$name created"); redirect(); } if (isset($_POST['edit_client'])) { enforceUserPermission('module_client', 2); require_once 'client_model.php'; $client_id = intval($_POST['client_id']); mysqli_query($mysqli, "UPDATE clients SET client_name = '$name', client_type = '$type', client_website = '$website', client_referral = '$referral', client_rate = $rate, client_net_terms = $net_terms, client_tax_id_number = '$tax_id_number', client_lead = $lead, client_abbreviation = '$abbreviation', client_notes = '$notes' WHERE client_id = $client_id"); // Create Referral if it doesn't exist $sql = mysqli_query($mysqli, "SELECT category_name FROM categories WHERE category_type = 'Referral' AND category_archived_at IS NULL AND category_name = '$referral'"); if(mysqli_num_rows($sql) == 0) { mysqli_query($mysqli, "INSERT INTO categories SET category_name = '$referral', category_type = 'Referral'"); logAction("Category", "Create", "$session_name created referral category $referral"); } // Tags // Delete existing tags mysqli_query($mysqli, "DELETE FROM client_tags WHERE client_id = $client_id"); // Add new tags if(isset($_POST['tags'])) { foreach($_POST['tags'] as $tag) { $tag = intval($tag); mysqli_query($mysqli, "INSERT INTO client_tags SET client_id = $client_id, tag_id = $tag"); } } logAction("Client", "Edit", "$session_name edited client $name", $client_id, $client_id); flash_alert("Client $name updated"); redirect(); } if (isset($_GET['archive_client'])) { validateCSRFToken($_GET['csrf_token']); enforceUserPermission('module_client', 2); $client_id = intval($_GET['archive_client']); // Archive client mysqli_query($mysqli, "UPDATE clients SET client_archived_at = NOW() WHERE client_id = $client_id"); // Stop recurring invoices $sql_recurring_invoices = mysqli_query($mysqli, "SELECT * FROM recurring_invoices WHERE recurring_invoice_client_id = $client_id AND recurring_invoice_status = 1"); while ($row = mysqli_fetch_array($sql_recurring_invoices)) { $recurring_invoice_id = intval($row['recurring_invoice_id']); mysqli_query($mysqli,"UPDATE recurring_invoices SET recurring_invoice_status = 0 WHERE recurring_invoice_id = $recurring_invoice_id AND recurring_invoice_client_id = $client_id"); mysqli_query($mysqli,"INSERT INTO history SET history_status = 0, history_description = 'Recurring Invoice inactive as client archived', history_recurring_invoice_id = $recurring_invoice_id"); } // Get Client Name $client_name = sanitizeInput(getFieldById('clients', $client_id, 'client_name')); logAction("Client", "Archive", "$session_name archived client $client_name", $client_id, $client_id); flash_alert("Client $client_name archived", 'error'); redirect(); } if (isset($_GET['restore_client'])) { validateCSRFToken($_GET['csrf_token']); enforceUserPermission('module_client', 2); $client_id = intval($_GET['restore_client']); // Get Client Name $client_name = sanitizeInput(getFieldById('clients', $client_id, 'client_name')); mysqli_query($mysqli, "UPDATE clients SET client_archived_at = NULL WHERE client_id = $client_id"); logAction("Client", "Restored", "$session_name restored client $client_name", $client_id); flash_alert("Client $client_name restored"); redirect(); } if (isset($_GET['delete_client'])) { validateCSRFToken($_GET['csrf_token']); enforceUserPermission('module_client', 3); $client_id = intval($_GET['delete_client']); // Get Client Name $client_name = sanitizeInput(getFieldById('clients', $client_id, 'client_name')); // Delete Associations // Delete Client Data mysqli_query($mysqli, "DELETE FROM api_keys WHERE api_key_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM certificates WHERE certificate_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM documents WHERE document_client_id = $client_id"); // Delete Contacts mysqli_query($mysqli, "DELETE FROM contacts WHERE contact_client_id = $client_id"); // Delete Assets mysqli_query($mysqli, "DELETE FROM assets WHERE asset_client_id = $client_id"); // Delete Domains and associated records mysqli_query($mysqli, "DELETE FROM domains WHERE domain_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM calendar_events WHERE event_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM files WHERE file_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM folders WHERE folder_client_id = $client_id"); //Delete Invoices and Invoice Referencing data $sql = mysqli_query($mysqli, "SELECT invoice_id FROM invoices WHERE invoice_client_id = $client_id"); while($row = mysqli_fetch_array($sql)) { $invoice_id = $row['invoice_id']; mysqli_query($mysqli, "DELETE FROM invoice_items WHERE item_invoice_id = $invoice_id"); mysqli_query($mysqli, "DELETE FROM payments WHERE payment_invoice_id = $invoice_id"); mysqli_query($mysqli, "DELETE FROM history WHERE history_invoice_id = $invoice_id"); } mysqli_query($mysqli, "DELETE FROM invoices WHERE invoice_client_id = $client_id"); // Delete Locations and location tags mysqli_query($mysqli, "DELETE FROM locations WHERE location_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM credentials WHERE credential_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM logs WHERE log_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM networks WHERE network_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM notifications WHERE notification_client_id = $client_id"); //Delete Quote and related items $sql = mysqli_query($mysqli, "SELECT quote_id FROM quotes WHERE quote_client_id = $client_id"); while($row = mysqli_fetch_array($sql)) { $quote_id = $row['quote_id']; mysqli_query($mysqli, "DELETE FROM invoice_items WHERE item_quote_id = $quote_id"); } mysqli_query($mysqli, "DELETE FROM quotes WHERE quote_client_id = $client_id"); // Delete Recurring Invoices and associated items $sql = mysqli_query($mysqli, "SELECT recurring_invoice_id FROM recurring_invoices WHERE recurring_invoice_client_id = $client_id"); while($row = mysqli_fetch_array($sql)) { $recurring_invoice_id = $row['recurring_invoice_id']; mysqli_query($mysqli, "DELETE FROM invoice_items WHERE item_recurring_invoice_id = $recurring_invoice_id"); } mysqli_query($mysqli, "DELETE FROM recurring_invoices WHERE recurring_invoice_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM revenues WHERE revenue_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM recurring_tickets WHERE recurring_ticket_client_id = $client_id"); // Delete Services mysqli_query($mysqli, "DELETE FROM services WHERE service_client_id = $client_id"); // Delete Shared Items mysqli_query($mysqli, "DELETE FROM shared_items WHERE item_client_id = $client_id"); // Delete Software mysqli_query($mysqli, "DELETE FROM software WHERE software_client_id = $client_id"); // Delete tickets and related data $sql = mysqli_query($mysqli, "SELECT ticket_id FROM tickets WHERE ticket_client_id = $client_id"); while($row = mysqli_fetch_array($sql)) { $ticket_id = $row['ticket_id']; mysqli_query($mysqli, "DELETE FROM ticket_replies WHERE ticket_reply_ticket_id = $ticket_id"); mysqli_query($mysqli, "DELETE FROM ticket_views WHERE view_ticket_id = $ticket_id"); } mysqli_query($mysqli, "DELETE FROM tickets WHERE ticket_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM trips WHERE trip_client_id = $client_id"); mysqli_query($mysqli, "DELETE FROM vendors WHERE vendor_client_id = $client_id"); //Delete Client Files removeDirectory("../uploads/clients/$client_id"); //Finally Remove the Client mysqli_query($mysqli, "DELETE FROM clients WHERE client_id = $client_id"); logAction("Client", "Deleted", "$session_name deleted Client $client_name and all associated data"); flash_alert("Client $client_name deleted along with all associated data", 'error'); redirect('clients.php'); } if (isset($_POST['export_clients_csv'])) { enforceUserPermission('module_client', 1); //get records from database $sql = mysqli_query($mysqli, "SELECT * FROM clients LEFT JOIN contacts ON clients.client_id = contacts.contact_client_id AND contact_primary = 1 LEFT JOIN locations ON clients.client_id = locations.location_client_id AND location_primary = 1 ORDER BY client_name ASC "); $num_rows = mysqli_num_rows($sql); if ($num_rows > 0) { $delimiter = ","; $enclosure = '"'; $escape = '\\'; // backslash $filename = sanitize_filename($session_company_name . "-Clients-" . date('Y-m-d_H-i-s') . ".csv"); //create a file pointer $f = fopen('php://memory', 'w'); //set column headers $fields = array('Client Name', 'Industry', 'Referral', 'Website', 'Primary Location Name', 'Location Phone', 'Location Address', 'City', 'State', 'Postal Code', 'Country', 'Primary Contact Name', 'Title', 'Contact Phone', 'Extension', 'Contact Mobile', 'Contact Email', 'Hourly Rate', 'Currency', 'Payment Terms', 'Tax ID', 'Abbreviation'); fputcsv($f, $fields, $delimiter, $enclosure, $escape); //output each row of the data, format line as csv and write to file pointer while($row = $sql->fetch_assoc()) { $lineData = array($row['client_name'], $row['client_type'], $row['client_referral'], $row['client_website'], $row['location_name'], formatPhoneNumber($row['location_phone']), $row['location_address'], $row['location_city'], $row['location_state'], $row['location_zip'], $row['location_country'], $row['contact_name'], $row['contact_title'], formatPhoneNumber($row['contact_phone']), $row['contact_extension'], formatPhoneNumber($row['contact_mobile']), $row['contact_email'], $row['client_rate'], $row['client_currency_code'], $row['client_net_terms'], $row['client_tax_id_number'], $row['client_abbreviation']); fputcsv($f, $lineData, $delimiter, $enclosure, $escape); } //move back to beginning of file fseek($f, 0); //set headers to download file rather than displayed header('Content-Type: text/csv'); header('Content-Disposition: attachment; filename="' . $filename . '";'); //output all remaining data on a file pointer fpassthru($f); logAction("Client", "Export", "$session_name exported $num_rows client(s) to a CSV file"); } exit; } if (isset($_POST["import_clients_csv"])) { enforceUserPermission('module_client', 2); $error = false; if (!empty($_FILES["file"]["tmp_name"])) { $file_name = $_FILES["file"]["tmp_name"]; } else { flash_alert("Please select a file to upload.", 'error'); redirect(); } //Check file is CSV $file_extension = strtolower(end(explode('.',$_FILES['file']['name']))); $allowed_file_extensions = array('csv'); if (in_array($file_extension,$allowed_file_extensions) === false) { $error = true; flash_alert("Bad file extension", 'error'); } //Check file isn't empty elseif ($_FILES["file"]["size"] < 1) { $error = true; flash_alert("Bad file size (empty?)", 'error'); } //(Else)Check column count $f = fopen($file_name, "r"); $f_columns = fgetcsv($f, 1000, ","); if (!$error & count($f_columns) != 22) { $error = true; flash_alert("Bad column count.", 'error'); } //Else, parse the file if (!$error) { $file = fopen($file_name, "r"); fgetcsv($file, 1000, ","); // Skip first line $row_count = 0; $duplicate_count = 0; while(($column = fgetcsv($file, 1000, ",")) !== false) { $duplicate_detect = 0; if (isset($column[0])) { $name = sanitizeInput($column[0]); if (mysqli_num_rows(mysqli_query($mysqli,"SELECT * FROM clients WHERE client_name = '$name'")) > 0) { $duplicate_detect = 1; } } $industry = ''; if (isset($column[1])) { $industry = sanitizeInput($column[1]); } $referral = ''; if (isset($column[2])) { $referral = sanitizeInput($column[2]); } $website = ''; if (isset($column[3])) { $website = sanitizeInput(preg_replace("(^https?://)", "", $column[3])); } $location_name = ''; if (isset($column[4])) { $location_name = sanitizeInput($column[4]); } $location_phone = ''; if (isset($column[5])) { $location_phone = preg_replace("/[^0-9]/", '', $column[5]); } $address = ''; if (isset($column[6])) { $address = sanitizeInput($column[6]); } $city = ''; if (isset($column[7])) { $city = sanitizeInput($column[7]); } $state = ''; if (isset($column[8])) { $state = sanitizeInput($column[8]); } $zip = ''; if (isset($column[9])) { $zip = sanitizeInput($column[9]); } $country = ''; if (isset($column[10])) { $country = sanitizeInput($column[10]); } $contact_name = ''; if (isset($column[11])) { $contact_name = sanitizeInput($column[11]); } $title = ''; if (isset($column[12])) { $title = sanitizeInput($column[12]); } $contact_phone = ''; if (isset($column[13])) { $contact_phone = preg_replace("/[^0-9]/", '',$column[13]); } $contact_extension = ''; if (isset($column[14])) { $contact_extension = preg_replace("/[^0-9]/", '',$column[14]); } $contact_mobile = ''; if (isset($column[15])) { $contact_mobile = preg_replace("/[^0-9]/", '',$column[15]); } $contact_email = ''; if (isset($column[16])) { $contact_email = sanitizeInput($column[16]); } $hourly_rate = $config_default_hourly_rate; if (isset($column[17])) { $hourly_rate = floatval($column[17]); } $currency_code = sanitizeInput($session_company_currency); if (isset($column[18])) { $currency_code = sanitizeInput($column[18]); } $payment_terms = sanitizeInput($config_default_net_terms); if (isset($column[19])) { $payment_terms = intval($column[19]); } $tax_id_number = ''; if (isset($column[20])) { $tax_id_number = sanitizeInput($column[20]); } $abbreviation = ''; if (isset($column[21])) { $abbreviation = sanitizeInput($column[21]); } // Check if duplicate was detected if ($duplicate_detect == 0) { //Add // Create client mysqli_query($mysqli, "INSERT INTO clients SET client_name = '$name', client_type = '$industry', client_website = '$website', client_referral = '$referral', client_rate = $hourly_rate, client_currency_code = '$currency_code', client_net_terms = $payment_terms, client_tax_id_number = '$tax_id_number', client_abbreviation = '$abbreviation'"); $client_id = mysqli_insert_id($mysqli); if (!file_exists("../uploads/clients/$client_id")) { mkdir("../uploads/clients/$client_id"); file_put_contents("../uploads/clients/$client_id/index.php", ""); } // Create Referral if it doesn't exist $sql = mysqli_query($mysqli, "SELECT category_name FROM categories WHERE category_type = 'Referral' AND category_archived_at IS NULL AND category_name = '$referral'"); if(mysqli_num_rows($sql) == 0) { mysqli_query($mysqli, "INSERT INTO categories SET category_name = '$referral', category_type = 'Referral'"); // Logging logAction("Category", "Create", "$session_name created new refferal category $referral"); } // Create Location mysqli_query($mysqli, "INSERT INTO locations SET location_name = '$location_name', location_address = '$address', location_city = '$city', location_state = '$state', location_zip = '$zip', location_phone = '$location_phone', location_country = '$country', location_primary = 1, location_client_id = $client_id"); // Create Contact mysqli_query($mysqli, "INSERT INTO contacts SET contact_name = '$contact_name', contact_title = '$title', contact_phone = '$contact_phone', contact_extension = '$contact_extension', contact_mobile = '$contact_mobile', contact_email = '$contact_email', contact_primary = 1, contact_important = 1, contact_client_id = $client_id"); $row_count = $row_count + 1; } else { $duplicate_count = $duplicate_count + 1; } } fclose($file); logAction("Client", "Import", "$session_name imported $row_count client(s) via CSV file, $duplicate_count duplicate(s) found"); flash_alert("$row_count Client(s) added, $duplicate_count duplicate(s) found"); redirect(); } //Check for any errors, if there are notify user and redirect if ($error) { redirect(); } } if (isset($_GET['download_clients_csv_template'])) { $delimiter = ","; $enclosure = '"'; $escape = '\\'; // backsla $filename = "Clients-Template.csv"; //create a file pointer $f = fopen('php://memory', 'w'); //set column headers $fields = array('Client Name', 'Industry', 'Referral', 'Website', 'Primary Location Name', 'Location Phone', 'Location Address', 'City', 'State', 'Postal Code', 'Country', 'Primary Contact Name', 'Title', 'Contact Phone', 'Extension', 'Contact Mobile', 'Contact Email', 'Hourly Rate', 'Currency', 'Payment Terms', 'Tax ID', 'Abbreviation'); fputcsv($f, $fields, $delimiter, $enclosure, $escape); //move back to beginning of file fseek($f, 0); //set headers to download file rather than displayed header('Content-Type: text/csv'); header('Content-Disposition: attachment; filename="' . $filename . '";'); //output all remaining data on a file pointer fpassthru($f); exit; } if (isset($_POST['bulk_add_client_ticket'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_support', 2); $assigned_to = intval($_POST['bulk_assigned_to']); if ($assigned_to == 0) { $ticket_status = 1; } else { $ticket_status = 2; } $subject = sanitizeInput($_POST['bulk_subject']); $priority = sanitizeInput($_POST['bulk_priority']); $category_id = intval($_POST['bulk_category']); $details = mysqli_real_escape_string($mysqli, $_POST['bulk_details']); $project_id = intval($_POST['bulk_project']); $use_primary_contact = intval($_POST['use_primary_contact']); $ticket_template_id = intval($_POST['bulk_ticket_template_id']); $billable = intval($_POST['bulk_billable'] ?? 0); // Check to see if adding a ticket by template if($ticket_template_id) { $sql = mysqli_query($mysqli, "SELECT * FROM ticket_templates WHERE ticket_template_id = $ticket_template_id"); $row = mysqli_fetch_array($sql); // Override Template Subject if(empty($subject)) { $subject = sanitizeInput($row['ticket_template_subject']); } $details = mysqli_escape_string($mysqli, $row['ticket_template_details']); // Get Associated Tasks from the ticket template $sql_task_templates = mysqli_query($mysqli, "SELECT * FROM task_templates WHERE task_template_ticket_template_id = $ticket_template_id"); } // Create ticket for each selected asset if (isset($_POST['client_ids'])) { // Get a Asset Count $client_count = count($_POST['client_ids']); foreach ($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli, "SELECT * FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); // Atomically increment and get the new ticket number mysqli_query($mysqli, " UPDATE settings SET config_ticket_next_number = LAST_INSERT_ID(config_ticket_next_number), config_ticket_next_number = config_ticket_next_number + 1 WHERE company_id = 1 "); $ticket_number = mysqli_insert_id($mysqli); // Sanitize Config Vars from get_settings.php and Session Vars from check_login.php $config_ticket_prefix = sanitizeInput($config_ticket_prefix); $config_ticket_from_name = sanitizeInput($config_ticket_from_name); $config_ticket_from_email = sanitizeInput($config_ticket_from_email); $config_base_url = sanitizeInput($config_base_url); //Generate a unique URL key for clients to access $url_key = randomString(156); mysqli_query($mysqli, "INSERT INTO tickets SET ticket_prefix = '$config_ticket_prefix', ticket_number = $ticket_number, ticket_category = $category_id, ticket_subject = '$subject', ticket_details = '$details', ticket_priority = '$priority', ticket_billable = $billable, ticket_status = $ticket_status, ticket_created_by = $session_user_id, ticket_assigned_to = $assigned_to, ticket_url_key = '$url_key', ticket_client_id = $client_id, ticket_project_id = $project_id"); $ticket_id = mysqli_insert_id($mysqli); // Add Tasks if (!empty($_POST['tasks'])) { foreach ($_POST['tasks'] as $task) { $task_name = sanitizeInput($task); // Check that task_name is not-empty (For some reason the !empty on the array doesnt work here like in watchers) if (!empty($task_name)) { mysqli_query($mysqli,"INSERT INTO tasks SET task_name = '$task_name', task_ticket_id = $ticket_id"); } } } // Add Tasks from Template if Template was selected if($ticket_template_id) { if (mysqli_num_rows($sql_task_templates) > 0) { while ($row = mysqli_fetch_array($sql_task_templates)) { $task_order = intval($row['task_template_order']); $task_name = sanitizeInput($row['task_template_name']); mysqli_query($mysqli,"INSERT INTO tasks SET task_name = '$task_name', task_order = $task_order, task_ticket_id = $ticket_id"); } } } // Custom action/notif handler customAction('ticket_create', $ticket_id); } logAction("Ticket", "Bulk Create", "$session_name created $client_count tickets for $client_name"); flash_alert("$client_count tickets created for selected clients"); } redirect(); } if (isset($_POST['bulk_edit_client_industry'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); $industry = sanitizeInput($_POST['bulk_industry']); if (isset($_POST['client_ids'])) { $count = count($_POST['client_ids']); foreach($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); mysqli_query($mysqli,"UPDATE clients SET client_type = '$industry' WHERE client_id = $client_id"); logAction("Client", "Edit", "$session_name set Industry to $industry for $client_name", $client_id); } logAction("Client", "Bulk Edit", "$session_name set the department $industry for $count client(s)", $client_id); flash_alert("Set the Industry to $industry for $count clients"); } redirect(); } if (isset($_POST['bulk_edit_client_referral'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); $referral = sanitizeInput($_POST['bulk_referral']); if (isset($_POST['client_ids'])) { $count = count($_POST['client_ids']); foreach($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); mysqli_query($mysqli,"UPDATE clients SET client_referral = '$referral' WHERE client_id = $client_id"); logAction("Client", "Edit", "$session_name set Referral to $referral for $client_name", $client_id); } logAction("Client", "Bulk Edit", "$session_name set the referral $referral for $count client(s)", $client_id); flash_alert("Set the Referral to $referral for $count clients"); } redirect(); } if (isset($_POST['bulk_edit_client_hourly_rate'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); $rate = floatval($_POST['bulk_rate']); if (isset($_POST['client_ids'])) { $count = count($_POST['client_ids']); foreach($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); mysqli_query($mysqli,"UPDATE clients SET client_rate = '$rate' WHERE client_id = $client_id"); logAction("Client", "Edit", "$session_name set Hourly Rate to" . numfmt_format_currency($currency_format, $rate, $session_company_currency) . "for $client_name", $client_id); } logAction("Client", "Bulk Edit", "$session_name set the hourly rate" . numfmt_format_currency($currency_format, $rate, $session_company_currency) . "for $count client(s)", $client_id); flash_alert("Set the Hourly Rate to " . numfmt_format_currency($currency_format, $rate, $session_company_currency) . " for $count client(s)"); } redirect(); } if (isset($_POST['bulk_assign_client_tags'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); if (isset($_POST['client_ids'])) { $count = count($_POST['client_ids']); foreach($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); if ($_POST['bulk_remove_tags']) { mysqli_query($mysqli, "DELETE FROM client_tags WHERE client_id = $client_id"); } if (isset($_POST['bulk_tags'])) { foreach($_POST['bulk_tags'] as $tag) { $tag = intval($tag); $sql = mysqli_query($mysqli,"SELECT * FROM client_tags WHERE client_id = $client_id AND tag_id = $tag"); if (mysqli_num_rows($sql) == 0) { mysqli_query($mysqli, "INSERT INTO client_tags SET client_id = $client_id, tag_id = $tag"); } } } logAction("Client", "Edit", "$session_name added tags to $client_name", $client_id, $client_id); } logAction("Client", "Bulk Edit", "$session_name added tags for $count clients", $client_id); flash_alert("Assigned tags for $count clients"); } redirect(); } if (isset($_POST['bulk_send_client_email']) && isset($_POST['client_ids'])) { $client_ids = array_map('intval', $_POST['client_ids']); $count = count($client_ids); // Email metadata $mail_from = sanitizeInput($_POST['mail_from']); $mail_from_name = sanitizeInput($_POST['mail_from_name']); $subject = sanitizeInput($_POST['subject']); $body = mysqli_real_escape_string($mysqli, $_POST['body']); $queued_at = sanitizeInput($_POST['queued_at']); // Build contact type filters $filters = []; if (!empty($_POST['primary_contacts'])) { $filters[] = "contact_primary = 1"; } if (!empty($_POST['important_contacts'])) { $filters[] = "contact_important = 1"; } if (!empty($_POST['billing_contacts'])) { $filters[] = "contact_billing = 1"; } if (!empty($_POST['technical_contacts'])) { $filters[] = "contact_technical = 1"; } $contact_filter_query = ''; if (!empty($filters)) { $contact_filter_query = ' AND (' . implode(' OR ', $filters) . ')'; } // Prepare client ID list for SQL $client_ids_str = implode(',', $client_ids); // SQL to fetch matching contacts $sql = "SELECT * FROM contacts WHERE contact_client_id IN ($client_ids_str) $contact_filter_query"; $result = mysqli_query($mysqli, $sql); $data = []; $unique_contacts = []; while ($row = mysqli_fetch_array($result)) { $contact_email = sanitizeInput($row['contact_email']); // Skip if email is missing or invalid if (empty($contact_email) || !filter_var($contact_email, FILTER_VALIDATE_EMAIL)) { continue; } // Skip duplicates (same email) if (isset($unique_contacts[$contact_email])) { continue; } $unique_contacts[$contact_email] = true; $contact_name = sanitizeInput($row['contact_name']); $data[] = [ 'from' => $mail_from, 'from_name' => $mail_from_name, 'recipient' => $contact_email, 'recipient_name' => $contact_name, 'subject' => $subject, 'body' => $body, 'queued_at' => $queued_at ]; } if (!empty($data)) { addToMailQueue($data); logAction("Bulk Mail", "Send", "$session_name sent " . count($data) . " messages via bulk mail"); flash_alert("" . count($data) . " messages queued"); } else { flash_alert("No valid contacts found to queue emails.", 'error'); } redirect(); } if (isset($_POST['bulk_archive_clients'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); if (isset($_POST['client_ids'])) { $count = 0; foreach ($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); mysqli_query($mysqli,"UPDATE clients SET client_archived_at = NOW() WHERE client_id = $client_id"); logAction("Client", "Archive", "$session_name archived $client_name", $client_id); $count++; } logAction("Client", "Bulk Archive", "$session_name archived $count clients", $client_id); flash_alert("Archived $count client(s)", 'error'); } redirect(); } if (isset($_POST['bulk_unarchive_clients'])) { validateCSRFToken($_POST['csrf_token']); enforceUserPermission('module_client', 2); if (isset($_POST['client_ids'])) { $count = count($_POST['client_ids']); foreach ($_POST['client_ids'] as $client_id) { $client_id = intval($client_id); $sql = mysqli_query($mysqli,"SELECT client_name FROM clients WHERE client_id = $client_id"); $row = mysqli_fetch_array($sql); $client_name = sanitizeInput($row['client_name']); mysqli_query($mysqli,"UPDATE clients SET client_archived_at = NULL WHERE client_id = $client_id"); logAction("client", "Restore", "$session_name restored $client_name", $client_id); } logAction("Client", "Bulk Restore", "$session_name restored $count client(s)", $client_id); flash_alert("You restored $count client(s)"); } redirect(); } if (isset($_POST["export_client_pdf"])) { // Enforce permissions enforceUserPermission("module_client", 3); enforceUserPermission("module_support", 1); enforceUserPermission("module_sales", 1); enforceUserPermission("module_financial", 1); $sql = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1"); $row = mysqli_fetch_array($sql); $company_name = nullable_htmlentities($row['company_name']); $company_phone_country_code = nullable_htmlentities($row['company_phone_country_code']); $company_phone = nullable_htmlentities(formatPhoneNumber($row['company_phone'], $company_phone_country_code)); $company_email = nullable_htmlentities($row['company_email']); $company_website = nullable_htmlentities($row['company_website']); $company_logo = nullable_htmlentities($row['company_logo']); $client_id = intval($_POST["client_id"]); $export_contacts = intval($_POST["export_contacts"]); $export_locations = intval($_POST["export_locations"]); $export_assets = intval($_POST["export_assets"]); $export_software = intval($_POST["export_software"]); $export_credentials = 0; if (lookupUserPermission("module_credential") >= 1) { $export_credentials = intval($_POST["export_credentials"] ?? 0); } $export_networks = intval($_POST["export_networks"]); $export_certificates = intval($_POST["export_certificates"]); $export_domains = intval($_POST["export_domains"]); $export_tickets = intval($_POST["export_tickets"]); $export_recurring_tickets = intval($_POST["export_recurring_tickets"]); $export_vendors = intval($_POST["export_vendors"]); $export_invoices = intval($_POST["export_invoices"]); $export_recurring_invoices = intval($_POST["export_recurring_invoices"]); $export_quotes = intval($_POST["export_quotes"]); $export_payments = intval($_POST["export_payments"]); $export_trips = intval($_POST["export_trips"]); $export_logs = intval($_POST["export_logs"]); logAction("Client", "Export", "$session_name exported client data to a PDF file", $client_id, $client_id); // Get client record (joining primary contact and primary location) $sql = mysqli_query($mysqli, "SELECT * FROM clients LEFT JOIN contacts ON clients.client_id = contacts.contact_client_id AND contact_primary = 1 LEFT JOIN locations ON clients.client_id = locations.location_client_id AND location_primary = 1 WHERE client_id = $client_id "); $row = mysqli_fetch_array($sql); // Immediately sanitize retrieved values $client_name = nullable_htmlentities($row["client_name"]); $location_address = nullable_htmlentities($row["location_address"]); $location_city = nullable_htmlentities($row["location_city"]); $location_state = nullable_htmlentities($row["location_state"]); $location_zip = nullable_htmlentities($row["location_zip"]); $contact_name = nullable_htmlentities($row["contact_name"]); $contact_phone_country_code = nullable_htmlentities($row["contact_phone_country_code"]); $contact_phone = nullable_htmlentities(formatPhoneNumber($row["contact_phone"], $contact_phone_country_code)); $contact_extension = nullable_htmlentities($row["contact_extension"]); $contact_mobile_country_code = nullable_htmlentities($row["contact_mobile_country_code"]); $contact_mobile = nullable_htmlentities(formatPhoneNumber($row["contact_mobile"], $contact_mobile_country_code)); $contact_email = nullable_htmlentities($row["contact_email"]); $client_website = nullable_htmlentities($row["client_website"]); // Other queries remain unchanged $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id AND contact_archived_at IS NULL ORDER BY contact_name ASC"); $sql_locations = mysqli_query($mysqli, "SELECT * FROM locations WHERE location_client_id = $client_id AND location_archived_at IS NULL ORDER BY location_name ASC"); $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_client_id = $client_id AND vendor_archived_at IS NULL ORDER BY vendor_name ASC"); $sql_credentials = mysqli_query($mysqli, "SELECT * FROM credentials WHERE credential_client_id = $client_id ORDER BY credential_name ASC"); $sql_assets = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN contacts ON asset_contact_id = contact_id LEFT JOIN locations ON asset_location_id = location_id LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND asset_archived_at IS NULL ORDER BY asset_type ASC" ); $sql_asset_workstations = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN contacts ON asset_contact_id = contact_id LEFT JOIN locations ON asset_location_id = location_id LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND (asset_type = 'desktop' OR asset_type = 'laptop') AND asset_archived_at IS NULL ORDER BY asset_name ASC" ); $sql_asset_servers = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN locations ON asset_location_id = location_id LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND asset_type = 'server' AND asset_archived_at IS NULL ORDER BY asset_name ASC" ); $sql_asset_vms = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND asset_type = 'virtual machine' AND asset_archived_at IS NULL ORDER BY asset_name ASC" ); $sql_asset_network = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN locations ON asset_location_id = location_id LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND (asset_type = 'Firewall/Router' OR asset_type = 'Switch' OR asset_type = 'Access Point') AND asset_archived_at IS NULL ORDER BY asset_type ASC" ); $sql_asset_other = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN contacts ON asset_contact_id = contact_id LEFT JOIN locations ON asset_location_id = location_id LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1 WHERE asset_client_id = $client_id AND (asset_type NOT LIKE 'laptop' AND asset_type NOT LIKE 'desktop' AND asset_type NOT LIKE 'server' AND asset_type NOT LIKE 'virtual machine' AND asset_type NOT LIKE 'firewall/router' AND asset_type NOT LIKE 'switch' AND asset_type NOT LIKE 'access point') AND asset_archived_at IS NULL ORDER BY asset_type ASC" ); $sql_networks = mysqli_query($mysqli, "SELECT * FROM networks WHERE network_client_id = $client_id AND network_archived_at IS NULL ORDER BY network_name ASC"); $sql_domains = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id = $client_id AND domain_archived_at IS NULL ORDER BY domain_name ASC"); $sql_certficates = mysqli_query($mysqli, "SELECT * FROM certificates WHERE certificate_client_id = $client_id AND certificate_archived_at IS NULL ORDER BY certificate_name ASC"); $sql_software = mysqli_query($mysqli, "SELECT * FROM software WHERE software_client_id = $client_id AND software_archived_at IS NULL ORDER BY software_name ASC"); $sql_user_licenses = mysqli_query($mysqli, " SELECT contact_name, software_name FROM software_contacts JOIN contacts ON software_contacts.contact_id = contacts.contact_id JOIN software ON software_contacts.software_id = software.software_id WHERE software_archived_at IS NULL AND contact_archived_at IS NULL AND software_client_id = $client_id AND contact_client_id = $client_id ORDER BY contact_name, software_name;" ); $sql_asset_licenses = mysqli_query($mysqli, " SELECT asset_name, software_name FROM software_assets JOIN assets ON software_assets.asset_id = assets.asset_id JOIN software ON software_assets.software_id = software.software_id WHERE software_archived_at IS NULL AND asset_archived_at IS NULL AND software_client_id = $client_id AND asset_client_id = $client_id ORDER BY asset_name, software_name;" ); require_once("../plugins/TCPDF/tcpdf.php"); $pdf = new TCPDF(PDF_PAGE_ORIENTATION, PDF_UNIT, PDF_PAGE_FORMAT, true, "UTF-8", false); $pdf->SetCreator(PDF_CREATOR); $pdf->SetAuthor($session_company_name); $pdf->SetTitle("$client_name - IT Documentation"); // TODO: Add page numbers to footer, but can't work out how to do it without the ugly line // $pdf->SetFooterMargin(PDF_MARGIN_FOOTER); // $pdf->setFooterData(); // Enable auto page breaks with a margin from the bottom $pdf->SetAutoPageBreak(true, 15); // ----- Start Main Content ----- $pdf->AddPage(); $pdf->SetFont("freeserif", "", 10); // Build the HTML content with enhanced styling and semantic markup $html = " "; // Cover page section (for main content, not the TOC) $html .= '
'; if (!empty($company_logo)) { //$pdf->Image('../uploads/settings/' . $company_logo, '', '', 35, 35, '', '', 'L', false, 300, '', false, false, 1, false, false, false); $html .= '
'; } $html .= "

IT Documentation

$client_name

"; $html .= "

Prepared by $session_name on " . date("F j, Y") . "

"; $html .= "

$session_company_name

$company_phone
$company_email
"; if (!$config_whitelabel_enabled) { $html .= '
Powered by ITFlow
'; } $html .= '
'; // Client header information (non-table) $html .= "

$client_name

Address: $location_address

City State Zip: $location_city $location_state $location_zip

Phone: $contact_phone

Website: $client_website

Contact: $contact_name

Email: $contact_email

"; // Add bookmarks and TOC entries for each major section: // Contacts Section if (mysqli_num_rows($sql_contacts) > 0 && $export_contacts == 1) { $pdf->Bookmark("Contacts", 0, 0, "", "B", array(0,0,0)); $html .= "

Contacts

"; while ($row = mysqli_fetch_array($sql_contacts)) { $contact_name = nullable_htmlentities(getFallBack($row["contact_name"])); $contact_title = nullable_htmlentities(getFallBack($row["contact_title"])); $contact_department = nullable_htmlentities($row["contact_department"]); $contact_email = nullable_htmlentities($row["contact_email"]); $contact_phone_country_code = nullable_htmlentities($row["contact_phone_country_code"]); $contact_phone = nullable_htmlentities(formatPhoneNumber($row["contact_phone"], $contact_phone_country_code)); $contact_extension = nullable_htmlentities($row["contact_extension"]); if (!empty($contact_extension)) { $contact_extension = "x$contact_extension"; } $contact_mobile_country_code = nullable_htmlentities($row["contact_mobile_country_code"]); $contact_mobile = nullable_htmlentities(formatPhoneNumber($row["contact_mobile"], $contact_mobile_country_code)); $html .= " "; } $html .= "
Name Title Department Email Phone Mobile
$contact_name $contact_title $contact_department $contact_email $contact_phone $contact_extension $contact_mobile
"; } // Locations Section if (mysqli_num_rows($sql_locations) > 0 && $export_locations == 1) { $pdf->Bookmark("Locations", 0, 0, "", "B", array(0,0,0)); $html .= "

Locations

"; while ($row = mysqli_fetch_array($sql_locations)) { $location_name = nullable_htmlentities($row["location_name"]); $location_address = nullable_htmlentities($row["location_address"]); $location_city = nullable_htmlentities($row["location_city"]); $location_state = nullable_htmlentities($row["location_state"]); $location_zip = nullable_htmlentities($row["location_zip"]); $location_phone_country_code = nullable_htmlentities($row["location_phone_country_code"]); $location_phone = nullable_htmlentities(formatPhoneNumber($row["location_phone"], $location_phone_country_code)); $html .= " "; } $html .= "
Name Address Phone
$location_name $location_address $location_city $location_state $location_zip $location_phone
"; } // Vendors Section if (mysqli_num_rows($sql_vendors) > 0 && $export_vendors == 1) { $pdf->Bookmark("Vendors", 0, 0, "", "B", array(0,0,0)); $html .= "

Vendors

"; while ($row = mysqli_fetch_array($sql_vendors)) { $vendor_name = nullable_htmlentities($row["vendor_name"]); $vendor_description = nullable_htmlentities($row["vendor_description"]); $vendor_account_number = nullable_htmlentities($row["vendor_account_number"]); $vendor_phone_country_code = nullable_htmlentities($row["vendor_phone_country_code"]); $vendor_phone = nullable_htmlentities(formatPhoneNumber($row["vendor_phone"], $vendor_phone_country_code)); $vendor_website = nullable_htmlentities($row["vendor_website"]); $html .= " "; } $html .= "
Name Description Phone Website Account Number
$vendor_name $vendor_description $vendor_phone $vendor_website $vendor_account_number
"; } // Credentials Section if (mysqli_num_rows($sql_credentials) > 0 && $export_credentials == 1) { $pdf->Bookmark("Credentials", 0, 0, "", "B", array(0,0,0)); $html .= "

Credentials

"; while ($row = mysqli_fetch_array($sql_credentials)) { $credential_name = nullable_htmlentities($row["credential_name"]); $credential_description = getFallback(nullable_htmlentities($row["credential_description"])); $credential_username = nullable_htmlentities(decryptCredentialEntry($row["credential_username"])); $credential_password = nullable_htmlentities(decryptCredentialEntry($row["credential_password"])); $credential_totp_secret = getFallback(nullable_htmlentities($row['credential_otp_secret'])); $credential_uri = getFallback(nullable_htmlentities($row["credential_uri"])); $html .= " "; } $html .= "
Name Description Username Password TOTP URI
$credential_name $credential_description $credential_username $credential_password $credential_totp_secret $credential_uri
"; } // Assets Section Header if (mysqli_num_rows($sql_assets) > 0 && $export_assets == 1) { $pdf->Bookmark("Assets", 0, 0, "", "B", array(0,0,0)); $html .= "

Assets

"; } // Workstations if (mysqli_num_rows($sql_asset_workstations) > 0 && $export_assets == 1) { $pdf->Bookmark("Workstations", 1, 0, "", "", array(0,0,0)); $html .= "

Workstations

"; while ($row = mysqli_fetch_array($sql_asset_workstations)) { $asset_name = nullable_htmlentities($row["asset_name"]); $asset_type = nullable_htmlentities($row["asset_type"]); $asset_make = nullable_htmlentities($row["asset_make"]); $asset_model = nullable_htmlentities($row["asset_model"]); $asset_serial = nullable_htmlentities($row["asset_serial"]); $asset_os = nullable_htmlentities($row["asset_os"]); $asset_purchase_date = nullable_htmlentities($row["asset_purchase_date"]); $asset_warranty_expire = nullable_htmlentities($row["asset_warranty_expire"]); $asset_install_date = nullable_htmlentities($row["asset_install_date"]); $contact_name = nullable_htmlentities($row["contact_name"]); $location_name = nullable_htmlentities($row["location_name"]); $html .= " "; } $html .= "
Name Type Model Serial OS Purchase Date Warranty Expire Install Date Assigned To Location
$asset_name $asset_type $asset_make $asset_model $asset_serial $asset_os $asset_purchase_date $asset_warranty_expire $asset_install_date $contact_name $location_name
"; } // Servers if (mysqli_num_rows($sql_asset_servers) > 0 && $export_assets == 1) { $pdf->Bookmark("Servers", 1, 0, "", "", array(0,0,0)); $html .= "

Servers

"; while ($row = mysqli_fetch_array($sql_asset_servers)) { $asset_name = nullable_htmlentities($row["asset_name"]); $asset_make = nullable_htmlentities($row["asset_make"]); $asset_model = nullable_htmlentities($row["asset_model"]); $asset_serial = nullable_htmlentities($row["asset_serial"]); $asset_os = nullable_htmlentities($row["asset_os"]); $asset_ip = nullable_htmlentities($row["interface_ip"]); $asset_purchase_date = nullable_htmlentities($row["asset_purchase_date"]); $asset_warranty_expire = nullable_htmlentities($row["asset_warranty_expire"]); $asset_install_date = nullable_htmlentities($row["asset_install_date"]); $location_name = nullable_htmlentities($row["location_name"]); $html .= " "; } $html .= "
Name Model Serial OS IP Purchase Date Warranty Expire Install Date Location
$asset_name $asset_make $asset_model $asset_serial $asset_os $asset_ip $asset_purchase_date $asset_warranty_expire $asset_install_date $location_name
"; } // Virtual Machines if (mysqli_num_rows($sql_asset_vms) > 0 && $export_assets == 1) { $pdf->Bookmark("Virtual Machines", 1, 0, "", "", array(0,0,0)); $html .= "

Virtual Machines

"; while ($row = mysqli_fetch_array($sql_asset_vms)) { $asset_name = nullable_htmlentities($row["asset_name"]); $asset_os = nullable_htmlentities($row["asset_os"]); $asset_ip = nullable_htmlentities($row["interface_ip"]); $asset_install_date = nullable_htmlentities($row["asset_install_date"]); $html .= " "; } $html .= "
Name OS IP Install Date
$asset_name $asset_os $asset_ip $asset_install_date
"; } // Network Devices if (mysqli_num_rows($sql_asset_network) > 0 && $export_assets == 1) { $pdf->Bookmark("Network Devices", 1, 0, "", "", array(0,0,0)); $html .= "

Network Devices

"; while ($row = mysqli_fetch_array($sql_asset_network)) { $asset_name = nullable_htmlentities($row["asset_name"]); $asset_type = nullable_htmlentities($row["asset_type"]); $asset_make = nullable_htmlentities($row["asset_make"]); $asset_model = nullable_htmlentities($row["asset_model"]); $asset_serial = nullable_htmlentities($row["asset_serial"]); $asset_ip = nullable_htmlentities($row["interface_ip"]); $asset_purchase_date = nullable_htmlentities($row["asset_purchase_date"]); $asset_warranty_expire = nullable_htmlentities($row["asset_warranty_expire"]); $asset_install_date = nullable_htmlentities($row["asset_install_date"]); $location_name = nullable_htmlentities($row["location_name"]); $html .= " "; } $html .= "
Name Type Model Serial IP Purchase Date Warranty Expire Install Date Location
$asset_name $asset_type $asset_make $asset_model $asset_serial $asset_ip $asset_purchase_date $asset_warranty_expire $asset_install_date $location_name
"; } // Other Devices if (mysqli_num_rows($sql_asset_other) > 0 && $export_assets == 1) { $pdf->Bookmark("Other Devices", 1, 0, "", "", array(0,0,0)); $html .= "

Other Devices

"; while ($row = mysqli_fetch_array($sql_asset_other)) { $asset_name = nullable_htmlentities($row["asset_name"]); $asset_type = nullable_htmlentities($row["asset_type"]); $asset_make = nullable_htmlentities($row["asset_make"]); $asset_model = nullable_htmlentities($row["asset_model"]); $asset_serial = nullable_htmlentities($row["asset_serial"]); $asset_ip = nullable_htmlentities($row["interface_ip"]); $asset_purchase_date = nullable_htmlentities($row["asset_purchase_date"]); $asset_warranty_expire = nullable_htmlentities($row["asset_warranty_expire"]); $asset_install_date = nullable_htmlentities($row["asset_install_date"]); $location_name = nullable_htmlentities($row["location_name"]); $html .= " "; } $html .= "
Name Type Model Serial IP Purchase Date Warranty Expire Install Date Location
$asset_name $asset_type $asset_make $asset_model $asset_serial $asset_ip $asset_purchase_date $asset_warranty_expire $asset_install_date $location_name
"; } // Software Section if (mysqli_num_rows($sql_software) > 0 && $export_software == 1) { $pdf->Bookmark("Software", 0, 0, "", "B", array(0,0,0)); $html .= "

Software

"; while ($row = mysqli_fetch_array($sql_software)) { $software_name = nullable_htmlentities($row["software_name"]); $software_type = nullable_htmlentities($row["software_type"]); $software_license_type = nullable_htmlentities($row["software_license_type"]); $software_key = nullable_htmlentities($row["software_key"]); $software_purchase = nullable_htmlentities($row['software_purchase']); $software_expire = nullable_htmlentities($row['software_expire']); $software_notes = nullable_htmlentities($row["software_notes"]); $html .= " "; } $html .= "
Name Type License License Key Purchase Date Expiration Date Notes
$software_name $software_type $software_license_type $software_key $software_purchase $software_expire $software_notes
"; } // User Assigned Software Licenses if (mysqli_num_rows($sql_user_licenses) > 0 && $export_software == 1) { $pdf->Bookmark("User Assigned Licenses", 0, 0, "", "B", array(0,0,0)); $html .= "

User Assigned Licenses

"; while ($row = mysqli_fetch_array($sql_user_licenses)) { $contact_name = nullable_htmlentities($row["contact_name"]); $software_name = nullable_htmlentities($row["software_name"]); $html .= " "; } $html .= "
User Software
$contact_name $software_name
"; } // Asset Assigned Software Licenses if (mysqli_num_rows($sql_asset_licenses) > 0 && $export_software == 1) { $pdf->Bookmark("Asset Assigned Licenses", 0, 0, "", "B", array(0,0,0)); $html .= "

Asset Assigned Licenses

"; while ($row = mysqli_fetch_array($sql_asset_licenses)) { $asset_name = nullable_htmlentities($row["asset_name"]); $software_name = nullable_htmlentities($row["software_name"]); $html .= " "; } $html .= "
Asset Software
$asset_name $software_name
"; } // Networks Section if (mysqli_num_rows($sql_networks) > 0 && $export_networks == 1) { $pdf->Bookmark("Networks", 0, 0, "", "B", array(0,0,0)); $html .= "

Networks

"; while ($row = mysqli_fetch_array($sql_networks)) { $network_name = nullable_htmlentities($row["network_name"]); $network_vlan = nullable_htmlentities($row["network_vlan"]); $network = nullable_htmlentities($row["network"]); $network_gateway = nullable_htmlentities($row["network_gateway"]); $network_dhcp_range = nullable_htmlentities($row["network_dhcp_range"]); $html .= " "; } $html .= "
Name vLAN Network Subnet Gateway DHCP Range
$network_name $network_vlan $network $network_gateway $network_dhcp_range
"; } // Domains Section if (mysqli_num_rows($sql_domains) > 0 && $export_domains == 1) { $pdf->Bookmark("Domains", 0, 0, "", "B", array(0,0,0)); $html .= "

Domains

"; while ($row = mysqli_fetch_array($sql_domains)) { $domain_name = nullable_htmlentities($row["domain_name"]); $domain_expire = nullable_htmlentities($row["domain_expire"]); $html .= " "; } $html .= "
Domain Name Expiration Date
$domain_name $domain_expire
"; } // Certificates Section if (mysqli_num_rows($sql_certficates) > 0 && $export_certificates == 1) { $pdf->Bookmark("Certificates", 0, 0, "", "B", array(0,0,0)); $html .= "

Certificates

"; while ($row = mysqli_fetch_array($sql_certficates)) { $certificate_name = nullable_htmlentities($row["certificate_name"]); $certificate_domain = nullable_htmlentities($row["certificate_domain"]); $certificate_issued_by = nullable_htmlentities($row["certificate_issued_by"]); $certificate_expire = nullable_htmlentities($row["certificate_expire"]); $html .= " "; } $html .= "
Certificate Name Domain Name Issuer Expiration Date
$certificate_name $certificate_domain $certificate_issued_by $certificate_expire
"; } // Write the HTML content to the PDF document $pdf->writeHTML($html, true, false, true, false, ""); // Output the PDF document for download $pdf->Output(strtoAZaz09($client_name) . "-IT_Documentation-" . date("Y-m-d") . ".pdf", "D"); exit; }