protected function _ticket_members()
{
$v = $this->__(w('change_user'));
$sql = "SELECT user_id, username\n\t\t\tFROM _members\n\t\t\tWHERE user_firstname LIKE '??%'\n\t\t\tORDER BY user_firstname";
$list = _rowset(sql_filter($sql, $v['change_user']));
$members = w();
foreach ($list as $row) {
$members[$row['user_id']] = _fullname($row);
}
return $this->_dom_ul($members);
}
protected function _tech_query()
{
global $user;
gfatal();
$v = $this->__(array('tech'));
if (!f($v['tech'])) {
_fatal();
}
$sql = "SELECT user_id, user_firstname, user_lastname\n\t\t\tFROM _members\n\t\t\tWHERE user_firstname LIKE '%??%'";
$members = _rowset(sql_filter($sql, $v['tech']));
$ret = '';
foreach ($members as $row) {
$ret .= '<li id="' . $row['user_id'] . '">' . _fullname($row) . '</li>';
}
return $this->e('<ul>' . $ret . '</ul>');
}
function xs_startup()
{
global $core, $user;
if (empty($this->xs_started)) {
$this->xs_started = 1;
// Adding current template
$tpl = $this->root . '/';
if (substr($tpl, 0, 2) === './') {
$tpl = substr($tpl, 2, strlen($tpl));
}
// Adding predefined variables
$this->vars += array('LANG' => $core->v('default_lang'), 'TEMPLATE' => $tpl, 'TEMPLATE_NAME' => $this->tpl, 'S_SERVER' => $core->v('address'), 'S_STYLE' => $core->v('address') . 'style/', 'S_LIB' => LIBD, 'S_VISUAL' => LIBD . 'visual/', '_SELF' => _page(), 'SCRIPT_TYPE' => ' type="text/javascript"', 'CDATA_BEGIN' => '//<![CDATA[' . "\n", 'CDATA_END' => '//]]>' . "\n", 'IS_GHOST' => is_ghost(), 'IS_MEMBER' => (int) $user->v('is_member'), 'S_USERNAME' => _fullname($user->v()), 'S_TIME' => time());
}
}
function xs_startup()
{
global $core, $user;
if (empty($this->xs_started))
{
$this->xs_started = 1;
// Adding current template
$tpl = $this->root . '/';
if (substr($tpl, 0, 2) === './')
{
$tpl = substr($tpl, 2, strlen($tpl));
}
// Adding predefined variables
$this->vars += array(
'PHP' => 'php',
'LANG' => $core->v('default_lang'),
'TEMPLATE' => $tpl,
'TEMPLATE_NAME' => $this->tpl,
'S_SERVER' => $core->v('address'),
'S_STYLE' => $core->v('address') . 'style/',
'_SELF' => _page(),
'IS_MEMBER' => (int) $user->d('is_member'),
'S_USERNAME' => _fullname($user->data),
'S_TIME' => time(),
'U_LOGIN' => _link('signin'),
'U_LOGOUT' => _link('signout'),
'U_PREFERENCES' => _link('pref'),
'U_CHAT_BACKGROUND' => _link('chat', array('x1' => 'update', 'x2' => 'background'))
);
}
}
protected function _corp_home()
{
$sql = 'SELECT *
FROM _groups
WHERE group_special = ?
ORDER BY group_order';
$groups = sql_rowset(sql_filter($sql, 1));
$sql = 'SELECT g.group_id, b.bio_alias, b.bio_name, b.bio_firstname, b.bio_lastname, b.bio_life, b.bio_avatar, b.bio_avatar_up
FROM _groups g, _group_joint j, _bio b
WHERE g.group_id = j.joint_group
AND j.joint_bio = b.bio_id
ORDER BY j.joint_order, b.bio_alias';
$members = sql_rowset($sql, 'group_id', false, true);
$i = 0;
foreach ($groups as $row) {
if (!isset($members[$row->group_id])) {
continue;
}
if (!$i) {
_style('groups');
}
_style('groups.list', array('GROUP_NAME' => $row->group_name));
foreach ($members[$row->group_id] as $row2) {
_style('groups.list.member', _vs(array('LINK' => _link_bio($row2->bio_alias), 'NAME' => $row2->bio_name, 'REALNAME' => _fullname($row2), 'BIO' => _message($row2->bio_life), 'AVATAR' => _avatar($row2))), 'USER');
}
$i++;
}
if ($corp = $this->page_query('corp')) {
v_style(array('CORP_CONTENT' => _message($corp->page_content)));
}
return;
}
protected function _ticket_home()
{
global $user, $core;
if (!$core->v('cron_enabled')) {
return $this->e('CRON_DISABLED');
}
foreach (w('mail pop3 emailer htmlparser') as $row) {
require_once XFS . 'core/' . $row . '.php';
}
$pop3 = new pop3();
if (!$pop3->connect($core->v('mail_server'), $core->v('mail_port'))) {
return $this->e('MAIL_NO_CONNECT');
}
if (!($total_mail = $pop3->login('recent:' . $core->v('mail_ticket_login'), $core->v('mail_ticket_key')))) {
return $this->e('MAIL_NEW_MAIL');
}
//
$mail = new _mail();
$emailer = new emailer();
//
if (!($blacklist = $core->cache_load('ticket_blacklist'))) {
$sql = 'SELECT *
FROM _tickets_blacklist
ORDER BY list_id';
$blacklist = $core->cache_store(_rowset($sql, 'list_address', 'list_id'));
}
if (!($ticket_status = $core->cache_load('ticket_status_default'))) {
$sql = 'SELECT status_id
FROM _tickets_status
WHERE status_default = 1';
$ticket_status = $core->cache_store(_field($sql, 'status_id', 0));
}
$sql = 'SELECT group_id, group_email
FROM _groups
ORDER BY group_email';
$groups = _rowset($sql, 'group_email', 'group_id');
$sql = 'SELECT group_email, group_name
FROM _groups
ORDER BY group_email';
$groups_name = _rowset($sql, 'group_email', 'group_name');
$sql = 'SELECT gg.group_email, m.user_email
FROM _groups gg, _groups_members g, _members m
WHERE g.member_mod = ?
AND g.member_uid = m.user_id
AND gg.group_id = g.member_group
ORDER BY m.user_email';
$groups_mods = _rowset(sql_filter($sql, 1), 'group_email', 'user_email', true);
foreach ($groups as $a_group_email => $a_group_id) {
if (!isset($groups_mods[$a_group_email])) {
$groups_mods[$a_group_email] = w();
}
}
$sql = 'SELECT s.a_assoc, s.a_value
FROM _members_fields f, _members_store s
WHERE s.a_field = f.field_id
AND f.field_alias LIKE ?
ORDER BY s.a_value';
$email_alt = _rowset(sql_filter($sql, 'email%'), 'a_value', 'a_assoc');
// Pre mail process
$recv = w();
$now = time();
$line_orig = array(' ');
$line_repl = array(' ');
$_v = w('from from_d to ticket subject body date mod ip spam blacklist reply other');
$_c = w('normal reply other blacklist spam', 0);
for ($i = 1; $i <= $total_mail; $i++) {
foreach ($_v as $row) {
${'recv_' . $row} = 0;
}
$s_header = $mail->parse_header(split("\r\n", implode('', $pop3->top($i))));
$recv_from = $mail->parse_address($s_header['from']);
if (isset($blacklist[$recv_from])) {
$recv_blacklist = 1;
}
if ($recv_from == $core->v('mail_ticket_login')) {
$recv_blacklist = 1;
}
_dvar($s_header['to'], '');
_dvar($s_header['cc'], '');
if (f($s_header['cc'])) {
$s_header['to'] .= (f($s_header['to']) ? ', ' : '') . $s_header['cc'];
}
$to_part = array_map('trim', explode(strpos($s_header['to'], ',') ? ',' : ';', $s_header['to']));
foreach ($to_part as $row) {
if (strpos($row, '<') !== false) {
$row = preg_replace('#.*?<(.*?)>#is', '\\1', $row);
}
if (isset($blacklist[$row])) {
$recv_blacklist = 1;
} else {
$recv_blacklist = 0;
$row_first = array_key(explode('@', $row), 0);
if (isset($groups[$row_first])) {
$recv_to = $row_first;
}
}
}
if (strstr($s_header['to'], _lang('MAIL_TO_UNKNOWN')) !== false) {
$recv_to = array_key(explode('@', $core->v('mail_ticket_login')), 0);
}
if (!$recv_to) {
$recv_blacklist = 1;
}
if (!$recv_blacklist) {
$recv_subject = htmlencode(trim($s_header['subject']));
if (preg_match('#\\[\\#(.*?)\\]#is', $recv_subject, $p_subject)) {
$sql = 'SELECT ticket_id
FROM _tickets
WHERE ticket_code = ?';
if ($recv_subject_d = _fieldrow(sql_filter($sql, $p_subject[1]))) {
$recv_ticket = $recv_subject_d['ticket_id'];
$recv_reply = $p_subject[1];
$recv_subject = substr(strrchr($recv_subject, ']'), 3);
}
}
if ($recv_to . '@' . $core->v('domain') == $recv_from && $recv_from == $core->v('mail_ticket_login') && $recv_reply) {
$recv_blacklist = 1;
}
}
if (!$recv_blacklist) {
if (isset($email_alt[$recv_from])) {
$sql_field = 'id';
$sql_value = $email_alt[$recv_from];
} else {
$sql_field = 'username';
$sql_value = array_key(explode('@', $recv_from), 0);
}
$sql = 'SELECT user_id, user_username, user_firstname, user_lastname
FROM _members
WHERE user_?? = ?';
if ($recv_from_d = _fieldrow(sql_filter($sql, $sql_field, $sql_value))) {
$recv_from_d = serialize(array_row($recv_from_d));
} else {
$recv_other = 1;
}
$d_body = $mail->body($s_header, $pop3->fbody($i), true);
$recv_date = $mail->parse_date($s_header['date']);
$recv_ip = $mail->parse_ip($s_header['received']);
if (isset($groups_email[$recv_to])) {
$recv_mod = $groups_email[$recv_to];
}
if ($recv_date > $now || $recv_date < $now - 86400) {
$recv_date = $now;
}
if (isset($d_body['text-plain']) && f($d_body['text-plain'])) {
$recv_body = trim($d_body['text-plain']);
} elseif (isset($d_body['text-html']) && f($d_body['text-html'])) {
$htm_text = w();
$tag_open = false;
$parser = new HtmlParser($d_body['text-html']);
while ($parser->parse()) {
$line = trim(str_replace($line_orig, $line_repl, $parser->iNodeValue));
if ($tag_open || strpos($line, '<') !== false) {
$tag_open = !$tag_open;
continue;
}
if ($parser->iNodeName == 'Text' && f($line)) {
$htm_text[] = preg_replace("/(\r\n){1}/", ' ', $line);
}
}
$recv_body = implode("\n", $htm_text);
}
if (f($recv_body)) {
$recv_body = htmlencode(_utf8($recv_body));
}
if (!f($recv_body)) {
$recv_blacklist = 1;
}
}
$recv[$i] = w();
foreach ($_v as $row) {
$recv[$i][$row] = ${'recv_' . $row};
}
}
foreach ($recv as $i => $row) {
if ($row['spam'] || $row['blacklist']) {
$pop3->delete($i);
$row_key = $row['spam'] ? 'spam' : 'blacklist';
$_c[$row_key]++;
continue;
}
// Send mail to group admin
if ($row['other']) {
$_c['other']++;
if (count($groups_mods[$row['to']])) {
foreach ($groups_mods[$row['to']] as $i => $mod_email) {
$email_func = !$i ? 'email_address' : 'cc';
$emailer->{$email_func}($mod_email);
}
$emailer->from($row['from']);
$emailer->replyto($row['from']);
$emailer->set_subject(entity_decode($row['subject']));
$emailer->use_template('ticket_other');
$emailer->set_decode(true);
$emailer->assign_vars(array('SUBJECT' => entity_decode($row['subject']), 'MESSAGE' => entity_decode($row['body'])));
$emailer->send();
$emailer->reset();
}
$pop3->delete($i);
continue;
}
$row['code'] = $row['reply'] ? $row['reply'] : substr(md5(unique_id()), 0, 8);
$row['from_d'] = unserialize($row['from_d']);
$row['group_id'] = $groups[$row['to']];
$row['msubject'] = entity_decode(sprintf('%s [#%s]: %s', $groups_name[$row['to']], $row['code'], $row['subject']));
$row['mbody'] = explode("\n", $row['body']);
//
$body_const = w();
foreach ($row['mbody'] as $part_i => $part_row) {
if (isset($row['mbody'][$part_i - 1]) && f($row['mbody'][$part_i - 1]) && f($row['mbody'][$part_i])) {
$row['mbody'][$part_i] = "\n" . $part_row;
}
}
$row['body'] = implode("\n", $row['mbody']);
$v_mail = array('USERNAME' => $row['from_d']['user_username'], 'FULLNAME' => entity_decode(_fullname($row['from_d'])), 'SUBJECT' => entity_decode($row['subject']), 'MESSAGE' => entity_decode($row['body']), 'TICKET_URL' => _link('ticket', array('x1' => 'view', 'code' => $row['code'])));
if (!$row['reply']) {
$_c['normal']++;
$sql_insert = array('parent' => 0, 'cat' => 1, 'group' => $row['group_id'], 'title' => _subject($row['subject']), 'text' => _prepare($row['body']), 'code' => $row['code'], 'contact' => $row['from_d']['user_id'], 'aby' => 0, 'status' => $ticket_status, 'start' => $row['date'], 'lastreply' => $row['date'], 'end' => 0, 'ip' => $row['ip']);
$sql = 'INSERT INTO _tickets' . _build_array('INSERT', prefix('ticket', $sql_insert));
_sql($sql);
// Send mail to user
$emailer->email_address($row['from']);
$emailer->from($row['to'] . '@' . $core->v('domain'));
$emailer->set_subject($row['msubject']);
$emailer->use_template('ticket_' . $row['to']);
$emailer->set_decode(true);
$emailer->assign_vars($v_mail);
$emailer->send();
$emailer->reset();
// > Send mail to group admin
if (count($groups_mods[$row['to']])) {
foreach ($groups_mods[$row['to']] as $i => $mod_email) {
$address_func = !$i ? 'email_address' : 'cc';
$emailer->{$address_func}($mod_email);
}
$emailer->from($row['to'] . '@' . $core->v('domain'));
$emailer->set_subject($row['msubject']);
$emailer->use_template('ticket_' . ($row['reply'] ? 'reply' : 'tech'));
$emailer->set_decode(true);
$emailer->assign_vars($v_mail);
$emailer->send();
$emailer->reset();
}
} else {
$_c['reply']++;
$sql_insert = array('ticket_id' => $row['ticket'], 'user_id' => $row['from_d']['user_id'], 'note_text' => htmlencode($row['body']), 'note_time' => $row['date'], 'note_cc' => 1);
$sql = 'INSERT INTO _tickets_notes' . _build_array('INSERT', $sql_insert);
_sql($sql);
$sql = 'UPDATE _tickets SET ticket_lastreply = ?
WHERE ticket_id = ?';
_sql(sql_filter($sql, $row['date'], $row['ticket']));
// Send mail to group members || user
$sql = 'SELECT *
FROM _tickets_assign a, _members m
WHERE a.assign_ticket = ?
AND a.user_id = m.user_id
AND m.user_username NOT IN (?)';
$tech = _rowset(sql_filter($sql, $row['ticket'], $row['from_d']['user_username']));
if ($row['mod'] != $row['from_d']['user_username']) {
$tech[] = $row['mod'];
}
if (count($tech)) {
foreach ($tech as $tech_i => $tech_row) {
$m_method = !$tech_i ? 'email_address' : 'cc';
$emailer->{$m_method}($tech_row . '@' . $core->v('domain'));
}
$emailer->from($row['to'] . '@' . $core->v('domain'));
$emailer->use_template('ticket_reply');
$emailer->set_subject($row['msubject']);
$emailer->set_decode(true);
$emailer->assign_vars($v_mail);
$emailer->send();
$emailer->reset();
}
}
// Delete mail from server
$pop3->delete($i);
}
// Quit server
$pop3->quit();
$ret = '';
foreach ($_c as $k => $v) {
$ret .= "\n" . $k . ' = ' . $v . '<br />';
}
return $this->e($ret);
}
protected function _search_home()
{
global $user;
$v = $this->__(array('m', 'q', 'g' => 0, 'start' => 0));
$v_results = 0;
if (f($v['m']) || $v['g']) {
if ($v['g']) {
$sql = 'SELECT m.*
FROM _members m
LEFT JOIN _members_dept g ON g.this_id = m.user_dept
WHERE m.user_dept = ?';
$sql = sql_filter($sql, $v['g']);
} else {
$sql = 'SELECT *
FROM _members
WHERE user_username = ?';
$sql = sql_filter($sql, $v['m']);
}
redirect(_link($this->m(), array('x1' => 'search', 'q' => array_key(sql_cache($sql), 'sid'))));
}
$button = _button();
if ($button || f($v['q'])) {
if (!f($v['q'])) {
$build_search = $this->advanced_search($this->m());
$build = 'SELECT mb.user_id, mb.user_active, mb.user_firstname, mb.user_lastname
FROM ' . _implode(', ', $build_search['from']) . '
WHERE ' . _implode(' ', $build_search['where']) . '
GROUP BY mb.user_id
ORDER BY mb.user_firstname, mb.user_lastname';
redirect(_link($this->m(), array('x1' => 'search', 'q' => array_key(sql_cache($build), 'sid'))));
}
$button = true;
$v_sql = array('limit_start' => $v['start'], 'limit_end' => 20);
$cached = sql_cache('', $v['q']);
if (strstr($cached['query'], 'SELECT a_assoc') !== false) {
$cached['query'] = 'SELECT mb.user_id, mb.user_active, mb.user_firstname, mb.user_lastname
FROM _members
WHERE user_id IN (' . _implode(',', _rowset($cached['query'], false, 'user_id')) . ')
ORDER BY user_firstname, user_lastname';
}
$build = _template_query($cached['query'], $v_sql);
$build_limit = _template_query($cached['query'] . ' LIMIT {v_limit_start}, {v_limit_end}', $v_sql);
if ($results = _rowset($build_limit, 'user_id', false, false, true)) {
$tabs = $this->init_tabs();
$v_results = array_key(_fieldrow($build), '_numrows');
_style('search', _vs(_pagination(_link($this->m(), array('x1' => 'search', 'q' => $v['q'])), 'start:%d', $v_results, 20, $v['start'])));
$user->auth_replace('contacts_tab_general', 'contacts_search');
foreach ($results as $row) {
_style('search.row', _vs(array('ID' => $row['user_id'], 'TITLE' => _fullname($row), 'STATUS' => $row['user_active'] ? 'closed' : 'open'), 'V'));
foreach ($tabs as $k => $k2) {
// TODO: User pending tabs
switch ($k) {
case 'components':
case 'attributes':
case 'report':
case 'vacation':
continue 2;
break;
}
if (!_auth_get('contacts_tab_' . $k)) {
continue;
}
_style('search.row.tab', _vs(array('TAG' => $k, 'TITLE' => $k2['tab_name']), 'V'));
}
}
}
}
$this->advanced_search_form($this->m());
return v_style(array('IS_SUBMIT' => $button, 'RESULTS_PAGE' => $v_results, 'U_SEARCH_TAB' => _link($this->m(), array('x1' => 'tab', 'uid' => '*', 'tag' => '?'))));
}
public function home()
{
global $user;
$v = $this->__(array('username', 'start', 'end'));
if (_button()) {
if (!f($v['username'])) {
$this->e('Debe ingresar un nombre de usuario.');
}
$sql = 'SELECT *
FROM _members
WHERE user_username = ?';
if (!($userdata = _fieldrow(sql_filter($sql, $v['username'])))) {
$this->_error('#TICKET_NOT_MEMBER');
}
$sql = "SELECT assign_ticket\n\t\t\t\tFROM _tickets_assign a, _members m\n\t\t\t\tWHERE m.user_username = ?\n\t\t\t\t\tAND m.user_id = a.user_id\n\t\t\t\tORDER BY assign_ticket";
$as = _rowset(sql_filter($sql, $v['username']), false, 'assign_ticket');
if (!count($as)) {
$this->e('No hay solicitudes asignadas al usuario.');
}
//
$e_start = explode('-', $v['start']);
$v_start = mktime(0, 0, 0, $e_start[1], $e_start[0], $e_start[2]);
//
$sql = 'SELECT *
FROM _tickets_status
ORDER BY status_alias';
$status = _rowset($sql, 'status_id', 'status_name');
$sql = 'SELECT *
FROM _tickets_cat
ORDER BY cat_id';
$cat = _rowset($sql, 'cat_id', 'cat_name');
//
$sql = 'SELECT *
FROM _tickets t, _members m
WHERE t.ticket_contact = m.user_id
AND t.ticket_id IN (' . implode(',', $as) . ')
/*AND t.ticket_status = 3*/
AND t.ticket_start > ??
AND t.ticket_deleted = 0
ORDER BY t.ticket_start';
$tickets = _rowset(sql_filter($sql, $v_start));
if (!count($tickets)) {
_style('no_tickets');
}
foreach ($tickets as $i => $row) {
if (!$i) {
_style('tickets');
}
$sql = 'SELECT *
FROM _tickets_assign a, _members m
WHERE a.user_id = m.user_id
AND assign_ticket = ?
ORDER BY user_firstname';
$names = w();
foreach (_rowset(sql_filter($sql, $row['ticket_id']), 'assign_id') as $assigned_row) {
$names[] = _fullname($assigned_row);
}
_style('tickets.row', array('SOLICITANTE' => _fullname($row), 'ASIGNADOS' => implode(', ', $names), 'CATEGORIA' => $cat[$row['ticket_cat']], 'FECHAHORA' => _format_date($row['ticket_start']), 'TITULO' => $row['ticket_title'], 'TEXTO' => $row['ticket_text'], 'ESTADO' => $status[$row['ticket_status']]));
//
$sql = 'SELECT *
FROM _tickets_notes n, _members m
WHERE n.ticket_id = ??
AND n.user_id = m.user_id
ORDER BY n.note_time DESC';
$notes = _rowset(sql_filter($sql, $row['ticket_id']));
foreach ($notes as $note_row) {
_style('tickets.row.notes', array('AUTOR' => _fullname($note_row), 'TEXTO' => $note_row['note_text'], 'FECHAHORA' => _format_date($note_row['note_time'])));
}
}
}
$now = getdate();
v_style(array('U_FILTER' => _link('export'), 'V_USERNAME' => $v['username'], 'V_NOW' => f($v['start']) ? $v['start'] : $now['mday'] . '-' . $now['mon'] . '-' . $now['year']));
return $this->_template('ticket_export');
}