Initial version
This commit is contained in:
commit
ed5653a7fc
211 changed files with 11043 additions and 0 deletions
98
themes/zen/php/contact.php.example
Normal file
98
themes/zen/php/contact.php.example
Normal file
|
|
@ -0,0 +1,98 @@
|
|||
<?php
|
||||
|
||||
// Set the e-mail address that submission should be sent to.
|
||||
$address = 'info@example.com';
|
||||
|
||||
// Set the e-mail subject prefix.
|
||||
$prefix = 'Website feedback';
|
||||
|
||||
// DO NOT EDIT ANYTHING BELOW UNLESS YOU KNOW WHAT YOU ARE DOING.
|
||||
|
||||
$error = false;
|
||||
$success = false;
|
||||
|
||||
// Check that the submission address is valid.
|
||||
if ((bool) filter_var(trim($address), FILTER_VALIDATE_EMAIL)) {
|
||||
// Also set sender/return path header to this address to avoid SPF errors.
|
||||
$to = $sender = trim($address);
|
||||
}
|
||||
else {
|
||||
$error = true;
|
||||
}
|
||||
|
||||
// Check that referer is local server.
|
||||
if (!isset($_SERVER['HTTP_REFERER']) || (parse_url($_SERVER['HTTP_REFERER'], PHP_URL_HOST) != $_SERVER['SERVER_NAME'])) {
|
||||
exit('Direct access not permitted');
|
||||
}
|
||||
|
||||
// Check that this is a post request.
|
||||
if ($_SERVER['REQUEST_METHOD'] != 'POST' || empty($_POST)) {
|
||||
$error = true;
|
||||
}
|
||||
|
||||
// Check if fake url field is filled in, i.e. spam bot.
|
||||
if (!empty($_POST['url'])) {
|
||||
$error = true;
|
||||
}
|
||||
|
||||
// Check that e-mail address is valid.
|
||||
if ((bool) filter_var(trim($_POST['email']), FILTER_VALIDATE_EMAIL)) {
|
||||
$email = trim($_POST['email']);
|
||||
}
|
||||
else {
|
||||
$error = true;
|
||||
}
|
||||
|
||||
if (!$error) {
|
||||
// Construct the mail with headers.
|
||||
$name = _contact_clean_str($_POST['name'], ENT_QUOTES, true, true);
|
||||
$prefix = _contact_clean_str($prefix, ENT_NOQUOTES, true, true);
|
||||
$subject = _contact_clean_str($_POST['subject'], ENT_NOQUOTES, true, true);
|
||||
$subject = "[$prefix] $subject";
|
||||
$message = _contact_clean_str($_POST['message'], ENT_NOQUOTES);
|
||||
$lines = explode("\n", $message);
|
||||
array_walk($lines, '_contact_ff_wrap');
|
||||
$message = implode("\n", $lines);
|
||||
$headers = [
|
||||
'From' => "$name <$email>",
|
||||
'Sender' => $sender,
|
||||
'Return-Path' => $sender,
|
||||
'MIME-Version' => '1.0',
|
||||
'Content-Type' => 'text/plain; charset=UTF-8; format=flowed; delsp=yes',
|
||||
'Content-Transfer-Encoding' => '8Bit',
|
||||
'X-Mailer' => 'Hugo - Zen',
|
||||
];
|
||||
$mime_headers = [];
|
||||
foreach ($headers as $key => $value) {
|
||||
$mime_headers[] = "$key: $value";
|
||||
}
|
||||
$mail_headers = join("\n", $mime_headers);
|
||||
|
||||
// Send the mail, suppressing errors and setting Return-Path with the "-f" option.
|
||||
$success = @mail($to, $subject, $message, $mail_headers, '-f' . $sender);
|
||||
}
|
||||
|
||||
$status = $success ? 'submitted' : 'error';
|
||||
$contact_form_url = strtok($_SERVER['HTTP_REFERER'], '?');
|
||||
|
||||
// Redirect back to contact form with status.
|
||||
header('Location: ' . $contact_form_url . '?' . $status, TRUE, 302);
|
||||
exit;
|
||||
|
||||
function _contact_ff_wrap(&$line) {
|
||||
$line = wordwrap($line, 72, " \n");
|
||||
}
|
||||
|
||||
function _contact_clean_str($str, $quotes, $strip = false, $encode = false) {
|
||||
if ($strip) {
|
||||
$str = strip_tags($str);
|
||||
}
|
||||
|
||||
$str = htmlspecialchars(trim($str), $quotes, 'UTF-8');
|
||||
|
||||
if ($encode && preg_match('/[^\x20-\x7E]/', $str)) {
|
||||
$str = '=?UTF-8?B?' . base64_encode($str) . '?=';
|
||||
}
|
||||
|
||||
return $str;
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue