123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185 |
- <?php
- /**
- * Filesystem Attachments
- *
- * This is a core plugin which provides basic, filesystem based
- * attachment temporary file handling. This includes storing
- * attachments of messages currently being composed, writing attachments
- * to disk when drafts with attachments are re-opened and writing
- * attachments to disk for inline display in current html compositions.
- *
- * Developers may wish to extend this class when creating attachment
- * handler plugins:
- * require_once('plugins/filesystem_attachments/filesystem_attachments.php');
- * class myCustom_attachments extends filesystem_attachments
- *
- * @license GNU GPLv3+
- * @author Ziba Scott <ziba@umich.edu>
- * @author Thomas Bruederli <roundcube@gmail.com>
- */
- class filesystem_attachments extends rcube_plugin
- {
- public $task = '?(?!login).*';
-
- function init()
- {
- // Save a newly uploaded attachment
- $this->add_hook('attachment_upload', array($this, 'upload'));
-
- // Save an attachment from a non-upload source (draft or forward)
- $this->add_hook('attachment_save', array($this, 'save'));
-
- // Remove an attachment from storage
- $this->add_hook('attachment_delete', array($this, 'remove'));
-
- // When composing an html message, image attachments may be shown
- $this->add_hook('attachment_display', array($this, 'display'));
-
- // Get the attachment from storage and place it on disk to be sent
- $this->add_hook('attachment_get', array($this, 'get'));
-
- // Delete all temp files associated with this user
- $this->add_hook('attachments_cleanup', array($this, 'cleanup'));
- $this->add_hook('session_destroy', array($this, 'cleanup'));
- }
-
- /**
- * Save a newly uploaded attachment
- */
- function upload($args)
- {
- $args['status'] = false;
- $group = $args['group'];
- $rcmail = rcube::get_instance();
-
- // use common temp dir for file uploads
- $temp_dir = $rcmail->config->get('temp_dir');
- $tmpfname = tempnam($temp_dir, 'rcmAttmnt');
-
- if (move_uploaded_file($args['path'], $tmpfname) && file_exists($tmpfname)) {
- $args['id'] = $this->file_id();
- $args['path'] = $tmpfname;
- $args['status'] = true;
- @chmod($tmpfname, 0600); // set correct permissions (#1488996)
-
- // Note the file for later cleanup
- $_SESSION['plugins']['filesystem_attachments'][$group][$args['id']] = $tmpfname;
- }
-
- return $args;
- }
-
- /**
- * Save an attachment from a non-upload source (draft or forward)
- */
- function save($args)
- {
- $group = $args['group'];
- $args['status'] = false;
-
- if (!$args['path']) {
- $rcmail = rcube::get_instance();
- $temp_dir = $rcmail->config->get('temp_dir');
- $tmp_path = tempnam($temp_dir, 'rcmAttmnt');
-
- if ($fp = fopen($tmp_path, 'w')) {
- fwrite($fp, $args['data']);
- fclose($fp);
- $args['path'] = $tmp_path;
- }
- else {
- return $args;
- }
- }
-
- $args['id'] = $this->file_id();
- $args['status'] = true;
-
- // Note the file for later cleanup
- $_SESSION['plugins']['filesystem_attachments'][$group][$args['id']] = $args['path'];
-
- return $args;
- }
-
- /**
- * Remove an attachment from storage
- * This is triggered by the remove attachment button on the compose screen
- */
- function remove($args)
- {
- $args['status'] = @unlink($args['path']);
- return $args;
- }
-
- /**
- * When composing an html message, image attachments may be shown
- * For this plugin, the file is already in place, just check for
- * the existance of the proper metadata
- */
- function display($args)
- {
- $args['status'] = file_exists($args['path']);
- return $args;
- }
-
- /**
- * This attachment plugin doesn't require any steps to put the file
- * on disk for use. This stub function is kept here to make this
- * class handy as a parent class for other plugins which may need it.
- */
- function get($args)
- {
- return $args;
- }
-
- /**
- * Delete all temp files associated with this user
- */
- function cleanup($args)
- {
- // $_SESSION['compose']['attachments'] is not a complete record of
- // temporary files because loading a draft or starting a forward copies
- // the file to disk, but does not make an entry in that array
- if (is_array($_SESSION['plugins']['filesystem_attachments'])) {
- foreach ($_SESSION['plugins']['filesystem_attachments'] as $group => $files) {
- if ($args['group'] && $args['group'] != $group) {
- continue;
- }
-
- foreach ((array)$files as $filename) {
- if(file_exists($filename)) {
- unlink($filename);
- }
- }
-
- unset($_SESSION['plugins']['filesystem_attachments'][$group]);
- }
- }
- return $args;
- }
-
- function file_id()
- {
- $userid = rcube::get_instance()->user->ID;
- list($usec, $sec) = explode(' ', microtime());
- $id = preg_replace('/[^0-9]/', '', $userid . $sec . $usec);
-
- // make sure the ID is really unique (#1489546)
- while ($this->find_file_by_id($id)) {
- // increment last four characters
- $x = substr($id, -4) + 1;
- $id = substr($id, 0, -4) . sprintf('%04d', ($x > 9999 ? $x - 9999 : $x));
- }
-
- return $id;
- }
-
- private function find_file_by_id($id)
- {
- foreach ((array) $_SESSION['plugins']['filesystem_attachments'] as $group => $files) {
- if (isset($files[$id])) {
- return true;
- }
- }
- }
- }
|