/admin/mail.php
PHP | 276 lines | 234 code | 18 blank | 24 comment | 24 complexity | db2e1b5ed65000939c6e44c9f8453789 MD5 | raw file
Possible License(s): AGPL-1.0
- <?php
- /* --------------------------------------------------------------
- $Id: mail.php 955 2005-05-19 09:58:02Z novalis $
- XT-Commerce - community made shopping
- http://www.xt-commerce.com
- Copyright (c) 2003 XT-Commerce
- --------------------------------------------------------------
- based on:
- (c) 2000-2001 The Exchange Project (earlier name of osCommerce)
- (c) 2002-2003 osCommerce(mail.php,v 1.30 2002/03/16 01:07:28); www.oscommerce.com
- (c) 2003 nextcommerce (mail.php,v 1.11 2003/08/18); www.nextcommerce.org
- Released under the GNU General Public License
- --------------------------------------------------------------
- Third Party contribution:
- Customers Status v3.x (c) 2002-2003 Copyright Elari elari@free.fr | www.unlockgsm.com/dload-osc/ | CVS : http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/elari/?sortby=date#dirlist
- Released under the GNU General Public License
- --------------------------------------------------------------*/
- require('includes/application_top.php');
- require_once(DIR_FS_CATALOG.DIR_WS_CLASSES.'class.phpmailer.php');
- require_once(DIR_FS_INC . 'xtc_php_mail.inc.php');
- require_once(DIR_FS_INC . 'xtc_wysiwyg.inc.php');
- if ( ($_GET['action'] == 'send_email_to_user') && ($_POST['customers_email_address']) && (!$_POST['back_x']) ) {
- switch ($_POST['customers_email_address']) {
- case '***':
- $mail_query = xtc_db_query("select customers_firstname, customers_lastname, customers_email_address from " . TABLE_CUSTOMERS);
- $mail_sent_to = TEXT_ALL_CUSTOMERS;
- break;
- case '**D':
- $mail_query = xtc_db_query("select customers_firstname, customers_lastname, customers_email_address from " . TABLE_CUSTOMERS . " where customers_newsletter = '1'");
- $mail_sent_to = TEXT_NEWSLETTER_CUSTOMERS;
- break;
- default:
- if (is_numeric($_POST['customers_email_address'])) {
- $mail_query = xtc_db_query("select customers_firstname, customers_lastname, customers_email_address from " . TABLE_CUSTOMERS . " where customers_status = " . $_POST['customers_email_address']);
- $sent_to_query = xtc_db_query("select customers_status_name from " . TABLE_CUSTOMERS_STATUS . " WHERE customers_status_id = '" . $_POST['customers_email_address'] . "' AND language_id='" . $_SESSION['languages_id'] . "'");
- $sent_to = xtc_db_fetch_array($sent_to_query);
- $mail_sent_to = $sent_to['customers_status_name'];
- } else {
- $customers_email_address = xtc_db_prepare_input($_POST['customers_email_address']);
- $mail_query = xtc_db_query("select customers_firstname, customers_lastname, customers_email_address from " . TABLE_CUSTOMERS . " where customers_email_address = '" . xtc_db_input($customers_email_address) . "'");
- $mail_sent_to = $_POST['customers_email_address'];
- }
- break;
- }
- $from = xtc_db_prepare_input($_POST['from']);
- $subject = xtc_db_prepare_input($_POST['subject']);
- $message = xtc_db_prepare_input($_POST['message']);
- while ($mail = xtc_db_fetch_array($mail_query)) {
- xtc_php_mail(EMAIL_SUPPORT_ADDRESS,
- EMAIL_SUPPORT_NAME,
- $mail['customers_email_address'] ,
- $mail['customers_firstname'] . ' ' . $mail['customers_lastname'] ,
- '',
- EMAIL_SUPPORT_REPLY_ADDRESS,
- EMAIL_SUPPORT_REPLY_ADDRESS_NAME,
- '',
- '',
- $subject,
- $message,
- $message);
- }
- xtc_redirect(xtc_href_link(FILENAME_MAIL, 'mail_sent_to=' . urlencode($mail_sent_to)));
- }
- if ( ($_GET['action'] == 'preview') && (!$_POST['customers_email_address']) ) {
- $messageStack->add(ERROR_NO_CUSTOMER_SELECTED, 'error');
- }
- if ($_GET['mail_sent_to']) {
- $messageStack->add(sprintf(NOTICE_EMAIL_SENT_TO, $_GET['mail_sent_to']), 'notice');
- }
- ?>
- <!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN">
- <html <?php echo HTML_PARAMS; ?>>
- <?php if (USE_WYSIWYG=='true') {
- if (!isset($_GET['action'])) {
- $query=xtc_db_query("SELECT code FROM ". TABLE_LANGUAGES ." WHERE languages_id='".$_SESSION['languages_id']."'");
- $data=xtc_db_fetch_array($query);
- echo xtc_wysiwyg('mail',$data['code']);
- }
- } ?>
- <head>
- <meta http-equiv="Content-Type" content="text/html; charset=<?php echo $_SESSION['language_charset']; ?>">
- <title><?php echo TITLE; ?></title>
- <link rel="stylesheet" type="text/css" href="includes/stylesheet.css">
- </head>
- <body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0" bgcolor="#FFFFFF">
- <!-- header //-->
- <?php require(DIR_WS_INCLUDES . 'header.php'); ?>
- <!-- header_eof //-->
- <!-- body //-->
- <table border="0" width="100%" cellspacing="2" cellpadding="2">
- <tr>
- <td class="columnLeft2" width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="1" cellpadding="1" class="columnLeft">
- <!-- left_navigation //-->
- <?php require(DIR_WS_INCLUDES . 'column_left.php'); ?>
- <!-- left_navigation_eof //-->
- </table></td>
- <!-- body_text //-->
- <td width="100%" valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="0">
- <tr>
- <td width="100%"><table border="0" width="100%" cellspacing="0" cellpadding="0">
- <tr>
- <td class="pageHeading"><?php echo HEADING_TITLE; ?></td>
- <td class="pageHeading" align="right"><?php echo xtc_draw_separator('pixel_trans.gif', HEADING_IMAGE_WIDTH, HEADING_IMAGE_HEIGHT); ?></td>
- </tr>
- </table></td>
- </tr>
- <tr>
- <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
- <?php
- if ( ($_GET['action'] == 'preview') && ($_POST['customers_email_address']) ) {
- switch ($_POST['customers_email_address']) {
- case '***':
- $mail_sent_to = TEXT_ALL_CUSTOMERS;
- break;
- case '**D':
- $mail_sent_to = TEXT_NEWSLETTER_CUSTOMERS;
- break;
- default:
- if (is_numeric($_POST['customers_email_address'])) {
- echo "hier bin ich";
- $sent_to_query = xtc_db_query("select customers_status_name from " . TABLE_CUSTOMERS_STATUS . " WHERE customers_status_id = '" . $_POST['customers_email_address'] . "' AND language_id='" . $_SESSION['languages_id'] . "'");
- $sent_to = xtc_db_fetch_array($sent_to_query);
- $mail_sent_to = $sent_to['customers_status_name'];
- } else {
- $mail_sent_to = $_POST['customers_email_address'];
- }
- break;
- }
- ?>
- <tr><?php echo xtc_draw_form('mail', FILENAME_MAIL, 'action=send_email_to_user'); ?>
- <td><table border="0" width="100%" cellpadding="0" cellspacing="2">
- <tr>
- <td><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="smallText"><b><?php echo TEXT_CUSTOMER; ?></b><br /><?php echo $mail_sent_to; ?></td>
- </tr>
- <tr>
- <td><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="smallText"><b><?php echo TEXT_FROM; ?></b><br /><?php echo htmlspecialchars(stripslashes($_POST['from'])); ?></td>
- </tr>
- <tr>
- <td><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="smallText"><b><?php echo TEXT_SUBJECT; ?></b><br /><?php echo htmlspecialchars(stripslashes($_POST['subject'])); ?></td>
- </tr>
- <tr>
- <td><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="smallText"><b><?php echo TEXT_MESSAGE; ?></b><br /><?php echo nl2br(htmlspecialchars(stripslashes($_POST['message']))); ?></td>
- </tr>
- <tr>
- <td><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td><?php
- // Re-Post all POST'ed variables
- reset($_POST);
- while (list($key, $value) = each($_POST)) {
- if (!is_array($_POST[$key])) {
- echo xtc_draw_hidden_field($key, htmlspecialchars(stripslashes($value)));
- }
- }
- ?>
- <table border="0" width="100%" cellpadding="0" cellspacing="2">
- <tr>
- <td><input type="submit" class="button" onclick="return confirm('<?php echo SAVE_ENTRY; ?>')" value="<?php echo BUTTON_BACK; ?>" name="back"></td>
- <td align="right"><?php echo '<a class="button" href="' . xtc_href_link(FILENAME_MAIL) . '">' . BUTTON_CANCEL . '</a> <input type="submit" class="button" value="'.BUTTON_SEND_EMAIL.'">' ?></td>
- </tr>
- </table></td>
- </tr>
- </table></td>
- </form></tr>
- <?php
- } else {
- ?>
- <tr><?php echo xtc_draw_form('mail', FILENAME_MAIL, 'action=preview'); ?>
- <td><table border="0" cellpadding="0" cellspacing="2">
- <tr>
- <td colspan="2"><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <?php
- $customers = array();
- $customers[] = array('id' => '', 'text' => TEXT_SELECT_CUSTOMER);
- $customers[] = array('id' => '***', 'text' => TEXT_ALL_CUSTOMERS);
- $customers[] = array('id' => '**D', 'text' => TEXT_NEWSLETTER_CUSTOMERS);
- // Customers Status 1.x
- // $customers_statuses_array = xtc_get_customers_statuses();
- $customers_statuses_array = xtc_db_query("select customers_status_id , customers_status_name from " . TABLE_CUSTOMERS_STATUS . " WHERE language_id='" . $_SESSION['languages_id'] . "' order by customers_status_name");
- while ($customers_statuses_value = xtc_db_fetch_array($customers_statuses_array)) {
- $customers[] = array('id' => $customers_statuses_value['customers_status_id'],
- 'text' => $customers_statuses_value['customers_status_name']);
- }
- // End customers Status 1.x
- $mail_query = xtc_db_query("select customers_email_address, customers_firstname, customers_lastname from " . TABLE_CUSTOMERS . " order by customers_lastname");
- while($customers_values = xtc_db_fetch_array($mail_query)) {
- $customers[] = array('id' => $customers_values['customers_email_address'],
- 'text' => $customers_values['customers_lastname'] . ', ' . $customers_values['customers_firstname'] . ' (' . $customers_values['customers_email_address'] . ')');
- }
- ?>
- <tr>
- <td class="main"><?php echo TEXT_CUSTOMER; ?></td>
- <td><?php echo xtc_draw_pull_down_menu('customers_email_address', $customers, $_GET['customer']);?></td>
- </tr>
- <tr>
- <td colspan="2"><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="main"><?php echo TEXT_FROM; ?></td>
- <td><?php echo xtc_draw_input_field('from', EMAIL_FROM); ?></td>
- </tr>
- <tr>
- <td colspan="2"><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td class="main"><?php echo TEXT_SUBJECT; ?></td>
- <td><?php echo xtc_draw_input_field('subject'); ?></td>
- </tr>
- <tr>
- <td colspan="2"><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td valign="top" class="main"><?php echo TEXT_MESSAGE; ?></td>
- <td><?php echo xtc_draw_textarea_field('message', 'soft', '100%', '30'); ?></td>
- </tr>
- <tr>
- <td colspan="2"><?php echo xtc_draw_separator('pixel_trans.gif', '1', '10'); ?></td>
- </tr>
- <tr>
- <td colspan="2" align="right"><input type="submit" class="button" value="<?php echo BUTTON_SEND_EMAIL; ?>"></td>
- </tr>
- </table></td>
- </form></tr>
- <?php
- }
- ?>
- <!-- body_text_eof //-->
- </table></td>
- </tr>
- </table></td>
- </tr>
- </table>
- <!-- body_eof //-->
- <!-- footer //-->
- <?php require(DIR_WS_INCLUDES . 'footer.php'); ?>
- <!-- footer_eof //-->
- <br />
- </body>
- </html>
- <?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?>