mailcow-dockerized/data/web/inc/footer.inc.php

<?php
logger();

$hash = $js_minifier->getDataHash();
$JSPath = '/tmp/' . $hash . '.js';
if(!file_exists($JSPath)) {
  $js_minifier->minify($JSPath);
  cleanupJS($hash);
}

$alertbox_log_parser = alertbox_log_parser($_SESSION);
$alerts = [];
if (is_array($alertbox_log_parser)) {
  foreach ($alertbox_log_parser as $log) {
    $message = strtr($log['msg'], ["\n" => '', "\r" => '', "\t" => '<br>']);
    $alerts[trim($log['type'], '"')][] = trim($message, '"');
  }
  $alert = array_filter(array_unique($alerts));
  foreach($alert as $alert_type => $alert_msg) {
    // html breaks from mysql alerts, replace ` with '
    $alerts[$alert_type] = implode('<hr class="alert-hr">', str_replace("`", "'", $alert_msg));
  }
  unset($_SESSION['return']);
}

// map tfa details for twig
$pending_tfa_authmechs = [];
foreach($_SESSION['pending_tfa_methods'] as $authdata){
  $pending_tfa_authmechs[$authdata['authmech']] = false;
}
if (isset($pending_tfa_authmechs['webauthn'])) {
  $pending_tfa_authmechs['webauthn'] = true;
}
if (!isset($pending_tfa_authmechs['webauthn']) 
    && isset($pending_tfa_authmechs['yubi_otp'])) {
  $pending_tfa_authmechs['yubi_otp'] = true;
}
if (!isset($pending_tfa_authmechs['webauthn']) 
    && !isset($pending_tfa_authmechs['yubi_otp'])
    && isset($pending_tfa_authmechs['totp'])) {
  $pending_tfa_authmechs['totp'] = true;
}
if (isset($pending_tfa_authmechs['u2f'])) {
  $pending_tfa_authmechs['u2f'] = true;
}

// globals
$globalVariables = [
  'mailcow_info' => array(
    'version_tag' => $GLOBALS['MAILCOW_GIT_VERSION'],
    'last_version_tag' => $GLOBALS['MAILCOW_LAST_GIT_VERSION'],
    'git_owner' => $GLOBALS['MAILCOW_GIT_OWNER'],
    'git_repo' => $GLOBALS['MAILCOW_GIT_REPO'],
    'git_project_url' => $GLOBALS['MAILCOW_GIT_URL'],
    'git_commit' => $GLOBALS['MAILCOW_GIT_COMMIT'],
    'git_commit_date' => $GLOBALS['MAILCOW_GIT_COMMIT_DATE'],
    'mailcow_branch' => $GLOBALS['MAILCOW_BRANCH'],
    'updated_at' => $GLOBALS['MAILCOW_UPDATEDAT']
  ),
  'js_path' => '/cache/'.basename($JSPath),
  'pending_tfa_methods' => @$_SESSION['pending_tfa_methods'],
  'pending_tfa_authmechs' => $pending_tfa_authmechs,
  'pending_mailcow_cc_username' => @$_SESSION['pending_mailcow_cc_username'],
  'lang_footer' => json_encode($lang['footer']),
  'lang_acl' => json_encode($lang['acl']),
  'lang_tfa' => json_encode($lang['tfa']),
  'lang_fido2' => json_encode($lang['fido2']),
  'docker_timeout' => $DOCKER_TIMEOUT,
  'session_lifetime' => (int)$SESSION_LIFETIME,
  'csrf_token' => $_SESSION['CSRF']['TOKEN'],
  'pagination_size' => $PAGINATION_SIZE,
  'log_pagination_size' => $LOG_PAGINATION_SIZE,
  'alerts' => $alerts,
  'totp_secret' => $tfa->createSecret(),
];

foreach ($globalVariables as $globalVariableName => $globalVariableValue) {
  $twig->addGlobal($globalVariableName, $globalVariableValue);
}

if (is_array($template_data)) {
  echo $twig->render($template, $template_data);
}

if (isset($_SESSION['mailcow_cc_api'])) {
  session_regenerate_id(true);
  session_unset();
  session_destroy();
  session_write_close();
  header("Location: /");
}
$stmt = null;
$pdo = null;
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`<?php`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`logger();`
deliver CSS and JS as external request 2019-10-21 03:25:58 +08:00
			`$hash = $js_minifier->getDataHash();`
			`$JSPath = '/tmp/' . $hash . '.js';`
			`if(!file_exists($JSPath)) {`
			`$js_minifier->minify($JSPath);`
			`cleanupJS($hash);`
			`}`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00
			`$alertbox_log_parser = alertbox_log_parser($_SESSION);`
			`$alerts = [];`
			`if (is_array($alertbox_log_parser)) {`
			`foreach ($alertbox_log_parser as $log) {`
[web] fixed html in alerts Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-11-29 05:48:08 +08:00			`$message = strtr($log['msg'], ["\n" => '', "\r" => '', "\t" => '<br>']);`
			`$alerts[trim($log['type'], '"')][] = trim($message, '"');`
[Web] Feature (beta): Add WebAuthn support for administrators and domain administrators 2020-11-16 02:32:37 +08:00			`}`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`$alert = array_filter(array_unique($alerts));`
			`foreach($alert as $alert_type => $alert_msg) {`
migrating from u2f-api.js to webauthn 2022-01-13 04:57:21 +08:00			// html breaks from mysql alerts, replace ` with '
			$alerts[$alert_type] = implode('<hr class="alert-hr">', str_replace("`", "'", $alert_msg));
[Web] Feature (beta): Add WebAuthn support for administrators and domain administrators 2020-11-16 02:32:37 +08:00			`}`
[Web] Fix log line handling [Web] Add mailcow UI logs [Web] Changes to _SESSION['return'] logic and logger (more to come) [Web] Show last login [Web, Postfix] Allow to disable sender check completely [Web] Many minor fixes [Web] Update some libs 2018-08-04 02:31:33 +08:00			`unset($_SESSION['return']);`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`}`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00
[Web] add verify selected tfa 2022-02-21 17:46:24 +08:00			`// map tfa details for twig`
			`$pending_tfa_authmechs = [];`
			`foreach($_SESSION['pending_tfa_methods'] as $authdata){`
			`$pending_tfa_authmechs[$authdata['authmech']] = false;`
			`}`
			`if (isset($pending_tfa_authmechs['webauthn'])) {`
			`$pending_tfa_authmechs['webauthn'] = true;`
			`}`
			`if (!isset($pending_tfa_authmechs['webauthn'])`
			`&& isset($pending_tfa_authmechs['yubi_otp'])) {`
			`$pending_tfa_authmechs['yubi_otp'] = true;`
			`}`
			`if (!isset($pending_tfa_authmechs['webauthn'])`
			`&& !isset($pending_tfa_authmechs['yubi_otp'])`
			`&& isset($pending_tfa_authmechs['totp'])) {`
			`$pending_tfa_authmechs['totp'] = true;`
			`}`
			`if (isset($pending_tfa_authmechs['u2f'])) {`
			`$pending_tfa_authmechs['u2f'] = true;`
			`}`

Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445) * [API] Fix minor issue in api docs * [GH-Actions][stale] Add neverstale label to exempt list * [Web] add github version tag * [Web] add github version tag error handling * Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php. * [Web] add github version tag - adjust css * [Compose] Update SOGo Autoreply Schedule to 5m Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436 * [Web] add github version tag - move twig globals * [Web] add github version tag - missing </div> * Passwordless SOGo auth: improvements for when accessing other users * [WebAuthn] fido2 passwordless auth - fix (#4440) * [WebAuthn] fido2 revert * [WebAuthn] set UV flags to 'discouraged' * [WebAuthn] revert - set UV flags to 'discouraged' Co-authored-by: ntimo <git@nowitzki.me> Co-authored-by: Peter <magic@kthx.at> Co-authored-by: FreddleSpl0it <patschul@posteo.de> Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com> Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com> 2022-02-01 22:26:48 +08:00			`// globals`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`$globalVariables = [`
Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445) * [API] Fix minor issue in api docs * [GH-Actions][stale] Add neverstale label to exempt list * [Web] add github version tag * [Web] add github version tag error handling * Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php. * [Web] add github version tag - adjust css * [Compose] Update SOGo Autoreply Schedule to 5m Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436 * [Web] add github version tag - move twig globals * [Web] add github version tag - missing </div> * Passwordless SOGo auth: improvements for when accessing other users * [WebAuthn] fido2 passwordless auth - fix (#4440) * [WebAuthn] fido2 revert * [WebAuthn] set UV flags to 'discouraged' * [WebAuthn] revert - set UV flags to 'discouraged' Co-authored-by: ntimo <git@nowitzki.me> Co-authored-by: Peter <magic@kthx.at> Co-authored-by: FreddleSpl0it <patschul@posteo.de> Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com> Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com> 2022-02-01 22:26:48 +08:00			`'mailcow_info' => array(`
			`'version_tag' => $GLOBALS['MAILCOW_GIT_VERSION'],`
Readded footer + vars. 2022-08-24 20:37:00 +08:00			`'last_version_tag' => $GLOBALS['MAILCOW_LAST_GIT_VERSION'],`
			`'git_owner' => $GLOBALS['MAILCOW_GIT_OWNER'],`
			`'git_repo' => $GLOBALS['MAILCOW_GIT_REPO'],`
			`'git_project_url' => $GLOBALS['MAILCOW_GIT_URL'],`
			`'git_commit' => $GLOBALS['MAILCOW_GIT_COMMIT'],`
			`'git_commit_date' => $GLOBALS['MAILCOW_GIT_COMMIT_DATE'],`
			`'mailcow_branch' => $GLOBALS['MAILCOW_BRANCH'],`
			`'updated_at' => $GLOBALS['MAILCOW_UPDATEDAT']`
Jan(moo)uary Update 2022 - Revision A (2022-01a) (#4445) * [API] Fix minor issue in api docs * [GH-Actions][stale] Add neverstale label to exempt list * [Web] add github version tag * [Web] add github version tag error handling * Passwordless SOGo auth: support for calendar invitations and calendar/contacts subscriptions Inviting someone to a calendar event triggers a request to /SOGo/so/otheruser@example.com/freebusy.ifb/ajaxRead. Subscribing to someone's calendar/contacts triggers a request to /SOGo/so/otheruser@example.com/foldersSearch. The email address in the URL is different from the logged-in user, which needs to be handled appropriately by sogo-auth.php. * [Web] add github version tag - adjust css * [Compose] Update SOGo Autoreply Schedule to 5m Based on the advice of inverse (SOGo developer). Thanks to https://github.com/jmber Closes: https://github.com/mailcow/mailcow-dockerized/issues/4436 * [Web] add github version tag - move twig globals * [Web] add github version tag - missing </div> * Passwordless SOGo auth: improvements for when accessing other users * [WebAuthn] fido2 passwordless auth - fix (#4440) * [WebAuthn] fido2 revert * [WebAuthn] set UV flags to 'discouraged' * [WebAuthn] revert - set UV flags to 'discouraged' Co-authored-by: ntimo <git@nowitzki.me> Co-authored-by: Peter <magic@kthx.at> Co-authored-by: FreddleSpl0it <patschul@posteo.de> Co-authored-by: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com> Co-authored-by: Michael Kuron <mkuron@users.noreply.github.com> 2022-02-01 22:26:48 +08:00			`),`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`'js_path' => '/cache/'.basename($JSPath),`
[Web] add verify selected tfa 2022-02-21 17:46:24 +08:00			`'pending_tfa_methods' => @$_SESSION['pending_tfa_methods'],`
			`'pending_tfa_authmechs' => $pending_tfa_authmechs,`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`'pending_mailcow_cc_username' => @$_SESSION['pending_mailcow_cc_username'],`
			`'lang_footer' => json_encode($lang['footer']),`
			`'lang_acl' => json_encode($lang['acl']),`
			`'lang_tfa' => json_encode($lang['tfa']),`
			`'lang_fido2' => json_encode($lang['fido2']),`
			`'docker_timeout' => $DOCKER_TIMEOUT,`
			`'session_lifetime' => (int)$SESSION_LIFETIME,`
			`'csrf_token' => $_SESSION['CSRF']['TOKEN'],`
			`'pagination_size' => $PAGINATION_SIZE,`
			`'log_pagination_size' => $LOG_PAGINATION_SIZE,`
			`'alerts' => $alerts,`
[Web] fixed totp var in twig Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-10-21 06:10:05 +08:00			`'totp_secret' => $tfa->createSecret(),`
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`];`
[Web] mailbox.php uses dropups [Web] Allow to set visibility of aliases in SOGo [Web] Refresh window when session timed out [Web] Increase default log lines and pagination trigger [Web] Increase delay when filtering tables 2019-09-22 21:10:56 +08:00
[web] implemented twig templating system (#4264) Signed-off-by: Kristian Feldsam <feldsam@gmail.com> 2021-09-23 02:47:10 +08:00			`foreach ($globalVariables as $globalVariableName => $globalVariableValue) {`
			`$twig->addGlobal($globalVariableName, $globalVariableValue);`
			`}`

[Dovecot, Web] Allow SOGo access with app password when imap is disabled; Add sieve to mailbox protocol access restrictions 2021-10-30 14:03:41 +08:00			`if (is_array($template_data)) {`
			`echo $twig->render($template, $template_data);`
			`}`
small cleanup 2019-10-24 04:09:10 +08:00
[Web] Important: Do not allow API actions with r/o session key, THANKS TO Samuel Oosterholt 2021-05-20 21:51:52 +08:00			`if (isset($_SESSION['mailcow_cc_api'])) {`
			`session_regenerate_id(true);`
			`session_unset();`
			`session_destroy();`
			`session_write_close();`
			`header("Location: /");`
			`}`
Formatting, Updated Bootstrap/Bootswatch 2017-05-17 01:20:58 +08:00			`$stmt = null;`
Various... 2017-12-09 20:17:15 +08:00			`$pdo = null;`