Ejemplo n.º 1
 function onSubmit()
     global $app, $conf;
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_fetchmail FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another transport.
         if ($this->id == 0 && $client["limit_fetchmail"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(mailget_id) as number FROM mail_get WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_fetchmail"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_fetchmail_txt"] . "<br>";
     // end if user is not admin
     // Set the server ID according to the selected destination
     $tmp = $app->db->queryOneRecord("SELECT server_id FROM mail_user WHERE email = '" . $app->db->quote($this->dataRecord["destination"]) . "'");
     $this->dataRecord["server_id"] = $tmp["server_id"];
Ejemplo n.º 2
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     $parent_domain = $app->db->queryOneRecord("select server_id FROM web_domain WHERE domain_id = " . intval(@$this->dataRecord["parent_domain_id"]));
     // Set a few fixed values
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
Ejemplo n.º 3
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     $folder = $app->db->queryOneRecord("select server_id FROM web_folder WHERE web_folder_id = " . $app->functions->intval(@$this->dataRecord["web_folder_id"]));
     // Set a few fixed values
     $this->dataRecord["server_id"] = $folder["server_id"];
Ejemplo n.º 4
 function onSubmit()
     global $app;
     //* We do not want to mirror the the server itself
     if ($this->id == $this->dataRecord['mirror_server_id']) {
         $this->dataRecord['mirror_server_id'] = 0;
Ejemplo n.º 5
 function onSubmit()
     global $app, $conf;
     //* If the current user is not the admin user
     if ($_SESSION['s']['user']['typ'] != 'admin') {
         //* Set the admin as recipient
         $this->dataRecord['recipient_id'] = 1;
     //* Set the sender_id field to the ID of the current user
     $this->dataRecord['sender_id'] = $_SESSION['s']['user']['userid'];
     //* Get recipient email address
     if ($this->dataRecord['recipient_id'] > 1) {
         $sql = "SELECT client.email FROM sys_user, client WHERE sys_user.userid = " . $app->functions->intval($this->dataRecord['recipient_id']) . " AND sys_user.client_id = client.client_id";
         $client = $app->db->queryOneRecord($sql);
         $recipient_email = $client['email'];
     } else {
         $system_config_mail_settings = $app->getconf->get_global_config('mail');
         $recipient_email = $system_config_mail_settings['admin_mail'];
     //* Get sender email address
     if ($this->dataRecord['sender_id'] > 1) {
         $sql = "SELECT client.email FROM sys_user, client WHERE sys_user.userid = " . $app->functions->intval($this->dataRecord['sender_id']) . " AND sys_user.client_id = client.client_id";
         $client = $app->db->queryOneRecord($sql);
         $sender_email = $client['email'];
     } else {
         $system_config_mail_settings = $app->getconf->get_global_config('mail');
         $sender_email = $system_config_mail_settings['admin_mail'];
     $email_regex = '/^(\\w+[\\w\\.\\-\\+]*\\w{0,}@\\w+[\\w.-]*\\.[a-z\\-]{2,10}){0,1}$/i';
     if (preg_match($email_regex, $sender_email, $match) && preg_match($email_regex, $recipient_email, $match)) {
         $subject = $app->tform->lng('support_request_subject_txt') . ': ' . $this->dataRecord['subject'];
         if ($this->dataRecord['recipient_id'] == 1) {
             $message = $app->tform->lng('support_request_txt');
         } else {
             $message = $app->tform->lng('answer_to_support_request_txt');
         $message .= "\n\n" . $app->tform->lng('message_txt') . ": \"" . $this->dataRecord['message'] . "\"";
         $message .= "\n\nISPConfig: " . ($_SERVER['HTTPS'] == 'on' ? 'https://' : 'http://') . $_SERVER['HTTP_HOST'];
         $app->functions->mail($recipient_email, $subject, $message, $sender_email);
         //* Send confirmation email to sender
         if ($this->dataRecord['sender_id'] == 1) {
             $confirmation_message = $app->tform->lng('answer_to_support_request_sent_txt');
         } else {
             $confirmation_message = $app->tform->lng('support_request_sent_txt');
         $confirmation_message .= "\n\n" . $app->tform->lng('message_txt') . ": \"" . $this->dataRecord['message'] . "\"";
         $confirmation_message .= "\n\nISPConfig: " . ($_SERVER['HTTPS'] == 'on' ? 'https://' : 'http://') . $_SERVER['HTTP_HOST'];
         $app->functions->mail($sender_email, $subject, $confirmation_message, $recipient_email);
     } else {
         $app->tform->errorMessage .= $app->tform->lng("recipient_or_sender_email_address_not_valid_txt") . "<br />";
     //* call the onSubmit function of the parent class
 function onSubmit()
     $this->id = $_SESSION['s']['user']['mailuser_id'];
     //* if autoresponder checkbox not selected, do not save dates
     if (!isset($_POST['autoresponder']) && array_key_exists('autoresponder_start_date', $_POST)) {
         $this->dataRecord['autoresponder_start_date'] = array_map(create_function('$item', 'return 0;'), $this->dataRecord['autoresponder_start_date']);
         $this->dataRecord['autoresponder_end_date'] = array_map(create_function('$item', 'return 0;'), $this->dataRecord['autoresponder_end_date']);
Ejemplo n.º 7
 function onSubmit()
     global $app;
     $this->id = $_SESSION['s']['user']['mailuser_id'];
     $rec = $app->tform->getDataRecord($this->id);
     if (isset($_POST['cc']) && trim($_POST['cc']) == $rec['email']) {
         $app->tform->errorMessage .= $app->tform->lng('email_is_cc_error');
Ejemplo n.º 8
 function onSubmit()
     global $app;
     //* Resellers shall not be able to create another reseller or set reseller specific settings
     if ($_SESSION["s"]["user"]["typ"] == 'user') {
         $this->dataRecord['limit_client'] = 0;
         $this->dataRecord['limit_domainmodule'] = 0;
Ejemplo n.º 9
 function onSubmit()
     global $app, $conf;
     //* If the current user is not the admin user
     if ($_SESSION['s']['user']['typ'] != 'admin') {
         //* Set the admin as recipient
         $this->dataRecord['recipient_id'] = 1;
     //* Set the sender_id field to the ID of the current user
     $this->dataRecord['sender_id'] = $_SESSION['s']['user']['userid'];
     //* call the onSubmit function of the parent class
Ejemplo n.º 10
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . intval(@$this->dataRecord["parent_domain_id"]));
     // Set a few fixed values
     $this->dataRecord["type"] = 'subdomain';
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
     $this->dataRecord["domain"] = $this->dataRecord["domain"] . '.' . $parent_domain["domain"];
     $this->parent_domain_record = $parent_domain;
     //* make sure that the email domain is lowercase
     if (isset($this->dataRecord["domain"])) {
         $this->dataRecord["domain"] = strtolower($this->dataRecord["domain"]);
Ejemplo n.º 11
 function onSubmit()
     global $app, $conf;
     // Check for duplicates
     if ($this->dataRecord['template_type'] == 'welcome') {
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $sql = "SELECT count(client_message_template_id) as number FROM client_message_template WHERE template_type = 'welcome' AND sys_groupid = " . $client_group_id;
         if ($this->id > 0) {
             $sql .= " AND client_message_template_id != " . $this->id;
         $tmp = $app->db->queryOneRecord($sql);
         if ($tmp['number'] > 0) {
             $app->tform->errorMessage .= $app->tform->lng('duplicate_welcome_error');
Ejemplo n.º 12
 function onSubmit()
     global $app;
     $section = $app->tform->getCurrentTab();
     $server_config_array = $app->getconf->get_global_config();
     $new_config = $app->tform->encode($this->dataRecord, $section);
     if ($section == 'mail') {
         if ($new_config['smtp_pass'] == '') {
             $new_config['smtp_pass'] = $server_config_array['smtp_pass'];
         if ($new_config['smtp_enabled'] == 'y' && ($new_config['admin_mail'] == '' || $new_config['admin_name'] == '')) {
             $app->tform->errorMessage .= $app->tform->lng("smtp_missing_admin_mail_txt");
Ejemplo n.º 13
 function onSubmit()
     global $app, $conf;
     // we will check only users, not admins
     if ($_SESSION["s"]["user"]["typ"] == 'user' && $this->id == 0) {
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_client FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another website.
         if ($client["limit_client"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(client_id) as number FROM client WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_client"]) {
Ejemplo n.º 14
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . $app->functions->intval(@$this->dataRecord["parent_domain_id"]) . " AND " . $app->tform->getAuthSQL('r'));
     if (!$parent_domain || $parent_domain['domain_id'] != @$this->dataRecord['parent_domain_id']) {
         $app->tform->errorMessage .= $app->tform->lng("no_domain_perm");
     // Set a few fixed values
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
     // make sure this folder isn't protected already
     if ($this->id > 0) {
         $folder = $app->db->queryOneRecord("SELECT * FROM web_folder WHERE parent_domain_id = " . $this->dataRecord['parent_domain_id'] . " AND path = '" . $this->dataRecord['path'] . "' AND web_folder_id != " . $this->id);
     } else {
         $folder = $app->db->queryOneRecord("SELECT * FROM web_folder WHERE parent_domain_id = " . $this->dataRecord['parent_domain_id'] . " AND path = '" . $this->dataRecord['path'] . "'");
     if (is_array($folder) && !empty($folder)) {
         $app->tform->errorMessage .= $app->tform->lng('error_folder_already_protected_txt');
Ejemplo n.º 15
 function onSubmit()
     global $app, $conf;
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $client = $app->db->queryOneRecord("SELECT limit_spamfilter_policy FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another mailbox.
         if ($this->id == 0 && $client["limit_spamfilter_policy"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(id) as number FROM spamfilter_policy WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_spamfilter_policy"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_spamfilter_policy_txt"] . "<br>";
     // end if user is not admin
Ejemplo n.º 16
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     $folder = $app->db->queryOneRecord("select * FROM web_folder WHERE web_folder_id = " . $app->functions->intval(@$this->dataRecord["web_folder_id"]) . " AND " . $app->tform->getAuthSQL('r'));
     if (!$folder || $folder['web_folder_id'] != @$this->dataRecord['web_folder_id']) {
         $app->tform->errorMessage .= $app->tform->lng("no_folder_perm");
     // Set a few fixed values
     $this->dataRecord["server_id"] = $folder["server_id"];
     // make sure this folder/user combination does not exist already
     if ($this->id > 0) {
         $user = $app->db->queryOneRecord("SELECT * FROM web_folder_user WHERE web_folder_id = " . $this->dataRecord['web_folder_id'] . " AND username = '******'username'] . "' AND web_folder_user_id != " . $this->id);
     } else {
         $user = $app->db->queryOneRecord("SELECT * FROM web_folder_user WHERE web_folder_id = " . $this->dataRecord['web_folder_id'] . " AND username = '******'username'] . "'");
     if (is_array($user) && !empty($user)) {
         $app->tform->errorMessage .= $app->tform->lng('error_user_exists_already_txt');
Ejemplo n.º 17
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     if (isset($this->dataRecord["parent_domain_id"])) {
         $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . $app->functions->intval(@$this->dataRecord["parent_domain_id"]) . " AND " . $app->tform->getAuthSQL('r'));
         if (!$parent_domain || $parent_domain['domain_id'] != @$this->dataRecord['parent_domain_id']) {
             $app->tform->errorMessage .= $app->tform->lng("no_domain_perm");
     } else {
         $tmp = $app->tform->getDataRecord($this->id);
         $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . $app->functions->intval($tmp["parent_domain_id"]) . " AND " . $app->tform->getAuthSQL('r'));
         if (!$parent_domain) {
             $app->tform->errorMessage .= $app->tform->lng("no_domain_perm");
     // Set a few fixed values
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
     if (isset($this->dataRecord['username']) && trim($this->dataRecord['username']) == '') {
         $app->tform->errorMessage .= $app->tform->lng('username_error_empty') . '<br />';
     if (isset($this->dataRecord['username']) && empty($this->dataRecord['parent_domain_id'])) {
         $app->tform->errorMessage .= $app->tform->lng('parent_domain_id_error_empty') . '<br />';
     if (isset($this->dataRecord['dir']) && stristr($this->dataRecord['dir'], '..')) {
         $app->tform->errorMessage .= $app->tform->lng('dir_dot_error') . '<br />';
     if (isset($this->dataRecord['dir']) && stristr($this->dataRecord['dir'], './')) {
         $app->tform->errorMessage .= $app->tform->lng('dir_slashdot_error') . '<br />';
Ejemplo n.º 18
 function onSubmit()
     global $app, $conf;
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_dns_slave_zone, default_dnsserver FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // When the record is updated
         if ($this->id > 0) {
             // restore the server ID if the user is not admin and record is edited
             $tmp = $app->db->queryOneRecord("SELECT server_id FROM dns_slave WHERE id = " . intval($this->id));
             $this->dataRecord["server_id"] = $tmp["server_id"];
             // When the record is inserted
         } else {
             // set the server ID to the default dnsserver of the client
             $this->dataRecord["server_id"] = $client["default_dnsserver"];
             // Check if the user may add anoter secondary domain.
             if (!$app->tform->checkClientLimit('limit_dns_slave_zone')) {
             if (!$app->tform->checkResellerLimit('limit_dns_slave_zone')) {
                 $app->error('Reseller: ' . $app->tform->wordbook["limit_dns_slave_zone_txt"]);
     //* Check if the zone name has a dot at the end
     if (strlen($this->dataRecord["origin"]) > 0 && substr($this->dataRecord["origin"], -1, 1) != '.') {
         $this->dataRecord["origin"] .= '.';
     //* Check if a primary zone with the same name already exists
     $tmp = $app->db->queryOneRecord("SELECT count(id) as number FROM dns_soa WHERE origin = \"" . $this->dataRecord["origin"] . "\" AND server_id= \"" . $this->dataRecord["server_id"] . "\"");
     if ($tmp["number"] > 0) {
Ejemplo n.º 19
 function onSubmit()
     global $app, $conf;
     //* Check if destination email belongs to user
     if (isset($_POST["destination"])) {
         $email = $app->db->queryOneRecord("SELECT email FROM mail_user WHERE email = '" . $app->db->quote($app->functions->idn_encode($_POST["destination"])) . "' AND " . $app->tform->getAuthSQL('r'));
         if ($email["email"] != $app->functions->idn_encode($_POST["destination"])) {
             $app->tform->errorMessage .= $app->tform->lng("no_destination_perm");
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $client = $app->db->queryOneRecord("SELECT limit_fetchmail FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another transport.
         if ($this->id == 0 && $client["limit_fetchmail"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(mailget_id) as number FROM mail_get WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_fetchmail"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_fetchmail_txt"] . "<br>";
     // end if user is not admin
     // Set the server ID according to the selected destination
     $tmp = $app->db->queryOneRecord("SELECT server_id FROM mail_user WHERE email = '" . $app->db->quote($this->dataRecord["destination"]) . "'");
     $this->dataRecord["server_id"] = $tmp["server_id"];
     //* Check that no illegal combination of options is set
     if ((!isset($this->dataRecord['source_delete']) || @$this->dataRecord['source_delete'] == 'n') && $this->dataRecord['source_read_all'] == 'y') {
         $app->tform->errorMessage .= $app->tform->lng('error_delete_read_all_combination') . "<br>";
Ejemplo n.º 20
 function onSubmit()
     global $app, $conf;
     // Get the parent mail_user record
     $mailuser = $app->db->queryOneRecord("SELECT * FROM mail_user WHERE mailuser_id = '" . $app->functions->intval($_SESSION['s']['user']['mailuser_id']) . "'");
     // Set the mailuser_id
     $this->dataRecord["mailuser_id"] = $mailuser["mailuser_id"];
     // Remove leading dots
     if (substr($this->dataRecord['target'], 0, 1) == '.') {
         $this->dataRecord['target'] = substr($this->dataRecord['target'], 1);
     // Check the client limits if the email address is assigned to a client
     if ($_SESSION["s"]["user"]["default_group"] > 0) {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_mailfilter FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another filter
         if ($this->id == 0 && $client["limit_mailfilter"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(filter_id) as number FROM mail_user_filter WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_mailfilter"]) {
                 $app->tform->errorMessage .= $app->tform->lng("limit_mailfilter_txt") . "<br>";
     // end if user is not admin
Ejemplo n.º 21
 function onSubmit()
     global $app, $conf;
     // Check if Domain belongs to user
     $domain = $app->db->queryOneRecord("SELECT server_id, domain FROM mail_domain WHERE domain = '" . $app->db->quote($_POST["email_domain"]) . "' AND " . $app->tform->getAuthSQL('r'));
     if ($domain["domain"] != $_POST["email_domain"]) {
         $app->tform->errorMessage .= $app->tform->wordbook["no_domain_perm"];
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_mailalias FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another mailbox.
         if ($this->id == 0 && $client["limit_mailalias"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(forwarding_id) as number FROM mail_forwarding WHERE sys_groupid = {$client_group_id} AND type = 'alias'");
             if ($tmp["number"] >= $client["limit_mailalias"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_mailalias_txt"] . "<br>";
     // end if user is not admin
     // compose the email field
     $this->dataRecord["source"] = $_POST["email_local_part"] . "@" . $_POST["email_domain"];
     // Set the server id of the mailbox = server ID of mail domain.
     $this->dataRecord["server_id"] = $domain["server_id"];
     //* Check if there is no active mailbox with this address
     $tmp = $app->db->queryOneRecord("SELECT count(mailuser_id) as number FROM mail_user WHERE postfix = 'y' AND email = '" . $app->db->quote($this->dataRecord["source"]) . "'");
     if ($tmp['number'] > 0) {
         $app->tform->errorMessage .= $app->tform->lng("duplicate_mailbox_txt") . "<br>";
Ejemplo n.º 22
 function onSubmit()
     global $app, $conf;
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $client = $app->db->queryOneRecord("SELECT limit_mailrouting FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another transport.
         if ($this->id == 0 && $client["limit_mailrouting"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(transport_id) as number FROM mail_transport WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_mailrouting"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_mailrouting_txt"] . "<br>";
     // end if user is not admin
     //* Compose transport field
     if ($this->dataRecord["mx"] == 'y') {
         if (stristr($this->dataRecord["destination"], ':')) {
             $tmp_parts = explode(":", $this->dataRecord["destination"]);
             $transport = '[' . $tmp_parts[0] . ']:' . $tmp_parts[1];
         } else {
             $transport = '[' . $this->dataRecord["destination"] . ']';
     } else {
         $transport = $this->dataRecord["destination"];
     if ($this->dataRecord["type"] == 'custom') {
         $this->dataRecord["transport"] = $transport;
     } else {
         $this->dataRecord["transport"] = $this->dataRecord["type"] . ':' . $transport;
Ejemplo n.º 23
 function onSubmit()
     global $app, $conf;
     /* check if the domain module is used - and check if the selected domain can be used! */
     if ($app->tform->getCurrentTab() == 'domain') {
         $settings = $app->getconf->get_global_config('domains');
         if ($settings['use_domain_module'] == 'y') {
             $domain_check = $app->tools_sites->checkDomainModuleDomain($this->dataRecord['domain']);
             if (!$domain_check) {
                 // invalid domain selected
                 $app->tform->errorMessage .= $app->tform->lng("domain_error_empty") . "<br />";
             } else {
                 $this->dataRecord['domain'] = $domain_check;
     // nginx: if redirect type is proxy and redirect path is no URL, display error
     //if($this->dataRecord["redirect_type"] == 'proxy' && substr($this->dataRecord['redirect_path'],0,1) == '/'){
     // $app->tform->errorMessage .= $app->tform->lng("error_proxy_requires_url")."<br />";
     // Set a few fixed values
     $this->dataRecord["parent_domain_id"] = 0;
     $this->dataRecord["type"] = 'vhost';
     $this->dataRecord["vhost_type"] = 'name';
     $read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // Get the limits of the client
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $client = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_domain, default_webserver, parent_client_id, limit_web_quota, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         if ($client['limit_cgi'] != 'y') {
             $this->dataRecord['cgi'] = 'n';
         if ($client['limit_ssi'] != 'y') {
             $this->dataRecord['ssi'] = 'n';
         if ($client['limit_perl'] != 'y') {
             $this->dataRecord['perl'] = 'n';
         if ($client['limit_ruby'] != 'y') {
             $this->dataRecord['ruby'] = 'n';
         if ($client['limit_python'] != 'y') {
             $this->dataRecord['python'] = 'n';
         if ($client['force_suexec'] == 'y') {
             $this->dataRecord['suexec'] = 'y';
         if ($client['limit_hterror'] != 'y') {
             $this->dataRecord['errordocs'] = 'n';
         if ($client['limit_wildcard'] != 'y' && $this->dataRecord['subdomain'] == '*') {
             $this->dataRecord['subdomain'] = 'n';
         if ($client['limit_ssl'] != 'y') {
             $this->dataRecord['ssl'] = 'n';
         // only generate quota and traffic warnings if value has changed
         if ($this->id > 0) {
             $old_web_values = $app->db->queryOneRecord("SELECT * FROM web_domain WHERE domain_id = " . $app->functions->intval($this->id));
         } else {
             $old_web_values = array();
         //* Check the website quota of the client
         if (isset($_POST["hd_quota"]) && $client["limit_web_quota"] >= 0 && $_POST["hd_quota"] != $old_web_values["hd_quota"]) {
             $tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND type = 'vhost' AND " . $app->tform->getAuthSQL('u'));
             $webquota = $tmp["webquota"];
             $new_web_quota = $app->functions->intval($this->dataRecord["hd_quota"]);
             if ($webquota + $new_web_quota > $client["limit_web_quota"] || $new_web_quota < 0 && $client["limit_web_quota"] >= 0) {
                 $max_free_quota = floor($client["limit_web_quota"] - $webquota);
                 if ($max_free_quota < 0) {
                     $max_free_quota = 0;
                 $app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                 // Set the quota field to the max free space
                 $this->dataRecord["hd_quota"] = $max_free_quota;
         //* Check the traffic quota of the client
         if (isset($_POST["traffic_quota"]) && $client["limit_traffic_quota"] > 0 && $_POST["traffic_quota"] != $old_web_values["traffic_quota"]) {
             $tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
             $trafficquota = $tmp["trafficquota"];
             $new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
             if ($trafficquota + $new_traffic_quota > $client["limit_traffic_quota"] || $new_traffic_quota < 0 && $client["limit_traffic_quota"] >= 0) {
                 $max_free_quota = floor($client["limit_traffic_quota"] - $trafficquota);
                 if ($max_free_quota < 0) {
                     $max_free_quota = 0;
                 $app->tform->errorMessage .= $app->tform->lng("limit_traffic_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                 // Set the quota field to the max free space
                 $this->dataRecord["traffic_quota"] = $max_free_quota;
         if ($client['parent_client_id'] > 0) {
             // Get the limits of the reseller
             $reseller = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_domain, default_webserver, limit_web_quota FROM client WHERE client_id = " . $app->functions->intval($client['parent_client_id']));
             //* Check the website quota of the client
             if (isset($_POST["hd_quota"]) && $reseller["limit_web_quota"] >= 0 && $_POST["hd_quota"] != $old_web_values["hd_quota"]) {
                 $tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND type = 'vhost' AND " . $app->tform->getAuthSQL('u'));
                 $webquota = $tmp["webquota"];
                 $new_web_quota = $app->functions->intval($this->dataRecord["hd_quota"]);
                 if ($webquota + $new_web_quota > $reseller["limit_web_quota"] || $new_web_quota < 0 && $reseller["limit_web_quota"] >= 0) {
                     $max_free_quota = floor($reseller["limit_web_quota"] - $webquota);
                     if ($max_free_quota < 0) {
                         $max_free_quota = 0;
                     $app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                     // Set the quota field to the max free space
                     $this->dataRecord["hd_quota"] = $max_free_quota;
             //* Check the traffic quota of the client
             if (isset($_POST["traffic_quota"]) && $reseller["limit_traffic_quota"] > 0 && $_POST["traffic_quota"] != $old_web_values["traffic_quota"]) {
                 $tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
                 $trafficquota = $tmp["trafficquota"];
                 $new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
                 if ($trafficquota + $new_traffic_quota > $reseller["limit_traffic_quota"] || $new_traffic_quota < 0 && $reseller["limit_traffic_quota"] >= 0) {
                     $max_free_quota = floor($reseller["limit_traffic_quota"] - $trafficquota);
                     if ($max_free_quota < 0) {
                         $max_free_quota = 0;
                     $app->tform->errorMessage .= $app->tform->lng("limit_traffic_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                     // Set the quota field to the max free space
                     $this->dataRecord["traffic_quota"] = $max_free_quota;
         // When the record is updated
         if ($this->id > 0) {
             // restore the server ID if the user is not admin and record is edited
             $tmp = $app->db->queryOneRecord("SELECT server_id, `system_user`, `system_group`, `cgi`, `ssi`, `perl`, `ruby`, `python`, `suexec`, `errordocs`, `subdomain`, `ssl` FROM web_domain WHERE domain_id = " . $app->functions->intval($this->id));
             $this->dataRecord["server_id"] = $tmp["server_id"];
             $this->dataRecord['system_user'] = $tmp['system_user'];
             $this->dataRecord['system_group'] = $tmp['system_group'];
             // set the settings to current if not provided (or cleared due to limits)
             if ($this->dataRecord['cgi'] == 'n') {
                 $this->dataRecord['cgi'] = $tmp['cgi'];
             if ($this->dataRecord['ssi'] == 'n') {
                 $this->dataRecord['ssi'] = $tmp['ssi'];
             if ($this->dataRecord['perl'] == 'n') {
                 $this->dataRecord['perl'] = $tmp['perl'];
             if ($this->dataRecord['ruby'] == 'n') {
                 $this->dataRecord['ruby'] = $tmp['ruby'];
             if ($this->dataRecord['python'] == 'n') {
                 $this->dataRecord['python'] = $tmp['python'];
             if ($this->dataRecord['suexec'] == 'n') {
                 $this->dataRecord['suexec'] = $tmp['suexec'];
             if ($this->dataRecord['errordocs'] == 'n') {
                 $this->dataRecord['errordocs'] = $tmp['errordocs'];
             if ($this->dataRecord['subdomain'] == 'n') {
                 $this->dataRecord['subdomain'] = $tmp['subdomain'];
             if ($this->dataRecord['ssl'] == 'n') {
                 $this->dataRecord['ssl'] = $tmp['ssl'];
             // When the record is inserted
         } else {
             //* set the server ID to the default webserver of the client
             $this->dataRecord["server_id"] = $client["default_webserver"];
             // Check if the user may add another web_domain
             if ($client["limit_web_domain"] >= 0) {
                 $tmp = $app->db->queryOneRecord("SELECT count(domain_id) as number FROM web_domain WHERE sys_groupid = {$client_group_id} and type = 'vhost'");
                 if ($tmp["number"] >= $client["limit_web_domain"]) {
         // Clients may not set the client_group_id, so we unset them if user is not a admin and the client is not a reseller
         if (!$app->auth->has_clients($_SESSION['s']['user']['userid'])) {
     //* make sure that the email domain is lowercase
     if (isset($this->dataRecord["domain"])) {
         $this->dataRecord["domain"] = strtolower($this->dataRecord["domain"]);
     //* get the server config for this server
     if ($this->id > 0) {
         $web_rec = $app->tform->getDataRecord($this->id);
         $server_id = $web_rec["server_id"];
     } else {
         // Get the first server ID
         $tmp = $app->db->queryOneRecord("SELECT server_id FROM server WHERE web_server = 1 ORDER BY server_name LIMIT 0,1");
         $server_id = intval($tmp['server_id']);
     $web_config = $app->getconf->get_server_config($app->functions->intval(isset($this->dataRecord["server_id"]) ? $this->dataRecord["server_id"] : $server_id), 'web');
     //* Check for duplicate ssl certs per IP if SNI is disabled
     if (isset($this->dataRecord['ssl']) && $this->dataRecord['ssl'] == 'y' && $web_config['enable_sni'] != 'y') {
         $sql = "SELECT count(domain_id) as number FROM web_domain WHERE `ssl` = 'y' AND ip_address = '" . $app->db->quote($this->dataRecord['ip_address']) . "' and domain_id != " . $this->id;
         $tmp = $app->db->queryOneRecord($sql);
         if ($tmp['number'] > 0) {
             $app->tform->errorMessage .= $app->tform->lng("error_no_sni_txt");
     // Check if pm.max_children >= pm.max_spare_servers >= pm.start_servers >= pm.min_spare_servers > 0
     if (isset($this->dataRecord['pm_max_children']) && $this->dataRecord['pm'] == 'dynamic') {
         if ($app->functions->intval($this->dataRecord['pm_max_children'], true) >= $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) >= $app->functions->intval($this->dataRecord['pm_start_servers'], true) && $app->functions->intval($this->dataRecord['pm_start_servers'], true) >= $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) > 0) {
         } else {
             $app->tform->errorMessage .= $app->tform->lng("error_php_fpm_pm_settings_txt") . '<br>';
     // Check rewrite rules
     $server_type = $web_config['server_type'];
     if ($server_type == 'nginx' && isset($this->dataRecord['rewrite_rules']) && trim($this->dataRecord['rewrite_rules']) != '') {
         $rewrite_rules = trim($this->dataRecord['rewrite_rules']);
         $rewrites_are_valid = true;
         // use this counter to make sure all curly brackets are properly closed
         $if_level = 0;
         // Make sure we only have Unix linebreaks
         $rewrite_rules = str_replace("\r\n", "\n", $rewrite_rules);
         $rewrite_rules = str_replace("\r", "\n", $rewrite_rules);
         $rewrite_rule_lines = explode("\n", $rewrite_rules);
         if (is_array($rewrite_rule_lines) && !empty($rewrite_rule_lines)) {
             foreach ($rewrite_rule_lines as $rewrite_rule_line) {
                 // ignore comments
                 if (substr(ltrim($rewrite_rule_line), 0, 1) == '#') {
                 // empty lines
                 if (trim($rewrite_rule_line) == '') {
                 // rewrite
                 if (preg_match('@^\\s*rewrite\\s+(^/)?\\S+(\\$)?\\s+\\S+(\\s+(last|break|redirect|permanent|))?\\s*;\\s*$@', $rewrite_rule_line)) {
                 if (preg_match('@^\\s*rewrite\\s+(^/)?(\'[^\']+\'|"[^"]+")+(\\$)?\\s+(\'[^\']+\'|"[^"]+")+(\\s+(last|break|redirect|permanent|))?\\s*;\\s*$@', $rewrite_rule_line)) {
                 if (preg_match('@^\\s*rewrite\\s+(^/)?(\'[^\']+\'|"[^"]+")+(\\$)?\\s+\\S+(\\s+(last|break|redirect|permanent|))?\\s*;\\s*$@', $rewrite_rule_line)) {
                 if (preg_match('@^\\s*rewrite\\s+(^/)?\\S+(\\$)?\\s+(\'[^\']+\'|"[^"]+")+(\\s+(last|break|redirect|permanent|))?\\s*;\\s*$@', $rewrite_rule_line)) {
                 // if
                 if (preg_match('@^\\s*if\\s+\\(\\s*\\$\\S+(\\s+(\\!?(=|~|~\\*))\\s+(\\S+|\\".+\\"))?\\s*\\)\\s*\\{\\s*$@', $rewrite_rule_line)) {
                     $if_level += 1;
                 // if - check for files, directories, etc.
                 if (preg_match('@^\\s*if\\s+\\(\\s*\\!?-(f|d|e|x)\\s+\\S+\\s*\\)\\s*\\{\\s*$@', $rewrite_rule_line)) {
                     $if_level += 1;
                 // break
                 if (preg_match('@^\\s*break\\s*;\\s*$@', $rewrite_rule_line)) {
                 // return code [ text ]
                 if (preg_match('@^\\s*return\\s+\\d\\d\\d.*;\\s*$@', $rewrite_rule_line)) {
                 // return code URL
                 // return URL
                 if (preg_match('@^\\s*return(\\s+\\d\\d\\d)?\\s+(http|https|ftp)\\://([a-zA-Z0-9\\.\\-]+(\\:[a-zA-Z0-9\\.&%\\$\\-]+)*\\@)*((25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9])\\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[1-9]|0)\\.(25[0-5]|2[0-4][0-9]|[0-1]{1}[0-9]{2}|[1-9]{1}[0-9]{1}|[0-9])|localhost|([a-zA-Z0-9\\-]+\\.)*[a-zA-Z0-9\\-]+\\.(com|edu|gov|int|mil|net|org|biz|arpa|info|name|pro|aero|coop|museum|[a-zA-Z]{2}))(\\:[0-9]+)*(/($|[a-zA-Z0-9\\.\\,\\?\'\\\\+&%\\$#\\=~_\\-]+))*\\s*;\\s*$@', $rewrite_rule_line)) {
                 // set
                 if (preg_match('@^\\s*set\\s+\\$\\S+\\s+\\S+\\s*;\\s*$@', $rewrite_rule_line)) {
                 // closing curly bracket
                 if (trim($rewrite_rule_line) == '}') {
                     $if_level -= 1;
                 $rewrites_are_valid = false;
         if (!$rewrites_are_valid || $if_level != 0) {
             $app->tform->errorMessage .= $app->tform->lng("invalid_rewrite_rules_txt") . '<br>';
     // check custom php.ini settings
     if (isset($this->dataRecord['custom_php_ini']) && trim($this->dataRecord['custom_php_ini']) != '') {
         $custom_php_ini_settings = trim($this->dataRecord['custom_php_ini']);
         $custom_php_ini_settings_are_valid = true;
         // Make sure we only have Unix linebreaks
         $custom_php_ini_settings = str_replace("\r\n", "\n", $custom_php_ini_settings);
         $custom_php_ini_settings = str_replace("\r", "\n", $custom_php_ini_settings);
         $custom_php_ini_settings_lines = explode("\n", $custom_php_ini_settings);
         if (is_array($custom_php_ini_settings_lines) && !empty($custom_php_ini_settings_lines)) {
             foreach ($custom_php_ini_settings_lines as $custom_php_ini_settings_line) {
                 if (trim($custom_php_ini_settings_line) == '') {
                 if (substr(trim($custom_php_ini_settings_line), 0, 1) == ';') {
                 // empty value
                 if (preg_match('@^\\s*;*\\s*[a-zA-Z0-9._]*\\s*=\\s*;*\\s*$@', $custom_php_ini_settings_line)) {
                 // value inside ""
                 if (preg_match('@^\\s*;*\\s*[a-zA-Z0-9._]*\\s*=\\s*".*"\\s*;*\\s*$@', $custom_php_ini_settings_line)) {
                 // value inside ''
                 if (preg_match('@^\\s*;*\\s*[a-zA-Z0-9._]*\\s*=\\s*\'.*\'\\s*;*\\s*$@', $custom_php_ini_settings_line)) {
                 // everything else
                 if (preg_match('@^\\s*;*\\s*[a-zA-Z0-9._]*\\s*=\\s*[-a-zA-Z0-9~&=_\\@/,.#\\s|()]*\\s*;*\\s*$@', $custom_php_ini_settings_line)) {
                 $custom_php_ini_settings_are_valid = false;
         if (!$custom_php_ini_settings_are_valid) {
             $app->tform->errorMessage .= $app->tform->lng("invalid_custom_php_ini_settings_txt") . '<br>';
 function onSubmit()
     global $app, $conf;
     // Get the record of the parent domain
     if (!@$this->dataRecord["parent_domain_id"] && $this->id) {
         $tmp = $app->db->queryOneRecord("SELECT parent_domain_id FROM web_domain WHERE domain_id = " . $app->functions->intval($this->id));
         if ($tmp) {
             $this->dataRecord["parent_domain_id"] = $tmp['parent_domain_id'];
     $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . $app->functions->intval(@$this->dataRecord["parent_domain_id"]));
     // Set a few fixed values
     $this->dataRecord["type"] = 'vhostsubdomain';
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
     $this->dataRecord["ip_address"] = $parent_domain["ip_address"];
     $this->dataRecord["ipv6_address"] = $parent_domain["ipv6_address"];
     $this->dataRecord["client_group_id"] = $parent_domain["client_group_id"];
     $this->dataRecord["vhost_type"] = 'name';
     $this->parent_domain_record = $parent_domain;
     $read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');
     if ($app->tform->getCurrentTab() == 'domain') {
         /* check if the domain module is used - and check if the selected domain can be used! */
         $settings = $app->getconf->get_global_config('domains');
         if ($settings['use_domain_module'] == 'y') {
             $domain_check = $app->tools_sites->checkDomainModuleDomain($this->dataRecord['sel_domain']);
             if (!$domain_check) {
                 // invalid domain selected
                 $app->tform->errorMessage .= $app->tform->lng("domain_error_empty") . "<br />";
             } else {
                 $this->dataRecord['domain'] = $this->dataRecord['domain'] . '.' . $domain_check;
         } else {
             $this->dataRecord["domain"] = $this->dataRecord["domain"] . '.' . $parent_domain["domain"];
         $this->dataRecord['web_folder'] = strtolower($this->dataRecord['web_folder']);
         if (substr($this->dataRecord['web_folder'], 0, 1) === '/') {
             $this->dataRecord['web_folder'] = substr($this->dataRecord['web_folder'], 1);
         if (substr($this->dataRecord['web_folder'], -1) === '/') {
             $this->dataRecord['web_folder'] = substr($this->dataRecord['web_folder'], 0, -1);
         $forbidden_folders = array('', 'cgi-bin', 'log', 'private', 'ssl', 'tmp', 'webdav');
         $check_folder = strtolower($this->dataRecord['web_folder']);
         if (substr($check_folder, 0, 1) === '/') {
             $check_folder = substr($check_folder, 1);
         // strip / at beginning to check against forbidden entries
         if (strpos($check_folder, '/') !== false) {
             $check_folder = substr($check_folder, 0, strpos($check_folder, '/'));
         // get the first part of the path to check it
         if (in_array($check_folder, $forbidden_folders)) {
             $app->tform->errorMessage .= $app->tform->lng("web_folder_invalid_txt") . "<br>";
         // check for duplicate folder usage
                     $check = $app->db->queryOneRecord("SELECT COUNT(*) as `cnt` FROM `web_domain` WHERE `type` = 'vhostsubdomain' AND `parent_domain_id` = '" . $app->functions->intval($this->dataRecord['parent_domain_id']) . "' AND `web_folder` = '" . $app->db->quote($this->dataRecord['web_folder']) . "' AND `domain_id` != '" . $app->functions->intval($this->id) . "'");
                     if($check && $check['cnt'] > 0) {
                         $app->tform->errorMessage .= $app->tform->lng("web_folder_unique_txt")."<br>";
     } else {
         $this->dataRecord["domain"] = $this->dataRecord["domain"] . '.' . $parent_domain["domain"];
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_subdomain, default_webserver, parent_client_id, limit_web_quota, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         if ($client['limit_cgi'] != 'y') {
             $this->dataRecord['cgi'] = '-';
         if ($client['limit_ssi'] != 'y') {
             $this->dataRecord['ssi'] = '-';
         if ($client['limit_perl'] != 'y') {
             $this->dataRecord['perl'] = '-';
         if ($client['limit_ruby'] != 'y') {
             $this->dataRecord['ruby'] = '-';
         if ($client['limit_python'] != 'y') {
             $this->dataRecord['python'] = '-';
         if ($client['force_suexec'] != 'n') {
             $this->dataRecord['suexec'] = '-';
         if ($client['limit_hterror'] != 'y') {
             $this->dataRecord['errordocs'] = '-';
         if ($client['limit_wildcard'] != 'y' && $this->dataRecord['subdomain'] == '*') {
             $this->dataRecord['subdomain'] = '-';
         if ($client['limit_ssl'] != 'y') {
             $this->dataRecord['ssl'] = '-';
         //* Check the website quota of the client
         if (isset($_POST["hd_quota"]) && $client["limit_web_quota"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
             $webquota = $tmp["webquota"];
             $new_web_quota = $app->functions->intval($this->dataRecord["hd_quota"]);
             if ($webquota + $new_web_quota > $client["limit_web_quota"] || $new_web_quota < 0 && $client["limit_web_quota"] >= 0) {
                 $max_free_quota = floor($client["limit_web_quota"] - $webquota);
                 if ($max_free_quota < 0) {
                     $max_free_quota = 0;
                 $app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                 // Set the quota field to the max free space
                 $this->dataRecord["hd_quota"] = $max_free_quota;
         //* Check the traffic quota of the client
         if (isset($_POST["traffic_quota"]) && $client["limit_traffic_quota"] > 0) {
             $tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
             $trafficquota = $tmp["trafficquota"];
             $new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
             if ($trafficquota + $new_traffic_quota > $client["limit_traffic_quota"] || $new_traffic_quota < 0 && $client["limit_traffic_quota"] >= 0) {
                 $max_free_quota = floor($client["limit_traffic_quota"] - $trafficquota);
                 if ($max_free_quota < 0) {
                     $max_free_quota = 0;
                 $app->tform->errorMessage .= $app->tform->lng("limit_traffic_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                 // Set the quota field to the max free space
                 $this->dataRecord["traffic_quota"] = $max_free_quota;
         if ($client['parent_client_id'] > 0) {
             // Get the limits of the reseller
             $reseller = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_subdomain, default_webserver, limit_web_quota FROM client WHERE client_id = " . $client['parent_client_id']);
             //* Check the website quota of the client
             if (isset($_POST["hd_quota"]) && $reseller["limit_web_quota"] >= 0) {
                 $tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
                 $webquota = $tmp["webquota"];
                 $new_web_quota = $app->functions->intval($this->dataRecord["hd_quota"]);
                 if ($webquota + $new_web_quota > $reseller["limit_web_quota"] || $new_web_quota < 0 && $reseller["limit_web_quota"] >= 0) {
                     $max_free_quota = floor($reseller["limit_web_quota"] - $webquota);
                     if ($max_free_quota < 0) {
                         $max_free_quota = 0;
                     $app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                     // Set the quota field to the max free space
                     $this->dataRecord["hd_quota"] = $max_free_quota;
             //* Check the traffic quota of the client
             if (isset($_POST["traffic_quota"]) && $reseller["limit_traffic_quota"] > 0) {
                 $tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != " . $app->functions->intval($this->id) . " AND " . $app->tform->getAuthSQL('u'));
                 $trafficquota = $tmp["trafficquota"];
                 $new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
                 if ($trafficquota + $new_traffic_quota > $reseller["limit_traffic_quota"] || $new_traffic_quota < 0 && $reseller["limit_traffic_quota"] >= 0) {
                     $max_free_quota = floor($reseller["limit_traffic_quota"] - $trafficquota);
                     if ($max_free_quota < 0) {
                         $max_free_quota = 0;
                     $app->tform->errorMessage .= $app->tform->lng("limit_traffic_quota_free_txt") . ": " . $max_free_quota . " MB<br>";
                     // Set the quota field to the max free space
                     $this->dataRecord["traffic_quota"] = $max_free_quota;
         // When the record is updated
         if ($this->id > 0) {
             // restore the server ID if the user is not admin and record is edited
             $tmp = $app->db->queryOneRecord("SELECT server_id, `web_folder`, `cgi`, `ssi`, `perl`, `ruby`, `python`, `suexec`, `errordocs`, `subdomain`, `ssl` FROM web_domain WHERE domain_id = " . $app->functions->intval($this->id));
             $this->dataRecord['web_folder'] = $tmp['web_folder'];
             // cannot be changed!
             // set the settings to current if not provided (or cleared due to limits)
             if ($this->dataRecord['cgi'] == '-') {
                 $this->dataRecord['cgi'] = $tmp['cgi'];
             if ($this->dataRecord['ssi'] == '-') {
                 $this->dataRecord['ssi'] = $tmp['ssi'];
             if ($this->dataRecord['perl'] == '-') {
                 $this->dataRecord['perl'] = $tmp['perl'];
             if ($this->dataRecord['ruby'] == '-') {
                 $this->dataRecord['ruby'] = $tmp['ruby'];
             if ($this->dataRecord['python'] == '-') {
                 $this->dataRecord['python'] = $tmp['python'];
             if ($this->dataRecord['suexec'] == '-') {
                 $this->dataRecord['suexec'] = $tmp['suexec'];
             if ($this->dataRecord['errordocs'] == '-') {
                 $this->dataRecord['errordocs'] = $tmp['errordocs'];
             if ($this->dataRecord['subdomain'] == '-') {
                 $this->dataRecord['subdomain'] = $tmp['subdomain'];
             if ($this->dataRecord['ssl'] == '-') {
                 $this->dataRecord['ssl'] = $tmp['ssl'];
             // When the record is inserted
         } else {
             // Check if the user may add another web_domain
             if ($client["limit_web_subdomain"] >= 0) {
                 $tmp = $app->db->queryOneRecord("SELECT count(domain_id) as number FROM web_domain WHERE sys_groupid = {$client_group_id} and (type = 'subdomain' OR type = 'vhostsubdomain')");
                 if ($tmp["number"] >= $client["limit_web_subdomain"]) {
     //* make sure that the domain is lowercase
     if (isset($this->dataRecord["domain"])) {
         $this->dataRecord["domain"] = strtolower($this->dataRecord["domain"]);
     //* get the server config for this server
     $web_config = $app->getconf->get_server_config($app->functions->intval(isset($this->dataRecord["server_id"]) ? $this->dataRecord["server_id"] : 0), 'web');
     //* Check for duplicate ssl certs per IP if SNI is disabled
     if (isset($this->dataRecord['ssl']) && $this->dataRecord['ssl'] == 'y' && $web_config['enable_sni'] != 'y') {
         $sql = "SELECT count(domain_id) as number FROM web_domain WHERE `ssl` = 'y' AND ip_address = '" . $app->db->quote($this->dataRecord['ip_address']) . "' and domain_id != " . $this->id;
         $tmp = $app->db->queryOneRecord($sql);
         if ($tmp['number'] > 0) {
             $app->tform->errorMessage .= $app->tform->lng("error_no_sni_txt");
     // Check if pm.max_children >= pm.max_spare_servers >= pm.start_servers >= pm.min_spare_servers > 0
     if (isset($this->dataRecord['pm_max_children']) && $this->dataRecord['pm'] == 'dynamic') {
         if ($app->functions->intval($this->dataRecord['pm_max_children'], true) >= $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) >= $app->functions->intval($this->dataRecord['pm_start_servers'], true) && $app->functions->intval($this->dataRecord['pm_start_servers'], true) >= $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) > 0) {
         } else {
             $app->tform->errorMessage .= $app->tform->lng("error_php_fpm_pm_settings_txt") . '<br>';
Ejemplo n.º 25
 function onSubmit()
     global $app, $conf;
     // Get the parent soa record of the domain
     $soa = $app->db->queryOneRecord("SELECT * FROM dns_soa WHERE id = '" . intval($_POST["zone"]) . "' AND " . $app->tform->getAuthSQL('r'));
     // Check if Domain belongs to user
     if ($soa["id"] != $_POST["zone"]) {
         $app->tform->errorMessage .= $app->tform->wordbook["no_zone_perm"];
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_dns_record FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another mailbox.
         if ($this->id == 0 && $client["limit_dns_record"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(id) as number FROM dns_rr WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_dns_record"]) {
     // end if user is not admin
     // Set the server ID of the rr record to the same server ID as the parent record.
     $this->dataRecord["server_id"] = $soa["server_id"];
     // Update the serial number  and timestamp of the RR record
     $soa = $app->db->queryOneRecord("SELECT serial FROM dns_rr WHERE id = " . $this->id);
     $this->dataRecord["serial"] = $app->validate_dns->increase_serial($soa["serial"]);
     $this->dataRecord["stamp"] = date('Y-m-d H:i:s');
Ejemplo n.º 26
 function onSubmit()
     global $app, $conf;
     // Check if Domain belongs to user
     $domain = $app->db->queryOneRecord("SELECT server_id, domain FROM mail_domain WHERE domain = '" . $app->db->quote($_POST["email_domain"]) . "' AND " . $app->tform->getAuthSQL('r'));
     if ($domain["domain"] != $_POST["email_domain"]) {
         $app->tform->errorMessage .= $app->tform->wordbook["no_domain_perm"];
     // compose the email field
     if ($_POST["email_local_part"] != '') {
         $this->dataRecord["email"] = $_POST["email_local_part"] . "@" . $_POST["email_domain"];
     } else {
         $this->dataRecord["email"] = $_POST["email_domain"];
     // Set the server id of the mailbox = server ID of mail domain.
     $this->dataRecord["server_id"] = $domain["server_id"];
     // calculate scores
     $this->dataRecord["spam_rewrite_score_int"] = $_POST["spam_rewrite_score_int"] * 100;
     $this->dataRecord["spam_redirect_score_int"] = $_POST["spam_redirect_score_int"] * 100;
     $this->dataRecord["spam_delete_score_int"] = $_POST["spam_delete_score_int"] * 100;
     // Changing mailbox_id to maildir
     $sql = "SELECT maildir FROM mail_box WHERE mailbox_id = '" . intval($_POST["spam_redirect_maildir"]) . "' AND " . $app->tform->getAuthSQL('r');
     $mailbox = $app->db->queryOneRecord($sql);
     $this->dataRecord["spam_redirect_maildir"] = $mailbox["maildir"];
Ejemplo n.º 27
 function onSubmit()
     global $app, $conf;
     /* check if the domain module is used - and check if the selected domain can be used! */
     $settings = $app->getconf->get_global_config('domains');
     if ($settings['use_domain_module'] == 'y') {
         $domain_check = $app->tools_sites->checkDomainModuleDomain($this->dataRecord['domain']);
         if (!$domain_check) {
             // invalid domain selected
             $app->tform->errorMessage .= $app->tform->lng("domain_error_empty") . "<br />";
         } else {
             $this->dataRecord['domain'] = $domain_check;
     // nginx: if redirect type is proxy and redirect path is no URL, display error
     if ($this->dataRecord["redirect_type"] == 'proxy' && substr($this->dataRecord['redirect_path'], 0, 1) == '/') {
         $app->tform->errorMessage .= $app->tform->lng("error_proxy_requires_url") . "<br />";
     // Get the record of the parent domain
     $parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = " . $app->functions->intval(@$this->dataRecord["parent_domain_id"]));
     // Set a few fixed values
     $this->dataRecord["type"] = 'alias';
     $this->dataRecord["server_id"] = $parent_domain["server_id"];
     //$this->dataRecord["domain"] = $this->dataRecord["domain"].'.'.$parent_domain["domain"];
     $this->parent_domain_record = $parent_domain;
     //* make sure that the domain is lowercase
     if (isset($this->dataRecord["domain"])) {
         $this->dataRecord["domain"] = strtolower($this->dataRecord["domain"]);
 function onSubmit()
     global $app;
     $this->id = $app->functions->intval($_SESSION['s']['user']['mailuser_id']);
Ejemplo n.º 29
 function onSubmit()
     global $app, $conf;
     // we will check only users, not admins
     if ($_SESSION["s"]["user"]["typ"] == 'user' && $this->id == 0) {
         // Get the limits of the client
         $client_group_id = $_SESSION["s"]["user"]["default_group"];
         $client = $app->db->queryOneRecord("SELECT limit_client FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another website.
         if ($client["limit_client"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(client_id) as number FROM client WHERE sys_groupid = {$client_group_id}");
             if ($tmp["number"] >= $client["limit_client"]) {
     //* Resellers shall not be able to create another reseller
     if ($_SESSION["s"]["user"]["typ"] == 'user') {
         $this->dataRecord['limit_client'] = 0;
     if ($this->id != 0) {
         $this->oldTemplatesAssigned = $app->db->queryAllRecords('SELECT * FROM `client_template_assigned` WHERE `client_id` = ' . $this->id);
         if (!is_array($this->oldTemplatesAssigned) || count($this->oldTemplatesAssigned) < 1) {
             // check previous type of storing templates
             $tpls = explode('/', $this->oldDataRecord['template_additional']);
             $this->oldTemplatesAssigned = array();
             foreach ($tpls as $item) {
                 $item = trim($item);
                 if (!$item) {
                 $this->oldTemplatesAssigned[] = array('assigned_template_id' => 0, 'client_template_id' => $item, 'client_id' => $this->id);
     } else {
         $this->oldTemplatesAssigned = array();
     $this->_template_additional = explode('/', $this->dataRecord['template_additional']);
     $this->dataRecord['template_additional'] = '';
 function onSubmit()
     global $app, $conf;
     // Check if Domain belongs to user
     $domain = $app->db->queryOneRecord("SELECT server_id, domain FROM mail_domain WHERE domain = '" . $app->db->quote($app->functions->idn_encode($_POST["email_domain"])) . "' AND " . $app->tform->getAuthSQL('r'));
     if ($domain["domain"] != $app->functions->idn_encode($_POST["email_domain"])) {
         $app->tform->errorMessage .= $app->tform->wordbook["no_domain_perm"];
     // Check the client limits, if user is not the admin
     if ($_SESSION["s"]["user"]["typ"] != 'admin') {
         // if user is not admin
         // Get the limits of the client
         $client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
         $client = $app->db->queryOneRecord("SELECT limit_mailcatchall FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = {$client_group_id}");
         // Check if the user may add another catchall
         if ($this->id == 0 && $client["limit_mailcatchall"] >= 0) {
             $tmp = $app->db->queryOneRecord("SELECT count(forwarding_id) as number FROM mail_forwarding WHERE sys_groupid = {$client_group_id} AND type = 'catchall'");
             if ($tmp["number"] >= $client["limit_mailcatchall"]) {
                 $app->tform->errorMessage .= $app->tform->wordbook["limit_mailcatchall_txt"] . "<br>";
     // end if user is not admin
     // compose the email field
     $this->dataRecord["source"] = "@" . $app->functions->idn_encode($_POST["email_domain"]);
     // Set the server id of the mailbox = server ID of mail domain.
     $this->dataRecord["server_id"] = $domain["server_id"];