$name created"); redirect(); } if (isset($_POST['edit_ticket_status'])) { $ticket_status_id = intval($_POST['ticket_status_id']); $name = sanitizeInput($_POST['name']); $color = sanitizeInput($_POST['color']); $order = intval($_POST['order']); $status = intval($_POST['status']); mysqli_query($mysqli, "UPDATE ticket_statuses SET ticket_status_name = '$name', ticket_status_color = '$color', ticket_status_order = $order, ticket_status_active = $status WHERE ticket_status_id = $ticket_status_id"); logAction("Ticket Status", "Edit", "$session_name edited custom ticket status $name", 0, $ticket_status_id); flash_alert("Custom Ticket Status $name edited"); redirect(); } if (isset($_GET['delete_ticket_status'])) { validateCSRFToken($_GET['csrf_token']); $ticket_status_id = intval($_GET['delete_ticket_status']); if ($ticket_status_id <= 5) { exit("Can't delete built-in statuses"); } $ticlet_status_name = sanitizeInput(getFieldById('ticket_statuses', $ticket_status_id, 'ticket_status_name')); mysqli_query($mysqli, "DELETE FROM ticket_statuses WHERE ticket_status_id = $ticket_status_id"); logAction("Ticket Status", "Delete", "$session_name deleted custom ticket status $ticket_status_name"); flash_alert("Custom Ticket Status $ticket_status_name Deleted", 'error'); redirect(); }