0,0 → 1,210 |
<?php |
/*************************************************************************** |
* usercp_email.php |
* ------------------- |
* begin : Saturday, Feb 13, 2001 |
* copyright : (C) 2001 The phpBB Group |
* email : support@phpbb.com |
* |
* $Id: usercp_email.php,v 1.7.2.13 2003/06/06 18:02:15 acydburn Exp $ |
* |
* |
***************************************************************************/ |
|
/*************************************************************************** |
* |
* This program is free software; you can redistribute it and/or modify |
* it under the terms of the GNU General Public License as published by |
* the Free Software Foundation; either version 2 of the License, or |
* (at your option) any later version. |
* |
* |
***************************************************************************/ |
|
if ( !defined('IN_PHPBB') ) |
{ |
die("Hacking attempt"); |
exit; |
} |
|
// Is send through board enabled? No, return to index |
if (!$board_config['board_email_form']) |
{ |
redirect(append_sid("index.$phpEx", true)); |
} |
|
if ( !empty($HTTP_GET_VARS[POST_USERS_URL]) || !empty($HTTP_POST_VARS[POST_USERS_URL]) ) |
{ |
$user_id = ( !empty($HTTP_GET_VARS[POST_USERS_URL]) ) ? intval($HTTP_GET_VARS[POST_USERS_URL]) : intval($HTTP_POST_VARS[POST_USERS_URL]); |
} |
else |
{ |
message_die(GENERAL_MESSAGE, $lang['No_user_specified']); |
} |
|
if ( !$userdata['session_logged_in'] ) |
{ |
redirect(append_sid("login.$phpEx?redirect=profile.$phpEx&mode=email&" . POST_USERS_URL . "=$user_id", true)); |
} |
|
$sql = "SELECT username, user_email, user_viewemail, user_lang |
FROM " . USERS_TABLE . " |
WHERE user_id = $user_id"; |
if ( $result = $db->sql_query($sql) ) |
{ |
$row = $db->sql_fetchrow($result); |
|
$username = $row['username']; |
$user_email = $row['user_email']; |
$user_lang = $row['user_lang']; |
|
if ( $row['user_viewemail'] || $userdata['user_level'] == ADMIN ) |
{ |
if ( time() - $userdata['user_emailtime'] < $board_config['flood_interval'] ) |
{ |
message_die(GENERAL_MESSAGE, $lang['Flood_email_limit']); |
} |
|
if ( isset($HTTP_POST_VARS['submit']) ) |
{ |
$error = FALSE; |
|
if ( !empty($HTTP_POST_VARS['subject']) ) |
{ |
$subject = trim(stripslashes($HTTP_POST_VARS['subject'])); |
} |
else |
{ |
$error = TRUE; |
$error_msg = ( !empty($error_msg) ) ? $error_msg . '<br />' . $lang['Empty_subject_email'] : $lang['Empty_subject_email']; |
} |
|
if ( !empty($HTTP_POST_VARS['message']) ) |
{ |
$message = trim(stripslashes($HTTP_POST_VARS['message'])); |
} |
else |
{ |
$error = TRUE; |
$error_msg = ( !empty($error_msg) ) ? $error_msg . '<br />' . $lang['Empty_message_email'] : $lang['Empty_message_email']; |
} |
|
if ( !$error ) |
{ |
$sql = "UPDATE " . USERS_TABLE . " |
SET user_emailtime = " . time() . " |
WHERE user_id = " . $userdata['user_id']; |
if ( $result = $db->sql_query($sql) ) |
{ |
include($phpbb_root_path . 'includes/emailer.'.$phpEx); |
$emailer = new emailer($board_config['smtp_delivery']); |
|
$emailer->from($userdata['user_email']); |
$emailer->replyto($userdata['user_email']); |
|
$email_headers = 'X-AntiAbuse: Board servername - ' . $server_name . "\n"; |
$email_headers .= 'X-AntiAbuse: User_id - ' . $userdata['user_id'] . "\n"; |
$email_headers .= 'X-AntiAbuse: Username - ' . $userdata['username'] . "\n"; |
$email_headers .= 'X-AntiAbuse: User IP - ' . decode_ip($user_ip) . "\n"; |
|
$emailer->use_template('profile_send_email', $user_lang); |
$emailer->email_address($user_email); |
$emailer->set_subject($subject); |
$emailer->extra_headers($email_headers); |
|
$emailer->assign_vars(array( |
'SITENAME' => $board_config['sitename'], |
'BOARD_EMAIL' => $board_config['board_email'], |
'FROM_USERNAME' => $userdata['username'], |
'TO_USERNAME' => $username, |
'MESSAGE' => $message) |
); |
$emailer->send(); |
$emailer->reset(); |
|
if ( !empty($HTTP_POST_VARS['cc_email']) ) |
{ |
$emailer->from($userdata['user_email']); |
$emailer->replyto($userdata['user_email']); |
$emailer->use_template('profile_send_email'); |
$emailer->email_address($userdata['user_email']); |
$emailer->set_subject($subject); |
|
$emailer->assign_vars(array( |
'SITENAME' => $board_config['sitename'], |
'BOARD_EMAIL' => $board_config['board_email'], |
'FROM_USERNAME' => $userdata['username'], |
'TO_USERNAME' => $username, |
'MESSAGE' => $message) |
); |
$emailer->send(); |
$emailer->reset(); |
} |
|
$template->assign_vars(array( |
'META' => '<meta http-equiv="refresh" content="5;url=' . append_sid("index.$phpEx") . '">') |
); |
|
$message = $lang['Email_sent'] . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . append_sid("index.$phpEx") . '">', '</a>'); |
|
message_die(GENERAL_MESSAGE, $message); |
} |
else |
{ |
message_die(GENERAL_ERROR, 'Could not update last email time', '', __LINE__, __FILE__, $sql); |
} |
} |
} |
|
include($phpbb_root_path . 'includes/page_header.'.$phpEx); |
|
$template->set_filenames(array( |
'body' => 'profile_send_email.tpl') |
); |
make_jumpbox('viewforum.'.$phpEx); |
|
if ( $error ) |
{ |
$template->set_filenames(array( |
'reg_header' => 'error_body.tpl') |
); |
$template->assign_vars(array( |
'ERROR_MESSAGE' => $error_msg) |
); |
$template->assign_var_from_handle('ERROR_BOX', 'reg_header'); |
} |
|
$template->assign_vars(array( |
'USERNAME' => $username, |
|
'S_HIDDEN_FIELDS' => '', |
'S_POST_ACTION' => append_sid("profile.$phpEx?mode=email&" . POST_USERS_URL . "=$user_id"), |
|
'L_SEND_EMAIL_MSG' => $lang['Send_email_msg'], |
'L_RECIPIENT' => $lang['Recipient'], |
'L_SUBJECT' => $lang['Subject'], |
'L_MESSAGE_BODY' => $lang['Message_body'], |
'L_MESSAGE_BODY_DESC' => $lang['Email_message_desc'], |
'L_EMPTY_SUBJECT_EMAIL' => $lang['Empty_subject_email'], |
'L_EMPTY_MESSAGE_EMAIL' => $lang['Empty_message_email'], |
'L_OPTIONS' => $lang['Options'], |
'L_CC_EMAIL' => $lang['CC_email'], |
'L_SPELLCHECK' => $lang['Spellcheck'], |
'L_SEND_EMAIL' => $lang['Send_email']) |
); |
|
$template->pparse('body'); |
|
include($phpbb_root_path . 'includes/page_tail.'.$phpEx); |
} |
else |
{ |
message_die(GENERAL_MESSAGE, $lang['User_prevent_email']); |
} |
} |
else |
{ |
message_die(GENERAL_MESSAGE, $lang['User_not_exist']); |
} |
|
?> |