Copyright (c) 2006-2010 osTicket
http://www.osticket.com
Released under the GNU General Public License WITHOUT ANY WARRANTY.
See LICENSE.TXT for details.
vim: expandtab sw=4 ts=4 sts=4:
$Id: $
**********************************************************************/
require('staff.inc.php');
$nav->setTabActive('directory');
$nav->addSubMenu(array('desc'=>'Personal','href'=>'directory.php','iconclass'=>'staff'));
$WHERE=' WHERE isvisible=1 ';
$sql=' SELECT staff.staff_id,staff.dept_id, firstname,lastname,email,phone,phone_ext,mobile,dept_name,onvacation '.
' FROM '.STAFF_TABLE.' staff LEFT JOIN '.DEPT_TABLE.' USING(dept_id)';
if($_POST && $_POST['a']=='search') {
$searchTerm=$_POST['query'];
if($searchTerm){
$query=db_real_escape($searchTerm,false); //escape the term ONLY...no quotes.
if(is_numeric($searchTerm)){
$WHERE.=" AND staff.phone LIKE '%$query%'";
}elseif(strpos($searchTerm,'@') && Validator::is_email($searchTerm)){
$WHERE.=" AND staff.email='$query'";
}else{
$WHERE.=" AND ( staff.email LIKE '%$query%'".
" OR staff.lastname LIKE '%$query%'".
" OR staff.firstname LIKE '%$query%'".
' ) ';
}
}
if($_POST['dept'] && is_numeric($_POST['dept'])) {
$WHERE.=' AND staff.dept_id='.db_input($_POST['dept']);
}
}
$users=db_query("$sql $WHERE ORDER BY lastname,firstname");
//Render the page.
require_once(STAFFINC_DIR.'header.inc.php');
?>
Personal Mitarbeiter
| Name |
Abt. |
Email |
Tel |
Mobil |
| |
|
|
|
|
Probleme beim Anzeigen des Verzeichnisses";
endif;
include_once(STAFFINC_DIR.'footer.inc.php');
?>