a84c33b8e74beb5a2df41dd3a37a9d9784b23cae
[squirrelmail.git] / src / compose.php
1 <?php
2 /**
3 * compose.php
4 *
5 * This code sends a mail.
6 *
7 * There are 4 modes of operation:
8 * - Start new mail
9 * - Add an attachment
10 * - Send mail
11 * - Save As Draft
12 *
13 * @copyright 1999-2014 The SquirrelMail Project Team
14 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
15 * @version $Id$
16 * @package squirrelmail
17 */
18
19 /** This is the compose page */
20 define('PAGE_NAME', 'compose');
21
22 /**
23 * Include the SquirrelMail initialization file.
24 */
25 require('../include/init.php');
26
27 /* If email_address not set and admin wants us to ask user for it,
28 * redirect to options page. */
29 if ( $ask_user_info && getPref($data_dir, $username,'email_address') == "" ) {
30 header("Location: " . get_location() . "/options.php?optpage=personal");
31 exit;
32 }
33
34 /* SquirrelMail required files. */
35 require_once(SM_PATH . 'functions/imap_general.php');
36 require_once(SM_PATH . 'functions/imap_messages.php');
37 require_once(SM_PATH . 'functions/date.php');
38 require_once(SM_PATH . 'functions/mime.php');
39 require_once(SM_PATH . 'functions/compose.php');
40 require_once(SM_PATH . 'class/deliver/Deliver.class.php');
41 require_once(SM_PATH . 'functions/addressbook.php');
42 require_once(SM_PATH . 'functions/forms.php');
43 require_once(SM_PATH . 'functions/identity.php');
44 global $imapSslOptions; // in case not defined in config
45
46 /* --------------------- Get globals ------------------------------------- */
47
48 /** SESSION VARS */
49 sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
50
51 sqgetGlobalVar('delayed_errors', $delayed_errors, SQ_SESSION);
52 sqgetGlobalVar('composesession', $composesession, SQ_SESSION);
53 sqgetGlobalVar('compose_messages', $compose_messages, SQ_SESSION);
54
55 // compose_messages only useful in SESSION when a forward-as-attachment
56 // has been preconstructed for us and passed in via that mechanism; once
57 // we have it, we can clear it from the SESSION
58 sqsession_unregister('compose_messages');
59
60 // Turn on delayed error handling in case we wind up redirecting below
61 $oErrorHandler->setDelayedErrors(true);
62
63 /** SESSION/POST/GET VARS */
64 sqgetGlobalVar('send_button_count', $send_button_count, SQ_POST, 1, SQ_TYPE_INT);
65 for ($i = 1; $i <= $send_button_count; $i++)
66 if (sqgetGlobalVar('send' . $i, $send, SQ_POST)) break;
67 // Send can only be achieved by setting $_POST var. If Send = true then
68 // retrieve other form fields from $_POST
69 if (isset($send) && $send) {
70 $SQ_GLOBAL = SQ_POST;
71 } else {
72 $SQ_GLOBAL = SQ_FORM;
73 }
74 sqgetGlobalVar('session',$session, $SQ_GLOBAL);
75 sqgetGlobalVar('mailbox',$mailbox, $SQ_GLOBAL);
76 if(!sqgetGlobalVar('identity',$identity, $SQ_GLOBAL)) {
77 $identity=0;
78 }
79 sqgetGlobalVar('send_to',$send_to, $SQ_GLOBAL);
80 sqgetGlobalVar('send_to_cc',$send_to_cc, $SQ_GLOBAL);
81 sqgetGlobalVar('send_to_bcc',$send_to_bcc, $SQ_GLOBAL);
82 sqgetGlobalVar('subject',$subject, $SQ_GLOBAL);
83 sqgetGlobalVar('body',$body, $SQ_GLOBAL);
84 sqgetGlobalVar('mailprio',$mailprio, $SQ_GLOBAL);
85 sqgetGlobalVar('request_mdn',$request_mdn, $SQ_GLOBAL);
86 sqgetGlobalVar('request_dr',$request_dr, $SQ_GLOBAL);
87 sqgetGlobalVar('html_addr_search',$html_addr_search, $SQ_GLOBAL);
88 sqgetGlobalVar('mail_sent',$mail_sent, $SQ_GLOBAL);
89 sqgetGlobalVar('passed_id',$passed_id, $SQ_GLOBAL, NULL, SQ_TYPE_BIGINT);
90 sqgetGlobalVar('passed_ent_id',$passed_ent_id, $SQ_GLOBAL);
91 sqgetGlobalVar('fwduid',$fwduid, $SQ_GLOBAL, '');
92
93 sqgetGlobalVar('attach',$attach, SQ_POST);
94 sqgetGlobalVar('draft',$draft, SQ_POST);
95 sqgetGlobalVar('draft_id',$draft_id, $SQ_GLOBAL);
96 sqgetGlobalVar('ent_num',$ent_num, $SQ_GLOBAL);
97 sqgetGlobalVar('saved_draft',$saved_draft, SQ_FORM);
98
99 if ( sqgetGlobalVar('delete_draft',$delete_draft) ) {
100 $delete_draft = (int)$delete_draft;
101 }
102
103 if ( sqgetGlobalVar('startMessage',$startMessage) ) {
104 $startMessage = (int)$startMessage;
105 } else {
106 $startMessage = 1;
107 }
108
109
110 /** POST VARS */
111 sqgetGlobalVar('sigappend', $sigappend, SQ_POST);
112 sqgetGlobalVar('from_htmladdr_search', $from_htmladdr_search, SQ_POST);
113 sqgetGlobalVar('addr_search_done', $html_addr_search_done, SQ_POST);
114 sqgetGlobalVar('addr_search_cancel', $html_addr_search_cancel, SQ_POST);
115 sqgetGlobalVar('send_to_search', $send_to_search, SQ_POST);
116 sqgetGlobalVar('do_delete', $do_delete, SQ_POST);
117 sqgetGlobalVar('delete', $delete, SQ_POST);
118 sqgetGlobalVar('attachments', $attachments, SQ_POST);
119 if ( sqgetGlobalVar('return', $temp, SQ_POST) ) {
120 $html_addr_search_done = 'Use Addresses';
121 }
122
123 /** GET VARS */
124 if ( sqgetGlobalVar('account', $temp, SQ_GET) ) {
125 $iAccount = (int) $temp;
126 } else {
127 $iAccount = 0;
128 }
129
130
131 /** get smaction */
132 if ( !sqgetGlobalVar('smaction',$action) )
133 {
134 if ( sqgetGlobalVar('smaction_reply',$tmp) ) $action = 'reply';
135 if ( sqgetGlobalVar('smaction_reply_all',$tmp) ) $action = 'reply_all';
136 if ( sqgetGlobalVar('smaction_forward',$tmp) ) $action = 'forward';
137 if ( sqgetGlobalVar('smaction_attache',$tmp) ) $action = 'forward_as_attachment';
138 if ( sqgetGlobalVar('smaction_draft',$tmp) ) $action = 'draft';
139 if ( sqgetGlobalVar('smaction_edit_new',$tmp) ) $action = 'edit_as_new';
140 }
141
142 sqgetGlobalVar('smtoken', $submitted_token, $SQ_GLOBAL, '');
143
144 /**
145 * Here we decode the data passed in from mailto.php.
146 */
147 if ( sqgetGlobalVar('mailtodata', $mailtodata, SQ_GET) ) {
148 $trtable = array('to' => 'send_to',
149 'cc' => 'send_to_cc',
150 'bcc' => 'send_to_bcc',
151 'body' => 'body',
152 'subject' => 'subject');
153 $mtdata = unserialize($mailtodata);
154
155 foreach ($trtable as $f => $t) {
156 if ( !empty($mtdata[$f]) ) {
157 $$t = $mtdata[$f];
158 }
159 }
160 unset($mailtodata,$mtdata, $trtable);
161 }
162
163 /* Location (For HTTP 1.1 header("Location: ...") redirects) */
164 $location = get_location();
165 /* Identities (fetch only once) */
166 $idents = get_identities();
167
168 /* --------------------- Specific Functions ------------------------------ */
169
170 function replyAllString($header) {
171 global $include_self_reply_all, $idents;
172 $excl_ar = array();
173 /**
174 * 1) Remove the addresses we'll be sending the message 'to'
175 */
176 if (isset($header->reply_to)) {
177 $excl_ar = $header->getAddr_a('reply_to');
178 }
179 /**
180 * 2) Remove our identities from the CC list (they still can be in the
181 * TO list) only if $include_self_reply_all is turned off
182 */
183 if (!$include_self_reply_all) {
184 foreach($idents as $id) {
185 $excl_ar[strtolower(trim($id['email_address']))] = '';
186 }
187 }
188
189 /**
190 * 3) get the addresses.
191 */
192 $url_replytoall_ar = $header->getAddr_a(array('to','cc'), $excl_ar);
193
194 /**
195 * 4) generate the string.
196 */
197 $url_replytoallcc = '';
198 foreach( $url_replytoall_ar as $email => $personal) {
199 if ($personal) {
200 // always quote personal name (can't just quote it if
201 // it contains a comma separator, since it might still
202 // be encoded)
203 $url_replytoallcc .= ", \"$personal\" <$email>";
204 } else {
205 $url_replytoallcc .= ', '. $email;
206 }
207 }
208 $url_replytoallcc = substr($url_replytoallcc,2);
209
210 return $url_replytoallcc;
211 }
212
213 /**
214 * creates top line in reply citations
215 *
216 * Line style depends on user preferences.
217 * $orig_date argument is available only from 1.4.3 and 1.5.1 version.
218 * @param object $orig_from From: header object.
219 * @param integer $orig_date email's timestamp
220 * @return string reply citation
221 */
222 function getReplyCitation($orig_from, $orig_date) {
223 global $reply_citation_style, $reply_citation_start, $reply_citation_end;
224
225 if (!is_object($orig_from)) {
226 $sOrig_from = '';
227 } else {
228 $sOrig_from = decodeHeader($orig_from->getAddress(false),false,false,true);
229 }
230
231 /* First, return an empty string when no citation style selected. */
232 if (($reply_citation_style == '') || ($reply_citation_style == 'none')) {
233 return '';
234 }
235
236 /* Make sure our final value isn't an empty string. */
237 if ($sOrig_from == '') {
238 return '';
239 }
240
241 /* Otherwise, try to select the desired citation style. */
242 switch ($reply_citation_style) {
243 case 'author_said':
244 // i18n: %s is for author's name
245 $full_reply_citation = sprintf(_("%s wrote:"),$sOrig_from);
246 break;
247 case 'quote_who':
248 $start = '<quote who="';
249 $end = '">';
250 $full_reply_citation = $start . $sOrig_from . $end;
251 break;
252 case 'date_time_author':
253 // i18n:
254 // The first %s is for date string, the second %s is for author's name.
255 // The date uses formating from "D, F j, Y g:i a" and "D, F j, Y H:i"
256 // translations.
257 // Example string:
258 // "On Sat, December 24, 2004 23:59, Santa wrote:"
259 // If you have to put author's name in front of date string, check comments about
260 // argument swapping at http://php.net/sprintf
261 $full_reply_citation = sprintf(_("On %s, %s wrote:"), getLongDateString($orig_date), $sOrig_from);
262 break;
263 case 'user-defined':
264 $start = $reply_citation_start .
265 ($reply_citation_start == '' ? '' : ' ');
266 $end = $reply_citation_end;
267 $full_reply_citation = $start . $sOrig_from . $end;
268 break;
269 default:
270 return '';
271 }
272
273 /* Add line feed and return the citation string. */
274 return ($full_reply_citation . "\n");
275 }
276
277 /**
278 * Creates header fields in forwarded email body
279 *
280 * $default_charset global must be set correctly before you call this function.
281 * @param object $orig_header
282 * @return $string
283 */
284 function getforwardHeader($orig_header) {
285 global $editor_size, $default_charset;
286
287 // using own strlen function in order to detect correct string length
288 $display = array( _("Subject") => sq_strlen(_("Subject"),$default_charset),
289 _("From") => sq_strlen(_("From"),$default_charset),
290 _("Date") => sq_strlen(_("Date"),$default_charset),
291 _("To") => sq_strlen(_("To"),$default_charset),
292 _("Cc") => sq_strlen(_("Cc"),$default_charset) );
293 $maxsize = max($display);
294 $indent = str_pad('',$maxsize+2);
295 foreach($display as $key => $val) {
296 $display[$key] = $key .': '. str_pad('', $maxsize - $val);
297 }
298 $from = decodeHeader($orig_header->getAddr_s('from',"\n$indent"),false,false,true);
299 $from = str_replace('&nbsp;',' ',$from);
300 $to = decodeHeader($orig_header->getAddr_s('to',"\n$indent"),false,false,true);
301 $to = str_replace('&nbsp;',' ',$to);
302 $subject = decodeHeader($orig_header->subject,false,false,true);
303 $subject = str_replace('&nbsp;',' ',$subject);
304
305 // using own str_pad function in order to create correct string pad
306 $bodyTop = sq_str_pad(' '._("Original Message").' ',$editor_size -2,'-',STR_PAD_BOTH,$default_charset) .
307 "\n". $display[_("Subject")] . $subject . "\n" .
308 $display[_("From")] . $from . "\n" .
309 $display[_("Date")] . getLongDateString( $orig_header->date, $orig_header->date_unparsed ). "\n" .
310 $display[_("To")] . $to . "\n";
311 if ($orig_header->cc != array() && $orig_header->cc !='') {
312 $cc = decodeHeader($orig_header->getAddr_s('cc',"\n$indent"),false,false,true);
313 $cc = str_replace('&nbsp;',' ',$cc);
314 $bodyTop .= $display[_("Cc")] .$cc . "\n";
315 }
316 $bodyTop .= str_pad('', $editor_size -2 , '-') .
317 "\n\n";
318 return $bodyTop;
319 }
320 /* ----------------------------------------------------------------------- */
321
322 /*
323 * If the session is expired during a post this restores the compose session
324 * vars.
325 */
326 $session_expired = false;
327 if (sqsession_is_registered('session_expired_post')) {
328 sqgetGlobalVar('session_expired_post', $session_expired_post, SQ_SESSION);
329 /*
330 * extra check for username so we don't display previous post data from
331 * another user during this session.
332 */
333 if (!empty($session_expired_post['username'])
334 && $session_expired_post['username'] == $username) {
335 // these are the vars that we can set from the expired composed session
336 $compo_var_list = array ('send_to', 'send_to_cc', 'body',
337 'startMessage', 'passed_body', 'use_signature', 'signature',
338 'subject', 'newmail', 'send_to_bcc', 'passed_id', 'mailbox',
339 'from_htmladdr_search', 'identity', 'draft_id', 'delete_draft',
340 'mailprio', 'edit_as_new', 'attachments', 'composesession',
341 'request_mdn', 'request_dr', 'fwduid');
342
343 foreach ($compo_var_list as $var) {
344 if ( isset($session_expired_post[$var]) && !isset($$var) ) {
345 $$var = $session_expired_post[$var];
346 }
347 }
348
349 if (!empty($attachments))
350 $attachments = unserialize(urldecode($attachments));
351
352 sqsession_register($composesession,'composesession');
353
354 if (isset($send)) {
355 unset($send);
356 }
357 $session_expired = true;
358 }
359 unset($session_expired_post);
360 sqsession_unregister('session_expired_post');
361 session_write_close();
362 if (!isset($mailbox)) {
363 $mailbox = '';
364 }
365 if ($compose_new_win == '1') {
366 compose_Header($color, $mailbox);
367 } else {
368 $sHeaderJs = (isset($sHeaderJs)) ? $sHeaderJs : '';
369 if (strpos($action, 'reply') !== false && $reply_focus) {
370 $sOnload = 'checkForm(\''.$replyfocus.'\');';
371 } else {
372 $sOnload = 'checkForm();';
373 }
374 displayPageHeader($color, $mailbox,$sHeaderJs,$sOnload);
375 }
376 showInputForm($session, false);
377 exit();
378 }
379
380 if (!isset($composesession)) {
381 $composesession = 0;
382 sqsession_register(0,'composesession');
383 } else {
384 $composesession = (int)$composesession;
385 }
386
387 if (!isset($session) || (isset($newmessage) && $newmessage)) {
388 sqsession_unregister('composesession');
389 $session = "$composesession" +1;
390 $composesession = $session;
391 sqsession_register($composesession,'composesession');
392 }
393 if (!empty($compose_messages[$session])) {
394 $composeMessage = $compose_messages[$session];
395 } else {
396 $composeMessage = new Message();
397 $rfc822_header = new Rfc822Header();
398 $composeMessage->rfc822_header = $rfc822_header;
399 $composeMessage->reply_rfc822_header = '';
400 }
401
402 // re-add attachments that were already in this message
403 // FIXME: note that technically this is very bad form -
404 // should never directly manipulate an object like this
405 if (!empty($attachments)) {
406 $attachments = unserialize(urldecode($attachments));
407 if (!empty($attachments) && is_array($attachments))
408 $composeMessage->entities = $attachments;
409 }
410
411 if (empty($mailbox)) {
412 $mailbox = 'INBOX';
413 }
414
415 if ($draft) {
416
417 // validate security token
418 //
419 sm_validate_security_token($submitted_token, -1, TRUE);
420
421 /*
422 * Set $default_charset to correspond with the user's selection
423 * of language interface.
424 */
425 set_my_charset();
426 if (! deliverMessage($composeMessage, true)) {
427 showInputForm($session);
428 exit();
429 } else {
430 $draft_message = _("Draft Email Saved");
431 /* If this is a resumed draft, then delete the original */
432 if(isset($delete_draft)) {
433 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imapSslOptions);
434 sqimap_mailbox_select($imap_stream, $draft_folder);
435 // force bypass_trash=true because message should be saved when deliverMessage() returns true.
436 // in current implementation of sqimap_msgs_list_flag() single message id can
437 // be submitted as string. docs state that it should be array.
438 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
439 if ($auto_expunge) {
440 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
441 }
442 sqimap_logout($imap_stream);
443 }
444
445 $oErrorHandler->saveDelayedErrors();
446 session_write_close();
447
448 if ($compose_new_win == '1') {
449 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
450 header("Location: $location/compose.php?saved_draft=yes&session=$composesession");
451 } else {
452 //FIXME: DON'T ECHO HTML FROM CORE!
453 echo ' <br><br><div style="text-align: center;"><a href="' . $location
454 . '/compose.php?saved_sent=yes&amp;session=' . $composesession . '">'
455 . _("Return") . '</a></div>';
456 }
457 exit();
458 } else {
459 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
460 header("Location: $location/right_main.php?mailbox=" . urlencode($draft_folder) .
461 "&startMessage=1&note=".urlencode($draft_message));
462 } else {
463 //FIXME: DON'T ECHO HTML FROM CORE!
464 echo ' <br><br><div style="text-align: center;"><a href="' . $location
465 . '/right_main.php?mailbox=' . urlencode($draft_folder)
466 . '&amp;startMessage=1&amp;note=' . urlencode($draft_message) .'">'
467 . _("Return") . '</a></div>';
468 }
469 exit();
470 }
471 }
472 }
473
474 if ($send) {
475
476 // validate security token
477 //
478 sm_validate_security_token($submitted_token, -1, TRUE);
479
480 if (isset($_FILES['attachfile']) &&
481 $_FILES['attachfile']['tmp_name'] &&
482 $_FILES['attachfile']['tmp_name'] != 'none') {
483 $AttachFailure = saveAttachedFiles($session);
484 }
485
486 if (checkInput(false) && !isset($AttachFailure)) {
487 if ($mailbox == "All Folders") {
488 /* We entered compose via the search results page */
489 $mailbox = 'INBOX'; /* Send 'em to INBOX, that's safe enough */
490 }
491 $urlMailbox = urlencode($mailbox);
492 if (! isset($passed_id)) {
493 $passed_id = 0;
494 }
495 /**
496 * Set $default_charset to correspond with the user's selection
497 * of language interface.
498 */
499 set_my_charset();
500 /**
501 * This is to change all newlines to \n
502 * We'll change them to \r\n later (in the sendMessage function)
503 */
504 $body = str_replace("\r\n", "\n", $body);
505 $body = str_replace("\r", "\n", $body);
506
507 /**
508 * Rewrap $body so that no line is bigger than $editor_size
509 */
510 $body = explode("\n", $body);
511 $newBody = '';
512 foreach ($body as $line) {
513 if( $line <> '-- ' ) {
514 $line = rtrim($line);
515 }
516 if (sq_strlen($line, $default_charset) <= $editor_size + 1) {
517 $newBody .= $line . "\n";
518 } else {
519 sqWordWrap($line, $editor_size, $default_charset);
520 $newBody .= $line . "\n";
521
522 }
523
524 }
525 $body = $newBody;
526
527 $Result = deliverMessage($composeMessage);
528
529 if ($Result)
530 $mail_sent = 'yes';
531 else
532 $mail_sent = 'no';
533
534 // NOTE: this hook changed in 1.5.2 from sending $Result and
535 // $composeMessage as args #2 and #3 to being in an array
536 // under arg #2
537 $temp = array(&$Result, &$composeMessage, &$mail_sent);
538 do_hook('compose_send_after', $temp);
539 if (! $Result) {
540 showInputForm($session);
541 exit();
542 }
543
544 /* if it is resumed draft, delete draft message */
545 if ( isset($delete_draft)) {
546 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, false, $imapSslOptions);
547 sqimap_mailbox_select($imap_stream, $draft_folder);
548 // bypass_trash=true because message should be saved when deliverMessage() returns true.
549 // in current implementation of sqimap_msgs_list_flag() single message id can
550 // be submitted as string. docs state that it should be array.
551 sqimap_msgs_list_delete($imap_stream, $draft_folder, $delete_draft, true);
552 if ($auto_expunge) {
553 sqimap_mailbox_expunge($imap_stream, $draft_folder, true);
554 }
555 sqimap_logout($imap_stream);
556 }
557 /*
558 * Store the error array in the session because they will be lost on a redirect
559 */
560 $oErrorHandler->saveDelayedErrors();
561 session_write_close();
562
563 if ($compose_new_win == '1') {
564 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
565 header("Location: $location/compose.php?mail_sent=$mail_sent");
566 } else {
567 //FIXME: DON'T ECHO HTML FROM CORE!
568 echo ' <br><br><div style="text-align: center;"><a href="' . $location
569 . '/compose.php?mail_sent=$mail_sent">'
570 . _("Return") . '</a></div>';
571 }
572 exit();
573 } else {
574 if ( !isset($pageheader_sent) || !$pageheader_sent ) {
575 header("Location: $location/right_main.php?mailbox=$urlMailbox".
576 "&startMessage=$startMessage&mail_sent=$mail_sent");
577 } else {
578 //FIXME: DON'T ECHO HTML FROM CORE!
579 echo ' <br><br><div style="text-align: center;"><a href="' . $location
580 . "/right_main.php?mailbox=$urlMailbox"
581 . "&amp;startMessage=$startMessage&amp;mail_sent=$mail_sent\">"
582 . _("Return") . '</a></div>';
583 }
584 exit();
585 }
586 } else {
587 if ($compose_new_win == '1') {
588 compose_Header($color, $mailbox);
589 }
590 else {
591 displayPageHeader($color, $mailbox);
592 }
593 if (isset($AttachFailure)) {
594 plain_error_message(_("Could not move/copy file. File not attached"),
595 $color);
596 }
597 checkInput(true);
598 showInputForm($session);
599 /* sqimap_logout($imapConnection); */
600 }
601 } elseif (isset($html_addr_search_done)) {
602
603 // validate security token
604 //
605 sm_validate_security_token($submitted_token, -1, TRUE);
606
607 if ($compose_new_win == '1') {
608 compose_Header($color, $mailbox);
609 }
610 else {
611 displayPageHeader($color, $mailbox);
612 }
613
614 if (isset($send_to_search) && is_array($send_to_search)) {
615 foreach ($send_to_search as $k => $v) {
616 if (substr($k, 0, 1) == 'T') {
617 if ($send_to) {
618 $send_to .= ', ';
619 }
620 $send_to .= $v;
621 }
622 elseif (substr($k, 0, 1) == 'C') {
623 if ($send_to_cc) {
624 $send_to_cc .= ', ';
625 }
626 $send_to_cc .= $v;
627 }
628 elseif (substr($k, 0, 1) == 'B') {
629 if ($send_to_bcc) {
630 $send_to_bcc .= ', ';
631 }
632 $send_to_bcc .= $v;
633 }
634 }
635 }
636 showInputForm($session);
637 } elseif (isset($html_addr_search) && !isset($html_addr_search_cancel)) {
638 if (isset($_FILES['attachfile']) &&
639 $_FILES['attachfile']['tmp_name'] &&
640 $_FILES['attachfile']['tmp_name'] != 'none') {
641 if(saveAttachedFiles($session)) {
642 plain_error_message(_("Could not move/copy file. File not attached"));
643 }
644 }
645 /*
646 * I am using an include so as to elminiate an extra unnecessary
647 * click. If you can think of a better way, please implement it.
648 */
649 include_once('./addrbook_search_html.php');
650 } elseif (isset($attach)) {
651
652 // validate security token
653 //
654 sm_validate_security_token($submitted_token, -1, TRUE);
655
656 if ($compose_new_win == '1') {
657 compose_Header($color, $mailbox);
658 } else {
659 displayPageHeader($color, $mailbox);
660 }
661 if (saveAttachedFiles($session)) {
662 plain_error_message(_("Could not move/copy file. File not attached"));
663 }
664 showInputForm($session);
665 }
666 elseif (isset($sigappend)) {
667
668 // validate security token
669 //
670 sm_validate_security_token($submitted_token, -1, TRUE);
671
672 $signature = $idents[$identity]['signature'];
673
674 $body .= "\n\n".($prefix_sig==true? "-- \n":'').$signature;
675 if ($compose_new_win == '1') {
676 compose_Header($color, $mailbox);
677 } else {
678 displayPageHeader($color, $mailbox);
679 }
680 showInputForm($session);
681 } elseif (isset($do_delete)) {
682
683 // validate security token
684 //
685 sm_validate_security_token($submitted_token, -1, TRUE);
686
687 if ($compose_new_win == '1') {
688 compose_Header($color, $mailbox);
689 } else {
690 displayPageHeader($color, $mailbox);
691 }
692
693 if (isset($delete) && is_array($delete)) {
694 foreach($delete as $index) {
695 if (!empty($composeMessage->entities) && isset($composeMessage->entities[$index])) {
696 $composeMessage->entities[$index]->purgeAttachments();
697 // FIXME: one person reported that unset() didn't do anything at all here, so this is a work-around... but it triggers PHP notices if the unset() doesn't work, which should be fixed... but bigger question is if unset() doesn't work here, what about everywhere else? Anyway, uncomment this if you think you need it
698 //$composeMessage->entities[$index] = NULL;
699 unset ($composeMessage->entities[$index]);
700 }
701 }
702 $new_entities = array();
703 foreach ($composeMessage->entities as $entity) {
704 $new_entities[] = $entity;
705 }
706 $composeMessage->entities = $new_entities;
707 }
708 showInputForm($session);
709 } else {
710 /*
711 * This handles the default case as well as the error case
712 * (they had the same code) --> if (isset($smtpErrors))
713 */
714
715 if ($compose_new_win == '1') {
716 compose_Header($color, $mailbox);
717 } else {
718 displayPageHeader($color, $mailbox);
719 }
720
721 $newmail = true;
722
723 if (!isset($passed_ent_id)) {
724 $passed_ent_id = '';
725 }
726 if (!isset($passed_id)) {
727 $passed_id = '';
728 }
729 if (!isset($mailbox)) {
730 $mailbox = '';
731 }
732 if (!isset($action)) {
733 $action = '';
734 }
735
736 $values = newMail($mailbox,$passed_id,$passed_ent_id, $action, $session);
737
738 // forward as attachment - subject is in the message in session
739 //
740 if ($action == 'forward_as_attachment' && empty($values['subject']))
741 $subject = $composeMessage->rfc822_header->subject;
742
743 /* in case the origin is not read_body.php */
744 if (isset($send_to)) {
745 $values['send_to'] = $send_to;
746 }
747 if (isset($send_to_cc)) {
748 $values['send_to_cc'] = $send_to_cc;
749 }
750 if (isset($send_to_bcc)) {
751 $values['send_to_bcc'] = $send_to_bcc;
752 }
753 if (isset($subject)) {
754 $values['subject'] = $subject;
755 }
756 showInputForm($session, $values);
757 }
758
759 exit();
760
761 /**************** Only function definitions go below *************/
762
763 function getforwardSubject($subject)
764 {
765 if ((substr(strtolower($subject), 0, 4) != 'fwd:') &&
766 (substr(strtolower($subject), 0, 5) != '[fwd:') &&
767 (substr(strtolower($subject), 0, 6) != '[ fwd:')) {
768 $subject = '[Fwd: ' . $subject . ']';
769 }
770 return $subject;
771 }
772
773 /* This function is used when not sending or adding attachments */
774 function newMail ($mailbox='', $passed_id='', $passed_ent_id='', $action='', $session='') {
775 global $editor_size, $default_use_priority, $body, $idents,
776 $use_signature, $data_dir, $username,
777 $key, $imapServerAddress, $imapPort, $imapSslOptions,
778 $composeMessage, $body_quote, $request_mdn, $request_dr,
779 $mdn_user_support, $languages, $squirrelmail_language,
780 $default_charset, $do_not_reply_to_self;
781
782 /*
783 * Set $default_charset to correspond with the user's selection
784 * of language interface. $default_charset global is not correct,
785 * if message is composed in new window.
786 */
787 set_my_charset();
788
789 $send_to = $send_to_cc = $send_to_bcc = $subject = $identity = '';
790 $mailprio = 3;
791
792 if ($passed_id) {
793 $imapConnection = sqimap_login($username, false, $imapServerAddress,
794 $imapPort, 0, $imapSslOptions);
795
796 sqimap_mailbox_select($imapConnection, $mailbox);
797 $message = sqimap_get_message($imapConnection, $passed_id, $mailbox);
798
799 $body = '';
800 if ($passed_ent_id) {
801 /* redefine the messsage in case of message/rfc822 */
802 $message = $message->getEntity($passed_ent_id);
803 /* message is an entity which contains the envelope and type0=message
804 * and type1=rfc822. The actual entities are childs from
805 * $message->entities[0]. That's where the encoding and is located
806 */
807
808 $entities = $message->entities[0]->findDisplayEntity
809 (array(), $alt_order = array('text/plain'));
810 if (!count($entities)) {
811 $entities = $message->entities[0]->findDisplayEntity
812 (array(), $alt_order = array('text/plain','text/html'));
813 }
814 $orig_header = $message->rfc822_header; /* here is the envelope located */
815 /* redefine the message for picking up the attachments */
816 $message = $message->entities[0];
817
818 } else {
819 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain'));
820 if (!count($entities)) {
821 $entities = $message->findDisplayEntity (array(), $alt_order = array('text/plain','text/html'));
822 }
823 $orig_header = $message->rfc822_header;
824 }
825
826 $type0 = $message->type0;
827 $type1 = $message->type1;
828 foreach ($entities as $ent) {
829 $msg = $message->getEntity($ent);
830 $type0 = $msg->type0;
831 $type1 = $msg->type1;
832 $unencoded_bodypart = mime_fetch_body($imapConnection, $passed_id, $ent);
833 $body_part_entity = $message->getEntity($ent);
834 $bodypart = decodeBody($unencoded_bodypart,
835 $body_part_entity->header->encoding);
836 if ($type1 == 'html') {
837 $bodypart = str_replace("\n", ' ', $bodypart);
838 $bodypart = preg_replace(array('/<\/?p>/i','/<div><\/div>/i','/<br\s*(\/)*>/i','/<\/?div>/i'), "\n", $bodypart);
839 $bodypart = str_replace(array('&nbsp;','&gt;','&lt;'),array(' ','>','<'),$bodypart);
840 $bodypart = strip_tags($bodypart);
841 }
842 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
843 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode')) {
844 if (mb_detect_encoding($bodypart) != 'ASCII') {
845 $bodypart = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_decode', $bodypart);
846 }
847 }
848
849 // charset encoding in compose form stuff
850 if (isset($body_part_entity->header->parameters['charset'])) {
851 $actual = $body_part_entity->header->parameters['charset'];
852 } else {
853 $actual = 'us-ascii';
854 }
855
856 if ( $actual && is_conversion_safe($actual) && $actual != $default_charset){
857 $bodypart = charset_convert($actual,$bodypart,$default_charset,false);
858 }
859 // end of charset encoding in compose
860
861 $body .= $bodypart;
862 }
863 if ($default_use_priority) {
864 $mailprio = substr($orig_header->priority,0,1);
865 if (!$mailprio) {
866 $mailprio = 3;
867 }
868 } else {
869 $mailprio = '';
870 }
871
872 $from_o = $orig_header->from;
873 if (is_array($from_o)) {
874 if (isset($from_o[0])) {
875 $from_o = $from_o[0];
876 }
877 }
878 if (is_object($from_o)) {
879 $orig_from = $from_o->getAddress();
880 } else {
881 $orig_from = '';
882 }
883
884 $identities = array();
885 if (count($idents) > 1) {
886 foreach($idents as $nr=>$data) {
887 $enc_from_name = '"'.$data['full_name'].'" <'. $data['email_address'].'>';
888 $identities[] = $enc_from_name;
889 }
890
891 $identity_match = $orig_header->findAddress($identities);
892 if ($identity_match !== FALSE) {
893 $identity = $identity_match;
894 }
895 }
896
897 switch ($action) {
898 case ('draft'):
899 $use_signature = FALSE;
900 $composeMessage->rfc822_header = $orig_header;
901 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
902 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
903 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
904 $send_from = $orig_header->getAddr_s('from');
905 $send_from_parts = new AddressStructure();
906 $send_from_parts = $orig_header->parseAddress($send_from);
907 $send_from_add = $send_from_parts->mailbox . '@' . $send_from_parts->host;
908 $identity = find_identity(array($send_from_add));
909 $subject = decodeHeader($orig_header->subject,false,false,true);
910
911 // Remember the receipt settings
912 $request_mdn = $mdn_user_support && !empty($orig_header->dnt) ? '1' : '0';
913 $request_dr = $mdn_user_support && !empty($orig_header->drnt) ? '1' : '0';
914
915 /* remember the references and in-reply-to headers in case of an reply */
916 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination (drafts folder?); is this possible?
917 $composeMessage->rfc822_header->more_headers['References'] = $orig_header->references;
918 $composeMessage->rfc822_header->more_headers['In-Reply-To'] = $orig_header->in_reply_to;
919 // rewrap the body to clean up quotations and line lengths
920 sqBodyWrap($body, $editor_size);
921 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
922 break;
923 case ('edit_as_new'):
924 $send_to = decodeHeader($orig_header->getAddr_s('to'),false,false,true);
925 $send_to_cc = decodeHeader($orig_header->getAddr_s('cc'),false,false,true);
926 $send_to_bcc = decodeHeader($orig_header->getAddr_s('bcc'),false,false,true);
927 $subject = decodeHeader($orig_header->subject,false,false,true);
928 $mailprio = $orig_header->priority;
929 $orig_from = '';
930 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
931 // rewrap the body to clean up quotations and line lengths
932 sqBodyWrap($body, $editor_size);
933 break;
934 case ('forward'):
935 $send_to = '';
936 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
937 $body = getforwardHeader($orig_header) . $body;
938 // the logic for calling sqUnWordWrap here would be to allow the browser to wrap the lines
939 // forwarded message text should be as undisturbed as possible, so commenting out this call
940 // sqUnWordWrap($body);
941 $composeMessage = getAttachments($message, $composeMessage, $passed_id, $entities, $imapConnection);
942
943 //add a blank line after the forward headers
944 $body = "\n" . $body;
945 break;
946 case ('forward_as_attachment'):
947 $subject = getforwardSubject(decodeHeader($orig_header->subject,false,false,true));
948 $composeMessage = getMessage_RFC822_Attachment($message, $composeMessage, $passed_id, $passed_ent_id, $imapConnection);
949 $subject = decodeHeader($orig_header->subject,false,false,true);
950 $subject = str_replace('"', "'", $subject);
951 $subject = trim($subject);
952 if (substr(strtolower($subject), 0, 4) != 'fwd:') {
953 $subject = 'Fwd: ' . $subject;
954 }
955 $body = '';
956 break;
957 case ('reply_all'):
958 if(isset($orig_header->mail_followup_to) && $orig_header->mail_followup_to) {
959 $send_to = $orig_header->getAddr_s('mail_followup_to');
960 } else {
961 $send_to_cc = replyAllString($orig_header);
962 $send_to_cc = decodeHeader($send_to_cc,false,false,true);
963 $send_to_cc = str_replace('""', '"', $send_to_cc);
964 }
965 case ('reply'):
966 // skip this if send_to was already set right above here
967 if(!$send_to) {
968 $send_to = $orig_header->reply_to;
969 if (is_array($send_to) && count($send_to)) {
970 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
971 } else if (is_object($send_to)) { /* unneccesarry, just for failsafe purpose */
972 $send_to = $orig_header->getAddr_s('reply_to', ',', FALSE, TRUE);
973 } else {
974 $send_to = $orig_header->getAddr_s('from', ',', FALSE, TRUE);
975 }
976 }
977 $send_to = decodeHeader($send_to,false,false,true);
978 $send_to = str_replace('""', '"', $send_to);
979
980
981 // If user doesn't want replies to her own messages
982 // going back to herself (instead send again to the
983 // original recipient of the message being replied to),
984 // then iterate through identities, checking if the TO
985 // field is one of them (if the reply is to ourselves)
986 //
987 // Note we don't bother if the original message doesn't
988 // have anything in the TO field itself (because that's
989 // what we use if we change the recipient to be that of
990 // the previous message)
991 //
992 if ($do_not_reply_to_self && !empty($orig_header->to)) {
993
994 $orig_to = '';
995
996 foreach($idents as $id) {
997
998 if (!empty($id['email_address'])
999 && strpos($send_to, $id['email_address']) !== FALSE) {
1000
1001 // if this is a reply-all, the original recipient
1002 // is already in the CC field, so we can just blank
1003 // the recipient (TO field) (as long as the CC field
1004 // isn't empty that is)... but then move the CC into
1005 // the TO, so TO isn't empty
1006 //
1007 if ($action == 'reply_all' && !empty($send_to_cc)) {
1008 $orig_to = $send_to_cc;
1009 $send_to_cc = '';
1010 break;
1011 }
1012
1013 $orig_to = $orig_header->to;
1014 if (is_array($orig_to) && count($orig_to)) {
1015 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1016 } else if (is_object($orig_to)) { /* unneccesarry, just for failsafe purpose */
1017 $orig_to = $orig_header->getAddr_s('to', ',', FALSE, TRUE);
1018 } else {
1019 $orig_to = '';
1020 }
1021 $orig_to = decodeHeader($orig_to,false,false,true);
1022 $orig_to = str_replace('""', '"', $orig_to);
1023
1024 break;
1025 }
1026 }
1027
1028 // if the reply was addressed back to ourselves,
1029 // we will send it to the TO of the previous message
1030 //
1031 if (!empty($orig_to)) {
1032
1033 $send_to = $orig_to;
1034
1035 // in this case, we also want to reset the FROM
1036 // identity as well (it should match the original
1037 // *FROM* header instead of TO or CC)
1038 //
1039 if (count($idents) > 1) {
1040 $identity = '';
1041 foreach($idents as $i => $id) {
1042 if (!empty($id['email_address'])
1043 && strpos($orig_from, $id['email_address']) !== FALSE) {
1044 $identity = $i;
1045 break;
1046 }
1047 }
1048 }
1049
1050 }
1051
1052 }
1053
1054
1055 $subject = decodeHeader($orig_header->subject,false,false,true);
1056 $subject = str_replace('"', "'", $subject);
1057 $subject = trim($subject);
1058 if (substr(strtolower($subject), 0, 3) != 're:') {
1059 $subject = 'Re: ' . $subject;
1060 }
1061 /* this corrects some wrapping/quoting problems on replies */
1062 $rewrap_body = explode("\n", $body);
1063 $from = (is_array($orig_header->from) && !empty($orig_header->from)) ? $orig_header->from[0] : $orig_header->from;
1064 $body = '';
1065 $strip_sigs = getPref($data_dir, $username, 'strip_sigs');
1066 foreach ($rewrap_body as $line) {
1067 if ($strip_sigs && rtrim($line, "\r\n") == '-- ') {
1068 break;
1069 }
1070 if (preg_match("/^(>+)/", $line, $matches)) {
1071 $gt = $matches[1];
1072 $body .= $body_quote . str_replace("\n", "\n$body_quote$gt ", rtrim($line)) ."\n";
1073 } else {
1074 $body .= $body_quote . (!empty($body_quote) ? ' ' : '') . str_replace("\n", "\n$body_quote" . (!empty($body_quote) ? ' ' : ''), rtrim($line)) . "\n";
1075 }
1076 }
1077
1078 //rewrap the body to clean up quotations and line lengths
1079 $body = sqBodyWrap ($body, $editor_size);
1080
1081 $body = getReplyCitation($from , $orig_header->date) . $body;
1082 $composeMessage->reply_rfc822_header = $orig_header;
1083
1084 break;
1085 default:
1086 break;
1087 }
1088 //FIXME: we used to register $compose_messages in the session here, but not any more - so do we still need the session_write_close() and sqimap_logout() here? We probably need the IMAP logout, but what about the session closure?
1089 session_write_close();
1090 sqimap_logout($imapConnection);
1091 }
1092 $ret = array( 'send_to' => $send_to,
1093 'send_to_cc' => $send_to_cc,
1094 'send_to_bcc' => $send_to_bcc,
1095 'subject' => $subject,
1096 'mailprio' => $mailprio,
1097 'body' => $body,
1098 'identity' => $identity );
1099
1100 return ($ret);
1101 } /* function newMail() */
1102
1103 /**
1104 * downloads attachments from original message, stores them in attachment directory and adds
1105 * them to composed message.
1106 * @param object $message
1107 * @param object $composeMessage
1108 * @param integer $passed_id
1109 * @param mixed $entities
1110 * @param mixed $imapConnection
1111 * @return object
1112 */
1113 function getAttachments($message, &$composeMessage, $passed_id, $entities, $imapConnection) {
1114 global $squirrelmail_language, $languages, $username, $attachment_dir;
1115
1116 if (!count($message->entities) ||
1117 ($message->type0 == 'message' && $message->type1 == 'rfc822')) {
1118 if ( !in_array($message->entity_id, $entities) && $message->entity_id) {
1119 switch ($message->type0) {
1120 case 'message':
1121 if ($message->type1 == 'rfc822') {
1122 $filename = $message->rfc822_header->subject;
1123 if ($filename == "") {
1124 $filename = "untitled-".$message->entity_id;
1125 }
1126 $filename .= '.eml';
1127 } else {
1128 $filename = $message->getFilename();
1129 }
1130 break;
1131 default:
1132 if (!$message->mime_header) { /* temporary hack */
1133 $message->mime_header = $message->header;
1134 }
1135 $filename = $message->getFilename();
1136 break;
1137 }
1138 //FIXME: added three args to the following, so as to set the last one to TRUE, to mimick a fix in 1.4.21 (#2994865), but didn't test this (note that in 1.4.21, the 2nd and 3rd args are FALSE, but here in this code, they weren't being specified (thus defaulting to TRUE), so I don't know if that means this code is outdated and should have been changed to FALSE, FALSE or if this code is completely different and the addition of the TRUE for arg #4 is wrong
1139 $filename = str_replace('&#32;', ' ', decodeHeader($filename, true, true, true));
1140 if (isset($languages[$squirrelmail_language]['XTRA_CODE']) &&
1141 function_exists($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode')) {
1142 $filename = call_user_func($languages[$squirrelmail_language]['XTRA_CODE'] . '_encode', $filename);
1143 }
1144
1145 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1146 $localfilename = sq_get_attach_tempfile();
1147 $message->att_local_name = $localfilename;
1148
1149 $composeMessage->initAttachment($message->type0.'/'.$message->type1,$filename,
1150 $localfilename);
1151
1152 /* Write Attachment to file */
1153 $fp = fopen ($hashed_attachment_dir . '/' . $localfilename, 'wb');
1154 mime_print_body_lines ($imapConnection, $passed_id, $message->entity_id, $message->header->encoding, $fp);
1155 fclose ($fp);
1156 }
1157 } else {
1158 for ($i=0, $entCount=count($message->entities); $i<$entCount;$i++) {
1159 $composeMessage=getAttachments($message->entities[$i], $composeMessage, $passed_id, $entities, $imapConnection);
1160 }
1161 }
1162 return $composeMessage;
1163 }
1164
1165 function getMessage_RFC822_Attachment($message, $composeMessage, $passed_id,
1166 $passed_ent_id='', $imapConnection) {
1167 if (!$passed_ent_id) {
1168 $body_a = sqimap_run_command($imapConnection,
1169 'FETCH '.$passed_id.' RFC822',
1170 TRUE, $response, $readmessage,
1171 TRUE);
1172 } else {
1173 $body_a = sqimap_run_command($imapConnection,
1174 'FETCH '.$passed_id.' BODY['.$passed_ent_id.']',
1175 TRUE, $response, $readmessage, TRUE);
1176 $message = $message->parent;
1177 }
1178 if ($response == 'OK') {
1179 $subject = encodeHeader($message->rfc822_header->subject);
1180 array_shift($body_a);
1181 array_pop($body_a);
1182 $body = implode('', $body_a) . "\r\n";
1183
1184 global $username, $attachment_dir;
1185 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1186 $localfilename = sq_get_attach_tempfile();
1187 $fp = fopen($hashed_attachment_dir . '/' . $localfilename, 'wb');
1188 fwrite ($fp, $body);
1189 fclose($fp);
1190 $composeMessage->initAttachment('message/rfc822',$subject.'.eml',
1191 $localfilename);
1192 }
1193 return $composeMessage;
1194 }
1195
1196 function showInputForm ($session, $values=false) {
1197 global $send_to, $send_to_cc, $send_to_bcc,
1198 $body, $startMessage, $action, $attachments,
1199 $use_signature, $signature, $prefix_sig, $session_expired,
1200 $editor_size, $editor_height, $subject, $newmail,
1201 $use_javascript_addr_book, $passed_id, $mailbox, $fwduid,
1202 $from_htmladdr_search, $location_of_buttons, $attachment_dir,
1203 $username, $data_dir, $identity, $idents, $delete_draft,
1204 $mailprio, $compose_new_win, $saved_draft, $mail_sent, $sig_first,
1205 $composeMessage, $composesession, $default_charset,
1206 $compose_onsubmit, $oTemplate, $oErrorHandler;
1207
1208 if (checkForJavascript()) {
1209 $onfocus = ' onfocus="alreadyFocused=true;"';
1210 $onfocus_array = array('onfocus' => 'alreadyFocused=true;');
1211 }
1212 else {
1213 $onfocus = '';
1214 $onfocus_array = array();
1215 }
1216
1217 if ($values) {
1218 $send_to = $values['send_to'];
1219 $send_to_cc = $values['send_to_cc'];
1220 $send_to_bcc = $values['send_to_bcc'];
1221 $subject = $values['subject'];
1222 $mailprio = $values['mailprio'];
1223 $body = $values['body'];
1224 $identity = (int) $values['identity'];
1225 } else {
1226 $send_to = decodeHeader($send_to, true, false);
1227 $send_to_cc = decodeHeader($send_to_cc, true, false);
1228 $send_to_bcc = decodeHeader($send_to_bcc, true, false);
1229 }
1230
1231 if ($use_javascript_addr_book) {
1232 //FIXME: NO HTML IN CORE!
1233 echo "\n". '<script type="text/javascript">'."\n<!--\n" .
1234 'function open_abook() { ' . "\n" .
1235 ' var nwin = window.open("addrbook_popup.php","abookpopup",' .
1236 '"width=670,height=300,resizable=yes,scrollbars=yes");' . "\n" .
1237 ' if((!nwin.opener) && (document.windows != null))' . "\n" .
1238 ' nwin.opener = document.windows;' . "\n" .
1239 "}\n" .
1240 "// -->\n</script>\n\n";
1241 }
1242
1243 //FIXME: NO HTML IN CORE!
1244 echo "\n" . '<form name="compose" action="compose.php" method="post" ' .
1245 'enctype="multipart/form-data"';
1246
1247 $compose_onsubmit = array();
1248 global $null;
1249 do_hook('compose_form', $null);
1250
1251 // Plugins that use compose_form hook can add an array entry
1252 // to the globally scoped $compose_onsubmit; we add them up
1253 // here and format the form tag's full onsubmit handler.
1254 // Each plugin should use "return false" if they need to
1255 // stop form submission but otherwise should NOT use "return
1256 // true" to give other plugins the chance to do what they need
1257 // to do; SquirrelMail itself will add the final "return true".
1258 // Onsubmit text is enclosed inside of double quotes, so plugins
1259 // need to quote accordingly.
1260 //
1261 // Also, plugin authors should try to retain compatibility with
1262 // the Compose Extras plugin by resetting its compose submit
1263 // counter when preventing form submit. Use this code:
1264 // if (your-code-here) { submit_count = 0; return false; }
1265 //
1266 if (checkForJavascript()) {
1267 if (empty($compose_onsubmit))
1268 $compose_onsubmit = array();
1269 else if (!is_array($compose_onsubmit))
1270 $compose_onsubmit = array($compose_onsubmit);
1271
1272 $onsubmit_text = '';
1273 foreach ($compose_onsubmit as $text) {
1274 $text = trim($text);
1275 if (!empty($text)) {
1276 if (substr($text, -1) != ';' && substr($text, -1) != '}')
1277 $text .= '; ';
1278 $onsubmit_text .= $text;
1279 }
1280 }
1281
1282 if (!empty($onsubmit_text))
1283 //FIXME: DON'T ECHO HTML FROM CORE!
1284 echo ' onsubmit="' . $onsubmit_text . ' return true;"';
1285 }
1286
1287
1288 //FIXME: NO HTML IN CORE!
1289 echo ">\n";
1290
1291 //FIXME: DON'T ECHO HTML FROM CORE!
1292 echo addHidden('smtoken', sm_generate_security_token());
1293
1294 //FIXME: DON'T ECHO HTML FROM CORE!
1295 echo addHidden('startMessage', $startMessage);
1296
1297 if ($action == 'draft') {
1298 //FIXME: DON'T ECHO HTML FROM CORE!
1299 echo addHidden('delete_draft', $passed_id);
1300 }
1301 if (isset($delete_draft)) {
1302 //FIXME: DON'T ECHO HTML FROM CORE!
1303 echo addHidden('delete_draft', $delete_draft);
1304 }
1305 if (isset($session)) {
1306 //FIXME: DON'T ECHO HTML FROM CORE!
1307 echo addHidden('session', $session);
1308 }
1309
1310 if (isset($passed_id)) {
1311 //FIXME: DON'T ECHO HTML FROM CORE!
1312 echo addHidden('passed_id', $passed_id);
1313 }
1314
1315 if (isset($fwduid)) {
1316 //FIXME: DON'T ECHO HTML FROM CORE!
1317 echo addHidden('fwduid', $fwduid);
1318 }
1319
1320 if ($saved_draft == 'yes') {
1321 $oTemplate->assign('note', _("Your draft has been saved."));
1322 $oTemplate->display('note.tpl');
1323 }
1324 if ($mail_sent == 'yes') {
1325 $oTemplate->assign('note', _("Your mail has been sent."));
1326 $oTemplate->display('note.tpl');
1327 }
1328 if ($compose_new_win == '1') {
1329 $oTemplate->display('compose_newwin_close.tpl');
1330 }
1331
1332 if ($location_of_buttons == 'top') {
1333 //FIXME: DON'T ECHO HTML FROM CORE!
1334 showComposeButtonRow();
1335 }
1336
1337 $identities = array();
1338 if (count($idents) > 1) {
1339 reset($idents);
1340 foreach($idents as $id => $data) {
1341 $identities[$id] = $data['full_name'].' &lt;'.$data['email_address'].'&gt;';
1342 }
1343 }
1344
1345 $oTemplate->assign('identities', $identities);
1346 $oTemplate->assign('identity_def', $identity);
1347 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1348
1349 $oTemplate->assign('to', sm_encode_html_special_chars($send_to));
1350 $oTemplate->assign('cc', sm_encode_html_special_chars($send_to_cc));
1351 $oTemplate->assign('bcc', sm_encode_html_special_chars($send_to_bcc));
1352 $oTemplate->assign('subject', sm_encode_html_special_chars($subject));
1353
1354 // access keys...
1355 //
1356 global $accesskey_compose_to, $accesskey_compose_cc,
1357 $accesskey_compose_identity, $accesskey_compose_bcc,
1358 $accesskey_compose_subject;
1359 $oTemplate->assign('accesskey_compose_identity', $accesskey_compose_identity);
1360 $oTemplate->assign('accesskey_compose_to', $accesskey_compose_to);
1361 $oTemplate->assign('accesskey_compose_cc', $accesskey_compose_cc);
1362 $oTemplate->assign('accesskey_compose_bcc', $accesskey_compose_bcc);
1363 $oTemplate->assign('accesskey_compose_subject', $accesskey_compose_subject);
1364
1365 $oTemplate->display('compose_header.tpl');
1366
1367 if ($location_of_buttons == 'between') {
1368 //FIXME: DON'T ECHO HTML FROM CORE!
1369 showComposeButtonRow();
1370 }
1371
1372 $body_str = '';
1373 if ($use_signature == true && $newmail == true && !isset($from_htmladdr_search)) {
1374 $signature = $idents[$identity]['signature'];
1375
1376 if ($sig_first == '1') {
1377 /*
1378 * FIXME: test is specific to ja_JP translation implementation.
1379 * This test might apply incorrect conversion to other translations, but
1380 * use of 7bit iso-2022-jp charset in other translations might have other
1381 * issues too.
1382 */
1383 if ($default_charset == 'iso-2022-jp') {
1384 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1385 } else {
1386 $body_str = "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1387 }
1388 $body_str .= "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1389 } else {
1390 $body_str = "\n\n".sm_encode_html_special_chars(decodeHeader($body,false,false));
1391 // FIXME: test is specific to ja_JP translation implementation. See above comments.
1392 if ($default_charset == 'iso-2022-jp') {
1393 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').mb_convert_encoding($signature, 'EUC-JP');
1394 } else {
1395 $body_str .= "\n\n".($prefix_sig==true? "-- \n":'').decodeHeader($signature,false,false);
1396 }
1397 }
1398 } else {
1399 $body_str = sm_encode_html_special_chars(decodeHeader($body,false,false));
1400 }
1401
1402 $oTemplate->assign('editor_width', (int)$editor_size);
1403 $oTemplate->assign('editor_height', (int)$editor_height);
1404 $oTemplate->assign('input_onfocus', 'onfocus="'.join(' ', $onfocus_array).'"');
1405 $oTemplate->assign('body', $body_str);
1406 $oTemplate->assign('show_bottom_send', $location_of_buttons!='bottom');
1407
1408 // access keys...
1409 //
1410 global $accesskey_compose_body, $accesskey_compose_send;
1411 $oTemplate->assign('accesskey_compose_body', $accesskey_compose_body);
1412 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1413
1414 $oTemplate->display ('compose_body.tpl');
1415
1416 if ($location_of_buttons == 'bottom') {
1417 //FIXME: DON'T ECHO HTML FROM CORE!
1418 showComposeButtonRow();
1419 }
1420
1421 // composeMessage can be empty when coming from a restored session
1422 if (is_object($composeMessage) && $composeMessage->entities)
1423 $attach_array = $composeMessage->entities;
1424 if ($session_expired && !empty($attachments) && is_array($attachments))
1425 $attach_array = $attachments;
1426
1427 /* This code is for attachments */
1428 if ((bool) ini_get('file_uploads')) {
1429
1430 /* Calculate the max size for an uploaded file.
1431 * This is advisory for the user because we can't actually prevent
1432 * people to upload too large files. */
1433 $sizes = array();
1434 /* php.ini vars which influence the max for uploads */
1435 $configvars = array('post_max_size', 'memory_limit', 'upload_max_filesize');
1436 foreach($configvars as $var) {
1437 /* skip 0 or empty values, and -1 which means 'unlimited' */
1438 if( $size = getByteSize(ini_get($var)) ) {
1439 if ( $size != '-1' ) {
1440 $sizes[] = $size;
1441 }
1442 }
1443 }
1444
1445 $attach = array();
1446 global $username, $attachment_dir;
1447 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1448 if (!empty($attach_array)) {
1449 foreach ($attach_array as $key => $attachment) {
1450 $attached_file = $attachment->att_local_name;
1451 if ($attachment->att_local_name || $attachment->body_part) {
1452 $attached_filename = decodeHeader($attachment->mime_header->getParameter('name'));
1453 $type = $attachment->mime_header->type0.'/'.
1454 $attachment->mime_header->type1;
1455
1456 $a = array();
1457 $a['Key'] = $key;
1458 $a['FileName'] = $attached_filename;
1459 $a['ContentType'] = $type;
1460 $a['Size'] = filesize($hashed_attachment_dir . '/' . $attached_file);
1461 $attach[$key] = $a;
1462 }
1463 }
1464 }
1465
1466 $max = min($sizes);
1467 $oTemplate->assign('max_file_size', empty($max) ? -1 : $max);
1468 $oTemplate->assign('attachments', $attach);
1469
1470 // access keys...
1471 //
1472 global $accesskey_compose_attach_browse, $accesskey_compose_attach,
1473 $accesskey_compose_delete_attach;
1474 $oTemplate->assign('accesskey_compose_attach_browse', $accesskey_compose_attach_browse);
1475 $oTemplate->assign('accesskey_compose_attach', $accesskey_compose_attach);
1476 $oTemplate->assign('accesskey_compose_delete_attach', $accesskey_compose_delete_attach);
1477
1478 $oTemplate->display('compose_attachments.tpl');
1479 } // End of file_uploads if-block
1480 /* End of attachment code */
1481
1482 $oTemplate->assign('username', $username);
1483 $oTemplate->assign('smaction', $action);
1484 $oTemplate->assign('mailbox', $mailbox);
1485 sqgetGlobalVar('QUERY_STRING', $queryString, SQ_SERVER);
1486 $oTemplate->assign('querystring', $queryString);
1487 $oTemplate->assign('composesession', $composesession);
1488 $oTemplate->assign('send_button_count', unique_widget_name('send', TRUE));
1489 if (!empty($attach_array))
1490 $oTemplate->assign('attachments', urlencode(serialize($attach_array)));
1491
1492 $aUserNotices = array();
1493
1494 // File uploads are off, so we didn't show that part of the form.
1495 // To avoid bogus bug reports, tell the user why.
1496 if (!(bool) ini_get('file_uploads')) {
1497 $aUserNotices[] = _("Because PHP file uploads are turned off, you can not attach files to this message. Please see your system administrator for details.");
1498 }
1499
1500 $oTemplate->assign('user_notices', $aUserNotices);
1501
1502 $oTemplate->display('compose_form_close.tpl');
1503
1504 if ($compose_new_win=='1') {
1505 $oTemplate->display('compose_newwin_close.tpl');
1506 }
1507
1508 $oErrorHandler->setDelayedErrors(false);
1509 $oTemplate->display('footer.tpl');
1510 }
1511
1512
1513 function showComposeButtonRow() {
1514 global $use_javascript_addr_book, $save_as_draft,
1515 $default_use_priority, $mailprio, $default_use_mdn,
1516 $request_mdn, $request_dr,
1517 $data_dir, $username;
1518
1519 global $oTemplate, $buffer_hook;
1520
1521 if ($default_use_priority) {
1522 $priorities = array('1'=>_("High"), '3'=>_("Normal"), '5'=>_("Low"));
1523 $priority = isset($mailprio) ? $mailprio : 3;
1524 } else {
1525 $priorities = array();
1526 $priority = NULL;
1527 }
1528
1529 $mdn_user_support=getPref($data_dir, $username, 'mdn_user_support',$default_use_mdn);
1530
1531 $address_book_button_attribs = array();
1532 global $accesskey_compose_addresses;
1533 if ($accesskey_compose_addresses != 'NONE')
1534 $address_book_button_attribs['accesskey'] = $accesskey_compose_addresses;
1535 if ($use_javascript_addr_book && checkForJavascript()) {
1536 $addr_book = addButton(_("Addresses"),
1537 null,
1538 array_merge($address_book_button_attribs, array('onclick' => 'javascript:open_abook();')));
1539 } else {
1540 $addr_book = addSubmit(_("Addresses"), 'html_addr_search', $address_book_button_attribs);
1541 }
1542
1543 $oTemplate->assign('allow_priority', $default_use_priority==1);
1544 $oTemplate->assign('priority_list', $priorities);
1545 $oTemplate->assign('current_priority', $priority);
1546
1547 $oTemplate->assign('notifications_enabled', $mdn_user_support==1);
1548 $oTemplate->assign('read_receipt', $request_mdn=='1');
1549 $oTemplate->assign('delivery_receipt', $request_dr=='1');
1550
1551 $oTemplate->assign('drafts_enabled', $save_as_draft);
1552 $oTemplate->assign('address_book_button', $addr_book);
1553
1554 // access keys...
1555 //
1556 global $accesskey_compose_priority, $accesskey_compose_on_read,
1557 $accesskey_compose_on_delivery, $accesskey_compose_signature,
1558 $accesskey_compose_save_draft, $accesskey_compose_send;
1559 $oTemplate->assign('accesskey_compose_priority', $accesskey_compose_priority);
1560 $oTemplate->assign('accesskey_compose_on_read', $accesskey_compose_on_read);
1561 $oTemplate->assign('accesskey_compose_on_delivery', $accesskey_compose_on_delivery);
1562 $oTemplate->assign('accesskey_compose_signature', $accesskey_compose_signature);
1563 $oTemplate->assign('accesskey_compose_save_draft', $accesskey_compose_save_draft);
1564 $oTemplate->assign('accesskey_compose_send', $accesskey_compose_send);
1565
1566 $oTemplate->display('compose_buttons.tpl');
1567 }
1568
1569 function checkInput ($show) {
1570 /*
1571 * I implemented the $show variable because the error messages
1572 * were getting sent before the page header. So, I check once
1573 * using $show=false, and then when i'm ready to display the error
1574 * message, show=true
1575 */
1576 global $send_to, $send_to_cc, $send_to_bcc;
1577
1578 $send_to = trim($send_to);
1579 $send_to_cc = trim($send_to_cc);
1580 $send_to_bcc = trim($send_to_bcc);
1581 if (empty($send_to) && empty($send_to_cc) && empty($send_to_bcc)) {
1582 if ($show) {
1583 plain_error_message(_("You have not filled in the \"To:\" field."));
1584 }
1585 return false;
1586 }
1587 return true;
1588 } /* function checkInput() */
1589
1590
1591 /* True if FAILURE */
1592 function saveAttachedFiles($session) {
1593 global $composeMessage, $username, $attachment_dir;
1594
1595 /* get out of here if no file was attached at all */
1596 if (! is_uploaded_file($_FILES['attachfile']['tmp_name']) ) {
1597 return true;
1598 }
1599
1600 $hashed_attachment_dir = getHashedDir($username, $attachment_dir);
1601 $localfilename = sq_get_attach_tempfile();
1602 $fullpath = $hashed_attachment_dir . '/' . $localfilename;
1603
1604 // m_u_f works better with restricted PHP installs (safe_mode, open_basedir),
1605 // if that doesn't work, try a simple rename.
1606 if (!sq_call_function_suppress_errors('move_uploaded_file', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1607 if (!sq_call_function_suppress_errors('rename', array($_FILES['attachfile']['tmp_name'], $fullpath))) {
1608 return true;
1609 }
1610 }
1611 $type = strtolower($_FILES['attachfile']['type']);
1612 $name = $_FILES['attachfile']['name'];
1613 $composeMessage->initAttachment($type, $name, $localfilename);
1614 }
1615
1616 /**
1617 * Parse strings such as "8M" and "2k" into their corresponding size in bytes
1618 *
1619 * NOTE: This function only recognizes the suffixes "K", "M" and "G"
1620 * and will probably break very easily if the given size is in
1621 * some completely different format.
1622 *
1623 * @param string $ini_size The input string to be converted
1624 *
1625 * @return mixed Boolean FALSE if something went wrong (the value passed in
1626 * was empty?, the suffix was not recognized?), otherwise, the
1627 * converted size in bytes (just the number (as an integer),
1628 * no unit identifier included)
1629 *
1630 */
1631 function getByteSize($ini_size) {
1632
1633 if(!$ini_size) {
1634 return FALSE;
1635 }
1636
1637 $ini_size = trim($ini_size);
1638
1639 // if there's some kind of letter at the end of the string we need to multiply.
1640 if(!is_numeric(substr($ini_size, -1))) {
1641
1642 switch(strtoupper(substr($ini_size, -1))) {
1643 case 'G':
1644 $bytesize = 1073741824;
1645 break;
1646 case 'M':
1647 $bytesize = 1048576;
1648 break;
1649 case 'K':
1650 $bytesize = 1024;
1651 break;
1652 default:
1653 return FALSE;
1654 }
1655
1656 return ($bytesize * (int)substr($ini_size, 0, -1));
1657 }
1658
1659 return $ini_size;
1660 }
1661
1662
1663 /**
1664 * temporary function to make use of the deliver class.
1665 * In the future the responsible backend should be automaticly loaded
1666 * and conf.pl should show a list of available backends.
1667 * The message also should be constructed by the message class.
1668 *
1669 * @param object $composeMessage The message being sent. Please note
1670 * that it is passed by reference and
1671 * will be returned modified, with additional
1672 * headers, such as Message-ID, Date, In-Reply-To,
1673 * References, and so forth.
1674 *
1675 * @return boolean FALSE if delivery failed, or some non-FALSE value
1676 * upon success.
1677 *
1678 */
1679 function deliverMessage(&$composeMessage, $draft=false) {
1680 global $send_to, $send_to_cc, $send_to_bcc, $mailprio, $subject, $body,
1681 $username, $identity, $idents, $data_dir,
1682 $request_mdn, $request_dr, $default_charset, $useSendmail,
1683 $domain, $action, $default_move_to_sent, $move_to_sent,
1684 $imapServerAddress, $imapPort, $imapSslOptions, $sent_folder, $key;
1685
1686 $rfc822_header = $composeMessage->rfc822_header;
1687
1688 $abook = addressbook_init(false, true);
1689 $rfc822_header->to = $rfc822_header->parseAddress($send_to,true, array(), '', $domain, array(&$abook,'lookup'));
1690 $rfc822_header->cc = $rfc822_header->parseAddress($send_to_cc,true,array(), '',$domain, array(&$abook,'lookup'));
1691 $rfc822_header->bcc = $rfc822_header->parseAddress($send_to_bcc,true, array(), '',$domain, array(&$abook,'lookup'));
1692 $rfc822_header->priority = $mailprio;
1693 $rfc822_header->subject = $subject;
1694
1695 $special_encoding='';
1696 if (strtolower($default_charset) == 'iso-2022-jp') {
1697 if (mb_detect_encoding($body) == 'ASCII') {
1698 $special_encoding = '8bit';
1699 } else {
1700 $body = mb_convert_encoding($body, 'JIS');
1701 $special_encoding = '7bit';
1702 }
1703 }
1704 $composeMessage->setBody($body);
1705
1706 $reply_to = '';
1707 $reply_to = $idents[$identity]['reply_to'];
1708 if ($reply_to && strpos($reply_to, '@') === FALSE)
1709 $reply_to .= '@' . $domain;
1710
1711 $from_addr = build_from_header($identity);
1712 $rfc822_header->from = $rfc822_header->parseAddress($from_addr,true);
1713 if ($reply_to) {
1714 $rfc822_header->reply_to = $rfc822_header->parseAddress($reply_to,true);
1715 }
1716 /* Receipt: On Read */
1717 if (isset($request_mdn) && $request_mdn) {
1718 $rfc822_header->dnt = $rfc822_header->parseAddress($from_addr,true);
1719 } elseif (isset($rfc822_header->dnt)) {
1720 unset($rfc822_header->dnt);
1721 }
1722
1723 /* Receipt: On Delivery */
1724 if (!empty($request_dr)) {
1725 //FIXME: it would be better to fiddle with headers inside of the message object or possibly when delivering the message to its destination; is this possible?
1726 $rfc822_header->more_headers['Return-Receipt-To'] = $from_addr;
1727 } elseif (isset($rfc822_header->more_headers['Return-Receipt-To'])) {
1728 unset($rfc822_header->more_headers['Return-Receipt-To']);
1729 }
1730
1731 /* multipart messages */
1732 if (count($composeMessage->entities)) {
1733 $message_body = new Message();
1734 $message_body->body_part = $composeMessage->body_part;
1735 $composeMessage->body_part = '';
1736 $mime_header = new MessageHeader;
1737 $mime_header->type0 = 'text';
1738 $mime_header->type1 = 'plain';
1739 if ($special_encoding) {
1740 $mime_header->encoding = $special_encoding;
1741 } else {
1742 $mime_header->encoding = '8bit';
1743 }
1744 if ($default_charset) {
1745 $mime_header->parameters['charset'] = $default_charset;
1746 }
1747 $message_body->mime_header = $mime_header;
1748 array_unshift($composeMessage->entities, $message_body);
1749 $content_type = new ContentType('multipart/mixed');
1750 } else {
1751 $content_type = new ContentType('text/plain');
1752 if ($special_encoding) {
1753 $rfc822_header->encoding = $special_encoding;
1754 } else {
1755 $rfc822_header->encoding = '8bit';
1756 }
1757 if ($default_charset) {
1758 $content_type->properties['charset']=$default_charset;
1759 }
1760 }
1761
1762 $rfc822_header->content_type = $content_type;
1763 $composeMessage->rfc822_header = $rfc822_header;
1764 if ($action == 'reply' || $action == 'reply_all') {
1765 global $passed_id, $passed_ent_id;
1766 $reply_id = $passed_id;
1767 $reply_ent_id = $passed_ent_id;
1768 } else {
1769 $reply_id = '';
1770 $reply_ent_id = '';
1771 }
1772
1773 /* Here you can modify the message structure just before we hand
1774 it over to deliver; plugin authors note that $composeMessage
1775 is sent and modified by reference since 1.5.2 */
1776 do_hook('compose_send', $composeMessage);
1777
1778 if (!$useSendmail && !$draft) {
1779 require_once(SM_PATH . 'class/deliver/Deliver_SMTP.class.php');
1780 $deliver = new Deliver_SMTP();
1781 global $smtpServerAddress, $smtpPort, $smtpSslOptions, $pop_before_smtp, $pop_before_smtp_host;
1782
1783 $authPop = (isset($pop_before_smtp) && $pop_before_smtp) ? true : false;
1784 if (empty($pop_before_smtp_host)) $pop_before_smtp_host = $smtpServerAddress;
1785 get_smtp_user($user, $pass);
1786 $stream = $deliver->initStream($composeMessage,$domain,0,
1787 $smtpServerAddress, $smtpPort, $user, $pass, $authPop, $pop_before_smtp_host, $smtpSslOptions);
1788 } elseif (!$draft) {
1789 require_once(SM_PATH . 'class/deliver/Deliver_SendMail.class.php');
1790 global $sendmail_path, $sendmail_args;
1791 // Check for outdated configuration
1792 if (!isset($sendmail_args)) {
1793 if ($sendmail_path=='/var/qmail/bin/qmail-inject') {
1794 $sendmail_args = '';
1795 } else {
1796 $sendmail_args = '-i -t';
1797 }
1798 }
1799 $deliver = new Deliver_SendMail(array('sendmail_args'=>$sendmail_args));
1800 $stream = $deliver->initStream($composeMessage,$sendmail_path);
1801 } elseif ($draft) {
1802 global $draft_folder;
1803 $imap_stream = sqimap_login($username, false, $imapServerAddress,
1804 $imapPort, 0, $imapSslOptions);
1805 if (sqimap_mailbox_exists ($imap_stream, $draft_folder)) {
1806 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1807 $imap_deliver = new Deliver_IMAP();
1808 $success = $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $draft_folder);
1809 sqimap_logout($imap_stream);
1810 unset ($imap_deliver);
1811 $composeMessage->purgeAttachments();
1812 return $success;
1813 } else {
1814 $msg = '<br />'.sprintf(_("Error: Draft folder %s does not exist."), sm_encode_html_special_chars($draft_folder));
1815 plain_error_message($msg);
1816 return false;
1817 }
1818 }
1819 $success = false;
1820 if ($stream) {
1821 $deliver->mail($composeMessage, $stream, $reply_id, $reply_ent_id);
1822 $success = $deliver->finalizeStream($stream);
1823 }
1824 if (!$success) {
1825 // $deliver->dlv_server_msg is not always server's reply
1826 $msg = _("Message not sent.")
1827 . "<br />\n"
1828 . (isset($deliver->dlv_msg) ? $deliver->dlv_msg : '');
1829 if (!empty($deliver->dlv_server_msg)) {
1830 // add 'server replied' part only when it is not empty.
1831 // Delivery error can be generated by delivery class itself
1832 $msg .= '<br />'
1833 . _("Server replied:") . ' '
1834 . (isset($deliver->dlv_ret_nr) ? $deliver->dlv_ret_nr . ' ' : '')
1835 . nl2br(sm_encode_html_special_chars($deliver->dlv_server_msg));
1836 }
1837 plain_error_message($msg);
1838 } else {
1839 unset ($deliver);
1840 $imap_stream = sqimap_login($username, false, $imapServerAddress, $imapPort, 0, $imapSslOptions);
1841
1842
1843 // mark as replied or forwarded if applicable
1844 //
1845 global $what, $iAccount, $startMessage, $passed_id, $fwduid, $mailbox;
1846
1847 if ($action=='reply' || $action=='reply_all' || $action=='forward' || $action=='forward_as_attachment') {
1848 require(SM_PATH . 'functions/mailbox_display.php');
1849 $aMailbox = sqm_api_mailbox_select($imap_stream, $iAccount, $mailbox,array('setindex' => $what, 'offset' => $startMessage),array());
1850 switch($action) {
1851 case 'reply':
1852 case 'reply_all':
1853 // check if we are allowed to set the \\Answered flag
1854 if (in_array('\\answered',$aMailbox['PERMANENTFLAGS'], true)) {
1855 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, array($passed_id), '\\Answered', true, false);
1856 if (isset($aUpdatedMsgs[$passed_id]['FLAGS'])) {
1857 /**
1858 * Only update the cached headers if the header is
1859 * cached.
1860 */
1861 if (isset($aMailbox['MSG_HEADERS'][$passed_id])) {
1862 $aMailbox['MSG_HEADERS'][$passed_id]['FLAGS'] = $aMsg['FLAGS'];
1863 }
1864 }
1865 }
1866 break;
1867 case 'forward':
1868 case 'forward_as_attachment':
1869 // check if we are allowed to set the $Forwarded flag (RFC 4550 paragraph 2.8)
1870 if (in_array('$forwarded',$aMailbox['PERMANENTFLAGS'], true) ||
1871 in_array('\\*',$aMailbox['PERMANENTFLAGS'])) {
1872
1873 // when forwarding as an attachment from the message
1874 // list, passed_id is not used, need to get UID(s)
1875 // from the query string
1876 //
1877 if (empty($passed_id) && !empty($fwduid))
1878 $ids = explode('_', $fwduid);
1879 else
1880 $ids = array($passed_id);
1881
1882 $aUpdatedMsgs = sqimap_toggle_flag($imap_stream, $ids, '$Forwarded', true, false);
1883
1884 foreach ($ids as $id) {
1885 if (isset($aUpdatedMsgs[$id]['FLAGS'])) {
1886 if (isset($aMailbox['MSG_HEADERS'][$id])) {
1887 $aMailbox['MSG_HEADERS'][$id]['FLAGS'] = $aMsg['FLAGS'];
1888 }
1889 }
1890 }
1891 }
1892 break;
1893 }
1894
1895 /**
1896 * Write mailbox with updated seen flag information back to cache.
1897 */
1898 if(isset($aUpdatedMsgs[$passed_id])) {
1899 $mailbox_cache[$iAccount.'_'.$aMailbox['NAME']] = $aMailbox;
1900 sqsession_register($mailbox_cache,'mailbox_cache');
1901 }
1902
1903 }
1904
1905
1906 // move to sent folder
1907 //
1908 $move_to_sent = getPref($data_dir,$username,'move_to_sent');
1909 if (isset($default_move_to_sent) && ($default_move_to_sent != 0)) {
1910 $svr_allow_sent = true;
1911 } else {
1912 $svr_allow_sent = false;
1913 }
1914
1915 if (isset($sent_folder) && (($sent_folder != '') || ($sent_folder != 'none'))
1916 && sqimap_mailbox_exists( $imap_stream, $sent_folder)) {
1917 $fld_sent = true;
1918 } else {
1919 $fld_sent = false;
1920 }
1921
1922 if ((isset($move_to_sent) && ($move_to_sent != 0)) || (!isset($move_to_sent))) {
1923 $lcl_allow_sent = true;
1924 } else {
1925 $lcl_allow_sent = false;
1926 }
1927
1928 if (($fld_sent && $svr_allow_sent && !$lcl_allow_sent) || ($fld_sent && $lcl_allow_sent)) {
1929 if ($action == 'reply' || $action == 'reply_all') {
1930 $save_reply_with_orig=getPref($data_dir,$username,'save_reply_with_orig');
1931 if ($save_reply_with_orig) {
1932 $sent_folder = $mailbox;
1933 }
1934 }
1935 require_once(SM_PATH . 'class/deliver/Deliver_IMAP.class.php');
1936 $imap_deliver = new Deliver_IMAP();
1937 $imap_deliver->mail($composeMessage, $imap_stream, $reply_id, $reply_ent_id, $imap_stream, $sent_folder);
1938 unset ($imap_deliver);
1939 }
1940
1941
1942 // final cleanup
1943 //
1944 $composeMessage->purgeAttachments();
1945 sqimap_logout($imap_stream);
1946
1947 }
1948 return $success;
1949 }