", $_POST["message"]);
$message = rawurlencode($msg);
$time = gmdate("l dS of F Y \a\\t h:i:s a", time()+($TIME_offset * 3600));
$operator = $ADMIN_operator;
DATABASE_query("INSERT INTO ".$DB_prefix."responses (ticketid,author,time,message) VALUES ('$tid','1','$time','$message')");
DATABASE_query("UPDATE ".$DB_prefix."tickets SET status='2', operator='$operator' WHERE id='$tid'");
$result_tid = DATABASE_query("SELECT * FROM ".$DB_prefix."tickets WHERE id='$tid'");
if($get = DATABASE_fetch($result_tid)){
$TICKET_urgency = $get["urgency"];
$TICKET_subject = $get["subject"];
$TICKET_user = $get["username"];
$TICKET_operator = $get["operator"];
$TICKET_department = $get["department"];
$TICKET_status = $get["status"];
}
$result_opname = DATABASE_query("SELECT * FROM ".$DB_prefix."operators WHERE operator='$ADMIN_operator'");
if($find = DATABASE_fetch($result_opname)){
$TICKET_opfullname = $find["firstname"]." ".$find["lastname"];
}
$result_user = DATABASE_query("SELECT * FROM ".$DB_prefix."users WHERE username='$TICKET_user'");
if($get = DATABASE_fetch($result_user)){
$firstname = $get["firstname"];
$lastname = $get["lastname"];
$email = $get["email"];
}
$company = $COMPANY_name;
$subject = $TICKET_subject;
$cemail = $COMPANY_email;
$urlmaindir = $URL_maindir;
$opfullname = $TICKET_opfullname;
$mail = "Hi, ".$firstname." ".$lastname."
".$opfullname." has replied to your trouble ticket entitled \"".$subject."\".
Please click here to login and view the response.
---------------
Thank you,
".$company."
![\"Click](\"".$URL_maindir."/lh/image_email.php\")
===============
Please do not respond to this e-mail, it was automatically generated by our help desk system";
mail("$email", "$company's Help Desk System - Trouble Ticket Response", $mail, "Content-type: text/html; charset=iso-8859-1\r\nMIME-Version: 1.0\r\nTo: \"$firstname $lastname\" <$email>\r\nFrom: \"$company's Help Desk System\" <$cemail>");
}elseif($_POST["x"] == "close"){
$tid = $_POST["tid"];
$result_t = DATABASE_query("SELECT * FROM ".$DB_prefix."tickets WHERE id='$tid'");
if($get = DATABASE_fetch($result_t)){
$TICKET_status = $get["status"];
if($TICKET_status !== "4"){
DATABASE_query("UPDATE ".$DB_prefix."tickets SET status='0' WHERE id='$tid'");
}else{
echo("You cannot close a new ticket
");
}
}
}elseif($_POST["x"] == "open"){
$tid = $_POST["tid"];
DATABASE_query("UPDATE ".$DB_prefix."tickets SET status='1' WHERE id='$tid'");
}
}
$TICKET_tid = $_GET["tid"];
$result = DATABASE_query("SELECT * FROM ".$DB_prefix."tickets WHERE id='$TICKET_tid'");
if($get = DATABASE_fetch($result)){
$TICKET_tid = $get["id"];
$TICKET_urgency = $get["urgency"];
$TICKET_subject = $get["subject"];
$TICKET_user = $get["username"];
$TICKET_operator = $get["operator"];
$TICKET_department = $get["department"];
$TICKET_status = $get["status"];
if($TICKET_status == "3"){
// Mark ticket as read
DATABASE_query("UPDATE ".$DB_prefix."tickets SET status='1' WHERE id='$TICKET_tid'");
}
if($TICKET_status == "0"){
$TICKET_status = "Closed";
}else{
$TICKET_status = "Open";
}
$result = DATABASE_query("SELECT * FROM ".$DB_prefix."users WHERE username='$TICKET_user'");
if($fetch = DATABASE_fetch($result)){
$TICKET_uname = $fetch["firstname"]." ".$fetch["lastname"];
$TICKET_uemail = $fetch["email"];
}else{
$TICKET_uname = "Unknown";
$TICKET_uemail = "Unknown";
}
if($TICKET_urgency == 1){
$TICKET_urgency = "Low";
}elseif($TICKET_urgency == 2){
$TICKET_urgency = "Medium";
}elseif($TICKET_urgency == 3){
$TICKET_urgency = "High";
}elseif($TICKET_urgency == 4){
$TICKET_urgency = "Very High";
}else{
$TICKET_urgency = "Low";
}
?>
Ticket not found");
}
}
include_once("../../inc/footer.php");
?>