You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
150 lines
5.1 KiB
PHP
150 lines
5.1 KiB
PHP
<?php
|
|
/**
|
|
*
|
|
* This file is part of HESK - PHP Help Desk Software.
|
|
*
|
|
* (c) Copyright Klemen Stirn. All rights reserved.
|
|
* https://www.hesk.com
|
|
*
|
|
* For the full copyright and license agreement information visit
|
|
* https://www.hesk.com/eula.php
|
|
*
|
|
*/
|
|
|
|
define('IN_SCRIPT', 1);
|
|
define('HESK_PATH', '../');
|
|
|
|
/* Get all the required files and functions */
|
|
require(HESK_PATH . 'hesk_settings.inc.php');
|
|
require(HESK_PATH . 'inc/common.inc.php');
|
|
require(HESK_PATH . 'inc/admin_functions.inc.php');
|
|
hesk_load_database_functions();
|
|
|
|
hesk_session_start();
|
|
hesk_dbConnect();
|
|
hesk_isLoggedIn();
|
|
$modsForHesk_settings = mfh_getSettings();
|
|
|
|
/* Check permissions for this feature */
|
|
if (!isset($_REQUEST['isManager']) || !$_REQUEST['isManager']) {
|
|
hesk_checkPermission('can_view_tickets');
|
|
hesk_checkPermission('can_reply_tickets');
|
|
}
|
|
|
|
/* A security check */
|
|
hesk_token_check();
|
|
|
|
/* Ticket ID */
|
|
$trackingID = hesk_cleanID() or die($hesklang['int_error'] . ': ' . $hesklang['no_trackID']);
|
|
|
|
$ticket_id_rs = hesk_dbQuery("SELECT `id` FROM `" . hesk_dbEscape($hesk_settings['db_pfix']) . "tickets` WHERE `trackid` = '" . hesk_dbEscape($trackingID) . "'");
|
|
$ticket_id_row = hesk_dbFetchAssoc($ticket_id_rs);
|
|
$ticket_id = $ticket_id_row['id'];
|
|
|
|
/* Valid statuses */
|
|
$statusSql = "SELECT `ID` FROM `" . hesk_dbEscape($hesk_settings['db_pfix']) . "statuses`";
|
|
$status_options = array();
|
|
$results = hesk_dbQuery($statusSql);
|
|
|
|
while ($row = hesk_dbFetchAssoc($results)) {
|
|
$status_options[$row['ID']] = mfh_getDisplayTextForStatusId($row['ID']);
|
|
}
|
|
|
|
/* New status */
|
|
$status = intval(hesk_REQUEST('s'));
|
|
if (!isset($status_options[$status])) {
|
|
hesk_process_messages($hesklang['instat'], 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . mt_rand(10000, 99999), 'NOTICE');
|
|
}
|
|
|
|
$locked = 0;
|
|
|
|
$audit_closed = null;
|
|
$audit_locked = null;
|
|
$audit_status = null;
|
|
$audit_opened = null;
|
|
|
|
$statusRow = hesk_dbFetchAssoc(hesk_dbQuery("SELECT `ID`, `IsClosed` FROM `" . hesk_dbEscape($hesk_settings['db_pfix']) . "statuses` WHERE ID = " . $status));
|
|
if ($statusRow['IsClosed']) // Closed
|
|
{
|
|
if ( ! hesk_checkPermission('can_resolve', 0)) {
|
|
hesk_process_messages($hesklang['noauth_resolve'],'admin_ticket.php?track='.$trackingID.'&Refresh='.mt_rand(10000,99999),'NOTICE');
|
|
}
|
|
|
|
$action = $hesklang['ticket_been'] . ' ' . $hesklang['close'];
|
|
$audit_closed = array(0 => $_SESSION['name'] . ' (' . $_SESSION['user'] . ')');
|
|
$audit_status = array(0 => $_SESSION['name'] . ' (' . $_SESSION['user'] . ')',
|
|
1 => $status_options[$status]);
|
|
|
|
|
|
if ($hesk_settings['custopen'] != 1) {
|
|
$locked = 1;
|
|
$audit_locked = array();
|
|
}
|
|
|
|
// Notify customer of closed ticket?
|
|
if ($hesk_settings['notify_closed']) {
|
|
// Get ticket info
|
|
$result = hesk_dbQuery("SELECT * FROM `" . hesk_dbEscape($hesk_settings['db_pfix']) . "tickets` WHERE `trackid`='" . hesk_dbEscape($trackingID) . "' LIMIT 1");
|
|
if (hesk_dbNumRows($result) != 1) {
|
|
hesk_error($hesklang['ticket_not_found']);
|
|
}
|
|
$ticket = hesk_dbFetchAssoc($result);
|
|
$ticket['status'] = $status;
|
|
$ticket['dt'] = hesk_date($ticket['dt'], true);
|
|
$ticket['lastchange'] = hesk_date($ticket['lastchange'], true);
|
|
$ticket = hesk_ticketToPlain($ticket, 1, 0);
|
|
|
|
// Notify customer
|
|
require(HESK_PATH . 'inc/email_functions.inc.php');
|
|
hesk_notifyCustomer($modsForHesk_settings, 'ticket_closed');
|
|
}
|
|
|
|
// Log who marked the ticket resolved
|
|
$closedby_sql = ' , `closedat`=NOW(), `closedby`=' . intval($_SESSION['id']) . ' ';
|
|
} elseif ($statusRow['IsNewTicketStatus'] == 0) //Ticket is still open, but not new
|
|
{
|
|
$action = sprintf($hesklang['tsst'], $status_options[$status]);
|
|
$audit_status = array(0 => $_SESSION['name'] . ' (' . $_SESSION['user'] . ')',
|
|
1 => $status_options[$status]);
|
|
|
|
|
|
// Ticket is not resolved
|
|
$closedby_sql = ' , `closedat`=NULL, `closedby`=NULL ';
|
|
} else // Ticket is marked as "NEW"
|
|
{
|
|
$action = $hesklang['ticket_been'] . ' ' . $hesklang['opened'];
|
|
$audit_opened = array(0 => $_SESSION['name'] . ' (' . $_SESSION['user'] . ')');
|
|
|
|
// Ticket is not resolved
|
|
$closedby_sql = ' , `closedat`=NULL, `closedby`=NULL ';
|
|
}
|
|
|
|
|
|
hesk_dbQuery("UPDATE `" . hesk_dbEscape($hesk_settings['db_pfix']) . "tickets` SET `status`='{$status}', `locked`='{$locked}' $closedby_sql WHERE `trackid`='" . hesk_dbEscape($trackingID) . "'");
|
|
|
|
if ($audit_status !== null) {
|
|
mfh_insert_audit_trail_record($ticket_id, 'TICKET', 'audit_status', hesk_date(),
|
|
$audit_status);
|
|
}
|
|
|
|
if ($audit_closed !== null) {
|
|
mfh_insert_audit_trail_record($ticket_id, 'TICKET', 'audit_closed', hesk_date(),
|
|
$audit_closed);
|
|
}
|
|
|
|
if ($audit_locked !== null) {
|
|
mfh_insert_audit_trail_record($ticket_id, 'TICKET', 'audit_automatically_locked', hesk_date(),
|
|
array());
|
|
}
|
|
|
|
if ($audit_opened !== null) {
|
|
mfh_insert_audit_trail_record($ticket_id, 'TICKET', 'audit_opened', hesk_date(),
|
|
$audit_opened);
|
|
}
|
|
|
|
if (hesk_dbAffectedRows() != 1) {
|
|
hesk_error("$hesklang[int_error]: $hesklang[trackID_not_found].");
|
|
}
|
|
|
|
hesk_process_messages($action, 'admin_ticket.php?track=' . $trackingID . '&Refresh=' . rand(10000, 99999), 'SUCCESS');
|