/**
* Email to be sent from one OpenDb user to another
*
* @from_userid can be null, and in this case, the from address will be the configured no-reply address for
* the psuedo administrator.
*/
function opendb_user_email($to_userid, $from_userid, $subject, $message, &$errors, $append_site_to_subject = TRUE)
{
$to_userid = trim($to_userid);
if (is_user_permitted_to_receive_email($to_userid)) {
$to_user_r = fetch_user_r($to_userid);
$to_email_addr = trim($to_user_r['email_addr']);
$to_name = trim($to_user_r['fullname']);
$from_userid = trim($from_userid);
if (is_user_valid($from_userid)) {
$from_user_r = fetch_user_r($from_userid);
$from_email_addr = trim($from_user_r['email_addr']);
$from_name = trim($from_user_r['fullname']);
} else {
if (strlen($from_userid) == 0) {
$from_email_addr = trim(get_opendb_config_var('email', 'noreply_address'));
$from_name = trim(get_opendb_lang_var('noreply'));
} else {
//if(is_valid_email_addr($from_userid))
$from_email_addr = $from_userid;
}
}
if (!is_valid_email_addr($to_email_addr)) {
$errors[] = get_opendb_lang_var('invalid_to_address');
return FALSE;
}
if (!is_valid_email_addr($from_email_addr)) {
$errors[] = get_opendb_lang_var('invalid_from_address');
return FALSE;
}
$subject = trim(stripslashes($subject));
if (strlen($subject) == 0) {
$errors[] = get_opendb_lang_var('invalid_subject');
return FALSE;
}
if ($append_site_to_subject) {
$subject .= " [" . get_opendb_config_var('site', 'title') . "]";
}
$message = trim(stripslashes($message));
$message .= get_email_footer();
if (sendEmail($to_email_addr, $to_name, $from_email_addr, $from_name, $subject, $message, $errors)) {
// insert email function will set this to NULL if from user provided!
insert_email($to_userid, $from_userid != $from_email_addr ? $from_userid : NULL, $from_email_addr, $subject, $message);
return TRUE;
}
}
//else
return FALSE;
}
$value = fetch_user_address_lookup_attribute_val($address_type_r['sequence_number'], $addr_attribute_type_r['s_attribute_type'], $addr_attribute_type_r['order_no']);
} else {
$value = fetch_user_address_attribute_val($address_type_r['sequence_number'], $addr_attribute_type_r['s_attribute_type'], $addr_attribute_type_r['order_no']);
}
if (strlen($value) > 0) {
echo get_item_display_field(NULL, $addr_attribute_type_r, $value);
}
}
db_free_result($attr_results);
echo "\n</table>";
}
}
}
db_free_result($addr_results);
}
if (is_valid_opendb_mailer() && strlen($user_r['email_addr']) > 0 && is_user_granted_permission(PERM_SEND_EMAIL) && is_user_permitted_to_receive_email($user_r['user_id'])) {
$url = 'email.php?' . get_url_string(array('op' => 'send_to_uid', 'uid' => $user_r['user_id'], 'inc_menu' => 'N', 'subject' => ifempty($HTTP_VARS['subject'], get_opendb_lang_var('no_subject'))));
$footer_links_r[] = array(url => $url, target => 'popup(640,480)', text => get_opendb_lang_var('send_email'));
}
if (is_user_granted_permission(PERM_VIEW_LISTINGS) && $user_r['active_ind'] == 'Y') {
$footer_links_r[] = array(url => "listings.php?owner_id=" . $user_r['user_id'], text => get_opendb_lang_var('list_user_items'));
}
if (is_user_granted_permission(PERM_ADMIN_USER_LISTING) && is_opendb_session_var('user_listing_url_vars')) {
$footer_links_r[] = array(url => "user_listing.php?" . get_url_string(get_opendb_session_var('user_listing_url_vars')), text => get_opendb_lang_var('back_to_user_listing'));
}
echo format_footer_links($footer_links_r);
} else {
$message = get_opendb_lang_var('user_not_found', array('user_id' => $user_r['user_id']));
echo _theme_header($message);
echo "<p class=\"error\">" . $message . "</p>";
echo _theme_footer();
}
} else {
if ($HTTP_VARS['op'] == 'send_to_uids' && (is_not_empty_array($HTTP_VARS['user_id_rs']) || strlen(trim($HTTP_VARS['checked_user_id_rs_list'])) > 0)) {
if ($HTTP_VARS['op2'] == 'send' && send_email_to_userids($HTTP_VARS['user_id_rs'], $from_user_r['user_id'], $HTTP_VARS['subject'], $HTTP_VARS['message'], $errors)) {
// do nothing
} else {
show_email_form(get_user_ids_tovalue($HTTP_VARS['user_id_rs']), get_opendb_lang_var('site_users', 'user_desc', get_opendb_config_var('site', 'title')), $from_user_r['user_id'], $from_user_r['fullname'], $HTTP_VARS['subject'], $HTTP_VARS['message'], $HTTP_VARS, $errors);
}
}
}
echo _theme_footer();
} else {
opendb_not_authorised_page(PERM_ADMIN_SEND_EMAIL, $HTTP_VARS);
}
} else {
if ($HTTP_VARS['op'] == 'send_to_uid' && is_user_permitted_to_receive_email($HTTP_VARS['uid'])) {
if (is_user_granted_permission(PERM_SEND_EMAIL)) {
echo _theme_header(get_opendb_lang_var('send_email'), $HTTP_VARS['inc_menu']);
echo "<h2>" . get_opendb_lang_var('send_email') . "</h2>";
$from_user_r = fetch_user_r(get_opendb_session_var('user_id'));
$HTTP_VARS['toname'] = trim(strip_tags($HTTP_VARS['toname']));
if ($HTTP_VARS['op2'] == 'send' && send_email_to_userids(array($HTTP_VARS['uid']), $from_user_r['user_id'], $HTTP_VARS['subject'], $HTTP_VARS['message'], $errors)) {
// do nothing
} else {
show_email_form($HTTP_VARS['uid'], fetch_user_name($HTTP_VARS['uid']), $from_user_r['user_id'], $from_user_r['fullname'], $HTTP_VARS['subject'], $HTTP_VARS['message'], $HTTP_VARS, $errors);
}
echo _theme_footer();
} else {
opendb_not_authorised_page(PERM_SEND_EMAIL, $HTTP_VARS);
}
} else {
