conn);
$cnt = 1;
?>
<select name="cmbUser" size="1" class="textbox11" id="cmbUser" >
<?php
$options = "<option value='0'";
$options .= ">" . TEXT_SELECT_ALL . "</option>\n";
echo $options;
while ($row = mysql_fetch_array($rs)) {
$options = "<option value='" . $row['nUserId'] . "'";
if ($var_usercmbid == $row['nUserId']) {
$options .= " selected=\"selected\"";
}
$options .= ">" . htmlentities($row['vLogin']) . "</option>\n";
echo $options;
}
<div class="content_column_small">
<!-- sidelinks --><?php include("./includes/staffside.php"); ?><!-- End of side links -->
</div>
<div class="content_column_big">
<!-- admin header --><?php //include("./includes/staffheader.php"); ?><!-- end admin header -->
<!-- Personal notes Section --><?php include("./includes/replies.php"); ?><!-- End Personal notes Section -->
</div>
*/
if ($_GET["tk"] != "") {
$var_ticketid = $_GET["tk"];
} elseif ($_POST["tk"] != "") {
$var_ticketid = $_POST["tk"];
}
$sqlRefNo = "Select vRefNo from sptbl_tickets where nTicketId= ' " . mysql_real_escape_string($var_ticketid) . "'";
$rsRefNo = executeSelect($sqlRefNo, $conn);
if (mysql_num_rows($rsRefNo) > 0) {
while ($rowRefNo = mysql_fetch_array($rsRefNo)) {
$varrefno = $rowRefNo['vRefNo'];
}
}
?>
<!-- Page content -->
<div id="page-content">
<!-- Blank Header -->
<div class="content-header">
<div class="header-section"><h1><i class="gi gi-unshare"></i>Responder Trámite<?php
echo ' #' . $varrefno;
?>
</h1></div>
</div>
//execute the new query with the appended SQL bit returned by the function
$sql = $sql . $navigate[0];
$rs = executeSelect($sql, $conn);
$var_reply_idlist = "";
while ($row = mysql_fetch_array($rs)) {
if ($row["nReplyId"] != "") {
$var_reply_idlist .= "," . $row["nReplyId"];
}
}
if (mysql_num_rows($rs) > 0) {
mysql_data_seek($rs, 0);
if ($var_reply_idlist != "") {
$var_subquery = " OR nReplyId IN(" . substr($var_reply_idlist, 1) . ")";
}
$sql_attach = "Select * from sptbl_attachments where nTicketId='" . mysql_real_escape_string($var_ticketid) . "'\n\t\t\t\t\t" . $var_subquery . " ORDER BY nTicketId DESC,nReplyId DESC";
$rs_attach = executeSelect($sql_attach, $conn);
while ($row = mysql_fetch_array($rs)) {
if ($row["eReplySentstatus"] != "N") {
if ($row["nTicketId"] != "") {
//Ticket section
$ticketStatus = $row["vStatus"];
?>
<div class="ticket_conv_user">
<div class="content_section_data">
<div class="clear btm_brdr">
<div class="left ticket_user_info">
<table cellpadding="0" cellspacing="0" border="0" class="comm_tbl2" width="100%">
<tr align="left">
<td width="16%" style="word-break:break-all; " align="left"><b><?php
echo TEXT_USER;
$rs_chat = executeSelect($sql, $conn);
if (mysql_num_rows($rs_chat) > 0) {
$var_row = mysql_fetch_array($rs_chat);
$var_livechat_enb = $var_row["vLookUpValue"];
} else {
$var_livechat_enb = '0';
}
// Select Extra Status of Tickets for menu Listing
// Commented on 26/11/2012
/* $sqlExtraStat = "SELECT count(st.nTicketId ) AS tCount, sl.`vLookUpValue` , st.vRefNo
FROM `sptbl_lookup` sl
LEFT JOIN sptbl_tickets st ON st.vStatus = sl.`vLookUpValue`
WHERE `vLookUpName` LIKE 'ExtraStatus'
GROUP BY st.vStatus "; */
$sqlExtraStat = "SELECT count(st.nTicketId ) AS tCount, sl.`vLookUpValue` , st.vRefNo\n FROM `sptbl_lookup` sl\n LEFT JOIN sptbl_tickets st ON st.vStatus = sl.`vLookUpValue`\n WHERE `vLookUpName` LIKE 'ExtraStatus' AND st.vDelStatus ='0'\n GROUP BY sl.`vLookUpValue` ";
$rsExtraStat = executeSelect($sqlExtraStat, $conn);
$var_statusRow = mysql_num_rows($rsExtraStat);
// End Status
/* Newly Addedby Amaldev ends */
?>
<div class="left_section_block">
<div class="leftMenu">
<ul>
<!-- General -->
<li class="accordionButton"><a href="#" onClick="return false;"><?php
echo TEXT_SIDE_GENERAL;
?>
</a></li>
<?php
