Viewing file: usercp_email.php (6.28 KB) -rw-rw-rw- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php /*************************************************************************** * usercp_email.php * ------------------- * begin : Saturday, Feb 13, 2001 * copyright : (C) 2001 The phpBB Group * email : support@phpbb.com * * $Id: usercp_email.php,v 1.7.2.13 2003/06/06 18:02:15 acydburn Exp $ * * ***************************************************************************/
/*************************************************************************** * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * ***************************************************************************/
if ( !defined('IN_PHPBB') ) { die("Hacking attempt"); exit; }
// Is send through board enabled? No, return to index if (!$board_config['board_email_form']) { redirect(append_sid("index.$phpEx", true)); }
if ( !empty($HTTP_GET_VARS[POST_USERS_URL]) || !empty($HTTP_POST_VARS[POST_USERS_URL]) ) { $user_id = ( !empty($HTTP_GET_VARS[POST_USERS_URL]) ) ? intval($HTTP_GET_VARS[POST_USERS_URL]) : intval($HTTP_POST_VARS[POST_USERS_URL]); } else { message_die(GENERAL_MESSAGE, $lang['No_user_specified']); }
if ( !$userdata['session_logged_in'] ) { redirect(append_sid("login.$phpEx?redirect=profile.$phpEx&mode=email&" . POST_USERS_URL . "=$user_id", true)); }
$sql = "SELECT username, user_email, user_viewemail, user_lang FROM " . USERS_TABLE . " WHERE user_id = $user_id"; if ( $result = $db->sql_query($sql) ) { $row = $db->sql_fetchrow($result);
$username = $row['username']; $user_email = $row['user_email']; $user_lang = $row['user_lang'];
if ( $row['user_viewemail'] || $userdata['user_level'] == ADMIN ) { if ( time() - $userdata['user_emailtime'] < $board_config['flood_interval'] ) { message_die(GENERAL_MESSAGE, $lang['Flood_email_limit']); }
if ( isset($HTTP_POST_VARS['submit']) ) { $error = FALSE;
if ( !empty($HTTP_POST_VARS['subject']) ) { $subject = trim(stripslashes($HTTP_POST_VARS['subject'])); } else { $error = TRUE; $error_msg = ( !empty($error_msg) ) ? $error_msg . '<br />' . $lang['Empty_subject_email'] : $lang['Empty_subject_email']; }
if ( !empty($HTTP_POST_VARS['message']) ) { $message = trim(stripslashes($HTTP_POST_VARS['message'])); } else { $error = TRUE; $error_msg = ( !empty($error_msg) ) ? $error_msg . '<br />' . $lang['Empty_message_email'] : $lang['Empty_message_email']; }
if ( !$error ) { $sql = "UPDATE " . USERS_TABLE . " SET user_emailtime = " . time() . " WHERE user_id = " . $userdata['user_id']; if ( $result = $db->sql_query($sql) ) { include($phpbb_root_path . 'includes/emailer.'.$phpEx); $emailer = new emailer($board_config['smtp_delivery']);
$emailer->from($userdata['user_email']); $emailer->replyto($userdata['user_email']);
$email_headers = 'X-AntiAbuse: Board servername - ' . $server_name . "\n"; $email_headers .= 'X-AntiAbuse: User_id - ' . $userdata['user_id'] . "\n"; $email_headers .= 'X-AntiAbuse: Username - ' . $userdata['username'] . "\n"; $email_headers .= 'X-AntiAbuse: User IP - ' . decode_ip($user_ip) . "\n";
$emailer->use_template('profile_send_email', $user_lang); $emailer->email_address($user_email); $emailer->set_subject($subject); $emailer->extra_headers($email_headers);
$emailer->assign_vars(array( 'SITENAME' => $board_config['sitename'], 'BOARD_EMAIL' => $board_config['board_email'], 'FROM_USERNAME' => $userdata['username'], 'TO_USERNAME' => $username, 'MESSAGE' => $message) ); $emailer->send(); $emailer->reset();
if ( !empty($HTTP_POST_VARS['cc_email']) ) { $emailer->from($userdata['user_email']); $emailer->replyto($userdata['user_email']); $emailer->use_template('profile_send_email'); $emailer->email_address($userdata['user_email']); $emailer->set_subject($subject);
$emailer->assign_vars(array( 'SITENAME' => $board_config['sitename'], 'BOARD_EMAIL' => $board_config['board_email'], 'FROM_USERNAME' => $userdata['username'], 'TO_USERNAME' => $username, 'MESSAGE' => $message) ); $emailer->send(); $emailer->reset(); }
$template->assign_vars(array( 'META' => '<meta http-equiv="refresh" content="5;url=' . append_sid("index.$phpEx") . '">') );
$message = $lang['Email_sent'] . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . append_sid("index.$phpEx") . '">', '</a>');
message_die(GENERAL_MESSAGE, $message); } else { message_die(GENERAL_ERROR, 'Could not update last email time', '', __LINE__, __FILE__, $sql); } } }
include($phpbb_root_path . 'includes/page_header.'.$phpEx);
$template->set_filenames(array( 'body' => 'profile_send_email.tpl') ); make_jumpbox('viewforum.'.$phpEx);
if ( $error ) { $template->set_filenames(array( 'reg_header' => 'error_body.tpl') ); $template->assign_vars(array( 'ERROR_MESSAGE' => $error_msg) ); $template->assign_var_from_handle('ERROR_BOX', 'reg_header'); }
$template->assign_vars(array( 'USERNAME' => $username,
'S_HIDDEN_FIELDS' => '', 'S_POST_ACTION' => append_sid("profile.$phpEx?mode=email&" . POST_USERS_URL . "=$user_id"),
'L_SEND_EMAIL_MSG' => $lang['Send_email_msg'], 'L_RECIPIENT' => $lang['Recipient'], 'L_SUBJECT' => $lang['Subject'], 'L_MESSAGE_BODY' => $lang['Message_body'], 'L_MESSAGE_BODY_DESC' => $lang['Email_message_desc'], 'L_EMPTY_SUBJECT_EMAIL' => $lang['Empty_subject_email'], 'L_EMPTY_MESSAGE_EMAIL' => $lang['Empty_message_email'], 'L_OPTIONS' => $lang['Options'], 'L_CC_EMAIL' => $lang['CC_email'], 'L_SPELLCHECK' => $lang['Spellcheck'], 'L_SEND_EMAIL' => $lang['Send_email']) );
$template->pparse('body');
include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } else { message_die(GENERAL_MESSAGE, $lang['User_prevent_email']); } } else { message_die(GENERAL_MESSAGE, $lang['User_not_exist']); }
?>
|