17d3be5612c295f4524005e34feca5c090f55f6d
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 * compose.php
4 *
5 * This code sends a mail.
6 *
7 * There are 4 modes of operation:
8 * - Start new mail
9 * - Add an attachment
10 * - Send mail
11 * - Save As Draft
12 *
13 * @copyright 1999-2017 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
15 * @version $Id$
16 * @package squirrelmail
17 */
18
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
21
22 /**
23 * Include the SquirrelMail initialization file.
24 */
25 require('../include/init.php');
26
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
31 exit;
32 }
33
34 /* SquirrelMail required files. */
35 require_once(SM_PATH . 'functions/imap_general.php');
36 require_once(SM_PATH . 'functions/imap_messages.php');
37 require_once(SM_PATH . 'functions/date.php');
38 require_once(SM_PATH . 'functions/mime.php');
39 require_once(SM_PATH . 'functions/compose.php');
40 require_once(SM_PATH . 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH . 'functions/addressbook.php');
42 require_once(SM_PATH . 'functions/forms.php');
43 require_once(SM_PATH . 'functions/identity.php');
44 global $imap_stream_options; // in case not defined in config
45
46 /* --------------------- Get globals ------------------------------------- */
47
48 /** SESSION VARS */
49 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
50
51 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION);
52 sqgetGlobalVar('composesession', $composesession, SQ_SESSION);
53 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION);
54
55 // compose_messages only useful in SESSION when a forward-as-attachment
56 // has been preconstructed for us and passed in via that mechanism; once
57 // we have it, we can clear it from the SESSION
58 sqsession_unregister('compose_messages');
59
60 // Turn on delayed error handling in case we wind up redirecting below
61 $oErrorHandler->setDelayedErrors(true);
62
63 /** SESSION/POST/GET VARS */
64 sqgetGlobalVar('send_button_count', $send_button_count, SQ_POST, 1, SQ_TYPE_INT);
65 for ($i = 1; $i <= $send_button_count; $i++)
66 if (sqgetGlobalVar('send' . $i, $send, SQ_POST)) break;
67 // Send can only be achieved by setting $_POST var. If Send = true then
68 // retrieve other form fields from $_POST
69 if (isset($send) && $send) {
70 $SQ_GLOBAL = SQ_POST;
71 } else {
72 $SQ_GLOBAL = SQ_FORM;
73 }
74 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
75 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
76 sqgetGlobalVar('identity',$orig_identity, $SQ_GLOBAL);
77 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
78 $identity=0;
79 }
80 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
81 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
82 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
83 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
84 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
85 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
86 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
87 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
88 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
89 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
90 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL, NULL, SQ_TYPE_BIGINT);
91 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
92 sqgetGlobalVar('fwduid',$fwduid, $SQ_GLOBAL, '');
93
94 sqgetGlobalVar('attach',$attach, SQ_POST);
95 sqgetGlobalVar('draft',$draft, SQ_POST);
96 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
97 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
98 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM);
99
100 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
101 $delete_draft = (int)$delete_draft;
102 }
103
104 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
105 $startMessage = (int)$startMessage;
106 } else {
107 $startMessage = 1;
108 }
109
110
111 /** POST VARS */
112 sqgetGlobalVar('sigappend', $sigappend, SQ_POST);
113 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST);
114 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST);
115 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST);
116 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST);
117 sqgetGlobalVar('do_delete', $do_delete, SQ_POST);
118 sqgetGlobalVar('delete', $delete, SQ_POST);
119 sqgetGlobalVar('attachments', $attachments, SQ_POST);
120 if ( sqgetGlobalVar('return', $temp, SQ_POST) ) {
121 $html_addr_search_done = 'Use Addresses';
122 }
123
124 /** GET VARS */
125 if ( sqgetGlobalVar('account', $temp, SQ_GET) ) {
126 $iAccount = (int) $temp;
127 } else {
128 $iAccount = 0;
129 }
130
131
132 /** get smaction */
133 if ( !sqgetGlobalVar('smaction',$action) )
134 {
135 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
136 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
137 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
138 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
139 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
140 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
141 }
142
143 sqgetGlobalVar('smtoken', $submitted_token, $SQ_GLOBAL, '');
144
145 /**
146 * Here we decode the data passed in from mailto.php.
147 */
148 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET) ) {
149 $trtable = array('to' => 'send_to',
150 'cc' => 'send_to_cc',
151 'bcc' => 'send_to_bcc',
152 'body' => 'body',
153 'subject' => 'subject');
154 $mtdata = unserialize($mailtodata);
155
156 foreach ($trtable as $f => $t) {
157 if ( !empty($mtdata[$f]) ) {
158 $$t = $mtdata[$f];
159 }
160 }
161 unset($mailtodata,$mtdata, $trtable);
162 }
163
164 /* Location (For HTTP 1.1 header("Location: ...") redirects) */
165 $location = get_location();
166 /* Identities (fetch only once) */
167 $idents = get_identities();
168
169 /* --------------------- Specific Functions ------------------------------ */
170
171 function replyAllString($header) {
172 global $include_self_reply_all, $idents;
173 $excl_ar = array();
174 /**
175 * 1) Remove the addresses we'll be sending the message 'to'
176 */
177 if (isset($header->reply_to)) {
178 $excl_ar = $header->getAddr_a('reply_to');
179 }
180 /**
181 * 2) Remove our identities from the CC list (they still can be in the
182 * TO list) only if $include_self_reply_all is turned off
183 */
184 if (!$include_self_reply_all) {
185 foreach($idents as $id) {
186 $excl_ar[strtolower(trim($id['email_address']))] = '';
187 }
188 }
189
190 /**
191 * 3) get the addresses.
192 */
193 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
194
195 /**
196 * 4) generate the string.
197 */
198 $url_replytoallcc = '';
199 foreach( $url_replytoall_ar as $email => $personal) {
200 if ($personal) {
201 // always quote personal name (can't just quote it if
202 // it contains a comma separator, since it might still
203 // be encoded)
204 $url_replytoallcc .= ", \"$personal\" <$email>";
205 } else {
206 $url_replytoallcc .= ', '. $email;
207 }
208 }
209 $url_replytoallcc = substr($url_replytoallcc,2);
210
211 return $url_replytoallcc;
212 }
213
214 /**
215 * creates top line in reply citations
216 *
217 * Line style depends on user preferences.
218 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
219 * @param object $orig_from From: header object.
220 * @param integer $orig_date email's timestamp
221 * @return string reply citation
222 */
223 function getReplyCitation($orig_from, $orig_date) {
224 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
225
226 if (!is_object($orig_from)) {
227 $sOrig_from = '';
228 } else {
229 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
230 }
231
232 /* First, return an empty string when no citation style selected. */
233 if (($reply_citation_style == '') || ($reply_citation_style == 'none')) {
234 return '';
235 }
236
237 /* Make sure our final value isn't an empty string. */
238 if ($sOrig_from == '') {
239 return '';
240 }
241
242 /* Otherwise, try to select the desired citation style. */
243 switch ($reply_citation_style) {
244 case 'author_said':
245 // i18n: %s is for author's name
246 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
247 break;
248 case 'quote_who':
249 $start = '<quote who="';
250 $end = '">';
251 $full_reply_citation = $start . $sOrig_from . $end;
252 break;
253 case 'date_time_author':
254 // i18n:
255 // The first %s is for date string, the second %s is for author's name.
256 // The date uses formating from "D, F j, Y g:i a" and "D, F j, Y H:i"
257 // translations.
258 // Example string:
259 // "On Sat, December 24, 2004 23:59, Santa wrote:"
260 // If you have to put author's name in front of date string, check comments about
261 // argument swapping at http://php.net/sprintf
262 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
263 break;
264 case 'user-defined':
265 $start = $reply_citation_start .
266 ($reply_citation_start == '' ? '' : ' ');
267 $end = $reply_citation_end;
268 $full_reply_citation = $start . $sOrig_from . $end;
269 break;
270 default:
271 return '';
272 }
273
274 /* Add line feed and return the citation string. */
275 return ($full_reply_citation . "\n");
276 }
277
278 /**
279 * Creates header fields in forwarded email body
280 *
281 * $default_charset global must be set correctly before you call this function.
282 * @param object $orig_header
283 * @return $string
284 */
285 function getforwardHeader($orig_header) {
286 global $editor_size, $default_charset;
287
288 // using own strlen function in order to detect correct string length
289 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
290 _("From") => sq_strlen(_("From"),$default_charset),
291 _("Date") => sq_strlen(_("Date"),$default_charset),
292 _("To") => sq_strlen(_("To"),$default_charset),
293 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
294 $maxsize = max($display);
295 $indent = str_pad('',$maxsize+2);
296 foreach($display as $key => $val) {
297 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
298 }
299 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
300 $from = str_replace('&nbsp;',' ',$from);
301 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
302 $to = str_replace('&nbsp;',' ',$to);
303 $subject = decodeHeader($orig_header->subject,false,false,true);
304 $subject = str_replace('&nbsp;',' ',$subject);
305
306 // using own str_pad function in order to create correct string pad
307 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH,$default_charset) .
308 "\n". $display[_("Subject")] . $subject . "\n" .
309 $display[_("From")] . $from . "\n" .
310 $display[_("Date")] . getLongDateString( $orig_header->date, $orig_header->date_unparsed ). "\n" .
311 $display[_("To")] . $to . "\n";
312 if ($orig_header->cc != array() && $orig_header->cc !='') {
313 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
314 $cc = str_replace('&nbsp;',' ',$cc);
315 $bodyTop .= $display[_("Cc")] .$cc . "\n";
316 }
317 $bodyTop .= str_pad('', $editor_size -2 , '-') .
318 "\n\n";
319 return $bodyTop;
320 }
321 /* ----------------------------------------------------------------------- */
322
323 /*
324 * If the session is expired during a post this restores the compose session
325 * vars.
326 */
327 $session_expired = false;
328 if (sqsession_is_registered('session_expired_post')) {
329 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION);
330 /*
331 * extra check for username so we don't display previous post data from
332 * another user during this session.
333 */
334 if (!empty($session_expired_post['username'])
335 && $session_expired_post['username'] == $username) {
336 // these are the vars that we can set from the expired composed session
337 $compo_var_list = array ('send_to', 'send_to_cc', 'body',
338 'startMessage', 'passed_body', 'use_signature', 'signature',
339 'subject', 'newmail', 'send_to_bcc', 'passed_id', 'mailbox',
340 'from_htmladdr_search', 'identity', 'draft_id', 'delete_draft',
341 'mailprio', 'edit_as_new', 'attachments', 'composesession',
342 'request_mdn', 'request_dr', 'fwduid');
343
344 foreach ($compo_var_list as $var) {
345 if ( isset($session_expired_post[$var]) && !isset($$var) ) {
346 $$var = $session_expired_post[$var];
347 }
348 }
349
350 if (!empty($attachments))
351 $attachments = unserialize(urldecode($attachments));
352
353 sqsession_register($composesession,'composesession');
354
355 if (isset($send)) {
356 unset($send);
357 }
358 $session_expired = true;
359 }
360 unset($session_expired_post);
361 sqsession_unregister('session_expired_post');
362 session_write_close();
363 if (!isset($mailbox)) {
364 $mailbox = '';
365 }
366 if ($compose_new_win == '1') {
367 compose_Header($color, $mailbox);
368 } else {
369 $sHeaderJs = (isset($sHeaderJs)) ? $sHeaderJs : '';
370 if (strpos($action, 'reply') !== false && $reply_focus) {
371 $sOnload = 'checkForm(\''.$replyfocus.'\');';
372 } else {
373 $sOnload = 'checkForm();';
374 }
375 displayPageHeader($color, $mailbox,$sHeaderJs,$sOnload);
376 }
377 showInputForm($session, false);
378 exit();
379 }
380
381 if (!isset($composesession)) {
382 $composesession = 0;
383 sqsession_register(0,'composesession');
384 } else {
385 $composesession = (int)$composesession;
386 }
387
388 if (!isset($session) || (isset($newmessage) && $newmessage)) {
389 sqsession_unregister('composesession');
390 $session = "$composesession" +1;
391 $composesession = $session;
392 sqsession_register($composesession,'composesession');
393 }
394 if (!empty($compose_messages[$session])) {
395 $composeMessage = $compose_messages[$session];
396 } else {
397 $composeMessage = new Message();
398 $rfc822_header = new Rfc822Header();
399 $composeMessage->rfc822_header = $rfc822_header;
400 $composeMessage->reply_rfc822_header = '';
401 }
402
403 // re-add attachments that were already in this message
404 // FIXME: note that technically this is very bad form -
405 // should never directly manipulate an object like this
406 if (!empty($attachments)) {
407 $attachments = unserialize(urldecode($attachments));
408 if (!empty($attachments) && is_array($attachments))
409 $composeMessage->entities = $attachments;
410 }
411
412 if (empty($mailbox)) {
413 $mailbox = 'INBOX';
414 }
415
416 if ($draft) {
417
418 // validate security token
419 //
420 sm_validate_security_token($submitted_token, -1, TRUE);
421
422 /*
423 * Set $default_charset to correspond with the user's selection
424 * of language interface.
425 */
426 set_my_charset();
427 if (! deliverMessage($composeMessage, true)) {
428 showInputForm($session);
429 exit();
430 } else {
431 $draft_message = _("Draft Email Saved");
432 /* If this is a resumed draft, then delete the original */
433 if(isset($delete_draft)) {
434 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
435 sqimap_mailbox_select($imap_stream, $draft_folder);
436 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
437 // in current implementation of sqimap_msgs_list_flag() single message id can
438 // be submitted as string. docs state that it should be array.
439 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
440 if ($auto_expunge) {
441 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
442 }
443 sqimap_logout($imap_stream);
444 }
445
446 $oErrorHandler->saveDelayedErrors();
447 session_write_close();
448
449 if ($compose_new_win == '1') {
450 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
451 header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
452 } else {
453 //FIXME: DON'T ECHO HTML FROM CORE!
454 echo ' <br><br><div style="text-align: center;"><a href="' . $location
455 . '/compose.php?saved_sent=yes&amp;session=' . $composesession . '">'
456 . _("Return") . '</a></div>';
457 }
458 exit();
459 } else {
460 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
461 header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
462 "&startMessage=1&note=".urlencode($draft_message));
463 } else {
464 //FIXME: DON'T ECHO HTML FROM CORE!
465 echo ' <br><br><div style="text-align: center;"><a href="' . $location
466 . '/right_main.php?mailbox=' . urlencode($draft_folder)
467 . '&amp;startMessage=1&amp;note=' . urlencode($draft_message) .'">'
468 . _("Return") . '</a></div>';
469 }
470 exit();
471 }
472 }
473 }
474
475 if ($send) {
476
477 // validate security token
478 //
479 sm_validate_security_token($submitted_token, -1, TRUE);
480
481 if (isset($_FILES['attachfile']) &&
482 $_FILES['attachfile']['tmp_name'] &&
483 $_FILES['attachfile']['tmp_name'] != 'none') {
484 $AttachFailure = saveAttachedFiles($session);
485 }
486
487 if (checkInput(false) && !isset($AttachFailure)) {
488 if ($mailbox == "All Folders") {
489 /* We entered compose via the search results page */
490 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
491 }
492 $urlMailbox = urlencode($mailbox);
493 if (! isset($passed_id)) {
494 $passed_id = 0;
495 }
496 /**
497 * Set $default_charset to correspond with the user's selection
498 * of language interface.
499 */
500 set_my_charset();
501 /**
502 * This is to change all newlines to \n
503 * We'll change them to \r\n later (in the sendMessage function)
504 */
505 $body = str_replace("\r\n", "\n", $body);
506 $body = str_replace("\r", "\n", $body);
507
508 /**
509 * Rewrap $body so that no line is bigger than $editor_size
510 */
511 $body = explode("\n", $body);
512 $newBody = '';
513 foreach ($body as $line) {
514 if( $line <> '-- ' ) {
515 $line = rtrim($line);
516 }
517 if (sq_strlen($line, $default_charset) <= $editor_size + 1) {
518 $newBody .= $line . "\n";
519 } else {
520 sqWordWrap($line, $editor_size, $default_charset);
521 $newBody .= $line . "\n";
522
523 }
524
525 }
526 $body = $newBody;
527
528 $Result = deliverMessage($composeMessage);
529
530 if ($Result)
531 $mail_sent = 'yes';
532 else
533 $mail_sent = 'no';
534
535 // NOTE: this hook changed in 1.5.2 from sending $Result and
536 // $composeMessage as args #2 and #3 to being in an array
537 // under arg #2
538 $temp = array(&$Result, &$composeMessage, &$mail_sent);
539 do_hook('compose_send_after', $temp);
540 if (! $Result) {
541 showInputForm($session);
542 exit();
543 }
544
545 /* if it is resumed draft, delete draft message */
546 if ( isset($delete_draft)) {
547 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
548 sqimap_mailbox_select($imap_stream, $draft_folder);
549 // bypass_trash=true because message should be saved when deliverMessage() returns true.
550 // in current implementation of sqimap_msgs_list_flag() single message id can
551 // be submitted as string. docs state that it should be array.
552 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
553 if ($auto_expunge) {
554 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
555 }
556 sqimap_logout($imap_stream);
557 }
558 /*
559 * Store the error array in the session because they will be lost on a redirect
560 */
561 $oErrorHandler->saveDelayedErrors();
562 session_write_close();
563
564 if ($compose_new_win == '1') {
565 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
566 header("Location: $location/compose.php?mail_sent=$mail_sent");
567 } else {
568 //FIXME: DON'T ECHO HTML FROM CORE!
569 echo ' <br><br><div style="text-align: center;"><a href="' . $location
570 . '/compose.php?mail_sent=$mail_sent">'
571 . _("Return") . '</a></div>';
572 }
573 exit();
574 } else {
575 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
576 header("Location: $location/right_main.php?mailbox=$urlMailbox".
577 "&startMessage=$startMessage&mail_sent=$mail_sent");
578 } else {
579 //FIXME: DON'T ECHO HTML FROM CORE!
580 echo ' <br><br><div style="text-align: center;"><a href="' . $location
581 . "/right_main.php?mailbox=$urlMailbox"
582 . "&amp;startMessage=$startMessage&amp;mail_sent=$mail_sent\">"
583 . _("Return") . '</a></div>';
584 }
585 exit();
586 }
587 } else {
588 if ($compose_new_win == '1') {
589 compose_Header($color, $mailbox);
590 }
591 else {
592 displayPageHeader($color, $mailbox);
593 }
594 if (isset($AttachFailure)) {
595 plain_error_message(_("Could not move/copy file. File not attached"),
596 $color);
597 }
598 checkInput(true);
599 showInputForm($session);
600 /* sqimap_logout($imapConnection); */
601 }
602 } elseif (isset($html_addr_search_done)) {
603
604 // validate security token
605 //
606 sm_validate_security_token($submitted_token, -1, TRUE);
607
608 if ($compose_new_win == '1') {
609 compose_Header($color, $mailbox);
610 }
611 else {
612 displayPageHeader($color, $mailbox);
613 }
614
615 if (isset($send_to_search) && is_array($send_to_search)) {
616 foreach ($send_to_search as $k => $v) {
617 if (substr($k, 0, 1) == 'T') {
618 if ($send_to) {
619 $send_to .= ', ';
620 }
621 $send_to .= $v;
622 }
623 elseif (substr($k, 0, 1) == 'C') {
624 if ($send_to_cc) {
625 $send_to_cc .= ', ';
626 }
627 $send_to_cc .= $v;
628 }
629 elseif (substr($k, 0, 1) == 'B') {
630 if ($send_to_bcc) {
631 $send_to_bcc .= ', ';
632 }
633 $send_to_bcc .= $v;
634 }
635 }
636 }
637 showInputForm($session);
638 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
639 if (isset($_FILES['attachfile']) &&
640 $_FILES['attachfile']['tmp_name'] &&
641 $_FILES['attachfile']['tmp_name'] != 'none') {
642 if(saveAttachedFiles($session)) {
643 plain_error_message(_("Could not move/copy file. File not attached"));
644 }
645 }
646 /*
647 * I am using an include so as to elminiate an extra unnecessary
648 * click. If you can think of a better way, please implement it.
649 */
650 include_once('./addrbook_search_html.php');
651 } elseif (isset($attach)) {
652
653 // validate security token
654 //
655 sm_validate_security_token($submitted_token, -1, TRUE);
656
657 if ($compose_new_win == '1') {
658 compose_Header($color, $mailbox);
659 } else {
660 displayPageHeader($color, $mailbox);
661 }
662 if (saveAttachedFiles($session)) {
663 plain_error_message(_("Could not move/copy file. File not attached"));
664 }
665 showInputForm($session);
666 }
667 elseif (isset($sigappend)) {
668
669 // validate security token
670 //
671 sm_validate_security_token($submitted_token, -1, TRUE);
672
673 $signature = $idents[$identity]['signature'];
674
675 $body .= "\n\n".($prefix_sig==true? "-- \n":'').$signature;
676 if ($compose_new_win == '1') {
677 compose_Header($color, $mailbox);
678 } else {
679 displayPageHeader($color, $mailbox);
680 }
681 showInputForm($session);
682 } elseif (isset($do_delete)) {
683
684 // validate security token
685 //
686 sm_validate_security_token($submitted_token, -1, TRUE);
687
688 if ($compose_new_win == '1') {
689 compose_Header($color, $mailbox);
690 } else {
691 displayPageHeader($color, $mailbox);
692 }
693
694 if (isset($delete) && is_array($delete)) {
695 foreach($delete as $index) {
696 if (!empty($composeMessage->entities) && isset($composeMessage->entities[$index])) {
697 $composeMessage->entities[$index]->purgeAttachments();
698 // FIXME: one person reported that unset() didn't do anything at all here, so this is a work-around... but it triggers PHP notices if the unset() doesn't work, which should be fixed... but bigger question is if unset() doesn't work here, what about everywhere else? Anyway, uncomment this if you think you need it
699 //$composeMessage->entities[$index] = NULL;
700 unset ($composeMessage->entities[$index]);
701 }
702 }
703 $new_entities = array();
704 foreach ($composeMessage->entities as $entity) {
705 $new_entities[] = $entity;
706 }
707 $composeMessage->entities = $new_entities;
708 }
709 showInputForm($session);
710 } else {
711 /*
712 * This handles the default case as well as the error case
713 * (they had the same code) --> if (isset($smtpErrors))
714 */
715
716 if ($compose_new_win == '1') {
717 compose_Header($color, $mailbox);
718 } else {
719 displayPageHeader($color, $mailbox);
720 }
721
722 $newmail = true;
723
724 if (!isset($passed_ent_id)) {
725 $passed_ent_id = '';
726 }
727 if (!isset($passed_id)) {
728 $passed_id = '';
729 }
730 if (!isset($mailbox)) {
731 $mailbox = '';
732 }
733 if (!isset($action)) {
734 $action = '';
735 }
736
737 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
738
739 // forward as attachment - subject is in the message in session
740 //
741 if ($action == 'forward_as_attachment' && empty($values['subject']))
742 $subject = $composeMessage->rfc822_header->subject;
743
744 /* in case the origin is not read_body.php */
745 if (isset($send_to)) {
746 $values['send_to'] = $send_to;
747 }
748 if (isset($send_to_cc)) {
749 $values['send_to_cc'] = $send_to_cc;
750 }
751 if (isset($send_to_bcc)) {
752 $values['send_to_bcc'] = $send_to_bcc;
753 }
754 if (isset($subject)) {
755 $values['subject'] = $subject;
756 }
757 if (isset($mailprio)) {
758 $values['mailprio'] = $mailprio;
759 }
760 if (isset($orig_identity)) {
761 $values['identity'] = $orig_identity;
762 }
763 showInputForm($session, $values);
764 }
765
766 exit();
767
768 /**************** Only function definitions go below *************/
769
770 function getforwardSubject($subject)
771 {
772 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
773 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
774 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
775 $subject = '[Fwd: ' . $subject . ']';
776 }
777 return $subject;
778 }
779
780 /* This function is used when not sending or adding attachments */
781 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
782 global $editor_size, $default_use_priority, $body, $idents,
783 $use_signature, $data_dir, $username,
784 $key, $imapServerAddress, $imapPort, $imap_stream_options,
785 $composeMessage, $body_quote, $request_mdn, $request_dr,
786 $mdn_user_support, $languages, $squirrelmail_language,
787 $default_charset, $do_not_reply_to_self;
788
789 /*
790 * Set $default_charset to correspond with the user's selection
791 * of language interface. $default_charset global is not correct,
792 * if message is composed in new window.
793 */
794 set_my_charset();
795
796 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
797 $mailprio = 3;
798
799 if ($passed_id) {
800 $imapConnection = sqimap_login($username, false, $imapServerAddress,
801 $imapPort, 0, $imap_stream_options);
802
803 sqimap_mailbox_select($imapConnection, $mailbox);
804 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
805
806 $body = '';
807 if ($passed_ent_id) {
808 /* redefine the messsage in case of message/rfc822 */
809 $message = $message->getEntity($passed_ent_id);
810 /* message is an entity which contains the envelope and type0=message
811 * and type1=rfc822. The actual entities are childs from
812 * $message->entities[0]. That's where the encoding and is located
813 */
814
815 $entities = $message->entities[0]->findDisplayEntity
816 (array(), $alt_order = array('text/plain'));
817 if (!count($entities)) {
818 $entities = $message->entities[0]->findDisplayEntity
819 (array(), $alt_order = array('text/plain','text/html'));
820 }
821 $orig_header = $message->rfc822_header; /* here is the envelope located */
822 /* redefine the message for picking up the attachments */
823 $message = $message->entities[0];
824
825 } else {
826 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
827 if (!count($entities)) {
828 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
829 }
830 $orig_header = $message->rfc822_header;
831 }
832
833 $type0 = $message->type0;
834 $type1 = $message->type1;
835 foreach ($entities as $ent) {
836 $msg = $message->getEntity($ent);
837 $type0 = $msg->type0;
838 $type1 = $msg->type1;
839 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
840 $body_part_entity = $message->getEntity($ent);
841 $bodypart = decodeBody($unencoded_bodypart,
842 $body_part_entity->header->encoding);
843 if ($type1 == 'html') {
844 $bodypart = str_replace("\n", ' ', $bodypart);
845 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
846 $bodypart = str_replace(array('&nbsp;','&gt;','&lt;'),array(' ','>','<'),$bodypart);
847 $bodypart = strip_tags($bodypart);
848 }
849 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
850 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
851 if (mb_detect_encoding($bodypart) != 'ASCII') {
852 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
853 }
854 }
855
856 // charset encoding in compose form stuff
857 if (isset($body_part_entity->header->parameters['charset'])) {
858 $actual = $body_part_entity->header->parameters['charset'];
859 } else {
860 $actual = 'us-ascii';
861 }
862
863 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
864 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
865 }
866 // end of charset encoding in compose
867
868 $body .= $bodypart;
869 }
870 if ($default_use_priority) {
871 $mailprio = substr($orig_header->priority,0,1);
872 if (!$mailprio) {
873 $mailprio = 3;
874 }
875 } else {
876 $mailprio = '';
877 }
878
879 $from_o = $orig_header->from;
880 if (is_array($from_o)) {
881 if (isset($from_o[0])) {
882 $from_o = $from_o[0];
883 }
884 }
885 if (is_object($from_o)) {
886 $orig_from = $from_o->getAddress();
887 } else {
888 $orig_from = '';
889 }
890
891 $identities = array();
892 if (count($idents) > 1) {
893 foreach($idents as $nr=>$data) {
894 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
895 $identities[] = $enc_from_name;
896 }
897
898 $identity_match = $orig_header->findAddress($identities);
899 if ($identity_match !== FALSE) {
900 $identity = $identity_match;
901 }
902 }
903
904 switch ($action) {
905 case ('draft'):
906 $use_signature = FALSE;
907 $composeMessage->rfc822_header = $orig_header;
908 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
909 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
910 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
911 $send_from = $orig_header->getAddr_s('from');
912 $send_from_parts = new AddressStructure();
913 $send_from_parts = $orig_header->parseAddress($send_from);
914 $send_from_add = $send_from_parts->mailbox . '@' . $send_from_parts->host;
915 $identity = find_identity(array($send_from_add));
916 $subject = decodeHeader($orig_header->subject,false,false,true);
917
918 // Remember the receipt settings
919 $request_mdn = $mdn_user_support && !empty($orig_header->dnt) ? '1' : '0';
920 $request_dr = $mdn_user_support && !empty($orig_header->drnt) ? '1' : '0';
921
922 /* remember the references and in-reply-to headers in case of an reply */
923 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination (drafts folder?); is this possible?
924 $composeMessage->rfc822_header->more_headers['References'] = $orig_header->references;
925 $composeMessage->rfc822_header->more_headers['In-Reply-To'] = $orig_header->in_reply_to;
926 // rewrap the body to clean up quotations and line lengths
927 sqBodyWrap($body, $editor_size);
928 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
929 break;
930 case ('edit_as_new'):
931 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
932 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
933 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
934 $subject = decodeHeader($orig_header->subject,false,false,true);
935 $mailprio = $orig_header->priority;
936 $orig_from = '';
937 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
938 // rewrap the body to clean up quotations and line lengths
939 sqBodyWrap($body, $editor_size);
940 break;
941 case ('forward'):
942 $send_to = '';
943 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
944 $body = getforwardHeader($orig_header) . $body;
945 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
946 // forwarded message text should be as undisturbed as possible, so commenting out this call
947 // sqUnWordWrap($body);
948 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
949
950 //add a blank line after the forward headers
951 $body = "\n" . $body;
952 break;
953 case ('forward_as_attachment'):
954 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
955 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
956 $subject = decodeHeader($orig_header->subject,false,false,true);
957 $subject = str_replace('"', "'", $subject);
958 $subject = trim($subject);
959 if (substr(strtolower($subject), 0, 4) != 'fwd:') {
960 $subject = 'Fwd: ' . $subject;
961 }
962 $body = '';
963 break;
964 case ('reply_all'):
965 if(isset($orig_header->mail_followup_to) && $orig_header->mail_followup_to) {
966 $send_to = $orig_header->getAddr_s('mail_followup_to');
967 } else {
968 $send_to_cc = replyAllString($orig_header);
969 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
970 $send_to_cc = str_replace('""', '"', $send_to_cc);
971 }
972 case ('reply'):
973 // skip this if send_to was already set right above here
974 if(!$send_to) {
975 $send_to = $orig_header->reply_to;
976 if (is_array($send_to) && count($send_to)) {
977 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
978 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
979 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
980 } else {
981 $send_to = $orig_header->getAddr_s('from', ',', FALSE, TRUE);
982 }
983 }
984 $send_to = decodeHeader($send_to,false,false,true);
985 $send_to = str_replace('""', '"', $send_to);
986
987
988 // If user doesn't want replies to her own messages
989 // going back to herself (instead send again to the
990 // original recipient of the message being replied to),
991 // then iterate through identities, checking if the TO
992 // field is one of them (if the reply is to ourselves)
993 //
994 // Note we don't bother if the original message doesn't
995 // have anything in the TO field itself (because that's
996 // what we use if we change the recipient to be that of
997 // the previous message)
998 //
999 if ($do_not_reply_to_self && !empty($orig_header->to)) {
1000
1001 $orig_to = '';
1002
1003 foreach($idents as $id) {
1004
1005 if (!empty($id['email_address'])
1006 && strpos($send_to, $id['email_address']) !== FALSE) {
1007
1008 // if this is a reply-all, the original recipient
1009 // is already in the CC field, so we can just blank
1010 // the recipient (TO field) (as long as the CC field
1011 // isn't empty that is)... but then move the CC into
1012 // the TO, so TO isn't empty
1013 //
1014 if ($action == 'reply_all' && !empty($send_to_cc)) {
1015 $orig_to = $send_to_cc;
1016 $send_to_cc = '';
1017 break;
1018 }
1019
1020 $orig_to = $orig_header->to;
1021 if (is_array($orig_to) && count($orig_to)) {
1022 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1023 } else if (is_object($orig_to)) { /* unneccesarry, just for failsafe purpose */
1024 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1025 } else {
1026 $orig_to = '';
1027 }
1028 $orig_to = decodeHeader($orig_to,false,false,true);
1029 $orig_to = str_replace('""', '"', $orig_to);
1030
1031 break;
1032 }
1033 }
1034
1035 // if the reply was addressed back to ourselves,
1036 // we will send it to the TO of the previous message
1037 //
1038 if (!empty($orig_to)) {
1039
1040 $send_to = $orig_to;
1041
1042 // in this case, we also want to reset the FROM
1043 // identity as well (it should match the original
1044 // *FROM* header instead of TO or CC)
1045 //
1046 if (count($idents) > 1) {
1047 $identity = '';
1048 foreach($idents as $i => $id) {
1049 if (!empty($id['email_address'])
1050 && strpos($orig_from, $id['email_address']) !== FALSE) {
1051 $identity = $i;
1052 break;
1053 }
1054 }
1055 }
1056
1057 }
1058
1059 }
1060
1061
1062 $subject = decodeHeader($orig_header->subject,false,false,true);
1063 $subject = str_replace('"', "'", $subject);
1064 $subject = trim($subject);
1065 if (substr(strtolower($subject), 0, 3) != 're:') {
1066 $subject = 'Re: ' . $subject;
1067 }
1068 /* this corrects some wrapping/quoting problems on replies */
1069 $rewrap_body = explode("\n", $body);
1070 $from = (is_array($orig_header->from) && !empty($orig_header->from)) ? $orig_header->from[0] : $orig_header->from;
1071 $body = '';
1072 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
1073 foreach ($rewrap_body as $line) {
1074 if ($strip_sigs && rtrim($line, "\r\n") == '-- ') {
1075 break;
1076 }
1077 if (preg_match("/^(>+)/", $line, $matches)) {
1078 $gt = $matches[1];
1079 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
1080 } else {
1081 $body .= $body_quote . (!empty($body_quote) ? ' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ? ' ' : ''), rtrim($line)) . "\n";
1082 }
1083 }
1084
1085 //rewrap the body to clean up quotations and line lengths
1086 $body = sqBodyWrap ($body, $editor_size);
1087
1088 $body = getReplyCitation($from , $orig_header->date) . $body;
1089 $composeMessage->reply_rfc822_header = $orig_header;
1090
1091 break;
1092 default:
1093 break;
1094 }
1095 //FIXME: we used to register $compose_messages in the session here, but not any more - so do we still need the session_write_close() and sqimap_logout() here? We probably need the IMAP logout, but what about the session closure?
1096 session_write_close();
1097 sqimap_logout($imapConnection);
1098 }
1099 $ret = array( 'send_to' => $send_to,
1100 'send_to_cc' => $send_to_cc,
1101 'send_to_bcc' => $send_to_bcc,
1102 'subject' => $subject,
1103 'mailprio' => $mailprio,
1104 'body' => $body,
1105 'identity' => $identity );
1106
1107 return ($ret);
1108 } /* function newMail() */
1109
1110 /**
1111 * downloads attachments from original message, stores them in attachment directory and adds
1112 * them to composed message.
1113 * @param object $message
1114 * @param object $composeMessage
1115 * @param integer $passed_id
1116 * @param mixed $entities
1117 * @param mixed $imapConnection
1118 * @return object
1119 */
1120 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
1121 global $squirrelmail_language, $languages, $username, $attachment_dir;
1122
1123 if (!count($message->entities) ||
1124 ($message->type0 == 'message' && $message->type1 == 'rfc822')) {
1125 if ( !in_array($message->entity_id, $entities) && $message->entity_id) {
1126 switch ($message->type0) {
1127 case 'message':
1128 if ($message->type1 == 'rfc822') {
1129 $filename = $message->rfc822_header->subject;
1130 if ($filename == "") {
1131 $filename = "untitled-".$message->entity_id;
1132 }
1133 $filename .= '.eml';
1134 } else {
1135 $filename = $message->getFilename();
1136 }
1137 break;
1138 default:
1139 if (!$message->mime_header) { /* temporary hack */
1140 $message->mime_header = $message->header;
1141 }
1142 $filename = $message->getFilename();
1143 break;
1144 }
1145 //FIXME: added three args to the following, so as to set the last one to TRUE, to mimick a fix in 1.4.21 (#2994865), but didn't test this (note that in 1.4.21, the 2nd and 3rd args are FALSE, but here in this code, they weren't being specified (thus defaulting to TRUE), so I don't know if that means this code is outdated and should have been changed to FALSE, FALSE or if this code is completely different and the addition of the TRUE for arg #4 is wrong
1146 $filename = str_replace('&#32;', ' ', decodeHeader($filename, true, true, true));
1147 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1148 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1149 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1150 }
1151
1152 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1153 $localfilename = sq_get_attach_tempfile();
1154 $message->att_local_name = $localfilename;
1155
1156 $composeMessage->initAttachment($message->type0.'/'.$message->type1,$filename,
1157 $localfilename);
1158
1159 /* Write Attachment to file */
1160 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1161 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id, $message->header->encoding, $fp);
1162 fclose ($fp);
1163 }
1164 } else {
1165 for ($i=0, $entCount=count($message->entities); $i<$entCount;$i++) {
1166 $composeMessage=getAttachments($message->entities[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1167 }
1168 }
1169 return $composeMessage;
1170 }
1171
1172 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1173 $passed_ent_id='', $imapConnection) {
1174 if (!$passed_ent_id) {
1175 $body_a = sqimap_run_command($imapConnection,
1176 'FETCH '.$passed_id.' RFC822',
1177 TRUE, $response, $readmessage,
1178 TRUE);
1179 } else {
1180 $body_a = sqimap_run_command($imapConnection,
1181 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1182 TRUE, $response, $readmessage, TRUE);
1183 $message = $message->parent;
1184 }
1185 if ($response == 'OK') {
1186 $subject = encodeHeader($message->rfc822_header->subject);
1187 array_shift($body_a);
1188 array_pop($body_a);
1189 $body = implode('', $body_a) . "\r\n";
1190
1191 global $username, $attachment_dir;
1192 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1193 $localfilename = sq_get_attach_tempfile();
1194 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1195 fwrite ($fp, $body);
1196 fclose($fp);
1197 $composeMessage->initAttachment('message/rfc822',$subject.'.eml',
1198 $localfilename);
1199 }
1200 return $composeMessage;
1201 }
1202
1203 function showInputForm ($session, $values=false) {
1204 global $send_to, $send_to_cc, $send_to_bcc,
1205 $body, $startMessage, $action, $attachments,
1206 $use_signature, $signature, $prefix_sig, $session_expired,
1207 $editor_size, $editor_height, $subject, $newmail,
1208 $use_javascript_addr_book, $passed_id, $mailbox, $fwduid,
1209 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1210 $username, $data_dir, $identity, $idents, $delete_draft,
1211 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1212 $composeMessage, $composesession, $default_charset,
1213 $compose_onsubmit, $oTemplate, $oErrorHandler;
1214
1215 if (checkForJavascript()) {
1216 $onfocus = ' onfocus="alreadyFocused=true;"';
1217 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1218 }
1219 else {
1220 $onfocus = '';
1221 $onfocus_array = array();
1222 }
1223
1224 if ($values) {
1225 $send_to = $values['send_to'];
1226 $send_to_cc = $values['send_to_cc'];
1227 $send_to_bcc = $values['send_to_bcc'];
1228 $subject = $values['subject'];
1229 $mailprio = $values['mailprio'];
1230 $body = $values['body'];
1231 $identity = (int) $values['identity'];
1232 } else {
1233 $send_to = decodeHeader($send_to, true, false);
1234 $send_to_cc = decodeHeader($send_to_cc, true, false);
1235 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1236 }
1237
1238 if ($use_javascript_addr_book) {
1239 //FIXME: NO HTML IN CORE!
1240 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1241 'function open_abook() { ' . "\n" .
1242 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1243 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1244 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1245 ' nwin.opener = document.windows;' . "\n" .
1246 "}\n" .
1247 "// -->\n</script>\n\n";
1248 }
1249
1250 //FIXME: NO HTML IN CORE!
1251 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1252 'enctype="multipart/form-data"';
1253
1254 $compose_onsubmit = array();
1255 global $null;
1256 do_hook('compose_form', $null);
1257
1258 // Plugins that use compose_form hook can add an array entry
1259 // to the globally scoped $compose_onsubmit; we add them up
1260 // here and format the form tag's full onsubmit handler.
1261 // Each plugin should use "return false" if they need to
1262 // stop form submission but otherwise should NOT use "return
1263 // true" to give other plugins the chance to do what they need
1264 // to do; SquirrelMail itself will add the final "return true".
1265 // Onsubmit text is enclosed inside of double quotes, so plugins
1266 // need to quote accordingly.
1267 //
1268 // Also, plugin authors should try to retain compatibility with
1269 // the Compose Extras plugin by resetting its compose submit
1270 // counter when preventing form submit. Use this code:
1271 // if (your-code-here) { submit_count = 0; return false; }
1272 //
1273 if (checkForJavascript()) {
1274 if (empty($compose_onsubmit))
1275 $compose_onsubmit = array();
1276 else if (!is_array($compose_onsubmit))
1277 $compose_onsubmit = array($compose_onsubmit);
1278
1279 $onsubmit_text = '';
1280 foreach ($compose_onsubmit as $text) {
1281 $text = trim($text);
1282 if (!empty($text)) {
1283 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1284 $text .= '; ';
1285 $onsubmit_text .= $text;
1286 }
1287 }
1288
1289 if (!empty($onsubmit_text))
1290 //FIXME: DON'T ECHO HTML FROM CORE!
1291 echo ' onsubmit="' . $onsubmit_text . ' return true;"';
1292 }
1293
1294
1295 //FIXME: NO HTML IN CORE!
1296 echo ">\n";
1297
1298 //FIXME: DON'T ECHO HTML FROM CORE!
1299 echo addHidden('smtoken', sm_generate_security_token());
1300
1301 //FIXME: DON'T ECHO HTML FROM CORE!
1302 echo addHidden('startMessage', $startMessage);
1303
1304 if ($action == 'draft') {
1305 //FIXME: DON'T ECHO HTML FROM CORE!
1306 echo addHidden('delete_draft', $passed_id);
1307 }
1308 if (isset($delete_draft)) {
1309 //FIXME: DON'T ECHO HTML FROM CORE!
1310 echo addHidden('delete_draft', $delete_draft);
1311 }
1312 if (isset($session)) {
1313 //FIXME: DON'T ECHO HTML FROM CORE!
1314 echo addHidden('session', $session);
1315 }
1316
1317 if (isset($passed_id)) {
1318 //FIXME: DON'T ECHO HTML FROM CORE!
1319 echo addHidden('passed_id', $passed_id);
1320 }
1321
1322 if (isset($fwduid)) {
1323 //FIXME: DON'T ECHO HTML FROM CORE!
1324 echo addHidden('fwduid', $fwduid);
1325 }
1326
1327 if ($saved_draft == 'yes') {
1328 $oTemplate->assign('note', _("Your draft has been saved."));
1329 $oTemplate->display('note.tpl');
1330 }
1331 if ($mail_sent == 'yes') {
1332 $oTemplate->assign('note', _("Your mail has been sent."));
1333 $oTemplate->display('note.tpl');
1334 }
1335 if ($compose_new_win == '1') {
1336 $oTemplate->display('compose_newwin_close.tpl');
1337 }
1338
1339 if ($location_of_buttons == 'top') {
1340 //FIXME: DON'T ECHO HTML FROM CORE!
1341 showComposeButtonRow();
1342 }
1343
1344 $identities = array();
1345 if (count($idents) > 1) {
1346 reset($idents);
1347 foreach($idents as $id => $data) {
1348 $identities[$id] = $data['full_name'].' &lt;'.$data['email_address'].'&gt;';
1349 }
1350 }
1351
1352 $oTemplate->assign('identities', $identities);
1353 $oTemplate->assign('identity_def', $identity);
1354 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1355
1356 $oTemplate->assign('to', sm_encode_html_special_chars($send_to));
1357 $oTemplate->assign('cc', sm_encode_html_special_chars($send_to_cc));
1358 $oTemplate->assign('bcc', sm_encode_html_special_chars($send_to_bcc));
1359 $oTemplate->assign('subject', sm_encode_html_special_chars($subject));
1360
1361 // access keys...
1362 //
1363 global $accesskey_compose_to, $accesskey_compose_cc,
1364 $accesskey_compose_identity, $accesskey_compose_bcc,
1365 $accesskey_compose_subject;
1366 $oTemplate->assign('accesskey_compose_identity', $accesskey_compose_identity);
1367 $oTemplate->assign('accesskey_compose_to', $accesskey_compose_to);
1368 $oTemplate->assign('accesskey_compose_cc', $accesskey_compose_cc);
1369 $oTemplate->assign('accesskey_compose_bcc', $accesskey_compose_bcc);
1370 $oTemplate->assign('accesskey_compose_subject', $accesskey_compose_subject);
1371
1372 $oTemplate->display('compose_header.tpl');
1373
1374 if ($location_of_buttons == 'between') {
1375 //FIXME: DON'T ECHO HTML FROM CORE!
1376 showComposeButtonRow();
1377 }
1378
1379 $body_str = '';
1380 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1381 $signature = $idents[$identity]['signature'];
1382
1383 if ($sig_first == '1') {
1384 /*
1385 * FIXME: test is specific to ja_JP translation implementation.
1386 * This test might apply incorrect conversion to other translations, but
1387 * use of 7bit iso-2022-jp charset in other translations might have other
1388 * issues too.
1389 */
1390 if ($default_charset == 'iso-2022-jp') {
1391 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1392 } else {
1393 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1394 }
1395 $body_str .= "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1396 } else {
1397 $body_str = "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1398 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1399 if ($default_charset == 'iso-2022-jp') {
1400 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1401 } else {
1402 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1403 }
1404 }
1405 } else {
1406 $body_str = sm_encode_html_special_chars(decodeHeader($body,false,false));
1407 }
1408
1409 $oTemplate->assign('editor_width', (int)$editor_size);
1410 $oTemplate->assign('editor_height', (int)$editor_height);
1411 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1412 $oTemplate->assign('body', $body_str);
1413 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1414
1415 // access keys...
1416 //
1417 global $accesskey_compose_body, $accesskey_compose_send;
1418 $oTemplate->assign('accesskey_compose_body', $accesskey_compose_body);
1419 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1420
1421 $oTemplate->display ('compose_body.tpl');
1422
1423 if ($location_of_buttons == 'bottom') {
1424 //FIXME: DON'T ECHO HTML FROM CORE!
1425 showComposeButtonRow();
1426 }
1427
1428 // composeMessage can be empty when coming from a restored session
1429 if (is_object($composeMessage) && $composeMessage->entities)
1430 $attach_array = $composeMessage->entities;
1431 if ($session_expired && !empty($attachments) && is_array($attachments))
1432 $attach_array = $attachments;
1433
1434 /* This code is for attachments */
1435 if ((bool) ini_get('file_uploads')) {
1436
1437 /* Calculate the max size for an uploaded file.
1438 * This is advisory for the user because we can't actually prevent
1439 * people to upload too large files. */
1440 $sizes = array();
1441 /* php.ini vars which influence the max for uploads */
1442 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1443 foreach($configvars as $var) {
1444 /* skip 0 or empty values, and -1 which means 'unlimited' */
1445 if( $size = getByteSize(ini_get($var)) ) {
1446 if ( $size != '-1' ) {
1447 $sizes[] = $size;
1448 }
1449 }
1450 }
1451
1452 $attach = array();
1453 global $username, $attachment_dir;
1454 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1455 if (!empty($attach_array)) {
1456 foreach ($attach_array as $key => $attachment) {
1457 $attached_file = $attachment->att_local_name;
1458 if ($attachment->att_local_name || $attachment->body_part) {
1459 $attached_filename = decodeHeader($attachment->mime_header->getParameter('name'));
1460 $type = $attachment->mime_header->type0.'/'.
1461 $attachment->mime_header->type1;
1462
1463 $a = array();
1464 $a['Key'] = $key;
1465 $a['FileName'] = $attached_filename;
1466 $a['ContentType'] = $type;
1467 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1468 $attach[$key] = $a;
1469 }
1470 }
1471 }
1472
1473 $max = min($sizes);
1474 $oTemplate->assign('max_file_size', empty($max) ? -1 : $max);
1475 $oTemplate->assign('attachments', $attach);
1476
1477 // access keys...
1478 //
1479 global $accesskey_compose_attach_browse, $accesskey_compose_attach,
1480 $accesskey_compose_delete_attach;
1481 $oTemplate->assign('accesskey_compose_attach_browse', $accesskey_compose_attach_browse);
1482 $oTemplate->assign('accesskey_compose_attach', $accesskey_compose_attach);
1483 $oTemplate->assign('accesskey_compose_delete_attach', $accesskey_compose_delete_attach);
1484
1485 $oTemplate->display('compose_attachments.tpl');
1486 } // End of file_uploads if-block
1487 /* End of attachment code */
1488
1489 $oTemplate->assign('username', $username);
1490 $oTemplate->assign('smaction', $action);
1491 $oTemplate->assign('mailbox', $mailbox);
1492 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER);
1493 $oTemplate->assign('querystring', $queryString);
1494 $oTemplate->assign('composesession', $composesession);
1495 $oTemplate->assign('send_button_count', unique_widget_name('send', TRUE));
1496 if (!empty($attach_array))
1497 $oTemplate->assign('attachments', urlencode(serialize($attach_array)));
1498
1499 $aUserNotices = array();
1500
1501 // File uploads are off, so we didn't show that part of the form.
1502 // To avoid bogus bug reports, tell the user why.
1503 if (!(bool) ini_get('file_uploads')) {
1504 $aUserNotices[] = _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.");
1505 }
1506
1507 $oTemplate->assign('user_notices', $aUserNotices);
1508
1509 $oTemplate->display('compose_form_close.tpl');
1510
1511 if ($compose_new_win=='1') {
1512 $oTemplate->display('compose_newwin_close.tpl');
1513 }
1514
1515 $oErrorHandler->setDelayedErrors(false);
1516 $oTemplate->display('footer.tpl');
1517 }
1518
1519
1520 function showComposeButtonRow() {
1521 global $use_javascript_addr_book, $save_as_draft,
1522 $default_use_priority, $mailprio, $default_use_mdn,
1523 $request_mdn, $request_dr,
1524 $data_dir, $username;
1525
1526 global $oTemplate, $buffer_hook;
1527
1528 if ($default_use_priority) {
1529 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1530 $priority = isset($mailprio) ? $mailprio : 3;
1531 } else {
1532 $priorities = array();
1533 $priority = NULL;
1534 }
1535
1536 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1537
1538 $address_book_button_attribs = array();
1539 global $accesskey_compose_addresses;
1540 if ($accesskey_compose_addresses != 'NONE')
1541 $address_book_button_attribs['accesskey'] = $accesskey_compose_addresses;
1542 if ($use_javascript_addr_book && checkForJavascript()) {
1543 $addr_book = addButton(_("Addresses"),
1544 null,
1545 array_merge($address_book_button_attribs, array('onclick' => 'javascript:open_abook();')));
1546 } else {
1547 $addr_book = addSubmit(_("Addresses"), 'html_addr_search', $address_book_button_attribs);
1548 }
1549
1550 $oTemplate->assign('allow_priority', $default_use_priority==1);
1551 $oTemplate->assign('priority_list', $priorities);
1552 $oTemplate->assign('current_priority', $priority);
1553
1554 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1555 $oTemplate->assign('read_receipt', $request_mdn=='1');
1556 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1557
1558 $oTemplate->assign('drafts_enabled', $save_as_draft);
1559 $oTemplate->assign('address_book_button', $addr_book);
1560
1561 // access keys...
1562 //
1563 global $accesskey_compose_priority, $accesskey_compose_on_read,
1564 $accesskey_compose_on_delivery, $accesskey_compose_signature,
1565 $accesskey_compose_save_draft, $accesskey_compose_send;
1566 $oTemplate->assign('accesskey_compose_priority', $accesskey_compose_priority);
1567 $oTemplate->assign('accesskey_compose_on_read', $accesskey_compose_on_read);
1568 $oTemplate->assign('accesskey_compose_on_delivery', $accesskey_compose_on_delivery);
1569 $oTemplate->assign('accesskey_compose_signature', $accesskey_compose_signature);
1570 $oTemplate->assign('accesskey_compose_save_draft', $accesskey_compose_save_draft);
1571 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1572
1573 $oTemplate->display('compose_buttons.tpl');
1574 }
1575
1576 function checkInput ($show) {
1577 /*
1578 * I implemented the $show variable because the error messages
1579 * were getting sent before the page header. So, I check once
1580 * using $show=false, and then when i'm ready to display the error
1581 * message, show=true
1582 */
1583 global $send_to, $send_to_cc, $send_to_bcc;
1584
1585 $send_to = trim($send_to);
1586 $send_to_cc = trim($send_to_cc);
1587 $send_to_bcc = trim($send_to_bcc);
1588 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1589 if ($show) {
1590 plain_error_message(_("You have not filled in the \"To:\" field."));
1591 }
1592 return false;
1593 }
1594 return true;
1595 } /* function checkInput() */
1596
1597
1598 /* True if FAILURE */
1599 function saveAttachedFiles($session) {
1600 global $composeMessage, $username, $attachment_dir;
1601
1602 /* get out of here if no file was attached at all */
1603 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1604 return true;
1605 }
1606
1607 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1608 $localfilename = sq_get_attach_tempfile();
1609 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1610
1611 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1612 // if that doesn't work, try a simple rename.
1613 if (!sq_call_function_suppress_errors('move_uploaded_file', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1614 if (!sq_call_function_suppress_errors('rename', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1615 return true;
1616 }
1617 }
1618 $type = strtolower($_FILES['attachfile']['type']);
1619 $name = $_FILES['attachfile']['name'];
1620 $composeMessage->initAttachment($type, $name, $localfilename);
1621 }
1622
1623 /**
1624 * Parse strings such as "8M" and "2k" into their corresponding size in bytes
1625 *
1626 * NOTE: This function only recognizes the suffixes "K", "M" and "G"
1627 * and will probably break very easily if the given size is in
1628 * some completely different format.
1629 *
1630 * @param string $ini_size The input string to be converted
1631 *
1632 * @return mixed Boolean FALSE if something went wrong (the value passed in
1633 * was empty?, the suffix was not recognized?), otherwise, the
1634 * converted size in bytes (just the number (as an integer),
1635 * no unit identifier included)
1636 *
1637 */
1638 function getByteSize($ini_size) {
1639
1640 if(!$ini_size) {
1641 return FALSE;
1642 }
1643
1644 $ini_size = trim($ini_size);
1645
1646 // if there's some kind of letter at the end of the string we need to multiply.
1647 if(!is_numeric(substr($ini_size, -1))) {
1648
1649 switch(strtoupper(substr($ini_size, -1))) {
1650 case 'G':
1651 $bytesize = 1073741824;
1652 break;
1653 case 'M':
1654 $bytesize = 1048576;
1655 break;
1656 case 'K':
1657 $bytesize = 1024;
1658 break;
1659 default:
1660 return FALSE;
1661 }
1662
1663 return ($bytesize * (int)substr($ini_size, 0, -1));
1664 }
1665
1666 return $ini_size;
1667 }
1668
1669
1670 /**
1671 * temporary function to make use of the deliver class.
1672 * In the future the responsible backend should be automaticly loaded
1673 * and conf.pl should show a list of available backends.
1674 * The message also should be constructed by the message class.
1675 *
1676 * @param object $composeMessage The message being sent. Please note
1677 * that it is passed by reference and
1678 * will be returned modified, with additional
1679 * headers, such as Message-ID, Date, In-Reply-To,
1680 * References, and so forth.
1681 *
1682 * @return boolean FALSE if delivery failed, or some non-FALSE value
1683 * upon success.
1684 *
1685 */
1686 function deliverMessage(&$composeMessage, $draft=false) {
1687 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1688 $username, $identity, $idents, $data_dir,
1689 $request_mdn, $request_dr, $default_charset, $useSendmail,
1690 $domain, $action, $default_move_to_sent, $move_to_sent,
1691 $imapServerAddress, $imapPort, $imap_stream_options, $sent_folder, $key;
1692
1693 $rfc822_header = $composeMessage->rfc822_header;
1694
1695 $abook = addressbook_init(false, true);
1696 $rfc822_header->to = $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1697 $rfc822_header->cc = $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1698 $rfc822_header->bcc = $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1699 $rfc822_header->priority = $mailprio;
1700 $rfc822_header->subject = $subject;
1701
1702 $special_encoding='';
1703 if (strtolower($default_charset) == 'iso-2022-jp') {
1704 if (mb_detect_encoding($body) == 'ASCII') {
1705 $special_encoding = '8bit';
1706 } else {
1707 $body = mb_convert_encoding($body, 'JIS');
1708 $special_encoding = '7bit';
1709 }
1710 }
1711 $composeMessage->setBody($body);
1712
1713 $reply_to = '';
1714 $reply_to = $idents[$identity]['reply_to'];
1715 if ($reply_to && strpos($reply_to, '@') === FALSE)
1716 $reply_to .= '@' . $domain;
1717
1718 $from_addr = build_from_header($identity);
1719 $rfc822_header->from = $rfc822_header->parseAddress($from_addr,true);
1720 if ($reply_to) {
1721 $rfc822_header->reply_to = $rfc822_header->parseAddress($reply_to,true);
1722 }
1723 /* Receipt: On Read */
1724 if (isset($request_mdn) && $request_mdn) {
1725 $rfc822_header->dnt = $rfc822_header->parseAddress($from_addr,true);
1726 } elseif (isset($rfc822_header->dnt)) {
1727 unset($rfc822_header->dnt);
1728 }
1729
1730 /* Receipt: On Delivery */
1731 if (!empty($request_dr)) {
1732 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination; is this possible?
1733 $rfc822_header->more_headers['Return-Receipt-To'] = $from_addr;
1734 } elseif (isset($rfc822_header->more_headers['Return-Receipt-To'])) {
1735 unset($rfc822_header->more_headers['Return-Receipt-To']);
1736 }
1737
1738 /* multipart messages */
1739 if (count($composeMessage->entities)) {
1740 $message_body = new Message();
1741 $message_body->body_part = $composeMessage->body_part;
1742 $composeMessage->body_part = '';
1743 $mime_header = new MessageHeader;
1744 $mime_header->type0 = 'text';
1745 $mime_header->type1 = 'plain';
1746 if ($special_encoding) {
1747 $mime_header->encoding = $special_encoding;
1748 } else {
1749 $mime_header->encoding = '8bit';
1750 }
1751 if ($default_charset) {
1752 $mime_header->parameters['charset'] = $default_charset;
1753 }
1754 $message_body->mime_header = $mime_header;
1755 array_unshift($composeMessage->entities, $message_body);
1756 $content_type = new ContentType('multipart/mixed');
1757 } else {
1758 $content_type = new ContentType('text/plain');
1759 if ($special_encoding) {
1760 $rfc822_header->encoding = $special_encoding;
1761 } else {
1762 $rfc822_header->encoding = '8bit';
1763 }
1764 if ($default_charset) {
1765 $content_type->properties['charset']=$default_charset;
1766 }
1767 }
1768
1769 $rfc822_header->content_type = $content_type;
1770 $composeMessage->rfc822_header = $rfc822_header;
1771 if ($action == 'reply' || $action == 'reply_all') {
1772 global $passed_id, $passed_ent_id;
1773 $reply_id = $passed_id;
1774 $reply_ent_id = $passed_ent_id;
1775 } else {
1776 $reply_id = '';
1777 $reply_ent_id = '';
1778 }
1779
1780 /* Here you can modify the message structure just before we hand
1781 it over to deliver; plugin authors note that $composeMessage
1782 is sent and modified by reference since 1.5.2 */
1783 do_hook('compose_send', $composeMessage);
1784 //TODO: need to migrate to the following, but it neessitates changes in existing plugins, since the args are now an array
1785 //$temp = array(&$composeMessage, &$draft);
1786 //do_hook('compose_send', $temp);
1787
1788 if (!$useSendmail && !$draft) {
1789 require_once(SM_PATH . 'class/deliver/Deliver_SMTP.class.php');
1790 $deliver = new Deliver_SMTP();
1791 global $smtpServerAddress, $smtpPort, $smtp_stream_options, $pop_before_smtp, $pop_before_smtp_host;
1792
1793 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ? true : false;
1794 if (empty($pop_before_smtp_host)) $pop_before_smtp_host = $smtpServerAddress;
1795 get_smtp_user($user, $pass);
1796 $stream = $deliver->initStream($composeMessage,$domain,0,
1797 $smtpServerAddress, $smtpPort, $user, $pass, $authPop, $pop_before_smtp_host, $smtp_stream_options);
1798 } elseif (!$draft) {
1799 require_once(SM_PATH . 'class/deliver/Deliver_SendMail.class.php');
1800 global $sendmail_path, $sendmail_args;
1801 // Check for outdated configuration
1802 if (!isset($sendmail_args)) {
1803 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1804 $sendmail_args = '';
1805 } else {
1806 $sendmail_args = '-i -t';
1807 }
1808 }
1809 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1810 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1811 } elseif ($draft) {
1812 global $draft_folder;
1813 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1814 $imapPort, 0, $imap_stream_options);
1815 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1816 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1817 $imap_deliver = new Deliver_IMAP();
1818 $success = $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $draft_folder);
1819 sqimap_logout($imap_stream);
1820 unset ($imap_deliver);
1821 $composeMessage->purgeAttachments();
1822 return $success;
1823 } else {
1824 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), sm_encode_html_special_chars($draft_folder));
1825 plain_error_message($msg);
1826 return false;
1827 }
1828 }
1829 $success = false;
1830 if ($stream) {
1831 $deliver->mail($composeMessage, $stream, $reply_id, $reply_ent_id);
1832 $success = $deliver->finalizeStream($stream);
1833 }
1834 if (!$success) {
1835 // $deliver->dlv_server_msg is not always server's reply
1836 $msg = _("Message not sent.")
1837 . "<br />\n"
1838 . (isset($deliver->dlv_msg) ? $deliver->dlv_msg : '');
1839 if (!empty($deliver->dlv_server_msg)) {
1840 // add 'server replied' part only when it is not empty.
1841 // Delivery error can be generated by delivery class itself
1842 $msg .= '<br />'
1843 . _("Server replied:") . ' '
1844 . (isset($deliver->dlv_ret_nr) ? $deliver->dlv_ret_nr . ' ' : '')
1845 . nl2br(sm_encode_html_special_chars($deliver->dlv_server_msg));
1846 }
1847 plain_error_message($msg);
1848 } else {
1849 unset ($deliver);
1850 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0, $imap_stream_options);
1851
1852
1853 // mark as replied or forwarded if applicable
1854 //
1855 global $what, $iAccount, $startMessage, $passed_id, $fwduid, $mailbox;
1856
1857 if ($action=='reply' || $action=='reply_all' || $action=='forward' || $action=='forward_as_attachment') {
1858 require(SM_PATH . 'functions/mailbox_display.php');
1859 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array());
1860 switch($action) {
1861 case 'reply':
1862 case 'reply_all':
1863 // check if we are allowed to set the \\Answered flag
1864 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1865 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1866 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1867 /**
1868 * Only update the cached headers if the header is
1869 * cached.
1870 */
1871 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1872 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1873 }
1874 }
1875 }
1876 break;
1877 case 'forward':
1878 case 'forward_as_attachment':
1879 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1880 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1881 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1882
1883 // when forwarding as an attachment from the message
1884 // list, passed_id is not used, need to get UID(s)
1885 // from the query string
1886 //
1887 if (empty($passed_id) && !empty($fwduid))
1888 $ids = explode('_', $fwduid);
1889 else
1890 $ids = array($passed_id);
1891
1892 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, $ids, '$Forwarded', true, false);
1893
1894 foreach ($ids as $id) {
1895 if (isset($aUpdatedMsgs[$id]['FLAGS'])) {
1896 if (isset($aMailbox['MSG_HEADERS'][$id])) {
1897 $aMailbox['MSG_HEADERS'][$id]['FLAGS'] = $aMsg['FLAGS'];
1898 }
1899 }
1900 }
1901 }
1902 break;
1903 }
1904
1905 /**
1906 * Write mailbox with updated seen flag information back to cache.
1907 */
1908 if(isset($aUpdatedMsgs[$passed_id])) {
1909 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1910 sqsession_register($mailbox_cache,'mailbox_cache');
1911 }
1912
1913 }
1914
1915
1916 // move to sent folder
1917 //
1918 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1919 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1920 $svr_allow_sent = true;
1921 } else {
1922 $svr_allow_sent = false;
1923 }
1924
1925 if (isset($sent_folder) && (($sent_folder != '') || ($sent_folder != 'none'))
1926 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1927 $fld_sent = true;
1928 } else {
1929 $fld_sent = false;
1930 }
1931
1932 if ((isset($move_to_sent) && ($move_to_sent != 0)) || (!isset($move_to_sent))) {
1933 $lcl_allow_sent = true;
1934 } else {
1935 $lcl_allow_sent = false;
1936 }
1937
1938 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) || ($fld_sent && $lcl_allow_sent)) {
1939 if ($action == 'reply' || $action == 'reply_all') {
1940 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1941 if ($save_reply_with_orig) {
1942 $sent_folder = $mailbox;
1943 }
1944 }
1945 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1946 $imap_deliver = new Deliver_IMAP();
1947 $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $sent_folder);
1948 unset ($imap_deliver);
1949 }
1950
1951
1952 // final cleanup
1953 //
1954 $composeMessage->purgeAttachments();
1955 sqimap_logout($imap_stream);
1956
1957 }
1958 return $success;
1959 }