Support-System/tickets.php at main · YEET200/Support-System · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
<?php
include 'functions.php';
// Connect to MySQL using the below function
$pdo = pdo_connect_mysql();
// Fetch all the category names from the categories MySQL table
$categories = $pdo->query('SELECT * FROM categories')->fetchAll(PDO::FETCH_ASSOC);
// MySQL query that selects all the tickets from the databse
$status = isset($_GET['status']) ? $_GET['status'] : 'all';
$category = isset($_GET['category']) ? $_GET['category'] : 'all';
$priority = isset($_GET['priority']) ? $_GET['priority'] : 'all';
$search = isset($_GET['search']) ? $_GET['search'] : '';
// The current pagination page
$page = isset($_GET['page']) ? $_GET['page'] : 1;
// The maximum amount of tickets per page
$num_tickets_per_page = num_tickets_per_page;
// Build the SQL string
$sql = 'WHERE approved = 1';
$sql .= $status != 'all' ? ' AND ticket_status = :status ' : '';
$sql .= $category != 'all' ? ' AND category_id = :category ' : '';
$sql .= $priority != 'all' ? ' AND priority = :priority ' : '';
$sql .= $search ? ' AND title LIKE :search ' : '';
$sql .= isset($_SESSION['account_loggedin']) && $_SESSION['account_role'] == 'Admin' ? '' : ' AND private = 0 ';
// Fetch the tickets from the database
$stmt = $pdo->prepare('SELECT * FROM tickets ' . $sql . ' ORDER BY created DESC LIMIT :current_page, :tickets_per_page');
// Bind params
if ($status != 'all') {
	$stmt->bindParam(':status', $status);
}
if ($category != 'all') {
	$stmt->bindParam(':category', $category);
}
if ($priority != 'all') {
	$stmt->bindParam(':priority', $priority);
}
if ($search) {
	$s = '%' . $search . '%';
	$stmt->bindParam(':search', $s);
}
$stmt->bindValue(':current_page', ($page-1)*(int)$num_tickets_per_page, PDO::PARAM_INT);
$stmt->bindValue(':tickets_per_page', (int)$num_tickets_per_page, PDO::PARAM_INT);
$stmt->execute();
// Fetch all tickets
$tickets = $stmt->fetchAll(PDO::FETCH_ASSOC);
// Get total number of tickets
$stmt = $pdo->prepare('SELECT COUNT(*) FROM tickets ' . $sql);
// Bind params
if ($status != 'all') {
	$stmt->bindParam(':status', $status);
}
if ($category != 'all') {
	$stmt->bindParam(':category', $category);
}
if ($priority != 'all') {
	$stmt->bindParam(':priority', $priority);
}
if ($search) {
	$s = '%' . $search . '%';
	$stmt->bindParam(':search', $s);
}
$stmt->execute();
// Get total
$total_tickets = $stmt->fetchColumn();
// Below queries will get the total number of tickets
if (isset($_SESSION['account_loggedin']) && $_SESSION['account_role'] == 'Admin') {
	// Only admins can view public and private tickets
	$num_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE approved = 1')->fetchColumn();
	$num_open_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "open" AND approved = 1')->fetchColumn();
	$num_closed_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "closed" AND approved = 1')->fetchColumn();
	$num_resolved_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "resolved" AND approved = 1')->fetchColumn();
} else {
	$num_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE private = 0 AND approved = 1')->fetchColumn();
	$num_open_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "open" AND private = 0 AND approved = 1')->fetchColumn();
	$num_closed_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "closed" AND private = 0 AND approved = 1')->fetchColumn();
	$num_resolved_tickets = $pdo->query('SELECT COUNT(*) FROM tickets WHERE ticket_status = "resolved" AND private = 0 AND approved = 1')->fetchColumn();
}
?>
<?=template_header('Tickets')?>

<div class="content tickets">

	<h2><?=ucfirst($status)?> Tickets</h2>

	<form action="" method="get">
		<div>
			<label for="status">Status</label>
			<select name="status" id="status" onchange="this.parentElement.parentElement.submit()">
				<option value="all"<?=$status=='all'?' selected':''?>>All (<?=number_format($num_tickets)?>)</option>
				<option value="open"<?=$status=='open'?' selected':''?>>Open (<?=number_format($num_open_tickets)?>)</option>
				<option value="resolved"<?=$status=='resolved'?' selected':''?>>Resolved (<?=number_format($num_resolved_tickets)?>)</option>
				<option value="closed"<?=$status=='closed'?' selected':''?>>Closed (<?=number_format($num_closed_tickets)?>)</option>
			</select>
			<label for="category">Category</label>
			<select name="category" id="category" onchange="this.parentElement.parentElement.submit()">
				<option value="all"<?=$category=='all'?' selected':''?>>All</option>
				<?php foreach($categories as $c): ?>
	            <option value="<?=$c['id']?>"<?=$c['id']==$category?' selected':''?>><?=$c['title']?></option>
	            <?php endforeach; ?>
			</select>
			<label for="priority">Priority</label>
			<select name="priority" id="priority" onchange="this.parentElement.parentElement.submit()">
				<option value="all"<?=$priority=='all'?' selected':''?>>All</option>
				<option value="low"<?=$priority=='low'?' selected':''?>>Low</option>
				<option value="medium"<?=$priority=='medium'?' selected':''?>>Medium</option>
				<option value="high"<?=$priority=='high'?' selected':''?>>High</option>
			</select>
		</div>
		<div class="search">
			<input name="search" type="text" placeholder="Search..." value="<?=htmlspecialchars(trim($search, '%'), ENT_QUOTES)?>" onkeypress="if(event.keyCode == 13) this.parentElement.submit()">
			<button type="submit"><i class="fas fa-search"></i></button>
		</div>
	</form>

	<div class="tickets-list">
		<?php foreach ($tickets as $ticket): ?>
		<a href="view.php?id=<?=$ticket['id']?><?=isset($_SESSION['account_loggedin']) && $_SESSION['account_role'] == 'Admin' && $ticket['private'] ? '&code=' . md5($ticket['id'] . $ticket['email']) : ''?>" class="ticket">
			<span class="con">
				<?php if ($ticket['ticket_status'] == 'open'): ?>
				<i class="far fa-clock fa-2x"></i>
				<?php elseif ($ticket['ticket_status'] == 'resolved'): ?>
				<i class="fas fa-check fa-2x"></i>
				<?php elseif ($ticket['ticket_status'] == 'closed'): ?>
				<i class="fas fa-times fa-2x"></i>
				<?php endif; ?>
			</span>
			<span class="con">
				<span class="title"><?=htmlspecialchars($ticket['title'], ENT_QUOTES)?></span>
				<span class="msg responsive-hidden"><?=htmlspecialchars(strip_tags($ticket['msg']), ENT_QUOTES)?></span>
			</span>
			<span class="con2">
				<span class="created responsive-hidden"><?=date('F dS, G:ia', strtotime($ticket['created']))?></span>
				<span class="priority <?=$ticket['priority']?>"><?=$ticket['priority']?></span>
			</span>
		</a>
		<?php endforeach; ?>
		<?php if (!$tickets): ?>
		<p>There are no tickets.</p>
		<?php endif; ?>
	</div>

	<div class="pagination">
		<?php if ($page > 1): ?>
		<a href="tickets.php?status=<?=$status?>&category=<?=$category?>&priority=<?=$priority?>&search=<?=$search?>&page=<?=$page-1?>" class="prev">Prev</a>
		<?php endif; ?>
		<span>Page <?=$page?> of <?=ceil($total_tickets / $num_tickets_per_page) == 0 ? 1 : ceil($total_tickets / $num_tickets_per_page)?></span>
		<?php if ($page * $num_tickets_per_page < $total_tickets): ?>
		<a href="tickets.php?status=<?=$status?>&category=<?=$category?>&priority=<?=$priority?>&search=<?=$search?>&page=<?=$page+1?>" class="next">Next</a>
		<?php endif; ?>
	</div>

</div>

<?=template_footer()?>