mailcow/data/web/inc/footer.inc.php

<?php
require_once $_SERVER['DOCUMENT_ROOT'] . '/modals/footer.php';
logger();
?>
<div style="margin-bottom: 100px;"></div>
<script><?=$js_footer;?></script>
<script>
<?php
$lang_footer = json_encode($lang['footer']);
$lang_acl = json_encode($lang['acl']);
$lang_tfa = json_encode($lang['tfa']);
echo "var lang_footer = ". $lang_footer . ";\n";
echo "var lang_acl = ". $lang_acl . ";\n";
echo "var lang_tfa = ". $lang_tfa . ";\n";
echo "var docker_timeout = ". $DOCKER_TIMEOUT * 1000 . ";\n";
?>
$(window).scroll(function() {
  sessionStorage.scrollTop = $(this).scrollTop();
});
// Select language and reopen active URL without POST
function setLang(sel) {
  $.post( "<?= $_SERVER['REQUEST_URI']; ?>", {lang: sel} );
  window.location.href = window.location.pathname + window.location.search;
}
$(window).load(function() {
  $(".overlay").hide();
});
$(document).ready(function() {
  // TFA, CSRF, Alerts in footer.inc.php
  // Other general functions in mailcow.js
  <?php
  $alertbox_log_parser = alertbox_log_parser($_SESSION);
  if (is_array($alertbox_log_parser)) {
    foreach($alertbox_log_parser as $log) {
  ?>
  mailcow_alert_box(<?=$log['msg'];?>, <?=$log['type'];?>);
  <?php
    }
  unset($_SESSION['return']);
  }
  ?>
  // Confirm TFA modal
  <?php if (isset($_SESSION['pending_tfa_method'])):?>
  $('#ConfirmTFAModal').modal({
    backdrop: 'static',
    keyboard: false
  });
  $('#u2f_status_auth').html('<p><span class="glyphicon glyphicon-refresh glyphicon-spin"></span> Initializing, please wait...</p>');
  $('#ConfirmTFAModal').on('shown.bs.modal', function(){
      $(this).find('input[name=token]').focus();
      // If U2F
      if(document.getElementById("u2f_auth_data") !== null) {
        $.ajax({
          type: "GET",
          cache: false,
          dataType: 'script',
          url: "/api/v1/get/u2f-authentication/<?= (isset($_SESSION['pending_mailcow_cc_username'])) ? rawurlencode($_SESSION['pending_mailcow_cc_username']) : null; ?>",
          complete: function(data){
            $('#u2f_status_auth').html(lang_tfa.waiting_usb_auth);
            data;
            setTimeout(function() {
              console.log("Ready to authenticate");
              u2f.sign(appId, challenge, registeredKeys, function(data) {
                var form = document.getElementById('u2f_auth_form');
                var auth = document.getElementById('u2f_auth_data');
                console.log("Authenticate callback", data);
                auth.value = JSON.stringify(data);
                form.submit();
              });
            }, 1000);
          }
        });
      }
  });
  $('#ConfirmTFAModal').on('hidden.bs.modal', function(){
      $.ajax({
        type: "GET",
        cache: false,
        dataType: 'script',
        url: '/inc/ajax/destroy_tfa_auth.php',
        complete: function(data){
          window.location = window.location.href.split("#")[0];
        }
      });
  });
  <?php endif; ?>

  // Set TFA modals
  $('#selectTFA').change(function () {
    if ($(this).val() == "yubi_otp") {
      $('#YubiOTPModal').modal('show');
      $("option:selected").prop("selected", false);
    }
    if ($(this).val() == "totp") {
      $('#TOTPModal').modal('show');
      $("option:selected").prop("selected", false);
    }
    if ($(this).val() == "u2f") {
      $('#U2FModal').modal('show');
      $("option:selected").prop("selected", false);
      $('#u2f_status_reg').html('<p><span class="glyphicon glyphicon-refresh glyphicon-spin"></span> Initializing, please wait...</p>');
      $.ajax({
        type: "GET",
        cache: false,
        dataType: 'script',
        url: "/api/v1/get/u2f-registration/<?= (isset($_SESSION['mailcow_cc_username'])) ? rawurlencode($_SESSION['mailcow_cc_username']) : null; ?>",
        complete: function(data){
          data;
          setTimeout(function() {
            console.log("Ready to register");
            $('#u2f_status_reg').html(lang_tfa.waiting_usb_register);
            u2f.register(appId, registerRequests, registeredKeys, function(deviceResponse) {
              var form  = document.getElementById('u2f_reg_form');
              var reg   = document.getElementById('u2f_register_data');
              console.log("Register callback: ", data);
              if (deviceResponse.errorCode && deviceResponse.errorCode != 0) {
                var u2f_return_code = document.getElementById('u2f_return_code');
                u2f_return_code.style.display = u2f_return_code.style.display === 'none' ? '' : null;
                if (deviceResponse.errorCode == "4") { deviceResponse.errorCode = "4 - The presented device is not eligible for this request. For a registration request this may mean that the token is already registered, and for a sign request it may mean that the token does not know the presented key handle"; }
                u2f_return_code.innerHTML = 'Error code: ' + deviceResponse.errorCode;
                return;
              }
              reg.value = JSON.stringify(deviceResponse);
              form.submit();
            });
          }, 1000);
        }
      });
    }
    if ($(this).val() == "none") {
      $('#DisableTFAModal').modal('show');
      $("option:selected").prop("selected", false);
    }
  });

  // CSRF
  $('<input type="hidden" value="<?= $_SESSION['CSRF']['TOKEN']; ?>">').attr('name', 'csrf_token').appendTo('form');
  if (sessionStorage.scrollTop != "undefined") {
    $(window).scrollTop(sessionStorage.scrollTop);
  }
});
</script>

</body>
</html>
<?php
$stmt = null;
$pdo = null;
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`<?php`
More changes to the UI, more API... 2017-05-30 03:51:06 +08:00			`require_once $_SERVER['DOCUMENT_ROOT'] . '/modals/footer.php';`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`logger();`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`?>`
			`<div style="margin-bottom: 100px;"></div>`
[Web] Minify css and js via PHP [Web] Use PT Sans [Web] Update some libs 2019-01-30 19:10:26 +08:00			`<script><?=$js_footer;?></script>`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`<script>`
[Compose] Update watchdog image [Watchdog] Fix IP detection with multiple networks [Web] Show API field (no docs, no support, wip) [Web] haveibeenpwned.com implementation [Web] User and domain admin ACL (no docs, no support, wip) [Web] Some minor fixes 2018-09-10 03:17:59 +08:00			`<?php`
			`$lang_footer = json_encode($lang['footer']);`
			`$lang_acl = json_encode($lang['acl']);`
			`$lang_tfa = json_encode($lang['tfa']);`
			`echo "var lang_footer = ". $lang_footer . ";\n";`
			`echo "var lang_acl = ". $lang_acl . ";\n";`
			`echo "var lang_tfa = ". $lang_tfa . ";\n";`
			`echo "var docker_timeout = ". $DOCKER_TIMEOUT * 1000 . ";\n";`
			`?>`
[Web] Customize app menu and logo; Fix #671 2017-10-21 16:07:06 +08:00			`$(window).scroll(function() {`
			`sessionStorage.scrollTop = $(this).scrollTop();`
			`});`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`// Select language and reopen active URL without POST`
			`function setLang(sel) {`
			`$.post( "<?= $_SERVER['REQUEST_URI']; ?>", {lang: sel} );`
			`window.location.href = window.location.pathname + window.location.search;`
			`}`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`$(window).load(function() {`
[Web] Slight css changes; Simple loading overlay... 2018-01-25 20:22:17 +08:00			`$(".overlay").hide();`
			`});`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`$(document).ready(function() {`
[Compose] Update watchdog image [Watchdog] Fix IP detection with multiple networks [Web] Show API field (no docs, no support, wip) [Web] haveibeenpwned.com implementation [Web] User and domain admin ACL (no docs, no support, wip) [Web] Some minor fixes 2018-09-10 03:17:59 +08:00			`// TFA, CSRF, Alerts in footer.inc.php`
			`// Other general functions in mailcow.js`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`<?php`
			`$alertbox_log_parser = alertbox_log_parser($_SESSION);`
			`if (is_array($alertbox_log_parser)) {`
[Web] Fixes for BCC map input fields [Web] Allow to edit alias address [Web] $_SESSION['return'] now contains arrays and allows multiple returned messages and log entries [Web] Some language string changes [Web] General SQL exception handler, remove all try catch handlers [Web] Alias table now has an ID as primary key [Web] Be more aggressive with localStorage cleaning 2018-08-14 05:20:40 +08:00			`foreach($alertbox_log_parser as $log) {`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`?>`
[Web] Fixes for BCC map input fields [Web] Allow to edit alias address [Web] $_SESSION['return'] now contains arrays and allows multiple returned messages and log entries [Web] Some language string changes [Web] General SQL exception handler, remove all try catch handlers [Web] Alias table now has an ID as primary key [Web] Be more aggressive with localStorage cleaning 2018-08-14 05:20:40 +08:00			`mailcow_alert_box(<?=$log['msg'];?>, <?=$log['type'];?>);`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`<?php`
[Web] Fixes for BCC map input fields [Web] Allow to edit alias address [Web] $_SESSION['return'] now contains arrays and allows multiple returned messages and log entries [Web] Some language string changes [Web] General SQL exception handler, remove all try catch handlers [Web] Alias table now has an ID as primary key [Web] Be more aggressive with localStorage cleaning 2018-08-14 05:20:40 +08:00			`}`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`unset($_SESSION['return']);`
			`}`
			`?>`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`// Confirm TFA modal`
			`<?php if (isset($_SESSION['pending_tfa_method'])):?>`
			`$('#ConfirmTFAModal').modal({`
			`backdrop: 'static',`
			`keyboard: false`
			`});`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`$('#u2f_status_auth').html('<p><span class="glyphicon glyphicon-refresh glyphicon-spin"></span> Initializing, please wait...</p>');`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`$('#ConfirmTFAModal').on('shown.bs.modal', function(){`
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed) [Docker API] Create pipe to pass Rspamd UI worker password [Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!) [Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes) [Web] Flush memcached after mailbox item changes, fixes #1808 [Web] Fix duplicate IDs, fixes #1792 [Compose] Use SQL sockets [PHP-FPM] Update APCu and Redis libs [Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791 [Web] Fix deletion of spam aliases [Helper] Add "crypt" to backup script [Helper] Override file for external SQL socket (not supported!) [Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix 2018-09-30 04:01:23 +08:00			`$(this).find('input[name=token]').focus();`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`// If U2F`
			`if(document.getElementById("u2f_auth_data") !== null) {`
			`$.ajax({`
			`type: "GET",`
			`cache: false,`
			`dataType: 'script',`
[Web] Even more fixes for #1017 2018-02-11 05:42:46 +08:00			`url: "/api/v1/get/u2f-authentication/<?= (isset($_SESSION['pending_mailcow_cc_username'])) ? rawurlencode($_SESSION['pending_mailcow_cc_username']) : null; ?>",`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`complete: function(data){`
[Compose] Update watchdog image [Watchdog] Fix IP detection with multiple networks [Web] Show API field (no docs, no support, wip) [Web] haveibeenpwned.com implementation [Web] User and domain admin ACL (no docs, no support, wip) [Web] Some minor fixes 2018-09-10 03:17:59 +08:00			`$('#u2f_status_auth').html(lang_tfa.waiting_usb_auth);`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`data;`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`setTimeout(function() {`
			`console.log("Ready to authenticate");`
			`u2f.sign(appId, challenge, registeredKeys, function(data) {`
			`var form = document.getElementById('u2f_auth_form');`
			`var auth = document.getElementById('u2f_auth_data');`
			`console.log("Authenticate callback", data);`
			`auth.value = JSON.stringify(data);`
			`form.submit();`
			`});`
			`}, 1000);`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`}`
			`});`
			`}`
			`});`
[Web] Fixes #1055 and changes location.reload to window = xy in footer script 2018-02-17 05:39:33 +08:00			`$('#ConfirmTFAModal').on('hidden.bs.modal', function(){`
			`$.ajax({`
			`type: "GET",`
			`cache: false,`
			`dataType: 'script',`
			`url: '/inc/ajax/destroy_tfa_auth.php',`
			`complete: function(data){`
			`window.location = window.location.href.split("#")[0];`
			`}`
			`});`
			`});`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`<?php endif; ?>`

			`// Set TFA modals`
			`$('#selectTFA').change(function () {`
			`if ($(this).val() == "yubi_otp") {`
			`$('#YubiOTPModal').modal('show');`
			`$("option:selected").prop("selected", false);`
			`}`
			`if ($(this).val() == "totp") {`
			`$('#TOTPModal').modal('show');`
			`$("option:selected").prop("selected", false);`
			`}`
			`if ($(this).val() == "u2f") {`
			`$('#U2FModal').modal('show');`
			`$("option:selected").prop("selected", false);`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`$('#u2f_status_reg').html('<p><span class="glyphicon glyphicon-refresh glyphicon-spin"></span> Initializing, please wait...</p>');`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`$.ajax({`
			`type: "GET",`
			`cache: false,`
			`dataType: 'script',`
[Web] Even more fixes for #1017 2018-02-11 05:42:46 +08:00			`url: "/api/v1/get/u2f-registration/<?= (isset($_SESSION['mailcow_cc_username'])) ? rawurlencode($_SESSION['mailcow_cc_username']) : null; ?>",`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`complete: function(data){`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`data;`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`setTimeout(function() {`
			`console.log("Ready to register");`
[Compose] Update watchdog image [Watchdog] Fix IP detection with multiple networks [Web] Show API field (no docs, no support, wip) [Web] haveibeenpwned.com implementation [Web] User and domain admin ACL (no docs, no support, wip) [Web] Some minor fixes 2018-09-10 03:17:59 +08:00			`$('#u2f_status_reg').html(lang_tfa.waiting_usb_register);`
[Web] Update libs, fix U2F for Firefox Quantum 2017-11-21 16:33:22 +08:00			`u2f.register(appId, registerRequests, registeredKeys, function(deviceResponse) {`
			`var form = document.getElementById('u2f_reg_form');`
			`var reg = document.getElementById('u2f_register_data');`
			`console.log("Register callback: ", data);`
			`if (deviceResponse.errorCode && deviceResponse.errorCode != 0) {`
			`var u2f_return_code = document.getElementById('u2f_return_code');`
			`u2f_return_code.style.display = u2f_return_code.style.display === 'none' ? '' : null;`
			`if (deviceResponse.errorCode == "4") { deviceResponse.errorCode = "4 - The presented device is not eligible for this request. For a registration request this may mean that the token is already registered, and for a sign request it may mean that the token does not know the presented key handle"; }`
			`u2f_return_code.innerHTML = 'Error code: ' + deviceResponse.errorCode;`
			`return;`
			`}`
			`reg.value = JSON.stringify(deviceResponse);`
			`form.submit();`
			`});`
			`}, 1000);`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`}`
			`});`
			`}`
			`if ($(this).val() == "none") {`
			`$('#DisableTFAModal').modal('show');`
			`$("option:selected").prop("selected", false);`
			`}`
			`});`

			`// CSRF`
[Docker API] Use TLS encryption for communication with "on-the-fly" created key paris (non-exposed) [Docker API] Create pipe to pass Rspamd UI worker password [Dovecot] Pull Spamassassin ruleset to be read by Rspamd (MANY THANKS to Peer Heinlein!) [Dovecot] Garbage collector for deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440 minutes) [Web] Flush memcached after mailbox item changes, fixes #1808 [Web] Fix duplicate IDs, fixes #1792 [Compose] Use SQL sockets [PHP-FPM] Update APCu and Redis libs [Dovecot] Encrypt maildir with global key pair in crypt-vol-1 (BACKUP!), also fixes #1791 [Web] Fix deletion of spam aliases [Helper] Add "crypt" to backup script [Helper] Override file for external SQL socket (not supported!) [Compose] New images for Rspamd, PHP-FPM, SOGo, Dovecot, Docker API, Watchdog, ACME, Postfix 2018-09-30 04:01:23 +08:00			`$('<input type="hidden" value="<?= $_SESSION['CSRF']['TOKEN']; ?>">').attr('name', 'csrf_token').appendTo('form');`
[Web] Customize app menu and logo; Fix #671 2017-10-21 16:07:06 +08:00			`if (sessionStorage.scrollTop != "undefined") {`
			`$(window).scrollTop(sessionStorage.scrollTop);`
			`}`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`});`
			`</script>`

			`</body>`
			`</html>`
			`<?php`
			`$stmt = null;`
Various... 2017-12-09 20:17:15 +08:00			`$pdo = null;`