mailcow/data/web/inc/triggers.inc.php

<?php
if (isset($_POST["verify_tfa_login"])) {
  if (verify_tfa_login($_SESSION['pending_mailcow_cc_username'], $_POST["token"])) {
    $_SESSION['mailcow_cc_username'] = $_SESSION['pending_mailcow_cc_username'];
    $_SESSION['mailcow_cc_role'] = $_SESSION['pending_mailcow_cc_role'];
    unset($_SESSION['pending_mailcow_cc_username']);
    unset($_SESSION['pending_mailcow_cc_role']);
    unset($_SESSION['pending_tfa_method']);
		header("Location: /user.php");
  }
}

if (isset($_POST["login_user"]) && isset($_POST["pass_user"])) {
	$login_user = strtolower(trim($_POST["login_user"]));
	$as = check_login($login_user, $_POST["pass_user"]);
	if ($as == "admin") {
		$_SESSION['mailcow_cc_username'] = $login_user;
		$_SESSION['mailcow_cc_role'] = "admin";
		header("Location: /admin.php");
	}
	elseif ($as == "domainadmin") {
		$_SESSION['mailcow_cc_username'] = $login_user;
		$_SESSION['mailcow_cc_role'] = "domainadmin";
		header("Location: /mailbox.php");
	}
	elseif ($as == "user") {
		$_SESSION['mailcow_cc_username'] = $login_user;
		$_SESSION['mailcow_cc_role'] = "user";
		header("Location: /user.php");
	}
	elseif ($as != "pending") {
    unset($_SESSION['pending_mailcow_cc_username']);
    unset($_SESSION['pending_mailcow_cc_role']);
    unset($_SESSION['pending_tfa_method']);
		unset($_SESSION['mailcow_cc_username']);
		unset($_SESSION['mailcow_cc_role']);
		$_SESSION['return'] = array(
			'type' => 'danger',
			'msg' => $lang['danger']['login_failed']
		);
	}
}

if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "admin") {
	if (isset($_GET["duallogin"])) {
    if (filter_var($_GET["duallogin"], FILTER_VALIDATE_EMAIL)) {
      $stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :duallogin");
      $stmt->execute(array(':duallogin' => $_GET["duallogin"]));
      $num_results = count($stmt->fetchAll(PDO::FETCH_ASSOC));
      if ($num_results != 0) {
        $_SESSION["dual-login"]["username"] = $_SESSION['mailcow_cc_username'];
        $_SESSION["dual-login"]["role"]     = $_SESSION['mailcow_cc_role'];
        $_SESSION['mailcow_cc_username']    = $_GET["duallogin"];
        $_SESSION['mailcow_cc_role']        = "user";
        header("Location: /user.php");
      }
    }
  }

	if (isset($_POST["edit_admin_account"])) {
		edit_admin_account($_POST);
	}
	if (isset($_POST["dkim_delete_key"])) {
		dkim_delete_key($_POST);
	}
	if (isset($_POST["dkim_add_key"])) {
		dkim_add_key($_POST);
	}
	if (isset($_POST["add_domain_admin"])) {
		add_domain_admin($_POST);
	}
	if (isset($_POST["delete_domain_admin"])) {
		delete_domain_admin($_POST);
	}
}
if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "user") {
	if (isset($_POST["edit_user_account"])) {
		edit_user_account($_POST);
	}
	if (isset($_POST["mailbox_reset_eas"])) {
		mailbox_reset_eas($_POST);
	}
	if (isset($_POST["edit_spam_score"])) {
		edit_spam_score($_POST);
	}
	if (isset($_POST["edit_delimiter_action"])) {
		edit_delimiter_action($_POST);
	}
	if (isset($_POST["add_policy_list_item"])) {
		add_policy_list_item($_POST);
	}
	if (isset($_POST["delete_policy_list_item"])) {
		delete_policy_list_item($_POST);
	}
	if (isset($_POST["edit_tls_policy"])) {
		edit_tls_policy($_POST);
	}
	if (isset($_POST["add_syncjob"])) {
		add_syncjob($_POST);
	}
	if (isset($_POST["edit_syncjob"])) {
		edit_syncjob($_POST);
	}
	if (isset($_POST["delete_syncjob"])) {
		delete_syncjob($_POST);
	}
	if (isset($_POST["set_time_limited_aliases"])) {
		set_time_limited_aliases($_POST);
	}
}
if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "admin" || $_SESSION['mailcow_cc_role'] == "domainadmin")) {
	if (isset($_POST["edit_domain_admin"])) {
		edit_domain_admin($_POST);
	}
	if (isset($_POST["set_tfa"])) {
		set_tfa($_POST);
	}
	if (isset($_POST["unset_tfa_key"])) {
		unset_tfa_key($_POST);
	}
	if (isset($_POST["add_policy_list_item"])) {
		add_policy_list_item($_POST);
	}
	if (isset($_POST["delete_policy_list_item"])) {
		delete_policy_list_item($_POST);
	}
	if (isset($_POST["mailbox_add_domain"])) {
		mailbox_add_domain($_POST);
	}
	if (isset($_POST["mailbox_add_alias"])) {
		mailbox_add_alias($_POST);
	}
	if (isset($_POST["mailbox_add_alias_domain"])) {
		mailbox_add_alias_domain($_POST);
	}
	if (isset($_POST["mailbox_add_mailbox"])) {
		mailbox_add_mailbox($_POST);
	}
	if (isset($_POST["mailbox_add_resource"])) {
		mailbox_add_resource($_POST);
	}
	if (isset($_POST["mailbox_edit_alias"])) {
		mailbox_edit_alias($_POST);
	}
	if (isset($_POST["mailbox_edit_domain"])) {
		mailbox_edit_domain($_POST);
	}
	if (isset($_POST["mailbox_edit_mailbox"])) {
		mailbox_edit_mailbox($_POST);
	}
	if (isset($_POST["mailbox_edit_alias_domain"])) {
		mailbox_edit_alias_domain($_POST);
	}
	if (isset($_POST["mailbox_edit_resource"])) {
		mailbox_edit_resource($_POST);
	}
	if (isset($_POST["mailbox_delete_domain"])) {
		mailbox_delete_domain($_POST);
	}
	if (isset($_POST["mailbox_delete_alias"])) {
		mailbox_delete_alias($_POST);
	}
	if (isset($_POST["mailbox_delete_alias_domain"])) {
		mailbox_delete_alias_domain($_POST);
	}
	if (isset($_POST["mailbox_delete_mailbox"])) {
		mailbox_delete_mailbox($_POST);
	}
	if (isset($_POST["mailbox_delete_resource"])) {
		mailbox_delete_resource($_POST);
	}
}
?>
mailcow dockerized 2016-12-10 03:39:02 +08:00			`<?php`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`if (isset($_POST["verify_tfa_login"])) {`
			`if (verify_tfa_login($_SESSION['pending_mailcow_cc_username'], $_POST["token"])) {`
			`$_SESSION['mailcow_cc_username'] = $_SESSION['pending_mailcow_cc_username'];`
			`$_SESSION['mailcow_cc_role'] = $_SESSION['pending_mailcow_cc_role'];`
			`unset($_SESSION['pending_mailcow_cc_username']);`
			`unset($_SESSION['pending_mailcow_cc_role']);`
			`unset($_SESSION['pending_tfa_method']);`
			`header("Location: /user.php");`
			`}`
			`}`

mailcow dockerized 2016-12-10 03:39:02 +08:00			`if (isset($_POST["login_user"]) && isset($_POST["pass_user"])) {`
			`$login_user = strtolower(trim($_POST["login_user"]));`
			`$as = check_login($login_user, $_POST["pass_user"]);`
			`if ($as == "admin") {`
			`$_SESSION['mailcow_cc_username'] = $login_user;`
			`$_SESSION['mailcow_cc_role'] = "admin";`
			`header("Location: /admin.php");`
			`}`
			`elseif ($as == "domainadmin") {`
			`$_SESSION['mailcow_cc_username'] = $login_user;`
			`$_SESSION['mailcow_cc_role'] = "domainadmin";`
			`header("Location: /mailbox.php");`
			`}`
			`elseif ($as == "user") {`
			`$_SESSION['mailcow_cc_username'] = $login_user;`
			`$_SESSION['mailcow_cc_role'] = "user";`
			`header("Location: /user.php");`
			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`elseif ($as != "pending") {`
			`unset($_SESSION['pending_mailcow_cc_username']);`
			`unset($_SESSION['pending_mailcow_cc_role']);`
			`unset($_SESSION['pending_tfa_method']);`
			`unset($_SESSION['mailcow_cc_username']);`
			`unset($_SESSION['mailcow_cc_role']);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`$_SESSION['return'] = array(`
			`'type' => 'danger',`
			`'msg' => $lang['danger']['login_failed']`
			`);`
			`}`
			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00
mailcow dockerized 2016-12-10 03:39:02 +08:00			`if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "admin") {`
Some changes in functions 2017-01-16 00:39:17 +08:00			`if (isset($_GET["duallogin"])) {`
			`if (filter_var($_GET["duallogin"], FILTER_VALIDATE_EMAIL)) {`
			$stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :duallogin");
			`$stmt->execute(array(':duallogin' => $_GET["duallogin"]));`
			`$num_results = count($stmt->fetchAll(PDO::FETCH_ASSOC));`
			`if ($num_results != 0) {`
			`$_SESSION["dual-login"]["username"] = $_SESSION['mailcow_cc_username'];`
			`$_SESSION["dual-login"]["role"] = $_SESSION['mailcow_cc_role'];`
			`$_SESSION['mailcow_cc_username'] = $_GET["duallogin"];`
			`$_SESSION['mailcow_cc_role'] = "user";`
			`header("Location: /user.php");`
			`}`
			`}`
			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00
			`if (isset($_POST["edit_admin_account"])) {`
			`edit_admin_account($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["dkim_delete_key"])) {`
			`dkim_delete_key($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["dkim_add_key"])) {`
			`dkim_add_key($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["add_domain_admin"])) {`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`add_domain_admin($_POST);`
			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["delete_domain_admin"])) {`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`delete_domain_admin($_POST);`
			`}`
			`}`
			`if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "user") {`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["edit_user_account"])) {`
			`edit_user_account($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
Reset SOGo data and added option to reset EAS device cache for users 2017-01-29 06:17:57 +08:00			`if (isset($_POST["mailbox_reset_eas"])) {`
			`mailbox_reset_eas($_POST);`
			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["edit_spam_score"])) {`
			`edit_spam_score($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["edit_delimiter_action"])) {`
			`edit_delimiter_action($_POST);`
Add ability to set tag handling, show more user information 2017-01-09 18:08:45 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["add_policy_list_item"])) {`
			`add_policy_list_item($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["delete_policy_list_item"])) {`
			`delete_policy_list_item($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["edit_tls_policy"])) {`
			`edit_tls_policy($_POST);`
Add imapsync tool 2017-01-13 03:26:10 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["add_syncjob"])) {`
			`add_syncjob($_POST);`
Add imapsync tool 2017-01-13 03:26:10 +08:00			`}`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`if (isset($_POST["edit_syncjob"])) {`
			`edit_syncjob($_POST);`
			`}`
			`if (isset($_POST["delete_syncjob"])) {`
			`delete_syncjob($_POST);`
Add imapsync tool 2017-01-13 03:26:10 +08:00			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`if (isset($_POST["set_time_limited_aliases"])) {`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`set_time_limited_aliases($_POST);`
			`}`
			`}`
			`if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "admin" \|\| $_SESSION['mailcow_cc_role'] == "domainadmin")) {`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`if (isset($_POST["edit_domain_admin"])) {`
			`edit_domain_admin($_POST);`
			`}`
			`if (isset($_POST["set_tfa"])) {`
			`set_tfa($_POST);`
			`}`
Multiple TFA keys 2017-02-13 20:42:54 +08:00			`if (isset($_POST["unset_tfa_key"])) {`
			`unset_tfa_key($_POST);`
			`}`
Fix triggers 2017-01-29 20:56:45 +08:00			`if (isset($_POST["add_policy_list_item"])) {`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`add_policy_list_item($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
Fix triggers 2017-01-29 20:56:45 +08:00			`if (isset($_POST["delete_policy_list_item"])) {`
More changes for better structure and minimal json api in dev 2017-01-21 18:49:29 +08:00			`delete_policy_list_item($_POST);`
Cleanup, cleanup and cleanup, much better sender acl handling, imapsync jobs, login as mailbox user X 2017-01-19 04:28:31 +08:00			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`if (isset($_POST["mailbox_add_domain"])) {`
			`mailbox_add_domain($_POST);`
			`}`
			`if (isset($_POST["mailbox_add_alias"])) {`
			`mailbox_add_alias($_POST);`
			`}`
			`if (isset($_POST["mailbox_add_alias_domain"])) {`
			`mailbox_add_alias_domain($_POST);`
			`}`
			`if (isset($_POST["mailbox_add_mailbox"])) {`
			`mailbox_add_mailbox($_POST);`
			`}`
Add resources 2017-01-28 16:53:39 +08:00			`if (isset($_POST["mailbox_add_resource"])) {`
			`mailbox_add_resource($_POST);`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`}`
			`if (isset($_POST["mailbox_edit_alias"])) {`
			`mailbox_edit_alias($_POST);`
			`}`
			`if (isset($_POST["mailbox_edit_domain"])) {`
			`mailbox_edit_domain($_POST);`
			`}`
			`if (isset($_POST["mailbox_edit_mailbox"])) {`
			`mailbox_edit_mailbox($_POST);`
			`}`
			`if (isset($_POST["mailbox_edit_alias_domain"])) {`
			`mailbox_edit_alias_domain($_POST);`
			`}`
Add resources 2017-01-28 16:53:39 +08:00			`if (isset($_POST["mailbox_edit_resource"])) {`
			`mailbox_edit_resource($_POST);`
			`}`
Make alias domains selectable in sender acl, a lot of code changes, added challenges for u2f to json_api, added U2F as TFA 2017-01-26 02:07:30 +08:00			`if (isset($_POST["mailbox_delete_domain"])) {`
			`mailbox_delete_domain($_POST);`
			`}`
			`if (isset($_POST["mailbox_delete_alias"])) {`
			`mailbox_delete_alias($_POST);`
			`}`
			`if (isset($_POST["mailbox_delete_alias_domain"])) {`
			`mailbox_delete_alias_domain($_POST);`
			`}`
			`if (isset($_POST["mailbox_delete_mailbox"])) {`
			`mailbox_delete_mailbox($_POST);`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
Add resources 2017-01-28 16:53:39 +08:00			`if (isset($_POST["mailbox_delete_resource"])) {`
			`mailbox_delete_resource($_POST);`
			`}`
mailcow dockerized 2016-12-10 03:39:02 +08:00			`}`
			`?>`