Fix leading-zero ticket ID handling across API and UI

- dashboard.js: use String(cb.value) instead of parseInt() in
  getSelectedTicketIds() so zero-padded IDs like 000123456 are
  preserved when sent to bulk_operation.php
- DashboardView.php: remove (int) cast on data-ticket-id attribute
  for quick-status button; was stripping leading zeros
- TicketView.php: remove (int) cast on export URL ticket_id param
- update_ticket.php: preserve ticket_id as string via trim((string)...)
- add_comment.php: preserve ticket_id as string; validate with
  ctype_digit instead of (int) cast so comments are stored with the
  canonical zero-padded ID matching the tickets table
- export_tickets.php: validate singleId as string to avoid stripping
  leading zeros in the export endpoint
- notifications.php: preserve ticket_id strings in URLs and ticket
  ownership checks; index myTicketIds by both int and string forms
  for robust lookup regardless of how audit_log stored the ID
- TicketController.php: fix inline dependency insert — column was
  wrong (depends_on_ticket_id → depends_on_id) and bind types were
  wrong ("iii" → "ssi"); feature was silently broken

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

api/add_comment.php

@@ -65,8 +65,8 @@ try {
         throw new Exception("Invalid JSON data received");
     }
 
-    $ticketId = isset($data['ticket_id']) ? (int)$data['ticket_id'] : 0;
-    if ($ticketId <= 0) {
+    $ticketId = isset($data['ticket_id']) ? trim((string)$data['ticket_id']) : '';
+    if (!ctype_digit($ticketId) || (int)$ticketId <= 0) {
         http_response_code(400);
         ob_end_clean();
         header('Content-Type: application/json');

api/export_tickets.php

@@ -43,7 +43,8 @@ try {
     $search = isset($_GET['search']) ? trim($_GET['search']) : null;
     $format   = isset($_GET['format'])    ? $_GET['format']    : 'csv';
     $ticketIds = isset($_GET['ticket_ids']) ? $_GET['ticket_ids'] : null;
-    $singleId  = isset($_GET['ticket_id']) ? (int)$_GET['ticket_id'] : null;
+    $singleIdRaw = isset($_GET['ticket_id']) ? trim($_GET['ticket_id']) : null;
+    $singleId    = ($singleIdRaw !== null && ctype_digit($singleIdRaw) && (int)$singleIdRaw > 0) ? $singleIdRaw : null;
 
     // Initialize model
     $ticketModel = new TicketModel($conn);

api/notifications.php

@@ -75,7 +75,7 @@ $stmt = $conn->prepare($myTicketsSql);
 $stmt->bind_param('ii', $userId, $userId);
 $stmt->execute();
 $mtResult = $stmt->get_result();
-while ($mtRow = $mtResult->fetch_assoc()) { $myTicketIds[(int)$mtRow['ticket_id']] = true; }
+while ($mtRow = $mtResult->fetch_assoc()) { $myTicketIds[(int)$mtRow['ticket_id']] = true; $myTicketIds[$mtRow['ticket_id']] = true; }
 $stmt->close();
 
 $watchedSql = "SELECT ticket_id FROM ticket_watchers WHERE user_id = ?";
@@ -83,7 +83,7 @@ $stmt = $conn->prepare($watchedSql);
 $stmt->bind_param('i', $userId);
 $stmt->execute();
 $wResult = $stmt->get_result();
-while ($wRow = $wResult->fetch_assoc()) { $myTicketIds[(int)$wRow['ticket_id']] = true; }
+while ($wRow = $wResult->fetch_assoc()) { $myTicketIds[(int)$wRow['ticket_id']] = true; $myTicketIds[$wRow['ticket_id']] = true; }
 $stmt->close();
 
 // Step B: fetch recent comment audit events not by the current user
@@ -109,8 +109,9 @@ $stmt->close();
 $commentRows = [];
 foreach ($rawCommentRows as $rawRow) {
     $d   = json_decode($rawRow['details'] ?? '{}', true) ?? [];
-    $tid = (int)($d['ticket_id'] ?? 0);
-    if ($tid > 0 && isset($myTicketIds[$tid])) {
+    $tidRaw = $d['ticket_id'] ?? 0;
+    $tid = (int)$tidRaw;
+    if ($tid > 0 && (isset($myTicketIds[$tid]) || isset($myTicketIds[$tidRaw]))) {
         $commentRows[] = $rawRow;
         if (count($commentRows) >= 15) break;
     }
@@ -158,8 +159,8 @@ foreach ($all as $row) {
         ? 'comment'
         : $row['action_type'];
     $ticketId = ($actionType === 'comment')
-        ? (int)($details['ticket_id'] ?? 0)
-        : (int)$row['entity_id'];
+        ? ($details['ticket_id'] ?? 0)
+        : $row['entity_id'];
     $isRead = $lastSeen && $row['created_at'] <= $lastSeen;
 
     // Build human-readable title

api/update_ticket.php

@@ -252,7 +252,7 @@ try {
         throw new Exception("Missing ticket_id parameter");
     }
     
-    $ticketId = (int)$data['ticket_id'];
+    $ticketId = trim((string)$data['ticket_id']);
 
     // Initialize controller
     $controller = new ApiTicketController($conn, $userId, $isAdmin, $currentUser);