mirror of
https://github.com/Znote/ZnoteAAC.git
synced 2025-05-02 12:19:20 +02:00
Improved the helpdesk code.
This commit is contained in:
Stefan Brannfjell
parent
dac911e1d9
commit
048794a320
@ -3,35 +3,28 @@ protect_page();
|
||||
admin_only($user_data);
|
||||
|
||||
// Declare as int
|
||||
$view = (int)$_GET['view'];
|
||||
if ($view){
|
||||
|
||||
$view = (isset($_GET['view']) && (int)$_GET['view'] > 0) ? (int)$_GET['view'] : false;
|
||||
if ($view !== false){
|
||||
if (!empty($_POST['reply_text'])) {
|
||||
sanitize($_POST['reply_text']);
|
||||
|
||||
// Save ticket reply on database
|
||||
$query = array(
|
||||
'tid' => $_GET['view'],
|
||||
'username'=> $_POST['username'],
|
||||
'message' => $_POST['reply_text'],
|
||||
'tid' => $view,
|
||||
'username'=> getValue($_POST['username']),
|
||||
'message' => getValue($_POST['reply_text']),
|
||||
'created' => time(),
|
||||
);
|
||||
|
||||
//Sanitize array
|
||||
array_walk($query, 'array_sanitize');
|
||||
|
||||
$fields = '`'. implode('`, `', array_keys($query)) .'`';
|
||||
$data = '\''. implode('\', \'', $query) .'\'';
|
||||
mysql_insert("INSERT INTO `znote_tickets_replies` ($fields) VALUES ($data)");
|
||||
mysql_update("UPDATE `znote_tickets` SET `status`='Staff-Reply' WHERE `id`=". $_GET['view']);
|
||||
|
||||
mysql_insert("INSERT INTO `znote_tickets_replies` ($fields) VALUES ($data)");
|
||||
mysql_update("UPDATE `znote_tickets` SET `status`='Staff-Reply' WHERE `id`='$view' LIMIT 1;");
|
||||
}
|
||||
|
||||
$ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id=". addslashes((int)$_GET['view']));
|
||||
|
||||
$ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id='$view' LIMIT 1;");
|
||||
?>
|
||||
<h1>View Ticket #<?php echo $ticketData['id']; ?></h1>
|
||||
|
||||
<h1>View Ticket #<?php echo $ticketData['id']; ?></h1>
|
||||
<table class="znoteTable ThreadTable table table-striped">
|
||||
<tr class="yellow">
|
||||
<th>
|
||||
@ -50,9 +43,8 @@ $ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id=". addsl
|
||||
</td>
|
||||
</tr>
|
||||
</table>
|
||||
|
||||
<?php
|
||||
$replies = mysql_select_multi("SELECT * FROM znote_tickets_replies WHERE tid='". addslashes((int)$_GET['view']) ."' ORDER BY `created`;");
|
||||
$replies = mysql_select_multi("SELECT * FROM znote_tickets_replies WHERE tid='$view' ORDER BY `created`;");
|
||||
if ($replies !== false) {
|
||||
foreach($replies as $reply) {
|
||||
?>
|
||||
@ -75,32 +67,24 @@ $ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id=". addsl
|
||||
</tr>
|
||||
</table>
|
||||
<hr class="bighr">
|
||||
<?php
|
||||
<?php
|
||||
}
|
||||
}
|
||||
?>
|
||||
|
||||
?>
|
||||
<form action="" method="post">
|
||||
<input type="hidden" name="username" value="ADMIN"><br>
|
||||
|
||||
<textarea class="forumReply" name="reply_text" style="width: 610px; height: 150px"></textarea><br>
|
||||
|
||||
<input name="" type="submit" value="Post Reply" class="btn btn-primary">
|
||||
|
||||
</form>
|
||||
<?php
|
||||
}else{
|
||||
?>
|
||||
|
||||
<h1>Latest Tickets</h1>
|
||||
|
||||
<?php
|
||||
|
||||
$tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tickets ORDER BY creation DESC");
|
||||
} else {
|
||||
?>
|
||||
<h1>Latest Tickets</h1>
|
||||
<?php
|
||||
$tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tickets ORDER BY creation DESC");
|
||||
if ($tickets !== false) {
|
||||
?>
|
||||
|
||||
<table>
|
||||
<table>
|
||||
<tr class="yellow">
|
||||
<td>ID:</td>
|
||||
<td>Subject:</td>
|
||||
@ -114,11 +98,12 @@ $tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tick
|
||||
echo '<td><a href="admin_helpdesk.php?view='. $ticket['id'] .'">'. $ticket['subject'] .'</a></td>';
|
||||
echo '<td>'. getClock($ticket['creation'], true) .'</td>';
|
||||
echo '<td>'. $ticket['status'] .'</td>';
|
||||
}}
|
||||
echo '</tr>';
|
||||
}
|
||||
?>
|
||||
</table>
|
||||
|
||||
<?php
|
||||
</table>
|
||||
<?php
|
||||
} else echo 'No helpdesk tickets has been submitted.';
|
||||
}
|
||||
include 'layout/overall/footer.php';
|
||||
?>
|
||||
114
helpdesk.php
114
helpdesk.php
@ -1,45 +1,35 @@
|
||||
<?php
|
||||
require_once 'engine/init.php';
|
||||
|
||||
if (user_logged_in() === false) {
|
||||
header('Location: register.php');
|
||||
}
|
||||
|
||||
include 'layout/overall/header.php';
|
||||
|
||||
$view = (int)$_GET['view'];
|
||||
if ($view) {
|
||||
|
||||
$view = (isset($_GET['view']) && (int)$_GET['view'] > 0) ? (int)$_GET['view'] : false;
|
||||
if ($view !== false) {
|
||||
if (!empty($_POST['reply_text'])) {
|
||||
sanitize($_POST['reply_text']);
|
||||
|
||||
// Save ticket reply on database
|
||||
$query = array(
|
||||
'tid' => $_GET['view'],
|
||||
'username'=> $_POST['username'],
|
||||
'message' => $_POST['reply_text'],
|
||||
'tid' => $view,
|
||||
'username'=> getValue($_POST['username']),
|
||||
'message' => getValue($_POST['reply_text']),
|
||||
'created' => time(),
|
||||
);
|
||||
|
||||
//Sanitize array
|
||||
array_walk($query, 'array_sanitize');
|
||||
|
||||
$fields = '`'. implode('`, `', array_keys($query)) .'`';
|
||||
$data = '\''. implode('\', \'', $query) .'\'';
|
||||
mysql_insert("INSERT INTO `znote_tickets_replies` ($fields) VALUES ($data)");
|
||||
mysql_update("UPDATE `znote_tickets` SET `status`='Player-Reply' WHERE `id`=". $_GET['view']);
|
||||
|
||||
mysql_update("UPDATE `znote_tickets` SET `status`='Player-Reply' WHERE `id`='$view' LIMIT 1;");
|
||||
}
|
||||
$ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id='$view' LIMIT 1;");
|
||||
|
||||
$ticketData = mysql_select_single("SELECT * FROM znote_tickets WHERE id=". addslashes((int)$_GET['view']));
|
||||
|
||||
if($ticketData['owner'] != $session_user_id){
|
||||
echo 'You can not view this ticket!';
|
||||
die;
|
||||
}
|
||||
if($ticketData['owner'] != $session_user_id) {
|
||||
echo 'You can not view this ticket!';
|
||||
include 'layout/overall/footer.php';
|
||||
die;
|
||||
}
|
||||
?>
|
||||
<h1>View Ticket #<?php echo $ticketData['id']; ?></h1>
|
||||
|
||||
<h1>View Ticket #<?php echo $ticketData['id']; ?></h1>
|
||||
<table class="znoteTable ThreadTable table table-striped">
|
||||
<tr class="yellow">
|
||||
<th>
|
||||
@ -58,9 +48,8 @@ die;
|
||||
</td>
|
||||
</tr>
|
||||
</table>
|
||||
|
||||
<?php
|
||||
$replies = mysql_select_multi("SELECT * FROM znote_tickets_replies WHERE tid='". (int)$_GET['view'] ."' ORDER BY `created`;");
|
||||
$replies = mysql_select_multi("SELECT * FROM znote_tickets_replies WHERE tid='$view' ORDER BY `created`;");
|
||||
if ($replies !== false) {
|
||||
foreach($replies as $reply) {
|
||||
?>
|
||||
@ -83,26 +72,20 @@ die;
|
||||
</tr>
|
||||
</table>
|
||||
<hr class="bighr">
|
||||
<?php
|
||||
<?php
|
||||
}
|
||||
}
|
||||
?>
|
||||
|
||||
?>
|
||||
<form action="" method="post">
|
||||
<input type="hidden" name="username" value="<?php echo $ticketData['username']; ?>"><br>
|
||||
|
||||
<textarea class="forumReply" name="reply_text" style="width: 610px; height: 150px"></textarea><br>
|
||||
|
||||
<input name="" type="submit" value="Post Reply" class="btn btn-primary">
|
||||
</form>
|
||||
<?php
|
||||
<?php
|
||||
} else {
|
||||
|
||||
}else{
|
||||
|
||||
$account = mysql_select_single("SELECT name,email FROM accounts WHERE id = $session_user_id");
|
||||
|
||||
if (empty($_POST) === false) {
|
||||
// $_POST['']
|
||||
$account = mysql_select_single("SELECT name,email FROM accounts WHERE id = $session_user_id");
|
||||
if (!empty($_POST)) {
|
||||
$required_fields = array('username', 'email', 'subject', 'message');
|
||||
foreach($_POST as $key=>$value) {
|
||||
if (empty($value) && in_array($key, $required_fields) === true) {
|
||||
@ -124,22 +107,19 @@ if (empty($_POST) === false) {
|
||||
$errors[] = 'Captcha image verification was submitted wrong.';
|
||||
}
|
||||
}
|
||||
if (validate_ip(getIP()) === false && $config['validate_IP'] === true) {
|
||||
// Reversed this if, so: first check if you need to validate, then validate.
|
||||
if ($config['validate_IP'] === true && validate_ip(getIP()) === false) {
|
||||
$errors[] = 'Failed to recognize your IP address. (Not a valid IPv4 address).';
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
?>
|
||||
<h1>Latest Tickets</h1>
|
||||
|
||||
}
|
||||
?>
|
||||
<h1>Latest Tickets</h1>
|
||||
<?php
|
||||
|
||||
$tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tickets WHERE owner=$session_user_id ORDER BY creation DESC");
|
||||
$tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tickets WHERE owner=$session_user_id ORDER BY creation DESC");
|
||||
if ($tickets !== false) {
|
||||
?>
|
||||
|
||||
<table>
|
||||
<table>
|
||||
<tr class="yellow">
|
||||
<td>ID:</td>
|
||||
<td>Subject:</td>
|
||||
@ -153,37 +133,36 @@ $tickets = mysql_select_multi("SELECT id,subject,creation,status FROM znote_tick
|
||||
echo '<td><a href="helpdesk.php?view='. $ticket['id'] .'">'. $ticket['subject'] .'</a></td>';
|
||||
echo '<td>'. getClock($ticket['creation'], true) .'</td>';
|
||||
echo '<td>'. $ticket['status'] .'</td>';
|
||||
}}
|
||||
echo '</tr>';
|
||||
}
|
||||
?>
|
||||
</table>
|
||||
<?php
|
||||
}
|
||||
?>
|
||||
</table>
|
||||
|
||||
|
||||
|
||||
|
||||
<h1>Helpdesk</h1>
|
||||
<?php
|
||||
if (isset($_GET['success']) && empty($_GET['success'])) {
|
||||
<h1>Helpdesk</h1>
|
||||
<?php
|
||||
if (isset($_GET['success']) && empty($_GET['success'])) {
|
||||
echo 'Congratulations! Your ticket has been created. We will reply up to 24 hours.';
|
||||
} else {
|
||||
} else {
|
||||
|
||||
if (empty($_POST) === false && empty($errors) === true) {
|
||||
if ($config['log_ip']) {
|
||||
znote_visitor_insert_detailed_data(1);
|
||||
}
|
||||
|
||||
//Save ticket on database
|
||||
$query = array(
|
||||
'owner' => $session_user_id,
|
||||
'username'=> $_POST['username'],
|
||||
'subject' => $_POST['subject'],
|
||||
'message' => $_POST['message'],
|
||||
'username'=> getValue($_POST['username']),
|
||||
'subject' => getValue($_POST['subject']),
|
||||
'message' => getValue($_POST['message']),
|
||||
'ip' => ip2long(getIP()),
|
||||
'creation' => time(),
|
||||
'status' => 'Open'
|
||||
);
|
||||
|
||||
|
||||
//Sanitize array
|
||||
array_walk($query, 'array_sanitize');
|
||||
|
||||
$fields = '`'. implode('`, `', array_keys($query)) .'`';
|
||||
$data = '\''. implode('\', \'', $query) .'\'';
|
||||
mysql_insert("INSERT INTO `znote_tickets` ($fields) VALUES ($data)");
|
||||
@ -191,12 +170,12 @@ if (isset($_GET['success']) && empty($_GET['success'])) {
|
||||
header('Location: helpdesk.php?success');
|
||||
exit();
|
||||
|
||||
} else if (empty($errors) === false){
|
||||
} else if (empty($errors) === false) {
|
||||
echo '<font color="red"><b>';
|
||||
echo output_errors($errors);
|
||||
echo '</b></font>';
|
||||
}
|
||||
?>
|
||||
?>
|
||||
<form action="" method="post">
|
||||
<ul>
|
||||
<li>
|
||||
@ -237,7 +216,8 @@ if (isset($_GET['success']) && empty($_GET['success'])) {
|
||||
</li>
|
||||
</ul>
|
||||
</form>
|
||||
<?php
|
||||
}}
|
||||
<?php
|
||||
}
|
||||
}
|
||||
include 'layout/overall/footer.php';
|
||||
?>
|
||||
Loading…
x
Reference in New Issue
Block a user