function enterReply($var_ticketid, $var_userid, $var_deptid, $var_refno, $var_mail_subject)
{
global $conn, $var_message_main, $var_machineip, $mimedecoder, $var_valid_size;
$sql = "insert into sptbl_replies(nReplyId,nTicketId,nUserId,dDate,tReply,vMachineIP) Values('',\n\t\t\t'" . addslashes($var_ticketid) . "',\n\t\t\t'" . addslashes($var_userid) . "',\n\t\t\tnow(),\n\t\t\t'" . addslashes($var_message_main) . "',\n\t\t\t'" . addslashes($var_machineip) . "')";
executeQuery($sql, $conn);
$var_replyid = mysql_insert_id();
$sql = "update sptbl_tickets set vStatus='open',dLastAttempted=now() where nTicketId='" . addslashes($var_ticketid) . "'";
executeQuery($sql, $conn);
$sql1 = "insert into sptbl_attachments(nReplyId,vAttachReference,vAttachUrl) values";
$sql = "";
foreach ($mimedecoder->_attachments as $objattach) {
if (validateAttachments($objattach->_attachmentname, $objattach->_attachmenttype) == true && getDataSize($objattach->_attachmentcontent) < $var_valid_size) {
$var_act_filename = uniqid("fl", true) . "." . getExtension($objattach->_attachmentname);
$sql .= ",('" . $var_replyid . "','" . $objattach->_attachmentname . "','" . addslashes($var_act_filename) . "')";
$fp = fopen("{$dotdotreal}/attachments/" . $var_act_filename, "w");
fwrite($fp, $objattach->_attachmentcontent);
fclose($fp);
}
}
$sql != "" ? executeQuery($sql1 . substr($sql, 1), $conn) : "";
mailAllStaff($var_deptid, $var_refno);
acknowledgeUserOnReply($var_deptid, $var_refno, $var_mail_subject);
}
$var_insert_id = "00" . $var_insert_id;
} else {
if ($var_insert_id < 10000) {
// 9999 09999
$var_insert_id = "0" . $var_insert_id;
}
}
}
}
$var_refno = $var_tmp_compid . $val_dept_id . $var_tmp_userid . $var_insert_id;
$sql_update_ticket = "update sptbl_tickets set vRefNo='" . $var_refno . "' where nTicketId='" . $var_ticket_id . "'";
executeQuery($sql_update_ticket, $conn);
$sql1 = "insert into sptbl_attachments(nTicketId,vAttachReference,vAttachUrl) values";
$sql = "";
foreach ($mimedecoder->_attachments as $objattach) {
if (validateAttachments($objattach->_attachmentname, $objattach->_attachmenttype) == true && getDataSize($objattach->_attachmentcontent) < $var_valid_size) {
$var_act_filename = uniqid("fl", true) . "." . getExtension($objattach->_attachmentname);
$sql .= ",('" . $var_ticket_id . "','" . $objattach->_attachmentname . "','" . addslashes($var_act_filename) . "')";
$fp = fopen("{$dotdotreal}/attachments/" . $var_act_filename, "w");
fwrite($fp, $objattach->_attachmentcontent);
fclose($fp);
}
}
$sql != "" ? executeQuery($sql1 . substr($sql, 1), $conn) : "";
/// check admin auto return mail status
if (isAutoReturnMailNeeded()) {
mailUserOnTicketCreationPop3($val, $total_count, $var_refno, $var_tmp_userid, $mimedecoder->_mailheader->_headersubject);
}
//
mailAllStaff($val, $var_refno);
mailWatcher($val, $var_refno);
