function enterReply($var_ticketid, $var_userid, $var_deptid, $var_refno, $var_mail_subject) { global $conn, $var_message_main, $var_machineip, $mimedecoder, $var_valid_size; $sql = "insert into sptbl_replies(nReplyId,nTicketId,nUserId,dDate,tReply,vMachineIP) Values('',\n\t\t\t'" . addslashes($var_ticketid) . "',\n\t\t\t'" . addslashes($var_userid) . "',\n\t\t\tnow(),\n\t\t\t'" . addslashes($var_message_main) . "',\n\t\t\t'" . addslashes($var_machineip) . "')"; executeQuery($sql, $conn); $var_replyid = mysql_insert_id(); $sql = "update sptbl_tickets set vStatus='open',dLastAttempted=now() where nTicketId='" . addslashes($var_ticketid) . "'"; executeQuery($sql, $conn); $sql1 = "insert into sptbl_attachments(nReplyId,vAttachReference,vAttachUrl) values"; $sql = ""; foreach ($mimedecoder->_attachments as $objattach) { if (validateAttachments($objattach->_attachmentname, $objattach->_attachmenttype) == true && getDataSize($objattach->_attachmentcontent) < $var_valid_size) { $var_act_filename = uniqid("fl", true) . "." . getExtension($objattach->_attachmentname); $sql .= ",('" . $var_replyid . "','" . $objattach->_attachmentname . "','" . addslashes($var_act_filename) . "')"; $fp = fopen("{$dotdotreal}/attachments/" . $var_act_filename, "w"); fwrite($fp, $objattach->_attachmentcontent); fclose($fp); } } $sql != "" ? executeQuery($sql1 . substr($sql, 1), $conn) : ""; mailAllStaff($var_deptid, $var_refno); acknowledgeUserOnReply($var_deptid, $var_refno, $var_mail_subject); }
} } $var_refno = $var_tmp_compid . $val_dept_id . $var_tmp_userid . $var_insert_id; $sql_update_ticket = "update sptbl_tickets set vRefNo='" . $var_refno . "' where nTicketId='" . $var_ticket_id . "'"; executeQuery($sql_update_ticket, $conn); $sql1 = "insert into sptbl_attachments(nTicketId,vAttachReference,vAttachUrl) values"; $sql = ""; foreach ($mimedecoder->_attachments as $objattach) { if (validateAttachments($objattach->_attachmentname, $objattach->_attachmenttype) == true && getDataSize($objattach->_attachmentcontent) < $var_valid_size) { $var_act_filename = uniqid("fl", true) . "." . getExtension($objattach->_attachmentname); $sql .= ",('" . $var_ticket_id . "','" . $objattach->_attachmentname . "','" . addslashes($var_act_filename) . "')"; $fp = fopen("{$dotdotreal}/attachments/" . $var_act_filename, "w"); fwrite($fp, $objattach->_attachmentcontent); fclose($fp); } } $sql != "" ? executeQuery($sql1 . substr($sql, 1), $conn) : ""; /// check admin auto return mail status if (isAutoReturnMailNeeded()) { mailUserOnTicketCreationPop3($val, $total_count, $var_refno, $var_tmp_userid, $mimedecoder->_mailheader->_headersubject); } // mailAllStaff($val, $var_refno); mailWatcher($val, $var_refno); if ($arr_lookupvalues['MessageRule'] == "1") { applyMessagerule($var_ticket_id); } } } } //end if mail received to a valid department