[phpBB Debug] PHP Warning: in file [ROOT]/includes/crs/crs_misc_functions.php on line 37: mime_content_type(): Empty filename or path Zen Cart 源代码 functions_email.php
<?php /** * functions_email.php * Processes all outbound email from Zen Cart * Hooks into phpMailer class for actual email encoding and sending * * @package functions * @copyright Copyright 2003-2014 Zen Cart Development Team * @copyright Portions Copyright 2003 osCommerce * @license http://www.zen-cart.com/license/2_0.txt GNU Public License V2.0 * @version GIT: $Id: Author: DrByte Fri Apr 18 14:01:49 2014 -0400 Modified in v1.5.3 $ */
/** * Set email system debugging off or on * 0=off * 1=show SMTP status errors * 2=show SMTP server responses * 4=show SMTP readlines if applicable * 5=maximum information, and output it to error_log * 'preview' to show HTML-emails on-screen while sending */ if (!defined('EMAIL_SYSTEM_DEBUG')) define('EMAIL_SYSTEM_DEBUG', 0); if (!defined('EMAIL_ATTACHMENTS_ENABLED')) define('EMAIL_ATTACHMENTS_ENABLED', true); /** * enable embedded image support */ if (!defined('EMAIL_ATTACH_EMBEDDED_IMAGES')) define('EMAIL_ATTACH_EMBEDDED_IMAGES', 'Yes');
/** * If you need to force an authentication protocol, enter appropriate option here: 'ssl' or 'tls' * Note that selecting a gmail server or port 465 will automatically select 'ssl' for you. */ if (!defined('SMTPAUTH_EMAIL_PROTOCOL')) define('SMTPAUTH_EMAIL_PROTOCOL', 'none');
/** * Send email. This is the central mail function. * If using "PHP" transport method, the SMTP Server or other mail application should be configured correctly in server's php.ini * * @param string $to_name The name of the recipient, e.g. "Jim Johanssen" * @param string $to_email_address The email address of the recipient, e.g. john.smith@hzq.com * @param string $email_subject The subject of the email * @param string $email_text The text of the email, may contain HTML entities * @param string $from_email_name The name of the sender, e.g. Shop Administration * @param string $from_email_address The email address of the sender, e.g. info@myzenshop.com * @param array $block Array containing values to be inserted into HTML-based email template * @param string $module The module name of the routine calling zen_mail. Used for HTML template selection and email archiving. * This is passed to the archive function denoting what module initiated the sending of the email * @param array $attachments_list Array of attachment names/mime-types to be included (this portion still in testing, and not fully reliable) * @param string $email_reply_to_name Name of the "reply-to" header (defaults to store name if not specified, except for contact-us and order-confirmation) * @param string $email_reply_to_address Email address for reply-to header (defaults to store email address if not specified, except for contact-us and order-confirmation) **/ function zen_mail($to_name, $to_address, $email_subject, $email_text, $from_email_name, $from_email_address, $block=array(), $module='default', $attachments_list='', $email_reply_to_name = '', $email_reply_to_address = '' ) { global $db, $messageStack, $zco_notifier; if (!defined('DEVELOPER_OVERRIDE_EMAIL_STATUS') || (defined('DEVELOPER_OVERRIDE_EMAIL_STATUS') && DEVELOPER_OVERRIDE_EMAIL_STATUS == 'site')) if (SEND_EMAILS != 'true') return false; // if sending email is disabled in Admin, just exit
if (defined('DEVELOPER_OVERRIDE_EMAIL_ADDRESS') && DEVELOPER_OVERRIDE_EMAIL_ADDRESS != '') $to_address = DEVELOPER_OVERRIDE_EMAIL_ADDRESS;
// ignore sending emails for any of the following pages // (The EMAIL_MODULES_TO_SKIP constant can be defined in a new file in the "extra_configures" folder) if (defined('EMAIL_MODULES_TO_SKIP') && in_array($module,explode(",",constant('EMAIL_MODULES_TO_SKIP')))) return false;
// check for injection attempts. If new-line characters found in header fields, simply fail to send the message foreach(array($from_email_address, $to_address, $from_email_name, $to_name, $email_subject) as $key=>$value) { if (preg_match("/\r/i",$value) || preg_match("/\n/i",$value)) return false; }
// if no text or html-msg supplied, exit if (trim($email_text) == '' && (!zen_not_null($block) || (isset($block['EMAIL_MESSAGE_HTML']) && $block['EMAIL_MESSAGE_HTML'] == '')) ) return false;
// Parse "from" addresses for "name" <email@address.com> structure, and supply name/address info from it. if (preg_match("/ *([^<]*) *<([^>]*)> */i",$from_email_address,$regs)) { $from_email_name = trim($regs[1]); $from_email_address = $regs[2]; } // if email name is same as email address, use the Store Name as the senders 'Name' if ($from_email_name == $from_email_address) $from_email_name = STORE_NAME;
// loop thru multiple email recipients if more than one listed --- (esp for the admin's "Extra" emails)... foreach(explode(',',$to_address) as $key=>$value) { if (preg_match("/ *([^<]*) *<([^>]*)> */i",$value,$regs)) { $to_name = str_replace('"', '', trim($regs[1])); $to_email_address = $regs[2]; } elseif (preg_match("/ *([^ ]*) */i",$value,$regs)) { $to_email_address = trim($regs[1]); } if (!isset($to_email_address)) $to_email_address=trim($to_address); //if not more than one, just use the main one.
$zco_notifier->notify('NOTIFY_EMAIL_ADDRESS_TEST', array(), $to_name, $to_email_address, $email_subject); // ensure the address is valid, to prevent unnecessary delivery failures if (!zen_validate_email($to_email_address)) { $zco_notifier->notify('NOTIFY_EMAIL_ADDRESS_VALIDATION_FAILURE', sprintf(EMAIL_SEND_FAILED . ' (failed validation)', $to_name, $to_email_address, $email_subject)); @error_log(sprintf(EMAIL_SEND_FAILED . ' (failed validation)', $to_name, $to_email_address, $email_subject)); continue; }
//define some additional html message blocks available to templates, then build the html portion. if (!isset($block['EMAIL_TO_NAME']) || $block['EMAIL_TO_NAME'] == '') $block['EMAIL_TO_NAME'] = $to_name; if (!isset($block['EMAIL_TO_ADDRESS']) || $block['EMAIL_TO_ADDRESS'] == '') $block['EMAIL_TO_ADDRESS'] = $to_email_address; if (!isset($block['EMAIL_SUBJECT']) || $block['EMAIL_SUBJECT'] == '') $block['EMAIL_SUBJECT'] = $email_subject; if (!isset($block['EMAIL_FROM_NAME']) || $block['EMAIL_FROM_NAME'] == '') $block['EMAIL_FROM_NAME'] = $from_email_name; if (!isset($block['EMAIL_FROM_ADDRESS']) || $block['EMAIL_FROM_ADDRESS'] == '') $block['EMAIL_FROM_ADDRESS'] = $from_email_address; $email_html = (!is_array($block) && substr($block, 0, 6) == '<html>') ? $block : zen_build_html_email_from_template($module, $block); if (!is_array($block) && $block == '' || $block == 'none') $email_html = '';
// Build the email based on whether customer has selected HTML or TEXT, and whether we have supplied HTML or TEXT-only components // special handling for XML content if ($email_text == '') { $email_text = str_replace(array('<br>','<br />'), "<br />\n", $block['EMAIL_MESSAGE_HTML']); $email_text = str_replace('</p>', "</p>\n", $email_text); $email_text = ($module != 'xml_record') ? zen_output_string_protected(stripslashes(strip_tags($email_text))) : $email_text; } else if ($module != 'xml_record') { $email_text = preg_replace('~</?([^(strong>|br ?\/?>|a href=|p |span|script|li|ol|ul|em|b>|i>|u>)])~', '@lt@\\1', $email_text); $email_text = strip_tags($email_text); $email_text = str_replace('@lt@', '<', $email_text); }
// bof: body of the email clean-up // clean up & and && from email text $email_text = preg_replace('/(&)+/', '&', $email_text); $email_text = preg_replace('/(&)+/', '&', $email_text); $email_text = preg_replace('/&{2,}/', '&', $email_text);
// clean up currencies for text emails $zen_fix_currencies = preg_split("/[:,]/" , CURRENCIES_TRANSLATIONS); $size = sizeof($zen_fix_currencies); for ($i=0, $n=$size; $i<$n; $i+=2) { $zen_fix_current = $zen_fix_currencies[$i]; $zen_fix_replace = $zen_fix_currencies[$i+1]; if (strlen($zen_fix_current)>0) { while (strpos($email_text, $zen_fix_current)) $email_text = str_replace($zen_fix_current, $zen_fix_replace, $email_text); } }
//determine customer's email preference type: HTML or TEXT-ONLY (HTML assumed if not specified) $sql = "select customers_email_format from " . TABLE_CUSTOMERS . " where customers_email_address= :custEmailAddress:"; $sql = $db->bindVars($sql, ':custEmailAddress:', $to_email_address, 'string'); $result = $db->Execute($sql); $customers_email_format = ($result->RecordCount() > 0) ? $result->fields['customers_email_format'] : ''; if ($customers_email_format == 'NONE' || $customers_email_format == 'OUT') return; //if requested no mail, then don't send. // if ($customers_email_format == 'HTML') $customers_email_format = 'HTML'; // if they opted-in to HTML messages, then send HTML format
// handling admin/"extra"/copy emails: if (ADMIN_EXTRA_EMAIL_FORMAT == 'TEXT' && substr($module,-6)=='_extra') { $email_html=''; // just blank out the html portion if admin has selected text-only } //determine what format to send messages in if this is an admin email for newsletters: if ($customers_email_format == '' && ADMIN_EXTRA_EMAIL_FORMAT == 'HTML' && in_array($module, array('newsletters', 'product_notification')) && isset($_SESSION['admin_id'])) { $customers_email_format = 'HTML'; }
// special handling for XML content if ($module == 'xml_record') { $email_html = ''; $customers_email_format ='TEXT'; }
// now lets build the mail object with the phpmailer class $mail = new PHPMailer(); $mail->XMailer = 'PHPMailer '. $mail->Version . ' for Zen Cart'; $lang_code = strtolower(($_SESSION['languages_code'] == '' ? 'en' : $_SESSION['languages_code'] )); $mail->SetLanguage($lang_code, DIR_FS_CATALOG . DIR_WS_CLASSES . 'support/'); $mail->CharSet = (defined('CHARSET')) ? CHARSET : "iso-8859-1"; if (defined('EMAIL_ENCODING_METHOD') && EMAIL_ENCODING_METHOD != '') $mail->Encoding = EMAIL_ENCODING_METHOD; if ((int)EMAIL_SYSTEM_DEBUG > 0 ) $mail->SMTPDebug = (int)EMAIL_SYSTEM_DEBUG; if ((int)EMAIL_SYSTEM_DEBUG > 4 ) $mail->Debugoutput = 'error_log'; // $mail->WordWrap = 76; // set word wrap to 76 characters
// set proper line-endings based on switch ... important for windows vs linux hosts: // $mail->LE = (EMAIL_LINEFEED == 'CRLF') ? "\r\n" : "\n";
switch (EMAIL_TRANSPORT) { case ('Gmail'): $mail->IsSMTP(); $mail->SMTPAuth = true; $mail->SMTPSecure = 'ssl'; $mail->Port = 465; $mail->Host = 'smtp.gmail.com'; $mail->Username = (zen_not_null(trim(EMAIL_SMTPAUTH_MAILBOX))) ? trim(EMAIL_SMTPAUTH_MAILBOX) : EMAIL_FROM; if (trim(EMAIL_SMTPAUTH_PASSWORD) != '') $mail->Password = trim(EMAIL_SMTPAUTH_PASSWORD); break; case 'smtpauth': $mail->IsSMTP(); $mail->SMTPAuth = true; $mail->Username = (zen_not_null(trim(EMAIL_SMTPAUTH_MAILBOX))) ? trim(EMAIL_SMTPAUTH_MAILBOX) : EMAIL_FROM; if (trim(EMAIL_SMTPAUTH_PASSWORD) != '') $mail->Password = trim(EMAIL_SMTPAUTH_PASSWORD); $mail->Host = (trim(EMAIL_SMTPAUTH_MAIL_SERVER) != '') ? trim(EMAIL_SMTPAUTH_MAIL_SERVER) : 'localhost'; if ((int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT != 25 && (int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT != 0) $mail->Port = (int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT; if ((int)$mail->Port < 30 && $mail->Host == 'smtp.gmail.com') $mail->Port = 465; //set encryption protocol to allow support for secured email protocols if ($mail->Port == '465' || $mail->Host == 'smtp.gmail.com') $mail->SMTPSecure = 'ssl'; if ($mail->Port == '587') $mail->SMTPSecure = 'tls'; if (defined('SMTPAUTH_EMAIL_PROTOCOL') && SMTPAUTH_EMAIL_PROTOCOL != 'none') { $mail->SMTPSecure = SMTPAUTH_EMAIL_PROTOCOL; } // $mail->LE = "\r\n"; break; case 'smtp': $mail->IsSMTP(); $mail->Host = trim(EMAIL_SMTPAUTH_MAIL_SERVER); if ((int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT != 25 && (int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT != 0) $mail->Port = (int)EMAIL_SMTPAUTH_MAIL_SERVER_PORT; // $mail->LE = "\r\n"; break; case 'PHP': $mail->IsMail(); break; case 'Qmail': $mail->IsQmail(); break; case 'sendmail': case 'sendmail-f': // $mail->LE = "\n"; default: $mail->IsSendmail(); if (defined('EMAIL_SENDMAIL_PATH') && file_exists(trim(EMAIL_SENDMAIL_PATH))) $mail->Sendmail = trim(EMAIL_SENDMAIL_PATH); break; }
$mail->Subject = $email_subject;
if (EMAIL_TRANSPORT=='sendmail-f' || EMAIL_SEND_MUST_BE_STORE=='Yes') { $mail->Sender = EMAIL_FROM; }
// set the reply-to address. If none set yet, then use Store's default email name/address. // If sending from checkout or contact-us or tell-a-friend page, use the supplied info $email_reply_to_address = (isset($email_reply_to_address) && $email_reply_to_address != '') ? $email_reply_to_address : (in_array($module, array('contact_us', 'tell_a_friend', 'checkout_extra')) ? $from_email_address : EMAIL_FROM); $email_reply_to_name = (isset($email_reply_to_name) && $email_reply_to_name != '') ? $email_reply_to_name : (in_array($module, array('contact_us', 'tell_a_friend', 'checkout_extra')) ? $from_email_name : STORE_NAME); $mail->AddReplyTo($email_reply_to_address, $email_reply_to_name);
$mail->SetFrom($from_email_address, $from_email_name); // if mailserver requires that all outgoing mail must go "from" an email address matching domain on server, set it to store address if (EMAIL_SEND_MUST_BE_STORE=='Yes') $mail->From = EMAIL_FROM;
$mail->AddAddress($to_email_address, $to_name); //$mail->AddAddress($to_email_address); // (alternate format if no name, since name is optional) //$mail->AddBCC(STORE_OWNER_EMAIL_ADDRESS, STORE_NAME);
if (EMAIL_USE_HTML == 'true') $email_html = processEmbeddedImages($email_html, $mail);
// PROCESS FILE ATTACHMENTS if ($attachments_list == '') $attachments_list = array(); if (is_string($attachments_list)) { if (file_exists($attachments_list)) { $attachments_list = array(array('file' => $attachments_list)); } elseif (file_exists(DIR_FS_CATALOG . $attachments_list)) { $attachments_list = array(array('file' => DIR_FS_CATALOG . $attachments_list)); } else { $attachments_list = array(); } } global $newAttachmentsList; $zco_notifier->notify('NOTIFY_EMAIL_BEFORE_PROCESS_ATTACHMENTS', array('attachments'=>$attachments_list, 'module'=>$module)); if (isset($newAttachmentsList) && is_array($newAttachmentsList)) $attachments_list = $newAttachmentsList; if (defined('EMAIL_ATTACHMENTS_ENABLED') && EMAIL_ATTACHMENTS_ENABLED && is_array($attachments_list) && sizeof($attachments_list) > 0) { foreach($attachments_list as $key => $val) { $fname = (isset($val['name']) ? $val['name'] : null); $mimeType = (isset($val['mime_type']) && $val['mime_type'] != '' && $val['mime_type'] != 'application/octet-stream') ? $val['mime_type'] : ''; switch (true) { case (isset($val['raw_data']) && $val['raw_data'] != ''): $fdata = $val['raw_data']; if ($mimeType != '') { $mail->AddStringAttachment($fdata, $fname, "base64", $mimeType); } else { $mail->AddStringAttachment($fdata, $fname); } break; case (isset($val['file']) && file_exists($val['file'])): //'file' portion must contain the full path to the file to be attached $fdata = $val['file']; if ($mimeType != '') { $mail->AddAttachment($fdata, $fname, "base64", $mimeType); } else { $mail->AddAttachment($fdata, $fname); } break; } // end switch } //end foreach attachments_list } //endif attachments_enabled $zco_notifier->notify('NOTIFY_EMAIL_AFTER_PROCESS_ATTACHMENTS', sizeof($attachments_list));
// prepare content sections: if (EMAIL_USE_HTML == 'true' && trim($email_html) != '' && ($customers_email_format == 'HTML' || (ADMIN_EXTRA_EMAIL_FORMAT != 'TEXT' && substr($module,-6)=='_extra'))) { // Prepare HTML message $mail->MsgHTML($email_html); if ($text != '') { // apply the supplied text-only portion instead of the auto-generated portion $mail->AltBody = $text; } } else { // If we got here, then other rules specified to send a text-only message instead of HTML $mail->Body = $text; }
// Handle auto-generated admin notices, or newsletters, or contact-us as bulk to avoid autoresponder responses and risk of spam flagging if (in_array($module, array('no_archive', 'admin_settings_changed', 'newsletters', 'product_notification', 'contact_us')) || substr($module, -6) == '_extra') { $mail->AddCustomHeader('Precedence: bulk'); $mail->AddCustomHeader('Auto-Submitted: auto-generated'); }
/** * zen_mail_archive_write() * * this function stores sent emails into a table in the database as a log record of email activity. This table CAN get VERY big! * To disable this function, set the "Email Archives" switch to 'false' in ADMIN! * * See zen_mail() function description for more details on the meaning of these parameters * @param string $to_name * @param string $to_email_address * @param string $from_email_name * @param string $from_email_address * @param string $email_subject * @param string $email_html * @param array $email_text * @param string $module **/ function zen_mail_archive_write($to_name, $to_email_address, $from_email_name, $from_email_address, $email_subject, $email_html, $email_text, $module, $error_msgs) { global $db, $zco_notifier; $zco_notifier->notify('NOTIFY_EMAIL_BEGIN_ARCHIVE_WRITE', array($to_name, $to_email_address, $from_email_name, $from_email_address, $email_subject, $email_html, $email_text, $module, $error_msgs)); $to_name = zen_db_prepare_input($to_name); $to_email_address = zen_db_prepare_input($to_email_address); $from_email_name = zen_db_prepare_input($from_email_name); $from_email_address = zen_db_prepare_input($from_email_address); $email_subject = zen_db_prepare_input($email_subject); $email_html = (EMAIL_USE_HTML=='true') ? zen_db_prepare_input($email_html) : zen_db_prepare_input('HTML disabled in admin'); $email_text = zen_db_prepare_input($email_text); $module = zen_db_prepare_input($module); $error_msgs = zen_db_prepare_input($error_msgs);
/** * select email template based on 'module' (supplied as param to function) * selectively go thru each template tag and substitute appropriate text * finally, build full html content as "return" output from class **/ function zen_build_html_email_from_template($module='default', $content='') { global $messageStack, $current_page_base; if (NULL == $current_page_base) $current_page_base = $module; $block = array(); if (is_array($content)) { $block = $content; } else { $block['EMAIL_MESSAGE_HTML'] = $content; } // Identify and Read the template file for the type of message being sent $langfolder = (strtolower($_SESSION['languages_code']) == 'en') ? '' : strtolower($_SESSION['languages_code']) . '/'; $template_filename_base = DIR_FS_EMAIL_TEMPLATES . $langfolder . "email_template_"; $template_filename_base_en = DIR_FS_EMAIL_TEMPLATES . "email_template_"; $template_filename = DIR_FS_EMAIL_TEMPLATES . $langfolder . "email_template_" . $current_page_base . ".html";
if (!$fh = fopen($template_filename, 'rb')) { // note: the 'b' is for compatibility with Windows systems if (isset($messageStack)) $messageStack->add('header','ERROR: The email template file (' . $template_filename_base . ') or (' . $template_filename . ') cannot be opened', 'caution'); }
//now replace the $BLOCK_NAME items in the template file with the values passed to this function's array foreach ($block as $key=>$value) { $file_holder = str_replace('$' . $key, $value, $file_holder); }
//DEBUG -- to display preview on-screen if (EMAIL_SYSTEM_DEBUG === 'preview') echo $file_holder;
return $file_holder; }
/** * Function to build array of additional email content collected and sent on admin-copies of emails: * */ function email_collect_extra_info($from, $email_from, $login, $login_email, $login_phone='', $login_fax='', $moreinfo = array()) { $email_host_address = ''; // get host_address from either session or one time for both email types to save server load if (!$_SESSION['customers_host_address']) { if (SESSION_IP_TO_HOST_ADDRESS == 'true') { $email_host_address = @gethostbyaddr($_SERVER['REMOTE_ADDR']); } } else { $email_host_address = $_SESSION['customers_host_address']; }
/** * validates an email address * * Sample Valid Addresses: * * first.last@host.com * firstlast@host.to * "first last"@host.com * "first@last"@host.com * first-last@host.com * first's-address@email.host.4somewhere.com * first.last@[123.123.123.123] * lastfirst@mail.international * * Invalid Addresses: * first last@host.com * 'first@host.com * * @param string The email address to validate * @return boolean true if valid else false **/ function zen_validate_email($email) { global $zco_notifier; $valid_address = TRUE;
// fail if contains no @ symbol or more than one @ symbol if (substr_count($email,'@') != 1) return false;
// split the email address into user and domain parts // this method will most likely break in that case list( $user, $domain ) = explode( "@", $email ); $valid_ip4_form = '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}'; $valid_email_pattern = '^([\w\!\#$\%\&\'\*\+\-\/\=\?\^\`{\|\}\~]+\.)*[\w\!\#$\%\&\'\*\+\-\/\=\?\^\`{\|\}\~]+@((((([a-z0-9]{1}[a-z0-9\-]{0,62}[a-z0-9]{1})|[a-z])\.)+(XN\-\-[a-z0-9]{2,20}|[a-z]{2,20}))|(\d{1,3}\.){3}\d{1,3}(\:\d{1,5})?)$'; $space_check = '[ ]';
// strip beginning and ending quotes, if and only if both present if( (preg_match('/^["]/', $user) && preg_match('/["]$/', $user)) ){ $user = preg_replace ( '/^["]/', '', $user ); $user = preg_replace ( '/["]$/', '', $user ); $user = preg_replace ( '/'.$space_check.'/', '', $user ); //spaces in quoted addresses OK per RFC (?) $email = $user."@".$domain; // contine with stripped quotes for remainder }
// fail if contains spaces in domain name if (strstr($domain,' ')) return false;
// if email domain part is an IP address, check each part for a value under 256 if (preg_match('/'.$valid_ip4_form.'/', $domain)) { $digit = explode( ".", $domain ); for($i=0; $i<4; $i++) { if ($digit[$i] > 255) { $valid_address = false; return $valid_address; exit; } // stop crafty people from using internal IP addresses if (($digit[0] == 192) || ($digit[0] == 10)) { $valid_address = false; return $valid_address; exit; } } }
if (!preg_match('/'.$valid_email_pattern.'/i', $email)) { // validate against valid email pattern $valid_address = false; return $valid_address; exit; }