PageRenderTime 25ms CodeModel.GetById 11ms RepoModel.GetById 0ms app.codeStats 1ms

/tiquit-2.5.1.1/univ.php

#
PHP | 399 lines | 335 code | 35 blank | 29 comment | 31 complexity | 9efb8088fea15ef528694cda05b7c250 MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php
    2. 

  2.  /*
    3. 

  3.    Tiquit Is Quality User Incident Tracking
    4. 

  4.    Copyright (C) 2006 Jonathan Ciesla
    5. 

  5.    
    6. 

  6.    This program is free software; you can redistribute it and/or
    7. 

  7.    modify it under the terms of the GNU General Public License
    8. 

  8.    as published by the Free Software Foundation; either version 2
    9. 

  9.    of the License, or (at your option) any later version.
    10. 

  10.    
    11. 

  11.    This program is distributed in the hope that it will be useful,
    12. 

  12.    but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14.    GNU General Public License for more details.
    15. 

  15.    
    16. 

  16.    You should have received a copy of the GNU General Public License
    17. 

  17.    along with this program; if not, write to the Free Software
    18. 

  18.    Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA
    19. 

  19.   */
    20. 

  20. require_once("config.php");
    21. 

  21. require_once("functionlib.php");
    22. 

  22. session_start();
    23. 

  23. favicon();
    24. 

  24. 

  25. $link = dbms_connect($dbhost, $dbuser, $dbpass, $dbname);
    26. 

  26. 

  27. $user_id = dbms_escape_string($_SESSION['tiquitid']);
    28. 

  28. 

  29. $query3 = "SELECT admin FROM agent where id = '$user_id';";
    30. 

  30. $result3 = dbms_query($query3);
    31. 

  31. $line3 = dbms_fetch_array($result3, "NUM");
    32. 

  32. $flag_me = $line3[0];
    33. 

  33. dbms_free_result($result3);
    34. 

  34. 

  35. authentication($flag_me, 2);
    36. 

  36.   
    37. 

  37. echo "<link rel=stylesheet href=css.php>";
    38. 

  38. echo "<title>$sitetitle</title>";
    39. 

  39. echo "<h1>$sitetitle</h1>";
    40. 

  40. 

  41. if($_POST['updatedeltheme']=="yes"){
    42. 

  42.   $deltheme = dbms_escape_string($_POST['themenumber']);
    43. 

  43. 

  44.   $query = "DELETE FROM theme WHERE number = '$deltheme';";
    45. 

  45.   $result = dbms_query($query, $link);
    46. 

  46. 

  47.  };
    48. 

  48. 

  49. if($_POST['updateaddtheme']=="yes"){
    50. 

  50.   $query = "SELECT number FROM theme ORDER BY number DESC LIMIT 1;";
    51. 

  51.   $result = dbms_query($query);
    52. 

  52.   $line = dbms_fetch_array($result, "NUM");
    53. 

  53.   $value = $line[0];
    54. 

  54.   $value++;
    55. 

  55.   dbms_free_result($result);
    56. 

  56.   $themename = dbms_escape_string($_POST['themename']);
    57. 

  57.   $back = dbms_escape_string($_POST['themeback']);
    58. 

  58.   $tabback = dbms_escape_string($_POST['themetabback']);
    59. 

  59.   $tabbord = dbms_escape_string($_POST['themetabbord']);
    60. 

  60. 

  61.   $query = "INSERT INTO theme (number, name, background, table_background, table_border) VALUES ('$value', '$themename', '$back', '$tabback', '$tabbord');";
    62. 

  62.   $result = dbms_query($query, $link);
    63. 

  63. 

  64.  };
    65. 

  65. 

  66. if($_POST['updateacttheme']=="yes"){
    67. 

  67.   $newtheme = dbms_escape_string($_POST['acttheme']);
    68. 

  68. 

  69.   $query = "UPDATE universal SET theme='$newtheme';";
    70. 

  70.   $result = dbms_query($query, $link);
    71. 

  71. 

  72.  };
    73. 

  73. 

  74. if($_POST['updateedittheme']=="yes"){
    75. 

  75.   $edittheme = dbms_escape_string($_POST['themenumber']);
    76. 

  76.   $themename = dbms_escape_string($_POST['themename']);
    77. 

  77.   $back = dbms_escape_string($_POST['themeback']);
    78. 

  78.   $tabback = dbms_escape_string($_POST['themetabback']);
    79. 

  79.   $tabbord = dbms_escape_string($_POST['themetabbord']);
    80. 

  80. 

  81.   $query = "UPDATE theme SET name='$themename',background='$back',table_background='$tabback',table_border='$tabbord' WHERE number = '$edittheme';";
    82. 

  82.   $result = dbms_query($query, $link);
    83. 

  83. 

  84.  };
    85. 

  85. 

  86. if($_POST['updateacttheme']=="yes"){
    87. 

  87.   $newtheme = dbms_escape_string($_POST['acttheme']);
    88. 

  88. 

  89.   $query = "UPDATE universal SET theme='$newtheme';";
    90. 

  90.   $result = dbms_query($query, $link);
    91. 

  91. 

  92.  };
    93. 

  93. 

  94. $optimize = $_POST['optimize'];
    95. 

  95. if($optimize=="yes"){
    96. 

  96.   if($dbtype=="my"){
    97. 

  97.     $query = "SHOW TABLES";
    98. 

  98.     $result = dbms_query($query);
    99. 

  99.     while($tables = dbms_fetch_array($result, "NUM")){
    100. 

  100.       $tab = $tables[0];
    101. 

  101.       $query = "OPTIMIZE TABLE `$tab`;";
    102. 

  102.       $result2 = dbms_query($query);
    103. 

  103.     };
    104. 

  104.     dbms_free_result($result);
    105. 

  105.   };
    106. 

  106.   if($dbtype=="pg"){
    107. 

  107.     $query = "VACUUM FULL;";
    108. 

  108.     $result = dbms_query($query);
    109. 

  109.   };
    110. 

  110. };
    111. 

  111. 

  112. $update = $_POST['update'];
    113. 

  113. if($update=="yes"){
    114. 

  114. 

  115.   $notify=dbms_escape_string($_POST['notify']);
    116. 

  116.   $address=dbms_escape_string($_POST['address']);
    117. 

  117.   $name=dbms_escape_string($_POST['name']);
    118. 

  118.   $textsize = $_POST['textsize'];
    119. 

  119.   $tabletextsize = $_POST['tabletextsize'];
    120. 

  120.   $attach=dbms_escape_string($_POST['attach']);
    121. 

  121.   $diary=dbms_escape_string($_POST['diary']);
    122. 

  122.   $user_sub=dbms_escape_string($_POST['usersub']);
    123. 

  123.   $user_search=dbms_escape_string($_POST['usersearch']);
    124. 

  124.   $user_reg=dbms_escape_string($_POST['userreg']);
    125. 

  125.   $res_text=dbms_escape_string($_POST['restext']);
    126. 

  126.   $use_res_text=dbms_escape_string($_POST['userestext']);
    127. 

  127. 

  128.   $query = "UPDATE universal SET notify='$notify',address='$address',name='$name',textsize='$textsize',tabletextsize='$tabletextsize',assign_attach='$attach',assign_diary='$diary',user_sub='$user_sub',user_search='$user_search',user_reg='$user_reg',res_text='$res_text',use_res_text='$use_res_text';";
    129. 

  129.   $result = dbms_query($query, $link);
    130. 

  130. 

  131.   echo "Configuration updated.";
    132. 

  132. };
    133. 

  133. 

  134. echo "<h2>Global Configuration</h2>";
    135. 

  135. 

  136. echo "<table border=1 align=center>";
    137. 

  137. $query = "SELECT notify,address,name,textsize,tabletextsize,theme,assign_attach,assign_diary,user_sub,user_search,user_reg,res_text,use_res_text FROM universal";
    138. 

  138. $result = dbms_query($query);
    139. 

  139. while($line = dbms_fetch_array($result, "ASSOC")){
    140. 

  140.   $active_theme = $line['theme'];
    141. 

  141.   echo "<tr>";
    142. 

  142.   echo "<form action=univ.php method=post>";
    143. 

  143.   echo "<th>Notification</th>";
    144. 

  144.   echo "<td align=center>";
    145. 

  145.   if($line['notify']=="0"){$flagzero="checked";}else{$flagzero="";};
    146. 

  146.   if($line['notify']=="1"){$flagone="checked";}else{$flagone="";};
    147. 

  147.   echo "On<input type=radio name=notify value=1 $flagone />";
    148. 

  148.   echo "Off<input type=radio name=notify value=0 $flagzero />";
    149. 

  149.   echo "</td>";
    150. 

  150.    echo "</tr><tr>";
    151. 

  151.   echo "<th>Organization name</th>";
    152. 

  152.   echo "<td align=center>";
    153. 

  153.   echo "<input type=text size=30 name=name value=\"{$line['name']}\">";
    154. 

  154.   echo "</td>";
    155. 

  155.   echo "</tr><tr>";
    156. 

  156.   echo "<th>Address</th>";
    157. 

  157.   echo "<td align=center>";
    158. 

  158.   echo "<input type=text size=30 name=address value=\"{$line['address']}\">";
    159. 

  159.   echo "</td>";
    160. 

  160.   echo "</tr><tr>";
    161. 

  161.   echo "<th>Text Size</th>";
    162. 

  162.   $sizearray = array("xx-small", "x-small", "small", "medium", "large", "x-large", "xx-large");
    163. 

  163.   echo "<td align=center>";
    164. 

  164.   echo "<select name=textsize>";
    165. 

  165.   foreach($sizearray as $size){
    166. 

  166.     if($size==$line['textsize']){$flag="selected";}else{$flag="";};
    167. 

  167.     echo "<option value=\"$size\" $flag>$size";
    168. 

  168.   };
    169. 

  169.   echo "</select>";
    170. 

  170.   echo "</td>";
    171. 

  171.   echo "</tr><tr>";
    172. 

  172.   echo "<th>Table Text</th>";
    173. 

  173.   echo "<td align=center>";
    174. 

  174.   echo "<select name=tabletextsize>";
    175. 

  175.   foreach($sizearray as $size){
    176. 

  176.     if($size==$line['tabletextsize']){$flag="selected";}else{$flag="";};
    177. 

  177.     echo "<option value=\"$size\" $flag>$size";
    178. 

  178.   };
    179. 

  179.   echo "</select>";
    180. 

  180.   echo "</td>";
    181. 

  181.   echo "</tr><tr>";
    182. 

  182.    echo "<th>Include file attachments in assignment emails</th>";
    183. 

  183.   echo "<td align=center>";
    184. 

  184.   if($line['assign_attach']=="0"){$flagzero="checked";}else{$flagzero="";};
    185. 

  185.   if($line['assign_attach']=="1"){$flagone="checked";}else{$flagone="";};
    186. 

  186.   echo "On<input type=radio name=attach value=1 $flagone />";
    187. 

  187.   echo "Off<input type=radio name=attach value=0 $flagzero />";
    188. 

  188.   echo "</td>";
    189. 

  189.   echo "</tr><tr>";
    190. 

  190.   echo "<th>Include diary entries in assignment emails</th>";
    191. 

  191.   echo "<td align=center>";
    192. 

  192.   if($line['assign_diary']=="0"){$flagzero="checked";}else{$flagzero="";};
    193. 

  193.   if($line['assign_diary']=="1"){$flagone="checked";}else{$flagone="";};
    194. 

  194.   echo "On<input type=radio name=diary value=1 $flagone />";
    195. 

  195.   echo "Off<input type=radio name=diary value=0 $flagzero />";
    196. 

  196.   echo "</td>";
    197. 

  197.   echo "</tr><tr>";
    198. 

  198.   echo "<th>Allow incident submission by users</th>";
    199. 

  199.   echo "<td align=center>";
    200. 

  200.   if($line['user_sub']=="0"){$flagzero="checked";}else{$flagzero="";};
    201. 

  201.   if($line['user_sub']=="1"){$flagone="checked";}else{$flagone="";};
    202. 

  202.   echo "On<input type=radio name=usersub value=1 $flagone />";
    203. 

  203.   echo "Off<input type=radio name=usersub value=0 $flagzero />";
    204. 

  204.   echo "</td>";
    205. 

  205.   echo "</tr><tr>";
    206. 

  206.   echo "<th>Allow incident search by users</th>";
    207. 

  207.   echo "<td align=center>";
    208. 

  208.   if($line['user_search']=="0"){$flagzero="checked";}else{$flagzero="";};
    209. 

  209.   if($line['user_search']=="1"){$flagone="checked";}else{$flagone="";};
    210. 

  210.   echo "On<input type=radio name=usersearch value=1 $flagone />";
    211. 

  211.   echo "Off<input type=radio name=usersearch value=0 $flagzero />";
    212. 

  212.   echo "</td>";
    213. 

  213.   echo "</tr><tr>";
    214. 

  214.   echo "<th>Allow registration requests by users</th>";
    215. 

  215.   echo "<td align=center>";
    216. 

  216.   if($line['user_reg']=="0"){$flagzero="checked";}else{$flagzero="";};
    217. 

  217.   if($line['user_reg']=="1"){$flagone="checked";}else{$flagone="";};
    218. 

  218.   echo "On<input type=radio name=userreg value=1 $flagone />";
    219. 

  219.   echo "Off<input type=radio name=userreg value=0 $flagzero />";
    220. 

  220.   echo "</td>";
    221. 

  221.   echo "</tr><tr>";
    222. 

  222.   echo "<th>Use custom resolution text</th>";
    223. 

  223.   echo "<td align=center>";
    224. 

  224.   if($line['use_res_text']=="0"){$flagzero="checked";}else{$flagzero="";};
    225. 

  225.   if($line['use_res_text']=="1"){$flagone="checked";}else{$flagone="";};
    226. 

  226.   echo "On<input type=radio name=userestext value=1 $flagone />";
    227. 

  227.   echo "Off<input type=radio name=userestext value=0 $flagzero />";
    228. 

  228.   echo "</td></tr>";
    229. 

  229.   echo "<tr><th colspan=2>Custom Resolution Text</th></tr>";
    230. 

  230.   echo "<tr><th colspan=2>Symbols:            &incident& = incident number </th></tr>";
    231. 

  231.   echo "<tr>";
    232. 

  232.   echo "<td align=center colspan=2>";
    233. 

  233.   echo "<textarea rows=20 cols=80 name=restext>{$line['res_text']}</textarea></td>";
    234. 

  234.   echo "</tr><tr>";
    235. 

  235.   echo "<td colspan=2 align=center>";
    236. 

  236.   echo "<input type=hidden name=update value=yes>";
    237. 

  237.   echo "<input type=submit value=Change>";
    238. 

  238.   echo "</td>";
    239. 

  239.   echo "</form>";
    240. 

  240.   echo "</tr>";
    241. 

  241. };
    242. 

  242. echo "</table>";
    243. 

  243. dbms_free_result($result);
    244. 

  244. 

  245. 

  246. //theme table
    247. 

  247. echo "<table border=1 align=center>";
    248. 

  248. echo "<CAPTION>Theme Management</CAPTION>";
    249. 

  249. 

  250. $query = "SELECT number,name,background,table_background,table_border FROM theme ORDER BY number ASC;";
    251. 

  251. $result = dbms_query($query);
    252. 

  252. 

  253. //select active theme
    254. 

  254. echo "<tr>";
    255. 

  255. echo "<td>Active Theme:</td>";
    256. 

  256. echo "<td align=center colspan=2>";
    257. 

  257. echo "<form action=univ.php method=post>";
    258. 

  258. echo "<select name=acttheme>";
    259. 

  259. while($theme = dbms_fetch_array($result, "ASSOC")){
    260. 

  260.   if($theme['number']==$active_theme){$flag="selected";}else{$flag="";};
    261. 

  261.   echo "<option value=\"{$theme['number']}\" $flag style=\"background-color: #{$theme['table_background']}\">{$theme['name']}";
    262. 

  262.  };
    263. 

  263. echo "</select>";
    264. 

  264. echo "</td><td colspan=6 align=center>";
    265. 

  265. echo "<input type=hidden name=updateacttheme value=yes>";
    266. 

  266. echo "<input type=submit value=\"Submit\">";
    267. 

  267. echo "</form>";
    268. 

  268. echo "</td>";
    269. 

  269. echo "</tr>";
    270. 

  270. //edit themes
    271. 

  271. dbms_result_seek($result, 0);
    272. 

  272. while($theme = dbms_fetch_array($result, "ASSOC")){
    273. 

  273.   echo "<tr>";
    274. 

  274.   echo "<form action=univ.php method=post>";
    275. 

  275.   echo "<input type=hidden name=themenumber value=\"{$theme['number']}\">";
    276. 

  276.   echo "<td>";
    277. 

  277.   echo "<input type=text name=themename value=\"{$theme['name']}\">";
    278. 

  278.   echo "</td>";
    279. 

  279.   //background
    280. 

  280.   echo "<td>";
    281. 

  281.   echo "Background:";
    282. 

  282.   echo "</td>";
    283. 

  283.   echo "<td>";
    284. 

  284.   echo "<select name=themeback style=\"background-color: #{$theme['background']}\">";
    285. 

  285.   foreach($html_colors as $color){
    286. 

  286.     if($color==$theme['background']){$flag="selected";}else{$flag="";};
    287. 

  287.     echo "<option value=\"$color\" $flag style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    288. 

  288.   };
    289. 

  289.   echo "</select>";
    290. 

  290.   echo "</td>";
    291. 

  291.   //table background
    292. 

  292.   echo "<td>";
    293. 

  293.   echo "Table Background:";
    294. 

  294.   echo "</td>";
    295. 

  295.   echo "<td>";
    296. 

  296.   echo "<select name=themetabback style=\"background-color: #{$theme['table_background']}\">";
    297. 

  297.   foreach($html_colors as $color){
    298. 

  298.     if($color==$theme['table_background']){$flag="selected";}else{$flag="";};
    299. 

  299.     echo "<option value=\"$color\" $flag style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    300. 

  300.   };
    301. 

  301.   echo "</select>";
    302. 

  302.   echo "</td>";
    303. 

  303.   //table border
    304. 

  304.   echo "<td>";
    305. 

  305.   echo "Table Border:";
    306. 

  306.   echo "</td>";
    307. 

  307.   echo "<td>";
    308. 

  308.   echo "<select name=themetabbord style=\"background-color: #{$theme['table_border']}\">";
    309. 

  309.   foreach($html_colors as $color){
    310. 

  310.     if($color==$theme['table_border']){$flag="selected";}else{$flag="";};
    311. 

  311.     echo "<option value=\"$color\" $flag style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    312. 

  312.   };
    313. 

  313.   echo "</select>";
    314. 

  314.   echo "</td>";
    315. 

  315.   echo "<td>";
    316. 

  316.   echo "<input type=hidden name=updateedittheme value=yes>";
    317. 

  317.   echo "<input type=submit value=\"Submit\">";
    318. 

  318.   echo "</form>";
    319. 

  319.   echo "</td>";
    320. 

  320.   //remove theme
    321. 

  321.   echo "<form action=univ.php method=post>";
    322. 

  322.   echo "<td valign=center>";
    323. 

  323.   echo "<input type=hidden name=themenumber value=\"{$theme['number']}\">";
    324. 

  324.   echo "<input type=hidden name=updatedeltheme value=yes>";
    325. 

  325.   echo "<input type=submit value=\"Delete\">";
    326. 

  326.   echo "</td>";
    327. 

  327.   echo "</form>";
    328. 

  328.   echo "</tr>";
    329. 

  329.  };
    330. 

  330. dbms_free_result($result);
    331. 

  331. //form for new theme
    332. 

  332. echo "<tr>";
    333. 

  333. echo "<form action=univ.php method=post>";
    334. 

  334. echo "<td>";
    335. 

  335. echo "<input type=text name=themename>";
    336. 

  336. echo "</td>";
    337. 

  337. //background
    338. 

  338. echo "<td>";
    339. 

  339. echo "Background:";
    340. 

  340. echo "</td>";
    341. 

  341. echo "<td>";
    342. 

  342. echo "<select name=themeback>";
    343. 

  343. foreach($html_colors as $color){
    344. 

  344.   echo "<option value=\"$color\" style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    345. 

  345. };
    346. 

  346. echo "</select>";
    347. 

  347. echo "</td>";
    348. 

  348. //table background
    349. 

  349. echo "<td>";
    350. 

  350. echo "Table Background:";
    351. 

  351. echo "</td>";
    352. 

  352. echo "<td>";
    353. 

  353. echo "<select name=themetabback>";
    354. 

  354. foreach($html_colors as $color){
    355. 

  355.   echo "<option value=\"$color\" style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    356. 

  356. };
    357. 

  357. echo "</select>";
    358. 

  358. echo "</td>";
    359. 

  359. //table border
    360. 

  360. echo "<td>";
    361. 

  361. echo "Table Border:";
    362. 

  362. echo "</td>";
    363. 

  363. echo "<td>";
    364. 

  364. echo "<select name=themetabbord>";
    365. 

  365. foreach($html_colors as $color){
    366. 

  366.   echo "<option value=\"$color\" style=\"background-color: #$color\" title=\"$color\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
    367. 

  367. };
    368. 

  368. echo "</select>";
    369. 

  369. echo "</td>";
    370. 

  370. echo "<td>";
    371. 

  371. echo "<input type=hidden name=updateaddtheme value=yes>";
    372. 

  372. echo "<input type=submit value=\"Add\">";
    373. 

  373. echo "</form>";
    374. 

  374. echo "</td>";
    375. 

  375. echo "</tr>";
    376. 

  376. echo "</table>";
    377. 

  377. 

  378. 

  379. echo "<br />";
    380. 

  380. echo "<form action=univ.php method=post>";
    381. 

  381. echo "<input type=hidden name=optimize value=yes>";
    382. 

  382. if($dbtype=="my"){
    383. 

  383. echo "<input type=submit value=\"Optimize Database\">";
    384. 

  384.  };
    385. 

  385. if($dbtype=="pg"){
    386. 

  386. echo "<input type=submit value=\"Vacuum(FULL) Database\">";
    387. 

  387.  };
    388. 

  388. echo "</form>";
    389. 

  389. echo "<br />";
    390. 

  390. 

  391. echo "<form action=upgrade.php method=post>";
    392. 

  392. echo "<input type=submit value=\"Check/Upgrade DB\" />";
    393. 

  393. echo "</form>";
    394. 

  394. echo "<br />";
    395. 

  395. 

  396. echo "<form action=main.php method=post>";
    397. 

  397. echo "<input type=submit value=Back />";
    398. 

  398. echo "</form>";
    399. 

  399. ?>
    400.