- /**
- ** addressbook.php
- **
- ** Copyright (c) 1999-2000 The SquirrelMail development team
- ** Licensed under the GNU GPL. For full terms see the file COPYING.
- **
- ** Manage personal address book.
- **
- ** $Id$
- **/
-
- require_once('../src/validate.php');
- require_once('../functions/array.php');
- require_once('../functions/display_messages.php');
- require_once('../functions/addressbook.php');
-
- // Sort array by the key "name"
- function alistcmp($a,$b) {
- if($a['backend'] > $b['backend'])
- return 1;
- else if($a['backend'] < $b['backend'])
- return -1;
-
- return (strtolower($a['name']) > strtolower($b['name'])) ? 1 : -1;
- }
-
- // Output form to add and modify address data
- function address_form($name, $submittext, $values = array()) {
- global $color;
- print "<TABLE BORDER=0 CELLPADDING=1 COLS=2 WIDTH=\"90%\" ALIGN=center>\n";
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Nickname"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[nickname]\" SIZE=15 VALUE=\"%s\">".
- " <SMALL>%s</SMALL></TD></TR>\n",
- $color[4], $name,
- (isset($values['nickname']))?
- htmlspecialchars($values['nickname']):"",
- _("Must be unique"));
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("E-mail address"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[email]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name,
- (isset($values["email"]))?
- htmlspecialchars($values["email"]):"");
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("First name"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[firstname]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name,
- (isset($values["firstname"]))?
- htmlspecialchars($values["firstname"]):"");
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Last name"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[lastname]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name,
- (isset($values["lastname"]))?
- htmlspecialchars($values["lastname"]):"");
- printf("<TR><TD WIDTH=50 BGCOLOR=\"$color[4]\" ALIGN=RIGHT>%s:</TD>",
- _("Additional info"));
- printf("<TD BGCOLOR=\"%s\" ALIGN=left>".
- "<INPUT NAME=\"%s[label]\" SIZE=45 VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name,
- (isset($values["label"]))?
- htmlspecialchars($values["label"]):"");
-
- printf("<TR><TD COLSPAN=2 BGCOLOR=\"%s\" ALIGN=center>\n".
- "<INPUT TYPE=submit NAME=\"%s[SUBMIT]\" VALUE=\"%s\"></TD></TR>\n",
- $color[4], $name, $submittext);
-
- print "</TABLE>\n";
- }
-
-
- // Open addressbook, with error messages on but without LDAP (the
- // second "true"). Don't need LDAP here anyway
- $abook = addressbook_init(true, true);
- if($abook->localbackend == 0) {
- plain_error_message(_("No personal address book is defined. Contact administrator."), $color);
- exit();
- }
-
- displayPageHeader($color, 'None');
-
-
- $defdata = array();
- $formerror = '';
- $abortform = false;
- $showaddrlist = true;
- $defselected = array();
-
-
- // Handle user's actions
- if($REQUEST_METHOD == 'POST') {
-
- // ***********************************************
- // Add new address
- // ***********************************************
- if(!empty($addaddr['nickname'])) {
-
- $r = $abook->add($addaddr, $abook->localbackend);
-
- // Handle error messages
- if(!$r) {
- // Remove backend name from error string
- $errstr = $abook->error;
- $errstr = ereg_replace('^\[.*\] *', '', $errstr);
-
- $formerror = $errstr;
- $showaddrlist = false;
- $defdata = $addaddr;
- }
+
+/**
+ * addressbook.php
+ *
+ * Manage personal address book.
+ *
+ * @copyright © 1999-2006 The SquirrelMail Project Team
+ * @license http://opensource.org/licenses/gpl-license.php GNU Public License
+ * @version $Id$
+ * @package squirrelmail
+ * @subpackage addressbook
+ */
+
+/**
+ * Include the SquirrelMail initialization file.
+ */
+include('../include/init.php');
+
+/** SquirrelMail required files. */
+/* address book functions */
+require_once(SM_PATH . 'functions/addressbook.php');
+/* form functions */
+require_once(SM_PATH . 'functions/forms.php');
+
+/** lets get the global vars we may need */
+
+/* From the address form */
+//sqgetGlobalVar('change_abook', $change_abook, SQ_POST);
+sqgetGlobalVar('addaddr', $addaddr, SQ_POST);
+sqgetGlobalVar('editaddr', $editaddr, SQ_POST);
+sqgetGlobalVar('deladdr', $deladdr, SQ_POST);
+sqgetGlobalVar('sel', $sel, SQ_POST);
+sqgetGlobalVar('oldnick', $oldnick, SQ_POST);
+sqgetGlobalVar('backend', $backend, SQ_POST);
+sqgetGlobalVar('doedit', $doedit, SQ_POST);
+
+/* Get sorting order */
+$abook_sort_order = get_abook_sort();
+
+/* Create page header before addressbook_init in order to display error messages correctly. */
+displayPageHeader($color, 'None');
+
+/* Open addressbook with error messages on.
+ remote backends (LDAP) are enabled because they can be used. (list_addr function)
+*/
+$abook = addressbook_init(true, false);
+
+// FIXME: do we have to stop use of address book, when localbackend is not present.
+if($abook->localbackend == 0) {
+ plain_error_message(_("No personal address book is defined. Contact administrator."));
+ exit();
+}
+
+$current_backend = $abook->localbackend;
+if (sqgetGlobalVar('new_bnum',$new_backend,SQ_POST) && array_key_exists($new_backend,$abook->backends)) {
+ $current_backend = (int) $new_backend;
+}
+
+$abook_selection = ' ';
+$list_backends = array();
+if (count($abook->backends) > 1) {
+ foreach($abook->get_backend_list() as $oBackend) {
+ if ($oBackend->listing) {
+ $list_backends[$oBackend->bnum]=$oBackend->sname;
+ }
+ }
+ if (count($list_backends)>1) {
+ $abook_selection = addSelect('new_bnum',$list_backends,$current_backend,true)
+ .addSubmit(_("Change"),'change_abook');
+ }
+}
+
+$defdata = array();
+$formerror = '';
+$abortform = false;
+$showaddrlist = true;
+$defselected = array();
+$form_url = 'addressbook.php';
+
+/* Handle user's actions */
+//if(sqgetGlobalVar('REQUEST_METHOD', $req_method, SQ_SERVER) && $req_method == 'POST' && !isset($change_abook)) {
+if(sqgetGlobalVar('REQUEST_METHOD', $req_method, SQ_SERVER) && $req_method == 'POST') {
+
+ /**************************************************
+ * Add new address *
+ **************************************************/
+ if (isset($addaddr)) {
+ if (isset($backend)) {
+ $r = $abook->add($addaddr, $backend);
+ } else {
+ $r = $abook->add($addaddr, $abook->localbackend);
+ }
+
+ /* Handle error messages */
+ if (!$r) {
+ /* Remove backend name from error string */
+ $errstr = $abook->error;
+ $errstr = ereg_replace('^\[.*\] *', '', $errstr);
+
+ $formerror = $errstr;
+ $showaddrlist = false;
+ $defdata = $addaddr;
+ }
+ } else {
+
+ /************************************************
+ * Delete address(es) *
+ ************************************************/
+ if ((!empty($deladdr)) && sizeof($sel) > 0) {
+ $orig_sel = $sel;
+ sort($sel);
+
+ /* The selected addresses are identidied by "backend:nickname". *
+ * Sort the list and process one backend at the time */
+ $prevback = -1;
+ $subsel = array();
+ $delfailed = false;
+
+ for ($i = 0 ; (($i < sizeof($sel)) && !$delfailed) ; $i++) {
+ list($sbackend, $snick) = explode(':', $sel[$i]);
+
+ /* When we get to a new backend, process addresses in *
+ * previous one. */
+ if ($prevback != $sbackend && $prevback != -1) {
+
+ $r = $abook->remove($subsel, $prevback);
+ if (!$r) {
+ $formerror = $abook->error;
+ $i = sizeof($sel);
+ $delfailed = true;
+ break;
+ }
+ $subsel = array();
+ }
+
+ /* Queue for processing */
+ array_push($subsel, $snick);
+ $prevback = $sbackend;
+ }
+
+ if (!$delfailed) {
+ $r = $abook->remove($subsel, $prevback);
+ if (!$r) { /* Handle errors */
+ $formerror = $abook->error;
+ $delfailed = true;
+ }
+ }
+
+ if ($delfailed) {
+ $showaddrlist = true;
+ $defselected = $orig_sel;
+ }
+
+ } else {
+
+ /***********************************************
+ * Update/modify address *
+ ***********************************************/
+ if (!empty($editaddr)) {
+ /* Stage one: Copy data into form */
+ if (isset($sel) && sizeof($sel) > 0) {
+ if(sizeof($sel) > 1) {
+ $formerror = _("You can only edit one address at the time");
+ $showaddrlist = true;
+ $defselected = $sel;
+ } else {
+ $abortform = true;
+ list($ebackend, $enick) = explode(':', current($sel));
+ $olddata = $abook->lookup($enick, $ebackend);
+ // Test if $olddata really contains anything and return an error message if it doesn't
+ if (!$olddata) {
+ error_box(nl2br(htmlspecialchars($abook->error)));
+ } else {
+ /* Display the "new address" form */
+ abook_create_form($form_url,'editaddr',_("Update address"),_("Update address"),$olddata);
+ echo addHidden('oldnick', $olddata['nickname']).
+ addHidden('backend', $olddata['backend']).
+ addHidden('doedit', '1').
+ '</form>';
+ }
+ }
+ } elseif ($doedit == 1) {
+ /* Stage two: Write new data */
+ $newdata = $editaddr;
+ $r = $abook->modify($oldnick, $newdata, $backend);
+
+ /* Handle error messages */
+ if (!$r) {
+ /* Display error */
+ echo html_tag( 'table',
+ html_tag( 'tr',
+ html_tag( 'td',
+ "\n". '<strong><font color="' . $color[2] .
+ '">' . _("ERROR") . ': ' . $abook->error . '</font></strong>' ."\n",
+ 'center' )
+ ),
+ 'center', '', 'width="100%"' );
+
+ /* Display the "new address" form again */
+ abook_create_form($form_url,'editaddr',_("Update address"),_("Update address"),$newdata);
+ echo addHidden('oldnick', $oldnick).
+ addHidden('backend', $backend).
+ addHidden('doedit', '1').
+ "\n" . '</form>';
+ $abortform = true;
+ }
+ } else {
+ /**
+ * $editaddr is set, but $sel (address selection in address listing)
+ * and $doedit (address edit form) are not set.
+ * Assume that user clicked on "Edit address" without selecting any address.
+ */
+ $formerror = _("Please select address that you want to edit");
+ $showaddrlist = true;
+ } /* end of edit stage detection */
+ } /* !empty($editaddr) - Update/modify address */
+ } /* (!empty($deladdr)) && sizeof($sel) > 0 - Delete address(es) */
+ } /* !empty($addaddr['nickname']) - Add new address */
+
+ // Some times we end output before forms are printed
+ if($abortform) {
+ echo "</body></html>\n";
+ exit();
+ }
+}
+
+
+/* =================================================================== *
+ * The following is only executed on a GET request, or on a POST when *
+ * a user is added, or when "delete" or "modify" was successful. *
+ * =================================================================== */
+
+/* Display error messages */
+if (!empty($formerror)) {
+ plain_error_message(nl2br(htmlspecialchars($formerror)));
+}
+
+
+/* Display the address management part */
+$addresses = array();
+while (list($k, $backend) = each ($abook->backends)) {
+ $a = array();
+ $a['BackendID'] = $backend->bnum;
+ $a['BackendSource'] = $backend->sname;
+ $a['BackendWritable'] = $backend->writeable;
+ $a['Addresses'] = array();
+
+ $alist = $abook->list_addr($backend->bnum);
+ usort($alist,'alistcmp');
+ $start = 200;
+ $count = count($alist);
+ if ($start >= $count) $start = 0;
+ $alist = array_slice($alist,$start,15);