diff --git a/app/contacts/contact_delete.php b/app/contacts/contact_delete.php index c6b6fdfad4..c58a78052d 100644 --- a/app/contacts/contact_delete.php +++ b/app/contacts/contact_delete.php @@ -45,11 +45,11 @@ if (!$included) { } } -if (strlen($contact_uuid) > 0) { +if (is_uuid($contact_uuid)) { //delete addresses $sql = "delete from v_contact_addresses "; $sql .= "where domain_uuid = '".$_SESSION['domain_uuid']."' "; - $sql .= "and contact_uuid = '".$contact_uuid."' "; + $sql .= "and contact_uuid = :contact_uuid "; $prep_statement = $db->prepare(check_sql($sql)); $prep_statement->execute(); unset($prep_statement, $sql); @@ -106,6 +106,14 @@ if (strlen($contact_uuid) > 0) { $prep_statement->execute(); unset($prep_statement, $sql); + //delete attachments + $sql = "delete from v_contact_attachments "; + $sql .= "where domain_uuid = '".$_SESSION['domain_uuid']."' "; + $sql .= "and contact_uuid = '".$contact_uuid."' "; + $prep_statement = $db->prepare(check_sql($sql)); + $prep_statement->execute(); + unset($prep_statement, $sql); + //delete contact users $sql = "delete from v_contact_users "; $sql .= "where domain_uuid = '".$_SESSION['domain_uuid']."' "; diff --git a/app/contacts/contacts.php b/app/contacts/contacts.php index 7350d649ed..a4ad2c5ef0 100644 --- a/app/contacts/contacts.php +++ b/app/contacts/contacts.php @@ -178,7 +178,7 @@ $offset = $rows_per_page * $page; //get the list - $sql = str_replace('count(*) as num_rows', '*', $sql); + $sql = str_replace('count(*) as num_rows', '*, (select a.contact_attachment_uuid from v_contact_attachments as a where a.contact_uuid = c.contact_uuid and a.attachment_primary = 1) as contact_attachment_uuid', $sql); if (strlen($order_by) > 0) { $sql .= "order by ".$order_by." ".$order." "; } @@ -194,6 +194,25 @@ $contacts = $prep_statement->fetchAll(PDO::FETCH_NAMED); unset ($prep_statement, $sql); +//styles + echo "\n"; + +//ticket attachment layer + echo "\n"; + //show the content echo "\n"; echo " \n"; @@ -230,6 +249,7 @@ echo "\n"; echo th_order_by('contact_type', $text['label-contact_type'], $order_by, $order); echo th_order_by('contact_organization', $text['label-contact_organization'], $order_by, $order); + echo "\n"; echo th_order_by('contact_name_given', $text['label-contact_name_given'], $order_by, $order); echo th_order_by('contact_name_family', $text['label-contact_name_family'], $order_by, $order); echo th_order_by('contact_nickname', $text['label-contact_nickname'], $order_by, $order); @@ -247,6 +267,11 @@ echo "\n"; echo " \n"; echo " \n"; + echo " \n"; echo " \n"; echo " \n"; echo " \n"; @@ -285,6 +310,17 @@ echo ""; +//javascript + echo "\n"; + //include the footer require_once "resources/footer.php";
 
".ucwords(escape($row['contact_type']))." ".escape($row['contact_organization'])." "; + if (is_uuid($row['contact_attachment_uuid'])) { + echo ""; + } + echo " ".escape($row['contact_name_given'])." ".escape($row['contact_name_family'])." ".escape($row['contact_nickname'])."