Context Navigation

← Previous Changeset
Next Changeset →

Changeset 2895557

Timestamp:

04/07/2023 11:34:22 AM (3 years ago)

Author:

supportcandy

Message:

version 3.1.5

Location:

supportcandy

Files:

: 570 added
: 53 edited

tags/3.1.5 (added)
tags/3.1.5/asset (added)
tags/3.1.5/asset/css (added)
tags/3.1.5/asset/css/admin-rtl.css (added)
tags/3.1.5/asset/css/admin.css (added)
tags/3.1.5/asset/css/jquery-ui.css (added)
tags/3.1.5/asset/css/select2.css (added)
tags/3.1.5/asset/icons (added)
tags/3.1.5/asset/icons/align-left-solid.svg (added)
tags/3.1.5/asset/icons/arrow-left-solid.svg (added)
tags/3.1.5/asset/icons/arrow-right-solid.svg (added)
tags/3.1.5/asset/icons/balance-scale-left-solid.svg (added)
tags/3.1.5/asset/icons/bars-solid.svg (added)
tags/3.1.5/asset/icons/calendar-alt-regular.svg (added)
tags/3.1.5/asset/icons/calendar-times-solid.svg (added)
tags/3.1.5/asset/icons/check-solid.svg (added)
tags/3.1.5/asset/icons/chevron-circle-right-solid.svg (added)
tags/3.1.5/asset/icons/chevron-down-solid.svg (added)
tags/3.1.5/asset/icons/chevron-left-solid.svg (added)
tags/3.1.5/asset/icons/chevron-right-solid.svg (added)
tags/3.1.5/asset/icons/chevron-up-solid.svg (added)
tags/3.1.5/asset/icons/clipboard-regular.svg (added)
tags/3.1.5/asset/icons/clock-solid.svg (added)
tags/3.1.5/asset/icons/clone-regular.svg (added)
tags/3.1.5/asset/icons/cog-solid.svg (added)
tags/3.1.5/asset/icons/cogs-solid.svg (added)
tags/3.1.5/asset/icons/comment-alt-solid.svg (added)
tags/3.1.5/asset/icons/edit-solid.svg (added)
tags/3.1.5/asset/icons/envelope-regular.svg (added)
tags/3.1.5/asset/icons/file-alt-solid.svg (added)
tags/3.1.5/asset/icons/font-solid.svg (added)
tags/3.1.5/asset/icons/headset-solid.svg (added)
tags/3.1.5/asset/icons/history-solid.svg (added)
tags/3.1.5/asset/icons/id-card-solid.svg (added)
tags/3.1.5/asset/icons/info-circle-solid.svg (added)
tags/3.1.5/asset/icons/link-solid.svg (added)
tags/3.1.5/asset/icons/list-alt-solid.svg (added)
tags/3.1.5/asset/icons/location-arrow-solid.svg (added)
tags/3.1.5/asset/icons/log-out.svg (added)
tags/3.1.5/asset/icons/palette-solid.svg (added)
tags/3.1.5/asset/icons/plus-solid.svg (added)
tags/3.1.5/asset/icons/plus-square-solid.svg (added)
tags/3.1.5/asset/icons/reply-solid.svg (added)
tags/3.1.5/asset/icons/search-solid.svg (added)
tags/3.1.5/asset/icons/shopping-cart-solid.svg (added)
tags/3.1.5/asset/icons/sort-solid.svg (added)
tags/3.1.5/asset/icons/sync-solid.svg (added)
tags/3.1.5/asset/icons/tags-solid.svg (added)
tags/3.1.5/asset/icons/ticket-alt-solid.svg (added)
tags/3.1.5/asset/icons/times-circle-solid.svg (added)
tags/3.1.5/asset/icons/times-solid.svg (added)
tags/3.1.5/asset/icons/trash-alt-solid.svg (added)
tags/3.1.5/asset/icons/trash-restore-solid.svg (added)
tags/3.1.5/asset/icons/unlock-solid.svg (added)
tags/3.1.5/asset/icons/user-tag-solid.svg (added)
tags/3.1.5/asset/icons/user-tie-solid.svg (added)
tags/3.1.5/asset/icons/users-solid.svg (added)
tags/3.1.5/asset/icons/widget.svg (added)
tags/3.1.5/asset/images (added)
tags/3.1.5/asset/images/agentgroups.png (added)
tags/3.1.5/asset/images/assign-agent-rules.png (added)
tags/3.1.5/asset/images/automatic-close-tickets.png (added)
tags/3.1.5/asset/images/canned-reply.png (added)
tags/3.1.5/asset/images/edd.png (added)
tags/3.1.5/asset/images/email-piping.png (added)
tags/3.1.5/asset/images/export-tickets.png (added)
tags/3.1.5/asset/images/faq-integrations.png (added)
tags/3.1.5/asset/images/gravity-forms.png (added)
tags/3.1.5/asset/images/knowledgebase-integrations.png (added)
tags/3.1.5/asset/images/loader-white.gif (added)
tags/3.1.5/asset/images/loader.gif (added)
tags/3.1.5/asset/images/print-ticket.png (added)
tags/3.1.5/asset/images/private-credentials.png (added)
tags/3.1.5/asset/images/reports.png (added)
tags/3.1.5/asset/images/satisfaction-survey.png (added)
tags/3.1.5/asset/images/schedule-tickets.png (added)
tags/3.1.5/asset/images/sla.png (added)
tags/3.1.5/asset/images/slack.png (added)
tags/3.1.5/asset/images/timer.png (added)
tags/3.1.5/asset/images/usergroups.png (added)
tags/3.1.5/asset/images/woocommerce.png (added)
tags/3.1.5/asset/js (added)
tags/3.1.5/asset/js/admin.js (added)
tags/3.1.5/asset/js/selectWoo (added)
tags/3.1.5/asset/js/selectWoo/i18n (added)
tags/3.1.5/asset/js/selectWoo/i18n/af.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ar.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/az.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/bg.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/bs.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ca.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/cs.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/da.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/de_DE.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/dsb.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/el.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/en.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/es_ES.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/et.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/eu.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/fa.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/fi.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/fr_FR.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/gl.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/he_IL.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/hi.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/hr.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/hsb.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/hu.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/hy.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/id.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/is.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/it_IT.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ja.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/km.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ko.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/lt.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/lv.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/mk.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ms.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/nb.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/nl_NL.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/pl.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ps.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/pt_BR.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/pt_PT.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ro.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/ru_RU.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/sk.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/sl.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/sr-Cyrl.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/sr.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/sv.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/th.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/tr.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/uk.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/vi.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/zh_CN.js (added)
tags/3.1.5/asset/js/selectWoo/i18n/zh_TW.js (added)
tags/3.1.5/asset/js/selectWoo/selectWoo.full.min.js (added)
tags/3.1.5/asset/libs (added)
tags/3.1.5/asset/libs/DataTables (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2 (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap4.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap4.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap5.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bootstrap5.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bulma.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.bulma.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.dataTables.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.dataTables.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.foundation.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.foundation.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.jqueryui.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.jqueryui.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.semanticui.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/buttons.semanticui.min.css (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/common.scss (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/css/mixins.scss (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap4.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap4.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap5.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bootstrap5.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bulma.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.bulma.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.colVis.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.colVis.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.dataTables.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.dataTables.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.foundation.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.foundation.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.html5.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.html5.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.jqueryui.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.jqueryui.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.print.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.print.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.semanticui.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/buttons.semanticui.min.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/dataTables.buttons.js (added)
tags/3.1.5/asset/libs/DataTables/Buttons-2.2.2/js/dataTables.buttons.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5 (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap4.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap4.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap5.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bootstrap5.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bulma.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.bulma.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.dataTables.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.dataTables.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.foundation.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.foundation.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.jqueryui.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.jqueryui.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.semanticui.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/dataTables.semanticui.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/jquery.dataTables.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/css/jquery.dataTables.min.css (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images/sort_asc.png (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images/sort_asc_disabled.png (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images/sort_both.png (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images/sort_desc.png (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/images/sort_desc_disabled.png (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap4.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap4.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap5.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bootstrap5.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bulma.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.bulma.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.dataTables.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.dataTables.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.foundation.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.foundation.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.jqueryui.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.jqueryui.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.semanticui.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/dataTables.semanticui.min.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/jquery.dataTables.js (added)
tags/3.1.5/asset/libs/DataTables/DataTables-1.11.5/js/jquery.dataTables.min.js (added)
tags/3.1.5/asset/libs/DataTables/datatables.min.css (added)
tags/3.1.5/asset/libs/DataTables/datatables.min.js (added)
tags/3.1.5/asset/libs/flatpickr (added)
tags/3.1.5/asset/libs/flatpickr/LICENSE.md (added)
tags/3.1.5/asset/libs/flatpickr/flatpickr.js (added)
tags/3.1.5/asset/libs/flatpickr/flatpickr.min.css (added)
tags/3.1.5/asset/libs/fullcalendar (added)
tags/3.1.5/asset/libs/fullcalendar/LICENSE.txt (added)
tags/3.1.5/asset/libs/fullcalendar/README.md (added)
tags/3.1.5/asset/libs/fullcalendar/lib (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales-all.min.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/af.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-dz.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-kw.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-ly.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-ma.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-sa.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar-tn.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ar.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/az.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/bg.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/bn.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/bs.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ca.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/cs.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/cy.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/da.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/de-at.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/de.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/el.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/en-au.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/en-gb.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/en-nz.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/eo.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/es-us.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/es.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/et.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/eu.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/fa.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/fi.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/fr-ca.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/fr-ch.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/fr.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/gl.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/he.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/hi.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/hr.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/hu.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/hy-am.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/id.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/is.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/it.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ja.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ka.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/kk.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ko.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/lb.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/lt.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/lv.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/mk.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ms.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/nb.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ne.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/nl.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/nn.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/pl.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/pt-br.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/pt.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ro.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ru.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sk.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sl.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sq.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sr-cyrl.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sr.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/sv.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ta-in.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/th.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/tr.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/ug.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/uk.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/uz.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/vi.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/zh-cn.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/locales/zh-tw.js (added)
tags/3.1.5/asset/libs/fullcalendar/lib/main.min.css (added)
tags/3.1.5/asset/libs/fullcalendar/lib/main.min.js (added)
tags/3.1.5/asset/libs/gpopover (added)
tags/3.1.5/asset/libs/gpopover/LICENSE (added)
tags/3.1.5/asset/libs/gpopover/README.md (added)
tags/3.1.5/asset/libs/gpopover/jquery.gpopover.css (added)
tags/3.1.5/asset/libs/gpopover/jquery.gpopover.js (added)
tags/3.1.5/asset/libs/jquery-circle-progress (added)
tags/3.1.5/asset/libs/jquery-circle-progress/LICENSE (added)
tags/3.1.5/asset/libs/jquery-circle-progress/README.md (added)
tags/3.1.5/asset/libs/jquery-circle-progress/circle-progress.min.js (added)
tags/3.1.5/class-wpsc-installation.php (added)
tags/3.1.5/framework (added)
tags/3.1.5/framework/class-wpsc-framework.php (added)
tags/3.1.5/framework/index.php (added)
tags/3.1.5/framework/responsive (added)
tags/3.1.5/framework/responsive/lg.css (added)
tags/3.1.5/framework/responsive/md.css (added)
tags/3.1.5/framework/responsive/sm.css (added)
tags/3.1.5/framework/responsive/xs.css (added)
tags/3.1.5/framework/scripts.js (added)
tags/3.1.5/framework/style-rtl.css (added)
tags/3.1.5/framework/style.css (added)
tags/3.1.5/global-functions.php (added)
tags/3.1.5/i18n (added)
tags/3.1.5/i18n/index.php (added)
tags/3.1.5/i18n/supportcandy-ar.mo (added)
tags/3.1.5/i18n/supportcandy-ar.po (added)
tags/3.1.5/i18n/supportcandy-de_DE.mo (added)
tags/3.1.5/i18n/supportcandy-de_DE.po (added)
tags/3.1.5/i18n/supportcandy-el.mo (added)
tags/3.1.5/i18n/supportcandy-el.po (added)
tags/3.1.5/i18n/supportcandy-es_ES.mo (added)
tags/3.1.5/i18n/supportcandy-es_ES.po (added)
tags/3.1.5/i18n/supportcandy-fr_FR.mo (added)
tags/3.1.5/i18n/supportcandy-fr_FR.po (added)
tags/3.1.5/i18n/supportcandy-he_IL.mo (added)
tags/3.1.5/i18n/supportcandy-he_IL.po (added)
tags/3.1.5/i18n/supportcandy-it_IT.mo (added)
tags/3.1.5/i18n/supportcandy-it_IT.po (added)
tags/3.1.5/i18n/supportcandy-nl_NL.mo (added)
tags/3.1.5/i18n/supportcandy-nl_NL.po (added)
tags/3.1.5/i18n/supportcandy-pt_BR.mo (added)
tags/3.1.5/i18n/supportcandy-pt_BR.po (added)
tags/3.1.5/i18n/supportcandy-pt_PT.mo (added)
tags/3.1.5/i18n/supportcandy-pt_PT.po (added)
tags/3.1.5/i18n/supportcandy-ru_RU.mo (added)
tags/3.1.5/i18n/supportcandy-ru_RU.po (added)
tags/3.1.5/i18n/supportcandy-sv_SE.mo (added)
tags/3.1.5/i18n/supportcandy-sv_SE.po (added)
tags/3.1.5/i18n/supportcandy-tr_TR.mo (added)
tags/3.1.5/i18n/supportcandy-tr_TR.po (added)
tags/3.1.5/i18n/supportcandy-zh_CN.mo (added)
tags/3.1.5/i18n/supportcandy-zh_CN.po (added)
tags/3.1.5/i18n/supportcandy-zh_TW.mo (added)
tags/3.1.5/i18n/supportcandy-zh_TW.po (added)
tags/3.1.5/i18n/supportcandy.pot (added)
tags/3.1.5/includes (added)
tags/3.1.5/includes/EDD_SL_Plugin_Updater.php (added)
tags/3.1.5/includes/admin (added)
tags/3.1.5/includes/admin/agent-settings (added)
tags/3.1.5/includes/admin/agent-settings/class-wpsc-agent-leaves.php (added)
tags/3.1.5/includes/admin/agent-settings/class-wpsc-agent-roles.php (added)
tags/3.1.5/includes/admin/agent-settings/class-wpsc-agent-settings.php (added)
tags/3.1.5/includes/admin/agent-settings/class-wpsc-agent-working-hrs.php (added)
tags/3.1.5/includes/admin/agent-settings/class-wpsc-support-agents.php (added)
tags/3.1.5/includes/admin/class-wpsc-admin.php (added)
tags/3.1.5/includes/admin/custom-fields (added)
tags/3.1.5/includes/admin/custom-fields/class-wpsc-aof.php (added)
tags/3.1.5/includes/admin/custom-fields/class-wpsc-cf-settings.php (added)
tags/3.1.5/includes/admin/custom-fields/class-wpsc-cf.php (added)
tags/3.1.5/includes/admin/custom-fields/class-wpsc-tf.php (added)
tags/3.1.5/includes/admin/custom-fields/class-wpsc-tff.php (added)
tags/3.1.5/includes/admin/customers (added)
tags/3.1.5/includes/admin/customers/class-wpsc-customers.php (added)
tags/3.1.5/includes/admin/email-notifications (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-add-private-note.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-assign-agent.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-change-ticket-category.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-change-ticket-priority.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-change-ticket-status.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-create-ticket.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-delete-ticket.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-guest-login-otp.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-reply-ticket.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-settings-gs.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-settings-tn.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-settings.php (added)
tags/3.1.5/includes/admin/email-notifications/class-wpsc-en-user-reg-otp.php (added)
tags/3.1.5/includes/admin/index.php (added)
tags/3.1.5/includes/admin/misc (added)
tags/3.1.5/includes/admin/misc/class-wpsc-addons.php (added)
tags/3.1.5/includes/admin/misc/class-wpsc-license.php (added)
tags/3.1.5/includes/admin/misc/class-wpsc-option-controller.php (added)
tags/3.1.5/includes/admin/misc/class-wpsc-ticket-filter.php (added)
tags/3.1.5/includes/admin/settings (added)
tags/3.1.5/includes/admin/settings/appearence (added)
tags/3.1.5/includes/admin/settings/appearence/class-wpsc-appearence-general.php (added)
tags/3.1.5/includes/admin/settings/appearence/class-wpsc-appearence-indidual-ticket.php (added)
tags/3.1.5/includes/admin/settings/appearence/class-wpsc-appearence-modal-popup.php (added)
tags/3.1.5/includes/admin/settings/appearence/class-wpsc-appearence-settings.php (added)
tags/3.1.5/includes/admin/settings/appearence/class-wpsc-appearence-ticket-list.php (added)
tags/3.1.5/includes/admin/settings/class-wpsc-settings.php (added)
tags/3.1.5/includes/admin/settings/class-wpsc-ticket-categories.php (added)
tags/3.1.5/includes/admin/settings/class-wpsc-ticket-priorities.php (added)
tags/3.1.5/includes/admin/settings/class-wpsc-ticket-statuses.php (added)
tags/3.1.5/includes/admin/settings/class-wpsc-ticket-widgets.php (added)
tags/3.1.5/includes/admin/settings/general-settings (added)
tags/3.1.5/includes/admin/settings/general-settings/class-wpsc-gs-file-attachments.php (added)
tags/3.1.5/includes/admin/settings/general-settings/class-wpsc-gs-general.php (added)
tags/3.1.5/includes/admin/settings/general-settings/class-wpsc-gs-page-settings.php (added)
tags/3.1.5/includes/admin/settings/general-settings/class-wpsc-gs-thankyou-page-settings.php (added)
tags/3.1.5/includes/admin/settings/general-settings/class-wpsc-gs.php (added)
tags/3.1.5/includes/admin/settings/index.php (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings/class-wpsc-miscellaneous-settings.php (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings/class-wpsc-ms-advanced.php (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings/class-wpsc-ms-gdpr.php (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings/class-wpsc-ms-recaptcha.php (added)
tags/3.1.5/includes/admin/settings/miscellaneous-settings/class-wpsc-ms-tac.php (added)
tags/3.1.5/includes/admin/settings/text-editor-settings (added)
tags/3.1.5/includes/admin/settings/text-editor-settings/class-wpsc-te-advanced.php (added)
tags/3.1.5/includes/admin/settings/text-editor-settings/class-wpsc-te-agent.php (added)
tags/3.1.5/includes/admin/settings/text-editor-settings/class-wpsc-te-guest-user.php (added)
tags/3.1.5/includes/admin/settings/text-editor-settings/class-wpsc-te-registered-user.php (added)
tags/3.1.5/includes/admin/settings/text-editor-settings/class-wpsc-text-editor.php (added)
tags/3.1.5/includes/admin/settings/working-hrs (added)
tags/3.1.5/includes/admin/settings/working-hrs/class-wpsc-wh-settings.php (added)
tags/3.1.5/includes/admin/settings/working-hrs/class-wpsc-working-hrs.php (added)
tags/3.1.5/includes/admin/ticket-list (added)
tags/3.1.5/includes/admin/ticket-list/class-wpsc-agent-ticket-list-settings.php (added)
tags/3.1.5/includes/admin/ticket-list/class-wpsc-customer-ticket-list-settings.php (added)
tags/3.1.5/includes/admin/ticket-list/class-wpsc-ticket-list-more-settings.php (added)
tags/3.1.5/includes/admin/ticket-list/class-wpsc-ticket-list-settings.php (added)
tags/3.1.5/includes/admin/tickets (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-current-agent-profile.php (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-current-user-profile.php (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-individual-ticket.php (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-new-ticket.php (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-ticket-list.php (added)
tags/3.1.5/includes/admin/tickets/class-wpsc-tickets.php (added)
tags/3.1.5/includes/admin/tickets/index.php (added)
tags/3.1.5/includes/admin/tickets/widgets (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-additional-recipients.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-agentonly-fields.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-assigned-agents.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-biographical-info.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-change-status.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-raisedby.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-ticket-fields.php (added)
tags/3.1.5/includes/admin/tickets/widgets/class-wpsc-itw-ticket-info.php (added)
tags/3.1.5/includes/admin/tickets/widgets/index.php (added)
tags/3.1.5/includes/class-wpsc-cleaner.php (added)
tags/3.1.5/includes/class-wpsc-cron.php (added)
tags/3.1.5/includes/class-wpsc-current-user.php (added)
tags/3.1.5/includes/class-wpsc-email-notifications.php (added)
tags/3.1.5/includes/class-wpsc-functions.php (added)
tags/3.1.5/includes/class-wpsc-icons.php (added)
tags/3.1.5/includes/class-wpsc-logger.php (added)
tags/3.1.5/includes/class-wpsc-macros.php (added)
tags/3.1.5/includes/class-wpsc-rest-api.php (added)
tags/3.1.5/includes/class-wpsc-sc-upgrade.php (added)
tags/3.1.5/includes/class-wpsc-task-scheduler.php (added)
tags/3.1.5/includes/class-wpsc-ticket-conditions.php (added)
tags/3.1.5/includes/class-wpsc-translations.php (added)
tags/3.1.5/includes/custom-field-types (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-checkbox.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-date.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-datetime.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-email.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-file-attachment-multiple.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-file-attachment-single.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-html.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-multi-select.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-number.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-radio-button.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-single-select.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-text-field.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-textarea.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-time.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-cf-url.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-additional-recipients.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-agent-created.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-assigned-agent.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-browser.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-category.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-customer-email.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-customer-name.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-customer.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-date-closed.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-date-created.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-date-updated.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-description.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-id.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-ip-address.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-last-reply-by.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-last-reply-on.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-os.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-prev-assignee.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-priority.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-source.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-status.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-subject.php (added)
tags/3.1.5/includes/custom-field-types/class-wpsc-df-user-type.php (added)
tags/3.1.5/includes/custom-field-types/index.php (added)
tags/3.1.5/includes/frontend (added)
tags/3.1.5/includes/frontend/class-wpsc-frontend.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-five.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-four.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-one.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-six.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-three.php (added)
tags/3.1.5/includes/frontend/class-wpsc-shortcode-two.php (added)
tags/3.1.5/includes/index.php (added)
tags/3.1.5/includes/models (added)
tags/3.1.5/includes/models/class-wpsc-agent.php (added)
tags/3.1.5/includes/models/class-wpsc-attachment.php (added)
tags/3.1.5/includes/models/class-wpsc-background-email.php (added)
tags/3.1.5/includes/models/class-wpsc-category.php (added)
tags/3.1.5/includes/models/class-wpsc-custom-field.php (added)
tags/3.1.5/includes/models/class-wpsc-customer.php (added)
tags/3.1.5/includes/models/class-wpsc-email-otp.php (added)
tags/3.1.5/includes/models/class-wpsc-holiday.php (added)
tags/3.1.5/includes/models/class-wpsc-log.php (added)
tags/3.1.5/includes/models/class-wpsc-option.php (added)
tags/3.1.5/includes/models/class-wpsc-priority.php (added)
tags/3.1.5/includes/models/class-wpsc-scheduled-task.php (added)
tags/3.1.5/includes/models/class-wpsc-status.php (added)
tags/3.1.5/includes/models/class-wpsc-thread.php (added)
tags/3.1.5/includes/models/class-wpsc-ticket.php (added)
tags/3.1.5/includes/models/class-wpsc-wh-exception.php (added)
tags/3.1.5/includes/models/class-wpsc-working-hour.php (added)
tags/3.1.5/includes/models/index.php (added)
tags/3.1.5/includes/rest-api (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-agents.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-attachment.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-categories.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-current-user.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-custom-fields.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-customers.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-individual-ticket.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-priorities.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-sf-ratings.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-statuses.php (added)
tags/3.1.5/includes/rest-api/class-wpsc-rest-tickets.php (added)
tags/3.1.5/license.txt (added)
tags/3.1.5/readme.txt (added)
tags/3.1.5/supportcandy.php (added)
tags/3.1.5/upgrade (added)
tags/3.1.5/upgrade/class-wpsc-upgrade-db-v1.php (added)
tags/3.1.5/upgrade/class-wpsc-upgrade-db-v2.php (added)
tags/3.1.5/upgrade/functions.php (added)
trunk/asset/js/admin.js (modified) (8 diffs)
trunk/class-wpsc-installation.php (modified) (5 diffs)
trunk/framework/scripts.js (modified) (10 diffs)
trunk/framework/style-rtl.css (modified) (3 diffs)
trunk/framework/style.css (modified) (3 diffs)
trunk/includes/admin/custom-fields/class-wpsc-cf-settings.php (modified) (1 diff)
trunk/includes/admin/custom-fields/class-wpsc-tff.php (modified) (11 diffs)
trunk/includes/admin/email-notifications/class-wpsc-en-settings-tn.php (modified) (8 diffs)
trunk/includes/admin/ticket-list/class-wpsc-agent-ticket-list-settings.php (modified) (6 diffs)
trunk/includes/admin/ticket-list/class-wpsc-customer-ticket-list-settings.php (modified) (5 diffs)
trunk/includes/admin/ticket-list/class-wpsc-ticket-list-settings.php (modified) (2 diffs)
trunk/includes/admin/tickets/class-wpsc-new-ticket.php (modified) (1 diff)
trunk/includes/admin/tickets/class-wpsc-ticket-list.php (modified) (19 diffs)
trunk/includes/class-wpsc-current-user.php (modified) (3 diffs)
trunk/includes/class-wpsc-email-notifications.php (modified) (1 diff)
trunk/includes/class-wpsc-functions.php (modified) (1 diff)
trunk/includes/class-wpsc-sc-upgrade.php (modified) (2 diffs)
trunk/includes/class-wpsc-ticket-conditions.php (modified) (15 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-checkbox.php (modified) (4 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-date.php (modified) (6 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-datetime.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-email.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-multi-select.php (modified) (4 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-number.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-radio-button.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-single-select.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-text-field.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-textarea.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-time.php (modified) (4 diffs)
trunk/includes/custom-field-types/class-wpsc-cf-url.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-df-agent-created.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-assigned-agent.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-df-browser.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-category.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-customer.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-date-closed.php (modified) (4 diffs)
trunk/includes/custom-field-types/class-wpsc-df-date-created.php (modified) (5 diffs)
trunk/includes/custom-field-types/class-wpsc-df-date-updated.php (modified) (5 diffs)
trunk/includes/custom-field-types/class-wpsc-df-description.php (modified) (1 diff)
trunk/includes/custom-field-types/class-wpsc-df-id.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-last-reply-by.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-last-reply-on.php (modified) (5 diffs)
trunk/includes/custom-field-types/class-wpsc-df-os.php (modified) (3 diffs)
trunk/includes/custom-field-types/class-wpsc-df-prev-assignee.php (modified) (4 diffs)
trunk/includes/custom-field-types/class-wpsc-df-priority.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-source.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-status.php (modified) (2 diffs)
trunk/includes/custom-field-types/class-wpsc-df-subject.php (modified) (1 diff)
trunk/includes/custom-field-types/class-wpsc-df-user-type.php (modified) (2 diffs)
trunk/includes/models/class-wpsc-customer.php (modified) (2 diffs)
trunk/includes/models/class-wpsc-ticket.php (modified) (1 diff)
trunk/readme.txt (modified) (2 diffs)
trunk/supportcandy.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

supportcandy/trunk/asset/js/admin.js

-                      r2873748
+                      r2895557
     var dataform = new FormData( form );
+    var visibility = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            visibility[slug] = filter;
+        }
+    );
+    dataform.append( 'visibility', JSON.stringify( visibility ) );
+    dataform.append( 'visibility', JSON.stringify( wpsc_get_condition_json( 'visibility' ) ) );
     jQuery.ajax(
 …
     var dataform = new FormData( form );
+    var visibility = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            visibility[slug] = filter;
+        }
+    );
+    dataform.append( 'visibility', JSON.stringify( visibility ) );
+    dataform.append( 'visibility', JSON.stringify( wpsc_get_condition_json( 'visibility' ) ) );
     jQuery.ajax(
 …
+    }
+    var filters = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            filters[slug] = filter;
+        }
+    );
+    if (Object.keys( filters ).length === 0) {
+    var filters = wpsc_get_condition_json( 'default_filters' );
+    if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
 …
     var label = jQuery( '#wpsc-atl-df-label' ).val().trim();
     if ( ! label) {
+    if ( ! label ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
+    }
+    if (flag) {
+        var filters = {};
+        jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+            function () {
+                var slug = jQuery( this ).find( 'select.cf' ).first().val();
+                if ( ! slug) {
+                    return;
+                }
+                var operator = jQuery( this ).find( 'select.operator' ).first().val();
+                if ( ! operator) {
+                    return;
+                }
+                var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+                if ( ! operand_val_1) {
+                    return;
+                }
+                var filter = { operator, operand_val_1 };
+                if (operator === 'BETWEEN') {
+                    var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                    if ( ! operand_val_2) {
+                        return;
+                    }
+                    filter.operand_val_2 = operand_val_2;
+                }
+                filters[slug] = filter;
+            }
+        );
+        if (Object.keys( filters ).length === 0) {
+    var form     = jQuery( '.wpsc-frm-edit-atl-default-filter' )[0];
+    var dataform = new FormData( form );
+    if ( flag ) {
+        var filters = wpsc_get_condition_json( 'default_filters' );
+        if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
             alert( supportcandy.translations.req_fields_missing );
             return;
+        }
+    }
+    jQuery( '.wpsc-modal-footer button' ).attr( 'disabled', true );
+    jQuery( el ).text( supportcandy.translations.please_wait );
+    var form     = jQuery( '.wpsc-frm-edit-atl-default-filter' )[0];
+    var dataform = new FormData( form );
+    dataform.append( 'filters', JSON.stringify( filters ) );
+        dataform.append( 'filters', JSON.stringify( filters ) );
+    }
+    jQuery( '.wpsc-modal-footer button' ).attr( 'disabled', true );
+    jQuery( el ).text( supportcandy.translations.please_wait );
     jQuery.ajax(
 …
+    }
+    var filters = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            filters[slug] = filter;
+        }
+    );
+    if (Object.keys( filters ).length === 0) {
+    var filters = wpsc_get_condition_json( 'default_filters' );
+    if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
 …
+    }
+    if (flag) {
+        var filters = {};
+        jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+            function () {
+                var slug = jQuery( this ).find( 'select.cf' ).first().val();
+                if ( ! slug) {
+                    return;
+                }
+                var operator = jQuery( this ).find( 'select.operator' ).first().val();
+                if ( ! operator) {
+                    return;
+                }
+                var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+                if ( ! operand_val_1) {
+                    return;
+                }
+                var filter = { operator, operand_val_1 };
+                if (operator === 'BETWEEN') {
+                    var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                    if ( ! operand_val_2) {
+                        return;
+                    }
+                    filter.operand_val_2 = operand_val_2;
+                }
+                filters[slug] = filter;
+            }
+        );
+        if (Object.keys( filters ).length === 0) {
+    var form = jQuery( '.wpsc-frm-edit-ctl-default-filter' )[0];
+    var dataform = new FormData( form );
+    if ( flag ) {
+        var filters = wpsc_get_condition_json( 'default_filters' );
+        if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
             alert( supportcandy.translations.req_fields_missing );
             return;
+        }
+    }
+    jQuery( '.wpsc-modal-footer button' ).attr( 'disabled', true );
+    jQuery( el ).text( supportcandy.translations.please_wait );
+    var form     = jQuery( '.wpsc-frm-edit-ctl-default-filter' )[0];
+    var dataform = new FormData( form );
+    dataform.append( 'filters', JSON.stringify( filters ) );
+        dataform.append( 'filters', JSON.stringify( filters ) );
+    }
+    jQuery( '.wpsc-modal-footer button' ).attr( 'disabled', true );
+    jQuery( el ).text( supportcandy.translations.please_wait );
     jQuery.ajax(
 …
 /**
- * Get form filter oprators
- */
-function wpsc_tc_get_operators(el, nonce) {
-    var content = jQuery( el ).closest( '.content' );
-    var slug    = jQuery( el ).val().trim();
-    content.find( '.conditional, .wpsc-inline-loader' ).remove();
-    if ( ! slug) {
-        return;
+    }
-    content.append( supportcandy.inline_loader );
-    var data = {
-        action: 'wpsc_tc_get_operators',
-        slug: slug,
-        _ajax_nonce: nonce
-    };
-    jQuery.post(
-        supportcandy.ajax_url,
-        data,
-        function (response) {
-            content.find( '.wpsc-inline-loader' ).remove();
-            content.append( response );
+        }
-    );
+}
-/**
- * Get email notification condition operands
- */
-function wpsc_tc_get_operand(el, slug, nonce) {
-    var content  = jQuery( el ).closest( '.content' );
-    var operator = jQuery( el ).val().trim();
-    content.find( '.conditional.operand, .wpsc-inline-loader' ).remove();
-    if ( ! operator) {
-        return;
+    }
-    content.append( supportcandy.inline_loader );
-    var data = {
-        action: 'wpsc_tc_get_operand',
-        operator,
-        slug,
-        _ajax_nonce: nonce
-    };
-    jQuery.post(
-        supportcandy.ajax_url,
-        data,
-        function (response) {
-            content.find( '.wpsc-inline-loader' ).remove();
-            content.append( response );
+        }
-    );
+}
-/**
  * Get edit email notification
+ *
 …
+    }
+    var conditions = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            conditions[slug] = filter;
+        }
+    );
+    dataform.append( 'conditions', JSON.stringify( conditions ) );
+    dataform.append( 'conditions', JSON.stringify( wpsc_get_condition_json( 'conditions' ) ) );
     jQuery( '.wpsc-setting-section-body' ).html( supportcandy.loader_html );

supportcandy/trunk/class-wpsc-installation.php

-                      r2887316
+                      r2895557
                             'custom'             => array(),
                         ),
-                        'relation'   => 'AND',
                         'conditions' => '',
                     ),
 …
                             'custom'             => array(),
                         ),
-                        'relation'   => 'AND',
                         'conditions' => '',
                     ),
 …
                             'custom'             => array(),
                         ),
-                        'relation'   => 'AND',
                         'conditions' => '',
                     ),
 …
                             'custom'             => array(),
                         ),
+                        'relation'   => 'OR',
+                        'conditions' => '{"cf_status":{"operator":"=","operand_val_1":"4"}}',
+                        'conditions' => '[[{"slug":"status","operator":"=","operand_val_1":"4"}]]',
                     ),
+                )
 …
+            }
+            if ( version_compare( self::$current_version, '3.1.5', '<' ) ) {
+                // scheduled task for setting conditions upgrade.
+                $wpdb->insert(
+                    $wpdb->prefix . 'psmsc_scheduled_tasks',
+                    array(
+                        'class'     => 'WPSC_SC_Upgrade',
+                        'method'    => 'upgrade_setting_conditions',
+                        'is_manual' => 0,
+                    )
+                );
+                // scheduled task for saved filter conditions upgrade.
+                $wpdb->insert(
+                    $wpdb->prefix . 'psmsc_scheduled_tasks',
+                    array(
+                        'class'             => 'WPSC_SC_Upgrade',
+                        'method'            => 'upgrade_saved_filter_conditions',
+                        'is_manual'         => 1,
+                        'warning_text'      => 'SupportCandy - Filters database upgrade needed.',
+                        'warning_link_text' => 'Upgrade Now',
+                        'progressbar_text'  => 'Upgrading filters...',
+                    )
+                );
+            }
             self::set_upgrade_complete();
+        }

supportcandy/trunk/framework/scripts.js

-                      r2873748
+                      r2895557
 /**
+ * Remove form filter item
+ */
+function wpsc_remove_form_filter_item(el) {
+ * Add and condition item
+ * @param {*} el
+ * @param {*} uniqueId
+ */
+function wpsc_add_and_condition( el, uniqueId ) {
+    var container = jQuery( el ).closest( '.wpsc-form-filter-container' ).find( '.and-container' );
+    container.append( jQuery( '.and-template.' + uniqueId ).html() );
+    container = container.find( '.and-item:last-child .or-container' );
+    container.append( jQuery( '.or-template.' + uniqueId ).html() );
+    container.find( 'select' ).selectWoo();
+}
+/**
+ * Add and condition item
+ * @param {*} el
+ * @param {*} uniqueId
+ */
+function wpsc_add_or_condition( el, uniqueId ) {
+    var container = jQuery( el ).closest( '.and-item' ).find( '.or-container' );
+    container.append( jQuery( '.or-template.' + uniqueId ).html() );
+    container.find(':last-child').find('select').selectWoo();
+}
+/**
+ * Remove condition item
+ * @param {*} el
+ */
+function wpsc_remove_condition_item( el ) {
+    var andItem = jQuery( el ).closest( '.and-item' );
     jQuery( el ).closest( '.wpsc-form-filter-item' ).remove();
+}
+/**
+ * Add form filter item
+ */
+function wpsc_add_form_filter_item() {
+    jQuery( '.wpsc-form-filter-container' ).append( jQuery( '.wpsc-form-filter-snippet' ).html() );
+    jQuery( '.wpsc-form-filter-container' ).last().find( '.cf' ).selectWoo();
+    if ( andItem.find( '.or-container' ).children().length === 0 ) {
+        jQuery( andItem ).remove();
+    }
+}
+/**
+ * Get JSON string for the condition input of given name
+ * @param {*} name
+ */
+function wpsc_get_condition_json( name ) {
+    var conditions = [];
+    jQuery( '.wpsc-form-filter-container.' + name + ' .and-item' ).each(
+        function () {
+            var andCondition = [];
+            jQuery( this ).find( '.wpsc-form-filter-item' ).each(
+                function () {
+                    var slug = jQuery( this ).find( 'select.filter' ).first().val();
+                    if ( ! slug) {
+                        return;
+                    }
+                    var operator = jQuery( this ).find( 'select.operator' ).first().val();
+                    if ( ! operator) {
+                        return;
+                    }
+                    var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+                    if ( ! operand_val_1) {
+                        return;
+                    }
+                    var filter = { slug, operator, operand_val_1 };
+                    if (operator === 'BETWEEN') {
+                        var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                        if ( ! operand_val_2) {
+                            return;
+                        }
+                        filter.operand_val_2 = operand_val_2;
+                    }
+                    andCondition.push( filter );
+                }
+            );
+            conditions.push( andCondition );
+        }
+    );
+    return conditions;
+}
 …
  */
 function wpsc_tl_get_custom_filter() {
     wpsc_show_modal();
     var data = {
 …
         _ajax_nonce: supportcandy.nonce
     };
     if (supportcandy.ticketList.filters.filterSlug == 'custom') {
+    if ( supportcandy.ticketList.filters.filterSlug == 'custom' ) {
         data.filters = supportcandy.ticketList.filters;
+    }
 …
 function wpsc_tl_apply_custom_filter(el) {
+    var filters = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            filters[slug] = filter;
+        }
+    );
+    if (Object.keys( filters ).length === 0) {
+    var filters = wpsc_get_condition_json( 'custom_filters' );
+    if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
 …
 function wpsc_tl_edit_filter() {
     if (supportcandy.ticketList.filters.filterSlug == 'custom') {
+    if ( supportcandy.ticketList.filters.filterSlug == 'custom' ) {
         wpsc_tl_get_custom_filter();
     } else {
 …
 function wpsc_tl_add_saved_filter() {
+    var filters = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            filters[slug] = filter;
+        }
+    );
+    if (Object.keys( filters ).length === 0) {
+    var filters = wpsc_get_condition_json( 'custom_filters' );
+    if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
 …
+    }
+    var filters = {};
+    jQuery( '.wpsc-form-filter-container .wpsc-form-filter-item' ).each(
+        function () {
+            var slug = jQuery( this ).find( 'select.cf' ).first().val();
+            if ( ! slug) {
+                return;
+            }
+            var operator = jQuery( this ).find( 'select.operator' ).first().val();
+            if ( ! operator) {
+                return;
+            }
+            var operand_val_1 = jQuery( this ).find( '.operand_val_1' ).first().val();
+            if ( ! operand_val_1) {
+                return;
+            }
+            var filter = { operator, operand_val_1 };
+            if (operator === 'BETWEEN') {
+                var operand_val_2 = jQuery( this ).find( '.operand_val_2' ).first().val();
+                if ( ! operand_val_2) {
+                    return;
+                }
+                filter.operand_val_2 = operand_val_2;
+            }
+            filters[slug] = filter;
+        }
+    );
+    if (Object.keys( filters ).length === 0) {
+    var filters = wpsc_get_condition_json( 'custom_filters' );
+    if ( filters.length === 0 || ( filters.length === 1 && filters[0].length === 0 )  ) {
         alert( supportcandy.translations.req_fields_missing );
         return;
 …
     ).done(
         function (res) {
-            supportcandy.ticketList.filters = { filterSlug: supportcandy.ticketList.filters.filterSlug };
             wpsc_close_modal();
             wpsc_get_ticket_list();
 …
     jQuery( 'select.wpsc-input-filter' ).val( supportcandy.prevFilter );
     wpsc_close_modal();
+}
+/**
+ * Get form filter oprators
+ */
+function wpsc_tc_get_operators(el, nonce) {
+    var content = jQuery( el ).closest( '.content' );
+    var slug    = jQuery( el ).val().trim();
+    content.find( '.conditional, .wpsc-inline-loader' ).remove();
+    if ( ! slug) {
+        return;
+    }
+    content.append( supportcandy.inline_loader );
+    var data = {
+        action: 'wpsc_tc_get_operators',
+        slug: slug,
+        _ajax_nonce: nonce
+    };
+    jQuery.post(
+        supportcandy.ajax_url,
+        data,
+        function (response) {
+            content.find( '.wpsc-inline-loader' ).remove();
+            content.append( response );
+        }
+    );
+}
+/**
+ * Get email notification condition operands
+ */
+function wpsc_tc_get_operand(el, slug, nonce) {
+    var content  = jQuery( el ).closest( '.content' );
+    var operator = jQuery( el ).val().trim();
+    content.find( '.conditional.operand, .wpsc-inline-loader' ).remove();
+    if ( ! operator) {
+        return;
+    }
+    content.append( supportcandy.inline_loader );
+    var data = {
+        action: 'wpsc_tc_get_operand',
+        operator,
+        slug,
+        _ajax_nonce: nonce
+    };
+    jQuery.post(
+        supportcandy.ajax_url,
+        data,
+        function (response) {
+            content.find( '.wpsc-inline-loader' ).remove();
+            content.append( response );
+        }
+    );
+}
 …
                 pagination: response.pagination
             };
-            if (typeof supportcandy.ticketList.filters.filters != 'undefined') {
-                supportcandy.ticketList.filters.filters = JSON.stringify( supportcandy.ticketList.filters.filters );
+            }
+        }
     );

supportcandy/trunk/framework/style-rtl.css

-                      r2887316
+                      r2895557
     display: flex;
     flex-direction: column;
+    flex-wrap: wrap;
+    margin-bottom: 15px;
+    padding-bottom: 15px;
     box-sizing: border-box;
+}
 …
 /* Form Filter */
+.wpsc-form-filter-container {
+    width: 100%;
+.wpsc-form-filter-container,
+.wpsc-form-filter-container .and-item {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    gap: 15px;
+    border: 1px dashed #000;
+    border-radius: 5px;
+    padding: 15px;
+    box-sizing: border-box;
+}
+.wpsc-form-filter-container .and-container,
+.wpsc-form-filter-container .or-container {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+}
+.wpsc-form-filter-container .and-container {
+    gap: 15px;
+}
+.wpsc-form-filter-container .or-container {
+    gap: 5px;
+}
+.wpsc-form-filter-container button {
+    width: fit-content;
+}
 .wpsc-form-filter-item {
 …
 .wpsc-button.small {
     font-size: 12px !important;
-    min-height: 30px !important;
+}
 .wpsc-button.normal {

supportcandy/trunk/framework/style.css

-                      r2887316
+                      r2895557
     display: flex;
     flex-direction: column;
+    flex-wrap: wrap;
+    margin-bottom: 15px;
+    padding-bottom: 15px;
     box-sizing: border-box;
+}
 …
 /* Form Filter */
+.wpsc-form-filter-container {
+    width: 100%;
+.wpsc-form-filter-container,
+.wpsc-form-filter-container .and-item {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    gap: 15px;
+    border: 1px dashed #000;
+    border-radius: 5px;
+    padding: 15px;
+    box-sizing: border-box;
+}
+.wpsc-form-filter-container .and-container,
+.wpsc-form-filter-container .or-container {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+}
+.wpsc-form-filter-container .and-container {
+    gap: 15px;
+}
+.wpsc-form-filter-container .or-container {
+    gap: 5px;
+}
+.wpsc-form-filter-container button {
+    width: fit-content;
+}
 .wpsc-form-filter-item {
 …
 .wpsc-button.small {
     font-size: 12px !important;
-    min-height: 30px !important;
+}
 .wpsc-button.normal {

supportcandy/trunk/includes/admin/custom-fields/class-wpsc-cf-settings.php

-                      r2793251
+                      r2895557
                 array(
+                    'ticket-form'                       => array( 'ticket', 'customer' ),
+                    'ticket-list'                       => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-filter'                     => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-form-visibility-conditions' => array( 'ticket', 'customer' ),
+                    'ticket-en-notification-conditions' => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-macro'                      => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-form'   => array( 'ticket', 'customer' ),
+                    'ticket-list'   => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-filter' => array( 'ticket', 'customer', 'agentonly' ),
+                    'ticket-macro'  => array( 'ticket', 'customer', 'agentonly' ),
+                )
             );

supportcandy/trunk/includes/admin/custom-fields/class-wpsc-tff.php

-                      r2822852
+                      r2895557
             // Remove if custom field deleted.
             add_action( 'wpsc_delete_custom_field', array( __CLASS__, 'delete_custom_field' ), 10, 1 );
+            // visibility conditions filter.
+            add_filter( 'wpsc_visibility_conditions', array( __CLASS__, 'visibility_conditions' ) );
+        }
 …
                 </div>
                 <?php do_action( 'wpsc_get_add_new_tff', $unique_id ); ?>
+                <div class="wpsc-input-group">
+                    <div class="label-container">
+                        <label for="">
+                            <?php esc_attr_e( 'Visibility conditions', 'supportcandy' ); ?>
+                        </label>
+                    </div>
+                    <select name="relation" id="relation" style="width: fit-content; margin: 10px 0px;">
+                        <option value="AND"><?php esc_attr_e( 'AND', 'supportcandy' ); ?></option>
+                        <option value="OR"><?php esc_attr_e( 'OR', 'supportcandy' ); ?></option>
+                    </select>
+                    <div class="wpsc-form-filter-container"></div>
+                    <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                        <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                    </button>
+                </div>
+                <?php WPSC_Ticket_Conditions::print( 'visibility', 'wpsc_visibility_conditions', '', false, __( 'Visibility conditions', 'supportcandy' ) ); ?>
                 <input type="hidden" name="action" value="wpsc_set_add_new_tff">
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_add_new_tff' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) {
-                                    if (
-                                        class_exists( $cf->type ) &&
-                                        in_array( $cf->field, WPSC_CF_Settings::$allowed_modules['ticket-form-visibility-conditions'] ) &&
-                                        $cf->type::$is_visibility_conditions ) {
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
+                                    }
+                                }
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
             $is_required = isset( $_POST['is-required'] ) ? intval( $_POST['is-required'] ) : 1;
             $width       = isset( $_POST['width'] ) ? sanitize_text_field( wp_unslash( $_POST['width'] ) ) : 'full';
-            $relation    = isset( $_POST['relation'] ) ? sanitize_text_field( wp_unslash( $_POST['relation'] ) ) : 'AND';
-            $visibility  = isset( $_POST['visibility'] ) ? sanitize_text_field( wp_unslash( $_POST['visibility'] ) ) : '';
             $load_after  = isset( $_POST['load-after'] ) ? sanitize_text_field( wp_unslash( $_POST['load-after'] ) ) : '__END__';
+            $visibility = isset( $_POST['visibility'] ) ? sanitize_text_field( wp_unslash( $_POST['visibility'] ) ) : '';
+            if ( ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_visibility_conditions', $visibility ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }
             $field = apply_filters(
 …
                     'is-required' => $is_required,
                     'width'       => $width,
-                    'relation'    => $relation,
                     'visibility'  => $visibility,
                 ),
 …
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            }
-            $custom_fields = WPSC_Custom_Field::find(
-                array(
-                    'items_per_page' => 0,
-                    'meta_query'     => array(
-                        'relation' => 'AND',
-                        array(
-                            'slug'    => 'field',
-                            'compare' => 'IN',
-                            'val'     => array( 'customer', 'ticket' ),
-                        ),
-                    ),
+                )
-            )['results'];
             $tff = get_option( 'wpsc-tff', array() );
 …
                 do_action( 'wpsc_get_edit_tff', $field, $cf );
+                if ( ! ( $cf->slug == 'name' || $cf->slug == 'email' ) ) :
+                    ?>
+                    <div class="wpsc-input-group">
+                        <div class="label-container">
+                            <label for="">
+                                <?php esc_attr_e( 'Visibility conditions', 'supportcandy' ); ?>
+                            </label>
+                        </div>
+                        <select name="relation" id="relation" style="width: fit-content; margin: 10px 0px;">
+                            <option <?php selected( $field['relation'], 'AND' ); ?> value="AND"><?php esc_attr_e( 'AND', 'supportcandy' ); ?></option>
+                            <option <?php selected( $field['relation'], 'OR' ); ?> value="OR"><?php esc_attr_e( 'OR', 'supportcandy' ); ?></option>
+                        </select>
+                        <div class="wpsc-form-filter-container">
+                            <?php
+                            $visibility = self::get_visibility( $field, true );
+                            foreach ( $visibility as $slug => $filter ) :
+                                $cff = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                                if ( ! $cff ) {
+                                    continue;
+                                }
+                                ?>
+                                <div class="wpsc-form-filter-item">
+                                    <div class="content">
+                                        <div class="item">
+                                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
+                                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                                <?php
+                                                foreach ( $custom_fields as $cfield ) {
+                                                    if ( ! (
+                                                        class_exists( $cfield->type ) &&
+                                                        in_array( $cfield->field, WPSC_CF_Settings::$allowed_modules['ticket-form-visibility-conditions'] ) &&
+                                                        $cfield->type::$is_visibility_conditions
+                                                    ) ) {
+                                                        continue;
+                                                    }
+                                                    $name = WPSC_Translations::get( 'wpsc-cf-name-' . $cfield->id, stripslashes( $cfield->name ) );
+                                                    ?>
+                                                    <option value="<?php echo esc_attr( $cfield->slug ); ?>" <?php selected( $slug, $cfield->slug ); ?>><?php echo esc_attr( $name ); ?></option>
+                                                    <?php
+                                                }
+                                                ?>
+                                            </select>
+                                            <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                                        </div>
+                                        <?php
+                                        $cff->type::get_operators( $cff, $filter );
+                                        $cff->type::get_operands( $filter['operator'], $cff, $filter );
+                                        ?>
+                                    </div>
+                                    <div class="remove-container">
+                                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                    </div>
+                                </div>
+                                <?php
+                            endforeach
+                            ?>
+                        </div>
+                        <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                            <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                        </button>
+                    </div>
+                    <?php
+                endif;
+                if ( ! ( $cf->slug == 'name' || $cf->slug == 'email' ) ) {
+                    WPSC_Ticket_Conditions::print( 'visibility', 'wpsc_visibility_conditions', $field['visibility'], false, __( 'Visibility conditions', 'supportcandy' ) );
+                }
                 ?>
                 <input type="hidden" name="id" value="<?php echo esc_attr( $cf->id ); ?>">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_edit_tff' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                    <?php
-                                    foreach ( $custom_fields as $cf ) :
-                                        if (
-                                            class_exists( $cf->type ) &&
-                                            in_array( $cf->field, WPSC_CF_Settings::$allowed_modules['ticket-form-visibility-conditions'] ) &&
-                                            $cf->type::$is_visibility_conditions ) :
-                                            ?>
-                                            <option value="<?php echo esc_attr( $cf->slug ); ?>">
-                                                <?php
-                                                echo esc_attr( $cf->name ) ? esc_attr( WPSC_Translations::get( 'wpsc-cf-name-' . $cf->id, esc_attr( $cf->name ) ) ) : esc_attr( $cf->name );
-                                                ?>
-                                            </option>
-                                            <?php
-                                        endif;
-                                    endforeach;
-                                    ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
+            }
+            $visibility = isset( $_POST['visibility'] ) ? sanitize_text_field( wp_unslash( $_POST['visibility'] ) ) : '';
+            if ( ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_visibility_conditions', $visibility ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }
             // unset from tff so that load after should work.
             unset( $tff[ $cf->slug ] );
 …
                     'is-required' => isset( $_POST['is-required'] ) ? intval( $_POST['is-required'] ) : 1,
                     'width'       => isset( $_POST['width'] ) ? sanitize_text_field( wp_unslash( $_POST['width'] ) ) : 'full',
+                    'relation'    => isset( $_POST['relation'] ) ? sanitize_text_field( wp_unslash( $_POST['relation'] ) ) : 'AND',
+                    'visibility'  => isset( $_POST['visibility'] ) ? sanitize_text_field( wp_unslash( $_POST['visibility'] ) ) : '',
+                    'visibility'  => $visibility,
                 ),
                 $cf
 …
         public static function get_visibility( $tff, $is_array = false ) {
             $visibility = html_entity_decode( $tff['visibility'] );
+            $visibility = $tff['visibility'] ? html_entity_decode( $tff['visibility'] ) : '';
             if ( $is_array ) {
                 return $visibility ? json_decode( $visibility, true ) : array();
 …
+            }
+        }
+        /**
+         * Filter conditions for visibility
+         *
+         * @param array $conditions - conditions to filter.
+         * @return array
+         */
+        public static function visibility_conditions( $conditions ) {
+            foreach ( $conditions as $slug => $item ) {
+                if ( $item['type'] == 'cf' ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                    if (
+                        ! $cf->type::$is_visibility_conditions ||
+                        ! in_array( $cf->field, array( 'ticket', 'customer' ) )
+                    ) {
+                        unset( $conditions[ $slug ] );
+                    }
+                } else { // not custom field type.
+                    unset( $conditions[ $slug ] );
+                }
+            }
+            return $conditions;
+        }
+    }
 endif;

supportcandy/trunk/includes/admin/email-notifications/class-wpsc-en-settings-tn.php

-                      r2822852
+                      r2895557
         /**
-         * Ignore ticket custom field types for email notifications
+         *
-         * @var array
-         */
-        public static $ignore_cft = array();
-        /**
          * Ignore current user recipient from these events
+         *
 …
             // clone.
             add_action( 'wp_ajax_wpsc_en_clone_ticket_notification', array( __CLASS__, 'clone_ticket_notification' ) );
+            // filter conditions.
+            add_filter( 'wpsc_en_conditions', array( __CLASS__, 'filter_conditions' ) );
+        }
 …
          */
         public static function load_ignore_list() {
-            self::$ignore_cft = apply_filters(
-                'wpsc_ignore_email_notification_conditions',
-                array(
-                    'df_last_reply_on',
-                    'df_last_reply_by',
+                )
-            );
             self::$ignore_current_user = apply_filters(
 …
                     'custom'             => array(),
                 ),
-                'relation'   => 'AND',
                 'conditions' => '',
             );
 …
                 </div>
                 <?php WPSC_Ticket_Conditions::print_condition_input( $et['relation'], $et['conditions'], self::$ignore_cft ); ?>
                 <?php do_action( 'wpsc_get_add_ticket_notification' ); ?>
+                <?php WPSC_Ticket_Conditions::print( 'conditions', 'wpsc_en_conditions', $et['conditions'] ); ?>
+                <?php do_action( 'wpsc_get_edit_ticket_notification', $et ); ?>
                 <input type="hidden" name="action" value="wpsc_en_set_edit_ticket_notification">
                 <input type="hidden" name="template_id" value="<?php echo esc_attr( $template_id ); ?>">
 …
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <?php WPSC_Ticket_Conditions::print_add_new_snippet( self::$ignore_cft ); ?>
-            </div>
             <div class="setting-footer-actions">
 …
             );
-            // relation.
-            $relation       = isset( $_POST['relation'] ) ? sanitize_text_field( wp_unslash( $_POST['relation'] ) ) : 'AND';
-            $et['relation'] = $relation;
             // conditions.
+            $conditions       = isset( $_POST['conditions'] ) ? sanitize_text_field( wp_unslash( $_POST['conditions'] ) ) : '';
+            $conditions = isset( $_POST['conditions'] ) ? sanitize_text_field( wp_unslash( $_POST['conditions'] ) ) : '';
+            if ( ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_en_conditions', $conditions ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }
             $et['conditions'] = $conditions;
 …
             wp_die();
+        }
+        /**
+         * Filter conditions for email templates
+         *
+         * @param array $conditions - all possible ticket conditions.
+         * @return array
+         */
+        public static function filter_conditions( $conditions ) {
+            $ignore_list = apply_filters(
+                'wpsc_en_conditions_ignore_list',
+                array(
+                    'cft'   => array( 'df_last_reply_by', 'df_last_reply_on', 'cf_woo_order', 'cf_edd_order' ), // custom field types.
+                    'other' => array(), // other(custom) condition slug.
+                )
+            );
+            foreach ( $conditions as $slug => $item ) {
+                if ( $item['type'] == 'cf' ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                    if ( in_array( $cf->type::$slug, $ignore_list['cft'] ) ) {
+                        unset( $conditions[ $slug ] );
+                    }
+                } else {
+                    if ( in_array( $slug, $ignore_list['other'] ) ) {
+                        unset( $conditions[ $slug ] );
+                    }
+                }
+            }
+            return $conditions;
+        }
+    }
 endif;

supportcandy/trunk/includes/admin/ticket-list/class-wpsc-agent-ticket-list-settings.php

-                      r2822852
+                      r2895557
                     </select>
                 </div>
+                <div class="wpsc-input-group">
+                    <div class="label-container">
+                        <label for="">
+                            <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                            <span class="required-char">*</span>
+                        </label>
+                    </div>
+                    <div class="wpsc-form-filter-container"></div>
+                    <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                        <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                    </button>
+                </div>
+                <?php WPSC_Ticket_Conditions::print( 'default_filters', 'wpsc_default_filter_conditions', '', true, __( 'Filters', 'supportcandy' ) ); ?>
                 <div class="wpsc-input-group">
                     <div class="label-container">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_add_atl_default_filter' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) {
-                                    if ( $cf->type::$is_filter ) {
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
+                                    }
+                                }
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
             $filters = isset( $_POST['filters'] ) ? sanitize_text_field( wp_unslash( $_POST['filters'] ) ) : '';
             if ( ! $filters ) {
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            if ( ! $filters || $filters == '[]' || ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_default_filter_conditions', $filters ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }
 …
                         </select>
                     </div>
+                    <div class="wpsc-input-group">
+                        <div class="label-container">
+                            <label for="">
+                                <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                                <span class="required-char">*</span>
+                            </label>
+                        </div>
+                        <div class="wpsc-form-filter-container">
+                            <?php
+                            $filters = json_decode( html_entity_decode( $atl_filter['filters'] ), true );
+                            if ( ! $filters ) {
+                                $filters = array();
+                            }
+                            foreach ( $filters as $slug => $filter ) :
+                                $cff = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                                if ( ! $cff ) {
+                                    continue;
+                                }
+                                ?>
+                                <div class="wpsc-form-filter-item">
+                                    <div class="content">
+                                        <div class="item">
+                                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
+                                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                                <?php
+                                                foreach ( $custom_fields as $cfield ) :
+                                                    if ( $cfield->type::$is_filter ) :
+                                                        $selected = $slug == $cfield->slug ? 'selected="selected"' : ''
+                                                        ?>
+                                                        <option value="<?php echo esc_attr( $cfield->slug ); ?>" <?php echo esc_attr( $selected ); ?>><?php echo esc_attr( $cfield->name ); ?></option>
+                                                        <?php
+                                                    endif;
+                                                endforeach;
+                                                ?>
+                                            </select>
+                                            <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                                        </div>
+                                        <?php
+                                        $cff->type::get_operators( $cff, $filter );
+                                        $cff->type::get_operands( $filter['operator'], $cff, $filter );
+                                        ?>
+                                    </div>
+                                    <div class="remove-container">
+                                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                    </div>
+                                </div>
+                                <?php
+                            endforeach
+                            ?>
+                        </div>
+                        <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                            <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                        </button>
+                    </div>
+                    <?php WPSC_Ticket_Conditions::print( 'default_filters', 'wpsc_default_filter_conditions', $atl_filter['filters'], true, __( 'Filters', 'supportcandy' ) ); ?>
                     <div class="wpsc-input-group">
                         <div class="label-container">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_edit_atl_default_filter' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) :
-                                    if ( $cf->type::$is_filter ) :
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
-                                    endif;
-                                endforeach;
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
             $filters = isset( $_POST['filters'] ) ? sanitize_text_field( wp_unslash( $_POST['filters'] ) ) : '';
             if ( ! $filters ) {
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            if ( ! $filters || $filters == '[]' || ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_default_filter_conditions', $filters ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }

supportcandy/trunk/includes/admin/ticket-list/class-wpsc-customer-ticket-list-settings.php

-                      r2822852
+                      r2895557
                     </select>
                 </div>
+                <div class="wpsc-input-group">
+                    <div class="label-container">
+                        <label for="">
+                            <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                            <span class="required-char">*</span>
+                        </label>
+                    </div>
+                    <div class="wpsc-form-filter-container"></div>
+                    <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                        <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                    </button>
+                </div>
+                <?php WPSC_Ticket_Conditions::print( 'default_filters', 'wpsc_default_filter_conditions', '', true, __( 'Filters', 'supportcandy' ) ); ?>
                 <div class="wpsc-input-group">
                     <div class="label-container">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_add_ctl_default_filter' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) :
-                                    if ( $cf->type::$is_filter ) :
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
-                                    endif;
-                                endforeach;
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
             $filters = isset( $_POST['filters'] ) ? sanitize_text_field( wp_unslash( $_POST['filters'] ) ) : '';
             if ( ! $filters ) {
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            if ( ! $filters || $filters == '[]' || ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_default_filter_conditions', $filters ) ) {
+                wp_send_json_error( 'Bad request', 400 );
+            }
 …
                         </select>
                     </div>
+                    <div class="wpsc-input-group">
+                        <div class="label-container">
+                            <label for="">
+                                <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                                <span class="required-char">*</span>
+                            </label>
+                        </div>
+                        <div class="wpsc-form-filter-container">
+                        <?php
+                            $filters = json_decode( html_entity_decode( $ctl_filter['filters'] ), true );
+                        if ( ! $filters ) {
+                            $filters = array();
+                        }
+                        foreach ( $filters as $slug => $filter ) :
+                            $cff = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                            if ( ! $cff ) {
+                                continue;
+                            }
+                            ?>
+                            <div class="wpsc-form-filter-item">
+                                <div class="content">
+                                    <div class="item">
+                                        <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
+                                            <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                            <?php
+                                            foreach ( $custom_fields as $cfield ) :
+                                                if ( $cfield->type::$is_filter ) :
+                                                    ?>
+                                                    <option value="<?php echo esc_attr( $cfield->slug ); ?>" <?php selected( $slug, $cfield->slug ); ?>><?php echo esc_attr( $cfield->name ); ?></option>
+                                                    <?php
+                                                endif;
+                                            endforeach;
+                                            ?>
+                                        </select>
+                                        <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                                    </div>
+                                    <?php
+                                    $cff->type::get_operators( $cff, $filter );
+                                    $cff->type::get_operands( $filter['operator'], $cff, $filter );
+                                    ?>
+                                </div>
+                                <div class="remove-container">
+                                    <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                </div>
+                            </div>
+                            <?php
+                        endforeach
+                        ?>
+                        </div>
+                        <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                            <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                        </button>
+                    </div>
+                    <?php WPSC_Ticket_Conditions::print( 'default_filters', 'wpsc_default_filter_conditions', $ctl_filter['filters'], true, __( 'Filters', 'supportcandy' ) ); ?>
                     <div class="wpsc-input-group">
                         <div class="label-container">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_set_edit_ctl_default_filter' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) :
-                                    if ( $cf->type::$is_filter ) :
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
-                                    endif;
-                                endforeach;
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();

supportcandy/trunk/includes/admin/ticket-list/class-wpsc-ticket-list-settings.php

-                      r2763565
+                      r2895557
             // Register ready function.
             add_action( 'wpsc_js_ready', array( __CLASS__, 'register_js_ready_function' ) );
+            // default filter conditions.
+            add_filter( 'wpsc_default_filter_conditions', array( __CLASS__, 'default_filter_conditions' ) );
+        }
 …
             echo esc_attr( self::$sections[ self::$current_section ]['callback'] ) . '();' . PHP_EOL;
+        }
+        /**
+         * Default filter conditions
+         *
+         * @param array $conditions - conditions array.
+         * @return array
+         */
+        public static function default_filter_conditions( $conditions ) {
+            foreach ( $conditions as $slug => $item ) {
+                if ( $item['type'] == 'cf' ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                    if (
+                        ! $cf->type::$is_filter ||
+                        ! in_array( $cf->field, array( 'ticket', 'customer', 'agentonly' ) )
+                    ) {
+                        unset( $conditions[ $slug ] );
+                    }
+                } else { // not custom field type.
+                    unset( $conditions[ $slug ] );
+                }
+            }
+            return $conditions;
+        }
+    }
 endif;

supportcandy/trunk/includes/admin/tickets/class-wpsc-new-ticket.php

-                      r2873748
+                      r2895557
+                }
+                $flag = $settings['relation'] == 'OR' ? false : true;
+                foreach ( $visibility as $key => $condition ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $key );
+                    if ( ! $cf ) {
+                        continue;
+                $flag = true;
+                foreach ( $visibility as $and_condition ) {
+                    $temp = false;
+                    foreach ( $and_condition as $or_condition ) {
+                        if ( ! isset( WPSC_Ticket_Conditions::$conditions[ $or_condition['slug'] ] ) ) {
+                            continue;
+                        }
+                        $cf = WPSC_Custom_Field::get_cf_by_slug( $or_condition['slug'] );
+                        $value = $cf->type::get_tff_value( $cf->slug, $cf );
+                        if ( $cf->type::is_valid( $or_condition, $cf, $value ) ) {
+                            $temp = true;
+                            break;
+                        }
+                    }
+                    $value = $cf->type::get_tff_value( $cf->slug, $cf );
+                    $is_valid = $cf->type::is_valid( $condition, $cf, $value );
+                    if ( $settings['relation'] == 'OR' && $is_valid ) {
+                        $flag = true;
+                        break;
+                    } elseif ( $settings['relation'] == 'AND' && ! $is_valid ) {
+                    if ( ! $temp ) {
                         $flag = false;
                         break;

supportcandy/trunk/includes/admin/tickets/class-wpsc-ticket-list.php

-                      r2873748
+                      r2895557
             add_action( 'wp_ajax_wpsc_get_ticket_list', array( __CLASS__, 'layout' ) );
             add_action( 'wp_ajax_nopriv_wpsc_get_ticket_list', array( __CLASS__, 'layout' ) );
+            // Conditions allowed for custom ticket filters.
+            add_filter( 'wpsc_custom_filter_conditions', array( __CLASS__, 'custom_filter_conditions' ) );
             // Get tickets ajax request.
 …
             self::load_tickets();
             self::set_bulk_actions();
+            $filters = self::$cookie_filters;
+            $filters['filters'] = isset( $filters['filters'] ) ? $filters['filters'] : '[]';
             $response = array(
                 'tickets'        => self::print_tickets(),
 …
                     'total_items'   => self::$total_items,
                 ),
                 'filters'        => self::$cookie_filters,
+                'filters'        => $filters,
             );
             wp_send_json( $response );
 …
             $customer_view = get_option( 'wpsc-tl-ms-customer-view', array() );
             self::$more_settings = $current_user->is_agent ? get_option( 'wpsc-tl-ms-agent-view' ) : get_option( 'wpsc-tl-ms-customer-view' );
+            self::$more_settings = get_option( $current_user->is_agent ? 'wpsc-tl-ms-agent-view' : 'wpsc-tl-ms-customer-view' );
             $current_user_filters = $current_user->get_tl_filters();
             self::$default_filters = $current_user_filters['default'];
             self::$saved_filters = $current_user_filters['saved'];
-            if ( isset( $filters['filters'] ) ) {
-                if ( ! is_array( $filters['filters'] ) ) {
-                    $filters['filters'] = json_decode( html_entity_decode( $filters['filters'] ), true );
+                }
+            }
             if ( ! $filters || ! self::has_filter_access( $filters ) ) {
 …
                 if ( self::$default_flag ) {
+                    $filters_arr = json_decode( html_entity_decode( self::$default_filters[ $slug ]['filters'] ), true );
+                    $meta_query  = array_merge( $meta_query, self::get_meta_query( $filters_arr ) );
+                    $meta_query = array_merge( $meta_query, WPSC_Ticket_Conditions::get_meta_query( self::$default_filters[ $slug ]['filters'] ) );
+                }
                 if ( self::$saved_flag ) {
+                    $filters_str = self::$saved_filters[ $slug ]['filters'];
+                    $filters_str = str_replace( '^^', '\n', $filters_str );
+                    $filters_arr = json_decode( html_entity_decode( $filters_str ), true );
+                    $meta_query  = array_merge( $meta_query, self::get_meta_query( $filters_arr ) );
+                    $json_str = str_replace( PHP_EOL, '\n', self::$saved_filters[ $slug ]['filters'] );
+                    $meta_query = array_merge( $meta_query, WPSC_Ticket_Conditions::get_meta_query( $json_str, true ) );
+                }
                 if ( $filters['filterSlug'] == 'custom' ) {
                     $meta_query = array_merge( $meta_query, self::get_meta_query( $filters['filters'] ) );
+                    $meta_query = array_merge( $meta_query, WPSC_Ticket_Conditions::get_meta_query( $filters['filters'], true ) );
+                }
+            }
 …
         public static function print_tl_snippets() {
+            $filters = self::$cookie_filters;
+            $filter_json = isset( $filters['filters'] ) && $filters['filters'] ? $filters['filters'] : '[]';
+            $filters['filters'] = $filter_json;
             $ticket_list_js_vars = array(
                 'pagination' => array(
 …
                     'total_items'   => self::$total_items,
                 ),
                 'filters'    => self::$cookie_filters,
+                'filters'    => $filters,
             );
 …
                 <script>
                     supportcandy.ticketList = <?php echo wp_json_encode( $ticket_list_js_vars ); ?>;
-                    if (typeof supportcandy.ticketList.filters.filters != 'undefined') {
-                        supportcandy.ticketList.filters.filters = JSON.stringify(supportcandy.ticketList.filters.filters);
+                    }
                     supportcandy.tl_auto_refresh = <?php echo esc_attr( $advanced_settings['auto-refresh-list-status'] ); ?>;
                     if(supportcandy.tl_auto_refresh) { wpsc_tl_auto_refresh(); }
 …
+            }
+            if ( $filter_slug == 'custom' && $current_user->is_agent ) {
+                if ( ! isset( $filters['filters'] ) || ! isset( $filters['parent-filter'] ) ) {
+                    return false;
+                }
+                $filter_items = get_option( 'wpsc-atl-filter-items' );
+                foreach ( $filters['filters'] as $slug => $condition ) {
+                    if ( ! in_array( $slug, $filter_items ) ) {
+                        return false;
+                    }
+                }
+                return true;
+            }
+            if ( $filter_slug == 'custom' && ! $current_user->is_agent ) {
+                if ( ! isset( $filters['filters'] ) || ! isset( $filters['parent-filter'] ) ) {
+                    return false;
+                }
+                $filter_items = get_option( 'wpsc-ctl-filter-items' );
+                foreach ( $filters['filters'] as $slug => $condition ) {
+                    if ( ! in_array( $slug, $filter_items ) ) {
+                        return false;
+                    }
+                }
+            if ( $filter_slug == 'custom' && WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_custom_filter_conditions', $filters['filters'] ) ) {
                 return true;
+            }
 …
+                    }
+                    $filters_json = self::$default_filters[ $parent_slug ]['filters'];
+                    $parent_slug  = self::$default_filters[ $parent_slug ]['parent-filter'];
+                    $meta_query   = array_merge( $meta_query, self::get_parent_meta_query( $parent_slug ) );
+                    $filters_arr  = json_decode( stripslashes( $filters_json ), true );
+                    $meta_query   = array_merge( $meta_query, self::get_meta_query( $filters_arr ) );
+                    $meta_query = array_merge( $meta_query, self::get_parent_meta_query( self::$default_filters[ $parent_slug ]['parent-filter'] ) );
+                    $meta_query = array_merge( $meta_query, WPSC_Ticket_Conditions::get_meta_query( self::$default_filters[ $parent_slug ]['filters'] ) );
+            }
 …
             $title           = esc_attr__( 'Custom filter', 'supportcandy' );
+            $custom_fields   = WPSC_Custom_Field::$custom_fields;
+            $default_filters = $current_user->is_agent ? get_option( 'wpsc-atl-default-filters' ) : get_option( 'wpsc-atl-default-filters' );
+            $allowed_filters = $current_user->is_agent ? get_option( 'wpsc-atl-filter-items' ) : get_option( 'wpsc-ctl-filter-items' );
+            $default_filters = get_option( $current_user->is_agent ? 'wpsc-atl-default-filters' : 'wpsc-ctl-default-filters' );
             $list_items      = $current_user->get_tl_list_items();
             $more_settings   = $current_user->is_agent ? get_option( 'wpsc-tl-ms-agent-view' ) : get_option( 'wpsc-tl-ms-customer-view' );
+            $more_settings   = get_option( $current_user->is_agent ? 'wpsc-tl-ms-agent-view' : 'wpsc-tl-ms-customer-view' );
             // check whether filters are passed.
             $filters = isset( $_POST['filters'] ) ? map_deep( wp_unslash( $_POST['filters'] ), 'sanitize_text_field' ) : array();
+            $custom_filters = isset( $filters['filters'] ) && WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_custom_filter_conditions', $filters['filters'] ) ? $filters['filters'] : '';
             ob_start();
 …
                     </select>
                 </div>
+                <div class="wpsc-input-group">
+                    <div class="label-container">
+                        <label for="">
+                            <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                            <span class="required-char">*</span>
+                        </label>
+                    </div>
+                    <div class="wpsc-form-filter-container">
+                        <?php
+                        $meta_filters = isset( $filters['filters'] ) ? json_decode( html_entity_decode( $filters['filters'] ), true ) : array();
+                        foreach ( $meta_filters as $slug => $filter ) :
+                            $cff = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                            if ( ! $cff ) {
+                                continue;
+                            }
+                            ?>
+                            <div class="wpsc-form-filter-item">
+                                <div class="content">
+                                    <div class="item">
+                                        <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
+                                            <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                            <?php
+                                            foreach ( $custom_fields as $cfield ) :
+                                                if ( $cfield->type::$is_filter && in_array( $cfield->slug, $allowed_filters ) ) :
+                                                    ?>
+                                                    <option value="<?php echo esc_attr( $cfield->slug ); ?>" <?php selected( $slug, $cfield->slug ); ?>><?php echo esc_attr( $cfield->name ); ?></option>
+                                                    <?php
+                                                endif;
+                                            endforeach;
+                                            ?>
+                                        </select>
+                                        <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                                    </div>
+                                    <?php
+                                    $cff->type::get_operators( $cff, $filter );
+                                    $cff->type::get_operands( $filter['operator'], $cff, $filter );
+                                    ?>
+                                </div>
+                                <div class="remove-container">
+                                    <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                </div>
+                            </div>
+                            <?php
+                        endforeach
+                        ?>
+                    </div>
+                    <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                        <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                    </button>
+                </div>
+                <?php WPSC_Ticket_Conditions::print( 'custom_filters', 'wpsc_custom_filter_conditions', $custom_filters, true, __( 'Filters', 'supportcandy' ) ); ?>
                 <div class="wpsc-input-group">
                     <div class="label-container">
 …
                 </div>
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) :
-                                    if ( in_array( $cf->slug, $allowed_filters ) ) :
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
-                                    endif;
-                                endforeach;
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
+            }
+            $filters = isset( $_POST['filters']['filters'] ) ? sanitize_textarea_field( wp_unslash( $_POST['filters']['filters'] ) ) : '';
+            $filters = str_replace( '\n', '^^', $filters );
+            if ( ! $filters ) {
+            $filters = isset( $_POST['filters']['filters'] ) ? sanitize_text_field( wp_unslash( $_POST['filters']['filters'] ) ) : '';
+            if ( ! $filters || $filters == '[]' || ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_custom_filter_conditions', $filters ) ) {
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            }
+            $filters = str_replace( '\n', PHP_EOL, $filters );
             $sort_by = isset( $_POST['filters']['orderby'] ) ? sanitize_text_field( wp_unslash( $_POST['filters']['orderby'] ) ) : '';
 …
             $title           = $filters['label'];
-            $custom_fields   = WPSC_Custom_Field::$custom_fields;
             $default_filters = $current_user->is_agent ? get_option( 'wpsc-atl-default-filters' ) : get_option( 'wpsc-atl-default-filters' );
-            $allowed_filters = $current_user->is_agent ? get_option( 'wpsc-atl-filter-items' ) : get_option( 'wpsc-ctl-filter-items' );
             $list_items      = $current_user->get_tl_list_items();
             $more_settings   = $current_user->is_agent ? get_option( 'wpsc-tl-ms-agent-view' ) : get_option( 'wpsc-tl-ms-customer-view' );
+            $custom_filters = str_replace( PHP_EOL, '\n', $filters['filters'] );
             ob_start();
 …
                     </select>
                 </div>
+                <div class="wpsc-input-group">
+                    <div class="label-container">
+                        <label for="">
+                            <?php esc_attr_e( 'Filters', 'supportcandy' ); ?>
+                            <span class="required-char">*</span>
+                        </label>
+                    </div>
+                    <div class="wpsc-form-filter-container">
+                        <?php
+                        $filter_str   = str_replace( '^^', '\n', $filters['filters'] );
+                        $meta_filters = isset( $filters['filters'] ) ? json_decode( html_entity_decode( $filter_str ), true ) : array();
+                        foreach ( $meta_filters as $slug => $filter ) :
+                            $cff = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                            if ( ! $cff ) {
+                                continue;
+                            }
+                            ?>
+                            <div class="wpsc-form-filter-item">
+                                <div class="content">
+                                    <div class="item">
+                                        <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
+                                            <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                            <?php
+                                            foreach ( $custom_fields as $cfield ) :
+                                                if ( $cfield->type::$is_filter ) :
+                                                    ?>
+                                                    <option value="<?php echo esc_attr( $cfield->slug ); ?>" <?php selected( $slug, $cfield->slug ); ?>><?php echo esc_attr( $cfield->name ); ?></option>
+                                                    <?php
+                                                endif;
+                                            endforeach;
+                                            ?>
+                                        </select>
+                                        <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                                    </div>
+                                    <?php
+                                    $cff->type::get_operators( $cff, $filter );
+                                    $cff->type::get_operands( $filter['operator'], $cff, $filter );
+                                    ?>
+                                </div>
+                                <div class="remove-container">
+                                    <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                </div>
+                            </div>
+                                <?php
+                        endforeach
+                        ?>
+                    </div>
+                    <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                        <?php esc_attr_e( 'Add new', 'supportcandy' ); ?>
+                    </button>
+                </div>
+                <?php WPSC_Ticket_Conditions::print( 'custom_filters', 'wpsc_custom_filter_conditions', $custom_filters, true, __( 'Filters', 'supportcandy' ) ); ?>
                 <div class="wpsc-input-group">
                     <div class="label-container">
 …
                 <input type="hidden" name="_ajax_nonce" value="<?php echo esc_attr( wp_create_nonce( 'wpsc_tl_set_edit_saved_filter' ) ); ?>">
             </form>
-            <div class="wpsc-form-filter-snippet" style="display:none;">
-                <div class="wpsc-form-filter-item">
-                    <div class="content">
-                        <div class="item">
-                            <select class="cf" onchange="wpsc_get_ticket_filter_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operators' ) ); ?>');">
-                                <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
-                                <?php
-                                foreach ( $custom_fields as $cf ) :
-                                    if ( in_array( $cf->slug, $allowed_filters ) ) :
-                                        ?>
-                                        <option value="<?php echo esc_attr( $cf->slug ); ?>"><?php echo esc_attr( $cf->name ); ?></option>
-                                        <?php
-                                    endif;
-                                endforeach;
-                                ?>
-                            </select>
-                        </div>
-                    </div>
-                    <div class="remove-container">
-                        <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
-                    </div>
-                </div>
-            </div>
             <?php
             $body = ob_get_clean();
 …
+            }
+            $filters = isset( $_POST['filters'] ) ? sanitize_textarea_field( wp_unslash( $_POST['filters'] ) ) : '';
+            $filters = str_replace( '\n', '^^', $filters );
+            if ( ! $filters ) {
+            $filters = isset( $_POST['filters'] ) ? sanitize_text_field( wp_unslash( $_POST['filters'] ) ) : '';
+            if ( ! $filters || $filters == '[]' || ! WPSC_Ticket_Conditions::is_valid_input_conditions( 'wpsc_custom_filter_conditions', $filters ) ) {
                 wp_send_json_error( __( 'Bad request!', 'supportcandy' ), 400 );
+            }
+            $filters = str_replace( '\n', PHP_EOL, $filters );
             $sort_by = isset( $_POST['sort-by'] ) ? sanitize_text_field( wp_unslash( $_POST['sort-by'] ) ) : '';
 …
             return self::has_delete_parent_filter( $parent_slug );
+        }
+        /**
+         * Allow only allowed conditions for current user for custom ticket filter
+         *
+         * @param array $conditions - conditions to filter.
+         * @return array
+         */
+        public static function custom_filter_conditions( $conditions ) {
+            $current_user = WPSC_Current_User::$current_user;
+            $level = $current_user->level == 'admin' ? 'agent' : $current_user->level;
+            foreach ( $conditions as $slug => $item ) {
+                if ( $item['type'] == 'cf' ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                    if (
+                        ! $cf->type::$is_filter ||
+                        ! in_array( $cf->field, array( 'ticket', 'customer', 'agentonly' ) ) ||
+                        ! in_array( $level, $item['levels'] )
+                    ) {
+                        unset( $conditions[ $slug ] );
+                    }
+                } else { // not custom field type.
+                    unset( $conditions[ $slug ] );
+                }
+            }
+            return $conditions;
+        }
+    }

supportcandy/trunk/includes/class-wpsc-current-user.php

-                      r2890978
+                      r2895557
          */
         public $agent;
+        /**
+         * Current user level. e.g. customer, agent or admin
+         *
+         * @var string
+         */
+        public $level;
         /**
 …
                 $this->agent    = $agent;
+            }
+            // set leval.
+            if ( WPSC_Functions::is_site_admin() ) {
+                $this->level = 'admin';
+            } elseif ( $this->is_agent ) {
+                $this->level = 'agent';
+            } elseif ( $this->is_customer ) {
+                $this->level = 'customer';
+            } else {
+                $this->level = 'none';
+            }
+        }
 …
             // default filters.
             $default_filters = $this->is_agent ? get_option( 'wpsc-atl-default-filters' ) : get_option( 'wpsc-ctl-default-filters' );
+            $default_filters = get_option( $this->is_agent ? 'wpsc-atl-default-filters' : 'wpsc-ctl-default-filters' );
             foreach ( $default_filters as $index => $filter ) {

supportcandy/trunk/includes/class-wpsc-email-notifications.php

r2887316	r2895557
247	247
248	248	// check for conditions.
249		if ( ! WPSC_Ticket_Conditions::is_valid~~_conditions( $this->ticket, $this->template['conditions'], $this->template['relation']~~ ) ) {
	249	if ( ! WPSC_Ticket_Conditions::is_valid( $this->template['conditions'], $this->ticket ) ) {
250	250	return false;
251	251	}

supportcandy/trunk/includes/class-wpsc-functions.php

r2891695	r2895557
411	411	$classes .= $tff['is-required'] ? 'required ' : '';
412	412	$visibility = WPSC_TFF::get_visibility( $tff, true );
413		$classes .= ~~count( $visibility ) > 0~~ ? 'wpsc-hidden conditional' : 'wpsc-visible';
	413	$classes .= $visibility ? 'wpsc-hidden conditional' : 'wpsc-visible';
414	414
415	415	return $classes;

supportcandy/trunk/includes/class-wpsc-sc-upgrade.php

-                      r2887316
+                      r2895557
         /**
          * Update usergroups for ticket
+         * Update attachment file paths in database
+         *
          * @param WPSC_Scheduled_Task $task - task object.
 …
+            }
+        }
+        /**
+         * Upgrade setting conditions
+         *
+         * @param WPSC_Scheduled_Task $task - task object.
+         * @version 3.1.5
+         * @return void
+         */
+        public static function upgrade_setting_conditions( $task ) {
+            // Visibility conditions.
+            $tff = get_option( 'wpsc-tff' );
+            foreach ( $tff as $slug => $properties ) {
+                if ( ! $properties['visibility'] ) {
+                    continue;
+                }
+                $tff[ $slug ]['visibility'] = self::upgrade_condition( $properties['visibility'], $properties['relation'] );
+            }
+            update_option( 'wpsc-tff', $tff );
+            // Email notifications.
+            $email_templates = get_option( 'wpsc-email-templates' );
+            foreach ( $email_templates as $index => $properties ) {
+                if ( ! $properties['conditions'] ) {
+                    continue;
+                }
+                $email_templates[ $index ]['conditions'] = self::upgrade_condition( $properties['conditions'], $properties['relation'] );
+            }
+            update_option( 'wpsc-email-templates', $email_templates );
+            // Default agent filters.
+            $atl_filters = get_option( 'wpsc-atl-default-filters' );
+            foreach ( $atl_filters as $slug => $properties ) {
+                if ( ! is_numeric( $slug ) ) {
+                    continue;
+                }
+                $atl_filters[ $slug ]['filters'] = self::upgrade_condition( $properties['filters'], 'AND' );
+            }
+            update_option( 'wpsc-atl-default-filters', $atl_filters );
+            // Default customer filters.
+            $ctl_filters = get_option( 'wpsc-ctl-default-filters' );
+            foreach ( $ctl_filters as $slug => $properties ) {
+                if ( ! is_numeric( $slug ) ) {
+                    continue;
+                }
+                $ctl_filters[ $slug ]['filters'] = self::upgrade_condition( $properties['filters'], 'AND' );
+            }
+            update_option( 'wpsc-ctl-default-filters', $ctl_filters );
+            // Assigned agent rules filters.
+            if ( class_exists( 'WPSC_AAR' ) ) {
+                $rules = get_option( 'wpsc-aar-rules', array() );
+                foreach ( $rules as $index => $properties ) {
+                    $rules[ $index ]['conditions'] = self::upgrade_condition( $properties['conditions'], $properties['relation'] );
+                }
+                update_option( 'wpsc-aar-rules', $rules );
+            }
+            // SLA policy filters.
+            if ( class_exists( 'WPSC_SLA' ) ) {
+                $policies = get_option( 'wpsc-sla-policies', array() );
+                foreach ( $policies as $index => $properties ) {
+                    $policies[ $index ]['conditions'] = self::upgrade_condition( $properties['conditions'], $properties['relation'] );
+                }
+                update_option( 'wpsc-sla-policies', $policies );
+            }
+            WPSC_Scheduled_Task::destroy( $task );
+        }
+        /**
+         * Upgrade saved filter conditions for all customers
+         *
+         * @param WPSC_Scheduled_Task $task - task object.
+         * @version 3.1.5
+         * @return void
+         */
+        public static function upgrade_saved_filter_conditions( $task ) {
+            global $wpdb;
+            $current_page = get_transient( 'wpsc_upgrade_saved_filter_conditions_cursor' );
+            if ( false === $current_page ) {
+                $total_items = $wpdb->get_var( "SELECT COUNT(id) FROM {$wpdb->prefix}psmsc_customers" );
+                $total_pages = ceil( $total_items / 50 );
+                $task->pages = $total_pages;
+                $task->save();
+                $current_page = 0;
+                set_transient( 'wpsc_upgrade_saved_filter_conditions_cursor', $current_page, MINUTE_IN_SECONDS * 60 * 48 );
+            }
+            $current_page++;
+            $customers = WPSC_Customer::find(
+                array(
+                    'items_per_page' => 50,
+                    'page_no'        => $current_page,
+                    'meta_query'     => array(
+                        'relation' => 'AND',
+                        array(
+                            'slug'    => 'custom_query',
+                            'compare' => '=',
+                            'val'     => 'c.user>0',
+                        ),
+                    ),
+                )
+            );
+            if ( $customers['total_items'] ) {
+                foreach ( $customers['results'] as $customer ) {
+                    $saved_filters = get_user_meta( $customer->user->ID, get_current_blog_id() . '-wpsc-tl-saved-filters', true );
+                    if ( ! $saved_filters ) {
+                        continue;
+                    }
+                    foreach ( $saved_filters as $key => $filter ) {
+                        $filters = self::upgrade_condition( str_replace( '^^', '\n', $filter['filters'] ), 'AND' );
+                        $saved_filters[ $key ]['filters'] = str_replace( '\n', PHP_EOL, $filters );
+                    }
+                    update_user_meta( $customer->user->ID, get_current_blog_id() . '-wpsc-tl-saved-filters', $saved_filters );
+                }
+            }
+            if ( $current_page == $task->pages ) {
+                WPSC_Scheduled_Task::destroy( $task );
+                delete_transient( 'wpsc_upgrade_saved_filter_conditions_cursor' );
+            } else {
+                set_transient( 'wpsc_upgrade_saved_filter_conditions_cursor', $current_page, MINUTE_IN_SECONDS * 60 * 48 );
+                return;
+            }
+        }
+        /**
+         * Upgrade and return conditions json
+         *
+         * @param string $conditions - conditions json string.
+         * @param string $relation - AND or OR.
+         * @version 3.1.5
+         * @return string
+         */
+        public static function upgrade_condition( $conditions, $relation ) {
+            $conditions = json_decode( html_entity_decode( $conditions ), true );
+            $and_conditions = array();
+            $or_conditions = array();
+            foreach ( $conditions as $slug => $condition ) {
+                if ( preg_match( '/^cf_\w+$/', $slug ) ) {
+                    $slug = str_replace( 'cf_', '', $slug );
+                }
+                $temp = array_merge( array( 'slug' => $slug ), $condition );
+                if ( $relation == 'AND' ) {
+                    $and_conditions[] = array( $temp );
+                } else {
+                    $or_conditions[] = $temp;
+                }
+            }
+            if ( $relation == 'OR' ) {
+                $and_conditions[] = $or_conditions;
+            }
+            return wp_json_encode( $and_conditions );
+        }
+    }
 endif;

supportcandy/trunk/includes/class-wpsc-ticket-conditions.php

-                      r2798663
+                      r2895557
         /**
          * Conditions list
+         * Ticket conditions
+         *
          * @var array
 …
         /**
+         * Ignore custom field types for ticket conditions
+         *
+         * @var array
+         */
+        public static $ignore_cft = array();
+        /**
+         * Init class
+         * Initialize the class
+         *
+         * @return void
          */
         public static function init() {
+            add_action( 'init', array( __CLASS__, 'load_conditions' ), 11 );
+            add_action( 'init', array( __CLASS__, 'load_ticket_conditions' ) );
             add_action( 'wp_ajax_wpsc_tc_get_operators', array( __CLASS__, 'get_operators' ) );
+            add_action( 'wp_ajax_nopriv_wpsc_tc_get_operators', array( __CLASS__, 'get_operators' ) );
             add_action( 'wp_ajax_wpsc_tc_get_operand', array( __CLASS__, 'get_operands' ) );
+        }
+        /**
          * Load ticket conditions
+         *
          * @return void
          */
         public static function load_conditions() {
+            $conditions = array();
             self::$ignore_cft = apply_filters( 'wpsc_ignore_cft_ticket_conditions', array( 'cf_woo_order' ) );
             // custom fields filters.
+            add_action( 'wp_ajax_nopriv_wpsc_tc_get_operand', array( __CLASS__, 'get_operands' ) );
+        }
+        /**
+         * Load ticket conditions along with user permitted to utilize them
+         *
+         * @return void
+         */
+        public static function load_ticket_conditions() {
+            $agent_filters = get_option( 'wpsc-atl-filter-items', array() );
+            $customer_filters = get_option( 'wpsc-ctl-filter-items', array() );
+            // custom fields.
             foreach ( WPSC_Custom_Field::$custom_fields as $cf ) {
 …
                     class_exists( $cf->type ) &&
                     $cf->type::$is_filter &&
+                    in_array( $cf->field, array( 'ticket', 'agentonly', 'customer' ) ) &&
+                    ! in_array( $cf->type::$slug, self::$ignore_cft )
+                    in_array( $cf->field, array( 'ticket', 'agentonly', 'customer' ) )
                 ) ) {
                     continue;
+                }
+                $conditions[ 'cf_' . $cf->slug ] = $cf->name;
+            }
+            // other ticket conditions than custom field.
+                $levels = array( 'admin' );
+                if ( in_array( $cf->slug, $agent_filters ) ) {
+                    $levels[] = 'agent';
+                }
+                if ( in_array( $cf->slug, $customer_filters ) ) {
+                    $levels[] = 'customer';
+                }
+                self::$conditions[ $cf->slug ] = array(
+                    'name'   => $cf->name,
+                    'type'   => 'cf',
+                    'levels' => $levels,
+                );
+            }
+            // custom conditions.
             $other_conditions = apply_filters(
                 'wpsc_ticket_conditions',
 …
             );
+            self::$conditions = array_merge( $conditions, $other_conditions );
+            foreach ( $other_conditions as $slug => $name ) {
+                self::$conditions[ $slug ] = array(
+                    'name'   => $name,
+                    'type'   => 'other',
+                    'levels' => array( 'admin' ),
+                );
+            }
+        }
 …
          * Print condition input in the form
+         *
+         * @param string  $relation - relation between conditions (AND/OR).
+         * @param array   $conditions - conditions to preset.
+         * @param array   $ignore_cft - ignore custom field types.
+         * @param boolean $required - condition is required or not.
+         * @return void
+         */
+        public static function print_condition_input( $relation = 'AND', $conditions = array(), $ignore_cft = array(), $required = false ) {
+            $conditions = $conditions ? json_decode( html_entity_decode( $conditions ), true ) : array();
+         * @param string  $name - form element name. Helpful to identify if multiple conditions need to be added.
+         * @param string  $hook - filter hook for conditions. Uniquely identify and filter conditions available in the form.
+         * @param string  $set_conditions - pre-defined conditions to print within input.
+         * @param boolean $is_required - whether or not to print required character for label.
+         * @param string  $label - whether or not to print required character for label.
+         * @return void
+         */
+        public static function print( $name, $hook, $set_conditions = '', $is_required = false, $label = '' ) {
+            $label = $label ? $label : __( 'Conditions', 'supportcandy' );
+            $conditions = apply_filters( $hook, self::$conditions );
+            $set_conditions = $set_conditions ? json_decode( html_entity_decode( $set_conditions ), true ) : array();
+            $unique_id = wp_unique_id( 'wpsc_' );
             ?>
             <div class="wpsc-input-group">
 …
                     <label for="">
                         <?php
                         echo esc_attr( wpsc__( 'Conditions', 'supportcandy' ) );
                         if ( $required ) {
+                        echo esc_attr( $label );
+                        if ( $is_required ) {
                             ?>
                             <span class="required-char">*</span>
 …
                     </label>
                 </div>
+                <select name="relation" id="relation" style="width: fit-content; margin: 10px 0px;">
+                    <option <?php selected( $relation, 'AND' ); ?> value="AND"><?php esc_attr_e( 'AND', 'supportcandy' ); ?></option>
+                    <option <?php selected( $relation, 'OR' ); ?> value="OR"><?php esc_attr_e( 'OR', 'supportcandy' ); ?></option>
+                </select>
+                <div class="wpsc-form-filter-container">
+                    <?php
+                    foreach ( $conditions as $slug => $filter ) {
+                        // check slug in conditions.
+                        if ( ! array_key_exists( $slug, self::$conditions ) ) {
+                            continue;
+                        }
+                        $flag = preg_match( '/^cf_(\w*)/', $slug, $matches );
+                        if ( $flag ) {
+                            $cf = WPSC_Custom_Field::get_cf_by_slug( $matches[1] );
+                            if ( ! $cf ) {
+                                continue;
+                <div class="wpsc-form-filter-container <?php echo esc_attr( $name ); ?>">
+                    <div class="and-container">
+                        <?php
+                        if ( $set_conditions ) {
+                            foreach ( $set_conditions as $and_condition ) {
+                                ?>
+                                <div class="and-item">
+                                    <div class="or-container">
+                                        <?php
+                                        foreach ( $and_condition as $or_condition ) {
+                                            if ( ! isset( $conditions[ $or_condition['slug'] ] ) ) {
+                                                continue;
+                                            }
+                                            ?>
+                                            <div class="wpsc-form-filter-item">
+                                                <div class="content">
+                                                    <div class="item">
+                                                        <select class="filter" onchange="wpsc_tc_get_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operators' ) ); ?>');">
+                                                            <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                                                            <?php
+                                                            foreach ( $conditions as $slug => $item ) {
+                                                                ?>
+                                                                <option value="<?php echo esc_attr( $slug ); ?>" <?php selected( $or_condition['slug'], $slug, true ); ?>><?php echo esc_attr( $item['name'] ); ?></option>
+                                                                <?php
+                                                            }
+                                                            ?>
+                                                        </select>
+                                                    </div>
+                                                    <?php
+                                                    if ( $conditions[ $or_condition['slug'] ]['type'] == 'cf' ) {
+                                                        $cf = WPSC_Custom_Field::get_cf_by_slug( $or_condition['slug'] );
+                                                        $cf->type::get_operators( $cf, $or_condition );
+                                                        $cf->type::get_operands( $or_condition['operator'], $cf, $or_condition );
+                                                    } else {
+                                                        self::print_operators( $or_condition['slug'], $or_condition );
+                                                        self::print_operands( $or_condition['slug'], $or_condition['operator'], $or_condition );
+                                                    }
+                                                    ?>
+                                                </div>
+                                                <div class="remove-container">
+                                                    <span onclick="wpsc_remove_condition_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                                </div>
+                                            </div>
+                                            <?php
+                                        }
+                                        ?>
+                                    </div>
+                                    <button class="wpsc-button small secondary" onclick="wpsc_add_or_condition( this, '<?php echo esc_attr( $unique_id ); ?>' );"><?php esc_html_e( '+ OR', 'supportcandy' ); ?></button>
+                                </div>
+                                <?php
+                            }
+                        }
                         ?>
+                    </div>
+                    <button class="wpsc-button small secondary" onclick="wpsc_add_and_condition( this, '<?php echo esc_attr( $unique_id ); ?>' );"><?php esc_html_e( '+ AND', 'supportcandy' ); ?></button>
+                </div>
+                <script>jQuery( '.wpsc-form-filter-container select.filter' ).selectWoo();</script>
+                <div style="display: none;">
+                    <div class="and-template <?php echo esc_attr( $unique_id ); ?>">
+                        <div class="and-item">
+                            <div class="or-container"></div>
+                            <button class="wpsc-button small secondary" onclick="wpsc_add_or_condition( this, '<?php echo esc_attr( $unique_id ); ?>' );"><?php esc_html_e( '+ OR', 'supportcandy' ); ?></button>
+                        </div>
+                    </div>
+                    <div class="or-template <?php echo esc_attr( $unique_id ); ?>">
                         <div class="wpsc-form-filter-item">
                             <div class="content">
                                 <div class="item">
                                     <select class="cf" onchange="wpsc_tc_get_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operators' ) ); ?>');">
+                                    <select class="filter" onchange="wpsc_tc_get_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operators' ) ); ?>');">
                                         <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
                                         <?php
+                                        foreach ( self::$conditions as $cslug => $label ) {
+                                            $cflag = preg_match( '/^cf_(\w*)/', $cslug, $matches );
+                                            if ( $cflag ) {
+                                                $ccf = WPSC_Custom_Field::get_cf_by_slug( $matches[1] );
+                                                if ( ! $ccf || in_array( $ccf->type::$slug, $ignore_cft ) ) {
+                                                    continue;
+                                                }
+                                            }
+                                        foreach ( $conditions as $slug => $item ) {
                                             ?>
                                             <option value="<?php echo esc_attr( $cslug ); ?>" <?php selected( $slug, $cslug ); ?>><?php echo esc_attr( $label ); ?></option>
+                                            <option value="<?php echo esc_attr( $slug ); ?>"><?php echo esc_attr( $item['name'] ); ?></option>
                                             <?php
+                                        }
                                         ?>
                                     </select>
-                                    <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
                                 </div>
-                                <?php
-                                if ( $flag ) {
-                                    $cf->type::get_operators( $cf, $filter );
-                                    $cf->type::get_operands( $filter['operator'], $cf, $filter );
-                                } else {
-                                    self::print_operators( $slug, $filter );
-                                    self::print_operand( $slug, $filter['operator'], $filter );
+                                }
-                                ?>
                             </div>
                             <div class="remove-container">
                                 <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                                <span onclick="wpsc_remove_condition_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
                             </div>
                         </div>
+                        <?php
+                    }
+                    ?>
+                </div>
+                <button class="wpsc-button small secondary wpsc-form-filter-add-btn" onclick="wpsc_add_form_filter_item();">
+                    <?php echo esc_attr( wpsc__( 'Add new', 'supportcandy' ) ); ?>
+                </button>
+            </div>
+            <?php
+        }
+        /**
+         * Print add new condition snippet
+         *
+         * @param array $ignore_cft - ignore custom field types.
+         * @return void
+         */
+        public static function print_add_new_snippet( $ignore_cft = array() ) {
+            ?>
+            <div class="wpsc-form-filter-item">
+                <div class="content">
+                    <div class="item">
+                        <select class="cf" onchange="wpsc_tc_get_operators(this, '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operators' ) ); ?>');">
+                            <option value=""><?php esc_attr_e( 'Select field', 'supportcandy' ); ?></option>
+                            <?php
+                            foreach ( self::$conditions as $slug => $label ) {
+                                $flag = preg_match( '/^cf_(\w*)/', $slug, $matches );
+                                if ( $flag ) {
+                                    $cf = WPSC_Custom_Field::get_cf_by_slug( $matches[1] );
+                                    if ( ! $cf || in_array( $cf->type::$slug, $ignore_cft ) ) {
+                                        continue;
+                                    }
+                                }
+                                ?>
+                                <option value="<?php echo esc_attr( $slug ); ?>"><?php echo esc_attr( $label ); ?></option>
+                                <?php
+                            }
+                            ?>
+                        </select>
+                        <script>jQuery('.wpsc-form-filter-container').last().find('.cf').selectWoo();</script>
+                    </div>
+                </div>
+                <div class="remove-container">
+                    <span onclick="wpsc_remove_form_filter_item(this)"><?php WPSC_Icons::get( 'times-circle' ); ?></span>
+                    </div>
                 </div>
             </div>
 …
         /**
+         * Get condition operators.
+         * Check whether or not conditions submitted by client are valid or not before inserting into the database or any further use
+         *
+         * @param string $hook - filter hook for conditions. Uniquely identify and filter conditions available in the form.
+         * @param string $conditions - conditions received from the client.
+         * @return boolean
+         */
+        public static function is_valid_input_conditions( $hook, $conditions ) {
+            // No conditions.
+            if ( ! $conditions || $conditions == '[]' ) {
+                return true;
+            }
+            $allowed_conditions = apply_filters( $hook, self::$conditions );
+            $conditions = json_decode( html_entity_decode( $conditions ), true );
+            foreach ( $conditions as $and_condition ) {
+                foreach ( $and_condition as $or_condition ) {
+                    if ( ! isset( $allowed_conditions[ $or_condition['slug'] ] ) ) {
+                        return false;
+                    }
+                }
+            }
+            return true;
+        }
+        /**
+         * Get condition operators ajax callback.
+         *
          * @return void
          */
         public static function get_operators() {
+            $current_user = WPSC_Current_User::$current_user;
             if ( check_ajax_referer( 'wpsc_tc_get_operators', '_ajax_nonce', false ) != 1 ) {
                 wp_send_json_error( 'Unauthorised request!', 401 );
+            }
-            if ( ! WPSC_Functions::is_site_admin() ) {
-                wp_send_json_error( __( 'Unauthorized access!', 'supportcandy' ), 401 );
+            }
 …
+            }
             $flag = preg_match( '/^cf_(\w*)/', $slug, $matches );
             if ( $flag ) {
+                $cf = WPSC_Custom_Field::get_cf_by_slug( $matches[1] );
                 if ( ! $cf ) {
+                    wp_die();
+                }
+            if ( ! in_array( $current_user->level, self::$conditions[ $slug ]['levels'] ) ) {
+                wp_send_json_error( 'Unauthorised request!', 401 );
+            }
+            if ( self::$conditions[ $slug ]['type'] == 'cf' ) {
+                $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
                 $cf->type::get_operators( $cf );
 …
         /**
          * Print operators for non-custom field conditions
+         * Print condition operators
+         *
          * @param string $slug - condition slug.
          * @param array  $filter - existing filter.
+         * @param array  $filter - predefined condition to set operator.
          * @return void
          */
 …
         /**
          * Get operands for non custom field conditions
+         * Get condition operands ajax callback.
+         *
          * @return void
          */
         public static function get_operands() {
+            $current_user = WPSC_Current_User::$current_user;
             if ( check_ajax_referer( 'wpsc_tc_get_operand', '_ajax_nonce', false ) != 1 ) {
                 wp_send_json_error( 'Unauthorised request!', 401 );
+            }
-            if ( ! WPSC_Functions::is_site_admin() ) {
-                wp_send_json_error( __( 'Unauthorized access!', 'supportcandy' ), 401 );
+            }
 …
+            }
+            if ( ! in_array( $current_user->level, self::$conditions[ $slug ]['levels'] ) ) {
+                wp_send_json_error( 'Unauthorised request!', 401 );
+            }
             $operator = isset( $_POST['operator'] ) ? sanitize_text_field( wp_unslash( $_POST['operator'] ) ) : '';
             if ( ! $operator ) {
 …
+            }
+            self::print_operand( $slug, $operator );
+            if ( self::$conditions[ $slug ]['type'] == 'cf' ) {
+                $cf = WPSC_Custom_Field::get_cf_by_slug( $slug );
+                $cf->type::get_operands( $operator, $cf );
+            } else {
+                self::print_operands( $slug, $operator );
+            }
             wp_die();
 …
         /**
          * Prit operands for non-custom field conditions
+         * Print condition operands
+         *
          * @param string $slug - condition slug.
          * @param string $operator - operator string.
          * @param array  $filter - existing filter.
          * @return void
          */
         public static function print_operand( $slug, $operator, $filter = array() ) {
+         * @param array  $filter - predefined condition to set operand.
+         * @return void
+         */
+        public static function print_operands( $slug, $operator, $filter = array() ) {
             global $wp_roles;
 …
         /**
+         * Return whether conditions are valid for the ticket
+         *
+         * Get meta query for the given conditions
+         *
+         * @param string $conditions - conditions json from database.
+         * @param string $is_user_query - check if it needs to check the permission of the filter of current user. e.g. custom filters, saved filters need to check permissions but default filters need not.
+         * @return array
+         */
+        public static function get_meta_query( $conditions, $is_user_query = false ) {
+            $current_user = WPSC_Current_User::$current_user;
+            $meta_query = array();
+            $conditions = $conditions ? json_decode( $conditions, true ) : array();
+            if ( ! $conditions ) {
+                return $meta_query;
+            }
+            foreach ( $conditions as $and_condition ) {
+                $temp = array();
+                foreach ( $and_condition as $or_condition ) {
+                    if (
+                        ! isset( self::$conditions[ $or_condition['slug'] ] ) ||
+                        ( $is_user_query && ! in_array( $current_user->level, self::$conditions[ $or_condition['slug'] ]['levels'] ) )
+                    ) {
+                        continue;
+                    }
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $or_condition['slug'] );
+                    $val = $cf->type::get_meta_value( $or_condition );
+                    if ( $val === false ) {
+                        continue;
+                    }
+                    $temp[] = array(
+                        'slug'    => $or_condition['slug'],
+                        'compare' => $or_condition['operator'],
+                        'val'     => $val,
+                    );
+                }
+                if ( $temp ) {
+                    $meta_query[] = array_merge( array( 'relation' => 'OR' ), $temp );
+                }
+            }
+            return $meta_query;
+        }
+        /**
+         * Return whether or not given conditions are satisfied by the given ticket
+         *
+         * @param string      $conditions - conditions json from database.
          * @param WPSC_Ticket $ticket - ticket object.
-         * @param string      $conditions - conditions to check.
-         * @param string      $relation - relation between conditions.
          * @return boolean
          */
         public static function is_valid_conditions( $ticket, $conditions, $relation ) {
             $conditions = $conditions ? json_decode( html_entity_decode( $conditions ), true ) : array();
+        public static function is_valid( $conditions, $ticket ) {
+            $conditions = $conditions ? json_decode( $conditions, true ) : array();
             if ( ! $conditions ) {
                 return true;
+            }
+            $flag = $relation == 'AND' ? true : false;
+            foreach ( $conditions as $slug => $condition ) {
+                if ( preg_match( '/^cf_(\w*)/', $slug, $matches ) ) {
+                    $cf = WPSC_Custom_Field::get_cf_by_slug( $matches[1] );
+                    if ( ! $cf ) {
+            foreach ( $conditions as $and_condition ) {
+                $flag = false;
+                foreach ( $and_condition as $or_condition ) {
+                    if ( ! isset( self::$conditions[ $or_condition['slug'] ] ) ) {
                         continue;
+                    }
+                    $is_valid = $cf->type::is_valid_ticket_condition( $condition, $cf, $ticket );
+                } else {
+                    switch ( $slug ) {
+                        case 'submitted_by':
+                            if (
+                                (
+                                    $condition['operand_val_1'] == 'agent' &&
+                                    is_object( $ticket->agent_created )
+                                ) ||
+                                (
+                                    $condition['operand_val_1'] == 'user' &&
+                                    ! is_object( $ticket->agent_created )
+                                )
+                            ) {
+                                $is_valid = true;
+                            } else {
+                                $is_valid = false;
+                            }
+                            break;
+                        case 'user_role':
+                            $user_roles = $ticket->customer->user->roles;
+                            switch ( $condition['operator'] ) {
+                                case '=':
+                                    $flag = in_array( $condition['operand_val_1'], $user_roles ) ? true : false;
+                                    break;
+                                case 'IN':
+                                    $flag = false;
+                                    foreach ( $user_roles as $id ) {
+                                        if ( in_array( $id, $condition['operand_val_1'] ) ) {
+                                            $flag = true;
+                                            break;
+                    if ( self::$conditions[ $or_condition['slug'] ]['type'] == 'cf' ) {
+                        $cf = WPSC_Custom_Field::get_cf_by_slug( $or_condition['slug'] );
+                        $flag = $cf->type::is_valid_ticket_condition( $or_condition, $cf, $ticket );
+                    } else {
+                        switch ( $or_condition['slug'] ) {
+                            case 'submitted_by':
+                                if (
+                                    (
+                                        $or_condition['operand_val_1'] == 'agent' &&
+                                        is_object( $ticket->agent_created )
+                                    ) ||
+                                    (
+                                        $or_condition['operand_val_1'] == 'user' &&
+                                        ! is_object( $ticket->agent_created )
+                                    )
+                                ) {
+                                    $flag = true;
+                                }
+                                break;
+                            case 'user_role':
+                                $user_roles = $ticket->customer->user->roles;
+                                switch ( $or_condition['operator'] ) {
+                                    case '=':
+                                        $flag = in_array( $or_condition['operand_val_1'], $user_roles ) ? true : false;
+                                        break;
+                                    case 'IN':
+                                        foreach ( $user_roles as $id ) {
+                                            if ( in_array( $id, $or_condition['operand_val_1'] ) ) {
+                                                $flag = true;
+                                                break;
+                                            }
+                                        }
+                                    }
+                                    break;
+                                case 'NOT IN':
+                                    foreach ( $user_roles as $id ) {
+                                        if ( in_array( $id, $condition['operand_val_1'] ) ) {
+                                            $flag = false;
+                                            break;
+                                        break;
+                                    case 'NOT IN':
+                                        $temp = true;
+                                        foreach ( $user_roles as $id ) {
+                                            if ( in_array( $id, $or_condition['operand_val_1'] ) ) {
+                                                $temp = false;
+                                                break;
+                                            }
+                                        }
+                                    }
+                                    break;
+                            }
+                            break;
+                        default:
+                            $is_valid = apply_filters( 'wpsc_tc_is_valid', $is_valid, $slug, $condition, $ticket );
+                            break;
+                                        $flag = $temp;
+                                        break;
+                                }
+                                break;
+                            default:
+                                $flag = apply_filters( 'wpsc_tc_is_valid', $flag, $slug, $or_condition, $ticket );
+                                break;
+                        }
+                    }
+                }
+                if ( $relation == 'OR' && $is_valid ) {
+                    $flag = true;
+                    break;
+                }
+                if ( $relation == 'AND' && ! $is_valid ) {
+                    $flag = false;
+                    break;
+                }
+            }
+            return $flag;
+                    // no need to check further OR conditions if this condition is TRUE.
+                    if ( $flag ) {
+                        break;
+                    }
+                }
+                // no need to check further AND conditions if this condition is FALSE.
+                if ( ! $flag ) {
+                    return false;
+                }
+            }
+            // if we make upto this point, all conditions are satisfied.
+            return true;
+        }
+    }

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-checkbox.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])' . $val . '($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])' . esc_sql( $val ) . '($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = self::get_sql_slug( $cf ) . ' NOT RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' NOT RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-date.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;
 …
                         self::get_sql_slug( $cf ) . ' != \'0000-00-00 00:00:00\'',
                     );
                     $str  = '(' . implode( ' AND ', $arr ) . ')';
+                    $str  = '(' . implode( ' AND ', esc_sql( $arr ) ) . ')';
                     break;
                 case '>':
                     $to  = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str = self::get_sql_slug( $cf ) . $compare . '\'' . $to . '\'';
+                    $str = self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $to ) . '\'';
                     break;
 …
                         self::get_sql_slug( $cf ) . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '((' . implode( ' OR ', $arr ) . ') AND ' . self::get_sql_slug( $cf ) . ' != \'0000-00-00 00:00:00\')';
+                    $str  = '((' . implode( ' OR ', esc_sql( $arr ) ) . ') AND ' . self::get_sql_slug( $cf ) . ' != \'0000-00-00 00:00:00\')';
                     break;
 …
                         self::get_sql_slug( $cf ) . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                     $from = WPSC_Functions::get_utc_date_str( $val['operand_val_1'] . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ' 23:59:59' );
                     $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-datetime.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '>=':
                     $from = WPSC_Functions::get_utc_date_str( $val . ':00' );
                     $str  = self::get_sql_slug( $cf ) . $compare . '\'' . $from . '\'';
+                    $str  = self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $from ) . '\'';
                     break;
 …
                     $from = WPSC_Functions::get_utc_date_str( $val['operand_val_1'] . ':00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ':00' );
                     $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-email.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
 …
                     foreach ( $val as $term ) {
                         $term  = str_replace( '*', '%', trim( $term ) );
                         $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . $term . '%\'';
+                        $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . esc_sql( $term ) . '%\'';
+                    }
                     $str = '(' . implode( ' OR ', $arr ) . ')';

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-multi-select.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])' . $val . '($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])' . esc_sql( $val ) . '($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = self::get_sql_slug( $cf ) . ' NOT RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = self::get_sql_slug( $cf ) . ' NOT RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-number.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '<=':
                 case '>=':
                     $str = self::get_sql_slug( $cf ) . $compare . $val;
+                    $str = self::get_sql_slug( $cf ) . $compare . esc_sql( $val );
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(' . implode( ', ', $val ) . ')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(' . implode( ', ', esc_sql( $val ) ) . ')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(' . implode( ', ', $val ) . ')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(' . implode( ', ', esc_sql( $val ) ) . ')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-radio-button.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-single-select.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-text-field.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
 …
                     foreach ( $val as $term ) {
                         $term  = str_replace( '*', '%', trim( $term ) );
                         $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . $term . '%\'';
+                        $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . esc_sql( $term ) . '%\'';
+                    }
                     $str = '(' . implode( ' OR ', $arr ) . ')';

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-textarea.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], 'IN' ); ?> value="IN"><?php esc_attr_e( 'Matches', 'supportcandy' ); ?></option>
 …
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
 …
                     foreach ( $val as $term ) {
                         $term  = str_replace( '*', '%', trim( $term ) );
                         $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . $term . '%\'';
+                        $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . esc_sql( $term ) . '%\'';
+                    }
                     $str = '(' . implode( ' OR ', $arr ) . ')';

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-time.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . ' BETWEEN \'' . $val . '\' AND \'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $val ) . '\' AND \'' . esc_sql( $val ) . '\'';
                     break;
                 case '<':
                     $str = self::get_sql_slug( $cf ) . $compare . '\'' . $val . '\' AND ' . self::get_sql_slug( $cf ) . ' !=""';
+                    $str = self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $val ) . '\' AND ' . self::get_sql_slug( $cf ) . ' !=""';
                     break;
                 case '>':
                     $str = self::get_sql_slug( $cf ) . $compare . '\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $val ) . '\'';
                     break;
                 case '<=':
                     $arr = array(
                         self::get_sql_slug( $cf ) . $compare . '\'' . $val . '\'',
                         self::get_sql_slug( $cf ) . ' BETWEEN \'' . $val . '\' AND \'' . $val . '\'',
+                        self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $val ) . '\'',
+                        self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $val ) . '\' AND \'' . esc_sql( $val ) . '\'',
                     );
                     $str = '((' . implode( ' OR ', $arr ) . ') AND ' . self::get_sql_slug( $cf ) . ' != "")';
 …
                 case '>=':
                     $arr = array(
                         self::get_sql_slug( $cf ) . $compare . '\'' . $val . '\'',
                         self::get_sql_slug( $cf ) . ' BETWEEN \'' . $val . '\' AND \'' . $val . '\'',
+                        self::get_sql_slug( $cf ) . $compare . '\'' . esc_sql( $val ) . '\'',
+                        self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $val ) . '\' AND \'' . esc_sql( $val ) . '\'',
                     );
                     $str = '(' . implode( ' OR ', $arr ) . ')';
 …
                 case 'BETWEEN':
                     $str = self::get_sql_slug( $cf ) . ' BETWEEN \'' . $val['operand_val_1'] . '\' AND \'' . $val['operand_val_2'] . '\'';
+                    $str = self::get_sql_slug( $cf ) . ' BETWEEN \'' . esc_sql( $val['operand_val_1'] ) . '\' AND \'' . esc_sql( $val['operand_val_2'] ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-cf-url.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
 …
                     foreach ( $val as $term ) {
                         $term  = str_replace( '*', '%', trim( $term ) );
                         $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . $term . '%\'';
+                        $arr[] = 'CONVERT(' . self::get_sql_slug( $cf ) . ' USING utf8) LIKE \'%' . esc_sql( $term ) . '%\'';
+                    }
                     $str = '(' . implode( ' OR ', $arr ) . ')';

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-agent-created.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-assigned-agent.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                         $val = '^$';
+                    }
                     $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])' . $val . '($|[|])\'';
+                    $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])' . esc_sql( $val ) . '($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;
                 case 'NOT IN':
                     foreach ( $val as $index => $value ) {
+                    foreach ( esc_sql( $val ) as $index => $value ) {
                         if ( $value == '' || $value == '0' ) {
                             $val[ $index ] = '^$';
+                        }
+                    }
                     $str = 't.' . $cf->slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = 't.' . $cf->slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-browser.php

-                      r2763565
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-category.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-customer.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-date-closed.php

-                      r2763565
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str  = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;
                 case '<':
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $str  = 't.' . $cf->slug . $compare . '\'' . $from . '\'';
+                    $str  = 't.' . $cf->slug . $compare . '\'' . esc_sql( $from ) . '\'';
                     break;
                 case '>':
                     $to  = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str = 't.' . $cf->slug . $compare . '\'' . $to . '\'';
+                    $to  = WPSC_Functions::get_utc_date_str( esc_sql( $val ) . ' 23:59:59' );
+                    $str = 't.' . $cf->slug . $compare . '\'' . esc_sql( $to ) . '\'';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
                 case '>=':
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
+                    $from = WPSC_Functions::get_utc_date_str( esc_sql( $val ) . ' 00:00:00' );
+                    $to   = WPSC_Functions::get_utc_date_str( esc_sql( $val ) . ' 23:59:59' );
                     $arr  = array(
                         't.' . $cf->slug . $compare . '\'' . $to . '\'',
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ' 23:59:59' );
+                    }
                     $str = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-date-created.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str  = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;
                 case '<':
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $str  = 't.' . $cf->slug . $compare . '\'' . $from . '\'';
+                    $str  = 't.' . $cf->slug . $compare . '\'' . esc_sql( $from ) . '\'';
                     break;
                 case '>':
                     $to  = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str = 't.' . $cf->slug . $compare . '\'' . $to . '\'';
+                    $str = 't.' . $cf->slug . $compare . '\'' . esc_sql( $to ) . '\'';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ' 23:59:59' );
+                    }
                     $str = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-date-updated.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str  = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;
                 case '<':
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $str  = 't.' . $cf->slug . $compare . '\'' . $from . '\'';
+                    $str  = 't.' . $cf->slug . $compare . '\'' . esc_sql( $from ) . '\'';
                     break;
                 case '>':
                     $to  = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str = 't.' . $cf->slug . $compare . '\'' . $to . '\'';
+                    $str = 't.' . $cf->slug . $compare . '\'' . esc_sql( $to ) . '\'';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                     $from = WPSC_Functions::get_utc_date_str( $val['operand_val_1'] . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ' 23:59:59' );
                     $str  = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-description.php

r2873748	r2895557
190	190
191	191	<div class="item conditional">
192		<select class="operator" onchange="wpsc_~~get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands~~' ) ); ?>');">
	192	<select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
193	193	<option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
194	194	<option <?php isset( $filter['operator'] ) && selected( $filter['operator'], 'LIKE' ); ?> value="LIKE"><?php esc_attr_e( 'Has Words', 'supportcandy' ); ?></option>

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-id.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-last-reply-by.php

-                      r2763565
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-last-reply-on.php

-                      r2763565
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $to   = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str  = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str  = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;
                 case '<':
                     $from = WPSC_Functions::get_utc_date_str( $val . ' 00:00:00' );
                     $str  = 't.' . $cf->slug . $compare . '\'' . $from . '\'';
+                    $str  = 't.' . $cf->slug . $compare . '\'' . esc_sql( $from ) . '\'';
                     break;
                 case '>':
                     $to  = WPSC_Functions::get_utc_date_str( $val . ' 23:59:59' );
                     $str = 't.' . $cf->slug . $compare . '\'' . $to . '\'';
+                    $str = 't.' . $cf->slug . $compare . '\'' . esc_sql( $to ) . '\'';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'',
                     );
                     $str  = '(' . implode( ' OR ', $arr ) . ')';
+                    $str  = '(' . implode( ' OR ', esc_sql( $arr ) ) . ')';
                     break;
 …
                         $to   = WPSC_Functions::get_utc_date_str( $val['operand_val_2'] . ' 23:59:59' );
+                    }
                     $str = 't.' . $cf->slug . ' BETWEEN \'' . $from . '\' AND \'' . $to . '\'';
+                    $str = 't.' . $cf->slug . ' BETWEEN \'' . esc_sql( $from ) . '\' AND \'' . esc_sql( $to ) . '\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-os.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = self::get_sql_slug( $cf ) . '=\'' . $val . '\'';
+                    $str = self::get_sql_slug( $cf ) . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
 …
                     foreach ( $val as $term ) {
                         $term  = str_replace( '*', '%', trim( $term ) );
                         $arr[] = 'CONVERT(t.' . $cf->slug . ' USING utf8) LIKE \'%' . $term . '%\'';
+                        $arr[] = 'CONVERT(t.' . $cf->slug . ' USING utf8) LIKE \'%' . esc_sql( $term ) . '%\'';
+                    }
                     $str = '(' . implode( ' OR ', $arr ) . ')';

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-prev-assignee.php

-                      r2793251
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])' . $val . '($|[|])\'';
+                    $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])' . esc_sql( $val ) . '($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = 't.' . $cf->slug . ' RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;
 …
+                        }
+                    }
                     $str = 't.' . $cf->slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                    $str = 't.' . $cf->slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-priority.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-source.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-status.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;
                 case 'IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;
                 case 'NOT IN':
                     $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', $val ) . '\')';
+                    $str = 'CONVERT(t.' . $cf->slug . ' USING utf8) NOT IN(\'' . implode( '\', \'', esc_sql( $val ) ) . '\')';
                     break;

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-subject.php

r2873748	r2895557
197	197
198	198	<div class="item conditional">
199		<select class="operator" onchange="wpsc_~~get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands~~' ) ); ?>');">
	199	<select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
200	200	<option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
201	201	<option <?php isset( $filter['operator'] ) && selected( $filter['operator'], 'LIKE' ); ?> value="LIKE"><?php esc_attr_e( 'Has Words', 'supportcandy' ); ?></option>

supportcandy/trunk/includes/custom-field-types/class-wpsc-df-user-type.php

-                      r2873748
+                      r2895557
             <div class="item conditional">
                 <select class="operator" onchange="wpsc_get_ticket_filter_operands(this, <?php echo esc_attr( $cf->id ); ?>, '<?php echo esc_attr( wp_create_nonce( 'wpsc_get_ticket_filter_operands' ) ); ?>');">
+                <select class="operator" onchange="wpsc_tc_get_operand(this, '<?php echo esc_attr( $cf->slug ); ?>', '<?php echo esc_attr( wp_create_nonce( 'wpsc_tc_get_operand' ) ); ?>');">
                     <option value=""><?php esc_attr_e( 'Compare As', 'supportcandy' ); ?></option>
                     <option <?php isset( $filter['operator'] ) && selected( $filter['operator'], '=' ); ?> value="="><?php esc_attr_e( 'Equals', 'supportcandy' ); ?></option>
 …
                 case '=':
                     $str = 't.' . $cf->slug . '=\'' . $val . '\'';
+                    $str = 't.' . $cf->slug . '=\'' . esc_sql( $val ) . '\'';
                     break;

supportcandy/trunk/includes/models/class-wpsc-customer.php

-                      r2822852
+                      r2895557
                 // Invalid filter if it does not contain slug, compare and val indexes.
                 $slug    = isset( $filter['slug'] ) ? $filter['slug'] : false;
+                $slug    = isset( $filter['slug'] ) ? WPSC_Functions::sanitize_sql_key( $filter['slug'] ) : false;
                 $compare = isset( $filter['compare'] ) ? $filter['compare'] : false;
                 $val     = isset( $filter['val'] ) ? $filter['val'] : false;
 …
+                }
+                switch ( $compare ) {
+                    case '<':
+                    case '=':
+                    case '>':
+                    case '<=':
+                    case '>=':
+                        if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                            $filter_str[] = '1=1';
+                // custom filter.
+                if ( $slug === 'custom_query' ) {
+                    $filter_str[] = $val;
+                } else {
+                    switch ( $compare ) {
+                        case '<':
+                        case '=':
+                        case '>':
+                        case '<=':
+                        case '>=':
+                            if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                                $filter_str[] = '1=1';
+                                break;
+                            }
+                            $filter_str[] = 'c.' . $slug . ' ' . $compare . ' \'' . esc_sql( $val ) . '\'';
                             break;
+                        }
+                        $filter_str[] = 'c.' . $slug . ' ' . $compare . ' \'' . $val . '\'';
+                        break;
+                    case 'BETWEEN':
+                        $filter_str[] = 'c.' . $slug . ' BETWEEN \'' . $val[0] . '\' AND \'' . $val[1] . '\'';
+                        break;
+                    case 'IN':
+                        if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                            $filter_str[] = 'c.' . $slug . ' RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                        } else {
+                            $filter_str[] = 'c.' . $slug . ' IN ( \'' . implode( '\', \'', $val ) . '\' )';
+                        }
+                        break;
+                    case 'NOT IN':
+                        if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                            $filter_str[] = 'c.' . $slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', $val ) . ')($|[|])\'';
+                        } else {
+                            $filter_str[] = 'c.' . $slug . ' NOT IN ( \'' . implode( '\', \'', $val ) . '\' )';
+                        }
+                        break;
+                        case 'BETWEEN':
+                            $filter_str[] = 'c.' . $slug . ' BETWEEN \'' . esc_sql( $val[0] ) . '\' AND \'' . esc_sql( $val[1] ) . '\'';
+                            break;
+                        case 'IN':
+                            if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                                $filter_str[] = 'c.' . $slug . ' RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
+                            } else {
+                                $filter_str[] = 'c.' . $slug . ' IN ( \'' . implode( '\', \'', esc_sql( $val ) ) . '\' )';
+                            }
+                            break;
+                        case 'NOT IN':
+                            if ( self::$schema[ $slug ]['has_multiple_val'] ) {
+                                $filter_str[] = 'c.' . $slug . ' NOT RLIKE \'(^|[|])(' . implode( '|', esc_sql( $val ) ) . ')($|[|])\'';
+                            } else {
+                                $filter_str[] = 'c.' . $slug . ' NOT IN ( \'' . implode( '\', \'', esc_sql( $val ) ) . '\' )';
+                            }
+                            break;
+                    }
+                }
+            }

supportcandy/trunk/includes/models/class-wpsc-ticket.php

r2887316	r2895557
516	516
517	517	// Invalid filter if it does not contain slug, compare and val indexes.
518		$slug = isset( $filter['slug'] ) ? ~~$filter['slug']~~ : false;
	518	$slug = isset( $filter['slug'] ) ? WPSC_Functions::sanitize_sql_key( $filter['slug'] ) : false;
519	519	$compare = isset( $filter['compare'] ) ? $filter['compare'] : false;
520	520	$val = isset( $filter['val'] ) ? $filter['val'] : false;

supportcandy/trunk/readme.txt

-                      r2889641
+                      r2895557
 Tested up to: 6.2
 Requires PHP: 7.4
 Stable tag: 3.1.4
+Stable tag: 3.1.5
 == Description ==
 …
 == Changelog ==
+= 3.1.5 (April 07, 2023) =
+* New: You can add multiple AND and OR conditions for all applicable places like ticket list filters, email notifications, Assign agent rules, SLA, etc.
+* Fix: Important security fixes
 = 3.1.4 (March 27, 2023) =

supportcandy/trunk/supportcandy.php

-                      r2889641
+                      r2895557
  * Plugin URI: https://wordpress.org/plugins/supportcandy/
  * Description: Easy & Powerful support ticket system for WordPress
  * Version: 3.1.4
+ * Version: 3.1.5
  * Author: SupportCandy
  * Author URI: https://supportcandy.net/
 …
          * @var string
          */
         public static $version = '3.1.4';
+        public static $version = '3.1.5';
         /**

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Context Navigation

Changeset 2895557

Legend:

Download in other formats: