| Server IP : 184.154.167.98 / Your IP : 3.145.44.8 Web Server : Apache System : Linux pink.dnsnetservice.com 4.18.0-553.22.1.lve.1.el8.x86_64 #1 SMP Tue Oct 8 15:52:54 UTC 2024 x86_64 User : puertode ( 1767) PHP Version : 7.2.34 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /home/puertode/www/ |
Upload File : |
<?php
/**
*
* This file is part of HESK - PHP Help Desk Software.
*
* (c) Copyright Klemen Stirn. All rights reserved.
* https://www.hesk.com
*
* For the full copyright and license agreement information visit
* https://www.hesk.com/eula.php
*
*/
define('IN_SCRIPT',1);
define('HESK_PATH','./');
// Get all the required files and functions
require(HESK_PATH . 'hesk_settings.inc.php');
define('TEMPLATE_PATH', HESK_PATH . "theme/{$hesk_settings['site_theme']}/");
require(HESK_PATH . 'inc/common.inc.php');
// Are we in maintenance mode?
hesk_check_maintenance();
// Are we in "Knowledgebase only" mode?
hesk_check_kb_only();
// What should we do?
$action = hesk_REQUEST('a');
switch ($action)
{
case 'add':
hesk_session_start();
print_add_ticket();
break;
case 'forgot_tid':
hesk_session_start();
forgot_tid();
break;
default:
print_start();
}
// Print footer
exit();
/*** START FUNCTIONS ***/
function print_select_category($number_of_categories)
{
global $hesk_settings, $hesklang;
// Print header
$hesk_settings['tmp_title'] = $hesk_settings['hesk_title'] . ' - ' . $hesklang['select_category'];
// A categoy needs to be selected
if (isset($_GET['category']) && empty($_GET['category']))
{
hesk_process_messages($hesklang['sel_app_cat'],'NOREDIRECT','NOTICE');
}
/* This will handle error, success and notice messages */
$messages = hesk_get_messages();
$hesk_settings['render_template'](TEMPLATE_PATH . 'customer/create-ticket/category-select.php', array('messages' => $messages));
return true;
} // END print_select_category()
function print_add_ticket()
{
global $hesk_settings, $hesklang;
// Connect to the database
hesk_load_database_functions();
hesk_dbConnect();
// Load custom fields
require_once(HESK_PATH . 'inc/custom_fields.inc.php');
// Load calendar JS and CSS
define('CALENDAR',1);
// Auto-focus first empty or error field
define('AUTOFOCUS', true);
// Pre-populate fields
// Customer name
if ( isset($_REQUEST['name']) )
{
$_SESSION['c_name'] = $_REQUEST['name'];
}
// Customer email address
if ( isset($_REQUEST['email']) )
{
$_SESSION['c_email'] = $_REQUEST['email'];
$_SESSION['c_email2'] = $_REQUEST['email'];
}
// Priority
if ( isset($_REQUEST['priority']) )
{
$_SESSION['c_priority'] = intval($_REQUEST['priority']);
}
// Subject
if ( isset($_REQUEST['subject']) )
{
$_SESSION['c_subject'] = $_REQUEST['subject'];
}
// Message
if ( isset($_REQUEST['message']) )
{
$_SESSION['c_message'] = $_REQUEST['message'];
}
// Custom fields
foreach ($hesk_settings['custom_fields'] as $k=>$v)
{
if ($v['use']==1 && isset($_REQUEST[$k]) )
{
$_SESSION['c_'.$k] = $_REQUEST[$k];
}
}
// Varibles for coloring the fields in case of errors
if ( ! isset($_SESSION['iserror']))
{
$_SESSION['iserror'] = array();
}
if ( ! isset($_SESSION['isnotice']))
{
$_SESSION['isnotice'] = array();
}
hesk_cleanSessionVars('already_submitted');
// Tell header to load reCaptcha API if needed
if ($hesk_settings['recaptcha_use'])
{
define('RECAPTCHA',1);
}
// Get categories
$hesk_settings['categories'] = array();
$res = hesk_dbQuery("SELECT `id`, `name` FROM `".hesk_dbEscape($hesk_settings['db_pfix'])."categories` WHERE `type`='0' ORDER BY `cat_order` ASC");
while ($row=hesk_dbFetchAssoc($res))
{
$hesk_settings['categories'][$row['id']] = $row['name'];
}
$number_of_categories = count($hesk_settings['categories']);
if ($number_of_categories == 0)
{
$category = 1;
}
elseif ($number_of_categories == 1)
{
$category = current(array_keys($hesk_settings['categories']));
}
else
{
$category = isset($_GET['catid']) ? hesk_REQUEST('catid'): hesk_REQUEST('category');
// Force the customer to select a category?
if (! isset($hesk_settings['categories'][$category]) )
{
return print_select_category($number_of_categories);
}
}
// Print header
$hesk_settings['tmp_title'] = $hesk_settings['hesk_title'] . ' - ' . $hesklang['submit_ticket'];
$messages = hesk_get_messages();
$visible_custom_fields_before_message = array();
$visible_custom_fields_after_message = array();
$custom_fields_before_message = array();
$custom_fields_after_message = array();
foreach ($hesk_settings['custom_fields'] as $k=>$v) {
if ($v['use'] == 1 && hesk_is_custom_field_in_category($k, $category)) {
if ($v['type'] == 'checkbox') {
$k_value = array();
if (isset($_SESSION["c_$k"]) && is_array($_SESSION["c_$k"])) {
foreach ($_SESSION["c_$k"] as $myCB) {
$k_value[] = stripslashes(hesk_input($myCB));
}
}
} elseif (isset($_SESSION["c_$k"])) {
$k_value = stripslashes(hesk_input($_SESSION["c_$k"]));
} else {
$k_value = '';
}
switch ($v['type']) {
/* Radio box */
case 'radio':
$v['iserror'] = in_array($k, $_SESSION['iserror']);
$v['name'] = $k;
$v['value']['options'] = array();
foreach ($v['value']['radio_options'] as $option) {
if (strlen($k_value) == 0) {
$k_value = $option;
$checked = empty($v['value']['no_default']);
} elseif ($k_value == $option) {
$k_value = $option;
$checked = true;
} else {
$checked = false;
}
$v['value']['options'][] = array(
'value' => $option,
'selected' => $checked
);
}
if ($v['place'] == 0) {
$visible_custom_fields_before_message[] = $v;
$custom_fields_before_message[] = $v;
} else {
$visible_custom_fields_after_message[] = $v;
$custom_fields_after_message[] = $v;
}
break;
/* Select drop-down box */
case 'select':
$v['iserror'] = in_array($k, $_SESSION['iserror']);
$v['name'] = $k;
$v['value']['options'] = array();
foreach ($v['value']['select_options'] as $option) {
if ($k_value == $option) {
$k_value = $option;
$selected = true;
} else {
$selected = false;
}
$v['value']['options'][] = array(
'value' => $option,
'selected' => $selected
);
}
if ($v['place'] == 0) {
$visible_custom_fields_before_message[] = $v;
$custom_fields_before_message[] = $v;
} else {
$visible_custom_fields_after_message[] = $v;
$custom_fields_after_message[] = $v;
}
break;
/* Checkbox */
case 'checkbox':
$v['iserror'] = in_array($k, $_SESSION['iserror']);
$v['name'] = $k;
$v['value']['options'] = array();
foreach ($v['value']['checkbox_options'] as $option) {
if (in_array($option, $k_value)) {
$checked = 'checked';
} else {
$checked = '';
}
$v['value']['options'][] = array(
'value' => $option,
'selected' => $checked
);
}
if ($v['place'] == 0) {
$visible_custom_fields_before_message[] = $v;
$custom_fields_before_message[] = $v;
} else {
$visible_custom_fields_after_message[] = $v;
$custom_fields_after_message[] = $v;
}
break;
/* Large text box */
// Date
case 'textarea':
case 'date':
case 'email':
$v['original_value'] = $k_value;
$v['iserror'] = in_array($k, $_SESSION['iserror']);
$v['name'] = $k;
if ($v['place'] == 0) {
$visible_custom_fields_before_message[] = $v;
$custom_fields_before_message[] = $v;
} else {
$visible_custom_fields_after_message[] = $v;
$custom_fields_after_message[] = $v;
}
break;
// Hidden
case 'hidden':
if (strlen($k_value) != 0 || isset($_SESSION["c_$k"])) {
$v['value']['default_value'] = $k_value;
}
$v['name'] = $k;
if ($v['place'] == 0) {
$custom_fields_before_message[] = $v;
} else {
$custom_fields_after_message[] = $v;
}
break;
/* Default text input */
default:
if (strlen($k_value) != 0 || isset($_SESSION["c_$k"])) {
$v['value']['default_value'] = $k_value;
}
$v['iserror'] = in_array($k, $_SESSION['iserror']);
$v['name'] = $k;
if ($v['place'] == 0) {
$visible_custom_fields_before_message[] = $v;
$custom_fields_before_message[] = $v;
} else {
$visible_custom_fields_after_message[] = $v;
$custom_fields_after_message[] = $v;
}
}
}
}
$hesk_settings['render_template'](TEMPLATE_PATH . 'customer/create-ticket/create-ticket.php', array(
'categoryId' => $category,
'categoryName' => $hesk_settings['categories'][$category],
'messages' => $messages,
'visibleCustomFieldsBeforeMessage' => $visible_custom_fields_before_message,
'visibleCustomFieldsAfterMessage' => $visible_custom_fields_after_message,
'customFieldsBeforeMessage' => $custom_fields_before_message,
'customFieldsAfterMessage' => $custom_fields_after_message
));
hesk_cleanSessionVars('iserror');
hesk_cleanSessionVars('isnotice');
return true;
} // End print_add_ticket()
function print_start()
{
global $hesk_settings, $hesklang;
// Connect to database
hesk_load_database_functions();
hesk_dbConnect();
// Include KB functionality only if we have any public articles
$top_articles = array();
$latest_articles = array();
has_public_kb();
if ($hesk_settings['kb_enable'])
{
require(HESK_PATH . 'inc/knowledgebase_functions.inc.php');
/* Get list of top articles */
$top_articles = hesk_kbTopArticles($hesk_settings['kb_index_popart']);
/* Get list of latest articles */
$latest_articles = hesk_kbLatestArticles($hesk_settings['kb_index_latest']);
}
// Service Messages
$res = hesk_dbQuery('SELECT `title`, `message`, `style` FROM `'.hesk_dbEscape($hesk_settings['db_pfix'])."service_messages` WHERE `type`='0' AND (`language` IS NULL OR `language` LIKE '".hesk_dbEscape($hesk_settings['language'])."') ORDER BY `order` ASC");
$service_messages = array();
while ($sm=hesk_dbFetchAssoc($res))
{
$service_messages[] = $sm;
}
$hesk_settings['render_template'](TEMPLATE_PATH . '/customer/index.php', array(
'top_articles' => $top_articles,
'latest_articles' => $latest_articles,
'service_messages' => $service_messages
));
} // End print_start()
function forgot_tid()
{
global $hesk_settings, $hesklang;
require(HESK_PATH . 'inc/email_functions.inc.php');
$email = hesk_emailCleanup( hesk_validateEmail( hesk_POST('email'), 'ERR' ,0) ) or hesk_process_messages($hesklang['enter_valid_email'],'ticket.php?remind=1');
if ( isset($_POST['open_only']) )
{
$hesk_settings['open_only'] = $_POST['open_only'] == 1 ? 1 : 0;
}
/* Get ticket(s) from database */
hesk_load_database_functions();
hesk_dbConnect();
// Get tickets from the database
$res = hesk_dbQuery('SELECT * FROM `'.hesk_dbEscape($hesk_settings['db_pfix']).'tickets` FORCE KEY (`statuses`) WHERE ' . ($hesk_settings['open_only'] ? "`status` IN ('0','1','2','4','5') AND " : '') . ' ' . hesk_dbFormatEmail($email) . ' ORDER BY `status` ASC, `lastchange` DESC ');
$num = hesk_dbNumRows($res);
if ($num < 1)
{
if ($hesk_settings['open_only'])
{
hesk_process_messages($hesklang['noopen'],'ticket.php?remind=1&e='.rawurlencode($email));
}
else
{
hesk_process_messages($hesklang['tid_not_found'],'ticket.php?remind=1&e='.rawurlencode($email));
}
}
$tid_list = '';
$name = '';
$email_param = $hesk_settings['email_view_ticket'] ? '&e='.rawurlencode($email) : '';
while ($my_ticket=hesk_dbFetchAssoc($res))
{
$name = $name ? $name : hesk_msgToPlain($my_ticket['name'], 1, 0);
$tid_list .= "
$hesklang[trackID]: " . $my_ticket['trackid'] . "
$hesklang[subject]: " . hesk_msgToPlain($my_ticket['subject'], 1, 0) . "
$hesklang[status]: " . hesk_get_status_name($my_ticket['status']) . "
$hesk_settings[hesk_url]/ticket.php?track={$my_ticket['trackid']}{$email_param}
";
}
/* Get e-mail message for customer */
$msg = hesk_getEmailMessage('forgot_ticket_id','',0,0,1);
$msg = str_replace('%%NAME%%', $name, $msg);
$msg = str_replace('%%NUM%%', $num, $msg);
$msg = str_replace('%%LIST_TICKETS%%', $tid_list, $msg);
$msg = str_replace('%%SITE_TITLE%%', hesk_msgToPlain($hesk_settings['site_title'], 1), $msg);
$msg = str_replace('%%SITE_URL%%', $hesk_settings['site_url'], $msg);
$subject = hesk_getEmailSubject('forgot_ticket_id');
/* Send e-mail */
hesk_mail($email, $subject, $msg);
/* Show success message */
$tmp = '<b>'.$hesklang['tid_sent'].'!</b>';
$tmp .= '<br /> <br />'.$hesklang['tid_sent2'].'.';
$tmp .= '<br /> <br />'.$hesklang['check_spambox'];
hesk_process_messages($tmp,'ticket.php?e='.$email,'SUCCESS');
exit();
} // End forgot_tid()
function has_public_kb($use_cache=1)
{
global $hesk_settings;
// Return if KB is disabled
if ( ! $hesk_settings['kb_enable'])
{
return 0;
}
// Do we have a cached version available
$cache_dir = $hesk_settings['cache_dir'].'/';
$cache_file = $cache_dir . 'kb.cache.php';
if ($use_cache && file_exists($cache_file))
{
require($cache_file);
return $hesk_settings['kb_enable'];
}
// Make sure we have database connection
hesk_load_database_functions();
hesk_dbConnect();
// Do we have any public articles at all?
$res = hesk_dbQuery("SELECT `t1`.`id` FROM `".hesk_dbEscape($hesk_settings['db_pfix'])."kb_articles` AS `t1`
LEFT JOIN `".hesk_dbEscape($hesk_settings['db_pfix'])."kb_categories` AS `t2` ON `t1`.`catid` = `t2`.`id`
WHERE `t1`.`type`='0' AND `t2`.`type`='0' LIMIT 1");
// If no public articles, disable the KB functionality
if (hesk_dbNumRows($res) < 1)
{
$hesk_settings['kb_enable'] = 0;
}
// Try to cache results
if ($use_cache && (is_dir($cache_dir) || ( @mkdir($cache_dir, 0777) && is_writable($cache_dir) ) ) )
{
// Is there an index.htm file?
if ( ! file_exists($cache_dir.'index.htm'))
{
@file_put_contents($cache_dir.'index.htm', '');
}
// Write data
@file_put_contents($cache_file, '<?php if (!defined(\'IN_SCRIPT\')) {die();} $hesk_settings[\'kb_enable\']=' . $hesk_settings['kb_enable'] . ';' );
}
return $hesk_settings['kb_enable'];
} // End has_public_kb()