src/redirect.php

   1 <?php
   2
   3 /**
   4  * Prevents users from reposting their form data after a successful logout.
   5  *
   6  * Derived from webmail.php by Ralf Kraudelt <kraude@wiwi.uni-rostock.de>
   7  *
   8  * @copyright &copy; 1999-2007 The SquirrelMail Project Team
   9  * @license http://opensource.org/licenses/gpl-license.php GNU Public License
  10  * @version $Id$
  11  * @package squirrelmail
  12  */
  13
  14 /** This is the redirect page */
  15 define('PAGE_NAME', 'redirect');
  16
  17 /**
  18  * Include the SquirrelMail initialization file.
  19  */
  20 require('../include/init.php');
  21
  22 /* SquirrelMail required files. */
  23 require_once(SM_PATH . 'functions/imap_general.php');
  24 require_once(SM_PATH . 'functions/strings.php');
  25
  26 header('Pragma: no-cache');
  27 $location = get_location();
  28
  29 // session_set_cookie_params (0, $base_uri);
  30
  31 sqsession_unregister ('user_is_logged_in');
  32 sqsession_register ($base_uri, 'base_uri');
  33
  34 /* get globals we me need */
  35 sqGetGlobalVar('login_username', $login_username);
  36 sqGetGlobalVar('secretkey', $secretkey);
  37 if(!sqGetGlobalVar('squirrelmail_language', $squirrelmail_language) || $squirrelmail_language == '') {
  38     $squirrelmail_language = $squirrelmail_default_language;
  39 }
  40 if (!sqgetGlobalVar('mailtodata', $mailtodata)) {
  41     $mailtodata = '';
  42 }
  43
  44 /* end of get globals */
  45
  46 set_up_language($squirrelmail_language, true);
  47 /* Refresh the language cookie. */
  48 sqsetcookie('squirrelmail_language', $squirrelmail_language, time()+2592000,
  49           $base_uri);
  50
  51 if (!isset($login_username)) {
  52     logout_error( _("You must be logged in to access this page.") );
  53     exit;
  54 }
  55
  56 do_hook('login_before', $null);
  57
  58 $onetimepad = OneTimePadCreate(strlen($secretkey));
  59 $key = OneTimePadEncrypt($secretkey, $onetimepad);
  60
  61 /* remove redundant spaces */
  62 $login_username = trim($login_username);
  63
  64 /* Case-normalise username if so desired */
  65 if ($force_username_lowercase) {
  66     $login_username = strtolower($login_username);
  67 }
  68
  69 /* Verify that username and password are correct. */
  70 $imapConnection = sqimap_login($login_username, $key, $imapServerAddress, $imapPort, 0);
  71 /* From now on we are logged it. If the login failed then sqimap_login handles it */
  72
  73 /* regenerate the session id to avoid session hyijacking */
  74 //FIXME!  IMPORTANT!  SOMEONE PLEASE EXPLAIN THE SECURITY CONCERN HERE; THIS session_destroy() BORKS ANY SESSION INFORMATION ADDED ON THE LOGIN PAGE (SPECIFICALLY THE SESSION RESTORE DATA, BUT ALSO ANYTHING ADDED BY PLUGINS, ETC)... I HAVE DISABLED THIS (AND NOTE THAT THE LOGIN PAGE ALREADY EXECUTES A session_destroy() (see includes/init.php)), SO PLEASE, WHOEVER ADDED THIS, PLEASE ANALYSE THIS SITUATION AND COMMENT ON IF IT IS OK LIKE THIS!!  WHAT HIJACKING ISSUES ARE WE SUPPOSED TO BE PREVENTING HERE?
  75 //sqsession_destroy();
  76 //@sqsession_is_active();
  77 //session_regenerate_id();
  78 /**
  79 * The cookie part. session_start and session_regenerate_session normally set
  80 * their own cookie. SquirrelMail sets another cookie which overwites the
  81 * php cookies. The sqsetcookie function sets the cookie by using the header
  82 * function which gives us full control how the cookie is set. We do that
  83 * to add the HttpOnly cookie attribute which blocks javascript access on
  84 * IE6 SP1.
  85 */
  86 sqsetcookie(session_name(),session_id(),false,$base_uri);
  87 sqsetcookie('key', $key, false, $base_uri);
  88
  89 sqsession_register($onetimepad, 'onetimepad');
  90
  91 $sqimap_capabilities = sqimap_capability($imapConnection);
  92
  93 /* Server side sorting control */
  94 if (isset($sqimap_capabilities['SORT']) && $sqimap_capabilities['SORT'] == true &&
  95     isset($disable_server_sort) && $disable_server_sort) {
  96     unset($sqimap_capabilities['SORT']);
  97 }
  98
  99 /* Thread sort control */
 100 if (isset($sqimap_capabilities['THREAD']) && $sqimap_capabilities['THREAD'] == true &&
 101     isset($disable_thread_sort) && $disable_thread_sort) {
 102     unset($sqimap_capabilities['THREAD']);
 103 }
 104
 105 sqsession_register($sqimap_capabilities, 'sqimap_capabilities');
 106 $delimiter = sqimap_get_delimiter ($imapConnection);
 107
 108 if (isset($sqimap_capabilities['NAMESPACE']) && $sqimap_capabilities['NAMESPACE'] == true) {
 109     $namespace = sqimap_get_namespace($imapConnection);
 110     sqsession_register($namespace, 'sqimap_namespace');
 111 }
 112
 113 sqimap_logout($imapConnection);
 114 sqsession_register($delimiter, 'delimiter');
 115
 116 $username = $login_username;
 117 sqsession_register ($username, 'username');
 118 do_hook('login_verified', $null);
 119
 120 /* Set the login variables. */
 121 $user_is_logged_in = true;
 122 $just_logged_in = true;
 123
 124 /* And register with them with the session. */
 125 sqsession_register ($user_is_logged_in, 'user_is_logged_in');
 126 sqsession_register ($just_logged_in, 'just_logged_in');
 127
 128 /* parse the accepted content-types of the client */
 129 $attachment_common_types = array();
 130 $attachment_common_types_parsed = array();
 131 sqsession_register($attachment_common_types, 'attachment_common_types');
 132 sqsession_register($attachment_common_types_parsed, 'attachment_common_types_parsed');
 133
 134 if ( sqgetGlobalVar('HTTP_ACCEPT', $http_accept, SQ_SERVER) &&
 135     !isset($attachment_common_types_parsed[$http_accept]) ) {
 136     attachment_common_parse($http_accept);
 137 }
 138
 139 /* Complete autodetection of Javascript. */
 140 checkForJavascript();
 141
 142 /* Compute the URL to forward the user to. */
 143 $redirect_url = $location . '/webmail.php';
 144
 145 if ( sqgetGlobalVar('session_expired_location', $session_expired_location, SQ_SESSION) ) {
 146     sqsession_unregister('session_expired_location');
 147     if ( $session_expired_location == 'compose' ) {
 148         $compose_new_win = getPref($data_dir, $username, 'compose_new_win', 0);
 149         if ($compose_new_win) {
 150             // do not prefix $location here because $session_expired_location is set to the PAGE_NAME
 151             // of the last page
 152             $redirect_url = $location . '/' . $session_expired_location . '.php';
 153         } else {
 154             $redirect_url = $location . '/webmail.php?right_frame=' . urlencode($session_expired_location . '.php');
 155         }
 156     } else {
 157         $redirect_url = $location . '/webmail.php?right_frame=' . urlencode($session_expired_location . '.php');
 158     }
 159     unset($session_expired_location);
 160 }
 161
 162 if($mailtodata != '') {
 163     $redirect_url  = $location . '/webmail.php?right_frame=compose.php&mailtodata=';
 164     $redirect_url .= urlencode($mailtodata);
 165 }
 166
 167 /* Write session data and send them off to the appropriate page. */
 168 session_write_close();
 169 header("Location: $redirect_url");
 170 exit;
 171
 172 /* --------------------- end main ----------------------- */
 173
 174 function attachment_common_parse($str) {
 175     global $attachment_common_types, $attachment_common_types_parsed;
 176
 177     /*
 178      * Replace ", " with "," and explode on that as Mozilla 1.x seems to
 179      * use "," to seperate whilst IE, and earlier versions of Mozilla use
 180      * ", " to seperate
 181      */
 182
 183     $str = str_replace( ', ' , ',' , $str );
 184     $types = explode(',', $str);
 185
 186     foreach ($types as $val) {
 187         // Ignore the ";q=1.0" stuff
 188         if (strpos($val, ';') !== false) {
 189             $val = substr($val, 0, strpos($val, ';'));
 190         }
 191         if (! isset($attachment_common_types[$val])) {
 192             $attachment_common_types[$val] = true;
 193         }
 194     }
 195     sqsession_register($attachment_common_types, 'attachment_common_types');
 196
 197     /* mark as parsed */
 198     $attachment_common_types_parsed[$str] = true;
 199 }