define('SM_PATH','../');
/* SquirrelMail required files. */
+require_once(SM_PATH . 'functions/global.php');
require_once(SM_PATH . 'functions/i18n.php');
require_once(SM_PATH . 'functions/strings.php');
require_once(SM_PATH . 'config/config.php');
require_once(SM_PATH . 'functions/plugin.php');
require_once(SM_PATH . 'functions/constants.php');
require_once(SM_PATH . 'functions/page_header.php');
-require_once(SM_PATH . 'functions/global.php');
-
-// Remove slashes if PHP added them
-$REQUEST_METHOD = $_SERVER['REQUEST_METHOD'];
-if (get_magic_quotes_gpc()) {
- if ($REQUEST_METHOD == 'POST') {
- RemoveSlashes($_POST);
- } else if ($REQUEST_METHOD == 'GET') {
- RemoveSlashes($_GET);
- }
-}
/* Before starting the session, the base URI must be known. Assuming */
/* that this file is in the src/ subdirectory (or something). */
$location = get_location();
session_set_cookie_params (0, $base_uri);
-session_start();
+sqsession_is_active();
sqsession_unregister ('user_is_logged_in');
sqsession_register ($base_uri, 'base_uri');
/* get globals we me need */
-if (isset($_POST['login_username'])) {
- $login_username = $_POST['login_username'];
+sqGetGlobalVar('login_username', $login_username);
+sqGetGlobalVar('secretkey', $secretkey);
+sqGetGlobalVar('js_autodetect_results', $js_autodetect_results);
+if(!sqGetGlobalVar('squirrelmail_language', $squirrelmail_language) || $squirrelmail_language == '') {
+ $squirrelmail_language = $squirrelmail_default_language;
}
-if (!isset($_COOKIE['squirrelmail_language']) ||
- $squirrelmail_language == '' ) {
- $squirrelmail_language = $squirrelmail_default_language;
-}
-else {
- $squirrelmail_language = $_COOKIE['squirrelmail_language'];
-}
-if (isset($_POST['secretkey'])) {
- $secretkey = $_POST['secretkey'];
-}
-if (isset($_POST['js_autodetect_results'])) {
- $js_autodetect_results = $_POST['js_autodetect_results'];
+if (!sqgetGlobalVar('mailto', $mailto)) {
+ $mailto = '';
}
+
/* end of get globals */
set_up_language($squirrelmail_language, true);
$base_uri);
if (!isset($login_username)) {
- include_once( '../functions/display_messages.php' );
+ include_once(SM_PATH . 'functions/display_messages.php' );
logout_error( _("You must be logged in to access this page.") );
exit;
}
$debug = false;
-if (isset($_SERVER['HTTP_ACCEPT']) &&
- !isset($attachment_common_types_parsed[$_SERVER['HTTP_ACCEPT']])) {
- attachment_common_parse($_SERVER['HTTP_ACCEPT'], $debug);
+if ( sqgetGlobalVar('HTTP_ACCEPT', $http_accept, SQ_SERVER) &&
+ !isset($attachment_common_types_parsed[$http_accept]) ) {
+ attachment_common_parse($http_accept, $debug);
}
/* Complete autodetection of Javascript. */
setPref($data_dir, $username, 'javascript_on', $js_pref);
/* Compute the URL to forward the user to. */
-$redirect_url = 'webmail.php';
+$redirect_url = $location . '/webmail.php';
if ( sqgetGlobalVar('session_expired_location', $session_expired_location, SQ_SESSION) ) {
sqsession_unregister('session_expired_location');
$compose_new_win = getPref($data_dir, $username, 'compose_new_win', 0);
if ($compose_new_win) {
+ // do not prefix $location here because $session_expired_location is set to PHP_SELF
+ // of the last page
$redirect_url = $session_expired_location;
} elseif ( strpos($session_expired_location, 'webmail.php') === FALSE ) {
- $redirect_url = 'webmail.php?right_frame='.urldecode($session_expired_location);
+ $redirect_url = $location.'/webmail.php?right_frame='.urldecode($session_expired_location);
}
unset($session_expired_location);
}
+if($mailto != '') {
+ $redirect_url = $location . '/webmail.php?right_frame=compose.php&mailto=';
+ $redirect_url .= $mailto;
+}
/* Write session data and send them off to the appropriate page. */
session_write_close();