projects / squirrelmail.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
* Probable bugfixes for attachment code
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 ** compose.php
4 **
5 ** Copyright (c) 1999-2000 The SquirrelMail development team
6 ** Licensed under the GNU GPL. For full terms see the file COPYING.
7 **
8 ** This code sends a mail.
9 **
10 ** There are 3 modes of operation:
11 ** - Start new mail
12 ** - Add an attachment
13 ** - Send mail
14 **
15 ** $Id$
16 **/
17
18 session_start();
19
20 if (!isset($strings_php))
21 include("../functions/strings.php");
22 if (!isset($config_php))
23 include("../config/config.php");
24 if (!isset($page_header_php))
25 include("../functions/page_header.php");
26 if (!isset($imap_php))
27 include("../functions/imap.php");
28 if (!isset($date_php))
29 include("../functions/date.php");
30 if (!isset($mime_php))
31 include("../functions/mime.php");
32 if (!isset($smtp_php))
33 include("../functions/smtp.php");
34 if (!isset($display_messages_php))
35 include("../functions/display_messages.php");
36 if (!isset($auth_php))
37 include ("../functions/auth.php");
38 if (!isset($plugin_php))
39 include ("../functions/plugin.php");
40
41 include("../src/load_prefs.php");
42
43 if (!isset($attachments))
44 $attachments = array();
45
46 // This function is used when not sending or adding attachments
47 function newMail () {
48 global $forward_id, $imapConnection, $msg, $ent_num, $body_ary, $body,
49 $reply_id, $send_to, $send_to_cc, $mailbox, $send_to_bcc, $editor_size;
50
51 $send_to = decodeHeader($send_to);
52 $send_to_cc = decodeHeader($send_to_cc);
53 $send_to_bcc = decodeHeader($send_to_bcc);
54
55 if ($forward_id)
56 $id = $forward_id;
57 elseif ($reply_id)
58 $id = $reply_id;
59
60
61 if (isset($id)) {
62 sqimap_mailbox_select($imapConnection, $mailbox);
63 $message = sqimap_get_message($imapConnection, $id, $mailbox);
64 $orig_header = $message->header;
65 if ($ent_num)
66 $message = getEntity($message, $ent_num);
67
68 if ($message->header->type0 == "text" || $message->header->type1 == "message") {
69 if ($ent_num)
70 $body = decodeBody(mime_fetch_body($imapConnection, $id, $ent_num), $message->header->encoding);
71 else
72 $body = decodeBody(mime_fetch_body($imapConnection, $id, 1), $message->header->encoding);
73 } else {
74 $body = "";
75 }
76
77 if ($message->header->type1 == "html")
78 $body = strip_tags($body);
79
80 sqUnWordWrap($body);
81 $body_ary = explode("\n", $body);
82 $i = count($body_ary) - 1;
83 while ($i >= 0 && ereg("^[>\\s]*$", $body_ary[$i])) {
84 unset($body_ary[$i]);
85 $i --;
86 }
87 $body = "";
88 for ($i=0; isset($body_ary[$i]); $i++) {
89 if (! $forward_id)
90 {
91 if (ereg('^[\\s>]+', $body_ary[$i]))
92 {
93 $body_ary[$i] = '>' . $body_ary[$i];
94 }
95 else
96 {
97 $body_ary[$i] = '> ' . $body_ary[$i];
98 }
99 }
100 sqWordWrap($body_ary[$i], $editor_size - 1);
101 $body .= $body_ary[$i] . "\n";
102 unset($body_ary[$i]);
103 }
104 if ($forward_id)
105 {
106 $bodyTop = "-------- " . _("Original Message") . " --------\n";
107 $bodyTop .= _("Subject") . ": " . $orig_header->subject . "\n";
108 $bodyTop .= _("From") . ": " . $orig_header->from . "\n";
109 $bodyTop .= _("To") . ": " . $orig_header->to[0] . "\n";
110 if (count($orig_header->to) > 1) {
111 for ($x=1; $x < count($orig_header->to); $x++) {
112 $bodyTop .= " " . $orig_header->to[$x] . "\n";
113 }
114 }
115 $bodyTop .= "\n";
116 $body = $bodyTop . $body;
117 }
118
119 return;
120 }
121
122 if (!$send_to) {
123 $send_to = sqimap_find_email($send_to);
124 }
125
126 /** This formats a CC string if they hit "reply all" **/
127 if ($send_to_cc != "") {
128 $send_to_cc = ereg_replace( '"[^"]*"', "", $send_to_cc);
129 $send_to_cc = ereg_replace(";", ",", $send_to_cc);
130 $sendcc = explode(",", $send_to_cc);
131 $send_to_cc = "";
132
133 for ($i = 0; $i < count($sendcc); $i++) {
134 $sendcc[$i] = trim($sendcc[$i]);
135 if ($sendcc[$i] == "")
136 continue;
137
138 $sendcc[$i] = sqimap_find_email($sendcc[$i]);
139 $whofrom = sqimap_find_displayable_name($msg["HEADER"]["FROM"]);
140 $whoreplyto = sqimap_find_email($msg["HEADER"]["REPLYTO"]);
141
142 if ((strtolower(trim($sendcc[$i])) != strtolower(trim($whofrom))) &&
143 (strtolower(trim($sendcc[$i])) != strtolower(trim($whoreplyto))) &&
144 (trim($sendcc[$i]) != "")) {
145 $send_to_cc .= trim($sendcc[$i]) . ", ";
146 }
147 }
148 $send_to_cc = trim($send_to_cc);
149 if (substr($send_to_cc, -1) == ",") {
150 $send_to_cc = substr($send_to_cc, 0, strlen($send_to_cc) - 1);
151 }
152 }
153 } // function newMail()
154
155 function getAttachments($message) {
156 global $mailbox, $attachments, $attachment_dir, $imapConnection,
157 $ent_num, $forward_id;
158
159 if (!$message) {
160 sqimap_mailbox_select($imapConnection, $mailbox);
161 $message = sqimap_get_message($imapConnection, $forward_id,
162 $mailbox);
163 }
164
165 if (count($message->entities) == 0) {
166 if ($message->header->entity_id != $ent_num) {
167 $filename = decodeHeader($message->header->filename);
168
169 if ($filename == "")
170 $filename = "untitled-".$message->header->entity_id;
171
172 $localfilename = GenerateRandomString(32, '', 7);
173
174 // Write File Info
175 $fp = fopen ($attachment_dir.$localfilename.".info", "w");
176 fputs ($fp, strtolower($message->header->type0)."/".
177 strtolower($message->header->type1)."\n".$filename."\n");
178 fclose ($fp);
179
180 // Write Attachment to file
181 $fp = fopen ($attachment_dir.$localfilename, "w");
182 fputs ($fp, decodeBody(mime_fetch_body($imapConnection,
183 $forward_id, $message->header->entity_id),
184 $message->header->encoding));
185 fclose ($fp);
186
187 $attachments[$localfilename] = $filename;
188 }
189 } else {
190 for ($i = 0; $i < count($message->entities); $i++) {
191 getAttachments($message->entities[$i]);
192 }
193 }
194 return;
195 }
196
197 function showInputForm () {
198 global $send_to, $send_to_cc, $reply_subj, $forward_subj, $body,
199 $passed_body, $color, $use_signature, $signature, $prefix_sig,
200 $editor_size, $attachments, $subject, $newmail,
201 $use_javascript_addr_book, $send_to_bcc, $reply_id, $mailbox,
202 $from_htmladdr_search, $location_of_buttons;
203
204 $subject = decodeHeader($subject);
205 $reply_subj = decodeHeader($reply_subj);
206 $forward_subj = decodeHeader($forward_subj);
207
208 if ($use_javascript_addr_book) {
209 echo "\n<SCRIPT LANGUAGE=JavaScript><!--\n";
210 echo "function open_abook() { \n";
211 echo " var nwin = window.open(\"addrbook_popup.php\",\"abookpopup\",";
212 echo "\"width=670,height=300,resizable=yes,scrollbars=yes\");\n";
213 echo " if((!nwin.opener) && (document.windows != null))\n";
214 echo " nwin.opener = document.windows;\n";
215 echo "}\n";
216 echo "// --></SCRIPT>\n\n";
217 }
218
219 echo "\n<FORM name=compose action=\"compose.php\" METHOD=POST ENCTYPE=\"multipart/form-data\"";
220 do_hook("compose_form");
221 echo ">\n";
222 if ($reply_id) {
223 echo "<input type=hidden name=reply_id value=$reply_id>\n";
224 }
225 printf("<INPUT TYPE=hidden NAME=mailbox VALUE=\"%s\">\n", htmlspecialchars($mailbox));
226 echo "<TABLE WIDTH=\"100%\" ALIGN=center CELLSPACING=0 BORDER=0>\n";
227
228 if ($location_of_buttons == 'top') showComposeButtonRow();
229
230 echo " <TR>\n";
231 echo " <TD BGCOLOR=\"$color[4]\" ALIGN=RIGHT>\n";
232 echo _("To:");
233 echo " </TD><TD BGCOLOR=\"$color[4]\">\n";
234 printf(" <INPUT TYPE=text NAME=\"send_to\" VALUE=\"%s\" SIZE=60><BR>\n",
235 htmlspecialchars($send_to));
236 echo " </TD>\n";
237 echo " </TR>\n";
238 echo " <TR>\n";
239 echo " <TD BGCOLOR=\"$color[4]\" ALIGN=RIGHT>\n";
240 echo _("CC:");
241 echo " </TD><TD BGCOLOR=\"$color[4]\" ALIGN=LEFT>\n";
242 printf(" <INPUT TYPE=text NAME=\"send_to_cc\" SIZE=60 VALUE=\"%s\"><BR>\n",
243 htmlspecialchars($send_to_cc));
244 echo " </TD>\n";
245 echo " </TR>\n";
246 echo " <TR>\n";
247 echo " <TD BGCOLOR=\"$color[4]\" ALIGN=RIGHT>\n";
248 echo _("BCC:");
249 echo " </TD><TD BGCOLOR=\"$color[4]\" ALIGN=LEFT>\n";
250 printf(" <INPUT TYPE=text NAME=\"send_to_bcc\" VALUE=\"%s\" SIZE=60><BR>\n",
251 htmlspecialchars($send_to_bcc));
252 echo "</TD></TR>\n";
253
254 echo " <TR>\n";
255 echo " <TD BGCOLOR=\"$color[4]\" ALIGN=RIGHT>\n";
256 echo _("Subject:");
257 echo " </TD><TD BGCOLOR=\"$color[4]\" ALIGN=LEFT>\n";
258 if ($reply_subj) {
259 $reply_subj = str_replace("\"", "'", $reply_subj);
260 $reply_subj = trim($reply_subj);
261 if (substr(strtolower($reply_subj), 0, 3) != "re:")
262 $reply_subj = "Re: $reply_subj";
263 printf(" <INPUT TYPE=text NAME=subject SIZE=60 VALUE=\"%s\">",
264 htmlspecialchars($reply_subj));
265 } else if ($forward_subj) {
266 $forward_subj = str_replace("\"", "'", $forward_subj);
267 $forward_subj = trim($forward_subj);
268 if ((substr(strtolower($forward_subj), 0, 4) != "fwd:") &&
269 (substr(strtolower($forward_subj), 0, 5) != "[fwd:") &&
270 (substr(strtolower($forward_subj), 0, 6) != "[ fwd:"))
271 $forward_subj = "[Fwd: $forward_subj]";
272 printf(" <INPUT TYPE=text NAME=subject SIZE=60 VALUE=\"%s\">",
273 htmlspecialchars($forward_subj));
274 } else {
275 printf(" <INPUT TYPE=text NAME=subject SIZE=60 VALUE=\"%s\">",
276 htmlspecialchars($subject));
277 }
278 echo "</td></tr>\n\n";
279
280 if ($location_of_buttons == 'between') showComposeButtonRow();
281
282 echo " <TR>\n";
283 echo " <TD BGCOLOR=\"$color[4]\" COLSPAN=2>\n";
284 echo " &nbsp;&nbsp;<TEXTAREA NAME=body ROWS=20 COLS=\"$editor_size\" WRAP=HARD>";
285 echo htmlspecialchars($body);
286 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
287 if ( $prefix_sig == true )
288 echo "\n\n-- \n" . htmlspecialchars($signature);
289 else
290 echo "\n\n" . htmlspecialchars($signature);
291 }
292 echo "</TEXTAREA><BR>\n";
293 echo " </TD>\n";
294 echo " </TR>\n";
295
296 if ($location_of_buttons == 'bottom')
297 showComposeButtonRow();
298 else {
299 echo " <TR><TD>&nbsp;</TD><TD ALIGN=LEFT><INPUT TYPE=SUBMIT NAME=send VALUE=\""._("Send")."\"></TD></TR>\n";
300 }
301
302 // This code is for attachments
303 echo " <tr>\n";
304 echo " <TD BGCOLOR=\"$color[0]\" VALIGN=TOP ALIGN=RIGHT>\n";
305 echo " <SMALL><BR></SMALL>"._("Attach:");
306 echo " </td><td ALIGN=left BGCOLOR=\"$color[0]\">\n";
307 echo " <INPUT NAME=\"attachfile\" SIZE=48 TYPE=\"file\">\n";
308 echo " &nbsp;&nbsp;<input type=\"submit\" name=\"attach\"";
309 echo " value=\"" . _("Add") ."\">\n";
310 echo " </td>\n";
311 echo " </tr>\n";
312 if (count($attachments) > 0) {
313 echo "<tr><td bgcolor=\"$color[0]\" align=right>\n";
314 echo "&nbsp;";
315 echo "</td><td align=left bgcolor=\"$color[0]\">";
316 while (list($localname, $remotename) = each($attachments)) {
317 echo "<input type=\"checkbox\" name=\"delete[]\" value=\"$localname\">\n";
318 echo "$remotename <input type=\"hidden\" name=\"attachments[$localname]\" value=\"$remotename\"><br>\n";
319 }
320
321 echo "<input type=\"submit\" name=\"do_delete\" value=\""._("Delete selected attachments")."\">\n";
322 echo "</td></tr>";
323 }
324 // End of attachment code
325
326 echo "</TABLE>\n";
327 echo "</FORM>";
328 do_hook("compose_bottom");
329 }
330
331 function showComposeButtonRow() {
332 global $use_javascript_addr_book;
333 echo " <TR><td>\n </td><td>\n";
334 if ($use_javascript_addr_book) {
335 echo " <SCRIPT LANGUAGE=JavaScript><!--\n document.write(\"";
336 echo " <input type=button value=\\\""._("Addresses")."\\\" onclick='javascript:open_abook();'>\");";
337 echo " // --></SCRIPT><NOSCRIPT>\n";
338 echo " <input type=submit name=\"html_addr_search\" value=\""._("Addresses")."\">";
339 echo " </NOSCRIPT>\n";
340 } else {
341 echo " <input type=submit name=\"html_addr_search\" value=\""._("Addresses")."\">";
342 }
343 echo "\n <INPUT TYPE=SUBMIT NAME=send VALUE=\"". _("Send") . "\">\n";
344
345 do_hook("compose_button_row");
346
347 echo " </TD>\n";
348 echo " </TR>\n\n";
349 }
350
351 function showSentForm () {
352 echo "<BR><BR><BR><CENTER><B>Message Sent!</B><BR><BR>";
353 echo "You will be automatically forwarded.<BR>If not, <A HREF=\"right_main.php\">click here</A>";
354 echo "</CENTER>";
355 }
356
357 function checkInput ($show) {
358 /** I implemented the $show variable because the error messages
359 were getting sent before the page header. So, I check once
360 using $show=false, and then when i'm ready to display the
361 error message, show=true **/
362 global $body, $send_to, $subject, $color;
363
364 if ($send_to == "") {
365 if ($show)
366 plain_error_message(_("You have not filled in the \"To:\" field."), $color);
367 return false;
368 }
369 return true;
370 } // function checkInput()
371
372
373 // True if FAILURE
374 function saveAttachedFiles() {
375 global $HTTP_POST_FILES, $attachment_dir, $attachments;
376
377 is_logged_in();
378 $localfilename = GenerateRandomString(32, '', 7);
379
380 if (!@rename($HTTP_POST_FILES['attachfile']['tmp_name'], $attachment_dir.$localfilename)) {
381 if (!@copy($HTTP_POST_FILES['attachfile']['tmp_name'], $attachment_dir.$localfilename)) {
382 return true;
383 }
384 }
385
386 if (!isset($failed) || !$failed) {
387 // Write information about the file
388 $fp = fopen ($attachment_dir.$localfilename.".info", "w");
389 fputs ($fp, $HTTP_POST_FILES['attachfile']['type']."\n".$HTTP_POST_FILES['attachfile']['name']."\n");
390 fclose ($fp);
391
392 $attachments[$localfilename] = $HTTP_POST_FILES['attachfile']['name'];
393 }
394 }
395
396 function SqConvertRussianCharsets(){
397 //
398 // This function is here because Russian Apache is a bastard when it comes to
399 // attachments. The solution is to turn off attachment recoding for multipart
400 // forms and do it manually.
401 // See graf@relhum.org for support.
402 //
403 global $CHARSET, $SOURCE_CHARSET, $send_to, $send_to_cc, $send_to_bcc, $subject, $body;
404 $charset_ary = array("koi8-r" => "k",
405 "windows-1251" => "w",
406 "ibm866" => "a",
407 "ISO-8859-5" => "i");
408 $body = convert_cyr_string($body, $charset_ary[$CHARSET], $charset_ary[$SOURCE_CHARSET]);
409 $send_to = convert_cyr_string($send_to, $charset_ary[$CHARSET], $charset_ary[$SOURCE_CHARSET]);
410 $send_to_cc = convert_cyr_string($send_to_cc, $charset_ary[$CHARSET], $charset_ary[$SOURCE_CHARSET]);
411 $send_to_bcc = convert_cyr_string($send_to_bcc, $charset_ary[$CHARSET], $charset_ary[$SOURCE_CHARSET]);
412 $subject = convert_cyr_string($subject, $charset_ary[$CHARSET], $charset_ary[$SOURCE_CHARSET]);
413 } // end SqConvertRussianCharsets()
414
415 // Russian Apache sets $CHARSET. See if this is Russian Apache.
416 // If so, check if the source charset (koi8-r) is different from the
417 // one submitted by the browser. If so, recode the parts of the form
418 // to the needed format so SM can proceed and not mangle the cyrillic
419 // input.
420 // See graf@relhum.org for support.
421 //
422 if (isset($CHARSET) && $CHARSET != $SOURCE_CHARSET) SqConvertRussianCharsets();
423
424 if (!isset($mailbox) || $mailbox == "" || ($mailbox == "None"))
425 $mailbox = "INBOX";
426
427 if(isset($send)) {
428 if (isset($HTTP_POST_FILES['attachfile']) &&
429 $HTTP_POST_FILES['attachfile']['tmp_name'] &&
430 $HTTP_POST_FILES['attachfile']['tmp_name'] != 'none')
431 $AttachFailure = saveAttachedFiles();
432 if (checkInput(false) && !isset($AttachFailure)) {
433 $urlMailbox = urlencode (trim($mailbox));
434 if (! isset($reply_id))
435 $reply_id = 0;
436 // Set $default_charset to correspond with the user's selection
437 // of language interface.
438 set_my_charset();
439 sendMessage($send_to, $send_to_cc, $send_to_bcc, $subject, $body, $reply_id);
440 header ("Location: right_main.php?mailbox=$urlMailbox&sort=$sort&startMessage=1");
441 } else {
442 //$imapConnection = sqimap_login($username, $key, $imapServerAddress, $imapPort, 0);
443 displayPageHeader($color, $mailbox);
444
445 if ($AttachFailure)
446 plain_error_message(_("Could not move/copy file. File not attached"), $color);
447
448 checkInput(true);
449
450 showInputForm();
451 //sqimap_logout($imapConnection);
452 }
453 } else if (isset($html_addr_search_done)) {
454 is_logged_in();
455 displayPageHeader($color, $mailbox);
456
457 for ($i=0; $i < count($send_to_search); $i++) {
458 if ($send_to)
459 $send_to .= ", ";
460 $send_to .= $send_to_search[$i];
461 }
462
463 for ($i=0; $i < count($send_to_cc_search); $i++) {
464 if ($send_to_cc)
465 $send_to_cc .= ", ";
466 $send_to_cc .= $send_to_cc_search[$i];
467 }
468
469 showInputForm();
470 } else if (isset($html_addr_search)) {
471 // I am using an include so as to elminiate an extra unnecessary click. If you
472 // can think of a better way, please implement it.
473 include ("./addrbook_search_html.php");
474 } else if (isset($attach)) {
475 if (saveAttachedFiles())
476 plain_error_message(_("Could not move/copy file. File not attached"), $color);
477 displayPageHeader($color, $mailbox);
478 showInputForm();
479 } else if (isset($do_delete)) {
480 is_logged_in();
481 displayPageHeader($color, $mailbox);
482
483 while (list($lkey, $localname) = each($delete)) {
484 unset ($attachments[$localname]);
485 unlink ($attachment_dir.$localname);
486 unlink ($attachment_dir.$localname.".info");
487 }
488
489 showInputForm();
490 } else {
491 // This handles the default case as well as the error case
492 // (they had the same code) --> if (isset($smtpErrors))
493 $imapConnection = sqimap_login($username, $key, $imapServerAddress,
494 $imapPort, 0);
495 displayPageHeader($color, $mailbox);
496
497 $newmail = true;
498 if (isset($forward_id) && $forward_id && isset($ent_num) && $ent_num)
499 getAttachments(0);
500
501 newMail();
502 showInputForm();
503 sqimap_logout($imapConnection);
504 }
505 ?>
Unnamed repository; edit this file 'description' to name the repository.