login: Introduce a more "professional" login backdrop

Reviewed-By: Peter Rotich <peter@osticket.com>

v1.10 rc2++ Bug Fixes

Reviewed-By: Jared Hancock <jared@osticket.com>

php: Support PHP 7, require at least 5.4

Reviewed-By: Peter Rotich <peter@osticket.com>

Bug: Show help topic specific thank-you page

Reviewed-By: Jared Hancock <jared@osticket.com>

Textarea input cleanup

Reviewed-By: Jared Hancock <jared@osticket.com>

This duplicates the custom logo code to allow for custom login backdrops. A
new page is added to the "Company" settings page which allows for management
of the uploaded custom backdrops.

Also, rename other apc_xxx functio to the new apcu_xxx equivalents available
since PHP 5.4.

Use APCu, if available, to cache the compiled model meta data.

Previously, the create method was used to create a new instance of an orm
model (which would later result in an INSERT when persisted); however, some
classes require or utilize varying parameters to their create() method,
which PHP7 considers an error. Methods in subclasses must be defined with a
calling signature compatible with the parent class.

This patch shifts the concept of model creation to the constructor. Now, the
constructor of ORM models is required to be compatible with that of
ModelBase class. Now that most models do not define a constructor, this is
much easier to control, and much more logical.

Also, remove an issue where assignments on a relationship field to an
instance of a super class of the foreign model would raise an error. This
was previously addressed by re-classing the instance in the
ModelInstanceManager::getOrBuild(); however that design would create
multiple instances of the same object in memory, which defeats one of the
primary design concepts of the ORM. This patch addresses the issue by
allowing super-classes of the declared foreign model in relationship
assignments.

This commit attempts to remove all coding standard warnings emitted by PHP
7.0.

Default to system default of staff doesn't have page limit set.

Credit: @antriver PR#2951

Strip tags on text input field to prevent potential XSS exploit.

Let textarea widgets parse and clean input based on configured text format.
Add cleanup routine to ThreadEntryBody
Clean response/note inputs

Conflicts:

	include/class.forms.php
	include/class.ticket.php

iFrame 

Reviewed-By: Jared Hancock <jared@osticket.com>

Encoded entities can be used to bypass safety checks
Don't remove iframe when using xml_dom to balance tags

Upgrade htmLawed to v 1.1.20

Reviewed-By: Jared Hancock <jared@osticket.com>

Automated $uid is initialized as null - this resulted in the initial field
getting a null id.

To avoid date format ambiguity the datepicker replaces entered date with a
standard 'ISO 8601' date format on form submission. The system however fails
to use datepicker's format on post-back, resulting in invalid date on
subsequent submit.

This pull request addresses the issue by making sure reflected date uses the
format datepicker expects.

'strtotime' uses local timezone without taking into consideration the user's
timezone. This pull requests simply makes sure user's entered timeframe
range is converted to db time before it's used in a query.

Unify ticket source and preserve original (e.g Wed) source on ticket edit.

Only change SLA  if  target department has an SLA.

Log assignment note (comments), if any, when staff created ticket is
assigned.

Do not send out new message auto-response to ticket owner as well as
collaborators on new ticket.

Encoded entities can be used to bypass safety checks
Don't remove iframe when using xml_dom to balance tags

On some combinations of operating systems, PHP and libpcre versions, `\s`
will match the iso-8859-x non-breaking-space, 0xa0. This regular expression
will munge the UTF8 encoded version, 0xc2a0 to 0xc220, which is not a valid
UTF8 character.

When inserted into a UTF8 field in mysql, the text will be truncated at and
after the first invalid character.

login: Client SSO Destination

Reviewed-By: Peter Rotich <peter@osticket.com>

Consider the destination clicked prior to SSO authentication.

collars: Add avatars to the popup mgmt dialog

Reviewed-By: Peter Rotich <peter@osticket.com>

Fix for issue 2574 and 2672

Reviewed-By: Peter Rotich <peter@osticket.com>

Issue/2877

Reviewed-By: Peter Rotich <peter@osticket.com>