diff options
| author | INOPIAE <inopiae@cacert.org> | 2014-01-19 18:45:35 +0100 |
|---|---|---|
| committer | INOPIAE <inopiae@cacert.org> | 2014-01-19 18:45:35 +0100 |
| commit | 070ecab5c7409a1a8b99eca5b9545a004393bd2a (patch) | |
| tree | 817fef48c76283d8ac69b6e2a778d160ec527662 | |
| parent | e8eec19fe90c387df1420d92a314cf3ab04ef483 (diff) | |
| download | cacert-devel-070ecab5c7409a1a8b99eca5b9545a004393bd2a.tar.gz cacert-devel-070ecab5c7409a1a8b99eca5b9545a004393bd2a.tar.xz cacert-devel-070ecab5c7409a1a8b99eca5b9545a004393bd2a.zip | |
bug 1138: changed function se_write_log to write_se_log, changed ticket no handling
| -rw-r--r-- | includes/account.php | 15 | ||||
| -rw-r--r-- | includes/notary.inc.php | 4 | ||||
| -rw-r--r-- | pages/account/43.php | 1 |
3 files changed, 13 insertions, 7 deletions
diff --git a/includes/account.php b/includes/account.php index 162d8d9..5544bdb 100644 --- a/includes/account.php +++ b/includes/account.php @@ -2701,9 +2701,14 @@ } //check if ticket number was entered - if ( $id== 43) { - $ticketno=mysql_real_escape_string($_REQUEST['ticketno']); - $ticketvalidation=valid_ticket_number($ticketno); + if ( $id== 43 or $oldid==43) { + $ticketno = 0; + $ticketvalidation = FALSE; + if ($_REQUEST['ticketno']) { + $ticketno = mysql_real_escape_string(trim($_REQUEST['ticketno'])); + $ticketvalidation = valid_ticket_number($ticketno); + } + $_SESSION['ticketno']=$ticketno; } @@ -2721,7 +2726,7 @@ $userid = intval($_REQUEST['userid']); $query = "update `users` set `fname`='$fname',`mname`='$mname',`lname`='$lname',`suffix`='$suffix',`dob`='$year-$month-$day' where `id`='$userid'"; mysql_query($query); - write_se_log($userid,$_SESSION[''], $_SESSION['profile']['id'],'AD Name/DOB Change',$ticketno); + write_se_log($userid, $_SESSION['profile']['id'],'AD Name/DOB Change',$ticketno); }else{ $_SESSION['ticketmsg']='No action taken. Ticket number is missing!'; } @@ -3235,7 +3240,7 @@ */ if($id == 59){ if ($oldid==43) { - se_write_log($_REQUEST['userid'], $_SESSION['profile']['id'], 'View account history', $_REQUEST['ticketno']); + write_se_log($_REQUEST['userid'], $_SESSION['profile']['id'], 'View account history', $_REQUEST['ticketno']); $support=1; }ELSEIF ($oldid==13){ $support=0; diff --git a/includes/notary.inc.php b/includes/notary.inc.php index a0eb793..83709c1 100644 --- a/includes/notary.inc.php +++ b/includes/notary.inc.php @@ -1123,7 +1123,7 @@ function get_user_agreement($memid){ } /** - * se_write_log() + * write_se_log() * writes an information to the adminlog * * @param mixed $uid - id of the user account @@ -1132,7 +1132,7 @@ function get_user_agreement($memid){ * @param mixed $info - the ticket / arbitration no or other information * @return */ -function se_write_log($uid, $adminid, $type, $info){ +function write_se_log($uid, $adminid, $type, $info){ //records all support engineer actions changing a user account $uid = intval($uid); $adminid = intval($adminid); diff --git a/pages/account/43.php b/pages/account/43.php index ec82b5a..686a61b 100644 --- a/pages/account/43.php +++ b/pages/account/43.php @@ -243,6 +243,7 @@ if(intval($_REQUEST['userid']) > 0) { </select> <input type="text" name="year" value="<?=$year?>" size="4"> <input type="submit" value="Go"> + <input type="hidden" name="ticketno" value="<?=$ticketno?>"/> </form> </nobr> </td> |