示例#1
0
function process_si_contact_form()
{
    $_SESSION['ctform'] = array();
    // re-initialize the form session data
    if ($_SERVER['REQUEST_METHOD'] == 'POST' && @$_POST['do'] == 'contact') {
        // if the form has been submitted
        foreach ($_POST as $key => $value) {
            if (!is_array($key)) {
                // sanitize the input data
                if ($key != 'ct_message') {
                    $value = strip_tags($value);
                }
                $_POST[$key] = htmlspecialchars(stripslashes(trim($value)));
            }
        }
        $name = @$_POST['ct_name'];
        // name from the form
        $email = @$_POST['ct_email'];
        // email from the form
        $URL = @$_POST['ct_URL'];
        // url from the form
        $message = @$_POST['ct_message'];
        // the message from the form
        $captcha = @$_POST['ct_captcha'];
        // the user's entry for the captcha code
        $name = substr($name, 0, 64);
        // limit name to 64 characters
        $errors = array();
        // initialize empty error array
        if (isset($GLOBALS['DEBUG_MODE']) && $GLOBALS['DEBUG_MODE'] == false) {
            // only check for errors if the form is not in debug mode
            if (strlen($name) < 3) {
                // name too short, add error
                $errors['name_error'] = 'Your name is required';
            }
            if (strlen($email) == 0) {
                // no email address given
                $errors['email_error'] = 'Email address is required';
            } else {
                if (!preg_match('/^(?:[\\w\\d-]+\\.?)+@(?:(?:[\\w\\d]\\-?)+\\.)+\\w{2,63}$/i', $email)) {
                    // invalid email format
                    $errors['email_error'] = 'Email address entered is invalid';
                }
            }
            if (strlen($message) < 20) {
                // message length too short
                $errors['message_error'] = 'Your message must be longer than 20 characters';
            }
        }
        // Only try to validate the captcha if the form has no errors
        // This is especially important for ajax calls
        if (sizeof($errors) == 0) {
            require_once dirname(__FILE__) . '/securimage.php';
            $securimage = new Securimage();
            if ($securimage->check($captcha) == false) {
                $errors['captcha_error'] = 'Incorrect security code entered<br />';
            }
        }
        if (sizeof($errors) == 0) {
            // no errors, send the form
            $time = date('r');
            $message = "A message was submitted from the contact form.  The following information was provided.<br /><br />" . "<em>Name: {$name}</em><br />" . "<em>Email: {$email}</em><br />" . "<em>URL: {$URL}</em><br />" . "<em>Message:</em><br />" . "<pre>{$message}</pre>" . "<br /><br /><em>IP Address:</em> {$_SERVER['REMOTE_ADDR']}<br />" . "<em>Time:</em> {$time}<br />" . "<em>Browser:</em> {$_SERVER['HTTP_USER_AGENT']}<br />";
            $message = wordwrap($message, 70);
            if (isset($GLOBALS['DEBUG_MODE']) && $GLOBALS['DEBUG_MODE'] == false) {
                // send the message with mail()
                mail($GLOBALS['ct_recipient'], $GLOBALS['ct_msg_subject'], $message, "From: {$GLOBALS['ct_recipient']}\r\nReply-To: {$email}\r\nContent-type: text/html; charset=UTF-8\r\nMIME-Version: 1.0");
            }
            $_SESSION['ctform']['timetosolve'] = $securimage->getTimeToSolve();
            $_SESSION['ctform']['error'] = false;
            // no error with form
            $_SESSION['ctform']['success'] = true;
            // message sent
        } else {
            // save the entries, this is to re-populate the form
            $_SESSION['ctform']['ct_name'] = $name;
            // save name from the form submission
            $_SESSION['ctform']['ct_email'] = $email;
            // save email
            $_SESSION['ctform']['ct_URL'] = $URL;
            // save URL
            $_SESSION['ctform']['ct_message'] = $message;
            // save message
            foreach ($errors as $key => $error) {
                // set up error messages to display with each field
                $_SESSION['ctform'][$key] = "<span class=\"error\">{$error}</span>";
            }
            $_SESSION['ctform']['error'] = true;
            // set error floag
        }
    }
    // POST
}