bernd
XSRF-kram fixed
bernd commited 74a5d99 at 2007-06-01 08:02:31
<?php
require_once('session/start.php');
require_once('domains.php');
require_once('mailaccounts.php');
require_role(ROLE_SYSTEMUSER);
$user = $_SESSION['userinfo'];
$param = '';
if ($debugmode)
$param="debug";
$title = "E-Mail-Accounts";
DEBUG("GET: ".htmlentities(print_r($_GET, true))." / POST: ".htmlentities(print_r($_POST, true)));
if (isset($_GET['action']) && $_GET['action'] == 'save')
{
if (isset($_GET['id']))
{
check_form_token('imap_accounts_edit');
$account = $_POST['user'].'@'.$_POST['domain'];
if (isset($_POST['enabled']) && $_POST['enabled'] == 'true')
$enabled = 'Y';
else
$enabled = 'N';
$acc = array('id' => $_GET['id'], 'account' => $account, 'mailbox' => $_POST['mailbox'], 'enabled' => $enabled);
if ($_POST['password'] != '')
$acc['password'] = $_POST['password'];
$error = check_valid($acc);
if ($error != "")
{
input_error($error);
$section = "mail";
$title = "E-Mail-Accounts";
output("");
}
else
{
change_mailaccount($_GET['id'], $acc);
if (! $debugmode)
header('Location: accounts.php');
die();
}
}
elseif (isset($_POST['create']))
{
check_form_token('imap_accounts_create');
 
 
הההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההההה
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX