| 1 | <?php |
| 2 | /*************************************************************************** |
| 3 | * Copyright (C) 2003-2011 Polytechnique.org * |
| 4 | * http://opensource.polytechnique.org/ * |
| 5 | * * |
| 6 | * This program is free software; you can redistribute it and/or modify * |
| 7 | * it under the terms of the GNU General Public License as published by * |
| 8 | * the Free Software Foundation; either version 2 of the License, or * |
| 9 | * (at your option) any later version. * |
| 10 | * * |
| 11 | * This program is distributed in the hope that it will be useful, * |
| 12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * |
| 13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * |
| 14 | * GNU General Public License for more details. * |
| 15 | * * |
| 16 | * You should have received a copy of the GNU General Public License * |
| 17 | * along with this program; if not, write to the Free Software * |
| 18 | * Foundation, Inc., * |
| 19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * |
| 20 | ***************************************************************************/ |
| 21 | |
| 22 | class ListsModule extends PLModule |
| 23 | { |
| 24 | protected $client; |
| 25 | |
| 26 | function handlers() |
| 27 | { |
| 28 | return array( |
| 29 | 'lists' => $this->make_hook('lists', AUTH_MDP), |
| 30 | 'lists/ajax' => $this->make_hook('ajax', AUTH_MDP, 'user', NO_AUTH), |
| 31 | 'lists/create' => $this->make_hook('create', AUTH_MDP, 'lists'), |
| 32 | |
| 33 | 'lists/members' => $this->make_hook('members', AUTH_COOKIE), |
| 34 | 'lists/csv' => $this->make_hook('csv', AUTH_COOKIE), |
| 35 | 'lists/annu' => $this->make_hook('annu', AUTH_COOKIE), |
| 36 | 'lists/archives' => $this->make_hook('archives', AUTH_COOKIE), |
| 37 | 'lists/archives/rss' => $this->make_hook('rss', AUTH_PUBLIC, 'user', NO_HTTPS), |
| 38 | |
| 39 | 'lists/moderate' => $this->make_hook('moderate', AUTH_MDP), |
| 40 | 'lists/admin' => $this->make_hook('admin', AUTH_MDP), |
| 41 | 'lists/options' => $this->make_hook('options', AUTH_MDP), |
| 42 | 'lists/delete' => $this->make_hook('delete', AUTH_MDP), |
| 43 | |
| 44 | 'lists/soptions' => $this->make_hook('soptions', AUTH_MDP), |
| 45 | 'lists/check' => $this->make_hook('check', AUTH_MDP), |
| 46 | 'admin/lists' => $this->make_hook('admin_all', AUTH_MDP, 'admin'), |
| 47 | 'admin/aliases' => $this->make_hook('aaliases', AUTH_MDP, 'admin') |
| 48 | ); |
| 49 | } |
| 50 | |
| 51 | function prepare_client($page, $user = null) |
| 52 | { |
| 53 | global $globals; |
| 54 | |
| 55 | $this->load('lists.inc.php'); |
| 56 | if (is_null($user)) { |
| 57 | $user = S::user(); |
| 58 | } |
| 59 | |
| 60 | $this->client = new MMList($user); |
| 61 | return $globals->mail->domain; |
| 62 | } |
| 63 | |
| 64 | function get_pending_ops($domain, $list) |
| 65 | { |
| 66 | list($subs,$mails) = $this->client->get_pending_ops($list); |
| 67 | $res = XDB::query("SELECT mid |
| 68 | FROM email_list_moderate |
| 69 | WHERE ml = {?} AND domain = {?}", |
| 70 | $list, $domain); |
| 71 | $mids = $res->fetchColumn(); |
| 72 | foreach ($mails as $key=>$mail) { |
| 73 | if (in_array($mail['id'], $mids)) { |
| 74 | unset($mails[$key]); |
| 75 | } |
| 76 | } |
| 77 | return array($subs, $mails); |
| 78 | } |
| 79 | |
| 80 | function handler_lists($page) |
| 81 | { |
| 82 | function filter_owner($list) |
| 83 | { |
| 84 | return $list['own']; |
| 85 | } |
| 86 | |
| 87 | function filter_member($list) |
| 88 | { |
| 89 | return $list['sub']; |
| 90 | } |
| 91 | |
| 92 | $domain = $this->prepare_client($page); |
| 93 | |
| 94 | $page->changeTpl('lists/index.tpl'); |
| 95 | $page->setTitle('Listes de diffusion'); |
| 96 | |
| 97 | |
| 98 | if (Get::has('del')) { |
| 99 | S::assert_xsrf_token(); |
| 100 | $this->client->unsubscribe(Get::v('del')); |
| 101 | pl_redirect('lists'); |
| 102 | } |
| 103 | if (Get::has('add')) { |
| 104 | S::assert_xsrf_token(); |
| 105 | $this->client->subscribe(Get::v('add')); |
| 106 | pl_redirect('lists'); |
| 107 | } |
| 108 | if (Post::has('promo_add')) { |
| 109 | S::assert_xsrf_token(); |
| 110 | |
| 111 | $promo = Post::i('promo_add'); |
| 112 | if ($promo >= 1900 and $promo < 2100) { |
| 113 | $this->client->subscribe("promo$promo"); |
| 114 | } else { |
| 115 | $page->trigError("promo incorrecte, il faut une promo sur 4 chiffres."); |
| 116 | } |
| 117 | } |
| 118 | |
| 119 | if (!is_null($listes = $this->client->get_lists())) { |
| 120 | $owner = array_filter($listes, 'filter_owner'); |
| 121 | $listes = array_diff_key($listes, $owner); |
| 122 | $member = array_filter($listes, 'filter_member'); |
| 123 | $listes = array_diff_key($listes, $member); |
| 124 | foreach ($owner as $key => $liste) { |
| 125 | list($subs, $mails) = $this->get_pending_ops($domain, $liste['list']); |
| 126 | $owner[$key]['subscriptions'] = $subs; |
| 127 | $owner[$key]['mails'] = $mails; |
| 128 | } |
| 129 | $page->register_modifier('hdc', 'list_header_decode'); |
| 130 | $page->assign_by_ref('owner', $owner); |
| 131 | $page->assign_by_ref('member', $member); |
| 132 | $page->assign_by_ref('public', $listes); |
| 133 | } |
| 134 | } |
| 135 | |
| 136 | function handler_ajax($page, $list = null) |
| 137 | { |
| 138 | pl_content_headers("text/html"); |
| 139 | $domain = $this->prepare_client($page); |
| 140 | $page->changeTpl('lists/liste.inc.tpl', NO_SKIN); |
| 141 | S::assert_xsrf_token(); |
| 142 | |
| 143 | if (Get::has('unsubscribe')) { |
| 144 | $this->client->unsubscribe($list); |
| 145 | } |
| 146 | if (Get::has('subscribe')) { |
| 147 | $this->client->subscribe($list); |
| 148 | } |
| 149 | if (Get::has('sadd')) { /* 4 = SUBSCRIBE */ |
| 150 | $this->client->handle_request($list, Get::v('sadd'), 4, ''); |
| 151 | } |
| 152 | if (Get::has('mid')) { |
| 153 | $this->moderate_mail($domain, $list, Get::i('mid')); |
| 154 | } |
| 155 | |
| 156 | list($liste, $members, $owners) = $this->client->get_members($list); |
| 157 | if ($liste['own']) { |
| 158 | list($subs,$mails) = $this->get_pending_ops($domain, $list); |
| 159 | $liste['subscriptions'] = $subs; |
| 160 | $liste['mails'] = $mails; |
| 161 | } |
| 162 | $page->register_modifier('hdc', 'list_header_decode'); |
| 163 | $page->assign_by_ref('liste', $liste); |
| 164 | } |
| 165 | |
| 166 | function handler_create($page) |
| 167 | { |
| 168 | global $globals; |
| 169 | |
| 170 | $page->changeTpl('lists/create.tpl'); |
| 171 | |
| 172 | $user_promo = S::user()->profile()->yearPromo(); |
| 173 | $year = date('Y'); |
| 174 | $month = date('m'); |
| 175 | // scolar year starts in september |
| 176 | $scolarmonth = ($year - $user_promo) * 12 + ($month - 8); |
| 177 | $young_promo = $very_young_promo = 0; |
| 178 | // binet are accessible only in april in the first year and until |
| 179 | // march of the 5th year |
| 180 | if ($scolarmonth >= 8 && $scolarmonth < 56) { |
| 181 | $young_promo = 1; |
| 182 | } |
| 183 | // PSC aliases are accesible only between september and june of the second |
| 184 | // year of scolarity |
| 185 | if ($scolarmonth >= 12 && $scolarmonth < 22) { |
| 186 | $very_young_promo = 1; |
| 187 | } |
| 188 | $page->assign('young_promo', $young_promo); |
| 189 | $page->assign('very_young_promo', $very_young_promo); |
| 190 | |
| 191 | $owners = preg_split("/[\s]+/", Post::v('owners'), -1, PREG_SPLIT_NO_EMPTY); |
| 192 | $members = preg_split("/[\s]+/", Post::v('members'), -1, PREG_SPLIT_NO_EMPTY); |
| 193 | |
| 194 | // click on validate button 'add_owner_sub' or type <enter> |
| 195 | if (Post::has('add_owner_sub') && Post::has('add_owner')) { |
| 196 | // if we want to add an owner and then type <enter>, then both |
| 197 | // add_owner_sub and add_owner are filled. |
| 198 | $oforlifes = User::getBulkForlifeEmails(Post::v('add_owner'), true); |
| 199 | $mforlifes = User::getBulkForlifeEmails(Post::v('add_member'), true); |
| 200 | if (!is_null($oforlifes)) { |
| 201 | $owners = array_merge($owners, $oforlifes); |
| 202 | } |
| 203 | // if we want to add a member and then type <enter>, then |
| 204 | // add_owner_sub is filled, whereas add_owner is empty. |
| 205 | if (!is_null($mforlifes)) { |
| 206 | $members = array_merge($members, $mforlifes); |
| 207 | } |
| 208 | } |
| 209 | |
| 210 | // click on validate button 'add_member_sub' |
| 211 | if (Post::has('add_member_sub') && Post::has('add_member')) { |
| 212 | $forlifes = User::getBulkForlifeEmails(Post::v('add_member'), true); |
| 213 | if (!is_null($forlifes)) { |
| 214 | $members = array_merge($members, $forlifes); |
| 215 | } |
| 216 | } |
| 217 | if (Post::has('add_member_sub') && isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) { |
| 218 | $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true); |
| 219 | if (!$upload) { |
| 220 | $page->trigError('Une erreur s\'est produite lors du téléchargement du fichier'); |
| 221 | } else { |
| 222 | $forlifes = User::getBulkForlifeEmails($upload->getContents(), true); |
| 223 | if (!is_null($forlifes)) { |
| 224 | $members = array_merge($members, $forlifes); |
| 225 | } |
| 226 | } |
| 227 | } |
| 228 | |
| 229 | ksort($owners); |
| 230 | $owners = array_unique($owners); |
| 231 | ksort($members); |
| 232 | $members = array_unique($members); |
| 233 | |
| 234 | $page->assign('owners', join("\n", $owners)); |
| 235 | $page->assign('members', join("\n", $members)); |
| 236 | |
| 237 | if (!Post::has('submit')) { |
| 238 | return; |
| 239 | } else { |
| 240 | S::assert_xsrf_token(); |
| 241 | } |
| 242 | |
| 243 | $asso = Post::t('asso'); |
| 244 | $list = strtolower(Post::t('liste')); |
| 245 | |
| 246 | if (empty($list)) { |
| 247 | $page->trigError('Le champ « adresse souhaitée » est vide.'); |
| 248 | } |
| 249 | if (!preg_match("/^[a-zA-Z0-9\-]*$/", $list)) { |
| 250 | $page->trigError('Le nom de la liste ne doit contenir que des lettres non accentuées, chiffres et tirets.'); |
| 251 | } |
| 252 | |
| 253 | if (($asso == 'binet') || ($asso == 'alias')) { |
| 254 | $promo = Post::i('promo'); |
| 255 | $domain = $promo . '.' . $globals->mail->domain; |
| 256 | |
| 257 | if (($promo < 1921) || ($promo > date('Y'))) { |
| 258 | $page->trigError('La promotion est mal renseignée, elle doit être du type : 2004.'); |
| 259 | } |
| 260 | |
| 261 | } elseif ($asso == 'groupex') { |
| 262 | $domain = XDB::fetchOneCell('SELECT mail_domain |
| 263 | FROM groups |
| 264 | WHERE nom = {?}', |
| 265 | Post::t('groupex_name')); |
| 266 | |
| 267 | if (!$domain) { |
| 268 | $page->trigError('Il n\'y a aucun groupe de ce nom sur Polytechnique.net.'); |
| 269 | } |
| 270 | } else { |
| 271 | $domain = $globals->mail->domain; |
| 272 | } |
| 273 | |
| 274 | require_once 'emails.inc.php'; |
| 275 | if (list_exist($list, $domain)) { |
| 276 | $page->trigError("L'« adresse souhaitée » est déjà prise."); |
| 277 | } |
| 278 | |
| 279 | if (!Post::t('desc')) { |
| 280 | $page->trigError('Le sujet est vide.'); |
| 281 | } |
| 282 | |
| 283 | if (!count($owners)) { |
| 284 | $page->trigError('Il n\'y a pas de gestionnaire.'); |
| 285 | } |
| 286 | |
| 287 | if (count($members) < 4) { |
| 288 | $page->trigError('Il n\'y a pas assez de membres.'); |
| 289 | } |
| 290 | |
| 291 | if (!$page->nb_errs()) { |
| 292 | $page->trigSuccess('Demande de création envoyée !'); |
| 293 | $page->assign('created', true); |
| 294 | $req = new ListeReq(S::user(), $asso, $list, $domain, |
| 295 | Post::t('desc'), Post::i('advertise'), |
| 296 | Post::i('modlevel'), Post::i('inslevel'), |
| 297 | $owners, $members); |
| 298 | $req->submit(); |
| 299 | } |
| 300 | } |
| 301 | |
| 302 | function handler_members($page, $liste = null) |
| 303 | { |
| 304 | if (is_null($liste)) { |
| 305 | return PL_NOT_FOUND; |
| 306 | } |
| 307 | |
| 308 | $this->prepare_client($page); |
| 309 | |
| 310 | $page->changeTpl('lists/members.tpl'); |
| 311 | |
| 312 | if (Get::has('del')) { |
| 313 | S::assert_xsrf_token(); |
| 314 | $this->client->unsubscribe($liste); |
| 315 | pl_redirect('lists/members/'.$liste); |
| 316 | } |
| 317 | |
| 318 | if (Get::has('add')) { |
| 319 | S::assert_xsrf_token(); |
| 320 | $this->client->subscribe($liste); |
| 321 | pl_redirect('lists/members/'.$liste); |
| 322 | } |
| 323 | |
| 324 | $members = $this->client->get_members($liste); |
| 325 | |
| 326 | $tri_promo = !Env::b('alpha'); |
| 327 | |
| 328 | if (list($det,$mem,$own) = $members) { |
| 329 | $membres = list_sort_members($mem, $tri_promo); |
| 330 | $moderos = list_sort_owners($own, $tri_promo); |
| 331 | |
| 332 | $page->assign_by_ref('details', $det); |
| 333 | $page->assign_by_ref('members', $membres); |
| 334 | $page->assign_by_ref('owners', $moderos); |
| 335 | $page->assign('nb_m', count($mem)); |
| 336 | } else { |
| 337 | $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails."); |
| 338 | } |
| 339 | } |
| 340 | |
| 341 | function handler_csv(PlPage $page, $liste = null) |
| 342 | { |
| 343 | if (is_null($liste)) { |
| 344 | return PL_NOT_FOUND; |
| 345 | } |
| 346 | $this->prepare_client($page); |
| 347 | $members = $this->client->get_members($liste); |
| 348 | $list = list_fetch_basic_info(list_extract_members($members[1])); |
| 349 | pl_cached_content_headers('text/x-csv', 1); |
| 350 | |
| 351 | echo "nom,promo\n"; |
| 352 | echo implode("\n", $list); |
| 353 | exit; |
| 354 | } |
| 355 | |
| 356 | function handler_annu($page, $liste = null, $action = null, $subaction = null) |
| 357 | { |
| 358 | if (is_null($liste)) { |
| 359 | return PL_NOT_FOUND; |
| 360 | } |
| 361 | |
| 362 | $this->prepare_client($page); |
| 363 | |
| 364 | if (Get::has('del')) { |
| 365 | S::assert_xsrf_token(); |
| 366 | $this->client->unsubscribe($liste); |
| 367 | pl_redirect('lists/annu/'.$liste); |
| 368 | } |
| 369 | if (Get::has('add')) { |
| 370 | S::assert_xsrf_token(); |
| 371 | $this->client->subscribe($liste); |
| 372 | pl_redirect('lists/annu/'.$liste); |
| 373 | } |
| 374 | |
| 375 | $owners = $this->client->get_owners($liste); |
| 376 | if (!is_array($owners)) { |
| 377 | $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails."); |
| 378 | } |
| 379 | |
| 380 | list(,$members) = $this->client->get_members($liste); |
| 381 | |
| 382 | if ($action == 'moderators') { |
| 383 | $users = $owners; |
| 384 | $show_moderators = true; |
| 385 | $action = $subaction; |
| 386 | $subaction = ''; |
| 387 | } else { |
| 388 | $show_moderators = false; |
| 389 | $users = array(); |
| 390 | foreach ($members as $m) { |
| 391 | $users[] = $m[1]; |
| 392 | } |
| 393 | } |
| 394 | |
| 395 | require_once 'userset.inc.php'; |
| 396 | $view = new UserArraySet($users); |
| 397 | $view->addMod('trombi', 'Trombinoscope', false, array('with_promo' => true)); |
| 398 | $view->addMod('listmember', 'Annuaire', true); |
| 399 | if (empty($GLOBALS['IS_XNET_SITE'])) { |
| 400 | $view->addMod('minifiche', 'Mini-fiches', false); |
| 401 | } |
| 402 | $view->addMod('map', 'Planisphère'); |
| 403 | $view->apply("lists/annu/$liste", $page, $action, $subaction); |
| 404 | |
| 405 | $page->changeTpl('lists/annu.tpl'); |
| 406 | $page->assign_by_ref('details', $owners[0]); |
| 407 | $page->assign('show_moderators', $show_moderators); |
| 408 | } |
| 409 | |
| 410 | function handler_archives($page, $liste = null, $action = null, $artid = null) |
| 411 | { |
| 412 | global $globals; |
| 413 | |
| 414 | if (is_null($liste)) { |
| 415 | return PL_NOT_FOUND; |
| 416 | } |
| 417 | |
| 418 | $domain = $this->prepare_client($page); |
| 419 | |
| 420 | $page->changeTpl('lists/archives.tpl'); |
| 421 | |
| 422 | if (list($det) = $this->client->get_members($liste)) { |
| 423 | if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv']) |
| 424 | && !$det['own'] && ($det['sub'] < 2)) { |
| 425 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter."); |
| 426 | } |
| 427 | $get = Array('listname' => $liste, 'domain' => $domain); |
| 428 | if (Post::has('updateall')) { |
| 429 | $get['updateall'] = Post::v('updateall'); |
| 430 | } |
| 431 | require_once 'banana/ml.inc.php'; |
| 432 | get_banana_params($get, null, $action, $artid); |
| 433 | run_banana($page, 'MLBanana', $get); |
| 434 | } else { |
| 435 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter."); |
| 436 | } |
| 437 | } |
| 438 | |
| 439 | function handler_rss($page, $liste = null, $alias = null, $hash = null) |
| 440 | { |
| 441 | if (!$liste) { |
| 442 | return PL_NOT_FOUND; |
| 443 | } |
| 444 | $user = Platal::session()->tokenAuth($alias, $hash); |
| 445 | if (is_null($user)) { |
| 446 | return PL_FORBIDDEN; |
| 447 | } |
| 448 | |
| 449 | $domain = $this->prepare_client($page, $user); |
| 450 | if (list($det) = $this->client->get_members($liste)) { |
| 451 | if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv']) |
| 452 | && !$det['own'] && ($det['sub'] < 2)) { |
| 453 | exit; |
| 454 | } |
| 455 | require_once('banana/ml.inc.php'); |
| 456 | $banana = new MLBanana($user, Array('listname' => $liste, 'domain' => $domain, 'action' => 'rss2')); |
| 457 | $banana->run(); |
| 458 | } |
| 459 | exit; |
| 460 | } |
| 461 | |
| 462 | function moderate_mail($domain, $liste, $mid) |
| 463 | { |
| 464 | if (Env::has('mok')) { |
| 465 | $action = 'accept'; |
| 466 | } elseif (Env::has('mno')) { |
| 467 | $action = 'refuse'; |
| 468 | } elseif (Env::has('mdel')) { |
| 469 | $action = 'delete'; |
| 470 | } else { |
| 471 | return false; |
| 472 | } |
| 473 | Get::kill('mid'); |
| 474 | return XDB::execute("INSERT IGNORE INTO email_list_moderate |
| 475 | VALUES ({?}, {?}, {?}, {?}, {?}, NOW(), {?}, NULL)", |
| 476 | $liste, $domain, $mid, S::i('uid'), $action, Post::v('reason')); |
| 477 | } |
| 478 | |
| 479 | function handler_moderate($page, $liste = null) |
| 480 | { |
| 481 | if (is_null($liste)) { |
| 482 | return PL_NOT_FOUND; |
| 483 | } |
| 484 | |
| 485 | $domain = $this->prepare_client($page); |
| 486 | |
| 487 | $page->changeTpl('lists/moderate.tpl'); |
| 488 | |
| 489 | $page->register_modifier('hdc', 'list_header_decode'); |
| 490 | |
| 491 | if (Env::has('sadd') || Env::has('sdel')) { |
| 492 | S::assert_xsrf_token(); |
| 493 | |
| 494 | if (Env::has('sadd')) { /* 4 = SUBSCRIBE */ |
| 495 | $sub = $this->client->get_pending_sub($liste, Env::v('sadd')); |
| 496 | $this->client->handle_request($liste,Env::v('sadd'),4,''); |
| 497 | $info = "validée"; |
| 498 | } |
| 499 | if (Post::has('sdel')) { /* 2 = REJECT */ |
| 500 | $sub = $this->client->get_pending_sub($liste, Env::v('sdel')); |
| 501 | $this->client->handle_request($liste, Post::v('sdel'), 2, utf8_decode(Post::v('reason'))); |
| 502 | $info = "refusée"; |
| 503 | } |
| 504 | if ($sub) { |
| 505 | $mailer = new PlMailer(); |
| 506 | $mailer->setFrom("$liste-bounces@{$domain}"); |
| 507 | $mailer->addTo("$liste-owner@{$domain}"); |
| 508 | $mailer->addHeader('Reply-To', "$liste-owner@{$domain}"); |
| 509 | $mailer->setSubject("L'inscription de {$sub['name']} a été $info"); |
| 510 | $text = "L'inscription de {$sub['name']} à la liste $liste@{$domain} a été $info par " . S::user()->fullName(true) . ".\n"; |
| 511 | if (trim(Post::v('reason'))) { |
| 512 | $text .= "\nLa raison invoquée est :\n" . Post::v('reason'); |
| 513 | } |
| 514 | $mailer->setTxtBody(wordwrap($text, 72)); |
| 515 | $mailer->send(); |
| 516 | } |
| 517 | if (Env::has('sadd')) { |
| 518 | pl_redirect('lists/moderate/'.$liste); |
| 519 | } |
| 520 | } |
| 521 | |
| 522 | if (Post::has('moderate_mails') && Post::has('select_mails')) { |
| 523 | S::assert_xsrf_token(); |
| 524 | |
| 525 | $mails = array_keys(Post::v('select_mails')); |
| 526 | foreach($mails as $mail) { |
| 527 | $this->moderate_mail($domain, $liste, $mail); |
| 528 | } |
| 529 | } elseif (Env::has('mid')) { |
| 530 | if (Get::has('mid') && !Env::has('mok') && !Env::has('mdel')) { |
| 531 | require_once 'banana/moderate.inc.php'; |
| 532 | |
| 533 | $page->changeTpl('lists/moderate_mail.tpl'); |
| 534 | $params = array('listname' => $liste, 'domain' => $domain, |
| 535 | 'artid' => Get::i('mid'), 'part' => Get::v('part'), 'action' => Get::v('action')); |
| 536 | $params['client'] = $this->client; |
| 537 | run_banana($page, 'ModerationBanana', $params); |
| 538 | |
| 539 | $msg = file_get_contents('/etc/mailman/fr/refuse.txt'); |
| 540 | $msg = str_replace("%(adminaddr)s", "$liste-owner@{$domain}", $msg); |
| 541 | $msg = str_replace("%(request)s", "<< SUJET DU MAIL >>", $msg); |
| 542 | $msg = str_replace("%(reason)s", "<< TON EXPLICATION >>", $msg); |
| 543 | $msg = str_replace("%(listname)s", $liste, $msg); |
| 544 | $page->assign('msg', $msg); |
| 545 | return; |
| 546 | } |
| 547 | |
| 548 | $this->moderate_mail($domain, $liste, Env::i('mid')); |
| 549 | } elseif (Env::has('sid')) { |
| 550 | if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) { |
| 551 | foreach($subs as $user) { |
| 552 | if ($user['id'] == Env::v('sid')) { |
| 553 | $page->changeTpl('lists/moderate_sub.tpl'); |
| 554 | $page->assign('del_user', $user); |
| 555 | return; |
| 556 | } |
| 557 | } |
| 558 | } |
| 559 | |
| 560 | } |
| 561 | |
| 562 | if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) { |
| 563 | foreach ($mails as $key=>$mail) { |
| 564 | $mails[$key]['stamp'] = strftime("%Y%m%d%H%M%S", $mail['stamp']); |
| 565 | if ($mail['fromx']) { |
| 566 | $page->assign('with_fromx', true); |
| 567 | } else { |
| 568 | $page->assign('with_nonfromx', true); |
| 569 | } |
| 570 | } |
| 571 | $page->assign_by_ref('subs', $subs); |
| 572 | $page->assign_by_ref('mails', $mails); |
| 573 | } else { |
| 574 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de la modérer."); |
| 575 | } |
| 576 | } |
| 577 | |
| 578 | static public function no_login_callback($login) |
| 579 | { |
| 580 | global $list_unregistered; |
| 581 | |
| 582 | $users = User::getPendingAccounts($login, true); |
| 583 | if ($users && $users->total()) { |
| 584 | if (!isset($list_unregistered)) { |
| 585 | $list_unregistered = array(); |
| 586 | } |
| 587 | $list_unregistered[$login] = $users; |
| 588 | } else { |
| 589 | list($name, $domain) = @explode('@', $login); |
| 590 | if (User::isMainMailDomain($domain)) { |
| 591 | User::_default_user_callback($login); |
| 592 | } |
| 593 | } |
| 594 | } |
| 595 | |
| 596 | function handler_admin($page, $liste = null) |
| 597 | { |
| 598 | global $globals; |
| 599 | |
| 600 | if (is_null($liste)) { |
| 601 | return PL_NOT_FOUND; |
| 602 | } |
| 603 | |
| 604 | $domain = $this->prepare_client($page); |
| 605 | |
| 606 | $page->changeTpl('lists/admin.tpl'); |
| 607 | |
| 608 | if (Env::has('send_mark')) { |
| 609 | S::assert_xsrf_token(); |
| 610 | |
| 611 | $actions = Env::v('mk_action'); |
| 612 | $uids = Env::v('mk_uid'); |
| 613 | $mails = Env::v('mk_email'); |
| 614 | foreach ($actions as $key=>$action) { |
| 615 | switch ($action) { |
| 616 | case 'none': |
| 617 | break; |
| 618 | |
| 619 | case 'marketu': case 'markets': |
| 620 | require_once 'emails.inc.php'; |
| 621 | $mail = valide_email($mails[$key]); |
| 622 | if (isvalid_email_redirection($mail)) { |
| 623 | $from = ($action == 'marketu') ? 'user' : 'staff'; |
| 624 | $market = Marketing::get($uids[$key], $mail); |
| 625 | if (!$market) { |
| 626 | $market = new Marketing($uids[$key], $mail, 'list', "$liste@$domain", $from, S::v('uid')); |
| 627 | $market->add(); |
| 628 | break; |
| 629 | } |
| 630 | } |
| 631 | |
| 632 | default: |
| 633 | XDB::execute('INSERT IGNORE INTO register_subs (uid, type, sub, domain) |
| 634 | VALUES ({?}, \'list\', {?}, {?})', |
| 635 | $uids[$key], $liste, $domain); |
| 636 | } |
| 637 | } |
| 638 | } |
| 639 | |
| 640 | if (Env::has('add_member')) { |
| 641 | S::assert_xsrf_token(); |
| 642 | |
| 643 | $members = User::getBulkForlifeEmails(Env::v('add_member'), |
| 644 | true, |
| 645 | array('ListsModule', 'no_login_callback')); |
| 646 | $arr = $this->client->mass_subscribe($liste, $members); |
| 647 | if (is_array($arr)) { |
| 648 | foreach($arr as $addr) { |
| 649 | $page->trigSuccess("{$addr[0]} inscrit."); |
| 650 | } |
| 651 | } |
| 652 | } |
| 653 | |
| 654 | if (isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) { |
| 655 | S::assert_xsrf_token(); |
| 656 | |
| 657 | $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true); |
| 658 | if (!$upload) { |
| 659 | $page->trigError('Une erreur s\'est produite lors du téléchargement du fichier'); |
| 660 | } else { |
| 661 | $members = User::getBulkForlifeEmails($upload->getContents(), |
| 662 | true, |
| 663 | array('ListsModule', 'no_login_callback')); |
| 664 | $arr = $this->client->mass_subscribe($liste, $members); |
| 665 | if (is_array($arr)) { |
| 666 | foreach($arr as $addr) { |
| 667 | $page->trigSuccess("{$addr[0]} inscrit."); |
| 668 | } |
| 669 | } |
| 670 | } |
| 671 | } |
| 672 | |
| 673 | if (Env::has('del_member')) { |
| 674 | S::assert_xsrf_token(); |
| 675 | |
| 676 | if (strpos(Env::v('del_member'), '@') === false) { |
| 677 | if ($del_member = User::getSilent(Env::t('del_member'))) { |
| 678 | $this->client->mass_unsubscribe($liste, array($del_member->forlifeEmail())); |
| 679 | } |
| 680 | } else { |
| 681 | $this->client->mass_unsubscribe($liste, array(Env::v('del_member'))); |
| 682 | } |
| 683 | pl_redirect('lists/admin/'.$liste); |
| 684 | } |
| 685 | |
| 686 | if (Env::has('add_owner')) { |
| 687 | S::assert_xsrf_token(); |
| 688 | |
| 689 | $owners = User::getBulkForlifeEmails(Env::v('add_owner'), false, array('ListsModule', 'no_login_callback')); |
| 690 | if ($owners) { |
| 691 | foreach ($owners as $login) { |
| 692 | if ($this->client->add_owner($liste, $login)) { |
| 693 | $page->trigSuccess($login ." ajouté aux modérateurs."); |
| 694 | } |
| 695 | } |
| 696 | } |
| 697 | } |
| 698 | |
| 699 | if (Env::has('del_owner')) { |
| 700 | S::assert_xsrf_token(); |
| 701 | |
| 702 | if (strpos(Env::v('del_owner'), '@') === false) { |
| 703 | if ($del_owner = User::getSilent(Env::t('del_owner'))) { |
| 704 | $this->client->mass_unsubscribe($liste, array($del_owner->forlifeEmail())); |
| 705 | } |
| 706 | } else { |
| 707 | $this->client->del_owner($liste, Env::v('del_owner')); |
| 708 | } |
| 709 | pl_redirect('lists/admin/'.$liste); |
| 710 | } |
| 711 | |
| 712 | if (list($det,$mem,$own) = $this->client->get_members($liste)) { |
| 713 | global $list_unregistered; |
| 714 | if ($list_unregistered) { |
| 715 | $page->assign_by_ref('unregistered', $list_unregistered); |
| 716 | } |
| 717 | $membres = list_sort_members($mem, @$tri_promo); |
| 718 | $moderos = list_sort_owners($own, @$tri_promo); |
| 719 | |
| 720 | $page->assign_by_ref('details', $det); |
| 721 | $page->assign_by_ref('members', $membres); |
| 722 | $page->assign_by_ref('owners', $moderos); |
| 723 | $page->assign('np_m', count($mem)); |
| 724 | |
| 725 | } else { |
| 726 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.<br />" |
| 727 | . " Si tu penses qu'il s'agit d'une erreur, " |
| 728 | . "<a href='mailto:support@polytechnique.org'>contact le support</a>."); |
| 729 | } |
| 730 | } |
| 731 | |
| 732 | function handler_options($page, $liste = null) |
| 733 | { |
| 734 | if (is_null($liste)) { |
| 735 | return PL_NOT_FOUND; |
| 736 | } |
| 737 | |
| 738 | $this->prepare_client($page); |
| 739 | |
| 740 | $page->changeTpl('lists/options.tpl'); |
| 741 | |
| 742 | if (Post::has('submit')) { |
| 743 | S::assert_xsrf_token(); |
| 744 | |
| 745 | $values = $_POST; |
| 746 | $values = array_map('utf8_decode', $values); |
| 747 | $spamlevel = intval($values['bogo_level']); |
| 748 | $unsurelevel = intval($values['unsure_level']); |
| 749 | if ($spamlevel == 0) { |
| 750 | $unsurelevel = 0; |
| 751 | } |
| 752 | if ($spamlevel > 3 || $spamlevel < 0 || $unsurelevel < 0 || $unsurelevel > 1) { |
| 753 | $page->trigError("Réglage de l'antispam non valide"); |
| 754 | } else { |
| 755 | $this->client->set_bogo_level($liste, ($spamlevel << 1) + $unsurelevel); |
| 756 | } |
| 757 | switch($values['moderate']) { |
| 758 | case '0': |
| 759 | $values['generic_nonmember_action'] = 0; |
| 760 | $values['default_member_moderation'] = 0; |
| 761 | break; |
| 762 | case '1': |
| 763 | $values['generic_nonmember_action'] = 1; |
| 764 | $values['default_member_moderation'] = 0; |
| 765 | break; |
| 766 | case '2': |
| 767 | $values['generic_nonmember_action'] = 1; |
| 768 | $values['default_member_moderation'] = 1; |
| 769 | break; |
| 770 | } |
| 771 | unset($values['submit'], $values['bogo_level'], $values['moderate']); |
| 772 | $values['send_goodbye_msg'] = !empty($values['send_goodbye_msg']); |
| 773 | $values['admin_notify_mchanges'] = !empty($values['admin_notify_mchanges']); |
| 774 | $values['subscribe_policy'] = empty($values['subscribe_policy']) ? 0 : 2; |
| 775 | if (isset($values['subject_prefix'])) { |
| 776 | $values['subject_prefix'] = trim($values['subject_prefix']).' '; |
| 777 | } |
| 778 | $this->client->set_owner_options($liste, $values); |
| 779 | } elseif (isvalid_email(Post::v('atn_add'))) { |
| 780 | S::assert_xsrf_token(); |
| 781 | $this->client->add_to_wl($liste, Post::v('atn_add')); |
| 782 | } elseif (Get::has('atn_del')) { |
| 783 | S::assert_xsrf_token(); |
| 784 | $this->client->del_from_wl($liste, Get::v('atn_del')); |
| 785 | pl_redirect('lists/options/'.$liste); |
| 786 | } |
| 787 | |
| 788 | if (list($details,$options) = $this->client->get_owner_options($liste)) { |
| 789 | $page->assign_by_ref('details', $details); |
| 790 | $page->assign_by_ref('options', $options); |
| 791 | $bogo_level = intval($this->client->get_bogo_level($liste)); |
| 792 | $page->assign('unsure_level', $bogo_level & 1); |
| 793 | $page->assign('bogo_level', $bogo_level >> 1); |
| 794 | } else { |
| 795 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer"); |
| 796 | } |
| 797 | } |
| 798 | |
| 799 | function handler_delete($page, $liste = null) |
| 800 | { |
| 801 | global $globals; |
| 802 | if (is_null($liste)) { |
| 803 | return PL_NOT_FOUND; |
| 804 | } |
| 805 | |
| 806 | $domain = $this->prepare_client($page); |
| 807 | $page->changeTpl('lists/delete.tpl'); |
| 808 | if (Post::v('valid') == 'OUI') { |
| 809 | S::assert_xsrf_token(); |
| 810 | |
| 811 | if ($this->client->delete_list($liste, Post::b('del_archive'))) { |
| 812 | require_once 'emails.inc.php'; |
| 813 | |
| 814 | delete_list($liste, $domain); |
| 815 | $page->assign('deleted', true); |
| 816 | $page->trigSuccess('La liste a été détruite !'); |
| 817 | } else { |
| 818 | $page->kill('Une erreur est survenue lors de la suppression de la liste.<br />' |
| 819 | . 'Contact les administrateurs du site pour régler le problème : ' |
| 820 | . '<a href="mailto:support@polytechnique.org">support@polytechnique.org</a>.'); |
| 821 | } |
| 822 | } elseif (list($details,$options) = $this->client->get_owner_options($liste)) { |
| 823 | if (!$details['own']) { |
| 824 | $page->trigWarning('Tu n\'es pas administrateur de la liste, mais du site.'); |
| 825 | } |
| 826 | $page->assign_by_ref('details', $details); |
| 827 | $page->assign_by_ref('options', $options); |
| 828 | $page->assign('bogo_level', $this->client->get_bogo_level($liste)); |
| 829 | } else { |
| 830 | $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer."); |
| 831 | } |
| 832 | } |
| 833 | |
| 834 | function handler_soptions($page, $liste = null) |
| 835 | { |
| 836 | if (is_null($liste)) { |
| 837 | return PL_NOT_FOUND; |
| 838 | } |
| 839 | |
| 840 | $this->prepare_client($page); |
| 841 | |
| 842 | $page->changeTpl('lists/soptions.tpl'); |
| 843 | |
| 844 | if (Post::has('submit')) { |
| 845 | S::assert_xsrf_token(); |
| 846 | |
| 847 | $values = $_POST; |
| 848 | $values = array_map('utf8_decode', $values); |
| 849 | unset($values['submit']); |
| 850 | $values['advertised'] = empty($values['advertised']) ? false : true; |
| 851 | $values['archive'] = empty($values['archive']) ? false : true; |
| 852 | $this->client->set_admin_options($liste, $values); |
| 853 | } |
| 854 | |
| 855 | if (list($details,$options) = $this->client->get_admin_options($liste)) { |
| 856 | $page->assign_by_ref('details', $details); |
| 857 | $page->assign_by_ref('options', $options); |
| 858 | } else { |
| 859 | $page->kill("La liste n'existe pas."); |
| 860 | } |
| 861 | } |
| 862 | |
| 863 | function handler_check($page, $liste = null) |
| 864 | { |
| 865 | if (is_null($liste)) { |
| 866 | return PL_NOT_FOUND; |
| 867 | } |
| 868 | |
| 869 | $this->prepare_client($page); |
| 870 | |
| 871 | $page->changeTpl('lists/check.tpl'); |
| 872 | |
| 873 | if (Post::has('correct')) { |
| 874 | S::assert_xsrf_token(); |
| 875 | $this->client->check_options($liste, true); |
| 876 | } |
| 877 | |
| 878 | if (list($details,$options) = $this->client->check_options($liste)) { |
| 879 | $page->assign_by_ref('details', $details); |
| 880 | $page->assign_by_ref('options', $options); |
| 881 | } else { |
| 882 | $page->kill("La liste n'existe pas."); |
| 883 | } |
| 884 | } |
| 885 | |
| 886 | function handler_admin_all($page) |
| 887 | { |
| 888 | $page->changeTpl('lists/admin_all.tpl'); |
| 889 | $page->setTitle('Administration - Mailing lists'); |
| 890 | |
| 891 | $this->prepare_client($page); |
| 892 | $listes = $this->client->get_all_lists(); |
| 893 | $page->assign_by_ref('listes', $listes); |
| 894 | } |
| 895 | |
| 896 | function handler_aaliases($page, $alias = null) |
| 897 | { |
| 898 | global $globals; |
| 899 | require_once 'emails.inc.php'; |
| 900 | $page->setTitle('Administration - Aliases'); |
| 901 | |
| 902 | if (Post::has('new_alias')) { |
| 903 | pl_redirect('admin/aliases/' . Post::t('new_alias') . '@' . $globals->mail->domain); |
| 904 | } |
| 905 | |
| 906 | // If no alias, list them all. |
| 907 | if (is_null($alias)) { |
| 908 | $page->changeTpl('lists/admin_aliases.tpl'); |
| 909 | $page->assign('aliases', array_merge(iterate_list_alias($globals->mail->domain), iterate_list_alias($globals->mail->domain2))); |
| 910 | return; |
| 911 | } |
| 912 | |
| 913 | list($local_part, $domain) = explode('@', $alias); |
| 914 | if (!($globals->mail->domain == $domain || $globals->mail->domain2 == $domain) |
| 915 | || !preg_match("/^[a-zA-Z0-9\-\.]*$/", $local_part)) { |
| 916 | $page->trigErrorRedirect('Le nom de l\'alias est erroné.', $globals->asso('diminutif') . 'admin/aliases'); |
| 917 | } |
| 918 | |
| 919 | // Now we can perform the action. |
| 920 | if (Post::has('del_alias')) { |
| 921 | S::assert_xsrf_token(); |
| 922 | |
| 923 | delete_list_alias($local_part, $domain); |
| 924 | $page->trigSuccessRedirect($alias . ' supprimé.', 'admin/aliases'); |
| 925 | } |
| 926 | |
| 927 | if (Post::has('add_member')) { |
| 928 | S::assert_xsrf_token(); |
| 929 | |
| 930 | if (add_to_list_alias(Post::t('add_member'), $local_part, $domain)) { |
| 931 | $page->trigSuccess('Ajout réussit.'); |
| 932 | } else { |
| 933 | $page->trigError('Ajout infructueux.'); |
| 934 | } |
| 935 | } |
| 936 | |
| 937 | if (Get::has('del_member')) { |
| 938 | S::assert_xsrf_token(); |
| 939 | |
| 940 | if (delete_from_list_alias(Get::t('del_member'), $local_part, $domain)) { |
| 941 | $page->trigSuccess('Suppression réussie.'); |
| 942 | } else { |
| 943 | $page->trigError('Suppression infructueuse.'); |
| 944 | } |
| 945 | } |
| 946 | |
| 947 | $page->changeTpl('lists/admin_edit_alias.tpl'); |
| 948 | $page->assign('members', list_alias_members($local_part, $domain)); |
| 949 | $page->assign('alias', $alias); |
| 950 | } |
| 951 | } |
| 952 | |
| 953 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: |
| 954 | ?> |