922854a790b8b7a6c6e4fc816e5a6aec43a529f8
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 * compose.php
4 *
5 * This code sends a mail.
6 *
7 * There are 4 modes of operation:
8 * - Start new mail
9 * - Add an attachment
10 * - Send mail
11 * - Save As Draft
12 *
13 * @copyright 1999-2017 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
15 * @version $Id$
16 * @package squirrelmail
17 */
18
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
21
22 /**
23 * Include the SquirrelMail initialization file.
24 */
25 require('../include/init.php');
26
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
31 exit;
32 }
33
34 /* SquirrelMail required files. */
35 require_once(SM_PATH . 'functions/imap_general.php');
36 require_once(SM_PATH . 'functions/imap_messages.php');
37 require_once(SM_PATH . 'functions/date.php');
38 require_once(SM_PATH . 'functions/mime.php');
39 require_once(SM_PATH . 'functions/compose.php');
40 require_once(SM_PATH . 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH . 'functions/addressbook.php');
42 require_once(SM_PATH . 'functions/forms.php');
43 require_once(SM_PATH . 'functions/identity.php');
44 global $imap_stream_options; // in case not defined in config
45
46 /* --------------------- Get globals ------------------------------------- */
47
48 /** SESSION VARS */
49 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
50
51 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION);
52 sqgetGlobalVar('composesession', $composesession, SQ_SESSION);
53 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION);
54
55 // compose_messages only useful in SESSION when a forward-as-attachment
56 // has been preconstructed for us and passed in via that mechanism; once
57 // we have it, we can clear it from the SESSION
58 sqsession_unregister('compose_messages');
59
60 // Turn on delayed error handling in case we wind up redirecting below
61 $oErrorHandler->setDelayedErrors(true);
62
63 /** SESSION/POST/GET VARS */
64 sqgetGlobalVar('send_button_count', $send_button_count, SQ_POST, 1, SQ_TYPE_INT);
65 for ($i = 1; $i <= $send_button_count; $i++)
66 if (sqgetGlobalVar('send' . $i, $send, SQ_POST)) break;
67 // Send can only be achieved by setting $_POST var. If Send = true then
68 // retrieve other form fields from $_POST
69 if (isset($send) && $send) {
70 $SQ_GLOBAL = SQ_POST;
71 } else {
72 $SQ_GLOBAL = SQ_FORM;
73 }
74 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
75 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
76 sqgetGlobalVar('identity',$orig_identity, $SQ_GLOBAL);
77 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
78 $identity=0;
79 }
80 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
81 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
82 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
83 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
84 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
85 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
86 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
87 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
88 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
89 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
90 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL, NULL, SQ_TYPE_BIGINT);
91 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
92 sqgetGlobalVar('fwduid',$fwduid, $SQ_GLOBAL, '');
93
94 sqgetGlobalVar('attach',$attach, SQ_POST);
95 sqgetGlobalVar('draft',$draft, SQ_POST);
96 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
97 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
98 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM);
99
100 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
101 $delete_draft = (int)$delete_draft;
102 }
103
104 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
105 $startMessage = (int)$startMessage;
106 } else {
107 $startMessage = 1;
108 }
109
110
111 /** POST VARS */
112 sqgetGlobalVar('sigappend', $sigappend, SQ_POST);
113 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST);
114 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST);
115 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST);
116 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST);
117 sqgetGlobalVar('do_delete', $do_delete, SQ_POST);
118 sqgetGlobalVar('delete', $delete, SQ_POST);
119 sqgetGlobalVar('attachments', $attachments, SQ_POST);
120 if ( sqgetGlobalVar('return', $temp, SQ_POST) ) {
121 $html_addr_search_done = 'Use Addresses';
122 }
123
124 /** GET VARS */
125 if ( sqgetGlobalVar('account', $temp, SQ_GET) ) {
126 $iAccount = (int) $temp;
127 } else {
128 $iAccount = 0;
129 }
130
131
132 /** get smaction */
133 if ( !sqgetGlobalVar('smaction',$action) )
134 {
135 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
136 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
137 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
138 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
139 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
140 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
141 }
142
143 sqgetGlobalVar('smtoken', $submitted_token, $SQ_GLOBAL, '');
144
145 /**
146 * Here we decode the data passed in from mailto.php.
147 */
148 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET) ) {
149 $trtable = array('to' => 'send_to',
150 'cc' => 'send_to_cc',
151 'bcc' => 'send_to_bcc',
152 'body' => 'body',
153 'subject' => 'subject');
154 $mtdata = unserialize($mailtodata);
155
156 foreach ($trtable as $f => $t) {
157 if ( !empty($mtdata[$f]) ) {
158 $$t = $mtdata[$f];
159 }
160 }
161 unset($mailtodata,$mtdata, $trtable);
162 }
163
164 /* Location (For HTTP 1.1 header("Location: ...") redirects) */
165 $location = get_location();
166 /* Identities (fetch only once) */
167 $idents = get_identities();
168
169 /* --------------------- Specific Functions ------------------------------ */
170
171 function replyAllString($header) {
172 global $include_self_reply_all, $idents;
173 $excl_ar = array();
174 /**
175 * 1) Remove the addresses we'll be sending the message 'to'
176 */
177 if (isset($header->reply_to)) {
178 $excl_ar = $header->getAddr_a('reply_to');
179 }
180 /**
181 * 2) Remove our identities from the CC list (they still can be in the
182 * TO list) only if $include_self_reply_all is turned off
183 */
184 if (!$include_self_reply_all) {
185 foreach($idents as $id) {
186 $excl_ar[strtolower(trim($id['email_address']))] = '';
187 }
188 }
189
190 /**
191 * 3) get the addresses.
192 */
193 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
194
195 /**
196 * 4) generate the string.
197 */
198 $url_replytoallcc = '';
199 foreach( $url_replytoall_ar as $email => $personal) {
200 if ($personal) {
201 // always quote personal name (can't just quote it if
202 // it contains a comma separator, since it might still
203 // be encoded)
204 $url_replytoallcc .= ", \"$personal\" <$email>";
205 } else {
206 $url_replytoallcc .= ', '. $email;
207 }
208 }
209 $url_replytoallcc = substr($url_replytoallcc,2);
210
211 return $url_replytoallcc;
212 }
213
214 /**
215 * creates top line in reply citations
216 *
217 * Line style depends on user preferences.
218 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
219 * @param object $orig_from From: header object.
220 * @param integer $orig_date email's timestamp
221 * @return string reply citation
222 */
223 function getReplyCitation($orig_from, $orig_date) {
224 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
225
226 if (!is_object($orig_from)) {
227 $sOrig_from = '';
228 } else {
229 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
230 }
231
232 /* First, return an empty string when no citation style selected. */
233 if (($reply_citation_style == '') || ($reply_citation_style == 'none')) {
234 return '';
235 }
236
237 /* Make sure our final value isn't an empty string. */
238 if ($sOrig_from == '') {
239 return '';
240 }
241
242 /* Otherwise, try to select the desired citation style. */
243 switch ($reply_citation_style) {
244 case 'author_said':
245 // i18n: %s is for author's name
246 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
247 break;
248 case 'quote_who':
249 $start = '<quote who="';
250 $end = '">';
251 $full_reply_citation = $start . $sOrig_from . $end;
252 break;
253 case 'date_time_author':
254 // i18n:
255 // The first %s is for date string, the second %s is for author's name.
256 // The date uses formating from "D, F j, Y g:i a" and "D, F j, Y H:i"
257 // translations.
258 // Example string:
259 // "On Sat, December 24, 2004 23:59, Santa wrote:"
260 // If you have to put author's name in front of date string, check comments about
261 // argument swapping at http://php.net/sprintf
262 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
263 break;
264 case 'user-defined':
265 $start = $reply_citation_start .
266 ($reply_citation_start == '' ? '' : ' ');
267 $end = $reply_citation_end;
268 $full_reply_citation = $start . $sOrig_from . $end;
269 break;
270 default:
271 return '';
272 }
273
274 /* Add line feed and return the citation string. */
275 return ($full_reply_citation . "\n");
276 }
277
278 /**
279 * Creates header fields in forwarded email body
280 *
281 * $default_charset global must be set correctly before you call this function.
282 * @param object $orig_header
283 * @return $string
284 */
285 function getforwardHeader($orig_header) {
286 global $editor_size, $default_charset;
287
288 // using own strlen function in order to detect correct string length
289 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
290 _("From") => sq_strlen(_("From"),$default_charset),
291 _("Date") => sq_strlen(_("Date"),$default_charset),
292 _("To") => sq_strlen(_("To"),$default_charset),
293 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
294 $maxsize = max($display);
295 $indent = str_pad('',$maxsize+2);
296 foreach($display as $key => $val) {
297 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
298 }
299 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
300 $from = str_replace('&nbsp;',' ',$from);
301 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
302 $to = str_replace('&nbsp;',' ',$to);
303 $subject = decodeHeader($orig_header->subject,false,false,true);
304 $subject = str_replace('&nbsp;',' ',$subject);
305
306 // using own str_pad function in order to create correct string pad
307 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH,$default_charset) .
308 "\n". $display[_("Subject")] . $subject . "\n" .
309 $display[_("From")] . $from . "\n" .
310 $display[_("Date")] . getLongDateString( $orig_header->date, $orig_header->date_unparsed ). "\n" .
311 $display[_("To")] . $to . "\n";
312 if ($orig_header->cc != array() && $orig_header->cc !='') {
313 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
314 $cc = str_replace('&nbsp;',' ',$cc);
315 $bodyTop .= $display[_("Cc")] .$cc . "\n";
316 }
317 $bodyTop .= str_pad('', $editor_size -2 , '-') .
318 "\n\n";
319 return $bodyTop;
320 }
321 /* ----------------------------------------------------------------------- */
322
323 /*
324 * If the session is expired during a post this restores the compose session
325 * vars.
326 */
327 $session_expired = false;
328 if (sqsession_is_registered('session_expired_post')) {
329 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION);
330 /*
331 * extra check for username so we don't display previous post data from
332 * another user during this session.
333 */
334 if (!empty($session_expired_post['username'])
335 && $session_expired_post['username'] == $username) {
336 // these are the vars that we can set from the expired composed session
337 $compo_var_list = array ('send_to', 'send_to_cc', 'body',
338 'startMessage', 'passed_body', 'use_signature', 'signature',
339 'subject', 'newmail', 'send_to_bcc', 'passed_id', 'mailbox',
340 'from_htmladdr_search', 'identity', 'draft_id', 'delete_draft',
341 'mailprio', 'edit_as_new', 'attachments', 'composesession',
342 'request_mdn', 'request_dr', 'fwduid');
343
344 foreach ($compo_var_list as $var) {
345 if ( isset($session_expired_post[$var]) && !isset($$var) ) {
346 $$var = $session_expired_post[$var];
347 }
348 }
349
350 if (!empty($attachments))
351 $attachments = unserialize(urldecode($attachments));
352
353 sqsession_register($composesession,'composesession');
354
355 if (isset($send)) {
356 unset($send);
357 }
358 $session_expired = true;
359 }
360 unset($session_expired_post);
361 sqsession_unregister('session_expired_post');
362 session_write_close();
363 if (!isset($mailbox)) {
364 $mailbox = '';
365 }
366 if ($compose_new_win == '1') {
367 compose_Header($color, $mailbox);
368 } else {
369 $sHeaderJs = (isset($sHeaderJs)) ? $sHeaderJs : '';
370 if (strpos($action, 'reply') !== false && $reply_focus) {
371 $sOnload = 'checkForm(\''.$replyfocus.'\');';
372 } else {
373 $sOnload = 'checkForm();';
374 }
375 displayPageHeader($color, $mailbox,$sHeaderJs,$sOnload);
376 }
377 showInputForm($session, false);
378 exit();
379 }
380
381 if (!isset($composesession)) {
382 $composesession = 0;
383 sqsession_register(0,'composesession');
384 } else {
385 $composesession = (int)$composesession;
386 }
387
388 if (!isset($session) || (isset($newmessage) && $newmessage)) {
389 sqsession_unregister('composesession');
390 $session = "$composesession" +1;
391 $composesession = $session;
392 sqsession_register($composesession,'composesession');
393 }
394 if (!empty($compose_messages[$session])) {
395 $composeMessage = $compose_messages[$session];
396 } else {
397 $composeMessage = new Message();
398 $rfc822_header = new Rfc822Header();
399 $composeMessage->rfc822_header = $rfc822_header;
400 $composeMessage->reply_rfc822_header = '';
401 }
402
403 // re-add attachments that were already in this message
404 // FIXME: note that technically this is very bad form -
405 // should never directly manipulate an object like this
406 if (!empty($attachments)) {
407 $attachments = unserialize(urldecode($attachments));
408 if (!empty($attachments) && is_array($attachments))
409 $composeMessage->entities = $attachments;
410 }
411
412 if (empty($mailbox)) {
413 $mailbox = 'INBOX';
414 }
415
416 if ($draft) {
417
418 // validate security token
419 //
420 sm_validate_security_token($submitted_token, -1, TRUE);
421
422 /*
423 * Set $default_charset to correspond with the user's selection
424 * of language interface.
425 */
426 set_my_charset();
427 if (! deliverMessage($composeMessage, true)) {
428 showInputForm($session);
429 exit();
430 } else {
431 $draft_message = _("Draft Email Saved");
432 /* If this is a resumed draft, then delete the original */
433 if(isset($delete_draft)) {
434 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
435 sqimap_mailbox_select($imap_stream, $draft_folder);
436 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
437 // in current implementation of sqimap_msgs_list_flag() single message id can
438 // be submitted as string. docs state that it should be array.
439 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
440 if ($auto_expunge) {
441 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
442 }
443 sqimap_logout($imap_stream);
444 }
445
446 $oErrorHandler->saveDelayedErrors();
447 session_write_close();
448
449 if ($compose_new_win == '1') {
450 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
451 header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
452 } else {
453 //FIXME: DON'T ECHO HTML FROM CORE!
454 echo ' <br><br><div style="text-align: center;"><a href="' . $location
455 . '/compose.php?saved_sent=yes&amp;session=' . $composesession . '">'
456 . _("Return") . '</a></div>';
457 }
458 exit();
459 } else {
460 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
461 header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
462 "&startMessage=1&note=".urlencode($draft_message));
463 } else {
464 //FIXME: DON'T ECHO HTML FROM CORE!
465 echo ' <br><br><div style="text-align: center;"><a href="' . $location
466 . '/right_main.php?mailbox=' . urlencode($draft_folder)
467 . '&amp;startMessage=1&amp;note=' . urlencode($draft_message) .'">'
468 . _("Return") . '</a></div>';
469 }
470 exit();
471 }
472 }
473 }
474
475 if ($send) {
476
477 // validate security token
478 //
479 sm_validate_security_token($submitted_token, -1, TRUE);
480
481 if (isset($_FILES['attachfile']) &&
482 $_FILES['attachfile']['tmp_name'] &&
483 $_FILES['attachfile']['tmp_name'] != 'none') {
484 $AttachFailure = saveAttachedFiles($session);
485 }
486
487 if (checkInput(false) && !isset($AttachFailure)) {
488 if ($mailbox == "All Folders") {
489 /* We entered compose via the search results page */
490 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
491 }
492 $urlMailbox = urlencode($mailbox);
493 if (! isset($passed_id)) {
494 $passed_id = 0;
495 }
496 /**
497 * Set $default_charset to correspond with the user's selection
498 * of language interface.
499 */
500 set_my_charset();
501 /**
502 * This is to change all newlines to \n
503 * We'll change them to \r\n later (in the sendMessage function)
504 */
505 $body = str_replace("\r\n", "\n", $body);
506 $body = str_replace("\r", "\n", $body);
507
508 /**
509 * Rewrap $body so that no line is bigger than $editor_size
510 */
511 $body = explode("\n", $body);
512 $newBody = '';
513 foreach ($body as $line) {
514 if( $line <> '-- ' ) {
515 $line = rtrim($line);
516 }
517 if (sq_strlen($line, $default_charset) <= $editor_size + 1) {
518 $newBody .= $line . "\n";
519 } else {
520 sqWordWrap($line, $editor_size, $default_charset);
521 $newBody .= $line . "\n";
522
523 }
524
525 }
526 $body = $newBody;
527
528 $Result = deliverMessage($composeMessage);
529
530 if ($Result)
531 $mail_sent = 'yes';
532 else
533 $mail_sent = 'no';
534
535 // NOTE: this hook changed in 1.5.2 from sending $Result and
536 // $composeMessage as args #2 and #3 to being in an array
537 // under arg #2
538 $temp = array(&$Result, &$composeMessage, &$mail_sent);
539 do_hook('compose_send_after', $temp);
540 if (! $Result) {
541 showInputForm($session);
542 exit();
543 }
544
545 /* if it is resumed draft, delete draft message */
546 if ( isset($delete_draft)) {
547 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imap_stream_options);
548 sqimap_mailbox_select($imap_stream, $draft_folder);
549 // bypass_trash=true because message should be saved when deliverMessage() returns true.
550 // in current implementation of sqimap_msgs_list_flag() single message id can
551 // be submitted as string. docs state that it should be array.
552 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
553 if ($auto_expunge) {
554 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
555 }
556 sqimap_logout($imap_stream);
557 }
558 /*
559 * Store the error array in the session because they will be lost on a redirect
560 */
561 $oErrorHandler->saveDelayedErrors();
562 session_write_close();
563
564 if ($compose_new_win == '1') {
565 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
566 header("Location: $location/compose.php?mail_sent=$mail_sent");
567 } else {
568 //FIXME: DON'T ECHO HTML FROM CORE!
569 echo ' <br><br><div style="text-align: center;"><a href="' . $location
570 . '/compose.php?mail_sent=$mail_sent">'
571 . _("Return") . '</a></div>';
572 }
573 exit();
574 } else {
575 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
576 header("Location: $location/right_main.php?mailbox=$urlMailbox".
577 "&startMessage=$startMessage&mail_sent=$mail_sent");
578 } else {
579 //FIXME: DON'T ECHO HTML FROM CORE!
580 echo ' <br><br><div style="text-align: center;"><a href="' . $location
581 . "/right_main.php?mailbox=$urlMailbox"
582 . "&amp;startMessage=$startMessage&amp;mail_sent=$mail_sent\">"
583 . _("Return") . '</a></div>';
584 }
585 exit();
586 }
587 } else {
588 if ($compose_new_win == '1') {
589 compose_Header($color, $mailbox);
590 }
591 else {
592 displayPageHeader($color, $mailbox);
593 }
594 if (isset($AttachFailure)) {
595 plain_error_message(_("Could not move/copy file. File not attached"),
596 $color);
597 }
598 checkInput(true);
599 showInputForm($session);
600 /* sqimap_logout($imapConnection); */
601 }
602 } elseif (isset($html_addr_search_done)) {
603
604 // validate security token
605 //
606 sm_validate_security_token($submitted_token, -1, TRUE);
607
608 if ($compose_new_win == '1') {
609 compose_Header($color, $mailbox);
610 }
611 else {
612 displayPageHeader($color, $mailbox);
613 }
614
615 if (isset($send_to_search) && is_array($send_to_search)) {
616 foreach ($send_to_search as $k => $v) {
617 if (substr($k, 0, 1) == 'T') {
618 if ($send_to) {
619 $send_to .= ', ';
620 }
621 $send_to .= $v;
622 }
623 elseif (substr($k, 0, 1) == 'C') {
624 if ($send_to_cc) {
625 $send_to_cc .= ', ';
626 }
627 $send_to_cc .= $v;
628 }
629 elseif (substr($k, 0, 1) == 'B') {
630 if ($send_to_bcc) {
631 $send_to_bcc .= ', ';
632 }
633 $send_to_bcc .= $v;
634 }
635 }
636 }
637 showInputForm($session);
638 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
639 if (isset($_FILES['attachfile']) &&
640 $_FILES['attachfile']['tmp_name'] &&
641 $_FILES['attachfile']['tmp_name'] != 'none') {
642 if(saveAttachedFiles($session)) {
643 plain_error_message(_("Could not move/copy file. File not attached"));
644 }
645 }
646 /*
647 * I am using an include so as to elminiate an extra unnecessary
648 * click. If you can think of a better way, please implement it.
649 */
650 include_once('./addrbook_search_html.php');
651 } elseif (isset($attach)) {
652
653 // validate security token
654 //
655 sm_validate_security_token($submitted_token, -1, TRUE);
656
657 if ($compose_new_win == '1') {
658 compose_Header($color, $mailbox);
659 } else {
660 displayPageHeader($color, $mailbox);
661 }
662 if (saveAttachedFiles($session)) {
663 plain_error_message(_("Could not move/copy file. File not attached"));
664 }
665 showInputForm($session);
666 }
667 elseif (isset($sigappend)) {
668
669 // validate security token
670 //
671 sm_validate_security_token($submitted_token, -1, TRUE);
672
673 $signature = $idents[$identity]['signature'];
674
675 $body .= "\n\n".($prefix_sig==true? "-- \n":'').$signature;
676 if ($compose_new_win == '1') {
677 compose_Header($color, $mailbox);
678 } else {
679 displayPageHeader($color, $mailbox);
680 }
681 showInputForm($session);
682 } elseif (isset($do_delete)) {
683
684 // validate security token
685 //
686 sm_validate_security_token($submitted_token, -1, TRUE);
687
688 if ($compose_new_win == '1') {
689 compose_Header($color, $mailbox);
690 } else {
691 displayPageHeader($color, $mailbox);
692 }
693
694 if (isset($delete) && is_array($delete)) {
695 foreach($delete as $index) {
696 if (!empty($composeMessage->entities) && isset($composeMessage->entities[$index])) {
697 $composeMessage->entities[$index]->purgeAttachments();
698 // FIXME: one person reported that unset() didn't do anything at all here, so this is a work-around... but it triggers PHP notices if the unset() doesn't work, which should be fixed... but bigger question is if unset() doesn't work here, what about everywhere else? Anyway, uncomment this if you think you need it
699 //$composeMessage->entities[$index] = NULL;
700 unset ($composeMessage->entities[$index]);
701 }
702 }
703 $new_entities = array();
704 foreach ($composeMessage->entities as $entity) {
705 $new_entities[] = $entity;
706 }
707 $composeMessage->entities = $new_entities;
708 }
709 showInputForm($session);
710 } else {
711 /*
712 * This handles the default case as well as the error case
713 * (they had the same code) --> if (isset($smtpErrors))
714 */
715
716 if ($compose_new_win == '1') {
717 compose_Header($color, $mailbox);
718 } else {
719 displayPageHeader($color, $mailbox);
720 }
721
722 $newmail = true;
723
724 if (!isset($passed_ent_id)) {
725 $passed_ent_id = '';
726 }
727 if (!isset($passed_id)) {
728 $passed_id = '';
729 }
730 if (!isset($mailbox)) {
731 $mailbox = '';
732 }
733 if (!isset($action)) {
734 $action = '';
735 }
736
737 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
738
739 // forward as attachment - subject is in the message in session
740 //
741 if ($action == 'forward_as_attachment' && empty($values['subject']))
742 $subject = $composeMessage->rfc822_header->subject;
743
744 /* in case the origin is not read_body.php */
745 if (isset($send_to)) {
746 $values['send_to'] = $send_to;
747 }
748 if (isset($send_to_cc)) {
749 $values['send_to_cc'] = $send_to_cc;
750 }
751 if (isset($send_to_bcc)) {
752 $values['send_to_bcc'] = $send_to_bcc;
753 }
754 if (isset($subject)) {
755 $values['subject'] = $subject;
756 }
757 if (isset($mailprio)) {
758 $values['mailprio'] = $mailprio;
759 }
760 if (isset($orig_identity)) {
761 $values['identity'] = $orig_identity;
762 }
763 showInputForm($session, $values);
764 }
765
766 exit();
767
768 /**************** Only function definitions go below *************/
769
770 function getforwardSubject($subject)
771 {
772 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
773 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
774 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
775 $subject = '[Fwd: ' . $subject . ']';
776 }
777 return $subject;
778 }
779
780 /* This function is used when not sending or adding attachments */
781 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
782 global $editor_size, $default_use_priority, $body, $idents,
783 $use_signature, $data_dir, $username,
784 $key, $imapServerAddress, $imapPort, $imap_stream_options,
785 $composeMessage, $body_quote, $request_mdn, $request_dr,
786 $mdn_user_support, $languages, $squirrelmail_language,
787 $default_charset, $do_not_reply_to_self;
788
789 /*
790 * Set $default_charset to correspond with the user's selection
791 * of language interface. $default_charset global is not correct,
792 * if message is composed in new window.
793 */
794 set_my_charset();
795
796 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
797 $mailprio = 3;
798
799 if ($passed_id) {
800 $imapConnection = sqimap_login($username, false, $imapServerAddress,
801 $imapPort, 0, $imap_stream_options);
802
803 sqimap_mailbox_select($imapConnection, $mailbox);
804 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
805
806 $body = '';
807 if ($passed_ent_id) {
808 /* redefine the messsage in case of message/rfc822 */
809 $message = $message->getEntity($passed_ent_id);
810 /* message is an entity which contains the envelope and type0=message
811 * and type1=rfc822. The actual entities are childs from
812 * $message->entities[0]. That's where the encoding and is located
813 */
814
815 $entities = $message->entities[0]->findDisplayEntity
816 (array(), $alt_order = array('text/plain'));
817 if (!count($entities)) {
818 $entities = $message->entities[0]->findDisplayEntity
819 (array(), $alt_order = array('text/plain','text/html'));
820 }
821 $orig_header = $message->rfc822_header; /* here is the envelope located */
822 /* redefine the message for picking up the attachments */
823 $message = $message->entities[0];
824
825 } else {
826 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
827 if (!count($entities)) {
828 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
829 }
830 $orig_header = $message->rfc822_header;
831 }
832
833 $type0 = $message->type0;
834 $type1 = $message->type1;
835 foreach ($entities as $ent) {
836 $msg = $message->getEntity($ent);
837 $type0 = $msg->type0;
838 $type1 = $msg->type1;
839 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
840 $body_part_entity = $message->getEntity($ent);
841 $bodypart = decodeBody($unencoded_bodypart,
842 $body_part_entity->header->encoding);
843 if ($type1 == 'html') {
844 $bodypart = str_replace("\n", ' ', $bodypart);
845 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
846 $bodypart = str_replace(array('&nbsp;','&gt;','&lt;'),array(' ','>','<'),$bodypart);
847 $bodypart = strip_tags($bodypart);
848 }
849 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
850 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
851 if (mb_detect_encoding($bodypart) != 'ASCII') {
852 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
853 }
854 }
855
856 // charset encoding in compose form stuff
857 if (isset($body_part_entity->header->parameters['charset'])) {
858 $actual = $body_part_entity->header->parameters['charset'];
859 } else {
860 $actual = 'us-ascii';
861 }
862
863 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
864 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
865 }
866 // end of charset encoding in compose
867
868 $body .= $bodypart;
869 }
870 if ($default_use_priority) {
871 $mailprio = substr($orig_header->priority,0,1);
872 if (!$mailprio) {
873 $mailprio = 3;
874 }
875 } else {
876 $mailprio = '';
877 }
878
879 $from_o = $orig_header->from;
880 if (is_array($from_o)) {
881 if (isset($from_o[0])) {
882 $from_o = $from_o[0];
883 }
884 }
885 if (is_object($from_o)) {
886 $orig_from = $from_o->getAddress();
887 } else {
888 $orig_from = '';
889 }
890
891 $identities = array();
892 if (count($idents) > 1) {
893 foreach($idents as $nr=>$data) {
894 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
895 $identities[] = $enc_from_name;
896 }
897
898 $identity_match = $orig_header->findAddress($identities);
899 if ($identity_match !== FALSE) {
900 $identity = $identity_match;
901 }
902 }
903
904 switch ($action) {
905 case ('draft'):
906 $use_signature = FALSE;
907 $composeMessage->rfc822_header = $orig_header;
908 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
909 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
910 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
911 $send_from = $orig_header->getAddr_s('from');
912 $send_from_parts = new AddressStructure();
913 $send_from_parts = $orig_header->parseAddress($send_from);
914 $send_from_add = $send_from_parts->mailbox . '@' . $send_from_parts->host;
915 $identity = find_identity(array($send_from_add));
916 $subject = decodeHeader($orig_header->subject,false,false,true);
917
918 // Remember the receipt settings
919 $request_mdn = $mdn_user_support && !empty($orig_header->dnt) ? '1' : '0';
920 $request_dr = $mdn_user_support && !empty($orig_header->drnt) ? '1' : '0';
921
922 /* remember the references and in-reply-to headers in case of an reply */
923 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination (drafts folder?); is this possible?
924 $composeMessage->rfc822_header->more_headers['References'] = $orig_header->references;
925 $composeMessage->rfc822_header->more_headers['In-Reply-To'] = $orig_header->in_reply_to;
926 // rewrap the body to clean up quotations and line lengths
927 sqBodyWrap($body, $editor_size);
928 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
929 //TODO: completely unclear if should be using $compose_session instead of $session below
930 $compose_messages[$session] = $composeMessage;
931 sqsession_register($compose_messages,'compose_messages');
932 break;
933 case ('edit_as_new'):
934 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
935 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
936 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
937 $subject = decodeHeader($orig_header->subject,false,false,true);
938 $mailprio = $orig_header->priority;
939 $orig_from = '';
940 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
941 // rewrap the body to clean up quotations and line lengths
942 sqBodyWrap($body, $editor_size);
943 break;
944 case ('forward'):
945 $send_to = '';
946 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
947 $body = getforwardHeader($orig_header) . $body;
948 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
949 // forwarded message text should be as undisturbed as possible, so commenting out this call
950 // sqUnWordWrap($body);
951 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
952
953 //add a blank line after the forward headers
954 $body = "\n" . $body;
955 break;
956 case ('forward_as_attachment'):
957 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
958 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
959 $subject = decodeHeader($orig_header->subject,false,false,true);
960 $subject = str_replace('"', "'", $subject);
961 $subject = trim($subject);
962 if (substr(strtolower($subject), 0, 4) != 'fwd:') {
963 $subject = 'Fwd: ' . $subject;
964 }
965 $body = '';
966 break;
967 case ('reply_all'):
968 if(isset($orig_header->mail_followup_to) && $orig_header->mail_followup_to) {
969 $send_to = $orig_header->getAddr_s('mail_followup_to');
970 } else {
971 $send_to_cc = replyAllString($orig_header);
972 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
973 $send_to_cc = str_replace('""', '"', $send_to_cc);
974 }
975 case ('reply'):
976 // skip this if send_to was already set right above here
977 if(!$send_to) {
978 $send_to = $orig_header->reply_to;
979 if (is_array($send_to) && count($send_to)) {
980 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
981 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
982 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
983 } else {
984 $send_to = $orig_header->getAddr_s('from', ',', FALSE, TRUE);
985 }
986 }
987 $send_to = decodeHeader($send_to,false,false,true);
988 $send_to = str_replace('""', '"', $send_to);
989
990
991 // If user doesn't want replies to her own messages
992 // going back to herself (instead send again to the
993 // original recipient of the message being replied to),
994 // then iterate through identities, checking if the TO
995 // field is one of them (if the reply is to ourselves)
996 //
997 // Note we don't bother if the original message doesn't
998 // have anything in the TO field itself (because that's
999 // what we use if we change the recipient to be that of
1000 // the previous message)
1001 //
1002 if ($do_not_reply_to_self && !empty($orig_header->to)) {
1003
1004 $orig_to = '';
1005
1006 foreach($idents as $id) {
1007
1008 if (!empty($id['email_address'])
1009 && strpos($send_to, $id['email_address']) !== FALSE) {
1010
1011 // if this is a reply-all, the original recipient
1012 // is already in the CC field, so we can just blank
1013 // the recipient (TO field) (as long as the CC field
1014 // isn't empty that is)... but then move the CC into
1015 // the TO, so TO isn't empty
1016 //
1017 if ($action == 'reply_all' && !empty($send_to_cc)) {
1018 $orig_to = $send_to_cc;
1019 $send_to_cc = '';
1020 break;
1021 }
1022
1023 $orig_to = $orig_header->to;
1024 if (is_array($orig_to) && count($orig_to)) {
1025 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1026 } else if (is_object($orig_to)) { /* unneccesarry, just for failsafe purpose */
1027 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1028 } else {
1029 $orig_to = '';
1030 }
1031 $orig_to = decodeHeader($orig_to,false,false,true);
1032 $orig_to = str_replace('""', '"', $orig_to);
1033
1034 break;
1035 }
1036 }
1037
1038 // if the reply was addressed back to ourselves,
1039 // we will send it to the TO of the previous message
1040 //
1041 if (!empty($orig_to)) {
1042
1043 $send_to = $orig_to;
1044
1045 // in this case, we also want to reset the FROM
1046 // identity as well (it should match the original
1047 // *FROM* header instead of TO or CC)
1048 //
1049 if (count($idents) > 1) {
1050 $identity = '';
1051 foreach($idents as $i => $id) {
1052 if (!empty($id['email_address'])
1053 && strpos($orig_from, $id['email_address']) !== FALSE) {
1054 $identity = $i;
1055 break;
1056 }
1057 }
1058 }
1059
1060 }
1061
1062 }
1063
1064
1065 $subject = decodeHeader($orig_header->subject,false,false,true);
1066 $subject = str_replace('"', "'", $subject);
1067 $subject = trim($subject);
1068 if (substr(strtolower($subject), 0, 3) != 're:') {
1069 $subject = 'Re: ' . $subject;
1070 }
1071 /* this corrects some wrapping/quoting problems on replies */
1072 $rewrap_body = explode("\n", $body);
1073 $from = (is_array($orig_header->from) && !empty($orig_header->from)) ? $orig_header->from[0] : $orig_header->from;
1074 $body = '';
1075 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
1076 foreach ($rewrap_body as $line) {
1077 if ($strip_sigs && rtrim($line, "\r\n") == '-- ') {
1078 break;
1079 }
1080 if (preg_match("/^(>+)/", $line, $matches)) {
1081 $gt = $matches[1];
1082 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
1083 } else {
1084 $body .= $body_quote . (!empty($body_quote) ? ' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ? ' ' : ''), rtrim($line)) . "\n";
1085 }
1086 }
1087
1088 //rewrap the body to clean up quotations and line lengths
1089 $body = sqBodyWrap ($body, $editor_size);
1090
1091 $body = getReplyCitation($from , $orig_header->date) . $body;
1092 $composeMessage->reply_rfc822_header = $orig_header;
1093
1094 break;
1095 default:
1096 break;
1097 }
1098 //FIXME: we used to register $compose_messages in the session here, but not any more - so do we still need the session_write_close() and sqimap_logout() here? We probably need the IMAP logout, but what about the session closure?
1099 session_write_close();
1100 sqimap_logout($imapConnection);
1101 }
1102 $ret = array( 'send_to' => $send_to,
1103 'send_to_cc' => $send_to_cc,
1104 'send_to_bcc' => $send_to_bcc,
1105 'subject' => $subject,
1106 'mailprio' => $mailprio,
1107 'body' => $body,
1108 'identity' => $identity );
1109
1110 return ($ret);
1111 } /* function newMail() */
1112
1113 /**
1114 * downloads attachments from original message, stores them in attachment directory and adds
1115 * them to composed message.
1116 * @param object $message
1117 * @param object $composeMessage
1118 * @param integer $passed_id
1119 * @param mixed $entities
1120 * @param mixed $imapConnection
1121 * @return object
1122 */
1123 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
1124 global $squirrelmail_language, $languages, $username, $attachment_dir;
1125
1126 if (!count($message->entities) ||
1127 ($message->type0 == 'message' && $message->type1 == 'rfc822')) {
1128 if ( !in_array($message->entity_id, $entities) && $message->entity_id) {
1129 switch ($message->type0) {
1130 case 'message':
1131 if ($message->type1 == 'rfc822') {
1132 $filename = $message->rfc822_header->subject;
1133 if ($filename == "") {
1134 $filename = "untitled-".$message->entity_id;
1135 }
1136 $filename .= '.eml';
1137 } else {
1138 $filename = $message->getFilename();
1139 }
1140 break;
1141 default:
1142 if (!$message->mime_header) { /* temporary hack */
1143 $message->mime_header = $message->header;
1144 }
1145 $filename = $message->getFilename();
1146 break;
1147 }
1148 //FIXME: added three args to the following, so as to set the last one to TRUE, to mimick a fix in 1.4.21 (#2994865), but didn't test this (note that in 1.4.21, the 2nd and 3rd args are FALSE, but here in this code, they weren't being specified (thus defaulting to TRUE), so I don't know if that means this code is outdated and should have been changed to FALSE, FALSE or if this code is completely different and the addition of the TRUE for arg #4 is wrong
1149 $filename = str_replace('&#32;', ' ', decodeHeader($filename, true, true, true));
1150 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1151 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1152 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1153 }
1154
1155 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1156 $localfilename = sq_get_attach_tempfile();
1157 $message->att_local_name = $localfilename;
1158
1159 $composeMessage->initAttachment($message->type0.'/'.$message->type1,$filename,
1160 $localfilename);
1161
1162 /* Write Attachment to file */
1163 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1164 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id, $message->header->encoding, $fp);
1165 fclose ($fp);
1166 }
1167 } else {
1168 for ($i=0, $entCount=count($message->entities); $i<$entCount;$i++) {
1169 $composeMessage=getAttachments($message->entities[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1170 }
1171 }
1172 return $composeMessage;
1173 }
1174
1175 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1176 $passed_ent_id='', $imapConnection) {
1177 if (!$passed_ent_id) {
1178 $body_a = sqimap_run_command($imapConnection,
1179 'FETCH '.$passed_id.' RFC822',
1180 TRUE, $response, $readmessage,
1181 TRUE);
1182 } else {
1183 $body_a = sqimap_run_command($imapConnection,
1184 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1185 TRUE, $response, $readmessage, TRUE);
1186 $message = $message->parent;
1187 }
1188 if ($response == 'OK') {
1189 $subject = encodeHeader($message->rfc822_header->subject);
1190 array_shift($body_a);
1191 array_pop($body_a);
1192 $body = implode('', $body_a) . "\r\n";
1193
1194 global $username, $attachment_dir;
1195 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1196 $localfilename = sq_get_attach_tempfile();
1197 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1198 fwrite ($fp, $body);
1199 fclose($fp);
1200 $composeMessage->initAttachment('message/rfc822',$subject.'.eml',
1201 $localfilename);
1202 }
1203 return $composeMessage;
1204 }
1205
1206 function showInputForm ($session, $values=false) {
1207 global $send_to, $send_to_cc, $send_to_bcc,
1208 $body, $startMessage, $action, $attachments,
1209 $use_signature, $signature, $prefix_sig, $session_expired,
1210 $editor_size, $editor_height, $subject, $newmail,
1211 $use_javascript_addr_book, $passed_id, $mailbox, $fwduid,
1212 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1213 $username, $data_dir, $identity, $idents, $delete_draft,
1214 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1215 $composeMessage, $composesession, $default_charset,
1216 $compose_onsubmit, $oTemplate, $oErrorHandler;
1217
1218 if (checkForJavascript()) {
1219 $onfocus = ' onfocus="alreadyFocused=true;"';
1220 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1221 }
1222 else {
1223 $onfocus = '';
1224 $onfocus_array = array();
1225 }
1226
1227 if ($values) {
1228 $send_to = $values['send_to'];
1229 $send_to_cc = $values['send_to_cc'];
1230 $send_to_bcc = $values['send_to_bcc'];
1231 $subject = $values['subject'];
1232 $mailprio = $values['mailprio'];
1233 $body = $values['body'];
1234 $identity = (int) $values['identity'];
1235 } else {
1236 $send_to = decodeHeader($send_to, true, false);
1237 $send_to_cc = decodeHeader($send_to_cc, true, false);
1238 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1239 }
1240
1241 if ($use_javascript_addr_book) {
1242 //FIXME: NO HTML IN CORE!
1243 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1244 'function open_abook() { ' . "\n" .
1245 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1246 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1247 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1248 ' nwin.opener = document.windows;' . "\n" .
1249 "}\n" .
1250 "// -->\n</script>\n\n";
1251 }
1252
1253 //FIXME: NO HTML IN CORE!
1254 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1255 'enctype="multipart/form-data"';
1256
1257 $compose_onsubmit = array();
1258 global $null;
1259 do_hook('compose_form', $null);
1260
1261 // Plugins that use compose_form hook can add an array entry
1262 // to the globally scoped $compose_onsubmit; we add them up
1263 // here and format the form tag's full onsubmit handler.
1264 // Each plugin should use "return false" if they need to
1265 // stop form submission but otherwise should NOT use "return
1266 // true" to give other plugins the chance to do what they need
1267 // to do; SquirrelMail itself will add the final "return true".
1268 // Onsubmit text is enclosed inside of double quotes, so plugins
1269 // need to quote accordingly.
1270 //
1271 // Also, plugin authors should try to retain compatibility with
1272 // the Compose Extras plugin by resetting its compose submit
1273 // counter when preventing form submit. Use this code:
1274 // if (your-code-here) { submit_count = 0; return false; }
1275 //
1276 if (checkForJavascript()) {
1277 if (empty($compose_onsubmit))
1278 $compose_onsubmit = array();
1279 else if (!is_array($compose_onsubmit))
1280 $compose_onsubmit = array($compose_onsubmit);
1281
1282 $onsubmit_text = '';
1283 foreach ($compose_onsubmit as $text) {
1284 $text = trim($text);
1285 if (!empty($text)) {
1286 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1287 $text .= '; ';
1288 $onsubmit_text .= $text;
1289 }
1290 }
1291
1292 if (!empty($onsubmit_text))
1293 //FIXME: DON'T ECHO HTML FROM CORE!
1294 echo ' onsubmit="' . $onsubmit_text . ' return true;"';
1295 }
1296
1297
1298 //FIXME: NO HTML IN CORE!
1299 echo ">\n";
1300
1301 //FIXME: DON'T ECHO HTML FROM CORE!
1302 echo addHidden('smtoken', sm_generate_security_token());
1303
1304 //FIXME: DON'T ECHO HTML FROM CORE!
1305 echo addHidden('startMessage', $startMessage);
1306
1307 if ($action == 'draft') {
1308 //FIXME: DON'T ECHO HTML FROM CORE!
1309 echo addHidden('delete_draft', $passed_id);
1310 }
1311 if (isset($delete_draft)) {
1312 //FIXME: DON'T ECHO HTML FROM CORE!
1313 echo addHidden('delete_draft', $delete_draft);
1314 }
1315 if (isset($session)) {
1316 //FIXME: DON'T ECHO HTML FROM CORE!
1317 echo addHidden('session', $session);
1318 }
1319
1320 if (isset($passed_id)) {
1321 //FIXME: DON'T ECHO HTML FROM CORE!
1322 echo addHidden('passed_id', $passed_id);
1323 }
1324
1325 if (isset($fwduid)) {
1326 //FIXME: DON'T ECHO HTML FROM CORE!
1327 echo addHidden('fwduid', $fwduid);
1328 }
1329
1330 if ($saved_draft == 'yes') {
1331 $oTemplate->assign('note', _("Your draft has been saved."));
1332 $oTemplate->display('note.tpl');
1333 }
1334 if ($mail_sent == 'yes') {
1335 $oTemplate->assign('note', _("Your mail has been sent."));
1336 $oTemplate->display('note.tpl');
1337 }
1338 if ($compose_new_win == '1') {
1339 $oTemplate->display('compose_newwin_close.tpl');
1340 }
1341
1342 if ($location_of_buttons == 'top') {
1343 //FIXME: DON'T ECHO HTML FROM CORE!
1344 showComposeButtonRow();
1345 }
1346
1347 $identities = array();
1348 if (count($idents) > 1) {
1349 reset($idents);
1350 foreach($idents as $id => $data) {
1351 $identities[$id] = $data['full_name'].' &lt;'.$data['email_address'].'&gt;';
1352 }
1353 }
1354
1355 $oTemplate->assign('identities', $identities);
1356 $oTemplate->assign('identity_def', $identity);
1357 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1358
1359 $oTemplate->assign('to', sm_encode_html_special_chars($send_to));
1360 $oTemplate->assign('cc', sm_encode_html_special_chars($send_to_cc));
1361 $oTemplate->assign('bcc', sm_encode_html_special_chars($send_to_bcc));
1362 $oTemplate->assign('subject', sm_encode_html_special_chars($subject));
1363
1364 // access keys...
1365 //
1366 global $accesskey_compose_to, $accesskey_compose_cc,
1367 $accesskey_compose_identity, $accesskey_compose_bcc,
1368 $accesskey_compose_subject;
1369 $oTemplate->assign('accesskey_compose_identity', $accesskey_compose_identity);
1370 $oTemplate->assign('accesskey_compose_to', $accesskey_compose_to);
1371 $oTemplate->assign('accesskey_compose_cc', $accesskey_compose_cc);
1372 $oTemplate->assign('accesskey_compose_bcc', $accesskey_compose_bcc);
1373 $oTemplate->assign('accesskey_compose_subject', $accesskey_compose_subject);
1374
1375 $oTemplate->display('compose_header.tpl');
1376
1377 if ($location_of_buttons == 'between') {
1378 //FIXME: DON'T ECHO HTML FROM CORE!
1379 showComposeButtonRow();
1380 }
1381
1382 $body_str = '';
1383 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1384 $signature = $idents[$identity]['signature'];
1385
1386 if ($sig_first == '1') {
1387 /*
1388 * FIXME: test is specific to ja_JP translation implementation.
1389 * This test might apply incorrect conversion to other translations, but
1390 * use of 7bit iso-2022-jp charset in other translations might have other
1391 * issues too.
1392 */
1393 if ($default_charset == 'iso-2022-jp') {
1394 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1395 } else {
1396 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1397 }
1398 $body_str .= "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1399 } else {
1400 $body_str = "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1401 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1402 if ($default_charset == 'iso-2022-jp') {
1403 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1404 } else {
1405 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1406 }
1407 }
1408 } else {
1409 $body_str = sm_encode_html_special_chars(decodeHeader($body,false,false));
1410 }
1411
1412 $oTemplate->assign('editor_width', (int)$editor_size);
1413 $oTemplate->assign('editor_height', (int)$editor_height);
1414 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1415 $oTemplate->assign('body', $body_str);
1416 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1417
1418 // access keys...
1419 //
1420 global $accesskey_compose_body, $accesskey_compose_send;
1421 $oTemplate->assign('accesskey_compose_body', $accesskey_compose_body);
1422 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1423
1424 $oTemplate->display ('compose_body.tpl');
1425
1426 if ($location_of_buttons == 'bottom') {
1427 //FIXME: DON'T ECHO HTML FROM CORE!
1428 showComposeButtonRow();
1429 }
1430
1431 // composeMessage can be empty when coming from a restored session
1432 if (is_object($composeMessage) && $composeMessage->entities)
1433 $attach_array = $composeMessage->entities;
1434 if ($session_expired && !empty($attachments) && is_array($attachments))
1435 $attach_array = $attachments;
1436
1437 /* This code is for attachments */
1438 if ((bool) ini_get('file_uploads')) {
1439
1440 /* Calculate the max size for an uploaded file.
1441 * This is advisory for the user because we can't actually prevent
1442 * people to upload too large files. */
1443 $sizes = array();
1444 /* php.ini vars which influence the max for uploads */
1445 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1446 foreach($configvars as $var) {
1447 /* skip 0 or empty values, and -1 which means 'unlimited' */
1448 if( $size = getByteSize(ini_get($var)) ) {
1449 if ( $size != '-1' ) {
1450 $sizes[] = $size;
1451 }
1452 }
1453 }
1454
1455 $attach = array();
1456 global $username, $attachment_dir;
1457 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1458 if (!empty($attach_array)) {
1459 foreach ($attach_array as $key => $attachment) {
1460 $attached_file = $attachment->att_local_name;
1461 if ($attachment->att_local_name || $attachment->body_part) {
1462 $attached_filename = decodeHeader($attachment->mime_header->getParameter('name'));
1463 $type = $attachment->mime_header->type0.'/'.
1464 $attachment->mime_header->type1;
1465
1466 $a = array();
1467 $a['Key'] = $key;
1468 $a['FileName'] = $attached_filename;
1469 $a['ContentType'] = $type;
1470 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1471 $attach[$key] = $a;
1472 }
1473 }
1474 }
1475
1476 $max = min($sizes);
1477 $oTemplate->assign('max_file_size', empty($max) ? -1 : $max);
1478 $oTemplate->assign('attachments', $attach);
1479
1480 // access keys...
1481 //
1482 global $accesskey_compose_attach_browse, $accesskey_compose_attach,
1483 $accesskey_compose_delete_attach;
1484 $oTemplate->assign('accesskey_compose_attach_browse', $accesskey_compose_attach_browse);
1485 $oTemplate->assign('accesskey_compose_attach', $accesskey_compose_attach);
1486 $oTemplate->assign('accesskey_compose_delete_attach', $accesskey_compose_delete_attach);
1487
1488 $oTemplate->display('compose_attachments.tpl');
1489 } // End of file_uploads if-block
1490 /* End of attachment code */
1491
1492 $oTemplate->assign('username', $username);
1493 $oTemplate->assign('smaction', $action);
1494 $oTemplate->assign('mailbox', $mailbox);
1495 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER);
1496 $oTemplate->assign('querystring', $queryString);
1497 $oTemplate->assign('composesession', $composesession);
1498 $oTemplate->assign('send_button_count', unique_widget_name('send', TRUE));
1499 if (!empty($attach_array))
1500 $oTemplate->assign('attachments', urlencode(serialize($attach_array)));
1501
1502 $aUserNotices = array();
1503
1504 // File uploads are off, so we didn't show that part of the form.
1505 // To avoid bogus bug reports, tell the user why.
1506 if (!(bool) ini_get('file_uploads')) {
1507 $aUserNotices[] = _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.");
1508 }
1509
1510 $oTemplate->assign('user_notices', $aUserNotices);
1511
1512 $oTemplate->display('compose_form_close.tpl');
1513
1514 if ($compose_new_win=='1') {
1515 $oTemplate->display('compose_newwin_close.tpl');
1516 }
1517
1518 $oErrorHandler->setDelayedErrors(false);
1519 $oTemplate->display('footer.tpl');
1520 }
1521
1522
1523 function showComposeButtonRow() {
1524 global $use_javascript_addr_book, $save_as_draft,
1525 $default_use_priority, $mailprio, $default_use_mdn,
1526 $request_mdn, $request_dr,
1527 $data_dir, $username;
1528
1529 global $oTemplate, $buffer_hook;
1530
1531 if ($default_use_priority) {
1532 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1533 $priority = isset($mailprio) ? $mailprio : 3;
1534 } else {
1535 $priorities = array();
1536 $priority = NULL;
1537 }
1538
1539 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1540
1541 $address_book_button_attribs = array();
1542 global $accesskey_compose_addresses;
1543 if ($accesskey_compose_addresses != 'NONE')
1544 $address_book_button_attribs['accesskey'] = $accesskey_compose_addresses;
1545 if ($use_javascript_addr_book && checkForJavascript()) {
1546 $addr_book = addButton(_("Addresses"),
1547 null,
1548 array_merge($address_book_button_attribs, array('onclick' => 'javascript:open_abook();')));
1549 } else {
1550 $addr_book = addSubmit(_("Addresses"), 'html_addr_search', $address_book_button_attribs);
1551 }
1552
1553 $oTemplate->assign('allow_priority', $default_use_priority==1);
1554 $oTemplate->assign('priority_list', $priorities);
1555 $oTemplate->assign('current_priority', $priority);
1556
1557 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1558 $oTemplate->assign('read_receipt', $request_mdn=='1');
1559 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1560
1561 $oTemplate->assign('drafts_enabled', $save_as_draft);
1562 $oTemplate->assign('address_book_button', $addr_book);
1563
1564 // access keys...
1565 //
1566 global $accesskey_compose_priority, $accesskey_compose_on_read,
1567 $accesskey_compose_on_delivery, $accesskey_compose_signature,
1568 $accesskey_compose_save_draft, $accesskey_compose_send;
1569 $oTemplate->assign('accesskey_compose_priority', $accesskey_compose_priority);
1570 $oTemplate->assign('accesskey_compose_on_read', $accesskey_compose_on_read);
1571 $oTemplate->assign('accesskey_compose_on_delivery', $accesskey_compose_on_delivery);
1572 $oTemplate->assign('accesskey_compose_signature', $accesskey_compose_signature);
1573 $oTemplate->assign('accesskey_compose_save_draft', $accesskey_compose_save_draft);
1574 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1575
1576 $oTemplate->display('compose_buttons.tpl');
1577 }
1578
1579 function checkInput ($show) {
1580 /*
1581 * I implemented the $show variable because the error messages
1582 * were getting sent before the page header. So, I check once
1583 * using $show=false, and then when i'm ready to display the error
1584 * message, show=true
1585 */
1586 global $send_to, $send_to_cc, $send_to_bcc;
1587
1588 $send_to = trim($send_to);
1589 $send_to_cc = trim($send_to_cc);
1590 $send_to_bcc = trim($send_to_bcc);
1591 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1592 if ($show) {
1593 plain_error_message(_("You have not filled in the \"To:\" field."));
1594 }
1595 return false;
1596 }
1597 return true;
1598 } /* function checkInput() */
1599
1600
1601 /* True if FAILURE */
1602 function saveAttachedFiles($session) {
1603 global $composeMessage, $username, $attachment_dir;
1604
1605 /* get out of here if no file was attached at all */
1606 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1607 return true;
1608 }
1609
1610 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1611 $localfilename = sq_get_attach_tempfile();
1612 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1613
1614 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1615 // if that doesn't work, try a simple rename.
1616 if (!sq_call_function_suppress_errors('move_uploaded_file', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1617 if (!sq_call_function_suppress_errors('rename', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1618 return true;
1619 }
1620 }
1621 $type = strtolower($_FILES['attachfile']['type']);
1622 $name = $_FILES['attachfile']['name'];
1623 $composeMessage->initAttachment($type, $name, $localfilename);
1624 }
1625
1626 /**
1627 * Parse strings such as "8M" and "2k" into their corresponding size in bytes
1628 *
1629 * NOTE: This function only recognizes the suffixes "K", "M" and "G"
1630 * and will probably break very easily if the given size is in
1631 * some completely different format.
1632 *
1633 * @param string $ini_size The input string to be converted
1634 *
1635 * @return mixed Boolean FALSE if something went wrong (the value passed in
1636 * was empty?, the suffix was not recognized?), otherwise, the
1637 * converted size in bytes (just the number (as an integer),
1638 * no unit identifier included)
1639 *
1640 */
1641 function getByteSize($ini_size) {
1642
1643 if(!$ini_size) {
1644 return FALSE;
1645 }
1646
1647 $ini_size = trim($ini_size);
1648
1649 // if there's some kind of letter at the end of the string we need to multiply.
1650 if(!is_numeric(substr($ini_size, -1))) {
1651
1652 switch(strtoupper(substr($ini_size, -1))) {
1653 case 'G':
1654 $bytesize = 1073741824;
1655 break;
1656 case 'M':
1657 $bytesize = 1048576;
1658 break;
1659 case 'K':
1660 $bytesize = 1024;
1661 break;
1662 default:
1663 return FALSE;
1664 }
1665
1666 return ($bytesize * (int)substr($ini_size, 0, -1));
1667 }
1668
1669 return $ini_size;
1670 }
1671
1672
1673 /**
1674 * temporary function to make use of the deliver class.
1675 * In the future the responsible backend should be automaticly loaded
1676 * and conf.pl should show a list of available backends.
1677 * The message also should be constructed by the message class.
1678 *
1679 * @param object $composeMessage The message being sent. Please note
1680 * that it is passed by reference and
1681 * will be returned modified, with additional
1682 * headers, such as Message-ID, Date, In-Reply-To,
1683 * References, and so forth.
1684 *
1685 * @return boolean FALSE if delivery failed, or some non-FALSE value
1686 * upon success.
1687 *
1688 */
1689 function deliverMessage(&$composeMessage, $draft=false) {
1690 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1691 $username, $identity, $idents, $data_dir,
1692 $request_mdn, $request_dr, $default_charset, $useSendmail,
1693 $domain, $action, $default_move_to_sent, $move_to_sent,
1694 $imapServerAddress, $imapPort, $imap_stream_options, $sent_folder, $key;
1695
1696 $rfc822_header = $composeMessage->rfc822_header;
1697
1698 $abook = addressbook_init(false, true);
1699 $rfc822_header->to = $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1700 $rfc822_header->cc = $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1701 $rfc822_header->bcc = $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1702 $rfc822_header->priority = $mailprio;
1703 $rfc822_header->subject = $subject;
1704
1705 $special_encoding='';
1706 if (strtolower($default_charset) == 'iso-2022-jp') {
1707 if (mb_detect_encoding($body) == 'ASCII') {
1708 $special_encoding = '8bit';
1709 } else {
1710 $body = mb_convert_encoding($body, 'JIS');
1711 $special_encoding = '7bit';
1712 }
1713 }
1714 $composeMessage->setBody($body);
1715
1716 $reply_to = '';
1717 $reply_to = $idents[$identity]['reply_to'];
1718 if ($reply_to && strpos($reply_to, '@') === FALSE)
1719 $reply_to .= '@' . $domain;
1720
1721 $from_addr = build_from_header($identity);
1722 $rfc822_header->from = $rfc822_header->parseAddress($from_addr,true);
1723 if ($reply_to) {
1724 $rfc822_header->reply_to = $rfc822_header->parseAddress($reply_to,true);
1725 }
1726 /* Receipt: On Read */
1727 if (isset($request_mdn) && $request_mdn) {
1728 $rfc822_header->dnt = $rfc822_header->parseAddress($from_addr,true);
1729 } elseif (isset($rfc822_header->dnt)) {
1730 unset($rfc822_header->dnt);
1731 }
1732
1733 /* Receipt: On Delivery */
1734 if (!empty($request_dr)) {
1735 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination; is this possible?
1736 $rfc822_header->more_headers['Return-Receipt-To'] = $from_addr;
1737 } elseif (isset($rfc822_header->more_headers['Return-Receipt-To'])) {
1738 unset($rfc822_header->more_headers['Return-Receipt-To']);
1739 }
1740
1741 /* multipart messages */
1742 if (count($composeMessage->entities)) {
1743 $message_body = new Message();
1744 $message_body->body_part = $composeMessage->body_part;
1745 $composeMessage->body_part = '';
1746 $mime_header = new MessageHeader;
1747 $mime_header->type0 = 'text';
1748 $mime_header->type1 = 'plain';
1749 if ($special_encoding) {
1750 $mime_header->encoding = $special_encoding;
1751 } else {
1752 $mime_header->encoding = '8bit';
1753 }
1754 if ($default_charset) {
1755 $mime_header->parameters['charset'] = $default_charset;
1756 }
1757 $message_body->mime_header = $mime_header;
1758 array_unshift($composeMessage->entities, $message_body);
1759 $content_type = new ContentType('multipart/mixed');
1760 } else {
1761 $content_type = new ContentType('text/plain');
1762 if ($special_encoding) {
1763 $rfc822_header->encoding = $special_encoding;
1764 } else {
1765 $rfc822_header->encoding = '8bit';
1766 }
1767 if ($default_charset) {
1768 $content_type->properties['charset']=$default_charset;
1769 }
1770 }
1771
1772 $rfc822_header->content_type = $content_type;
1773 $composeMessage->rfc822_header = $rfc822_header;
1774 if ($action == 'reply' || $action == 'reply_all') {
1775 global $passed_id, $passed_ent_id;
1776 $reply_id = $passed_id;
1777 $reply_ent_id = $passed_ent_id;
1778 } else {
1779 $reply_id = '';
1780 $reply_ent_id = '';
1781 }
1782
1783 /* Here you can modify the message structure just before we hand
1784 it over to deliver; plugin authors note that $composeMessage
1785 is sent and modified by reference since 1.5.2 */
1786 do_hook('compose_send', $composeMessage);
1787 //TODO: need to migrate to the following, but it neessitates changes in existing plugins, since the args are now an array
1788 //$temp = array(&$composeMessage, &$draft);
1789 //do_hook('compose_send', $temp);
1790
1791 if (!$useSendmail && !$draft) {
1792 require_once(SM_PATH . 'class/deliver/Deliver_SMTP.class.php');
1793 $deliver = new Deliver_SMTP();
1794 global $smtpServerAddress, $smtpPort, $smtp_stream_options, $pop_before_smtp, $pop_before_smtp_host;
1795
1796 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ? true : false;
1797 if (empty($pop_before_smtp_host)) $pop_before_smtp_host = $smtpServerAddress;
1798 get_smtp_user($user, $pass);
1799 $stream = $deliver->initStream($composeMessage,$domain,0,
1800 $smtpServerAddress, $smtpPort, $user, $pass, $authPop, $pop_before_smtp_host, $smtp_stream_options);
1801 } elseif (!$draft) {
1802 require_once(SM_PATH . 'class/deliver/Deliver_SendMail.class.php');
1803 global $sendmail_path, $sendmail_args;
1804 // Check for outdated configuration
1805 if (!isset($sendmail_args)) {
1806 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1807 $sendmail_args = '';
1808 } else {
1809 $sendmail_args = '-i -t';
1810 }
1811 }
1812 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1813 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1814 } elseif ($draft) {
1815 global $draft_folder;
1816 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1817 $imapPort, 0, $imap_stream_options);
1818 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1819 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1820 $imap_deliver = new Deliver_IMAP();
1821 $success = $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $draft_folder);
1822 sqimap_logout($imap_stream);
1823 unset ($imap_deliver);
1824 $composeMessage->purgeAttachments();
1825 return $success;
1826 } else {
1827 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), sm_encode_html_special_chars($draft_folder));
1828 plain_error_message($msg);
1829 return false;
1830 }
1831 }
1832 $success = false;
1833 if ($stream) {
1834 $deliver->mail($composeMessage, $stream, $reply_id, $reply_ent_id);
1835 $success = $deliver->finalizeStream($stream);
1836 }
1837 if (!$success) {
1838 // $deliver->dlv_server_msg is not always server's reply
1839 $msg = _("Message not sent.")
1840 . "<br />\n"
1841 . (isset($deliver->dlv_msg) ? $deliver->dlv_msg : '');
1842 if (!empty($deliver->dlv_server_msg)) {
1843 // add 'server replied' part only when it is not empty.
1844 // Delivery error can be generated by delivery class itself
1845 $msg .= '<br />'
1846 . _("Server replied:") . ' '
1847 . (isset($deliver->dlv_ret_nr) ? $deliver->dlv_ret_nr . ' ' : '')
1848 . nl2br(sm_encode_html_special_chars($deliver->dlv_server_msg));
1849 }
1850 plain_error_message($msg);
1851 } else {
1852 unset ($deliver);
1853 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0, $imap_stream_options);
1854
1855
1856 // mark as replied or forwarded if applicable
1857 //
1858 global $what, $iAccount, $startMessage, $passed_id, $fwduid, $mailbox;
1859
1860 if ($action=='reply' || $action=='reply_all' || $action=='forward' || $action=='forward_as_attachment') {
1861 require(SM_PATH . 'functions/mailbox_display.php');
1862 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array());
1863 switch($action) {
1864 case 'reply':
1865 case 'reply_all':
1866 // check if we are allowed to set the \\Answered flag
1867 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1868 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1869 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1870 /**
1871 * Only update the cached headers if the header is
1872 * cached.
1873 */
1874 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1875 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1876 }
1877 }
1878 }
1879 break;
1880 case 'forward':
1881 case 'forward_as_attachment':
1882 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1883 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1884 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1885
1886 // when forwarding as an attachment from the message
1887 // list, passed_id is not used, need to get UID(s)
1888 // from the query string
1889 //
1890 if (empty($passed_id) && !empty($fwduid))
1891 $ids = explode('_', $fwduid);
1892 else
1893 $ids = array($passed_id);
1894
1895 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, $ids, '$Forwarded', true, false);
1896
1897 foreach ($ids as $id) {
1898 if (isset($aUpdatedMsgs[$id]['FLAGS'])) {
1899 if (isset($aMailbox['MSG_HEADERS'][$id])) {
1900 $aMailbox['MSG_HEADERS'][$id]['FLAGS'] = $aMsg['FLAGS'];
1901 }
1902 }
1903 }
1904 }
1905 break;
1906 }
1907
1908 /**
1909 * Write mailbox with updated seen flag information back to cache.
1910 */
1911 if(isset($aUpdatedMsgs[$passed_id])) {
1912 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1913 sqsession_register($mailbox_cache,'mailbox_cache');
1914 }
1915
1916 }
1917
1918
1919 // move to sent folder
1920 //
1921 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1922 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1923 $svr_allow_sent = true;
1924 } else {
1925 $svr_allow_sent = false;
1926 }
1927
1928 if (isset($sent_folder) && (($sent_folder != '') || ($sent_folder != 'none'))
1929 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1930 $fld_sent = true;
1931 } else {
1932 $fld_sent = false;
1933 }
1934
1935 if ((isset($move_to_sent) && ($move_to_sent != 0)) || (!isset($move_to_sent))) {
1936 $lcl_allow_sent = true;
1937 } else {
1938 $lcl_allow_sent = false;
1939 }
1940
1941 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) || ($fld_sent && $lcl_allow_sent)) {
1942 if ($action == 'reply' || $action == 'reply_all') {
1943 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1944 if ($save_reply_with_orig) {
1945 $sent_folder = $mailbox;
1946 }
1947 }
1948 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1949 $imap_deliver = new Deliver_IMAP();
1950 $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $sent_folder);
1951 unset ($imap_deliver);
1952 }
1953
1954
1955 // final cleanup
1956 //
1957 $composeMessage->purgeAttachments();
1958 sqimap_logout($imap_stream);
1959
1960 }
1961 return $success;
1962 }