PageRenderTime 44ms CodeModel.GetById 19ms RepoModel.GetById 0ms app.codeStats 0ms

/include/email.php

https://bitbucket.org/gencer/fluxbb
PHP | 364 lines | 240 code | 68 blank | 56 comment | 41 complexity | 615bda34f9a4a024a0966b6a7b6161e3 MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Copyright (C) 2008-2012 FluxBB
    5. 

  5.  * based on code by Rickard Andersson copyright (C) 2002-2008 PunBB
    6. 

  6.  * License: http://www.gnu.org/licenses/gpl.html GPL version 2 or higher
    7. 

  7.  */
    8. 

  8. 

  9. // Make sure no one attempts to run this script "directly"
    10. 

  10. if (!defined('PUN'))
    11. 

  11. 	exit;
    12. 

  12. 

  13. // Define line breaks in mail headers; possible values can be PHP_EOL, "\r\n", "\n" or "\r"
    14. 

  14. if (!defined('FORUM_EOL'))
    15. 

  15. 	define('FORUM_EOL', PHP_EOL);
    16. 

  16. 

  17. require PUN_ROOT.'include/utf8/utils/ascii.php';
    18. 

  18. 

  19. //
    20. 

  20. // Validate an email address
    21. 

  21. //
    22. 

  22. function is_valid_email($email)
    23. 

  23. {
    24. 

  24. 	if (strlen($email) > 80)
    25. 

  25. 		return false;
    26. 

  26. 

  27. 	return preg_match('%^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|("[^"]+"))@((\[\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\])|(([a-zA-Z\d\-]+\.)+[a-zA-Z]{2,}))$%', $email);
    28. 

  28. }
    29. 

  29. 

  30. 

  31. //
    32. 

  32. // Check if $email is banned
    33. 

  33. //
    34. 

  34. function is_banned_email($email)
    35. 

  35. {
    36. 

  36. 	global $pun_bans;
    37. 

  37. 

  38. 	foreach ($pun_bans as $cur_ban)
    39. 

  39. 	{
    40. 

  40. 		if ($cur_ban['email'] != '' &&
    41. 

  41. 			($email == $cur_ban['email'] ||
    42. 

  42. 			(strpos($cur_ban['email'], '@') === false && stristr($email, '@'.$cur_ban['email']))))
    43. 

  43. 			return true;
    44. 

  44. 	}
    45. 

  45. 

  46. 	return false;
    47. 

  47. }
    48. 

  48. 

  49. 

  50. //
    51. 

  51. // Only encode with base64, if there is at least one unicode character in the string
    52. 

  52. //
    53. 

  53. function encode_mail_text($str)
    54. 

  54. {
    55. 

  55. 	if (utf8_is_ascii($str))
    56. 

  56. 		return $str;
    57. 

  57. 

  58. 	return '=?UTF-8?B?'.base64_encode($str).'?=';
    59. 

  59. }
    60. 

  60. 

  61. 

  62. //
    63. 

  63. // Make a post email safe
    64. 

  64. //
    65. 

  65. function bbcode2email($text, $wrap_length = 72)
    66. 

  66. {
    67. 

  67. 	static $base_url;
    68. 

  68. 

  69. 	if (!isset($base_url))
    70. 

  70. 		$base_url = get_base_url();
    71. 

  71. 

  72. 	$text = pun_trim($text, "\t\n ");
    73. 

  73. 

  74. 	$shortcut_urls = array(
    75. 

  75. 		'topic' => '/viewtopic.php?id=$1',
    76. 

  76. 		'post' => '/viewtopic.php?pid=$1#p$1',
    77. 

  77. 		'forum' => '/viewforum.php?id=$1',
    78. 

  78. 		'user' => '/profile.php?id=$1',
    79. 

  79. 	);
    80. 

  80. 

  81. 	// Split code blocks and text so BBcode in codeblocks won't be touched
    82. 

  82. 	list($code, $text) = extract_blocks($text, '[code]', '[/code]');
    83. 

  83. 

  84. 	// Strip all bbcodes, except the quote, url, img, email, code and list items bbcodes
    85. 

  85. 	$text = preg_replace(array(
    86. 

  86. 		'%\[/?(?!(?:quote|url|topic|post|user|forum|img|email|code|list|\*))[a-z]+(?:=[^\]]+)?\]%i',
    87. 

  87. 		'%\n\[/?list(?:=[^\]]+)?\]%i' // A separate regex for the list tags to get rid of some whitespace
    88. 

  88. 	), '', $text);
    89. 

  89. 

  90. 	// Match the deepest nested bbcode
    91. 

  91. 	// An adapted example from Mastering Regular Expressions
    92. 

  92. 	$match_quote_regex = '%
    93. 

  93. 		\[(quote|\*|url|img|email|topic|post|user|forum)(?:=([^\]]+))?\]
    94. 

  94. 		(
    95. 

  95. 			(?>[^\[]*)
    96. 

  96. 			(?>
    97. 

  97. 				(?!\[/?\1(?:=[^\]]+)?\])
    98. 

  98. 				\[
    99. 

  99. 				[^\[]*
    100. 

  100. 			)*
    101. 

  101. 		)
    102. 

  102. 		\[/\1\]
    103. 

  103. 	%ix';
    104. 

    105. 

  105. 	$url_index = 1;
    106. 

  106. 	$url_stack = array();
    107. 

  107. 	while (preg_match($match_quote_regex, $text, $matches))
    108. 

  108. 	{
    109. 

  109. 		// Quotes
    110. 

  110. 		if ($matches[1] == 'quote')
    111. 

  111. 		{
    112. 

  112. 			// Put '>' or '> ' at the start of a line
    113. 

  113. 			$replacement = preg_replace(
    114. 

  114. 				array('%^(?=\>)%m', '%^(?!\>)%m'),
    115. 

  115. 				array('>', '> '),
    116. 

  116. 				$matches[2]." said:\n".$matches[3]);
    117. 

  117. 		}
    118. 

  118. 

  119. 		// List items
    120. 

  120. 		elseif ($matches[1] == '*')
    121. 

  121. 		{
    122. 

  122. 			$replacement = ' * '.$matches[3];
    123. 

  123. 		}
    124. 

  124. 

  125. 		// URLs and emails
    126. 

  126. 		elseif (in_array($matches[1], array('url', 'email')))
    127. 

  127. 		{
    128. 

  128. 			if (!empty($matches[2]))
    129. 

  129. 			{
    130. 

  130. 				$replacement = '['.$matches[3].']['.$url_index.']';
    131. 

  131. 				$url_stack[$url_index] = $matches[2];
    132. 

  132. 				$url_index++;
    133. 

  133. 			}
    134. 

  134. 			else
    135. 

  135. 				$replacement = '['.$matches[3].']';
    136. 

  136. 		}
    137. 

  137. 

  138. 		// Images
    139. 

  139. 		elseif ($matches[1] == 'img')
    140. 

  140. 		{
    141. 

  141. 			if (!empty($matches[2]))
    142. 

  142. 				$replacement = '['.$matches[2].']['.$url_index.']';
    143. 

  143. 			else
    144. 

  144. 				$replacement = '['.basename($matches[3]).']['.$url_index.']';
    145. 

  145. 

  146. 			$url_stack[$url_index] = $matches[3];
    147. 

  147. 			$url_index++;
    148. 

  148. 		}
    149. 

  149. 

  150. 		// Topic, post, forum and user URLs
    151. 

  151. 		elseif (in_array($matches[1], array('topic', 'post', 'forum', 'user')))
    152. 

  152. 		{
    153. 

  153. 			$url = isset($shortcut_urls[$matches[1]]) ? $base_url.$shortcut_urls[$matches[1]] : '';
    154. 

  154. 

  155. 			if (!empty($matches[2]))
    156. 

  156. 			{
    157. 

  157. 				$replacement = '['.$matches[3].']['.$url_index.']';
    158. 

  158. 				$url_stack[$url_index] = str_replace('$1', $matches[2], $url);
    159. 

  159. 				$url_index++;
    160. 

  160. 			}
    161. 

  161. 			else
    162. 

  162. 				$replacement = '['.str_replace('$1', $matches[3], $url).']';
    163. 

  163. 		}
    164. 

  164. 

  165. 		// Update the main text if there is a replacement
    166. 

  166. 		if (!is_null($replacement))
    167. 

  167. 		{
    168. 

  168. 			$text = str_replace($matches[0], $replacement, $text);
    169. 

  169. 			$replacement = null;
    170. 

  170. 		}
    171. 

  171. 	}
    172. 

  172. 

  173. 	// Put code blocks and text together
    174. 

  174. 	if (isset($code))
    175. 

  175. 	{
    176. 

  176. 		$parts = explode("\1", $text);
    177. 

  177. 		$text = '';
    178. 

  178. 		foreach ($parts as $i => $part)
    179. 

  179. 		{
    180. 

  180. 			$text .= $part;
    181. 

  181. 			if (isset($code[$i]))
    182. 

  182. 				$text .= trim($code[$i], "\n\r");
    183. 

  183. 		}
    184. 

  184. 	}
    185. 

  185. 

  186. 	// Put URLs at the bottom
    187. 

  187. 	if ($url_stack)
    188. 

  188. 	{
    189. 

  189. 		$text .= "\n\n";
    190. 

  190. 		foreach ($url_stack as $i => $url)
    191. 

  191. 			$text .= "\n".' ['.$i.']: '.$url;
    192. 

  192. 	}
    193. 

  193. 

  194. 	// Wrap lines if $wrap_length is higher than -1
    195. 

  195. 	if ($wrap_length > -1)
    196. 

  196. 	{
    197. 

  197. 		// Split all lines and wrap them individually
    198. 

  198. 		$parts = explode("\n", $text);
    199. 

  199. 		foreach ($parts as $k => $part)
    200. 

  200. 		{
    201. 

  201. 			preg_match('%^(>+ )?(.*)%', $part, $matches);
    202. 

  202. 			$parts[$k] = wordwrap($matches[1].$matches[2], $wrap_length -
    203. 

  203. 				strlen($matches[1]), "\n".$matches[1]);
    204. 

  204. 		}
    205. 

  205. 

  206. 		return implode("\n", $parts);
    207. 

  207. 	}
    208. 

  208. 	else
    209. 

  209. 		return $text;
    210. 

  210. }
    211. 

  211. 

  212. 

  213. //
    214. 

  214. // Wrapper for PHP's mail()
    215. 

  215. //
    216. 

  216. function pun_mail($to, $subject, $message, $reply_to_email = '', $reply_to_name = '')
    217. 

  217. {
    218. 

  218. 	global $pun_config, $lang_common;
    219. 

  219. 

  220. 	// Use \r\n for SMTP servers, the system's line ending for local mailers
    221. 

  221. 	$smtp = $pun_config['o_smtp_host'] != '';
    222. 

  222. 	$EOL = $smtp ? "\r\n" : FORUM_EOL;
    223. 

  223. 

  224. 	// Default sender/return address
    225. 

  225. 	$from_name = sprintf($lang_common['Mailer'], $pun_config['o_board_title']);
    226. 

  226. 	$from_email = $pun_config['o_webmaster_email'];
    227. 

  227. 

  228. 	// Do a little spring cleaning
    229. 

  229. 	$to = pun_trim(preg_replace('%[\n\r]+%s', '', $to));
    230. 

  230. 	$subject = pun_trim(preg_replace('%[\n\r]+%s', '', $subject));
    231. 

  231. 	$from_email = pun_trim(preg_replace('%[\n\r:]+%s', '', $from_email));
    232. 

  232. 	$from_name = pun_trim(preg_replace('%[\n\r:]+%s', '', str_replace('"', '', $from_name)));
    233. 

  233. 	$reply_to_email = pun_trim(preg_replace('%[\n\r:]+%s', '', $reply_to_email));
    234. 

  234. 	$reply_to_name = pun_trim(preg_replace('%[\n\r:]+%s', '', str_replace('"', '', $reply_to_name)));
    235. 

  235. 

  236. 	// Set up some headers to take advantage of UTF-8
    237. 

  237. 	$from = '"'.encode_mail_text($from_name).'" <'.$from_email.'>';
    238. 

  238. 	$subject = encode_mail_text($subject);
    239. 

  239. 

  240. 	$headers = 'From: '.$from.$EOL.'Date: '.gmdate('r').$EOL.'MIME-Version: 1.0'.$EOL.'Content-transfer-encoding: 8bit'.$EOL.'Content-type: text/plain; charset=utf-8'.$EOL.'X-Mailer: FluxBB Mailer';
    241. 

  241. 

  242. 	// If we specified a reply-to email, we deal with it here
    243. 

  243. 	if (!empty($reply_to_email))
    244. 

  244. 	{
    245. 

  245. 		$reply_to = '"'.encode_mail_text($reply_to_name).'" <'.$reply_to_email.'>';
    246. 

  246. 

  247. 		$headers .= $EOL.'Reply-To: '.$reply_to;
    248. 

  248. 	}
    249. 

  249. 

  250. 	// Make sure all linebreaks are LF in message (and strip out any NULL bytes)
    251. 

  251. 	$message = str_replace("\0", '', pun_linebreaks($message));
    252. 

  252. 	$message = str_replace("\n", $EOL, $message);
    253. 

  253. 	
    254. 

  254. 	$mailer = $smtp ? 'smtp_mail' : 'mail';
    255. 

  255. 	$mailer($to, $subject, $message, $headers);
    256. 

  256. }
    257. 

  257. 

  258. 

  259. //
    260. 

  260. // This function was originally a part of the phpBB Group forum software phpBB2 (http://www.phpbb.com)
    261. 

  261. // They deserve all the credit for writing it. I made small modifications for it to suit PunBB and its coding standards
    262. 

  262. //
    263. 

  263. function server_parse($socket, $expected_response)
    264. 

  264. {
    265. 

  265. 	$server_response = '';
    266. 

  266. 	while (substr($server_response, 3, 1) != ' ')
    267. 

  267. 	{
    268. 

  268. 		if (!($server_response = fgets($socket, 256)))
    269. 

  269. 			error('Couldn\'t get mail server response codes. Please contact the forum administrator.', __FILE__, __LINE__);
    270. 

  270. 	}
    271. 

  271. 

  272. 	if (!(substr($server_response, 0, 3) == $expected_response))
    273. 

  273. 		error('Unable to send email. Please contact the forum administrator with the following error message reported by the SMTP server: "'.$server_response.'"', __FILE__, __LINE__);
    274. 

  274. }
    275. 

  275. 

  276. 

  277. //
    278. 

  278. // This function was originally a part of the phpBB Group forum software phpBB2 (http://www.phpbb.com)
    279. 

  279. // They deserve all the credit for writing it. I made small modifications for it to suit PunBB and its coding standards.
    280. 

  280. //
    281. 

  281. function smtp_mail($to, $subject, $message, $headers = '')
    282. 

  282. {
    283. 

  283. 	global $pun_config;
    284. 

  284. 	static $local_host;
    285. 

  285. 

  286. 	$recipients = explode(',', $to);
    287. 

  287. 

  288. 	// Sanitize the message
    289. 

  289. 	$message = str_replace("\r\n.", "\r\n..", $message);
    290. 

  290. 	$message = (substr($message, 0, 1) == '.' ? '.'.$message : $message);
    291. 

  291. 

  292. 	// Are we using port 25 or a custom port?
    293. 

  293. 	if (strpos($pun_config['o_smtp_host'], ':') !== false)
    294. 

  294. 		list($smtp_host, $smtp_port) = explode(':', $pun_config['o_smtp_host']);
    295. 

  295. 	else
    296. 

  296. 	{
    297. 

  297. 		$smtp_host = $pun_config['o_smtp_host'];
    298. 

  298. 		$smtp_port = 25;
    299. 

  299. 	}
    300. 

  300. 

  301. 	if ($pun_config['o_smtp_ssl'] == '1')
    302. 

  302. 		$smtp_host = 'ssl://'.$smtp_host;
    303. 

  303. 

  304. 	if (!($socket = fsockopen($smtp_host, $smtp_port, $errno, $errstr, 15)))
    305. 

  305. 		error('Could not connect to smtp host "'.$pun_config['o_smtp_host'].'" ('.$errno.') ('.$errstr.')', __FILE__, __LINE__);
    306. 

  306. 

  307. 	server_parse($socket, '220');
    308. 

  308. 

  309. 	if (!isset($local_host))
    310. 

  310. 	{
    311. 

  311. 		// Here we try to determine the *real* hostname (reverse DNS entry preferably)
    312. 

  312. 		$local_host = php_uname('n');
    313. 

  313. 

  314. 		// Able to resolve name to IP
    315. 

  315. 		if (($local_addr = @gethostbyname($local_host)) !== $local_host)
    316. 

  316. 		{
    317. 

  317. 			// Able to resolve IP back to name
    318. 

  318. 			if (($local_name = @gethostbyaddr($local_addr)) !== $local_addr)
    319. 

  319. 				$local_host = $local_name;
    320. 

  320. 		}
    321. 

  321. 	}
    322. 

  322. 

  323. 	if ($pun_config['o_smtp_user'] != '' && $pun_config['o_smtp_pass'] != '')
    324. 

  324. 	{
    325. 

  325. 		fwrite($socket, 'EHLO '.$local_host."\r\n");
    326. 

  326. 		server_parse($socket, '250');
    327. 

  327. 

  328. 		fwrite($socket, 'AUTH LOGIN'."\r\n");
    329. 

  329. 		server_parse($socket, '334');
    330. 

  330. 

  331. 		fwrite($socket, base64_encode($pun_config['o_smtp_user'])."\r\n");
    332. 

  332. 		server_parse($socket, '334');
    333. 

  333. 

  334. 		fwrite($socket, base64_encode($pun_config['o_smtp_pass'])."\r\n");
    335. 

  335. 		server_parse($socket, '235');
    336. 

  336. 	}
    337. 

  337. 	else
    338. 

  338. 	{
    339. 

  339. 		fwrite($socket, 'HELO '.$local_host."\r\n");
    340. 

  340. 		server_parse($socket, '250');
    341. 

  341. 	}
    342. 

  342. 

  343. 	fwrite($socket, 'MAIL FROM: <'.$pun_config['o_webmaster_email'].'>'."\r\n");
    344. 

  344. 	server_parse($socket, '250');
    345. 

  345. 

  346. 	foreach ($recipients as $email)
    347. 

  347. 	{
    348. 

  348. 		fwrite($socket, 'RCPT TO: <'.$email.'>'."\r\n");
    349. 

  349. 		server_parse($socket, '250');
    350. 

  350. 	}
    351. 

  351. 

  352. 	fwrite($socket, 'DATA'."\r\n");
    353. 

  353. 	server_parse($socket, '354');
    354. 

  354. 

  355. 	fwrite($socket, 'Subject: '.$subject."\r\n".'To: <'.implode('>, <', $recipients).'>'."\r\n".$headers."\r\n\r\n".$message."\r\n");
    356. 

  356. 

  357. 	fwrite($socket, '.'."\r\n");
    358. 

  358. 	server_parse($socket, '250');
    359. 

  359. 

  360. 	fwrite($socket, 'QUIT'."\r\n");
    361. 

  361. 	fclose($socket);
    362. 

  362. 

  363. 	return true;
    364. 

  364. }
    365. 

  365.