githubFork/roundcubemail.git

			@@ -71,6 +71,7 @@

			//$this->framed = $framed;
			$this->set_env('task', $task);
			$this->set_env('x_frame_options', $this->app->config->get('x_frame_options', 'sameorigin'));

			// load the correct skin (in case user-defined)
			$this->set_skin($this->config['skin']);
			@@ -93,6 +94,7 @@
			'username' => array($this, 'current_username'),
			'message' => array($this, 'message_container'),
			'charsetselector' => array($this, 'charset_selector'),
			'aboutcontent' => array($this, 'about_content'),
			));
			}

			@@ -217,7 +219,9 @@
			public function command()
			{
			$cmd = func_get_args();
			if (strpos($cmd[0], 'plugin.') === false)
			if (strpos($cmd[0], 'plugin.') !== false)
			$this->js_commands[] = array('triggerEvent', $cmd[0], $cmd[1]);
			else
			$this->js_commands[] = $cmd;
			}

			@@ -353,9 +357,10 @@
			$js .= $this->get_js_commands() . ($this->framed ? ' }' : '');
			$this->add_script($js, 'head_top');

			// make sure all <form> tags have a valid request token
			$template = preg_replace_callback('/<form\s+([^>]+)>/Ui', array($this, 'alter_form_tag'), $template);
			$this->footer = preg_replace_callback('/<form\s+([^>]+)>/Ui', array($this, 'alter_form_tag'), $this->footer);
			// send clickjacking protection headers
			$iframe = $this->framed \|\| !empty($_REQUEST['_framed']);
			if (!headers_sent() && ($xframe = $this->app->config->get('x_frame_options', 'sameorigin')))
			header('X-Frame-Options: ' . ($iframe && $xframe == 'deny' ? 'sameorigin' : $xframe));

			// call super method
			parent::write($template, $this->config['skin_path']);
			@@ -430,14 +435,22 @@
			// trigger generic hook where plugins can put additional content to the page
			$hook = $this->app->plugins->exec_hook("render_page", array('template' => $realname, 'content' => $output));

			$output = $this->parse_with_globals($hook['content']);
			// save some memory
			$output = $hook['content'];
			unset($hook['content']);

			$output = $this->parse_with_globals($output);

			// make sure all <form> tags have a valid request token
			$output = preg_replace_callback('/<form\s+([^>]+)>/Ui', array($this, 'alter_form_tag'), $output);
			$this->footer = preg_replace_callback('/<form\s+([^>]+)>/Ui', array($this, 'alter_form_tag'), $this->footer);

			if ($write) {
			// add debug console
			if ($this->config['debug_level'] & 8) {
			if ($realname != 'error' && ($this->config['debug_level'] & 8)) {
			$this->add_footer('<div id="console" style="position:absolute;top:5px;left:5px;width:405px;padding:2px;background:white;z-index:9000;display:none">
			<a href="#toggle" onclick="con=$(\'#dbgconsole\');con[con.is(\':visible\')?\'hide\':\'show\']();return false">console</a>
			<textarea name="console" id="dbgconsole" rows="20" cols="40" wrap="off" style="display:none;width:400px;border:none;font-size:10px" spellcheck="false"></textarea></div>'
			<textarea name="console" id="dbgconsole" rows="20" cols="40" style="display:none;width:400px;border:none;font-size:10px" spellcheck="false"></textarea></div>'
			);
			$this->add_script(
			"if (!window.console \|\| !window.console.log) {\n".
			@@ -681,8 +694,10 @@
			// show a label
			case 'label':
			if ($attrib['name'] \|\| $attrib['command']) {
			$label = rcube_label($attrib + array('vars' => array('product' => $this->config['product_name'])));
			return !$attrbi['noshow'] ? Q($label) : '';
			$vars = $attrib + array('product' => $this->config['product_name']);
			unset($vars['name'], $vars['command']);
			$label = rcube_label($attrib + array('vars' => $vars));
			return !$attrib['noshow'] ? (get_boolean((string)$attrib['html']) ? $label : Q($label)) : '';
			}
			break;

			@@ -732,6 +747,9 @@
			// execute object handler function
			else if (function_exists($handler)) {
			$content = call_user_func($handler, $attrib);
			}
			else if ($object == 'doctype') {
			$content = html::doctype($attrib['value']);
			}
			else if ($object == 'logo') {
			$attrib += array('alt' => $this->xml_command(array('', 'object', 'name="productname"')));
			@@ -906,6 +924,7 @@
			// make valid href to specific buttons
			if (in_array($attrib['command'], rcmail::$main_tasks)) {
			$attrib['href'] = rcmail_url(null, null, $attrib['command']);
			$attrib['onclick'] = sprintf("%s.switch_task('%s');return false", JS_OBJECT_NAME, $attrib['command']);
			}
			else if ($attrib['task'] && in_array($attrib['task'], rcmail::$main_tasks)) {
			$attrib['href'] = rcmail_url($attrib['command'], null, $attrib['task']);
			@@ -955,6 +974,8 @@
			else if ($attrib['type']=='link') {
			$btn_content = isset($attrib['content']) ? $attrib['content'] : ($attrib['label'] ? $attrib['label'] : $attrib['command']);
			$link_attrib = array('href', 'onclick', 'title', 'id', 'class', 'style', 'tabindex', 'target');
			if ($attrib['innerclass'])
			$btn_content = html::span($attrib['innerclass'], $btn_content);
			}
			else if ($attrib['type']=='input') {
			$attrib['type'] = 'button';
			@@ -1098,6 +1119,7 @@
			$input_task = new html_hiddenfield(array('name' => '_task', 'value' => 'login'));
			$input_action = new html_hiddenfield(array('name' => '_action', 'value' => 'login'));
			$input_tzone = new html_hiddenfield(array('name' => '_timezone', 'id' => 'rcmlogintz', 'value' => '_default_'));
			$input_dst = new html_hiddenfield(array('name' => '_dstactive', 'id' => 'rcmlogindst', 'value' => '_default_'));
			$input_url = new html_hiddenfield(array('name' => '_url', 'id' => 'rcmloginurl', 'value' => $url));
			$input_user = new html_inputfield(array('name' => '_user', 'id' => 'rcmloginuser')
			+ $attrib + $user_attrib);
			@@ -1135,20 +1157,21 @@
			$table = new html_table(array('cols' => 2));

			$table->add('title', html::label('rcmloginuser', Q(rcube_label('username'))));
			$table->add(null, $input_user->show(get_input_value('_user', RCUBE_INPUT_GPC)));
			$table->add('input', $input_user->show(get_input_value('_user', RCUBE_INPUT_GPC)));

			$table->add('title', html::label('rcmloginpwd', Q(rcube_label('password'))));
			$table->add(null, $input_pass->show());
			$table->add('input', $input_pass->show());

			// add host selection row
			if (is_object($input_host) && !$hide_host) {
			$table->add('title', html::label('rcmloginhost', Q(rcube_label('server'))));
			$table->add(null, $input_host->show(get_input_value('_host', RCUBE_INPUT_GPC)));
			$table->add('input', $input_host->show(get_input_value('_host', RCUBE_INPUT_GPC)));
			}

			$out = $input_task->show();
			$out .= $input_action->show();
			$out .= $input_tzone->show();
			$out .= $input_dst->show();
			$out .= $input_url->show();
			$out .= $table->show();

			@@ -1313,6 +1336,30 @@
			return $select->show($set);
			}

			/**
			* Include content from config/about.<LANG>.html if available
			*/
			private function about_content($attrib)
			{
			$content = '';
			$filenames = array(
			'about.' . $_SESSION['language'] . '.html',
			'about.' . substr($_SESSION['language'], 0, 2) . '.html',
			'about.html',
			);
			foreach ($filenames as $file) {
			$fn = RCMAIL_CONFIG_DIR . '/' . $file;
			if (is_readable($fn)) {
			$content = file_get_contents($fn);
			$content = $this->parse_conditions($content);
			$content = $this->parse_xml($content);
			break;
			}
			}

			return $content;
			}

			} // end class rcube_template