Commit | Line | Data |
---|---|---|
81b5b746 | 1 | <?php |
2 | /*************************************************************************** | |
8d84c630 | 3 | * Copyright (C) 2003-2009 Polytechnique.org * |
81b5b746 | 4 | * http://opensource.polytechnique.org/ * |
5 | * * | |
6 | * This program is free software; you can redistribute it and/or modify * | |
7 | * it under the terms of the GNU General Public License as published by * | |
8 | * the Free Software Foundation; either version 2 of the License, or * | |
9 | * (at your option) any later version. * | |
10 | * * | |
11 | * This program is distributed in the hope that it will be useful, * | |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * | |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * | |
14 | * GNU General Public License for more details. * | |
15 | * * | |
16 | * You should have received a copy of the GNU General Public License * | |
17 | * along with this program; if not, write to the Free Software * | |
18 | * Foundation, Inc., * | |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * | |
20 | ***************************************************************************/ | |
21 | ||
22 | class EmailModule extends PLModule | |
23 | { | |
81b5b746 | 24 | function handlers() |
25 | { | |
26 | return array( | |
27 | 'emails' => $this->make_hook('emails', AUTH_COOKIE), | |
28 | 'emails/alias' => $this->make_hook('alias', AUTH_MDP), | |
29 | 'emails/antispam' => $this->make_hook('antispam', AUTH_MDP), | |
30 | 'emails/broken' => $this->make_hook('broken', AUTH_COOKIE), | |
31 | 'emails/redirect' => $this->make_hook('redirect', AUTH_MDP), | |
32 | 'emails/send' => $this->make_hook('send', AUTH_MDP), | |
62ce6356 | 33 | 'emails/antispam/submit' => $this->make_hook('submit', AUTH_COOKIE), |
9c0a8f8c | 34 | 'emails/test' => $this->make_hook('test', AUTH_COOKIE, 'user', NO_AUTH), |
9e570fe0 | 35 | |
3d17e48f FB |
36 | 'emails/rewrite/in' => $this->make_hook('rewrite_in', AUTH_PUBLIC), |
37 | 'emails/rewrite/out' => $this->make_hook('rewrite_out', AUTH_PUBLIC), | |
38 | ||
2ee43273 FB |
39 | 'emails/imap/in' => $this->make_hook('imap_in', AUTH_PUBLIC), |
40 | ||
7727ffc7 | 41 | 'admin/emails/duplicated' => $this->make_hook('duplicated', AUTH_MDP, 'admin'), |
f141945d | 42 | 'admin/emails/watch' => $this->make_hook('duplicated', AUTH_MDP, 'admin'), |
5ff3f06b | 43 | 'admin/emails/lost' => $this->make_hook('lost', AUTH_MDP, 'admin'), |
81b5b746 | 44 | ); |
45 | } | |
46 | ||
b7582015 | 47 | function handler_emails(&$page, $action = null, $email = null) |
81b5b746 | 48 | { |
49 | global $globals; | |
e97e9b8f | 50 | require_once 'emails.inc.php'; |
81b5b746 | 51 | |
52 | $page->changeTpl('emails/index.tpl'); | |
46f272fe | 53 | $page->setTitle('Mes emails'); |
81b5b746 | 54 | |
2d997414 | 55 | $user = S::user(); |
81b5b746 | 56 | |
2d997414 | 57 | // Apply the bestalias change request. |
b7582015 | 58 | if ($action == 'best' && $email) { |
46504fb3 VZ |
59 | if (!S::has_xsrf_token()) { |
60 | return PL_FORBIDDEN; | |
61 | } | |
62 | ||
2d997414 VZ |
63 | XDB::execute("UPDATE aliases |
64 | SET flags = TRIM(BOTH ',' FROM REPLACE(CONCAT(',', flags, ','), ',bestalias,', ',')) | |
65 | WHERE id = {?}", $user->id()); | |
66 | XDB::execute("UPDATE aliases | |
67 | SET flags = CONCAT_WS(',', IF(flags = '', NULL, flags), 'bestalias') | |
68 | WHERE id = {?} AND alias = {?}", $user->id(), $email); | |
69 | ||
70 | // As having a non-null bestalias value is critical in | |
71 | // plat/al's code, we do an a posteriori check on the | |
72 | // validity of the bestalias. | |
73 | fix_bestalias($user); | |
81b5b746 | 74 | } |
75 | ||
2d997414 | 76 | // Fetch and display aliases. |
81b5b746 | 77 | $sql = "SELECT alias, (type='a_vie') AS a_vie, |
78 | (alias REGEXP '\\\\.[0-9]{2}$') AS cent_ans, | |
79 | FIND_IN_SET('bestalias',flags) AS best, expire | |
80 | FROM aliases | |
81 | WHERE id = {?} AND type!='homonyme' | |
82 | ORDER BY LENGTH(alias)"; | |
2d997414 | 83 | $page->assign('aliases', XDB::iterator($sql, $user->id())); |
81b5b746 | 84 | |
2d997414 VZ |
85 | // Check for homonyms. |
86 | $homonyme = XDB::query( | |
87 | "SELECT alias | |
88 | FROM aliases | |
89 | INNER JOIN homonymes ON (id = homonyme_id) | |
90 | WHERE user_id = {?} AND type = 'homonyme'", $user->id()); | |
e97e9b8f | 91 | $page->assign('homonyme', $homonyme->fetchOneCell()); |
e1547442 | 92 | |
2d997414 VZ |
93 | // Display active redirections. |
94 | $redirect = new Redirect($user); | |
e97e9b8f | 95 | $page->assign('mails', $redirect->active_emails()); |
81b5b746 | 96 | |
2d997414 | 97 | // Display, when available, the @alias_dom email alias. |
08cce2ff | 98 | $res = XDB::query( |
81b5b746 | 99 | "SELECT alias |
100 | FROM virtual AS v | |
101 | INNER JOIN virtual_redirect AS vr USING(vid) | |
eaf30d86 | 102 | WHERE (redirect={?} OR redirect={?}) |
81b5b746 | 103 | AND alias LIKE '%@{$globals->mail->alias_dom}'", |
2d997414 VZ |
104 | $user->forlifeEmail(), |
105 | // TODO: remove this über-ugly hack. The issue is that you need | |
106 | // to remove all @m4x.org addresses in virtual_redirect first. | |
107 | $user->login() . '@' . $globals->mail->domain2); | |
81b5b746 | 108 | $page->assign('melix', $res->fetchOneCell()); |
81b5b746 | 109 | } |
110 | ||
111 | function handler_alias(&$page, $action = null, $value = null) | |
112 | { | |
113 | require_once 'validations.inc.php'; | |
114 | ||
115 | global $globals; | |
116 | ||
117 | $page->changeTpl('emails/alias.tpl'); | |
46f272fe | 118 | $page->setTitle('Alias melix.net'); |
81b5b746 | 119 | |
2d997414 VZ |
120 | $user = S::user(); |
121 | $page->assign('demande', AliasReq::get_request($user->id())); | |
81b5b746 | 122 | |
2d997414 | 123 | // Remove the email alias. |
40d428d8 VZ |
124 | if ($action == 'delete' && $value) { |
125 | S::assert_xsrf_token(); | |
126 | ||
08cce2ff | 127 | XDB::execute( |
2d997414 VZ |
128 | "DELETE virtual, virtual_redirect |
129 | FROM virtual | |
130 | INNER JOIN virtual_redirect USING (vid) | |
131 | WHERE alias = {?} AND (redirect = {?} OR redirect = {?})", | |
132 | $value, $user->forlifeEmail(), | |
133 | // TODO: remove this über-ugly hack. The issue is that you need | |
134 | // to remove all @m4x.org addresses in virtual_redirect first. | |
135 | $user->login() . '@' . $globals->mail->domain2); | |
81b5b746 | 136 | } |
137 | ||
2d997414 | 138 | // Fetch existing @alias_dom aliases. |
08cce2ff | 139 | $res = XDB::query( |
81b5b746 | 140 | "SELECT alias, emails_alias_pub |
141 | FROM auth_user_quick, virtual | |
142 | INNER JOIN virtual_redirect USING(vid) | |
2d997414 | 143 | WHERE (redirect = {?} OR redirect = {?}) |
eaf30d86 | 144 | AND alias LIKE '%@{$globals->mail->alias_dom}' AND user_id = {?}", |
2d997414 VZ |
145 | $user->forlifeEmail(), |
146 | // TODO: remove this über-ugly hack. The issue is that you need | |
147 | // to remove all @m4x.org addresses in virtual_redirect first. | |
148 | $user->login() . '@' . $globals->mail->domain2, $user->id()); | |
81b5b746 | 149 | list($alias, $visibility) = $res->fetchOneRow(); |
150 | $page->assign('actuel', $alias); | |
151 | ||
40d428d8 VZ |
152 | if ($action == 'ask' && Env::has('alias') && Env::has('raison')) { |
153 | S::assert_xsrf_token(); | |
81b5b746 | 154 | |
40d428d8 | 155 | //Si l'utilisateur vient de faire une damande |
5e2307dc | 156 | $alias = Env::v('alias'); |
157 | $raison = Env::v('raison'); | |
158 | $public = (Env::v('public', 'off') == 'on')?"public":"private"; | |
81b5b746 | 159 | |
160 | $page->assign('r_alias', $alias); | |
161 | $page->assign('r_raison', $raison); | |
162 | if ($public == 'public') { | |
163 | $page->assign('r_public', true); | |
164 | } | |
165 | ||
a7de4ef7 | 166 | //Quelques vérifications sur l'alias (caractères spéciaux) |
81b5b746 | 167 | if (!preg_match( "/^[a-zA-Z0-9\-.]{3,20}$/", $alias)) { |
a7d35093 FB |
168 | $page->trigError("L'adresse demandée n'est pas valide." |
169 | . " Vérifie qu'elle comporte entre 3 et 20 caractères" | |
170 | . " et qu'elle ne contient que des lettres non accentuées," | |
171 | . " des chiffres ou les caractères - et ."); | |
fd8f77de | 172 | return; |
81b5b746 | 173 | } else { |
a7de4ef7 | 174 | //vérifier que l'alias n'est pas déja pris |
08cce2ff | 175 | $res = XDB::query('SELECT COUNT(*) FROM virtual WHERE alias={?}', |
81b5b746 | 176 | $alias.'@'.$globals->mail->alias_dom); |
177 | if ($res->fetchOneCell() > 0) { | |
a7d35093 | 178 | $page->trigError("L'alias $alias@{$globals->mail->alias_dom} a déja été attribué. |
81b5b746 | 179 | Tu ne peux donc pas l'obtenir."); |
fd8f77de | 180 | return; |
81b5b746 | 181 | } |
182 | ||
a7de4ef7 | 183 | //vérifier que l'alias n'est pas déja en demande |
81b5b746 | 184 | $it = new ValidateIterator (); |
185 | while($req = $it->next()) { | |
1f07f6c2 | 186 | if ($req->type == "alias" and $req->alias == $alias . '@' . $globals->mail->alias_dom) { |
a7d35093 | 187 | $page->trigError("L'alias $alias@{$globals->mail->alias_dom} a déja été demandé. |
81b5b746 | 188 | Tu ne peux donc pas l'obtenir pour l'instant."); |
fd8f77de | 189 | return ; |
81b5b746 | 190 | } |
191 | } | |
192 | ||
a7de4ef7 | 193 | //Insertion de la demande dans la base, écrase les requêtes précédente |
2d997414 | 194 | $myalias = new AliasReq($user, $alias, $raison, $public); |
81b5b746 | 195 | $myalias->submit(); |
196 | $page->assign('success',$alias); | |
fd8f77de | 197 | return; |
81b5b746 | 198 | } |
46504fb3 VZ |
199 | } elseif ($action == 'set' && ($value == 'public' || $value == 'private')) { |
200 | if (!S::has_xsrf_token()) { | |
201 | return PL_FORBIDDEN; | |
202 | } | |
203 | ||
81b5b746 | 204 | if ($value == 'public') { |
08cce2ff | 205 | XDB::execute("UPDATE auth_user_quick SET emails_alias_pub = 'public' |
2d997414 | 206 | WHERE user_id = {?}", $user->id()); |
81b5b746 | 207 | } else { |
08cce2ff | 208 | XDB::execute("UPDATE auth_user_quick SET emails_alias_pub = 'private' |
2d997414 | 209 | WHERE user_id = {?}", $user->id()); |
81b5b746 | 210 | } |
211 | ||
212 | $visibility = $value; | |
213 | } | |
214 | ||
215 | $page->assign('mail_public', ($visibility == 'public')); | |
81b5b746 | 216 | } |
217 | ||
218 | function handler_redirect(&$page, $action = null, $email = null) | |
219 | { | |
220 | global $globals; | |
221 | ||
222 | require_once 'emails.inc.php'; | |
223 | ||
224 | $page->changeTpl('emails/redirect.tpl'); | |
225 | ||
2d997414 VZ |
226 | $user = S::user(); |
227 | $page->assign_by_ref('user', $user); | |
228 | $page->assign('eleve', $user->promo() >= date("Y") - 5); | |
3b83212e | 229 | |
2d997414 | 230 | $redirect = new Redirect($user); |
81b5b746 | 231 | |
6d6b65bf | 232 | // FS#703 : $_GET is urldecoded twice, hence |
233 | // + (the data) => %2B (in the url) => + (first decoding) => ' ' (second decoding) | |
234 | // Since there can be no spaces in emails, we can fix this with : | |
235 | $email = str_replace(' ', '+', $email); | |
236 | ||
2d997414 | 237 | // Apply email redirection change requests. |
1060c854 | 238 | $result = SUCCESS; |
81b5b746 | 239 | if ($action == 'remove' && $email) { |
1060c854 | 240 | $result = $redirect->delete_email($email); |
81b5b746 | 241 | } |
e1547442 FB |
242 | |
243 | if ($action == 'active' && $email) { | |
244 | $redirect->modify_one_email($email, true); | |
245 | } | |
246 | ||
247 | if ($action == 'inactive' && $email) { | |
248 | $redirect->modify_one_email($email, false); | |
249 | } | |
250 | ||
251 | if ($action == 'rewrite' && $email) { | |
252 | $rewrite = @func_get_arg(3); | |
253 | $redirect->modify_one_email_redirect($email, $rewrite); | |
254 | } | |
255 | ||
40d428d8 VZ |
256 | if (Env::has('emailop')) { |
257 | S::assert_xsrf_token(); | |
258 | ||
5e2307dc | 259 | $actifs = Env::v('emails_actifs', Array()); |
b7582015 | 260 | print_r(Env::v('emails_rewrite')); |
5e2307dc | 261 | if (Env::v('emailop') == "ajouter" && Env::has('email')) { |
b715c1e1 | 262 | $new_email = Env::v('email'); |
6ea6d9c1 | 263 | if ($new_email == "new@example.org") { |
b715c1e1 SJ |
264 | $new_email = Env::v('email_new'); |
265 | } | |
aef0283b VZ |
266 | $result = $redirect->add_email($new_email); |
267 | if ($result == ERROR_INVALID_EMAIL) { | |
b715c1e1 SJ |
268 | $page->assign('email', $new_email); |
269 | } | |
aef0283b | 270 | $page->assign('retour', $result); |
81b5b746 | 271 | } elseif (empty($actifs)) { |
1060c854 | 272 | $result = ERROR_INACTIVE_REDIRECTION; |
81b5b746 | 273 | } elseif (is_array($actifs)) { |
1060c854 | 274 | $result = $redirect->modify_email($actifs, Env::v('emails_rewrite', Array())); |
81b5b746 | 275 | } |
276 | } | |
277 | ||
1060c854 | 278 | switch ($result) { |
44b071c2 SJ |
279 | case ERROR_INACTIVE_REDIRECTION: |
280 | $page->trigError('Tu ne peux pas avoir aucune adresse de redirection active, sinon ton adresse ' | |
4478f95e | 281 | . $user->forlifeEmail() . ' ne fonctionnerait plus.'); |
44b071c2 SJ |
282 | break; |
283 | case ERROR_INVALID_EMAIL: | |
284 | $page->trigError('Erreur: l\'email n\'est pas valide.'); | |
285 | break; | |
286 | case ERROR_LOOP_EMAIL: | |
4478f95e | 287 | $page->trigError('Erreur : ' . $user->forlifeEmail() |
44b071c2 SJ |
288 | . ' ne doit pas être renvoyé vers lui-même, ni vers son équivalent en ' |
289 | . $globals->mail->domain2 . ' ni vers polytechnique.edu.'); | |
290 | break; | |
291 | } | |
292 | ||
2d997414 | 293 | // Fetch the @alias_dom email alias, if any. |
08cce2ff | 294 | $res = XDB::query( |
81b5b746 | 295 | "SELECT alias |
296 | FROM virtual | |
297 | INNER JOIN virtual_redirect USING(vid) | |
298 | WHERE (redirect={?} OR redirect={?}) | |
eaf30d86 | 299 | AND alias LIKE '%@{$globals->mail->alias_dom}'", |
2d997414 VZ |
300 | $user->forlifeEmail(), |
301 | // TODO: remove this über-ugly hack. The issue is that you need | |
302 | // to remove all @m4x.org addresses in virtual_redirect first. | |
303 | $user->login() . '@' . $globals->mail->domain2); | |
81b5b746 | 304 | $melix = $res->fetchOneCell(); |
305 | if ($melix) { | |
306 | list($melix) = explode('@', $melix); | |
307 | $page->assign('melix',$melix); | |
308 | } | |
309 | ||
2d997414 | 310 | // Fetch existing email aliases. |
08cce2ff | 311 | $res = XDB::query( |
81b5b746 | 312 | "SELECT alias,expire |
313 | FROM aliases | |
314 | WHERE id={?} AND (type='a_vie' OR type='alias') | |
2d997414 | 315 | ORDER BY !FIND_IN_SET('usage',flags), LENGTH(alias)", $user->id()); |
81b5b746 | 316 | $page->assign('alias', $res->fetchAllAssoc()); |
2d997414 | 317 | $page->assign('emails', $redirect->emails); |
aab4661d | 318 | |
2d997414 | 319 | // Display GoogleApps acount information. |
f5c4bf30 | 320 | require_once 'googleapps.inc.php'; |
2d997414 | 321 | $page->assign('googleapps', GoogleAppsAccount::account_status($user->id())); |
b715c1e1 SJ |
322 | |
323 | require_once 'emails.combobox.inc.php'; | |
324 | fill_email_combobox($page); | |
81b5b746 | 325 | } |
326 | ||
b7582015 | 327 | function handler_antispam(&$page, $statut_filtre = null) |
81b5b746 | 328 | { |
329 | require_once 'emails.inc.php'; | |
8f201b69 FB |
330 | $wp = new PlWikiPage('Xorg.Antispam'); |
331 | $wp->buildCache(); | |
81b5b746 | 332 | |
333 | $page->changeTpl('emails/antispam.tpl'); | |
334 | ||
12a587df | 335 | $bogo = new Bogo(S::user()); |
b7582015 | 336 | if (isset($statut_filtre)) { |
11ed26e5 | 337 | $bogo->change($statut_filtre + 0); |
81b5b746 | 338 | } |
2d997414 | 339 | $page->assign('filtre', $bogo->level()); |
81b5b746 | 340 | } |
341 | ||
62ce6356 | 342 | function handler_submit(&$page) |
343 | { | |
8f201b69 FB |
344 | $wp = new PlWikiPage('Xorg.Mails'); |
345 | $wp->buildCache(); | |
62ce6356 | 346 | $page->changeTpl('emails/submit_spam.tpl'); |
347 | ||
40d428d8 VZ |
348 | if (Post::has('send_email')) { |
349 | S::assert_xsrf_token(); | |
350 | ||
f3df6d38 | 351 | $upload = PlUpload::get($_FILES['mail'], S::user()->login(), 'spam.submit', true); |
15603084 | 352 | if (!$upload) { |
a7d35093 | 353 | $page->trigError('Une erreur a été rencontrée lors du transfert du fichier'); |
62ce6356 | 354 | return; |
355 | } | |
15603084 | 356 | $mime = $upload->contentType(); |
62ce6356 | 357 | if ($mime != 'text/x-mail' && $mime != 'message/rfc822') { |
15603084 | 358 | $upload->clear(); |
faefdbb7 | 359 | $page->trigError('Le fichier ne contient pas un email complet'); |
62ce6356 | 360 | return; |
361 | } | |
2d997414 VZ |
362 | $type = (Post::v('type') == 'spam' ? 'spam' : 'nonspam'); |
363 | ||
62ce6356 | 364 | global $globals; |
2d997414 | 365 | $box = $type . '@' . $globals->mail->domain; |
62ce6356 | 366 | $mailer = new PlMailer(); |
367 | $mailer->addTo($box); | |
2d997414 VZ |
368 | $mailer->setFrom('"' . S::user()->fullName() . '" <web@' . $globals->mail->domain . '>'); |
369 | $mailer->setTxtBody($type . ' soumis par ' . S::user()->login() . ' via le web'); | |
370 | $mailer->addUploadAttachment($upload, $type . '.mail'); | |
62ce6356 | 371 | $mailer->send(); |
a7d35093 | 372 | $page->trigSuccess('Le message a été transmis à ' . $box); |
15603084 | 373 | $upload->clear(); |
62ce6356 | 374 | } |
375 | } | |
376 | ||
81b5b746 | 377 | function handler_send(&$page) |
378 | { | |
81b5b746 | 379 | $page->changeTpl('emails/send.tpl'); |
da419622 | 380 | $page->addJsLink('ajax.js'); |
81b5b746 | 381 | |
46f272fe | 382 | $page->setTitle('Envoyer un email'); |
81b5b746 | 383 | |
384 | // action si on recoit un formulaire | |
3360c04f | 385 | if (Post::has('save')) { |
46504fb3 VZ |
386 | if (!S::has_xsrf_token()) { |
387 | return PL_FORBIDDEN; | |
388 | } | |
389 | ||
3360c04f FB |
390 | unset($_POST['save']); |
391 | if (trim(preg_replace('/-- .*/', '', Post::v('contenu'))) != "") { | |
392 | $_POST['to_contacts'] = explode(';', @$_POST['to_contacts']); | |
393 | $_POST['cc_contacts'] = explode(';', @$_POST['cc_contacts']); | |
394 | $data = serialize($_POST); | |
395 | XDB::execute("REPLACE INTO email_send_save | |
396 | VALUES ({?}, {?})", S::i('uid'), $data); | |
397 | } | |
398 | exit; | |
40d428d8 VZ |
399 | } else if (Env::v('submit') == 'Envoyer') { |
400 | S::assert_xsrf_token(); | |
401 | ||
91a14f73 | 402 | function getEmails($aliases) |
403 | { | |
404 | if (!is_array($aliases)) { | |
405 | return null; | |
406 | } | |
407 | $rel = Env::v('contacts'); | |
408 | $ret = array(); | |
409 | foreach ($aliases as $alias) { | |
410 | $ret[$alias] = $rel[$alias]; | |
411 | } | |
412 | return join(', ', $ret); | |
413 | } | |
414 | ||
5e68682e | 415 | $error = false; |
da419622 | 416 | foreach ($_FILES as &$file) { |
f3df6d38 | 417 | if ($file['name'] && !PlUpload::get($file, S::user()->login(), 'emails.send', false)) { |
a7d35093 | 418 | $page->trigError(PlUpload::$lastError); |
5e68682e FB |
419 | $error = true; |
420 | break; | |
da419622 | 421 | } |
422 | } | |
423 | ||
5e68682e FB |
424 | if (!$error) { |
425 | XDB::execute("DELETE FROM email_send_save | |
426 | WHERE uid = {?}", S::i('uid')); | |
427 | ||
428 | $to2 = getEmails(Env::v('to_contacts')); | |
429 | $cc2 = getEmails(Env::v('cc_contacts')); | |
430 | $txt = str_replace('^M', '', Env::v('contenu')); | |
431 | $to = Env::v('to'); | |
432 | $subj = Env::v('sujet'); | |
433 | $from = Env::v('from'); | |
434 | $cc = trim(Env::v('cc')); | |
435 | $bcc = trim(Env::v('bcc')); | |
436 | ||
437 | if (empty($to) && empty($cc) && empty($to2) && empty($bcc) && empty($cc2)) { | |
a7d35093 | 438 | $page->trigError("Indique au moins un destinataire."); |
f3df6d38 | 439 | $page->assign('uploaded_f', PlUpload::listFilenames(S::user()->login(), 'emails.send')); |
5e68682e FB |
440 | } else { |
441 | $mymail = new PlMailer(); | |
442 | $mymail->setFrom($from); | |
443 | $mymail->setSubject($subj); | |
444 | if (!empty($to)) { $mymail->addTo($to); } | |
445 | if (!empty($cc)) { $mymail->addCc($cc); } | |
446 | if (!empty($bcc)) { $mymail->addBcc($bcc); } | |
447 | if (!empty($to2)) { $mymail->addTo($to2); } | |
448 | if (!empty($cc2)) { $mymail->addCc($cc2); } | |
f3df6d38 | 449 | $files =& PlUpload::listFiles(S::user()->login(), 'emails.send'); |
5e68682e FB |
450 | foreach ($files as $name=>&$upload) { |
451 | $mymail->addUploadAttachment($upload, $name); | |
452 | } | |
453 | if (Env::v('nowiki')) { | |
454 | $mymail->setTxtBody(wordwrap($txt, 78, "\n")); | |
455 | } else { | |
456 | $mymail->setWikiBody($txt); | |
457 | } | |
458 | if ($mymail->send()) { | |
faefdbb7 | 459 | $page->trigSuccess("Ton email a bien été envoyé."); |
2d997414 | 460 | $_REQUEST = array('bcc' => S::user()->bestEmail()); |
f3df6d38 | 461 | PlUpload::clear(S::user()->login(), 'emails.send'); |
5e68682e | 462 | } else { |
a7d35093 | 463 | $page->trigError("Erreur lors de l'envoi du courriel, réessaye."); |
f3df6d38 | 464 | $page->assign('uploaded_f', PlUpload::listFilenames(S::user()->login(), 'emails.send')); |
5e68682e | 465 | } |
81b5b746 | 466 | } |
467 | } | |
468 | } else { | |
3360c04f FB |
469 | $res = XDB::query("SELECT data |
470 | FROM email_send_save | |
471 | WHERE uid = {?}", S::i('uid')); | |
472 | if ($res->numRows() == 0) { | |
f3df6d38 | 473 | PlUpload::clear(S::user()->login(), 'emails.send'); |
2d997414 | 474 | $_REQUEST['bcc'] = S::user()->bestEmail(); |
3360c04f FB |
475 | } else { |
476 | $data = unserialize($res->fetchOneCell()); | |
477 | $_REQUEST = array_merge($_REQUEST, $data); | |
478 | } | |
81b5b746 | 479 | } |
480 | ||
08cce2ff | 481 | $res = XDB::query( |
81b5b746 | 482 | "SELECT u.prenom, u.nom, u.promo, a.alias as forlife |
483 | FROM auth_user_md5 AS u | |
484 | INNER JOIN contacts AS c ON (u.user_id = c.contact) | |
485 | INNER JOIN aliases AS a ON (u.user_id=a.id AND FIND_IN_SET('bestalias',a.flags)) | |
486 | WHERE c.uid = {?} | |
cab08090 | 487 | ORDER BY u.nom, u.prenom", S::v('uid')); |
81b5b746 | 488 | $page->assign('contacts', $res->fetchAllAssoc()); |
5e68682e | 489 | $page->assign('maxsize', ini_get('upload_max_filesize') . 'o'); |
2d997414 | 490 | $page->assign('user', S::user()); |
81b5b746 | 491 | } |
492 | ||
d0c3e04d | 493 | function handler_test(&$page, $hruid = null) |
5ff3f06b | 494 | { |
e4ecada4 VZ |
495 | require_once 'emails.inc.php'; |
496 | ||
46504fb3 VZ |
497 | if (!S::has_xsrf_token()) { |
498 | return PL_FORBIDDEN; | |
499 | } | |
d0c3e04d VZ |
500 | |
501 | // Retrieves the User object for the test email recipient. | |
502 | if (S::has_perms() && $hruid) { | |
503 | $user = User::getSilent($hruid); | |
504 | } else { | |
505 | $user = S::user(); | |
506 | } | |
507 | if (!$user) { | |
508 | return PL_NOT_FOUND; | |
5ff3f06b | 509 | } |
e4ecada4 | 510 | |
d0c3e04d | 511 | // Sends the test email. |
12a587df | 512 | $redirect = new Redirect($user); |
e4ecada4 VZ |
513 | |
514 | $mailer = new PlMailer('emails/test.mail.tpl'); | |
d0c3e04d | 515 | $mailer->assign('email', $user->bestEmail()); |
e4ecada4 | 516 | $mailer->assign('redirects', $redirect->active_emails()); |
d0c3e04d VZ |
517 | $mailer->assign('display_name', $user->displayName()); |
518 | $mailer->assign('sexe', $user->isFemale()); | |
519 | $mailer->send($user->isEmailFormatHtml()); | |
5ff3f06b FB |
520 | exit; |
521 | } | |
522 | ||
3d17e48f FB |
523 | function handler_rewrite_in(&$page, $mail, $hash) |
524 | { | |
525 | $page->changeTpl('emails/rewrite.tpl'); | |
526 | $page->assign('option', 'in'); | |
527 | if (empty($mail) || empty($hash)) { | |
528 | return PL_NOT_FOUND; | |
529 | } | |
530 | $pos = strrpos($mail, '_'); | |
531 | if ($pos === false) { | |
532 | return PL_NOT_FOUND; | |
533 | } | |
534 | $mail{$pos} = '@'; | |
535 | $res = XDB::query("SELECT COUNT(*) | |
536 | FROM emails | |
537 | WHERE email = {?} AND hash = {?}", | |
538 | $mail, $hash); | |
539 | $count = intval($res->fetchOneCell()); | |
540 | if ($count > 0) { | |
541 | XDB::query("UPDATE emails | |
542 | SET allow_rewrite = true, hash = NULL | |
543 | WHERE email = {?} AND hash = {?}", | |
544 | $mail, $hash); | |
545 | $page->trigSuccess("Réécriture activée pour l'adresse " . $mail); | |
546 | return; | |
547 | } | |
548 | return PL_NOT_FOUND; | |
549 | } | |
550 | ||
551 | function handler_rewrite_out(&$page, $mail, $hash) | |
552 | { | |
553 | $page->changeTpl('emails/rewrite.tpl'); | |
554 | $page->assign('option', 'out'); | |
555 | if (empty($mail) || empty($hash)) { | |
556 | return PL_NOT_FOUND; | |
557 | } | |
558 | $pos = strrpos($mail, '_'); | |
559 | if ($pos === false) { | |
560 | return PL_NOT_FOUND; | |
561 | } | |
562 | $mail{$pos} = '@'; | |
563 | $res = XDB::query("SELECT COUNT(*) | |
564 | FROM emails | |
565 | WHERE email = {?} AND hash = {?}", | |
566 | $mail, $hash); | |
567 | $count = intval($res->fetchOneCell()); | |
568 | if ($count > 0) { | |
569 | global $globals; | |
570 | $res = XDB::query("SELECT e.email, e.rewrite, a.alias | |
571 | FROM emails AS e | |
572 | INNER JOIN aliases AS a ON (a.id = e.uid AND a.type = 'a_vie') | |
573 | WHERE e.email = {?} AND e.hash = {?}", | |
574 | $mail, $hash); | |
575 | XDB::query("UPDATE emails | |
576 | SET allow_rewrite = false, hash = NULL | |
577 | WHERE email = {?} AND hash = {?}", | |
578 | $mail, $hash); | |
579 | list($mail, $rewrite, $forlife) = $res->fetchOneRow(); | |
580 | $mail = new PlMailer(); | |
581 | $mail->setFrom("webmaster@" . $globals->mail->domain); | |
582 | $mail->addTo("support@" . $globals->mail->domain); | |
583 | $mail->setSubject("Tentative de détournement de correspondance via le rewrite"); | |
584 | $mail->setTxtBody("$forlife a tenté un rewrite de $mail vers $rewrite. Cette demande a été rejetée via le web"); | |
585 | $mail->send(); | |
586 | $page->trigWarning("Un mail d'alerte a été envoyé à l'équipe de " . $globals->core->sitename); | |
587 | return; | |
588 | } | |
589 | return PL_NOT_FOUND; | |
590 | } | |
591 | ||
2ee43273 FB |
592 | function handler_imap_in(&$page, $hash = null, $login = null) |
593 | { | |
594 | $page->changeTpl('emails/imap_register.tpl'); | |
12a587df | 595 | $user = null; |
2ee43273 | 596 | if (!empty($hash) || !empty($login)) { |
12a587df VZ |
597 | $user = User::getSilent($login); |
598 | if ($user) { | |
599 | $req = XDB::query("SELECT 1 FROM newsletter_ins WHERE user_id = {?} AND hash = {?}", $user->id(), $hash); | |
600 | if ($req->numRows() == 0) { | |
601 | $user = null; | |
602 | } | |
603 | } | |
2ee43273 FB |
604 | } |
605 | ||
606 | require_once('emails.inc.php'); | |
607 | $page->assign('ok', false); | |
12a587df VZ |
608 | if (S::logged() && (is_null($user) || $user->id() == S::i('uid'))) { |
609 | $storage = new EmailStorage(S::user(), 'imap'); | |
2ee43273 FB |
610 | $storage->activate(); |
611 | $page->assign('ok', true); | |
612 | $page->assign('prenom', S::v('prenom')); | |
e2cea47d | 613 | $page->assign('sexe', S::v('femme')); |
12a587df VZ |
614 | } else if (!S::logged() && $user) { |
615 | $storage = new EmailStorage($user, 'imap'); | |
2ee43273 FB |
616 | $storage->activate(); |
617 | $page->assign('ok', true); | |
12a587df VZ |
618 | $page->assign('prenom', $user->displayName()); |
619 | $page->assign('sexe', $user->isFemale()); | |
2ee43273 FB |
620 | } |
621 | } | |
622 | ||
81b5b746 | 623 | function handler_broken(&$page, $warn = null, $email = null) |
624 | { | |
625 | require_once 'emails.inc.php'; | |
8f201b69 FB |
626 | $wp = new PlWikiPage('Xorg.PatteCassée'); |
627 | $wp->buildCache(); | |
81b5b746 | 628 | |
629 | global $globals; | |
630 | ||
631 | $page->changeTpl('emails/broken.tpl'); | |
632 | ||
40d428d8 VZ |
633 | if ($warn == 'warn' && $email) { |
634 | S::assert_xsrf_token(); | |
635 | ||
81b5b746 | 636 | $email = valide_email($email); |
a7de4ef7 | 637 | // vérifications d'usage |
2d997414 VZ |
638 | $sel = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email); |
639 | if (($uid = $sel->fetchOneCell())) { | |
640 | $dest = User::getSilent($uid); | |
641 | ||
81b5b746 | 642 | // envoi du mail |
643 | $message = "Bonjour ! | |
644 | ||
faefdbb7 | 645 | Cet email a été généré automatiquement par le service de patte cassée de |
2d997414 | 646 | Polytechnique.org car un autre utilisateur, " . S::user()->fullName() . ", |
faefdbb7 | 647 | nous a signalé qu'en t'envoyant un email, il avait reçu un message d'erreur |
81b5b746 | 648 | indiquant que ton adresse de redirection $email |
649 | ne fonctionnait plus ! | |
650 | ||
a7de4ef7 | 651 | Nous te suggérons de vérifier cette adresse, et le cas échéant de mettre |
652 | à jour sur le site <{$globals->baseurl}/emails> tes adresses | |
81b5b746 | 653 | de redirection... |
654 | ||
661e78f7 | 655 | Pour plus de renseignements sur le service de patte cassée, n'hésite pas à |
2c388954 | 656 | consulter la page <{$globals->baseurl}/emails/broken>. |
81b5b746 | 657 | |
658 | ||
661e78f7 | 659 | À bientôt sur Polytechnique.org ! |
1d55fe45 | 660 | L'équipe d'administration <support@" . $globals->mail->domain . '>'; |
81b5b746 | 661 | |
1e33266a | 662 | $mail = new PlMailer(); |
1d55fe45 | 663 | $mail->setFrom('"Polytechnique.org" <support@' . $globals->mail->domain . '>'); |
2d997414 | 664 | $mail->addTo($dest->bestEmail()); |
81b5b746 | 665 | $mail->setSubject("Une de tes adresse de redirection Polytechnique.org ne marche plus !!"); |
666 | $mail->setTxtBody($message); | |
667 | $mail->send(); | |
faefdbb7 | 668 | $page->trigSuccess("Email envoyé !"); |
81b5b746 | 669 | } |
40d428d8 VZ |
670 | } elseif (Post::has('email')) { |
671 | S::assert_xsrf_token(); | |
672 | ||
5e2307dc | 673 | $email = valide_email(Post::v('email')); |
81b5b746 | 674 | |
675 | list(,$fqdn) = explode('@', $email); | |
676 | $fqdn = strtolower($fqdn); | |
40d428d8 | 677 | if ($fqdn == 'polytechnique.org' || $fqdn == 'melix.org' || $fqdn == 'm4x.org' || $fqdn == 'melix.net') { |
81b5b746 | 678 | $page->assign('neuneu', true); |
679 | } else { | |
680 | $page->assign('email',$email); | |
08cce2ff | 681 | $sel = XDB::query( |
b1797f70 VZ |
682 | "SELECT e1.uid, e1.panne != 0 AS panne, |
683 | (count(e2.uid) + IF(FIND_IN_SET('googleapps', u.mail_storage), 1, 0)) AS nb_mails, | |
2d997414 | 684 | u.nom, u.prenom, u.promo, u.hruid |
81b5b746 | 685 | FROM emails as e1 |
eaf30d86 | 686 | LEFT JOIN emails as e2 ON(e1.uid = e2.uid |
81b5b746 | 687 | AND FIND_IN_SET('active', e2.flags) |
688 | AND e1.email != e2.email) | |
689 | INNER JOIN auth_user_md5 as u ON(e1.uid = u.user_id) | |
690 | WHERE e1.email = {?} | |
691 | GROUP BY e1.uid", $email); | |
692 | if ($x = $sel->fetchOneAssoc()) { | |
a7de4ef7 | 693 | // on écrit dans la base que l'adresse est cassée |
81b5b746 | 694 | if (!$x['panne']) { |
74938c82 | 695 | XDB::execute("UPDATE emails |
696 | SET panne=NOW(), | |
697 | last=NOW(), | |
698 | panne_level = 1 | |
699 | WHERE email = {?}", $email); | |
700 | } else { | |
701 | XDB::execute("UPDATE emails | |
702 | SET panne_level = 1 | |
4b9ba601 | 703 | WHERE email = {?} AND panne_level = 0", $email); |
81b5b746 | 704 | } |
705 | $page->assign_by_ref('x', $x); | |
706 | } | |
707 | } | |
708 | } | |
709 | } | |
9e570fe0 | 710 | |
711 | function handler_duplicated(&$page, $action = 'list', $email = null) | |
712 | { | |
713 | $page->changeTpl('emails/duplicated.tpl'); | |
714 | ||
715 | $states = array('pending' => 'En attente...', | |
a7de4ef7 | 716 | 'safe' => 'Pas d\'inquiétude', |
9e570fe0 | 717 | 'unsafe' => 'Recherches en cours', |
718 | 'dangerous' => 'Usurpations par cette adresse'); | |
719 | $page->assign('states', $states); | |
720 | ||
40d428d8 VZ |
721 | if (Post::has('action')) { |
722 | S::assert_xsrf_token(); | |
46504fb3 | 723 | } |
9e570fe0 | 724 | switch (Post::v('action')) { |
46504fb3 | 725 | case 'create': |
9e570fe0 | 726 | if (trim(Post::v('emailN')) != '') { |
727 | Xdb::execute('INSERT IGNORE INTO emails_watch (email, state, detection, last, uid, description) | |
728 | VALUES ({?}, {?}, CURDATE(), NOW(), {?}, {?})', | |
729 | trim(Post::v('emailN')), Post::v('stateN'), S::i('uid'), Post::v('descriptionN')); | |
730 | }; | |
731 | break; | |
732 | ||
46504fb3 | 733 | case 'edit': |
9e570fe0 | 734 | Xdb::execute('UPDATE emails_watch |
735 | SET state = {?}, last = NOW(), uid = {?}, description = {?} | |
736 | WHERE email = {?}', Post::v('stateN'), S::i('uid'), Post::v('descriptionN'), Post::v('emailN')); | |
737 | break; | |
738 | ||
46504fb3 | 739 | default: |
9e570fe0 | 740 | if ($action == 'delete' && !is_null($email)) { |
741 | Xdb::execute('DELETE FROM emails_watch WHERE email = {?}', $email); | |
742 | } | |
743 | } | |
744 | if ($action != 'create' && $action != 'edit') { | |
745 | $action = 'list'; | |
746 | } | |
747 | $page->assign('action', $action); | |
748 | ||
749 | if ($action == 'list') { | |
750 | $sql = "SELECT w.email, w.detection, w.state, a.alias AS forlife | |
751 | FROM emails_watch AS w | |
ca6d07f4 | 752 | LEFT JOIN emails AS e USING(email) |
753 | LEFT JOIN aliases AS a ON (a.id = e.uid AND a.type = 'a_vie') | |
9e570fe0 | 754 | ORDER BY w.state, w.email, a.alias"; |
755 | $it = Xdb::iterRow($sql); | |
756 | ||
757 | $table = array(); | |
758 | $props = array(); | |
759 | while (list($email, $date, $state, $forlife) = $it->next()) { | |
760 | if (count($props) == 0 || $props['mail'] != $email) { | |
761 | if (count($props) > 0) { | |
762 | $table[] = $props; | |
763 | } | |
764 | $props = array('mail' => $email, | |
765 | 'detection' => $date, | |
766 | 'state' => $state, | |
767 | 'users' => array($forlife)); | |
768 | } else { | |
769 | $props['users'][] = $forlife; | |
770 | } | |
771 | } | |
772 | if (count($props) > 0) { | |
773 | $table[] = $props; | |
774 | } | |
775 | $page->assign('table', $table); | |
776 | } elseif ($action == 'edit') { | |
777 | $sql = "SELECT w.detection, w.state, w.last, w.description, | |
778 | a1.alias AS edit, a2.alias AS forlife | |
779 | FROM emails_watch AS w | |
eaf30d86 | 780 | LEFT JOIN aliases AS a1 ON (a1.id = w.uid AND a1.type = 'a_vie') |
9615c895 | 781 | LEFT JOIN emails AS e ON (w.email = e.email) |
ca6d07f4 | 782 | LEFT JOIN aliases AS a2 ON (a2.id = e.uid AND a2.type = 'a_vie') |
9e570fe0 | 783 | WHERE w.email = {?} |
784 | ORDER BY a2.alias"; | |
785 | $it = Xdb::iterRow($sql, $email); | |
786 | ||
787 | $props = array(); | |
788 | while (list($detection, $state, $last, $description, $edit, $forlife) = $it->next()) { | |
789 | if (count($props) == 0) { | |
790 | $props = array('mail' => $email, | |
791 | 'detection' => $detection, | |
792 | 'state' => $state, | |
793 | 'last' => $last, | |
794 | 'description' => $description, | |
795 | 'edit' => $edit, | |
796 | 'users' => array($forlife)); | |
797 | } else { | |
798 | $props['users'][] = $forlife; | |
799 | } | |
800 | } | |
801 | $page->assign('doublon', $props); | |
802 | } | |
803 | } | |
7727ffc7 | 804 | function handler_lost(&$page, $action = 'list', $email = null) |
805 | { | |
806 | $page->changeTpl('emails/lost.tpl'); | |
eaf30d86 | 807 | |
2d997414 VZ |
808 | $page->assign('lost_emails', XDB::iterator(" |
809 | SELECT u.user_id, u.hruid | |
0e5ec860 | 810 | FROM auth_user_md5 AS u |
2d997414 VZ |
811 | LEFT JOIN emails AS e ON (u.user_id = e.uid AND FIND_IN_SET('active', e.flags)) |
812 | WHERE e.uid IS NULL AND FIND_IN_SET('googleapps', u.mail_storage) = 0 AND | |
813 | u.deces = 0 AND u.perms IN ('user', 'admin', 'disabled') | |
814 | ORDER BY u.promo DESC, u.nom, u.prenom")); | |
7727ffc7 | 815 | } |
81b5b746 | 816 | } |
817 | ||
a7de4ef7 | 818 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: |
81b5b746 | 819 | ?> |