diff --git a/post/tasks.php b/post/tasks.php
index fbab75f2..0dd09069 100644
--- a/post/tasks.php
+++ b/post/tasks.php
@@ -30,6 +30,29 @@ if (isset($_POST['add_task'])) {
header("Location: " . $_SERVER["HTTP_REFERER"]);
}
+if (isset($_POST['edit_task'])) {
+
+ validateTechRole();
+
+ $task_id = intval($_POST['task_id']);
+ $task_name = sanitizeInput($_POST['name']);
+ $task_description = sanitizeInput($_POST['description']);
+
+ // Get Client ID
+ $sql = mysqli_query($mysqli, "SELECT * FROM tasks LEFT JOIN tickets ON ticket_id = task_ticket_id WHERE task_id = $task_id");
+ $row = mysqli_fetch_array($sql);
+ $client_id = intval($row['ticket_client_id']);
+
+ mysqli_query($mysqli, "UPDATE tasks SET task_name = '$task_name', task_description = '$task_description' WHERE task_id = $task_id");
+
+ // Logging
+ mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Edit', log_description = '$session_name edited task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
+
+ $_SESSION['alert_message'] = "You edited Task $task_name";
+
+ header("Location: " . $_SERVER["HTTP_REFERER"]);
+}
+
if (isset($_GET['delete_task'])) {
@@ -38,7 +61,7 @@ if (isset($_GET['delete_task'])) {
$task_id = intval($_GET['delete_task']);
// Get Client ID, task name from tasks and tickets using the task_id
- $sql = mysqli_query($mysqli, "SELECT * FROM tasks LEFT JOIN tickets ON ticket_id = task_ticket_id");
+ $sql = mysqli_query($mysqli, "SELECT * FROM tasks LEFT JOIN tickets ON ticket_id = task_ticket_id WHERE task_id = $task_id");
$row = mysqli_fetch_array($sql);
$client_id = intval($row['ticket_client_id']);
$task_name = sanitizeInput($row['task_name']);
@@ -49,7 +72,30 @@ if (isset($_GET['delete_task'])) {
mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Delete', log_description = '$session_name deleted task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
$_SESSION['alert_type'] = "error";
- $_SESSION['alert_message'] = "You created Task $task_name";
+ $_SESSION['alert_message'] = "You Deleted Task $task_name";
+
+ header("Location: " . $_SERVER["HTTP_REFERER"]);
+}
+
+if (isset($_GET['complete_task'])) {
+
+ validateTechRole();
+
+ $task_id = intval($_GET['complete_task']);
+
+ // Get Client ID
+ $sql = mysqli_query($mysqli, "SELECT * FROM tasks LEFT JOIN tickets ON ticket_id = task_ticket_id WHERE task_id = $task_id");
+ $row = mysqli_fetch_array($sql);
+ $client_id = intval($row['ticket_client_id']);
+ $task_name = sanitizeInput($row['task_name']);
+ $ticket_id = intval($row['ticket_id']);
+
+ mysqli_query($mysqli, "UPDATE tasks SET task_completed_at = NOW(), task_completed_by = $session_user_id WHERE task_id = $task_id");
+
+ // Logging
+ mysqli_query($mysqli, "INSERT INTO logs SET log_type = 'Task', log_action = 'Edit', log_description = '$session_name completed task $task_name', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_client_id = $client_id, log_user_id = $session_user_id, log_entity_id = $task_id");
+
+ $_SESSION['alert_message'] = "You completed Task $task_name";
header("Location: " . $_SERVER["HTTP_REFERER"]);
}
\ No newline at end of file
diff --git a/ticket.php b/ticket.php
index da8f92ab..1ce1996b 100644
--- a/ticket.php
+++ b/ticket.php
@@ -638,6 +638,47 @@ if (isset($_GET['ticket_id'])) {
+
+ 0) { ?>
+
+
Tasks
+
+
+
+
+
+
+
+
+
+
+
+
+
-
+
@@ -940,33 +979,6 @@ if (isset($_GET['ticket_id'])) {
-
-
- 0) { ?>
-
-
-
-