projects / squirrelmail.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
first start of removing direct access of key/onetimepad in all scripts
[squirrelmail.git] / src / addrbook_search.php
1 <?php
2
3 /**
4 * addrbook_search.php
5 *
6 * Handle addressbook searching in the popup window.
7 *
8 * NOTE: A lot of this code is similar to the code in
9 * addrbook_search_html.html -- If you change one,
10 * change the other one too!
11 *
12 * @copyright &copy; 1999-2006 The SquirrelMail Project Team
13 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
14 * @version $Id$
15 * @package squirrelmail
16 * @subpackage addressbook
17 */
18
19 /**
20 * Include the SquirrelMail initialization file.
21 */
22 require('../include/init.php');
23
24 include_once(SM_PATH . 'functions/forms.php');
25 include_once(SM_PATH . 'functions/addressbook.php');
26
27 /**
28 * Function to include JavaScript code
29 * @return void
30 */
31 function insert_javascript() {
32 ?>
33 <script type="text/javascript"><!--
34
35 function to_and_close($addr) {
36 to_address($addr);
37 parent.close();
38 }
39
40 function to_address($addr) {
41 var prefix = "";
42 var pwintype = typeof parent.opener.document.compose;
43
44 $addr = $addr.replace(/ {1,35}$/, "");
45
46 if (pwintype != "undefined") {
47 if (parent.opener.document.compose.send_to.value) {
48 prefix = ", ";
49 parent.opener.document.compose.send_to.value =
50 parent.opener.document.compose.send_to.value + ", " + $addr;
51 } else {
52 parent.opener.document.compose.send_to.value = $addr;
53 }
54 }
55 }
56
57 function cc_address($addr) {
58 var prefix = "";
59 var pwintype = typeof parent.opener.document.compose;
60
61 $addr = $addr.replace(/ {1,35}$/, "");
62
63 if (pwintype != "undefined") {
64 if (parent.opener.document.compose.send_to_cc.value) {
65 prefix = ", ";
66 parent.opener.document.compose.send_to_cc.value =
67 parent.opener.document.compose.send_to_cc.value + ", " + $addr;
68 } else {
69 parent.opener.document.compose.send_to_cc.value = $addr;
70 }
71 }
72 }
73
74 function bcc_address($addr) {
75 var prefix = "";
76 var pwintype = typeof parent.opener.document.compose;
77
78 $addr = $addr.replace(/ {1,35}$/, "");
79
80 if (pwintype != "undefined") {
81 if (parent.opener.document.compose.send_to_bcc.value) {
82 prefix = ", ";
83 parent.opener.document.compose.send_to_bcc.value =
84 parent.opener.document.compose.send_to_bcc.value + ", " + $addr;
85 } else {
86 parent.opener.document.compose.send_to_bcc.value = $addr;
87 }
88 }
89 }
90
91 // --></script>
92 <?php
93 } /* End of included JavaScript */
94
95
96 /**
97 * List search results
98 * @param array $res Array of search results
99 * @param bool $includesource [Default=true]
100 * @return void
101 */
102 function display_result($res, $includesource = true) {
103 global $color;
104
105 if(sizeof($res) <= 0) return;
106
107 insert_javascript();
108
109 $line = 0;
110 echo html_tag( 'table', '', 'center', '', 'border="0" width="98%"' ) .
111 html_tag( 'tr', '', '', $color[9] ) .
112 html_tag( 'th', '&nbsp;', 'left' ) .
113 html_tag( 'th', '&nbsp;' . _("Name"), 'left' ) .
114 html_tag( 'th', '&nbsp;' . _("E-mail"), 'left' ) .
115 html_tag( 'th', '&nbsp;' . _("Info"), 'left' );
116
117 if ($includesource) {
118 echo html_tag( 'th', '&nbsp;' . _("Source"), 'left', '', 'width="10%"' );
119 }
120 echo "</tr>\n";
121
122 while (list($undef, $row) = each($res)) {
123 $email = htmlspecialchars(addcslashes(AddressBook::full_address($row), "'"), ENT_QUOTES);
124 if ($line % 2) {
125 $tr_bgcolor = $color[12];
126 } else {
127 $tr_bgcolor = $color[4];
128 }
129 echo html_tag( 'tr', '', '', $tr_bgcolor, 'style="white-space: nowrap;"' ) .
130 html_tag( 'td',
131 '<small><a href="javascript:to_address(' .
132 "'" . $email . "');\">"._("To")."</a> | " .
133 '<a href="javascript:cc_address(' .
134 "'" . $email . "');\">"._("Cc")."</a> | " .
135 '<a href="javascript:bcc_address(' .
136 "'" . $email . "');\">"._("Bcc")."</a></small>",
137 'center', '', 'valign="top" width="5%" style="white-space: nowrap;"' ) .
138 html_tag( 'td', '&nbsp;' . htmlspecialchars($row['name']), 'left', '', 'valign="top" style="white-space: nowrap;"' ) .
139 html_tag( 'td', '&nbsp;' .
140 '<a href="javascript:to_and_close(' .
141 "'" . $email . "');\">" . htmlspecialchars($row['email']) . '</a>'
142 , 'left', '', 'valign="top"' ) .
143 html_tag( 'td', htmlspecialchars($row['label']), 'left', '', 'valign="top" style="white-space: nowrap;"' );
144 if ($includesource) {
145 echo html_tag( 'td', '&nbsp;' . $row['source'], 'left', '', 'valign="top" style="white-space: nowrap;"' );
146 }
147
148 echo "</tr>\n";
149 $line++;
150 }
151 echo '</table>';
152 }
153
154 /* ================= End of functions ================= */
155
156 /** lets get the global vars we may need */
157 sqgetGlobalVar('key', $key, SQ_COOKIE);
158 sqgetGlobalVar('username', $username, SQ_SESSION);
159 sqgetGlobalVar('onetimepad',$onetimepad, SQ_SESSION);
160 sqgetGlobalVar('base_uri', $base_uri, SQ_SESSION);
161
162 if (! sqgetGlobalVar('show' , $show)) {
163 $show = '';
164 }
165 if (! sqgetGlobalVar('query', $query, SQ_POST)) {
166 $query = '';
167 }
168 if (! sqgetGlobalVar('listall', $listall, SQ_POST)) {
169 unset($listall);
170 }
171 if (! sqgetGlobalVar('backend', $backend, SQ_POST)) {
172 $backend = '';
173 }
174
175 displayHtmlHeader();
176
177 /** set correct value of $default_charset */
178 global $default_charset;
179 set_my_charset();
180
181 /* Choose correct colors for top and bottom frame */
182 if ($show == 'form' && !isset($listall)) {
183 echo '<body text="' . $color[6] . '" bgcolor="' . $color[3] . '" ' .
184 'link="' . $color[6] . '" vlink="' . $color[6] . '" ' .
185 'alink="' . $color[6] . '" ' .
186 'OnLoad="document.sform.query.focus();">';
187 } else {
188 echo '<body text="' . $color[8] . '" bgcolor="' . $color[4] . '" ' .
189 'link="' . $color[7] . '" vlink="' . $color[7] . '" ' .
190 'alink="' . $color[7] . "\">\n";
191 }
192
193 /* Empty search */
194 if (empty($query) && empty($show) && !isset($listall)) {
195 echo html_tag( 'p', '<br />' .
196 _("No persons matching your search were found"),
197 'center' ) .
198 "\n</body></html>\n";
199 exit;
200 }
201
202 /* Initialize addressbook, show init errors only in bottom frame */
203 $showerr=($show=='form' ? false : true);
204 $abook = addressbook_init($showerr);
205
206 /* Create search form (top frame) */
207 if ($show == 'form' && ! isset($listall)) {
208 echo '<form name="sform" target="abookres" action="addrbook_search.php'.
209 '" method="post">' . "\n" .
210 html_tag( 'table', '', '', '', 'border="0" width="100%" height="100%"' ) .
211 html_tag( 'tr' ) .
212 html_tag( 'td', ' <strong><label for="query">' . _("Search for") .
213 "</label></strong>\n", 'left', '',
214 'style="white-space: nowrap;" valign="middle" width="10%"' ) .
215 html_tag( 'td', '', 'left', '', '' ) .
216 addInput('query', $query, 28);
217
218 /* List all backends to allow the user to choose where to search */
219 if ($abook->numbackends > 1) {
220 echo '<strong><label for="backend">' . _("in") . '</label></strong>&nbsp;'."\n";
221 $selopts = array();
222 $selopts['-1'] = _("All address books");
223
224 $ret = $abook->get_backend_list();
225 while (list($undef,$v) = each($ret)) {
226 $selopts[$v->bnum] = $v->sname;
227 }
228 echo addSelect('backend', $selopts, '-1', TRUE);
229 } else {
230 echo addHidden('backend', '-1');
231 }
232
233 echo '</td></tr>' .
234 html_tag( 'tr',
235 html_tag( 'td', '', 'left' ) .
236 html_tag( 'td',
237 '<input type="submit" value="' . _("Search") . '" name="show" />' .
238 '&nbsp;|&nbsp;<input type="submit" value="' . _("List all") .
239 '" name="listall" />' . "\n" .
240 '&nbsp;|&nbsp;<input type="button" value="' . _("Close") .
241 '" onclick="parent.close();" />' . "\n" ,
242 'left' )
243 ) .
244 '</table></form>' . "\n";
245 } else {
246 /**
247 * List addresses (bottom frame)
248 * If listall is set, list all entries in selected backend.
249 * If $show is 'blank' (initial call of address book popup) - list
250 * personal address book.
251 */
252 if ($show == 'blank' || isset($listall)) {
253
254 if($backend != -1 || $show == 'blank') {
255 if ($show == 'blank') {
256 $backend = $abook->localbackend;
257 }
258 $res = $abook->list_addr($backend);
259
260 if(is_array($res)) {
261 usort($res,'alistcmp');
262 display_result($res, false);
263 } else {
264 echo html_tag( 'p', '<strong>' .
265 sprintf(_("Unable to list addresses from %s"),
266 $abook->backends[$backend]->sname) . '</strong>' ,
267 'center' ) . "\n";
268 }
269 } else {
270 $res = $abook->list_addr();
271 usort($res,'alistcmp');
272 display_result($res, true);
273 }
274
275 } elseif (!empty($query)) {
276 /* Do the search (listall is not set. query is set.)*/
277
278 if($backend == -1) {
279 $res = $abook->s_search($query);
280 } else {
281 $res = $abook->s_search($query, $backend);
282 }
283
284 if (!is_array($res)) {
285 echo html_tag( 'p', '<b><br />' .
286 _("Your search failed with the following error(s)") .
287 ':<br />' . nl2br(htmlspecialchars($abook->error)) . "</b>\n" ,
288 'center' );
289 } elseif (sizeof($res) == 0) {
290 echo html_tag( 'p', '<br /><b>' .
291 _("No persons matching your search were found") . "</b>\n" ,
292 'center' );
293 } else {
294 display_result($res);
295 }
296 } else {
297 /**
298 * listall is not set, query is not set or empty.
299 * User hit search button without entering search expression.
300 */
301 echo html_tag( 'p', '<br /><b>' . _("Nothing to search") . "</b>\n",'center' );
302 }
303 }
304 $oTemplate->display('footer.tpl');
305 ?>
Unnamed repository; edit this file 'description' to name the repository.