From 6c6a988c2bce1ac50481108b12e280c4acf66187 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Thu, 2 Oct 2025 11:42:30 -0400
Subject: [PATCH 01/24] Fix custom Favicon

---
 client/includes/header.php      | 2 +-
 guest/includes/guest_header.php | 2 +-
 includes/header.php             | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/client/includes/header.php b/client/includes/header.php
index c272d6f2..1bf3e2b2 100644
--- a/client/includes/header.php
+++ b/client/includes/header.php
@@ -19,7 +19,7 @@ header("X-Frame-Options: DENY"); // Legacy
     <meta name="robots" content="noindex">
 
     <!-- Favicon: If Fav Icon exists, else use the default one -->
-    <?php if (file_exists('../uploads/favicon.ico')) { ?>
+    <?php if(file_exists($_SERVER['DOCUMENT_ROOT'] . '/uploads/favicon.ico')) { ?>
         <link rel="icon" type="image/x-icon" href="/uploads/favicon.ico">
     <?php } ?>
 
diff --git a/guest/includes/guest_header.php b/guest/includes/guest_header.php
index bc2a267e..b3f1d525 100644
--- a/guest/includes/guest_header.php
+++ b/guest/includes/guest_header.php
@@ -36,7 +36,7 @@ $session_company_name = $row['company_name'];
     Favicon
     If Fav Icon exists else use the default one 
     -->
-    <?php if(file_exists('../uploads/favicon.ico')) { ?>
+    <?php if(file_exists($_SERVER['DOCUMENT_ROOT'] . '/uploads/favicon.ico')) { ?>
         <link rel="icon" type="image/x-icon" href="/uploads/favicon.ico">
     <?php } ?>
 
diff --git a/includes/header.php b/includes/header.php
index 2a9a49d6..0c11864d 100644
--- a/includes/header.php
+++ b/includes/header.php
@@ -19,9 +19,9 @@ header("X-Frame-Options: DENY");
     <title><?= $session_company_name; ?></title>
 
     <!-- Favicon -->
-    <?php if(file_exists(__DIR__ . '../uploads/favicon.ico')): ?>
+    <?php if(file_exists($_SERVER['DOCUMENT_ROOT'] . '/uploads/favicon.ico')) { ?>
         <link rel="icon" type="image/x-icon" href="/uploads/favicon.ico">
-    <?php endif; ?>
+    <?php } ?>
 
     <!-- Font Awesome -->
     <link rel="stylesheet" href="/plugins/fontawesome-free/css/all.min.css">

From 76c9933bafb5dc6adf30c75ebb029e337e71ba4d Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Thu, 2 Oct 2025 14:28:43 -0400
Subject: [PATCH 02/24] Update imap and smtp providers to allow empty string if
 empty do not execute mail queue

---
 admin/database_updates.php    | 12 +++++++++---
 admin/post/settings_mail.php  |  8 ++++----
 admin/settings_mail.php       | 16 ++++++++--------
 cron/mail_queue.php           |  7 ++++++-
 db.sql                        |  6 +++---
 includes/database_version.php |  2 +-
 6 files changed, 31 insertions(+), 20 deletions(-)

diff --git a/admin/database_updates.php b/admin/database_updates.php
index 688a9daa..a8e044d0 100644
--- a/admin/database_updates.php
+++ b/admin/database_updates.php
@@ -4027,10 +4027,16 @@ if (LATEST_DATABASE_VERSION > CURRENT_DATABASE_VERSION) {
         mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '2.3.5'");
     }
     
-    // if (CURRENT_DATABASE_VERSION == '2.3.4') {
-    //     // Insert queries here required to update to DB version 2.3.4
+    if (CURRENT_DATABASE_VERSION == '2.3.5') {
+        mysqli_query($mysqli, "ALTER TABLE `settings` CHANGE `config_smtp_provider` `config_smtp_provider` VARCHAR(200) DEFAULT NULL");
+        mysqli_query($mysqli, "ALTER TABLE `settings` CHANGE `config_imap_provider` `config_imap_provider` VARCHAR(200) DEFAULT NULL");
+        mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '2.3.6'");
+    }
+
+    // if (CURRENT_DATABASE_VERSION == '2.3.5') {
+    //     // Insert queries here required to update to DB version 2.3.5
     //     // Then, update the database to the next sequential version
-    //     mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '2.3.5'");
+    //     mysqli_query($mysqli, "UPDATE `settings` SET `config_current_database_version` = '2.3.6'");
     // }
 
 } else {
diff --git a/admin/post/settings_mail.php b/admin/post/settings_mail.php
index daf479e3..d7b2e6a7 100644
--- a/admin/post/settings_mail.php
+++ b/admin/post/settings_mail.php
@@ -6,7 +6,7 @@ if (isset($_POST['edit_mail_smtp_settings'])) {
     
     validateCSRFToken($_POST['csrf_token']);
 
-    $config_smtp_provider            = sanitizeInput($_POST['config_smtp_provider'] ?? 'standard_smtp');
+    $config_smtp_provider            = sanitizeInput($_POST['config_smtp_provider']);
     $config_smtp_host                = sanitizeInput($_POST['config_smtp_host']);
     $config_smtp_port                = intval($_POST['config_smtp_port'] ?? 0);
     $config_smtp_encryption          = sanitizeInput($_POST['config_smtp_encryption']);
@@ -22,7 +22,7 @@ if (isset($_POST['edit_mail_smtp_settings'])) {
 
     mysqli_query($mysqli, "
         UPDATE settings SET
-            config_smtp_provider              = " . ($config_smtp_provider === 'none' ? "NULL" : "'$config_smtp_provider'") . ",
+            config_smtp_provider              = '$config_smtp_provider',
             config_smtp_host                  = '$config_smtp_host',
             config_smtp_port                  = $config_smtp_port,
             config_smtp_encryption            = '$config_smtp_encryption',
@@ -48,7 +48,7 @@ if (isset($_POST['edit_mail_imap_settings'])) {
     
     validateCSRFToken($_POST['csrf_token']);
 
-    $config_imap_provider            = sanitizeInput($_POST['config_imap_provider'] ?? 'standard_imap');
+    $config_imap_provider            = sanitizeInput($_POST['config_imap_provider']);
     $config_imap_host                = sanitizeInput($_POST['config_imap_host']);
     $config_imap_port                = intval($_POST['config_imap_port'] ?? 0);
     $config_imap_encryption          = sanitizeInput($_POST['config_imap_encryption']);
@@ -64,7 +64,7 @@ if (isset($_POST['edit_mail_imap_settings'])) {
 
     mysqli_query($mysqli, "
         UPDATE settings SET
-            config_imap_provider              = " . ($config_imap_provider === 'none' ? "NULL" : "'$config_imap_provider'") . ",
+            config_imap_provider              = '$config_imap_provider',
             config_imap_host                  = '$config_imap_host',
             config_imap_port                  = $config_imap_port,
             config_imap_encryption            = '$config_imap_encryption',
diff --git a/admin/settings_mail.php b/admin/settings_mail.php
index 1b6acea1..eb0dee02 100644
--- a/admin/settings_mail.php
+++ b/admin/settings_mail.php
@@ -18,10 +18,10 @@ require_once "includes/inc_all_admin.php";
                             <span class="input-group-text"><i class="fa fa-fw fa-cloud"></i></span>
                         </div>
                         <select class="form-control" name="config_smtp_provider" id="config_smtp_provider">
-                            <option value="none" <?php if(($config_smtp_provider ?? '')==='none' || ($config_smtp_provider ?? '')==='') echo 'selected'; ?>>None (Disabled)</option>
-                            <option value="standard_smtp" <?php if(($config_smtp_provider ?? 'standard_smtp')==='standard_smtp') echo 'selected'; ?>>Standard SMTP (Username/Password)</option>
-                            <option value="google_oauth" <?php if(($config_smtp_provider ?? '')==='google_oauth') echo 'selected'; ?>>Google Workspace (OAuth)</option>
-                            <option value="microsoft_oauth" <?php if(($config_smtp_provider ?? '')==='microsoft_oauth') echo 'selected'; ?>>Microsoft 365 (OAuth)</option>
+                            <option value="" <?php if(empty($config_smtp_provider)) { echo 'selected'; } ?>>None (Disabled)</option>
+                            <option value="standard_smtp" <?php if($config_smtp_provider === 'standard_smtp') { echo 'selected'; } ?>>Standard SMTP (Username/Password)</option>
+                            <option value="google_oauth" <?php if($config_smtp_provider === 'google_oauth') { echo 'selected'; } ?>>Google Workspace (OAuth)</option>
+                            <option value="microsoft_oauth" <?php if($config_smtp_provider === 'microsoft_oauth') { echo 'selected'; } ?>>Microsoft 365 (OAuth)</option>
                         </select>
                     </div>
                     <small class="text-secondary d-block mt-1" id="smtp_provider_hint">
@@ -116,10 +116,10 @@ require_once "includes/inc_all_admin.php";
                             <span class="input-group-text"><i class="fa fa-fw fa-cloud"></i></span>
                         </div>
                         <select class="form-control" name="config_imap_provider" id="config_imap_provider">
-                            <option value="none" <?php if($config_imap_provider ==='') echo 'selected'; ?>>None (Disabled)</option>
-                            <option value="standard_imap" <?php if(($config_imap_provider ?? 'standard_imap')==='standard_imap') echo 'selected'; ?>>Standard IMAP (Username/Password)</option>
-                            <option value="google_oauth" <?php if(($config_imap_provider ?? '')==='google_oauth') echo 'selected'; ?>>Google Workspace (OAuth)</option>
-                            <option value="microsoft_oauth" <?php if(($config_imap_provider ?? '')==='microsoft_oauth') echo 'selected'; ?>>Microsoft 365 (OAuth)</option>
+                            <option value="" <?php if(empty($config_imap_provider)) { echo 'selected'; } ?>>None (Disabled)</option>
+                            <option value="standard_imap" <?php if($config_imap_provider === 'standard_imap') { echo 'selected'; } ?>>Standard IMAP (Username/Password)</option>
+                            <option value="google_oauth" <?php if($config_imap_provider === 'google_oauth') { echo 'selected'; } ?>>Google Workspace (OAuth)</option>
+                            <option value="microsoft_oauth" <?php if($config_imap_provider === 'microsoft_oauth') { echo 'selected'; } ?>>Microsoft 365 (OAuth)</option>
                         </select>
                     </div>
                     <small class="text-secondary d-block mt-1" id="imap_provider_hint">
diff --git a/cron/mail_queue.php b/cron/mail_queue.php
index 11993ef7..f77fdb1e 100644
--- a/cron/mail_queue.php
+++ b/cron/mail_queue.php
@@ -55,7 +55,7 @@ $config_smtp_port        = intval($row['config_smtp_port']);
 $config_smtp_encryption  = $row['config_smtp_encryption'];
 
 // SMTP provider + shared OAuth fields
-$config_smtp_provider                      = $row['config_smtp_provider'] ?? 'standard_smtp'; // 'standard_smtp' | 'google_oauth' | 'microsoft_oauth'
+$config_smtp_provider                      = $row['config_smtp_provider']; // 'standard_smtp' | 'google_oauth' | 'microsoft_oauth'
 $config_mail_oauth_client_id               = $row['config_mail_oauth_client_id'] ?? '';
 $config_mail_oauth_client_secret           = $row['config_mail_oauth_client_secret'] ?? '';
 $config_mail_oauth_tenant_id               = $row['config_mail_oauth_tenant_id'] ?? '';
@@ -68,6 +68,11 @@ if ($config_enable_cron == 0) {
     exit("Cron: is not enabled -- Quitting..");
 }
 
+if (empty($config_smtp_provider)) {
+    logApp("Cron-Mail-Queue", "info", "SMTP sending skipped: provider not configured.");
+    exit(0);
+}
+
 /** =======================================================================
  *  Lock file
  * ======================================================================= */
diff --git a/db.sql b/db.sql
index 8f3e0946..dad15b41 100644
--- a/db.sql
+++ b/db.sql
@@ -1981,7 +1981,7 @@ CREATE TABLE `settings` (
   `company_id` int(11) NOT NULL,
   `config_current_database_version` varchar(10) NOT NULL,
   `config_start_page` varchar(200) DEFAULT 'clients.php',
-  `config_smtp_provider` enum('standard_smtp','google_oauth','microsoft_oauth') DEFAULT NULL,
+  `config_smtp_provider` varchar(200) DEFAULT NULL,
   `config_smtp_host` varchar(200) DEFAULT NULL,
   `config_smtp_port` int(5) DEFAULT NULL,
   `config_smtp_encryption` varchar(200) DEFAULT NULL,
@@ -1989,7 +1989,7 @@ CREATE TABLE `settings` (
   `config_smtp_password` varchar(200) DEFAULT NULL,
   `config_mail_from_email` varchar(200) DEFAULT NULL,
   `config_mail_from_name` varchar(200) DEFAULT NULL,
-  `config_imap_provider` enum('standard_imap','google_oauth','microsoft_oauth') DEFAULT NULL,
+  `config_imap_provider` varchar(200) DEFAULT NULL,
   `config_mail_oauth_client_id` varchar(255) DEFAULT NULL,
   `config_mail_oauth_client_secret` varchar(255) DEFAULT NULL,
   `config_mail_oauth_tenant_id` varchar(255) DEFAULT NULL,
@@ -2819,4 +2819,4 @@ CREATE TABLE `vendors` (
 /*!40101 SET COLLATION_CONNECTION=@OLD_COLLATION_CONNECTION */;
 /*!40111 SET SQL_NOTES=@OLD_SQL_NOTES */;
 
--- Dump completed on 2025-09-25 17:24:06
+-- Dump completed on 2025-10-02 14:27:24
diff --git a/includes/database_version.php b/includes/database_version.php
index d83815ec..a2c67fc8 100644
--- a/includes/database_version.php
+++ b/includes/database_version.php
@@ -5,4 +5,4 @@
  * It is used in conjunction with database_updates.php
  */
 
-DEFINE("LATEST_DATABASE_VERSION", "2.3.5");
+DEFINE("LATEST_DATABASE_VERSION", "2.3.6");

From 956f18430bf4915707c29ee12bc319791e3695af Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Fri, 3 Oct 2025 11:12:48 -0400
Subject: [PATCH 03/24] Fix Microsoft SSO Login in Client Portal, fix ticket
 templates due to regression from changing from user to agent

---
 admin/post/ticket_template.php |  4 ++--
 client/login.php               | 12 +++++++++++-
 client/login_microsoft.php     | 11 ++++++++++-
 3 files changed, 23 insertions(+), 4 deletions(-)

diff --git a/admin/post/ticket_template.php b/admin/post/ticket_template.php
index eecd0d89..c968b6df 100644
--- a/admin/post/ticket_template.php
+++ b/admin/post/ticket_template.php
@@ -5,8 +5,8 @@
 defined('FROM_POST_HANDLER') || die("Direct file access is not allowed");
 
 // Import shared code from user-side tickets/tasks as we reuse functions
-require_once '../user/post/ticket.php';
-require_once '../user/post/task.php';
+require_once '../agent/post/ticket.php';
+require_once '../agent/post/task.php';
 
 if (isset($_POST['add_ticket_template'])) {
 
diff --git a/client/login.php b/client/login.php
index d0b6aff8..c3b0dea1 100644
--- a/client/login.php
+++ b/client/login.php
@@ -57,7 +57,17 @@ if ($_SERVER['REQUEST_METHOD'] == 'POST' && isset($_POST['login'])) {
 
     } else {
 
-        $sql = mysqli_query($mysqli, "SELECT * FROM users LEFT JOIN contacts ON user_id = contact_user_id LEFT JOIN clients ON contact_client_id = client_id WHERE user_email = '$email' AND client_archived_at IS NULL AND user_archived_at IS NULL AND user_type = 2 AND user_status = 1 LIMIT 1");
+        $sql = mysqli_query($mysqli, "SELECT * FROM users
+            LEFT JOIN contacts ON user_id = contact_user_id
+            LEFT JOIN clients ON contact_client_id = client_id
+            WHERE user_email = '$email'
+            AND client_archived_at IS NULL
+            AND user_archived_at IS NULL
+            AND user_type = 2
+            AND user_status = 1
+            LIMIT 1"
+        );
+        
         $row = mysqli_fetch_array($sql);
         $client_id = intval($row['contact_client_id']);
         $user_id = intval($row['user_id']);
diff --git a/client/login_microsoft.php b/client/login_microsoft.php
index c182a16d..64d60d06 100644
--- a/client/login_microsoft.php
+++ b/client/login_microsoft.php
@@ -100,7 +100,16 @@ if (isset($_POST['code']) && $_POST['state'] == session_id()) {
 
             $upn = mysqli_real_escape_string($mysqli, $msgraph_response["userPrincipalName"]);
 
-            $sql = mysqli_query($mysqli, "SELECT * FROM users LEFT JOIN contacts ON user_id = contact_user_id LEFT JOIN contact_client_id = client_id WHERE user_email = '$upn' AND user_archived_at IS NULL AND client_archived_at IS NULL AND user_type = 2 AND user_status = 1 LIMIT 1");
+            $sql = mysqli_query($mysqli, "SELECT * FROM users
+                LEFT JOIN contacts ON user_id = contact_user_id
+                LEFT JOIN clients contact_client_id = client_id
+                WHERE user_email = '$upn'
+                AND user_archived_at IS NULL
+                AND client_archived_at IS NULL
+                AND user_type = 2
+                AND user_status = 1
+                LIMIT 1"
+            );
             $row = mysqli_fetch_array($sql);
             $client_id = intval($row['contact_client_id']);
             $user_id = intval($row['user_id']);

From 6e8c133a99e0a8d97942365629d023319283fdc3 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Fri, 3 Oct 2025 11:25:48 -0400
Subject: [PATCH 04/24] Fix Regressions in Vendor Templates updated path from
 ../user/post to ../agent/post

---
 admin/post/vendor_template.php | 2 +-
 agent/post.php                 | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/admin/post/vendor_template.php b/admin/post/vendor_template.php
index 09dfab16..34336267 100644
--- a/admin/post/vendor_template.php
+++ b/admin/post/vendor_template.php
@@ -5,7 +5,7 @@
 defined('FROM_POST_HANDLER') || die("Direct file access is not allowed");
 
 // Import shared code from user-side vendor management  as we reuse functions
-require_once '../user/post/vendor.php';
+require_once '../agent/post/vendor.php';
 
 if (isset($_POST['add_vendor_template'])) {
 
diff --git a/agent/post.php b/agent/post.php
index b478c9c1..9f2f6f96 100644
--- a/agent/post.php
+++ b/agent/post.php
@@ -26,7 +26,7 @@ $module = str_ireplace('_details', '', $module);
 // Dynamically load admin-related module POST logic
 
 // Load all module POST logic
-//  Loads everything in post/user/
+//  Loads everything in post
 //  Eventually, it would be nice to only specifically load what we need like we do for admins
 
 foreach (glob("post/*.php") as $user_module) {

From 5de2e7a3bd966f52fe7bae02677ce4bcdf526a2a Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Fri, 3 Oct 2025 11:36:27 -0400
Subject: [PATCH 05/24] If imap Encryption is blank then use notls in the
 ticket mail parser

---
 cron/ticket_email_parser.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cron/ticket_email_parser.php b/cron/ticket_email_parser.php
index 34361c46..d82b115c 100644
--- a/cron/ticket_email_parser.php
+++ b/cron/ticket_email_parser.php
@@ -468,7 +468,7 @@ $validate_cert = true;
 // Defaults from settings (standard IMAP)
 $host = $config_imap_host;
 $port = (int)$config_imap_port;
-$encr = !empty($config_imap_encryption) ? $config_imap_encryption : null; // 'ssl'|'tls'|null
+$encr = !empty($config_imap_encryption) ? $config_imap_encryption : 'notls'; // 'ssl'|'tls'|'notls'
 $user = $config_imap_username;
 $pass = $config_imap_password;
 $auth = null; // 'oauth' for OAuth providers

From 32bfd298a1da556df8cc911acb7d1935f49fdd0c Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Fri, 3 Oct 2025 17:37:25 -0400
Subject: [PATCH 06/24] Added Project Edit Function for Ticket

---
 agent/modals/ticket/ticket_edit_project.php | 65 +++++++++++++++++++++
 agent/post/ticket.php                       | 22 +++++++
 agent/ticket.php                            |  4 +-
 3 files changed, 89 insertions(+), 2 deletions(-)
 create mode 100644 agent/modals/ticket/ticket_edit_project.php

diff --git a/agent/modals/ticket/ticket_edit_project.php b/agent/modals/ticket/ticket_edit_project.php
new file mode 100644
index 00000000..b75232a1
--- /dev/null
+++ b/agent/modals/ticket/ticket_edit_project.php
@@ -0,0 +1,65 @@
+<?php
+
+require_once '../../../includes/modal_header.php';
+
+$ticket_id = intval($_GET['id']);
+
+$sql = mysqli_query($mysqli, "SELECT * FROM tickets LEFT JOIN clients ON client_id = ticket_client_id WHERE ticket_id = $ticket_id LIMIT 1");
+
+$row = mysqli_fetch_array($sql);
+$client_id = intval($row['ticket_client_id']);
+$client_name = nullable_htmlentities($row['client_name']);
+$ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
+$ticket_number = intval($row['ticket_number']);
+$ticket_project_id = intval($row['ticket_project_id']);
+
+
+// Select box arrays
+$sql_projects = mysqli_query($mysqli, "SELECT project_id, project_name FROM projects WHERE (project_client_id = $client_id OR project_client_id = 0) AND project_completed_at IS NULL AND project_archived_at IS NULL ORDER BY project_name ASC");
+
+// Generate the HTML form content using output buffering.
+ob_start();
+?>
+
+<div class="modal-header bg-dark">
+    <h5 class="modal-title"><i class="fas fa-fw fa-project-diagram mr-2"></i>Project: <strong><?= "$ticket_prefix$ticket_number" ?></strong> - <?= $client_name ?></h5>
+    <button type="button" class="close text-white" data-dismiss="modal">
+        <span>&times;</span>
+    </button>
+</div>
+<form action="post.php" method="post" autocomplete="off">
+    <input type="hidden" name="ticket_id" value="<?php echo $ticket_id; ?>">
+    <div class="modal-body">
+
+        <div class="form-group">
+            <label>Project</label>
+            <div class="input-group">
+                <div class="input-group-prepend">
+                    <span class="input-group-text"><i class="fa fa-fw fa-project-diagram"></i></span>
+                </div>
+                <select class="form-control select2" name="project">
+                    <option value="0">- None -</option>
+                    <?php
+                    while ($row = mysqli_fetch_array($sql_projects)) {
+                        $project_id = intval($row['project_id']);
+                        $project_name = nullable_htmlentities($row['project_name']); ?>
+                        <option <?php if ($ticket_project_id == $project_id) { echo "selected"; } ?> 
+                            value="<?= $project_id ?>"><?= $project_name ?>
+                        </option>
+
+                    <?php } ?>
+                </select>
+            </div>
+        </div>
+
+    </div>
+
+    <div class="modal-footer">
+        <button type="submit" name="edit_ticket_project" class="btn btn-primary text-bold"><i class="fa fa-check mr-2"></i>Save</button>
+        <button type="button" class="btn btn-light" data-dismiss="modal"><i class="fa fa-times mr-2"></i>Cancel</button>
+    </div>
+
+</form>
+
+<?php
+require_once '../../../includes/modal_footer.php';
diff --git a/agent/post/ticket.php b/agent/post/ticket.php
index bbe55b50..4694ac70 100644
--- a/agent/post/ticket.php
+++ b/agent/post/ticket.php
@@ -416,6 +416,28 @@ if (isset($_POST['edit_ticket_contact'])) {
 
 }
 
+if (isset($_POST['edit_ticket_project'])) {
+
+    enforceUserPermission('module_support', 2);
+
+    $ticket_id = intval($_POST['ticket_id']);
+    $project_id = intval($_POST['project']);
+
+    $project_name = sanitizeInput(getFieldById('projects', $project_id, 'project_name'));
+    $client_id = intval(getFieldById('tickets', $ticket_id, 'ticket_client_id'));
+    $ticket_prefix = sanitizeInput(getFieldById('tickets', $ticket_id, 'ticket_prefix'));
+    $ticket_number = sanitizeInput(getFieldById('tickets', $ticket_id, 'ticket_number'));
+
+    mysqli_query($mysqli, "UPDATE tickets SET ticket_project_id = $project_id WHERE ticket_id = $ticket_id");
+
+    logAction("Ticket", "Edit", "$session_name set ticket $ticket_prefix$ticket_number project to $project_name", $client_id, $ticket_id);
+
+    flash_alert("Project changed to <strong>$project_name</strong> for Ticket <strong>$ticket_prefix$ticket_number</strong>");
+
+    redirect();
+
+}
+
 if (isset($_POST['add_ticket_watcher'])) {
 
     enforceUserPermission('module_support', 2);
diff --git a/agent/ticket.php b/agent/ticket.php
index 383bfeb1..f3f50b7e 100644
--- a/agent/ticket.php
+++ b/agent/ticket.php
@@ -1227,9 +1227,9 @@ if (isset($_GET['ticket_id'])) {
                             <h5 class="card-title"><i class="fas fa-fw fa-project-diagram mr-2 mt-2"></i>Project</h5>
                             <div class="card-tools">
                                 <?php if (empty($ticket_resolved_at) && lookupUserPermission("module_support") >= 2) { ?>
-                                    <a class="btn btn-light text-secondary btn-sm" href="#">
+                                    <button type="button" class="btn btn-light text-secondary btn-sm ajax-modal" data-modal-url="modals/ticket/ticket_edit_project.php?id=<?= $ticket_id ?>">
                                         <i class="fas fa-edit"></i>
-                                    </a>
+                                    </button>
                                 <?php } ?>
                             </div>
                         </div>

From fd93ee326367c19a8a662fdf4aa4200216574aab Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Sat, 4 Oct 2025 19:20:34 -0400
Subject: [PATCH 07/24] Allow HTML for signatures

---
 agent/ticket.php            | 2 +-
 agent/user/post/profile.php | 2 +-
 agent/user/user_details.php | 8 ++------
 3 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/agent/ticket.php b/agent/ticket.php
index f3f50b7e..03333082 100644
--- a/agent/ticket.php
+++ b/agent/ticket.php
@@ -620,7 +620,7 @@ if (isset($_GET['ticket_id'])) {
                                 <textarea
                                     class="form-control tinymceTicket" name="ticket_reply"
                                     placeholder="Type a response">
-                                    <?php echo nl2br(getFieldById('user_settings',$session_user_id,'user_config_signature','html')); ?>
+                                    <?php echo getFieldById('user_settings',$session_user_id,'user_config_signature','html'); ?>
                                 </textarea>
                             </div>
 
diff --git a/agent/user/post/profile.php b/agent/user/post/profile.php
index f730bdb6..ab781f7b 100644
--- a/agent/user/post/profile.php
+++ b/agent/user/post/profile.php
@@ -12,7 +12,7 @@ if (isset($_POST['edit_your_user_details'])) {
 
     $name = sanitizeInput($_POST['name']);
     $email = sanitizeInput($_POST['email']);
-    $signature = sanitizeInput($_POST['signature']);
+    $signature = mysqli_escape_string($mysqli,$_POST['signature']);
 
     $existing_file_name = sanitizeInput(getFieldById('users', $session_user_id, 'user_avatar'));
 
diff --git a/agent/user/user_details.php b/agent/user/user_details.php
index d5c1ac25..1a6bb0a4 100644
--- a/agent/user/user_details.php
+++ b/agent/user/user_details.php
@@ -58,12 +58,8 @@ require_once "includes/inc_all_user.php";
 
                     <div class="form-group">
                         <label>Signature</label>
-                        <div class="input-group">
-                            <div class="input-group-prepend">
-                                <span class="input-group-text"><i class="fa fa-fw fa-pen"></i></span>
-                            </div>
-                            <textarea class="form-control" name="signature" rows="4" placeholder="Create a signature automatically appended to tickets, emails etc"><?php echo getFieldById('user_settings',$session_user_id,'user_config_signature','html'); ?></textarea>
-                        </div>
+                        <textarea class="form-control tinymceTicket" name="signature" rows="4" placeholder="Create a signature automatically appended to tickets, emails etc"><?php echo getFieldById('user_settings',$session_user_id,'user_config_signature','html'); ?>
+                        </textarea>
                     </div>
                     
                     <button type="submit" name="edit_your_user_details" class="btn btn-primary btn-responsive"><i class="fas fa-check mr-2"></i>Save</button>

From 01f6615ca0fe58ed7e1815ba48096ca89a1deb21 Mon Sep 17 00:00:00 2001
From: wrongecho <marcus@itflow.org>
Date: Mon, 6 Oct 2025 16:13:08 +0100
Subject: [PATCH 08/24] rm test

---
 admin/update.php | 2 --
 1 file changed, 2 deletions(-)

diff --git a/admin/update.php b/admin/update.php
index b2ce779e..94178ae8 100644
--- a/admin/update.php
+++ b/admin/update.php
@@ -56,8 +56,6 @@ $git_log = shell_exec("git log $repo_branch..origin/$repo_branch --pretty=format
                         <p class="text-center font-weight-bold">Ignore this warning at your own risk.</p>
                     </div>
 
-                    <a class="btn btn-primary btn-lg my-4 confirm-link" href="post.php?no"><i class="fas fa-fw fa-4x fa-download mb-1"></i><h5>TEST</h5></a>
-
                     <a class="btn btn-primary btn-lg my-4 confirm-link" href="post.php?update"><i class="fas fa-fw fa-4x fa-download mb-1"></i><h5>Update App</h5></a>
                     <a class="btn btn-danger btn-lg confirm-link" href="post.php?update&force_update=1"><i class="fas fa-fw fa-4x fa-hammer mb-1"></i><h5>FORCE Update App</h5></a>
 

From d8803aaac2c5297adeb041b2ecdd4dd22c5766e0 Mon Sep 17 00:00:00 2001
From: wrongecho <marcus@itflow.org>
Date: Mon, 6 Oct 2025 16:32:42 +0100
Subject: [PATCH 09/24] prevent open redirects upon agent login

---
 login.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/login.php b/login.php
index 7be23041..b40c0ea3 100644
--- a/login.php
+++ b/login.php
@@ -215,8 +215,13 @@ if (isset($_POST['login'])) {
                 //}
 
             }
-            if (isset($_GET['last_visited'])) {
+
+            // Redirect to last visited or config home
+
+            if (isset($_GET['last_visited']) && (str_starts_with(base64_decode($_GET['last_visited']), '/agent') || str_starts_with(base64_decode($_GET['last_visited']), '/admin'))) {
+
                 redirect($_SERVER["REQUEST_SCHEME"] . "://" . $config_base_url . base64_decode($_GET['last_visited']) );
+
             } else {
                 redirect("agent/$config_start_page");
             }

From 416a8d9a94b103afe4f0de761b579f18250a520f Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Mon, 6 Oct 2025 14:19:49 -0400
Subject: [PATCH 10/24] Fix to properly redirect to the setup page if
 config_enable_setup is not set or is 1

---
 index.php | 25 +++++++++++++++++--------
 login.php | 12 +++++++++++-
 2 files changed, 28 insertions(+), 9 deletions(-)

diff --git a/index.php b/index.php
index dac0e37c..79aa2303 100644
--- a/index.php
+++ b/index.php
@@ -1,28 +1,37 @@
 <?php
 
-
-// App setup is complete?
+// Check if the app is set up
 if (file_exists("config.php")) {
     require_once "config.php";
+
+    // Check if setup is enabled (not completed)
+    if (!isset($config_enable_setup) || $config_enable_setup == 1) {
+        header("Location: /setup");
+        exit();
+    }
+
+    // Start the session
     require_once "includes/session_init.php";
 
-    // If they are an app user, send them to their start page
+    // If user is an agent
     if (isset($_SESSION['logged'])) {
         require_once "includes/load_global_settings.php";
         header("Location: /agent/$config_start_page");
+        exit();
 
-    // If they're a client, send them to the client area
+    // If user is a client
     } elseif (isset($_SESSION['client_logged_in'])) {
         header("Location: /client/");
+        exit();
 
-    // Else, require login
+    // Not logged in
     } else {
         header("Location: /login.php");
+        exit();
     }
 
-
-// Installation needs to be completed
 } else {
-	header("Location: /setup");
+    // If config.php doesn't exist, redirect to setup
+    header("Location: /setup");
     exit();
 }
diff --git a/login.php b/login.php
index b40c0ea3..2db04167 100644
--- a/login.php
+++ b/login.php
@@ -3,12 +3,22 @@
 // Enforce a Content Security Policy for security against cross-site scripting
 header("Content-Security-Policy: default-src 'self'");
 
+// Check if the config.php file exists
 if (!file_exists('config.php')) {
-    header("Location: /setup"); //must use header instead of redirect as functions isnt included yet.
+    // Redirect to the setup page if config.php doesn't exist
+    header("Location: /setup"); // Must use header as functions aren't included yet
+    exit();
 }
 
 require_once "config.php";
 
+// Check if setup mode is enabled or the variable is missing
+if (!isset($config_enable_setup) || $config_enable_setup == 1) {
+    // Redirect to the setup page
+    header("Location: /setup");
+    exit();
+}
+
 // Set Timezone
 require_once "includes/inc_set_timezone.php";
 

From a4ed906dd13bd88ac56074f47f455018d05843c8 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Mon, 6 Oct 2025 15:13:52 -0400
Subject: [PATCH 11/24] Update modal footer and header to user SERVER Document
 root with absolute path intead of relative

---
 CHANGELOG.md              | 18 ++++++++++++++++++
 includes/app_version.php  |  2 +-
 includes/modal_header.php |  6 +++---
 3 files changed, 22 insertions(+), 4 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5797ed84..c3b4f25c 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,24 @@
 
 This file documents all notable changes made to ITFlow.
 
+## [25.10.1]
+
+### Fixes
+- Fix regression missing custom Favicon.
+- Update SMTP and IMAP provider to allow for empty strings, empty means disabled.
+- Fix Client portal Microsoft SSO Logins.
+- Fix regression in Vendor Templates.
+- Fix refression in some broken links from user to agent.
+- Fix Project edit.
+- Prevent open redirects upon agent login.
+- Fix regression on switching to Webklex IMAP to allow for no SSL/TLS in IMAP.
+- Fix Setup Redirect not behaving properly when setup hasnt been performed.
+
+### Added / Changed
+- Support for HTML Signatures.
+- Add Edit Project Functionality in a ticket.
+
+
 ## [25.10]
 
 ### Breaking Changes
diff --git a/includes/app_version.php b/includes/app_version.php
index 5055c138..4e658786 100644
--- a/includes/app_version.php
+++ b/includes/app_version.php
@@ -5,4 +5,4 @@
  * Update this file each time we merge develop into master. Format is YY.MM (add a .v if there is more than one release a month.
  */
 
-DEFINE("APP_VERSION", "25.10");
+DEFINE("APP_VERSION", "25.10.1");
diff --git a/includes/modal_header.php b/includes/modal_header.php
index 695f098a..206d5349 100644
--- a/includes/modal_header.php
+++ b/includes/modal_header.php
@@ -1,8 +1,8 @@
 <?php
 
-require_once "../../../config.php";
-require_once "../../../functions.php";
-require_once "../../../includes/check_login.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
 
 header('Content-Type: application/json');
 

From 4ef075503933ec87c5fa6219170fd523e9da9ba2 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Mon, 6 Oct 2025 17:07:19 -0400
Subject: [PATCH 12/24] Update Guest header and footer to use Server Document
 Root var

---
 guest/includes/guest_footer.php | 2 +-
 guest/includes/guest_header.php | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/guest/includes/guest_footer.php b/guest/includes/guest_footer.php
index 8421428e..01c63d4a 100644
--- a/guest/includes/guest_footer.php
+++ b/guest/includes/guest_footer.php
@@ -7,7 +7,7 @@
   <!-- ./wrapper -->
 
   <!-- REQUIRED SCRIPTS -->
-  <?php require_once "../includes/inc_confirm_modal.php"; ?>
+  <?php require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_confirm_modal.php'; ?>
 
   <!-- jQuery -->
   <script src="/plugins/jquery/jquery.min.js"></script>
diff --git a/guest/includes/guest_header.php b/guest/includes/guest_header.php
index b3f1d525..339d66ac 100644
--- a/guest/includes/guest_header.php
+++ b/guest/includes/guest_header.php
@@ -1,13 +1,13 @@
 <?php
 
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/load_global_settings.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/load_global_settings.php';
 
 session_start();
 
 // Set Timezone
-require_once "../includes/inc_set_timezone.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_set_timezone.php';
 
 $ip = sanitizeInput(getIP());
 $user_agent = sanitizeInput($_SERVER['HTTP_USER_AGENT']);

From 3fcbe440d3728982177fdba5be66aa6b45a137b7 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Tue, 7 Oct 2025 12:34:26 -0400
Subject: [PATCH 13/24] Fix Missing Missing Country code in Guest View Ticket

---
 agent/post/client.php       |  6 +++---
 guest/guest_view_ticket.php | 14 +++++++++++++-
 2 files changed, 16 insertions(+), 4 deletions(-)

diff --git a/agent/post/client.php b/agent/post/client.php
index e5ac145d..f34fcbba 100644
--- a/agent/post/client.php
+++ b/agent/post/client.php
@@ -40,9 +40,9 @@ if (isset($_POST['add_client'])) {
 
     $client_id = mysqli_insert_id($mysqli);
 
-    if (!file_exists("../uploads/clients/$client_id")) {
-        mkdir("../uploads/clients/$client_id");
-        file_put_contents("../uploads/clients/$client_id/index.php", "");
+    if (!file_exists($_SERVER['DOCUMENT_ROOT'] . "/uploads/clients/$client_id")) {
+        mkdir($_SERVER['DOCUMENT_ROOT'] . "/uploads/clients/$client_id");
+        file_put_contents($_SERVER['DOCUMENT_ROOT'] . "/uploads/clients/$client_id/index.php", "");
     }
 
     // Create Referral if it doesn't exist
diff --git a/guest/guest_view_ticket.php b/guest/guest_view_ticket.php
index 619f20ce..bab520f6 100644
--- a/guest/guest_view_ticket.php
+++ b/guest/guest_view_ticket.php
@@ -17,7 +17,19 @@ if (!isset($_GET['ticket_id'], $_GET['url_key'])) {
 }
 
 // Company info
-$company_sql_row = mysqli_fetch_array(mysqli_query($mysqli, "SELECT company_phone, company_website FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1"));
+$company_sql_row = mysqli_fetch_array(mysqli_query($mysqli, "
+    SELECT 
+        company_phone,
+        company_phone_country_code,
+        company_website 
+    FROM 
+        companies,
+        settings
+    WHERE 
+        companies.company_id = settings.company_id
+        AND companies.company_id = 1"
+));
+
 $company_phone_country_code = nullable_htmlentities($company_sql_row['company_phone_country_code']);
 $company_phone = nullable_htmlentities(formatPhoneNumber($company_sql_row['company_phone'], $company_phone_country_code));
 $company_website = nullable_htmlentities($company_sql_row['company_website']);

From 16242be74e2d62df7278ef5559d6eb072c723162 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Tue, 7 Oct 2025 13:44:08 -0400
Subject: [PATCH 14/24] Update Client Nav to use Absolute links and updated
 more of the inc_alls to use Document Server Root

---
 admin/includes/inc_all_admin.php           | 22 +++++++--------
 admin/includes/side_nav.php                |  2 +-
 agent/includes/inc_all.php                 | 22 +++++++--------
 agent/includes/inc_all_client.php          | 24 ++++++++--------
 agent/includes/inc_client_overview_all.php | 20 +++++++-------
 agent/reports/includes/inc_all_reports.php | 20 +++++++-------
 agent/user/includes/inc_all_user.php       | 21 +++++++-------
 client/includes/check_login.php            |  6 ++--
 client/includes/footer.php                 |  2 +-
 client/includes/header.php                 | 32 +++++++++++-----------
 client/includes/inc_all.php                | 12 ++++----
 guest/includes/guest_header.php            | 10 +++----
 includes/settings_localization_array.php   |  1 -
 modals/notifications.php                   |  8 ++----
 14 files changed, 98 insertions(+), 104 deletions(-)

diff --git a/admin/includes/inc_all_admin.php b/admin/includes/inc_all_admin.php
index fb600215..8c051fba 100644
--- a/admin/includes/inc_all_admin.php
+++ b/admin/includes/inc_all_admin.php
@@ -1,16 +1,16 @@
 <?php
 
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/check_login.php";
-require_once "../includes/page_title.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
 if (!isset($session_is_admin) || !$session_is_admin) {
     exit(WORDING_ROLECHECK_FAILED . "<br>Tell your admin: Your role does not have admin access.");
 }
-require_once "../includes/header.php";
-require_once "../includes/top_nav.php";
-require_once "includes/side_nav.php";
-require_once "../includes/inc_wrapper.php";
-require_once "../includes/inc_alert_feedback.php";
-require_once "../includes/filter_header.php";
-require_once "../includes/app_version.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once 'includes/side_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/app_version.php';
diff --git a/admin/includes/side_nav.php b/admin/includes/side_nav.php
index ee85e322..89b06517 100644
--- a/admin/includes/side_nav.php
+++ b/admin/includes/side_nav.php
@@ -1,6 +1,6 @@
 <!-- Main Sidebar Container -->
 <aside class="main-sidebar sidebar-dark-<?php echo nullable_htmlentities($config_theme); ?> d-print-none">
-    <a class="brand-link pb-1 mt-1" href="../agent/<?php echo $config_start_page ?>">
+    <a class="brand-link pb-1 mt-1" href="/agent/<?php echo $config_start_page ?>">
         <p class="h6">
             <i class="nav-icon fas fa-arrow-left ml-3 mr-2"></i>
             <span class="brand-text">
diff --git a/agent/includes/inc_all.php b/agent/includes/inc_all.php
index 6af71f8e..6729b01c 100644
--- a/agent/includes/inc_all.php
+++ b/agent/includes/inc_all.php
@@ -1,19 +1,19 @@
 <?php
 // Configuration & core
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/check_login.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
 
 // Page setup
-require_once "../includes/page_title.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
 
 // Layout UI
-require_once "../includes/header.php";
-require_once "../includes/top_nav.php";
-require_once "includes/get_side_nav_counts.php";
-require_once "includes/side_nav.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once 'includes/get_side_nav_counts.php';
+require_once 'includes/side_nav.php';
 
 // Wrapper & alerts
-require_once "../includes/inc_wrapper.php";
-require_once "../includes/inc_alert_feedback.php";
-require_once "../includes/filter_header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
diff --git a/agent/includes/inc_all_client.php b/agent/includes/inc_all_client.php
index 2c78f774..f2324474 100644
--- a/agent/includes/inc_all_client.php
+++ b/agent/includes/inc_all_client.php
@@ -1,9 +1,9 @@
 <?php
 
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/check_login.php";
-require_once "../includes/page_title.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
 
 // Perms
 enforceUserPermission('module_client');
@@ -35,7 +35,7 @@ if (isset($_GET['client_id'])) {
     );
 
     if (mysqli_num_rows($sql) == 0) {
-        require_once "../includes/header.php";
+        require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
 
         echo "<center><h1 class='text-secondary mt-5'>Nothing to see here</h1></center>";
     } else {
@@ -304,10 +304,10 @@ if (isset($_GET['client_id'])) {
     }
 }
 
-require_once "../includes/header.php";
-require_once "../includes/top_nav.php";
-require_once "includes/client_side_nav.php";
-require_once "../includes/inc_wrapper.php";
-require_once "../includes/inc_alert_feedback.php";
-require_once "includes/inc_client_top_head.php";
-require_once "../includes/filter_header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once 'includes/client_side_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once 'includes/inc_client_top_head.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
diff --git a/agent/includes/inc_client_overview_all.php b/agent/includes/inc_client_overview_all.php
index 22dce8c0..7a44e384 100644
--- a/agent/includes/inc_client_overview_all.php
+++ b/agent/includes/inc_client_overview_all.php
@@ -1,12 +1,12 @@
 <?php
 
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/check_login.php";
-require_once "../includes/page_title.php";
-require_once "../includes/header.php";
-require_once "../includes/top_nav.php";
-require_once "includes/client_overview_side_nav.php";
-require_once "../includes/inc_wrapper.php";
-require_once "../includes/inc_alert_feedback.php";
-require_once "../includes/filter_header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once 'includes/client_overview_side_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
diff --git a/agent/reports/includes/inc_all_reports.php b/agent/reports/includes/inc_all_reports.php
index 60ac3c69..24fa2ed0 100644
--- a/agent/reports/includes/inc_all_reports.php
+++ b/agent/reports/includes/inc_all_reports.php
@@ -1,17 +1,17 @@
 <?php
 
-require_once "../../config.php";
-require_once "../../functions.php";
-require_once "../../includes/check_login.php";
-require_once "../../includes/page_title.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
 // Reporting Perms
 enforceUserPermission('module_reporting');
-require_once "../../includes/header.php";
-require_once "../../includes/top_nav.php";
-require_once "includes/reports_side_nav.php";
-require_once "../../includes/inc_wrapper.php";
-require_once "../../includes/inc_alert_feedback.php";
-require_once "../../includes/filter_header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/agent/reports/includes/reports_side_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
 
 // Set variable default values
 $largest_income_month = 0;
diff --git a/agent/user/includes/inc_all_user.php b/agent/user/includes/inc_all_user.php
index 72429109..c1b60d35 100644
--- a/agent/user/includes/inc_all_user.php
+++ b/agent/user/includes/inc_all_user.php
@@ -1,13 +1,12 @@
 <?php
 
-require_once "../../config.php";
-require_once "../../functions.php";
-require_once "../../includes/check_login.php";
-require_once "../../includes/page_title.php";
-require_once "../../includes/header.php";
-require_once "../../includes/top_nav.php";
-require_once "includes/user_side_nav.php";
-require_once "../../includes/inc_wrapper.php";
-require_once "../../includes/inc_alert_feedback.php";
-require_once "../../includes/filter_header.php";
-
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/header.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/top_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/agent/user/includes/user_side_nav.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
diff --git a/client/includes/check_login.php b/client/includes/check_login.php
index d5935f96..52f26af7 100644
--- a/client/includes/check_login.php
+++ b/client/includes/check_login.php
@@ -16,18 +16,18 @@ if (!isset($_SESSION)) {
 }
 
 if (!isset($_SESSION['client_logged_in']) || !$_SESSION['client_logged_in']) {
-    header("Location: login.php");
+    header("Location: /client/login.php");
     die;
 }
 
 // Check user type
 if ($_SESSION['user_type'] !== 2) {
-    header("Location: login.php");
+    header("Location: /client/login.php");
     exit();
 }
 
 // Set Timezone
-require_once "../includes/inc_set_timezone.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_set_timezone.php';
 
 // User IP & UA
 $session_ip = sanitizeInput(getIP());
diff --git a/client/includes/footer.php b/client/includes/footer.php
index 4cb42257..301d9ab0 100644
--- a/client/includes/footer.php
+++ b/client/includes/footer.php
@@ -21,7 +21,7 @@
 </p>
 
 
-<?php require_once "../includes/inc_confirm_modal.php"; ?>
+<?php require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_confirm_modal.php'; ?>
 
 <!-- jQuery -->
 <script src="/plugins/jquery/jquery.min.js"></script>
diff --git a/client/includes/header.php b/client/includes/header.php
index 1bf3e2b2..6b8ff41c 100644
--- a/client/includes/header.php
+++ b/client/includes/header.php
@@ -20,7 +20,7 @@ header("X-Frame-Options: DENY"); // Legacy
 
     <!-- Favicon: If Fav Icon exists, else use the default one -->
     <?php if(file_exists($_SERVER['DOCUMENT_ROOT'] . '/uploads/favicon.ico')) { ?>
-        <link rel="icon" type="image/x-icon" href="/uploads/favicon.ico">
+        <link rel="icon" href="/uploads/favicon.ico">
     <?php } ?>
 
     <!-- Font Awesome -->
@@ -43,10 +43,10 @@ header("X-Frame-Options: DENY"); // Legacy
         <div class="collapse navbar-collapse" id="navbarSupportedContent">
             <ul class="navbar-nav mr-auto">
                 <li class="nav-item <?php if (basename($_SERVER['PHP_SELF']) == "index.php") {echo "active";} ?>">
-                    <a class="nav-link" href="index.php">Home</a>
+                    <a class="nav-link" href="/client/index.php">Home</a>
                 </li>
                 <li class="nav-item">
-                    <a class="nav-link <?php if (basename($_SERVER['PHP_SELF']) == "tickets.php" || basename($_SERVER['PHP_SELF']) == "ticket_add.php" || basename($_SERVER['PHP_SELF']) == "ticket.php") {echo "active";} ?>" href="tickets.php">Tickets</a>
+                    <a class="nav-link <?php if (basename($_SERVER['PHP_SELF']) == "tickets.php" || basename($_SERVER['PHP_SELF']) == "ticket_add.php" || basename($_SERVER['PHP_SELF']) == "ticket.php") {echo "active";} ?>" href="/client/tickets.php">Tickets</a>
                 </li>
 
                 <?php if (($session_contact_primary == 1 || $session_contact_is_billing_contact) && $config_module_enable_accounting == 1) { ?>
@@ -55,10 +55,10 @@ header("X-Frame-Options: DENY"); // Legacy
                             Finance
                         </a>
                         <div class="dropdown-menu" aria-labelledby="navbarDropdown1">
-                            <a class="dropdown-item" href="invoices.php">Invoices</a>
-                            <a class="dropdown-item" href="recurring_invoices.php">Recurring Invoices</a>
-                            <a class="dropdown-item" href="quotes.php">Quotes</a>
-                            <a class="dropdown-item" href="saved_payment_methods.php">Saved Payments</a>
+                            <a class="dropdown-item" href="/client/invoices.php">Invoices</a>
+                            <a class="dropdown-item" href="/client/recurring_invoices.php">Recurring Invoices</a>
+                            <a class="dropdown-item" href="/client/quotes.php">Quotes</a>
+                            <a class="dropdown-item" href="/client/saved_payment_methods.php">Saved Payments</a>
                         </div>
                     </li>
                 <?php } ?>
@@ -69,12 +69,12 @@ header("X-Frame-Options: DENY"); // Legacy
                             Technical
                         </a>
                         <div class="dropdown-menu" aria-labelledby="navbarDropdown2">
-                            <a class="dropdown-item" href="contacts.php">Contacts</a>
-                            <a class="dropdown-item" href="assets.php">Assets</a>
-                            <a class="dropdown-item" href="documents.php">Documents</a>
-                            <a class="dropdown-item" href="domains.php">Domains</a>
-                            <a class="dropdown-item" href="certificates.php">Certificates</a>
-                            <a class="dropdown-item" href="ticket_view_all.php">All tickets</a>
+                            <a class="dropdown-item" href="/client/contacts.php">Contacts</a>
+                            <a class="dropdown-item" href="/client/assets.php">Assets</a>
+                            <a class="dropdown-item" href="/client/documents.php">Documents</a>
+                            <a class="dropdown-item" href="/client/domains.php">Domains</a>
+                            <a class="dropdown-item" href="/client/certificates.php">Certificates</a>
+                            <a class="dropdown-item" href="/client/ticket_view_all.php">All tickets</a>
                         </div>
                     </li>
                 <?php } ?>
@@ -110,9 +110,9 @@ header("X-Frame-Options: DENY"); // Legacy
                         <?php echo stripslashes(nullable_htmlentities($session_contact_name)); ?>
                     </a>
                     <div class="dropdown-menu">
-                        <a class="dropdown-item" href="profile.php"><i class="fas fa-fw fa-user mr-2"></i>Account</a>
+                        <a class="dropdown-item" href="/client/profile.php"><i class="fas fa-fw fa-user mr-2"></i>Account</a>
                         <div class="dropdown-divider"></div>
-                        <a class="dropdown-item" href="post.php?logout"><i class="fas fa-fw fa-sign-out-alt mr-2"></i>Sign out</a>
+                        <a class="dropdown-item" href="/client/post.php?logout"><i class="fas fa-fw fa-sign-out-alt mr-2"></i>Sign out</a>
                     </div>
                 </li>
             </ul>
@@ -128,7 +128,7 @@ header("X-Frame-Options: DENY"); // Legacy
     <div class="row mb-3">
         <div class="col-md-1 text-center">
             <?php if (!empty($session_contact_photo)) { ?>
-                <img src="<?php echo "../uploads/clients/$session_client_id/$session_contact_photo"; ?>" alt="..." height="50" width="50" class="img-circle img-responsive">
+                <img src="/uploads/clients/<?= $session_client_id ?>/<?= $session_contact_photo ?>" alt="..." height="50" width="50" class="img-circle img-responsive">
 
             <?php } else { ?>
                 <span class="fa-stack fa-2x rounded-left">
diff --git a/client/includes/inc_all.php b/client/includes/inc_all.php
index 6c85263d..8feae165 100644
--- a/client/includes/inc_all.php
+++ b/client/includes/inc_all.php
@@ -4,9 +4,9 @@
  * Includes for all pages (except login)
  */
 
-require_once '../config.php';
-require_once '../includes/load_global_settings.php';
-require_once '../functions.php';
-require_once 'check_login.php';
-require_once 'functions.php';
-require_once "header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/load_global_settings.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/client/includes/check_login.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/client/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/client/includes/header.php';
diff --git a/guest/includes/guest_header.php b/guest/includes/guest_header.php
index 339d66ac..e1d907a3 100644
--- a/guest/includes/guest_header.php
+++ b/guest/includes/guest_header.php
@@ -37,7 +37,7 @@ $session_company_name = $row['company_name'];
     If Fav Icon exists else use the default one 
     -->
     <?php if(file_exists($_SERVER['DOCUMENT_ROOT'] . '/uploads/favicon.ico')) { ?>
-        <link rel="icon" type="image/x-icon" href="/uploads/favicon.ico">
+        <link rel="icon" href="/uploads/favicon.ico">
     <?php } ?>
 
     <!-- Font Awesome Icons -->
@@ -46,10 +46,10 @@ $session_company_name = $row['company_name'];
     <link rel="stylesheet" href="/plugins/adminlte/css/adminlte.min.css">
 
     <!-- Custom Style Sheet -->
-    <link href="/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css" rel="stylesheet" type="text/css">
-    <link href="/plugins/select2/css/select2.min.css" rel="stylesheet" type="text/css">
-    <link href="/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css" rel="stylesheet" type="text/css">
-    <link href='/plugins/daterangepicker/daterangepicker.css' rel='stylesheet' />
+    <link rel="stylesheet" href="/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css">
+    <link rel="stylesheet" href="/plugins/select2/css/select2.min.css">
+    <link rel="stylesheet" href="/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css">
+    <link rel="stylesheet" href='/plugins/daterangepicker/daterangepicker.css'>
 
 </head>
 <body class="layout-top-nav">
diff --git a/includes/settings_localization_array.php b/includes/settings_localization_array.php
index 926c49d3..6555e2da 100644
--- a/includes/settings_localization_array.php
+++ b/includes/settings_localization_array.php
@@ -773,4 +773,3 @@ $locales_array = [
     'zu_ZA'       => 'Zulu (South Africa)',
     'zu'          => 'Zulu',
 ];
-?>
\ No newline at end of file
diff --git a/modals/notifications.php b/modals/notifications.php
index 5bd0b39d..dd1a30df 100644
--- a/modals/notifications.php
+++ b/modals/notifications.php
@@ -1,8 +1,6 @@
 <?php
 
-require_once "../config.php";
-require_once "../functions.php";
-require_once "../includes/check_login.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/modal_header.php';
 
 header('Content-Type: application/json');
 
@@ -137,7 +135,5 @@ $(document).ready(function () {
 </script>
 
 <?php
-    $content = ob_get_clean();
 
-    // Return the title and content as a JSON response
-    echo json_encode(['content' => $content]);
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/modal_footer.php';

From 35a7506c26a930f9a378ad6b9250b77d94a367b8 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Tue, 7 Oct 2025 13:55:54 -0400
Subject: [PATCH 15/24] Copy crons from /scripts to /cron, added custom
 directories for api/v1/, /setup, /cron and /scripts

---
 .gitignore                     |    9 +
 api/v1/custom/readme.php       |    8 +
 cron/certificate_refresher.php |  104 +++
 cron/cron.php                  | 1238 ++++++++++++++++++++++++++++++++
 cron/custom/readme.php         |    8 +
 cron/domain_refresher.php      |  118 +++
 scripts/custom/readme.php      |    8 +
 setup/custom/readme.php        |    8 +
 8 files changed, 1501 insertions(+)
 create mode 100644 api/v1/custom/readme.php
 create mode 100644 cron/certificate_refresher.php
 create mode 100644 cron/cron.php
 create mode 100644 cron/custom/readme.php
 create mode 100644 cron/domain_refresher.php
 create mode 100644 scripts/custom/readme.php
 create mode 100644 setup/custom/readme.php

diff --git a/.gitignore b/.gitignore
index f83f4883..751f2adf 100644
--- a/.gitignore
+++ b/.gitignore
@@ -34,5 +34,14 @@ client/custom/*
 !client/custom/readme.php
 guest/custom/*
 !guest/custom/readme.php
+cron/custom/*
+!cron/custom/readme.php
+scripts/custom/*
+!scripts/custom/readme.php
+setup/custom/*
+!setup/custom/readme.php
+api/v1/custom/*
+!api/v1/custom/readme.php
 .zed
 
+
diff --git a/api/v1/custom/readme.php b/api/v1/custom/readme.php
new file mode 100644
index 00000000..498c1b53
--- /dev/null
+++ b/api/v1/custom/readme.php
@@ -0,0 +1,8 @@
+<?php
+
+/*
+
+- Custom Pages -
+     If you wish to add custom pages to ITFlow, add them to this directory"
+     Link to Documentation for File Directory Structure and examples
+*/
diff --git a/cron/certificate_refresher.php b/cron/certificate_refresher.php
new file mode 100644
index 00000000..70149aba
--- /dev/null
+++ b/cron/certificate_refresher.php
@@ -0,0 +1,104 @@
+<?php
+
+// Set working directory to the directory this cron script lives at.
+chdir(dirname(__FILE__));
+
+// Ensure we're running from command line
+if (php_sapi_name() !== 'cli') {
+    die("This script must be run from the command line.\n");
+}
+
+require_once "../config.php";
+
+// Set Timezone
+require_once "../includes/inc_set_timezone.php";
+require_once "../functions.php";
+
+
+$sql_settings = mysqli_query($mysqli, "SELECT * FROM settings WHERE settings.company_id = 1");
+
+$row = mysqli_fetch_array($sql_settings);
+
+// Company Settings
+$config_enable_cron = intval($row['config_enable_cron']);
+
+// Check cron is enabled
+if ($config_enable_cron == 0) {
+    logApp("Cron-Certificate-Refresher", "error", "Cron Certificate Refresh unable to run - cron not enabled in admin settings.");
+    exit("Cron: is not enabled -- Quitting..");
+}
+
+/*
+ * ###############################################################################################################
+ *  UPDATE CERTIFICATE EXPIRY DATE
+ * ###############################################################################################################
+ */
+
+$sql_certificates = mysqli_query(
+    $mysqli,
+    "SELECT * FROM certificates
+        LEFT JOIN clients ON certificates.certificate_client_id = clients.client_id
+        WHERE certificate_archived_at IS NULL
+        AND client_archived_at IS NULL"
+);
+
+while ($row = mysqli_fetch_array($sql_certificates)) {
+    $certificate_id = intval($row['certificate_id']);
+    $domain = sanitizeInput($row['certificate_domain']);
+
+    $certificate = getSSL($domain);
+
+    $expire = sanitizeInput($certificate['expire']);
+    $issued_by = sanitizeInput($certificate['issued_by']);
+    $public_key = sanitizeInput($certificate['public_key']);
+
+    if (!empty($expire)) {
+
+        echo "\n$domain\n";
+        echo "$issued_by\n";
+        echo "$expire\n";
+        echo "$public_key\n\n";
+
+        $expire = "'" . $expire . "'";
+
+        // Get current certificate info
+        $original_certificate_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
+            SELECT
+                certificates.*,
+                domains.domain_name
+            FROM certificates
+            LEFT JOIN domains ON certificate_domain_id = domain_id
+            WHERE certificate_id = $certificate_id
+        "));
+
+        // Update
+        mysqli_query($mysqli,"UPDATE certificates SET certificate_issued_by = '$issued_by', certificate_expire = $expire, certificate_public_key = '$public_key' WHERE certificate_id = $certificate_id");
+
+        // Fetch the updated info
+        $new_certificate_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
+            SELECT
+                certificates.*,
+                domains.domain_name
+            FROM certificates
+            LEFT JOIN domains ON certificate_domain_id = domain_id
+            WHERE certificate_id = $certificate_id
+        "));
+
+        // Compare/log changes between old/new info
+        $ignored_columns = ["certificate_public_key", "certificate_updated_at", "certificate_accessed_at", "certificate_domain_id"];
+        foreach ($original_certificate_info as $column => $old_value) {
+            $new_value = $new_certificate_info[$column];
+            if ($old_value != $new_value && !in_array($column, $ignored_columns)) {
+                $column = sanitizeInput($column);
+                $old_value = sanitizeInput($old_value);
+                $new_value = sanitizeInput($new_value);
+                mysqli_query($mysqli,"INSERT INTO certificate_history SET certificate_history_column = '$column', certificate_history_old_value = '$old_value', certificate_history_new_value = '$new_value', certificate_history_certificate_id = $certificate_id");
+            }
+        }
+
+    } else {
+        logApp("Cron-Certificate-Refresher", "error", "Cron Certificate Refresh - error updating Error updating $domain.");
+        error_log("Certificate Cron Error - Error updating $domain");
+    }
+
+}
diff --git a/cron/cron.php b/cron/cron.php
new file mode 100644
index 00000000..14d34a9a
--- /dev/null
+++ b/cron/cron.php
@@ -0,0 +1,1238 @@
+<?php
+
+// Set working directory to the directory this cron script lives at.
+chdir(dirname(__FILE__));
+
+// Ensure we're running from command line
+if (php_sapi_name() !== 'cli') {
+    die("This script must be run from the command line.\n");
+}
+
+require_once "../config.php";
+
+// Set Timezone
+require_once "../includes/inc_set_timezone.php";
+require_once "../functions.php";
+
+$sql_companies = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1");
+
+$row = mysqli_fetch_array($sql_companies);
+
+// Company Details
+$company_name = sanitizeInput($row['company_name']);
+$company_phone = sanitizeInput(formatPhoneNumber($row['company_phone'], $row['company_phone_country_code']));
+$company_email = sanitizeInput($row['company_email']);
+$company_website = sanitizeInput($row['company_website']);
+$company_city = sanitizeInput($row['company_city']);
+$company_state = sanitizeInput($row['company_state']);
+$company_country = sanitizeInput($row['company_country']);
+$company_locale = sanitizeInput($row['company_locale']);
+$company_currency = sanitizeInput($row['company_currency']);
+
+// Company Settings
+$config_enable_cron = intval($row['config_enable_cron']);
+$config_invoice_overdue_reminders = $row['config_invoice_overdue_reminders'];
+$config_invoice_prefix = sanitizeInput($row['config_invoice_prefix']);
+$config_invoice_from_email = sanitizeInput($row['config_invoice_from_email']);
+$config_invoice_from_name = sanitizeInput($row['config_invoice_from_name']);
+$config_invoice_late_fee_enable = intval($row['config_invoice_late_fee_enable']);
+$config_invoice_late_fee_percent = floatval($row['config_invoice_late_fee_percent']);
+
+// Mail Settings
+$config_smtp_host = $row['config_smtp_host'];
+$config_smtp_username = $row['config_smtp_username'];
+$config_smtp_password = $row['config_smtp_password'];
+$config_smtp_port = intval($row['config_smtp_port']);
+$config_smtp_encryption = $row['config_smtp_encryption'];
+$config_mail_from_email = sanitizeInput($row['config_mail_from_email']);
+$config_mail_from_name = sanitizeInput($row['config_mail_from_name']);
+$config_recurring_auto_send_invoice = intval($row['config_recurring_auto_send_invoice']);
+
+// Tickets
+$config_ticket_prefix = sanitizeInput($row['config_ticket_prefix']);
+$config_ticket_from_name = sanitizeInput($row['config_ticket_from_name']);
+$config_ticket_from_email = sanitizeInput($row['config_ticket_from_email']);
+$config_ticket_client_general_notifications = intval($row['config_ticket_client_general_notifications']);
+$config_ticket_autoclose_hours = intval($row['config_ticket_autoclose_hours']);
+$config_ticket_new_ticket_notification_email = sanitizeInput($row['config_ticket_new_ticket_notification_email']);
+
+// Get Config for Telemetry
+$config_theme = $row['config_theme'];
+$config_ticket_email_parse = intval($row['config_ticket_email_parse']);
+$config_module_enable_itdoc = intval($row['config_module_enable_itdoc']);
+$config_module_enable_ticketing = intval($row['config_module_enable_ticketing']);
+$config_module_enable_accounting = intval($row['config_module_enable_accounting']);
+$config_telemetry = intval($row['config_telemetry']);
+
+// Alerts
+$config_enable_alert_domain_expire = intval($row['config_enable_alert_domain_expire']);
+$config_send_invoice_reminders = intval($row['config_send_invoice_reminders']);
+
+// Remember-me Token Expiry
+$config_login_remember_me_expire = intval($row['config_login_remember_me_expire']);
+
+// Log retention
+$config_log_retention = intval($row['config_log_retention']);
+
+// Set Currency Format
+$currency_format = numfmt_create($company_locale, NumberFormatter::CURRENCY);
+
+// White label
+$config_whitelabel_enabled = intval($row['config_whitelabel_enabled']);
+$config_whitelabel_key = $row['config_whitelabel_key'];
+
+// Check cron is enabled
+if ($config_enable_cron == 0) {
+    exit("Cron: is not enabled -- Quitting..");
+}
+
+/*
+ * ###############################################################################################################
+ *  STARTUP ACTIONS
+ * ###############################################################################################################
+ */
+
+//Logging
+logApp("Cron", "info", "Cron Started");
+
+/*
+ * ###############################################################################################################
+ *  CLEAN UP (OLD) DATA
+ * ###############################################################################################################
+ */
+
+// Clean-up ticket views table used for collision detection
+mysqli_query($mysqli, "TRUNCATE TABLE ticket_views");
+
+// Clean-up shared items that have been used
+mysqli_query($mysqli, "DELETE FROM shared_items WHERE item_views = item_view_limit");
+
+// Clean-up shared items that have expired
+mysqli_query($mysqli, "DELETE FROM shared_items WHERE item_expire_at < NOW()");
+
+// Invalidate any password reset links
+mysqli_query($mysqli, "UPDATE users SET user_password_reset_token = NULL WHERE user_archived_at IS NULL");
+
+// Clean-up old dismissed notifications
+mysqli_query($mysqli, "DELETE FROM notifications WHERE notification_dismissed_at < CURDATE() - INTERVAL 90 DAY");
+
+// Clean-up mail queue
+mysqli_query($mysqli, "DELETE FROM email_queue WHERE email_queued_at < CURDATE() - INTERVAL 90 DAY");
+
+// Clean-up old remember me tokens
+mysqli_query($mysqli, "DELETE FROM remember_tokens WHERE remember_token_created_at < CURDATE() - INTERVAL $config_login_remember_me_expire DAY");
+
+// Cleanup old audit logs
+mysqli_query($mysqli, "DELETE FROM logs WHERE log_created_at < CURDATE() - INTERVAL $config_log_retention DAY");
+
+// Cleanup old app/debug logs
+mysqli_query($mysqli, "DELETE FROM app_logs WHERE app_log_created_at < CURDATE() - INTERVAL $config_log_retention DAY");
+
+// Cleanup old auth logs
+mysqli_query($mysqli, "DELETE FROM auth_logs WHERE auth_log_created_at < CURDATE() - INTERVAL $config_log_retention DAY");
+
+// CLeanup old domain history
+$sql = mysqli_query($mysqli, "SELECT domain_id FROM domains");
+while ($row = mysqli_fetch_array($sql)) {
+    $domain_id = intval($row['domain_id']);
+    mysqli_query($mysqli, "
+        DELETE FROM domain_history
+        WHERE domain_history_id NOT IN (
+            SELECT domain_history_id FROM (
+                SELECT domain_history_id FROM domain_history
+                WHERE domain_history_domain_id = $domain_id
+                ORDER BY domain_history_modified_at DESC
+                LIMIT 25
+            ) AS recent_entries
+        ) AND domain_history_domain_id = $domain_id
+    ");
+}
+
+// Logging
+// logAction("Cron", "Task", "Cron cleaned up old data");
+
+/*
+ * ###############################################################################################################
+ *  ACTION DATA
+ * ###############################################################################################################
+ */
+
+// Whitelabel - Disable if expired/invalid
+if ($config_whitelabel_enabled && !validateWhitelabelKey($config_whitelabel_key)) {
+    mysqli_query($mysqli, "UPDATE settings SET config_whitelabel_enabled = 0, config_whitelabel_key = '' WHERE company_id = 1");
+    appNotify("Settings", "White-labelling was disabled due to expired/invalid key", "/admin/settings_modules.php");
+}
+
+
+// GET NOTIFICATIONS
+
+// DOMAINS EXPIRING
+
+if ($config_enable_alert_domain_expire == 1) {
+
+    $domainAlertArray = [1,7,45];
+
+    foreach ($domainAlertArray as $day) {
+
+        //Get Domains Expiring
+        $sql = mysqli_query(
+            $mysqli,
+            "SELECT * FROM domains
+            LEFT JOIN clients ON domain_client_id = client_id
+            WHERE domain_expire IS NOT NULL AND domain_expire = CURDATE() + INTERVAL $day DAY"
+        );
+
+        while ($row = mysqli_fetch_array($sql)) {
+            $domain_id = intval($row['domain_id']);
+            $domain_name = sanitizeInput($row['domain_name']);
+            $domain_expire = sanitizeInput($row['domain_expire']);
+            $client_id = intval($row['client_id']);
+            $client_name = sanitizeInput($row['client_name']);
+
+            appNotify("Domain Expiring", "Domain $domain_name for $client_name will expire in $day Days on $domain_expire", "/agent/domains.php?client_id=$client_id", $client_id);
+
+        }
+
+    }
+    // Logging
+    // logAction("Cron", "Task", "Cron created notifications for domains expiring");
+}
+
+// CERTIFICATES EXPIRING
+
+$certificateAlertArray = [1,7,45];
+
+foreach ($certificateAlertArray as $day) {
+
+    //Get Certs Expiring
+    $sql = mysqli_query(
+        $mysqli,
+        "SELECT * FROM certificates
+        LEFT JOIN clients ON certificate_client_id = client_id
+        WHERE certificate_expire = CURDATE() + INTERVAL $day DAY"
+    );
+
+    while ($row = mysqli_fetch_array($sql)) {
+        $certificate_id = intval($row['certificate_id']);
+        $certificate_name = sanitizeInput($row['certificate_name']);
+        $certificate_domain = sanitizeInput($row['certificate_domain']);
+        $certificate_expire = sanitizeInput($row['certificate_expire']);
+        $certificate_public_key = $row['certificate_public_key']; // Sanitize input breaks parsing
+        $client_id = intval($row['client_id']);
+        $client_name = sanitizeInput($row['client_name']);
+
+        // Calculate the validity period
+        if (!empty($certificate_public_key)) {
+            $cert_public_key_obj = openssl_x509_parse($certificate_public_key);
+            $validity_days = intval(round(($cert_public_key_obj['validTo_time_t'] - $cert_public_key_obj['validFrom_time_t']) / (60 * 60 * 24)));
+
+            // Only raise a notification at 45 days if the certificate is valid for more than 90 days (i.e. not a LE)
+
+            if ($day == 45 && $validity_days < 91) {
+                // LE certificate - Do nothing here
+                echo "Not raising notification for LE certificate $certificate_name expiring in 45 days";
+
+            } else {
+                // This certificate is either expiring in 1 or 7 days or is a non-LE certificate expiring in 45 days
+                appNotify("Certificate Expiring", "Certificate $certificate_name for $client_name will expire in $day day(s) on $certificate_expire", "/agent/certificates.php?client_id=$client_id", $client_id);
+            }
+
+        } else {
+            // No public key - notify anyway as we can't check the validity period
+            appNotify("Certificate Expiring", "Certificate $certificate_name for $client_name will expire in $day day(s) on $certificate_expire", "/agent/certificates.php?client_id=$client_id", $client_id);
+        }
+
+    }
+
+}
+// Logging
+// logAction("Cron", "Task", "Cron created notifications for certificates expiring");
+
+// Asset Warranties Expiring
+
+$warranty_alert_array = [1,7,45];
+
+foreach ($warranty_alert_array as $day) {
+
+    //Get Asset Warranty Expiring
+    $sql = mysqli_query(
+        $mysqli,
+        "SELECT * FROM assets
+        LEFT JOIN clients ON asset_client_id = client_id
+        WHERE asset_warranty_expire = CURDATE() + INTERVAL $day DAY"
+    );
+
+    while ($row = mysqli_fetch_array($sql)) {
+        $asset_id = intval($row['asset_id']);
+        $asset_name = sanitizeInput($row['asset_name']);
+        $asset_warranty_expire = sanitizeInput($row['asset_warranty_expire']);
+        $client_id = intval($row['client_id']);
+        $client_name = sanitizeInput($row['client_name']);
+
+        appNotify("Asset Warranty Expiring", "Asset $asset_name warranty for $client_name will expire in $day Days on $asset_warranty_expire", "/agent/assets.php?client_id=$client_id", $client_id);
+
+    }
+
+}
+// Logging
+// logAction("Cron", "Task", "Cron created notifications for asset warranties expiring");
+
+// Notify of New Tickets
+// Get Ticket Pending Assignment
+$sql_tickets_pending_assignment = mysqli_query($mysqli,"SELECT ticket_id FROM tickets WHERE ticket_status = 1");
+
+$tickets_pending_assignment = mysqli_num_rows($sql_tickets_pending_assignment);
+
+if ($tickets_pending_assignment > 0) {
+
+    appNotify("Pending Tickets", "There are $tickets_pending_assignment new tickets pending assignment", "/agent/tickets.php?status=New");
+
+    // Logging
+    logApp("Cron", "info", "Cron created notifications for new tickets that are pending assignment");
+}
+
+// Recurring tickets
+
+// Get recurring tickets for today
+$sql_recurring_tickets = mysqli_query($mysqli, "SELECT * FROM recurring_tickets WHERE recurring_ticket_next_run = CURDATE()");
+
+if (mysqli_num_rows($sql_recurring_tickets) > 0) {
+    while ($row = mysqli_fetch_array($sql_recurring_tickets)) {
+
+        $recurring_ticket_id = intval($row['recurring_ticket_id']);
+        $subject = sanitizeInput($row['recurring_ticket_subject']);
+        $details = mysqli_real_escape_string($mysqli, $row['recurring_ticket_details']);
+        $priority = sanitizeInput($row['recurring_ticket_priority']);
+        $frequency = sanitizeInput(strtolower($row['recurring_ticket_frequency']));
+        $billable = intval($row['recurring_ticket_billable']);
+        $created_id = intval($row['recurring_ticket_created_by']);
+        $assigned_id = intval($row['recurring_ticket_assigned_to']);
+        $client_id = intval($row['recurring_ticket_client_id']);
+        $contact_id = intval($row['recurring_ticket_contact_id']);
+        $asset_id = intval($row['recurring_ticket_asset_id']);
+        $category = intval($row['recurring_ticket_category']);
+
+        $ticket_status = 1; // Default
+        if ($assigned_id > 0) {
+            $ticket_status = 2; // Set to open if we've auto-assigned an agent
+        }
+
+        // Assign this new ticket the next ticket number
+        $ticket_number_sql = mysqli_fetch_array(mysqli_query($mysqli, "SELECT config_ticket_next_number FROM settings WHERE company_id = 1"));
+        $ticket_number = intval($ticket_number_sql['config_ticket_next_number']);
+
+        // Increment config_ticket_next_number by 1 (for the next ticket)
+        $new_config_ticket_next_number = $ticket_number + 1;
+        mysqli_query($mysqli, "UPDATE settings SET config_ticket_next_number = $new_config_ticket_next_number WHERE company_id = 1");
+
+        // Raise the ticket
+        mysqli_query($mysqli, "INSERT INTO tickets SET ticket_prefix = '$config_ticket_prefix', ticket_number = $ticket_number, ticket_source = 'Recurring', ticket_subject = '$subject', ticket_details = '$details', ticket_priority = '$priority', ticket_status = '$ticket_status', ticket_billable = $billable, ticket_created_by = $created_id, ticket_assigned_to = $assigned_id, ticket_contact_id = $contact_id, ticket_client_id = $client_id, ticket_asset_id = $asset_id, ticket_category = $category, ticket_recurring_ticket_id = $recurring_ticket_id");
+        $id = mysqli_insert_id($mysqli);
+
+        // Copy Additional Assets from Recurring ticket to new ticket
+        mysqli_query($mysqli, "INSERT INTO ticket_assets (ticket_id, asset_id)
+        SELECT $id, asset_id
+        FROM recurring_ticket_assets
+        WHERE recurring_ticket_id = $recurring_ticket_id");
+
+        // Logging
+        logAction("Ticket", "Create", "Cron created recurring scheduled $frequency ticket - $subject", $client_id, $id);
+
+        customAction('ticket_create', $id);
+
+        // Notifications
+
+        // Get client/contact/ticket details
+        $sql = mysqli_query(
+            $mysqli,
+            "SELECT client_name, contact_name, contact_email, ticket_prefix, ticket_number, ticket_priority, ticket_subject, ticket_details FROM tickets
+                LEFT JOIN clients ON ticket_client_id = client_id
+                LEFT JOIN contacts ON ticket_contact_id = contact_id
+                WHERE ticket_id = $id"
+        );
+        $row = mysqli_fetch_array($sql);
+
+        $contact_name = sanitizeInput($row['contact_name']);
+        $contact_email = sanitizeInput($row['contact_email']);
+        $client_name = sanitizeInput($row['client_name']);
+        $contact_name = sanitizeInput($row['contact_name']);
+        $contact_email = sanitizeInput($row['contact_email']);
+        $ticket_prefix = sanitizeInput($row['ticket_prefix']);
+        $ticket_number = intval($row['ticket_number']);
+        $ticket_priority = sanitizeInput($row['ticket_priority']);
+        $ticket_subject = sanitizeInput($row['ticket_subject']);
+        $ticket_details = mysqli_real_escape_string($mysqli, $row['ticket_details']);
+
+        $data = [];
+
+        // Notify client by email their ticket has been raised, if general notifications are turned on & there is a valid contact email
+        if (!empty($config_smtp_host) && $config_ticket_client_general_notifications == 1 && filter_var($contact_email, FILTER_VALIDATE_EMAIL)) {
+
+            $email_subject = "Ticket created - [$ticket_prefix$ticket_number] - $ticket_subject (scheduled)";
+            $email_body = "<i style=\'color: #808080\'>##- Please type your reply above this line -##</i><br><br>Hello $contact_name,<br><br>A ticket regarding \"$ticket_subject\" has been automatically created for you.<br><br>--------------------------------<br>$ticket_details--------------------------------<br><br>Ticket: $ticket_prefix$ticket_number<br>Subject: $ticket_subject<br>Status: Open<br>Portal: https://$config_base_url/client/ticket.php?id=$id<br><br>--<br>$company_name - Support<br>$config_ticket_from_email<br>$company_phone";
+
+            $email = [
+                    'from' => $config_ticket_from_email,
+                    'from_name' => $config_ticket_from_name,
+                    'recipient' => $contact_email,
+                    'recipient_name' => $contact_name,
+                    'subject' => $email_subject,
+                    'body' => $email_body
+            ];
+
+            $data[] = $email;
+
+        }
+
+        // Notify agent's via the DL address of the new ticket, if it's populated with a valid email
+        if (filter_var($config_ticket_new_ticket_notification_email, FILTER_VALIDATE_EMAIL)) {
+
+            $email_subject = "ITFlow - New Recurring Ticket - $client_name: $ticket_subject";
+            $email_body = "Hello, <br><br>This is a notification that a recurring (scheduled) ticket has been raised in ITFlow. <br>Ticket: $ticket_prefix$ticket_number<br>Client: $client_name<br>Priority: $priority<br>Link: https://$config_base_url/agent/ticket.php?ticket_id=$id <br><br>--------------------------------<br><br><b>$ticket_subject</b><br>$ticket_details";
+
+            $email = [
+                    'from' => $config_ticket_from_email,
+                    'from_name' => $config_ticket_from_name,
+                    'recipient' => $config_ticket_new_ticket_notification_email,
+                    'recipient_name' => $config_ticket_from_name,
+                    'subject' => $email_subject,
+                    'body' => $email_body
+            ];
+
+            $data[] = $email;
+        }
+
+        // Add to the mail queue
+        addToMailQueue($data);
+
+        // Set the next run date
+        if ($frequency == "weekly") {
+            // Note: We seemingly have to initialize a new datetime for each loop to avoid stacking the dates
+            $now = new DateTime();
+            $next_run = date_add($now, date_interval_create_from_date_string('1 week'));
+        } elseif ($frequency == "monthly") {
+            $now = new DateTime();
+            $next_run = date_add($now, date_interval_create_from_date_string('1 month'));
+        } elseif ($frequency == "quarterly") {
+            $now = new DateTime();
+            $next_run = date_add($now, date_interval_create_from_date_string('3 months'));
+        } elseif ($frequency == "biannually") {
+            $now = new DateTime();
+            $next_run = date_add($now, date_interval_create_from_date_string('6 months'));
+        } elseif ($frequency == "annually") {
+            $now = new DateTime();
+            $next_run = date_add($now, date_interval_create_from_date_string('12 months'));
+        }
+
+        // Update the run date
+        $next_run = $next_run->format('Y-m-d');
+        $a = mysqli_query($mysqli, "UPDATE recurring_tickets SET recurring_ticket_next_run = '$next_run' WHERE recurring_ticket_id = $recurring_ticket_id");
+
+    }
+}
+
+// Flag any active recurring "next run" dates that are in the past
+$sql_invalid_recurring_tickets = mysqli_query($mysqli, "SELECT * FROM recurring_tickets WHERE recurring_ticket_next_run < CURDATE()");
+while ($row = mysqli_fetch_array($sql_invalid_recurring_tickets)) {
+    $subject = sanitizeInput($row['recurring_ticket_subject']);
+    appNotify("Ticket", "Recurring ticket $subject next run date is in the past!", "/agent/recurring_tickets.php");
+}
+
+// Logging
+// logAction("Cron", "Task", "Cron created sent out recurring tickets");
+
+
+// TICKET RESOLUTION/CLOSURE PROCESS
+// Changes tickets status from 'Resolved' >> 'Closed' after a defined interval
+
+$sql_resolved_tickets_to_close = mysqli_query(
+    $mysqli,
+    "SELECT * FROM tickets
+    WHERE ticket_status = 4
+    AND ticket_updated_at < NOW() - INTERVAL $config_ticket_autoclose_hours HOUR"
+);
+
+while ($row = mysqli_fetch_array($sql_resolved_tickets_to_close)) {
+
+    $ticket_id = $row['ticket_id'];
+    $ticket_prefix = sanitizeInput($row['ticket_prefix']);
+    $ticket_number = intval($row['ticket_number']);
+    $ticket_subject = sanitizeInput($row['ticket_subject']);
+    $ticket_status = sanitizeInput($row['ticket_status']);
+    $ticket_assigned_to = sanitizeInput($row['ticket_assigned_to']);
+    $client_id = intval($row['ticket_client_id']);
+
+    mysqli_query($mysqli,"UPDATE tickets SET ticket_status = 5, ticket_closed_at = NOW(), ticket_closed_by = $ticket_assigned_to WHERE ticket_id = $ticket_id");
+
+    //Logging
+    logAction("Ticket", "Closed", "$ticket_prefix$ticket_number auto closed", $client_id, $ticket_id);
+
+    customAction('ticket_close', $ticket_id);
+
+    //TODO: Add client notifs if $config_ticket_client_general_notifications is on
+}
+
+if ($config_send_invoice_reminders == 1) {
+
+    // PAST DUE INVOICE Notifications
+    //$invoiceAlertArray = [$config_invoice_overdue_reminders];
+    $invoiceAlertArray = [30,60,90,120,150,180,210,240,270,300,330,360,390,420,450,480,510,540,570,590,620,650,680,710,740];
+
+    foreach ($invoiceAlertArray as $day) {
+
+        $sql = mysqli_query(
+            $mysqli,
+            "SELECT * FROM invoices
+            LEFT JOIN clients ON invoice_client_id = client_id
+            LEFT JOIN contacts ON clients.client_id = contacts.contact_client_id AND contact_primary = 1
+            WHERE invoice_status != 'Draft'
+            AND invoice_status != 'Paid'
+            AND invoice_status != 'Cancelled'
+            AND invoice_status != 'Non-Billable'
+            AND DATE_ADD(invoice_due, INTERVAL $day DAY) = CURDATE()
+            ORDER BY invoice_number DESC"
+        );
+
+        while ($row = mysqli_fetch_array($sql)) {
+            $invoice_id = intval($row['invoice_id']);
+            $invoice_prefix = sanitizeInput($row['invoice_prefix']);
+            $invoice_number = intval($row['invoice_number']);
+            $invoice_status = sanitizeInput($row['invoice_status']);
+            $invoice_date = sanitizeInput($row['invoice_date']);
+            $invoice_due = sanitizeInput($row['invoice_due']);
+            $invoice_url_key = sanitizeInput($row['invoice_url_key']);
+            $invoice_amount = floatval($row['invoice_amount']);
+            $invoice_currency_code = sanitizeInput($row['invoice_currency_code']);
+            $client_id = intval($row['client_id']);
+            $client_name = sanitizeInput($row['client_name']);
+            $contact_name = sanitizeInput($row['contact_name']);
+            $contact_email = sanitizeInput($row['contact_email']);
+
+            // Late Charges
+
+            if ($config_invoice_late_fee_enable == 1) {
+
+                $todays_date = date('Y-m-d');
+                $late_fee_amount = ($invoice_amount * $config_invoice_late_fee_percent) / 100;
+                $new_invoice_amount = $invoice_amount + $late_fee_amount;
+
+                mysqli_query($mysqli, "UPDATE invoices SET invoice_amount = $new_invoice_amount WHERE invoice_id = $invoice_id");
+
+                //Insert Items into New Invoice
+                mysqli_query($mysqli, "INSERT INTO invoice_items SET item_name = 'Late Fee', item_description = '$config_invoice_late_fee_percent% late fee applied on $todays_date', item_quantity = 1, item_price = $late_fee_amount, item_total = $late_fee_amount, item_order = 998, item_invoice_id = $invoice_id");
+
+                mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Sent', history_description = 'Cron applied a late fee of $late_fee_amount', history_invoice_id = $invoice_id");
+
+                appNotify("Invoice Late Charge", "Invoice $invoice_prefix$invoice_number for $client_name in the amount of $invoice_amount was charged a late fee of $late_fee_amount", "/agent/invoice.php?invoice_id=$invoice_id", $client_id);
+
+            }
+
+            appNotify("Invoice Overdue", "Invoice $invoice_prefix$invoice_number for $client_name in the amount of $invoice_amount is overdue by $day days", "/agent/invoice.php?invoice_id=$invoice_id", $client_id);
+
+            $subject = "Overdue Invoice $invoice_prefix$invoice_number";
+            $body = "Hello $contact_name,<br><br>Our records indicate that we have not yet received payment for the invoice $invoice_prefix$invoice_number. We kindly request that you submit your payment as soon as possible. If you have any questions or concerns, please do not hesitate to contact us at $company_email or $company_phone.
+                <br>
+                Kindly review the invoice details mentioned below.<br><br>Invoice: $invoice_prefix$invoice_number<br>Issue Date: $invoice_date<br>Total: " . numfmt_format_currency($currency_format, $invoice_amount, $invoice_currency_code) . "<br>Due Date: $invoice_due<br>Over Due By: $day Days<br><br><br>To view your invoice, please click <a href=\'https://$config_base_url/guest/guest_view_invoice.php?invoice_id=$invoice_id&url_key=$invoice_url_key\'>here</a>.<br><br><br>--<br>$company_name - Billing<br>$config_invoice_from_email<br>$company_phone";
+
+            $mail = addToMailQueue([
+                [
+                    'from' => $config_invoice_from_email,
+                    'from_name' => $config_invoice_from_name,
+                    'recipient' => $contact_email,
+                    'recipient_name' => $contact_name,
+                    'subject' => $subject,
+                    'body' => $body
+                ]
+            ]);
+
+            if ($mail === true) {
+                mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Sent', history_description = 'Cron Emailed Overdue Invoice', history_invoice_id = $invoice_id");
+            } else {
+                mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Sent', history_description = 'Cron Failed to send Overdue Invoice', history_invoice_id = $invoice_id");
+
+                appNotify("Mail", "Failed to send email to $contact_email");
+
+                // Logging
+                logApp("Mail", "error", "Failed to send email to $contact_email regarding $subject. $mail");
+            }
+
+        }
+
+    }
+}
+// Logging
+// logAction("Cron", "Task", "Cron created notifications for past due invoices and sent out notifications to the primary and billing contacts email");
+
+// Send Recurring Invoices that match todays date and are active
+
+//Loop through all recurring that match today's date and is active
+$sql_recurring_invoices = mysqli_query($mysqli, "SELECT * FROM recurring_invoices
+    LEFT JOIN recurring_payments ON recurring_invoice_id = recurring_payment_recurring_invoice_id
+    LEFT JOIN clients ON client_id = recurring_invoice_client_id
+    WHERE recurring_invoice_next_date = CURDATE()
+    AND recurring_invoice_status = 1
+");
+
+while ($row = mysqli_fetch_array($sql_recurring_invoices)) {
+    $recurring_invoice_id = intval($row['recurring_invoice_id']);
+    $recurring_invoice_scope = sanitizeInput($row['recurring_invoice_scope']);
+    $recurring_invoice_frequency = sanitizeInput($row['recurring_invoice_frequency']);
+    $recurring_invoice_status = sanitizeInput($row['recurring_invoice_status']);
+    $recurring_invoice_last_sent = sanitizeInput($row['recurring_invoice_last_sent']);
+    $recurring_invoice_next_date = sanitizeInput($row['recurring_invoice_next_date']);
+    $recurring_invoice_discount_amount = floatval($row['recurring_invoice_discount_amount']);
+    $recurring_invoice_amount = floatval($row['recurring_invoice_amount']);
+    $recurring_invoice_currency_code = sanitizeInput($row['recurring_invoice_currency_code']);
+    $recurring_invoice_note = sanitizeInput($row['recurring_invoice_note']);
+    $recurring_invoice_email_notify = intval($row['recurring_invoice_email_notify']);
+    $category_id = intval($row['recurring_invoice_category_id']);
+    $client_id = intval($row['recurring_invoice_client_id']);
+    $client_name = sanitizeInput($row['client_name']);
+    $client_net_terms = intval($row['client_net_terms']);
+
+    $recurring_payment_recurring_invoice_id = intval($row['recurring_payment_recurring_invoice_id']);
+    $recurring_payment_currency_code = sanitizeInput($row['recurring_payment_currency_code']);
+    $recurring_payment_method = sanitizeInput($row['recurring_payment_method']);
+    $recurring_payment_account_id = intval($row['recurring_payment_account_id']);
+
+    // Get the last Invoice Number and add 1 for the new invoice number
+    $sql_invoice_number = mysqli_query($mysqli, "SELECT * FROM settings WHERE company_id = 1");
+    $row = mysqli_fetch_array($sql_invoice_number);
+    $config_invoice_next_number = intval($row['config_invoice_next_number']);
+
+    $new_invoice_number = $config_invoice_next_number;
+    $new_config_invoice_next_number = $config_invoice_next_number + 1;
+    mysqli_query($mysqli, "UPDATE settings SET config_invoice_next_number = $new_config_invoice_next_number WHERE company_id = 1");
+
+    //Generate a unique URL key for clients to access
+    $url_key = randomString(156);
+
+    mysqli_query($mysqli, "INSERT INTO invoices SET invoice_prefix = '$config_invoice_prefix', invoice_number = $new_invoice_number, invoice_scope = '$recurring_invoice_scope', invoice_date = CURDATE(), invoice_due = DATE_ADD(CURDATE(), INTERVAL $client_net_terms day), invoice_discount_amount = $recurring_invoice_discount_amount, invoice_amount = $recurring_invoice_amount, invoice_currency_code = '$recurring_invoice_currency_code', invoice_note = '$recurring_invoice_note', invoice_category_id = $category_id, invoice_status = 'Sent', invoice_url_key = '$url_key', invoice_recurring_invoice_id = $recurring_invoice_id, invoice_client_id = $client_id");
+
+    $new_invoice_id = mysqli_insert_id($mysqli);
+
+    //Copy Items from original recurring invoice to new invoice
+    $sql_invoice_items = mysqli_query($mysqli, "SELECT * FROM invoice_items WHERE item_recurring_invoice_id = $recurring_invoice_id ORDER BY item_id ASC");
+
+    while ($row = mysqli_fetch_array($sql_invoice_items)) {
+        $item_id = intval($row['item_id']);
+        $item_name = sanitizeInput($row['item_name']); //SQL Escape incase of ,
+        $item_description = sanitizeInput($row['item_description']); //SQL Escape incase of ,
+        $item_quantity = floatval($row['item_quantity']);
+        $item_price = floatval($row['item_price']);
+        $item_subtotal = floatval($row['item_subtotal']);
+        $item_tax = floatval($row['item_tax']);
+        $item_total = floatval($row['item_total']);
+        $item_order = intval($row['item_order']);
+        $tax_id = intval($row['item_tax_id']);
+
+        //Insert Items into New Invoice
+        mysqli_query($mysqli, "INSERT INTO invoice_items SET item_name = '$item_name', item_description = '$item_description', item_quantity = $item_quantity, item_price = $item_price, item_subtotal = $item_subtotal, item_tax = $item_tax, item_total = $item_total, item_order = $item_order, item_tax_id = $tax_id, item_invoice_id = $new_invoice_id");
+
+    }
+
+    mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Sent', history_description = 'Invoice Generated from Recurring!', history_invoice_id = $new_invoice_id");
+
+    appNotify("Recurring Sent", "Recurring Invoice $config_invoice_prefix$new_invoice_number for $client_name Sent", "/agent/invoice.php?invoice_id=$new_invoice_id", $client_id);
+
+    customAction('invoice_create', $new_invoice_id);
+
+    //Update recurring dates
+
+    mysqli_query($mysqli, "UPDATE recurring_invoices SET recurring_invoice_last_sent = CURDATE(), recurring_invoice_next_date = DATE_ADD(CURDATE(), INTERVAL 1 $recurring_invoice_frequency) WHERE recurring_invoice_id = $recurring_invoice_id");
+
+    // Get details of the newly generated invoice
+    $sql = mysqli_query(
+        $mysqli,
+        "SELECT * FROM invoices
+            LEFT JOIN clients ON invoice_client_id = client_id
+            LEFT JOIN contacts ON clients.client_id = contacts.contact_client_id AND contact_primary = 1
+            WHERE invoice_id = $new_invoice_id"
+    );
+    $row = mysqli_fetch_array($sql);
+    $invoice_prefix = sanitizeInput($row['invoice_prefix']);
+    $invoice_number = intval($row['invoice_number']);
+    $invoice_scope = sanitizeInput($row['invoice_scope']);
+    $invoice_date = sanitizeInput($row['invoice_date']);
+    $invoice_due = sanitizeInput($row['invoice_due']);
+    $invoice_amount = floatval($row['invoice_amount']);
+    $invoice_url_key = sanitizeInput($row['invoice_url_key']);
+    $client_id = intval($row['client_id']);
+    $client_name = sanitizeInput($row['client_name']);
+    $contact_name = sanitizeInput($row['contact_name']);
+    $contact_email = sanitizeInput($row['contact_email']);
+
+    if ($config_recurring_auto_send_invoice == 1 && $recurring_invoice_email_notify == 1) {
+
+        $subject = "Invoice $invoice_prefix$invoice_number";
+        $body = "Hello $contact_name,<br><br>An invoice regarding \"$invoice_scope\" has been generated. Please view the details below.<br><br>Invoice: $invoice_prefix$invoice_number<br>Issue Date: $invoice_date<br>Total: " . numfmt_format_currency($currency_format, $invoice_amount, $recurring_invoice_currency_code) . "<br>Due Date: $invoice_due<br><br><br>To view your invoice, please click <a href=\'https://$config_base_url/guest/guest_view_invoice.php?invoice_id=$new_invoice_id&url_key=$invoice_url_key\'>here</a>.<br><br><br>--<br>$company_name - Billing<br>$config_invoice_from_email<br>$company_phone";
+
+        $mail = addToMailQueue([
+            [
+                'from' => $config_invoice_from_email,
+                'from_name' => $config_invoice_from_name,
+                'recipient' => $contact_email,
+                'recipient_name' => $contact_name,
+                'subject' => $subject,
+                'body' => $body
+            ]
+        ]);
+
+        if ($mail === true) {
+            mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Sent', history_description = 'Cron Emailed Invoice!', history_invoice_id = $new_invoice_id");
+            mysqli_query($mysqli, "UPDATE invoices SET invoice_status = 'Sent', invoice_client_id = $client_id WHERE invoice_id = $new_invoice_id");
+
+        } else {
+            mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Draft', history_description = 'Cron Failed to send Invoice!', history_invoice_id = $new_invoice_id");
+
+            appNotify("Mail", "Failed to send email to $contact_email");
+
+            // Logging
+            logApp("Mail", "error", "Failed to send email to $contact_email regarding $subject. $mail");
+
+        }
+
+        // Send copies of the invoice to any additional billing contacts
+        $sql_billing_contacts = mysqli_query($mysqli, "SELECT contact_name, contact_email FROM contacts
+            WHERE contact_billing = 1
+            AND contact_email != '$contact_email'
+            AND contact_client_id = $client_id"
+        );
+
+        while ($billing_contact = mysqli_fetch_array($sql_billing_contacts)) {
+            $billing_contact_name = sanitizeInput($billing_contact['contact_name']);
+            $billing_contact_email = sanitizeInput($billing_contact['contact_email']);
+
+            $data = [
+                [
+                    'from' => $config_invoice_from_email,
+                    'from_name' => $config_invoice_from_name,
+                    'recipient' => $billing_contact_email,
+                    'recipient_name' => $billing_contact_name,
+                    'subject' => $subject,
+                    'body' => $body
+                ]
+            ];
+
+            addToMailQueue($data);
+        }
+
+    } //End if Autosend is on
+
+} //End Recurring Invoices Loop
+
+// Start Flag any active recurring "next run" dates that are in the past
+$sql_invalid_recurring_invoices = mysqli_query($mysqli, "SELECT * FROM recurring_invoices WHERE recurring_invoice_next_date < CURDATE() AND recurring_invoice_status = 1");
+while ($row = mysqli_fetch_array($sql_invalid_recurring_invoices)) {
+    $invoice_prefix = sanitizeInput($row['recurring_invoice_prefix']);
+    $invoice_number = intval($row['recurring_invoice_number']);
+    appNotify("Invoice", "Recurring invoice $invoice_prefix$invoice_number next run date is in the past!", "/agent/recurring_invoices.php");
+}
+// End Flag any active recurring "next run" dates that are in the past
+
+
+// Start Recurring Payments
+$sql_recurring_payments = mysqli_query($mysqli, "
+    SELECT * FROM recurring_payments
+    LEFT JOIN invoices ON invoice_recurring_invoice_id = recurring_payment_recurring_invoice_id
+    LEFT JOIN clients ON client_id = invoice_client_id
+    LEFT JOIN contacts ON client_id = contact_client_id AND contact_primary = 1
+    WHERE invoice_due = CURDATE()
+      AND (invoice_status = 'Sent' OR invoice_status = 'Viewed')
+");
+
+while ($row = mysqli_fetch_array($sql_recurring_payments)) {
+    $invoice_id = intval($row['invoice_id']);
+    $invoice_prefix = sanitizeInput($row['invoice_prefix']);
+    $invoice_number = intval($row['invoice_number']);
+    $invoice_scope = sanitizeInput($row['invoice_scope']);
+    $invoice_date = sanitizeInput($row['invoice_date']);
+    $invoice_due = sanitizeInput($row['invoice_due']);
+    $invoice_amount = floatval($row['invoice_amount']);
+    $invoice_url_key = sanitizeInput($row['invoice_url_key']);
+    $invoice_currency_code = sanitizeInput($row['invoice_currency_code']);
+    $recurring_payment_account_id = intval($row['recurring_payment_account_id']);
+    $recurring_payment_method = sanitizeInput($row['recurring_payment_method']);
+    $recurring_payment_currency_code = sanitizeInput($row['recurring_payment_currency_code']);
+    $recurring_payment_saved_payment_id = intval($row['recurring_payment_saved_payment_id']);
+    $client_id = intval($row['client_id']);
+    $client_name = sanitizeInput($row['client_name']);
+    $contact_name = sanitizeInput($row['contact_name']);
+    $contact_email = sanitizeInput($row['contact_email']);
+
+    // Only attempt autopay if a saved payment method is set
+    if ($recurring_payment_saved_payment_id) {
+        // Get the saved payment method and provider details
+        $saved_payment = mysqli_fetch_array(mysqli_query($mysqli, "
+            SELECT * FROM client_saved_payment_methods
+            LEFT JOIN payment_providers ON saved_payment_provider_id = payment_provider_id
+            WHERE saved_payment_id = $recurring_payment_saved_payment_id
+              AND saved_payment_client_id = $client_id
+              AND payment_provider_active = 1
+            LIMIT 1
+        "));
+
+        if (!$saved_payment) {
+            logAction("Invoice", "Payment", "Failed auto Payment for invoice $invoice_prefix$invoice_number: Saved payment method not found or provider inactive", $client_id, $invoice_id);
+            continue;
+        }
+
+        $provider_id = intval($saved_payment['payment_provider_id']);
+        $provider_name = sanitizeInput($saved_payment['payment_provider_name']);
+        $provider_private_key = $saved_payment['payment_provider_private_key'];
+        $account_id = intval($saved_payment['payment_provider_account']);
+        $expense_category_id = intval($saved_payment['payment_provider_expense_category']);
+        $expense_vendor_id = intval($saved_payment['payment_provider_expense_vendor']);
+        $expense_percentage_fee = floatval($saved_payment['payment_provider_expense_percentage_fee']);
+        $expense_flat_fee = floatval($saved_payment['payment_provider_expense_flat_fee']);
+        $saved_payment_description = sanitizeInput($saved_payment['saved_payment_description']);
+        $stripe_payment_method_id = $saved_payment['saved_payment_provider_method'];
+
+        // NEW: Get the payment_provider_client (Stripe Customer ID) from client_payment_provider
+        $cpp_query = mysqli_query($mysqli, "
+            SELECT payment_provider_client FROM client_payment_provider
+            WHERE client_id = $client_id
+              AND payment_provider_id = $provider_id
+            LIMIT 1
+        ");
+        $cpp_row = mysqli_fetch_array($cpp_query);
+        $stripe_customer_id = $cpp_row ? sanitizeInput($cpp_row['payment_provider_client']) : '';
+
+        // Stripe
+        if ($provider_name === "Stripe") {
+            if ($provider_private_key && $stripe_customer_id && $stripe_payment_method_id) {
+                require_once __DIR__ . '/../plugins/stripe-php/init.php';
+                $stripe = new \Stripe\StripeClient($provider_private_key);
+
+                $balance_to_pay = round($invoice_amount, 2);
+                $pi_description = "ITFlow: $client_name payment of $recurring_payment_currency_code $balance_to_pay for $invoice_prefix$invoice_number";
+
+                try {
+                    $payment_intent = $stripe->paymentIntents->create([
+                        'amount' => intval($balance_to_pay * 100),
+                        'currency' => $recurring_payment_currency_code,
+                        'customer' => $stripe_customer_id,
+                        'payment_method' => $stripe_payment_method_id,
+                        'off_session' => true,
+                        'confirm' => true,
+                        'description' => $pi_description,
+                        'metadata' => [
+                            'itflow_client_id' => $client_id,
+                            'itflow_client_name' => $client_name,
+                            'itflow_invoice_number' => $invoice_prefix . $invoice_number,
+                            'itflow_invoice_id' => $invoice_id,
+                        ]
+                    ]);
+
+                    $pi_id = sanitizeInput($payment_intent->id);
+                    $pi_date = date('Y-m-d', $payment_intent->created);
+                    $pi_amount_paid = floatval($payment_intent->amount_received / 100);
+                    $pi_currency = strtoupper(sanitizeInput($payment_intent->currency));
+                    $pi_livemode = $payment_intent->livemode;
+
+                } catch (Exception $e) {
+                    $error = $e->getMessage();
+                    error_log("Stripe payment error - encountered exception during payment intent for invoice ID $invoice_id / $invoice_prefix$invoice_number: $error");
+                    logApp("Stripe", "error", "Exception during PI for invoice ID $invoice_id: $error");
+                    mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Payment failed', history_description = 'Stripe autopay failed due to payment error', history_invoice_id = $invoice_id");
+                    logAction("Invoice", "Payment", "Failed auto Payment amount of invoice $invoice_prefix$invoice_number due to Stripe payment error: $error", $client_id, $invoice_id);
+                    continue;
+                }
+
+                if ($payment_intent->status == "succeeded" && intval($balance_to_pay) == intval($pi_amount_paid)) {
+
+                    // Update Invoice Status
+                    mysqli_query($mysqli, "UPDATE invoices SET invoice_status = 'Paid' WHERE invoice_id = $invoice_id");
+
+                    // Add Payment to History
+                    mysqli_query($mysqli, "INSERT INTO payments SET payment_date = '$pi_date', payment_amount = $pi_amount_paid, payment_currency_code = '$pi_currency', payment_account_id = $account_id, payment_method = 'Stripe', payment_reference = 'Stripe - $pi_id', payment_invoice_id = $invoice_id");
+                    mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Paid', history_description = 'Online Payment added (autopay)', history_invoice_id = $invoice_id");
+
+                    // EXPENSE: Stripe gateway fee as an expense (if configured)
+                    if ($expense_vendor_id > 0 && $expense_category_id > 0) {
+                        $gateway_fee = round($invoice_amount * $expense_percentage_fee + $expense_flat_fee, 2);
+                        mysqli_query($mysqli,"INSERT INTO expenses SET expense_date = '$pi_date', expense_amount = $gateway_fee, expense_currency_code = '$invoice_currency_code', expense_account_id = $account_id, expense_vendor_id = $expense_vendor_id, expense_client_id = $client_id, expense_category_id = $expense_category_id, expense_description = 'Stripe Transaction for Invoice $invoice_prefix$invoice_number In the Amount of $balance_to_pay', expense_reference = 'Stripe - $pi_id'");
+                    }
+
+                    // RECEIPT EMAIL
+                    if (!empty($config_smtp_host)) {
+                        $subject = "Payment Received - Invoice $invoice_prefix$invoice_number";
+                        $body = "Hello $contact_name<br><br>We have received online payment for the amount of " . numfmt_format_currency($currency_format, $invoice_amount, $recurring_payment_currency_code) . " for invoice <a href=\\'https://$config_base_url/guest/guest_view_invoice.php?invoice_id=$invoice_id&url_key=$invoice_url_key\\'>$invoice_prefix$invoice_number</a>. Please keep this email as a receipt for your records.<br><br>Amount Paid: " . numfmt_format_currency($currency_format, $invoice_amount, $recurring_payment_currency_code) . "<br><br>Thank you for your business!<br><br><br>--<br>$company_name - Billing Department<br>$config_invoice_from_email<br>$company_phone";
+
+                        $data = [[
+                            'from' => $config_invoice_from_email,
+                            'from_name' => $config_invoice_from_name,
+                            'recipient' => $contact_email,
+                            'recipient_name' => $contact_name,
+                            'subject' => $subject,
+                            'body' => $body,
+                        ]];
+
+                        // Internal notification
+                        if (!empty($config_invoice_paid_notification_email)) {
+                            $subject_int = "Payment Received - $client_name - Invoice $invoice_prefix$invoice_number";
+                            $body_int = "This is a notification that an invoice has been paid in ITFlow. Below is a copy of the receipt sent to the client:-<br><br>--------<br><br>$body";
+                            $data[] = [
+                                'from' => $config_invoice_from_email,
+                                'from_name' => $config_invoice_from_name,
+                                'recipient' => $config_invoice_paid_notification_email,
+                                'recipient_name' => $contact_name,
+                                'subject' => $subject_int,
+                                'body' => $body_int,
+                            ];
+                        }
+                        $mail = addToMailQueue($data);
+                        $email_id = mysqli_insert_id($mysqli);
+                        mysqli_query($mysqli,"INSERT INTO history SET history_status = 'Sent', history_description = 'Payment Receipt sent to mail queue ID: $email_id!', history_invoice_id = $invoice_id");
+                        logAction("Invoice", "Payment", "Payment receipt for invoice $invoice_prefix$invoice_number queued to $contact_email Email ID: $email_id", $client_id, $invoice_id);
+                    }
+
+                    // LOGGING
+                    $extended_log_desc = !$pi_livemode ? '(DEV MODE)' : '';
+                    appNotify("Invoice Paid", "Invoice $invoice_prefix$invoice_number automatically paid", "/agent/invoice.php?invoice_id=$invoice_id", $client_id);
+                    logAction("Invoice", "Payment", "Auto Stripe payment amount of " . numfmt_format_currency($currency_format, $invoice_amount, $recurring_payment_currency_code) . " added to invoice $invoice_prefix$invoice_number - $pi_id $extended_log_desc", $client_id, $invoice_id);
+                    customAction('invoice_pay', $invoice_id);
+
+                } else {
+                    mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Payment failed', history_description = 'Stripe autopay failed: Status {$payment_intent->status}', history_invoice_id = $invoice_id");
+                    logAction("Invoice", "Payment", "Failed auto Payment for invoice $invoice_prefix$invoice_number. Stripe PI status: {$payment_intent->status}", $client_id, $invoice_id);
+                }
+            } // End if Stripe creds and IDs
+        } // End if Stripe provider
+        // Add other provider logic here as needed
+    } else {
+        // Handle Non-payment-provider autopay
+        mysqli_query($mysqli, "INSERT INTO payments SET payment_date = CURDATE(), payment_amount = $invoice_amount, payment_currency_code = '$recurring_payment_currency_code', payment_account_id = $recurring_payment_account_id, payment_method = '$recurring_payment_method', payment_reference = 'Paid via AutoPay', payment_invoice_id = $invoice_id");
+        $payment_id = mysqli_insert_id($mysqli);
+
+        mysqli_query($mysqli, "UPDATE invoices SET invoice_status = 'Paid' WHERE invoice_id = $invoice_id");
+        mysqli_query($mysqli, "INSERT INTO history SET history_status = 'Paid', history_description = 'Payment added via Auto Pay', history_invoice_id = $invoice_id");
+        logAction("Invoice", "Payment", "Auto Payment amount of $recurring_payment_currency_code $invoice_amount added to invoice $invoice_prefix$invoice_number", $client_id, $invoice_id);
+    }
+}
+
+// Recurring Expenses
+// Loop through all recurring expenses that match today's date and is active
+$sql_recurring_expenses = mysqli_query($mysqli, "SELECT * FROM recurring_expenses WHERE recurring_expense_next_date = CURDATE() AND recurring_expense_status = 1");
+
+while ($row = mysqli_fetch_array($sql_recurring_expenses)) {
+    $recurring_expense_id = intval($row['recurring_expense_id']);
+    $recurring_expense_frequency = intval($row['recurring_expense_frequency']);
+    $recurring_expense_month = intval($row['recurring_expense_month']);
+    $recurring_expense_day = intval($row['recurring_expense_day']);
+    $recurring_expense_description = sanitizeInput($row['recurring_expense_description']);
+    $recurring_expense_amount = floatval($row['recurring_expense_amount']);
+    $recurring_expense_payment_method = sanitizeInput($row['recurring_expense_payment_method']);
+    $recurring_expense_reference = sanitizeInput($row['recurring_expense_reference']);
+    $recurring_expense_currency_code = sanitizeInput($row['recurring_expense_currency_code']);
+    $recurring_expense_vendor_id = intval($row['recurring_expense_vendor_id']);
+    $recurring_expense_category_id = intval($row['recurring_expense_category_id']);
+    $recurring_expense_account_id = intval($row['recurring_expense_account_id']);
+    $recurring_expense_client_id = intval($row['recurring_expense_client_id']);
+
+    // Calculate next billing date based on frequency
+    if ($recurring_expense_frequency == 1) { // Monthly
+        $next_date_query = "DATE_ADD(CURDATE(), INTERVAL 1 MONTH)";
+    } elseif ($recurring_expense_frequency == 2) { // Yearly
+        $next_date_query = "DATE(CONCAT(YEAR(CURDATE()) + 1, '-', $recurring_expense_month, '-', $recurring_expense_day))";
+    } else {
+        // Handle unexpected frequency values. For now, just use current date.
+        $next_date_query = "CURDATE()";
+    }
+
+    mysqli_query($mysqli,"INSERT INTO expenses SET expense_date = CURDATE(), expense_amount = $recurring_expense_amount, expense_currency_code = '$recurring_expense_currency_code', expense_account_id = $recurring_expense_account_id, expense_vendor_id = $recurring_expense_vendor_id, expense_client_id = $recurring_expense_client_id, expense_category_id = $recurring_expense_category_id, expense_description = '$recurring_expense_description', expense_reference = '$recurring_expense_reference'");
+
+    $expense_id = mysqli_insert_id($mysqli);
+
+    appNotify("Expense Created", "Expense $recurring_expense_description created from recurring expenses", "/agent/expenses.php", $recurring_expense_client_id);
+
+    // Update recurring dates using calculated next billing date
+
+    mysqli_query($mysqli, "UPDATE recurring_expenses SET recurring_expense_last_sent = CURDATE(), recurring_expense_next_date = $next_date_query WHERE recurring_expense_id = $recurring_expense_id");
+
+
+} //End Recurring expenses loop
+
+// Flag any active recurring "next run" dates that are in the past
+$sql_invalid_recurring_expenses = mysqli_query($mysqli, "SELECT * FROM recurring_expenses WHERE recurring_expense_next_date < CURDATE() AND recurring_expense_status = 1");
+while ($row = mysqli_fetch_array($sql_invalid_recurring_expenses)) {
+    $recurring_expense_description = sanitizeInput($row['recurring_expense_description']);
+    appNotify("Expense", "Recurring expense $recurring_expense_description next run date is in the past!", "/agent/recurring_expenses.php");
+}
+
+// Logging
+//logApp("Cron", "info", "Cron created expenses from recurring expenses");
+
+// TELEMETRY
+
+if ($config_telemetry > 0 || $config_telemetry == 2) {
+
+    $current_version = exec("git rev-parse HEAD");
+
+    // Client Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('client_id') AS num FROM clients"));
+    $client_count = $row['num'];
+
+    // Ticket Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('recurring_id') AS num FROM tickets"));
+    $ticket_count = $row['num'];
+
+    // Recurring Ticket Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('recurring_ticket_id') AS num FROM recurring_tickets"));
+    $recurring_ticket_count = $row['num'];
+
+    // Calendar Event Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('event_id') AS num FROM calendar_events"));
+    $calendar_event_count = $row['num'];
+
+    // Quote Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('quote_id') AS num FROM quotes"));
+    $quote_count = $row['num'];
+
+    // Invoice Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('invoice_id') AS num FROM invoices"));
+    $invoice_count = $row['num'];
+
+    // Revenue Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('revenue_id') AS num FROM revenues"));
+    $revenue_count = $row['num'];
+
+    // Recurring Invoice Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('recurring_invoice_id') AS num FROM recurring_invoices"));
+    $recurring_invoice_count = $row['num'];
+
+    // Account Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('account_id') AS num FROM accounts"));
+    $account_count = $row['num'];
+
+    // Tax Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('tax_id') AS num FROM taxes"));
+    $tax_count = $row['num'];
+
+    // Product Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('product_id') AS num FROM products"));
+    $product_count = $row['num'];
+
+    // Payment Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('payment_id') AS num FROM payments WHERE payment_invoice_id > 0"));
+    $payment_count = $row['num'];
+
+    // Company Vendor Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('vendor_id') AS num FROM vendors WHERE vendor_client_id = 0"));
+    $company_vendor_count = $row['num'];
+
+    // Expense Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('expense_id') AS num FROM expenses WHERE expense_vendor_id > 0"));
+    $expense_count = $row['num'];
+
+    // Trip Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('trip_id') AS num FROM trips"));
+    $trip_count = $row['num'];
+
+    // Transfer Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('transfer_id') AS num FROM transfers"));
+    $transfer_count = $row['num'];
+
+    // Contact Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('contact_id') AS num FROM contacts"));
+    $contact_count = $row['num'];
+
+    // Location Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('location_id') AS num FROM locations"));
+    $location_count = $row['num'];
+
+    // Asset Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('asset_id') AS num FROM assets"));
+    $asset_count = $row['num'];
+
+    // Software Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('software_id') AS num FROM software"));
+    $software_count = $row['num'];
+
+    // Software Template Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('software_template_id') AS num FROM software_templates"));
+    $software_template_count = $row['num'];
+
+    // Credential Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('credential_id') AS num FROM credentials"));
+    $credential_count = $row['num'];
+
+    // Network Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('network_id') AS num FROM networks"));
+    $network_count = $row['num'];
+
+    // Certificate Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('certificate_id') AS num FROM certificates"));
+    $certificate_count = $row['num'];
+
+    // Domain Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('domain_id') AS num FROM domains"));
+    $domain_count = $row['num'];
+
+    // Service Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('service_id') AS num FROM services"));
+    $service_count = $row['num'];
+
+    // Client Vendor Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('vendor_id') AS num FROM vendors WHERE vendor_client_id > 0"));
+    $client_vendor_count = $row['num'];
+
+    // Vendor Template Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('vendor_template_id') AS num FROM vendor_templates"));
+    $vendor_template_count = $row['num'];
+
+    // File Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('file_id') AS num FROM files"));
+    $file_count = $row['num'];
+
+    // Document Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('document_id') AS num FROM documents"));
+    $document_count = $row['num'];
+
+    // Document Template Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('document_template_id') AS num FROM document_templates"));
+    $document_template_count = $row['num'];
+
+    // Shared Item Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('item_id') AS num FROM shared_items"));
+    $shared_item_count = $row['num'];
+
+    // Company Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('company_id') AS num FROM companies"));
+    $company_count = $row['num'];
+
+    // User Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('user_id') AS num FROM users"));
+    $user_count = $row['num'];
+
+    // Category Expense Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('category_id') AS num FROM categories WHERE category_type = 'Expense'"));
+    $category_expense_count = $row['num'];
+
+    // Category Income Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('category_id') AS num FROM categories WHERE category_type = 'Income'"));
+    $category_income_count = $row['num'];
+
+    // Category Referral Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('category_id') AS num FROM categories WHERE category_type = 'Referral'"));
+    $category_referral_count = $row['num'];
+
+    // Category Payment Method Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('category_id') AS num FROM categories WHERE category_type = 'Payment Method'"));
+    $category_payment_method_count = $row['num'];
+
+    // Tag Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('tag_id') AS num FROM tags"));
+    $tag_count = $row['num'];
+
+    // API Key Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('api_key_id') AS num FROM api_keys"));
+    $api_key_count = $row['num'];
+
+    // Log Count
+    $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('log_id') AS num FROM logs"));
+    $log_count = $row['num'];
+
+    $postdata = http_build_query(
+        array(
+            'installation_id' => "$installation_id",
+            'version' => "$current_version",
+            'company_name' => "$company_name",
+            'website' => "$company_website",
+            'city' => "$company_city",
+            'state' => "$company_state",
+            'country' => "$company_country",
+            'currency' => "$company_currency",
+            'client_count' => $client_count,
+            'ticket_count' => $ticket_count,
+            'recurring_ticket_count' => $recurring_ticket_count,
+            'calendar_event_count' => $calendar_event_count,
+            'quote_count' => $quote_count,
+            'invoice_count' => $invoice_count,
+            'revenue_count' => $revenue_count,
+            'recurring_invoice_count' => $recurring_invoice_count,
+            'account_count' => $account_count,
+            'tax_count' => $tax_count,
+            'product_count' => $product_count,
+            'payment_count' => $payment_count,
+            'company_vendor_count' => $company_vendor_count,
+            'expense_count' => $expense_count,
+            'trip_count' => $trip_count,
+            'transfer_count' => $transfer_count,
+            'contact_count' => $contact_count,
+            'location_count' => $location_count,
+            'asset_count' => $asset_count,
+            'software_count' => $software_count,
+            'software_template_count' => $software_template_count,
+            'credential_count' => $credential_count,
+            'network_count' => $network_count,
+            'certificate_count' => $certificate_count,
+            'domain_count' => $domain_count,
+            'service_count' => $service_count,
+            'client_vendor_count' => $client_vendor_count,
+            'vendor_template_count' => $vendor_template_count,
+            'file_count' => $file_count,
+            'document_count' => $document_count,
+            'document_template_count' => $document_template_count,
+            'shared_item_count' => $shared_item_count,
+            'company_count' => $company_count,
+            'user_count' => $user_count,
+            'category_expense_count' => $category_expense_count,
+            'category_income_count' => $category_income_count,
+            'category_referral_count' => $category_referral_count,
+            'category_payment_method_count' => $category_payment_method_count,
+            'tag_count' => $tag_count,
+            'api_key_count' => $api_key_count,
+            'log_count' => $log_count,
+            'config_theme' => "$config_theme",
+            'config_enable_cron' => $config_enable_cron,
+            'config_ticket_email_parse' => $config_ticket_email_parse,
+            'config_module_enable_itdoc' => $config_module_enable_itdoc,
+            'config_module_enable_ticketing' => $config_module_enable_ticketing,
+            'config_module_enable_accounting' => $config_module_enable_accounting,
+            'config_telemetry' => $config_telemetry,
+            'collection_method' => 3
+        )
+    );
+
+    $opts = array('http' =>
+        array(
+            'method' => 'POST',
+            'header' => 'Content-type: application/x-www-form-urlencoded',
+            'content' => $postdata
+        )
+    );
+
+    $context = stream_context_create($opts);
+
+    $result = file_get_contents('https://telemetry.itflow.org', false, $context);
+
+    // Logging
+    // logAction("Cron", "Task", "Cron sent telemetry results to ITFlow Developers");
+
+}
+
+
+// Fetch Updates
+$updates = fetchUpdates();
+
+$update_message = $updates->update_message;
+
+if ($updates->current_version !== $updates->latest_version) {
+    // Send Alert to inform Updates Available
+    appNotify("Update", "$update_message", "/admin/update.php");
+}
+
+
+
+/*
+ * ###############################################################################################################
+ *  FINISH UP
+ * ###############################################################################################################
+ */
+
+// Send Alert to inform Cron was run
+appNotify("Cron", "Cron successfully executed", "/admin/audit_log.php");
+
+// Logging
+logApp("Cron", "info", "Cron executed successfully");
diff --git a/cron/custom/readme.php b/cron/custom/readme.php
new file mode 100644
index 00000000..498c1b53
--- /dev/null
+++ b/cron/custom/readme.php
@@ -0,0 +1,8 @@
+<?php
+
+/*
+
+- Custom Pages -
+     If you wish to add custom pages to ITFlow, add them to this directory"
+     Link to Documentation for File Directory Structure and examples
+*/
diff --git a/cron/domain_refresher.php b/cron/domain_refresher.php
new file mode 100644
index 00000000..2bb04656
--- /dev/null
+++ b/cron/domain_refresher.php
@@ -0,0 +1,118 @@
+<?php
+
+// Set working directory to the directory this cron script lives at.
+chdir(dirname(__FILE__));
+
+// Ensure we're running from command line
+if (php_sapi_name() !== 'cli') {
+    die("This script must be run from the command line.\n");
+}
+
+require_once "../config.php";
+
+// Set Timezone
+require_once "../includes/inc_set_timezone.php";
+require_once "../functions.php";
+
+$sql_settings = mysqli_query($mysqli, "SELECT * FROM settings WHERE settings.company_id = 1");
+
+$row = mysqli_fetch_array($sql_settings);
+
+// Company Settings
+$config_enable_cron = intval($row['config_enable_cron']);
+
+// Check cron is enabled
+if ($config_enable_cron == 0) {
+    logApp("Cron-Domain-Refresher", "error", "Cron Domain Refresh unable to run - cron not enabled in admin settings.");
+    exit("Cron: is not enabled -- Quitting..");
+}
+
+/*
+ * ###############################################################################################################
+ *  REFRESH DATA
+ * ###############################################################################################################
+ */
+
+// REFRESH DOMAIN WHOIS DATA (1 a day/run)
+//  Get the oldest updated domain (MariaDB shows NULLs first when ordering by default)
+$row = mysqli_fetch_array(mysqli_query($mysqli, "SELECT domain_id, domain_name, domain_expire FROM `domains` WHERE domain_archived_at IS NULL ORDER BY domain_updated_at LIMIT 1"));
+
+if ($row) {
+
+    // Get current data in database
+    $domain_id = intval($row['domain_id']);
+    $domain_name = sanitizeInput($row['domain_name']);
+    $current_expire = sanitizeInput($row['domain_expire']);
+
+    // Touch the record we're refreshing to ensure we don't loop
+    mysqli_query($mysqli, "UPDATE domains SET domain_updated_at = NOW() WHERE domain_id = $domain_id");
+
+    // Lookup fresh info
+    $expire = getDomainExpirationDate($domain_name);
+    $records = getDomainRecords($domain_name);
+    $a = sanitizeInput($records['a']);
+    $ns = sanitizeInput($records['ns']);
+    $mx = sanitizeInput($records['mx']);
+    $txt = sanitizeInput($records['txt']);
+    $whois = sanitizeInput($records['whois']);
+
+    // Handle expiry date
+    if (strtotime($expire)) {
+        $expire = "'" . $expire . "'"; // Valid
+    } elseif (!strtotime($expire) && strtotime($current_expire)) {
+        // New expiry date is invalid, but old one is OK - reverting back
+        $expire = "'" . $current_expire . "'";
+    } else {
+        // Neither are valid, setting expiry to NULL
+        $expire = 'NULL';
+    }
+
+    // Current domain info
+    $original_domain_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
+        SELECT
+            domains.*,
+            registrar.vendor_name AS registrar_name,
+            dnshost.vendor_name AS dnshost_name,
+            mailhost.vendor_name AS mailhost_name,
+            webhost.vendor_name AS webhost_name
+        FROM domains
+        LEFT JOIN vendors AS registrar ON domains.domain_registrar = registrar.vendor_id
+        LEFT JOIN vendors AS dnshost ON domains.domain_dnshost = dnshost.vendor_id
+        LEFT JOIN vendors AS mailhost ON domains.domain_mailhost = mailhost.vendor_id
+        LEFT JOIN vendors AS webhost ON domains.domain_webhost = webhost.vendor_id
+        WHERE domain_id = $domain_id
+    "));
+
+    // Update the domain
+    mysqli_query($mysqli, "UPDATE domains SET domain_name = '$domain_name',  domain_expire = $expire, domain_ip = '$a', domain_name_servers = '$ns', domain_mail_servers = '$mx', domain_txt = '$txt', domain_raw_whois = '$whois' WHERE domain_id = $domain_id");
+    echo "Updated $domain_name.";
+
+    // Fetch updated info
+    $new_domain_info = mysqli_fetch_assoc(mysqli_query($mysqli,"
+        SELECT
+            domains.*,
+            registrar.vendor_name AS registrar_name,
+            dnshost.vendor_name AS dnshost_name,
+            mailhost.vendor_name AS mailhost_name,
+            webhost.vendor_name AS webhost_name
+        FROM domains
+        LEFT JOIN vendors AS registrar ON domains.domain_registrar = registrar.vendor_id
+        LEFT JOIN vendors AS dnshost ON domains.domain_dnshost = dnshost.vendor_id
+        LEFT JOIN vendors AS mailhost ON domains.domain_mailhost = mailhost.vendor_id
+        LEFT JOIN vendors AS webhost ON domains.domain_webhost = webhost.vendor_id
+        WHERE domain_id = $domain_id
+    "));
+
+    // Compare/log changes
+    $ignored_columns = ["domain_updated_at", "domain_accessed_at", "domain_registrar", "domain_webhost", "domain_dnshost", "domain_mailhost"];
+    foreach ($original_domain_info as $column => $old_value) {
+        $new_value = $new_domain_info[$column];
+        if ($old_value != $new_value && !in_array($column, $ignored_columns)) {
+            $column = sanitizeInput($column);
+            $old_value = sanitizeInput($old_value);
+            $new_value = sanitizeInput($new_value);
+            mysqli_query($mysqli,"INSERT INTO domain_history SET domain_history_column = '$column', domain_history_old_value = '$old_value', domain_history_new_value = '$new_value', domain_history_domain_id = $domain_id");
+        }
+    }
+
+}
diff --git a/scripts/custom/readme.php b/scripts/custom/readme.php
new file mode 100644
index 00000000..498c1b53
--- /dev/null
+++ b/scripts/custom/readme.php
@@ -0,0 +1,8 @@
+<?php
+
+/*
+
+- Custom Pages -
+     If you wish to add custom pages to ITFlow, add them to this directory"
+     Link to Documentation for File Directory Structure and examples
+*/
diff --git a/setup/custom/readme.php b/setup/custom/readme.php
new file mode 100644
index 00000000..498c1b53
--- /dev/null
+++ b/setup/custom/readme.php
@@ -0,0 +1,8 @@
+<?php
+
+/*
+
+- Custom Pages -
+     If you wish to add custom pages to ITFlow, add them to this directory"
+     Link to Documentation for File Directory Structure and examples
+*/

From 2ec4cdc4fb9163bed958bab7fe5bfd9859ea2997 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 01:00:48 -0400
Subject: [PATCH 16/24] Ceated inc_all_guest.php and modulaized the guest
 header.php removed guest footer and used the global footer.php as they were
 very similar

---
 CHANGELOG.md                       |  6 +++-
 guest/guest_pay_invoice_stripe.php |  4 +--
 guest/guest_view_invoice.php       |  8 ++---
 guest/guest_view_item.php          | 18 +++++-----
 guest/guest_view_quote.php         | 10 +++---
 guest/guest_view_ticket.php        | 10 +++---
 guest/includes/guest_footer.php    | 29 ----------------
 guest/includes/guest_header.php    | 56 +++---------------------------
 guest/includes/inc_all_guest.php   | 32 +++++++++++++++++
 guest/includes/inc_wrapper.php     |  6 ++++
 10 files changed, 72 insertions(+), 107 deletions(-)
 delete mode 100644 guest/includes/guest_footer.php
 create mode 100644 guest/includes/inc_all_guest.php
 create mode 100644 guest/includes/inc_wrapper.php

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c3b4f25c..75df39d7 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,7 @@
 This file documents all notable changes made to ITFlow.
 
 ## [25.10.1]
+- Deprecation Notice: `/scripts/cron_mail_queue.php` , `/scripts/cron_ticket_email_parser.php` , `/scripts/cron.php` `/scripts/cron_domain_refresher.php`, `/scripts/cron_certificate_refresher.php` are being phased out. Please transition to `/cron/mail_queue.php` , `/cron/ticket_email_parser.php`, `/cron/cron.php`, `/cron/domain_refresher.php`, `/cron/certificate_refresher.php` These older scripts will be removed in the November 25.11 release—update accordingly. 25.10.1 installs have the script already configured.
 
 ### Fixes
 - Fix regression missing custom Favicon.
@@ -14,11 +15,14 @@ This file documents all notable changes made to ITFlow.
 - Prevent open redirects upon agent login.
 - Fix regression on switching to Webklex IMAP to allow for no SSL/TLS in IMAP.
 - Fix Setup Redirect not behaving properly when setup hasnt been performed.
+- Added Server Document Root Var to several includes, headers, footers files to allow includes from deeper directory strutures such as the new custom directories.
 
 ### Added / Changed
 - Support for HTML Signatures.
 - Add Edit Project Functionality in a ticket.
-
+- Added more custom locations: /cron/custom/, /scripts/custom/, /api/v1/custom/, /setup/custom/.
+- Copied `/scripts/cron.php` `/scripts/cron_domain_refresher.php`, `/scripts/cron_certificate_refresher.php` to `/cron/cron.php`, `/cron/domain_refresher.php`, `/cron/certificate_refresher.php`. See Above!
+-
 
 ## [25.10]
 
diff --git a/guest/guest_pay_invoice_stripe.php b/guest/guest_pay_invoice_stripe.php
index 21526022..894c133a 100644
--- a/guest/guest_pay_invoice_stripe.php
+++ b/guest/guest_pay_invoice_stripe.php
@@ -1,6 +1,6 @@
 <?php
 
-require_once 'includes/guest_header.php';
+require_once 'includes/inc_all_guest.php';
 
 DEFINE("WORDING_PAYMENT_FAILED", "<br><h2>There was an error verifying your payment. Please contact us for more information before attempting payment again.</h2>");
 
@@ -300,4 +300,4 @@ if (isset($_GET['invoice_id'], $_GET['url_key']) && !isset($_GET['payment_intent
     exit(WORDING_PAYMENT_FAILED);
 }
 
-require_once 'includes/guest_footer.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
diff --git a/guest/guest_view_invoice.php b/guest/guest_view_invoice.php
index 4e1ed287..35f98438 100644
--- a/guest/guest_view_invoice.php
+++ b/guest/guest_view_invoice.php
@@ -1,10 +1,10 @@
 <?php
 
-require_once "includes/guest_header.php";
+require_once "includes/inc_all_guest.php";
 
 if (!isset($_GET['invoice_id'], $_GET['url_key'])) {
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -25,7 +25,7 @@ $sql = mysqli_query(
 if (mysqli_num_rows($sql) !== 1) {
     // Invalid invoice/key
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -478,4 +478,4 @@ if ($outstanding_invoices_count > 0) { ?>
 
 <?php } // End previous unpaid invoices
 
-require_once "includes/guest_footer.php";
+require_once $_SERVER['DOCUMENT_ROOT']  . '/includes/footer.php';
diff --git a/guest/guest_view_item.php b/guest/guest_view_item.php
index 553da300..023d18b2 100644
--- a/guest/guest_view_item.php
+++ b/guest/guest_view_item.php
@@ -4,7 +4,7 @@ header('Cache-Control: no-store, no-cache, must-revalidate');
 header('Cache-Control: post-check=0, pre-check=0', false);
 header('Pragma: no-cache');
 
-require_once "includes/guest_header.php";
+require_once "includes/inc_all_guest.php";
 
 
 //Initialize the HTML Purifier to prevent XSS
@@ -39,7 +39,7 @@ $currency_format = numfmt_create($company_locale, NumberFormatter::CURRENCY);
 <?php
 if (!isset($_GET['id']) || !isset($_GET['key'])) {
     echo "<div class='alert alert-danger'>Incorrect URL.</div>";
-    include "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -53,7 +53,7 @@ $row = mysqli_fetch_array($sql);
 // Check we got a result
 if (mysqli_num_rows($sql) !== 1 || !$row) {
     echo "<div class='alert alert-danger' >No item to view. Check with the person that sent you this link to ensure it is correct and has not expired.</div>";
-    include "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -61,7 +61,7 @@ if (mysqli_num_rows($sql) !== 1 || !$row) {
 // Check item share is active & hasn't been viewed too many times but allow 0 views as that is consider infinite views
 if ($row['item_active'] !== "1" || ($row['item_view_limit'] > 0 && $row['item_views'] >= $row['item_view_limit'])) {
     echo "<div class='alert alert-danger'>Item cannot be viewed at this time. Check with the person that sent you this link to ensure it is correct and has not expired.</div>";
-    include "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -123,7 +123,7 @@ if ($item_type == "Document") {
 
     if (mysqli_num_rows($doc_sql) !== 1 || !$doc_row) {
         echo "<div class='alert alert-danger'>Error retrieving document to view.</div>";
-        require_once "includes/guest_footer.php";
+        require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
         exit();
     }
@@ -150,7 +150,7 @@ if ($item_type == "Document") {
 
     if (mysqli_num_rows($file_sql) !== 1 || !$file_row) {
         echo "<div class='alert alert-danger'>Error retrieving file.</div>";
-        include "includes/guest_footer.php";
+        require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
         exit();
     }
@@ -171,7 +171,7 @@ if ($item_type == "Document") {
     $credential_row = mysqli_fetch_array($credential_sql);
     if (mysqli_num_rows($credential_sql) !== 1 || !$credential_row) {
         echo "<div class='alert alert-danger'>Error retrieving login.</div>";
-        include "includes/guest_footer.php";
+        require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
         exit();
     }
@@ -274,6 +274,4 @@ if ($item_type == "Document") {
 </div>
 
 <?php
-require_once "includes/guest_footer.php";
-
-?>
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
diff --git a/guest/guest_view_quote.php b/guest/guest_view_quote.php
index 7497f654..c791487d 100644
--- a/guest/guest_view_quote.php
+++ b/guest/guest_view_quote.php
@@ -1,11 +1,11 @@
 <?php
 
-require_once "includes/guest_header.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/guest/includes/inc_all_guest.php';
 
 
 if (!isset($_GET['quote_id'], $_GET['url_key'])) {
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -27,7 +27,7 @@ $sql = mysqli_query(
 if (mysqli_num_rows($sql) !== 1) {
     // Invalid quote/key
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -133,7 +133,7 @@ if ($quote_status == "Draft" || $quote_status == "Sent" || $quote_status == "Vie
         <div class="row mb-3">
             <?php if (file_exists("../uploads/settings/$company_logo")) { ?>
             <div class="col-sm-2">
-                <img class="img-fluid" src="<?php echo "../uploads/settings/$company_logo"; ?>" alt="Company logo">
+                <img class="img-fluid" src="<?php echo "/uploads/settings/$company_logo"; ?>" alt="Company logo">
             </div>
             <?php } ?>
             <div class="col-sm-6 <?php if (!file_exists("../uploads/settings/$company_logo")) { echo "col-sm-8"; } ?>">
@@ -301,4 +301,4 @@ if ($quote_status == "Draft" || $quote_status == "Sent" || $quote_status == "Vie
 
 <?php
 require_once "guest_quote_upload_file_modal.php";
-require_once "includes/guest_footer.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
diff --git a/guest/guest_view_ticket.php b/guest/guest_view_ticket.php
index bab520f6..ecd45749 100644
--- a/guest/guest_view_ticket.php
+++ b/guest/guest_view_ticket.php
@@ -1,6 +1,6 @@
 <?php
 
-require_once "includes/guest_header.php";
+require_once "includes/inc_all_guest.php";
 
 //Initialize the HTML Purifier to prevent XSS
 require "../plugins/htmlpurifier/HTMLPurifier.standalone.php";
@@ -12,7 +12,7 @@ $purifier = new HTMLPurifier($purifier_config);
 
 if (!isset($_GET['ticket_id'], $_GET['url_key'])) {
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
     exit();
 }
 
@@ -47,7 +47,7 @@ $ticket_sql = mysqli_query($mysqli,
 if (mysqli_num_rows($ticket_sql) !== 1) {
     // Invalid invoice/key
     echo "<br><h2>Oops, something went wrong! Please raise a ticket if you believe this is an error.</h2>";
-    require_once "includes/guest_footer.php";
+    require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
 
     exit();
 }
@@ -210,7 +210,7 @@ if ($ticket_row) {
 
     ?>
 
-    <script src="../js/pretty_content.js"></script>
+    <script src="/js/pretty_content.js"></script>
 
     <?php } else {
         echo "Ticket ID not found!";
@@ -221,4 +221,4 @@ if ($ticket_row) {
 </div>
 
 <?php
-require_once "includes/guest_footer.php";
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php';
diff --git a/guest/includes/guest_footer.php b/guest/includes/guest_footer.php
deleted file mode 100644
index 01c63d4a..00000000
--- a/guest/includes/guest_footer.php
+++ /dev/null
@@ -1,29 +0,0 @@
-        </div><!-- /.container-fluid -->
-      </div>
-      <!-- /.content -->
-    </div>
-    <!-- /.content-wrapper -->
-  </div>
-  <!-- ./wrapper -->
-
-  <!-- REQUIRED SCRIPTS -->
-  <?php require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_confirm_modal.php'; ?>
-
-  <!-- jQuery -->
-  <script src="/plugins/jquery/jquery.min.js"></script>
-  <!-- Bootstrap 4 -->
-  <script src="/plugins/bootstrap/js/bootstrap.bundle.min.js"></script>
-  <!-- AdminLTE App -->
-  <script src="/plugins/adminlte/js/adminlte.min.js"></script>
-  <!-- Custom js -->
-  <script src="/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js"></script>
-  <script src="/plugins/moment/moment.min.js"></script>
-  <script src='/plugins/daterangepicker/daterangepicker.js'></script>
-  <script src='/plugins/select2/js/select2.min.js'></script>
-  <script src='/plugins/inputmask/inputmask.min.js'></script>
-  <script src="/js/app.js"></script>
-  <script src="/js/pretty_content.js"></script>
-  <script src="/js/confirm_modal.js"></script>
-
-  </body>
-</html>
diff --git a/guest/includes/guest_header.php b/guest/includes/guest_header.php
index e1d907a3..c45cdac3 100644
--- a/guest/includes/guest_header.php
+++ b/guest/includes/guest_header.php
@@ -1,27 +1,3 @@
-<?php
-
-require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
-require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
-require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/load_global_settings.php';
-
-session_start();
-
-// Set Timezone
-require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_set_timezone.php';
-
-$ip = sanitizeInput(getIP());
-$user_agent = sanitizeInput($_SERVER['HTTP_USER_AGENT']);
-$os = sanitizeInput(getOS($user_agent));
-$browser = sanitizeInput(getWebBrowser($user_agent));
-
-// Get Company Name
-$sql = mysqli_query($mysqli, "SELECT company_name FROM companies WHERE company_id = 1");
-$row = mysqli_fetch_array($sql);
-
-$session_company_name = $row['company_name'];
-
-?>
-
 <!DOCTYPE html>
 <html lang="en">
 <head>
@@ -51,32 +27,10 @@ $session_company_name = $row['company_name'];
     <link rel="stylesheet" href="/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css">
     <link rel="stylesheet" href='/plugins/daterangepicker/daterangepicker.css'>
 
+    <!-- Scripts -->
+    <script src="/plugins/jquery/jquery.min.js"></script>
+    <script src="/plugins/toastr/toastr.min.js"></script>
+
 </head>
 <body class="layout-top-nav">
-<div class="wrapper text-sm">
-
-    <!-- Content Wrapper. Contains page content -->
-    <div class="content-wrapper">
-
-        <!-- Main content -->
-        <div class="content">
-            <div class="container">
-
-                <?php
-                //Alert Feedback
-                if (!empty($_SESSION['alert_message'])) {
-                    if (!isset($_SESSION['alert_type'])) {
-                        $_SESSION['alert_type'] = "info";
-                    }
-                    ?>
-                    <div class="alert alert-<?php echo $_SESSION['alert_type']; ?>" id="alert">
-                        <?php echo nullable_htmlentities($_SESSION['alert_message']); ?>
-                        <button class='close' data-dismiss='alert'>&times;</button>
-                    </div>
-                    <?php
-
-                    unset($_SESSION['alert_type']);
-                    unset($_SESSION['alert_message']);
-
-                }
-                ?>
+    <div class="wrapper text-sm">
\ No newline at end of file
diff --git a/guest/includes/inc_all_guest.php b/guest/includes/inc_all_guest.php
new file mode 100644
index 00000000..b30592a3
--- /dev/null
+++ b/guest/includes/inc_all_guest.php
@@ -0,0 +1,32 @@
+<?php
+// Configuration & core
+require_once $_SERVER['DOCUMENT_ROOT'] . '/config.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/functions.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/load_global_settings.php';
+
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/session_init.php';
+
+// Set Timezone
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_set_timezone.php';
+
+$ip = sanitizeInput(getIP());
+$user_agent = sanitizeInput($_SERVER['HTTP_USER_AGENT']);
+$os = sanitizeInput(getOS($user_agent));
+$browser = sanitizeInput(getWebBrowser($user_agent));
+
+// Get Company Name
+$sql = mysqli_query($mysqli, "SELECT company_name FROM companies WHERE company_id = 1");
+$row = mysqli_fetch_array($sql);
+
+$session_company_name = $row['company_name'];
+
+// Page setup
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/page_title.php';
+
+// Layout UI
+require_once $_SERVER['DOCUMENT_ROOT'] . '/guest/includes/guest_header.php';
+
+// Wrapper & alerts
+require_once $_SERVER['DOCUMENT_ROOT'] . '/guest/includes/inc_wrapper.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/inc_alert_feedback.php';
+//require_once $_SERVER['DOCUMENT_ROOT'] . '/includes/filter_header.php';
diff --git a/guest/includes/inc_wrapper.php b/guest/includes/inc_wrapper.php
new file mode 100644
index 00000000..76b451d2
--- /dev/null
+++ b/guest/includes/inc_wrapper.php
@@ -0,0 +1,6 @@
+<!-- Content Wrapper. Contains page content -->
+<div class="content-wrapper">
+
+    <!-- Main content -->
+    <div class="content">
+        <div class="container">
\ No newline at end of file

From 27e1d6a9cdbb1e987ddee1c1c582089ed6398428 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 01:18:55 -0400
Subject: [PATCH 17/24] remove net terms in quote add jquery to guest header

---
 guest/guest_view_quote.php | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/guest/guest_view_quote.php b/guest/guest_view_quote.php
index c791487d..bc439faf 100644
--- a/guest/guest_view_quote.php
+++ b/guest/guest_view_quote.php
@@ -60,10 +60,6 @@ $contact_mobile_country_code = nullable_htmlentities($row['contact_mobile_countr
 $contact_mobile = nullable_htmlentities(formatPhoneNumber($row['contact_mobile'], $contact_mobile_country_code));
 $client_website = nullable_htmlentities($row['client_website']);
 $client_currency_code = nullable_htmlentities($row['client_currency_code']);
-$client_net_terms = intval($row['client_net_terms']);
-if ($client_net_terms == 0) {
-    $client_net_terms = intval($row['config_default_net_terms']);
-}
 
 $sql = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1");
 $row = mysqli_fetch_array($sql);

From e3e7c2e38bd4b5a05da138aa8cb3e3b8a99657f3 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 14:48:13 -0400
Subject: [PATCH 18/24] Add Signature in ticket reply POST dont add a signature
 if Internal

---
 agent/post/ticket.php | 8 +++++++-
 agent/ticket.php      | 1 -
 functions.php         | 2 ++
 3 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/agent/post/ticket.php b/agent/post/ticket.php
index 4694ac70..e7dd756f 100644
--- a/agent/post/ticket.php
+++ b/agent/post/ticket.php
@@ -1567,7 +1567,7 @@ if (isset($_POST['add_ticket_reply'])) {
     enforceUserPermission('module_support', 2);
 
     $ticket_id = intval($_POST['ticket_id']);
-    $ticket_reply = mysqli_real_escape_string($mysqli, $_POST['ticket_reply']);
+    $ticket_reply = $_POST['ticket_reply']; // Reply is SQL escaped below
     $ticket_status = intval($_POST['status']);
     $client_id = intval($_POST['client_id']);
 
@@ -1588,6 +1588,12 @@ if (isset($_POST['add_ticket_reply'])) {
     } else {
         $ticket_reply_type = 'Internal';
     }
+    // Add Signature to the end of the ticket reply if not Internal and if there is reply
+    if ($ticket_reply !== '' && $ticket_reply_type !== 'Internal') {
+        $ticket_reply .= getFieldById('user_settings',$session_user_id,'user_config_signature', 'raw');
+    }
+    
+    $ticket_reply = mysqli_escape_string($mysqli, $ticket_reply); // SQL Escape Ticket Reply
 
     // Update Ticket Status & updated at (in case status didn't change)
     mysqli_query($mysqli, "UPDATE tickets SET ticket_status = $ticket_status, ticket_updated_at = NOW() WHERE ticket_id = $ticket_id");
diff --git a/agent/ticket.php b/agent/ticket.php
index 03333082..162bfe0a 100644
--- a/agent/ticket.php
+++ b/agent/ticket.php
@@ -620,7 +620,6 @@ if (isset($_GET['ticket_id'])) {
                                 <textarea
                                     class="form-control tinymceTicket" name="ticket_reply"
                                     placeholder="Type a response">
-                                    <?php echo getFieldById('user_settings',$session_user_id,'user_config_signature','html'); ?>
                                 </textarea>
                             </div>
 
diff --git a/functions.php b/functions.php
index 740a7d1b..f05bf93d 100644
--- a/functions.php
+++ b/functions.php
@@ -1607,6 +1607,8 @@ function getFieldById($table, $id, $field, $escape_method = 'sql') {
 
         // Apply the desired escaping method or auto-detect integer type if using SQL escaping
         switch ($escape_method) {
+            case 'raw':
+                return $value; // Return as-is from the database
             case 'html':
                 return htmlspecialchars($value ?? '', ENT_QUOTES, 'UTF-8'); // Escape for HTML
             case 'json':

From 1eb9d163faec9c79ba015aa21134037dc06ad7db Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 14:50:34 -0400
Subject: [PATCH 19/24] Updated Changelog

---
 CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 75df39d7..835e9eb9 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -22,7 +22,7 @@ This file documents all notable changes made to ITFlow.
 - Add Edit Project Functionality in a ticket.
 - Added more custom locations: /cron/custom/, /scripts/custom/, /api/v1/custom/, /setup/custom/.
 - Copied `/scripts/cron.php` `/scripts/cron_domain_refresher.php`, `/scripts/cron_certificate_refresher.php` to `/cron/cron.php`, `/cron/domain_refresher.php`, `/cron/certificate_refresher.php`. See Above!
--
+- Signatures is now handled in post ticket reply on Public Comments only.
 
 ## [25.10]
 

From fea3020d9a78c9d8c0c0a4e0da0cb2096f720b80 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 15:29:06 -0400
Subject: [PATCH 20/24] Add powered by ITFlow in Guest Section

---
 includes/footer.php | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/includes/footer.php b/includes/footer.php
index 827b0ead..c90d42bc 100644
--- a/includes/footer.php
+++ b/includes/footer.php
@@ -7,6 +7,17 @@ if (basename(dirname($_SERVER['REQUEST_URI'])) === 'admin') { ?>
     <p class="text-right font-weight-light">ITFlow <?php echo APP_VERSION ?> &nbsp; · &nbsp; <a target="_blank" href="https://docs.itflow.org">Docs</a> &nbsp; · &nbsp; <a target="_blank" href="https://forum.itflow.org">Forum</a> &nbsp; · &nbsp; <a target="_blank" href="https://services.itflow.org">Services</a></p>
     <br>
 <?php } ?>
+<?php
+if (basename(dirname($_SERVER['REQUEST_URI'])) === 'guest') { ?>
+<p class="text-center">
+    <?php
+        echo nullable_htmlentities($session_company_name);
+        if (!$config_whitelabel_enabled) {
+            echo '<br><small class="text-muted">Powered by ITFlow</small>';
+        }
+    ?>
+</p>
+<?php } ?>
 
 </div><!-- /.container-fluid -->
 </div> <!-- /.content -->

From 8130280b3580410a6beb34624a969f65225c9e19 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 17:12:23 -0400
Subject: [PATCH 21/24] Fix edit from contact details modal

---
 agent/modals/contact/contact_details.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/agent/modals/contact/contact_details.php b/agent/modals/contact/contact_details.php
index e65b0e70..0aefe75b 100644
--- a/agent/modals/contact/contact_details.php
+++ b/agent/modals/contact/contact_details.php
@@ -845,8 +845,8 @@ ob_start();
     <a href="contact_details.php?client_id=<?php echo $client_id; ?>&contact_id=<?php echo $contact_id; ?>" class="btn btn-primary text-bold">
         <span class="text-white"><i class="fas fa-info-circle mr-2"></i>More Details</span>
     </a>
-    <a href="#" class="btn btn-secondary" 
-        data-toggle="ajax-modal" data-ajax-url="ajax/ajax_contact_edit.php" data-ajax-id="<?php echo $contact_id; ?>">
+    <a href="#" class="btn btn-secondary ajax-modal" 
+        data-modal-url="modals/contact/contact_edit.php?id=<?= $contact_id ?>">
         <span class="text-white"><i class="fas fa-edit mr-2"></i>Edit</span>
     </a>
     <button type="button" class="btn btn-light" data-dismiss="modal"><i class="fa fa-times mr-2"></i>Close</button>

From a3b0fce9610cf5b74f10ebb6370d7459baa23ab0 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 17:19:17 -0400
Subject: [PATCH 22/24] Fix login_microsoft

---
 client/login_microsoft.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/login_microsoft.php b/client/login_microsoft.php
index 64d60d06..be938aac 100644
--- a/client/login_microsoft.php
+++ b/client/login_microsoft.php
@@ -102,7 +102,7 @@ if (isset($_POST['code']) && $_POST['state'] == session_id()) {
 
             $sql = mysqli_query($mysqli, "SELECT * FROM users
                 LEFT JOIN contacts ON user_id = contact_user_id
-                LEFT JOIN clients contact_client_id = client_id
+                LEFT JOIN clients ON contact_client_id = client_id
                 WHERE user_email = '$upn'
                 AND user_archived_at IS NULL
                 AND client_archived_at IS NULL

From 3ff206f84dbd064eca5ec6c052e621e10eb7a03b Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 17:25:03 -0400
Subject: [PATCH 23/24] Add .htaccess in cron

---
 cron/.htaccess | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 cron/.htaccess

diff --git a/cron/.htaccess b/cron/.htaccess
new file mode 100644
index 00000000..77b4e697
--- /dev/null
+++ b/cron/.htaccess
@@ -0,0 +1,3 @@
+<FilesMatch "\.(php)$">
+  Require all denied
+</FilesMatch>
\ No newline at end of file

From fbf334605210b97a3fdd41d6a2fd68fc5f820c42 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Wed, 8 Oct 2025 17:30:19 -0400
Subject: [PATCH 24/24] Update Changelog

---
 CHANGELOG.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 835e9eb9..d35ccc2f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -16,6 +16,8 @@ This file documents all notable changes made to ITFlow.
 - Fix regression on switching to Webklex IMAP to allow for no SSL/TLS in IMAP.
 - Fix Setup Redirect not behaving properly when setup hasnt been performed.
 - Added Server Document Root Var to several includes, headers, footers files to allow includes from deeper directory strutures such as the new custom directories.
+- Fix edit contact in contact details.
+- Add .htaccess to /cron/.
 
 ### Added / Changed
 - Support for HTML Signatures.