[Changes to using _REQUEST
tony@tonywhitmore.co.uk**20060301215236
 * SATYR: Tidied up settings table code.
 * SATYR: Renamed editcategory.php to category.php and amended menu entries appropriately. Reworked form code.
 * SATYR: Updated ICT and admin help page.
 * ChkNet: Moved to using _REQUEST array for transferring data between pages.
 * Login: Added support to login.php for HelpDesk phone number as held in settings table.
] {
move ./SATYR/editcategory.php ./SATYR/category.php
hunk ./CHANGELOG 11
-* SATYR:	Added page for reviewing recently closed support requests.
+* SATYR: Added page for reviewing recently closed support requests.
+* SATYR: Tidied up settings table code.
+* SATYR: Renamed editcategory.php to category.php and amended menu entries appropriately. Reworked form code.
+* SATYR: Updated ICT and admin help page.
hunk ./CHANGELOG 24
+* ChkNet: Moved to using _REQUEST array for transferring data between pages.
hunk ./CHANGELOG 29
-* Login: Fixed ICT Support Team Members table header
+* Login: Fixed ICT Support Team Members table header.
+* Login: Added support to login.php for HelpDesk phone number as held in settings table.
hunk ./SATYR/cancel.php 44
-$query = "UPDATE SATYR SET activeEdit = \"0\" WHERE job_id = '" . $_GET['job_id'] . "'";
+$query = "UPDATE SATYR SET activeEdit = \"0\" WHERE job_id = '" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/cancel.php 49
-echo "<META HTTP-EQUIV='Refresh' content=0;URL=" . $_GET['dest'];
-if ( isset($_GET['redo_search']) )
+echo "<META HTTP-EQUIV='Refresh' content=0;URL=" . $_REQUEST['dest'];
+if ( isset($_REQUEST['redo_search']) )
hunk ./SATYR/category.php 29
-	include ("STORM/common/html/htmlheader.inc");
+include ("STORM/common/html/htmlheader.inc");
hunk ./SATYR/category.php 32
-   include ("STORM/common/misc/functions.inc");
-	include ("STORM/SATYR/misc/functions.inc");
+include ("STORM/common/misc/functions.inc");
+include ("STORM/SATYR/misc/functions.inc");
hunk ./SATYR/category.php 36
-   sessionchk();
-   $accesslevel = "3";
-   accesschk("SATYR",$accesslevel);
+sessionchk();
+$accesslevel = "3";
+accesschk("SATYR",$accesslevel);
hunk ./SATYR/category.php 41
-	include ("STORM/common/db/connectadmin.inc");
+include ("STORM/common/db/connectadmin.inc");
hunk ./SATYR/category.php 44
-	include ("STORM/SATYR/html/admin_nav.inc");
-
-// If the $_POST[1] variable is not set, then unset the $_POST array so that the form is produced
-if ( !isset($_POST[1]) )
-	{
-	unset($_POST);
-	}
+include ("STORM/SATYR/html/admin_nav.inc");
hunk ./SATYR/category.php 46
-if ( !isset($_POST) )
+// If the notnew variable isn't set, then the form needs to be shown
+if ( !isset($_REQUEST['notnew']) )
hunk ./SATYR/category.php 51
-	echo "<br><form action='editcategory.php' method='post'>\n";
+	echo "<br><form action='" . $_SERVER['PHP_SELF'] . "' method='post'>\n";
hunk ./SATYR/category.php 54
-	echo "<table cellspacing='1' cellpadding='0' align='center'>\n
-			<tr class='greybg'><td>\n";
+	echo "<table cellspacing='1' cellpadding='0' align='center'>\n<tr class='greybg'><td>\n";
hunk ./SATYR/category.php 104
+	echo "<input type='hidden' name='notnew' value='1'>\n";
hunk ./SATYR/category.php 113
-	// Update database with POSTed data
+	// Update SATYRcategory table data
hunk ./SATYR/category.php 121
-			if ( $_POST[$i] == "" )
-				{//If the POSTed version of the category name is blank, drop it
+			if ( $_REQUEST[$i] == "" )
+				{//If the submitted version of the category name is blank, drop it
hunk ./SATYR/category.php 128
-				{
-				$query1 = "UPDATE SATYRcategory SET name = '" . $_POST[$i] . "' WHERE name = '" . $row['name'] . "'";
+				{ // Otherwise update the category name
+				$query1 = "UPDATE SATYRcategory SET name = '" . $_REQUEST[$i] . "' WHERE name = '" . $row['name'] . "'";
hunk ./SATYR/category.php 136
-	while ( $i != 3 )
+	while ( $i < 3 )
+		{
+		$i++;
+		if ( $_REQUEST['new'.$i] != "" )
hunk ./SATYR/category.php 141
-			$i++;
-			if ( $_POST['new'.$i] != "" )
-				{
-				$query = "INSERT INTO SATYRcategory (name) VALUES ('" . $_POST['new'.$i] . "')";
-				$result = $db->query($query);
-				if (DB::isError($db)) {die($db->getMessage());}
-				}
+			$query = "INSERT INTO SATYRcategory (name) VALUES ('" . $_REQUEST['new'.$i] . "')";
+			$result = $db->query($query);
+			if (DB::isError($db)) {die($db->getMessage());}
hunk ./SATYR/category.php 145
+		}
hunk ./SATYR/deletejob.php 47
-echo "<br>\n";
-echo "<br>\n";
-echo "<br>\n";
+echo "<br><br><br>\n";
hunk ./SATYR/deletejob.php 50
-	// Produce the HTML to start the form and to format the positioning of the submittal form.
	echo "<form action='deletejob.php' method='post'>\n";
+	// Produce the HTML to start the form and to format the positioning of the submittal form.
	echo "<form action='" . $_SERVER['PHP_SELF'] . "' method='post'>\n";
hunk ./SATYR/deletejob.php 72
-if ( !isset($_POST['job_id']) )
+if ( !isset($_REQUEST['job_id']) )
hunk ./SATYR/deletejob.php 79
-if ( $_POST['job_id'] == "" )
+if ( $_REQUEST['job_id'] == "" )
hunk ./SATYR/deletejob.php 81
-   echo "<alert>You must enter the numher of the support request to be deleted!</alert>\n";
+   echo "<div class='alert'>You must enter the number of the support request to be deleted!</div>\n";
hunk ./SATYR/deletejob.php 88
-$query = "SELECT * FROM SATYR WHERE job_id='" . $_POST['job_id'] . "'";
+$query = "SELECT * FROM SATYR WHERE job_id='" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/deletejob.php 93
-   echo "<alert>The support request number you entered could not be found!</alert>\n";
+   echo "<div class='alert'>The support request number you entered could not be found!</div>\n";
hunk ./SATYR/deletejob.php 100
-// Delete the support request identfied by _POST['job_id'] from the database.
-   $query = "DELETE FROM SATYR WHERE job_id='" . $_POST['job_id'] . "'";
+// Delete the support request identfied by _REQUEST['job_id'] from the database.
+   $query = "DELETE FROM SATYR WHERE job_id='" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/deletejob.php 106
-   echo "<h3>Support request number " . $_POST['job_id'] . " has been deleted!</h3>\n";
+   echo "<h3>Support request number " . $_REQUEST['job_id'] . " has been deleted!</h3>\n";
hunk ./SATYR/detail.php 60
-$row = extract_one_job($_GET['job_id']);
+$row = extract_one_job($_REQUEST['job_id']);
hunk ./SATYR/detail.php 216
-   echo "<input type='hidden' name='dest' value='" . $_GET['dest'] . "'>\n";
+   echo "<input type='hidden' name='dest' value='" . $_REQUEST['dest'] . "'>\n";
hunk ./SATYR/detail.php 226
-echo "<a href='" . $_GET['dest'];
+echo "<a href='" . $_REQUEST['dest'];
hunk ./SATYR/help.php 142
-   <p class='normal'><b>What does the &quot;Review Recent Support Requests&quot; button do?</b>
+   <p class='normal'><b>What does the &quot;Review recently submitted Support Requests&quot; button do?</b>
hunk ./SATYR/help.php 144
+
+   <p class='normal'><b>What does the &quot;Review recently closed Support Requests &quot; button do?</b>
+   <br>This feature allows members of the ICT Support Team to review all support request closed within a given number of days, the default being 14.   
hunk ./SATYR/help.php 221
+
+   <p class='normal'><b>What does the &quot;Edit Support Request Categories&quot; button do?</b>
+   <br>This feature allows the SATYR administrator to add, amend and delete the categories that appear in the &quot;Category&quot; drop-down box. Removing an entry removes it from the table, although any support requests still in that category will not be altered.
+
+   <p class='normal'><b>What does the &quot;SATYR Settings&quot; button do?</b>
+   <br>This feature allows the SATYR administrator to alter system settings specific to the SATYR module SATYR. The settings available here complement the system-wide settings.
hunk ./SATYR/intro.php 58
-   echo "<h1>SATYR Statistics</h1>\n";
+	echo "<h1>SATYR Statistics</h1>\n";
hunk ./SATYR/intro.php 193
-	refresh_page("intro.php");
+refresh_page("intro.php");
hunk ./SATYR/intro.php 213
-echo "<span class=normal><a href=\"closed.php\">See your older closed Support Requests</a></span>\n";
+echo "<a href='closed.php'>See your older closed Support Requests</a>\n";
hunk ./SATYR/joblock.php 47
-echo "<br>\n";
-echo "<br>\n";
-echo "<br>\n";
+echo "<br><br><br>\n";
hunk ./SATYR/joblock.php 70
-if ( !isset($_POST['job_id']) AND !isset($_POST['activeEdit']) )
+if ( !isset($_REQUEST['job_id']) AND !isset($_REQUEST['activeEdit']) )
hunk ./SATYR/joblock.php 78
-if ( !isset($_POST['job_id']) OR $_POST['job_id'] == "" )
+if ( !isset($_REQUEST['job_id']) OR $_REQUEST['job_id'] == "" )
hunk ./SATYR/joblock.php 88
-$query = "SELECT activeEdit FROM SATYR WHERE job_id = '" . $_POST['job_id'] . "'";
+$query = "SELECT activeEdit FROM SATYR WHERE job_id = '" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/joblock.php 96
-   echo "<alert>There is no support request with that number!</alert>\n";
+	echo "<div class='alert'>There is no support request with that number!</divt>\n";
hunk ./SATYR/joblock.php 107
-if ( !isset($_POST['activeEdit']) )
+if ( !isset($_REQUEST['activeEdit']) )
hunk ./SATYR/joblock.php 110
-   echo "Support request " . $_POST['job_id'] . " is ";
+   echo "Support request " . $_REQUEST['job_id'] . " is ";
hunk ./SATYR/joblock.php 129
-   echo "<input type='hidden' name='job_id' value='" . $_POST['job_id'] . "'>\n";
+   echo "<input type='hidden' name='job_id' value='" . $_REQUEST['job_id'] . "'>\n";
hunk ./SATYR/joblock.php 135
-   echo "<input type='submit' value='Unlock/Lock...'>\n";
+   echo "<input type='submit' value='Go'>\n";
hunk ./SATYR/joblock.php 142
-   $query = "SELECT activeEdit FROM SATYR WHERE job_id = '" . $_POST['job_id'] . "'";
+   $query = "SELECT activeEdit FROM SATYR WHERE job_id = '" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/joblock.php 148
-   // Produce HTML showing the current lock status.
   echo "Support request " . $_POST['job_id'] . " was ";
+   // Produce HTML showing the current lock status.
   echo "Support request " . $_REQUEST['job_id'] . " was ";
hunk ./SATYR/joblock.php 150
-      {
-      echo "locked.\n";
-      }
+		{ echo "locked.\n"; }
hunk ./SATYR/joblock.php 152
-      {
-      echo "unlocked.\n";
-      }
+		{ echo "unlocked.\n"; }
hunk ./SATYR/joblock.php 155
-   // Update the database with the new activeEdit value.
   $query = "UPDATE SATYR SET activeEdit = '" . $_POST['activeEdit'] . "' WHERE job_id = '" . $_POST['job_id'] . "'";
+   // Update the database with the new activeEdit value.
   $query = "UPDATE SATYR SET activeEdit = '" . $_REQUEST['activeEdit'] . "' WHERE job_id = '" . $_REQUEST['job_id'] . "'";
hunk ./SATYR/joblock.php 164
-   if ($_POST['activeEdit'] == "1" )
+   if ($_REQUEST['activeEdit'] == "1" )
hunk ./SATYR/joblock.php 166
-   elseif ($_POST['activeEdit'] == "0" )
+   elseif ($_REQUEST['activeEdit'] == "0" )
hunk ./SATYR/recent.php 29
-	include ("STORM/common/html/htmlheader.inc");
+include ("STORM/common/html/htmlheader.inc");
hunk ./SATYR/recent.php 32
-   include ("STORM/common/misc/functions.inc");
-	include ("STORM/SATYR/misc/functions.inc");
+include ("STORM/common/misc/functions.inc");
+include ("STORM/SATYR/misc/functions.inc");
hunk ./SATYR/recent.php 36
-   sessionchk();
+sessionchk();
hunk ./SATYR/recent.php 39
-	{
-	exit();
-	}
+	{ exit(); }
hunk ./SATYR/recent.php 46
-// Refresh page at interval determined by system wide variable
-if ( isset($_GET['closed']) ) {
+// Add Meta tag for automatic refresh at SATYR default interval
+if ( isset($_REQUEST['closed']) ) {
hunk ./SATYR/recent.php 52
-// Check if the form is being reloaded
-if ( isset($_POST['days']) )
-	{
-	$_SESSION['SATYRrecentview'] = $_POST['days'];	
-	}
+// If the number of days to view has changed, update the setting.
+if ( isset($_REQUEST['days']) )
+	{ $_SESSION['SATYRrecentview'] = $_REQUEST['days'];	 }
hunk ./SATYR/recent.php 57
-echo "<form action='recent.php' method='post'>";
+echo "<form action='" . $_SERVER['PHP_SELF'];
+if ( isset($_REQUEST['closed']) ) {
+	echo "?closed=1";
+	}
+echo "' method='post'>";
hunk ./SATYR/recent.php 75
-if ( isset($_GET['closed']) ) {
+if ( isset($_REQUEST['closed']) ) {
hunk ./SATYR/settings.php 47
-// Update the settings using POSTed data
-if ( isset($_POST['not_new']) )
+// Update the SATYR_settings table using data in the REQUEST array.
+if ( isset($_REQUEST['not_new']) )
hunk ./SATYR/settings.php 56
-			$query1 = "UPDATE SATYR_settings SET value='" . $_POST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
+			$query1 = "UPDATE SATYR_settings SET value='" . $_REQUEST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
hunk ./SATYR/settings.php 66
-			if ( !isset($_POST[$row['function']]) )
+			if ( !isset($_REQUEST[$row['function']]) )
hunk ./SATYR/settings.php 68
-				$_POST[$row['function']] = "0";
+				$_REQUEST[$row['function']] = "0";
hunk ./SATYR/settings.php 70
-			$query1 = "UPDATE SATYR_settings SET value='" . $_POST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
+			$query1 = "UPDATE SATYR_settings SET value='" . $_REQUEST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
hunk ./SATYR/settings.php 95
-	$query = "SELECT * FROM SATYR_settings WHERE function != 'allow_mail_integration'";	
+	$query = "SELECT * FROM SATYR_settings";	
hunk ./SATYR/settings.php 99
-	      {
-	      extract ($row);
-	      echo "<tr class='tablerow'>\n";
-	      echo "<td bgcolor='#FFFF99'>\n";
-	      echo "<b>";
-	      // Small if loop that presents a nice version of the variable name
-	      if ( $function == "page_refresh" )
-	      	{
-	      	echo "Automatic refresh period for SATYR pages (in seconds):";
-	      	}
-	      else
-	          {
-	          echo $function;
-	          }
-	      echo "</b>\n";
-	      echo "</td>\n";
-	      echo "<td bgcolor='#FFFF99'>\n";
-	      echo "<input type='text' name='" . $function . "' size='20' maxlength='30' value='" . $value . "'>\n";
-	      echo "</td>\n";
-	      echo "</tr>\n";
-	      }
+	    {
+	    extract ($row);
+	    echo "<tr class='tablerow'>\n";
+	    echo "<td bgcolor='#FFFF99'>\n";
+	    echo "<b>" . $description . "</b>\n";
+	    echo "</td>\n";
+	    echo "<td bgcolor='#FFFF99'>\n";
+		if ( $function == 'allow_mail_integration' ) {
+			echo "<input type='checkbox' name='" . $function . "' value='1'";
+			if ( $value == "1" )
+				{ echo " checked"; }
+			echo ">";  
+			}
+		else echo "<input type='text' name='" . $function . "' size='20' maxlength='30' value='" . $value . "'>\n";
+	    echo "</td>\n";
+	    echo "</tr>\n";
+	    }
hunk ./SATYR/settings.php 117
-	// Produce the special row for allowing mail integration tick box
-	$query = "SELECT * FROM SATYR_settings WHERE function = 'allow_mail_integration'";	
-	$result = $db->query($query);
-	if (DB::isError($db)) {die($db->getMessage());}
-	while ( $row = $result->fetchRow() )
-	      {
-	      echo "<tr class='tablerow'>\n";
-	      echo "<td bgcolor='#FFFF99'>\n";
-	      echo "<b>Allow SATYR module to send mail to users:</b>\n";
-	      echo "</td>\n";
-	      echo "<td bgcolor='#FFFF99'>\n";
-	      echo "<input type='checkbox' name='" . $row['function'] . "' value='1'";
-	      if ( $row['value'] == "1" )
-		      {
-		      echo " checked";
-		      }
-		   echo ">";     
-	      echo "</td>\n";
-	      echo "</tr>\n";
-	      }
-	      
hunk ./SATYR/settings.php 118
-	echo "</tr>\n";
hunk ./SATYR/stats.php 97
-
-
hunk ./SATYR/submit.php 29
-	include ("STORM/common/html/htmlheader.inc");
+include ("STORM/common/html/htmlheader.inc");
hunk ./SATYR/submit.php 32
-   include ("STORM/common/misc/functions.inc");
-	include ("STORM/SATYR/misc/functions.inc");
+include ("STORM/common/misc/functions.inc");
+include ("STORM/SATYR/misc/functions.inc");
hunk ./SATYR/submit.php 36
-   sessionchk();
+sessionchk();
hunk ./SATYR/submit.php 40
-   // Include the connection to the database server details.
+	// Include the connection to the database server details.
hunk ./SATYR/submit.php 70
-			echo "value=\"" . $_POST['username'] . "\"";
+			echo "value=\"" . $_REQUEST['username'] . "\"";
hunk ./SATYR/submit.php 83
-		echo "value=\"" . $_POST['nickname'] . "\"";
+		echo "value=\"" . $_REQUEST['nickname'] . "\"";
hunk ./SATYR/submit.php 97
-		create_drop_down_list("room","name","roomlist",$_POST['room']);
+		create_drop_down_list("room","name","roomlist",$_REQUEST['room']);
hunk ./SATYR/submit.php 111
-		echo "value=\"" . $_POST['machineNumber'] . "\"";
+		echo "value=\"" . $_REQUEST['machineNumber'] . "\"";
hunk ./SATYR/submit.php 125
-			echo "value=\"" . $_POST['systemID'] . "\"";
+			echo "value=\"" . $_REQUEST['systemID'] . "\"";
hunk ./SATYR/submit.php 142
-  		echo "<option value='" . $_POST['userRating'] . "' selected>" . $_POST['userRating'] . "\n";
+  		echo "<option value='" . $_REQUEST['userRating'] . "' selected>" . $_REQUEST['userRating'] . "\n";
hunk ./SATYR/submit.php 166
-		echo $_POST['initialInfo'];
+		echo $_REQUEST['initialInfo'];
hunk ./SATYR/submit.php 205
-			echo $_POST['evaluation'];
+			echo $_REQUEST['evaluation'];
hunk ./SATYR/submit.php 219
-			create_drop_down_list("category","name","SATYRcategory",$_POST['category']);
+			create_drop_down_list("category","name","SATYRcategory",$_REQUEST['category']);
hunk ./SATYR/submit.php 230
-			echo "<option value='" . $_POST['priority'] . "' selected>" . $_POST['priority'] . "\n";
+			echo "<option value='" . $_REQUEST['priority'] . "' selected>" . $_REQUEST['priority'] . "\n";
hunk ./SATYR/submit.php 248
-			create_drop_down_list("teamMember","name","teamMember",$_POST['teamMember']);
+			create_drop_down_list("teamMember","name","teamMember",$_REQUEST['teamMember']);
hunk ./SATYR/submit.php 266
-			echo $_POST['furtherComments'];
+			echo $_REQUEST['furtherComments'];
hunk ./SATYR/submit.php 275
-	   	if ( isset($_POST['closed']) )
+	   	if ( isset($_REQUEST['closed']) )
hunk ./SATYR/submit.php 293
-if ( !isset($_POST['full']) )
+if ( !isset($_REQUEST['full']) )
hunk ./SATYR/submit.php 298
-elseif ( isset($_POST['full']) )
+elseif ( isset($_REQUEST['full']) )
hunk ./SATYR/submit.php 300
-	// Perform the clean_array function on the _POST array.
-   clean_array($_POST);
+	// Perform the clean_array function on the _REQUEST array.
+   clean_array($_REQUEST);
hunk ./SATYR/submit.php 318
-	   	{
-	   	echo "<h3>The following errors have been identified on your support request form:</h3>\n";
-	   	echo $errmsg;
-	      produce_form($_SESSION['SATYR'],"yes");
-	      exit();
-	   	}
+			{
+			echo "<h3>The following errors have been identified on your support request form:</h3>\n";
+			echo $errmsg;
+			produce_form($_SESSION['SATYR'],"yes");
+			exit();
+			}
hunk ./SATYR/submit.php 328
-					('" . $_POST['nickname'] . "'," .
+					('" . $_REQUEST['nickname'] . "'," .
hunk ./SATYR/submit.php 330
-		         "'" . $_POST['room'] . "'," .
-					"'" . $_POST['machineNumber'] . "'," .
-					"'" . $_POST['initialInfo'] . "'," .
-					"'" . $_POST['userRating'] . "'," .
+		         "'" . $_REQUEST['room'] . "'," .
+					"'" . $_REQUEST['machineNumber'] . "'," .
+					"'" . $_REQUEST['initialInfo'] . "'," .
+					"'" . $_REQUEST['userRating'] . "'," .
hunk ./SATYR/submit.php 338
-	   // Produce confirmation message
-	   echo "<h2>Your support request has been made!</h2>\n";
+		// Produce confirmation message
+		echo "<h2>Your support request has been made!</h2>\n";
hunk ./SATYR/submit.php 341
-	   }	
-  elseif ( $_SESSION['SATYR'] == "2" )
-   	{
-		if  ( ( $_POST['evaluation'] != "" OR $_POST['furtherComments'] != "" ) AND $_POST['teamMember'] == "" )
+		}
+	elseif ( $_SESSION['SATYR'] == "2" )
+		{
+		if  ( ( $_REQUEST['evaluation'] != "" OR $_REQUEST['furtherComments'] != "" ) AND $_REQUEST['teamMember'] == "" )
hunk ./SATYR/submit.php 348
-		if ( $_POST['username'] == "" )
+		if ( $_REQUEST['username'] == "" )
hunk ./SATYR/submit.php 352
-		if ( $_POST['nickname'] == "" )
+		if ( $_REQUEST['nickname'] == "" )
hunk ./SATYR/submit.php 356
-		if ( $_POST['initialInfo'] == "" )
+		if ( $_REQUEST['initialInfo'] == "" )
hunk ./SATYR/submit.php 370
-      // Append the columns common to all queries.
-      $query .= "status, nickname, username, systemID, room, machineNumber, initialInfo, userRating, submitDate";
+		// Append the columns common to all queries.
+		$query .= "status, nickname, username, systemID, room, machineNumber, initialInfo, userRating, submitDate";
hunk ./SATYR/submit.php 373
-  		/* Determine the status of the submittal from the fields that are completed, and submit
-		   the value of the status field depending on the result. */
-		if ( isset($_POST['closed']) )
+		// Determine the status of the submittal from the fields that are completed, and submit the value of the status field depending on the result.
+		if ( isset($_REQUEST['closed']) )
hunk ./SATYR/submit.php 376
-			if ( $_POST['closed'] == "on" )
+			if ( $_REQUEST['closed'] == "on" )
hunk ./SATYR/submit.php 378
-	      	$query .= "'Closed',";
-	      	$status = "Closed";
-	      	}
-      	}
-	   elseif ( $_POST['evaluation'] != "" OR $_POST['furtherComments'] != "" OR ( $_POST['teamMember'] != "" AND $_POST['teamMember'] != "Unassigned") )
+				$query .= "'Closed',";
+				$status = "Closed";
+				}
+			}
+		elseif ( $_REQUEST['evaluation'] != "" OR $_REQUEST['furtherComments'] != "" OR ( $_REQUEST['teamMember'] != "" AND $_REQUEST['teamMember'] != "Unassigned") )
hunk ./SATYR/submit.php 388
-	   	{
-	   	$query .= "'New',";
-	   	$status = "New";
-	   	}
+			{
+			$query .= "'New',";
+			$status = "New";
+			}
hunk ./SATYR/submit.php 393
-		$query .=   "'" . $_POST['nickname'] . "'," .
-						"'" . $_POST['username'] . "'," .
-	               "'" . $_POST['systemID'] . "'," .
-						"'" . $_POST['room'] . "'," .
-						"'" . $_POST['machineNumber'] . "'," .
-						"'" . $_POST['initialInfo'] . "'," .
-						"'" . $_POST['userRating'] . "'," .
+		$query .=   "'" . $_REQUEST['nickname'] . "'," .
+						"'" . $_REQUEST['username'] . "'," .
+	               "'" . $_REQUEST['systemID'] . "'," .
+						"'" . $_REQUEST['room'] . "'," .
+						"'" . $_REQUEST['machineNumber'] . "'," .
+						"'" . $_REQUEST['initialInfo'] . "'," .
+						"'" . $_REQUEST['userRating'] . "'," .
hunk ./SATYR/submit.php 401
-	               "'" . $_POST['category'] . "'," .
-	               "'" . $_POST['evaluation'] . "',";
+	               "'" . $_REQUEST['category'] . "'," .
+	               "'" . $_REQUEST['evaluation'] . "',";
hunk ./SATYR/submit.php 412
-		$query .= "'" . $_POST['priority'] . "'," .
-					 "'" . $_POST['furtherComments'] . "'," .
-					 "'" . $_POST['teamMember'] . "',";
+		$query .= "'" . $_REQUEST['priority'] . "'," .
+					 "'" . $_REQUEST['furtherComments'] . "'," .
+					 "'" . $_REQUEST['teamMember'] . "',";
hunk ./SATYR/submit.php 430
-		echo "<h3>If you submitted this support request unevaluated it will appear in the \"New\" list.</h3>\n";		
+		echo "<h3>If you submitted this support request unevaluated it will appear in the &quot;New&quot; list.</h3>\n";		
hunk ./SATYR/update.php 334
-	   $query .= "evalDate=\"" . $now . "\",";
+		$query .= "evalDate=\"" . $now . "\",";
+		$_POST['evalDate'] = $now;
hunk ./SATYR/update.php 339
-	   $query .= "closeDate=\"" . $now . "\",";
+		$query .= "closeDate=\"" . $now . "\",";
+		$_POST['closeDate'] = $now;   
hunk ./SATYR/update.php 353
-   // Include the navigation options
+	// Include the navigation options
hunk ./SATYR/update.php 359
-   // Send an e-mail if that option is enabled
+	// Send an e-mail if that option is enabled
hunk ./TODO 9
-Set STORM-specific session name
+Move to using _REQUEST (ChkNet done)
hunk ./TODO 14
+* User password reset request (pass_reset.php) needs finishing.
hunk ./TODO 20
+* Add e-mail sending on initial submission?
hunk ./TODO 54
-* Sort out the messy style sheet!
+* Sort out the messy style sheet, make alerts work.
hunk ./TODO 57
-* Change to "Get help with MODULE" - done with chknet
hunk ./TODO 60
-
+* Remember to handle user renames (including permissions) in upgrade script
hunk ./chknet/device.php 187
-if ( isset($_POST['not_new']) AND isset($_POST['del']) )
+if ( isset($_REQUEST['not_new']) AND isset($_REQUEST['del']) )
hunk ./chknet/device.php 190
-	$query = "DELETE FROM chknet_dev WHERE id='" . $_POST['id'] . "'";
+	$query = "DELETE FROM chknet_dev WHERE id='" . $_REQUEST['id'] . "'";
hunk ./chknet/device.php 198
-elseif ( isset($_POST['del']) AND !isset($_POST['not_new']) )
+elseif ( isset($_REQUEST['del']) AND !isset($_REQUEST['not_new']) )
hunk ./chknet/device.php 204
-	echo "Please confirm that you wish to delete device <b>" . $_POST['id'] . ": " . $_POST['name'] . "</b>";
+	echo "Please confirm that you wish to delete device <b>" . $_REQUEST['id'] . ": " . $_REQUEST['name'] . "</b>";
hunk ./chknet/device.php 208
-	echo "<input type='hidden' name='id' value='" . $_POST['id'] . "'>\n";
+	echo "<input type='hidden' name='id' value='" . $_REQUEST['id'] . "'>\n";
hunk ./chknet/device.php 218
-elseif ( isset($_POST['not_new']) AND !isset($POST['del']) )
+elseif ( isset($_REQUEST['not_new']) AND !isset($_REQUEST['del']) )
hunk ./chknet/device.php 220
-	device_form_process($_POST);
+	device_form_process($_REQUEST);
hunk ./chknet/device.php 222
-elseif ( isset($_POST['id']) AND isset($_POST['name']) )
+elseif ( isset($_REQUEST['id']) AND isset($_REQUEST['name']) )
hunk ./chknet/device.php 225
-	$query = "SELECT * FROM chknet_dev WHERE id='" . $_POST['id'] . "'";
+	$query = "SELECT * FROM chknet_dev WHERE id='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 147
-if ( isset($_POST['del']) AND isset($_POST['not_new']) )
+if ( isset($_REQUEST['del']) AND isset($_REQUEST['not_new']) )
hunk ./chknet/group.php 150
-	$query = "DELETE FROM chknet_dev WHERE grp='" . $_POST['id'] . "'";
+	$query = "DELETE FROM chknet_dev WHERE grp='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 155
-	$query = "DELETE FROM chknet_grp WHERE id='" . $_POST['id'] . "'";
+	$query = "DELETE FROM chknet_grp WHERE id='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 164
-elseif ( isset($_POST['del']) AND !isset($_POST['not_new']) )
+elseif ( isset($_REQUEST['del']) AND !isset($_REQUEST['not_new']) )
hunk ./chknet/group.php 170
-	echo "Please confirm that you wish to delete group <b>" . $_POST['id'] . ": " . $_POST['name'] . " and all devices in that group!</b>";
+	echo "Please confirm that you wish to delete group <b>" . $_REQUEST['id'] . ": " . $_REQUEST['name'] . " and all devices in that group!</b>";
hunk ./chknet/group.php 174
-	echo "<input type='hidden' name='id' value='" . $_POST['id'] . "'>\n";
+	echo "<input type='hidden' name='id' value='" . $_REQUEST['id'] . "'>\n";
hunk ./chknet/group.php 185
-elseif ( isset($_POST['edit']) and !isset($_POST['not_new']) )
+elseif ( isset($_REQUEST['edit']) and !isset($_REQUEST['not_new']) )
hunk ./chknet/group.php 188
-	$query = "SELECT * FROM chknet_grp WHERE id='" . $_POST['id'] . "'";
+	$query = "SELECT * FROM chknet_grp WHERE id='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 196
-elseif ( isset($_POST['not_new']) AND isset($_POST['new']) )
+elseif ( isset($_REQUEST['not_new']) AND isset($_REQUEST['new']) )
hunk ./chknet/group.php 198
-	group_form_process($_POST);	
+	group_form_process($_REQUEST);	
hunk ./chknet/group.php 201
-elseif ( isset($_POST['new']) )
+elseif ( isset($_REQUEST['new']) )
hunk ./chknet/group.php 204
-	group_detail_form("",$_POST['new']);
+	group_detail_form("",$_REQUEST['new']);
hunk ./chknet/group.php 207
-elseif ( isset($_POST['activate']) ) {
-	if ( $_POST['activate'] == "1" ) {
-		$query = "SELECT id FROM chknet_dev WHERE grp='" . $_POST['id'] . "'";
+elseif ( isset($_REQUEST['activate']) ) {
+	if ( $_REQUEST['activate'] == "1" ) {
+		$query = "SELECT id FROM chknet_dev WHERE grp='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 217
-		echo "<h2>Activated all devices in group " . $_POST['name'] . "</h2>\n";
+		echo "<h2>Activated all devices in group " . $_REQUEST['name'] . "</h2>\n";
hunk ./chknet/group.php 222
-elseif ( isset($_POST['deactivate']) ) {
-	if ( $_POST['deactivate'] == "1" ) {
-		$query = "SELECT id FROM chknet_dev WHERE grp='" . $_POST['id'] . "'";
+elseif ( isset($_REQUEST['deactivate']) ) {
+	if ( $_REQUEST['deactivate'] == "1" ) {
+		$query = "SELECT id FROM chknet_dev WHERE grp='" . $_REQUEST['id'] . "'";
hunk ./chknet/group.php 232
-		echo "<h2>Deactivated all devices in group " . $_POST['name'] . "</h2>\n";
+		echo "<h2>Deactivated all devices in group " . $_REQUEST['name'] . "</h2>\n";
hunk ./chknet/intro.php 187
-	if ( isset($_GET['grp']) ) {
-		refresh_page($_SERVER['REQUEST_URI'] . "#" . $_GET['grp']);
+	if ( isset($_REQUEST['grp']) ) {
+		refresh_page($_SERVER['REQUEST_URI'] . "#" . $_REQUEST['grp']);
hunk ./chknet/settings.php 48
-if ( isset($_POST['not_new']) )
+if ( isset($_REQUEST['not_new']) )
hunk ./chknet/settings.php 56
-			$query1 = "UPDATE chknet_settings SET value='" . $_POST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
+			$query1 = "UPDATE chknet_settings SET value='" . $_REQUEST[$row['function']] . "' WHERE function='" . $row['function'] . "'";
hunk ./common/style.css 26
-
hunk ./common/style.css 64
-alert {
+.alert {
hunk ./includes/STORM/SATYR/html/admin_nav.inc 31
-		
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 33
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='intro.php' class='ictnavigation'>\n";
-	echo "SATYR Start Page\n";
-	echo "</a>\n";
-	echo "</td>\n";
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='intro.php' class='ictnavigation'>\n";
+echo "SATYR Start Page\n";
+echo "</a>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 40
-	echo "<td width='5%'></td>\n";
+echo "<td width='5%'></td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 43
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='joblock.php' class='ictnavigation'>\n";
-	echo "Unlock/lock a Support Request\n";
-	echo "</a>\n";
-	echo "</td>\n";
-		
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='joblock.php' class='ictnavigation'>\n";
+echo "Unlock/lock a Support Request\n";
+echo "</a>\n";
+echo "</td>\n";
+	
hunk ./includes/STORM/SATYR/html/admin_nav.inc 50
-	echo "<td width='5%'></td>\n";
-
+echo "<td width='5%'></td>\n";
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 53
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='deletejob.php' class='ictnavigation'>\n";
-	echo "Delete a Support Request\n";
-	echo "</a>\n";
-	echo "</td>\n";
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='deletejob.php' class='ictnavigation'>\n";
+echo "Delete a Support Request\n";
+echo "</a>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 60
-	echo "<td width='5%'></td>\n";
+echo "<td width='5%'></td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 63
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='editcategory.php' class='ictnavigation'>\n";
-	echo "Edit Support Request Categories\n";
-	echo "</a>\n";
-	echo "</td>\n";
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='category.php' class='ictnavigation'>\n";
+echo "Edit Support Request Categories\n";
+echo "</a>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 70
-	echo "<td width='5%'></td>\n";
+echo "<td width='5%'></td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 73
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='settings.php' class='ictnavigation'>\n";
-	echo "SATYR Settings\n";
-	echo "</a>\n";
-	echo "</td>\n";
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='settings.php' class='ictnavigation'>\n";
+echo "SATYR Settings\n";
+echo "</a>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 80
-	echo "<td width='5%'></td>\n";
-		
+echo "<td width='5%'></td>\n";
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 83
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='help.php' class='ictnavigation'>\n";
-	echo "Get help with SATYR\n";
-	echo "</a>\n";
-	echo "</td>\n";
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='help.php' class='ictnavigation'>\n";
+echo "Get help with SATYR\n";
+echo "</a>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/admin_nav.inc 90
-	echo "<td width='5%'></td>\n";
-      		
+echo "<td width='5%'></td>\n";
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 93
-	echo "<td align='center' bgcolor='#33FF33'>\n";
-	echo "<a href='../login/menu.php' class='ictnavigation'>\n";
-	echo "Back to<br>STORM Menu\n";
-	echo "</a>\n";
-	echo "</td>\n";
-		
+echo "<td align='center' bgcolor='#33FF33'>\n";
+echo "<a href='../login/menu.php' class='ictnavigation'>\n";
+echo "Back to<br>STORM Menu\n";
+echo "</a>\n";
+echo "</td>\n";
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 100
-	echo "</tr>\n";
+echo "</tr>\n";
+
hunk ./includes/STORM/SATYR/html/admin_nav.inc 103
-	echo "</table>\n";
+echo "</table>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 25
-		include ("STORM/SATYR/html/banner.inc");
+include ("STORM/SATYR/html/banner.inc");
hunk ./includes/STORM/SATYR/html/users_nav.inc 30
-		echo "<table align='center' width='80%' cellspacing='3' cellpadding='3' border='0'>\n";
+echo "<table align='center' width='80%' cellspacing='3' cellpadding='3' border='0'>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 32
-		echo "<tr>\n";
+echo "<tr>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 35
-		echo "<td align='center' bgcolor='#7446ee'>\n";
-		echo "<a href='intro.php' class='usernavigation'>\n";
-        		echo "SATYR<br>Start Page\n";
-		echo "</a>\n";
+echo "<td align='center' bgcolor='#7446ee'>\n";
+echo "<a href='intro.php' class='usernavigation'>\n";
+echo "SATYR<br>Start Page\n</a>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 40
-		echo "</td>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 43
-		echo "<td width='5%'></td>\n";
+echo "<td width='5%'></td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 46
-		echo "<td align='center' bgcolor='#7446ee'>\n";
-		echo "<a href='submit.php' class='usernavigation'>\n";
-		echo "Submit a new\n";
-		echo "<br>\n";
-		echo "Support Request\n";
-		echo "</a>\n";
+echo "<td align='center' bgcolor='#7446ee'>\n";
+echo "<a href='submit.php' class='usernavigation'>\n";
+echo "Submit a new<br>Support Request</a>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 51
-		echo "</td>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 54
-		echo "<td width='5%'></td>\n";
+echo "<td width='5%'></td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 57
-		echo "<td align='center' bgcolor='#7446ee'>\n";
-		echo "<a href='help.php' class='usernavigation'>\n";
-        		echo "Get help with SATYR\n";
-		echo "</a>\n";
+echo "<td align='center' bgcolor='#7446ee'>\n";
+echo "<a href='help.php' class='usernavigation'>\n";
+echo "Get help with SATYR</a>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 62
-		echo "</td>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 65
-		echo "<td width='5%'></td>\n";
-      		
+echo "<td width='5%'></td>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 68
-		echo "<td align='center' bgcolor='#7446ee'>\n";
-		echo "<a href='../login/menu.php' class='usernavigation'>\n";
-        		echo "Back to<br>STORM Menu\n";
-		echo "</a>\n";
+echo "<td align='center' bgcolor='#7446ee'>\n";
+echo "<a href='../login/menu.php' class='usernavigation'>\n";
+echo "Back to<br>STORM Menu</a>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 73
-		echo "</td>\n";
+echo "</td>\n";
hunk ./includes/STORM/SATYR/html/users_nav.inc 76
-		echo "</tr>\n";
+echo "</tr>\n";
+
hunk ./includes/STORM/SATYR/html/users_nav.inc 79
-		echo "</table>\n";
+echo "</table>\n";
hunk ./includes/STORM/common/html/htmlheader.inc 35
-	echo "<meta name='copyright' content='&copy; 2003 - 2005 Tony Whitmore'>\n";
+	echo "<meta name='copyright' content='&copy; 2003 - 2006 Tony Whitmore'>\n";
hunk ./login/login.php 48
-		
+
+// Include the connection to the database.
+include ("STORM/common/db/connect.inc");
+
+// Query the database and check for a username and password match.
+$query = "SELECT value FROM settings WHERE function = \"helpdeskPhone\"";
+$result = $db->query($query);
+if (DB::isError($db)) {die($db->getMessage());}
+$row = $result->fetchrow();
+$helpdeskPhone = $row['value'];
+
hunk ./login/login.php 89
-			Have you forgotten your password? Get a <a href='pass_reset.php'>new password</a> or contact the ICT Support Team on extension XXXX.
+			Have you forgotten your password? Get a <a href='pass_reset.php'>new password</a> or contact the ICT Support Team on extension " . $helpdeskPhone . ".
hunk ./login/menu.php 84
-			// Data from the returned row is passed into a variable determined by the column name.
+			// Data from the returned row is passed into an array.
}