PDO::ERRMODE_EXCEPTION, PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC, PDO::ATTR_EMULATE_PREPARES => false, ]; try { $pdo = new PDO($dsn, $database_user, $database_pass, $opt); } catch (PDOException $e) { error_log("NOTIFY: " . $e . PHP_EOL); http_response_code(501); exit; } // Init Redis $redis = new Redis(); $redis->connect('redis-mailcow', 6379); // Functions function parse_email($email) { if(!filter_var($email, FILTER_VALIDATE_EMAIL)) return false; $a = strrpos($email, '@'); return array('local' => substr($email, 0, $a), 'domain' => substr(substr($email, $a), 1)); } if (!function_exists('getallheaders')) { function getallheaders() { if (!is_array($_SERVER)) { return array(); } $headers = array(); foreach ($_SERVER as $name => $value) { if (substr($name, 0, 5) == 'HTTP_') { $headers[str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5)))))] = $value; } } return $headers; } } $headers = getallheaders(); $json_body = json_decode(file_get_contents('php://input')); $qid = $headers['X-Rspamd-Qid']; $rcpts = $headers['X-Rspamd-Rcpt']; $sender = $headers['X-Rspamd-From']; $ip = $headers['X-Rspamd-Ip']; $subject = $headers['X-Rspamd-Subject']; $priority = 0; $symbols_array = json_decode($headers['X-Rspamd-Symbols'], true); if (is_array($symbols_array)) { foreach ($symbols_array as $symbol) { if ($symbol['name'] == 'HAS_X_PRIO_ONE') { $priority = 1; break; } } } $sender_address = $json_body->header_from[0]; $sender_name = '-'; if (preg_match('/(?.*?)<(?
.*?)>/i', $sender_address, $matches)) { $sender_address = $matches['address']; $sender_name = trim($matches['name'], '"\' '); } $to_address = $json_body->header_to[0]; $to_name = '-'; if (preg_match('/(?.*?)<(?
.*?)>/i', $to_address, $matches)) { $to_address = $matches['address']; $to_name = trim($matches['name'], '"\' '); } $rcpt_final_mailboxes = array(); // Loop through all rcpts foreach (json_decode($rcpts, true) as $rcpt) { // Remove tag $rcpt = preg_replace('/^(.*?)\+.*(@.*)$/', '$1$2', $rcpt); // Break rcpt into local part and domain part $parsed_rcpt = parse_email($rcpt); // Skip if not a mailcow handled domain try { if (!$redis->hGet('DOMAIN_MAP', $parsed_rcpt['domain'])) { continue; } } catch (RedisException $e) { error_log("NOTIFY: " . $e . PHP_EOL); http_response_code(504); exit; } // Always assume rcpt is not a final mailbox but an alias for a mailbox or further aliases // // rcpt // | // mailbox <-- goto ---> alias1, alias2, mailbox2 // | | // mailbox3 | // | // alias3 ---> mailbox4 // try { $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'"); $stmt->execute(array( ':rcpt' => $rcpt )); $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto']; if (empty($gotos)) { $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :rcpt AND `active` = '1'"); $stmt->execute(array( ':rcpt' => '@' . $parsed_rcpt['domain'] )); $gotos = $stmt->fetch(PDO::FETCH_ASSOC)['goto']; } if (empty($gotos)) { $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :rcpt AND `active` = '1'"); $stmt->execute(array(':rcpt' => $parsed_rcpt['domain'])); $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain']; if ($goto_branch) { $gotos = $parsed_rcpt['local'] . '@' . $goto_branch; } } $gotos_array = explode(',', $gotos); $loop_c = 0; while (count($gotos_array) != 0 && $loop_c <= 20) { // Loop through all found gotos foreach ($gotos_array as $index => &$goto) { error_log("RCPT RESOVLER: http pipe: query " . $goto . " as username from mailbox" . PHP_EOL); $stmt = $pdo->prepare("SELECT `username` FROM `mailbox` WHERE `username` = :goto AND (`active`= '1' OR `active`= '2');"); $stmt->execute(array(':goto' => $goto)); $username = $stmt->fetch(PDO::FETCH_ASSOC)['username']; if (!empty($username)) { error_log("RCPT RESOVLER: http pipe: mailbox found: " . $username . PHP_EOL); // Current goto is a mailbox, save to rcpt_final_mailboxes if not a duplicate if (!in_array($username, $rcpt_final_mailboxes)) { $rcpt_final_mailboxes[] = $username; } } else { $parsed_goto = parse_email($goto); if (!$redis->hGet('DOMAIN_MAP', $parsed_goto['domain'])) { error_log("RCPT RESOVLER:" . $goto . " is not a mailcow handled mailbox or alias address" . PHP_EOL); } else { $stmt = $pdo->prepare("SELECT `goto` FROM `alias` WHERE `address` = :goto AND `active` = '1'"); $stmt->execute(array(':goto' => $goto)); $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['goto']; if ($goto_branch) { error_log("RCPT RESOVLER: http pipe: goto address " . $goto . " is an alias branch for " . $goto_branch . PHP_EOL); $goto_branch_array = explode(',', $goto_branch); } else { $stmt = $pdo->prepare("SELECT `target_domain` FROM `alias_domain` WHERE `alias_domain` = :domain AND `active` AND '1'"); $stmt->execute(array(':domain' => $parsed_goto['domain'])); $goto_branch = $stmt->fetch(PDO::FETCH_ASSOC)['target_domain']; if ($goto_branch) { error_log("RCPT RESOVLER: http pipe: goto domain " . $parsed_goto['domain'] . " is a domain alias branch for " . $goto_branch . PHP_EOL); $goto_branch_array = array($parsed_goto['local'] . '@' . $goto_branch); } } } } // goto item was processed, unset unset($gotos_array[$index]); } // Merge goto branch array derived from previous loop (if any), filter duplicates and unset goto branch array if (!empty($goto_branch_array)) { $gotos_array = array_unique(array_merge($gotos_array, $goto_branch_array)); unset($goto_branch_array); } // Reindex array $gotos_array = array_values($gotos_array); // Force exit if loop cannot be solved // Postfix does not allow for alias loops, so this should never happen. $loop_c++; error_log("RCPT RESOVLER: http pipe: goto array count on loop #". $loop_c . " is " . count($gotos_array) . PHP_EOL); } } catch (PDOException $e) { error_log("RCPT RESOVLER: " . $e->getMessage() . PHP_EOL); http_response_code(502); exit; } } foreach ($rcpt_final_mailboxes as $rcpt_final) { error_log("NOTIFY: pushover pipe: processing pushover message for rcpt " . $rcpt_final . PHP_EOL); $stmt = $pdo->prepare("SELECT * FROM `pushover` WHERE `username` = :username AND `active` = '1'"); $stmt->execute(array( ':username' => $rcpt_final )); $api_data = $stmt->fetch(PDO::FETCH_ASSOC); if (isset($api_data['key']) && isset($api_data['token'])) { $title = (!empty($api_data['title'])) ? $api_data['title'] : 'Mail'; $text = (!empty($api_data['text'])) ? $api_data['text'] : 'You\'ve got mail 📧'; $attributes = json_decode($api_data['attributes'], true); $senders = explode(',', $api_data['senders']); $senders = array_filter($senders); $senders_regex = $api_data['senders_regex']; $sender_validated = false; if (empty($senders) && empty($senders_regex)) { $sender_validated = true; } else { if (!empty($senders)) { if (in_array($sender, $senders)) { $sender_validated = true; } } if (!empty($senders_regex) && $sender_validated !== true) { if (preg_match($senders_regex, $sender)) { $sender_validated = true; } } } if ($sender_validated === false) { error_log("NOTIFY: pushover pipe: skipping unwanted sender " . $sender); continue; } if ($attributes['only_x_prio'] == "1" && $priority == 0) { error_log("NOTIFY: pushover pipe: mail has no X-Priority: 1 header, skipping"); continue; } $post_fields = array( "token" => $api_data['token'], "user" => $api_data['key'], "title" => sprintf("%s", str_replace( array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}'), array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address), $title) ), "priority" => $priority, "message" => sprintf("%s", str_replace( array('{SUBJECT}', '{SENDER}', '{SENDER_NAME}', '{SENDER_ADDRESS}', '{TO_NAME}', '{TO_ADDRESS}', '\n'), array($subject, $sender, $sender_name, $sender_address, $to_name, $to_address, PHP_EOL), $text) ), "sound" => $attributes['sound'] ?? "pushover" ); if ($attributes['evaluate_x_prio'] == "1" && $priority == 1) { $post_fields['expire'] = 600; $post_fields['retry'] = 120; $post_fields['priority'] = 2; } curl_setopt_array($ch = curl_init(), array( CURLOPT_URL => "https://api.pushover.net/1/messages.json", CURLOPT_POSTFIELDS => $post_fields, CURLOPT_SAFE_UPLOAD => true, CURLOPT_RETURNTRANSFER => true, )); $result = curl_exec($ch); $httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE); curl_close($ch); error_log("NOTIFY: result: " . $httpcode . PHP_EOL); } }