|
[x]
Posted via EE Mobile
|
||
Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again. |
||
| Question |
|
[x]
Attachment Details
|
||
|
[x]
The Solution Rating System
|
||
With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.
Your Input Matters If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support. Thank you! |
||
1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 435: 436: 437: 438: 439: 440: 441: 442: 443: 444: 445: 446: 447: 448: 449: 450: 451: 452: 453: 454: 455: 456: 457: 458: 459: 460: 461: 462: 463: 464: 465: 466: 467: 468: 469: 470: 471: 472: 473: 474: 475: 476: 477: 478: 479: 480: 481: 482: 483: 484: 485: 486: 487: 488: 489: 490: 491: 492: 493: 494: 495: 496: 497: 498: 499: 500: 501: 502: 503: 504: 505: 506: 507: 508: 509: 510: 511: 512: 513: 514: 515: 516: 517: 518: 519: 520: 521: 522: 523: 524: 525: 526: 527: 528: 529: 530: 531: 532: 533: 534: 535: 536: 537: 538: 539: 540: 541: 542: 543: 544: 545: 546: 547: 548: 549: 550: 551: 552: 553: 554: 555: 556: 557: 558: 559: 560: 561: 562: 563: 564: 565: 566: 567: 568: 569: 570: 571: 572: 573: 574: 575: 576: 577: 578: 579: 580: 581: 582: 583: 584: 585: 586: 587: 588: 589: 590: 591: 592: 593: 594: 595: 596: 597: 598: 599: 600: 601: 602: 603: 604: 605: 606: 607: 608: 609: 610: 611: 612: 613: 614: 615: 616: 617: 618: 619: 620: 621: 622: 623: 624: 625: 626: 627: 628: 629: 630: 631: 632: 633: 634: 635: 636: 637: 638: 639: 640: 641: 642: 643: 644: 645: 646: 647: 648: 649: 650: 651: 652: 653: 654: 655: 656: 657: 658: 659: 660: 661: 662: 663: 664: 665: 666: 667: 668: 669: 670: 671: 672: 673: 674: 675: 676: 677: 678: 679: 680: 681: 682: 683: 684: 685: 686: 687: 688: 689: 690: 691: 692: 693: 694: 695: 696: 697: 698: 699: 700: 701: 702: 703: 704: 705: 706: 707: 708: 709: 710: 711: 712: 713: 714: 715: 716: 717: 718: 719: 720: 721: 722: 723: 724: 725: 726: 727: 728: 729: 730: 731: 732: 733: 734: 735: 736: 737: 738: 739: 740: 741: 742: 743: 744: 745: 746: 747: 748: 749: 750: 751: 752: 753: 754: 755: 756: 757: 758: 759: 760: 761: 762: 763: 764: 765: 766: 767: 768: 769: 770: 771: 772: 773: 774: 775: 776: 777: 778: 779: 780: 781: 782: 783: 784: 785: 786: 787: 788: 789: 790: 791: 792: 793: 794: 795: 796: 797: 798: 799: 800: 801: 802: 803: 804: 805: 806: 807: 808: 809: 810: 811: 812: 813: 814: 815: 816: 817: 818: 819: 820: 821: 822: 823: 824: 825: 826: 827: 828: 829: 830: 831: 832: 833: 834: 835: 836: 837: 838: 839: 840: 841: 842: 843: 844: 845: 846: 847: 848: 849: 850: 851: 852: 853: 854: 855: 856: 857: 858: 859: 860: 861: 862: 863: 864: 865: 866: 867: 868: 869: 870: 871: 872: 873: 874: 875: 876: 877: 878: 879: 880: 881: 882: 883: 884: 885: 886: 887: 888: 889: 890: 891: 892: 893: 894: 895: 896: 897: 898: 899: 900: 901: 902: 903: 904: 905: 906: 907: 908: 909: 910: 911: 912: 913: 914: 915: 916: 917: 918: 919: 920: 921: 922: 923: 924: 925: 926: 927: 928: 929: 930: 931: 932: 933: 934: 935: 936: 937: 938: 939: 940: 941: 942: 943: 944: 945: 946: 947: 948: 949: 950: 951: 952: 953: 954: 955: 956: 957: 958: 959: 960: 961: 962: 963: 964: 965: 966: 967: 968: 969: 970: 971: 972: 973: 974: 975: 976: 977: 978: 979: 980: 981: 982: 983: 984: 985: 986: 987: 988: 989: 990: 991: 992: 993: 994: 995: 996: 997: 998: 999: 1000: 1001: 1002: 1003: 1004: 1005: 1006: 1007: 1008: 1009: 1010: 1011: 1012: 1013: 1014: 1015: 1016: 1017: 1018: 1019: 1020: 1021: 1022: 1023: 1024: 1025: 1026: 1027: 1028: 1029: 1030: 1031: 1032: 1033: 1034: 1035: 1036: 1037: 1038: 1039: 1040: 1041: 1042: 1043: 1044: 1045: 1046: 1047: 1048: 1049: 1050: 1051: 1052: 1053: 1054: 1055: 1056: 1057: 1058: 1059: 1060: 1061: 1062: 1063: 1064: 1065: 1066: 1067: 1068: 1069: 1070: 1071: 1072: 1073: 1074: 1075: 1076: 1077: 1078: 1079: 1080: 1081: 1082: 1083: 1084: 1085: 1086: 1087: 1088: 1089: 1090: 1091: 1092: 1093: 1094: 1095: 1096: 1097: 1098: 1099: 1100: 1101: 1102: 1103: 1104: 1105: 1106: 1107: 1108: 1109: 1110: 1111: 1112: 1113: 1114: 1115: 1116: 1117: 1118: 1119: 1120: 1121: 1122: 1123: 1124: 1125: 1126: 1127: 1128: 1129: 1130: 1131: 1132: 1133: 1134: 1135: 1136: 1137: 1138: 1139: 1140: 1141: 1142: 1143: 1144: 1145: 1146: 1147: 1148: 1149: 1150: |
<?php
/**
* CoffeeCup Flash Form Builder: Form Results Handler
*
* This file is in charge of handling the form results
* posted from the CoffeeCup Flash Form Builder SWF.
* It has several primary functions:
*
* - Assure that the user is running the proper version of
* PHP and has properly configured their server for
* CoffeeCup Flash Form Builder by uploading the provided
* files and assigning the appropriate server settings
* and permissions.
* - Upload a file if the '$_FILES['Filedata']' variable is
* populated
* - If the '$_POST' superglobal array has been populated,
* process the form by:
* - Reading the config file provided in the '$_POST['xmlfile']'
* variable.
* - Saving the form data to a file if the 'CC_FB_SAVE_FILE' constant
* has been populated.
* - Saving the form data to the database provided in 'CC_FB_DB_ADDRESS'
* if the 'CC_FB_DB_ADDRESS' constant is populated.
* - Emailing the form data to the form owner via the address provided
* in the '$_POST['_ALT_EMAIL']' variable or the '$_POST['mailto']'
* variable if the '$_POST['_ALT_EMAIL']' variable is not populated.
* - Emailing the form data to the form user via the address provided in
* the '$_POST['eM']' variable if the '$_POST['eM']' variable has been
* populated and the 'emailuser' config option is set to 'true'.
* - Taking the form user to the landing page provided in the
* '$_POST['thankyoupage']' variable or to a default landing page
* if the '$_POST['thankyoupage']' is empty.
* - Prints out an informational page with version numbers and release
* dates if an error occurs or if this script is called without
* the '$_POST' superglobal or the '$_FILES['Filedata']' variables
* being set.
*
* @license http://www.coffeecup.com/legal/eula.html
* @author Jeff Welch <jw@coffeecup.com>
* @version 4.0
* @package CC_FB
*/
// Error reporting should be disabled in favor of
// our customer error messages.
error_reporting(0);
/**
* The version of CoffeeCup Flash Form Builder that
* generated this script.
*/
define('CC_FB_VERSION', '8.0');
/**
* The release date of the version of CoffeeCup Flash Form
* Builder that generated this script.
*/
define('CC_FB_LAST_UPDATED', '08/31/2007');
/**
* The version of this script.
*/
define('CC_FB_SCRIPT_VERSION', '5.0');
/**
* The release date of this script.
*/
define('CC_FB_SCRIPT_LAST_UPDATED', '05/27/2009');
/**
* Will the owner of this form be emailed the
* form data
*/
define('CC_FB_DO_EMAIL',true);
/**
* To default To address.
*/
define('CC_FB_TO_EMAIL', 'info@porumaresort.com');
/**
* The default CC address.
*/
define('CC_FB_CC_EMAIL', '');
/**
* The default BCC address.
*/
define('CC_FB_BCC_EMAIL', '');
/**
* The message to send to the form owner
*/
define('CC_FB_OWNER_MESSAGE', '[FORMOWNERMSG]');
/**
* If we should send a message back to the user.
*/
define('CC_FB_AUTO_REPLY', false);
/**
* The subject of the message to be sent to the user.
*/
define('CC_FB_AUTO_REPLY_SUBJECT', '');
/**
* If we should include the form results
* in the message we send to the user.
*/
define('CC_FB_AUTO_REPLY_FORM_RESULTS', false);
/**
* The position of the auto-reply message
* in the email.
*/
define('CC_FB_AUTO_REPLY_POSITION', 'bottom');
/**
* The page to redirect to after the form is submitted.
*/
define('CC_FB_RESULTS_REDIRECT', 'http://porumaresort.com/enquiry_thank_you.php');
/**
* The address of the database where the form results
* will be saved.
*/
define('CC_FB_DB_ADDRESS', '[ADDRESS]');
/**
* The port number of the database where the form results
* will be saved.
*/
define('CC_FB_DB_PORT', '[DBPORT]');
/**
* The username for the database where the form results
* will be saved.
*/
define('CC_FB_DB_USERNAME', '[DBUSER]');
/**
* The password for the database where the form results
* will be saved.
*/
define('CC_FB_DB_PASSWORD', '[DBPASS]');
/**
* The name of the database where the form results
* will be saved.
*/
define('CC_FB_DB_NAME', '[DBNAME]');
/**
* The name of the database table where the form results
* will be saved.
*/
define('CC_FB_DB_TABLE', '[DBTABLE]');
/**
* The file to log the form results to if necessary.
*/
define('CC_FB_SAVE_FILE', '[FILENAME]');
/**
* The filetypes that are acceptable for file uploads.
*/
define('CC_FB_ACCEPTABLE_FILE_TYPES', 'txt|gif|jpg|jpeg|zip|doc|png|pdf|rtf|html|docx|xslx');
/**
* The directory where files are uploaded
*/
define('CC_FB_UPLOADS_DIRECTORY', 'files');
/**
* The extension that gets added to file uploads
*/
define('CC_FB_UPLOADS_EXTENSION', '_fbu');
/**
* Will we save the file uploads to the server
*/
define('CC_FB_ATTACHMENT_SAVETOSERVER',false);
/**
* Will we save the file uploads to the db
*/
define('CC_FB_ATTACHMENT_SAVETODB',false);
/**
* Will we send the file upload as an attachment
*/
define('CC_FB_ATTACHMENT_ADDTOEMAIL',false);
/**
* Sendmail Message EOL's
*/
define('CC_FB_SENDMAIL_EOL',"\r\n");
// Makes sure that the user is using the required version
// of PHP as specified by {@link CC_FB_PHP_VERSION}.
if(!version_compare(PHP_VERSION, CC_FB_PHP_VERSION, '>='))
{
printMessage('Invalid PHP Version',
"We're sorry but CoffeeCup Form Builder requires PHP version " .
CC_FB_PHP_VERSION . ' or greater. Please contact your server ' .
'administrator.');
}
// Strip slashes if the server has magic quotes enabled.
if(get_magic_quotes_gpc())
{
$_POST = array_map("stripslashes", $_POST);
}
// John will need to fix this in the swf file.
foreach($_POST as $key => $value)
{
$_POST[str_replace('_', ' ', $key)] = $value;
}
// Let's sanitize some header fields before it gets us in any trouble.
foreach(array('eM','_ALT_EMAIL','subject') as $key)
{
if(isset($_POST[$key]))
{
$_POST[$key] = headerEscape($_POST[$key]);
}
}
// Let's make sure no one is trying to do anything funky with filenames.
if(isset($_POST['Uploaded_File']))
{
$_POST['Uploaded_File'] = filenameEscape($_POST['Uploaded_File']);
}
if(isset($_FILES['Filedata']['name']))
{
$_FILES['Filedata']['name'] = filenameEscape($_FILES['Filedata']['name']);
}
// If the '$_FILES['Filedata']' is populated, process the
// file upload.
if(isset($_FILES['Filedata']))
{
processFileUpload();
}
// If the '$_POST' superglobal array is populated,
// process the form results.
elseif(is_array($_POST) && count($_POST) > 0)
{
processMailForm();
}
// If all else fails, print out a blank page with version
// numbers and release dates.
printMessage();
/**
* Process the mail form results.
*
* This method is in charge of processing the mail form which
* is posted from the CoffeeCup Flash Form Builder SWF. This
* process includes:
*
* - Retrieving the preferences from the included CoffeeCup Flash
* Form Builder XML preferences file.
* - Formats output for file output as well as for an email to
* the form user and the form owner as necesarry.
* - Writes output to a file and sends it to the form user and
* the form owner as necessary.
* - Writes form results to a database if necesarry.
*/
function processMailForm()
{
fixUploadedFileName();
$preferences = getPreferences();
foreach($preferences['form_fields'] as $key => $value)
{
if(trim($_POST[$key]) != '')
{
$owner_email_response .= "$key: {$_POST[$key]}\n\n";
$txt_file .= "$key: {$_POST[$key]}|";
// Make sure we aren't displaying hidden fields
// to end-users
if($value['type'] != 'hiddenfield')
{
$user_email_response .= "$key: {$_POST[$key]}\n\n";
$form_response .= "$key: {$_POST[$key]}<br/>\n";
}
}
}
// If a file was uploaded, add the appropriate data to the response
// fields
if($_POST['Uploaded_File'] != "")
{
$owner_email_response .= "Uploaded File: {$_POST['Uploaded_File']}";
$user_email_response .= "Uploaded File: {$_POST['Uploaded_File']}";
$form_response .= " Uploaded File: {$_POST['Uploaded_File']}" .
"<br/>\n";
$txt_file .= "Uploaded File: {$_POST['Uploaded_File']}|";
}
sendResponseEmails($owner_email_response, $user_email_response,
$preferences);
writeResponseToFile($txt_file);
writeResponseToDatabase($preferences);
// Make sure we delete the file from the server if the user doesn't
// want it
if(!CC_FB_ATTACHMENT_SAVETOSERVER && $_POST['Uploaded_File'] != '')
{
@unlink(CC_FB_UPLOADS_DIRECTORY . "/{$_POST['Uploaded_File']}");
}
printResponsePage($form_response, $preferences);
}
/**
* Send response emails to the appropriate recipients.
*
* Sends an email to the scripts owner as well as the end-user
* if appropriate. If the sending of mail fails, an error
* message will be printed out to the screen.
*
* @param string $owner_email_response the message to mail to the owner.
* @param string $user_email_response the message to mail to the user.
* @param array $preferences the CoffeeCup Flash Form Builder Preferences.
*/
function sendResponseEmails($owner_email_response, $user_email_response,
$preferences)
{
// If the program is unregistered, add the unregistered message.
if($_POST['unreg'])
{
$unreg = "------------------------\n" .
"This Form was sent to you using CoffeeCup Form Builder." .
"\nPlease tell a friend about us: " .
"http://www.coffeecup.com/form-builder/";
}
// Set up the CC field if necessary
if(CC_FB_CC_EMAIL != '')
{
$cc = 'Cc: ' . CC_FB_CC_EMAIL . CC_FB_SENDMAIL_EOL;
}
// Set up the BCC field if necessary
if(CC_FB_BCC_EMAIL != '')
{
$bcc = 'Bcc: ' . CC_FB_BCC_EMAIL . CC_FB_SENDMAIL_EOL;
}
// Use the alternative email if one is provided
$mail_to = ($_POST['_ALT_EMAIL'] != '' ? $_POST['_ALT_EMAIL'] :
CC_FB_TO_EMAIL);
// Set a default subject if one is not provided
$subject = ($_POST['subject'] != '' ? parseMessage($_POST['subject'], $preferences) :
'Website Enquiry');
// Set up the default mail headers
$headers = 'MIME-Version: 1.0' . CC_FB_SENDMAIL_EOL .
'Content-Type: text/plain; charset=utf-8' . CC_FB_SENDMAIL_EOL .
'Content-Transfer-Encoding: 7bit' . CC_FB_SENDMAIL_EOL;
// Set up the default owner message if on is not provided
if(CC_FB_OWNER_MESSAGE == '[FORMOWNERMSG]')
{
$form_owner_msg =
'Here is the information submitted to ' .
"{$_SERVER['SERVER_NAME']}{$_SERVER['PHP_SELF']} from " .
"{$_SERVER['REMOTE_ADDR']} on " . date("l, F dS, Y \a\\t g:i a") .
".\n------------------------\n$owner_email_response$unreg";
}
else
{
$form_owner_msg = parseMessage(CC_FB_OWNER_MESSAGE, $preferences);
}
// Add the uploaded file as an attachment if the user has
// request we do so
if(CC_FB_ATTACHMENT_ADDTOEMAIL && $_POST['Uploaded_File'] != '')
{
if(!($contents =
file_get_contents(CC_FB_UPLOADS_DIRECTORY .
"/{$_POST['Uploaded_File']}")))
{
printMessage('Unable To Open Attachment File',"We're sorry but " .
'we were unable to open your uploaded file to attatch it for ' .
'email. Please be sure that you have the proper permissions.');
}
$attachment = chunk_split(base64_encode($contents));
// Setup the unique mime boundary
$mime_boundary = md5(time());
// Set up the form owner mail headers
$form_owner_headers = 'MIME-Version: 1.0' . CC_FB_SENDMAIL_EOL .
'Content-Type: multipart/mixed; ' .
"boundary=\"$mime_boundary\"" .
CC_FB_SENDMAIL_EOL;
// Set up the new form owner message
$form_owner_msg =
CC_FB_SENDMAIL_EOL .
"--$mime_boundary" . CC_FB_SENDMAIL_EOL .
'Content-Type: text/plain; charset=utf-8' . CC_FB_SENDMAIL_EOL .
'Content-Transfer-Encoding: 7bit' .
CC_FB_SENDMAIL_EOL. CC_FB_SENDMAIL_EOL .
$form_owner_msg .
CC_FB_SENDMAIL_EOL. CC_FB_SENDMAIL_EOL .
"--$mime_boundary" . CC_FB_SENDMAIL_EOL .
'Content-Type: application/octet-stream ' .
"name=\"{$_POST['Uploaded_File']}\"" . CC_FB_SENDMAIL_EOL .
"Content-Transfer-Encoding: base64" . CC_FB_SENDMAIL_EOL .
"Content-Description: {$_POST['Uploaded_File']}" .
CC_FB_SENDMAIL_EOL .
"Content-Disposition: attachment; " .
"filename=\"{$_POST['Uploaded_File']}\"" .
CC_FB_SENDMAIL_EOL . CC_FB_SENDMAIL_EOL .
"$attachment" . CC_FB_SENDMAIL_EOL. CC_FB_SENDMAIL_EOL;
"--$mime_boundary--" .
CC_FB_SENDMAIL_EOL . CC_FB_SENDMAIL_EOL;
}
else
{
$form_owner_headers = $headers;
}
// If we collected the end-user's email
if($_POST['eM'])
{
// Get all the headers without the From: portion
// so that we can do something fancy if the first
// attempt to send the message fails
$headers_without_from =
"Reply-To: {$_POST['eM']}" . CC_FB_SENDMAIL_EOL .
"Return-Path: {$_POST['eM']}" . CC_FB_SENDMAIL_EOL .
"$cc$bcc" .
'Message-ID: <' . time() . "-{$_POST['eM']}>" . CC_FB_SENDMAIL_EOL .
'X-Mailer: PHP v' . phpversion() . CC_FB_SENDMAIL_EOL .
$form_owner_headers;
$SpamErrorMessage = "No Website URLs permitted";
if (preg_match("/http/i", "$name")) {echo "$SpamErrorMessage"; exit() ; }
if (preg_match("/http/i", "$email")) {echo "$SpamErrorMessage"; exit() ; }
if (preg_match("/http/i", "$message")) {echo "$SpamErrorMessage"; exit() ; }
// Send a message to the form's owner with the end-user's email
// as the reply-to address.
if(CC_FB_DO_EMAIL &&
!(mail($mail_to,$subject, $form_owner_msg,
"From: {$_POST['eM']}" . CC_FB_SENDMAIL_EOL .
$headers_without_from)) &&
!(mail($mail_to,$subject, $form_owner_msg,
'From: Poruma Resort Website ' .
"<formbuilder@{$_SERVER['SERVER_NAME']}>" . CC_FB_SENDMAIL_EOL .
$headers_without_from)))
{
printMessage('Unable To Send E-Mail',
"We're sorry but we were unable to send your e-mail. " .
'If you are sure that you entered all your email ' .
'addresses properly, you should contact your server ' .
'administrator.');
}
// If necesarry, send a message to the end-user as well.
if(CC_FB_AUTO_REPLY)
{
$form_user_msg = parseMessage('', $preferences);
$form_user_subject = parseMessage(CC_FB_AUTO_REPLY_SUBJECT, $preferences);
if(CC_FB_AUTO_REPLY_FORM_RESULTS)
{
$form_user_msg = CC_FB_AUTO_REPLY_POSITION == 'top' ?
"$form_user_msg\n\n$user_email_response" :
"$user_email_response\n\n$form_user_msg";
}
// Get all the headers without the From: portion
// so that we can do something fancy if the first
// attempt to send the message fails
$headers_without_from =
"Reply-To: $mail_to" . CC_FB_SENDMAIL_EOL .
"Return-Path: $mail_to" . CC_FB_SENDMAIL_EOL .
'Message-ID: <' . time() . "-$mail_to>" .
CC_FB_SENDMAIL_EOL .
'X-Mailer: PHP v' . phpversion() . CC_FB_SENDMAIL_EOL .
$headers;
mail($_POST['eM'],$form_user_subject,
"$form_user_msg$unreg",
"From: $mail_to" . CC_FB_SENDMAIL_EOL .
$headers_without_from) ||
mail($_POST['eM'],$form_user_subject,
"$form_user_msg$unreg",
"From: {$_SERVER['SERVER_NAME']} Form " .
"<forms@{$_SERVER['SERVER_NAME']}>" . CC_FB_SENDMAIL_EOL .
$headers_without_from);
}
}
// Send a message to the form's owner.
elseif(CC_FB_DO_EMAIL && !(mail($mail_to,$subject,
$form_owner_msg,
'From: Poruma Resort Website ' .
"<formbuilder@{$_SERVER['SERVER_NAME']}>" . CC_FB_SENDMAIL_EOL .
"$cc$bcc" .
'Message-ID: <' . time() .
"-formbuilder@{$_SERVER['SERVER_NAME']}>" . CC_FB_SENDMAIL_EOL .
'X-Mailer: PHP v' . phpversion() . CC_FB_SENDMAIL_EOL .
$form_owner_headers)))
{
printMessage('Unable To Send E-Mail',
"We're sorry but we were unable to send your e-mail. " .
'If you are sure that you entered all your email ' .
'addresses properly, you should contact your server ' .
'administrator.');
}
}
/**
* Parses owner-defined email message
*
* Loops through posted form values and replaces all form
* elements in the $message with their corresponding values.
*
* @param string $message an owner-defined email message
* @param array $preferences the CoffeeCup Flash Form Builder Preferences.
*/
function parseMessage($message, $preferences)
{
foreach($preferences['form_fields'] as $key => $value)
{
$message = str_replace('[' . $key . ']', $_POST[$key], $message);
}
return $message;
}
/**
* Gets the real name of the file that was uploaded.
*
* Since the file upload occurs in a different request,
* this method helps us resolve what the name of the
* uploaded file was in case it was renamed.
*/
function fixUploadedFileName()
{
if($_POST['Uploaded_File'] != '')
{
$extension = substr($_POST['Uploaded_File'],
strrpos($_POST['Uploaded_File'], '.'));
$basename = basename($_POST['Uploaded_File'], $extension);
while(file_exists(CC_FB_UPLOADS_DIRECTORY . "/$basename".
CC_FB_UPLOADS_EXTENSION . "$i$extension"))
{
$new_upload_name = "$basename". CC_FB_UPLOADS_EXTENSION .
"$i$extension";
$i++;
}
}
$_POST['Uploaded_File'] = $new_upload_name;
}
/**
* Write form response to a database.
*
* Writes the form response to the database specified at 'CC_FB_DB_ADDRESS'
* if appropriate. If the database doesn't it exist, the CC_FB_DB_TABLE
* table doesn't exist or if the CC_FB_DB_TABLE table doesn't comply with
* the structure of the current form then the database will be restructured
* accordingly.
*
* @param array $preferences the CoffeeCup Flash Form Builder Preferences.
*/
function writeResponseToDatabase($preferences)
{
// If the CC_FB_DB_ADDRESS constant has been populated, then
// the user wants to write their data to a database.
if(CC_FB_DB_ADDRESS != '[ADDRESS]')
{
// First and foremost, lets make sure they have the mysql extension
// loaded.
if(!extension_loaded('mysql'))
{
printMessage('Unable to use MySQL',
"We're sorry but you must have the MySQL extensions loaded " .
'in your PHP configuration in order to save your form '.
'results to a MySQL database. Please contact your ' .
'server administrator.');
}
// Secondly, lets make sure we can connect to their database.
elseif(!($link =
mysql_connect(CC_FB_DB_ADDRESS . ':' . CC_FB_DB_PORT,
CC_FB_DB_USERNAME, CC_FB_DB_PASSWORD)))
{
printMessage('Unable to Connect to Database Server.',
"We're sorry but we were unable to connect to your database " .
'server. Please be sure you have entered your database ' .
'settings correctly.');
}
// If we can't select their DB, lets try to create our own.
elseif(!mysql_select_db(CC_FB_DB_NAME, $link))
{
if(!mysql_query('CREATE DATABASE ' . CC_FB_DB_NAME, $link))
{
printMessage('Unable to Create Database.',
"We're sorry but we were unable to create your database. " .
'If you believe the database already exists, please ' .
'be sure that you have the proper permissions to ' .
'select it. Otherwise, please be sure that you ' .
'have permissions to create databases. If you ' .
'are still experiencing troubles, please contact ' .
'your server administrator.');
}
elseif(!mysql_select_db(CC_FB_DB_NAME, $link))
{
printMessage('Unable to select Database.',
"We're sorry but we were unable to select your database. " .
'Please be sure that you have the proper permissions to ' .
'select it. If you are still experiencing trouble, ' .
'please contact your server administrator.');
}
}
// If a form_results table exists, make sure it is in the
// proper format.
if(mysql_num_rows(mysql_query("SHOW TABLES LIKE '" . CC_FB_DB_TABLE .
"'", $link)) != 0)
{
if(!($results = mysql_query('SHOW COLUMNS FROM `' . CC_FB_DB_TABLE .
'`', $link)))
{
printMessage('Unable to Query Database.',
"We're sorry but we were unable to query your database " .
'table. Please be sure that you have the proper ' .
'permissions to select from the ' . CC_FB_DB_TABLE .
' table. If you are still experiencing trouble, ' .
'please contact your server administrator.');
}
while($row = mysql_fetch_assoc($results))
{
if($row['Field'] != 'id' && $row['Field'] != 'created_at')
{
$columns[$row['Field']] = $row;
}
}
if(!formFieldsEqualsTableFields($preferences['form_fields'],
$columns))
{
archiveOldTable($link);
createTableFromFormFields($preferences['form_fields'], $link);
}
}
// Otherwise create the CC_FB_DB_TABLE table in the proper format.
else
{
createTableFromFormFields($preferences['form_fields'], $link);
}
// If all went well, lets attempt to write the form results to
// the database.
foreach($preferences['form_fields'] as $field_name => $field)
{
$query .= "`$field_name` = " .
mysqlEscape($_POST[$field_name], $link) . ',';
}
// Add the uploaded file to the query if necessary
if(CC_FB_ATTACHMENT_SAVETODB)
{
if($_POST['Uploaded_File'] != '')
{
if(!($contents =
file_get_contents(CC_FB_UPLOADS_DIRECTORY .
"/{$_POST['Uploaded_File']}")))
{
printMessage('Unable To Open Attachment File',"We're sorry " .
'but we were unable to open your uploaded file to ' .
'attach it for email. Please be sure that you have the ' .
'proper permissions.');
}
$query .= '`uploaded_file_name` = ' .
mysqlEscape($_POST['Uploaded_File'], $link) . ',' .
'`uploaded_file` = ' . mysqlEscape($contents, $link) .
',';
}
else
{
$query .= "`uploaded_file_name` = '',`uploaded_file` = '',";
}
}
if(!mysql_query('INSERT INTO `' . CC_FB_DB_TABLE . '` SET ' .
$query . "`created_at` = NOW()", $link))
{
printMessage('Unable to Insert Into Database Table.',
"We're sorry but we were unable to insert the form results " .
'into your database table. Please be sure that you have ' .
'the proper permissions to insert data into the ' .
CC_FB_DB_TABLE . ' table. If you are still experiencing ' .
'trouble, please contact your server administrator.');
}
}
}
/**
* Archives an old `CC_FB_DB_TABLE` table.
*
* Renames a form results table to CC_FB_DB_TABLE_old or
* CC_FB_DB_TABLE_old with a numerical value on the end of it
* if appropriate.
*
* @param resource $link a database resource
*/
function archiveOldTable($link)
{
while(mysql_num_rows(mysql_query("SHOW TABLES LIKE '" . CC_FB_DB_TABLE .
"_old$i'", $link)) != 0)
{
$i++;
}
if(!(mysql_query("RENAME TABLE `" . CC_FB_DB_TABLE . "` TO `" .
CC_FB_DB_TABLE . "_old$i`", $link)))
{
printMessage('Unable to Rename Database Table.',
"We're sorry but we were unable to rename your database " .
'table. Please be sure that you have the proper ' .
'permissions to rename the ' . CC_FB_DB_TABLE . ' table' .
'. If you are still experiencing trouble, please contact your ' .
'server administrator.');
}
}
/**
* Escapes a value for MySQL.
*
* Prepares a value to be used safely in a MySQL query. If the value is
* numeric, it is returned. If the value is a string, it is quoted and
* escaped using the mysql_real_escape_string function.
*
* @param mixed $value the value to be escaped
* @param resource $link a database resource
* @return mixed $value the escaped value
*/
function mysqlEscape($value, $link)
{
return ("'" . mysql_real_escape_string($value, $link) . "'");
}
/**
* Escapes a header value.
*
* Prepares a value to be used safely in an email header.
*
* @param mixed $value the value to be escaped
* @return mixed $value the escaped value
*/
function headerEscape($value)
{
return preg_replace("/(\n|\r|%0A|%0D)/i", '', $value);
}
/**
* Escapes a filename value.
*
* Prepares a filename to be used without the need to worry
* about directory traversal exploits.
*
* @param mixed $value the value to be escaped
* @return mixed $value the escaped value
*/
function filenameEscape($value)
{
return preg_replace('/[^\w\d\.]+/', '', $value);
}
/**
* Checks if the columns from a table match the the structure
* of the fields from a form.
*
* @param array $form_fields the structure from the form
* @param array $table_fields the structure from the table
* @return boolean $value, true if the structures are the same,
* false if the structures are not.
*/
function formFieldsEqualsTableFields($form_fields, $table_fields)
{
// Make sure we have the proper fields for saving uploaded
// files to the database if the user has requested we do so
if(CC_FB_ATTACHMENT_SAVETODB)
{
if(array_key_exists('uploaded_file', $table_fields) &&
array_key_exists('uploaded_file_name', $table_fields))
{
unset($table_fields['uploaded_file_name']);
unset($table_fields['uploaded_file']);
}
else
{
return false;
}
}
if(count($form_fields) != count($table_fields))
{
return false;
}
foreach($form_fields as $field_name => $field)
{
if(!is_array($table_fields[$field_name]) ||
!(($field['type'] == 'textarea' &&
$table_fields[$field_name]['Type'] == 'text') ||
$table_fields[$field_name]['Type'] == 'varchar(255)'))
{
return false;
}
}
return true;
}
/**
* Create a MySQL table from the form structure.
*
* Uses the structure of the form, pulled from the XML preferences
* file to create a database table to store the form results.
*
* @param resource $form_fields the structure of the form
* @param resource $link a database resource
*/
function createTableFromFormFields($form_fields, $link)
{
mysql_query("DROP TABLE IF EXISTS `" . CC_FB_DB_TABLE . "`", $link);
$query = 'CREATE TABLE `' . CC_FB_DB_TABLE . '` (
`id` int(11) NOT NULL auto_increment,
`created_at` DATETIME NOT NULL';
if(CC_FB_ATTACHMENT_SAVETODB)
{
$query .= ",`uploaded_file_name` varchar(255) NOT NULL DEFAULT ''
,`uploaded_file` MEDIUMBLOB NOT NULL";
}
foreach($form_fields as $field_name => $field)
{
$query .= ",\n `$field_name` " .
($field['type'] == 'textarea' ? 'text' : 'varchar(255)') .
" NOT NULL DEFAULT ''";
}
if(!(mysql_query("$query, PRIMARY KEY(`id`))", $link)))
{
printMessage('Unable to Create Table.', "We're sorry but we were " .
'unable to create a database table for your form results. ' .
'Please be sure that you have the proper permissions to ' .
'create tables. If you are still experiencing trouble, ' .
'please contact your server administrator.');
}
}
/**
* Write form response to a log file.
*
* Writes the form response to the log file specified at 'CC_FB_SAVE_FILE'
* if appropriate. If the file writing fails, an error message will be
* printed out to the screen.
*
* @param string $txt_file the response to write to the log file.
*/
function writeResponseToFile($txt_file)
{
$txt_file = "{$_SERVER['SERVER_NAME']}{$_SERVER['PHP_SELF']}|" .
date("Y-m-d H:i:s") . "|{$_SERVER['REMOTE_ADDR']}|$txt_file\n";
// If a log file location has been set
if(CC_FB_SAVE_FILE != '[FILENAME]')
{
if($handle = fopen(CC_FB_SAVE_FILE, 'a'))
{
if(fwrite($handle, $txt_file) === false)
{
printMessage('Unable To Write To File',
"We're sorry but we were unable to write to ".CC_FB_SAVE_FILE.
'. Please contact your server administrator to be sure ' .
'that you have the proper permissions.');
}
fclose($handle);
}
else
{
printMessage('Unable To Open File',
"We're sorry but we were unable to open " . CC_FB_SAVE_FILE .
'. Please contact your server administrator to be sure ' .
'that you have the proper permissions.');
}
}
}
/**
* Prints the HTML-formatted, form response page for the end-user.
*
* Writes the form response to an HTML-formatted page for the end-user
* or redirects the user to a thank you page if specified.
*
* @param string $form_response the response to write to the page.
* @param array $preferences the CoffeeCup Flash Form Builder Preferences.
*/
function printResponsePage($form_response, $preferences)
{
// Redirect to a thank you page if the user has created one.
if(CC_FB_RESULTS_REDIRECT != '[RESULTSREDIRECT]')
{
die(header('Location: ' . CC_FB_RESULTS_REDIRECT));
}
// Otherwise create a thank you page.
else
{
$results_msg = '[RESULTSMSG]';
die(str_replace('$form_results', $form_response,
$results_msg));
}
}
/**
* Returns the CoffeeCup Flash Form Builder Preferences.
*
* Opens the CoffeeeCup Flash Form Builder XML preferences file
* and retrieves the preferences and form fields from it. If
* the preferences file is not found or can not be opened, an
* error message is printed to the screen.
*
* @return array $preferences an array of preferences specified
* in the CoffeeCup Flash Form Builder XML preferences file.
*/
function getPreferences()
{
if(!($contents = file_get_contents($_POST['xmlfile'])))
{
printMessage('Unable To Open XML File',"We're sorry but we were " .
'unable to locate your XML file. Please be sure that the \'' .
"{$_POST['xmlfile']}' is on your server in the same directory " .
'as your other form builder files.');
}
// Strips out all the XML nodes from the preferences file.
preg_match_all('/<([a-z]+?)\s+(.*?)>/is', $contents, $nodes);
foreach($nodes[1] as $node_key => $node_value)
{
// Skip over item, hidden, button and label nodes, as we're not
// interested in them.
if($node_value != 'item' && $node_value != 'hidden' &&
$node_value != 'submitbutton' && $node_value != 'browsebutton' &&
$node_value != 'label' && $node_value != 'resetbutton')
{
$node_array = array();
// For each node, we will strip out all of the attributes
preg_match_all('/([a-z0-9]+?)="(.*?)"/is',
$nodes[2][$node_key], $attributes);
foreach($attributes[2] as $attribute_key => $attribute_value)
{
$node_array[$attributes[1][$attribute_key]] =
html_entity_decode($attribute_value);
}
// If the node has an attribute called 'name', it is a form field.
if(isset($node_array['name']))
{
$name = $node_array['name'] . ($node_array['label'] != '' ?
" - {$node_array['label']}" : '');
$preferences['form_fields'][$name] = $node_array;
$preferences['form_fields'][$name]['type'] = $node_value;
}
// If the node type is 'form', it is the form preferences
elseif($node_value == 'form')
{
$preferences['form_preferences'] = $node_array;
}
// otherwise just dump everything into a general array depending
// on its node type.
else
{
$preferences[$node_value][] = $node_array;
}
}
}
return $preferences;
}
/**
* Uploads a user-submitted file.
*
* Attempts to upload a user-submitted file specified in
* '$_FILES['Filedata']' to the 'CC_FB_UPLOADS_DIRECTORY' directory. If the
* file already exists, append a numeric value to the end of
* the file name.
*/
function processFileUpload()
{
if(!ini_get('file_uploads'))
{
printMessage('File Uploads Disabled',
"We're sorry but we were unable to upload your file because " .
'your do not have file uploads enabled. Please contact' .
'your server administrator.');
}
// Make sure we have a directory to store the file uploads
if(!is_dir(CC_FB_UPLOADS_DIRECTORY) &&
!mkdir(CC_FB_UPLOADS_DIRECTORY,0755))
{
printMessage('Directory Creation Failed',
"We're sorry but we were unable to create a directory for " .
'your file uploads. Please contact your server administrator.');
}
// Make sure the file upload is of an acceptable file type
if(CC_FB_ACCEPTABLE_FILE_TYPES != "" &&
!preg_match('/\.('.CC_FB_ACCEPTABLE_FILE_TYPES.')$/is',
$_FILES['Filedata']['name']))
{
printMessage('Invalid File Type',
"We're sorry but we were unable to upload your file because " .
'the file type is not acceptable.');
}
// Seperate the file's basename and extension so that
// we can append numeric values on the end of the basename
// if the file already exists.
$extension = substr($_FILES['Filedata']['name'],
strrpos($_FILES['Filedata']['name'], '.'));
$basename = basename($_FILES['Filedata']['name'], $extension);
// Append number values on the end of the file name
// if the file already exists
while(file_exists(CC_FB_UPLOADS_DIRECTORY . "/$basename" .
CC_FB_UPLOADS_EXTENSION . "$i$extension"))
{
$i++;
}
if(!move_uploaded_file($_FILES['Filedata']['tmp_name'],
CC_FB_UPLOADS_DIRECTORY . "/$basename". CC_FB_UPLOADS_EXTENSION .
"$i$extension"))
{
printMessage('File Upload Failed',
"We're sorry but we were unable to upload your file. Please " .
'contact your server administrator.');
}
chmod(CC_FB_UPLOADS_DIRECTORY . "/$basename$i$extension", 0644);
}
/**
* Prints a message to the screen.
*
* Prints an HTML-formatted message to the screen that also contains
* the current PHP version number the server is running, the current
* version number and release date of this script as well as the
* current version number and release date of the version of CoffeeCup
* Flash Form Builder that generated this script.
*
* NOTE: This function stops execution of the script.
*
* @param string $title the title of the page
* @param string $message the message to print to the screen
*/
function printMessage($title = null, $message = null)
{
// If the user has provided a title, format it for HTML
if($title !== null)
{
$title = htmlentities($title, ENT_QUOTES);
$page_title = "$title - ";
$title = "<h1>$title</h1>";
}
// If the user has provided a message, formit it for HTML
if($message !== null)
{
$message = '<p>' . htmlentities($message, ENT_QUOTES) . '</p>';
}
die( <<<EOHTML
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>{$page_title}Poruma Resort Enquiry Form</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="robots" content="noindex,nofollow" />
<style type="text/css">
<!--
div#script_info
{
border-top: 1px solid #666;
font-size: .85em;
}
-->
</style>
</head>
<body>
$title
$message
<div id="script_info">
<p>
PHP Version:
EOHTML
. PHP_VERSION . '
</p>
<p>
Sendmail Path: ' . ini_get('sendmail_path') . '<br />
Sendmail From: ' . ini_get('sendmail_from') . '<br />
SMTP: ' . ini_get('SMTP') . '<br />
SMTP Port: ' . ini_get('smtp_port') . '
</p>
<p>
MySQL: ' . (extension_loaded('mysql') ? 'Installed' : 'Not Installed') . '
</p>
<p>
File Uploads: ' . (ini_get('file_uploads') ? 'On' : 'Off') . '<br />
File Uploads Max Size: ' . ini_get('upload_max_filesize') . '<br />
Post Max Size: ' . ini_get('post_max_size') . '</p>
<p>
Software Version: ' . CC_FB_VERSION . '<br />
Software Last Updated: ' . CC_FB_LAST_UPDATED . '
</p>
<p>
Script Version: ' . CC_FB_SCRIPT_VERSION . '<br />
Script Last Updated: ' . CC_FB_SCRIPT_LAST_UPDATED . '
</p>' .
<<<EOHTML
</div>
</body>
</html>
EOHTML
);
}
?>
|
Advertisement
| Hall of Fame |
