350 lines
15 KiB
PHP
350 lines
15 KiB
PHP
<?php
|
|
// Minimal mail service for the workspace app (VM).
|
|
// Usage:
|
|
// require_once __DIR__ . '/MailService.php';
|
|
// // Generic:
|
|
// MailService::sendMail($to, $subject, $htmlBody, $textBody = null, $opts = []);
|
|
// // Contact form helper:
|
|
// MailService::sendContactMessage($name, $email, $message, $to = null, $subject = 'New contact form');
|
|
|
|
// Ensure DB config is loaded for settings
|
|
if (!function_exists('db') && file_exists(__DIR__ . '/../db/config.php')) {
|
|
require_once __DIR__ . '/../db/config.php';
|
|
}
|
|
|
|
class MailService
|
|
{
|
|
// Universal mail sender (no attachments by design)
|
|
public static function sendMail($to, string $subject, string $htmlBody, ?string $textBody = null, array $opts = [])
|
|
{
|
|
$cfg = self::loadConfig();
|
|
|
|
$autoload = __DIR__ . '/../vendor/autoload.php';
|
|
if (file_exists($autoload)) {
|
|
require_once $autoload;
|
|
}
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'libphp-phpmailer/autoload.php';
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'libphp-phpmailer/src/Exception.php';
|
|
@require_once 'libphp-phpmailer/src/SMTP.php';
|
|
@require_once 'libphp-phpmailer/src/PHPMailer.php';
|
|
}
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'PHPMailer/src/Exception.php';
|
|
@require_once 'PHPMailer/src/SMTP.php';
|
|
@require_once 'PHPMailer/src/PHPMailer.php';
|
|
}
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'PHPMailer/Exception.php';
|
|
@require_once 'PHPMailer/SMTP.php';
|
|
@require_once 'PHPMailer/PHPMailer.php';
|
|
}
|
|
}
|
|
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
return [ 'success' => false, 'error' => 'PHPMailer not available' ];
|
|
}
|
|
|
|
$mail = new PHPMailer\PHPMailer\PHPMailer(true);
|
|
try {
|
|
$mail->isSMTP();
|
|
$mail->Host = $cfg['smtp_host'] ?? '';
|
|
$mail->Port = (int)($cfg['smtp_port'] ?? 587);
|
|
$secure = $cfg['smtp_secure'] ?? 'tls';
|
|
if ($secure === 'ssl') $mail->SMTPSecure = PHPMailer\PHPMailer\PHPMailer::ENCRYPTION_SMTPS;
|
|
elseif ($secure === 'tls') $mail->SMTPSecure = PHPMailer\PHPMailer\PHPMailer::ENCRYPTION_STARTTLS;
|
|
else $mail->SMTPSecure = false;
|
|
$mail->SMTPAuth = true;
|
|
$mail->Username = $cfg['smtp_user'] ?? '';
|
|
$mail->Password = $cfg['smtp_pass'] ?? '';
|
|
|
|
$fromEmail = $opts['from_email'] ?? ($cfg['from_email'] ?? 'no-reply@localhost');
|
|
$fromName = $opts['from_name'] ?? ($cfg['from_name'] ?? 'App');
|
|
$mail->setFrom($fromEmail, $fromName);
|
|
if (!empty($opts['reply_to']) && filter_var($opts['reply_to'], FILTER_VALIDATE_EMAIL)) {
|
|
$mail->addReplyTo($opts['reply_to']);
|
|
} elseif (!empty($cfg['reply_to'])) {
|
|
$mail->addReplyTo($cfg['reply_to']);
|
|
}
|
|
|
|
// Recipients
|
|
$toList = [];
|
|
if ($to) {
|
|
if (is_string($to)) $toList = array_map('trim', explode(',', $to));
|
|
elseif (is_array($to)) $toList = $to;
|
|
} elseif (!empty(getenv('MAIL_TO'))) {
|
|
$toList = array_map('trim', explode(',', getenv('MAIL_TO')));
|
|
}
|
|
$added = 0;
|
|
foreach ($toList as $addr) {
|
|
if (filter_var($addr, FILTER_VALIDATE_EMAIL)) { $mail->addAddress($addr); $added++; }
|
|
}
|
|
if ($added === 0) {
|
|
return [ 'success' => false, 'error' => 'No recipients defined (set MAIL_TO or pass $to)' ];
|
|
}
|
|
|
|
foreach ((array)($opts['cc'] ?? []) as $cc) { if (filter_var($cc, FILTER_VALIDATE_EMAIL)) $mail->addCC($cc); }
|
|
foreach ((array)($opts['bcc'] ?? []) as $bcc){ if (filter_var($bcc, FILTER_VALIDATE_EMAIL)) $mail->addBCC($bcc); }
|
|
|
|
// Optional DKIM
|
|
if (!empty($cfg['dkim_domain']) && !empty($cfg['dkim_selector']) && !empty($cfg['dkim_private_key_path'])) {
|
|
$mail->DKIM_domain = $cfg['dkim_domain'];
|
|
$mail->DKIM_selector = $cfg['dkim_selector'];
|
|
$mail->DKIM_private = $cfg['dkim_private_key_path'];
|
|
}
|
|
|
|
$mail->isHTML(true);
|
|
$mail->Subject = $subject;
|
|
|
|
// Apply standardized HTML wrapper
|
|
$mail->Body = self::wrapHtml($htmlBody, $subject);
|
|
$mail->AltBody = $textBody ?? strip_tags($htmlBody);
|
|
|
|
$ok = $mail->send();
|
|
return [ 'success' => $ok ];
|
|
} catch (Throwable $e) {
|
|
return [ 'success' => false, 'error' => 'PHPMailer error: ' . $e->getMessage() ];
|
|
}
|
|
}
|
|
|
|
private static function loadConfig(): array
|
|
{
|
|
$configPath = __DIR__ . '/config.php';
|
|
if (!file_exists($configPath)) {
|
|
throw new \RuntimeException('Mail config not found. Copy mail/config.sample.php to mail/config.php and fill in credentials.');
|
|
}
|
|
$cfg = require $configPath;
|
|
if (!is_array($cfg)) {
|
|
throw new \RuntimeException('Invalid mail config format: expected array');
|
|
}
|
|
return $cfg;
|
|
}
|
|
|
|
// Send a contact message
|
|
// $to can be: a single email string, a comma-separated list, an array of emails, or null (fallback to MAIL_TO/MAIL_FROM)
|
|
public static function sendContactMessage(string $name, string $email, string $message, $to = null, string $subject = 'New contact form')
|
|
{
|
|
$cfg = self::loadConfig();
|
|
|
|
// Try Composer autoload if available (for PHPMailer)
|
|
$autoload = __DIR__ . '/../vendor/autoload.php';
|
|
if (file_exists($autoload)) {
|
|
require_once $autoload;
|
|
}
|
|
// Fallback to system-wide PHPMailer (installed via apt: libphp-phpmailer)
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
// Debian/Ubuntu package layout (libphp-phpmailer)
|
|
@require_once 'libphp-phpmailer/autoload.php';
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'libphp-phpmailer/src/Exception.php';
|
|
@require_once 'libphp-phpmailer/src/SMTP.php';
|
|
@require_once 'libphp-phpmailer/src/PHPMailer.php';
|
|
}
|
|
// Alternative layout (older PHPMailer package names)
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'PHPMailer/src/Exception.php';
|
|
@require_once 'PHPMailer/src/SMTP.php';
|
|
@require_once 'PHPMailer/src/PHPMailer.php';
|
|
}
|
|
if (!class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
@require_once 'PHPMailer/Exception.php';
|
|
@require_once 'PHPMailer/SMTP.php';
|
|
@require_once 'PHPMailer/PHPMailer.php';
|
|
}
|
|
}
|
|
|
|
$transport = $cfg['transport'] ?? 'smtp';
|
|
if ($transport === 'smtp' && class_exists('PHPMailer\PHPMailer\PHPMailer')) {
|
|
return self::sendViaPHPMailer($cfg, $name, $email, $message, $to, $subject);
|
|
}
|
|
|
|
// Fallback: attempt native mail() — works only if MTA is configured on the VM
|
|
return self::sendViaNativeMail($cfg, $name, $email, $message, $to, $subject);
|
|
}
|
|
|
|
private static function sendViaPHPMailer(array $cfg, string $name, string $email, string $body, $to, string $subject)
|
|
{
|
|
$mail = new PHPMailer\PHPMailer\PHPMailer(true);
|
|
try {
|
|
$mail->isSMTP();
|
|
$mail->Host = $cfg['smtp_host'] ?? '';
|
|
$mail->Port = (int)($cfg['smtp_port'] ?? 587);
|
|
$secure = $cfg['smtp_secure'] ?? 'tls';
|
|
if ($secure === 'ssl') $mail->SMTPSecure = PHPMailer\PHPMailer\PHPMailer::ENCRYPTION_SMTPS;
|
|
elseif ($secure === 'tls') $mail->SMTPSecure = PHPMailer\PHPMailer\PHPMailer::ENCRYPTION_STARTTLS;
|
|
else $mail->SMTPSecure = false;
|
|
$mail->SMTPAuth = true;
|
|
$mail->Username = $cfg['smtp_user'] ?? '';
|
|
$mail->Password = $cfg['smtp_pass'] ?? '';
|
|
|
|
$fromEmail = $cfg['from_email'] ?? 'no-reply@localhost';
|
|
$fromName = $cfg['from_name'] ?? 'App';
|
|
$mail->setFrom($fromEmail, $fromName);
|
|
|
|
// Use Reply-To for the user's email to avoid spoofing From
|
|
if (filter_var($email, FILTER_VALIDATE_EMAIL)) {
|
|
$mail->addReplyTo($email, $name ?: $email);
|
|
}
|
|
if (!empty($cfg['reply_to'])) {
|
|
$mail->addReplyTo($cfg['reply_to']);
|
|
}
|
|
|
|
// Destination: prefer dynamic recipients ($to), fallback to MAIL_TO; no silent FROM fallback
|
|
$toList = [];
|
|
if ($to) {
|
|
if (is_string($to)) {
|
|
// allow comma-separated list
|
|
$toList = array_map('trim', explode(',', $to));
|
|
} elseif (is_array($to)) {
|
|
$toList = $to;
|
|
}
|
|
} elseif (!empty(getenv('MAIL_TO'))) {
|
|
$toList = array_map('trim', explode(',', getenv('MAIL_TO')));
|
|
}
|
|
$added = 0;
|
|
foreach ($toList as $addr) {
|
|
if (filter_var($addr, FILTER_VALIDATE_EMAIL)) {
|
|
$mail->addAddress($addr);
|
|
$added++;
|
|
}
|
|
}
|
|
if ($added === 0) {
|
|
return [ 'success' => false, 'error' => 'No recipients defined (set MAIL_TO or pass $to)' ];
|
|
}
|
|
|
|
// DKIM (optional)
|
|
if (!empty($cfg['dkim_domain']) && !empty($cfg['dkim_selector']) && !empty($cfg['dkim_private_key_path'])) {
|
|
$mail->DKIM_domain = $cfg['dkim_domain'];
|
|
$mail->DKIM_selector = $cfg['dkim_selector'];
|
|
$mail->DKIM_private = $cfg['dkim_private_key_path'];
|
|
}
|
|
|
|
$mail->isHTML(true);
|
|
$mail->Subject = $subject;
|
|
$safeName = htmlspecialchars($name, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8');
|
|
$safeEmail = htmlspecialchars($email, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8');
|
|
$safeBody = nl2br(htmlspecialchars($body, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8'));
|
|
|
|
$innerHtml = "<p><strong>Name:</strong> {$safeName}</p><p><strong>Email:</strong> {$safeEmail}</p><hr>{$safeBody}";
|
|
|
|
// Apply standardized HTML wrapper
|
|
$mail->Body = self::wrapHtml($innerHtml, $subject);
|
|
$mail->AltBody = "Name: {$name}\nEmail: {$email}\n\n{$body}";
|
|
|
|
$ok = $mail->send();
|
|
return [ 'success' => $ok ];
|
|
} catch (Throwable $e) {
|
|
return [ 'success' => false, 'error' => 'PHPMailer error: ' . $e->getMessage() ];
|
|
}
|
|
}
|
|
|
|
private static function sendViaNativeMail(array $cfg, string $name, string $email, string $body, $to, string $subject)
|
|
{
|
|
$opts = ['reply_to' => $email];
|
|
$safeName = htmlspecialchars($name, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8');
|
|
$safeEmail = htmlspecialchars($email, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8');
|
|
$safeBody = nl2br(htmlspecialchars($body, ENT_QUOTES | ENT_SUBSTITUTE, 'UTF-8'));
|
|
|
|
$innerHtml = "<p><strong>Name:</strong> {$safeName}</p><p><strong>Email:</strong> {$safeEmail}</p><hr>{$safeBody}";
|
|
|
|
// sendMail will wrap the HTML now
|
|
return self::sendMail($to, $subject, $innerHtml, $body, $opts);
|
|
}
|
|
|
|
private static function getSetting(string $key, string $default = ''): string
|
|
{
|
|
// Use global get_setting if available (requires includes/app.php)
|
|
if (function_exists('get_setting')) {
|
|
return get_setting($key, $default);
|
|
}
|
|
|
|
// Fallback: Direct DB query if db() helper is available
|
|
if (function_exists('db')) {
|
|
try {
|
|
$stmt = db()->prepare("SELECT setting_value FROM settings WHERE setting_key = ? LIMIT 1");
|
|
$stmt->execute([$key]);
|
|
$val = $stmt->fetchColumn();
|
|
return $val !== false ? (string)$val : $default;
|
|
} catch (Throwable $e) {
|
|
return $default;
|
|
}
|
|
}
|
|
|
|
return $default;
|
|
}
|
|
|
|
private static function wrapHtml(string $content, string $subject): string
|
|
{
|
|
$companyName = self::getSetting('company_name', 'CargoLink');
|
|
$logoPath = self::getSetting('logo_path', '');
|
|
$companyAddress = self::getSetting('company_address', '');
|
|
|
|
// Build absolute URL for logo
|
|
$logoUrl = '';
|
|
if ($logoPath) {
|
|
$scheme = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') ? 'https' : 'http';
|
|
$host = $_SERVER['HTTP_HOST'] ?? 'localhost';
|
|
// Assuming logo_path is relative to public root (e.g., uploads/logos/...)
|
|
$logoUrl = "{$scheme}://{$host}/" . ltrim($logoPath, '/');
|
|
}
|
|
|
|
$year = date('Y');
|
|
$footerInfo = [];
|
|
if ($companyAddress) {
|
|
$footerInfo[] = nl2br(htmlspecialchars($companyAddress));
|
|
}
|
|
$footerHtml = implode('<br>', $footerInfo);
|
|
|
|
$logoHtml = '';
|
|
if ($logoUrl) {
|
|
$logoHtml = "<div style=\"text-align: center; margin-bottom: 20px;\"><img src=\"{$logoUrl}\" alt=\"{$companyName}\" style=\"max-height: 60px; max-width: 200px;\"></div>";
|
|
}
|
|
|
|
return <<<HTML
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<meta charset="UTF-8">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<title>{$subject}</title>
|
|
<style>
|
|
body { font-family: 'Helvetica Neue', Helvetica, Arial, sans-serif; background-color: #f4f7f6; margin: 0; padding: 0; color: #333; line-height: 1.6; }
|
|
.wrapper { width: 100%; table-layout: fixed; background-color: #f4f7f6; padding-bottom: 40px; }
|
|
.webkit { max-width: 600px; background-color: #ffffff; margin: 0 auto; border-radius: 8px; overflow: hidden; box-shadow: 0 4px 10px rgba(0,0,0,0.05); }
|
|
.outer { margin: 0 auto; width: 100%; max-width: 600px; font-family: 'Helvetica Neue', Helvetica, Arial, sans-serif; }
|
|
.header { background-color: #ffffff; padding: 30px 30px 20px; text-align: center; border-bottom: 1px solid #eeeeee; }
|
|
.content { padding: 30px; text-align: left; font-size: 16px; color: #555555; }
|
|
.footer { padding: 20px; text-align: center; font-size: 12px; color: #999999; background-color: #f9f9f9; border-top: 1px solid #eeeeee; }
|
|
h1, h2, h3 { color: #2c3e50; margin-top: 0; }
|
|
a { color: #3498db; text-decoration: none; }
|
|
p { margin-bottom: 15px; }
|
|
</style>
|
|
</head>
|
|
<body>
|
|
<div class="wrapper">
|
|
<div class="webkit">
|
|
<!-- Header -->
|
|
<div class="header">
|
|
{$logoHtml}
|
|
<h2 style="margin: 0; font-size: 24px; color: #333;">{$companyName}</h2>
|
|
</div>
|
|
|
|
<!-- Content -->
|
|
<div class="content">
|
|
{$content}
|
|
</div>
|
|
|
|
<!-- Footer -->
|
|
<div class="footer">
|
|
<p>© {$year} {$companyName}. All rights reserved.</p>
|
|
{$footerHtml}
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</body>
|
|
</html>
|
|
HTML;
|
|
}
|
|
}
|