1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
<?php
// incident_showhide_update.php - Toggle visibility of an incident
//
// SiT (Support Incident Tracker) - Support call tracking system
// Copyright (C) 2010-2014 The Support Incident Tracker Project
// Copyright (C) 2000-2009 Salford Software Ltd. and Contributors
//
// This software may be used and distributed according to the terms
// of the GNU General Public License, incorporated herein by reference.
//
// Author: Ivan Lucas <ivanlucas[at]users.sourceforge.net>
require ('core.php');
require (APPLICATION_LIBPATH . 'functions.inc.php');
// This page requires authentication
require (APPLICATION_LIBPATH . 'auth.inc.php');
// External variables
$mode = cleanvar($_REQUEST['mode']);
$updateid = clean_int($_REQUEST['updateid']);
$incidentid = clean_int($_REQUEST['incidentid']);
$expand = cleanvar($_REQUEST['expand']);
$view = cleanvar($_REQUEST['view']);
$offset = cleanvar($_REQUEST['offset']);
$records = cleanvar($_REQUEST['records']);
switch ($mode)
{
case 'show':
//echo "Showing update: $updateid for incident $incidentid";
$vsql = "UPDATE `{$dbUpdates}` SET customervisibility='show' WHERE id='{$updateid}' LIMIT 1";
break;
case 'hide':
//echo "Hiding update: $updateid for incident $incidentid";
$vsql = "UPDATE `{$dbUpdates}` SET customervisibility='hide' WHERE id='{$updateid}' LIMIT 1";
break;
default:
trigger_error("Error showing/hiding update {$updateid}: invalid mode", E_USER_WARNING);
}
$temp_result = mysql_query($vsql);
if (mysql_error()) trigger_error("MySQL Query Error ".mysql_error(), E_USER_ERROR);
header("Location: incident_details.php?id={$incidentid}&expand={$expand}&view={$view}&offset={$offset}&records={$records}#$updateid");
exit;
?>
|