Начало Каталог Помощ
Вход
mirrors
/
mailcow-dockerized
огледало от https://github.com/mailcow/mailcow-dockerized
2
0
Разклонения 0
Файлове Задачи 0 Уики
ИН на ревизия: cfa47eb873
Клонове Маркери
mailcow-dockeri...
/
data
/
conf
/
rspamd
/
meta_exporter
/
pushover.php

pushover.php 10 KB
История Директен файл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275 
  1. <?php
    2. 

  2. // File size is limited by Nginx site to 10M
    3. 

  3. // To speed things up, we do not include prerequisites
    4. 

  4. header('Content-Type: text/plain');
    5. 

  5. require_once "vars.inc.php";
    6. 

  6. // Do not show errors, we log to using error_log
    7. 

  7. ini_set('error_reporting', 0);
    8. 

  8. // Init database
    9. 

  9. //$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
    10. 

  10. $dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
    11. 

  11. $opt = [
    12. 

  12.     PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
    13. 

  13.     PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
    14. 

  14.     PDO::ATTR_EMULATE_PREPARES   => false,
    15. 

  15. ];
    16. 

  16. try {
    17. 

  17.   $pdo = new PDO($dsn, $database_user, $database_pass, $opt);
    18. 

  18. }
    19. 

  19. catch (PDOException $e) {
    20. 

  20.   error_log("NOTIFY: " . $e . PHP_EOL);
    21. 

  21.   http_response_code(501);
    22. 

  22.   exit;
    23. 

  23. }
    24. 

  24. // Init Redis
    25. 

  25. $redis = new Redis();
    26. 

  26. $redis->connect('redis-mailcow', 6379);
    27. 

  27. 

  28. // Functions
    29. 

  29. function parse_email($email) {
    30. 

  30.   if(!filter_var($email, FILTER_VALIDATE_EMAIL)) return false;
    31. 

  31.   $a = strrpos($email, '@');
    32. 

  32.   return array('local' => substr($email, 0, $a), 'domain' => substr(substr($email, $a), 1));
    33. 

  33. }
    34. 

  34. if (!function_exists('getallheaders'))  {
    35. 

  35.   function getallheaders() {
    36. 

  36.     if (!is_array($_SERVER)) {
    37. 

  37.       return array();
    38. 

  38.     }
    39. 

  39.     $headers = array();
    40. 

  40.     foreach ($_SERVER as $name => $value) {
    41. 

  41.       if (substr($name, 0, 5) == 'HTTP_') {
    42. 

  42.         $headers[str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5)))))] = $value;
    43. 

  43.       }
    44. 

  44.     }
    45. 

  45.     return $headers;
    46. 

  46.   }
    47. 

  47. }
    48. 

  48. 

  49. $headers = getallheaders();
    50. 

  50. $json_body = json_decode(file_get_contents('php://input'));
    51. 

  51. 

  52. $qid      = $headers['X-Rspamd-Qid'];
    53. 

  53. $rcpts    = $headers['X-Rspamd-Rcpt'];
    54. 

  54. $sender   = $headers['X-Rspamd-From'];
    55. 

  55. $ip       = $headers['X-Rspamd-Ip'];
    56. 

  56. $subject  = $headers['X-Rspamd-Subject'];
    57. 

  57. $messageid= $json_body->message_id;
    58. 

  58. $priority = 0;
    59. 

  59. 

  60. $symbols_array = json_decode($headers['X-Rspamd-Symbols'], true);
    61. 

  61. if (is_array($symbols_array)) {
    62. 

  62.   foreach ($symbols_array as $symbol) {
    63. 

  63.     if ($symbol['name'] == 'HAS_X_PRIO_ONE') {
    64. 

  64.       $priority = 1;
    65. 

  65.       break;
    66. 

  66.     }
    67. 

  67.   }
    68. 

  68. }
    69. 

  69. 

  70. $sender_address = $json_body->header_from[0];
    71. 

  71. $sender_name = '-';
    72. 

  72. if (preg_match('/(?<name>.*?)<(?<address>.*?)>/i', $sender_address, $matches)) {
    73. 

  73. 	$sender_address = $matches['address'];
    74. 

  74.   $sender_name =  trim($matches['name'], '"\' ');
    75. 

  75. }
    76. 

  76. 

  77. $to_address = $json_body->header_to[0];
    78. 

  78. $to_name = '-';
    79. 

  79. if (preg_match('/(?<name>.*?)<(?<address>.*?)>/i', $to_address, $matches)) {
    80. 

  80. 	$to_address = $matches['address'];
    81. 

  81.   $to_name =  trim($matches['name'], '"\' ');
    82. 

  82. }
    83. 

  83. 

  84. $rcpt_final_mailboxes = array();
    85. 

  85. 

  86. // Loop through all rcpts
    87. 

  87. foreach (json_decode($rcpts, true) as $rcpt) {
    88. 

  88.   // Remove tag
    89. 

  89.   $rcpt = preg_replace('/^(.*?)\+.*(@.*)$/', '$1$2', $rcpt);
    90. 

  90. 

  91.   // Break rcpt into local part and domain part
    92. 

  92.   $parsed_rcpt = parse_email($rcpt);
    93. 

  93. 

  94.   // Skip if not a mailcow handled domain
    95. 

  95.   try {
    96. 

  96.     if (!$redis->hGet('DOMAIN_MAP', $parsed_rcpt['domain'])) {
    97. 

  97.       continue;
    98. 

  98.     }
    99. 

  99.   }
    100. 

  100.   catch (RedisException $e) {
    101. 

  101.     error_log("NOTIFY: " . $e . PHP_EOL);
    102. 

  102.     http_response_code(504);
    103. 

  103.     exit;
    104. 

  104.   }
    105. 

  105. 

  106.   // Always assume rcpt is not a final mailbox but an alias for a mailbox or further aliases
    107. 

  107.   //
    108. 

  108.   //             rcpt
    109. 

  109.   //              |
    110. 

  110.   // mailbox <-- goto ---> alias1, alias2, mailbox2
    111. 

  111.   //                          |       |
    112. 

  112.   //                      mailbox3    |
    113. 

  113.   //                                  |
    114. 

  114.   //                               alias3 ---> mailbox4
    115. 

  115.   //
    116. 

  116.   try {
    117. 

  117.     $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
    118. 

  118.     $stmt->execute(array(
    119. 

  119.       ':rcpt' => $rcpt
    120. 

  120.     ));
    121. 

  121.     $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
    122. 

  122.     if (empty($gotos)) {
    123. 

  123.       $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'");
    124. 

  124.       $stmt->execute(array(
    125. 

  125.         ':rcpt' => '@' . $parsed_rcpt['domain']
    126. 

  126.       ));
    127. 

  127.       $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
    128. 

  128.     }
    129. 

  129.     if (empty($gotos)) {
    130. 

  130.       $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :rcpt AND `active` = '1'");
    131. 

  131.       $stmt->execute(array(':rcpt' => $parsed_rcpt['domain']));
    132. 

  132.       $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
    133. 

  133.       if ($goto_branch) {
    134. 

  134.         $gotos = $parsed_rcpt['local'] . '@' . $goto_branch;
    135. 

  135.       }
    136. 

  136.     }
    137. 

  137.     $gotos_array = explode(',', $gotos);
    138. 

  138. 

  139.     $loop_c = 0;
    140. 

  140. 

  141.     while (count($gotos_array) != 0 && $loop_c <= 20) {
    142. 

  142. 

  143.       // Loop through all found gotos
    144. 

  144.       foreach ($gotos_array as $index => &$goto) {
    145. 

  145.         error_log("RCPT RESOVLER: http pipe: query " . $goto . " as username from mailbox" . PHP_EOL);
    146. 

  146.         $stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :goto AND (`active`= '1' OR `active`= '2');");
    147. 

  147.         $stmt->execute(array(':goto' => $goto));
    148. 

  148.         $username = $stmt->fetch(PDO::FETCH_ASSOC)['username'];
    149. 

  149.         if (!empty($username)) {
    150. 

  150.           error_log("RCPT RESOVLER: http pipe: mailbox found: " . $username . PHP_EOL);
    151. 

  151.           // Current goto is a mailbox, save to rcpt_final_mailboxes if not a duplicate
    152. 

  152.           if (!in_array($username, $rcpt_final_mailboxes)) {
    153. 

  153.             $rcpt_final_mailboxes[] = $username;
    154. 

  154.           }
    155. 

  155.         }
    156. 

  156.         else {
    157. 

  157.           $parsed_goto = parse_email($goto);
    158. 

  158.           if (!$redis->hGet('DOMAIN_MAP', $parsed_goto['domain'])) {
    159. 

  159.             error_log("RCPT RESOVLER:" . $goto . " is not a mailcow handled mailbox or alias address" . PHP_EOL);
    160. 

  160.           }
    161. 

  161.           else {
    162. 

  162.             $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :goto AND `active` = '1'");
    163. 

  163.             $stmt->execute(array(':goto' => $goto));
    164. 

  164.             $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['goto'];
    165. 

  165.             if ($goto_branch) {
    166. 

  166.               error_log("RCPT RESOVLER: http pipe: goto address " . $goto . " is an alias branch for " . $goto_branch . PHP_EOL);
    167. 

  167.               $goto_branch_array = explode(',', $goto_branch);
    168. 

  168.             } else {
    169. 

  169.               $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :domain AND `active` AND '1'");
    170. 

  170.               $stmt->execute(array(':domain' => $parsed_goto['domain']));
    171. 

  171.               $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain'];
    172. 

  172.               if ($goto_branch) {
    173. 

  173.                 error_log("RCPT RESOVLER: http pipe: goto domain " . $parsed_goto['domain'] . " is a domain alias branch for " . $goto_branch . PHP_EOL);
    174. 

  174.                 $goto_branch_array = array($parsed_goto['local'] . '@' . $goto_branch);
    175. 

  175.               }
    176. 

  176.             }
    177. 

  177.           }
    178. 

  178.         }
    179. 

  179.         // goto item was processed, unset
    180. 

  180.         unset($gotos_array[$index]);
    181. 

  181.       }
    182. 

  182. 

  183.       // Merge goto branch array derived from previous loop (if any), filter duplicates and unset goto branch array
    184. 

  184.       if (!empty($goto_branch_array)) {
    185. 

  185.         $gotos_array = array_unique(array_merge($gotos_array, $goto_branch_array));
    186. 

  186.         unset($goto_branch_array);
    187. 

  187.       }
    188. 

  188. 

  189.       // Reindex array
    190. 

  190.       $gotos_array = array_values($gotos_array);
    191. 

  191. 

  192.       // Force exit if loop cannot be solved
    193. 

  193.       // Postfix does not allow for alias loops, so this should never happen.
    194. 

  194.       $loop_c++;
    195. 

  195.       error_log("RCPT RESOVLER: http pipe: goto array count on loop #". $loop_c . " is " . count($gotos_array) . PHP_EOL);
    196. 

  196.     }
    197. 

  197.   }
    198. 

  198.   catch (PDOException $e) {
    199. 

  199.     error_log("RCPT RESOVLER: " . $e->getMessage() . PHP_EOL);
    200. 

  200.     http_response_code(502);
    201. 

  201.     exit;
    202. 

  202.   }
    203. 

  203. }
    204. 

  204. 

  205. 

  206. foreach ($rcpt_final_mailboxes as $rcpt_final) {
    207. 

  207.   error_log("NOTIFY: pushover pipe: processing pushover message for rcpt " . $rcpt_final . PHP_EOL);
    208. 

  208.   $stmt = $pdo->prepare("SELECT * FROM `pushover`
    209. 

  209.     WHERE `username` = :username AND `active` = '1'");
    210. 

  210.   $stmt->execute(array(
    211. 

  211.     ':username' => $rcpt_final
    212. 

  212.   ));
    213. 

  213.   $api_data = $stmt->fetch(PDO::FETCH_ASSOC);
    214. 

  214.   if (isset($api_data['key']) && isset($api_data['token'])) {
    215. 

  215.     $title = (!empty($api_data['title'])) ? $api_data['title'] : 'Mail';
    216. 

  216.     $text = (!empty($api_data['text'])) ? $api_data['text'] : 'You\'ve got mail 📧';
    217. 

  217.     $attributes = json_decode($api_data['attributes'], true);
    218. 

  218.     $senders = explode(',', $api_data['senders']);
    219. 

  219.     $senders = array_filter($senders);
    220. 

  220.     $senders_regex = $api_data['senders_regex'];
    221. 

  221.     $sender_validated = false;
    222. 

  222.     if (empty($senders) && empty($senders_regex)) {
    223. 

  223.       $sender_validated = true;
    224. 

  224.     }
    225. 

  225.     else {
    226. 

  226.       if (!empty($senders)) {
    227. 

  227.         if (in_array($sender, $senders)) {
    228. 

  228.           $sender_validated = true;
    229. 

  229.         }
    230. 

  230.       }
    231. 

  231.       if (!empty($senders_regex) && $sender_validated !== true) {
    232. 

  232.         if (preg_match($senders_regex, $sender)) {
    233. 

  233.           $sender_validated = true;
    234. 

  234.         }
    235. 

  235.       }
    236. 

  236.     }
    237. 

  237.     if ($sender_validated === false) {
    238. 

  238.       error_log("NOTIFY: pushover pipe: skipping unwanted sender " . $sender);
    239. 

  239.       continue;
    240. 

  240.     }
    241. 

  241.     if ($attributes['only_x_prio'] == "1" && $priority == 0) {
    242. 

  242.       error_log("NOTIFY: pushover pipe: mail has no X-Priority: 1 header, skipping");
    243. 

  243.       continue;
    244. 

  244.     }
    245. 

  245.     $post_fields = array(
    246. 

  246.       "token" => $api_data['token'],
    247. 

  247.       "user" => $api_data['key'],
    248. 

  248.       "title" => sprintf("%s", str_replace(
    249. 

  249.         array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}'),
    250. 

  250.         array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid), $title)
    251. 

  251.       ),
    252. 

  252.       "priority" => $priority,
    253. 

  253.       "message" => sprintf("%s", str_replace(
    254. 

  254.         array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '{MSG_ID}', '\n'),
    255. 

  255.         array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, $messageid, PHP_EOL), $text)
    256. 

  256.       ),
    257. 

  257.       "sound" => $attributes['sound'] ?? "pushover"
    258. 

  258.     );
    259. 

  259.     if ($attributes['evaluate_x_prio'] == "1" && $priority == 1) {
    260. 

  260.       $post_fields['expire'] = 600;
    261. 

  261.       $post_fields['retry'] = 120;
    262. 

  262.       $post_fields['priority'] = 2;
    263. 

  263.     }
    264. 

  264.     curl_setopt_array($ch = curl_init(), array(
    265. 

  265.       CURLOPT_URL => "https://api.pushover.net/1/messages.json",
    266. 

  266.       CURLOPT_POSTFIELDS => $post_fields,
    267. 

  267.       CURLOPT_SAFE_UPLOAD => true,
    268. 

  268.       CURLOPT_RETURNTRANSFER => true,
    269. 

  269.     ));
    270. 

  270.     $result = curl_exec($ch);
    271. 

  271.     $httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
    272. 

  272.     curl_close($ch);
    273. 

  273.     error_log("NOTIFY: result: " . $httpcode . PHP_EOL);
    274. 

  274.   }
    275. 

  275. }
    276.