de/de5/ticket_2view_8php_source.html

<?php

/* Copyright (C) 2013-2016  Jean-François FERRY     <hello@librethic.io>

 * Copyright (C) 2018-2024  Frédéric France         <frederic.france@free.fr>

 * Copyright (C) 2023   Benjamin Falière    <benjamin.faliere@altairis.fr>

 * Copyright (C) 2025   MDW           <mdeweerd@users.noreply.github.com>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


if (!defined('NOREQUIREMENU')) {

  define('NOREQUIREMENU', '1');

}

// If there is no need to load and show top and left menu

if (!defined("NOLOGIN")) {

  define("NOLOGIN", '1');

}

if (!defined('NOIPCHECK')) {

  define('NOIPCHECK', '1'); // Do not check IP defined into conf $dolibarr_main_restrict_ip

}

if (!defined('NOBROWSERNOTIF')) {

  define('NOBROWSERNOTIF', '1');

}

// If this page is public (can be called outside logged session)


// For MultiCompany module.

// Do not use GETPOST here, function is not defined and define must be done before including main.inc.php

// Because 2 entities can have the same ref.

$entity = (!empty($_GET['entity']) ? (int) $_GET['entity'] : (!empty($_POST['entity']) ? (int) $_POST['entity'] : 1));

if (is_numeric($entity)) {

  define("DOLENTITY", $entity);

}


// Load Dolibarr environment

require '../../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/ticket/class/actions_ticket.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/class/html.formticket.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/class/CMailFile.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/ticket.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/security.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/company.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/payments.lib.php';


// Load translation files required by the page

$langs->loadLangs(array("companies", "other", "ticket"));


// Get parameters

$action   = GETPOST('action', 'aZ09');

$cancel = GETPOST('cancel');


$track_id = GETPOST('track_id', 'alpha');

$email    = GETPOST('email', 'email');

$suffix = "";


if (GETPOST('btn_view_ticket')) {

  unset($_SESSION['email_customer']);

}

if (isset($_SESSION['email_customer'])) {

  $email = $_SESSION['email_customer'];

}


$object = new ActionsTicket($db);


if (!isModEnabled('ticket')) {

  httponly_accessforbidden('Module Ticket not enabled');

}


/*

 * Actions

 */


if ($cancel) {

  $backtopage = getDolGlobalString('TICKET_URL_PUBLIC_INTERFACE', DOL_URL_ROOT.'/public/ticket/');


  if (!empty($backtopage)) {

    header("Location: ".$backtopage);

    exit;

  }

  $action = 'view_ticket';

}


$display_ticket = false;

if (in_array($action, array("view_ticket", "presend", "close", "confirm_public_close", "add_message", "add_contact"))) {  // Test on permission not required here. Done later by using the $track_id + check email in session

  $error = 0;

  if (!strlen($track_id)) {

    $error++;

    array_push($object->errors, $langs->trans("ErrorFieldRequired", $langs->transnoentities("TicketTrackId")));

    $action = '';

  }

  if (!strlen($email)) {

    $error++;

    array_push($object->errors, $langs->trans("ErrorFieldRequired", $langs->transnoentities("Email")));

    $action = '';

  } else {

    if (!isValidEmail($email)) {

      $error++;

      array_push($object->errors, $langs->trans("ErrorEmailInvalid"));

      $action = '';

    }

  }


  if (!$error) {

    $ret = $object->fetch(0, '', $track_id);

    if ($ret && $object->dao->id > 0) {

      // Check if emails provided is the one of author

      $emailofticket = CMailFile::getValidAddress($object->dao->origin_email, 2);

      if (strtolower($emailofticket) == strtolower($email)) {

        $display_ticket = true;

        $_SESSION['email_customer'] = $email;

      } else {

        // Check if emails provided is inside list of contacts

        $contacts = $object->dao->liste_contact(-1, 'external');

        foreach ($contacts as $contact) {

          if (strtolower($contact['email']) == strtolower($email)) {

            $display_ticket = true;

            $_SESSION['email_customer'] = $email;

            break;

          } else {

            $display_ticket = false;

          }

        }

      }

      // Check email of thirdparty of ticket

      if ($object->dao->fk_soc > 0 || $object->dao->socid > 0) {

        $object->dao->fetch_thirdparty();

        if ($email == $object->dao->thirdparty->email) {

          $display_ticket = true;

          $_SESSION['email_customer'] = $email;

        }

      }

      // Check if email is email of creator

      if ($object->dao->fk_user_create > 0) {

        $tmpuser = new User($db);

        $tmpuser->fetch($object->dao->fk_user_create);

        if (strtolower($email) == strtolower($tmpuser->email)) {

          $display_ticket = true;

          $_SESSION['email_customer'] = $email;

        }

      }

      // Check if email is email of creator

      if ($object->dao->fk_user_assign > 0 && $object->dao->fk_user_assign != $object->dao->fk_user_create) {

        $tmpuser = new User($db);

        $tmpuser->fetch($object->dao->fk_user_assign);

        if (strtolower($email) == strtolower($tmpuser->email)) {

          $display_ticket = true;

          $_SESSION['email_customer'] = $email;

        }

      }

    } else {

      $error++;

      array_push($object->errors, $langs->trans("ErrorTicketNotFound", $track_id));

      $action = '';

    }

  }


  if (!$error && $action == 'confirm_public_close' && $display_ticket) {  // Test on permission already done

    if ($object->dao->close($user)) {

      setEventMessages($langs->trans('TicketMarkedAsClosed'), null, 'mesgs');


      $url = 'view.php?action=view_ticket&track_id='.GETPOST('track_id', 'alpha').(!empty($entity) && isModEnabled('multicompany') ? '&entity='.$entity : '').'&token='.newToken();

      header("Location: ".$url);

      exit;

    } else {

      $action = '';

      setEventMessages($object->error, $object->errors, 'errors');

    }

  }


  if (!$error && $action == "add_message" && $display_ticket && GETPOSTISSET('btn_add_message')) {  // Test on permission already done

    $ret = $object->dao->newMessage($user, $action, 0, 1);


    if (!$error) {

      $action = 'view_ticket';

    }

  }


  // Add a new external contributor to a ticket

  if (!$error && $action == "add_contact" && $display_ticket && GETPOSTISSET('btn_add_contact')) {  // Test on permission already done

    $ret = $object->dao->add_contact(GETPOSTINT('contactid'), 'CONTRIBUTOR');


    if (!$error) {

      $action = 'view_ticket';

    }

  }


  if ($error || !empty($object->errors)) {

    setEventMessages($object->error, $object->errors, 'errors');

    if ($action == "add_message") {   // Test on permission not required here

      $action = 'presend';

    } else {

      $action = '';

    }

  }

}


// Actions to send emails (for ticket, we need to manage the addfile and removefile only)

$triggersendname = 'TICKET_SENTBYMAIL';

$paramname = 'id';

$autocopy = 'MAIN_MAIL_AUTOCOPY_TICKET_TO'; // used to know the automatic BCC to add

if (!empty($object->dao->id)) {

  $trackid = 'tic'.$object->dao->id;

}

include DOL_DOCUMENT_ROOT.'/core/actions_sendmails.inc.php';


/*

 * View

 */


$form = new Form($db);

$formticket = new FormTicket($db);


// Initialize a technical object to manage hooks of page. Note that conf->hooks_modules contains an array of hook context

$hookmanager->initHooks(array('ticketpublicview', 'globalcard'));


if (!getDolGlobalString('TICKET_ENABLE_PUBLIC_INTERFACE')) {

  print '<div class="error">'.$langs->trans('TicketPublicInterfaceForbidden').'</div>';

  $db->close();

  exit();

}


$arrayofjs = array();

$arrayofcss = array(getDolGlobalString('TICKET_URL_PUBLIC_INTERFACE', '/public/ticket/').'css/styles.css.php');


llxHeaderTicket($langs->trans("Tickets"), "", 0, 0, $arrayofjs, $arrayofcss);


if ($action == "view_ticket" || $action == "presend" || $action == "close" || $action == "confirm_public_close") {

  if ($display_ticket) {

    print '<!-- public view ticket -->';

    print '<div class="ticketpublicarea ticketlargemargin">';


    // Confirmation close

    if ($action == 'close') {

      print $form->formconfirm($_SERVER["PHP_SELF"]."?track_id=".$track_id.(!empty($entity) && isModEnabled('multicompany') ? '&entity='.$entity : ''), $langs->trans("CloseATicket"), $langs->trans("ConfirmCloseAticket"), "confirm_public_close", '', '', 1);

    }


    print '<div id="form_view_ticket" class="margintoponly">';


    print '<table class="ticketpublictable centpercent tableforfield">';


    // Ref - Tracking ID

    print '<tr><td class="titlefield">'.$langs->trans("Ref").' / '.$langs->trans("TicketTrackId").'</td><td>';

    print img_picto('', 'ticket', 'class="pictofixedwidth"');

    print dolPrintHTML($object->dao->ref);

    print '<span class="opacitylow"> &nbsp; / &nbsp; '.dolPrintHTML($object->dao->track_id).'</span>';

    print '</td></tr>';


    // Subject

    print '<tr><td>'.$langs->trans("Subject").'</td><td>';

    print '<span class="bold large">';

    print dol_escape_htmltag($object->dao->subject);

    print '</span>';

    print '</td></tr>';


    // Statut

    print '<tr><td>'.$langs->trans("Status").'</td><td>';

    print $object->dao->getLibStatut(2);

    print '</td></tr>';


    // Type

    print '<tr><td>'.$langs->trans("Type").'</td><td>';

    print dol_escape_htmltag($object->dao->type_label);

    print '</td></tr>';


    // Category

    print '<tr><td>'.$langs->trans("Category").'</td><td>';

    if ($object->dao->category_label) {

      print img_picto('', 'category', 'class="pictofixedwidth"');

      print dol_escape_htmltag($object->dao->category_label);

    }

    print '</td></tr>';


    // Severity

    print '<tr><td>'.$langs->trans("Severity").'</td><td>';

    print dol_escape_htmltag($object->dao->severity_label);

    print '</td></tr>';


    // Creation date

    print '<tr><td>'.$langs->trans("DateCreation").'</td><td>';

    print img_picto('', 'calendar', 'class="pictofixedwidth"');

    print dol_print_date($object->dao->datec, 'dayhour');

    print '</td></tr>';


    // Author

    print '<tr><td>'.$langs->trans("Author").'</td><td>';

    if ($object->dao->fk_user_create > 0) {

      $langs->load("users");

      $fuser = new User($db);

      $fuser->fetch($object->dao->fk_user_create);

      print img_picto('', 'user', 'class="pictofixedwidth"');

      print $fuser->getFullName($langs);

    } else {

      print img_picto('', 'email', 'class="pictofixedwidth"');

      print dol_escape_htmltag($object->dao->origin_email);

    }


    print '</td></tr>';


    // Read date

    if (!empty($object->dao->date_read)) {

      print '<tr><td>'.$langs->trans("TicketReadOn").'</td><td>';

      print dol_print_date($object->dao->date_read, 'dayhour');

      print '</td></tr>';

    }


    // Close date

    if (!empty($object->dao->date_close)) {

      print '<tr><td>'.$langs->trans("TicketCloseOn").'</td><td>';

      print dol_print_date($object->dao->date_close, 'dayhour');

      print '</td></tr>';

    }


    // User assigned

    print '<tr><td>'.$langs->trans("AssignedTo").'</td><td>';

    if ($object->dao->fk_user_assign > 0) {

      $fuser = new User($db);

      $fuser->fetch($object->dao->fk_user_assign);

      print img_picto('', 'user', 'class="pictofixedwidth"');

      print $fuser->getFullName($langs, 0);

    }

    print '</td></tr>';


    // External contributors

    if (getDolGlobalInt('TICKET_PUBLIC_DISPLAY_EXTERNAL_CONTRIBUTORS')) {

      print '<tr><td>'.$langs->trans("ExternalContributors").'</td><td>';

      if ($object->dao->id > 0) {

        $contactlist = $object->dao->liste_contact(-1, 'external');

        foreach ($contactlist as $externalContributor) {

          print img_picto('', 'contact', 'class="pictofixedwidth"');

          print $externalContributor["lastname"]." ".$externalContributor["firstname"]."<br>";

        }

      }

      print '</td></tr>';

    }


    // Add new external contributor

    if (getDolGlobalInt('TICKET_PUBLIC_SELECT_EXTERNAL_CONTRIBUTORS') && !empty($object->dao->fk_soc)) {

      print '<form method="post" id="form_view_add_contact" name="form_view_add_contact" action="'.$_SERVER['PHP_SELF'].'?track_id='.$object->dao->track_id.'">';

      print '<input type="hidden" name="token" value="'.newToken().'">';

      print '<input type="hidden" name="action" value="add_contact">';

      print '<input type="hidden" name="email" value="'.$_SESSION['email_customer'].'">';

      print '<tr><td>'.$langs->trans("AddContributor").'</td><td>';

      //print $form->selectcontacts($object->dao->fk_soc, '', 'contactid', 3, '', '', 1, 'minwidth100imp widthcentpercentminusxx maxwidth400');

      print $form->select_contact($object->dao->fk_soc, '', 'contactid', 3, '', '', 1, 'minwidth100imp widthcentpercentminusxx maxwidth400', true);

      print '<input type="submit" class="button smallpaddingimp reposition" name="btn_add_contact" value="'.$langs->trans('Add').'" />';

      print '</td></tr></form>';

    }


    // Progression

    if (getDolGlobalString('TICKET_SHOW_PROGRESSION')) {

      print '<tr><td>'.$langs->trans("Progression").'</td><td>';

      print($object->dao->progress > 0 ? dol_escape_htmltag((string) $object->dao->progress) : '0').'%';

      print '</td></tr>';

    }


    // Other attributes

    include DOL_DOCUMENT_ROOT.'/core/tpl/extrafields_view.tpl.php';


    print '</table>';


    print '</div>';


    print '<div style="clear: both; margin-top: 1.5em;"></div>';


    if ($action == 'presend') {

      print '<br>';

      print load_fiche_titre($langs->trans('TicketAddMessage'), '', 'conversation');


      $formticket = new FormTicket($db);


      $formticket->action = "add_message";

      $formticket->track_id = $object->dao->track_id;

      $formticket->trackid = 'tic'.$object->dao->id;


      $baseurl = getDolGlobalString('TICKET_URL_PUBLIC_INTERFACE', DOL_URL_ROOT.'/public/ticket/');


      $formticket->param = array('track_id' => $object->dao->track_id, 'fk_user_create' => '-1',

                     'returnurl' => $baseurl.'view.php'.(!empty($entity) && isModEnabled('multicompany') ? '?entity='.$entity : ''));


      $formticket->withfile = 2;

      $formticket->withcancel = 1;


      $formticket->showMessageForm('100%');

    }


    if ($action != 'presend') {

      $baseurl = getDolGlobalString('TICKET_URL_PUBLIC_INTERFACE', DOL_URL_ROOT.'/public/ticket/');


      print '<form method="POST" id="form_view_ticket_list" name="form_view_ticket_list" action="'.$baseurl.'list.php'.(!empty($entity) && isModEnabled('multicompany') ? '?entity='.$entity : '').'">';

      print '<input type="hidden" name="token" value="'.newToken().'">';

      print '<input type="hidden" name="action" value="view_ticketlist">';

      print '<input type="hidden" name="track_id" value="'.$object->dao->track_id.'">';

      print '<input type="hidden" name="email" value="'.$_SESSION['email_customer'].'">';

      //print '<input type="hidden" name="search_fk_status" value="non_closed">';

      print "</form>\n";


      print '<div class="tabsAction">';


      // List ticket

      print '<div class="inline-block divButAction"><a class="left" style="padding-right: 50px" href="javascript:$(\'#form_view_ticket_list\').submit();">'.$langs->trans('ViewMyTicketList').'</a></div>';


      if ($object->dao->fk_statut < Ticket::STATUS_CLOSED) {

        // New message

        print '<div class="inline-block divButAction"><a class="butAction" href="'.$_SERVER['PHP_SELF'].'?action=presend&mode=init&track_id='.$object->dao->track_id.(!empty($entity) && isModEnabled('multicompany') ? '&entity='.$entity : '').'&token='.newToken().'">'.$langs->trans('TicketAddMessage').'</a></div>';


        // Close ticket

        if ($object->dao->fk_statut >= Ticket::STATUS_NOT_READ && $object->dao->fk_statut < Ticket::STATUS_CLOSED) {

          print '<div class="inline-block divButAction"><a class="butAction" href="'.$_SERVER['PHP_SELF'].'?action=close&track_id='.$object->dao->track_id.(!empty($entity) && isModEnabled('multicompany') ? '&entity='.$entity : '').'&token='.newToken().'">'.$langs->trans('CloseTicket').'</a></div>';

        }

      }


      print '</div>';

    }


    print '</div>';


    // Message list

    print '<div class="ticketpublicarea ticketlargemargin">';

    print load_fiche_titre($langs->trans('TicketMessagesList'), '', 'conversation');

    print '</div>';


    $object->viewTicketMessages(false, true, $object->dao);


    print '<br>';

  } else {

    print '<!-- public view ticket -->';

    print '<div class="ticketpublicarea ticketlargemargin">';


    print '<div class="error">Not Allowed<br><a href="'.$_SERVER['PHP_SELF'].'?track_id='.$object->dao->track_id.(!empty($entity) && isModEnabled('multicompany') ? '?entity='.$entity : '').'" rel="nofollow noopener">'.$langs->trans("GoBack").'</a></div>';


    print '</div>';

  }

} else {

  print '<!-- public view ticket -->';

  print '<div class="ticketpublicarea ticketlargemargin">';


  print '<div class="center opacitymedium margintoponly marginbottomonly ticketlargemargin">'.$langs->trans("TicketPublicMsgViewLogIn").'</div>';


  print '<div id="form_view_ticket">';

  print '<form method="POST" class="maxwidth1000 center" name="form_view_ticket" action="'.$_SERVER['PHP_SELF'].(!empty($entity) && isModEnabled('multicompany') ? '?entity='.$entity : '').'">';


  print '<input type="hidden" name="token" value="'.newToken().'">';

  print '<input type="hidden" name="action" value="view_ticket">';


  print '<p><label for="track_id" style="display: inline-block;" class="titlefieldcreate left"><span class="fieldrequired">';

  print img_picto($langs->trans("TicketTrackId"), 'generic', 'class="pictofixedwidth"');

  print $langs->trans("TicketTrackId").'</span></label>';

  print '<br class="showonsmartphone hidden">';

  print '<input class="minwidth100" id="track_id" name="track_id" value="'.(GETPOST('track_id', 'alpha') ? GETPOST('track_id', 'alpha') : '').'" />';

  print '</p>';


  print '<p><label for="email" style="display: inline-block;" class="titlefieldcreate left"><span class="fieldrequired">';

  print img_picto($langs->trans("Email"), 'email', 'class="pictofixedwidth"');

  print $langs->trans('Email').'</span></label>';

  print '<br class="showonsmartphone hidden">';

  print '<input class="minwidth100" id="email" name="email" value="'.(GETPOST('email', 'alpha') ? GETPOST('email', 'alpha') : (!empty($_SESSION['customer_email']) ? $_SESSION['customer_email'] : "")).'" />';

  print '</p>';


  print '<p style="text-align: center; margin-top: 1.5em;">';

  print '<input type="submit" class="button" name="btn_view_ticket" value="'.$langs->trans('ViewTicket').'" />';

  print ' &nbsp; ';

  print '<input type="submit" class="button button-cancel" name="cancel" value="'.$langs->trans("Cancel").'">';

  print "</p>\n";


  print "</form>\n";

  print "</div>\n";


  print '</div>';

}


if (getDolGlobalInt('TICKET_SHOW_COMPANY_FOOTER')) {

  // End of page

  htmlPrintOnlineFooter($mysoc, $langs, 0, $suffix, $object);

}


llxFooter('', 'public');


$db->close();

$object
if(! $sortfield) if(! $sortorder) $object
Definition account.php:100

llxFooter
llxFooter($comment='', $zone='private', $disabledoutputofmessages=0)
Empty footer.
Definition wrapper.php:91

ActionsTicket
Class Actions of the module ticket.
Definition actions_ticket.class.php:44

CMailFile\getValidAddress
static getValidAddress($address, $format, $encode=0, $maxnumberofemail=0)
Return a formatted address string for SMTP protocol.
Definition CMailFile.class.php:2276

Form
Class to manage generation of HTML components Only common components must be here.
Definition html.form.class.php:57

FormTicket
Definition html.formticket.class.php:48

User
Class to manage Dolibarr users.
Definition user.class.php:50

htmlPrintOnlineFooter
htmlPrintOnlineFooter($fromcompany, $langs, $addformmessage=0, $suffix='', $object=null)
Show footer of company in HTML public pages.
Definition company.lib.php:2940

$mysoc
global $mysoc
Definition purchasesjournal.php:30

setEventMessages
setEventMessages($mesg, $mesgs, $style='mesgs', $messagekey='', $noduplicate=0, $attop=0)
Set event messages in dol_events session object.
Definition functions.lib.php:11205

img_picto
img_picto($titlealt, $picto, $moreatt='', $pictoisfullpath=0, $srconly=0, $notitle=0, $alt='', $morecss='', $marginleftonlyshort=2, $allowothertags=array())
Show picto whatever it's its name (generic function)
Definition functions.lib.php:5577

GETPOSTINT
GETPOSTINT($paramname, $method=0)
Return the value of a $_GET or $_POST supervariable, converted into integer.
Definition functions.lib.php:902

dolPrintHTML
dolPrintHTML($s, $allowiframe=0)
Return a string (that can be on several lines) ready to be output on a HTML page.
Definition functions.lib.php:2408

getDolGlobalInt
getDolGlobalInt($key, $default=0)
Return a Dolibarr global constant int value.
Definition functions.lib.php:273

newToken
newToken()
Return the value of token currently saved into session with name 'newtoken'.
Definition functions.lib.php:15451

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:1033

dol_print_date
dol_print_date($time, $format='', $tzoutput='auto', $outputlangs=null, $encodetooutput=false, $decorate=0)
Output date in a string format according to outputlangs (or langs if not defined).
Definition functions.lib.php:3870

load_fiche_titre
load_fiche_titre($title, $morehtmlright='', $picto='generic', $pictoisfullpath=0, $id='', $morecssontable='', $morehtmlcenter='', $morecssonpicto='widthpictotitle')
Load a title with picto.
Definition functions.lib.php:7209

isValidEmail
isValidEmail($address, $acceptsupervisorkey=0, $acceptuserkey=0)
Return true if email syntax is ok.
Definition functions.lib.php:5297

getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:258

isModEnabled
isModEnabled($module)
Is Dolibarr module enabled.
Definition functions.lib.php:440

dol_escape_htmltag
dol_escape_htmltag($stringtoescape, $keepb=0, $keepn=0, $noescapetags='', $escapeonlyhtmltags=0, $cleanalsojavascript=0)
Returns text escaped for inclusion in HTML alt or title or value tags, or into values of HTML input f...
Definition functions.lib.php:2503

httponly_accessforbidden
httponly_accessforbidden($message='1', $http_response_code=403, $stringalreadysanitized=0)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1331

llxHeaderTicket
llxHeaderTicket($title, $head="", $disablejs=0, $disablehead=0, $arrayofjs=[], $arrayofcss=[])
Show http header, open body tag and show HTML header banner for public pages for tickets.
Definition ticket.lib.php:280