rebuild for osticket on app service

Author: Dan Patrick

account.php

@@ -0,0 +1,124 @@
+<?php
+/*********************************************************************
+    profile.php
+
+    Manage client profile. This will allow a logged-in user to manage
+    his/her own public (non-internal) information
+
+    Peter Rotich <[email protected]>
+    Jared Hancock <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+    $Id: $
+**********************************************************************/
+require 'client.inc.php';
+
+$inc = 'register.inc.php';
+
+$errors = array();
+
+if (!$cfg || !$cfg->isClientRegistrationEnabled()) {
+    Http::redirect('index.php');
+}
+
+elseif ($thisclient) {
+    // Guest registering for an account
+    if ($thisclient->isGuest()) {
+        foreach ($thisclient->getForms() as $f) {
+            if ($f->get('object_type') == 'U') {
+                $user_form = $f;
+                $user_form->getField('email')->configure('disabled', true);
+            }
+        }    
+    }
+    // Existing client (with an account) updating profile
+    else {
+        $user = User::lookup($thisclient->getId());
+        $content = Page::lookupByType('registration-thanks');
+        $inc = isset($_GET['confirmed'])
+            ? 'register.confirmed.inc.php' : 'profile.inc.php';
+    }
+}
+
+if ($user && $_POST) {
+    if ($acct = $thisclient->getAccount()) {
+       $acct->update($_POST, $errors);
+    }
+    if (!$errors && $user->updateInfo($_POST, $errors))
+        Http::redirect('tickets.php');
+}
+
+elseif ($_POST) {
+    $user_form = UserForm::getUserForm()->getForm($_POST);
+    if ($thisclient) {
+        $user_form->getField('email')->configure('disabled', true);
+        $user_form->getField('email')->value = $thisclient->getEmail();
+    }
+
+    if (!$user_form->isValid(function($f) { return !$f->isVisibleToUsers(); }))
+        $errors['err'] = __('Incomplete client information');
+    elseif (!$_POST['backend'] && !$_POST['passwd1'])
+        $errors['passwd1'] = __('New password is required');
+    elseif (!$_POST['backend'] && $_POST['passwd2'] != $_POST['passwd1'])
+        $errors['passwd1'] = __('Passwords do not match');
+
+    // XXX: The email will always be in use already if a guest is logged in
+    // and is registering for an account. Instead,
+    elseif (($addr = $user_form->getField('email')->getClean())
+            && ClientAccount::lookupByUsername($addr)) {
+        $user_form->getField('email')->addError(
+            sprintf(__('Email already registered. Would you like to %1$s sign in %2$s?'),
+            '<a href="login.php?e='.urlencode($addr).'" style="color:inherit"><strong>',
+            '</strong></a>'));
+        $errors['err'] = __('Unable to register account. See messages below');
+    }
+    // Users created from ClientCreateRequest
+    elseif (isset($_POST['backend']) && !($user = User::fromVars($user_form->getClean())))
+        $errors['err'] = __('Unable to create local account. See messages below');
+    // Registration for existing users
+    elseif (!$user && !$thisclient && !($user = User::fromVars($user_form->getClean())))
+        $errors['err'] = __('Unable to register account. See messages below');
+    // New users and users registering from a ticket access link
+    elseif (!$user && !($user = $thisclient ?: User::fromForm($user_form)))
+        $errors['err'] = __('Unable to register account. See messages below');
+    else {
+        if (!($acct = ClientAccount::createForUser($user)))
+            $errors['err'] = __('Unable to create new account.')
+                .' '.__('Internal error occurred');
+        elseif (!$acct->update($_POST, $errors))
+            $errors['err'] = __('Errors configuring your profile. See messages below');
+    }
+
+    if (!$errors) {
+        switch ($_POST['do']) {
+        case 'create':
+            $content = Page::lookupByType('registration-confirm');
+            $inc = 'register.confirm.inc.php';
+            $acct->sendConfirmEmail();
+            break;
+        case 'import':
+            if ($bk = UserAuthenticationBackend::getBackend($_POST['backend'])) {
+                $cl = new ClientSession(new EndUser($user));
+                if (!$bk->supportsInteractiveAuthentication())
+                    $acct->set('backend', null);
+                $acct->confirm();
+                if ($user = $bk->login($cl, $bk))
+                    Http::redirect('tickets.php');
+            }
+            break;
+        }
+    }
+
+    if ($errors && $user && $user != $thisclient)
+        $user->delete();
+}
+
+include(CLIENTINC_DIR.'header.inc.php');
+include(CLIENTINC_DIR.$inc);
+include(CLIENTINC_DIR.'footer.inc.php');
+

ajax.php

@@ -0,0 +1,51 @@
+<?php
+/*********************************************************************
+    ajax.php
+
+    Ajax utils for client interface.
+
+    Peter Rotich <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+
+function clientLoginPage($msg='Unauthorized') {
+    Http::response(403,'Must login: '.Format::htmlchars($msg));
+    exit;
+}
+
+require('client.inc.php');
+
+if(!defined('INCLUDE_DIR'))	Http::response(500, 'Server configuration error');
+require_once INCLUDE_DIR.'/class.dispatcher.php';
+require_once INCLUDE_DIR.'/class.ajax.php';
+
+$dispatcher = patterns('',
+    url('^/config/', patterns('ajax.config.php:ConfigAjaxAPI',
+        url_get('^client$', 'client')
+    )),
+    url('^/draft/', patterns('ajax.draft.php:DraftAjaxAPI',
+        url_post('^(?P<id>\d+)$', 'updateDraftClient'),
+        url_delete('^(?P<id>\d+)$', 'deleteDraftClient'),
+        url_post('^(?P<id>\d+)/attach$', 'uploadInlineImageClient'),
+        url_post('^(?P<namespace>[\w.]+)/attach$', 'uploadInlineImageEarlyClient'),
+        url_get('^(?P<namespace>[\w.]+)$', 'getDraftClient'),
+        url_post('^(?P<namespace>[\w.]+)$', 'createDraftClient')
+    )),
+    url('^/form/', patterns('ajax.forms.php:DynamicFormsAjaxAPI',
+        url_get('^help-topic/(?P<id>\d+)$', 'getClientFormsForHelpTopic'),
+        url_post('^upload/(\d+)?$', 'upload'),
+        url_post('^upload/(\w+)?$', 'attach')
+    )),
+    url('^/i18n/(?P<lang>[\w_]+)/', patterns('ajax.i18n.php:i18nAjaxAPI',
+        url_get('(?P<tag>\w+)$', 'getLanguageFile')
+    ))
+);
+Signal::send('ajax.client', $dispatcher);
+print $dispatcher->resolve($ost->get_path_info());
+?>

api/.htaccess

@@ -0,0 +1,11 @@
+<IfModule mod_rewrite.c>
+
+RewriteEngine On
+
+RewriteCond %{REQUEST_FILENAME} !-f
+RewriteCond %{REQUEST_FILENAME} !-d
+RewriteCond %{REQUEST_URI} (.*/api)
+
+RewriteRule ^(.*)$ %1/http.php/$1 [L]
+
+</IfModule>

api/api.inc.php

@@ -0,0 +1,27 @@
+<?php
+/*********************************************************************
+    api.inc.php
+
+    File included on every API page...handles common includes.
+
+    Peter Rotich <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+file_exists('../main.inc.php') or die('System Error');
+
+// Disable sessions for the API. API should be considered stateless and
+// shouldn't chew up database records to store sessions
+if (!defined('DISABLE_SESSION'))
+    define('DISABLE_SESSION', true);
+
+require_once('../main.inc.php');
+require_once(INCLUDE_DIR.'class.http.php');
+require_once(INCLUDE_DIR.'class.api.php');
+
+?>

api/cron.php

@@ -0,0 +1,24 @@
+<?php
+/*********************************************************************
+    cron.php
+
+    File to handle LOCAL cron job calls.
+
+    Peter Rotich <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+@chdir(dirname(__FILE__).'/'); //Change dir.
+require('api.inc.php');
+
+if (!osTicket::is_cli())
+    die(__('cron.php only supports local cron calls - use http -> api/tasks/cron'));
+
+require_once(INCLUDE_DIR.'api.cron.php');
+LocalCronApiController::call();
+?>

api/http.php

@@ -0,0 +1,36 @@
+<?php
+/*********************************************************************
+    http.php
+
+    HTTP controller for the osTicket API
+
+    Jared Hancock
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+// Use sessions — it's important for SSO authentication, which uses
+// /api/auth/ext
+define('DISABLE_SESSION', false);
+
+require 'api.inc.php';
+
+# Include the main api urls
+require_once INCLUDE_DIR."class.dispatcher.php";
+
+$dispatcher = patterns('',
+        url_post("^/tickets\.(?P<format>xml|json|email)$", array('api.tickets.php:TicketApiController','create')),
+        url('^/tasks/', patterns('',
+                url_post("^cron$", array('api.cron.php:CronApiController', 'execute'))
+         ))
+        );
+
+Signal::send('api', $dispatcher);
+
+# Call the respective function
+print $dispatcher->resolve($ost->get_path_info());
+?>

api/index.php

@@ -0,0 +1,3 @@
+<?php
+header('Location: ../');
+?>

api/pipe.php

@@ -0,0 +1,27 @@
+#!/usr/bin/php -q
+<?php
+/*********************************************************************
+    pipe.php
+
+    Converts piped emails to ticket. Just local - remote must use /api/tickets.email
+
+    Peter Rotich <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+ini_set('memory_limit', '256M'); //The concern here is having enough mem for emails with attachments.
+@chdir(dirname(__FILE__).'/'); //Change dir.
+require('api.inc.php');
+
+//Only local piping supported via pipe.php
+if (!osTicket::is_cli())
+    die(__('pipe.php only supports local piping - use http -> api/tickets.email'));
+
+require_once(INCLUDE_DIR.'api.tickets.php');
+PipeApiController::process();
+?>

apps/.htaccess

@@ -0,0 +1,11 @@
+<IfModule mod_rewrite.c>
+
+RewriteEngine On
+
+RewriteCond %{REQUEST_FILENAME} !-f
+RewriteCond %{REQUEST_FILENAME} !-d
+RewriteCond %{REQUEST_URI} (.*/apps)
+
+RewriteRule ^(.*)$ %1/dispatcher.php/$1 [L]
+
+</IfModule>

apps/dispatcher.php

@@ -0,0 +1,31 @@
+<?php
+/*********************************************************************
+    dispatcher.php
+
+    Dispatcher for client applications
+
+    Jared Hancock <[email protected]>
+    Peter Rotich <[email protected]>
+    Copyright (c)  2006-2013 osTicket
+    http://www.osticket.com
+
+    Released under the GNU General Public License WITHOUT ANY WARRANTY.
+    See LICENSE.TXT for details.
+
+    vim: expandtab sw=4 ts=4 sts=4:
+**********************************************************************/
+
+function clientLoginPage($msg='Unauthorized') {
+    Http::response(403,'Must login: '.Format::htmlchars($msg));
+    exit;
+}
+
+require('client.inc.php');
+
+if(!defined('INCLUDE_DIR'))	Http::response(500, 'Server configuration error');
+require_once INCLUDE_DIR.'/class.dispatcher.php';
+
+$dispatcher = new Dispatcher();
+
+Signal::send('ajax.client', $dispatcher);
+print $dispatcher->resolve($ost->get_path_info());