mirror of
https://github.com/django-helpdesk/django-helpdesk.git
synced 2024-12-13 18:31:10 +01:00
93723e9e7a
Entering gibberish in the 'Ticket Number' field when viewing a ticket on the public form threw up a 500 error.
107 lines
3.9 KiB
Python
107 lines
3.9 KiB
Python
"""
|
|
Jutda Helpdesk - A Django powered ticket tracker for small enterprise.
|
|
|
|
(c) Copyright 2008 Jutda. All Rights Reserved. See LICENSE for details.
|
|
|
|
views/public.py - All public facing views, eg non-staff (no authentication
|
|
required) views.
|
|
"""
|
|
|
|
from datetime import datetime
|
|
|
|
from django.core.urlresolvers import reverse
|
|
from django.http import HttpResponseRedirect, Http404, HttpResponse
|
|
from django.shortcuts import render_to_response, get_object_or_404
|
|
from django.template import loader, Context, RequestContext
|
|
from django.utils.translation import ugettext as _
|
|
|
|
from helpdesk.forms import PublicTicketForm
|
|
from helpdesk.lib import send_templated_mail, text_is_spam
|
|
from helpdesk.models import Ticket, Queue
|
|
|
|
|
|
def homepage(request):
|
|
if request.user.is_staff:
|
|
if getattr(request.user.usersettings.settings, 'login_view_ticketlist', False):
|
|
return HttpResponseRedirect(reverse('helpdesk_list'))
|
|
else:
|
|
return HttpResponseRedirect(reverse('helpdesk_dashboard'))
|
|
|
|
if request.method == 'POST':
|
|
form = PublicTicketForm(request.POST, request.FILES)
|
|
form.fields['queue'].choices = [('', '--------')] + [[q.id, q.title] for q in Queue.objects.filter(allow_public_submission=True)]
|
|
if form.is_valid():
|
|
if text_is_spam(form.cleaned_data['body'], request):
|
|
# This submission is spam. Let's not save it.
|
|
return render_to_response('helpdesk/public_spam.html', RequestContext(request, {}))
|
|
else:
|
|
ticket = form.save()
|
|
return HttpResponseRedirect('%s?ticket=%s&email=%s'% (
|
|
reverse('helpdesk_public_view'),
|
|
ticket.ticket_for_url,
|
|
ticket.submitter_email)
|
|
)
|
|
else:
|
|
try:
|
|
queue = Queue.objects.get(slug=request.GET.get('queue', None))
|
|
except Queue.DoesNotExist:
|
|
queue = None
|
|
initial_data = {}
|
|
if queue:
|
|
initial_data['queue'] = queue.id
|
|
form = PublicTicketForm(initial=initial_data)
|
|
form.fields['queue'].choices = [('', '--------')] + [[q.id, q.title] for q in Queue.objects.filter(allow_public_submission=True)]
|
|
|
|
return render_to_response('helpdesk/public_homepage.html',
|
|
RequestContext(request, {
|
|
'form': form,
|
|
}))
|
|
|
|
|
|
def view_ticket(request):
|
|
ticket = request.GET.get('ticket', '')
|
|
email = request.GET.get('email', '')
|
|
error_message = ''
|
|
|
|
if ticket and email:
|
|
parts = ticket.split('-')
|
|
queue = '-'.join(parts[0:-1])
|
|
ticket_id = parts[-1]
|
|
|
|
try:
|
|
t = Ticket.objects.get(id=ticket_id, queue__slug__iexact=queue, submitter_email__iexact=email)
|
|
except:
|
|
t = False
|
|
error_message = _('Invalid ticket ID or e-mail address. Please try again.')
|
|
|
|
if t:
|
|
|
|
if request.GET.has_key('close') and ticket.status == Ticket.RESOLVED_STATUS:
|
|
from helpdesk.views.staff import update_ticket
|
|
# Trick the update_ticket() view into thinking it's being called with
|
|
# a valid POST.
|
|
request.POST = {
|
|
'new_status': Ticket.CLOSED_STATUS,
|
|
'public': 1,
|
|
'owner': ticket.assigned_to,
|
|
'title': ticket.title,
|
|
'comment': _('Submitter accepted resolution and closed ticket'),
|
|
}
|
|
request.FILES = {}
|
|
request.GET = {}
|
|
|
|
return update_ticket(request, ticket_id)
|
|
|
|
return render_to_response('helpdesk/public_view_ticket.html',
|
|
RequestContext(request, {
|
|
'ticket': t,
|
|
}))
|
|
|
|
return render_to_response('helpdesk/public_view_form.html',
|
|
RequestContext(request, {
|
|
'ticket': ticket,
|
|
'email': email,
|
|
'error_message': error_message,
|
|
}))
|
|
|