5f09af6b9d80e446ecc97db865fac4d158216761
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 * compose.php
4 *
5 * This code sends a mail.
6 *
7 * There are 4 modes of operation:
8 * - Start new mail
9 * - Add an attachment
10 * - Send mail
11 * - Save As Draft
12 *
13 * @copyright &copy; 1999-2007 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
15 * @version $Id$
16 * @package squirrelmail
17 */
18
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
21
22 /**
23 * Include the SquirrelMail initialization file.
24 */
25 require('../include/init.php');
26
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
31 exit;
32 }
33
34 /* SquirrelMail required files. */
35 require_once(SM_PATH . 'functions/imap_general.php');
36 require_once(SM_PATH . 'functions/imap_messages.php');
37 require_once(SM_PATH . 'functions/date.php');
38 require_once(SM_PATH . 'functions/mime.php');
39 require_once(SM_PATH . 'functions/compose.php');
40 require_once(SM_PATH . 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH . 'functions/addressbook.php');
42 require_once(SM_PATH . 'functions/forms.php');
43 require_once(SM_PATH . 'functions/identity.php');
44
45 /* --------------------- Get globals ------------------------------------- */
46
47 /** SESSION VARS */
48 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
49
50 sqgetGlobalVar('composesession', $composesession, SQ_SESSION);
51 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION);
52 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION);
53
54 // Turn on delayed error handling in case we wind up redirecting below
55 $oErrorHandler->setDelayedErrors(true);
56
57 /** SESSION/POST/GET VARS */
58 sqgetGlobalVar('send', $send, SQ_POST);
59 // Send can only be achieved by setting $_POST var. If Send = true then
60 // retrieve other form fields from $_POST
61 if (isset($send) && $send) {
62 $SQ_GLOBAL = SQ_POST;
63 } else {
64 $SQ_GLOBAL = SQ_FORM;
65 }
66 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
67 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
68 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
69 $identity=0;
70 }
71 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
72 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
73 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
74 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
75 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
76 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
77 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
78 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
79 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
80 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
81 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL);
82 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
83
84 sqgetGlobalVar('attach',$attach, SQ_POST);
85 sqgetGlobalVar('draft',$draft, SQ_POST);
86 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
87 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
88 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM);
89
90 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
91 $delete_draft = (int)$delete_draft;
92 }
93
94 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
95 $startMessage = (int)$startMessage;
96 } else {
97 $startMessage = 1;
98 }
99
100
101 /** POST VARS */
102 sqgetGlobalVar('sigappend', $sigappend, SQ_POST);
103 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST);
104 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST);
105 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST);
106 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST);
107 sqgetGlobalVar('do_delete', $do_delete, SQ_POST);
108 sqgetGlobalVar('delete', $delete, SQ_POST);
109 sqgetGlobalVar('restoremessages', $restoremessages, SQ_POST);
110 if ( sqgetGlobalVar('return', $temp, SQ_POST) ) {
111 $html_addr_search_done = 'Use Addresses';
112 }
113
114 /** GET VARS */
115 if ( sqgetGlobalVar('account', $temp, SQ_GET) ) {
116 $iAccount = (int) $temp;
117 } else {
118 $iAccount = 0;
119 }
120
121
122 /** get smaction */
123 if ( !sqgetGlobalVar('smaction',$action) )
124 {
125 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
126 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
127 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
128 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
129 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
130 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
131 }
132
133 /**
134 * Here we decode the data passed in from mailto.php.
135 */
136 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET) ) {
137 $trtable = array('to' => 'send_to',
138 'cc' => 'send_to_cc',
139 'bcc' => 'send_to_bcc',
140 'body' => 'body',
141 'subject' => 'subject');
142 $mtdata = unserialize($mailtodata);
143
144 foreach ($trtable as $f => $t) {
145 if ( !empty($mtdata[$f]) ) {
146 $$t = $mtdata[$f];
147 }
148 }
149 unset($mailtodata,$mtdata, $trtable);
150 }
151
152 /* Location (For HTTP 1.1 Header("Location: ...") redirects) */
153 $location = get_location();
154 /* Identities (fetch only once) */
155 $idents = get_identities();
156
157 /* --------------------- Specific Functions ------------------------------ */
158
159 function replyAllString($header) {
160 global $include_self_reply_all, $idents;
161 $excl_ar = array();
162 /**
163 * 1) Remove the addresses we'll be sending the message 'to'
164 */
165 if (isset($header->reply_to)) {
166 $excl_ar = $header->getAddr_a('reply_to');
167 }
168 /**
169 * 2) Remove our identities from the CC list (they still can be in the
170 * TO list) only if $include_self_reply_all is turned off
171 */
172 if (!$include_self_reply_all) {
173 foreach($idents as $id) {
174 $excl_ar[strtolower(trim($id['email_address']))] = '';
175 }
176 }
177
178 /**
179 * 3) get the addresses.
180 */
181 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
182
183 /**
184 * 4) generate the string.
185 */
186 $url_replytoallcc = '';
187 foreach( $url_replytoall_ar as $email => $personal) {
188 if ($personal) {
189 // if personal name contains address separator then surround
190 // the personal name with double quotes.
191 if (strpos($personal,',') !== false) {
192 $personal = '"'.$personal.'"';
193 }
194 $url_replytoallcc .= ", $personal <$email>";
195 } else {
196 $url_replytoallcc .= ', '. $email;
197 }
198 }
199 $url_replytoallcc = substr($url_replytoallcc,2);
200
201 return $url_replytoallcc;
202 }
203
204 /**
205 * creates top line in reply citations
206 *
207 * Line style depends on user preferences.
208 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
209 * @param object $orig_from From: header object.
210 * @param integer $orig_date email's timestamp
211 * @return string reply citation
212 */
213 function getReplyCitation($orig_from, $orig_date) {
214 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
215
216 if (!is_object($orig_from)) {
217 $sOrig_from = '';
218 } else {
219 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
220 }
221
222 /* First, return an empty string when no citation style selected. */
223 if (($reply_citation_style == '') || ($reply_citation_style == 'none')) {
224 return '';
225 }
226
227 /* Make sure our final value isn't an empty string. */
228 if ($sOrig_from == '') {
229 return '';
230 }
231
232 /* Otherwise, try to select the desired citation style. */
233 switch ($reply_citation_style) {
234 case 'author_said':
235 /**
236 * To translators: %s is for author's name
237 */
238 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
239 break;
240 case 'quote_who':
241 $start = '<quote who="';
242 $end = '">';
243 $full_reply_citation = $start . $sOrig_from . $end;
244 break;
245 case 'date_time_author':
246 /**
247 * To translators:
248 * first %s is for date string, second %s is for author's name. Date uses
249 * formating from "D, F j, Y g:i a" and "D, F j, Y H:i" translations.
250 * Example string:
251 * "On Sat, December 24, 2004 23:59, Santa wrote:"
252 * If you have to put author's name in front of date string, check comments about
253 * argument swapping at http://www.php.net/sprintf
254 */
255 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
256 break;
257 case 'user-defined':
258 $start = $reply_citation_start .
259 ($reply_citation_start == '' ? '' : ' ');
260 $end = $reply_citation_end;
261 $full_reply_citation = $start . $sOrig_from . $end;
262 break;
263 default:
264 return '';
265 }
266
267 /* Add line feed and return the citation string. */
268 return ($full_reply_citation . "\n");
269 }
270
271 /**
272 * Creates header fields in forwarded email body
273 *
274 * $default_charset global must be set correctly before you call this function.
275 * @param object $orig_header
276 * @return $string
277 */
278 function getforwardHeader($orig_header) {
279 global $editor_size, $default_charset;
280
281 // using own strlen function in order to detect correct string length
282 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
283 _("From") => sq_strlen(_("From"),$default_charset),
284 _("Date") => sq_strlen(_("Date"),$default_charset),
285 _("To") => sq_strlen(_("To"),$default_charset),
286 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
287 $maxsize = max($display);
288 $indent = str_pad('',$maxsize+2);
289 foreach($display as $key => $val) {
290 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
291 }
292 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
293 $from = str_replace('&nbsp;',' ',$from);
294 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
295 $to = str_replace('&nbsp;',' ',$to);
296 $subject = decodeHeader($orig_header->subject,false,false,true);
297 $subject = str_replace('&nbsp;',' ',$subject);
298
299 // using own str_pad function in order to create correct string pad
300 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH,$default_charset) .
301 "\n". $display[_("Subject")] . $subject . "\n" .
302 $display[_("From")] . $from . "\n" .
303 $display[_("Date")] . getLongDateString( $orig_header->date, $orig_header->date_unparsed ). "\n" .
304 $display[_("To")] . $to . "\n";
305 if ($orig_header->cc != array() && $orig_header->cc !='') {
306 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
307 $cc = str_replace('&nbsp;',' ',$cc);
308 $bodyTop .= $display[_("Cc")] .$cc . "\n";
309 }
310 $bodyTop .= str_pad('', $editor_size -2 , '-') .
311 "\n\n";
312 return $bodyTop;
313 }
314 /* ----------------------------------------------------------------------- */
315
316 /*
317 * If the session is expired during a post this restores the compose session
318 * vars.
319 */
320 if (sqsession_is_registered('session_expired_post')) {
321 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION);
322 /*
323 * extra check for username so we don't display previous post data from
324 * another user during this session.
325 */
326 if ($session_expired_post['username'] != $username) {
327 unset($session_expired_post);
328 sqsession_unregister('session_expired_post');
329 session_write_close();
330 } else {
331 // these are the vars that we can set from the expired composed session
332 $compo_var_list = array ( 'send_to', 'send_to_cc','body','startMessage',
333 'passed_body','use_signature','signature','subject','newmail',
334 'send_to_bcc', 'passed_id', 'mailbox', 'from_htmladdr_search', 'identity',
335 'draft_id', 'delete_draft', 'mailprio', 'edit_as_new', 'compose_messsages',
336 'composesession', 'request_mdn', 'request_dr');
337
338 foreach ($compo_var_list as $var) {
339 if ( isset($session_expired_post[$var]) && !isset($$var) ) {
340 $$var = $session_expired_post[$var];
341 }
342 }
343
344 $compose_messages = unserialize($restoremessages);
345 sqsession_register($compose_messages,'compose_messages');
346 sqsession_register($composesession,'composesession');
347 if (isset($send)) {
348 unset($send);
349 }
350 $session_expired = true;
351 }
352 unset($session_expired_post);
353 sqsession_unregister('session_expired_post');
354 session_write_close();
355 if (!isset($mailbox)) {
356 $mailbox = '';
357 }
358 if ($compose_new_win == '1') {
359 compose_Header($color, $mailbox);
360 } else {
361 $sHeaderJs = (isset($sHeaderJs)) ? $sHeaderJs : '';
362 if (strpos($action, 'reply') !== false && $reply_focus) {
363 $sBodyTagJs = 'onload="checkForm(\''.$replyfocus.'\');"';
364 } else {
365 $sBodyTagJs = 'onload="checkForm();"';
366 }
367 displayPageHeader($color, $mailbox,$sHeaderJs,$sBodyTagJs);
368 }
369 showInputForm($session, false);
370 exit();
371 }
372 if (!isset($composesession)) {
373 $composesession = 0;
374 sqsession_register(0,'composesession');
375 } else {
376 $composesession = (int)$composesession;
377 }
378
379 if (!isset($session) || (isset($newmessage) && $newmessage)) {
380 sqsession_unregister('composesession');
381 $session = "$composesession" +1;
382 $composesession = $session;
383 sqsession_register($composesession,'composesession');
384 }
385 if (!isset($compose_messages)) {
386 $compose_messages = array();
387 }
388
389 if (!isset($compose_messages[$session]) || ($compose_messages[$session] == NULL)) {
390 $composeMessage = new Message();
391 $rfc822_header = new Rfc822Header();
392 $composeMessage->rfc822_header = $rfc822_header;
393 $composeMessage->reply_rfc822_header = '';
394 $compose_messages[$session] = $composeMessage;
395
396 sqsession_register($compose_messages,'compose_messages');
397 } else {
398 $composeMessage=$compose_messages[$session];
399 }
400
401 if (empty($mailbox)) {
402 $mailbox = 'INBOX';
403 }
404
405 if ($draft) {
406 /*
407 * Set $default_charset to correspond with the user's selection
408 * of language interface.
409 */
410 set_my_charset();
411 $composeMessage=$compose_messages[$session];
412 if (! deliverMessage($composeMessage, true)) {
413 showInputForm($session);
414 exit();
415 } else {
416 unset($compose_messages[$session]);
417 sqsession_register($compose_messages,'compose_messages');
418 $draft_message = _("Draft Email Saved");
419 /* If this is a resumed draft, then delete the original */
420 if(isset($delete_draft)) {
421 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false);
422 sqimap_mailbox_select($imap_stream, $draft_folder);
423 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
424 // in current implementation of sqimap_msgs_list_flag() single message id can
425 // be submitted as string. docs state that it should be array.
426 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
427 if ($auto_expunge) {
428 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
429 }
430 sqimap_logout($imap_stream);
431 }
432
433 $oErrorHandler->saveDelayedErrors();
434 session_write_close();
435
436 if ($compose_new_win == '1') {
437 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
438 Header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
439 } else {
440 //FIXME: DON'T ECHO HTML FROM CORE!
441 echo ' <br><br><div style="text-align: center;"><a href="' . $location
442 . '/compose.php?saved_sent=yes&amp;session=' . $composesession . '">'
443 . _("Return") . '</a></div>';
444 }
445 exit();
446 } else {
447 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
448 Header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
449 "&startMessage=1&note=".urlencode($draft_message));
450 } else {
451 //FIXME: DON'T ECHO HTML FROM CORE!
452 echo ' <br><br><div style="text-align: center;"><a href="' . $location
453 . '/right_main.php?mailbox=' . urlencode($draft_folder)
454 . '&amp;startMessage=1&amp;note=' . urlencode($draft_message) .'">'
455 . _("Return") . '</a></div>';
456 }
457 exit();
458 }
459 }
460 }
461
462 if ($send) {
463 if (isset($_FILES['attachfile']) &&
464 $_FILES['attachfile']['tmp_name'] &&
465 $_FILES['attachfile']['tmp_name'] != 'none') {
466 $AttachFailure = saveAttachedFiles($session);
467 }
468 if (checkInput(false) && !isset($AttachFailure)) {
469 if ($mailbox == "All Folders") {
470 /* We entered compose via the search results page */
471 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
472 }
473 $urlMailbox = urlencode($mailbox);
474 if (! isset($passed_id)) {
475 $passed_id = 0;
476 }
477 /**
478 * Set $default_charset to correspond with the user's selection
479 * of language interface.
480 */
481 set_my_charset();
482 /**
483 * This is to change all newlines to \n
484 * We'll change them to \r\n later (in the sendMessage function)
485 */
486 $body = str_replace("\r\n", "\n", $body);
487 $body = str_replace("\r", "\n", $body);
488
489 /**
490 * Rewrap $body so that no line is bigger than $editor_size
491 */
492 $body = explode("\n", $body);
493 $newBody = '';
494 foreach ($body as $line) {
495 if( $line <> '-- ' ) {
496 $line = rtrim($line);
497 }
498 if (sq_strlen($line, $default_charset) <= $editor_size + 1) {
499 $newBody .= $line . "\n";
500 } else {
501 sqWordWrap($line, $editor_size, $default_charset);
502 $newBody .= $line . "\n";
503
504 }
505
506 }
507 $body = $newBody;
508
509 $composeMessage=$compose_messages[$session];
510
511 $Result = deliverMessage($composeMessage);
512
513 if ($Result)
514 $mail_sent = 'yes';
515 else
516 $mail_sent = 'no';
517
518 // NOTE: this hook changed in 1.5.2 from sending $Result and
519 // $composeMessage as args #2 and #3 to being in an array
520 // under arg #2
521 do_hook('compose_send_after', $temp=array(&$Result, &$composeMessage, &$mail_sent));
522 if (! $Result) {
523 showInputForm($session);
524 exit();
525 }
526 unset($compose_messages[$session]);
527 sqsession_register($compose_messages,'compose_messages');
528
529 /* if it is resumed draft, delete draft message */
530 if ( isset($delete_draft)) {
531 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false);
532 sqimap_mailbox_select($imap_stream, $draft_folder);
533 // bypass_trash=true because message should be saved when deliverMessage() returns true.
534 // in current implementation of sqimap_msgs_list_flag() single message id can
535 // be submitted as string. docs state that it should be array.
536 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
537 if ($auto_expunge) {
538 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
539 }
540 sqimap_logout($imap_stream);
541 }
542 /*
543 * Store the error array in the session because they will be lost on a redirect
544 */
545 $oErrorHandler->saveDelayedErrors();
546 session_write_close();
547
548 if ($compose_new_win == '1') {
549 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
550 Header("Location: $location/compose.php?mail_sent=$mail_sent");
551 } else {
552 //FIXME: DON'T ECHO HTML FROM CORE!
553 echo ' <br><br><div style="text-align: center;"><a href="' . $location
554 . '/compose.php?mail_sent=$mail_sent">'
555 . _("Return") . '</a></div>';
556 }
557 exit();
558 } else {
559 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
560 Header("Location: $location/right_main.php?mailbox=$urlMailbox".
561 "&startMessage=$startMessage&mail_sent=$mail_sent");
562 } else {
563 //FIXME: DON'T ECHO HTML FROM CORE!
564 echo ' <br><br><div style="text-align: center;"><a href="' . $location
565 . "/right_main.php?mailbox=$urlMailbox"
566 . "&amp;startMessage=$startMessage&amp;mail_sent=$mail_sent\">"
567 . _("Return") . '</a></div>';
568 }
569 exit();
570 }
571 } else {
572 if ($compose_new_win == '1') {
573 compose_Header($color, $mailbox);
574 }
575 else {
576 displayPageHeader($color, $mailbox);
577 }
578 if (isset($AttachFailure)) {
579 plain_error_message(_("Could not move/copy file. File not attached"),
580 $color);
581 }
582 checkInput(true);
583 showInputForm($session);
584 /* sqimap_logout($imapConnection); */
585 }
586 } elseif (isset($html_addr_search_done)) {
587 if ($compose_new_win == '1') {
588 compose_Header($color, $mailbox);
589 }
590 else {
591 displayPageHeader($color, $mailbox);
592 }
593
594 if (isset($send_to_search) && is_array($send_to_search)) {
595 foreach ($send_to_search as $k => $v) {
596 if (substr($k, 0, 1) == 'T') {
597 if ($send_to) {
598 $send_to .= ', ';
599 }
600 $send_to .= $v;
601 }
602 elseif (substr($k, 0, 1) == 'C') {
603 if ($send_to_cc) {
604 $send_to_cc .= ', ';
605 }
606 $send_to_cc .= $v;
607 }
608 elseif (substr($k, 0, 1) == 'B') {
609 if ($send_to_bcc) {
610 $send_to_bcc .= ', ';
611 }
612 $send_to_bcc .= $v;
613 }
614 }
615 }
616 showInputForm($session);
617 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
618 if (isset($_FILES['attachfile']) &&
619 $_FILES['attachfile']['tmp_name'] &&
620 $_FILES['attachfile']['tmp_name'] != 'none') {
621 if(saveAttachedFiles($session)) {
622 plain_error_message(_("Could not move/copy file. File not attached"));
623 }
624 }
625 /*
626 * I am using an include so as to elminiate an extra unnecessary
627 * click. If you can think of a better way, please implement it.
628 */
629 include_once('./addrbook_search_html.php');
630 } elseif (isset($attach)) {
631 if ($compose_new_win == '1') {
632 compose_Header($color, $mailbox);
633 } else {
634 displayPageHeader($color, $mailbox);
635 }
636 if (saveAttachedFiles($session)) {
637 plain_error_message(_("Could not move/copy file. File not attached"));
638 }
639 showInputForm($session);
640 }
641 elseif (isset($sigappend)) {
642 $signature = $idents[$identity]['signature'];
643
644 $body .= "\n\n".($prefix_sig==true? "-- \n":'').$signature;
645 if ($compose_new_win == '1') {
646 compose_Header($color, $mailbox);
647 } else {
648 displayPageHeader($color, $mailbox);
649 }
650 showInputForm($session);
651 } elseif (isset($do_delete)) {
652 if ($compose_new_win == '1') {
653 compose_Header($color, $mailbox);
654 } else {
655 displayPageHeader($color, $mailbox);
656 }
657
658 if (isset($delete) && is_array($delete)) {
659 $composeMessage = $compose_messages[$session];
660 foreach($delete as $index) {
661 if (!empty($composeMessage->entities) && isset($composeMessage->entities[$index])) {
662 $composeMessage->entities[$index]->purgeAttachments();
663 unset ($composeMessage->entities[$index]);
664 }
665 }
666 $new_entities = array();
667 foreach ($composeMessage->entities as $entity) {
668 $new_entities[] = $entity;
669 }
670 $composeMessage->entities = $new_entities;
671 $compose_messages[$session] = $composeMessage;
672 sqsession_register($compose_messages, 'compose_messages');
673 }
674 showInputForm($session);
675 } else {
676 /*
677 * This handles the default case as well as the error case
678 * (they had the same code) --> if (isset($smtpErrors))
679 */
680
681 if ($compose_new_win == '1') {
682 compose_Header($color, $mailbox);
683 } else {
684 displayPageHeader($color, $mailbox);
685 }
686
687 $newmail = true;
688
689 if (!isset($passed_ent_id)) {
690 $passed_ent_id = '';
691 }
692 if (!isset($passed_id)) {
693 $passed_id = '';
694 }
695 if (!isset($mailbox)) {
696 $mailbox = '';
697 }
698 if (!isset($action)) {
699 $action = '';
700 }
701
702 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
703
704 /* in case the origin is not read_body.php */
705 if (isset($send_to)) {
706 $values['send_to'] = $send_to;
707 }
708 if (isset($send_to_cc)) {
709 $values['send_to_cc'] = $send_to_cc;
710 }
711 if (isset($send_to_bcc)) {
712 $values['send_to_bcc'] = $send_to_bcc;
713 }
714 if (isset($subject)) {
715 $values['subject'] = $subject;
716 }
717 showInputForm($session, $values);
718 }
719
720 exit();
721
722 /**************** Only function definitions go below *************/
723
724 function getforwardSubject($subject)
725 {
726 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
727 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
728 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
729 $subject = '[Fwd: ' . $subject . ']';
730 }
731 return $subject;
732 }
733
734 /* This function is used when not sending or adding attachments */
735 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
736 global $editor_size, $default_use_priority, $body, $idents,
737 $use_signature, $data_dir, $username,
738 $key, $imapServerAddress, $imapPort, $compose_messages,
739 $composeMessage, $body_quote, $request_mdn, $request_dr,
740 $mdn_user_support, $languages, $squirrelmail_language,
741 $default_charset;
742
743 /*
744 * Set $default_charset to correspond with the user's selection
745 * of language interface. $default_charset global is not correct,
746 * if message is composed in new window.
747 */
748 set_my_charset();
749
750 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
751 $mailprio = 3;
752
753 if ($passed_id) {
754 $imapConnection = sqimap_login($username, false, $imapServerAddress,
755 $imapPort, 0);
756
757 sqimap_mailbox_select($imapConnection, $mailbox);
758 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
759
760 $body = '';
761 if ($passed_ent_id) {
762 /* redefine the messsage in case of message/rfc822 */
763 $message = $message->getEntity($passed_ent_id);
764 /* message is an entity which contains the envelope and type0=message
765 * and type1=rfc822. The actual entities are childs from
766 * $message->entities[0]. That's where the encoding and is located
767 */
768
769 $entities = $message->entities[0]->findDisplayEntity
770 (array(), $alt_order = array('text/plain'));
771 if (!count($entities)) {
772 $entities = $message->entities[0]->findDisplayEntity
773 (array(), $alt_order = array('text/plain','text/html'));
774 }
775 $orig_header = $message->rfc822_header; /* here is the envelope located */
776 /* redefine the message for picking up the attachments */
777 $message = $message->entities[0];
778
779 } else {
780 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
781 if (!count($entities)) {
782 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
783 }
784 $orig_header = $message->rfc822_header;
785 }
786
787 $type0 = $message->type0;
788 $type1 = $message->type1;
789 foreach ($entities as $ent) {
790 $msg = $message->getEntity($ent);
791 $type0 = $msg->type0;
792 $type1 = $msg->type1;
793 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
794 $body_part_entity = $message->getEntity($ent);
795 $bodypart = decodeBody($unencoded_bodypart,
796 $body_part_entity->header->encoding);
797 if ($type1 == 'html') {
798 $bodypart = str_replace("\n", ' ', $bodypart);
799 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
800 $bodypart = str_replace(array('&nbsp;','&gt;','&lt;'),array(' ','>','<'),$bodypart);
801 $bodypart = strip_tags($bodypart);
802 }
803 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
804 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
805 if (mb_detect_encoding($bodypart) != 'ASCII') {
806 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
807 }
808 }
809
810 // charset encoding in compose form stuff
811 if (isset($body_part_entity->header->parameters['charset'])) {
812 $actual = $body_part_entity->header->parameters['charset'];
813 } else {
814 $actual = 'us-ascii';
815 }
816
817 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
818 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
819 }
820 // end of charset encoding in compose
821
822 $body .= $bodypart;
823 }
824 if ($default_use_priority) {
825 $mailprio = substr($orig_header->priority,0,1);
826 if (!$mailprio) {
827 $mailprio = 3;
828 }
829 } else {
830 $mailprio = '';
831 }
832
833 $from_o = $orig_header->from;
834 if (is_array($from_o)) {
835 if (isset($from_o[0])) {
836 $from_o = $from_o[0];
837 }
838 }
839 if (is_object($from_o)) {
840 $orig_from = $from_o->getAddress();
841 } else {
842 $orig_from = '';
843 }
844
845 $identities = array();
846 if (count($idents) > 1) {
847 foreach($idents as $nr=>$data) {
848 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
849 if($enc_from_name == $orig_from) {
850 $identity = $nr;
851 break;
852 }
853 $identities[] = $enc_from_name;
854 }
855
856 $identity_match = $orig_header->findAddress($identities);
857 if ($identity_match) {
858 $identity = $identity_match;
859 }
860 }
861
862 switch ($action) {
863 case ('draft'):
864 $use_signature = FALSE;
865 $composeMessage->rfc822_header = $orig_header;
866 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
867 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
868 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
869 $send_from = $orig_header->getAddr_s('from');
870 $send_from_parts = new AddressStructure();
871 $send_from_parts = $orig_header->parseAddress($send_from);
872 $send_from_add = $send_from_parts->mailbox . '@' . $send_from_parts->host;
873 $identity = find_identity(array($send_from_add));
874 $subject = decodeHeader($orig_header->subject,false,false,true);
875
876 // Remember the receipt settings
877 $request_mdn = $mdn_user_support && !empty($orig_header->dnt) ? '1' : '0';
878 $request_dr = $mdn_user_support && !empty($orig_header->drnt) ? '1' : '0';
879
880 /* remember the references and in-reply-to headers in case of an reply */
881 $composeMessage->rfc822_header->more_headers['References'] = $orig_header->references;
882 $composeMessage->rfc822_header->more_headers['In-Reply-To'] = $orig_header->in_reply_to;
883 // rewrap the body to clean up quotations and line lengths
884 sqBodyWrap($body, $editor_size);
885 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
886 break;
887 case ('edit_as_new'):
888 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
889 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
890 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
891 $subject = decodeHeader($orig_header->subject,false,false,true);
892 $mailprio = $orig_header->priority;
893 $orig_from = '';
894 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
895 // rewrap the body to clean up quotations and line lengths
896 sqBodyWrap($body, $editor_size);
897 break;
898 case ('forward'):
899 $send_to = '';
900 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
901 $body = getforwardHeader($orig_header) . $body;
902 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
903 // forwarded message text should be as undisturbed as possible, so commenting out this call
904 // sqUnWordWrap($body);
905 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
906
907 //add a blank line after the forward headers
908 $body = "\n" . $body;
909 break;
910 case ('forward_as_attachment'):
911 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
912 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
913 $body = '';
914 break;
915 case ('reply_all'):
916 if(isset($orig_header->mail_followup_to) && $orig_header->mail_followup_to) {
917 $send_to = $orig_header->getAddr_s('mail_followup_to');
918 } else {
919 $send_to_cc = replyAllString($orig_header);
920 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
921 }
922 case ('reply'):
923 // skip this if send_to was already set right above here
924 if(!$send_to) {
925 $send_to = $orig_header->reply_to;
926 if (is_array($send_to) && count($send_to)) {
927 $send_to = $orig_header->getAddr_s('reply_to');
928 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
929 $send_to = $orig_header->getAddr_s('reply_to');
930 } else {
931 $send_to = $orig_header->getAddr_s('from');
932 }
933 }
934 $send_to = decodeHeader($send_to,false,false,true);
935 $subject = decodeHeader($orig_header->subject,false,false,true);
936 $subject = str_replace('"', "'", $subject);
937 $subject = trim($subject);
938 if (substr(strtolower($subject), 0, 3) != 're:') {
939 $subject = 'Re: ' . $subject;
940 }
941 /* this corrects some wrapping/quoting problems on replies */
942 $rewrap_body = explode("\n", $body);
943 $from = (is_array($orig_header->from) && !empty($orig_header->from)) ? $orig_header->from[0] : $orig_header->from;
944 $body = '';
945 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
946 foreach ($rewrap_body as $line) {
947 if ($strip_sigs && substr($line,0,3) == '-- ') {
948 break;
949 }
950 if (preg_match("/^(>+)/", $line, $matches)) {
951 $gt = $matches[1];
952 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
953 } else {
954 $body .= $body_quote . (!empty($body_quote) ? ' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ? ' ' : ''), rtrim($line)) . "\n";
955 }
956 }
957
958 //rewrap the body to clean up quotations and line lengths
959 $body = sqBodyWrap ($body, $editor_size);
960
961 $body = getReplyCitation($from , $orig_header->date) . $body;
962 $composeMessage->reply_rfc822_header = $orig_header;
963
964 break;
965 default:
966 break;
967 }
968 $compose_messages[$session] = $composeMessage;
969 sqsession_register($compose_messages, 'compose_messages');
970 session_write_close();
971 sqimap_logout($imapConnection);
972 }
973 $ret = array( 'send_to' => $send_to,
974 'send_to_cc' => $send_to_cc,
975 'send_to_bcc' => $send_to_bcc,
976 'subject' => $subject,
977 'mailprio' => $mailprio,
978 'body' => $body,
979 'identity' => $identity );
980
981 return ($ret);
982 } /* function newMail() */
983
984 /**
985 * downloads attachments from original message, stores them in attachment directory and adds
986 * them to composed message.
987 * @param object $message
988 * @param object $composeMessage
989 * @param integer $passed_id
990 * @param mixed $entities
991 * @param mixed $imapConnection
992 * @return object
993 */
994 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
995 global $squirrelmail_language, $languages, $username, $attachment_dir;
996
997 if (!count($message->entities) ||
998 ($message->type0 == 'message' && $message->type1 == 'rfc822')) {
999 if ( !in_array($message->entity_id, $entities) && $message->entity_id) {
1000 switch ($message->type0) {
1001 case 'message':
1002 if ($message->type1 == 'rfc822') {
1003 $filename = $message->rfc822_header->subject;
1004 if ($filename == "") {
1005 $filename = "untitled-".$message->entity_id;
1006 }
1007 $filename .= '.msg';
1008 } else {
1009 $filename = $message->getFilename();
1010 }
1011 break;
1012 default:
1013 if (!$message->mime_header) { /* temporary hack */
1014 $message->mime_header = $message->header;
1015 }
1016 $filename = $message->getFilename();
1017 break;
1018 }
1019 $filename = str_replace('&#32;', ' ', decodeHeader($filename));
1020 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1021 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1022 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1023 }
1024
1025 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1026 $localfilename = sq_get_attach_tempfile();
1027 $message->att_local_name = $localfilename;
1028
1029 $composeMessage->initAttachment($message->type0.'/'.$message->type1,$filename,
1030 $localfilename);
1031
1032 /* Write Attachment to file */
1033 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1034 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id, $message->header->encoding, $fp);
1035 fclose ($fp);
1036 }
1037 } else {
1038 for ($i=0, $entCount=count($message->entities); $i<$entCount;$i++) {
1039 $composeMessage=getAttachments($message->entities[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1040 }
1041 }
1042 return $composeMessage;
1043 }
1044
1045 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1046 $passed_ent_id='', $imapConnection) {
1047 if (!$passed_ent_id) {
1048 $body_a = sqimap_run_command($imapConnection,
1049 'FETCH '.$passed_id.' RFC822',
1050 TRUE, $response, $readmessage,
1051 TRUE);
1052 } else {
1053 $body_a = sqimap_run_command($imapConnection,
1054 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1055 TRUE, $response, $readmessage, TRUE);
1056 $message = $message->parent;
1057 }
1058 if ($response == 'OK') {
1059 $subject = encodeHeader($message->rfc822_header->subject);
1060 array_shift($body_a);
1061 array_pop($body_a);
1062 $body = implode('', $body_a) . "\r\n";
1063
1064 global $username, $attachment_dir;
1065 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1066 $localfilename = sq_get_attach_tempfile();
1067 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1068 fwrite ($fp, $body);
1069 fclose($fp);
1070 $composeMessage->initAttachment('message/rfc822',$subject.'.msg',
1071 $localfilename);
1072 }
1073 return $composeMessage;
1074 }
1075
1076 function showInputForm ($session, $values=false) {
1077 global $send_to, $send_to_cc, $send_to_bcc,
1078 $body, $startMessage, $action,
1079 $use_signature, $signature, $prefix_sig,
1080 $editor_size, $editor_height, $subject, $newmail,
1081 $use_javascript_addr_book, $passed_id, $mailbox,
1082 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1083 $username, $data_dir, $identity, $idents, $delete_draft,
1084 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1085 $compose_messages, $composesession, $default_charset,
1086 $compose_onsubmit, $oTemplate, $oErrorHandler;
1087
1088 if (checkForJavascript()) {
1089 $onfocus = ' onfocus="alreadyFocused=true;"';
1090 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1091 }
1092 else {
1093 $onfocus = '';
1094 $onfocus_array = array();
1095 }
1096
1097 $composeMessage = $compose_messages[$session];
1098 if ($values) {
1099 $send_to = $values['send_to'];
1100 $send_to_cc = $values['send_to_cc'];
1101 $send_to_bcc = $values['send_to_bcc'];
1102 $subject = $values['subject'];
1103 $mailprio = $values['mailprio'];
1104 $body = $values['body'];
1105 $identity = (int) $values['identity'];
1106 } else {
1107 $send_to = decodeHeader($send_to, true, false);
1108 $send_to_cc = decodeHeader($send_to_cc, true, false);
1109 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1110 }
1111
1112 if ($use_javascript_addr_book) {
1113 //FIXME: NO HTML IN CORE!
1114 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1115 'function open_abook() { ' . "\n" .
1116 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1117 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1118 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1119 ' nwin.opener = document.windows;' . "\n" .
1120 "}\n" .
1121 "// -->\n</script>\n\n";
1122 }
1123
1124 //FIXME: NO HTML IN CORE!
1125 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1126 'enctype="multipart/form-data"';
1127
1128 $compose_onsubmit = array();
1129 global $null;
1130 do_hook('compose_form', $null);
1131
1132 // Plugins that use compose_form hook can add an array entry
1133 // to the globally scoped $compose_onsubmit; we add them up
1134 // here and format the form tag's full onsubmit handler.
1135 // Each plugin should use "return false" if they need to
1136 // stop form submission but otherwise should NOT use "return
1137 // true" to give other plugins the chance to do what they need
1138 // to do; SquirrelMail itself will add the final "return true".
1139 // Onsubmit text is enclosed inside of double quotes, so plugins
1140 // need to quote accordingly.
1141 if (checkForJavascript()) {
1142 $onsubmit_text = ' onsubmit="';
1143 if (empty($compose_onsubmit))
1144 $compose_onsubmit = array();
1145 else if (!is_array($compose_onsubmit))
1146 $compose_onsubmit = array($compose_onsubmit);
1147
1148 foreach ($compose_onsubmit as $text) {
1149 $text = trim($text);
1150 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1151 $text .= '; ';
1152 $onsubmit_text .= $text;
1153 }
1154
1155 //FIXME: DON'T ECHO HTML FROM CORE!
1156 echo $onsubmit_text . ' return true;"';
1157 }
1158
1159
1160 //FIXME: NO HTML IN CORE!
1161 echo ">\n";
1162
1163 //FIXME: DON'T ECHO HTML FROM CORE!
1164 echo addHidden('startMessage', $startMessage);
1165
1166 if ($action == 'draft') {
1167 //FIXME: DON'T ECHO HTML FROM CORE!
1168 echo addHidden('delete_draft', $passed_id);
1169 }
1170 if (isset($delete_draft)) {
1171 //FIXME: DON'T ECHO HTML FROM CORE!
1172 echo addHidden('delete_draft', $delete_draft);
1173 }
1174 if (isset($session)) {
1175 //FIXME: DON'T ECHO HTML FROM CORE!
1176 echo addHidden('session', $session);
1177 }
1178
1179 if (isset($passed_id)) {
1180 //FIXME: DON'T ECHO HTML FROM CORE!
1181 echo addHidden('passed_id', $passed_id);
1182 }
1183
1184 if ($saved_draft == 'yes') {
1185 $oTemplate->assign('note', _("Your draft has been saved."));
1186 $oTemplate->display('note.tpl');
1187 }
1188 if ($mail_sent == 'yes') {
1189 $oTemplate->assign('note', _("Your mail has been sent."));
1190 $oTemplate->display('note.tpl');
1191 }
1192 if ($compose_new_win == '1') {
1193 $oTemplate->display('compose_newwin_close.tpl');
1194 }
1195
1196 if ($location_of_buttons == 'top') {
1197 //FIXME: DON'T ECHO HTML FROM CORE!
1198 showComposeButtonRow();
1199 }
1200
1201 $identities = array();
1202 if (count($idents) > 1) {
1203 reset($idents);
1204 foreach($idents as $id => $data) {
1205 $identities[$id] = $data['full_name'].' &lt;'.$data['email_address'].'&gt;';
1206 }
1207 }
1208
1209 $oTemplate->assign('identities', $identities);
1210 $oTemplate->assign('identity_def', $identity);
1211 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1212
1213 $oTemplate->assign('to', htmlspecialchars($send_to));
1214 $oTemplate->assign('cc', htmlspecialchars($send_to_cc));
1215 $oTemplate->assign('bcc', htmlspecialchars($send_to_bcc));
1216 $oTemplate->assign('subject', htmlspecialchars($subject));
1217
1218 $oTemplate->display('compose_header.tpl');
1219
1220 if ($location_of_buttons == 'between') {
1221 //FIXME: DON'T ECHO HTML FROM CORE!
1222 showComposeButtonRow();
1223 }
1224
1225 $body_str = '';
1226 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1227 $signature = $idents[$identity]['signature'];
1228
1229 if ($sig_first == '1') {
1230 /*
1231 * FIXME: test is specific to ja_JP translation implementation.
1232 * This test might apply incorrect conversion to other translations, but
1233 * use of 7bit iso-2022-jp charset in other translations might have other
1234 * issues too.
1235 */
1236 if ($default_charset == 'iso-2022-jp') {
1237 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1238 } else {
1239 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1240 }
1241 $body_str .= "\n\n".htmlspecialchars(decodeHeader($body,false,false));
1242 } else {
1243 $body_str = "\n\n".htmlspecialchars(decodeHeader($body,false,false));
1244 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1245 if ($default_charset == 'iso-2022-jp') {
1246 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1247 } else {
1248 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1249 }
1250 }
1251 } else {
1252 $body_str = htmlspecialchars(decodeHeader($body,false,false));
1253 }
1254
1255 $oTemplate->assign('editor_width', (int)$editor_size);
1256 $oTemplate->assign('editor_height', (int)$editor_height);
1257 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1258 $oTemplate->assign('body', $body_str);
1259 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1260
1261 $oTemplate->display ('compose_body.tpl');
1262
1263 if ($location_of_buttons == 'bottom') {
1264 //FIXME: DON'T ECHO HTML FROM CORE!
1265 showComposeButtonRow();
1266 }
1267
1268 /* This code is for attachments */
1269 if ((bool) ini_get('file_uploads')) {
1270
1271 /* Calculate the max size for an uploaded file.
1272 * This is advisory for the user because we can't actually prevent
1273 * people to upload too large files. */
1274 $sizes = array();
1275 /* php.ini vars which influence the max for uploads */
1276 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1277 foreach($configvars as $var) {
1278 /* skip 0 or empty values, and -1 which means 'unlimited' */
1279 if( $size = getByteSize(ini_get($var)) ) {
1280 if ( $size != '-1' ) {
1281 $sizes[] = $size;
1282 }
1283 }
1284 }
1285
1286 $attach = array();
1287 global $username, $attachment_dir;
1288 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1289 // composeMessage can be empty when coming from a restored session
1290 if (is_object($composeMessage) && $composeMessage->entities) {
1291 foreach ($composeMessage->entities as $key => $attachment) {
1292 $attached_file = $attachment->att_local_name;
1293 if ($attachment->att_local_name || $attachment->body_part) {
1294 $attached_filename = decodeHeader($attachment->mime_header->getParameter('name'));
1295 $type = $attachment->mime_header->type0.'/'.
1296 $attachment->mime_header->type1;
1297
1298 $a = array();
1299 $a['Key'] = $key;
1300 $a['FileName'] = $attached_filename;
1301 $a['ContentType'] = $type;
1302 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1303 $attach[$key] = $a;
1304 }
1305 }
1306 }
1307
1308 $max = min($sizes);
1309 $oTemplate->assign('max_file_size', empty($max) ? -1 : $max);
1310 $oTemplate->assign('attachments', $attach);
1311
1312 $oTemplate->display('compose_attachments.tpl');
1313 } // End of file_uploads if-block
1314 /* End of attachment code */
1315
1316 //FIXME: no direct echoing to browser, no HTML output in core!
1317 echo addHidden('username', $username).
1318 addHidden('smaction', $action).
1319 addHidden('mailbox', $mailbox);
1320 /*
1321 store the complete ComposeMessages array in a hidden input value
1322 so we can restore them in case of a session timeout.
1323 */
1324 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER);
1325 //FIXME: no direct echoing to browser, no HTML output in core!
1326 echo addHidden('restoremessages', urlencode(serialize($compose_messages))).
1327 addHidden('composesession', $composesession).
1328 addHidden('querystring', $queryString).
1329 "</form>\n";
1330 if (!(bool) ini_get('file_uploads')) {
1331 /* File uploads are off, so we didn't show that part of the form.
1332 To avoid bogus bug reports, tell the user why. */
1333 //FIXME: no direct echoing to browser, no HTML output in core!
1334 echo '<p style="text-align:center">'
1335 . _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.")
1336 . "</p>\r\n";
1337 }
1338
1339 if ($compose_new_win=='1') {
1340 $oTemplate->display('compose_newwin_close.tpl');
1341 }
1342
1343 do_hook('compose_bottom', $null);
1344
1345 $oErrorHandler->setDelayedErrors(false);
1346 $oTemplate->display('footer.tpl');
1347 }
1348
1349
1350 function showComposeButtonRow() {
1351 global $use_javascript_addr_book, $save_as_draft,
1352 $default_use_priority, $mailprio, $default_use_mdn,
1353 $request_mdn, $request_dr,
1354 $data_dir, $username;
1355
1356 global $oTemplate, $buffer_hook;
1357
1358 if ($default_use_priority) {
1359 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1360 $priority = isset($mailprio) ? $mailprio : 3;
1361 } else {
1362 $priorities = array();
1363 $priority = NULL;
1364 }
1365
1366 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1367
1368 if ($use_javascript_addr_book && checkForJavascript()) {
1369 $addr_book = addButton(_("Addresses"), null, array('onclick' => 'javascript:open_abook();'));
1370 } else {
1371 $addr_book = addSubmit(_("Addresses"), 'html_addr_search');
1372 }
1373
1374 $oTemplate->assign('allow_priority', $default_use_priority==1);
1375 $oTemplate->assign('priority_list', $priorities);
1376 $oTemplate->assign('current_priority', $priority);
1377
1378 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1379 $oTemplate->assign('read_receipt', $request_mdn=='1');
1380 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1381
1382 $oTemplate->assign('drafts_enabled', $save_as_draft);
1383 $oTemplate->assign('address_book_button', $addr_book);
1384
1385 $oTemplate->display('compose_buttons.tpl');
1386 }
1387
1388 function checkInput ($show) {
1389 /*
1390 * I implemented the $show variable because the error messages
1391 * were getting sent before the page header. So, I check once
1392 * using $show=false, and then when i'm ready to display the error
1393 * message, show=true
1394 */
1395 global $send_to, $send_to_cc, $send_to_bcc;
1396
1397 $send_to = trim($send_to);
1398 $send_to_cc = trim($send_to_cc);
1399 $send_to_bcc = trim($send_to_bcc);
1400 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1401 if ($show) {
1402 plain_error_message(_("You have not filled in the \"To:\" field."));
1403 }
1404 return false;
1405 }
1406 return true;
1407 } /* function checkInput() */
1408
1409
1410 /* True if FAILURE */
1411 function saveAttachedFiles($session) {
1412 global $compose_messages, $username, $attachment_dir;
1413
1414 /* get out of here if no file was attached at all */
1415 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1416 return true;
1417 }
1418
1419 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1420 $localfilename = sq_get_attach_tempfile();
1421 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1422
1423 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1424 // if that doesn't work, try a simple rename.
1425 if (!@move_uploaded_file($_FILES['attachfile']['tmp_name'],$fullpath)) {
1426 if (!@rename($_FILES['attachfile']['tmp_name'], $fullpath)) {
1427 return true;
1428 }
1429 }
1430 $message = $compose_messages[$session];
1431 $type = strtolower($_FILES['attachfile']['type']);
1432 $name = $_FILES['attachfile']['name'];
1433 $message->initAttachment($type, $name, $localfilename);
1434 $compose_messages[$session] = $message;
1435 sqsession_register($compose_messages , 'compose_messages');
1436 }
1437
1438 /* parse values like 8M and 2k into bytes */
1439 function getByteSize($ini_size) {
1440
1441 if(!$ini_size) {
1442 return FALSE;
1443 }
1444
1445 $ini_size = trim($ini_size);
1446
1447 // if there's some kind of letter at the end of the string we need to multiply.
1448 if(!is_numeric(substr($ini_size, -1))) {
1449
1450 switch(strtoupper(substr($ini_size, -1))) {
1451 case 'G':
1452 $bytesize = 1073741824;
1453 break;
1454 case 'M':
1455 $bytesize = 1048576;
1456 break;
1457 case 'K':
1458 $bytesize = 1024;
1459 break;
1460 }
1461
1462 return ($bytesize * (int)substr($ini_size, 0, -1));
1463 }
1464
1465 return $ini_size;
1466 }
1467
1468
1469 /**
1470 * temporary function to make use of the deliver class.
1471 * In the future the responsible backend should be automaticly loaded
1472 * and conf.pl should show a list of available backends.
1473 * The message also should be constructed by the message class.
1474 */
1475 function deliverMessage($composeMessage, $draft=false) {
1476 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1477 $username, $identity, $idents, $data_dir,
1478 $request_mdn, $request_dr, $default_charset, $useSendmail,
1479 $domain, $action, $default_move_to_sent, $move_to_sent,
1480 $imapServerAddress, $imapPort, $sent_folder, $key;
1481
1482 $rfc822_header = $composeMessage->rfc822_header;
1483
1484 $abook = addressbook_init(false, true);
1485 $rfc822_header->to = $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1486 $rfc822_header->cc = $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1487 $rfc822_header->bcc = $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1488 $rfc822_header->priority = $mailprio;
1489 $rfc822_header->subject = $subject;
1490
1491 $special_encoding='';
1492 if (strtolower($default_charset) == 'iso-2022-jp') {
1493 if (mb_detect_encoding($body) == 'ASCII') {
1494 $special_encoding = '8bit';
1495 } else {
1496 $body = mb_convert_encoding($body, 'JIS');
1497 $special_encoding = '7bit';
1498 }
1499 }
1500 $composeMessage->setBody($body);
1501
1502 $reply_to = '';
1503 $reply_to = $idents[$identity]['reply_to'];
1504
1505 $from_addr = build_from_header($identity);
1506 $rfc822_header->from = $rfc822_header->parseAddress($from_addr,true);
1507 if ($reply_to) {
1508 $rfc822_header->reply_to = $rfc822_header->parseAddress($reply_to,true);
1509 }
1510 /* Receipt: On Read */
1511 if (isset($request_mdn) && $request_mdn) {
1512 $rfc822_header->dnt = $rfc822_header->parseAddress($from_addr,true);
1513 } elseif (isset($rfc822_header->dnt)) {
1514 unset($rfc822_header->dnt);
1515 }
1516
1517 /* Receipt: On Delivery */
1518 if (isset($request_dr) && $request_dr) {
1519 $rfc822_header->more_headers['Return-Receipt-To'] = $from->mailbox.'@'.$from->domain;
1520 } elseif (isset($rfc822_header->more_headers['Return-Receipt-To'])) {
1521 unset($rfc822_header->more_headers['Return-Receipt-To']);
1522 }
1523
1524 /* multipart messages */
1525 if (count($composeMessage->entities)) {
1526 $message_body = new Message();
1527 $message_body->body_part = $composeMessage->body_part;
1528 $composeMessage->body_part = '';
1529 $mime_header = new MessageHeader;
1530 $mime_header->type0 = 'text';
1531 $mime_header->type1 = 'plain';
1532 if ($special_encoding) {
1533 $mime_header->encoding = $special_encoding;
1534 } else {
1535 $mime_header->encoding = '8bit';
1536 }
1537 if ($default_charset) {
1538 $mime_header->parameters['charset'] = $default_charset;
1539 }
1540 $message_body->mime_header = $mime_header;
1541 array_unshift($composeMessage->entities, $message_body);
1542 $content_type = new ContentType('multipart/mixed');
1543 } else {
1544 $content_type = new ContentType('text/plain');
1545 if ($special_encoding) {
1546 $rfc822_header->encoding = $special_encoding;
1547 } else {
1548 $rfc822_header->encoding = '8bit';
1549 }
1550 if ($default_charset) {
1551 $content_type->properties['charset']=$default_charset;
1552 }
1553 }
1554
1555 $rfc822_header->content_type = $content_type;
1556 $composeMessage->rfc822_header = $rfc822_header;
1557
1558 /* Here you can modify the message structure just before we hand
1559 it over to deliver; plugin authors note that $composeMessage
1560 is sent and modified by reference since 1.5.2 */
1561 do_hook('compose_send', $composeMessage);
1562
1563 if (!$useSendmail && !$draft) {
1564 require_once(SM_PATH . 'class/deliver/Deliver_SMTP.class.php');
1565 $deliver = new Deliver_SMTP();
1566 global $smtpServerAddress, $smtpPort, $pop_before_smtp;
1567
1568 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ? true : false;
1569 get_smtp_user($user, $pass);
1570 $stream = $deliver->initStream($composeMessage,$domain,0,
1571 $smtpServerAddress, $smtpPort, $user, $pass, $authPop);
1572 } elseif (!$draft) {
1573 require_once(SM_PATH . 'class/deliver/Deliver_SendMail.class.php');
1574 global $sendmail_path, $sendmail_args;
1575 // Check for outdated configuration
1576 if (!isset($sendmail_args)) {
1577 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1578 $sendmail_args = '';
1579 } else {
1580 $sendmail_args = '-i -t';
1581 }
1582 }
1583 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1584 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1585 } elseif ($draft) {
1586 global $draft_folder;
1587 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1588 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1589 $imapPort, 0);
1590 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1591 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1592 $imap_deliver = new Deliver_IMAP();
1593 $length = $imap_deliver->mail($composeMessage);
1594 sqimap_append ($imap_stream, $draft_folder, $length);
1595 $imap_deliver->mail($composeMessage, $imap_stream);
1596 sqimap_append_done ($imap_stream, $draft_folder);
1597 sqimap_logout($imap_stream);
1598 unset ($imap_deliver);
1599 $composeMessage->purgeAttachments();
1600 return $length;
1601 } else {
1602 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), htmlspecialchars($draft_folder));
1603 plain_error_message($msg);
1604 return false;
1605 }
1606 }
1607 $success = false;
1608 if ($stream) {
1609 $length = $deliver->mail($composeMessage, $stream);
1610 $success = $deliver->finalizeStream($stream);
1611 }
1612 if (!$success) {
1613 // $deliver->dlv_server_msg is not always server's reply
1614 $msg = _("Message not sent.") . "<br />\n" .
1615 $deliver->dlv_msg;
1616 if (!empty($deliver->dlv_server_msg)) {
1617 // add 'server replied' part only when it is not empty.
1618 // Delivery error can be generated by delivery class itself
1619 $msg.='<br />' .
1620 _("Server replied:") . ' ' . $deliver->dlv_ret_nr . ' ' .
1621 nl2br(htmlspecialchars($deliver->dlv_server_msg));
1622 }
1623 plain_error_message($msg);
1624 } else {
1625 unset ($deliver);
1626 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1627 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0);
1628
1629 /* Move to sent code */
1630 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1631 $svr_allow_sent = true;
1632 } else {
1633 $svr_allow_sent = false;
1634 }
1635
1636 if (isset($sent_folder) && (($sent_folder != '') || ($sent_folder != 'none'))
1637 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1638 $fld_sent = true;
1639 } else {
1640 $fld_sent = false;
1641 }
1642
1643 if ((isset($move_to_sent) && ($move_to_sent != 0)) || (!isset($move_to_sent))) {
1644 $lcl_allow_sent = true;
1645 } else {
1646 $lcl_allow_sent = false;
1647 }
1648
1649 global $passed_id, $mailbox;
1650 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) || ($fld_sent && $lcl_allow_sent)) {
1651 if ($action == 'reply' || $action == 'reply_all') {
1652 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1653 if ($save_reply_with_orig) {
1654 $sent_folder = $mailbox;
1655 }
1656 }
1657 sqimap_append ($imap_stream, $sent_folder, $length);
1658 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1659 $imap_deliver = new Deliver_IMAP();
1660 $imap_deliver->mail($composeMessage, $imap_stream);
1661 sqimap_append_done ($imap_stream, $sent_folder);
1662 unset ($imap_deliver);
1663 }
1664
1665 global $what, $iAccount, $startMessage;
1666
1667 $composeMessage->purgeAttachments();
1668 if ($action=='reply' || $action=='reply_all' || $action=='forward' || $action=='forward_as_attachment') {
1669 require(SM_PATH . 'functions/mailbox_display.php');
1670 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array());
1671 switch($action) {
1672 case 'reply':
1673 case 'reply_all':
1674 // check if we are allowed to set the \\Answered flag
1675 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1676 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1677 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1678 /**
1679 * Only update the cached headers if the header is
1680 * cached.
1681 */
1682 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1683 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1684 }
1685 }
1686 }
1687 break;
1688 case 'forward':
1689 case 'forward_as_attachment':
1690 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1691 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1692 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1693
1694 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '$Forwarded', true, false);
1695 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1696 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1697 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1698 }
1699 }
1700 }
1701 break;
1702 }
1703
1704 /**
1705 * Write mailbox with updated seen flag information back to cache.
1706 */
1707 if(isset($aUpdatedMsgs[$passed_id])) {
1708 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1709 sqsession_register($mailbox_cache,'mailbox_cache');
1710 }
1711
1712 sqimap_logout($imap_stream);
1713 }
1714 }
1715 return $success;
1716 }