InboxMail schreiben`n`n", true); if (!isset($_GET['op'])) $_GET['op'] = ''; switch($_GET['op']) { case 'write': $subject = ""; $body = ""; output("

", true); if(!empty($_GET['replyto'])) { // Antwort - ursprüngliches subject raussuchen $sql = "SELECT mail.body,mail.subject,accounts.login,accounts.name, petitionmail.petitionid FROM mail LEFT JOIN petitionmail USING(messageid) LEFT JOIN accounts ON accounts.acctid=mail.msgfrom WHERE mail.msgto=\"" . $session['user']['acctid'] . "\" AND mail.messageid=\"" . $_GET[replyto] . "\""; $result = db_query($sql) or die(db_error(LINK)); if(db_num_rows($result) > 0) { $row = db_fetch_assoc($result); if(empty($row['login']) && (int) $row['petitionid'] == 0) { output("Du kannst nicht auf eine Systemnachricht antworten.`n"); $row = array(); } } else { output("Uff, so eine Nachricht wurde nicht gefunden!`n"); } } if(!empty($_GET['to'])) { $sql = "SELECT login,name FROM accounts WHERE login='{$_GET['to']}'"; $result = db_query($sql) or die(db_error(LINK)); if(db_num_rows($result) > 0) { $row = db_fetch_assoc($result); } else { output("Konnte diese Person nicht finden.`n"); } } if(is_array($row)) { if(!empty($row['subject'])) { $subject = $row['subject']; if(substr($subject, 0, 4) != "RE: ") $subject = "RE: $subject"; } if($row['body'] != "") { $body = "\n\n---Original Message---\n" . $row[body]; } } if($row['petitionid'] > 0) { output("`2An: `^`iAdmin`i`n"); } elseif(!empty($row['login'])) { output("", true); output("`2An: `^{$row['name']}`n"); } else { output("`2An: "); $string = "%"; for($x = 0; $x < strlen($_POST['to']); $x++) { $string .= substr($_POST['to'], $x, 1) . "%"; } $sql = "SELECT login,name FROM accounts WHERE name LIKE '" . addslashes($string) . "' AND locked=0 ORDER BY login"; $result = db_query($sql); if(db_num_rows($result) == 1) { $row = db_fetch_assoc($result); output("", true); output("`^{$row['name']}`n"); } else { output("`n", true); } } output("`2Betreff:"); $output .= (""); output("`n`2Text:`n"); $output .= "
"; output("`n", true); if($row['petitionid'] > 0) output('', true); output("

", true); break; case 'address': output("", true); break; case 'read': $sql = "UPDATE mail SET seen=1 WHERE msgto=\"" . $session['user']['acctid'] . "\" AND messageid=\"" . $_GET['id'] . "\""; db_query($sql); $sql = "SELECT mail.*,accounts.name, petitionmail.petitionid FROM mail LEFT JOIN petitionmail USING(messageid) LEFT JOIN accounts ON accounts.acctid=mail.msgfrom WHERE mail.msgto=\"" . $session['user']['acctid'] . "\" AND mail.messageid=\"" . $_GET['id'] . "\""; $result = db_query($sql) or die(db_error(LINK)); if(db_num_rows($result) > 0) { $row = db_fetch_assoc($result); if((int) $row['msgfrom'] == 0) { if((int) $row['petitionid'] == 0) $row['name'] = "`i`^System`0`i"; else $row['name'] = "`i`^Admin`0`i"; } output("`b`2Absender:`b `^{$row['name']}`n"); output("`b`2Betreff:`b `^{$row['subject']}`n"); output("`b`2Gesendet:`b `^{$row['sent']}`n"); output("

`n", true); output(str_replace("\n", "`n", $row['body'])); output("`n

`n", true); output("Antworten Löschen", true); } else { output("Uff, so eine Nachricht wurde nicht gefunden!"); } break; case 'send': if(empty($_POST['petitionid'])) { $sql = "SELECT acctid FROM accounts WHERE login='{$_POST['to']}'"; $result = db_query($sql); if(db_num_rows($result) > 0) { $row1 = db_fetch_assoc($result); $sql = "SELECT count(messageid) AS count FROM mail WHERE msgto='" . $row1['acctid'] . "' AND seen=0"; $result = db_query($sql); $row = db_fetch_assoc($result); if($row[count] > getsetting("inboxlimit", 50)) { output("Die Mailbox dieser Person ist voll! Du kannst ihr keine Nachricht schicken."); } else { $_POST['subject'] = closetags(str_replace("`n", "", $_POST['subject']), '`c`i`b'); $_POST['body'] = str_replace("`n", "\n", $_POST['body']); $_POST['body'] = str_replace("\r\n", "\n", $_POST['body']); $_POST['body'] = str_replace("\r", "\n", $_POST['body']); $_POST['body'] = addslashes(substr(stripslashes($_POST['body']), 0, (int) getsetting("mailsizelimit", 1024))); $_POST['body'] = closetags($_POST['body'], '`c`i`b'); systemmail($row1['acctid'], $_POST['subject'], $_POST['body'], $session['user']['acctid']); output("Deine Nachricht wurde gesendet!`n"); } } else { output("Konnte den Empfänger nicht finden. Bitte versuche es nochmal.`n"); } } else { $sql = "SELECT count(messageid) AS count FROM petitionmail WHERE petitionid='{$_POST['petitionid']}' AND msgto='" . $session['user']['acctid'] . "'"; $row = db_fetch_assoc(db_query($sql)); if($row['count'] == 0) { output('Du kannst nur zu deinen eigenen Anfragen etwas schreiben!'); } else { $_POST['subject'] = closetags(str_replace("`n", "", $_POST['subject']), '`c`i`b'); $_POST['body'] = str_replace("`n", "\n", $_POST['body']); $_POST['body'] = str_replace("\r\n", "\n", $_POST['body']); $_POST['body'] = str_replace("\r", "\n", $_POST['body']); $_POST['body'] = substr($_POST['body'], 0, (int) getsetting("mailsizelimit", 1024)); $_POST['body'] = closetags($_POST['body'], '`c`i`b'); petitionmail($_POST['subject'], $_POST['body'], $_POST['petitionid'], $session['user']['acctid']); output("Deine Nachricht wurde gesendet!`n"); } } // No break! case '': default: output("`b`iMail Box`i`b"); output($session['message']); $session['message'] = ""; $sql = "SELECT mail.subject,mail.messageid,accounts.name,mail.msgfrom,mail.seen,mail.sent, petitionmail.petitionid FROM mail LEFT JOIN petitionmail USING(messageid) LEFT JOIN accounts ON accounts.acctid=mail.msgfrom WHERE mail.msgto=\"" . $session['user']['acctid'] . "\" ORDER BY mail.seen,mail.sent"; $result = db_query($sql); if(db_num_rows($result) > 0) { output("", true); } else { output("`iOoooh, du hast keine Mails. Wie schade.`i"); } output("`n`n`iDu hast " . db_num_rows($result) . " Nachrichten in deiner Mailbox`nDu kannst höchstens " . getsetting('inboxlimit', 50) . " Nachrichten hier speichern.`nNachrichten werden nach " . getsetting("oldmail", 14) . " Tagen gelöscht."); } popup_footer(); ?>