vendor/contao/newsletter-bundle/src/Resources/contao/modules/ModuleSubscribe.php line 59

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of Contao.
  5.  *
  6.  * (c) Leo Feyer
  7.  *
  8.  * @license LGPL-3.0-or-later
  9.  */
  11. namespace Contao;
  13. /**
  14.  * Front end module "newsletter subscribe".
  15.  *
  16.  * @property string $nl_subscribe
  17.  * @property array  $nl_channels
  18.  * @property string $nl_template
  19.  * @property string $nl_text
  20.  * @property bool   $nl_hideChannels
  21.  */
  22. class ModuleSubscribe extends Module
  23. {
  24.     /**
  25.      * Template
  26.      * @var string
  27.      */
  28.     protected $strTemplate 'nl_default';
  30.     /**
  31.      * Display a wildcard in the back end
  32.      *
  33.      * @return string
  34.      */
  35.     public function generate()
  36.     {
  37.         $request System::getContainer()->get('request_stack')->getCurrentRequest();
  39.         if ($request && System::getContainer()->get('contao.routing.scope_matcher')->isBackendRequest($request))
  40.         {
  41.             $objTemplate = new BackendTemplate('be_wildcard');
  42.             $objTemplate->wildcard '### ' $GLOBALS['TL_LANG']['FMD']['subscribe'][0] . ' ###';
  43.             $objTemplate->title $this->headline;
  44.             $objTemplate->id $this->id;
  45.             $objTemplate->link $this->name;
  46.             $objTemplate->href StringUtil::specialcharsUrl(System::getContainer()->get('router')->generate('contao_backend', array('do'=>'themes''table'=>'tl_module''act'=>'edit''id'=>$this->id)));
  48.             return $objTemplate->parse();
  49.         }
  51.         $this->nl_channels StringUtil::deserialize($this->nl_channels);
  53.         // Return if there are no channels
  54.         if (empty($this->nl_channels) || !\is_array($this->nl_channels))
  55.         {
  56.             return '';
  57.         }
  59.         return parent::generate();
  60.     }
  62.     /**
  63.      * Generate the module
  64.      */
  65.     protected function compile()
  66.     {
  67.         // Overwrite default template
  68.         if ($this->nl_template)
  69.         {
  70.             $this->Template = new FrontendTemplate($this->nl_template);
  71.             $this->Template->setData($this->arrData);
  72.         }
  74.         $this->Template->email '';
  75.         $this->Template->captcha '';
  77.         // Activate e-mail address
  78.         if (strncmp(Input::get('token'), 'nl-'3) === 0)
  79.         {
  80.             $this->activateRecipient();
  82.             return;
  83.         }
  85.         $objWidget null;
  87.         // Set up the captcha widget
  88.         if (!$this->disableCaptcha)
  89.         {
  90.             $arrField = array
  91.             (
  92.                 'name' => 'subscribe_' $this->id,
  93.                 'label' => $GLOBALS['TL_LANG']['MSC']['securityQuestion'],
  94.                 'inputType' => 'captcha',
  95.                 'eval' => array('mandatory'=>true)
  96.             );
  98.             $objWidget = new FormCaptcha(FormCaptcha::getAttributesFromDca($arrField$arrField['name']));
  99.         }
  101.         $strFormId 'tl_subscribe_' $this->id;
  103.         // Validate the form
  104.         if (Input::post('FORM_SUBMIT') == $strFormId)
  105.         {
  106.             $varSubmitted $this->validateForm($objWidget);
  108.             if ($varSubmitted !== false)
  109.             {
  110.                 $this->addRecipient(...$varSubmitted);
  111.             }
  112.         }
  114.         // Add the captcha widget to the template
  115.         if ($objWidget !== null)
  116.         {
  117.             $this->Template->captcha $objWidget->parse();
  118.         }
  120.         $session System::getContainer()->get('session');
  122.         // Confirmation message
  123.         if ($session->isStarted())
  124.         {
  125.             $flashBag $session->getFlashBag();
  127.             if ($flashBag->has('nl_confirm'))
  128.             {
  129.                 $arrMessages $flashBag->get('nl_confirm');
  131.                 $this->Template->mclass 'confirm';
  132.                 $this->Template->message $arrMessages[0];
  133.             }
  134.         }
  136.         $arrChannels = array();
  137.         $objChannel NewsletterChannelModel::findByIds($this->nl_channels);
  139.         // Get the titles
  140.         if ($objChannel !== null)
  141.         {
  142.             while ($objChannel->next())
  143.             {
  144.                 $arrChannels[$objChannel->id] = $objChannel->title;
  145.             }
  146.         }
  148.         // Default template variables
  149.         $this->Template->channels $arrChannels;
  150.         $this->Template->showChannels = !$this->nl_hideChannels;
  151.         $this->Template->submit StringUtil::specialchars($GLOBALS['TL_LANG']['MSC']['subscribe']);
  152.         $this->Template->channelsLabel $GLOBALS['TL_LANG']['MSC']['nl_channels'];
  153.         $this->Template->emailLabel $GLOBALS['TL_LANG']['MSC']['emailAddress'];
  154.         $this->Template->formId $strFormId;
  155.         $this->Template->id $this->id;
  156.         $this->Template->text $this->nl_text;
  157.         $this->Template->requestToken System::getContainer()->get('contao.csrf.token_manager')->getDefaultTokenValue();
  158.     }
  160.     /**
  161.      * Activate a recipient
  162.      */
  163.     protected function activateRecipient()
  164.     {
  165.         $this->Template = new FrontendTemplate('mod_newsletter');
  167.         $optIn System::getContainer()->get('contao.opt_in');
  169.         // Find an unconfirmed token
  170.         if ((!$optInToken $optIn->find(Input::get('token'))) || !$optInToken->isValid() || \count($arrRelated $optInToken->getRelatedRecords()) < || key($arrRelated) != 'tl_newsletter_recipients' || \count($arrIds current($arrRelated)) < 1)
  171.         {
  172.             $this->Template->mclass 'error';
  173.             $this->Template->message $GLOBALS['TL_LANG']['MSC']['invalidToken'];
  175.             return;
  176.         }
  178.         if ($optInToken->isConfirmed())
  179.         {
  180.             $this->Template->mclass 'error';
  181.             $this->Template->message $GLOBALS['TL_LANG']['MSC']['tokenConfirmed'];
  183.             return;
  184.         }
  186.         $arrRecipients = array();
  188.         // Validate the token
  189.         foreach ($arrIds as $intId)
  190.         {
  191.             if (!$objRecipient NewsletterRecipientsModel::findByPk($intId))
  192.             {
  193.                 $this->Template->mclass 'error';
  194.                 $this->Template->message $GLOBALS['TL_LANG']['MSC']['invalidToken'];
  196.                 return;
  197.             }
  199.             if ($optInToken->getEmail() != $objRecipient->email)
  200.             {
  201.                 $this->Template->mclass 'error';
  202.                 $this->Template->message $GLOBALS['TL_LANG']['MSC']['tokenEmailMismatch'];
  204.                 return;
  205.             }
  207.             $arrRecipients[] = $objRecipient;
  208.         }
  210.         $time time();
  211.         $arrAdd = array();
  212.         $arrCids = array();
  214.         // Activate the subscriptions
  215.         foreach ($arrRecipients as $objRecipient)
  216.         {
  217.             $arrAdd[] = $objRecipient->id;
  218.             $arrCids[] = $objRecipient->pid;
  220.             $objRecipient->tstamp $time;
  221.             $objRecipient->active '1';
  222.             $objRecipient->save();
  223.         }
  225.         $optInToken->confirm();
  227.         // HOOK: post activation callback
  228.         if (isset($GLOBALS['TL_HOOKS']['activateRecipient']) && \is_array($GLOBALS['TL_HOOKS']['activateRecipient']))
  229.         {
  230.             foreach ($GLOBALS['TL_HOOKS']['activateRecipient'] as $callback)
  231.             {
  232.                 $this->import($callback[0]);
  233.                 $this->{$callback[0]}->{$callback[1]}($optInToken->getEmail(), $arrAdd$arrCids);
  234.             }
  235.         }
  237.         // Confirm activation
  238.         $this->Template->mclass 'confirm';
  239.         $this->Template->message $GLOBALS['TL_LANG']['MSC']['nl_activate'];
  240.     }
  242.     /**
  243.      * Validate the subscription form
  244.      *
  245.      * @param Widget $objWidget
  246.      *
  247.      * @return array|bool
  248.      */
  249.     protected function validateForm(Widget $objWidget=null)
  250.     {
  251.         // Validate the e-mail address
  252.         $varInput Idna::encodeEmail(Input::post('email'true));
  254.         if (!Validator::isEmail($varInput))
  255.         {
  256.             $this->Template->mclass 'error';
  257.             $this->Template->message $GLOBALS['TL_LANG']['ERR']['email'];
  259.             return false;
  260.         }
  262.         $this->Template->email $varInput;
  264.         // Validate the channel selection
  265.         $arrChannels Input::post('channels');
  267.         if (!\is_array($arrChannels))
  268.         {
  269.             $this->Template->mclass 'error';
  270.             $this->Template->message $GLOBALS['TL_LANG']['ERR']['noChannels'];
  272.             return false;
  273.         }
  275.         $arrChannels array_intersect($arrChannels$this->nl_channels); // see #3240
  277.         if (empty($arrChannels) || !\is_array($arrChannels))
  278.         {
  279.             $this->Template->mclass 'error';
  280.             $this->Template->message $GLOBALS['TL_LANG']['ERR']['noChannels'];
  282.             return false;
  283.         }
  285.         $this->Template->selectedChannels $arrChannels;
  287.         // Check if there are any new subscriptions
  288.         $arrSubscriptions = array();
  290.         if (($objSubscription NewsletterRecipientsModel::findBy(array("email=? AND active='1'"), $varInput)) !== null)
  291.         {
  292.             $arrSubscriptions $objSubscription->fetchEach('pid');
  293.         }
  295.         $arrChannels array_diff($arrChannels$arrSubscriptions);
  297.         if (empty($arrChannels))
  298.         {
  299.             $this->Template->mclass 'error';
  300.             $this->Template->message $GLOBALS['TL_LANG']['ERR']['subscribed'];
  302.             return false;
  303.         }
  305.         // Validate the captcha
  306.         if ($objWidget !== null)
  307.         {
  308.             $objWidget->validate();
  310.             if ($objWidget->hasErrors())
  311.             {
  312.                 return false;
  313.             }
  314.         }
  316.         return array($varInput$arrChannels);
  317.     }
  319.     /**
  320.      * Add a new recipient
  321.      *
  322.      * @param string $strEmail
  323.      * @param array  $arrNew
  324.      */
  325.     protected function addRecipient($strEmail$arrNew)
  326.     {
  327.         // Remove old subscriptions that have not been activated yet
  328.         if (($objOld NewsletterRecipientsModel::findOldSubscriptionsByEmailAndPids($strEmail$arrNew)) !== null)
  329.         {
  330.             while ($objOld->next())
  331.             {
  332.                 $objOld->delete();
  333.             }
  334.         }
  336.         $time time();
  337.         $arrRelated = array();
  339.         // Add the new subscriptions
  340.         foreach ($arrNew as $id)
  341.         {
  342.             $objRecipient = new NewsletterRecipientsModel();
  343.             $objRecipient->pid $id;
  344.             $objRecipient->tstamp $time;
  345.             $objRecipient->email $strEmail;
  346.             $objRecipient->active '';
  347.             $objRecipient->addedOn $time;
  348.             $objRecipient->save();
  350.             // Remove the deny list entry (see #4999)
  351.             if (($objDenyList NewsletterDenyListModel::findByHashAndPid(md5($strEmail), $id)) !== null)
  352.             {
  353.                 $objDenyList->delete();
  354.             }
  356.             $arrRelated['tl_newsletter_recipients'][] = $objRecipient->id;
  357.         }
  359.         $optIn System::getContainer()->get('contao.opt_in');
  360.         $optInToken $optIn->create('nl'$strEmail$arrRelated);
  362.         // Get the channels
  363.         $objChannel NewsletterChannelModel::findByIds($arrNew);
  365.         // Prepare the simple token data
  366.         $arrData = array();
  367.         $arrData['token'] = $optInToken->getIdentifier();
  368.         $arrData['domain'] = Idna::decode(Environment::get('host'));
  369.         $arrData['link'] = Idna::decode(Environment::get('base')) . Environment::get('request') . ((strpos(Environment::get('request'), '?') !== false) ? '&' '?') . 'token=' $optInToken->getIdentifier();
  370.         $arrData['channel'] = $arrData['channels'] = implode("\n"$objChannel->fetchEach('title'));
  372.         // Send the token
  373.         $optInToken->send(
  374.             sprintf($GLOBALS['TL_LANG']['MSC']['nl_subject'], Idna::decode(Environment::get('host'))),
  375.             System::getContainer()->get('contao.string.simple_token_parser')->parse($this->nl_subscribe$arrData)
  376.         );
  378.         // Redirect to the jumpTo page
  379.         if (($objTarget $this->objModel->getRelated('jumpTo')) instanceof PageModel)
  380.         {
  381.             /** @var PageModel $objTarget */
  382.             $this->redirect($objTarget->getFrontendUrl());
  383.         }
  385.         System::getContainer()->get('session')->getFlashBag()->set('nl_confirm'$GLOBALS['TL_LANG']['MSC']['nl_confirm']);
  387.         $this->reload();
  388.     }
  389. }
  391. class_alias(ModuleSubscribe::class, 'ModuleSubscribe');