<?php
- /**
- ** addressbook.php
- **
- ** Manage personal address book.
- **
- **/
-
- if(!isset($logged_in)) {
- echo _("You must login first.");
- exit;
- }
- if(!isset($username) || !isset($key)) {
- echo _("You need a valid user and password to access this page!");
- exit;
- }
-
- if (!isset($config_php))
- include("../config/config.php");
- if (!isset($array_php))
- include("../functions/array.php");
- if (!isset($strings_php))
- include("../functions/strings.php");
- if (!isset($imap_php))
- include("../functions/imap.php");
- if (!isset($page_header_php))
- include("../functions/page_header.php");
- if (!isset($display_messages_php))
- include("../functions/display_messages.php");
- if (!isset($addressbook_php))
- include("../functions/addressbook.php");
-
-
- // Sort array by the key "name"
- function alistcmp($a,$b) {
- return (strtolower($a["name"]) > strtolower($b["name"])) ? 1 : -1;
- }
-
- // Output form to add and modify address data
- function address_form($name, $submittext, $values = array()) {
- global $color;
- print "<TABLE BORDER=0 CELLPADDING=1 COLS=2 WIDTH=\"90%\" ALIGN=center>\n";
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Nickname"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[nickname]\" SIZE=15 VALUE=\"%s\">".
- " <SMALL>%s</SMALL></TD></TR>\n",
- $color[4], $name, htmlspecialchars($values["nickname"]),
- _("Must be unique"));
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("E-mail address"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[email]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, htmlspecialchars($values["email"]));
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("First name"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[firstname]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, htmlspecialchars($values["firstname"]));
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Last name"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[lastname]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, htmlspecialchars($values["lastname"]));
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Additional info"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[label]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, htmlspecialchars($values["label"]));
-
- printf("<TR><TD COLSPAN=2 BGCOLOR=\"%s\" ALIGN=center>\n".
- "<INPUT TYPE=submit NAME=\"%s[SUBMIT]\" VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, $submittext);
-
- print "</TABLE>\n";
- }
-
-
- // IMAP Login
- $imapConnection = sqimap_login ($username, $key,
- $imapServerAddress, $imapPort, 10);
- include("../src/load_prefs.php");
- sqimap_logout ($imapConnection);
-
-
- // Open addressbook, with error messages on but without LDAP (the
- // second "true"). Don't need LDAP here anyway
- $abook = addressbook_init(true, true);
- if($abook->localbackend == 0) {
- plain_error_message(_("No personal address book is defined. Contact administrator."), $color);
- exit();
- }
-
- print "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.0 Transitional//EN\">\n";
- print "<HTML><HEAD><TITLE>\n";
- printf("%s: %s\n", $org_title, _("Address Book"));
- print "</TITLE></HEAD>\n\n";
-
- printf('<BODY TEXT="%s" BGCOLOR="%s" LINK="%s" VLINK="%s" ALINK="%s">',
- $color[8], $color[4], $color[7], $color[7], $color[7]);
- displayPageHeader($color, "None");
-
-
- $defdata = array();
- $formerror = "";
- $abortform = false;
- $showaddrlist = true;
-
-
- // Handle user's actions
- if($REQUEST_METHOD == "POST") {
-
- // Check for user addition
- $add_data = $HTTP_POST_VARS["addaddr"];
- if(!empty($add_data["nickname"])) {
-
- $r = $abook->add($add_data, $abook->localbackend);
-
- // Handle error messages
- if(!$r) {
- // Remove backend name from error string
- $errstr = $abook->error;
- $errstr = ereg_replace("^\[.*\] *", "", $errstr);
-
- $formerror = $errstr;
- $showaddrlist = false;
- $defdata = $add_data;
- }
-
- }
-
- // Check for "delete address"
- if((!empty($HTTP_POST_VARS["deladdr"])) &&
- sizeof($HTTP_POST_VARS["sel"]) > 0) {
- plain_error_message("Delete address not implemented yet", $color);
- $abortform = true;
- }
-
- // Check for "edit address"
- if((!empty($HTTP_POST_VARS["editaddr"])) &&
- sizeof($HTTP_POST_VARS["sel"]) > 0) {
- plain_error_message("Edit address not implemented yet", $color);
- $abortform = true;
- }
-
- // Some times we end output before forms are printed
- if($abortform) {
- print "</BODY></HTML>\n";
- exit();
- }
-
- }
-
- // ===================================================================
- // The following is only executed on a GET request, or on a POST when
- // a user is added, or when "delete" or "modify" was successful.
- // ===================================================================
-
- // Display error messages
- if(!empty($formerror)) {
- print "<TABLE WIDTH=100% COLS=1 ALIGN=CENTER>\n";
- print "<TR><TD ALIGN=CENTER>\n<br><STRONG>";
- print "<FONT COLOR=\"$color[2]\">"._("ERROR").": $formerror</FONT>";
- print "<STRONG>\n</TD></TR>\n";
- print "</TABLE>\n";
- }
-
- // Display the address management part
- if($showaddrlist) {
- printf("<FORM ACTION=\"%s\" METHOD=\"POST\">\n", $PHP_SELF);
-
- print "<TABLE WIDTH=100% COLS=1 ALIGN=CENTER>\n";
- print "<TR><TD BGCOLOR=\"$color[0]\" ALIGN=CENTER>\n<STRONG>";
- print _("Personal address book");
- print "<STRONG>\n</TD></TR>\n";
- print "</TABLE>\n";
-
- // Get and sort address list
- $alist = $abook->list_addr();
- usort($alist,'alistcmp');
-
- print "<table cols=5 border=0 width=\"90%\" align=center>";
- printf("<tr bgcolor=\"$color[9]\"><TH align=left width=\"3%%\"> ".
- "<TH align=left width=\"10%%\">%s<TH align=left>%s<TH align=left>%s".
- "<TH align=left>%s</TR>\n",
- _("Nickname"), _("Name"), _("E-mail"), _("Info"));
- while(list($key,$row) = each($alist)) {
- printf("<TR%s NOWRAP><TD align=center><small>".
- "<INPUT TYPE=checkbox NAME=\"sel[]\" VALUE=\"%s\"></small>".
- "<TD NOWRAP> %s <TD NOWRAP> %s ".
- "<TD NOWRAP> <A HREF=\"compose.php?send_to=%s\">%s</A> ".
- "<TD NOWRAP> %s</TR>\n",
- ($line % 2) ? " bgcolor=\"$color[0]\"" : "", $row["nickname"],
- $row["nickname"], $row["name"], rawurlencode($row["email"]),
- $row["email"], $row["label"]);
- $line++;
- }
- print "<TR><TD COLSPAN=5 ALIGN=center>\n";
- printf("<INPUT TYPE=submit NAME=editaddr VALUE=\"%s\">\n",
- _("Edit selected"));
- printf("<INPUT TYPE=submit NAME=deladdr VALUE=\"%s\">\n",
- _("Delete selected"));
- print "</TR></TABLE></FORM>";
- }
-
- // Display the "new address" form
- printf("<FORM ACTION=\"%s\" METHOD=\"POST\">\n", $PHP_SELF);
- print "<TABLE WIDTH=100% COLS=1 ALIGN=CENTER>\n";
- print "<TR><TD BGCOLOR=\"$color[0]\" ALIGN=CENTER>\n<STRONG>";
- print _("Add to personal address book");
- print "<STRONG>\n</TD></TR>\n";
- print "</TABLE>\n";
- address_form("addaddr", _("Add address"), $defdata);
- print "</FORM>";
+/**
+ * addressbook.php
+ *
+ * Copyright (c) 1999-2003 The SquirrelMail Project Team
+ * Licensed under the GNU GPL. For full terms see the file COPYING.
+ *
+ * Manage personal address book.
+ *
+ * $Id$
+ */
+
+/* Path for SquirrelMail required files. */
+define('SM_PATH','../');
+
+/* SquirrelMail required files. */
+require_once(SM_PATH . 'include/validate.php');
+require_once(SM_PATH . 'functions/global.php');
+require_once(SM_PATH . 'functions/display_messages.php');
+require_once(SM_PATH . 'functions/addressbook.php');
+require_once(SM_PATH . 'functions/strings.php');
+require_once(SM_PATH . 'functions/html.php');
+
+/* lets get the global vars we may need */
+sqgetGlobalVar('key', $key, SQ_COOKIE);
+
+sqgetGlobalVar('username', $username, SQ_SESSION);
+sqgetGlobalVar('onetimepad',$onetimepad, SQ_SESSION);
+sqgetGlobalVar('base_uri', $base_uri, SQ_SESSION);
+sqgetGlobalVar('delimiter', $delimiter, SQ_SESSION);
+
+/* From the address form */
+sqgetGlobalVar('addaddr', $addaddr, SQ_POST);
+sqgetGlobalVar('editaddr', $editaddr, SQ_POST);
+sqgetGlobalVar('deladdr', $deladdr, SQ_POST);
+sqgetGlobalVar('sel', $sel, SQ_POST);
+sqgetGlobalVar('oldnick', $oldnick, SQ_POST);
+sqgetGlobalVar('backend', $backend, SQ_POST);
+sqgetGlobalVar('doedit', $doedit, SQ_POST);
+
+/* Make an input field */
+function adressbook_inp_field($label, $field, $name, $size, $values, $add) {
+ global $color;
+ $td_str = '<INPUT NAME="' . $name . '[' . $field . ']" SIZE="' . $size . '" VALUE="';
+ if (isset($values[$field])) {
+ $td_str .= htmlspecialchars( strip_tags( $values[$field] ) );
+ }
+ $td_str .= '">' . $add . '';
+ return html_tag( 'tr' ,
+ html_tag( 'td', $label . ':', 'right', $color[4]) .
+ html_tag( 'td', $td_str, 'left', $color[4])
+ )
+ . "\n";
+}
+
+/* Output form to add and modify address data */
+function address_form($name, $submittext, $values = array()) {
+ global $color;
+
+ echo html_tag( 'table',
+ adressbook_inp_field(_("Nickname"), 'nickname', $name, 15, $values,
+ ' <SMALL>' . _("Must be unique") . '</SMALL>') .
+ adressbook_inp_field(_("E-mail address"), 'email', $name, 45, $values, '') .
+ adressbook_inp_field(_("First name"), 'firstname', $name, 45, $values, '') .
+ adressbook_inp_field(_("Last name"), 'lastname', $name, 45, $values, '') .
+ adressbook_inp_field(_("Additional info"), 'label', $name, 45, $values, '') .
+ html_tag( 'tr',
+ html_tag( 'td',
+ '<INPUT TYPE=submit NAME="' . $name . '[SUBMIT]" VALUE="' .
+ $submittext . '">',
+ 'center', $color[4], 'colspan="2"')
+ )
+ , 'center', '', 'border="0" cellpadding="1" width="90%"') ."\n";
+}
+
+/* Open addressbook, with error messages on but without LDAP (the *
+ * second "true"). Don't need LDAP here anyway */
+$abook = addressbook_init(true, true);
+if($abook->localbackend == 0) {
+ plain_error_message(
+ _("No personal address book is defined. Contact administrator."),
+ $color);
+ exit();
+}
+
+displayPageHeader($color, 'None');
+
+$defdata = array();
+$formerror = '';
+$abortform = false;
+$showaddrlist = true;
+$defselected = array();
+$form_url = 'addressbook.php';
+
+
+/* Handle user's actions */
+if(sqgetGlobalVar('REQUEST_METHOD', $req_method, SQ_SERVER) && $req_method == 'POST') {
+
+ /**************************************************
+ * Add new address *
+ **************************************************/
+ if (!empty($addaddr['nickname'])) {
+ foreach( $addaddr as $k => $adr ) {
+ $addaddr[$k] = strip_tags( $adr );
+ }
+ $r = $abook->add($addaddr, $abook->localbackend);
+
+ /* Handle error messages */
+ if (!$r) {
+ /* Remove backend name from error string */
+ $errstr = $abook->error;
+ $errstr = ereg_replace('^\[.*\] *', '', $errstr);
+
+ $formerror = $errstr;
+ $showaddrlist = false;
+ $defdata = $addaddr;
+ }
+ } else {
+
+ /************************************************
+ * Delete address(es) *
+ ************************************************/
+ if ((!empty($deladdr)) && sizeof($sel) > 0) {
+ $orig_sel = $sel;
+ sort($sel);
+
+ /* The selected addresses are identidied by "backend:nickname". *
+ * Sort the list and process one backend at the time */
+ $prevback = -1;
+ $subsel = array();
+ $delfailed = false;
+
+ for ($i = 0 ; (($i < sizeof($sel)) && !$delfailed) ; $i++) {
+ list($sbackend, $snick) = explode(':', $sel[$i]);
+
+ /* When we get to a new backend, process addresses in *
+ * previous one. */
+ if ($prevback != $sbackend && $prevback != -1) {
+
+ $r = $abook->remove($subsel, $prevback);
+ if (!$r) {
+ $formerror = $abook->error;
+ $i = sizeof($sel);
+ $delfailed = true;
+ break;
+ }
+ $subsel = array();
+ }
+
+ /* Queue for processing */
+ array_push($subsel, $snick);
+ $prevback = $sbackend;
+ }
+
+ if (!$delfailed) {
+ $r = $abook->remove($subsel, $prevback);
+ if (!$r) { /* Handle errors */
+ $formerror = $abook->error;
+ $delfailed = true;
+ }
+ }
+
+ if ($delfailed) {
+ $showaddrlist = true;
+ $defselected = $orig_sel;
+ }
+
+ } else {
+
+ /***********************************************
+ * Update/modify address *
+ ***********************************************/
+ if (!empty($editaddr)) {
+
+ /* Stage one: Copy data into form */
+ if (isset($sel) && sizeof($sel) > 0) {
+ if(sizeof($sel) > 1) {
+ $formerror = _("You can only edit one address at the time");
+ $showaddrlist = true;
+ $defselected = $sel;
+ } else {
+ $abortform = true;
+ list($ebackend, $enick) = explode(':', $sel[0]);
+ $olddata = $abook->lookup($enick, $ebackend);
+
+ /* Display the "new address" form */
+ echo '<FORM ACTION="' . $form_url . '" METHOD="POST">' .
+ "\n" .
+ html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ "\n". '<strong>' . _("Update address") . '</strong>' ."\n",
+ 'center', $color[0] )
+ ),
+ 'center', '', 'width="100%" ' );
+ address_form("editaddr", _("Update address"), $olddata);
+ echo '<INPUT TYPE=hidden NAME=oldnick VALUE="' .
+ htmlspecialchars($olddata["nickname"]) . "\">\n" .
+ '<INPUT TYPE=hidden NAME=backend VALUE="' .
+ htmlspecialchars($olddata["backend"]) . "\">\n" .
+ '<INPUT TYPE=hidden NAME=doedit VALUE=1>' . "\n" .
+ '</FORM>';
+ }
+ } else {
+
+ /* Stage two: Write new data */
+ if ($doedit = 1) {
+ $newdata = $editaddr;
+ $r = $abook->modify($oldnick, $newdata, $backend);
+
+ /* Handle error messages */
+ if (!$r) {
+ /* Display error */
+ echo html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ "\n". '<br><strong><font color="' . $color[2] .
+ '">' . _("ERROR") . ': ' . $abook->error . '</font></strong>' ."\n",
+ 'center' )
+ ),
+ 'center', '', 'width="100%"' );
+
+ /* Display the "new address" form again */
+ echo '<FORM ACTION="' . $form_url .
+ '" METHOD="POST">' . "\n" .
+ html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ "\n". '<br><strong>' . _("Update address") . '</strong>' ."\n",
+ 'center', $color[0] )
+ ),
+ 'center', '', 'width="100%"' ) .
+ address_form("editaddr", _("Update address"), $newdata);
+ echo '<INPUT TYPE=hidden NAME=oldnick VALUE="' .
+ htmlspecialchars($oldnick) . "\">\n" .
+ '<INPUT TYPE=hidden NAME=backend VALUE="' .
+ htmlspecialchars($backend) . "\">\n" .
+ '<INPUT TYPE=hidden NAME=doedit VALUE=1>' .
+ "\n" . '</FORM>';
+ $abortform = true;
+ }
+ } else {
+
+ /* Should not get here... */
+ plain_error_message(_("Unknown error"), $color);
+ $abortform = true;
+ }
+ }
+ } /* !empty($editaddr) - Update/modify address */
+ } /* (!empty($deladdr)) && sizeof($sel) > 0 - Delete address(es) */
+ } /* !empty($addaddr['nickname']) - Add new address */
+
+ // Some times we end output before forms are printed
+ if($abortform) {
+ echo "</BODY></HTML>\n";
+ exit();
+ }
+}
+
+
+/* =================================================================== *
+ * The following is only executed on a GET request, or on a POST when *
+ * a user is added, or when "delete" or "modify" was successful. *
+ * =================================================================== */
+
+/* Display error messages */
+if (!empty($formerror)) {
+ echo html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ "\n". '<br><strong><font color="' . $color[2] .
+ '">' . _("ERROR") . ': ' . $formerror . '</font></strong>' ."\n",
+ 'center' )
+ ),
+ 'center', '', 'width="100%"' );
+}
+
+
+/* Display the address management part */
+if ($showaddrlist) {
+ /* Get and sort address list */
+ $alist = $abook->list_addr();
+ if(!is_array($alist)) {
+ plain_error_message($abook->error, $color);
+ exit;
+ }
+
+ usort($alist,'alistcmp');
+ $prevbackend = -1;
+ $headerprinted = false;
+
+ echo html_tag( 'p', '<a href="#AddAddress">' . _("Add address") . '</a>', 'center' ) . "\n";
+
+ /* List addresses */
+ if (count($alist) > 0) {
+ echo '<FORM ACTION="' . $form_url . '" METHOD="POST">' . "\n";
+ while(list($undef,$row) = each($alist)) {
+
+ /* New table header for each backend */
+ if($prevbackend != $row['backend']) {
+ if($prevbackend < 0) {
+ echo html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ '<INPUT TYPE=submit NAME=editaddr VALUE="' .
+ _("Edit selected") . "\">\n" .
+ '<INPUT TYPE=submit NAME=deladdr VALUE="' .
+ _("Delete selected") . "\">\n",
+ 'center', '', 'colspan="5"' )
+ ) .
+ html_tag( 'tr',
+ html_tag( 'td', ' <br>', 'center', '', 'colspan="5"' )
+ ) ,
+ 'center' );
+ }
+
+ echo html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td', "\n" . '<strong>' . $row['source'] . '</strong>' . "\n", 'center', $color[0] )
+ ) ,
+ 'center', '', 'width="95%"' ) ."\n"
+ . html_tag( 'table', '', 'center', '', 'border="0" cellpadding="1" cellspacing="0" width="90%"' ) .
+ html_tag( 'tr', "\n" .
+ html_tag( 'th', ' ', 'left', '', 'width="1%"' ) .
+ html_tag( 'th', _("Nickname"), 'left', '', 'width="1%"' ) .
+ html_tag( 'th', _("Name"), 'left', '', 'width="1%"' ) .
+ html_tag( 'th', _("E-mail"), 'left', '', 'width="1%"' ) .
+ html_tag( 'th', _("Info"), 'left', '', 'width="1%"' ) ,
+ '', $color[9] ) . "\n";
+
+ $line = 0;
+ $headerprinted = true;
+ } /* End of header */
+
+ $prevbackend = $row['backend'];
+
+ /* Check if this user is selected */
+ if(in_array($row['backend'] . ':' . $row['nickname'], $defselected)) {
+ $selected = 'CHECKED';
+ } else {
+ $selected = '';
+ }
+
+ /* Print one row */
+ $tr_bgcolor = '';
+ if ($line % 2) { $tr_bgcolor = $color[0]; }
+ echo html_tag( 'tr', '') .
+ html_tag( 'td',
+ '<SMALL>' .
+ '<INPUT TYPE=checkbox ' . $selected . ' NAME="sel[]" VALUE="' .
+ $row['backend'] . ':' . $row['nickname'] . '"></SMALL>' ,
+ 'center', '', 'valign="top" width="1%"' ) .
+ html_tag( 'td', ' ' . $row['nickname'] . ' ', 'left', '', 'valign="top" width="1%" nowrap' ) .
+ html_tag( 'td', ' ' . $row['name'] . ' ', 'left', '', 'valign="top" width="1%" nowrap' ) .
+ html_tag( 'td', '', 'left', '', 'valign="top" width="1%" nowrap' ) . ' ';
+ $email = $abook->full_address($row);
+ if ($compose_new_win == '1') {
+ echo '<a href="javascript:void(0)" onclick=comp_in_new(false,"compose.php?send_to='.rawurlencode($email).'")>';
+ }
+ else {
+ echo '<A HREF="compose.php?send_to=' . rawurlencode($email).'">';
+ }
+ echo htmlspecialchars($row['email']) . '</A> </td>'."\n".
+ html_tag( 'td', ' ' . htmlspecialchars($row['label']) . ' ', 'left', '', 'valign="top" width="1%"' ) .
+ "</tr>\n";
+ $line++;
+ }
+
+ /* End of list. Close table. */
+ if ($headerprinted) {
+ echo html_tag( 'tr',
+ html_tag( 'td',
+ '<INPUT TYPE="submit" NAME="editaddr" VALUE="' . _("Edit selected") .
+ "\">\n" .
+ '<INPUT TYPE="submit" NAME="deladdr" VALUE="' . _("Delete selected") .
+ "\">\n",
+ 'center', '', 'colspan="5"' )
+ );
+ }
+ echo '</table></FORM>';
+ }
+} /* end of addresslist */
+
+
+/* Display the "new address" form */
+echo '<a name="AddAddress"></a>' . "\n" .
+ '<FORM ACTION="' . $form_url . '" NAME=f_add METHOD="POST">' . "\n" .
+ html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td', "\n". '<strong>' . sprintf(_("Add to %s"), $abook->localbackendname) . '</strong>' . "\n",
+ 'center', $color[0]
+ )
+ )
+ , 'center', '', 'width="100%"' ) ."\n";
+address_form('addaddr', _("Add address"), $defdata);
+echo '</FORM>';
+
+/* Add hook for anything that wants on the bottom */
+do_hook('addressbook_bottom');
?>
</BODY></HTML>
projects / squirrelmail.git / blobdiff