| | |
|---|
| | | */ |
|---|
| | | class rcmail |
|---|
| | | { |
|---|
| | | static public $main_tasks = array('mail','settings','addressbook','login','logout'); |
|---|
| | | static public $main_tasks = array('mail','settings','addressbook','login','logout','dummy'); |
|---|
| | | |
|---|
| | | static private $instance; |
|---|
| | | |
|---|
| | | public $config; |
|---|
| | | public $user; |
|---|
| | | public $db; |
|---|
| | | public $smtp; |
|---|
| | | public $imap; |
|---|
| | | public $output; |
|---|
| | | public $plugins; |
|---|
| | |
|---|
| | | if (!($this->output instanceof rcube_template)) |
|---|
| | | $this->output = new rcube_template($this->task, $framed); |
|---|
| | | |
|---|
| | | foreach (array('flag_for_deletion','read_when_deleted') as $js_config_var) { |
|---|
| | | $this->output->set_env($js_config_var, $this->config->get($js_config_var)); |
|---|
| | | } |
|---|
| | | |
|---|
| | | // set keep-alive/check-recent interval |
|---|
| | | if ($keep_alive = $this->config->get('keep_alive')) { |
|---|
| | | // be sure that it's less than session lifetime |
|---|
| | |
|---|
| | | $this->output->set_env('task', $this->task); |
|---|
| | | $this->output->set_env('action', $this->action); |
|---|
| | | $this->output->set_env('comm_path', $this->comm_path); |
|---|
| | | $this->output->set_charset($this->config->get('charset', RCMAIL_CHARSET)); |
|---|
| | | $this->output->set_charset(RCMAIL_CHARSET); |
|---|
| | | |
|---|
| | | // add some basic label to client |
|---|
| | | $this->output->add_label('loading', 'servererror'); |
|---|
| | |
|---|
| | | $this->output = new rcube_json_output($this->task); |
|---|
| | | |
|---|
| | | return $this->output; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Create SMTP object and connect to server |
|---|
| | | * |
|---|
| | | * @param boolean True if connection should be established |
|---|
| | | */ |
|---|
| | | public function smtp_init($connect = false) |
|---|
| | | { |
|---|
| | | $this->smtp = new rcube_smtp(); |
|---|
| | | |
|---|
| | | if ($connect) |
|---|
| | | $this->smtp->connect(); |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | |
|---|
| | | // Setting root and delimiter before iil_Connect can save time detecting them |
|---|
| | | // using NAMESPACE and LIST |
|---|
| | | $options = array( |
|---|
| | | 'imap' => $this->config->get('imap_auth_type', 'check'), |
|---|
| | | 'auth_method' => $this->config->get('imap_auth_type', 'check'), |
|---|
| | | 'delimiter' => isset($_SESSION['imap_delimiter']) ? $_SESSION['imap_delimiter'] : $this->config->get('imap_delimiter'), |
|---|
| | | 'rootdir' => isset($_SESSION['imap_root']) ? $_SESSION['imap_root'] : $this->config->get('imap_root'), |
|---|
| | | 'debug_mode' => (bool) $this->config->get('imap_debug', 0), |
|---|
| | | ); |
|---|
| | | |
|---|
| | | $this->imap->set_options($options); |
|---|
| | |
|---|
| | | |
|---|
| | | // lowercase username if it's an e-mail address (#1484473) |
|---|
| | | if (strpos($username, '@')) |
|---|
| | | $username = rc_strtolower($username); |
|---|
| | | $username = mb_strtolower($username); |
|---|
| | | |
|---|
| | | // user already registered -> overwrite username |
|---|
| | | if ($user = rcube_user::query($username, $host)) |
|---|
| | |
|---|
| | | */ |
|---|
| | | public function kill_session() |
|---|
| | | { |
|---|
| | | $this->plugins->exec_hook('kill_session'); |
|---|
| | | |
|---|
| | | rcube_sess_unset(); |
|---|
| | | $_SESSION = array('language' => $this->user->language, 'auth_time' => time(), 'temp' => true); |
|---|
| | | rcmail::setcookie('sessauth', '-del-', time() - 60); |
|---|
| | |
|---|
| | | $this->imap->write_cache(); |
|---|
| | | } |
|---|
| | | |
|---|
| | | if (is_object($this->smtp)) |
|---|
| | | $this->smtp->disconnect(); |
|---|
| | | |
|---|
| | | if (is_object($this->contacts)) |
|---|
| | | $this->contacts->close(); |
|---|
| | | |
|---|
| | | // before closing the database connection, write session data |
|---|
| | | if ($_SERVER['REMOTE_ADDR']) |
|---|
| | | session_write_close(); |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Generate a unique token to be used in a form request |
|---|
| | | * |
|---|
| | | * @return string The request token |
|---|
| | | */ |
|---|
| | | public function get_request_token() |
|---|
| | | { |
|---|
| | | $key = $this->task; |
|---|
| | | |
|---|
| | | if (!$_SESSION['request_tokens'][$key]) |
|---|
| | | $_SESSION['request_tokens'][$key] = md5(uniqid($key . mt_rand(), true)); |
|---|
| | | |
|---|
| | | return $_SESSION['request_tokens'][$key]; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | /** |
|---|
| | | * Check if the current request contains a valid token |
|---|
| | | * |
|---|
| | | * @param int Request method |
|---|
| | | * @return boolean True if request token is valid false if not |
|---|
| | | */ |
|---|
| | | public function check_request($mode = RCUBE_INPUT_POST) |
|---|
| | | { |
|---|
| | | $token = get_input_value('_token', $mode); |
|---|
| | | return !empty($token) && $_SESSION['request_tokens'][$this->task] == $token; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | |
|---|
| | | */ |
|---|
| | | public function encrypt($clear, $key = 'des_key', $base64 = true) |
|---|
| | | { |
|---|
| | | if (!$clear) |
|---|
| | | return ''; |
|---|
| | | /*- |
|---|
| | | * Add a single canary byte to the end of the clear text, which |
|---|
| | | * will help find out how much of padding will need to be removed |
|---|
| | |
|---|
| | | */ |
|---|
| | | public function decrypt($cipher, $key = 'des_key', $base64 = true) |
|---|
| | | { |
|---|
| | | if (!$cipher) |
|---|
| | | return ''; |
|---|
| | | |
|---|
| | | $cipher = $base64 ? base64_decode($cipher) : $cipher; |
|---|
| | | |
|---|
| | | if (function_exists('mcrypt_module_open') && |
|---|
