| +-----------------------------------------------------------------------+ $Id$ */ require_once('lib/enriched.inc'); require_once('include/rcube_smtp.inc'); $EMAIL_ADDRESS_PATTERN = '/([a-z0-9][a-z0-9\-\.\+\_]*@[a-z0-9]([a-z0-9\-][.]?)*[a-z0-9]\\.[a-z]{2,5})/i'; if (empty($_SESSION['mbox'])) $_SESSION['mbox'] = $IMAP->get_mailbox_name(); // set imap properties and session vars if ($mbox = get_input_value('_mbox', RCUBE_INPUT_GPC)) $IMAP->set_mailbox(($_SESSION['mbox'] = $mbox)); if (!empty($_GET['_page'])) $IMAP->set_page(($_SESSION['page'] = intval($_GET['_page']))); // set mailbox to INBOX if not set if (empty($_SESSION['mbox'])) $_SESSION['mbox'] = $IMAP->get_mailbox_name(); // set default sort col/order to session if (!isset($_SESSION['sort_col'])) $_SESSION['sort_col'] = $CONFIG['message_sort_col']; if (!isset($_SESSION['sort_order'])) $_SESSION['sort_order'] = $CONFIG['message_sort_order']; // set message set for search result if (!empty($_REQUEST['_search']) && isset($_SESSION['search'][$_REQUEST['_search']])) { $IMAP->set_search_set($_SESSION['search'][$_REQUEST['_search']]); $OUTPUT->set_env('search_request', $_REQUEST['_search']); $OUTPUT->set_env('search_text', $_SESSION['last_text_search']); } // define url for getting message parts if (strlen($_GET['_uid'])) $GET_URL = rcmail_url('get', array('_mbox'=>$IMAP->get_mailbox_name(), '_uid'=>get_input_value('_uid', RCUBE_INPUT_GET))); // set current mailbox in client environment $OUTPUT->set_env('mailbox', $IMAP->get_mailbox_name()); $OUTPUT->set_env('quota', $IMAP->get_capability('quota')); if ($CONFIG['trash_mbox']) $OUTPUT->set_env('trash_mailbox', $CONFIG['trash_mbox']); if ($CONFIG['drafts_mbox']) $OUTPUT->set_env('drafts_mailbox', $CONFIG['drafts_mbox']); if ($CONFIG['junk_mbox']) $OUTPUT->set_env('junk_mailbox', $CONFIG['junk_mbox']); if (!$OUTPUT->ajax_call) rcube_add_label('checkingmail', 'deletemessage', 'movemessagetotrash'); // set page title if (empty($_action) || $_action == 'list') $OUTPUT->set_pagetitle(rcmail_localize_foldername($IMAP->get_mailbox_name())); // return the message list as HTML table function rcmail_message_list($attrib) { global $IMAP, $CONFIG, $COMM_PATH, $OUTPUT; $skin_path = $CONFIG['skin_path']; $image_tag = '%s'; // check to see if we have some settings for sorting $sort_col = $_SESSION['sort_col']; $sort_order = $_SESSION['sort_order']; // add some labels to client rcube_add_label('from', 'to'); // get message headers $a_headers = $IMAP->list_headers('', '', $sort_col, $sort_order); // add id to message list table if not specified if (!strlen($attrib['id'])) $attrib['id'] = 'rcubemessagelist'; // allow the following attributes to be added to the tag $attrib_str = create_attrib_string($attrib, array('style', 'class', 'id', 'cellpadding', 'cellspacing', 'border', 'summary')); $out = '\n"; // define list of cols to be displayed $a_show_cols = is_array($CONFIG['list_cols']) ? $CONFIG['list_cols'] : array('subject'); $a_sort_cols = array('subject', 'date', 'from', 'to', 'size'); $mbox = $IMAP->get_mailbox_name(); // show 'to' instead of from in sent messages if (($mbox==$CONFIG['sent_mbox'] || $mbox==$CONFIG['drafts_mbox']) && ($f = array_search('from', $a_show_cols)) && !array_search('to', $a_show_cols)) $a_show_cols[$f] = 'to'; // add col definition $out .= ''; $out .= ''; foreach ($a_show_cols as $col) $out .= sprintf('', $col); $out .= ''; $out .= "\n"; // add table title $out .= "\n\n"; $javascript = ''; foreach ($a_show_cols as $col) { // get column name $col_name = Q(rcube_label($col)); // make sort links $sort = ''; if ($IMAP->get_capability('sort') && in_array($col, $a_sort_cols)) { // have buttons configured if (!empty($attrib['sortdescbutton']) || !empty($attrib['sortascbutton'])) { $sort = '  '; // asc link if (!empty($attrib['sortascbutton'])) { $sort .= $OUTPUT->button(array( 'command' => 'sort', 'prop' => $col.'_ASC', 'image' => $attrib['sortascbutton'], 'align' => 'absmiddle', 'title' => 'sortasc')); } // desc link if (!empty($attrib['sortdescbutton'])) { $sort .= $OUTPUT->button(array( 'command' => 'sort', 'prop' => $col.'_DESC', 'image' => $attrib['sortdescbutton'], 'align' => 'absmiddle', 'title' => 'sortdesc')); } } // just add a link tag to the header else { $col_name = sprintf( '%s', JS_OBJECT_NAME, $col, rcube_label('sortby'), $col_name); } } $sort_class = $col==$sort_col ? " sorted$sort_order" : ''; // put it all together $out .= '\n"; } $out .= '\n"; $out .= "\n\n"; // no messages in this mailbox if (!sizeof($a_headers)) $OUTPUT->show_message('nomessagesfound', 'notice'); $a_js_message_arr = array(); // create row for each message foreach ($a_headers as $i => $header) //while (list($i, $header) = each($a_headers)) { $message_icon = $attach_icon = ''; $js_row_arr = array(); $zebra_class = $i%2 ? 'even' : 'odd'; // set messag attributes to javascript array if ($header->deleted) $js_row_arr['deleted'] = true; if (!$header->seen) $js_row_arr['unread'] = true; if ($header->answered) $js_row_arr['replied'] = true; // set message icon if ($attrib['deletedicon'] && $header->deleted) $message_icon = $attrib['deletedicon']; else if ($attrib['unreadicon'] && !$header->seen) $message_icon = $attrib['unreadicon']; else if ($attrib['repliedicon'] && $header->answered) $message_icon = $attrib['repliedicon']; else if ($attrib['messageicon']) $message_icon = $attrib['messageicon']; // set attachment icon if ($attrib['attachmenticon'] && preg_match("/multipart\/[mr]/i", $header->ctype)) $attach_icon = $attrib['attachmenticon']; $out .= sprintf(''."\n", $header->uid, $header->seen ? '' : ' unread', $header->deleted ? ' deleted' : '', $zebra_class); $out .= sprintf("\n", $message_icon ? sprintf($image_tag, $skin_path, $message_icon, '') : ''); // format each col foreach ($a_show_cols as $col) { if ($col=='from' || $col=='to') $cont = Q(rcmail_address_string($header->$col, 3, $attrib['addicon']), 'show'); else if ($col=='subject') { $action = $mbox==$CONFIG['drafts_mbox'] ? 'compose' : 'show'; $uid_param = $mbox==$CONFIG['drafts_mbox'] ? '_draf_uid' : '_uid'; $cont = Q(rcube_imap::decode_mime_string($header->$col, $header->charset)); if (empty($cont)) $cont = Q(rcube_label('nosubject')); $cont = sprintf('%s', Q(rcmail_url($action, array($uid_param=>$header->uid, '_mbox'=>$mbox))), $cont); } else if ($col=='size') $cont = show_bytes($header->$col); else if ($col=='date') $cont = format_date($header->date); else $cont = Q($header->$col); $out .= '\n"; } $out .= sprintf("\n", $attach_icon ? sprintf($image_tag, $skin_path, $attach_icon, '') : ''); $out .= "\n"; if (sizeof($js_row_arr)) $a_js_message_arr[$header->uid] = $js_row_arr; } // complete message table $out .= "
 ' . "$col_name$sort'.($attrib['attachmenticon'] ? sprintf($image_tag, $skin_path, $attrib['attachmenticon'], '') : '')."
%s' . $cont . "%s
\n"; $message_count = $IMAP->messagecount(); // set client env $OUTPUT->add_gui_object('mailcontframe', 'mailcontframe'); $OUTPUT->add_gui_object('messagelist', $attrib['id']); $OUTPUT->set_env('messagecount', $message_count); $OUTPUT->set_env('current_page', $IMAP->list_page); $OUTPUT->set_env('pagecount', ceil($message_count/$IMAP->page_size)); $OUTPUT->set_env('sort_col', $sort_col); $OUTPUT->set_env('sort_order', $sort_order); if ($attrib['messageicon']) $OUTPUT->set_env('messageicon', $skin_path . $attrib['messageicon']); if ($attrib['deletedicon']) $OUTPUT->set_env('deletedicon', $skin_path . $attrib['deletedicon']); if ($attrib['unreadicon']) $OUTPUT->set_env('unreadicon', $skin_path . $attrib['unreadicon']); if ($attrib['repliedicon']) $OUTPUT->set_env('repliedicon', $skin_path . $attrib['repliedicon']); if ($attrib['attachmenticon']) $OUTPUT->set_env('attachmenticon', $skin_path . $attrib['attachmenticon']); $OUTPUT->set_env('messages', $a_js_message_arr); $OUTPUT->set_env('coltypes', $a_show_cols); $OUTPUT->include_script('list.js'); return $out; } // return javascript commands to add rows to the message list function rcmail_js_message_list($a_headers, $insert_top=FALSE) { global $CONFIG, $IMAP, $OUTPUT; $a_show_cols = is_array($CONFIG['list_cols']) ? $CONFIG['list_cols'] : array('subject'); $mbox = $IMAP->get_mailbox_name(); // show 'to' instead of from in sent messages if (($mbox == $CONFIG['sent_mbox'] || $mbox == $CONFIG['drafts_mbox']) && (($f = array_search('from', $a_show_cols)) !== false) && array_search('to', $a_show_cols) === false) $a_show_cols[$f] = 'to'; $OUTPUT->command('set_message_coltypes', $a_show_cols); // loop through message headers foreach ($a_headers as $n => $header) { $a_msg_cols = array(); $a_msg_flags = array(); if (empty($header)) continue; // format each col; similar as in rcmail_message_list() foreach ($a_show_cols as $col) { if ($col=='from' || $col=='to') $cont = Q(rcmail_address_string($header->$col, 3), 'show'); else if ($col=='subject') { $action = $mbox==$CONFIG['drafts_mbox'] ? 'compose' : 'show'; $uid_param = $mbox==$CONFIG['drafts_mbox'] ? '_draf_uid' : '_uid'; $cont = Q(rcube_imap::decode_mime_string($header->$col, $header->charset)); if (!$cont) $cont = Q(rcube_label('nosubject')); $cont = sprintf('%s', Q(rcmail_url($action, array($uid_param=>$header->uid, '_mbox'=>$mbox))), $cont); } else if ($col=='size') $cont = show_bytes($header->$col); else if ($col=='date') $cont = format_date($header->date); else $cont = Q($header->$col); $a_msg_cols[$col] = $cont; } $a_msg_flags['deleted'] = $header->deleted ? 1 : 0; $a_msg_flags['unread'] = $header->seen ? 0 : 1; $a_msg_flags['replied'] = $header->answered ? 1 : 0; $OUTPUT->command('add_message_row', $header->uid, $a_msg_cols, $a_msg_flags, preg_match("/multipart\/m/i", $header->ctype), $insert_top); } } // return an HTML iframe for loading mail content function rcmail_messagecontent_frame($attrib) { global $OUTPUT; if (empty($attrib['id'])) $attrib['id'] = 'rcmailcontentwindow'; // allow the following attributes to be added to the '."\n", $framename, $attrib_str); $OUTPUT->set_env('contentframe', $framename); $OUTPUT->set_env('blankpage', $attrib['src'] ? $OUTPUT->abs_url($attrib['src']) : 'program/blank.gif'); return $out; } function rcmail_messagecount_display($attrib) { global $IMAP, $OUTPUT; if (!$attrib['id']) $attrib['id'] = 'rcmcountdisplay'; $OUTPUT->add_gui_object('countdisplay', $attrib['id']); // allow the following attributes to be added to the tag $attrib_str = create_attrib_string($attrib, array('style', 'class', 'id')); $out = ''; $out .= rcmail_get_messagecount_text(); $out .= ''; return $out; } function rcmail_quota_display($attrib) { global $OUTPUT, $COMM_PATH; if (!$attrib['id']) $attrib['id'] = 'rcmquotadisplay'; if(isset($attrib['display'])) $_SESSION['quota_display'] = $attrib['display']; $OUTPUT->add_gui_object('quotadisplay', $attrib['id']); // allow the following attributes to be added to the tag $attrib_str = create_attrib_string($attrib, array('style', 'class', 'id', 'display')); $out = ''; $out .= rcmail_quota_content(); $out .= ''; return $out; } function rcmail_quota_content($quota=NULL) { global $IMAP, $COMM_PATH; $display = isset($_SESSION['quota_display']) ? $_SESSION['quota_display'] : ''; if (is_array($quota) && !empty($quota['used']) && !empty($quota['total'])) { if (!isset($quota['percent'])) $quota['percent'] = $quota['used'] / $quota['total']; } elseif (!$IMAP->get_capability('QUOTA')) return rcube_label('unknown'); else $quota = $IMAP->get_quota(); if ($quota) { $quota_text = sprintf('%s / %s (%.0f%%)', show_bytes($quota['used'] * 1024), show_bytes($quota['total'] * 1024), $quota['percent']); // show quota as image (by Brett Patterson) if ($display == 'image' && function_exists('imagegif')) { $attrib = array('width' => 100, 'height' => 14); $quota_text = sprintf('%s', $quota['used'], $quota['total'], $attrib['width'], $attrib['height'], $attrib['width'], $attrib['height'], $quota_text, show_bytes($quota["used"] * 1024), show_bytes($quota["total"] * 1024)); } } else $quota_text = rcube_label('unlimited'); return $quota_text; } function rcmail_get_messagecount_text($count=NULL, $page=NULL) { global $IMAP, $MESSAGE; if (isset($MESSAGE['index'])) { return rcube_label(array('name' => 'messagenrof', 'vars' => array('nr' => $MESSAGE['index']+1, 'count' => $count!==NULL ? $count : $IMAP->messagecount()))); } if ($page===NULL) $page = $IMAP->list_page; $start_msg = ($page-1) * $IMAP->page_size + 1; $max = $count!==NULL ? $count : $IMAP->messagecount(); if ($max==0) $out = rcube_label('mailboxempty'); else $out = rcube_label(array('name' => 'messagesfromto', 'vars' => array('from' => $start_msg, 'to' => min($max, $start_msg + $IMAP->page_size - 1), 'count' => $max))); return Q($out); } /* Stolen from Squirrelmail */ function sq_deent(&$attvalue, $regex, $hex=false) { $ret_match = false; preg_match_all($regex, $attvalue, $matches); if (is_array($matches) && sizeof($matches[0]) > 0) { $repl = Array(); for ($i = 0; $i < sizeof($matches[0]); $i++) { $numval = $matches[1][$i]; if ($hex) $numval = hexdec($numval); $repl{$matches[0][$i]} = chr($numval); } $attvalue = strtr($attvalue, $repl); return true; } else return false; } /* Stolen verbatim from Squirrelmail */ function sq_defang(&$attvalue) { /* Skip this if there aren't ampersands or backslashes. */ if ((strpos($attvalue, '&') === false) && (strpos($attvalue, '\\') === false)) return; $m = false; do { $m = false; $m = $m || sq_deent($attvalue, '/\�*(\d+);*/s'); $m = $m || sq_deent($attvalue, '/\�*((\d|[a-f])+);*/si', true); $m = $m || sq_deent($attvalue, '/\\\\(\d+)/s', true); } while ($m == true); $attvalue = stripslashes($attvalue); } function rcmail_html_filter($html) { preg_match_all('/<\/?\w+((\s+\w+(\s*=\s*(?:".*?"|\'.*?\'|[^\'">\s]+))?)+\s*|\s*)\/?>/', $html, $tags); /* From Squirrelmail: Translate all dangerous Unicode or Shift_JIS characters which are accepted by * IE as regular characters. */ $replace = array(array('ʟ', 'ʟ', /* L UNICODE IPA Extension */ 'ʀ', 'ʀ', /* R UNICODE IPA Extension */ 'ɴ', 'ɴ', /* N UNICODE IPA Extension */ 'E', 'E', /* Unicode FULLWIDTH LATIN CAPITAL LETTER E */ 'e', 'e', /* Unicode FULLWIDTH LATIN SMALL LETTER E */ 'X', 'X', /* Unicode FULLWIDTH LATIN CAPITAL LETTER X */ 'x', 'x', /* Unicode FULLWIDTH LATIN SMALL LETTER X */ 'P', 'P', /* Unicode FULLWIDTH LATIN CAPITAL LETTER P */ 'p', 'p', /* Unicode FULLWIDTH LATIN SMALL LETTER P */ 'R', 'R', /* Unicode FULLWIDTH LATIN CAPITAL LETTER R */ 'r', 'r', /* Unicode FULLWIDTH LATIN SMALL LETTER R */ 'S', 'S', /* Unicode FULLWIDTH LATIN CAPITAL LETTER S */ 's', 's', /* Unicode FULLWIDTH LATIN SMALL LETTER S */ 'I', 'I', /* Unicode FULLWIDTH LATIN CAPITAL LETTER I */ 'i', 'i', /* Unicode FULLWIDTH LATIN SMALL LETTER I */ 'O', 'O', /* Unicode FULLWIDTH LATIN CAPITAL LETTER O */ 'o', 'o', /* Unicode FULLWIDTH LATIN SMALL LETTER O */ 'N', 'N', /* Unicode FULLWIDTH LATIN CAPITAL LETTER N */ 'n', 'n', /* Unicode FULLWIDTH LATIN SMALL LETTER N */ 'L', 'L', /* Unicode FULLWIDTH LATIN CAPITAL LETTER L */ 'l', 'l', /* Unicode FULLWIDTH LATIN SMALL LETTER L */ 'U', 'U', /* Unicode FULLWIDTH LATIN CAPITAL LETTER U */ 'u', 'u', /* Unicode FULLWIDTH LATIN SMALL LETTER U */ 'ⁿ', 'ⁿ' , /* Unicode SUPERSCRIPT LATIN SMALL LETTER N */ "\xEF\xBC\xA5", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER E */ /* in unicode this is some Chinese char range */ "\xEF\xBD\x85", /* Shift JIS FULLWIDTH LATIN SMALL LETTER E */ "\xEF\xBC\xB8", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER X */ "\xEF\xBD\x98", /* Shift JIS FULLWIDTH LATIN SMALL LETTER X */ "\xEF\xBC\xB0", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER P */ "\xEF\xBD\x90", /* Shift JIS FULLWIDTH LATIN SMALL LETTER P */ "\xEF\xBC\xB2", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER R */ "\xEF\xBD\x92", /* Shift JIS FULLWIDTH LATIN SMALL LETTER R */ "\xEF\xBC\xB3", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER S */ "\xEF\xBD\x93", /* Shift JIS FULLWIDTH LATIN SMALL LETTER S */ "\xEF\xBC\xA9", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER I */ "\xEF\xBD\x89", /* Shift JIS FULLWIDTH LATIN SMALL LETTER I */ "\xEF\xBC\xAF", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER O */ "\xEF\xBD\x8F", /* Shift JIS FULLWIDTH LATIN SMALL LETTER O */ "\xEF\xBC\xAE", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER N */ "\xEF\xBD\x8E", /* Shift JIS FULLWIDTH LATIN SMALL LETTER N */ "\xEF\xBC\xAC", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER L */ "\xEF\xBD\x8C", /* Shift JIS FULLWIDTH LATIN SMALL LETTER L */ "\xEF\xBC\xB5", /* Shift JIS FULLWIDTH LATIN CAPITAL LETTER U */ "\xEF\xBD\x95", /* Shift JIS FULLWIDTH LATIN SMALL LETTER U */ "\xE2\x81\xBF", /* Shift JIS FULLWIDTH SUPERSCRIPT N */ "\xCA\x9F", /* L UNICODE IPA Extension */ "\xCA\x80", /* R UNICODE IPA Extension */ "\xC9\xB4"), /* N UNICODE IPA Extension */ array('l', 'l', 'r', 'r', 'n', 'n', 'E', 'E', 'e', 'e', 'X', 'X', 'x', 'x', 'P', 'P', 'p', 'p', 'R', 'R', 'r', 'r', 'S', 'S', 's', 's', 'I', 'I', 'i', 'i', 'O', 'O', 'o', 'o', 'N', 'N', 'n', 'n', 'L', 'L', 'l', 'l', 'U', 'U', 'u', 'u', 'n', 'n', 'E', 'e', 'X', 'x', 'P', 'p', 'R', 'r', 'S', 's', 'I', 'i', 'O', 'o', 'N', 'n', 'L', 'l', 'U', 'u', 'n', 'l', 'r', 'n')); if ((count($tags)>3) && (count($tags[3])>0)) foreach ($tags[3] as $nr=>$value) { /* Remove comments */ $newvalue = preg_replace('/(\/\*.*\*\/)/','$2',$value); /* Translate dangerous characters */ $newvalue = str_replace($replace[0], $replace[1], $newvalue); sq_defang($newvalue); /* Rename dangerous CSS */ $newvalue = preg_replace('/expression/i', 'idiocy', $newvalue); $newvalue = preg_replace('/url/i', 'idiocy', $newvalue); $newattrs = preg_replace('/'.preg_quote($value, '/').'$/', $newvalue, $tags[1][$nr]); $newtag = preg_replace('/'.preg_quote($tags[1][$nr], '/').'/', $newattrs, $tags[0][$nr]); $html = preg_replace('/'.preg_quote($tags[0][$nr], '/').'/', $newtag, $html); } return $html; } function rcmail_print_body($part, $safe=FALSE, $plain=FALSE) { global $IMAP, $REMOTE_OBJECTS; $body = is_array($part->replaces) ? strtr($part->body, $part->replaces) : $part->body; // convert html to text/plain if ($part->ctype_secondary=='html' && $plain) { $txt = new html2text($body, false, true); $body = $txt->get_text(); $part->ctype_secondary = 'plain'; } // text/html if ($part->ctype_secondary=='html') { // remove charset specification in HTML message $body = preg_replace('/charset=[a-z0-9\-]+/i', '', $body); if (!$safe) // remove remote images and scripts { $remote_patterns = array('/)/Ui', '/(src|background)=(["\']?)([hftps]{3,5}:\/{2}[^"\'\s]+)(\2|\s|>)/Ui', '/()/i', '/()/i', '/url\s*\(["\']?([hftps]{3,5}:\/{2}[^"\'\s]+)["\']?\)/i', '/url\s*\(["\']?([\.\/]+[^"\'\s]+)["\']?\)/i', '//Umis'); $remote_replaces = array('ctype_secondary=='enriched') { return Q(enriched_to_html($body), 'show'); } else { // make links and email-addresses clickable $convert_patterns = $convert_replaces = $replace_strings = array(); $url_chars = 'a-z0-9_\-\+\*\$\/&%=@#:;'; $url_chars_within = '\?\.~,!'; $convert_patterns[] = "/([\w]+):\/\/([a-z0-9\-\.]+[a-z]{2,4}([$url_chars$url_chars_within]*[$url_chars])?)/ie"; $convert_replaces[] = "rcmail_str_replacement('\\1://\\2', \$replace_strings)"; $convert_patterns[] = "/([^\/:]|\s)(www\.)([a-z0-9\-]{2,}[a-z]{2,4}([$url_chars$url_chars_within]*[$url_chars])?)/ie"; $convert_replaces[] = "rcmail_str_replacement('\\1\\2\\3', \$replace_strings)"; $convert_patterns[] = '/([a-z0-9][a-z0-9\-\.\+\_]*@[a-z0-9]([a-z0-9\-][.]?)*[a-z0-9]\\.[a-z]{2,5})/ie'; $convert_replaces[] = "rcmail_str_replacement('\\1', \$replace_strings)"; // if ($part->ctype_parameters['format'] != 'flowed') // $body = wordwrap(trim($body), 80); $body = preg_replace($convert_patterns, $convert_replaces, $body); // split body into single lines $a_lines = preg_split('/\r?\n/', $body); $quote_level = 0; // colorize quoted parts for($n=0; $n+\s*)+/', $line, $regs)) { $q = strlen(preg_replace('/\s/', '', $regs[0])); $line = substr($line, strlen($regs[0])); if ($q > $quote_level) $quotation = str_repeat('
', $q - $quote_level); else if ($q < $quote_level) $quotation = str_repeat("
", $quote_level - $q); } else if ($quote_level > 0) $quotation = str_repeat("", $quote_level); $quote_level = $q; $a_lines[$n] = $quotation . Q($line, 'replace', FALSE); } // insert the links for urls and mailtos $body = preg_replace("/##string_replacement\{([0-9]+)\}##/e", "\$replace_strings[\\1]", join("\n", $a_lines)); return "
".$body."\n
"; } } // add a string to the replacement array and return a replacement string function rcmail_str_replacement($str, &$rep) { static $count = 0; $rep[$count] = stripslashes($str); return "##string_replacement{".($count++)."}##"; } function rcmail_parse_message(&$structure, $arg=array(), $recursive=FALSE) { global $IMAP; static $sa_inline_objects = array(); // arguments are: (bool)$prefer_html, (string)$get_url extract($arg); $a_attachments = array(); $a_return_parts = array(); $out = ''; $message_ctype_primary = strtolower($structure->ctype_primary); $message_ctype_secondary = strtolower($structure->ctype_secondary); // show message headers if ($recursive && is_array($structure->headers) && isset($structure->headers['subject'])) { $c = new stdClass; $c->type = 'headers'; $c->headers = &$structure->headers; $a_return_parts[] = $c; } // print body if message doesn't have multiple parts if ($message_ctype_primary=='text') { $structure->type = 'content'; $a_return_parts[] = &$structure; } // message contains alternative parts else if ($message_ctype_primary=='multipart' && $message_ctype_secondary=='alternative' && is_array($structure->parts)) { // get html/plaintext parts $plain_part = $html_part = $print_part = $related_part = NULL; foreach ($structure->parts as $p => $sub_part) { $rel_parts = $attachmnts = null; $sub_ctype_primary = strtolower($sub_part->ctype_primary); $sub_ctype_secondary = strtolower($sub_part->ctype_secondary); // check if sub part is if ($sub_ctype_primary=='text' && $sub_ctype_secondary=='plain') $plain_part = $p; else if ($sub_ctype_primary=='text' && $sub_ctype_secondary=='html') $html_part = $p; else if ($sub_ctype_primary=='text' && $sub_ctype_secondary=='enriched') $enriched_part = $p; else if ($sub_ctype_primary=='multipart' && ($sub_ctype_secondary=='related' || $sub_ctype_secondary=='mixed')) $related_part = $p; } // parse related part (alternative part could be in here) if ($related_part!==NULL) { list($rel_parts, $attachmnts) = rcmail_parse_message($structure->parts[$related_part], $arg, TRUE); $a_attachments = array_merge($a_attachments, $attachmnts); } // merge related parts if any if ($rel_parts && $prefer_html && !$html_part) $a_return_parts = array_merge($a_return_parts, $rel_parts); // choose html/plain part to print else if ($html_part!==NULL && $prefer_html) $print_part = &$structure->parts[$html_part]; else if ($enriched_part!==NULL) $print_part = &$structure->parts[$enriched_part]; else if ($plain_part!==NULL) $print_part = &$structure->parts[$plain_part]; // show message body if (is_object($print_part)) { $print_part->type = 'content'; $a_return_parts[] = $print_part; } // show plaintext warning else if ($html_part!==NULL && empty($a_return_parts)) { $c = new stdClass; $c->type = 'content'; $c->body = rcube_label('htmlmessage'); $c->ctype_primary = 'text'; $c->ctype_secondary = 'plain'; $a_return_parts[] = $c; } // add html part as attachment if ($html_part!==NULL && $structure->parts[$html_part]!==$print_part) { $html_part = &$structure->parts[$html_part]; $html_part->filename = rcube_label('htmlmessage'); $html_part->mimetype = 'text/html'; $a_attachments[] = $html_part; } } // message contains multiple parts else if (is_array($structure->parts) && !empty($structure->parts)) { for ($i=0; $iparts); $i++) { $mail_part = &$structure->parts[$i]; $primary_type = strtolower($mail_part->ctype_primary); $secondary_type = strtolower($mail_part->ctype_secondary); // multipart/alternative if ($primary_type=='multipart') { list($parts, $attachmnts) = rcmail_parse_message($mail_part, $arg, TRUE); $a_return_parts = array_merge($a_return_parts, $parts); $a_attachments = array_merge($a_attachments, $attachmnts); } // part text/[plain|html] OR message/delivery-status else if (($primary_type=='text' && ($secondary_type=='plain' || $secondary_type=='html') && $mail_part->disposition!='attachment') || ($primary_type=='message' && ($secondary_type=='delivery-status' || $secondary_type=='disposition-notification'))) { $mail_part->type = 'content'; $a_return_parts[] = $mail_part; } // part message/* else if ($primary_type=='message') { list($parts, $attachmnts) = rcmail_parse_message($mail_part, $arg, TRUE); $a_return_parts = array_merge($a_return_parts, $parts); $a_attachments = array_merge($a_attachments, $attachmnts); } // ignore "virtual" protocol parts else if ($primary_type=='protocol') continue; // part is file/attachment else if ($mail_part->disposition=='attachment' || $mail_part->disposition=='inline' || $mail_part->headers['content-id'] || (empty($mail_part->disposition) && $mail_part->filename)) { // skip apple resource forks if ($message_ctype_secondary=='appledouble' && $secondary_type=='applefile') continue; // part belongs to a related message if ($message_ctype_secondary=='related' && $mail_part->headers['content-id']) { $mail_part->content_id = preg_replace(array('/^$/'), '', $mail_part->headers['content-id']); $sa_inline_objects[] = $mail_part; } // is regular attachment else { if (!$mail_part->filename) $mail_part->filename = 'Part '.$mail_part->mime_id; $a_attachments[] = $mail_part; } } } // if this was a related part try to resolve references if ($message_ctype_secondary=='related' && sizeof($sa_inline_objects)) { $a_replaces = array(); foreach ($sa_inline_objects as $inline_object) $a_replaces['cid:'.$inline_object->content_id] = htmlspecialchars(sprintf($get_url, $inline_object->mime_id)); // add replace array to each content part // (will be applied later when part body is available) for ($i=0; $itype=='content') $a_return_parts[$i]->replaces = $a_replaces; } } } // message is single part non-text else if ($structure->filename) $a_attachments[] = $structure; return array($a_return_parts, $a_attachments); } // return table with message headers function rcmail_message_headers($attrib, $headers=NULL) { global $IMAP, $OUTPUT, $MESSAGE; static $sa_attrib; // keep header table attrib if (is_array($attrib) && !$sa_attrib) $sa_attrib = $attrib; else if (!is_array($attrib) && is_array($sa_attrib)) $attrib = $sa_attrib; if (!isset($MESSAGE)) return FALSE; // get associative array of headers object if (!$headers) $headers = is_object($MESSAGE['headers']) ? get_object_vars($MESSAGE['headers']) : $MESSAGE['headers']; $header_count = 0; // allow the following attributes to be added to the tag $attrib_str = create_attrib_string($attrib, array('style', 'class', 'id', 'cellpadding', 'cellspacing', 'border', 'summary')); $out = '\n"; // show these headers $standard_headers = array('subject', 'from', 'organization', 'to', 'cc', 'bcc', 'reply-to', 'date'); foreach ($standard_headers as $hkey) { if (!$headers[$hkey]) continue; if ($hkey=='date' && !empty($headers[$hkey])) $header_value = format_date($headers[$hkey]); else if (in_array($hkey, array('from', 'to', 'cc', 'bcc', 'reply-to'))) $header_value = Q(rcmail_address_string($headers[$hkey], NULL, $attrib['addicon']), 'show'); else $header_value = Q(rcube_imap::decode_mime_string($headers[$hkey], $headers['charset'])); $out .= "\n\n"; $out .= '\n"; $out .= '\n"; $header_count++; } $out .= "\n
'.Q(rcube_label($hkey)).": '.$header_value."
\n\n"; return $header_count ? $out : ''; } function rcmail_message_body($attrib) { global $CONFIG, $OUTPUT, $MESSAGE, $IMAP, $GET_URL, $REMOTE_OBJECTS; if (!is_array($MESSAGE['parts']) && !$MESSAGE['body']) return ''; if (!$attrib['id']) $attrib['id'] = 'rcmailMsgBody'; $safe_mode = $MESSAGE['is_safe'] || intval($_GET['_safe']); $attrib_str = create_attrib_string($attrib, array('style', 'class', 'id')); $out = '
\n"; $header_attrib = array(); foreach ($attrib as $attr => $value) if (preg_match('/^headertable([a-z]+)$/i', $attr, $regs)) $header_attrib[$regs[1]] = $value; // this is an ecrypted message // -> create a plaintext body with the according message if (!sizeof($MESSAGE['parts']) && $MESSAGE['headers']->ctype=='multipart/encrypted') { $p = new stdClass; $p->type = 'content'; $p->ctype_primary = 'text'; $p->ctype_secondary = 'plain'; $p->body = rcube_label('encryptedmessage'); $MESSAGE['parts'][0] = $p; } if ($MESSAGE['parts']) { foreach ($MESSAGE['parts'] as $i => $part) { if ($part->type=='headers') $out .= rcmail_message_headers(sizeof($header_attrib) ? $header_attrib : NULL, $part->headers); else if ($part->type=='content') { if (empty($part->ctype_parameters) || empty($part->ctype_parameters['charset'])) $part->ctype_parameters['charset'] = $MESSAGE['headers']->charset; // fetch part if not available if (!isset($part->body)) $part->body = $IMAP->get_message_part($MESSAGE['UID'], $part->mime_id, $part); $body = rcmail_print_body($part, $safe_mode, !$CONFIG['prefer_html']); $out .= '
'; if ($part->ctype_secondary != 'plain') $out .= rcmail_sanitize_html($body, $attrib['id']); else $out .= $body; $out .= "
\n"; } } } else $out .= $MESSAGE['body']; $ctype_primary = strtolower($MESSAGE['structure']->ctype_primary); $ctype_secondary = strtolower($MESSAGE['structure']->ctype_secondary); // list images after mail body if (get_boolean($attrib['showimages']) && $ctype_primary=='multipart' && !empty($MESSAGE['attachments']) && !strstr($message_body, 'mimetype, 'image/')===0) $out .= sprintf("\n
\n

\"%s\"

\n", htmlspecialchars($GET_URL), $attach_prop->mime_id, $attach_prop->filename, $attach_prop->filename); } } // tell client that there are blocked remote objects if ($REMOTE_OBJECTS && !$safe_mode) $OUTPUT->set_env('blockedobjects', true); $out .= "\n
"; return $out; } // modify a HTML message that it can be displayed inside a HTML page function rcmail_sanitize_html($body, $container_id) { // remove any null-byte characters before parsing $body = preg_replace('/\x00/', '', $body); $base_url = ""; $last_style_pos = 0; $body_lc = strtolower($body); // check for if (preg_match(($base_reg = '/()/i'), $body, $base_regs)) $base_url = $base_regs[2]; // find STYLE tags while (($pos = strpos($body_lc, '', $pos))) { $pos = strpos($body_lc, '>', $pos)+1; // replace all css definitions with #container [def] $styles = rcmail_mod_css_styles(substr($body, $pos, $pos2-$pos), $container_id, $base_url); $body = substr($body, 0, $pos) . $styles . substr($body, $pos2); $body_lc = strtolower($body); $last_style_pos = $pos2; } // remove SCRIPT tags foreach (array('script', 'applet', 'object', 'embed', 'iframe') as $tag) { while (($pos = strpos($body_lc, '<'.$tag)) && (($pos2 = strpos($body_lc, '', $pos)) || ($pos3 = strpos($body_lc, '>', $pos)))) { $end = $pos2 ? $pos2 + strlen('') : $pos3 + 1; $body = substr($body, 0, $pos) . substr($body, $end, strlen($body)-$end); $body_lc = strtolower($body); } } // replace event handlers on any object while ($body != $prev_body) { $prev_body = $body; $body = preg_replace('/(<[^!][^>]*\s)on(?:load|unload|click|dblclick|mousedown|mouseup|mouseover|mousemove|mouseout|focus|blur|keypress|keydown|keyup|submit|reset|select|change)=([^>]+>)/im', '$1__removed=$2', $body); $body = preg_replace('/(<[^!][^>]*\shref=["\']?)(javascript:)([^>]*?>)/im', '$1null:$3', $body); } // resolve if ($base_url) { $body = preg_replace('/(src|background|href)=(["\']?)([\.\/]+[^"\'\s]+)(\2|\s|>)/Uie', "'\\1=\"'.make_absolute_url('\\3', '$base_url').'\"'", $body); $body = preg_replace('/(url\s*\()(["\']?)([\.\/]+[^"\'\)\s]+)(\2)\)/Uie', "'\\1\''.make_absolute_url('\\3', '$base_url').'\')'", $body); $body = preg_replace($base_reg, '', $body); } // modify HTML links to open a new window if clicked $body = preg_replace('/<(a|link)\s+([^>]+)>/Uie', "rcmail_alter_html_link('\\1','\\2', '$container_id');", $body); // add comments arround html and other tags $out = preg_replace(array( '/(]*>)/i', '/(<\?xml[^>]*>)/i', '/(<\/?html[^>]*>)/i', '/(<\/?head[^>]*>)/i', '/(]*>.*<\/title>)/Ui', '/(<\/?meta[^>]*>)/i'), '', $body); $out = preg_replace( array( '/]*)>/i', '/<\/body>/i', ), array( '
', '
', ), $out); // quote /'), array('<?', '?>'), $out); return $out; } // parse link attributes and set correct target function rcmail_alter_html_link($tag, $attrs, $container_id) { $in = preg_replace('/=([^("|\'|\s)]+)(\s|$)/', '="\1"', $in); $attrib = parse_attrib_string($attrs); if ($tag == 'link' && preg_match('/^https?:\/\//i', $attrib['href'])) $attrib['href'] = "./bin/modcss.php?u=" . urlencode($attrib['href']) . "&c=" . urlencode($container_id); else if (stristr((string)$attrib['href'], 'mailto:')) $attrib['onclick'] = sprintf( "return %s.command('compose','%s',this)", JS_OBJECT_NAME, JQ(substr($attrib['href'], 7))); else if (!empty($attrib['href']) && $attrib['href']{0}!='#') $attrib['target'] = '_blank'; return "<$tag" . create_attrib_string($attrib, array('href','name','target','onclick','id','class','style','title','rel','type','media')) . ' />'; } function rcmail_has_html_part($message_parts) { if (!is_array($message_parts)) return FALSE; // check all message parts foreach ($message_parts as $pid => $part) { $mimetype = strtolower($part->ctype_primary.'/'.$part->ctype_secondary); if ($mimetype=='text/html') { return TRUE; } } return FALSE; } // return first HTML part of a message function rcmail_first_html_part($message_struct) { global $IMAP; if (!is_array($message_struct['parts'])) return FALSE; $html_part = NULL; // check all message parts foreach ($message_struct['parts'] as $pid => $part) { $mimetype = strtolower($part->ctype_primary.'/'.$part->ctype_secondary); if ($mimetype=='text/html') { $html_part = $IMAP->get_message_part($message_struct['UID'], $pid, $part); } } if ($html_part) { // remove special chars encoding //$trans = array_flip(get_html_translation_table(HTML_ENTITIES)); //$html_part = strtr($html_part, $trans); return $html_part; } return FALSE; } // return first text part of a message function rcmail_first_text_part($message_struct) { global $IMAP; if (empty($message_struct['parts'])) return $message_struct['UID'] ? $IMAP->get_body($message_struct['UID']) : false; // check all message parts foreach ($message_struct['parts'] as $pid => $part) { $mimetype = strtolower($part->ctype_primary.'/'.$part->ctype_secondary); if ($mimetype=='text/plain') return $IMAP->get_message_part($message_struct['UID'], $pid, $part); else if ($mimetype=='text/html') { $html_part = $IMAP->get_message_part($message_struct['UID'], $pid, $part); // remove special chars encoding $trans = array_flip(get_html_translation_table(HTML_ENTITIES)); $html_part = strtr($html_part, $trans); // create instance of html2text class $txt = new html2text($html_part); return $txt->get_text(); } } return FALSE; } // decode address string and re-format it as HTML links function rcmail_address_string($input, $max=NULL, $addicon=NULL) { global $IMAP, $PRINT_MODE, $CONFIG, $OUTPUT, $EMAIL_ADDRESS_PATTERN; $a_parts = $IMAP->decode_address_list($input); if (!sizeof($a_parts)) return $input; $c = count($a_parts); $j = 0; $out = ''; foreach ($a_parts as $part) { $j++; if ($PRINT_MODE) $out .= sprintf('%s <%s>', Q($part['name']), $part['mailto']); else if (preg_match($EMAIL_ADDRESS_PATTERN, $part['mailto'])) { $out .= sprintf('%s', Q($part['mailto']), JS_OBJECT_NAME, JQ($part['mailto']), Q($part['mailto']), Q($part['name'])); if ($addicon) $out .= sprintf(' add', JS_OBJECT_NAME, urlencode($part['string']), rcube_label('addtoaddressbook'), $CONFIG['skin_path'], $addicon); } else { if ($part['name']) $out .= Q($part['name']); if ($part['mailto']) $out .= (strlen($out) ? ' ' : '') . sprintf('<%s>', Q($part['mailto'])); } if ($c>$j) $out .= ','.($max ? ' ' : ' '); if ($max && $j==$max && $c>$j) { $out .= '...'; break; } } return $out; } function rcmail_message_part_controls() { global $CONFIG, $IMAP, $MESSAGE; $part = asciiwords(get_input_value('_part', RCUBE_INPUT_GPC)); if (!is_array($MESSAGE) || !is_array($MESSAGE['parts']) || !($_GET['_uid'] && $_GET['_part']) || !$MESSAGE['parts'][$part]) return ''; $part = $MESSAGE['parts'][$part]; $attrib_str = create_attrib_string($attrib, array('id', 'class', 'style', 'cellspacing', 'cellpadding', 'border', 'summary')); $out = '\n"; if ($part->filename) { $out .= sprintf(''."\n", Q(rcube_label('filename')), Q($part->filename), str_replace('_frame=', '_download=', $_SERVER['QUERY_STRING']), Q(rcube_label('download'))); } if ($part->size) $out .= sprintf(''."\n", Q(rcube_label('filesize')), show_bytes($part->size)); $out .= "\n
%s%s[%s]
%s%s
"; return $out; } function rcmail_message_part_frame($attrib) { global $MESSAGE; $part = $MESSAGE['parts'][asciiwords(get_input_value('_part', RCUBE_INPUT_GPC))]; $ctype_primary = strtolower($part->ctype_primary); $attrib['src'] = Q('./?'.str_replace('_frame=', ($ctype_primary=='text' ? '_show=' : '_preload='), $_SERVER['QUERY_STRING'])); $attrib_str = create_attrib_string($attrib, array('id', 'class', 'style', 'src', 'width', 'height')); $out = '"; return $out; } // clear message composing settings function rcmail_compose_cleanup() { if (!isset($_SESSION['compose'])) return; // remove attachment files from temp dir if (is_array($_SESSION['compose']['attachments'])) foreach ($_SESSION['compose']['attachments'] as $attachment) @unlink($attachment['path']); unset($_SESSION['compose']); } /** * Send the given message compose object using the configured method */ function rcmail_deliver_message(&$message, $from, $mailto) { global $CONFIG; $headers = $message->headers(); $msg_body = $message->get(); // send thru SMTP server using custom SMTP library if ($CONFIG['smtp_server']) { // generate list of recipients $a_recipients = array($mailto); if (strlen($headers['Cc'])) $a_recipients[] = $headers['Cc']; if (strlen($headers['Bcc'])) $a_recipients[] = $headers['Bcc']; // clean Bcc from header for recipients $send_headers = $headers; unset($send_headers['Bcc']); // send message $smtp_response = array(); $sent = smtp_mail($from, $a_recipients, ($foo = $message->txtHeaders($send_headers)), $msg_body, $smtp_response); // log error if (!$sent) raise_error(array('code' => 800, 'type' => 'smtp', 'line' => __LINE__, 'file' => __FILE__, 'message' => "SMTP error: ".join("\n", $smtp_response)), TRUE, FALSE); } // send mail using PHP's mail() function else { // unset some headers because they will be added by the mail() function $headers_enc = $message->headers($headers); $headers_php = $message->_headers; unset($headers_php['To'], $headers_php['Subject']); // reset stored headers and overwrite $message->_headers = array(); $header_str = $message->txtHeaders($headers_php); if (ini_get('safe_mode')) $sent = mail($headers_enc['To'], $headers_enc['Subject'], $msg_body, $header_str); else $sent = mail($headers_enc['To'], $headers_enc['Subject'], $msg_body, $header_str, "-f$from"); } if ($sent) // remove MDN headers after sending unset($headers['Return-Receipt-To'], $headers['Disposition-Notification-To']); $message->_headers = array(); $message->headers($headers); return $sent; } function rcmail_send_mdn($uid) { global $CONFIG, $USER, $IMAP; $message = array('UID' => $uid); $message['headers'] = $IMAP->get_headers($message['UID']); $message['subject'] = rcube_imap::decode_mime_string($message['headers']->subject, $message['headers']->charset); if ($message['headers']->mdn_to && !$message['headers']->mdn_sent) { $identity = $USER->get_identity(); $sender = format_email_recipient($identity['email'], $identity['name']); $recipient = array_shift($IMAP->decode_address_list($message['headers']->mdn_to)); $mailto = $recipient['mailto']; $compose = new rc_mail_mime(rcmail_header_delm()); $compose->setParam(array( 'text_encoding' => 'quoted-printable', 'html_encoding' => 'quoted-printable', 'head_encoding' => 'quoted-printable', 'head_charset' => RCMAIL_CHARSET, 'html_charset' => RCMAIL_CHARSET, 'text_charset' => RCMAIL_CHARSET, )); // compose headers array $headers = array( 'Date' => date('r'), 'From' => $sender, 'To' => $message['headers']->mdn_to, 'Subject' => rcube_label('receiptread') . ': ' . $message['subject'], 'Message-ID' => sprintf('<%s@%s>', md5(uniqid('rcmail'.rand(),true)), rcmail_mail_domain($_SESSION['imap_host'])), 'X-Sender' => $identity['email'], 'Content-Type' => 'multipart/report; report-type=disposition-notification', ); if (!empty($CONFIG['useragent'])) $headers['User-Agent'] = $CONFIG['useragent']; $body = rcube_label("yourmessage") . "\r\n\r\n" . "\t" . rcube_label("to") . ': ' . rcube_imap::decode_mime_string($message['headers']->to, $message['headers']->charset) . "\r\n" . "\t" . rcube_label("subject") . ': ' . $message['subject'] . "\r\n" . "\t" . rcube_label("sent") . ': ' . format_date($message['headers']->date, $CONFIG['date_long']) . "\r\n" . "\r\n" . rcube_label("receiptnote") . "\r\n"; $ua = !empty($CONFIG['useragent']) ? $CONFIG['useragent'] : "RoundCube Webmail (Version ".RCMAIL_VERSION.")"; $report = "Reporting-UA: $ua\r\n"; if ($message['headers']->to) $report .= "Original-Recipient: {$message['headers']->to}\r\n"; $report .= "Final-Recipient: rfc822; {$identity['email']}\r\n" . "Original-Message-ID: {$message['headers']->messageID}\r\n" . "Disposition: manual-action/MDN-sent-manually; displayed\r\n"; $compose->headers($headers, true); $compose->setTXTBody($body); $compose->addAttachment($report, 'message/disposition-notification', 'MDNPart2.txt', false, '7bit', 'inline'); $sent = rcmail_deliver_message($compose, $identity['email'], $mailto); if ($sent) { $IMAP->set_flag($message['UID'], 'MDNSENT'); return true; } } return false; } // register UI objects $OUTPUT->add_handlers(array( 'mailboxlist' => 'rcmail_mailbox_list', 'messages' => 'rcmail_message_list', 'messagecountdisplay' => 'rcmail_messagecount_display', 'quotadisplay' => 'rcmail_quota_display', 'messageheaders' => 'rcmail_message_headers', 'messagebody' => 'rcmail_message_body', 'messagecontentframe' => 'rcmail_messagecontent_frame', 'messagepartframe' => 'rcmail_message_part_frame', 'messagepartcontrols' => 'rcmail_message_part_controls', 'searchform' => array($OUTPUT, 'search_form'), )); ?>