projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Allows group animators to edit group's lists' members (Closes #1518).
[platal.git] / modules / lists.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class ListsModule extends PLModule
23 {
24 protected $client;
25
26 function handlers()
27 {
28 return array(
29 'lists' => $this->make_hook('lists', AUTH_PASSWD, 'user'),
30 'lists/ajax' => $this->make_hook('ajax', AUTH_PASSWD, 'user', NO_AUTH),
31 'lists/create' => $this->make_hook('create', AUTH_PASSWD, 'lists'),
32
33 'lists/members' => $this->make_hook('members', AUTH_COOKIE, 'user'),
34 'lists/csv' => $this->make_hook('csv', AUTH_COOKIE, 'user'),
35 'lists/annu' => $this->make_hook('annu', AUTH_COOKIE, 'user'),
36 'lists/archives' => $this->make_hook('archives', AUTH_COOKIE, 'user'),
37 'lists/archives/rss' => $this->make_hook('rss', AUTH_PUBLIC, 'user', NO_HTTPS),
38
39 'lists/moderate' => $this->make_hook('moderate', AUTH_PASSWD, 'user'),
40 'lists/admin' => $this->make_hook('admin', AUTH_PASSWD, 'user'),
41 'lists/options' => $this->make_hook('options', AUTH_PASSWD, 'user'),
42 'lists/delete' => $this->make_hook('delete', AUTH_PASSWD, 'user'),
43
44 'lists/soptions' => $this->make_hook('soptions', AUTH_PASSWD, 'user'),
45 'lists/check' => $this->make_hook('check', AUTH_PASSWD, 'user'),
46 'admin/lists' => $this->make_hook('admin_all', AUTH_PASSWD, 'admin'),
47 'admin/aliases' => $this->make_hook('aaliases', AUTH_PASSWD, 'admin')
48 );
49 }
50
51 function prepare_client($page, $user = null)
52 {
53 global $globals;
54
55 $this->load('lists.inc.php');
56 if (is_null($user)) {
57 $user = S::user();
58 }
59
60 $this->client = new MMList($user);
61 return $globals->mail->domain;
62 }
63
64 function verify_list_owner($page, $liste)
65 {
66 if (list(, , $owners) = $this->client->get_members($liste)) {
67 if (!(in_array(S::user()->forlifeEmail(), $owners) || S::admin())) {
68 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.");
69 }
70 } else {
71 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.<br />"
72 . " Si tu penses qu'il s'agit d'une erreur, "
73 . "<a href='mailto:support@polytechnique.org'>contact le support</a>.");
74 }
75 }
76
77 function get_pending_ops($domain, $list)
78 {
79 list($subs,$mails) = $this->client->get_pending_ops($list);
80 $res = XDB::query("SELECT mid
81 FROM email_list_moderate
82 WHERE ml = {?} AND domain = {?}",
83 $list, $domain);
84 $mids = $res->fetchColumn();
85 foreach ($mails as $key=>$mail) {
86 if (in_array($mail['id'], $mids)) {
87 unset($mails[$key]);
88 }
89 }
90 return array($subs, $mails);
91 }
92
93 function handler_lists($page)
94 {
95 function filter_owner($list)
96 {
97 return $list['own'];
98 }
99
100 function filter_member($list)
101 {
102 return $list['sub'];
103 }
104
105 $domain = $this->prepare_client($page);
106
107 $page->changeTpl('lists/index.tpl');
108 $page->setTitle('Listes de diffusion');
109
110
111 if (Get::has('del')) {
112 S::assert_xsrf_token();
113 $this->client->unsubscribe(Get::v('del'));
114 pl_redirect('lists');
115 }
116 if (Get::has('add')) {
117 S::assert_xsrf_token();
118 $this->client->subscribe(Get::v('add'));
119 pl_redirect('lists');
120 }
121 if (Post::has('promo_add')) {
122 S::assert_xsrf_token();
123
124 $promo = Post::i('promo_add');
125 if ($promo >= 1900 and $promo < 2100) {
126 $this->client->subscribe("promo$promo");
127 } else {
128 $page->trigError("promo incorrecte, il faut une promo sur 4 chiffres.");
129 }
130 }
131
132 if (!is_null($listes = $this->client->get_lists())) {
133 $owner = array_filter($listes, 'filter_owner');
134 $listes = array_diff_key($listes, $owner);
135 $member = array_filter($listes, 'filter_member');
136 $listes = array_diff_key($listes, $member);
137 foreach ($owner as $key => $liste) {
138 list($subs, $mails) = $this->get_pending_ops($domain, $liste['list']);
139 $owner[$key]['subscriptions'] = $subs;
140 $owner[$key]['mails'] = $mails;
141 }
142 $page->register_modifier('hdc', 'list_header_decode');
143 $page->assign_by_ref('owner', $owner);
144 $page->assign_by_ref('member', $member);
145 $page->assign_by_ref('public', $listes);
146 }
147 }
148
149 function handler_ajax($page, $list = null)
150 {
151 pl_content_headers("text/html");
152 $domain = $this->prepare_client($page);
153 $page->changeTpl('lists/liste.inc.tpl', NO_SKIN);
154 S::assert_xsrf_token();
155
156 if (Get::has('unsubscribe')) {
157 $this->client->unsubscribe($list);
158 }
159 if (Get::has('subscribe')) {
160 $this->client->subscribe($list);
161 }
162 if (Get::has('sadd')) { /* 4 = SUBSCRIBE */
163 $this->client->handle_request($list, Get::v('sadd'), 4, '');
164 }
165 if (Get::has('mid')) {
166 $this->moderate_mail($domain, $list, Get::i('mid'));
167 }
168
169 list($liste, $members, $owners) = $this->client->get_members($list);
170 if ($liste['own']) {
171 list($subs,$mails) = $this->get_pending_ops($domain, $list);
172 $liste['subscriptions'] = $subs;
173 $liste['mails'] = $mails;
174 }
175 $page->register_modifier('hdc', 'list_header_decode');
176 $page->assign_by_ref('liste', $liste);
177 }
178
179 function handler_create($page)
180 {
181 global $globals;
182
183 $page->changeTpl('lists/create.tpl');
184
185 $user_promo = S::user()->profile()->yearPromo();
186 $year = date('Y');
187 $month = date('m');
188 // scolar year starts in september
189 $scolarmonth = ($year - $user_promo) * 12 + ($month - 8);
190 $young_promo = $very_young_promo = 0;
191 // binet are accessible only in april in the first year and until
192 // march of the 5th year
193 if ($scolarmonth >= 8 && $scolarmonth < 56) {
194 $young_promo = 1;
195 }
196 // PSC aliases are accesible only between september and june of the second
197 // year of scolarity
198 if ($scolarmonth >= 12 && $scolarmonth < 22) {
199 $very_young_promo = 1;
200 }
201 $page->assign('young_promo', $young_promo);
202 $page->assign('very_young_promo', $very_young_promo);
203
204 $owners = preg_split("/[\s]+/", Post::v('owners'), -1, PREG_SPLIT_NO_EMPTY);
205 $members = preg_split("/[\s]+/", Post::v('members'), -1, PREG_SPLIT_NO_EMPTY);
206
207 // click on validate button 'add_owner_sub' or type <enter>
208 if (Post::has('add_owner_sub') && Post::has('add_owner')) {
209 // if we want to add an owner and then type <enter>, then both
210 // add_owner_sub and add_owner are filled.
211 $oforlifes = User::getBulkForlifeEmails(Post::v('add_owner'), true);
212 $mforlifes = User::getBulkForlifeEmails(Post::v('add_member'), true);
213 if (!is_null($oforlifes)) {
214 $owners = array_merge($owners, $oforlifes);
215 }
216 // if we want to add a member and then type <enter>, then
217 // add_owner_sub is filled, whereas add_owner is empty.
218 if (!is_null($mforlifes)) {
219 $members = array_merge($members, $mforlifes);
220 }
221 }
222
223 // click on validate button 'add_member_sub'
224 if (Post::has('add_member_sub') && Post::has('add_member')) {
225 $forlifes = User::getBulkForlifeEmails(Post::v('add_member'), true);
226 if (!is_null($forlifes)) {
227 $members = array_merge($members, $forlifes);
228 }
229 }
230 if (Post::has('add_member_sub') && isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) {
231 $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true);
232 if (!$upload) {
233 $page->trigError('Une erreur s\'est produite lors du téléchargement du fichier');
234 } else {
235 $forlifes = User::getBulkForlifeEmails($upload->getContents(), true);
236 if (!is_null($forlifes)) {
237 $members = array_merge($members, $forlifes);
238 }
239 }
240 }
241
242 ksort($owners);
243 $owners = array_unique($owners);
244 ksort($members);
245 $members = array_unique($members);
246
247 $page->assign('owners', join("\n", $owners));
248 $page->assign('members', join("\n", $members));
249
250 if (!Post::has('submit')) {
251 return;
252 } else {
253 S::assert_xsrf_token();
254 }
255
256 $asso = Post::t('asso');
257 $list = strtolower(Post::t('liste'));
258
259 if (empty($list)) {
260 $page->trigError('Le champ «&nbsp;adresse souhaitée&nbsp;» est vide.');
261 }
262 if (!preg_match("/^[a-zA-Z0-9\-]*$/", $list)) {
263 $page->trigError('Le nom de la liste ne doit contenir que des lettres non accentuées, chiffres et tirets.');
264 }
265
266 if (($asso == 'binet') || ($asso == 'alias')) {
267 $promo = Post::i('promo');
268 $domain = $promo . '.' . $globals->mail->domain;
269
270 if (($promo < 1921) || ($promo > date('Y'))) {
271 $page->trigError('La promotion est mal renseignée, elle doit être du type&nbsp;: 2004.');
272 }
273
274 } elseif ($asso == 'groupex') {
275 $domain = XDB::fetchOneCell('SELECT mail_domain
276 FROM groups
277 WHERE nom = {?}',
278 Post::t('groupex_name'));
279
280 if (!$domain) {
281 $page->trigError('Il n\'y a aucun groupe de ce nom sur Polytechnique.net.');
282 }
283 } else {
284 $domain = $globals->mail->domain;
285 }
286
287 require_once 'emails.inc.php';
288 if (list_exist($list, $domain)) {
289 $page->trigError("L'«&nbsp;adresse souhaitée&nbsp;» est déjà prise.");
290 }
291
292 if (!Post::t('desc')) {
293 $page->trigError('Le sujet est vide.');
294 }
295
296 if (!count($owners)) {
297 $page->trigError('Il n\'y a pas de gestionnaire.');
298 }
299
300 if (count($members) < 4) {
301 $page->trigError('Il n\'y a pas assez de membres.');
302 }
303
304 if (!$page->nb_errs()) {
305 $page->trigSuccess('Demande de création envoyée&nbsp;!');
306 $page->assign('created', true);
307 $req = new ListeReq(S::user(), $asso, $list, $domain,
308 Post::t('desc'), Post::i('advertise'),
309 Post::i('modlevel'), Post::i('inslevel'),
310 $owners, $members);
311 $req->submit();
312 }
313 }
314
315 function handler_members($page, $liste = null)
316 {
317 if (is_null($liste)) {
318 return PL_NOT_FOUND;
319 }
320
321 $this->prepare_client($page);
322
323 $page->changeTpl('lists/members.tpl');
324
325 if (Get::has('del')) {
326 S::assert_xsrf_token();
327 $this->client->unsubscribe($liste);
328 pl_redirect('lists/members/'.$liste);
329 }
330
331 if (Get::has('add')) {
332 S::assert_xsrf_token();
333 $this->client->subscribe($liste);
334 pl_redirect('lists/members/'.$liste);
335 }
336
337 $members = $this->client->get_members($liste);
338
339 $tri_promo = !Env::b('alpha');
340
341 if (list($det,$mem,$own) = $members) {
342 $membres = list_sort_members($mem, $tri_promo);
343 $moderos = list_sort_owners($own, $tri_promo);
344
345 $page->assign_by_ref('details', $det);
346 $page->assign_by_ref('members', $membres);
347 $page->assign_by_ref('owners', $moderos);
348 $page->assign('nb_m', count($mem));
349 } else {
350 $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails.");
351 }
352 }
353
354 function handler_csv(PlPage $page, $liste = null)
355 {
356 if (is_null($liste)) {
357 return PL_NOT_FOUND;
358 }
359 $this->prepare_client($page);
360 $members = $this->client->get_members($liste);
361 $list = list_fetch_basic_info(list_extract_members($members[1]));
362 pl_cached_content_headers('text/x-csv', 'iso-8859-1', 1);
363
364 echo utf8_decode("Nom;Prénom;Promotion\n");
365 echo utf8_decode(implode("\n", $list));
366 exit();
367 }
368
369 function handler_annu($page, $liste = null, $action = null, $subaction = null)
370 {
371 if (is_null($liste)) {
372 return PL_NOT_FOUND;
373 }
374
375 $this->prepare_client($page);
376
377 if (Get::has('del')) {
378 S::assert_xsrf_token();
379 $this->client->unsubscribe($liste);
380 pl_redirect('lists/annu/'.$liste);
381 }
382 if (Get::has('add')) {
383 S::assert_xsrf_token();
384 $this->client->subscribe($liste);
385 pl_redirect('lists/annu/'.$liste);
386 }
387
388 $owners = $this->client->get_owners($liste);
389 if (!is_array($owners)) {
390 $page->kill("La liste n'existe pas ou tu n'as pas le droit d'en voir les détails.");
391 }
392
393 list(,$members) = $this->client->get_members($liste);
394
395 if ($action == 'moderators') {
396 $users = $owners;
397 $show_moderators = true;
398 $action = $subaction;
399 $subaction = '';
400 } else {
401 $show_moderators = false;
402 $users = array();
403 foreach ($members as $m) {
404 $users[] = $m[1];
405 }
406 }
407
408 require_once 'userset.inc.php';
409 $view = new UserArraySet($users);
410 $view->addMod('trombi', 'Trombinoscope', false, array('with_promo' => true));
411 $view->addMod('listmember', 'Annuaire', true);
412 if (empty($GLOBALS['IS_XNET_SITE'])) {
413 $view->addMod('minifiche', 'Mini-fiches', false);
414 }
415 $view->addMod('map', 'Planisphère');
416 $view->apply("lists/annu/$liste", $page, $action, $subaction);
417
418 $page->changeTpl('lists/annu.tpl');
419 $page->assign_by_ref('details', $owners[0]);
420 $page->assign('show_moderators', $show_moderators);
421 }
422
423 function handler_archives($page, $liste = null, $action = null, $artid = null)
424 {
425 global $globals;
426
427 if (is_null($liste)) {
428 return PL_NOT_FOUND;
429 }
430
431 $domain = $this->prepare_client($page);
432
433 $page->changeTpl('lists/archives.tpl');
434
435 if (list($det) = $this->client->get_members($liste)) {
436 if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv'])
437 && !$det['own'] && ($det['sub'] < 2)) {
438 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter.");
439 }
440 $get = Array('listname' => $liste, 'domain' => $domain);
441 if (Post::has('updateall')) {
442 $get['updateall'] = Post::v('updateall');
443 }
444 require_once 'banana/ml.inc.php';
445 get_banana_params($get, null, $action, $artid);
446 run_banana($page, 'MLBanana', $get);
447 } else {
448 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la consulter.");
449 }
450 }
451
452 function handler_rss($page, $liste = null, $alias = null, $hash = null)
453 {
454 if (!$liste) {
455 return PL_NOT_FOUND;
456 }
457 $user = Platal::session()->tokenAuth($alias, $hash);
458 if (is_null($user)) {
459 return PL_FORBIDDEN;
460 }
461
462 $domain = $this->prepare_client($page, $user);
463 if (list($det) = $this->client->get_members($liste)) {
464 if (substr($liste,0,5) != 'promo' && ($det['ins'] || $det['priv'])
465 && !$det['own'] && ($det['sub'] < 2)) {
466 exit;
467 }
468 require_once('banana/ml.inc.php');
469 $banana = new MLBanana($user, Array('listname' => $liste, 'domain' => $domain, 'action' => 'rss2'));
470 $banana->run();
471 }
472 exit;
473 }
474
475 function moderate_mail($domain, $liste, $mid)
476 {
477 if (Env::has('mok')) {
478 $action = 'accept';
479 } elseif (Env::has('mno')) {
480 $action = 'refuse';
481 } elseif (Env::has('mdel')) {
482 $action = 'delete';
483 } else {
484 return false;
485 }
486 Get::kill('mid');
487 return XDB::execute("INSERT IGNORE INTO email_list_moderate
488 VALUES ({?}, {?}, {?}, {?}, {?}, NOW(), {?}, NULL)",
489 $liste, $domain, $mid, S::i('uid'), $action, Post::v('reason'));
490 }
491
492 function handler_moderate($page, $liste = null)
493 {
494 if (is_null($liste)) {
495 return PL_NOT_FOUND;
496 }
497
498 $domain = $this->prepare_client($page);
499 $this->verify_list_owner($page, $liste);
500
501 $page->changeTpl('lists/moderate.tpl');
502
503 $page->register_modifier('hdc', 'list_header_decode');
504
505 if (Env::has('sadd') || Env::has('sdel')) {
506 S::assert_xsrf_token();
507
508 if (Env::has('sadd')) { /* 4 = SUBSCRIBE */
509 $sub = $this->client->get_pending_sub($liste, Env::v('sadd'));
510 $this->client->handle_request($liste,Env::v('sadd'),4,'');
511 $info = "validée";
512 }
513 if (Post::has('sdel')) { /* 2 = REJECT */
514 $sub = $this->client->get_pending_sub($liste, Env::v('sdel'));
515 $this->client->handle_request($liste, Post::v('sdel'), 2, utf8_decode(Post::v('reason')));
516 $info = "refusée";
517 }
518 if ($sub) {
519 $mailer = new PlMailer();
520 $mailer->setFrom("$liste-bounces@{$domain}");
521 $mailer->addTo("$liste-owner@{$domain}");
522 $mailer->addHeader('Reply-To', "$liste-owner@{$domain}");
523 $mailer->setSubject("L'inscription de {$sub['name']} a été $info");
524 $text = "L'inscription de {$sub['name']} à la liste $liste@{$domain} a été $info par " . S::user()->fullName(true) . ".\n";
525 if (trim(Post::v('reason'))) {
526 $text .= "\nLa raison invoquée est :\n" . Post::v('reason');
527 }
528 $mailer->setTxtBody(wordwrap($text, 72));
529 $mailer->send();
530 }
531 if (Env::has('sadd')) {
532 pl_redirect('lists/moderate/'.$liste);
533 }
534 }
535
536 if (Post::has('moderate_mails') && Post::has('select_mails')) {
537 S::assert_xsrf_token();
538
539 $mails = array_keys(Post::v('select_mails'));
540 foreach($mails as $mail) {
541 $this->moderate_mail($domain, $liste, $mail);
542 }
543 } elseif (Env::has('mid')) {
544 if (Get::has('mid') && !Env::has('mok') && !Env::has('mdel')) {
545 require_once 'banana/moderate.inc.php';
546
547 $page->changeTpl('lists/moderate_mail.tpl');
548 $params = array('listname' => $liste, 'domain' => $domain,
549 'artid' => Get::i('mid'), 'part' => Get::v('part'), 'action' => Get::v('action'));
550 $params['client'] = $this->client;
551 run_banana($page, 'ModerationBanana', $params);
552
553 $msg = file_get_contents('/etc/mailman/fr/refuse.txt');
554 $msg = str_replace("%(adminaddr)s", "$liste-owner@{$domain}", $msg);
555 $msg = str_replace("%(request)s", "<< SUJET DU MAIL >>", $msg);
556 $msg = str_replace("%(reason)s", "<< TON EXPLICATION >>", $msg);
557 $msg = str_replace("%(listname)s", $liste, $msg);
558 $page->assign('msg', $msg);
559 return;
560 }
561
562 $this->moderate_mail($domain, $liste, Env::i('mid'));
563 } elseif (Env::has('sid')) {
564 if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) {
565 foreach($subs as $user) {
566 if ($user['id'] == Env::v('sid')) {
567 $page->changeTpl('lists/moderate_sub.tpl');
568 $page->assign('del_user', $user);
569 return;
570 }
571 }
572 }
573
574 }
575
576 if (list($subs,$mails) = $this->get_pending_ops($domain, $liste)) {
577 foreach ($mails as $key=>$mail) {
578 $mails[$key]['stamp'] = strftime("%Y%m%d%H%M%S", $mail['stamp']);
579 if ($mail['fromx']) {
580 $page->assign('with_fromx', true);
581 } else {
582 $page->assign('with_nonfromx', true);
583 }
584 }
585 $page->assign_by_ref('subs', $subs);
586 $page->assign_by_ref('mails', $mails);
587 } else {
588 $page->kill("La liste n'existe pas ou tu n'as pas le droit de la modérer.");
589 }
590 }
591
592 static public function no_login_callback($login)
593 {
594 global $list_unregistered;
595
596 $users = User::getPendingAccounts($login, true);
597 if ($users && $users->total()) {
598 if (!isset($list_unregistered)) {
599 $list_unregistered = array();
600 }
601 $list_unregistered[$login] = $users;
602 } else {
603 list($name, $domain) = @explode('@', $login);
604 if (User::isMainMailDomain($domain)) {
605 User::_default_user_callback($login);
606 }
607 }
608 }
609
610 function handler_admin($page, $liste = null)
611 {
612 global $globals;
613
614 if (is_null($liste)) {
615 return PL_NOT_FOUND;
616 }
617
618 $domain = $this->prepare_client($page);
619 $force_rights = false;
620 if ($GLOBALS['IS_XNET_SITE']) {
621 $perms = S::v('perms');
622 if (is_object($perms) && $perms->hasFlag('groupadmin')) {
623 $force_rights = true;
624 }
625 }
626 $page->assign('group_admin', $force_rights);
627 if (!$force_rights) {
628 $this->verify_list_owner($page, $liste);
629 }
630
631 $page->changeTpl('lists/admin.tpl');
632
633 if (Env::has('send_mark')) {
634 S::assert_xsrf_token();
635
636 $actions = Env::v('mk_action');
637 $uids = Env::v('mk_uid');
638 $mails = Env::v('mk_email');
639 foreach ($actions as $key=>$action) {
640 switch ($action) {
641 case 'none':
642 break;
643
644 case 'marketu': case 'markets':
645 require_once 'emails.inc.php';
646 $user = User::get($uids[$key]);
647 $mail = valide_email($mails[$key]);
648 if (isvalid_email_redirection($mail, $user)) {
649 $from = ($action == 'marketu') ? 'user' : 'staff';
650 $market = Marketing::get($uids[$key], $mail);
651 if (!$market) {
652 $market = new Marketing($uids[$key], $mail, 'list', "$liste@$domain", $from, S::v('uid'));
653 $market->add();
654 break;
655 }
656 }
657
658 default:
659 XDB::execute('INSERT IGNORE INTO register_subs (uid, type, sub, domain)
660 VALUES ({?}, \'list\', {?}, {?})',
661 $uids[$key], $liste, $domain);
662 }
663 }
664 }
665
666 if (Env::has('add_member') ||
667 isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) {
668 S::assert_xsrf_token();
669
670 if (isset($_FILES['add_member_file']) && $_FILES['add_member_file']['tmp_name']) {
671 $upload =& PlUpload::get($_FILES['add_member_file'], S::user()->login(), 'list.addmember', true);
672 if (!$upload) {
673 $page->trigError("Une erreur s'est produite lors du téléchargement du fichier.");
674 } else {
675 $logins = $upload->getContents();
676 }
677 } else {
678 $logins = Env::v('add_member');
679 }
680
681 $logins = preg_split("/[; ,\r\n\|]+/", $logins);
682 $members = User::getBulkForlifeEmails($logins,
683 true,
684 array('ListsModule', 'no_login_callback'));
685 $unfound = array_diff_key($logins, $members);
686
687 // Make sure we send a list (array_values) of unique (array_unique)
688 // emails.
689 $members = array_values(array_unique($members));
690
691 $arr = $this->client->mass_subscribe($liste, $members);
692
693 $successes = array();
694 if (is_array($arr)) {
695 foreach($arr as $addr) {
696 $successes[] = $addr[1];
697 $page->trigSuccess("{$addr[0]} inscrit.");
698 }
699 }
700
701 $already = array_diff($members, $successes);
702 if (is_array($already)) {
703 foreach ($already as $item) {
704 $page->trigWarning($item . ' est déjà inscrit.');
705 }
706 }
707
708 if (is_array($unfound)) {
709 foreach ($unfound as $item) {
710 if (trim($item) != '') {
711 $page->trigError($item . " ne correspond pas à un compte existant et n'est pas une adresse email.");
712 }
713 }
714 }
715 }
716
717 if (Env::has('del_member')) {
718 S::assert_xsrf_token();
719
720 if (strpos(Env::v('del_member'), '@') === false) {
721 if ($del_member = User::getSilent(Env::t('del_member'))) {
722 $this->client->mass_unsubscribe($liste, array($del_member->forlifeEmail()));
723 }
724 } else {
725 $this->client->mass_unsubscribe($liste, array(Env::v('del_member')));
726 }
727 pl_redirect('lists/admin/'.$liste);
728 }
729
730 if (Env::has('add_owner')) {
731 S::assert_xsrf_token();
732
733 $owners = User::getBulkForlifeEmails(Env::v('add_owner'), false, array('ListsModule', 'no_login_callback'));
734 if ($owners) {
735 foreach ($owners as $login) {
736 if ($this->client->add_owner($liste, $login)) {
737 $page->trigSuccess($login ." ajouté aux modérateurs.");
738 }
739 }
740 }
741 }
742
743 if (Env::has('del_owner')) {
744 S::assert_xsrf_token();
745
746 if (strpos(Env::v('del_owner'), '@') === false) {
747 if ($del_owner = User::getSilent(Env::t('del_owner'))) {
748 $this->client->mass_unsubscribe($liste, array($del_owner->forlifeEmail()));
749 }
750 } else {
751 $this->client->del_owner($liste, Env::v('del_owner'));
752 }
753 pl_redirect('lists/admin/'.$liste);
754 }
755
756 if (list($det,$mem,$own) = $this->client->get_members($liste)) {
757 global $list_unregistered;
758 if ($list_unregistered) {
759 $page->assign_by_ref('unregistered', $list_unregistered);
760 }
761 $membres = list_sort_members($mem, @$tri_promo);
762 $moderos = list_sort_owners($own, @$tri_promo);
763
764 $page->assign_by_ref('details', $det);
765 $page->assign_by_ref('members', $membres);
766 $page->assign_by_ref('owners', $moderos);
767 $page->assign('np_m', count($mem));
768 } else {
769 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.<br />"
770 . " Si tu penses qu'il s'agit d'une erreur, "
771 . "<a href='mailto:support@polytechnique.org'>contact le support</a>.");
772 }
773 }
774
775 function handler_options($page, $liste = null)
776 {
777 if (is_null($liste)) {
778 return PL_NOT_FOUND;
779 }
780
781 $this->prepare_client($page);
782 $this->verify_list_owner($page, $liste);
783
784 $page->changeTpl('lists/options.tpl');
785
786 if (Post::has('submit')) {
787 S::assert_xsrf_token();
788
789 $values = $_POST;
790 $values = array_map('utf8_decode', $values);
791 $spamlevel = intval($values['bogo_level']);
792 $unsurelevel = intval($values['unsure_level']);
793 if ($spamlevel == 0) {
794 $unsurelevel = 0;
795 }
796 if ($spamlevel > 3 || $spamlevel < 0 || $unsurelevel < 0 || $unsurelevel > 1) {
797 $page->trigError("Réglage de l'antispam non valide");
798 } else {
799 $this->client->set_bogo_level($liste, ($spamlevel << 1) + $unsurelevel);
800 }
801 switch($values['moderate']) {
802 case '0':
803 $values['generic_nonmember_action'] = 0;
804 $values['default_member_moderation'] = 0;
805 break;
806 case '1':
807 $values['generic_nonmember_action'] = 1;
808 $values['default_member_moderation'] = 0;
809 break;
810 case '2':
811 $values['generic_nonmember_action'] = 1;
812 $values['default_member_moderation'] = 1;
813 break;
814 }
815 unset($values['submit'], $values['bogo_level'], $values['moderate']);
816 $values['send_goodbye_msg'] = !empty($values['send_goodbye_msg']);
817 $values['admin_notify_mchanges'] = !empty($values['admin_notify_mchanges']);
818 $values['subscribe_policy'] = empty($values['subscribe_policy']) ? 0 : 2;
819 if (isset($values['subject_prefix'])) {
820 $values['subject_prefix'] = trim($values['subject_prefix']).' ';
821 }
822 $this->client->set_owner_options($liste, $values);
823 } elseif (isvalid_email(Post::v('atn_add'))) {
824 S::assert_xsrf_token();
825 $this->client->add_to_wl($liste, Post::v('atn_add'));
826 } elseif (Get::has('atn_del')) {
827 S::assert_xsrf_token();
828 $this->client->del_from_wl($liste, Get::v('atn_del'));
829 pl_redirect('lists/options/'.$liste);
830 }
831
832 if (list($details,$options) = $this->client->get_owner_options($liste)) {
833 $page->assign_by_ref('details', $details);
834 $page->assign_by_ref('options', $options);
835 $bogo_level = intval($this->client->get_bogo_level($liste));
836 $page->assign('unsure_level', $bogo_level & 1);
837 $page->assign('bogo_level', $bogo_level >> 1);
838 } else {
839 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer");
840 }
841 }
842
843 function handler_delete($page, $liste = null)
844 {
845 global $globals;
846 if (is_null($liste)) {
847 return PL_NOT_FOUND;
848 }
849
850 $domain = $this->prepare_client($page);
851 $this->verify_list_owner($page, $liste);
852 $page->changeTpl('lists/delete.tpl');
853 if (Post::v('valid') == 'OUI') {
854 S::assert_xsrf_token();
855
856 if ($this->client->delete_list($liste, Post::b('del_archive'))) {
857 require_once 'emails.inc.php';
858
859 delete_list($liste, $domain);
860 $page->assign('deleted', true);
861 $page->trigSuccess('La liste a été détruite&nbsp;!');
862 } else {
863 $page->kill('Une erreur est survenue lors de la suppression de la liste.<br />'
864 . 'Contact les administrateurs du site pour régler le problème : '
865 . '<a href="mailto:support@polytechnique.org">support@polytechnique.org</a>.');
866 }
867 } elseif (list($details,$options) = $this->client->get_owner_options($liste)) {
868 if (!$details['own']) {
869 $page->trigWarning('Tu n\'es pas administrateur de la liste, mais du site.');
870 }
871 $page->assign_by_ref('details', $details);
872 $page->assign_by_ref('options', $options);
873 $page->assign('bogo_level', $this->client->get_bogo_level($liste));
874 } else {
875 $page->kill("La liste n'existe pas ou tu n'as pas le droit de l'administrer.");
876 }
877 }
878
879 function handler_soptions($page, $liste = null)
880 {
881 if (is_null($liste)) {
882 return PL_NOT_FOUND;
883 }
884
885 $this->prepare_client($page);
886 $this->verify_list_owner($page, $liste);
887
888 $page->changeTpl('lists/soptions.tpl');
889
890 if (Post::has('submit')) {
891 S::assert_xsrf_token();
892
893 $values = $_POST;
894 $values = array_map('utf8_decode', $values);
895 unset($values['submit']);
896 $values['advertised'] = empty($values['advertised']) ? false : true;
897 $values['archive'] = empty($values['archive']) ? false : true;
898 $this->client->set_admin_options($liste, $values);
899 }
900
901 if (list($details,$options) = $this->client->get_admin_options($liste)) {
902 $page->assign_by_ref('details', $details);
903 $page->assign_by_ref('options', $options);
904 } else {
905 $page->kill("La liste n'existe pas.");
906 }
907 }
908
909 function handler_check($page, $liste = null)
910 {
911 if (is_null($liste)) {
912 return PL_NOT_FOUND;
913 }
914
915 $this->prepare_client($page);
916 $this->verify_list_owner($page, $liste);
917
918 $page->changeTpl('lists/check.tpl');
919
920 if (Post::has('correct')) {
921 S::assert_xsrf_token();
922 $this->client->check_options($liste, true);
923 }
924
925 if (list($details,$options) = $this->client->check_options($liste)) {
926 $page->assign_by_ref('details', $details);
927 $page->assign_by_ref('options', $options);
928 } else {
929 $page->kill("La liste n'existe pas.");
930 }
931 }
932
933 function handler_admin_all($page)
934 {
935 $page->changeTpl('lists/admin_all.tpl');
936 $page->setTitle('Administration - Mailing lists');
937
938 $this->prepare_client($page);
939 $listes = $this->client->get_all_lists();
940 $page->assign_by_ref('listes', $listes);
941 }
942
943 function handler_aaliases($page, $alias = null)
944 {
945 global $globals;
946 require_once 'emails.inc.php';
947 $page->setTitle('Administration - Aliases');
948
949 if (Post::has('new_alias')) {
950 pl_redirect('admin/aliases/' . Post::t('new_alias') . '@' . $globals->mail->domain);
951 }
952
953 // If no alias, list them all.
954 if (is_null($alias)) {
955 $page->changeTpl('lists/admin_aliases.tpl');
956 $page->assign('aliases', array_merge(iterate_list_alias($globals->mail->domain), iterate_list_alias($globals->mail->domain2)));
957 return;
958 }
959
960 list($local_part, $domain) = explode('@', $alias);
961 if (!($globals->mail->domain == $domain || $globals->mail->domain2 == $domain)
962 || !preg_match("/^[a-zA-Z0-9\-\.]*$/", $local_part)) {
963 $page->trigErrorRedirect('Le nom de l\'alias est erroné.', $globals->asso('diminutif') . 'admin/aliases');
964 }
965
966 // Now we can perform the action.
967 if (Post::has('del_alias')) {
968 S::assert_xsrf_token();
969
970 delete_list_alias($local_part, $domain);
971 $page->trigSuccessRedirect($alias . ' supprimé.', 'admin/aliases');
972 }
973
974 if (Post::has('add_member')) {
975 S::assert_xsrf_token();
976
977 if (add_to_list_alias(Post::t('add_member'), $local_part, $domain)) {
978 $page->trigSuccess('Ajout réussit.');
979 } else {
980 $page->trigError('Ajout infructueux.');
981 }
982 }
983
984 if (Get::has('del_member')) {
985 S::assert_xsrf_token();
986
987 if (delete_from_list_alias(Get::t('del_member'), $local_part, $domain)) {
988 $page->trigSuccess('Suppression réussie.');
989 } else {
990 $page->trigError('Suppression infructueuse.');
991 }
992 }
993
994 $page->changeTpl('lists/admin_edit_alias.tpl');
995 $page->assign('members', list_alias_members($local_part, $domain));
996 $page->assign('alias', $alias);
997 }
998 }
999
1000 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
1001 ?>
plat/al