From aadfc573cdc75ab884c1e2b6c12f9e9bb59dd25d Mon Sep 17 00:00:00 2001
From: Mike Koch <mkoch227@gmail.com>
Date: Sun, 11 Jan 2015 17:36:05 -0500
Subject: [PATCH] #92 Update lock.php

---
 admin/lock.php | 31 ++++++++++++++++++++++++++++---
 1 file changed, 28 insertions(+), 3 deletions(-)

diff --git a/admin/lock.php b/admin/lock.php
index 26c30c2a..ed03cf36 100644
--- a/admin/lock.php
+++ b/admin/lock.php
@@ -1,7 +1,7 @@
 <?php
 /*******************************************************************************
 *  Title: Help Desk Software HESK
-*  Version: 2.5.5 from 5th August 2014
+*  Version: 2.6.0 beta 1 from 30th December 2014
 *  Author: Klemen Stirn
 *  Website: http://www.hesk.com
 ********************************************************************************
@@ -56,18 +56,43 @@ hesk_token_check();
 /* Ticket ID */
 $trackingID = hesk_cleanID() or die($hesklang['int_error'].': '.$hesklang['no_trackID']);
 
-/* New archived status */
+/* New locked status */
 if (empty($_GET['locked']))
 {
 	$status = 0;
 	$tmp = $hesklang['tunlock'];                                                                      
     $revision = sprintf($hesklang['thist6'],hesk_date(),$_SESSION['name'].' ('.$_SESSION['user'].')');
+    $closedby_sql = ' , `closedat`=NULL, `closedby`=NULL ';
 }
 else
 {
 	$status = 1;
 	$tmp = $hesklang['tlock'];
     $revision = sprintf($hesklang['thist5'],hesk_date(),$_SESSION['name'].' ('.$_SESSION['user'].')');
+    $closedby_sql = ' , `closedat`=NOW(), `closedby`='.intval($_SESSION['id']).' ';
+
+    // Notify customer of closed ticket?
+    if ($hesk_settings['notify_closed'])
+    {
+        // Get ticket info
+        $result = hesk_dbQuery("SELECT * FROM `".hesk_dbEscape($hesk_settings['db_pfix'])."tickets` WHERE `trackid`='".hesk_dbEscape($trackingID)."' LIMIT 1");
+        if (hesk_dbNumRows($result) != 1)
+        {
+            hesk_error($hesklang['ticket_not_found']);
+        }
+        $ticket = hesk_dbFetchAssoc($result);
+
+        //TODO Update this to look at any "closed" status; not just ID 3
+        // Notify customer, but only if ticket is not already closed
+        if ($ticket['status'] != 3)
+        {
+            require(HESK_PATH . 'inc/email_functions.inc.php');
+
+            $ticket['dt'] = hesk_date($ticket['dt'], true);
+            $ticket['lastchange'] = hesk_date($ticket['lastchange'], true);
+            hesk_notifyCustomer('ticket_closed');
+        }
+    }
 }
 
 /* Update database */
@@ -75,7 +100,7 @@ $statusSql = 'SELECT `ID` FROM `'.hesk_dbEscape($hesk_settings['db_pfix']).'stat
 $statusRow = hesk_dbQuery($statusSql)->fetch_assoc();
 $statusId = $statusRow['ID'];
 
-hesk_dbQuery("UPDATE `".hesk_dbEscape($hesk_settings['db_pfix'])."tickets` SET `status`='{$statusId}',`locked`='{$status}', `history`=CONCAT(`history`,'".hesk_dbEscape($revision)."')  WHERE `trackid`='".hesk_dbEscape($trackingID)."' LIMIT 1");
+hesk_dbQuery("UPDATE `".hesk_dbEscape($hesk_settings['db_pfix'])."tickets` SET `status`='{$statusId}',`locked`='{$status}' $closedby_sql , `history`=CONCAT(`history`,'".hesk_dbEscape($revision)."')  WHERE `trackid`='".hesk_dbEscape($trackingID)."' LIMIT 1");
 
 /* Back to ticket page and show a success message */
 hesk_process_messages($tmp,'admin_ticket.php?track='.$trackingID.'&Refresh='.rand(10000,99999),'SUCCESS');