Forgot to globalize one variable in last commit
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 * compose.php
4 *
5 * This code sends a mail.
6 *
7 * There are 4 modes of operation:
8 * - Start new mail
9 * - Add an attachment
10 * - Send mail
11 * - Save As Draft
12 *
13 * @copyright &copy; 1999-2007 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
15 * @version $Id$
16 * @package squirrelmail
17 */
18
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
21
22 /**
23 * Include the SquirrelMail initialization file.
24 */
25 require('../include/init.php');
26
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
31 exit;
32 }
33
34 /* SquirrelMail required files. */
35 require_once(SM_PATH . 'functions/imap_general.php');
36 require_once(SM_PATH . 'functions/imap_messages.php');
37 require_once(SM_PATH . 'functions/date.php');
38 require_once(SM_PATH . 'functions/mime.php');
39 require_once(SM_PATH . 'functions/compose.php');
40 require_once(SM_PATH . 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH . 'functions/addressbook.php');
42 require_once(SM_PATH . 'functions/forms.php');
43 require_once(SM_PATH . 'functions/identity.php');
44
45 /* --------------------- Get globals ------------------------------------- */
46
47 /** SESSION VARS */
48 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
49
50 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION);
51 sqgetGlobalVar('composesession', $composesession, SQ_SESSION);
52 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION);
53
54 // compose_messages only useful in SESSION when a forward-as-attachment
55 // has been preconstructed for us and passed in via that mechanism; once
56 // we have it, we can clear it from the SESSION
57 sqsession_unregister('compose_messages');
58
59 // Turn on delayed error handling in case we wind up redirecting below
60 $oErrorHandler->setDelayedErrors(true);
61
62 /** SESSION/POST/GET VARS */
63 sqgetGlobalVar('send', $send, SQ_POST);
64 // Send can only be achieved by setting $_POST var. If Send = true then
65 // retrieve other form fields from $_POST
66 if (isset($send) && $send) {
67 $SQ_GLOBAL = SQ_POST;
68 } else {
69 $SQ_GLOBAL = SQ_FORM;
70 }
71 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
72 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
73 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
74 $identity=0;
75 }
76 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
77 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
78 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
79 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
80 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
81 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
82 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
83 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
84 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
85 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
86 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL);
87 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
88
89 sqgetGlobalVar('attach',$attach, SQ_POST);
90 sqgetGlobalVar('draft',$draft, SQ_POST);
91 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
92 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
93 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM);
94
95 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
96 $delete_draft = (int)$delete_draft;
97 }
98
99 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
100 $startMessage = (int)$startMessage;
101 } else {
102 $startMessage = 1;
103 }
104
105
106 /** POST VARS */
107 sqgetGlobalVar('sigappend', $sigappend, SQ_POST);
108 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST);
109 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST);
110 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST);
111 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST);
112 sqgetGlobalVar('do_delete', $do_delete, SQ_POST);
113 sqgetGlobalVar('delete', $delete, SQ_POST);
114 sqgetGlobalVar('attachments', $attachments, SQ_POST);
115 if ( sqgetGlobalVar('return', $temp, SQ_POST) ) {
116 $html_addr_search_done = 'Use Addresses';
117 }
118
119 /** GET VARS */
120 if ( sqgetGlobalVar('account', $temp, SQ_GET) ) {
121 $iAccount = (int) $temp;
122 } else {
123 $iAccount = 0;
124 }
125
126
127 /** get smaction */
128 if ( !sqgetGlobalVar('smaction',$action) )
129 {
130 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
131 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
132 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
133 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
134 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
135 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
136 }
137
138 /**
139 * Here we decode the data passed in from mailto.php.
140 */
141 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET) ) {
142 $trtable = array('to' => 'send_to',
143 'cc' => 'send_to_cc',
144 'bcc' => 'send_to_bcc',
145 'body' => 'body',
146 'subject' => 'subject');
147 $mtdata = unserialize($mailtodata);
148
149 foreach ($trtable as $f => $t) {
150 if ( !empty($mtdata[$f]) ) {
151 $$t = $mtdata[$f];
152 }
153 }
154 unset($mailtodata,$mtdata, $trtable);
155 }
156
157 /* Location (For HTTP 1.1 Header("Location: ...") redirects) */
158 $location = get_location();
159 /* Identities (fetch only once) */
160 $idents = get_identities();
161
162 /* --------------------- Specific Functions ------------------------------ */
163
164 function replyAllString($header) {
165 global $include_self_reply_all, $idents;
166 $excl_ar = array();
167 /**
168 * 1) Remove the addresses we'll be sending the message 'to'
169 */
170 if (isset($header->reply_to)) {
171 $excl_ar = $header->getAddr_a('reply_to');
172 }
173 /**
174 * 2) Remove our identities from the CC list (they still can be in the
175 * TO list) only if $include_self_reply_all is turned off
176 */
177 if (!$include_self_reply_all) {
178 foreach($idents as $id) {
179 $excl_ar[strtolower(trim($id['email_address']))] = '';
180 }
181 }
182
183 /**
184 * 3) get the addresses.
185 */
186 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
187
188 /**
189 * 4) generate the string.
190 */
191 $url_replytoallcc = '';
192 foreach( $url_replytoall_ar as $email => $personal) {
193 if ($personal) {
194 // if personal name contains address separator then surround
195 // the personal name with double quotes.
196 if (strpos($personal,',') !== false) {
197 $personal = '"'.$personal.'"';
198 }
199 $url_replytoallcc .= ", $personal <$email>";
200 } else {
201 $url_replytoallcc .= ', '. $email;
202 }
203 }
204 $url_replytoallcc = substr($url_replytoallcc,2);
205
206 return $url_replytoallcc;
207 }
208
209 /**
210 * creates top line in reply citations
211 *
212 * Line style depends on user preferences.
213 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
214 * @param object $orig_from From: header object.
215 * @param integer $orig_date email's timestamp
216 * @return string reply citation
217 */
218 function getReplyCitation($orig_from, $orig_date) {
219 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
220
221 if (!is_object($orig_from)) {
222 $sOrig_from = '';
223 } else {
224 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
225 }
226
227 /* First, return an empty string when no citation style selected. */
228 if (($reply_citation_style == '') || ($reply_citation_style == 'none')) {
229 return '';
230 }
231
232 /* Make sure our final value isn't an empty string. */
233 if ($sOrig_from == '') {
234 return '';
235 }
236
237 /* Otherwise, try to select the desired citation style. */
238 switch ($reply_citation_style) {
239 case 'author_said':
240 /**
241 * To translators: %s is for author's name
242 */
243 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
244 break;
245 case 'quote_who':
246 $start = '<quote who="';
247 $end = '">';
248 $full_reply_citation = $start . $sOrig_from . $end;
249 break;
250 case 'date_time_author':
251 /**
252 * To translators:
253 * first %s is for date string, second %s is for author's name. Date uses
254 * formating from "D, F j, Y g:i a" and "D, F j, Y H:i" translations.
255 * Example string:
256 * "On Sat, December 24, 2004 23:59, Santa wrote:"
257 * If you have to put author's name in front of date string, check comments about
258 * argument swapping at http://www.php.net/sprintf
259 */
260 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
261 break;
262 case 'user-defined':
263 $start = $reply_citation_start .
264 ($reply_citation_start == '' ? '' : ' ');
265 $end = $reply_citation_end;
266 $full_reply_citation = $start . $sOrig_from . $end;
267 break;
268 default:
269 return '';
270 }
271
272 /* Add line feed and return the citation string. */
273 return ($full_reply_citation . "\n");
274 }
275
276 /**
277 * Creates header fields in forwarded email body
278 *
279 * $default_charset global must be set correctly before you call this function.
280 * @param object $orig_header
281 * @return $string
282 */
283 function getforwardHeader($orig_header) {
284 global $editor_size, $default_charset;
285
286 // using own strlen function in order to detect correct string length
287 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
288 _("From") => sq_strlen(_("From"),$default_charset),
289 _("Date") => sq_strlen(_("Date"),$default_charset),
290 _("To") => sq_strlen(_("To"),$default_charset),
291 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
292 $maxsize = max($display);
293 $indent = str_pad('',$maxsize+2);
294 foreach($display as $key => $val) {
295 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
296 }
297 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
298 $from = str_replace('&nbsp;',' ',$from);
299 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
300 $to = str_replace('&nbsp;',' ',$to);
301 $subject = decodeHeader($orig_header->subject,false,false,true);
302 $subject = str_replace('&nbsp;',' ',$subject);
303
304 // using own str_pad function in order to create correct string pad
305 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH,$default_charset) .
306 "\n". $display[_("Subject")] . $subject . "\n" .
307 $display[_("From")] . $from . "\n" .
308 $display[_("Date")] . getLongDateString( $orig_header->date, $orig_header->date_unparsed ). "\n" .
309 $display[_("To")] . $to . "\n";
310 if ($orig_header->cc != array() && $orig_header->cc !='') {
311 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
312 $cc = str_replace('&nbsp;',' ',$cc);
313 $bodyTop .= $display[_("Cc")] .$cc . "\n";
314 }
315 $bodyTop .= str_pad('', $editor_size -2 , '-') .
316 "\n\n";
317 return $bodyTop;
318 }
319 /* ----------------------------------------------------------------------- */
320
321 /*
322 * If the session is expired during a post this restores the compose session
323 * vars.
324 */
325 $session_expired = false;
326 if (sqsession_is_registered('session_expired_post')) {
327 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION);
328 /*
329 * extra check for username so we don't display previous post data from
330 * another user during this session.
331 */
332 if ($session_expired_post['username'] != $username) {
333 unset($session_expired_post);
334 sqsession_unregister('session_expired_post');
335 session_write_close();
336 } else {
337 // these are the vars that we can set from the expired composed session
338 $compo_var_list = array ('send_to', 'send_to_cc', 'body',
339 'startMessage', 'passed_body', 'use_signature', 'signature',
340 'subject', 'newmail', 'send_to_bcc', 'passed_id', 'mailbox',
341 'from_htmladdr_search', 'identity', 'draft_id', 'delete_draft',
342 'mailprio', 'edit_as_new', 'attachments', 'composesession',
343 'request_mdn', 'request_dr');
344
345 foreach ($compo_var_list as $var) {
346 if ( isset($session_expired_post[$var]) && !isset($$var) ) {
347 $$var = $session_expired_post[$var];
348 }
349 }
350
351 if (!empty($attachments))
352 $attachments = unserialize($attachments);
353
354 sqsession_register($composesession,'composesession');
355
356 if (isset($send)) {
357 unset($send);
358 }
359 $session_expired = true;
360 }
361 unset($session_expired_post);
362 sqsession_unregister('session_expired_post');
363 session_write_close();
364 if (!isset($mailbox)) {
365 $mailbox = '';
366 }
367 if ($compose_new_win == '1') {
368 compose_Header($color, $mailbox);
369 } else {
370 $sHeaderJs = (isset($sHeaderJs)) ? $sHeaderJs : '';
371 if (strpos($action, 'reply') !== false && $reply_focus) {
372 $sBodyTagJs = 'onload="checkForm(\''.$replyfocus.'\');"';
373 } else {
374 $sBodyTagJs = 'onload="checkForm();"';
375 }
376 displayPageHeader($color, $mailbox,$sHeaderJs,$sBodyTagJs);
377 }
378 showInputForm($session, false);
379 exit();
380 }
381
382 if (!isset($composesession)) {
383 $composesession = 0;
384 sqsession_register(0,'composesession');
385 } else {
386 $composesession = (int)$composesession;
387 }
388
389 if (!isset($session) || (isset($newmessage) && $newmessage)) {
390 sqsession_unregister('composesession');
391 $session = "$composesession" +1;
392 $composesession = $session;
393 sqsession_register($composesession,'composesession');
394 }
395 if (!isset($compose_messages)) {
396 $compose_messages = array();
397 }
398
399 if (!isset($compose_messages[$session]) || ($compose_messages[$session] == NULL)) {
400 $composeMessage = new Message();
401 $rfc822_header = new Rfc822Header();
402 $composeMessage->rfc822_header = $rfc822_header;
403 $composeMessage->reply_rfc822_header = '';
404 $compose_messages[$session] = $composeMessage;
405 } else {
406 $composeMessage=$compose_messages[$session];
407 }
408
409 // re-add attachments that were already in this message
410 // FIXME: note that technically this is very bad form -
411 // should never directly manipulate an object like this
412 if (!empty($attachments)) {
413 $attachments = unserialize($attachments);
414 if (!empty($attachments) && is_array($attachments))
415 $composeMessage->entities = $attachments;
416 }
417
418 if (empty($mailbox)) {
419 $mailbox = 'INBOX';
420 }
421
422 if ($draft) {
423 /*
424 * Set $default_charset to correspond with the user's selection
425 * of language interface.
426 */
427 set_my_charset();
428 $composeMessage = $compose_messages[$session];
429 if (! deliverMessage($composeMessage, true)) {
430 showInputForm($session);
431 exit();
432 } else {
433 $draft_message = _("Draft Email Saved");
434 /* If this is a resumed draft, then delete the original */
435 if(isset($delete_draft)) {
436 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false);
437 sqimap_mailbox_select($imap_stream, $draft_folder);
438 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
439 // in current implementation of sqimap_msgs_list_flag() single message id can
440 // be submitted as string. docs state that it should be array.
441 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
442 if ($auto_expunge) {
443 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
444 }
445 sqimap_logout($imap_stream);
446 }
447
448 $oErrorHandler->saveDelayedErrors();
449 session_write_close();
450
451 if ($compose_new_win == '1') {
452 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
453 Header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
454 } else {
455 //FIXME: DON'T ECHO HTML FROM CORE!
456 echo ' <br><br><div style="text-align: center;"><a href="' . $location
457 . '/compose.php?saved_sent=yes&amp;session=' . $composesession . '">'
458 . _("Return") . '</a></div>';
459 }
460 exit();
461 } else {
462 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
463 Header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
464 "&startMessage=1&note=".urlencode($draft_message));
465 } else {
466 //FIXME: DON'T ECHO HTML FROM CORE!
467 echo ' <br><br><div style="text-align: center;"><a href="' . $location
468 . '/right_main.php?mailbox=' . urlencode($draft_folder)
469 . '&amp;startMessage=1&amp;note=' . urlencode($draft_message) .'">'
470 . _("Return") . '</a></div>';
471 }
472 exit();
473 }
474 }
475 }
476
477 if ($send) {
478 if (isset($_FILES['attachfile']) &&
479 $_FILES['attachfile']['tmp_name'] &&
480 $_FILES['attachfile']['tmp_name'] != 'none') {
481 $AttachFailure = saveAttachedFiles($session);
482 }
483 if (checkInput(false) && !isset($AttachFailure)) {
484 if ($mailbox == "All Folders") {
485 /* We entered compose via the search results page */
486 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
487 }
488 $urlMailbox = urlencode($mailbox);
489 if (! isset($passed_id)) {
490 $passed_id = 0;
491 }
492 /**
493 * Set $default_charset to correspond with the user's selection
494 * of language interface.
495 */
496 set_my_charset();
497 /**
498 * This is to change all newlines to \n
499 * We'll change them to \r\n later (in the sendMessage function)
500 */
501 $body = str_replace("\r\n", "\n", $body);
502 $body = str_replace("\r", "\n", $body);
503
504 /**
505 * Rewrap $body so that no line is bigger than $editor_size
506 */
507 $body = explode("\n", $body);
508 $newBody = '';
509 foreach ($body as $line) {
510 if( $line <> '-- ' ) {
511 $line = rtrim($line);
512 }
513 if (sq_strlen($line, $default_charset) <= $editor_size + 1) {
514 $newBody .= $line . "\n";
515 } else {
516 sqWordWrap($line, $editor_size, $default_charset);
517 $newBody .= $line . "\n";
518
519 }
520
521 }
522 $body = $newBody;
523
524 $composeMessage=$compose_messages[$session];
525
526 $Result = deliverMessage($composeMessage);
527
528 if ($Result)
529 $mail_sent = 'yes';
530 else
531 $mail_sent = 'no';
532
533 // NOTE: this hook changed in 1.5.2 from sending $Result and
534 // $composeMessage as args #2 and #3 to being in an array
535 // under arg #2
536 do_hook('compose_send_after', $temp=array(&$Result, &$composeMessage, &$mail_sent));
537 if (! $Result) {
538 showInputForm($session);
539 exit();
540 }
541
542 /* if it is resumed draft, delete draft message */
543 if ( isset($delete_draft)) {
544 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false);
545 sqimap_mailbox_select($imap_stream, $draft_folder);
546 // bypass_trash=true because message should be saved when deliverMessage() returns true.
547 // in current implementation of sqimap_msgs_list_flag() single message id can
548 // be submitted as string. docs state that it should be array.
549 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
550 if ($auto_expunge) {
551 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
552 }
553 sqimap_logout($imap_stream);
554 }
555 /*
556 * Store the error array in the session because they will be lost on a redirect
557 */
558 $oErrorHandler->saveDelayedErrors();
559 session_write_close();
560
561 if ($compose_new_win == '1') {
562 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
563 Header("Location: $location/compose.php?mail_sent=$mail_sent");
564 } else {
565 //FIXME: DON'T ECHO HTML FROM CORE!
566 echo ' <br><br><div style="text-align: center;"><a href="' . $location
567 . '/compose.php?mail_sent=$mail_sent">'
568 . _("Return") . '</a></div>';
569 }
570 exit();
571 } else {
572 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
573 Header("Location: $location/right_main.php?mailbox=$urlMailbox".
574 "&startMessage=$startMessage&mail_sent=$mail_sent");
575 } else {
576 //FIXME: DON'T ECHO HTML FROM CORE!
577 echo ' <br><br><div style="text-align: center;"><a href="' . $location
578 . "/right_main.php?mailbox=$urlMailbox"
579 . "&amp;startMessage=$startMessage&amp;mail_sent=$mail_sent\">"
580 . _("Return") . '</a></div>';
581 }
582 exit();
583 }
584 } else {
585 if ($compose_new_win == '1') {
586 compose_Header($color, $mailbox);
587 }
588 else {
589 displayPageHeader($color, $mailbox);
590 }
591 if (isset($AttachFailure)) {
592 plain_error_message(_("Could not move/copy file. File not attached"),
593 $color);
594 }
595 checkInput(true);
596 showInputForm($session);
597 /* sqimap_logout($imapConnection); */
598 }
599 } elseif (isset($html_addr_search_done)) {
600 if ($compose_new_win == '1') {
601 compose_Header($color, $mailbox);
602 }
603 else {
604 displayPageHeader($color, $mailbox);
605 }
606
607 if (isset($send_to_search) && is_array($send_to_search)) {
608 foreach ($send_to_search as $k => $v) {
609 if (substr($k, 0, 1) == 'T') {
610 if ($send_to) {
611 $send_to .= ', ';
612 }
613 $send_to .= $v;
614 }
615 elseif (substr($k, 0, 1) == 'C') {
616 if ($send_to_cc) {
617 $send_to_cc .= ', ';
618 }
619 $send_to_cc .= $v;
620 }
621 elseif (substr($k, 0, 1) == 'B') {
622 if ($send_to_bcc) {
623 $send_to_bcc .= ', ';
624 }
625 $send_to_bcc .= $v;
626 }
627 }
628 }
629 showInputForm($session);
630 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
631 if (isset($_FILES['attachfile']) &&
632 $_FILES['attachfile']['tmp_name'] &&
633 $_FILES['attachfile']['tmp_name'] != 'none') {
634 if(saveAttachedFiles($session)) {
635 plain_error_message(_("Could not move/copy file. File not attached"));
636 }
637 }
638 /*
639 * I am using an include so as to elminiate an extra unnecessary
640 * click. If you can think of a better way, please implement it.
641 */
642 include_once('./addrbook_search_html.php');
643 } elseif (isset($attach)) {
644 if ($compose_new_win == '1') {
645 compose_Header($color, $mailbox);
646 } else {
647 displayPageHeader($color, $mailbox);
648 }
649 if (saveAttachedFiles($session)) {
650 plain_error_message(_("Could not move/copy file. File not attached"));
651 }
652 showInputForm($session);
653 }
654 elseif (isset($sigappend)) {
655 $signature = $idents[$identity]['signature'];
656
657 $body .= "\n\n".($prefix_sig==true? "-- \n":'').$signature;
658 if ($compose_new_win == '1') {
659 compose_Header($color, $mailbox);
660 } else {
661 displayPageHeader($color, $mailbox);
662 }
663 showInputForm($session);
664 } elseif (isset($do_delete)) {
665 if ($compose_new_win == '1') {
666 compose_Header($color, $mailbox);
667 } else {
668 displayPageHeader($color, $mailbox);
669 }
670
671 if (isset($delete) && is_array($delete)) {
672 $composeMessage = $compose_messages[$session];
673 foreach($delete as $index) {
674 if (!empty($composeMessage->entities) && isset($composeMessage->entities[$index])) {
675 $composeMessage->entities[$index]->purgeAttachments();
676 unset ($composeMessage->entities[$index]);
677 }
678 }
679 $new_entities = array();
680 foreach ($composeMessage->entities as $entity) {
681 $new_entities[] = $entity;
682 }
683 $composeMessage->entities = $new_entities;
684 $compose_messages[$session] = $composeMessage;
685 }
686 showInputForm($session);
687 } else {
688 /*
689 * This handles the default case as well as the error case
690 * (they had the same code) --> if (isset($smtpErrors))
691 */
692
693 if ($compose_new_win == '1') {
694 compose_Header($color, $mailbox);
695 } else {
696 displayPageHeader($color, $mailbox);
697 }
698
699 $newmail = true;
700
701 if (!isset($passed_ent_id)) {
702 $passed_ent_id = '';
703 }
704 if (!isset($passed_id)) {
705 $passed_id = '';
706 }
707 if (!isset($mailbox)) {
708 $mailbox = '';
709 }
710 if (!isset($action)) {
711 $action = '';
712 }
713
714 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
715
716 /* in case the origin is not read_body.php */
717 if (isset($send_to)) {
718 $values['send_to'] = $send_to;
719 }
720 if (isset($send_to_cc)) {
721 $values['send_to_cc'] = $send_to_cc;
722 }
723 if (isset($send_to_bcc)) {
724 $values['send_to_bcc'] = $send_to_bcc;
725 }
726 if (isset($subject)) {
727 $values['subject'] = $subject;
728 }
729 showInputForm($session, $values);
730 }
731
732 exit();
733
734 /**************** Only function definitions go below *************/
735
736 function getforwardSubject($subject)
737 {
738 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
739 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
740 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
741 $subject = '[Fwd: ' . $subject . ']';
742 }
743 return $subject;
744 }
745
746 /* This function is used when not sending or adding attachments */
747 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
748 global $editor_size, $default_use_priority, $body, $idents,
749 $use_signature, $data_dir, $username,
750 $key, $imapServerAddress, $imapPort, $compose_messages,
751 $composeMessage, $body_quote, $request_mdn, $request_dr,
752 $mdn_user_support, $languages, $squirrelmail_language,
753 $default_charset;
754
755 /*
756 * Set $default_charset to correspond with the user's selection
757 * of language interface. $default_charset global is not correct,
758 * if message is composed in new window.
759 */
760 set_my_charset();
761
762 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
763 $mailprio = 3;
764
765 if ($passed_id) {
766 $imapConnection = sqimap_login($username, false, $imapServerAddress,
767 $imapPort, 0);
768
769 sqimap_mailbox_select($imapConnection, $mailbox);
770 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
771
772 $body = '';
773 if ($passed_ent_id) {
774 /* redefine the messsage in case of message/rfc822 */
775 $message = $message->getEntity($passed_ent_id);
776 /* message is an entity which contains the envelope and type0=message
777 * and type1=rfc822. The actual entities are childs from
778 * $message->entities[0]. That's where the encoding and is located
779 */
780
781 $entities = $message->entities[0]->findDisplayEntity
782 (array(), $alt_order = array('text/plain'));
783 if (!count($entities)) {
784 $entities = $message->entities[0]->findDisplayEntity
785 (array(), $alt_order = array('text/plain','text/html'));
786 }
787 $orig_header = $message->rfc822_header; /* here is the envelope located */
788 /* redefine the message for picking up the attachments */
789 $message = $message->entities[0];
790
791 } else {
792 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
793 if (!count($entities)) {
794 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
795 }
796 $orig_header = $message->rfc822_header;
797 }
798
799 $type0 = $message->type0;
800 $type1 = $message->type1;
801 foreach ($entities as $ent) {
802 $msg = $message->getEntity($ent);
803 $type0 = $msg->type0;
804 $type1 = $msg->type1;
805 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
806 $body_part_entity = $message->getEntity($ent);
807 $bodypart = decodeBody($unencoded_bodypart,
808 $body_part_entity->header->encoding);
809 if ($type1 == 'html') {
810 $bodypart = str_replace("\n", ' ', $bodypart);
811 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
812 $bodypart = str_replace(array('&nbsp;','&gt;','&lt;'),array(' ','>','<'),$bodypart);
813 $bodypart = strip_tags($bodypart);
814 }
815 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
816 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
817 if (mb_detect_encoding($bodypart) != 'ASCII') {
818 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
819 }
820 }
821
822 // charset encoding in compose form stuff
823 if (isset($body_part_entity->header->parameters['charset'])) {
824 $actual = $body_part_entity->header->parameters['charset'];
825 } else {
826 $actual = 'us-ascii';
827 }
828
829 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
830 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
831 }
832 // end of charset encoding in compose
833
834 $body .= $bodypart;
835 }
836 if ($default_use_priority) {
837 $mailprio = substr($orig_header->priority,0,1);
838 if (!$mailprio) {
839 $mailprio = 3;
840 }
841 } else {
842 $mailprio = '';
843 }
844
845 $from_o = $orig_header->from;
846 if (is_array($from_o)) {
847 if (isset($from_o[0])) {
848 $from_o = $from_o[0];
849 }
850 }
851 if (is_object($from_o)) {
852 $orig_from = $from_o->getAddress();
853 } else {
854 $orig_from = '';
855 }
856
857 $identities = array();
858 if (count($idents) > 1) {
859 foreach($idents as $nr=>$data) {
860 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
861 if($enc_from_name == $orig_from) {
862 $identity = $nr;
863 break;
864 }
865 $identities[] = $enc_from_name;
866 }
867
868 $identity_match = $orig_header->findAddress($identities);
869 if ($identity_match) {
870 $identity = $identity_match;
871 }
872 }
873
874 switch ($action) {
875 case ('draft'):
876 $use_signature = FALSE;
877 $composeMessage->rfc822_header = $orig_header;
878 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
879 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
880 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
881 $send_from = $orig_header->getAddr_s('from');
882 $send_from_parts = new AddressStructure();
883 $send_from_parts = $orig_header->parseAddress($send_from);
884 $send_from_add = $send_from_parts->mailbox . '@' . $send_from_parts->host;
885 $identity = find_identity(array($send_from_add));
886 $subject = decodeHeader($orig_header->subject,false,false,true);
887
888 // Remember the receipt settings
889 $request_mdn = $mdn_user_support && !empty($orig_header->dnt) ? '1' : '0';
890 $request_dr = $mdn_user_support && !empty($orig_header->drnt) ? '1' : '0';
891
892 /* remember the references and in-reply-to headers in case of an reply */
893 $composeMessage->rfc822_header->more_headers['References'] = $orig_header->references;
894 $composeMessage->rfc822_header->more_headers['In-Reply-To'] = $orig_header->in_reply_to;
895 // rewrap the body to clean up quotations and line lengths
896 sqBodyWrap($body, $editor_size);
897 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
898 break;
899 case ('edit_as_new'):
900 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
901 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
902 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
903 $subject = decodeHeader($orig_header->subject,false,false,true);
904 $mailprio = $orig_header->priority;
905 $orig_from = '';
906 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
907 // rewrap the body to clean up quotations and line lengths
908 sqBodyWrap($body, $editor_size);
909 break;
910 case ('forward'):
911 $send_to = '';
912 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
913 $body = getforwardHeader($orig_header) . $body;
914 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
915 // forwarded message text should be as undisturbed as possible, so commenting out this call
916 // sqUnWordWrap($body);
917 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
918
919 //add a blank line after the forward headers
920 $body = "\n" . $body;
921 break;
922 case ('forward_as_attachment'):
923 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
924 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
925 $body = '';
926 break;
927 case ('reply_all'):
928 if(isset($orig_header->mail_followup_to) && $orig_header->mail_followup_to) {
929 $send_to = $orig_header->getAddr_s('mail_followup_to');
930 } else {
931 $send_to_cc = replyAllString($orig_header);
932 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
933 }
934 case ('reply'):
935 // skip this if send_to was already set right above here
936 if(!$send_to) {
937 $send_to = $orig_header->reply_to;
938 if (is_array($send_to) && count($send_to)) {
939 $send_to = $orig_header->getAddr_s('reply_to');
940 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
941 $send_to = $orig_header->getAddr_s('reply_to');
942 } else {
943 $send_to = $orig_header->getAddr_s('from');
944 }
945 }
946 $send_to = decodeHeader($send_to,false,false,true);
947 $subject = decodeHeader($orig_header->subject,false,false,true);
948 $subject = str_replace('"', "'", $subject);
949 $subject = trim($subject);
950 if (substr(strtolower($subject), 0, 3) != 're:') {
951 $subject = 'Re: ' . $subject;
952 }
953 /* this corrects some wrapping/quoting problems on replies */
954 $rewrap_body = explode("\n", $body);
955 $from = (is_array($orig_header->from) && !empty($orig_header->from)) ? $orig_header->from[0] : $orig_header->from;
956 $body = '';
957 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
958 foreach ($rewrap_body as $line) {
959 if ($strip_sigs && substr($line,0,3) == '-- ') {
960 break;
961 }
962 if (preg_match("/^(>+)/", $line, $matches)) {
963 $gt = $matches[1];
964 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
965 } else {
966 $body .= $body_quote . (!empty($body_quote) ? ' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ? ' ' : ''), rtrim($line)) . "\n";
967 }
968 }
969
970 //rewrap the body to clean up quotations and line lengths
971 $body = sqBodyWrap ($body, $editor_size);
972
973 $body = getReplyCitation($from , $orig_header->date) . $body;
974 $composeMessage->reply_rfc822_header = $orig_header;
975
976 break;
977 default:
978 break;
979 }
980 $compose_messages[$session] = $composeMessage;
981 sqsession_register($compose_messages, 'compose_messages');
982 session_write_close();
983 sqimap_logout($imapConnection);
984 }
985 $ret = array( 'send_to' => $send_to,
986 'send_to_cc' => $send_to_cc,
987 'send_to_bcc' => $send_to_bcc,
988 'subject' => $subject,
989 'mailprio' => $mailprio,
990 'body' => $body,
991 'identity' => $identity );
992
993 return ($ret);
994 } /* function newMail() */
995
996 /**
997 * downloads attachments from original message, stores them in attachment directory and adds
998 * them to composed message.
999 * @param object $message
1000 * @param object $composeMessage
1001 * @param integer $passed_id
1002 * @param mixed $entities
1003 * @param mixed $imapConnection
1004 * @return object
1005 */
1006 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
1007 global $squirrelmail_language, $languages, $username, $attachment_dir;
1008
1009 if (!count($message->entities) ||
1010 ($message->type0 == 'message' && $message->type1 == 'rfc822')) {
1011 if ( !in_array($message->entity_id, $entities) && $message->entity_id) {
1012 switch ($message->type0) {
1013 case 'message':
1014 if ($message->type1 == 'rfc822') {
1015 $filename = $message->rfc822_header->subject;
1016 if ($filename == "") {
1017 $filename = "untitled-".$message->entity_id;
1018 }
1019 $filename .= '.msg';
1020 } else {
1021 $filename = $message->getFilename();
1022 }
1023 break;
1024 default:
1025 if (!$message->mime_header) { /* temporary hack */
1026 $message->mime_header = $message->header;
1027 }
1028 $filename = $message->getFilename();
1029 break;
1030 }
1031 $filename = str_replace('&#32;', ' ', decodeHeader($filename));
1032 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1033 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1034 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1035 }
1036
1037 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1038 $localfilename = sq_get_attach_tempfile();
1039 $message->att_local_name = $localfilename;
1040
1041 $composeMessage->initAttachment($message->type0.'/'.$message->type1,$filename,
1042 $localfilename);
1043
1044 /* Write Attachment to file */
1045 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1046 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id, $message->header->encoding, $fp);
1047 fclose ($fp);
1048 }
1049 } else {
1050 for ($i=0, $entCount=count($message->entities); $i<$entCount;$i++) {
1051 $composeMessage=getAttachments($message->entities[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1052 }
1053 }
1054 return $composeMessage;
1055 }
1056
1057 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1058 $passed_ent_id='', $imapConnection) {
1059 if (!$passed_ent_id) {
1060 $body_a = sqimap_run_command($imapConnection,
1061 'FETCH '.$passed_id.' RFC822',
1062 TRUE, $response, $readmessage,
1063 TRUE);
1064 } else {
1065 $body_a = sqimap_run_command($imapConnection,
1066 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1067 TRUE, $response, $readmessage, TRUE);
1068 $message = $message->parent;
1069 }
1070 if ($response == 'OK') {
1071 $subject = encodeHeader($message->rfc822_header->subject);
1072 array_shift($body_a);
1073 array_pop($body_a);
1074 $body = implode('', $body_a) . "\r\n";
1075
1076 global $username, $attachment_dir;
1077 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1078 $localfilename = sq_get_attach_tempfile();
1079 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1080 fwrite ($fp, $body);
1081 fclose($fp);
1082 $composeMessage->initAttachment('message/rfc822',$subject.'.msg',
1083 $localfilename);
1084 }
1085 return $composeMessage;
1086 }
1087
1088 function showInputForm ($session, $values=false) {
1089 global $send_to, $send_to_cc, $send_to_bcc,
1090 $body, $startMessage, $action, $attachments,
1091 $use_signature, $signature, $prefix_sig, $session_expired,
1092 $editor_size, $editor_height, $subject, $newmail,
1093 $use_javascript_addr_book, $passed_id, $mailbox,
1094 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1095 $username, $data_dir, $identity, $idents, $delete_draft,
1096 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1097 $compose_messages, $composesession, $default_charset,
1098 $compose_onsubmit, $oTemplate, $oErrorHandler;
1099
1100 if (checkForJavascript()) {
1101 $onfocus = ' onfocus="alreadyFocused=true;"';
1102 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1103 }
1104 else {
1105 $onfocus = '';
1106 $onfocus_array = array();
1107 }
1108
1109 $composeMessage = $compose_messages[$session];
1110 if ($values) {
1111 $send_to = $values['send_to'];
1112 $send_to_cc = $values['send_to_cc'];
1113 $send_to_bcc = $values['send_to_bcc'];
1114 $subject = $values['subject'];
1115 $mailprio = $values['mailprio'];
1116 $body = $values['body'];
1117 $identity = (int) $values['identity'];
1118 } else {
1119 $send_to = decodeHeader($send_to, true, false);
1120 $send_to_cc = decodeHeader($send_to_cc, true, false);
1121 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1122 }
1123
1124 if ($use_javascript_addr_book) {
1125 //FIXME: NO HTML IN CORE!
1126 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1127 'function open_abook() { ' . "\n" .
1128 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1129 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1130 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1131 ' nwin.opener = document.windows;' . "\n" .
1132 "}\n" .
1133 "// -->\n</script>\n\n";
1134 }
1135
1136 //FIXME: NO HTML IN CORE!
1137 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1138 'enctype="multipart/form-data"';
1139
1140 $compose_onsubmit = array();
1141 global $null;
1142 do_hook('compose_form', $null);
1143
1144 // Plugins that use compose_form hook can add an array entry
1145 // to the globally scoped $compose_onsubmit; we add them up
1146 // here and format the form tag's full onsubmit handler.
1147 // Each plugin should use "return false" if they need to
1148 // stop form submission but otherwise should NOT use "return
1149 // true" to give other plugins the chance to do what they need
1150 // to do; SquirrelMail itself will add the final "return true".
1151 // Onsubmit text is enclosed inside of double quotes, so plugins
1152 // need to quote accordingly.
1153 if (checkForJavascript()) {
1154 $onsubmit_text = ' onsubmit="';
1155 if (empty($compose_onsubmit))
1156 $compose_onsubmit = array();
1157 else if (!is_array($compose_onsubmit))
1158 $compose_onsubmit = array($compose_onsubmit);
1159
1160 foreach ($compose_onsubmit as $text) {
1161 $text = trim($text);
1162 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1163 $text .= '; ';
1164 $onsubmit_text .= $text;
1165 }
1166
1167 //FIXME: DON'T ECHO HTML FROM CORE!
1168 echo $onsubmit_text . ' return true;"';
1169 }
1170
1171
1172 //FIXME: NO HTML IN CORE!
1173 echo ">\n";
1174
1175 //FIXME: DON'T ECHO HTML FROM CORE!
1176 echo addHidden('startMessage', $startMessage);
1177
1178 if ($action == 'draft') {
1179 //FIXME: DON'T ECHO HTML FROM CORE!
1180 echo addHidden('delete_draft', $passed_id);
1181 }
1182 if (isset($delete_draft)) {
1183 //FIXME: DON'T ECHO HTML FROM CORE!
1184 echo addHidden('delete_draft', $delete_draft);
1185 }
1186 if (isset($session)) {
1187 //FIXME: DON'T ECHO HTML FROM CORE!
1188 echo addHidden('session', $session);
1189 }
1190
1191 if (isset($passed_id)) {
1192 //FIXME: DON'T ECHO HTML FROM CORE!
1193 echo addHidden('passed_id', $passed_id);
1194 }
1195
1196 if ($saved_draft == 'yes') {
1197 $oTemplate->assign('note', _("Your draft has been saved."));
1198 $oTemplate->display('note.tpl');
1199 }
1200 if ($mail_sent == 'yes') {
1201 $oTemplate->assign('note', _("Your mail has been sent."));
1202 $oTemplate->display('note.tpl');
1203 }
1204 if ($compose_new_win == '1') {
1205 $oTemplate->display('compose_newwin_close.tpl');
1206 }
1207
1208 if ($location_of_buttons == 'top') {
1209 //FIXME: DON'T ECHO HTML FROM CORE!
1210 showComposeButtonRow();
1211 }
1212
1213 $identities = array();
1214 if (count($idents) > 1) {
1215 reset($idents);
1216 foreach($idents as $id => $data) {
1217 $identities[$id] = $data['full_name'].' &lt;'.$data['email_address'].'&gt;';
1218 }
1219 }
1220
1221 $oTemplate->assign('identities', $identities);
1222 $oTemplate->assign('identity_def', $identity);
1223 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1224
1225 $oTemplate->assign('to', htmlspecialchars($send_to));
1226 $oTemplate->assign('cc', htmlspecialchars($send_to_cc));
1227 $oTemplate->assign('bcc', htmlspecialchars($send_to_bcc));
1228 $oTemplate->assign('subject', htmlspecialchars($subject));
1229
1230 $oTemplate->display('compose_header.tpl');
1231
1232 if ($location_of_buttons == 'between') {
1233 //FIXME: DON'T ECHO HTML FROM CORE!
1234 showComposeButtonRow();
1235 }
1236
1237 $body_str = '';
1238 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1239 $signature = $idents[$identity]['signature'];
1240
1241 if ($sig_first == '1') {
1242 /*
1243 * FIXME: test is specific to ja_JP translation implementation.
1244 * This test might apply incorrect conversion to other translations, but
1245 * use of 7bit iso-2022-jp charset in other translations might have other
1246 * issues too.
1247 */
1248 if ($default_charset == 'iso-2022-jp') {
1249 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1250 } else {
1251 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1252 }
1253 $body_str .= "\n\n".htmlspecialchars(decodeHeader($body,false,false));
1254 } else {
1255 $body_str = "\n\n".htmlspecialchars(decodeHeader($body,false,false));
1256 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1257 if ($default_charset == 'iso-2022-jp') {
1258 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1259 } else {
1260 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1261 }
1262 }
1263 } else {
1264 $body_str = htmlspecialchars(decodeHeader($body,false,false));
1265 }
1266
1267 $oTemplate->assign('editor_width', (int)$editor_size);
1268 $oTemplate->assign('editor_height', (int)$editor_height);
1269 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1270 $oTemplate->assign('body', $body_str);
1271 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1272
1273 $oTemplate->display ('compose_body.tpl');
1274
1275 if ($location_of_buttons == 'bottom') {
1276 //FIXME: DON'T ECHO HTML FROM CORE!
1277 showComposeButtonRow();
1278 }
1279
1280 // composeMessage can be empty when coming from a restored session
1281 if (is_object($composeMessage) && $composeMessage->entities)
1282 $attach_array = $composeMessage->entities;
1283 if ($session_expired && !empty($attachments) && is_array($attachments))
1284 $attach_array = $attachments;
1285
1286 /* This code is for attachments */
1287 if ((bool) ini_get('file_uploads')) {
1288
1289 /* Calculate the max size for an uploaded file.
1290 * This is advisory for the user because we can't actually prevent
1291 * people to upload too large files. */
1292 $sizes = array();
1293 /* php.ini vars which influence the max for uploads */
1294 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1295 foreach($configvars as $var) {
1296 /* skip 0 or empty values, and -1 which means 'unlimited' */
1297 if( $size = getByteSize(ini_get($var)) ) {
1298 if ( $size != '-1' ) {
1299 $sizes[] = $size;
1300 }
1301 }
1302 }
1303
1304 $attach = array();
1305 global $username, $attachment_dir;
1306 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1307 if (!empty($attach_array)) {
1308 foreach ($attach_array as $key => $attachment) {
1309 $attached_file = $attachment->att_local_name;
1310 if ($attachment->att_local_name || $attachment->body_part) {
1311 $attached_filename = decodeHeader($attachment->mime_header->getParameter('name'));
1312 $type = $attachment->mime_header->type0.'/'.
1313 $attachment->mime_header->type1;
1314
1315 $a = array();
1316 $a['Key'] = $key;
1317 $a['FileName'] = $attached_filename;
1318 $a['ContentType'] = $type;
1319 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1320 $attach[$key] = $a;
1321 }
1322 }
1323 }
1324
1325 $max = min($sizes);
1326 $oTemplate->assign('max_file_size', empty($max) ? -1 : $max);
1327 $oTemplate->assign('attachments', $attach);
1328
1329 $oTemplate->display('compose_attachments.tpl');
1330 } // End of file_uploads if-block
1331 /* End of attachment code */
1332
1333 //FIXME: no direct echoing to browser, no HTML output in core!
1334 echo addHidden('username', $username).
1335 addHidden('smaction', $action).
1336 addHidden('mailbox', $mailbox);
1337 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER);
1338 //FIXME: no direct echoing to browser, no HTML output in core!
1339 echo addHidden('composesession', $composesession).
1340 addHidden('querystring', $queryString).
1341 (!empty($attach_array) ?
1342 addHidden('attachments', urlencode(serialize($attach_array))) : '').
1343 "</form>\n";
1344 if (!(bool) ini_get('file_uploads')) {
1345 /* File uploads are off, so we didn't show that part of the form.
1346 To avoid bogus bug reports, tell the user why. */
1347 //FIXME: no direct echoing to browser, no HTML output in core!
1348 echo '<p style="text-align:center">'
1349 . _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.")
1350 . "</p>\r\n";
1351 }
1352
1353 if ($compose_new_win=='1') {
1354 $oTemplate->display('compose_newwin_close.tpl');
1355 }
1356
1357 do_hook('compose_bottom', $null);
1358
1359 $oErrorHandler->setDelayedErrors(false);
1360 $oTemplate->display('footer.tpl');
1361 }
1362
1363
1364 function showComposeButtonRow() {
1365 global $use_javascript_addr_book, $save_as_draft,
1366 $default_use_priority, $mailprio, $default_use_mdn,
1367 $request_mdn, $request_dr,
1368 $data_dir, $username;
1369
1370 global $oTemplate, $buffer_hook;
1371
1372 if ($default_use_priority) {
1373 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1374 $priority = isset($mailprio) ? $mailprio : 3;
1375 } else {
1376 $priorities = array();
1377 $priority = NULL;
1378 }
1379
1380 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1381
1382 if ($use_javascript_addr_book && checkForJavascript()) {
1383 $addr_book = addButton(_("Addresses"), null, array('onclick' => 'javascript:open_abook();'));
1384 } else {
1385 $addr_book = addSubmit(_("Addresses"), 'html_addr_search');
1386 }
1387
1388 $oTemplate->assign('allow_priority', $default_use_priority==1);
1389 $oTemplate->assign('priority_list', $priorities);
1390 $oTemplate->assign('current_priority', $priority);
1391
1392 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1393 $oTemplate->assign('read_receipt', $request_mdn=='1');
1394 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1395
1396 $oTemplate->assign('drafts_enabled', $save_as_draft);
1397 $oTemplate->assign('address_book_button', $addr_book);
1398
1399 $oTemplate->display('compose_buttons.tpl');
1400 }
1401
1402 function checkInput ($show) {
1403 /*
1404 * I implemented the $show variable because the error messages
1405 * were getting sent before the page header. So, I check once
1406 * using $show=false, and then when i'm ready to display the error
1407 * message, show=true
1408 */
1409 global $send_to, $send_to_cc, $send_to_bcc;
1410
1411 $send_to = trim($send_to);
1412 $send_to_cc = trim($send_to_cc);
1413 $send_to_bcc = trim($send_to_bcc);
1414 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1415 if ($show) {
1416 plain_error_message(_("You have not filled in the \"To:\" field."));
1417 }
1418 return false;
1419 }
1420 return true;
1421 } /* function checkInput() */
1422
1423
1424 /* True if FAILURE */
1425 function saveAttachedFiles($session) {
1426 global $compose_messages, $username, $attachment_dir;
1427
1428 /* get out of here if no file was attached at all */
1429 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1430 return true;
1431 }
1432
1433 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1434 $localfilename = sq_get_attach_tempfile();
1435 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1436
1437 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1438 // if that doesn't work, try a simple rename.
1439 if (!@move_uploaded_file($_FILES['attachfile']['tmp_name'],$fullpath)) {
1440 if (!@rename($_FILES['attachfile']['tmp_name'], $fullpath)) {
1441 return true;
1442 }
1443 }
1444 $message = $compose_messages[$session];
1445 $type = strtolower($_FILES['attachfile']['type']);
1446 $name = $_FILES['attachfile']['name'];
1447 $message->initAttachment($type, $name, $localfilename);
1448 $compose_messages[$session] = $message;
1449 }
1450
1451 /* parse values like 8M and 2k into bytes */
1452 function getByteSize($ini_size) {
1453
1454 if(!$ini_size) {
1455 return FALSE;
1456 }
1457
1458 $ini_size = trim($ini_size);
1459
1460 // if there's some kind of letter at the end of the string we need to multiply.
1461 if(!is_numeric(substr($ini_size, -1))) {
1462
1463 switch(strtoupper(substr($ini_size, -1))) {
1464 case 'G':
1465 $bytesize = 1073741824;
1466 break;
1467 case 'M':
1468 $bytesize = 1048576;
1469 break;
1470 case 'K':
1471 $bytesize = 1024;
1472 break;
1473 }
1474
1475 return ($bytesize * (int)substr($ini_size, 0, -1));
1476 }
1477
1478 return $ini_size;
1479 }
1480
1481
1482 /**
1483 * temporary function to make use of the deliver class.
1484 * In the future the responsible backend should be automaticly loaded
1485 * and conf.pl should show a list of available backends.
1486 * The message also should be constructed by the message class.
1487 */
1488 function deliverMessage($composeMessage, $draft=false) {
1489 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1490 $username, $identity, $idents, $data_dir,
1491 $request_mdn, $request_dr, $default_charset, $useSendmail,
1492 $domain, $action, $default_move_to_sent, $move_to_sent,
1493 $imapServerAddress, $imapPort, $sent_folder, $key;
1494
1495 $rfc822_header = $composeMessage->rfc822_header;
1496
1497 $abook = addressbook_init(false, true);
1498 $rfc822_header->to = $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1499 $rfc822_header->cc = $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1500 $rfc822_header->bcc = $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1501 $rfc822_header->priority = $mailprio;
1502 $rfc822_header->subject = $subject;
1503
1504 $special_encoding='';
1505 if (strtolower($default_charset) == 'iso-2022-jp') {
1506 if (mb_detect_encoding($body) == 'ASCII') {
1507 $special_encoding = '8bit';
1508 } else {
1509 $body = mb_convert_encoding($body, 'JIS');
1510 $special_encoding = '7bit';
1511 }
1512 }
1513 $composeMessage->setBody($body);
1514
1515 $reply_to = '';
1516 $reply_to = $idents[$identity]['reply_to'];
1517
1518 $from_addr = build_from_header($identity);
1519 $rfc822_header->from = $rfc822_header->parseAddress($from_addr,true);
1520 if ($reply_to) {
1521 $rfc822_header->reply_to = $rfc822_header->parseAddress($reply_to,true);
1522 }
1523 /* Receipt: On Read */
1524 if (isset($request_mdn) && $request_mdn) {
1525 $rfc822_header->dnt = $rfc822_header->parseAddress($from_addr,true);
1526 } elseif (isset($rfc822_header->dnt)) {
1527 unset($rfc822_header->dnt);
1528 }
1529
1530 /* Receipt: On Delivery */
1531 if (isset($request_dr) && $request_dr) {
1532 $rfc822_header->more_headers['Return-Receipt-To'] = $from->mailbox.'@'.$from->domain;
1533 } elseif (isset($rfc822_header->more_headers['Return-Receipt-To'])) {
1534 unset($rfc822_header->more_headers['Return-Receipt-To']);
1535 }
1536
1537 /* multipart messages */
1538 if (count($composeMessage->entities)) {
1539 $message_body = new Message();
1540 $message_body->body_part = $composeMessage->body_part;
1541 $composeMessage->body_part = '';
1542 $mime_header = new MessageHeader;
1543 $mime_header->type0 = 'text';
1544 $mime_header->type1 = 'plain';
1545 if ($special_encoding) {
1546 $mime_header->encoding = $special_encoding;
1547 } else {
1548 $mime_header->encoding = '8bit';
1549 }
1550 if ($default_charset) {
1551 $mime_header->parameters['charset'] = $default_charset;
1552 }
1553 $message_body->mime_header = $mime_header;
1554 array_unshift($composeMessage->entities, $message_body);
1555 $content_type = new ContentType('multipart/mixed');
1556 } else {
1557 $content_type = new ContentType('text/plain');
1558 if ($special_encoding) {
1559 $rfc822_header->encoding = $special_encoding;
1560 } else {
1561 $rfc822_header->encoding = '8bit';
1562 }
1563 if ($default_charset) {
1564 $content_type->properties['charset']=$default_charset;
1565 }
1566 }
1567
1568 $rfc822_header->content_type = $content_type;
1569 $composeMessage->rfc822_header = $rfc822_header;
1570
1571 /* Here you can modify the message structure just before we hand
1572 it over to deliver; plugin authors note that $composeMessage
1573 is sent and modified by reference since 1.5.2 */
1574 do_hook('compose_send', $composeMessage);
1575
1576 if (!$useSendmail && !$draft) {
1577 require_once(SM_PATH . 'class/deliver/Deliver_SMTP.class.php');
1578 $deliver = new Deliver_SMTP();
1579 global $smtpServerAddress, $smtpPort, $pop_before_smtp;
1580
1581 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ? true : false;
1582 get_smtp_user($user, $pass);
1583 $stream = $deliver->initStream($composeMessage,$domain,0,
1584 $smtpServerAddress, $smtpPort, $user, $pass, $authPop);
1585 } elseif (!$draft) {
1586 require_once(SM_PATH . 'class/deliver/Deliver_SendMail.class.php');
1587 global $sendmail_path, $sendmail_args;
1588 // Check for outdated configuration
1589 if (!isset($sendmail_args)) {
1590 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1591 $sendmail_args = '';
1592 } else {
1593 $sendmail_args = '-i -t';
1594 }
1595 }
1596 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1597 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1598 } elseif ($draft) {
1599 global $draft_folder;
1600 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1601 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1602 $imapPort, 0);
1603 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1604 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1605 $imap_deliver = new Deliver_IMAP();
1606 $length = $imap_deliver->mail($composeMessage);
1607 sqimap_append ($imap_stream, $draft_folder, $length);
1608 $imap_deliver->mail($composeMessage, $imap_stream);
1609 sqimap_append_done ($imap_stream, $draft_folder);
1610 sqimap_logout($imap_stream);
1611 unset ($imap_deliver);
1612 $composeMessage->purgeAttachments();
1613 return $length;
1614 } else {
1615 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), htmlspecialchars($draft_folder));
1616 plain_error_message($msg);
1617 return false;
1618 }
1619 }
1620 $success = false;
1621 if ($stream) {
1622 $length = $deliver->mail($composeMessage, $stream);
1623 $success = $deliver->finalizeStream($stream);
1624 }
1625 if (!$success) {
1626 // $deliver->dlv_server_msg is not always server's reply
1627 $msg = _("Message not sent.") . "<br />\n" .
1628 $deliver->dlv_msg;
1629 if (!empty($deliver->dlv_server_msg)) {
1630 // add 'server replied' part only when it is not empty.
1631 // Delivery error can be generated by delivery class itself
1632 $msg.='<br />' .
1633 _("Server replied:") . ' ' . $deliver->dlv_ret_nr . ' ' .
1634 nl2br(htmlspecialchars($deliver->dlv_server_msg));
1635 }
1636 plain_error_message($msg);
1637 } else {
1638 unset ($deliver);
1639 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1640 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0);
1641
1642 /* Move to sent code */
1643 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1644 $svr_allow_sent = true;
1645 } else {
1646 $svr_allow_sent = false;
1647 }
1648
1649 if (isset($sent_folder) && (($sent_folder != '') || ($sent_folder != 'none'))
1650 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1651 $fld_sent = true;
1652 } else {
1653 $fld_sent = false;
1654 }
1655
1656 if ((isset($move_to_sent) && ($move_to_sent != 0)) || (!isset($move_to_sent))) {
1657 $lcl_allow_sent = true;
1658 } else {
1659 $lcl_allow_sent = false;
1660 }
1661
1662 global $passed_id, $mailbox;
1663 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) || ($fld_sent && $lcl_allow_sent)) {
1664 if ($action == 'reply' || $action == 'reply_all') {
1665 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1666 if ($save_reply_with_orig) {
1667 $sent_folder = $mailbox;
1668 }
1669 }
1670 sqimap_append ($imap_stream, $sent_folder, $length);
1671 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1672 $imap_deliver = new Deliver_IMAP();
1673 $imap_deliver->mail($composeMessage, $imap_stream);
1674 sqimap_append_done ($imap_stream, $sent_folder);
1675 unset ($imap_deliver);
1676 }
1677
1678 global $what, $iAccount, $startMessage;
1679
1680 $composeMessage->purgeAttachments();
1681 if ($action=='reply' || $action=='reply_all' || $action=='forward' || $action=='forward_as_attachment') {
1682 require(SM_PATH . 'functions/mailbox_display.php');
1683 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array());
1684 switch($action) {
1685 case 'reply':
1686 case 'reply_all':
1687 // check if we are allowed to set the \\Answered flag
1688 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1689 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1690 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1691 /**
1692 * Only update the cached headers if the header is
1693 * cached.
1694 */
1695 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1696 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1697 }
1698 }
1699 }
1700 break;
1701 case 'forward':
1702 case 'forward_as_attachment':
1703 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1704 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1705 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1706
1707 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '$Forwarded', true, false);
1708 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1709 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1710 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1711 }
1712 }
1713 }
1714 break;
1715 }
1716
1717 /**
1718 * Write mailbox with updated seen flag information back to cache.
1719 */
1720 if(isset($aUpdatedMsgs[$passed_id])) {
1721 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1722 sqsession_register($mailbox_cache,'mailbox_cache');
1723 }
1724
1725 sqimap_logout($imap_stream);
1726 }
1727 }
1728 return $success;
1729 }