Fixes use of object User in module GoogleApps.
[platal.git] / modules / email.php
CommitLineData
81b5b746 1<?php
2/***************************************************************************
179afa7f 3 * Copyright (C) 2003-2008 Polytechnique.org *
81b5b746 4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22class EmailModule extends PLModule
23{
81b5b746 24 function handlers()
25 {
26 return array(
27 'emails' => $this->make_hook('emails', AUTH_COOKIE),
28 'emails/alias' => $this->make_hook('alias', AUTH_MDP),
29 'emails/antispam' => $this->make_hook('antispam', AUTH_MDP),
30 'emails/broken' => $this->make_hook('broken', AUTH_COOKIE),
31 'emails/redirect' => $this->make_hook('redirect', AUTH_MDP),
32 'emails/send' => $this->make_hook('send', AUTH_MDP),
62ce6356 33 'emails/antispam/submit' => $this->make_hook('submit', AUTH_COOKIE),
9c0a8f8c 34 'emails/test' => $this->make_hook('test', AUTH_COOKIE, 'user', NO_AUTH),
9e570fe0 35
3d17e48f
FB
36 'emails/rewrite/in' => $this->make_hook('rewrite_in', AUTH_PUBLIC),
37 'emails/rewrite/out' => $this->make_hook('rewrite_out', AUTH_PUBLIC),
38
2ee43273
FB
39 'emails/imap/in' => $this->make_hook('imap_in', AUTH_PUBLIC),
40
7727ffc7 41 'admin/emails/duplicated' => $this->make_hook('duplicated', AUTH_MDP, 'admin'),
f141945d 42 'admin/emails/watch' => $this->make_hook('duplicated', AUTH_MDP, 'admin'),
5ff3f06b 43 'admin/emails/lost' => $this->make_hook('lost', AUTH_MDP, 'admin'),
81b5b746 44 );
45 }
46
b7582015 47 function handler_emails(&$page, $action = null, $email = null)
81b5b746 48 {
49 global $globals;
e97e9b8f 50 require_once 'emails.inc.php';
81b5b746 51
52 $page->changeTpl('emails/index.tpl');
46f272fe 53 $page->setTitle('Mes emails');
81b5b746 54
2d997414 55 $user = S::user();
81b5b746 56
2d997414 57 // Apply the bestalias change request.
b7582015 58 if ($action == 'best' && $email) {
46504fb3
VZ
59 if (!S::has_xsrf_token()) {
60 return PL_FORBIDDEN;
61 }
62
2d997414
VZ
63 XDB::execute("UPDATE aliases
64 SET flags = TRIM(BOTH ',' FROM REPLACE(CONCAT(',', flags, ','), ',bestalias,', ','))
65 WHERE id = {?}", $user->id());
66 XDB::execute("UPDATE aliases
67 SET flags = CONCAT_WS(',', IF(flags = '', NULL, flags), 'bestalias')
68 WHERE id = {?} AND alias = {?}", $user->id(), $email);
69
70 // As having a non-null bestalias value is critical in
71 // plat/al's code, we do an a posteriori check on the
72 // validity of the bestalias.
73 fix_bestalias($user);
81b5b746 74 }
75
2d997414 76 // Fetch and display aliases.
81b5b746 77 $sql = "SELECT alias, (type='a_vie') AS a_vie,
78 (alias REGEXP '\\\\.[0-9]{2}$') AS cent_ans,
79 FIND_IN_SET('bestalias',flags) AS best, expire
80 FROM aliases
81 WHERE id = {?} AND type!='homonyme'
82 ORDER BY LENGTH(alias)";
2d997414 83 $page->assign('aliases', XDB::iterator($sql, $user->id()));
81b5b746 84
2d997414
VZ
85 // Check for homonyms.
86 $homonyme = XDB::query(
87 "SELECT alias
88 FROM aliases
89 INNER JOIN homonymes ON (id = homonyme_id)
90 WHERE user_id = {?} AND type = 'homonyme'", $user->id());
e97e9b8f 91 $page->assign('homonyme', $homonyme->fetchOneCell());
e1547442 92
2d997414
VZ
93 // Display active redirections.
94 $redirect = new Redirect($user);
e97e9b8f 95 $page->assign('mails', $redirect->active_emails());
81b5b746 96
2d997414 97 // Display, when available, the @alias_dom email alias.
08cce2ff 98 $res = XDB::query(
81b5b746 99 "SELECT alias
100 FROM virtual AS v
101 INNER JOIN virtual_redirect AS vr USING(vid)
eaf30d86 102 WHERE (redirect={?} OR redirect={?})
81b5b746 103 AND alias LIKE '%@{$globals->mail->alias_dom}'",
2d997414
VZ
104 $user->forlifeEmail(),
105 // TODO: remove this über-ugly hack. The issue is that you need
106 // to remove all @m4x.org addresses in virtual_redirect first.
107 $user->login() . '@' . $globals->mail->domain2);
81b5b746 108 $page->assign('melix', $res->fetchOneCell());
81b5b746 109 }
110
111 function handler_alias(&$page, $action = null, $value = null)
112 {
113 require_once 'validations.inc.php';
114
115 global $globals;
116
117 $page->changeTpl('emails/alias.tpl');
46f272fe 118 $page->setTitle('Alias melix.net');
81b5b746 119
2d997414
VZ
120 $user = S::user();
121 $page->assign('demande', AliasReq::get_request($user->id()));
81b5b746 122
2d997414 123 // Remove the email alias.
40d428d8
VZ
124 if ($action == 'delete' && $value) {
125 S::assert_xsrf_token();
126
08cce2ff 127 XDB::execute(
2d997414
VZ
128 "DELETE virtual, virtual_redirect
129 FROM virtual
130 INNER JOIN virtual_redirect USING (vid)
131 WHERE alias = {?} AND (redirect = {?} OR redirect = {?})",
132 $value, $user->forlifeEmail(),
133 // TODO: remove this über-ugly hack. The issue is that you need
134 // to remove all @m4x.org addresses in virtual_redirect first.
135 $user->login() . '@' . $globals->mail->domain2);
81b5b746 136 }
137
2d997414 138 // Fetch existing @alias_dom aliases.
08cce2ff 139 $res = XDB::query(
81b5b746 140 "SELECT alias, emails_alias_pub
141 FROM auth_user_quick, virtual
142 INNER JOIN virtual_redirect USING(vid)
2d997414 143 WHERE (redirect = {?} OR redirect = {?})
eaf30d86 144 AND alias LIKE '%@{$globals->mail->alias_dom}' AND user_id = {?}",
2d997414
VZ
145 $user->forlifeEmail(),
146 // TODO: remove this über-ugly hack. The issue is that you need
147 // to remove all @m4x.org addresses in virtual_redirect first.
148 $user->login() . '@' . $globals->mail->domain2, $user->id());
81b5b746 149 list($alias, $visibility) = $res->fetchOneRow();
150 $page->assign('actuel', $alias);
151
40d428d8
VZ
152 if ($action == 'ask' && Env::has('alias') && Env::has('raison')) {
153 S::assert_xsrf_token();
81b5b746 154
40d428d8 155 //Si l'utilisateur vient de faire une damande
5e2307dc 156 $alias = Env::v('alias');
157 $raison = Env::v('raison');
158 $public = (Env::v('public', 'off') == 'on')?"public":"private";
81b5b746 159
160 $page->assign('r_alias', $alias);
161 $page->assign('r_raison', $raison);
162 if ($public == 'public') {
163 $page->assign('r_public', true);
164 }
165
a7de4ef7 166 //Quelques vérifications sur l'alias (caractères spéciaux)
81b5b746 167 if (!preg_match( "/^[a-zA-Z0-9\-.]{3,20}$/", $alias)) {
a7d35093
FB
168 $page->trigError("L'adresse demandée n'est pas valide."
169 . " Vérifie qu'elle comporte entre 3 et 20 caractères"
170 . " et qu'elle ne contient que des lettres non accentuées,"
171 . " des chiffres ou les caractères - et .");
fd8f77de 172 return;
81b5b746 173 } else {
a7de4ef7 174 //vérifier que l'alias n'est pas déja pris
08cce2ff 175 $res = XDB::query('SELECT COUNT(*) FROM virtual WHERE alias={?}',
81b5b746 176 $alias.'@'.$globals->mail->alias_dom);
177 if ($res->fetchOneCell() > 0) {
a7d35093 178 $page->trigError("L'alias $alias@{$globals->mail->alias_dom} a déja été attribué.
81b5b746 179 Tu ne peux donc pas l'obtenir.");
fd8f77de 180 return;
81b5b746 181 }
182
a7de4ef7 183 //vérifier que l'alias n'est pas déja en demande
81b5b746 184 $it = new ValidateIterator ();
185 while($req = $it->next()) {
1f07f6c2 186 if ($req->type == "alias" and $req->alias == $alias . '@' . $globals->mail->alias_dom) {
a7d35093 187 $page->trigError("L'alias $alias@{$globals->mail->alias_dom} a déja été demandé.
81b5b746 188 Tu ne peux donc pas l'obtenir pour l'instant.");
fd8f77de 189 return ;
81b5b746 190 }
191 }
192
a7de4ef7 193 //Insertion de la demande dans la base, écrase les requêtes précédente
2d997414 194 $myalias = new AliasReq($user, $alias, $raison, $public);
81b5b746 195 $myalias->submit();
196 $page->assign('success',$alias);
fd8f77de 197 return;
81b5b746 198 }
46504fb3
VZ
199 } elseif ($action == 'set' && ($value == 'public' || $value == 'private')) {
200 if (!S::has_xsrf_token()) {
201 return PL_FORBIDDEN;
202 }
203
81b5b746 204 if ($value == 'public') {
08cce2ff 205 XDB::execute("UPDATE auth_user_quick SET emails_alias_pub = 'public'
2d997414 206 WHERE user_id = {?}", $user->id());
81b5b746 207 } else {
08cce2ff 208 XDB::execute("UPDATE auth_user_quick SET emails_alias_pub = 'private'
2d997414 209 WHERE user_id = {?}", $user->id());
81b5b746 210 }
211
212 $visibility = $value;
213 }
214
215 $page->assign('mail_public', ($visibility == 'public'));
81b5b746 216 }
217
218 function handler_redirect(&$page, $action = null, $email = null)
219 {
220 global $globals;
221
222 require_once 'emails.inc.php';
223
224 $page->changeTpl('emails/redirect.tpl');
225
2d997414
VZ
226 $user = S::user();
227 $page->assign_by_ref('user', $user);
228 $page->assign('eleve', $user->promo() >= date("Y") - 5);
3b83212e 229
2d997414 230 $redirect = new Redirect($user);
81b5b746 231
6d6b65bf 232 // FS#703 : $_GET is urldecoded twice, hence
233 // + (the data) => %2B (in the url) => + (first decoding) => ' ' (second decoding)
234 // Since there can be no spaces in emails, we can fix this with :
235 $email = str_replace(' ', '+', $email);
236
2d997414 237 // Apply email redirection change requests.
81b5b746 238 if ($action == 'remove' && $email) {
b7582015 239 $retour = $redirect->delete_email($email);
240 $page->assign('retour', $retour);
81b5b746 241 }
e1547442
FB
242
243 if ($action == 'active' && $email) {
244 $redirect->modify_one_email($email, true);
245 }
246
247 if ($action == 'inactive' && $email) {
248 $redirect->modify_one_email($email, false);
249 }
250
251 if ($action == 'rewrite' && $email) {
252 $rewrite = @func_get_arg(3);
253 $redirect->modify_one_email_redirect($email, $rewrite);
254 }
255
40d428d8
VZ
256 if (Env::has('emailop')) {
257 S::assert_xsrf_token();
258
5e2307dc 259 $actifs = Env::v('emails_actifs', Array());
b7582015 260 print_r(Env::v('emails_rewrite'));
5e2307dc 261 if (Env::v('emailop') == "ajouter" && Env::has('email')) {
262 $page->assign('retour', $redirect->add_email(Env::v('email')));
81b5b746 263 } elseif (empty($actifs)) {
264 $page->assign('retour', ERROR_INACTIVE_REDIRECTION);
265 } elseif (is_array($actifs)) {
266 $page->assign('retour', $redirect->modify_email($actifs,
5e2307dc 267 Env::v('emails_rewrite',Array())));
81b5b746 268 }
269 }
270
2d997414 271 // Fetch the @alias_dom email alias, if any.
08cce2ff 272 $res = XDB::query(
81b5b746 273 "SELECT alias
274 FROM virtual
275 INNER JOIN virtual_redirect USING(vid)
276 WHERE (redirect={?} OR redirect={?})
eaf30d86 277 AND alias LIKE '%@{$globals->mail->alias_dom}'",
2d997414
VZ
278 $user->forlifeEmail(),
279 // TODO: remove this über-ugly hack. The issue is that you need
280 // to remove all @m4x.org addresses in virtual_redirect first.
281 $user->login() . '@' . $globals->mail->domain2);
81b5b746 282 $melix = $res->fetchOneCell();
283 if ($melix) {
284 list($melix) = explode('@', $melix);
285 $page->assign('melix',$melix);
286 }
287
2d997414 288 // Fetch existing email aliases.
08cce2ff 289 $res = XDB::query(
81b5b746 290 "SELECT alias,expire
291 FROM aliases
292 WHERE id={?} AND (type='a_vie' OR type='alias')
2d997414 293 ORDER BY !FIND_IN_SET('usage',flags), LENGTH(alias)", $user->id());
81b5b746 294 $page->assign('alias', $res->fetchAllAssoc());
2d997414 295 $page->assign('emails', $redirect->emails);
aab4661d 296
2d997414 297 // Display GoogleApps acount information.
f5c4bf30 298 require_once 'googleapps.inc.php';
2d997414 299 $page->assign('googleapps', GoogleAppsAccount::account_status($user->id()));
81b5b746 300 }
301
b7582015 302 function handler_antispam(&$page, $statut_filtre = null)
81b5b746 303 {
304 require_once 'emails.inc.php';
8f201b69
FB
305 $wp = new PlWikiPage('Xorg.Antispam');
306 $wp->buildCache();
81b5b746 307
308 $page->changeTpl('emails/antispam.tpl');
309
12a587df 310 $bogo = new Bogo(S::user());
b7582015 311 if (isset($statut_filtre)) {
11ed26e5 312 $bogo->change($statut_filtre + 0);
81b5b746 313 }
2d997414 314 $page->assign('filtre', $bogo->level());
81b5b746 315 }
316
62ce6356 317 function handler_submit(&$page)
318 {
8f201b69
FB
319 $wp = new PlWikiPage('Xorg.Mails');
320 $wp->buildCache();
62ce6356 321 $page->changeTpl('emails/submit_spam.tpl');
322
40d428d8
VZ
323 if (Post::has('send_email')) {
324 S::assert_xsrf_token();
325
f3df6d38 326 $upload = PlUpload::get($_FILES['mail'], S::user()->login(), 'spam.submit', true);
15603084 327 if (!$upload) {
a7d35093 328 $page->trigError('Une erreur a été rencontrée lors du transfert du fichier');
62ce6356 329 return;
330 }
15603084 331 $mime = $upload->contentType();
62ce6356 332 if ($mime != 'text/x-mail' && $mime != 'message/rfc822') {
15603084 333 $upload->clear();
faefdbb7 334 $page->trigError('Le fichier ne contient pas un email complet');
62ce6356 335 return;
336 }
2d997414
VZ
337 $type = (Post::v('type') == 'spam' ? 'spam' : 'nonspam');
338
62ce6356 339 global $globals;
2d997414 340 $box = $type . '@' . $globals->mail->domain;
62ce6356 341 $mailer = new PlMailer();
342 $mailer->addTo($box);
2d997414
VZ
343 $mailer->setFrom('"' . S::user()->fullName() . '" <web@' . $globals->mail->domain . '>');
344 $mailer->setTxtBody($type . ' soumis par ' . S::user()->login() . ' via le web');
345 $mailer->addUploadAttachment($upload, $type . '.mail');
62ce6356 346 $mailer->send();
a7d35093 347 $page->trigSuccess('Le message a été transmis à ' . $box);
15603084 348 $upload->clear();
62ce6356 349 }
350 }
351
81b5b746 352 function handler_send(&$page)
353 {
81b5b746 354 $page->changeTpl('emails/send.tpl');
da419622 355 $page->addJsLink('ajax.js');
81b5b746 356
46f272fe 357 $page->setTitle('Envoyer un email');
81b5b746 358
359 // action si on recoit un formulaire
3360c04f 360 if (Post::has('save')) {
46504fb3
VZ
361 if (!S::has_xsrf_token()) {
362 return PL_FORBIDDEN;
363 }
364
3360c04f
FB
365 unset($_POST['save']);
366 if (trim(preg_replace('/-- .*/', '', Post::v('contenu'))) != "") {
367 $_POST['to_contacts'] = explode(';', @$_POST['to_contacts']);
368 $_POST['cc_contacts'] = explode(';', @$_POST['cc_contacts']);
369 $data = serialize($_POST);
370 XDB::execute("REPLACE INTO email_send_save
371 VALUES ({?}, {?})", S::i('uid'), $data);
372 }
373 exit;
40d428d8
VZ
374 } else if (Env::v('submit') == 'Envoyer') {
375 S::assert_xsrf_token();
376
91a14f73 377 function getEmails($aliases)
378 {
379 if (!is_array($aliases)) {
380 return null;
381 }
382 $rel = Env::v('contacts');
383 $ret = array();
384 foreach ($aliases as $alias) {
385 $ret[$alias] = $rel[$alias];
386 }
387 return join(', ', $ret);
388 }
389
5e68682e 390 $error = false;
da419622 391 foreach ($_FILES as &$file) {
f3df6d38 392 if ($file['name'] && !PlUpload::get($file, S::user()->login(), 'emails.send', false)) {
a7d35093 393 $page->trigError(PlUpload::$lastError);
5e68682e
FB
394 $error = true;
395 break;
da419622 396 }
397 }
398
5e68682e
FB
399 if (!$error) {
400 XDB::execute("DELETE FROM email_send_save
401 WHERE uid = {?}", S::i('uid'));
402
403 $to2 = getEmails(Env::v('to_contacts'));
404 $cc2 = getEmails(Env::v('cc_contacts'));
405 $txt = str_replace('^M', '', Env::v('contenu'));
406 $to = Env::v('to');
407 $subj = Env::v('sujet');
408 $from = Env::v('from');
409 $cc = trim(Env::v('cc'));
410 $bcc = trim(Env::v('bcc'));
411
412 if (empty($to) && empty($cc) && empty($to2) && empty($bcc) && empty($cc2)) {
a7d35093 413 $page->trigError("Indique au moins un destinataire.");
f3df6d38 414 $page->assign('uploaded_f', PlUpload::listFilenames(S::user()->login(), 'emails.send'));
5e68682e
FB
415 } else {
416 $mymail = new PlMailer();
417 $mymail->setFrom($from);
418 $mymail->setSubject($subj);
419 if (!empty($to)) { $mymail->addTo($to); }
420 if (!empty($cc)) { $mymail->addCc($cc); }
421 if (!empty($bcc)) { $mymail->addBcc($bcc); }
422 if (!empty($to2)) { $mymail->addTo($to2); }
423 if (!empty($cc2)) { $mymail->addCc($cc2); }
f3df6d38 424 $files =& PlUpload::listFiles(S::user()->login(), 'emails.send');
5e68682e
FB
425 foreach ($files as $name=>&$upload) {
426 $mymail->addUploadAttachment($upload, $name);
427 }
428 if (Env::v('nowiki')) {
429 $mymail->setTxtBody(wordwrap($txt, 78, "\n"));
430 } else {
431 $mymail->setWikiBody($txt);
432 }
433 if ($mymail->send()) {
faefdbb7 434 $page->trigSuccess("Ton email a bien été envoyé.");
2d997414 435 $_REQUEST = array('bcc' => S::user()->bestEmail());
f3df6d38 436 PlUpload::clear(S::user()->login(), 'emails.send');
5e68682e 437 } else {
a7d35093 438 $page->trigError("Erreur lors de l'envoi du courriel, réessaye.");
f3df6d38 439 $page->assign('uploaded_f', PlUpload::listFilenames(S::user()->login(), 'emails.send'));
5e68682e 440 }
81b5b746 441 }
442 }
443 } else {
3360c04f
FB
444 $res = XDB::query("SELECT data
445 FROM email_send_save
446 WHERE uid = {?}", S::i('uid'));
447 if ($res->numRows() == 0) {
f3df6d38 448 PlUpload::clear(S::user()->login(), 'emails.send');
2d997414 449 $_REQUEST['bcc'] = S::user()->bestEmail();
3360c04f
FB
450 } else {
451 $data = unserialize($res->fetchOneCell());
452 $_REQUEST = array_merge($_REQUEST, $data);
453 }
81b5b746 454 }
455
08cce2ff 456 $res = XDB::query(
81b5b746 457 "SELECT u.prenom, u.nom, u.promo, a.alias as forlife
458 FROM auth_user_md5 AS u
459 INNER JOIN contacts AS c ON (u.user_id = c.contact)
460 INNER JOIN aliases AS a ON (u.user_id=a.id AND FIND_IN_SET('bestalias',a.flags))
461 WHERE c.uid = {?}
cab08090 462 ORDER BY u.nom, u.prenom", S::v('uid'));
81b5b746 463 $page->assign('contacts', $res->fetchAllAssoc());
5e68682e 464 $page->assign('maxsize', ini_get('upload_max_filesize') . 'o');
2d997414 465 $page->assign('user', S::user());
81b5b746 466 }
467
d0c3e04d 468 function handler_test(&$page, $hruid = null)
5ff3f06b 469 {
e4ecada4
VZ
470 require_once 'emails.inc.php';
471
46504fb3
VZ
472 if (!S::has_xsrf_token()) {
473 return PL_FORBIDDEN;
474 }
d0c3e04d
VZ
475
476 // Retrieves the User object for the test email recipient.
477 if (S::has_perms() && $hruid) {
478 $user = User::getSilent($hruid);
479 } else {
480 $user = S::user();
481 }
482 if (!$user) {
483 return PL_NOT_FOUND;
5ff3f06b 484 }
e4ecada4 485
d0c3e04d 486 // Sends the test email.
12a587df 487 $redirect = new Redirect($user);
e4ecada4
VZ
488
489 $mailer = new PlMailer('emails/test.mail.tpl');
d0c3e04d 490 $mailer->assign('email', $user->bestEmail());
e4ecada4 491 $mailer->assign('redirects', $redirect->active_emails());
d0c3e04d
VZ
492 $mailer->assign('display_name', $user->displayName());
493 $mailer->assign('sexe', $user->isFemale());
494 $mailer->send($user->isEmailFormatHtml());
5ff3f06b
FB
495 exit;
496 }
497
3d17e48f
FB
498 function handler_rewrite_in(&$page, $mail, $hash)
499 {
500 $page->changeTpl('emails/rewrite.tpl');
501 $page->assign('option', 'in');
502 if (empty($mail) || empty($hash)) {
503 return PL_NOT_FOUND;
504 }
505 $pos = strrpos($mail, '_');
506 if ($pos === false) {
507 return PL_NOT_FOUND;
508 }
509 $mail{$pos} = '@';
510 $res = XDB::query("SELECT COUNT(*)
511 FROM emails
512 WHERE email = {?} AND hash = {?}",
513 $mail, $hash);
514 $count = intval($res->fetchOneCell());
515 if ($count > 0) {
516 XDB::query("UPDATE emails
517 SET allow_rewrite = true, hash = NULL
518 WHERE email = {?} AND hash = {?}",
519 $mail, $hash);
520 $page->trigSuccess("Réécriture activée pour l'adresse " . $mail);
521 return;
522 }
523 return PL_NOT_FOUND;
524 }
525
526 function handler_rewrite_out(&$page, $mail, $hash)
527 {
528 $page->changeTpl('emails/rewrite.tpl');
529 $page->assign('option', 'out');
530 if (empty($mail) || empty($hash)) {
531 return PL_NOT_FOUND;
532 }
533 $pos = strrpos($mail, '_');
534 if ($pos === false) {
535 return PL_NOT_FOUND;
536 }
537 $mail{$pos} = '@';
538 $res = XDB::query("SELECT COUNT(*)
539 FROM emails
540 WHERE email = {?} AND hash = {?}",
541 $mail, $hash);
542 $count = intval($res->fetchOneCell());
543 if ($count > 0) {
544 global $globals;
545 $res = XDB::query("SELECT e.email, e.rewrite, a.alias
546 FROM emails AS e
547 INNER JOIN aliases AS a ON (a.id = e.uid AND a.type = 'a_vie')
548 WHERE e.email = {?} AND e.hash = {?}",
549 $mail, $hash);
550 XDB::query("UPDATE emails
551 SET allow_rewrite = false, hash = NULL
552 WHERE email = {?} AND hash = {?}",
553 $mail, $hash);
554 list($mail, $rewrite, $forlife) = $res->fetchOneRow();
555 $mail = new PlMailer();
556 $mail->setFrom("webmaster@" . $globals->mail->domain);
557 $mail->addTo("support@" . $globals->mail->domain);
558 $mail->setSubject("Tentative de détournement de correspondance via le rewrite");
559 $mail->setTxtBody("$forlife a tenté un rewrite de $mail vers $rewrite. Cette demande a été rejetée via le web");
560 $mail->send();
561 $page->trigWarning("Un mail d'alerte a été envoyé à l'équipe de " . $globals->core->sitename);
562 return;
563 }
564 return PL_NOT_FOUND;
565 }
566
2ee43273
FB
567 function handler_imap_in(&$page, $hash = null, $login = null)
568 {
569 $page->changeTpl('emails/imap_register.tpl');
12a587df 570 $user = null;
2ee43273 571 if (!empty($hash) || !empty($login)) {
12a587df
VZ
572 $user = User::getSilent($login);
573 if ($user) {
574 $req = XDB::query("SELECT 1 FROM newsletter_ins WHERE user_id = {?} AND hash = {?}", $user->id(), $hash);
575 if ($req->numRows() == 0) {
576 $user = null;
577 }
578 }
2ee43273
FB
579 }
580
581 require_once('emails.inc.php');
582 $page->assign('ok', false);
12a587df
VZ
583 if (S::logged() && (is_null($user) || $user->id() == S::i('uid'))) {
584 $storage = new EmailStorage(S::user(), 'imap');
2ee43273
FB
585 $storage->activate();
586 $page->assign('ok', true);
587 $page->assign('prenom', S::v('prenom'));
e2cea47d 588 $page->assign('sexe', S::v('femme'));
12a587df
VZ
589 } else if (!S::logged() && $user) {
590 $storage = new EmailStorage($user, 'imap');
2ee43273
FB
591 $storage->activate();
592 $page->assign('ok', true);
12a587df
VZ
593 $page->assign('prenom', $user->displayName());
594 $page->assign('sexe', $user->isFemale());
2ee43273
FB
595 }
596 }
597
81b5b746 598 function handler_broken(&$page, $warn = null, $email = null)
599 {
600 require_once 'emails.inc.php';
8f201b69
FB
601 $wp = new PlWikiPage('Xorg.PatteCassée');
602 $wp->buildCache();
81b5b746 603
604 global $globals;
605
606 $page->changeTpl('emails/broken.tpl');
607
40d428d8
VZ
608 if ($warn == 'warn' && $email) {
609 S::assert_xsrf_token();
610
81b5b746 611 $email = valide_email($email);
a7de4ef7 612 // vérifications d'usage
2d997414
VZ
613 $sel = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email);
614 if (($uid = $sel->fetchOneCell())) {
615 $dest = User::getSilent($uid);
616
81b5b746 617 // envoi du mail
618 $message = "Bonjour !
619
faefdbb7 620Cet email a été généré automatiquement par le service de patte cassée de
2d997414 621Polytechnique.org car un autre utilisateur, " . S::user()->fullName() . ",
faefdbb7 622nous a signalé qu'en t'envoyant un email, il avait reçu un message d'erreur
81b5b746 623indiquant que ton adresse de redirection $email
624ne fonctionnait plus !
625
a7de4ef7 626Nous te suggérons de vérifier cette adresse, et le cas échéant de mettre
627à jour sur le site <{$globals->baseurl}/emails> tes adresses
81b5b746 628de redirection...
629
661e78f7 630Pour plus de renseignements sur le service de patte cassée, n'hésite pas à
2c388954 631consulter la page <{$globals->baseurl}/emails/broken>.
81b5b746 632
633
661e78f7 634À bientôt sur Polytechnique.org !
1d55fe45 635L'équipe d'administration <support@" . $globals->mail->domain . '>';
81b5b746 636
1e33266a 637 $mail = new PlMailer();
1d55fe45 638 $mail->setFrom('"Polytechnique.org" <support@' . $globals->mail->domain . '>');
2d997414 639 $mail->addTo($dest->bestEmail());
81b5b746 640 $mail->setSubject("Une de tes adresse de redirection Polytechnique.org ne marche plus !!");
641 $mail->setTxtBody($message);
642 $mail->send();
faefdbb7 643 $page->trigSuccess("Email envoyé !");
81b5b746 644 }
40d428d8
VZ
645 } elseif (Post::has('email')) {
646 S::assert_xsrf_token();
647
5e2307dc 648 $email = valide_email(Post::v('email'));
81b5b746 649
650 list(,$fqdn) = explode('@', $email);
651 $fqdn = strtolower($fqdn);
40d428d8 652 if ($fqdn == 'polytechnique.org' || $fqdn == 'melix.org' || $fqdn == 'm4x.org' || $fqdn == 'melix.net') {
81b5b746 653 $page->assign('neuneu', true);
654 } else {
655 $page->assign('email',$email);
08cce2ff 656 $sel = XDB::query(
b1797f70
VZ
657 "SELECT e1.uid, e1.panne != 0 AS panne,
658 (count(e2.uid) + IF(FIND_IN_SET('googleapps', u.mail_storage), 1, 0)) AS nb_mails,
2d997414 659 u.nom, u.prenom, u.promo, u.hruid
81b5b746 660 FROM emails as e1
eaf30d86 661 LEFT JOIN emails as e2 ON(e1.uid = e2.uid
81b5b746 662 AND FIND_IN_SET('active', e2.flags)
663 AND e1.email != e2.email)
664 INNER JOIN auth_user_md5 as u ON(e1.uid = u.user_id)
665 WHERE e1.email = {?}
666 GROUP BY e1.uid", $email);
667 if ($x = $sel->fetchOneAssoc()) {
a7de4ef7 668 // on écrit dans la base que l'adresse est cassée
81b5b746 669 if (!$x['panne']) {
74938c82 670 XDB::execute("UPDATE emails
671 SET panne=NOW(),
672 last=NOW(),
673 panne_level = 1
674 WHERE email = {?}", $email);
675 } else {
676 XDB::execute("UPDATE emails
677 SET panne_level = 1
4b9ba601 678 WHERE email = {?} AND panne_level = 0", $email);
81b5b746 679 }
680 $page->assign_by_ref('x', $x);
681 }
682 }
683 }
684 }
9e570fe0 685
686 function handler_duplicated(&$page, $action = 'list', $email = null)
687 {
688 $page->changeTpl('emails/duplicated.tpl');
689
690 $states = array('pending' => 'En attente...',
a7de4ef7 691 'safe' => 'Pas d\'inquiétude',
9e570fe0 692 'unsafe' => 'Recherches en cours',
693 'dangerous' => 'Usurpations par cette adresse');
694 $page->assign('states', $states);
695
40d428d8
VZ
696 if (Post::has('action')) {
697 S::assert_xsrf_token();
46504fb3 698 }
9e570fe0 699 switch (Post::v('action')) {
46504fb3 700 case 'create':
9e570fe0 701 if (trim(Post::v('emailN')) != '') {
702 Xdb::execute('INSERT IGNORE INTO emails_watch (email, state, detection, last, uid, description)
703 VALUES ({?}, {?}, CURDATE(), NOW(), {?}, {?})',
704 trim(Post::v('emailN')), Post::v('stateN'), S::i('uid'), Post::v('descriptionN'));
705 };
706 break;
707
46504fb3 708 case 'edit':
9e570fe0 709 Xdb::execute('UPDATE emails_watch
710 SET state = {?}, last = NOW(), uid = {?}, description = {?}
711 WHERE email = {?}', Post::v('stateN'), S::i('uid'), Post::v('descriptionN'), Post::v('emailN'));
712 break;
713
46504fb3 714 default:
9e570fe0 715 if ($action == 'delete' && !is_null($email)) {
716 Xdb::execute('DELETE FROM emails_watch WHERE email = {?}', $email);
717 }
718 }
719 if ($action != 'create' && $action != 'edit') {
720 $action = 'list';
721 }
722 $page->assign('action', $action);
723
724 if ($action == 'list') {
725 $sql = "SELECT w.email, w.detection, w.state, a.alias AS forlife
726 FROM emails_watch AS w
ca6d07f4 727 LEFT JOIN emails AS e USING(email)
728 LEFT JOIN aliases AS a ON (a.id = e.uid AND a.type = 'a_vie')
9e570fe0 729 ORDER BY w.state, w.email, a.alias";
730 $it = Xdb::iterRow($sql);
731
732 $table = array();
733 $props = array();
734 while (list($email, $date, $state, $forlife) = $it->next()) {
735 if (count($props) == 0 || $props['mail'] != $email) {
736 if (count($props) > 0) {
737 $table[] = $props;
738 }
739 $props = array('mail' => $email,
740 'detection' => $date,
741 'state' => $state,
742 'users' => array($forlife));
743 } else {
744 $props['users'][] = $forlife;
745 }
746 }
747 if (count($props) > 0) {
748 $table[] = $props;
749 }
750 $page->assign('table', $table);
751 } elseif ($action == 'edit') {
752 $sql = "SELECT w.detection, w.state, w.last, w.description,
753 a1.alias AS edit, a2.alias AS forlife
754 FROM emails_watch AS w
eaf30d86 755 LEFT JOIN aliases AS a1 ON (a1.id = w.uid AND a1.type = 'a_vie')
9615c895 756 LEFT JOIN emails AS e ON (w.email = e.email)
ca6d07f4 757 LEFT JOIN aliases AS a2 ON (a2.id = e.uid AND a2.type = 'a_vie')
9e570fe0 758 WHERE w.email = {?}
759 ORDER BY a2.alias";
760 $it = Xdb::iterRow($sql, $email);
761
762 $props = array();
763 while (list($detection, $state, $last, $description, $edit, $forlife) = $it->next()) {
764 if (count($props) == 0) {
765 $props = array('mail' => $email,
766 'detection' => $detection,
767 'state' => $state,
768 'last' => $last,
769 'description' => $description,
770 'edit' => $edit,
771 'users' => array($forlife));
772 } else {
773 $props['users'][] = $forlife;
774 }
775 }
776 $page->assign('doublon', $props);
777 }
778 }
7727ffc7 779 function handler_lost(&$page, $action = 'list', $email = null)
780 {
781 $page->changeTpl('emails/lost.tpl');
eaf30d86 782
2d997414
VZ
783 $page->assign('lost_emails', XDB::iterator("
784 SELECT u.user_id, u.hruid
0e5ec860 785 FROM auth_user_md5 AS u
2d997414
VZ
786 LEFT JOIN emails AS e ON (u.user_id = e.uid AND FIND_IN_SET('active', e.flags))
787 WHERE e.uid IS NULL AND FIND_IN_SET('googleapps', u.mail_storage) = 0 AND
788 u.deces = 0 AND u.perms IN ('user', 'admin', 'disabled')
789 ORDER BY u.promo DESC, u.nom, u.prenom"));
7727ffc7 790 }
81b5b746 791}
792
a7de4ef7 793// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
81b5b746 794?>