projects / platal.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Prevents potential wrong query.
[platal.git] / modules / lists.php
CommitLineData
bc4ad6aa 1<?php
2/***************************************************************************
9f5bd98e 3 * Copyright (C) 2003-2010 Polytechnique.org *
bc4ad6aa 4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22class ListsModule extends PLModule
23{
0baf0741 24 protected $client;
bc4ad6aa 25
26 function handlers()
27 {
28 return array(
29 'lists' => $this->make_hook('lists', AUTH_MDP),
eb5a266d 30 'lists/ajax' => $this->make_hook('ajax', AUTH_MDP, 'user', NO_AUTH),
bc4ad6aa 31 'lists/create' => $this->make_hook('create', AUTH_MDP),
32
33 'lists/members' => $this->make_hook('members', AUTH_COOKIE),
b73bc04b 34 'lists/csv' => $this->make_hook('csv', AUTH_COOKIE),
1cc0afe7 35 'lists/annu' => $this->make_hook('annu', AUTH_COOKIE),
bc4ad6aa 36 'lists/archives' => $this->make_hook('archives', AUTH_COOKIE),
8fc4efa3 37 'lists/archives/rss' => $this->make_hook('rss', AUTH_PUBLIC, 'user', NO_HTTPS),
bc4ad6aa 38
39 'lists/moderate' => $this->make_hook('moderate', AUTH_MDP),
40 'lists/admin' => $this->make_hook('admin', AUTH_MDP),
41 'lists/options' => $this->make_hook('options', AUTH_MDP),
42 'lists/delete' => $this->make_hook('delete', AUTH_MDP),
43
44 'lists/soptions' => $this->make_hook('soptions', AUTH_MDP),
45 'lists/check' => $this->make_hook('check', AUTH_MDP),
eb5a266d 46 'admin/lists' => $this->make_hook('admin_all', AUTH_MDP, 'admin'),
bc4ad6aa 47 );
48 }
49
8c12f931 50 function prepare_client(&$page, $user = null)
bc4ad6aa 51 {
0ec52d96 52 global $globals;
53
460d8f55 54 $this->load('lists.inc.php');
8c12f931
FB		 55 if (is_null($user)) {
56 $user = S::user();
57 }
bc4ad6aa 58
7f1ff426 59 $this->client = new MMList($user);
092945b4 60 return $globals->mail->domain;
bc4ad6aa 61 }
62
834fd0f6 63 function get_pending_ops($domain, $list)
64 {
65 list($subs,$mails) = $this->client->get_pending_ops($list);
66 $res = XDB::query("SELECT mid
2235cd7f 67 FROM email_list_moderate
834fd0f6 68 WHERE ml = {?} AND domain = {?}",
69 $list, $domain);
70 $mids = $res->fetchColumn();
71 foreach ($mails as $key=>$mail) {
72 if (in_array($mail['id'], $mids)) {
73 unset($mails[$key]);
74 }
75 }
76 return array($subs, $mails);
77 }
78
bc4ad6aa 79 function handler_lists(&$page)
80 {
50c655ee 81 function filter_owner($list)
82 {
83 return $list['own'];
84 }
85
86 function filter_member($list)
87 {
da398501 88 return $list['sub'];
50c655ee 89 }
90
834fd0f6 91 $domain = $this->prepare_client($page);
bc4ad6aa 92
edc4367b 93 $page->changeTpl('lists/index.tpl');
50c655ee 94 $page->addJsLink('ajax.js');
46f272fe 95 $page->setTitle('Listes de diffusion');
bc4ad6aa 96
97
98 if (Get::has('del')) {
2669eb7d 99 S::assert_xsrf_token();
5e2307dc 100 $this->client->unsubscribe(Get::v('del'));
8b00e0e0 101 pl_redirect('lists');
bc4ad6aa 102 }
103 if (Get::has('add')) {
2669eb7d 104 S::assert_xsrf_token();
5e2307dc 105 $this->client->subscribe(Get::v('add'));
8b00e0e0 106 pl_redirect('lists');
bc4ad6aa 107 }
108 if (Post::has('promo_add')) {
2669eb7d
VZ		 109 S::assert_xsrf_token();
110
5e2307dc 111 $promo = Post::i('promo_add');
bc4ad6aa 112 if ($promo >= 1900 and $promo < 2100) {
113 $this->client->subscribe("promo$promo");
114 } else {
7be6ecba 115 $page->trigError("promo incorrecte, il faut une promo sur 4 chiffres.");
bc4ad6aa 116 }
117 }
2669eb7d 118
81a9ae96
SJ		 119 if (!is_null($listes = $this->client->get_lists())) {
120 $owner = array_filter($listes, 'filter_owner');
121 $listes = array_diff_key($listes, $owner);
122 $member = array_filter($listes, 'filter_member');
123 $listes = array_diff_key($listes, $member);
124 foreach ($owner as $key => $liste) {
125 list($subs, $mails) = $this->get_pending_ops($domain, $liste['list']);
126 $owner[$key]['subscriptions'] = $subs;
127 $owner[$key]['mails'] = $mails;
128 }
129 $page->register_modifier('hdc', 'list_header_decode');
130 $page->assign_by_ref('owner', $owner);
131 $page->assign_by_ref('member', $member);
132 $page->assign_by_ref('public', $listes);
50c655ee 133 }
50c655ee 134 }
135
136 function handler_ajax(&$page, $list = null)
137 {
3cb500d5 138 pl_content_headers("text/html");
5cbb1fad 139 $domain = $this->prepare_client($page);
edc4367b 140 $page->changeTpl('lists/liste.inc.tpl', NO_SKIN);
2669eb7d
VZ		 141 S::assert_xsrf_token();
142
50c655ee 143 if (Get::has('unsubscribe')) {
144 $this->client->unsubscribe($list);
145 }
146 if (Get::has('subscribe')) {
147 $this->client->subscribe($list);
148 }
149 if (Get::has('sadd')) { /* 4 = SUBSCRIBE */
150 $this->client->handle_request($list, Get::v('sadd'), 4, '');
151 }
152 if (Get::has('mid')) {
5cbb1fad 153 $this->moderate_mail($domain, $list, Get::i('mid'));
50c655ee 154 }
155
156 list($liste, $members, $owners) = $this->client->get_members($list);
157 if ($liste['own']) {
834fd0f6 158 list($subs,$mails) = $this->get_pending_ops($domain, $list);
50c655ee 159 $liste['subscriptions'] = $subs;
160 $liste['mails'] = $mails;
161 }
162 $page->register_modifier('hdc', 'list_header_decode');
163 $page->assign_by_ref('liste', $liste);
bc4ad6aa 164 }
165
166 function handler_create(&$page)
167 {
032b244e
SJ		 168 global $globals;
169
edc4367b 170 $page->changeTpl('lists/create.tpl');
bc4ad6aa 171
18fb3c63 172 $user_promo = S::user()->profile()->yearPromo();
8ac67bda
SJ		 173 $year = date('Y');
174 $month = date('m');
18fb3c63
PC		 175 // scolar year starts in september
176 $scolarmonth = ($year - $user_promo) * 12 + ($month - 8);
8ac67bda 177 $young_promo = $very_young_promo = 0;
18fb3c63
PC		 178 // binet are accessible only in april in the first year and until
179 // march of the 5th year
180 if ($scolarmonth >= 8 && $scolarmonth < 56) {
8ac67bda
SJ		 181 $young_promo = 1;
182 }
18fb3c63
PC		 183 // PSC aliases are accesible only between september and june of the second
184 // year of scolarity
185 if ($scolarmonth >= 12 && $scolarmonth < 22) {
8ac67bda
SJ		 186 $very_young_promo = 1;
187 }
188 $page->assign('young_promo', $young_promo);
189 $page->assign('very_young_promo', $very_young_promo);
190
5e2307dc 191 $owners = preg_split("/[\s]+/", Post::v('owners'), -1, PREG_SPLIT_NO_EMPTY);
192 $members = preg_split("/[\s]+/", Post::v('members'), -1, PREG_SPLIT_NO_EMPTY);
bc4ad6aa 193
194 // click on validate button 'add_owner_sub' or type <enter>
195 if (Post::has('add_owner_sub') && Post::has('add_owner')) {
bc4ad6aa 196 // if we want to add an owner and then type <enter>, then both
197 // add_owner_sub and add_owner are filled.
7586ae0b
VZ		 198 $oforlifes = User::getBulkForlifeEmails(Post::v('add_owner'), true);
199 $mforlifes = User::getBulkForlifeEmails(Post::v('add_member'), true);
e7545178 200 if (!is_null($oforlifes)) {
201 $owners = array_merge($owners, $oforlifes);
202 }
203 // if we want to add a member and then type <enter>, then
204 // add_owner_sub is filled, whereas add_owner is empty.
205 if (!is_null($mforlifes)) {
206 $members = array_merge($members, $mforlifes);
bc4ad6aa 207 }
208 }
209
210 // click on validate button 'add_member_sub'
211 if (Post::has('add_member_sub') && Post::has('add_member')) {
7586ae0b 212 $forlifes = User::getBulkForlifeEmails(Post::v('add_member'), true);
e7545178 213 if (!is_null($forlifes)) {
214 $members = array_merge($members, $forlifes);
bc4ad6aa 215 }
216 }
45070158 217 if (Post::has('add_member_sub') && isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) {
f3df6d38 218 $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true);
45070158
FB		 219 if (!$upload) {
220 $page->trigError('Une erreur s\'est produite lors du téléchargement du fichier');
221 } else {
7586ae0b 222 $forlifes = User::getBulkForlifeEmails($upload->getContents(), true);
45070158
FB		 223 if (!is_null($forlifes)) {
224 $members = array_merge($members, $forlifes);
225 }
226 }
227 }
bc4ad6aa 228
e7545178 229 ksort($owners);
230 $owners = array_unique($owners);
231 ksort($members);
232 $members = array_unique($members);
bc4ad6aa 233
45070158
FB		 234 $page->assign('owners', join("\n", $owners));
235 $page->assign('members', join("\n", $members));
bc4ad6aa 236
237 if (!Post::has('submit')) {
238 return;
2669eb7d
VZ		 239 } else {
240 S::assert_xsrf_token();
bc4ad6aa 241 }
242
59887c4a 243 $asso = Post::v('asso');
5e2307dc 244 $liste = Post::v('liste');
bc4ad6aa 245
246 if (empty($liste)) {
6bb2f79a 247 $page->trigError('Le champ «&nbsp;adresse souhaitée&nbsp;» est vide.');
bc4ad6aa 248 }
249 if (!preg_match("/^[a-zA-Z0-9\-]*$/", $liste)) {
59887c4a 250 $page->trigError('Le nom de la liste ne doit contenir que des lettres non accentuées, chiffres et tirets.');
bc4ad6aa 251 }
252
59887c4a
SJ		 253 if (($asso == "binet") || ($asso == "alias")) {
254 $promo = Post::i('promo');
032b244e 255 $domain = $promo . '.' . $globals->mail->domain;
59887c4a
SJ		 256
257 if (($promo < 1921) || ($promo > date('Y'))) {
6bb2f79a 258 $page->trigError('La promotion est mal renseignée, elle doit être du type&nbsp;: 2004.');
59887c4a
SJ		 259 }
260
261 $new = $liste . '@' . $domain;
00112b2e 262 $res = XDB::query('SELECT COUNT(*) FROM virtual WHERE alias={?}', $new);
59887c4a
SJ		 263
264 } else {
265 if ($asso == "groupex") {
266 $groupex_name = Post::v('groupex_name');
267
eb41eda9 268 $res_groupe = XDB::query('SELECT mail_domain FROM groups WHERE nom={?}', $groupex_name);
59887c4a
SJ		 269 $domain = $res_groupe->fetchOneCell();
270
271 if (!$domain) {
272 $page->trigError('Il n\'y a aucun groupe de ce nom sur Polytechnique.net.');
273 }
274
275 $new = $liste . '@' . $domain;
00112b2e 276 $res = XDB::query('SELECT COUNT(*) FROM virtual WHERE alias={?}', $new);
59887c4a
SJ		 277 } else {
278 $res = XDB::query("SELECT COUNT(*) FROM aliases WHERE alias={?}", $liste);
032b244e 279 $domain = $globals->mail->domain;
59887c4a 280 }
bc4ad6aa 281 }
282
59887c4a 283 $n = $res->fetchOneCell();
bc4ad6aa 284
285 if ($n) {
6bb2f79a 286 $page->trigError("L'«&nbsp;adresse souhaitée&nbsp;» est déjà prise.");
bc4ad6aa 287 }
288
92144f3e 289 if (!Post::v('desc')) {
59887c4a 290 $page->trigError('Le sujet est vide.');
bc4ad6aa 291 }
292
293 if (!count($owners)) {
59887c4a 294 $page->trigError('Il n\'y a pas de gestionnaire.');
bc4ad6aa 295 }
296
297 if (count($members)<4) {
59887c4a 298 $page->trigError('Il n\'y a pas assez de membres.');
bc4ad6aa 299 }
300
301 if (!$page->nb_errs()) {
562064b5 302 $page->trigSuccess('Demande de création envoyée&nbsp;!');
bc4ad6aa 303 $page->assign('created', true);
304 require_once 'validations.inc.php';
5daf68f6 305 $req = new ListeReq(S::user(), $asso, $liste, $domain,
5e2307dc 306 Post::v('desc'), Post::i('advertise'),
307 Post::i('modlevel'), Post::i('inslevel'),
bc4ad6aa 308 $owners, $members);
309 $req->submit();
310 }
311 }
312
313 function handler_members(&$page, $liste = null)
314 {
bc4ad6aa 315 if (is_null($liste)) {
316 return PL_NOT_FOUND;
317 }
318
7b9d64a8 319 $this->prepare_client($page);
bc4ad6aa 320
1490093c 321 $page->changeTpl('lists/members.tpl');
bc4ad6aa 322
323 if (Get::has('del')) {
2669eb7d 324 S::assert_xsrf_token();
bc4ad6aa 325 $this->client->unsubscribe($liste);
8b00e0e0 326 pl_redirect('lists/members/'.$liste);
bc4ad6aa 327 }
328
329 if (Get::has('add')) {
2669eb7d 330 S::assert_xsrf_token();
bc4ad6aa 331 $this->client->subscribe($liste);
8b00e0e0 332 pl_redirect('lists/members/'.$liste);
bc4ad6aa 333 }
334
335 $members = $this->client->get_members($liste);
336
5e2307dc 337 $tri_promo = !Env::b('alpha');
bc4ad6aa 338
339 if (list($det,$mem,$own) = $members) {
340 $membres = list_sort_members($mem, $tri_promo);
341 $moderos = list_sort_owners($own, $tri_promo);
342
343 $page->assign_by_ref('details', $det);
344 $page->assign_by_ref('members', $membres);
345 $page->assign_by_ref('owners', $moderos);
346 $page->assign('nb_m', count($mem));
347 } else {
6e828e47 348 $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails.");
bc4ad6aa 349 }
350 }
351
b73bc04b
FB		 352 function handler_csv(PlPage &$page, $liste = null)
353 {
354 if (is_null($liste)) {
355 return PL_NOT_FOUND;
356 }
357 $this->prepare_client($page);
358 $members = $this->client->get_members($liste);
359 $list = list_fetch_names(list_extract_members($members[1]));
3cb500d5 360 pl_content_headers("text/x-csv");
b73bc04b
FB		 361
362 echo "email,nom,prenom,promo\n";
363 foreach ($list as $member) {
364 echo @$member['email'] . ',' . @$member['nom'] . ',' . @$member['prenom'] . ',' . @$member['promo'] . "\n";
365 }
366 exit;
367 }
368
1cc0afe7 369 function handler_annu(&$page, $liste = null, $action = null, $subaction = null)
bc4ad6aa 370 {
bc4ad6aa 371 if (is_null($liste)) {
372 return PL_NOT_FOUND;
373 }
374
7b9d64a8 375 $this->prepare_client($page);
bc4ad6aa 376
bc4ad6aa 377 if (Get::has('del')) {
2669eb7d 378 S::assert_xsrf_token();
bc4ad6aa 379 $this->client->unsubscribe($liste);
1cc0afe7 380 pl_redirect('lists/annu/'.$liste);
bc4ad6aa 381 }
382 if (Get::has('add')) {
2669eb7d 383 S::assert_xsrf_token();
bc4ad6aa 384 $this->client->subscribe($liste);
1cc0afe7 385 pl_redirect('lists/annu/'.$liste);
bc4ad6aa 386 }
387
388 $owners = $this->client->get_owners($liste);
1cc0afe7 389 if (!is_array($owners)) {
6e828e47 390 $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails.");
bc4ad6aa 391 }
1cc0afe7 392
393 global $platal;
394 list(,$members) = $this->client->get_members($liste);
395 $users = array();
396 foreach ($members as $m) {
397 $users[] = $m[1];
398 }
399 require_once 'userset.inc.php';
400 $view = new ArraySet($users);
401 $view->addMod('trombi', 'Trombinoscope', true, array('with_promo' => true));
402 if (empty($GLOBALS['IS_XNET_SITE'])) {
1fae7605 403 $view->addMod('minifiche', 'Mini-fiches', false);
1cc0afe7 404 }
1fe46b8f
SJ		 405 // TODO: Reactivate when the new map is completed.
406 // $view->addMod('geoloc', 'Planisphère');
1cc0afe7 407 $view->apply("lists/annu/$liste", $page, $action, $subaction);
408 if ($action == 'geoloc' && $subaction) {
409 return;
410 }
411
412 $page->changeTpl('lists/annu.tpl');
413 $moderos = list_sort_owners($owners[1]);
414 $page->assign_by_ref('details', $owners[0]);
415 $page->assign_by_ref('owners', $moderos);
bc4ad6aa 416 }
417
fa7d6c7b 418 function handler_archives(&$page, $liste = null, $action = null, $artid = null)
bc4ad6aa 419 {
420 global $globals;
421
422 if (is_null($liste)) {
423 return PL_NOT_FOUND;
424 }
425
092945b4 426 $domain = $this->prepare_client($page);
bc4ad6aa 427
1490093c 428 $page->changeTpl('lists/archives.tpl');
bc4ad6aa 429
bc4ad6aa 430 if (list($det) = $this->client->get_members($liste)) {
431 if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv'])
fa7d6c7b 432 && !$det['own'] && ($det['sub'] < 2)) {
38421eaa 433 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter.");
fa7d6c7b 434 }
435 $get = Array('listname' => $liste, 'domain' => $domain);
436 if (Post::has('updateall')) {
437 $get['updateall'] = Post::v('updateall');
438 }
4f355064 439 require_once 'banana/ml.inc.php';
440 get_banana_params($get, null, $action, $artid);
441 run_banana($page, 'MLBanana', $get);
bc4ad6aa 442 } else {
38421eaa 443 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter.");
bc4ad6aa 444 }
445 }
446
6544d0e1 447 function handler_rss(&$page, $liste = null, $alias = null, $hash = null)
448 {
8c12f931
FB		 449 if (!$liste) {
450 return PL_NOT_FOUND;
451 }
452 $user = Platal::session()->tokenAuth($alias, $hash);
453 if (is_null($user)) {
454 return PL_FORBIDDEN;
6544d0e1 455 }
456
8c12f931 457 $domain = $this->prepare_client($page, $user);
6544d0e1 458 if (list($det) = $this->client->get_members($liste)) {
459 if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv'])
460 && !$det['own'] && ($det['sub'] < 2)) {
eaf30d86 461 exit;
6544d0e1 462 }
463 require_once('banana/ml.inc.php');
8c12f931 464 $banana = new MLBanana($user, Array('listname' => $liste, 'domain' => $domain, 'action' => 'rss2'));
4f355064 465 $banana->run();
6544d0e1 466 }
467 exit;
468 }
469
5cbb1fad 470 function moderate_mail($domain, $liste, $mid)
50c655ee 471 {
50c655ee 472 if (Env::has('mok')) {
834fd0f6 473 $action = 'accept';
50c655ee 474 } elseif (Env::has('mno')) {
834fd0f6 475 $action = 'refuse';
50c655ee 476 } elseif (Env::has('mdel')) {
834fd0f6 477 $action = 'delete';
478 } else {
479 return false;
480 }
481 Get::kill('mid');
2235cd7f 482 return XDB::execute("INSERT IGNORE INTO email_list_moderate
834fd0f6 483 VALUES ({?}, {?}, {?}, {?}, {?}, NOW(), {?}, NULL)",
484 $liste, $domain, $mid, S::i('uid'), $action, Post::v('reason'));
50c655ee 485 }
486
bc4ad6aa 487 function handler_moderate(&$page, $liste = null)
488 {
bc4ad6aa 489 if (is_null($liste)) {
4b0d9ef3 490 return PL_NOT_FOUND;
bc4ad6aa 491 }
492
092945b4 493 $domain = $this->prepare_client($page);
bc4ad6aa 494
1490093c 495 $page->changeTpl('lists/moderate.tpl');
bc4ad6aa 496
c8529706 497 $page->register_modifier('hdc', 'list_header_decode');
bc4ad6aa 498
4b0d9ef3 499 if (Env::has('sadd') || Env::has('sdel')) {
2669eb7d
VZ		 500 S::assert_xsrf_token();
501
4b0d9ef3 502 if (Env::has('sadd')) { /* 4 = SUBSCRIBE */
503 $sub = $this->client->get_pending_sub($liste, Env::v('sadd'));
504 $this->client->handle_request($liste,Env::v('sadd'),4,'');
505 $info = "validée";
506 }
507 if (Post::has('sdel')) { /* 2 = REJECT */
508 $sub = $this->client->get_pending_sub($liste, Env::v('sdel'));
a5878ac1 509 $this->client->handle_request($liste, Post::v('sdel'), 2, utf8_decode(Post::v('reason')));
4b0d9ef3 510 $info = "refusée";
511 }
512 if ($sub) {
513 $mailer = new PlMailer();
514 $mailer->setFrom("$liste-bounces@{$domain}");
515 $mailer->addTo("$liste-owner@{$domain}");
516 $mailer->addHeader('Reply-To', "$liste-owner@{$domain}");
517 $mailer->setSubject("L'inscription de {$sub['name']} a été $info");
518 $text = "L'inscription de {$sub['name']} à la liste $liste@{$domain} a été $info par " . S::v('prenom') . ' '
519 . S::v('nom') . '(' . S::v('promo') . ")\n";
520 if (trim(Post::v('reason'))) {
521 $text .= "\nLa raison invoquée est :\n" . Post::v('reason');
522 }
523 $mailer->setTxtBody(wordwrap($text, 72));
524 $mailer->send();
525 }
526 if (Env::has('sadd')) {
527 pl_redirect('lists/moderate/'.$liste);
eaf30d86 528 }
bc4ad6aa 529 }
530
e940f534 531 if (Post::has('moderate_mails') && Post::has('select_mails')) {
2669eb7d
VZ		 532 S::assert_xsrf_token();
533
e940f534 534 $mails = array_keys(Post::v('select_mails'));
535 foreach($mails as $mail) {
536 $this->moderate_mail($domain, $liste, $mail);
537 }
538 } elseif (Env::has('mid')) {
d96379f6 539 if (Get::has('mid') && !Env::has('mok') && !Env::has('mdel')) {
ecc72a6d 540 require_once 'banana/moderate.inc.php';
bc4ad6aa 541
52d032a7 542 $page->changeTpl('lists/moderate_mail.tpl');
52d032a7
SJ		 543 $params = array('listname' => $liste, 'domain' => $domain,
544 'artid' => Get::i('mid'), 'part' => Get::v('part'), 'action' => Get::v('action'));
545 $params['client'] = $this->client;
546 run_banana($page, 'ModerationBanana', $params);
547
ecc72a6d 548 $msg = file_get_contents('/etc/mailman/fr/refuse.txt');
52d032a7
SJ		 549 $msg = str_replace("%(adminaddr)s", "$liste-owner@{$domain}", $msg);
550 $msg = str_replace("%(request)s", "<< SUJET DU MAIL >>", $msg);
551 $msg = str_replace("%(reason)s", "<< TON EXPLICATION >>", $msg);
552 $msg = str_replace("%(listname)s", $liste, $msg);
553 $page->assign('msg', $msg);
554 return;
ed03d07f 555 }
556
ecc72a6d 557 $this->moderate_mail($domain, $liste, Env::i('mid'));
bc4ad6aa 558 } elseif (Env::has('sid')) {
834fd0f6 559 if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) {
bc4ad6aa 560 foreach($subs as $user) {
5e2307dc 561 if ($user['id'] == Env::v('sid')) {
1490093c 562 $page->changeTpl('lists/moderate_sub.tpl');
6a20c6a3 563 $page->assign('del_user', $user);
564 return;
bc4ad6aa 565 }
566 }
567 }
568
569 }
570
834fd0f6 571 if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) {
46ab179a 572 foreach ($mails as $key=>$mail) {
573 $mails[$key]['stamp'] = strftime("%Y%m%d%H%M%S", $mail['stamp']);
717b9fa7
FB		 574 if ($mail['fromx']) {
575 $page->assign('with_fromx', true);
576 } else {
577 $page->assign('with_nonfromx', true);
578 }
46ab179a 579 }
bc4ad6aa 580 $page->assign_by_ref('subs', $subs);
581 $page->assign_by_ref('mails', $mails);
582 } else {
6e828e47 583 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la modérer.");
bc4ad6aa 584 }
585 }
586
0baf0741 587 static public function no_login_callback($login)
588 {
be792642 589 global $list_unregistered, $globals;
0baf0741 590
61a7d279 591 $users = User::getPendingAccounts($login, true);
a58d8539 592 if ($users && $users->total()) {
0baf0741 593 if (!isset($list_unregistered)) {
594 $list_unregistered = array();
595 }
596 $list_unregistered[$login] = $users;
597 } else {
be792642
FB		 598 list($name, $dom) = @explode('@', $login);
599 if ($dom == $globals->mail->domain || $dom == $globals->mail->domain2) {
750f63db 600 User::_default_user_callback($login);
be792642 601 }
0baf0741 602 }
603 }
604
bc4ad6aa 605 function handler_admin(&$page, $liste = null)
606 {
607 global $globals;
608
609 if (is_null($liste)) {
610 return PL_NOT_FOUND;
611 }
612
0baf0741 613 $domain = $this->prepare_client($page);
bc4ad6aa 614
1490093c 615 $page->changeTpl('lists/admin.tpl');
bc4ad6aa 616
0baf0741 617 if (Env::has('send_mark')) {
2669eb7d
VZ		 618 S::assert_xsrf_token();
619
0baf0741 620 $actions = Env::v('mk_action');
621 $uids = Env::v('mk_uid');
622 $mails = Env::v('mk_email');
623 foreach ($actions as $key=>$action) {
624 switch ($action) {
625 case 'none':
626 break;
627
628 case 'marketu': case 'markets':
629 require_once 'emails.inc.php';
630 $mail = valide_email($mails[$key]);
631 if (isvalid_email_redirection($mail)) {
632 $from = ($action == 'marketu') ? 'user' : 'staff';
633 $market = Marketing::get($uids[$key], $mail);
634 if (!$market) {
635 $market = new Marketing($uids[$key], $mail, 'list', "$liste@$domain", $from, S::v('uid'));
636 $market->add();
637 break;
638 }
639 }
640
641 default:
642 XDB::execute('INSERT IGNORE INTO register_subs (uid, type, sub, domain)
643 VALUES ({?}, \'list\', {?}, {?})',
644 $uids[$key], $liste, $domain);
645 }
646 }
647 }
648
bc4ad6aa 649 if (Env::has('add_member')) {
2669eb7d
VZ		 650 S::assert_xsrf_token();
651
7586ae0b 652 $members = User::getBulkForlifeEmails(Env::v('add_member'),
7129ea95 653 true,
7586ae0b 654 array('ListsModule', 'no_login_callback'));
bc4ad6aa 655 $arr = $this->client->mass_subscribe($liste, $members);
656 if (is_array($arr)) {
657 foreach($arr as $addr) {
a7d35093 658 $page->trigSuccess("{$addr[0]} inscrit.");
bc4ad6aa 659 }
660 }
661 }
662
108d1d90 663 if (isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) {
2669eb7d
VZ		 664 S::assert_xsrf_token();
665
f3df6d38 666 $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true);
108d1d90
FB		 667 if (!$upload) {
668 $page->trigError('Une erreur s\'est produite lors du téléchargement du fichier');
669 } else {
7586ae0b 670 $members = User::getBulkForlifeEmails($upload->getContents(),
7129ea95 671 true,
7586ae0b 672 array('ListsModule', 'no_login_callback'));
108d1d90
FB		 673 $arr = $this->client->mass_subscribe($liste, $members);
674 if (is_array($arr)) {
675 foreach($arr as $addr) {
676 $page->trigSuccess("{$addr[0]} inscrit.");
677 }
678 }
679 }
680 }
681
bc4ad6aa 682 if (Env::has('del_member')) {
2669eb7d
VZ		 683 S::assert_xsrf_token();
684
5e2307dc 685 if (strpos(Env::v('del_member'), '@') === false) {
bc4ad6aa 686 $this->client->mass_unsubscribe(
5e2307dc 687 $liste, array(Env::v('del_member').'@'.$globals->mail->domain));
bc4ad6aa 688 } else {
5e2307dc 689 $this->client->mass_unsubscribe($liste, array(Env::v('del_member')));
bc4ad6aa 690 }
8b00e0e0 691 pl_redirect('lists/admin/'.$liste);
bc4ad6aa 692 }
693
694 if (Env::has('add_owner')) {
2669eb7d
VZ		 695 S::assert_xsrf_token();
696
7586ae0b 697 $owners = User::getBulkForlifeEmails(Env::v('add_owner'), false, array('ListsModule', 'no_login_callback'));
e7545178 698 if ($owners) {
699 foreach ($owners as $login) {
700 if ($this->client->add_owner($liste, $login)) {
7586ae0b 701 $page->trigSuccess($login ." ajouté aux modérateurs.");
e7545178 702 }
bc4ad6aa 703 }
704 }
705 }
706
707 if (Env::has('del_owner')) {
2669eb7d
VZ		 708 S::assert_xsrf_token();
709
5e2307dc 710 if (strpos(Env::v('del_owner'), '@') === false) {
711 $this->client->del_owner($liste, Env::v('del_owner').'@'.$globals->mail->domain);
bc4ad6aa 712 } else {
5e2307dc 713 $this->client->del_owner($liste, Env::v('del_owner'));
bc4ad6aa 714 }
8b00e0e0 715 pl_redirect('lists/admin/'.$liste);
bc4ad6aa 716 }
717
718 if (list($det,$mem,$own) = $this->client->get_members($liste)) {
0baf0741 719 global $list_unregistered;
720 if ($list_unregistered) {
721 $page->assign_by_ref('unregistered', $list_unregistered);
722 }
30fc8ee7 723 $membres = list_sort_members($mem, @$tri_promo);
724 $moderos = list_sort_owners($own, @$tri_promo);
bc4ad6aa 725
726 $page->assign_by_ref('details', $det);
727 $page->assign_by_ref('members', $membres);
728 $page->assign_by_ref('owners', $moderos);
729 $page->assign('np_m', count($mem));
730
731 } else {
383eaddd 732 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.<br />"
6e828e47
SJ		 733 . " Si tu penses qu'il s'agit d'une erreur, "
734 . "<a href='mailto:support@polytechnique.org'>contact le support</a>.");
bc4ad6aa 735 }
736 }
737
738 function handler_options(&$page, $liste = null)
739 {
bc4ad6aa 740 if (is_null($liste)) {
741 return PL_NOT_FOUND;
742 }
743
7b9d64a8 744 $this->prepare_client($page);
bc4ad6aa 745
1490093c 746 $page->changeTpl('lists/options.tpl');
bc4ad6aa 747
748 if (Post::has('submit')) {
2669eb7d
VZ		 749 S::assert_xsrf_token();
750
bc4ad6aa 751 $values = $_POST;
5fb22b39 752 $values = array_map('utf8_decode', $values);
c638d8c8
FB		 753 $spamlevel = intval($values['bogo_level']);
754 $unsurelevel = intval($values['unsure_level']);
755 if ($spamlevel == 0) {
756 $unsurelevel = 0;
757 }
758 if ($spamlevel > 3 || $spamlevel < 0 || $unsurelevel < 0 || $unsurelevel > 1) {
759 $page->trigError("Réglage de l'antispam non valide");
760 } else {
761 $this->client->set_bogo_level($liste, ($spamlevel << 1) + $unsurelevel);
762 }
bc4ad6aa 763 switch($values['moderate']) {
764 case '0':
765 $values['generic_nonmember_action'] = 0;
766 $values['default_member_moderation'] = 0;
767 break;
768 case '1':
769 $values['generic_nonmember_action'] = 1;
770 $values['default_member_moderation'] = 0;
771 break;
772 case '2':
773 $values['generic_nonmember_action'] = 1;
774 $values['default_member_moderation'] = 1;
775 break;
776 }
777 unset($values['submit'], $values['bogo_level'], $values['moderate']);
778 $values['send_goodbye_msg'] = !empty($values['send_goodbye_msg']);
779 $values['admin_notify_mchanges'] = !empty($values['admin_notify_mchanges']);
780 $values['subscribe_policy'] = empty($values['subscribe_policy']) ? 0 : 2;
781 if (isset($values['subject_prefix'])) {
782 $values['subject_prefix'] = trim($values['subject_prefix']).' ';
783 }
784 $this->client->set_owner_options($liste, $values);
5e2307dc 785 } elseif (isvalid_email(Post::v('atn_add'))) {
2669eb7d 786 S::assert_xsrf_token();
5e2307dc 787 $this->client->add_to_wl($liste, Post::v('atn_add'));
bc4ad6aa 788 } elseif (Get::has('atn_del')) {
2669eb7d 789 S::assert_xsrf_token();
5e2307dc 790 $this->client->del_from_wl($liste, Get::v('atn_del'));
8b00e0e0 791 pl_redirect('lists/options/'.$liste);
bc4ad6aa 792 }
793
794 if (list($details,$options) = $this->client->get_owner_options($liste)) {
795 $page->assign_by_ref('details', $details);
796 $page->assign_by_ref('options', $options);
c638d8c8
FB		 797 $bogo_level = intval($this->client->get_bogo_level($liste));
798 $page->assign('unsure_level', $bogo_level & 1);
799 $page->assign('bogo_level', $bogo_level >> 1);
bc4ad6aa 800 } else {
801 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer");
802 }
803 }
804
805 function handler_delete(&$page, $liste = null)
806 {
7c5842f3 807 global $globals;
bc4ad6aa 808 if (is_null($liste)) {
809 return PL_NOT_FOUND;
810 }
811
7c5842f3 812 $domain = $this->prepare_client($page);
813 if ($domain == $globals->mail->domain || $domain == $globals->mail->domain2) {
814 $domain = '';
815 $table = 'aliases';
816 $type = 'liste';
817 } else {
818 $domain = '@' . $domain;
819 $table = 'virtual';
820 $type = 'list';
821 }
bc4ad6aa 822
1490093c 823 $page->changeTpl('lists/delete.tpl');
7c5842f3 824 if (Post::v('valid') == 'OUI') {
2669eb7d
VZ		 825 S::assert_xsrf_token();
826
7c5842f3 827 if ($this->client->delete_list($liste, Post::b('del_archive'))) {
7d427b10 828 foreach (array('', '-owner', '-admin', '-bounces', '-unsubscribe') as $app) {
7c5842f3 829 XDB::execute("DELETE FROM $table
830 WHERE type={?} AND alias={?}",
831 $type, $liste.$app.$domain);
832 }
833 $page->assign('deleted', true);
6bb2f79a 834 $page->trigSuccess('La liste a été détruite&nbsp;!');
7c5842f3 835 } else {
836 $page->kill('Une erreur est survenue lors de la suppression de la liste.<br />'
a7de4ef7 837 . 'Contact les administrateurs du site pour régler le problème : '
6e828e47 838 . '<a href="mailto:support@polytechnique.org">support@polytechnique.org</a>.');
bc4ad6aa 839 }
bc4ad6aa 840 } elseif (list($details,$options) = $this->client->get_owner_options($liste)) {
44b071c2
SJ		 841 if (!$details['own']) {
842 $page->trigWarning('Tu n\'es pas administrateur de la liste, mais du site.');
843 }
bc4ad6aa 844 $page->assign_by_ref('details', $details);
845 $page->assign_by_ref('options', $options);
846 $page->assign('bogo_level', $this->client->get_bogo_level($liste));
847 } else {
6e828e47 848 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.");
bc4ad6aa 849 }
850 }
851
852 function handler_soptions(&$page, $liste = null)
853 {
bc4ad6aa 854 if (is_null($liste)) {
855 return PL_NOT_FOUND;
856 }
857
7b9d64a8 858 $this->prepare_client($page);
bc4ad6aa 859
1490093c 860 $page->changeTpl('lists/soptions.tpl');
bc4ad6aa 861
862 if (Post::has('submit')) {
2669eb7d
VZ		 863 S::assert_xsrf_token();
864
bc4ad6aa 865 $values = $_POST;
5fb22b39 866 $values = array_map('utf8_decode', $values);
bc4ad6aa 867 unset($values['submit']);
868 $values['advertised'] = empty($values['advertised']) ? false : true;
869 $values['archive'] = empty($values['archive']) ? false : true;
870 $this->client->set_admin_options($liste, $values);
871 }
872
873 if (list($details,$options) = $this->client->get_admin_options($liste)) {
874 $page->assign_by_ref('details', $details);
875 $page->assign_by_ref('options', $options);
876 } else {
6e828e47 877 $page->kill("La liste n'existe pas.");
bc4ad6aa 878 }
879 }
880
881 function handler_check(&$page, $liste = null)
882 {
bc4ad6aa 883 if (is_null($liste)) {
884 return PL_NOT_FOUND;
885 }
886
7b9d64a8 887 $this->prepare_client($page);
bc4ad6aa 888
1490093c 889 $page->changeTpl('lists/check.tpl');
bc4ad6aa 890
891 if (Post::has('correct')) {
2669eb7d 892 S::assert_xsrf_token();
bc4ad6aa 893 $this->client->check_options($liste, true);
894 }
895
896 if (list($details,$options) = $this->client->check_options($liste)) {
897 $page->assign_by_ref('details', $details);
898 $page->assign_by_ref('options', $options);
899 } else {
6e828e47 900 $page->kill("La liste n'existe pas.");
bc4ad6aa 901 }
902 }
92423144 903
7f1ff426
FB		 904 function handler_admin_all(&$page)
905 {
1490093c 906 $page->changeTpl('lists/admin_all.tpl');
46f272fe 907 $page->setTitle('Administration - Mailing lists');
9bb8bf21 908
7f1ff426
FB		 909 $this->prepare_client($page);
910 $listes = $this->client->get_all_lists();
9bb8bf21 911 $page->assign_by_ref('listes', $listes);
92423144 912 }
bc4ad6aa 913}
914
a7de4ef7 915// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
bc4ad6aa 916?>
plat/al