AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,407 Commits 6 Branches 15 Tags 166 MiB
Commit Graph

676 Commits

Author SHA1 Message Date
Marcus Hill 4dd5aa1ea2 Add IP address logging to document create/update/deletes 2022-04-24 10:12:59 +01:00
Marcus Hill f5f033fed4 Remove MeshCentral integration 
As per recent discussions about the API & scripts being a better way forward for all integration, removing the MeshCentral integration that was added.
 2022-04-19 22:42:38 +01:00
Marcus Hill e55622827d Add support for client-specific API keys 
Refactoring API. Added a contact update endpoint.
Small misc changes.
 2022-04-15 17:43:06 +01:00
Marcus Hill fca1627c33 Remove delete user post.php code. Deleting users means we'll lose all tickets/replies which isn't great. 
Correct user archive behaviour so when users are archived they can no longer login. Need to add ability for quick disable/enable of user accounts, as using archive as permanent.
Refactor "You are not permitted to do that!" wording into a constant instead.
 2022-04-15 13:29:27 +01:00
Marcus Hill f707098d37 Redirect to ticket after creation 2022-04-15 12:02:13 +01:00
Marcus Hill 6aa06b4389 Add full text index & search for document contents (related to #440) 2022-04-15 11:42:50 +01:00
johnnyq fd8188095e New Feature Enable/Disable ITFlow Modules now using the automated DB updater 2022-04-14 22:59:36 -04:00
Marcus Hill ca629801af Change all "AND" / "OR" to && / || 2022-04-14 18:40:51 +01:00
Marcus Hill cc4c2e6bf7 - Enforce role check when editing/deleting scheduled tickets 
- Add scheduled tickets to client view
- Add search and pagination to scheduled tickets
- Populate scheduled ticket edit modals dynamically
- Minor typos
 2022-04-10 13:42:47 +01:00
Marcus Hill 815ada9da5 Add agent name when reassigning ticket, improve logic to only allow assigning open tickets to techs/admins 2022-04-07 21:37:14 +01:00
johnnyq a0cead284f Fix Add Payment Email Currency Symbol 2022-04-05 11:56:22 -04:00
johnnyq fdf9d67910 Allow to Add Ticket to an exiting invoice item line 2022-04-02 20:50:55 -04:00
johnnyq a837af6eb4 Fixed Invoice Ticket 2022-04-02 20:13:20 -04:00
Johnny f6df0d3c72
Merge pull request #429 from wrongecho/db-version 
Add database updater
 2022-04-02 16:04:18 -04:00
johnnyq ef29a17d49 DB Structure Update - Added SMTP Encryption Type to Mail settings 2022-04-02 16:03:30 -04:00
Marcus Hill 9096b091b2 Add database updater 2022-04-02 19:39:55 +01:00
Johnny 32f3b0a005
Merge pull request #428 from wrongecho/sharing 
Item/Link Sharing enhancements
 2022-04-02 13:57:12 -04:00
Johnny f85957bd0d
Merge pull request #427 from wrongecho/dom-ssl 
Domains/SSL
 2022-04-02 11:48:39 -04:00
Marcus Hill 2c632a85d0 Create shared links page for each client, with option to deactivate links 2022-04-02 16:41:07 +01:00
Marcus Hill cab2cc923a Improve share features: default modal to 1, cleanup expired/used links 2022-04-02 15:37:17 +01:00
Marcus Hill be70883551 Refactor WHOIS lookups to use hosted heroku app 2022-04-02 12:19:35 +01:00
Marcus Hill 6a2fe3055e Auto-add SSL certificate for new domains 2022-04-02 10:16:20 +01:00
johnnyq a2936754cd Moved Mesh Central and Azure settings from general to its own tab called integrations 2022-04-01 17:20:29 -04:00
johnnyq 991e2bd4d4 Merge branch 'master' of github.com:johnnyq/itflow 2022-04-01 15:59:26 -04:00
johnnyq 6866addeee Minor Fixups 2022-04-01 15:58:18 -04:00
Marcus Hill 51a6ba6084 Allow admins to disable 2FA for users 2022-04-01 19:53:49 +01:00
johnnyq 8c98163e1c DB Structure Updated 2 new settings config_backup_enable and config_backup_path. This is to fix an issue where not specifying the full backup path would cause cron to error out and not run completely 2022-03-29 12:59:42 -04:00
Marcus Hill 0020c5708a Fix = vs == role check mistake 2022-03-28 21:48:20 +01:00
Marcus Hill 4ba313f752 Fix potential sql injection in delete_file if param add_location was also specified - post.php 2022-03-28 20:45:31 +01:00
Marcus Hill d83906508d Fix potential sql injection in add_company - post.php 2022-03-28 20:39:35 +01:00
Marcus Hill bba68f4d17 Name uploaded files with provided name, if specified 2022-03-27 23:00:45 +01:00
Marcus Hill 9040fdf847 Misc small changes/fixes 2022-03-27 22:26:22 +01:00
Johnny aafb6a677f
Merge pull request #412 from wrongecho/misc 
Misc incl SQL Injection / XSS fixes
 2022-03-27 15:05:07 -04:00
Marcus Hill 816ba87485 SQL Injection / XSS fixes 2022-03-27 20:02:16 +01:00
Marcus Hill c3fadfab3b Add role based access for API functions 2022-03-27 16:03:41 +01:00
Marcus Hill a6a7bf1f30 Restrict user (agent) create/edit/delete actions to admins only 2022-03-27 15:39:27 +01:00
Marcus Hill e6a314d233 Prevent tech/accountant from performing certain tasks as per access matrix 2022-03-27 15:32:40 +01:00
johnnyq 139bb6fd73 Set item_view to 0 when sharing a link 2022-03-26 11:10:27 -04:00
johnnyq 25f973d3a5 Additional Standardization of logging actions use Upload instead of Uploaded same with Download and Email 2022-03-26 10:27:11 -04:00
johnnyq 5f451dceef Standardize logging actions use Create instead of Created same with Modify and Delete 2022-03-26 10:12:40 -04:00
Marcus Hill e4d2d0c699 Prevent deletion of client unless user role is 3 (admin) 2022-03-24 20:52:26 +00:00
Marcus Hill fd589c53fa Delete scheduled tickets when client is deleted 2022-03-24 20:45:58 +00:00
Marcus Hill a598e9d42e Remove non-existant delete query that prevents client being deleted properly on some installs 2022-03-24 20:41:26 +00:00
Joe Clark 654b7adf6c Initialize variable to avoid PHP undefined error 2022-03-22 13:07:11 -07:00
Marcus Hill 34d6caa016 Client portal updates 2022-03-20 16:02:58 +00:00
Marcus Hill 3a6b893f4f Attempt to parse the expiry date for .com/.org/.net domains - hacky 2022-03-13 10:28:17 +00:00
Marcus Hill ead895aad5 Fetch A record details for domain when added 2022-03-13 09:32:08 +00:00
johnnyq 928af1d90d Added Ticket to Invoice functionality Thanks @aftechro 2022-03-11 20:24:03 -05:00
Marcus Hill e1a419ea11 Refactor domains modals so they are dyanmically populated. Implement basic NS, MX and WHOIS scraping for domains on add/edit 2022-03-07 22:31:19 +00:00
johnnyq d7fd8cc736 Fix invoice to recurring sent to wrong destination 2022-03-04 14:38:53 -05:00
johnnyq d4a63c14c3 DB Updated removed history_date from history table as this is redundant with history_created_at 2022-03-04 00:41:34 -05:00
johnnyq 165bd572a9 DB Update added contact_id to files, documents and logins Added Related Items Modal to Client Contacts still more work to do 2022-03-04 00:24:58 -05:00
johnnyq ecb628cad8 Fix Add Software 2022-03-03 23:28:16 -05:00
Marcus Hill bf909a71f8 Fix HTML Purifier removing images 2022-03-02 20:23:19 +00:00
johnnyq dec7f9be67 When Deleting software delete the relations asset licneses and user licneses. Fix post issue on adding software with defined asset or user licenses 2022-03-02 12:13:54 -05:00
Marcus Hill 8fcb854e91 Storing the secret in plaintext so we can use it during cron eventually 2022-02-26 21:59:01 +00:00
Marcus Hill e4dc22a0ce Add functionality to pull/sync assets & info from MeshCentral 2022-02-26 21:51:37 +00:00
johnnyq 79afb05298 Merge branch 'master' of github.com:johnnyq/itflow 2022-02-26 11:16:57 -05:00
johnnyq 112efbc314 DB Update tip_user_id added to the trips tables. Updated Trips to include the driver. WIP limit users to the session_company 2022-02-26 11:16:33 -05:00
Marcus Hill 0fac1f3039 Move ajax logic to ajax.php 2022-02-26 11:16:53 +00:00
Johnny 3bd79635ec
Merge pull request #376 from wrongecho/cert-parse 
SSL Parse - escape issued_by
 2022-02-24 15:42:58 -05:00
Marcus Hill 9837549fac Escape certificate issuer when parsed from public key, values like [Let's Encrypt] break it otherwise 2022-02-24 20:27:03 +00:00
Marcus Hill ee2d9e1b08 Dynamically load certificate edit modal with ajax, fix certificate details fetch error 2022-02-24 16:03:00 +00:00
johnnyq 3b615d2f3a UI updates mainly icon swaps etc 2022-02-22 14:41:48 -05:00
johnnyq a724807782 DB Structure Update - Added Extension to contact on export PDF, finished contact departments 2022-02-22 13:14:17 -05:00
johnnyq 1ed20217d1 Added Department name on client PDF Export and contact CSV export 2022-02-22 11:42:08 -05:00
johnnyq 7af0c11720 Updated Email template footers to include department and Email for Ticket replies, Invoices, Payment Receipts, Quotes, etc 2022-02-21 23:42:58 -05:00
johnnyq 315bfd55d7 Added notification_dismissed_by 2022-02-21 21:23:32 -05:00
johnnyq 05e7b160b1 DB Structure Update table name alerts is now notifications also update the fields accordingly to the notifications table - Reworked Notifications a bit 2022-02-21 21:21:13 -05:00
johnnyq e6167ffaa3 Merged table Document and Document Template and just added a new field to differentiate, can save a document as a template now more to come, also added folder selection not quite ready yet 2022-02-20 17:02:48 -05:00
Marcus Hill 36a24f5603 Add file & login sharing functionality & ip/ua view tracking 2022-02-20 17:16:28 +00:00
Johnny 7a7d165aba
Merge pull request #364 from wrongecho/sharing 
Add document sharing via link
 2022-02-19 16:36:06 -05:00
johnnyq 06cde1a119 Cleaned up the new JS edit Modal sperating Javascript vars with camelCase and php var with seperate_words 2022-02-19 16:17:07 -05:00
Marcus Hill 6f6f5a0217 Add document sharing via link #315 2022-02-19 20:02:14 +00:00
Johnny af4e09f534
Merge pull request #363 from wrongecho/services-certs 
Add functionality to link certificates to services
 2022-02-18 18:00:18 -05:00
johnnyq e00d4f693f Finished Adding Assigning Licenses to Device or Users under software 2022-02-18 17:58:11 -05:00
johnnyq f95a228141 Updated DB Structure, Added Seperate From Name and From Email to Invoices / Quotes and Tickets, seperated Quote and Invoice to their own settings pane 2022-02-18 15:26:16 -05:00
johnnyq 16968e0b97 Added Locale option for company, this works in conjunction with the way the currency is displayed 2022-02-18 11:14:14 -05:00
Marcus Hill ccb4aa3c22 Add functionality to link certificates to services 2022-02-18 08:35:32 +00:00
johnnyq ab973457b9 Added Seats Expire and Purchase dates to Software 2022-02-18 01:09:16 -05:00
johnnyq 0aec371ccd Add Software Licnee Version and License Type as well as the beginnings to assign licneses to devices and or users 2022-02-18 00:27:00 -05:00
johnnyq a9346845ab Refactored Currency Display using PHP numfmt_format_currency() function as this is best practice and will put the right currency symbol in the right place based off locale and currency type 2022-02-17 22:20:59 -05:00
johnnyq f2f9f22545 Started using new php function for Currency formatting as this is best preactice, removed Client Access and removed certian user roles 2022-02-17 17:41:30 -05:00
johnnyq 626a8f8205 Seperate Assets in client documentation, also fixed width issue on client vendors when pagination is was active 2022-02-15 14:12:47 -05:00
johnnyq b3ebb21989 Do not show table fields and header if data doesnt exist, also removed the client footer on export Client IT Documentaiton 2022-02-15 12:59:57 -05:00
johnnyq 0dec751f67 Fix Export Client Documentation via PDF 2022-02-14 09:29:30 -05:00
Marcus Hill 6860a87c59 Move network edit modal data processing to AJAX 2022-02-13 18:15:51 +00:00
johnnyq e9b239f9a9 Bump AdminLTE from 3.1 to 3.2, Bump plugins Summernote, phpMailer, clipboardjs, bootstrap, fontawesome-free, fullcalendar, inputmask, JQuery, moment, pdfmake, and more. Removed Unnessesary files from from plugins directories to reduce app size 2022-02-07 19:20:56 -05:00
johnnyq 94faa6934a Merge branch 'master' of github.com:johnnyq/itflow 2022-02-05 18:55:51 -05:00
johnnyq 56f0f7d08e More Audit Loggings 2022-02-05 18:55:20 -05:00
Johnny 4068d604f4
Merge pull request #347 from wrongecho/html-purifier 
Filter dangerous html tags out of ticket & documents using HTML Purifier
 2022-02-05 18:54:01 -05:00
Marcus Hill 4f68073223 Implement html purifier for tickets & documents 2022-02-05 22:18:53 +00:00
johnnyq 5dd576fe20 Removed Legacy AES Password conversion and old AES key from database 2022-02-05 16:41:21 -05:00
johnnyq c8600033f5 opp forgot switch companies start page 2022-02-05 13:45:15 -05:00
Marcus Hill 7b23c04d78 Add functionality to edit scheduled tickets. Small other fixes 2022-02-05 12:59:07 +00:00
johnnyq 6dda8ce0d6 Added Duplicate checking support for import assets 2022-02-04 18:05:19 -05:00
johnnyq 6e9f2534d4 Renamed contact display field on client assets to Assigned To to match export and import assets 2022-02-04 17:38:53 -05:00
johnnyq 75117c2f2e You can now import contact and locaiton of assets as long as the name appears in locaitons or contacts 2022-02-04 17:36:05 -05:00
johnnyq b1d09e6b56 Removed old API Key from Settings api.php now uses api_keys and a key is no longer generated upon setup, Also autogen an API key upon creation. 2022-02-04 15:59:51 -05:00
johnnyq b58696f079 Added API List, Create, Update Delete Interface 2022-02-03 19:12:10 -05:00
johnnyq 4074b62d59 Merge branch 'master' of github.com:johnnyq/itflow 2022-02-01 16:17:57 -05:00
johnnyq 1d4d3be434 Start working on HTMLPurfier for WYSIWYG Input 2022-02-01 16:17:30 -05:00
Marcus Hill 3bac0188e6 Add backup note to services module 2022-01-31 20:24:47 +00:00
Johnny 980f4137fa
Merge pull request #329 from wrongecho/ticket-email 
Send email to client on public ticket update
 2022-01-29 10:15:58 -05:00
Marcus Hill d84ec0519e Add functionality to allow associating a domain to a certificate 2022-01-29 13:53:54 +00:00
Marcus Hill 149002e7ea Send email to client on public ticket update 2022-01-29 13:28:01 +00:00
Johnny c3b7f28057
Merge pull request #326 from wrongecho/services 
Services
 2022-01-28 20:40:18 -05:00
johnnyq dd9fcd57d2 Fix guest invoice caused issues with the alert Query on certain client names, will need reworking and testing in other areas of the code as well 2022-01-28 20:38:48 -05:00
Marcus Hill 1db6582a4e Add logging 2022-01-28 22:34:27 +00:00
Marcus Hill f92dc13311 Add service edit functionality 2022-01-28 22:20:40 +00:00
Marcus Hill 780e8354c7 Better handling of empty linked assets 2022-01-28 22:10:34 +00:00
Marcus Hill e509cc5719 Add functionality to delete service 2022-01-27 22:21:58 +00:00
Marcus Hill 301e6d94cd Add service logic. Removing URLs for now 2022-01-27 21:48:26 +00:00
johnnyq 21a0feb625 Removed circle from edit location and client photo, fixed location phone number not saving when you add a client 2022-01-25 15:28:57 -05:00
johnnyq 5170a221c2 Now you can assign contacts to locations 2022-01-25 13:39:48 -05:00
johnnyq b34f602639 Added Location Column to client networks, more work on Campaigns 2022-01-25 13:22:26 -05:00
johnnyq ba75378f9b Finished Campaign Test Email and some other fixups 2022-01-24 22:07:50 -05:00
johnnyq 039e374cd6 Partial Mailling list campaign tracker currently tracks opens using a 1x1 image, some more UI work to campaigns etc 2022-01-24 18:27:12 -05:00
johnnyq fd77569bf1 Added more placeholder headers to mailing list, added modal for edit mail campaign, added status colors and status buttons 2022-01-23 01:08:19 -05:00
johnnyq 2fc80d9b78 More work on Mass Mailing List, almost complete 2022-01-22 23:52:15 -05:00
johnnyq ee8739c763 Added Custom Export Modal to trips 2022-01-22 18:08:21 -05:00
Johnny 73d9f461af
Merge pull request #319 from wrongecho/scheduled-tickets 
Add functionality to delete scheduled tickets
 2022-01-22 16:46:09 -05:00
johnnyq a3c63b0649 Added Export Expenses Records with custom from and to Date, Fixed Advanced Search under expenses some other minor code formatting fixups 2022-01-22 14:37:45 -05:00
Marcus Hill aaa8682d00 Add functionality to delete scheduled tickets 2022-01-22 18:52:00 +00:00
johnnyq e277289ed6 Added Assets Sample Template Download Link on import assets and cleaned up import assets 2022-01-21 12:40:44 -05:00
Marcus Hill 4c2b91155d Add support to link asset to ticket at creation, if on client ticket page 2022-01-20 21:23:04 +00:00
Johnny f77df06004
Merge pull request #299 from wrongecho/ssl 
Fetch SSL data/cert on add/update modal
 2022-01-18 15:29:58 -05:00
Marcus Hill 4eed8be0aa Add fetch button to retrieve certifiate from domain provided #289 2022-01-18 20:04:00 +00:00
Marcus Hill e9a6fa4436 Redirect back to main quote/invoice page after emailing a quote / invoice. #275 2022-01-17 20:17:38 +00:00
johnnyq 43791435bc Fix Edit Asset Password was not using the new encrypt method causing the password to blank out fixes #294 2022-01-17 11:32:04 -05:00
johnnyq 0d306e961e Changed product cost to product price as it makes more sense, some cleanup on the new product auto complete feature, added JQueryUI as a local asset instead of a remote asset 2022-01-16 15:29:52 -05:00
Marcus Hill 24b5ffa09c Rem debugging 2022-01-15 23:19:09 +00:00
Marcus Hill c69fb5a7db Add ability to turn on extension access (cookie) 2022-01-15 23:16:17 +00:00
Marcus Hill 2b3a7171b3 Session management 2022-01-15 21:26:22 +00:00
johnnyq 7b6598a63a Updated the old default_currency code VAR to the new session company currency code VAR this was causig currency codes to be empty in many areas 2022-01-14 15:24:47 -05:00
johnnyq f8e9c2ee5d replicated currency symbol across email communication, updated currency code to reflect the current invoice and or quote's currency code instead of the clients currency code 2022-01-14 14:58:27 -05:00
Marcus Hill 6d20a518b7 Add client currency to invoice email 2022-01-14 16:33:09 +00:00
Marcus Hill 7823c02bf3 Add client currency to quote email 2022-01-14 16:29:41 +00:00
johnnyq 8b90286bad Finished adding event description 2022-01-13 15:52:58 -05:00
johnnyq d02a121dfa Updated New Client form with location phone number, renamed address tab to location, moved website from contact tab to Details tab, along with other UI cleanup 2022-01-13 15:47:13 -05:00
Marcus Hill 4897c46cd5 Add merge ticket functionality 2022-01-12 19:01:17 +00:00
Marcus Hill e45202d133 Redirect user to tickets main page post deletion, rather than to a random ticket. 2022-01-12 15:37:33 +00:00
Marcus Hill 2a4d42de09 Encryption changes 2022-01-11 20:42:46 +00:00
Marcus Hill fccae5dedb Typo in user id variable 2022-01-11 19:22:06 +00:00
Marcus Hill 82107679cc More. 2022-01-11 19:16:49 +00:00
Marcus Hill 8e0334aab1 More encryption updates 2022-01-11 19:03:33 +00:00
Marcus Hill 6c6b7e2255 Correct password reset 2022-01-11 18:40:08 +00:00
Marcus Hill c66f96ae1d More encryption related changes 2022-01-11 18:28:55 +00:00
Marcus Hill d3d39ca8ad r 2022-01-11 18:22:45 +00:00
Marcus Hill 951b03f712 Allow for encryption scheme upgrade 2022-01-11 14:03:34 +00:00
Marcus Hill 51edb7a648 Allow backing up master key 2022-01-11 00:13:18 +00:00
Marcus Hill aac50bdfdb More changes re encryption 2022-01-10 22:55:08 +00:00
Marcus Hill 49d895040a Add per-user password encryption using master key 2022-01-10 22:07:26 +00:00
Marcus Hill 33d76f556b Check file is CSV when importing assets 2022-01-09 15:34:28 +00:00
Marcus Hill 7a5f8b425f Delete tag associations for document when it is deleted 2022-01-09 14:47:34 +00:00
Marcus Hill cc52295698 Add note when ticket is closed (to easily show who closed it) 2022-01-08 21:08:21 +00:00
Marcus Hill a83f3377bd Include time worked db field. 2022-01-08 16:47:17 +00:00
Marcus Hill c98be4c344 Add support for public/internal updates, using the existing 'email update to client' checkbox 2022-01-08 16:40:04 +00:00
Marcus Hill 8406779b3b Add time tracking to ticket 2022-01-08 16:12:04 +00:00
johnnyq 5d1848694d Moved import CSV logging out of the loop I accidentally moved it there while fixing a merge conflict, Add more to the logging and some basic code ordering 2022-01-07 22:41:16 -05:00
Johnny 04ad831053
Merge pull request #254 from wrongecho/scheduled-tickets 
Scheduled tickets
 2022-01-07 22:03:52 -05:00
Marcus Hill de152c84ca Add scheduled ticket functionality to cron 2022-01-07 23:56:22 +00:00
johnnyq ee5ae53a41 Updated ticket details layout and added some additional functionality thanks to @aftechro 2022-01-07 18:20:16 -05:00
Marcus Hill d83c5f4176 Add frontend/backend for adding scheduled new tickets 2022-01-07 22:32:23 +00:00
johnnyq 3de0ef51ec Small fix when I tryed to resolve a merge conflict 2022-01-07 14:47:47 -05:00
Johnny 00a7fdb6f7
Merge pull request #252 from wrongecho/files 
File uploads
 2022-01-07 14:39:41 -05:00
Johnny 96510364e2
Merge branch 'master' into asset-csv 2022-01-07 14:38:04 -05:00
johnnyq adf1dbe76e Cleanups 2022-01-07 14:25:35 -05:00
Marcus Hill d0483f2472 Allow csv file upload 2022-01-07 18:36:55 +00:00
Marcus Hill c5e976d995 Add index.php files to upload directories to prevent file traversal 2022-01-07 18:35:23 +00:00
Marcus Hill 3eff9e3d48 Add count to asset import via csv 2022-01-07 16:01:30 +00:00
Marcus Hill 5dc9eb4d1d Add basic asset import functionality 2022-01-07 00:58:38 +00:00
Marcus Hill d37dd77637 Update ticket status in database after a ticket reply. 2022-01-06 22:59:23 +00:00
Marcus Hill 77d7e7ba0d Add tag functionality to documents 2022-01-05 21:58:10 +00:00
Marcus Hill f6900ae993 Allow linking of asset to a ticket via edit modal 2022-01-04 20:22:27 +00:00
Marcus Hill ae98902a96 Add support for storing client certificate public key 2022-01-04 03:32:50 +00:00
johnnyq de883f9ff5 Fixed Add Recurring and Edit Recurring Invoices going to a blank screen after submit this was due to a missing history_status var, Removed Activate and Deactivate from recurring list and the buttons from recurring details as this can be modified using edit recurring, Removed Redundant Force Send action on recurring list views, this can be accessed by going to the recurring details. 2022-01-02 13:39:25 -05:00
johnnyq 5ecac729a8 Fixed add ticket logging 2022-01-02 01:43:44 -05:00
johnnyq 466b7a51e4 removed logging client id key for global vendor 2022-01-02 00:58:50 -05:00
johnnyq b2cef73dad Removed Old Logging function under edit vendor 2022-01-02 00:56:28 -05:00
johnnyq ebb37c0f06 Fix Spelling mistake 2022-01-02 00:28:38 -05:00
johnnyq cf3c0a6410 Fixed a vulnerability in the setup.php file and other code cleanups. Thanks to the person that wishes to remain anonymous for reporting and providing a patch Also added a notice to readme to not use this web app during beta for production use 2022-01-01 17:02:31 -05:00
johnnyq a70105e731 Started Adding Detailed Assets more alert and audit logging work 2022-01-01 15:26:31 -05:00
johnnyq ff0ce6077a Removed Redundant Contact and location under edit client. 2021-12-31 16:24:28 -05:00
johnnyq e978cd142e More Audit Logging work, fixed a bunch of small bugs along the way 2021-12-31 15:33:41 -05:00
johnnyq cd7ecc9593 More Audit Logging and alerts cleanup 2021-12-28 22:13:53 -05:00
johnnyq 119e491865 Added Refferal Datasets on new company 2021-12-28 20:54:17 -05:00
johnnyq 05702c4a1b More Audit logging fixes and added proper permissions and added common datasets when a company is added 2021-12-28 18:53:48 -05:00
johnnyq 33400894d5 Updates and Fixings to Audit Logs, added client tag selection for mass email campaigns 2021-12-28 18:16:54 -05:00
johnnyq c04353f284 Added not bull on db structure update for tag_type 2021-12-27 12:14:56 -05:00
johnnyq 484d4fff82 Added Tag Type to allow expansion of tagging support for other entities in the future 2021-12-27 12:06:37 -05:00
johnnyq d23d455cd9 DB update The long awaited Client Tag support is finally complete along with icon support and color badges this has replaced the user maintenance field to allow further customization, fixed tickets as it was using the old permission system. 2021-12-27 11:42:13 -05:00
johnnyq 25b5cb3d40 Moved Functions above check login so that check login can use some of the functions, Moved Fingerprinting to check login instead of in functions as its a more appropriate place 2021-12-22 17:24:54 -05:00
johnnyq 610eeca0a1 DB Update More work on client tags 2021-12-22 14:34:45 -05:00
johnnyq 40c3587789 Remove Outdated DB Changes upon update as ITFlow requires a full reinstallation as of 12-22-2021 will add more as code changes 2021-12-22 14:10:52 -05:00
johnnyq ba584a57e0 BREAKING CHANGES - Many DB Updates - NOT POSSIBLE TO EASILY UPGRADE TO THIS - Completely reworked User Company Access Permssions, started working on Client Role so Clients can access their data and a bunch of other small fixes 2021-12-22 13:08:24 -05:00
johnnyq 4604280efe This Update will break your login as we updated the password hash from MD5 to a salted hash using hash_password and password_verify techniques, fixed an unauthenticated persistent XSS Vulnerbility which would affect if someone spoofed their IP with a javascript code and then a logged in read the logs. The flaw was discovered by @bambilol #214 also fixed some other bugs. 2021-12-13 12:21:55 -05:00
johnnyq cf0946439e Broked it now fixed it 2021-12-12 16:16:58 -05:00
johnnyq 17833fb6dd More Code Fixups and blips to resolve continuing to comb through the code 2021-12-12 16:09:51 -05:00
johnnyq b3b1a44228 Forgot the SQL Connection 2021-12-12 01:27:35 -05:00
johnnyq 9e9bb50db0 Fixed a SQL injection could only work if you had a login thanks disclosure5 for pointing this out from reddit/r/msp 2021-12-12 01:22:39 -05:00
johnnyq efb6372190 Fix #210 Password output under client logins 2021-12-10 13:35:48 -05:00
johnnyq f02e94d585 Started adding IP and User agent to audit logs, log when a user logs out, Merged logout into post.php 2021-12-09 16:12:57 -05:00
johnnyq a5a8fbc319 Fix a bunch of PHP Errors regarding various variable issues non existent vars, cleaned up client export documentation and export assets etc 2021-12-09 15:26:21 -05:00
johnnyq d78a24f3a5 Added git ids to the db structure update under updates 2021-12-09 11:15:19 -05:00
johnnyq 610875a3b3 Fix Alter Query Syntax for updating Table structure 2021-12-09 11:11:50 -05:00
johnnyq 16447709d8 added DB Structure changes during update 2021-12-09 11:07:54 -05:00
johnnyq c88e6b851a DB Structure Change - Removed the useless Low Account Balance alert 2021-12-08 22:32:05 -05:00
johnnyq 85cdc42d0f DB Structure update, Hide Passwords under client logins until eyeball is clicked to reveal password, prevent the looking over your shoulder type attack, Added Install Date to Assets, reworked client assets listing to include Operating System and Install Date 2021-12-08 22:15:20 -05:00
johnnyq c8d83ca09c Fixed broken Client Print, added option to export client documentation with and without password 2021-12-04 12:12:14 -05:00
johnnyq c9065e8348 Added Array Tagging to Add Client also added Tag Icon Field 2021-11-24 22:56:55 -05:00
johnnyq ee1230e18a Added Tags CRUD and added to Side Menu 2021-11-24 21:53:21 -05:00
johnnyq f939ca41aa More work on Campaign Mailing List, started adding space in between Currency symbol and number 2021-11-21 12:24:40 -05:00
johnnyq 627edc92b1 Added Update Successful message and auto redirect back 2021-11-20 16:45:50 -05:00
johnnyq 5aa02e346a update will now pull down the latest changes via git next up is schema upgrades between commits 2021-11-20 16:43:03 -05:00
johnnyq 1551ea7c9b Initial work on making the update function functionable 2021-11-20 16:36:55 -05:00
johnnyq 0976a08730 Removed default currency and default country under settings added a company currency to the company table. Now currency default and country default uses company country and currency, updated the currency symbol to use companies currency under dashboard, expenses, profit loss reports 2021-11-19 20:45:57 -05:00
johnnyq 6c80fa177d DB Update, reworked upcoming tagging feature in SQL, Added Province and Postal Code to address labels, changed the field document_details to document_content in SQL 2021-11-08 18:07:36 -05:00
johnnyq 7257664ae2 Allow uploading of .txt files under client files 2021-10-17 15:02:02 -04:00
johnnyq 6c7155f4ac Fixed an issue under edit user where it would update a blank password if none was entered 2021-09-22 10:10:10 -04:00
johnnyq e772f107e7 Fix Client File Link 2021-09-21 23:48:55 -04:00
johnnyq 3a5ba00a52 Fix Add Photo under add location 2021-09-21 23:44:45 -04:00
johnnyq c7edadfd46 Fix Add Photo under add contact 2021-09-21 23:38:15 -04:00
johnnyq a939588cf2 New File upload logic complete Breaking changes New db dump 2021-09-21 22:22:55 -04:00
johnnyq 1d3cf6fd96 Updated to new file upload logic on locations as well this will break location photos 2021-09-20 22:39:37 -04:00
johnnyq 22d3564f04 BREAKING CHANGE New file upload method for contacts to not specify full path in database to reduce the db load and size as well as give better error control 2021-09-20 22:10:57 -04:00
johnnyq 6908bdcd30 Bumped PHPMailer from 6.4.0 to 6.5.1 2021-09-20 18:33:00 -04:00
johnnyq 2e5e1aee52 Phone numbers are all now formatted correctly per their length 2021-09-11 22:41:50 -04:00
root 55a2a7a96a Fixed Synatx error in post 2021-09-10 10:55:38 -04:00
johnnyq b7d0549ede Initial start to mailing list support 2021-09-09 23:15:39 -04:00
johnnyq 2ec79ef014 Did the same as previous commit for edit Quote Invoice Recurring 2021-08-29 22:12:16 -04:00
johnnyq 209bd7da4d Remove Currency Selection from invoice, quote and recurring as this will be determined by your company currency in settings, the payment is what matters as this is where it will be converted 2021-08-29 22:07:46 -04:00
johnnyq 94577379d4 Fixed Edit Client Contact Title it was missing 2021-08-29 14:01:04 -04:00
johnnyq 09c62eb359 Fix delete Invoice Item not updating balance 2021-08-28 19:48:06 -04:00
johnnyq 3b3e6a0166 UI Update on Trip Forms contact forms and location forms also Contact / Location under add /edit contact now add or edit the primary location and contact 2021-08-28 16:07:31 -04:00
johnnyq 735ccc2602 Adding Tickets under client details now shows a selectable contact also when adding a ticket it will automatically choose the primary_contact of the client if none are selected 2021-08-28 12:47:50 -04:00
johnnyq 3a9ea1d67e Fixed Post Redirection on edit and archive in categories 2021-08-28 11:58:29 -04:00
johnnyq 94c0ac2dd1 Removed dead comment code 2021-08-28 11:46:51 -04:00
johnnyq 7031fd4e59 Fix Alert Settings failing to apply 2021-08-28 11:46:15 -04:00
johnnyq 439fc87551 Fix item_tax_id var in force recurring invoice 2021-08-28 01:44:12 -04:00
johnnyq 3cc90e9b42 Fixed Transfer Account 2021-08-28 00:54:07 -04:00
johnnyq 1e8f852f73 Missing $ for var in POST 2021-08-27 23:55:23 -04:00
johnnyq f3053ffbd4 BREAKING CHANGES: Major Backend Code Changes Updated Foreign keys to prepend their table names ex invoice_client_id, switched most queries over to JOIN instead of = Combined contacts and location into client removed client email, phone etc fields, tons of small bug fixes, and other small UI changes all across the board 2021-08-27 23:14:06 -04:00
johnnyq 24fcb04411 Moved Support to colored handshake icon boldered client name and only mark balance red instead of both balance and paid red 2021-08-22 20:31:06 -04:00
johnnyq 9a82ce4c1f More work on IT Documentation 2021-08-21 21:25:11 -04:00
johnnyq 3c322e1f2c Added IT Documentation PDF Export to client 2021-08-21 21:05:28 -04:00
johnnyq 6f33e3379c Updated all Client Data Listings and added CSV Exports to Client Data 2021-08-21 16:37:40 -04:00
johnnyq 13365c70af Added more CSV Exporting initial modification to client data listings UI starting with contacts 2021-08-21 14:30:49 -04:00
johnnyq 1dfa5de130 Redirect to dashboard when switching companies 2021-08-21 01:24:08 -04:00
johnnyq 61710eecf6 Added the Ability to assign a contact from client in tickets 2021-08-21 00:42:06 -04:00