archive
/
utd-control-panel
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Unsupported scripts and control panel web app for a hosting company
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
Tree: 415764575f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '415764575f'
${ noResults }
utd-control-panel/www/doticketreply.php

doticketreply.php 2.5KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. <?PHP

  2. 

  3.  require_once('lib/account.php');

  4.  require_once('lib/dashboard.php');

  5.  require_once('lib/database.php');

  6. 

  7.  if (get_magic_quotes_gpc() == 1) {

  8.   foreach ($_POST as $k => $v) { $_POST[$k] = stripslashes($v); }

  9.  }

  10. 

  11.  if (isset($_POST['message']) && isset($_POST['status']) && isset($_POST['thread'])) {

  12.   if (USER == 'demo') {

  13.    define('MESSAGE','Sorry. The demo account can\'t reply to tickets.');

  14.   } elseif (!preg_match('/^[0-9]+$/', $_POST['thread'])) {

  15.    define('MESSAGE', 'Invalid ticket thread.');

  16.   } else {

  17. 

  18.    $sql = 'SELECT user_id, ticket_status, ticket_title FROM tickets WHERE ticket_id = '.$_POST['thread'];

  19.    $res = mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  20.    $row = mysql_fetch_array($res);

  21.    define('TTITLE', $row['ticket_title']);

  22.    if ((UID != $row[0]) && (!defined('ADMIN'))) {

  23.     define('MESSAGE', 'You don\'t have access to reply to that ticket.');

  24.    } else {

  25. 

  26.     $opts = array(); $opts[($row[1])] = true;

  27.     switch ($row[1]) {

  28.      case 'new': case 'reopened':

  29.       $opts['closed'] = true;

  30.       if (defined('ADMIN')) { $opts['assigned'] = true; }

  31.      break;

  32.      case 'assigned':

  33.       $opts['closed'] = true;

  34.       break;

  35.      case 'closed':

  36.       $opts['reopened'] = true;

  37.       break;

  38.     }

  39.     

  40.     if (!isset($opts[($_POST['status'])])) {

  41.      define('MESSAGE', 'Invalid/unknown status');

  42.     } else {

  43.  

  44.      $sql  = 'INSERT INTO tickets (user_id, ticket_title, ticket_body, ';

  45.      $sql .= 'ticket_time, ticket_status, ticket_thread) VALUES ('.UID.', \'\', ';

  46.      $sql .= '\''.m($_POST['message']).'\', '.time().', \'reply\', ';

  47.      $sql .= $_POST['thread'].')';

  48.      mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  49. 

  50.      if (file_exists('/home/utd/common/ticketmail.php')) {

  51.       require_once('/home/utd/common/ticketmail.php');

  52.       ticketmail(mysql_insert_id());

  53.       logger::log('Replied to ticket "'.TTITLE.'"', logger::normal);

  54.      }

  55. 

  56.      $sql  = 'UPDATE tickets SET ticket_status = \''.$_POST['status'].'\' WHERE ticket_id = '.$_POST['thread'];

  57.      mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  58. 

  59.      header('Location: '.CP_PATH.'viewticket/'.$_POST['thread']);

  60.      die;

  61.     }

  62.    }

  63.   }

  64.  } else {

  65.   define('MESSAGE', 'No ticket data submitted');	 

  66.  }

  67.  

  68.  define('TITLE', 'Error');

  69.  

  70.  addDashboardItem('Useful links', 'Support center', 'support');

  71.  addDashboardItem('Useful links', 'Raise a new ticket', 'tickets');

  72.  

  73.  addDashboardItem('Frequently asked questions', 'Can I file support requests without using the control panel?', 'support/005'); 

  74.  

  75.  require_once('lib/header.php');

  76.  require_once('lib/footer.php');

  77. 

  78. ?>