839c62ce2bad819db6c814498e924f0d4fae82b9
5 * This code sends a mail.
7 * There are 4 modes of operation:
13 * @copyright 1999-2018 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
16 * @package squirrelmail
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
23 * Include the SquirrelMail initialization file.
25 require('../include/init.php');
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
34 /* SquirrelMail required files. */
35 require_once(SM_PATH
. 'functions/imap_general.php');
36 require_once(SM_PATH
. 'functions/imap_messages.php');
37 require_once(SM_PATH
. 'functions/date.php');
38 require_once(SM_PATH
. 'functions/mime.php');
39 require_once(SM_PATH
. 'functions/compose.php');
40 require_once(SM_PATH
. 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH
. 'functions/addressbook.php');
42 require_once(SM_PATH
. 'functions/forms.php');
43 require_once(SM_PATH
. 'functions/identity.php');
44 global $imap_stream_options; // in case not defined in config
46 /* --------------------- Get globals ------------------------------------- */
49 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION
);
51 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION
);
52 sqgetGlobalVar('composesession', $composesession, SQ_SESSION
);
53 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION
);
55 // compose_messages only useful in SESSION when a forward-as-attachment
56 // has been preconstructed for us and passed in via that mechanism; once
57 // we have it, we can clear it from the SESSION
58 sqsession_unregister('compose_messages');
60 // Turn on delayed error handling in case we wind up redirecting below
61 $oErrorHandler->setDelayedErrors(true);
63 /** SESSION/POST/GET VARS */
64 sqgetGlobalVar('send_button_count', $send_button_count, SQ_POST
, 1, SQ_TYPE_INT
);
65 for ($i = 1; $i <= $send_button_count; $i++
)
66 if (sqgetGlobalVar('send' . $i, $send, SQ_POST
)) break;
67 // Send can only be achieved by setting $_POST var. If Send = true then
68 // retrieve other form fields from $_POST
69 if (isset($send) && $send) {
74 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
75 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
76 sqgetGlobalVar('identity',$orig_identity, $SQ_GLOBAL);
77 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
80 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
81 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
82 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
83 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
84 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
85 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
86 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
87 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
88 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
89 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
90 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL, NULL, SQ_TYPE_BIGINT
);
91 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
92 sqgetGlobalVar('fwduid',$fwduid, $SQ_GLOBAL, '');
94 sqgetGlobalVar('attach',$attach, SQ_POST
);
95 sqgetGlobalVar('draft',$draft, SQ_POST
);
96 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
97 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
98 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM
);
100 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
101 $delete_draft = (int)$delete_draft;
104 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
105 $startMessage = (int)$startMessage;
112 sqgetGlobalVar('sigappend', $sigappend, SQ_POST
);
113 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST
);
114 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST
);
115 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST
);
116 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST
);
117 sqgetGlobalVar('do_delete', $do_delete, SQ_POST
);
118 sqgetGlobalVar('delete', $delete, SQ_POST
);
119 sqgetGlobalVar('attachments', $attachments, SQ_POST
);
120 if ( sqgetGlobalVar('return', $temp, SQ_POST
) ) {
121 $html_addr_search_done = 'Use Addresses';
125 if ( sqgetGlobalVar('account', $temp, SQ_GET
) ) {
126 $iAccount = (int) $temp;
133 if ( !sqgetGlobalVar('smaction',$action) )
135 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
136 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
137 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
138 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
139 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
140 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
143 sqgetGlobalVar('smtoken', $submitted_token, $SQ_GLOBAL, '');
146 * Here we decode the data passed in from mailto.php.
148 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET
) ) {
149 $trtable = array('to' => 'send_to',
150 'cc' => 'send_to_cc',
151 'bcc' => 'send_to_bcc',
153 'subject' => 'subject');
154 $mtdata = unserialize($mailtodata);
156 foreach ($trtable as $f => $t) {
157 if ( !empty($mtdata[$f]) ) {
161 unset($mailtodata,$mtdata, $trtable);
164 /* Location (For HTTP 1.1 header("Location: ...") redirects) */
165 $location = get_location();
166 /* Identities (fetch only once) */
167 $idents = get_identities();
169 /* --------------------- Specific Functions ------------------------------ */
171 function replyAllString($header) {
172 global $include_self_reply_all, $idents;
175 * 1) Remove the addresses we'll be sending the message 'to'
177 if (isset($header->reply_to
)) {
178 $excl_ar = $header->getAddr_a('reply_to');
181 * 2) Remove our identities from the CC list (they still can be in the
182 * TO list) only if $include_self_reply_all is turned off
184 if (!$include_self_reply_all) {
185 foreach($idents as $id) {
186 $excl_ar[strtolower(trim($id['email_address']))] = '';
191 * 3) get the addresses.
193 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
196 * 4) generate the string.
198 $url_replytoallcc = '';
199 foreach( $url_replytoall_ar as $email => $personal) {
201 // always quote personal name (can't just quote it if
202 // it contains a comma separator, since it might still
204 $url_replytoallcc .= ", \"$personal\" <$email>";
206 $url_replytoallcc .= ', '. $email;
209 $url_replytoallcc = substr($url_replytoallcc,2);
211 return $url_replytoallcc;
215 * creates top line in reply citations
217 * Line style depends on user preferences.
218 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
219 * @param object $orig_from From: header object.
220 * @param integer $orig_date email's timestamp
221 * @return string reply citation
223 function getReplyCitation($orig_from, $orig_date) {
224 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
226 if (!is_object($orig_from)) {
229 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
232 /* First, return an empty string when no citation style selected. */
233 if (($reply_citation_style == '') ||
($reply_citation_style == 'none')) {
237 /* Make sure our final value isn't an empty string. */
238 if ($sOrig_from == '') {
242 /* Otherwise, try to select the desired citation style. */
243 switch ($reply_citation_style) {
245 // i18n: %s is for author's name
246 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
249 $start = '<quote who="';
251 $full_reply_citation = $start . $sOrig_from . $end;
253 case 'date_time_author':
255 // The first %s is for date string, the second %s is for author's name.
256 // The date uses formating from "D, F j, Y g:i a" and "D, F j, Y H:i"
259 // "On Sat, December 24, 2004 23:59, Santa wrote:"
260 // If you have to put author's name in front of date string, check comments about
261 // argument swapping at http://php.net/sprintf
262 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
265 $start = $reply_citation_start .
266 ($reply_citation_start == '' ?
'' : ' ');
267 $end = $reply_citation_end;
268 $full_reply_citation = $start . $sOrig_from . $end;
274 /* Add line feed and return the citation string. */
275 return ($full_reply_citation . "\n");
279 * Creates header fields in forwarded email body
281 * $default_charset global must be set correctly before you call this function.
282 * @param object $orig_header
285 function getforwardHeader($orig_header) {
286 global $editor_size, $default_charset;
288 // using own strlen function in order to detect correct string length
289 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
290 _("From") => sq_strlen(_("From"),$default_charset),
291 _("Date") => sq_strlen(_("Date"),$default_charset),
292 _("To") => sq_strlen(_("To"),$default_charset),
293 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
294 $maxsize = max($display);
295 $indent = str_pad('',$maxsize+
2);
296 foreach($display as $key => $val) {
297 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
299 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
300 $from = str_replace(' ',' ',$from);
301 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
302 $to = str_replace(' ',' ',$to);
303 $subject = decodeHeader($orig_header->subject
,false,false,true);
304 $subject = str_replace(' ',' ',$subject);
306 // using own str_pad function in order to create correct string pad
307 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH
,$default_charset) .
308 "\n". $display[_("Subject")] . $subject . "\n" .
309 $display[_("From")] . $from . "\n" .
310 $display[_("Date")] . getLongDateString( $orig_header->date
, $orig_header->date_unparsed
). "\n" .
311 $display[_("To")] . $to . "\n";
312 if ($orig_header->cc
!= array() && $orig_header->cc
!='') {
313 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
314 $cc = str_replace(' ',' ',$cc);
315 $bodyTop .= $display[_("Cc")] .$cc . "\n";
317 $bodyTop .= str_pad('', $editor_size -2 , '-') .
321 /* ----------------------------------------------------------------------- */
324 * If the session is expired during a post this restores the compose session
327 $session_expired = false;
328 if (sqsession_is_registered('session_expired_post')) {
329 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION
);
331 * extra check for username so we don't display previous post data from
332 * another user during this session.
334 if (!empty($session_expired_post['username'])
335 && $session_expired_post['username'] == $username) {
336 // these are the vars that we can set from the expired composed session
337 $compo_var_list = array ('send_to', 'send_to_cc', 'body',
338 'startMessage', 'passed_body', 'use_signature', 'signature',
339 'subject', 'newmail', 'send_to_bcc', 'passed_id', 'mailbox',
340 'from_htmladdr_search', 'identity', 'draft_id', 'delete_draft',
341 'mailprio', 'edit_as_new', 'attachments', 'composesession',
342 'request_mdn', 'request_dr', 'fwduid');
344 foreach ($compo_var_list as $var) {
345 if ( isset($session_expired_post[$var]) && !isset($
$var) ) {
346 $
$var = $session_expired_post[$var];
350 if (!empty($attachments))
351 $attachments = unserialize(urldecode($attachments));
353 sqsession_register($composesession,'composesession');
358 $session_expired = true;
360 unset($session_expired_post);
361 sqsession_unregister('session_expired_post');
362 session_write_close();
363 if (!isset($mailbox)) {
366 if ($compose_new_win == '1') {
367 compose_Header($color, $mailbox);
369 $sHeaderJs = (isset($sHeaderJs)) ?
$sHeaderJs : '';
370 if (strpos($action, 'reply') !== false && $reply_focus) {
371 $sOnload = 'checkForm(\''.$replyfocus.'\');';
373 $sOnload = 'checkForm();';
375 displayPageHeader($color, $mailbox,$sHeaderJs,$sOnload);
377 showInputForm($session, false);
381 if (!isset($composesession)) {
383 sqsession_register(0,'composesession');
385 $composesession = (int)$composesession;
388 if (!isset($session) ||
(isset($newmessage) && $newmessage)) {
389 sqsession_unregister('composesession');
390 $session = "$composesession" +
1;
391 $composesession = $session;
392 sqsession_register($composesession,'composesession');
394 if (!empty($compose_messages[$session])) {
395 $composeMessage = $compose_messages[$session];
397 $composeMessage = new Message();
398 $rfc822_header = new Rfc822Header();
399 $composeMessage->rfc822_header
= $rfc822_header;
400 $composeMessage->reply_rfc822_header
= '';
403 // re-add attachments that were already in this message
404 // FIXME: note that technically this is very bad form -
405 // should never directly manipulate an object like this
406 if (!empty($attachments)) {
407 $attachments = unserialize(urldecode($attachments));
408 if (!empty($attachments) && is_array($attachments)) {
409 // sanitize the "att_local_name" since it is user-supplied and used to access the file system
410 // it must be alpha-numeric and 32 characters long (see the use of GenerateRandomString() below)
411 foreach ($attachments as $i => $attachment) {
412 if (empty($attachment->att_local_name
) ||
strlen($attachment->att_local_name
) !== 32) {
413 unset($attachments[$i]);
416 // probably marginal difference between (ctype_alnum + function_exists) and preg_match
417 if (function_exists('ctype_alnum')) {
418 if (!ctype_alnum($attachment->att_local_name
))
419 unset($attachments[$i]);
421 else if (preg_match('/[^0-9a-zA-Z]/', $attachment->att_local_name
))
422 unset($attachments[$i]);
424 if (!empty($attachments))
425 $composeMessage->entities
= $attachments;
429 if (empty($mailbox)) {
435 // validate security token
437 sm_validate_security_token($submitted_token, -1, TRUE);
440 * Set $default_charset to correspond with the user's selection
441 * of language interface.
444 if (! deliverMessage($composeMessage, true)) {
445 showInputForm($session);
448 $draft_message = _("Draft Email Saved");
449 /* If this is a resumed draft, then delete the original */
450 if(isset($delete_draft)) {
451 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
452 sqimap_mailbox_select($imap_stream, $draft_folder);
453 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
454 // in current implementation of sqimap_msgs_list_flag() single message id can
455 // be submitted as string. docs state that it should be array.
456 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
458 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
460 sqimap_logout($imap_stream);
463 $oErrorHandler->saveDelayedErrors();
464 session_write_close();
466 if ($compose_new_win == '1') {
467 if ( !isset($pageheader_sent) ||
!$pageheader_sent ) {
468 header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
470 //FIXME: DON'T ECHO HTML FROM CORE!
471 echo ' <br><br><div style="text-align: center;"><a href="' . $location
472 . '/compose.php?saved_sent=yes&session=' . $composesession . '">'
473 . _("Return") . '</a></div>';
477 if ( !isset($pageheader_sent) ||
!$pageheader_sent ) {
478 header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
479 "&startMessage=1¬e=".urlencode($draft_message));
481 //FIXME: DON'T ECHO HTML FROM CORE!
482 echo ' <br><br><div style="text-align: center;"><a href="' . $location
483 . '/right_main.php?mailbox=' . urlencode($draft_folder)
484 . '&startMessage=1&note=' . urlencode($draft_message) .'">'
485 . _("Return") . '</a></div>';
494 // validate security token
496 sm_validate_security_token($submitted_token, -1, TRUE);
498 if (isset($_FILES['attachfile']) &&
499 $_FILES['attachfile']['tmp_name'] &&
500 $_FILES['attachfile']['tmp_name'] != 'none') {
501 $AttachFailure = saveAttachedFiles($session);
504 if (checkInput(false) && !isset($AttachFailure)) {
505 if ($mailbox == "All Folders") {
506 /* We entered compose via the search results page */
507 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
509 $urlMailbox = urlencode($mailbox);
510 if (! isset($passed_id)) {
514 * Set $default_charset to correspond with the user's selection
515 * of language interface.
519 * This is to change all newlines to \n
520 * We'll change them to \r\n later (in the sendMessage function)
522 $body = str_replace("\r\n", "\n", $body);
523 $body = str_replace("\r", "\n", $body);
526 * Rewrap $body so that no line is bigger than $editor_size
528 $body = explode("\n", $body);
530 foreach ($body as $line) {
531 if( $line <> '-- ' ) {
532 $line = rtrim($line);
534 if (sq_strlen($line, $default_charset) <= $editor_size +
1) {
535 $newBody .= $line . "\n";
537 sqWordWrap($line, $editor_size, $default_charset);
538 $newBody .= $line . "\n";
545 $Result = deliverMessage($composeMessage);
552 // NOTE: this hook changed in 1.5.2 from sending $Result and
553 // $composeMessage as args #2 and #3 to being in an array
555 $temp = array(&$Result, &$composeMessage, &$mail_sent);
556 do_hook('compose_send_after', $temp);
558 showInputForm($session);
562 /* if it is resumed draft, delete draft message */
563 if ( isset($delete_draft)) {
564 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
565 sqimap_mailbox_select($imap_stream, $draft_folder);
566 // bypass_trash=true because message should be saved when deliverMessage() returns true.
567 // in current implementation of sqimap_msgs_list_flag() single message id can
568 // be submitted as string. docs state that it should be array.
569 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
571 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
573 sqimap_logout($imap_stream);
576 * Store the error array in the session because they will be lost on a redirect
578 $oErrorHandler->saveDelayedErrors();
579 session_write_close();
581 if ($compose_new_win == '1') {
582 if ( !isset($pageheader_sent) ||
!$pageheader_sent ) {
583 header("Location: $location/compose.php?mail_sent=$mail_sent");
585 //FIXME: DON'T ECHO HTML FROM CORE!
586 echo ' <br><br><div style="text-align: center;"><a href="' . $location
587 . '/compose.php?mail_sent=$mail_sent">'
588 . _("Return") . '</a></div>';
592 if ( !isset($pageheader_sent) ||
!$pageheader_sent ) {
593 global $return_to_message_after_reply;
594 if (($action === 'reply' ||
$action === 'reply_all' ||
$action === 'forward' ||
$action === 'forward_as_attachment')
595 && $return_to_message_after_reply && $passed_id)
596 header("Location: $location/read_body.php?passed_id=$passed_id&mailbox=$urlMailbox".
597 "&startMessage=$startMessage&mail_sent=$mail_sent");
599 header("Location: $location/right_main.php?mailbox=$urlMailbox".
600 "&startMessage=$startMessage&mail_sent=$mail_sent");
602 //FIXME: DON'T ECHO HTML FROM CORE!
603 echo ' <br><br><div style="text-align: center;"><a href="' . $location
604 . "/right_main.php?mailbox=$urlMailbox"
605 . "&startMessage=$startMessage&mail_sent=$mail_sent\">"
606 . _("Return") . '</a></div>';
611 if ($compose_new_win == '1') {
612 compose_Header($color, $mailbox);
615 displayPageHeader($color, $mailbox);
617 if (isset($AttachFailure)) {
618 plain_error_message(_("Could not move/copy file. File not attached"),
622 showInputForm($session);
623 /* sqimap_logout($imapConnection); */
625 } elseif (isset($html_addr_search_done)) {
627 // validate security token
629 sm_validate_security_token($submitted_token, -1, TRUE);
631 if ($compose_new_win == '1') {
632 compose_Header($color, $mailbox);
635 displayPageHeader($color, $mailbox);
638 if (isset($send_to_search) && is_array($send_to_search)) {
639 foreach ($send_to_search as $k => $v) {
640 if (substr($k, 0, 1) == 'T') {
646 elseif (substr($k, 0, 1) == 'C') {
652 elseif (substr($k, 0, 1) == 'B') {
654 $send_to_bcc .= ', ';
660 showInputForm($session);
661 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
662 if (isset($_FILES['attachfile']) &&
663 $_FILES['attachfile']['tmp_name'] &&
664 $_FILES['attachfile']['tmp_name'] != 'none') {
665 if(saveAttachedFiles($session)) {
666 plain_error_message(_("Could not move/copy file. File not attached"));
670 * I am using an include so as to elminiate an extra unnecessary
671 * click. If you can think of a better way, please implement it.
673 include_once('./addrbook_search_html.php');
674 } elseif (isset($attach)) {
676 // validate security token
678 sm_validate_security_token($submitted_token, -1, TRUE);
680 if ($compose_new_win == '1') {
681 compose_Header($color, $mailbox);
683 displayPageHeader($color, $mailbox);
685 if (saveAttachedFiles($session)) {
686 plain_error_message(_("Could not move/copy file. File not attached"));
688 showInputForm($session);
690 elseif (isset($sigappend)) {
692 // validate security token
694 sm_validate_security_token($submitted_token, -1, TRUE);
696 $signature = $idents[$identity]['signature'];
698 $body .= "\n\n".($prefix_sig==true?
"-- \n":'').$signature;
699 if ($compose_new_win == '1') {
700 compose_Header($color, $mailbox);
702 displayPageHeader($color, $mailbox);
704 showInputForm($session);
705 } elseif (isset($do_delete)) {
707 // validate security token
709 sm_validate_security_token($submitted_token, -1, TRUE);
711 if ($compose_new_win == '1') {
712 compose_Header($color, $mailbox);
714 displayPageHeader($color, $mailbox);
717 if (isset($delete) && is_array($delete)) {
718 foreach($delete as $index) {
719 if (!empty($composeMessage->entities
) && isset($composeMessage->entities
[$index])) {
720 $composeMessage->entities
[$index]->purgeAttachments();
721 // FIXME: one person reported that unset() didn't do anything at all here, so this is a work-around... but it triggers PHP notices if the unset() doesn't work, which should be fixed... but bigger question is if unset() doesn't work here, what about everywhere else? Anyway, uncomment this if you think you need it
722 //$composeMessage->entities[$index] = NULL;
723 unset ($composeMessage->entities
[$index]);
726 $new_entities = array();
727 foreach ($composeMessage->entities
as $entity) {
728 $new_entities[] = $entity;
730 $composeMessage->entities
= $new_entities;
732 showInputForm($session);
735 * This handles the default case as well as the error case
736 * (they had the same code) --> if (isset($smtpErrors))
739 if ($compose_new_win == '1') {
740 compose_Header($color, $mailbox);
742 displayPageHeader($color, $mailbox);
747 if (!isset($passed_ent_id)) {
750 if (!isset($passed_id)) {
753 if (!isset($mailbox)) {
756 if (!isset($action)) {
760 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
762 // forward as attachment - subject is in the message in session
764 if ($action == 'forward_as_attachment' && empty($values['subject']))
765 $subject = $composeMessage->rfc822_header
->subject
;
767 /* in case the origin is not read_body.php */
768 if (isset($send_to)) {
769 $values['send_to'] = $send_to;
771 if (isset($send_to_cc)) {
772 $values['send_to_cc'] = $send_to_cc;
774 if (isset($send_to_bcc)) {
775 $values['send_to_bcc'] = $send_to_bcc;
777 if (isset($subject)) {
778 $values['subject'] = $subject;
780 if (isset($mailprio)) {
781 $values['mailprio'] = $mailprio;
783 if (isset($orig_identity)) {
784 $values['identity'] = $orig_identity;
786 showInputForm($session, $values);
791 /**************** Only function definitions go below *************/
793 function getforwardSubject($subject)
795 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
796 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
797 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
798 $subject = '[Fwd: ' . $subject . ']';
803 /* This function is used when not sending or adding attachments */
804 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
805 global $editor_size, $default_use_priority, $body, $idents,
806 $use_signature, $data_dir, $username,
807 $key, $imapServerAddress, $imapPort, $imap_stream_options,
808 $composeMessage, $body_quote, $request_mdn, $request_dr,
809 $mdn_user_support, $languages, $squirrelmail_language,
810 $default_charset, $do_not_reply_to_self;
813 * Set $default_charset to correspond with the user's selection
814 * of language interface. $default_charset global is not correct,
815 * if message is composed in new window.
819 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
823 $imapConnection = sqimap_login($username, false, $imapServerAddress,
824 $imapPort, 0, $imap_stream_options);
826 sqimap_mailbox_select($imapConnection, $mailbox);
827 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
830 if ($passed_ent_id) {
831 /* redefine the messsage in case of message/rfc822 */
832 $message = $message->getEntity($passed_ent_id);
833 /* message is an entity which contains the envelope and type0=message
834 * and type1=rfc822. The actual entities are childs from
835 * $message->entities[0]. That's where the encoding and is located
838 $entities = $message->entities
[0]->findDisplayEntity
839 (array(), $alt_order = array('text/plain'));
840 if (!count($entities)) {
841 $entities = $message->entities
[0]->findDisplayEntity
842 (array(), $alt_order = array('text/plain','text/html'));
844 $orig_header = $message->rfc822_header
; /* here is the envelope located */
845 /* redefine the message for picking up the attachments */
846 $message = $message->entities
[0];
849 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
850 if (!count($entities)) {
851 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
853 $orig_header = $message->rfc822_header
;
856 $type0 = $message->type0
;
857 $type1 = $message->type1
;
858 foreach ($entities as $ent) {
859 $msg = $message->getEntity($ent);
860 $type0 = $msg->type0
;
861 $type1 = $msg->type1
;
862 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
863 $body_part_entity = $message->getEntity($ent);
864 $bodypart = decodeBody($unencoded_bodypart,
865 $body_part_entity->header
->encoding
);
866 if ($type1 == 'html') {
867 $bodypart = str_replace("\n", ' ', $bodypart);
868 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
869 $bodypart = str_replace(array(' ','>','<'),array(' ','>','<'),$bodypart);
870 $bodypart = strip_tags($bodypart);
872 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
873 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
874 if (mb_detect_encoding($bodypart) != 'ASCII') {
875 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
879 // charset encoding in compose form stuff
880 if (isset($body_part_entity->header
->parameters
['charset'])) {
881 $actual = $body_part_entity->header
->parameters
['charset'];
883 $actual = 'us-ascii';
886 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
887 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
889 // end of charset encoding in compose
893 if ($default_use_priority) {
894 $mailprio = substr($orig_header->priority
,0,1);
902 $from_o = $orig_header->from
;
903 if (is_array($from_o)) {
904 if (isset($from_o[0])) {
905 $from_o = $from_o[0];
908 if (is_object($from_o)) {
909 $orig_from = $from_o->getAddress();
914 $identities = array();
915 if (count($idents) > 1) {
916 foreach($idents as $nr=>$data) {
917 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
918 $identities[] = $enc_from_name;
921 $identity_match = $orig_header->findAddress($identities);
922 if ($identity_match !== FALSE) {
923 $identity = $identity_match;
929 $use_signature = FALSE;
930 $composeMessage->rfc822_header
= $orig_header;
931 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
932 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
933 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
934 $send_from = $orig_header->getAddr_s('from');
935 $send_from_parts = new AddressStructure();
936 $send_from_parts = $orig_header->parseAddress($send_from);
937 $send_from_add = $send_from_parts->mailbox
. '@' . $send_from_parts->host
;
938 $identity = find_identity(array($send_from_add));
939 $subject = decodeHeader($orig_header->subject
,false,false,true);
941 // Remember the receipt settings
942 $request_mdn = $mdn_user_support && !empty($orig_header->dnt
) ?
'1' : '0';
943 $request_dr = $mdn_user_support && !empty($orig_header->drnt
) ?
'1' : '0';
945 /* remember the references and in-reply-to headers in case of an reply */
946 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination (drafts folder?); is this possible?
947 $composeMessage->rfc822_header
->more_headers
['References'] = $orig_header->references
;
948 $composeMessage->rfc822_header
->more_headers
['In-Reply-To'] = $orig_header->in_reply_to
;
949 // rewrap the body to clean up quotations and line lengths
950 sqBodyWrap($body, $editor_size);
951 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
952 if (!empty($orig_header->x_sm_flag_reply
))
953 $composeMessage->rfc822_header
->more_headers
['X-SM-Flag-Reply'] = $orig_header->x_sm_flag_reply
;
954 //TODO: completely unclear if should be using $compose_session instead of $session below
955 $compose_messages[$session] = $composeMessage;
956 sqsession_register($compose_messages,'compose_messages');
958 case ('edit_as_new'):
959 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
960 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
961 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
962 $subject = decodeHeader($orig_header->subject
,false,false,true);
963 $mailprio = $orig_header->priority
;
965 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
966 // rewrap the body to clean up quotations and line lengths
967 sqBodyWrap($body, $editor_size);
971 $subject = getforwardSubject(decodeHeader($orig_header->subject
,false,false,true));
972 $body = getforwardHeader($orig_header) . $body;
973 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
974 // forwarded message text should be as undisturbed as possible, so commenting out this call
975 // sqUnWordWrap($body);
976 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
978 //add a blank line after the forward headers
979 $body = "\n" . $body;
981 case ('forward_as_attachment'):
982 $subject = getforwardSubject(decodeHeader($orig_header->subject
,false,false,true));
983 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
984 $subject = decodeHeader($orig_header->subject
,false,false,true);
985 $subject = str_replace('"', "'", $subject);
986 $subject = trim($subject);
987 if (substr(strtolower($subject), 0, 4) != 'fwd:') {
988 $subject = 'Fwd: ' . $subject;
993 if(isset($orig_header->mail_followup_to
) && $orig_header->mail_followup_to
) {
994 $send_to = $orig_header->getAddr_s('mail_followup_to');
996 $send_to_cc = replyAllString($orig_header);
997 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
998 $send_to_cc = str_replace('""', '"', $send_to_cc);
1001 // skip this if send_to was already set right above here
1003 $send_to = $orig_header->reply_to
;
1004 if (is_array($send_to) && count($send_to)) {
1005 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
1006 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
1007 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
1009 $send_to = $orig_header->getAddr_s('from', ',', FALSE, TRUE);
1012 $send_to = decodeHeader($send_to,false,false,true);
1013 $send_to = str_replace('""', '"', $send_to);
1016 // If user doesn't want replies to her own messages
1017 // going back to herself (instead send again to the
1018 // original recipient of the message being replied to),
1019 // then iterate through identities, checking if the TO
1020 // field is one of them (if the reply is to ourselves)
1022 // Note we don't bother if the original message doesn't
1023 // have anything in the TO field itself (because that's
1024 // what we use if we change the recipient to be that of
1025 // the previous message)
1027 if ($do_not_reply_to_self && !empty($orig_header->to
)) {
1031 foreach($idents as $id) {
1033 if (!empty($id['email_address'])
1034 && strpos($send_to, $id['email_address']) !== FALSE) {
1036 // if this is a reply-all, the original recipient
1037 // is already in the CC field, so we can just blank
1038 // the recipient (TO field) (as long as the CC field
1039 // isn't empty that is)... but then move the CC into
1040 // the TO, so TO isn't empty
1042 if ($action == 'reply_all' && !empty($send_to_cc)) {
1043 $orig_to = $send_to_cc;
1048 $orig_to = $orig_header->to
;
1049 if (is_array($orig_to) && count($orig_to)) {
1050 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1051 } else if (is_object($orig_to)) { /* unneccesarry, just for failsafe purpose */
1052 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1056 $orig_to = decodeHeader($orig_to,false,false,true);
1057 $orig_to = str_replace('""', '"', $orig_to);
1063 // if the reply was addressed back to ourselves,
1064 // we will send it to the TO of the previous message
1066 if (!empty($orig_to)) {
1068 $send_to = $orig_to;
1070 // in this case, we also want to reset the FROM
1071 // identity as well (it should match the original
1072 // *FROM* header instead of TO or CC)
1074 if (count($idents) > 1) {
1076 foreach($idents as $i => $id) {
1077 if (!empty($id['email_address'])
1078 && strpos($orig_from, $id['email_address']) !== FALSE) {
1090 $subject = decodeHeader($orig_header->subject
,false,false,true);
1091 $subject = str_replace('"', "'", $subject);
1092 $subject = trim($subject);
1093 if (substr(strtolower($subject), 0, 3) != 're:') {
1094 $subject = 'Re: ' . $subject;
1096 /* this corrects some wrapping/quoting problems on replies */
1097 $rewrap_body = explode("\n", $body);
1098 $from = (is_array($orig_header->from
) && !empty($orig_header->from
)) ?
$orig_header->from
[0] : $orig_header->from
;
1100 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
1101 foreach ($rewrap_body as $line) {
1102 if ($strip_sigs && rtrim($line, "\r\n") == '-- ') {
1105 if (preg_match("/^(>+)/", $line, $matches)) {
1107 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
1109 $body .= $body_quote . (!empty($body_quote) ?
' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ?
' ' : ''), rtrim($line)) . "\n";
1113 //rewrap the body to clean up quotations and line lengths
1114 $body = sqBodyWrap ($body, $editor_size);
1116 $body = getReplyCitation($from , $orig_header->date
) . $body;
1117 $composeMessage->reply_rfc822_header
= $orig_header;
1123 //FIXME: we used to register $compose_messages in the session here, but not any more - so do we still need the session_write_close() and sqimap_logout() here? We probably need the IMAP logout, but what about the session closure?
1124 session_write_close();
1125 sqimap_logout($imapConnection);
1127 $ret = array( 'send_to' => $send_to,
1128 'send_to_cc' => $send_to_cc,
1129 'send_to_bcc' => $send_to_bcc,
1130 'subject' => $subject,
1131 'mailprio' => $mailprio,
1133 'identity' => $identity );
1136 } /* function newMail() */
1139 * downloads attachments from original message, stores them in attachment directory and adds
1140 * them to composed message.
1141 * @param object $message
1142 * @param object $composeMessage
1143 * @param integer $passed_id
1144 * @param mixed $entities
1145 * @param mixed $imapConnection
1148 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
1149 global $squirrelmail_language, $languages, $username, $attachment_dir;
1151 if (!count($message->entities
) ||
1152 ($message->type0
== 'message' && $message->type1
== 'rfc822')) {
1153 if ( !in_array($message->entity_id
, $entities) && $message->entity_id
) {
1154 switch ($message->type0
) {
1156 if ($message->type1
== 'rfc822') {
1157 $filename = $message->rfc822_header
->subject
;
1158 if ($filename == "") {
1159 $filename = "untitled-".$message->entity_id
;
1161 $filename .= '.eml';
1163 $filename = $message->getFilename();
1167 if (!$message->mime_header
) { /* temporary hack */
1168 $message->mime_header
= $message->header
;
1170 $filename = $message->getFilename();
1173 //FIXME: added three args to the following, so as to set the last one to TRUE, to mimick a fix in 1.4.21 (#2994865), but didn't test this (note that in 1.4.21, the 2nd and 3rd args are FALSE, but here in this code, they weren't being specified (thus defaulting to TRUE), so I don't know if that means this code is outdated and should have been changed to FALSE, FALSE or if this code is completely different and the addition of the TRUE for arg #4 is wrong
1174 $filename = str_replace(' ', ' ', decodeHeader($filename, true, true, true));
1175 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1176 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1177 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1180 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1181 $localfilename = sq_get_attach_tempfile();
1182 $message->att_local_name
= $localfilename;
1184 $composeMessage->initAttachment($message->type0
.'/'.$message->type1
,$filename,
1187 /* Write Attachment to file */
1188 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1189 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id
, $message->header
->encoding
, $fp);
1193 for ($i=0, $entCount=count($message->entities
); $i<$entCount;$i++
) {
1194 $composeMessage=getAttachments($message->entities
[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1197 return $composeMessage;
1200 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1201 $passed_ent_id='', $imapConnection) {
1202 if (!$passed_ent_id) {
1203 $body_a = sqimap_run_command($imapConnection,
1204 'FETCH '.$passed_id.' RFC822',
1205 TRUE, $response, $readmessage,
1208 $body_a = sqimap_run_command($imapConnection,
1209 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1210 TRUE, $response, $readmessage, TRUE);
1211 $message = $message->parent
;
1213 if ($response == 'OK') {
1214 $subject = encodeHeader($message->rfc822_header
->subject
);
1215 array_shift($body_a);
1217 $body = implode('', $body_a) . "\r\n";
1219 global $username, $attachment_dir;
1220 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1221 $localfilename = sq_get_attach_tempfile();
1222 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1223 fwrite ($fp, $body);
1225 $composeMessage->initAttachment('message/rfc822',$subject.'.eml',
1228 return $composeMessage;
1231 function showInputForm ($session, $values=false) {
1232 global $send_to, $send_to_cc, $send_to_bcc,
1233 $body, $startMessage, $action, $attachments,
1234 $use_signature, $signature, $prefix_sig, $session_expired,
1235 $editor_size, $editor_height, $subject, $newmail,
1236 $use_javascript_addr_book, $passed_id, $mailbox, $fwduid,
1237 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1238 $username, $data_dir, $identity, $idents, $delete_draft,
1239 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1240 $composeMessage, $composesession, $default_charset,
1241 $compose_onsubmit, $oTemplate, $oErrorHandler;
1243 if (checkForJavascript()) {
1244 $onfocus = ' onfocus="alreadyFocused=true;"';
1245 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1249 $onfocus_array = array();
1253 $send_to = $values['send_to'];
1254 $send_to_cc = $values['send_to_cc'];
1255 $send_to_bcc = $values['send_to_bcc'];
1256 $subject = $values['subject'];
1257 $mailprio = $values['mailprio'];
1258 $body = $values['body'];
1259 $identity = (int) $values['identity'];
1261 $send_to = decodeHeader($send_to, true, false);
1262 $send_to_cc = decodeHeader($send_to_cc, true, false);
1263 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1266 if ($use_javascript_addr_book) {
1267 //FIXME: NO HTML IN CORE!
1268 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1269 'function open_abook() { ' . "\n" .
1270 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1271 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1272 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1273 ' nwin.opener = document.windows;' . "\n" .
1275 "// -->\n</script>\n\n";
1278 //FIXME: NO HTML IN CORE!
1279 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1280 'enctype="multipart/form-data"';
1282 $compose_onsubmit = array();
1284 do_hook('compose_form', $null);
1286 // Plugins that use compose_form hook can add an array entry
1287 // to the globally scoped $compose_onsubmit; we add them up
1288 // here and format the form tag's full onsubmit handler.
1289 // Each plugin should use "return false" if they need to
1290 // stop form submission but otherwise should NOT use "return
1291 // true" to give other plugins the chance to do what they need
1292 // to do; SquirrelMail itself will add the final "return true".
1293 // Onsubmit text is enclosed inside of double quotes, so plugins
1294 // need to quote accordingly.
1296 // Also, plugin authors should try to retain compatibility with
1297 // the Compose Extras plugin by resetting its compose submit
1298 // counter when preventing form submit. Use this code:
1299 // if (your-code-here) { submit_count = 0; return false; }
1301 if (checkForJavascript()) {
1302 if (empty($compose_onsubmit))
1303 $compose_onsubmit = array();
1304 else if (!is_array($compose_onsubmit))
1305 $compose_onsubmit = array($compose_onsubmit);
1307 $onsubmit_text = '';
1308 foreach ($compose_onsubmit as $text) {
1309 $text = trim($text);
1310 if (!empty($text)) {
1311 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1313 $onsubmit_text .= $text;
1317 if (!empty($onsubmit_text))
1318 //FIXME: DON'T ECHO HTML FROM CORE!
1319 echo ' onsubmit="' . $onsubmit_text . ' return true;"';
1323 //FIXME: NO HTML IN CORE!
1326 //FIXME: DON'T ECHO HTML FROM CORE!
1327 echo addHidden('smtoken', sm_generate_security_token());
1329 //FIXME: DON'T ECHO HTML FROM CORE!
1330 echo addHidden('startMessage', $startMessage);
1332 if ($action == 'draft') {
1333 //FIXME: DON'T ECHO HTML FROM CORE!
1334 echo addHidden('delete_draft', $passed_id);
1336 if (isset($delete_draft)) {
1337 //FIXME: DON'T ECHO HTML FROM CORE!
1338 echo addHidden('delete_draft', $delete_draft);
1340 if (isset($session)) {
1341 //FIXME: DON'T ECHO HTML FROM CORE!
1342 echo addHidden('session', $session);
1345 if (isset($passed_id)) {
1346 //FIXME: DON'T ECHO HTML FROM CORE!
1347 echo addHidden('passed_id', $passed_id);
1350 if (isset($fwduid)) {
1351 //FIXME: DON'T ECHO HTML FROM CORE!
1352 echo addHidden('fwduid', $fwduid);
1355 if ($saved_draft == 'yes') {
1356 $oTemplate->assign('note', _("Your draft has been saved."));
1357 $oTemplate->display('note.tpl');
1359 if ($mail_sent == 'yes') {
1360 $oTemplate->assign('note', _("Your mail has been sent."));
1361 $oTemplate->display('note.tpl');
1363 if ($compose_new_win == '1') {
1364 $oTemplate->display('compose_newwin_close.tpl');
1367 if ($location_of_buttons == 'top') {
1368 //FIXME: DON'T ECHO HTML FROM CORE!
1369 showComposeButtonRow();
1372 $identities = array();
1373 if (count($idents) > 1) {
1375 foreach($idents as $id => $data) {
1376 $identities[$id] = $data['full_name'].' <'.$data['email_address'].'>';
1380 $oTemplate->assign('identities', $identities);
1381 $oTemplate->assign('identity_def', $identity);
1382 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1384 $oTemplate->assign('to', sm_encode_html_special_chars($send_to));
1385 $oTemplate->assign('cc', sm_encode_html_special_chars($send_to_cc));
1386 $oTemplate->assign('bcc', sm_encode_html_special_chars($send_to_bcc));
1387 $oTemplate->assign('subject', sm_encode_html_special_chars($subject));
1391 global $accesskey_compose_to, $accesskey_compose_cc,
1392 $accesskey_compose_identity, $accesskey_compose_bcc,
1393 $accesskey_compose_subject;
1394 $oTemplate->assign('accesskey_compose_identity', $accesskey_compose_identity);
1395 $oTemplate->assign('accesskey_compose_to', $accesskey_compose_to);
1396 $oTemplate->assign('accesskey_compose_cc', $accesskey_compose_cc);
1397 $oTemplate->assign('accesskey_compose_bcc', $accesskey_compose_bcc);
1398 $oTemplate->assign('accesskey_compose_subject', $accesskey_compose_subject);
1400 $oTemplate->display('compose_header.tpl');
1402 if ($location_of_buttons == 'between') {
1403 //FIXME: DON'T ECHO HTML FROM CORE!
1404 showComposeButtonRow();
1408 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1409 $signature = $idents[$identity]['signature'];
1411 if ($sig_first == '1') {
1413 * FIXME: test is specific to ja_JP translation implementation.
1414 * This test might apply incorrect conversion to other translations, but
1415 * use of 7bit iso-2022-jp charset in other translations might have other
1418 if ($default_charset == 'iso-2022-jp') {
1419 $body_str = "\n\n".($prefix_sig==true?
"-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1421 $body_str = "\n\n".($prefix_sig==true?
"-- \n":'').decodeHeader($signature,false,false);
1423 $body_str .= "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1425 $body_str = "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1426 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1427 if ($default_charset == 'iso-2022-jp') {
1428 $body_str .= "\n\n".($prefix_sig==true?
"-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1430 $body_str .= "\n\n".($prefix_sig==true?
"-- \n":'').decodeHeader($signature,false,false);
1434 $body_str = sm_encode_html_special_chars(decodeHeader($body,false,false));
1437 $oTemplate->assign('editor_width', (int)$editor_size);
1438 $oTemplate->assign('editor_height', (int)$editor_height);
1439 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1440 $oTemplate->assign('body', $body_str);
1441 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1445 global $accesskey_compose_body, $accesskey_compose_send;
1446 $oTemplate->assign('accesskey_compose_body', $accesskey_compose_body);
1447 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1449 $oTemplate->display ('compose_body.tpl');
1451 if ($location_of_buttons == 'bottom') {
1452 //FIXME: DON'T ECHO HTML FROM CORE!
1453 showComposeButtonRow();
1456 // composeMessage can be empty when coming from a restored session
1457 if (is_object($composeMessage) && $composeMessage->entities
)
1458 $attach_array = $composeMessage->entities
;
1459 if ($session_expired && !empty($attachments) && is_array($attachments))
1460 $attach_array = $attachments;
1462 /* This code is for attachments */
1463 if ((bool) ini_get('file_uploads')) {
1465 /* Calculate the max size for an uploaded file.
1466 * This is advisory for the user because we can't actually prevent
1467 * people to upload too large files. */
1469 /* php.ini vars which influence the max for uploads */
1470 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1471 foreach($configvars as $var) {
1472 /* skip 0 or empty values, and -1 which means 'unlimited' */
1473 if( $size = getByteSize(ini_get($var)) ) {
1474 if ( $size != '-1' ) {
1481 global $username, $attachment_dir;
1482 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1483 if (!empty($attach_array)) {
1484 foreach ($attach_array as $key => $attachment) {
1485 $attached_file = $attachment->att_local_name
;
1486 if ($attachment->att_local_name ||
$attachment->body_part
) {
1487 $attached_filename = decodeHeader($attachment->mime_header
->getParameter('name'));
1488 $type = $attachment->mime_header
->type0
.'/'.
1489 $attachment->mime_header
->type1
;
1493 $a['FileName'] = $attached_filename;
1494 $a['ContentType'] = $type;
1495 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1502 $oTemplate->assign('max_file_size', empty($max) ?
-1 : $max);
1503 $oTemplate->assign('attachments', $attach);
1507 global $accesskey_compose_attach_browse, $accesskey_compose_attach,
1508 $accesskey_compose_delete_attach;
1509 $oTemplate->assign('accesskey_compose_attach_browse', $accesskey_compose_attach_browse);
1510 $oTemplate->assign('accesskey_compose_attach', $accesskey_compose_attach);
1511 $oTemplate->assign('accesskey_compose_delete_attach', $accesskey_compose_delete_attach);
1513 $oTemplate->display('compose_attachments.tpl');
1514 } // End of file_uploads if-block
1515 /* End of attachment code */
1517 $oTemplate->assign('username', $username);
1518 $oTemplate->assign('smaction', $action);
1519 $oTemplate->assign('mailbox', $mailbox);
1520 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER
);
1521 $oTemplate->assign('querystring', $queryString);
1522 $oTemplate->assign('composesession', $composesession);
1523 $oTemplate->assign('send_button_count', unique_widget_name('send', TRUE));
1524 if (!empty($attach_array))
1525 $oTemplate->assign('attachments', urlencode(serialize($attach_array)));
1527 $aUserNotices = array();
1529 // File uploads are off, so we didn't show that part of the form.
1530 // To avoid bogus bug reports, tell the user why.
1531 if (!(bool) ini_get('file_uploads')) {
1532 $aUserNotices[] = _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.");
1535 $oTemplate->assign('user_notices', $aUserNotices);
1537 $oTemplate->display('compose_form_close.tpl');
1539 if ($compose_new_win=='1') {
1540 $oTemplate->display('compose_newwin_close.tpl');
1543 $oErrorHandler->setDelayedErrors(false);
1544 $oTemplate->display('footer.tpl');
1548 function showComposeButtonRow() {
1549 global $use_javascript_addr_book, $save_as_draft,
1550 $default_use_priority, $mailprio, $default_use_mdn,
1551 $request_mdn, $request_dr,
1552 $data_dir, $username;
1554 global $oTemplate, $buffer_hook;
1556 if ($default_use_priority) {
1557 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1558 $priority = isset($mailprio) ?
$mailprio : 3;
1560 $priorities = array();
1564 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1566 $address_book_button_attribs = array();
1567 global $accesskey_compose_addresses;
1568 if ($accesskey_compose_addresses != 'NONE')
1569 $address_book_button_attribs['accesskey'] = $accesskey_compose_addresses;
1570 if ($use_javascript_addr_book && checkForJavascript()) {
1571 $addr_book = addButton(_("Addresses"),
1573 array_merge($address_book_button_attribs, array('onclick' => 'javascript:open_abook();')));
1575 $addr_book = addSubmit(_("Addresses"), 'html_addr_search', $address_book_button_attribs);
1578 $oTemplate->assign('allow_priority', $default_use_priority==1);
1579 $oTemplate->assign('priority_list', $priorities);
1580 $oTemplate->assign('current_priority', $priority);
1582 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1583 $oTemplate->assign('read_receipt', $request_mdn=='1');
1584 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1586 $oTemplate->assign('drafts_enabled', $save_as_draft);
1587 $oTemplate->assign('address_book_button', $addr_book);
1591 global $accesskey_compose_priority, $accesskey_compose_on_read,
1592 $accesskey_compose_on_delivery, $accesskey_compose_signature,
1593 $accesskey_compose_save_draft, $accesskey_compose_send;
1594 $oTemplate->assign('accesskey_compose_priority', $accesskey_compose_priority);
1595 $oTemplate->assign('accesskey_compose_on_read', $accesskey_compose_on_read);
1596 $oTemplate->assign('accesskey_compose_on_delivery', $accesskey_compose_on_delivery);
1597 $oTemplate->assign('accesskey_compose_signature', $accesskey_compose_signature);
1598 $oTemplate->assign('accesskey_compose_save_draft', $accesskey_compose_save_draft);
1599 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1601 $oTemplate->display('compose_buttons.tpl');
1604 function checkInput ($show) {
1606 * I implemented the $show variable because the error messages
1607 * were getting sent before the page header. So, I check once
1608 * using $show=false, and then when i'm ready to display the error
1609 * message, show=true
1611 global $send_to, $send_to_cc, $send_to_bcc;
1613 $send_to = trim($send_to);
1614 $send_to_cc = trim($send_to_cc);
1615 $send_to_bcc = trim($send_to_bcc);
1616 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1618 plain_error_message(_("You have not filled in the \"To:\" field."));
1623 } /* function checkInput() */
1626 /* True if FAILURE */
1627 function saveAttachedFiles($session) {
1628 global $composeMessage, $username, $attachment_dir;
1630 /* get out of here if no file was attached at all */
1631 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1635 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1636 $localfilename = sq_get_attach_tempfile();
1637 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1639 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1640 // if that doesn't work, try a simple rename.
1641 if (!sq_call_function_suppress_errors('move_uploaded_file', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1642 if (!sq_call_function_suppress_errors('rename', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1646 $type = strtolower($_FILES['attachfile']['type']);
1647 $name = $_FILES['attachfile']['name'];
1648 $composeMessage->initAttachment($type, $name, $localfilename);
1652 * Parse strings such as "8M" and "2k" into their corresponding size in bytes
1654 * NOTE: This function only recognizes the suffixes "K", "M" and "G"
1655 * and will probably break very easily if the given size is in
1656 * some completely different format.
1658 * @param string $ini_size The input string to be converted
1660 * @return mixed Boolean FALSE if something went wrong (the value passed in
1661 * was empty?, the suffix was not recognized?), otherwise, the
1662 * converted size in bytes (just the number (as an integer),
1663 * no unit identifier included)
1666 function getByteSize($ini_size) {
1672 $ini_size = trim($ini_size);
1674 // if there's some kind of letter at the end of the string we need to multiply.
1675 if(!is_numeric(substr($ini_size, -1))) {
1677 switch(strtoupper(substr($ini_size, -1))) {
1679 $bytesize = 1073741824;
1682 $bytesize = 1048576;
1691 return ($bytesize * (int)substr($ini_size, 0, -1));
1699 * temporary function to make use of the deliver class.
1700 * In the future the responsible backend should be automaticly loaded
1701 * and conf.pl should show a list of available backends.
1702 * The message also should be constructed by the message class.
1704 * @param object $composeMessage The message being sent. Please note
1705 * that it is passed by reference and
1706 * will be returned modified, with additional
1707 * headers, such as Message-ID, Date, In-Reply-To,
1708 * References, and so forth.
1710 * @return boolean FALSE if delivery failed, or some non-FALSE value
1714 function deliverMessage(&$composeMessage, $draft=false) {
1715 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1716 $username, $identity, $idents, $data_dir,
1717 $request_mdn, $request_dr, $default_charset, $useSendmail,
1718 $domain, $action, $default_move_to_sent, $move_to_sent,
1719 $imapServerAddress, $imapPort, $imap_stream_options, $sent_folder, $key;
1721 $rfc822_header = $composeMessage->rfc822_header
;
1723 $abook = addressbook_init(false, true);
1724 $rfc822_header->to
= $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1725 $rfc822_header->cc
= $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1726 $rfc822_header->bcc
= $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1727 $rfc822_header->priority
= $mailprio;
1728 $rfc822_header->subject
= $subject;
1730 $special_encoding='';
1731 if (strtolower($default_charset) == 'iso-2022-jp') {
1732 if (mb_detect_encoding($body) == 'ASCII') {
1733 $special_encoding = '8bit';
1735 $body = mb_convert_encoding($body, 'JIS');
1736 $special_encoding = '7bit';
1739 $composeMessage->setBody($body);
1742 $reply_to = $idents[$identity]['reply_to'];
1743 if ($reply_to && strpos($reply_to, '@') === FALSE)
1744 $reply_to .= '@' . $domain;
1746 $from_addr = build_from_header($identity);
1747 $rfc822_header->from
= $rfc822_header->parseAddress($from_addr,true);
1749 $rfc822_header->reply_to
= $rfc822_header->parseAddress($reply_to,true);
1751 /* Receipt: On Read */
1752 if (isset($request_mdn) && $request_mdn) {
1753 $rfc822_header->dnt
= $rfc822_header->parseAddress($from_addr,true);
1754 } elseif (isset($rfc822_header->dnt
)) {
1755 unset($rfc822_header->dnt
);
1758 /* Receipt: On Delivery */
1759 if (!empty($request_dr)) {
1760 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination; is this possible?
1761 $rfc822_header->more_headers
['Return-Receipt-To'] = $from_addr;
1762 } elseif (isset($rfc822_header->more_headers
['Return-Receipt-To'])) {
1763 unset($rfc822_header->more_headers
['Return-Receipt-To']);
1766 /* multipart messages */
1767 if (count($composeMessage->entities
)) {
1768 $message_body = new Message();
1769 $message_body->body_part
= $composeMessage->body_part
;
1770 $composeMessage->body_part
= '';
1771 $mime_header = new MessageHeader
;
1772 $mime_header->type0
= 'text';
1773 $mime_header->type1
= 'plain';
1774 if ($special_encoding) {
1775 $mime_header->encoding
= $special_encoding;
1777 $mime_header->encoding
= '8bit';
1779 if ($default_charset) {
1780 $mime_header->parameters
['charset'] = $default_charset;
1782 $message_body->mime_header
= $mime_header;
1783 array_unshift($composeMessage->entities
, $message_body);
1784 $content_type = new ContentType('multipart/mixed');
1786 $content_type = new ContentType('text/plain');
1787 if ($special_encoding) {
1788 $rfc822_header->encoding
= $special_encoding;
1790 $rfc822_header->encoding
= '8bit';
1792 if ($default_charset) {
1793 $content_type->properties
['charset']=$default_charset;
1797 $rfc822_header->content_type
= $content_type;
1798 $composeMessage->rfc822_header
= $rfc822_header;
1799 if ($action == 'reply' ||
$action == 'reply_all') {
1800 global $passed_id, $passed_ent_id;
1801 $reply_id = $passed_id;
1802 $reply_ent_id = $passed_ent_id;
1808 /* Here you can modify the message structure just before we hand
1809 it over to deliver; plugin authors note that $composeMessage
1810 is sent and modified by reference since 1.5.2 */
1811 do_hook('compose_send', $composeMessage);
1812 //TODO: need to migrate to the following, but it neessitates changes in existing plugins, since the args are now an array
1813 //$temp = array(&$composeMessage, &$draft);
1814 //do_hook('compose_send', $temp);
1816 // remove special header if present and prepare to mark
1817 // a message that a draft was composed in reply to
1818 if (!empty($composeMessage->rfc822_header
->x_sm_flag_reply
) && !$draft) {
1819 global $passed_id, $mailbox;
1820 // tricks the code below that marks the reply
1821 list($action, $passed_id, $mailbox) = explode('::', $rfc822_header->x_sm_flag_reply
, 3);
1822 unset($composeMessage->rfc822_header
->x_sm_flag_reply
);
1823 unset($composeMessage->rfc822_header
->more_headers
['X-SM-Flag-Reply']);
1826 if (!$useSendmail && !$draft) {
1827 require_once(SM_PATH
. 'class/deliver/Deliver_SMTP.class.php');
1828 $deliver = new Deliver_SMTP();
1829 global $smtpServerAddress, $smtpPort, $smtp_stream_options, $pop_before_smtp, $pop_before_smtp_host;
1831 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ?
true : false;
1832 if (empty($pop_before_smtp_host)) $pop_before_smtp_host = $smtpServerAddress;
1833 get_smtp_user($user, $pass);
1834 $stream = $deliver->initStream($composeMessage,$domain,0,
1835 $smtpServerAddress, $smtpPort, $user, $pass, $authPop, $pop_before_smtp_host, $smtp_stream_options);
1836 } elseif (!$draft) {
1837 require_once(SM_PATH
. 'class/deliver/Deliver_SendMail.class.php');
1838 global $sendmail_path, $sendmail_args;
1839 // Check for outdated configuration
1840 if (!isset($sendmail_args)) {
1841 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1842 $sendmail_args = '';
1844 $sendmail_args = '-i -t';
1847 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1848 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1850 global $draft_folder;
1851 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1852 $imapPort, 0, $imap_stream_options);
1853 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1854 //TODO: this can leak private information about folders and message IDs if messages are accessed/sent from another client --- should this feature be optional?
1855 // make note of the message to mark as having been replied to
1856 global $passed_id, $mailbox;
1857 if ($action == 'reply' ||
$action == 'reply_all' ||
$action == 'forward' ||
$action == 'forward_as_attachment') {
1858 $composeMessage->rfc822_header
->more_headers
['X-SM-Flag-Reply'] = $action . '::' . $passed_id . '::' . $mailbox;
1861 require_once(SM_PATH
. 'class/deliver/Deliver_IMAP.class.php');
1862 $imap_deliver = new Deliver_IMAP();
1863 $success = $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $draft_folder);
1864 sqimap_logout($imap_stream);
1865 unset ($imap_deliver);
1866 $composeMessage->purgeAttachments();
1869 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), sm_encode_html_special_chars($draft_folder));
1870 plain_error_message($msg);
1876 $deliver->mail($composeMessage, $stream, $reply_id, $reply_ent_id);
1877 $success = $deliver->finalizeStream($stream);
1880 // $deliver->dlv_server_msg is not always server's reply
1881 $msg = _("Message not sent.")
1883 . (isset($deliver->dlv_msg
) ?
$deliver->dlv_msg
: '');
1884 if (!empty($deliver->dlv_server_msg
)) {
1885 // add 'server replied' part only when it is not empty.
1886 // Delivery error can be generated by delivery class itself
1888 . _("Server replied:") . ' '
1889 . (isset($deliver->dlv_ret_nr
) ?
$deliver->dlv_ret_nr
. ' ' : '')
1890 . nl2br(sm_encode_html_special_chars($deliver->dlv_server_msg
));
1892 plain_error_message($msg);
1895 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0, $imap_stream_options);
1898 // mark as replied or forwarded if applicable
1900 global $what, $iAccount, $startMessage, $passed_id, $fwduid, $mailbox;
1902 if ($action=='reply' ||
$action=='reply_all' ||
$action=='forward' ||
$action=='forward_as_attachment') {
1903 require(SM_PATH
. 'functions/mailbox_display.php');
1904 // select errors here could be due to a draft reply being sent
1905 // after the original message's mailbox is moved or deleted
1906 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array(), false);
1907 // a non-empty return from above means we can proceed
1908 if (!empty($aMailbox)) {
1912 // check if we are allowed to set the \\Answered flag
1913 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1914 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1915 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1917 * Only update the cached headers if the header is
1920 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1921 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1927 case 'forward_as_attachment':
1928 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1929 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1930 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1932 // when forwarding as an attachment from the message
1933 // list, passed_id is not used, need to get UID(s)
1934 // from the query string
1936 if (empty($passed_id) && !empty($fwduid))
1937 $ids = explode('_', $fwduid);
1939 $ids = array($passed_id);
1941 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, $ids, '$Forwarded', true, false);
1943 foreach ($ids as $id) {
1944 if (isset($aUpdatedMsgs[$id]['FLAGS'])) {
1945 if (isset($aMailbox['MSG_HEADERS'][$id])) {
1946 $aMailbox['MSG_HEADERS'][$id]['FLAGS'] = $aMsg['FLAGS'];
1955 * Write mailbox with updated seen flag information back to cache.
1957 if(isset($aUpdatedMsgs[$passed_id])) {
1958 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1959 sqsession_register($mailbox_cache,'mailbox_cache');
1965 // move to sent folder
1967 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1968 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1969 $svr_allow_sent = true;
1971 $svr_allow_sent = false;
1974 if (isset($sent_folder) && (($sent_folder != '') ||
($sent_folder != 'none'))
1975 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1981 if ((isset($move_to_sent) && ($move_to_sent != 0)) ||
(!isset($move_to_sent))) {
1982 $lcl_allow_sent = true;
1984 $lcl_allow_sent = false;
1987 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) ||
($fld_sent && $lcl_allow_sent)) {
1988 if ($action == 'reply' ||
$action == 'reply_all') {
1989 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1990 if ($save_reply_with_orig) {
1991 $sent_folder = $mailbox;
1994 require_once(SM_PATH
. 'class/deliver/Deliver_IMAP.class.php');
1995 $imap_deliver = new Deliver_IMAP();
1996 $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $sent_folder);
1997 unset ($imap_deliver);
2003 $composeMessage->purgeAttachments();
2004 sqimap_logout($imap_stream);