Add IE6- and IE7-specific stylesheets, only served to broken browsers.

[cocanwiki.git] / scripts / contact.ml

(* COCANWIKI - a wiki written in Objective CAML.
 * Written by Richard W.M. Jones <rich@merjis.com>.
 * Copyright (C) 2004 Merjis Ltd.
 * $Id: contact.ml,v 1.14 2006/12/06 09:46:56 rich Exp $
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; see the file COPYING.  If not, write to
 * the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
 * Boston, MA 02111-1307, USA.
 *)

open Apache
open Registry
open Cgi
open Printf

open ExtString

open Cocanwiki
open Cocanwiki_template
open Cocanwiki_ok

let subj_rex = Pcre.regexp "\\$\\w+"

let run r (q : cgi) dbh hostid {hostname = hostname} user =
  let template = get_template r dbh hostid "contact.txt" in

  let fail msg =
    error ~back_button:true ~title:"Bad form"
      r dbh hostid q
      (msg ^ "  Please contact the owner of the site by email.");
    return ()
  in

  (* Get the name field. *)
  let name =
    try q#param "id"
    with
        Not_found ->
          fail "The 'name' field is missing in that form." in

  (* Get the contacts / emails from the database. *)
  let rows = PGSQL(dbh)
    "select id, subject from contacts
      where hostid = $hostid and name = $name" in

  let id, subject =
    match rows with
    | [row] -> row
    | [] -> fail "There is no such contact form in the database."
    | _ -> assert false in

  let to_addrs =
    PGSQL(dbh) "select email from contact_emails where contactid = $id" in
  let to_addrs = List.map (fun email -> "", email) to_addrs in

  if to_addrs = [] then
    fail "There are no email addresses associated with that contact id.";

  (* Now process the strings passed as parameters to the script.  Any
   * parameter which starts with 'file' (eg. 'file0') is treated as a
   * file upload automatically.
   *)
  let names = List.map fst q#params in
  let names, uploads =
    if q#is_multipart then (
      let uploads =
        List.filter (fun str -> String.starts_with str "file") names in
      let names =
        List.filter (fun str -> str <> "id" &&
                       not (String.starts_with str "file")) names in
      names, uploads
    ) else
      names, [] in

  (* Sort them.
   * Ignore repeat parameters. - Don't use these in forms.
   *)
  let rec uniq = function
      [] -> []
    | [x] -> [x]
    | x :: y :: xs when compare x y = 0 -> uniq (x :: xs)
    | x :: y :: xs -> x :: uniq (y :: xs)
  in

  let names = uniq (List.sort compare names) in
  let uploads = uniq (List.sort compare uploads) in

  (* Some browsers send an empty file for empty uploads.  Remove those. *)
  let uploads =
    let not_empty name = (q#upload name).upload_value <> "" in
    List.filter not_empty uploads in

  (* Substitute any $Field fields in the subject line.  The substitution
   * is very simple-minded.
   *)
  let subst pat =
    let n = String.length pat in
    assert (n > 0 && pat.[0] = '$');
    let fieldname = String.sub pat 1 (n-1) in
    if List.mem fieldname names then
      q#param fieldname
    else
      pat
  in
  let subject = Pcre.substitute ~rex:subj_rex ~subst subject in

  (* Get the IP address for logging purposes. *)
  let ip =
    try Connection.remote_ip (Request.connection r) with Not_found -> "" in

  (* Get the User-Agent string.  Consider in future rejecting spammers
   * who don't set User-Agent.
   *)
  let ua =
    try Table.get (Request.headers_in r) "User-Agent" with Not_found -> "" in

  (* Get the user details, if any. *)
  let username =
    match user with
        Anonymous -> "anonymous"
      | User (userid, username, _, _) ->
          sprintf "%s (%ld)" username userid in

  template#set "ip" ip;
  template#set "ua" ua;
  template#set "username" username;
  template#set "hostname" hostname;

  (* Construct the table of names, values for the initial email. *)
  let table = List.map (fun name ->
                          let value = q#param name in
                          [ "name", Template.VarString name;
                            "value", Template.VarString value ]) names in
  template#table "names" table;

  (* Any uploads to follow? *)
  template#conditional "uploads" (uploads <> []);
  template#set "nr_uploads" (string_of_int (List.length uploads));

  (* Send the initial email. *)
  let content_type =
    "text/plain", ["charset", Mimestring.mk_param "UTF-8"] in
  let body = template#to_string in
  let msg = Netsendmail.compose ~to_addrs ~subject ~content_type body in
  Netsendmail.sendmail msg;

  (* Send the following uploads by email. *)
  List.iter (fun name ->
               let upload = q#upload name in
               let subject = upload.upload_filename in
               let content_type = upload.upload_content_type, [] in
               let body = upload.upload_value in

               let msg =
                 Netsendmail.compose ~to_addrs ~subject ~content_type body in
               Netsendmail.sendmail msg)
    uploads;

  (* Confirm. *)
  ok ~title:"Thank you for your contact" ~buttons:[ok_button "/"]
    r dbh hostid q "An email was sent and you should receive a reply shortly."

let () =
  register_script ~restrict:[CanView] run