X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=include%2Femails.inc.php;h=de05ed2d717de038e1bec432106d9d3ada4b368a;hb=9ed7f5bcaa0b9b264ef005baf55b3511a4327c69;hp=357dd0d0616f1225df6edb5ee069fadd944ad1b2;hpb=11ed26e5a8fc25008a26c8842ce5281343fd704d;p=platal.git diff --git a/include/emails.inc.php b/include/emails.inc.php index 357dd0d..de05ed2 100644 --- a/include/emails.inc.php +++ b/include/emails.inc.php @@ -1,6 +1,6 @@ id()); if ($res->fetchOneCell()) { return; } @@ -43,7 +41,7 @@ function fix_bestalias($uid) SET flags=CONCAT(flags,',','bestalias') WHERE id={?} AND type!='homonyme' ORDER BY !FIND_IN_SET('usage',flags),alias LIKE '%.%', LENGTH(alias) - LIMIT 1", $uid); + LIMIT 1", $user->id()); } // function valide_email() {{{1 @@ -57,40 +55,137 @@ function valide_email($str) $em = trim(rtrim($str)); $em = str_replace('<', '', $em); $em = str_replace('>', '', $em); + if (strpos($em, '@') === false) { + return; + } list($ident, $dom) = explode('@', $em); - if ($dom == $globals->mail->domain or $dom == $globals->mail->domain2) { + if ($dom == $globals->mail->domain || $dom == $globals->mail->domain2) { list($ident1) = explode('_', $ident); list($ident) = explode('+', $ident1); } return $ident . '@' . $dom; } +// function isvalid_email_redirection() {{{1 +/** vérifie si une adresse email convient comme adresse de redirection + * @param $email l'adresse email a verifier + * @return BOOL + */ +function isvalid_email_redirection($email) +{ + return isvalid_email($email) && + !preg_match("/@(polytechnique\.(org|edu)|melix\.(org|net)|m4x\.org)$/", $email); +} + +// function ids_from_mails() {{{1 +// Converts an array of emails to an array of email => uid +function ids_from_mails(array $emails) +{ + global $globals; + $domain_mails = array(); + $alias_mails = array(); + $other_mails = array(); + + // Determine the type of the email adresses. It can eiher be a domain + // email (@polytechnique.org), an alias email (@melix.net) or any other + // email (potentially used as a redirection by one user) + foreach ($emails as $email) { + if (strpos($email, '@') === false) { + $user = $email; + $domain = $globals->mail->domain2; + } else { + list($user, $domain) = explode('@', $email); + } + if ($domain == $globals->mail->alias_dom || $domain == $globals->mail->alias_dom2) { + list($user) = explode('+', $user); + list($user) = explode('_', $user); + $alias_mails[$user] = $email; + } elseif ($domain == $globals->mail->domain || $domain == $globals->mail->domain2) { + list($user) = explode('+', $user); + list($user) = explode('_', $user); + $domain_mails[$user] = $email; + } else { + $other_mails[] = $email; + } + } + $uids = array(); + + // Look up user ids for addresses in domain + if (count($domain_mails)) { + $domain_users = array_map(array('XDB', 'escape'), array_keys($domain_mails)); + $list = implode(',', $domain_users); + $res = XDB::query("SELECT alias, id + FROM aliases + WHERE alias IN ($list)"); + foreach ($res->fetchAllRow() as $row) { + list ($alias, $id) = $row; + $uids[$domain_mails[$alias]] = $id; + } + } + + // Look up user ids for addresses in our alias domain + if (count($alias_mails)) { + $alias_users = array(); + foreach (array_keys($alias_mails) as $user) { + $alias_users[] = XDB::escape($user."@".$globals->mail->alias_dom); + } + $list = implode(',', $alias_users); + $res = XDB::query("SELECT v.alias, a.id + FROM virtual AS v + INNER JOIN virtual_redirect AS r USING(vid) + INNER JOIN aliases AS a ON (a.type = 'a_vie' + AND r.redirect = CONCAT(a.alias, '@{$globals->mail->domain2}')) + WHERE v.alias IN ($list)"); + foreach ($res->fetchAllRow() as $row) { + list ($alias, $id) = $row; + $uids[$alias_mails[$alias]] = $id; + } + } + + // Look up user ids for other addresses in the email redirection list + if (count($other_mails)) { + $other_users = array_map(array('XDB', 'escape'), $other_mails); + $list = implode(',', $other_users); + $res = XDB::query("SELECT email, uid + FROM emails + WHERE email IN ($list)"); + foreach ($res->fetchAllRow() as $row) { + list ($email, $uid) = $row; + $uids[$other_mails[$email]] = $uid; + } + } + + return $uids; +} + // class Bogo {{{1 // The Bogo class represents a spam filtering level in plat/al architecture. class Bogo { // properties {{{2 - private $uid; + private $user; private $state; private $_states = Array('let_spams', 'tag_spams', 'tag_and_drop_spams', 'drop_spams'); // constructor {{{2 - public function __construct($uid) + public function __construct(User &$user) { - if (!$uid) { + if (!$user) { return; } - $this->uid = $uid; - $res = XDB::query('SELECT email FROM emails WHERE uid={?} AND flags="filter"', $uid); + $this->user = &$user; + $res = XDB::query('SELECT email FROM emails WHERE uid = {?} AND flags = "filter"', $user->id()); if ($res->numRows()) { $this->state = $res->fetchOneCell(); } else { $this->state = 'tag_and_drop_spams'; - $res = XDB::query("INSERT INTO emails (uid,email,rewrite,panne,flags) - VALUES ({?},'tag_and_drop_spams','','0000-00-00','filter')", $uid); + $res = XDB::query( + "INSERT INTO emails (uid, email, rewrite, panne, flags) + VALUES ({?}, 'tag_and_drop_spams', '', '0000-00-00', 'filter')", + $user->id()); } } @@ -99,8 +194,8 @@ class Bogo public function change($state) { $this->state = is_int($state) ? $this->_states[$state] : $state; - XDB::execute('UPDATE emails SET email={?} WHERE uid={?} AND flags = "filter"', - $this->state, $this->uid); + XDB::execute('UPDATE emails SET email = {?} WHERE uid = {?} AND flags = "filter"', + $this->state, $this->user->id()); } // pubic function level() {{{2 @@ -117,7 +212,7 @@ class Bogo // Storage emails (Polytechnique.org). abstract class Email { - protected $uid; + protected $user; // Basic email properties; $sufficient indicates if the email can be used as // an unique redirection; $email contains the delivery email address. @@ -131,6 +226,8 @@ abstract class Email public $broken; public $disabled; public $rewrite; + public $allow_rewrite; + public $hash; // Redirection bounces stats. public $panne; @@ -165,12 +262,12 @@ class EmailRedirection extends Email { // constructor {{{2 - public function __construct($uid, $row) + public function __construct(User &$user, $row) { - $this->uid = $uid; + $this->user = &$user; $this->sufficient = true; - list($this->email, $flags, $this->rewrite, $this->panne, $this->last, $this->panne_level) = $row; + list($this->email, $flags, $this->rewrite, $this->allow_rewrite, $this->hash, $this->panne, $this->last, $this->panne_level) = $row; $this->display_email = $this->email; $this->active = ($flags == 'active'); $this->broken = ($flags == 'panne'); @@ -185,8 +282,8 @@ class EmailRedirection extends Email XDB::execute("UPDATE emails SET panne_level = IF(flags = 'panne', panne_level - 1, panne_level), flags = 'active' - WHERE uid={?} AND email={?}", $this->uid, $this->email); - $_SESSION['log']->log("email_on", $this->email.($this->uid!=S::v('uid') ? "(admin on {$this->uid})" : "")); + WHERE uid = {?} AND email = {?}", $this->user->id(), $this->email); + S::logger()->log("email_on", $this->email . ($this->user->id() != S::v('uid') ? "(admin on {$this->user->login()})" : "")); $this->active = true; $this->broken = false; } @@ -198,8 +295,8 @@ class EmailRedirection extends Email { if ($this->active) { XDB::execute("UPDATE emails SET flags ='' - WHERE uid={?} AND email={?}", $this->uid, $this->email); - $_SESSION['log']->log("email_off",$this->email.($this->uid != S::v('uid') ? "(admin on {$this->uid})" : "") ); + WHERE uid = {?} AND email = {?}", $this->user->id(), $this->email); + S::logger()->log("email_off", $this->email . ($this->user->id() != S::v('uid') ? "(admin on {$this->user->login()})" : "") ); $this->active = false; } } @@ -214,8 +311,24 @@ class EmailRedirection extends Email if (!$rewrite || !isvalid_email($rewrite)) { $rewrite = ''; } - XDB::execute('UPDATE emails SET rewrite={?} WHERE uid={?} AND email={?}', $rewrite, $this->uid, $this->email); + XDB::execute('UPDATE emails SET rewrite = {?} WHERE uid = {?} AND email = {?}', $rewrite, $this->user->id(), $this->email); $this->rewrite = $rewrite; + if (!$this->allow_rewrite) { + global $globals; + if (empty($this->hash)) { + $this->hash = rand_url_id(); + XDB::execute("UPDATE emails + SET hash = {?} + WHERE uid = {?} AND email = {?}", $this->hash, $this->user->id(), $this->email); + } + $mail = new PlMailer('emails/rewrite-in.mail.tpl'); + $mail->assign('mail', $this); + $mail->assign('user', $this->user); + $mail->assign('baseurl', $globals->baseurl); + $mail->assign('sitename', $globals->core->sitename); + $mail->assign('to', $this->email); + $mail->send($this->user->isEmailFormatHtml()); + } return; } @@ -223,7 +336,7 @@ class EmailRedirection extends Email public function clean_errors() { - if (!S::has_perms()) { + if (!S::admin()) { return false; } $this->panne = 0; @@ -232,7 +345,7 @@ class EmailRedirection extends Email return XDB::execute("UPDATE emails SET panne_level = 0, panne = 0, last = 0 WHERE uid = {?} AND email = {?}", - $this->uid, $this->email); + $this->user->id(), $this->email); } // public function has_rewrite() {{{2 @@ -257,6 +370,105 @@ class EmailRedirection extends Email } } +// class EmailStorage {{{1 +// Implementation of Email for email storage backends from Polytechnique.org. +class EmailStorage extends Email +{ + // Shortname to realname mapping for known mail storage backends. + private $display_names = array( + 'imap' => 'Accès de secours aux emails (IMAP)', + 'googleapps' => 'Compte Google Apps', + ); + + // Retrieves the current list of actives storages. + private function get_storages() + { + return new PlFlagSet(XDB::fetchOneCell('SELECT storage + FROM email_options + WHERE uid = {?}', + $this->user->id())); + } + + // Updates the list of active storages. + private function set_storages($storages) + { + XDB::execute("UPDATE email_options + SET storage = {?} + WHERE uid = {?}", $storages, $this->user->id()); + } + + // Returns the list of allowed storages for the @p user. + static public function get_allowed_storages(User &$user) + { + global $globals; + $storages = array(); + + // Google Apps storage is available for users with valid Google Apps account. + require_once 'googleapps.inc.php'; + if ($globals->mailstorage->googleapps_domain && + GoogleAppsAccount::account_status($user->id()) == 'active') { + $storages[] = 'googleapps'; + } + + // IMAP storage is always visible to administrators, and is allowed for + // everyone when the service is marked as 'active'. + if ($globals->mailstorage->imap_active || S::admin()) { + $storages[] = 'imap'; + } + + return $storages; + } + + + public function __construct(User &$user, $name) + { + $this->user = &$user; + $this->email = $name; + $this->display_email = (isset($this->display_names[$name]) ? $this->display_names[$name] : $name); + + $storages = $this->get_storages(); + $this->sufficient = ($name == 'googleapps'); + $this->active = $storages->hasFlag($name); + $this->broken = false; + $this->disabled = false; + $this->rewrite = ''; + $this->panne = $this->last = $this->panne_level = 0; + } + + public function activate() + { + if (!$this->active) { + $storages = $this->get_storages(); + $storages->addFlag($this->email); + $this->set_storages($storages); + $this->active = true; + } + } + + public function deactivate() + { + if ($this->active) { + $storages = $this->get_storages(); + $storages->rmFlag($this->email); + $this->set_storages($storages); + $this->active = false; + } + + } + + // Source rewrite can't be enabled for email storage addresses. + public function set_rewrite($rewrite) {} + + // Email storage are not supposed to be broken, hence not supposed to be + // cleaned-up. + public function clean_errors() {} + + // Capabilities. + public function has_rewrite() { return false; } + public function is_removable() { return false; } + public function has_disable() { return false; } +} + // class Redirect {{{1 // Redirect is a placeholder class for an user's active redirections (third-party // redirection email, or Polytechnique.org mail storages). @@ -265,25 +477,31 @@ class Redirect // properties {{{2 private $flag_active = 'active'; - private $uid; + private $user; public $emails; public $bogo; // constructor {{{2 - public function __construct($_uid) + public function __construct(User &$user) { - $this->uid = $_uid; + $this->user = &$user; + $this->bogo = new Bogo($user); - $res = XDB::iterRow("SELECT email, flags, rewrite, panne, last, panne_level + // Adds third-party email redirections. + $res = XDB::iterRow("SELECT email, flags, rewrite, allow_rewrite, hash, panne, last, panne_level FROM emails - WHERE uid = {?} AND flags != 'filter'", $_uid); + WHERE uid = {?} AND flags != 'filter'", $user->id()); $this->emails = Array(); while ($row = $res->next()) { - $this->emails[] = new EmailRedirection($_uid, $row); + $this->emails[] = new EmailRedirection($user, $row); + } + + // Adds local email storage backends. + foreach (EmailStorage::get_allowed_storages($user) as $storage) { + $this->emails[] = new EmailStorage($user, $storage); } - $this->bogo = new Bogo($_uid); } // public function other_active() {{{2 @@ -305,8 +523,8 @@ class Redirect if (!$this->other_active($email)) { return ERROR_INACTIVE_REDIRECTION; } - XDB::execute('DELETE FROM emails WHERE uid={?} AND email={?}', $this->uid, $email); - $_SESSION['log']->log('email_del',$email.($this->uid!=S::v('uid') ? " (admin on {$this->uid})" : "")); + XDB::execute('DELETE FROM emails WHERE uid = {?} AND email = {?}', $this->user->id(), $email); + S::logger()->log('email_del', $email . ($this->user->id() != S::v('uid') ? " (admin on {$this->user->login()})" : "")); foreach ($this->emails as $i => $mail) { if ($email == $mail->email) { unset($this->emails[$i]); @@ -327,19 +545,19 @@ class Redirect if (!isvalid_email_redirection($email_stripped)) { return ERROR_LOOP_EMAIL; } - XDB::execute('REPLACE INTO emails (uid,email,flags) VALUES({?},{?},"active")', $this->uid, $email); + XDB::execute('REPLACE INTO emails (uid,email,flags) VALUES({?},{?},"active")', $this->user->id(), $email); if ($logger = S::v('log', null)) { // may be absent --> step4.php - $logger->log('email_add',$email.($this->uid!=S::v('uid') ? " (admin on {$this->uid})" : "")); + S::logger()->log('email_add', $email . ($this->user->id() != S::v('uid') ? " (admin on {$this->user->login()})" : "")); } foreach ($this->emails as $mail) { if ($mail->email == $email_stripped) { return SUCCESS; } } - $this->emails[] = new EmailRedirection($this->uid, array($email, 'active', '', '0000-00-00', '0000-00-00', 0)); + $this->emails[] = new EmailRedirection($this->user, array($email, 'active', '', 0, null, '0000-00-00', '0000-00-00', 0)); // security stuff - check_email($email, "Ajout d'une adresse surveillée aux redirections de " . $this->uid); + check_email($email, "Ajout d'une adresse surveillée aux redirections de " . $this->user->login()); check_redirect($this); return SUCCESS; } @@ -419,7 +637,7 @@ class Redirect { XDB::execute("UPDATE emails SET flags = 'disable' - WHERE flags = 'active' AND uid = {?}", $this->uid); + WHERE flags = 'active' AND uid = {?}", $this->user->id()); foreach ($this->emails as &$mail) { if ($mail->active && $mail->has_disable()) { $mail->disabled = true; @@ -435,7 +653,7 @@ class Redirect { XDB::execute("UPDATE emails SET flags = 'active' - WHERE flags = 'disable' AND uid = {?}", $this->uid); + WHERE flags = 'disable' AND uid = {?}", $this->user->id()); foreach ($this->emails as &$mail) { if ($mail->disabled) { $mail->active = true; @@ -481,69 +699,25 @@ class Redirect } return $mails; } -} - -// class MailStorage {{{1 -class MailStorage { - protected $uid; - protected $name; - protected $storage; - - public function __construct($_uid, $_name) - { - $this->uid = $_uid; - $this->name = $_name; - - $res = XDB::query("SELECT mail_storage - FROM auth_user_md5 - WHERE user_id = {?}", $this->uid); - $this->storages = new FlagSet($res->fetchOneCell()); - } - - public function disable() - { - $this->storages->rmFlag($this->name); - XDB::execute("UPDATE auth_user_md5 - SET mail_storage = {?} - WHERE user_id = {?}", $this->storages->flags(), $this->uid); - return true; - } - public function enable() - { - $this->storages->addFlag($this->name); - XDB::execute("UPDATE auth_user_md5 - SET mail_storage = {?} - WHERE user_id = {?}", $this->storages->flags(), $this->uid); - return true; - } + // function active_emails() {{{2 - public function active() + public function active_emails() { - return $this->storages->hasFlag($this->name); + $emails = array(); + foreach ($this->emails as $mail) { + if ($mail->active) { + $emails[] = $mail; + } + } + return $emails; } -} -class MailStorageIMAP extends MailStorage { - public function __construct($_uid) - { - parent::__construct($_uid, 'imap'); - } -} + // function get_uid() {{{2 -class MailStorageGoogleApps extends MailStorage { - public function __construct($_uid) + public function get_uid() { - parent::__construct($_uid, 'googleapps'); - } - - public function disable() { - $redirect = new Redirect(S::v('uid')); - if (!$redirect->other_active(NULL)) { - return false; - } - - return parent::disable(); + return $this->user->id(); } }