You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

654 lines
22 KiB

* Title: Help Desk Software HESK
* Version: 2.6.0 beta 1 from 30th December 2014
* Author: Klemen Stirn
* Website:
* Copyright 2005-2014 Klemen Stirn. All Rights Reserved.
* HESK is a registered trademark of Klemen Stirn.
* The HESK may be used and modified free of charge by anyone
* By using this code you agree to indemnify Klemen Stirn from any
* liability that might arise from it's use.
* Selling the code for this program, in part or full, without prior
* written consent is expressly forbidden.
* Using this code, in part or full, to create derivate work,
* new scripts or products is expressly forbidden. Obtain permission
* before redistributing this software over the Internet or in
* any other medium. In all cases copyright and header must remain intact.
* This Copyright is in full effect in any country that has International
* Trade Agreements with the United States of America or
* with the European Union.
* Removing any of the copyright notices without purchasing a license
* is expressly forbidden. To remove HESK copyright notice you must purchase
* a license for this script. For more information on how to obtain
* a license please visit the page below:
/* Check if this is a valid include */
if (!defined('IN_SCRIPT')) {die('Invalid attempt');}
/* List of staff */
if (!isset($admins))
$admins = array();
$res2 = hesk_dbQuery("SELECT `id`,`name` FROM `".hesk_dbEscape($hesk_settings['db_pfix'])."users` ORDER BY `name` ASC");
while ($row=hesk_dbFetchAssoc($res2))
/* List of categories */
$hesk_settings['categories'] = array();
$res2 = hesk_dbQuery('SELECT `id`, `name` FROM `'.hesk_dbEscape($hesk_settings['db_pfix']).'categories` WHERE ' . hesk_myCategories('id') . ' ORDER BY `cat_order` ASC');
while ($row=hesk_dbFetchAssoc($res2))
$hesk_settings['categories'][$row['id']] = $row['name'];
/* Current MySQL time */
$mysql_time = hesk_dbTime();
/* Get number of tickets and page number */
$result = hesk_dbQuery($sql_count);
$total = hesk_dbResult($result);
//-- Precondition: The panel has already been created, and there is NO open <div class="panel-body"> tag yet.
echo '<div class="panel-body">';
if ($total > 0)
/* This query string will be used to browse pages */
if ($href == 'show_tickets.php')
#$query = 'status='.$status;
$query = '';
$query .= 's' . implode('=1&amp;s',array_keys($status)) . '=1';
$query .= '&amp;p' . implode('=1&amp;p',array_keys($priority)) . '=1';
$query .= '&amp;category='.$category;
$query .= '&amp;sort='.$sort;
$query .= '&amp;asc='.$asc;
$query .= '&amp;limit='.$maxresults;
$query .= '&amp;archive='.$archive[1];
$query .= '&amp;s_my='.$s_my[1];
$query .= '&amp;s_ot='.$s_ot[1];
$query .= '&amp;s_un='.$s_un[1];
$query .= '&amp;cot='.$cot;
$query .= '&amp;g='.$group;
$query .= '&amp;page=';
$query = 'q='.$q;
$query .= '&amp;what='.$what;
$query .= '&amp;category='.$category;
$query .= '&amp;dt='.urlencode($date_input);
$query .= '&amp;sort='.$sort;
$query .= '&amp;asc='.$asc;
$query .= '&amp;limit='.$maxresults;
$query .= '&amp;archive='.$archive[2];
$query .= '&amp;s_my='.$s_my[2];
$query .= '&amp;s_ot='.$s_ot[2];
$query .= '&amp;s_un='.$s_un[2];
$query .= '&amp;page=';
$pages = ceil($total/$maxresults) or $pages = 1;
if ($page > $pages)
$page = $pages;
$limit_down = ($page * $maxresults) - $maxresults;
$prev_page = ($page - 1 <= 0) ? 0 : $page - 1;
$next_page = ($page + 1 > $pages) ? 0 : $page + 1;
$autorefreshInSeconds = $_SESSION['autorefresh']/1000;
$autorefresh = '';
if ($autorefreshInSeconds >= MINIMUM_REFRESH_THRESHOLD_IN_SECONDS) {
$autorefresh = ' | '.$hesklang['autorefresh'].' '.$autorefreshInSeconds.' '.$hesklang['abbr']['second'];
setTimeout("location.reload(true);",<?php echo $_SESSION['autorefresh']; ?>);
<?php }
echo sprintf($hesklang['tickets_on_pages'],$total,$pages).$autorefresh.' <br />';
if ($pages > 1)
/* List pages */
echo '<div class="row">
<div class="col-md-6 col-sm-12 text-right nu-rtlFloatLeft">
<ul class="pagination" style="margin: 0">';
if ($pages > 7)
if ($page > 2)
echo '<li><a href="'.$href.'?'.$query.'1">&laquo;</a></li>'; // <<
if ($prev_page)
echo '<li><a href="'.$href.'?'.$query.$prev_page.'">&lsaquo;</a></li>'; // <
for ($i=1; $i<=$pages; $i++)
if ($i <= ($page+5) && $i >= ($page-5))
if ($i == $page)
echo '<li class="active"><a href="#">'.$i.'</a></li> ';
echo '<li><a href="'.$href.'?'.$query.$i.'">'.$i.'</a></li>';
if ($pages > 7)
if ($next_page)
echo '<li><a href="'.$href.'?'.$query.$next_page.'">&rsaquo;</a></li>'; // >
if ($page < ($pages - 1))
echo '<li><a href="'.$href.'?'.$query.$pages.'">&raquo;</a></li>'; // >>
echo ' </ul>
<div class="col-md-6 col-sm-12 text-left">
<div class="form-inline">'.$hesklang['jump_page'].'
<select class="form-control" name="myHpage" id="myHpage" onchange="javascript:window.location=\''.$href.'?'.$query.'\'+document.getElementById(\'myHpage\').value">';
for ($i=1;$i<=$pages;$i++)
$tmp = ($page == $i) ? ' selected="selected"' : '';
echo '<option value="'.$i.'"'.$tmp.'>'.$i.'</option>';
/* We have the full SQL query now, get tickets */
$sql .= " LIMIT ".hesk_dbEscape($limit_down)." , ".hesk_dbEscape($maxresults)." ";
$result = hesk_dbQuery($sql);
/* Uncomment for debugging */
# echo "SQL: $sql\n<br>";
/* This query string will be used to order and reverse display */
if ($href == 'show_tickets.php')
#$query = 'status='.$status;
$query = '';
$query .= 's' . implode('=1&amp;s',array_keys($status)) . '=1';
$query .= '&amp;p' . implode('=1&amp;p',array_keys($priority)) . '=1';
$query .= '&amp;category='.$category;
#$query .= '&amp;asc='.(isset($is_default) ? 1 : $asc_rev);
$query .= '&amp;limit='.$maxresults;
$query .= '&amp;archive='.$archive[1];
$query .= '&amp;s_my='.$s_my[1];
$query .= '&amp;s_ot='.$s_ot[1];
$query .= '&amp;s_un='.$s_un[1];
$query .= '&amp;page=1';
#$query .= '&amp;sort=';
$query .= '&amp;cot='.$cot;
$query .= '&amp;g='.$group;
$query = 'q='.$q;
$query .= '&amp;what='.$what;
$query .= '&amp;category='.$category;
$query .= '&amp;dt='.urlencode($date_input);
#$query .= '&amp;asc='.$asc;
$query .= '&amp;limit='.$maxresults;
$query .= '&amp;archive='.$archive[2];
$query .= '&amp;s_my='.$s_my[2];
$query .= '&amp;s_ot='.$s_ot[2];
$query .= '&amp;s_un='.$s_un[2];
$query .= '&amp;page=1';
#$query .= '&amp;sort=';
$query .= '&amp;asc=';
/* Print the table with tickets */
<form role="form" class="form-inline" name="form1" action="delete_tickets.php" method="post" onsubmit="return hesk_confirmExecute('<?php echo hesk_makeJsString($hesklang['confirm_execute']); ?>')">
if (empty($group))
$i = 0;
$group_tmp = '';
$is_table = 0;
$space = 0;
while ($ticket=hesk_dbFetchAssoc($result))
// Are we grouping tickets?
if ($group)
require(HESK_PATH . 'inc/');
} // END if $group
$color = '';
$owner = '';
$first_line = '(' . $hesklang['unas'] . ')'." \n\n";
if ($ticket['owner'] == $_SESSION['id'])
$owner = '<span class="assignedyou" title="'.$hesklang['tasy2'].'"><span class="glyphicon glyphicon-user" data-toggle="tooltip" data-placement="top" title="'.$hesklang['tasy2'].'"></span></span> ';
$first_line = $hesklang['tasy2'] . " \n\n";
elseif ($ticket['owner'])
if (!isset($admins[$ticket['owner']]))
$admins[$ticket['owner']] = $hesklang['e_udel'];
$owner = '<span class="assignedother" title="'.$hesklang['taso3'] . ' ' . $admins[$ticket['owner']] .'"><span class="glyphicon glyphicon-user" data-toggle="tooltip" data-placement="top" title="'.$hesklang['taso3'].' '.$admins[$ticket['owner']].'"></span></span> ';
$first_line = $hesklang['taso3'] . ' ' . $admins[$ticket['owner']] . " \n\n";
// Prepare ticket priority
switch ($ticket['priority'])
case 0:
$ticket['priority']='<span style="color: red; font-size:1.3em" class="glyphicon glyphicon-flag" data-toggle="tooltip" data-placement="top" title="'.$hesklang['critical'].'"></span>';
$color = 'danger';
case 1:
$ticket['priority']='<span style="color: orange; font-size:1.3em" class="glyphicon glyphicon-flag" data-toggle="tooltip" data-placement="top" title="'.$hesklang['high'].'"></span>';
$color = 'warning';
case 2:
$ticket['priority']='<span style="color: green; font-size:1.3em" class="glyphicon glyphicon-flag" data-toggle="tooltip" data-placement="top" title="'.$hesklang['medium'].'"></span>';
$ticket['priority']='<span style="color: blue; font-size:1.3em" class="glyphicon glyphicon-flag" data-toggle="tooltip" data-placement="top" title="'.$hesklang['low'].'"></span>';
// Set message (needed for row title)
$ticket['message'] = $first_line . substr(strip_tags($ticket['message']),0,200).'...';
// Start ticket row
echo '
<tr title="'.$ticket['message'].'">
<td class="'.$color.'" style="text-align:left; white-space:nowrap;"><input type="checkbox" name="id[]" value="'.$ticket['id'].'" />&nbsp;</td>
// Print sequential ID and link it to the ticket page
if ( hesk_show_column('id') )
echo '<td class="'.$color.'" style="text-align:left; white-space:nowrap;"><a href="admin_ticket.php?track='.$ticket['trackid'].'&amp;Refresh='.$random.'">'.$ticket['id'].'</a></td>';
// Print tracking ID and link it to the ticket page
if ( hesk_show_column('trackid') )
echo '<td class="'.$color.'" style="text-align:left; white-space:nowrap;"><a href="admin_ticket.php?track='.$ticket['trackid'].'&amp;Refresh='.$random.'">'.$ticket['trackid'].'</a></td>';
// Print date submitted
if ( hesk_show_column('dt') )
switch ($hesk_settings['updatedformat'])
case 1:
$ticket['dt'] = hesk_formatDate($ticket['dt']);
case 2:
$ticket['dt'] = hesk_time_lastchange($ticket['dt']);
$ticket['dt'] = hesk_time_since( strtotime($ticket['dt']) );
echo '<td class="'.$color.'">'.$ticket['dt'].'</td>';
// Print last modified
if ( hesk_show_column('lastchange') )
switch ($hesk_settings['updatedformat'])
case 1:
$ticket['lastchange'] = hesk_formatDate($ticket['lastchange']);
case 2:
$ticket['lastchange'] = hesk_time_lastchange($ticket['lastchange']);
$ticket['lastchange'] = hesk_time_since( strtotime($ticket['lastchange']) );
echo '<td class="'.$color.'">'.$ticket['lastchange'].'</td>';
// Print ticket category
if ( hesk_show_column('category') )
$ticket['category'] = isset($hesk_settings['categories'][$ticket['category']]) ? $hesk_settings['categories'][$ticket['category']] : $hesklang['catd'];
echo '<td class="'.$color.'">'.$ticket['category'].'</td>';
// Print customer name
if ( hesk_show_column('name') )
echo '<td class="'.$color.'">'.$ticket['name'].'</td>';
// Print customer email
if ( hesk_show_column('email') )
echo '<td class="'.$color.'"><a href="mailto:'.$ticket['email'].'">'.$hesklang['clickemail'].'</a></td>';
// Print subject and link to the ticket page
if ( hesk_show_column('subject') )
echo '<td class="'.$color.'">'.($ticket['archive'] ? '<i class="fa fa-tag" style="font-size: 14px;color:#000" data-toggle="tooltip" data-placement="top" data-original-title="'.$hesklang['archived'].'"></i> ' : '').$owner.'<a href="admin_ticket.php?track='.$ticket['trackid'].'&amp;Refresh='.$random.'">'.$ticket['subject'].'</a></td>';
// Print ticket status
if ( hesk_show_column('status') )
$statusName = hesk_dbFetchAssoc(hesk_dbQuery("SELECT `ShortNameContentKey`, `TextColor` FROM `".hesk_dbEscape($hesk_settings['db_pfix'])."statuses` WHERE ID = ".$ticket['status']));
$ticket['status']='<span style="color: '.$statusName['TextColor'].'">'.$hesklang[$statusName['ShortNameContentKey']].'</span>';
echo '<td class="'.$color.'">'.$ticket['status'].'&nbsp;</td>';
// Print ticket owner
if ( hesk_show_column('owner') )
if ($ticket['owner'])
$ticket['owner'] = isset($admins[$ticket['owner']]) ? $admins[$ticket['owner']] : $hesklang['unas'];
$ticket['owner'] = $hesklang['unas'];
echo '<td class="'.$color.'">'.$ticket['owner'].'</td>';
// Print number of all replies
if ( hesk_show_column('replies') )
echo '<td class="'.$color.'">'.$ticket['replies'].'</td>';
// Print number of staff replies
if ( hesk_show_column('staffreplies') )
echo '<td class="'.$color.'">'.$ticket['staffreplies'].'</td>';
// Print last replier
if ( hesk_show_column('lastreplier') )
if ($ticket['lastreplier'])
$ticket['repliername'] = isset($admins[$ticket['replierid']]) ? $admins[$ticket['replierid']] : $hesklang['staff'];
$ticket['repliername'] = $ticket['name'];
echo '<td class="'.$color.'">'.$ticket['repliername'].'</td>';
// Print time worked
if ( hesk_show_column('time_worked') )
echo '<td class="'.$color.'">'.$ticket['time_worked'].'</td>';
// Print custom fields
foreach ($hesk_settings['custom_fields'] as $key => $value)
if ($value['use'] && hesk_show_column($key) )
echo '<td class="'.$color.'">'.$ticket[$key].'</td>';
// End ticket row
echo '
<td class="'.$color.'" style="text-align:center; white-space:nowrap;">'.$ticket['priority'].'&nbsp;</td>
} // End while
&nbsp;<br />
<table border="0" width="100%">
<td width="50%" class="text-right" style="vertical-align:top">
<select class="form-control" name="a">
<option value="low" selected="selected"><?php echo $hesklang['set_pri_to'].' '.$hesklang['low']; ?></option>
<option value="medium"><?php echo $hesklang['set_pri_to'].' '.$hesklang['medium']; ?></option>
<option value="high"><?php echo $hesklang['set_pri_to'].' '.$hesklang['high']; ?></option>
<option value="critical"><?php echo $hesklang['set_pri_to'].' '.$hesklang['critical']; ?></option>
<option value="close"><?php echo $hesklang['close_selected']; ?></option>
if ( hesk_checkPermission('can_add_archive', 0) )
<option value="tag"><?php echo $hesklang['add_archive_quick']; ?></option>
<option value="untag"><?php echo $hesklang['remove_archive_quick']; ?></option>
if ( ! defined('HESK_DEMO') )
if ( hesk_checkPermission('can_merge_tickets', 0) )
<option value="merge"><?php echo $hesklang['mer_selected']; ?></option>
if ( hesk_checkPermission('can_del_tickets', 0) )
<option value="delete"><?php echo $hesklang['del_selected']; ?></option>
} // End demo
<input type="hidden" name="token" value="<?php hesk_token_echo(); ?>" />
<input class="btn btn-default" type="submit" value="<?php echo $hesklang['execute']; ?>" />
} // END ticket list if total > 0
echo '<div class="row"><div class="col-sm-12">';
$autorefreshInSeconds = $_SESSION['autorefresh']/1000;
if ($autorefreshInSeconds >= MINIMUM_REFRESH_THRESHOLD_IN_SECONDS) {
echo $hesklang['autorefresh'].' '.$autorefreshInSeconds.' '.$hesklang['abbr']['second'];
setTimeout("location.reload(true);",<?php echo $_SESSION['autorefresh']; ?>);
if (isset($is_search) || $href == 'find_tickets.php')
hesk_show_notice($hesklang['no_tickets_crit'].'<span style="float: right"><a href="new_ticket.php">'.$hesklang['nti'].'</a></span>');
hesk_show_notice($hesklang['no_tickets_open'].'<span style="float: right"><a href="new_ticket.php">'.$hesklang['nti'].'</a></span>');
echo '</div></div>';
echo '</div>
function hesk_print_list_head()
global $hesk_settings, $href, $query, $sort_possible, $hesklang;
<div class="table-responsive">
<table id="ticket-table" class="table table-hover">
<th><input type="checkbox" id="checkall" name="checkall" value="2" onclick="hesk_changeAll(this)" /></th>
foreach ($hesk_settings['ticket_list'] as $field)
echo '<th><a href="' . $href . '?' . $query . $sort_possible[$field] . '&amp;sort=' . $field . '">' . $hesk_settings['possible_ticket_list'][$field] . '</a></th>';
<th><a href="<?php echo $href . '?' . $query . $sort_possible['priority'] . '&amp;sort='; ?>priority"><i class="fa fa-sort-<?php echo (($sort_possible['priority']) ? 'asc' : 'desc'); ?>"></i></a></th>
} // END hesk_print_list_head()
function hesk_time_since($original)
global $hesk_settings, $hesklang, $mysql_time;
/* array of time period chunks */
$chunks = array(
array(60 * 60 * 24 * 365 , $hesklang['abbr']['year']),
array(60 * 60 * 24 * 30 , $hesklang['abbr']['month']),
array(60 * 60 * 24 * 7, $hesklang['abbr']['week']),
array(60 * 60 * 24 , $hesklang['abbr']['day']),
array(60 * 60 , $hesklang['abbr']['hour']),
array(60 , $hesklang['abbr']['minute']),
array(1 , $hesklang['abbr']['second']),
/* Invalid time */
if ($mysql_time < $original)
// DEBUG return "T: $mysql_time (".date('Y-m-d H:i:s',$mysql_time).")<br>O: $original (".date('Y-m-d H:i:s',$original).")";
return "0".$hesklang['abbr']['second'];
$since = $mysql_time - $original;
// $j saves performing the count function each time around the loop
for ($i = 0, $j = count($chunks); $i < $j; $i++) {
$seconds = $chunks[$i][0];
$name = $chunks[$i][1];
// finding the biggest chunk (if the chunk fits, break)
if (($count = floor($since / $seconds)) != 0) {
// DEBUG print "<!-- It's $name -->\n";
$print = "$count{$name}";
if ($i + 1 < $j) {
// now getting the second item
$seconds2 = $chunks[$i + 1][0];
$name2 = $chunks[$i + 1][1];
// add second item if it's greater than 0
if (($count2 = floor(($since - ($seconds * $count)) / $seconds2)) != 0) {
$print .= "$count2{$name2}";
return $print;
} // END hesk_time_since()
function hesk_time_lastchange($original)
global $hesk_settings, $hesklang;
// Save time format setting so we can restore it later
$copy = $hesk_settings['timeformat'];
// We need this time format for this function
$hesk_settings['timeformat'] = 'Y-m-d H:i:s';
// Get HESK time-adjusted start of today if not already
if ( ! defined('HESK_TIME_TODAY') )
// Adjust for HESK time and define constants for alter use
define('HESK_TIME_TODAY', date('Y-m-d 00:00:00', hesk_date(NULL, false, false, false) ) );
define('HESK_TIME_YESTERDAY', date('Y-m-d 00:00:00', strtotime(HESK_TIME_TODAY)-86400) ) ;
// Adjust HESK time difference and get day name
$ticket_time = hesk_date($original, true);
if ($ticket_time >= HESK_TIME_TODAY)
// For today show HH:MM
$day = substr($ticket_time, 11, 5);
elseif ($ticket_time >= HESK_TIME_YESTERDAY)
// For yesterday show word "Yesterday"
$day = $hesklang['r2'];
// For other days show DD MMM YY
list($y, $m, $d) = explode('-', substr($ticket_time, 0, 10) );
$day = '<span style="white-space: nowrap;">' . $d . ' ' . $hesklang['ms'.$m] . ' ' . substr($y, 2) . '</span>';
// Restore original time format setting
$hesk_settings['timeformat'] = $copy;
// Return value to display
return $day;
} // END hesk_time_lastchange()