Chris@1494: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1494: # Chris@1494: # This program is free software; you can redistribute it and/or Chris@1494: # modify it under the terms of the GNU General Public License Chris@1494: # as published by the Free Software Foundation; either version 2 Chris@1494: # of the License, or (at your option) any later version. Chris@1494: # Chris@1494: # This program is distributed in the hope that it will be useful, Chris@1494: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1494: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1494: # GNU General Public License for more details. Chris@1494: # Chris@1494: # You should have received a copy of the GNU General Public License Chris@1494: # along with this program; if not, write to the Free Software Chris@1494: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1494: Chris@1494: class MailHandler < ActionMailer::Base Chris@1494: include ActionView::Helpers::SanitizeHelper Chris@1494: include Redmine::I18n Chris@1494: Chris@1494: class UnauthorizedAction < StandardError; end Chris@1494: class MissingInformation < StandardError; end Chris@1494: Chris@1494: attr_reader :email, :user Chris@1494: Chris@1494: def self.receive(email, options={}) Chris@1494: @@handler_options = options.dup Chris@1494: Chris@1494: @@handler_options[:issue] ||= {} Chris@1494: Chris@1494: if @@handler_options[:allow_override].is_a?(String) Chris@1494: @@handler_options[:allow_override] = @@handler_options[:allow_override].split(',').collect(&:strip) Chris@1494: end Chris@1494: @@handler_options[:allow_override] ||= [] Chris@1494: # Project needs to be overridable if not specified Chris@1494: @@handler_options[:allow_override] << 'project' unless @@handler_options[:issue].has_key?(:project) Chris@1494: # Status overridable by default Chris@1494: @@handler_options[:allow_override] << 'status' unless @@handler_options[:issue].has_key?(:status) Chris@1494: Chris@1494: @@handler_options[:no_account_notice] = (@@handler_options[:no_account_notice].to_s == '1') Chris@1494: @@handler_options[:no_notification] = (@@handler_options[:no_notification].to_s == '1') Chris@1494: @@handler_options[:no_permission_check] = (@@handler_options[:no_permission_check].to_s == '1') Chris@1494: Chris@1494: email.force_encoding('ASCII-8BIT') if email.respond_to?(:force_encoding) Chris@1494: super(email) Chris@1494: end Chris@1494: Chris@1494: # Extracts MailHandler options from environment variables Chris@1494: # Use when receiving emails with rake tasks Chris@1494: def self.extract_options_from_env(env) Chris@1494: options = {:issue => {}} Chris@1494: %w(project status tracker category priority).each do |option| Chris@1494: options[:issue][option.to_sym] = env[option] if env[option] Chris@1494: end Chris@1494: %w(allow_override unknown_user no_permission_check no_account_notice default_group).each do |option| Chris@1494: options[option.to_sym] = env[option] if env[option] Chris@1494: end Chris@1494: options Chris@1494: end Chris@1494: Chris@1494: def logger Chris@1494: Rails.logger Chris@1494: end Chris@1494: Chris@1494: cattr_accessor :ignored_emails_headers Chris@1494: @@ignored_emails_headers = { Chris@1494: 'X-Auto-Response-Suppress' => 'oof', Chris@1494: 'Auto-Submitted' => /^auto-/ Chris@1494: } Chris@1494: Chris@1494: # Processes incoming emails Chris@1494: # Returns the created object (eg. an issue, a message) or false Chris@1494: def receive(email) Chris@1494: @email = email Chris@1494: sender_email = email.from.to_a.first.to_s.strip Chris@1494: # Ignore emails received from the application emission address to avoid hell cycles Chris@1494: if sender_email.downcase == Setting.mail_from.to_s.strip.downcase Chris@1494: if logger Chris@1494: logger.info "MailHandler: ignoring email from Redmine emission address [#{sender_email}]" Chris@1494: end Chris@1494: return false Chris@1494: end Chris@1494: # Ignore auto generated emails Chris@1494: self.class.ignored_emails_headers.each do |key, ignored_value| Chris@1494: value = email.header[key] Chris@1494: if value Chris@1494: value = value.to_s.downcase Chris@1494: if (ignored_value.is_a?(Regexp) && value.match(ignored_value)) || value == ignored_value Chris@1494: if logger Chris@1494: logger.info "MailHandler: ignoring email with #{key}:#{value} header" Chris@1494: end Chris@1494: return false Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: @user = User.find_by_mail(sender_email) if sender_email.present? Chris@1494: if @user && !@user.active? Chris@1494: if logger Chris@1494: logger.info "MailHandler: ignoring email from non-active user [#{@user.login}]" Chris@1494: end Chris@1494: return false Chris@1494: end Chris@1494: if @user.nil? Chris@1494: # Email was submitted by an unknown user Chris@1494: case @@handler_options[:unknown_user] Chris@1494: when 'accept' Chris@1494: @user = User.anonymous Chris@1494: when 'create' Chris@1494: @user = create_user_from_email Chris@1494: if @user Chris@1494: if logger Chris@1494: logger.info "MailHandler: [#{@user.login}] account created" Chris@1494: end Chris@1494: add_user_to_group(@@handler_options[:default_group]) Chris@1494: unless @@handler_options[:no_account_notice] Chris@1494: Mailer.account_information(@user, @user.password).deliver Chris@1494: end Chris@1494: else Chris@1494: if logger Chris@1494: logger.error "MailHandler: could not create account for [#{sender_email}]" Chris@1494: end Chris@1494: return false Chris@1494: end Chris@1494: else Chris@1494: # Default behaviour, emails from unknown users are ignored Chris@1494: if logger Chris@1494: logger.info "MailHandler: ignoring email from unknown user [#{sender_email}]" Chris@1494: end Chris@1494: return false Chris@1494: end Chris@1494: end Chris@1494: User.current = @user Chris@1494: dispatch Chris@1494: end Chris@1494: Chris@1494: private Chris@1494: Chris@1494: MESSAGE_ID_RE = %r{^ e Chris@1494: # TODO: send a email to the user Chris@1494: logger.error e.message if logger Chris@1494: false Chris@1494: rescue MissingInformation => e Chris@1494: logger.error "MailHandler: missing information from #{user}: #{e.message}" if logger Chris@1494: false Chris@1494: rescue UnauthorizedAction => e Chris@1494: logger.error "MailHandler: unauthorized attempt from #{user}" if logger Chris@1494: false Chris@1494: end Chris@1494: Chris@1494: def dispatch_to_default Chris@1494: receive_issue Chris@1494: end Chris@1494: Chris@1494: # Creates a new issue Chris@1494: def receive_issue Chris@1494: project = target_project Chris@1494: # check permission Chris@1494: unless @@handler_options[:no_permission_check] Chris@1494: raise UnauthorizedAction unless user.allowed_to?(:add_issues, project) Chris@1494: end Chris@1494: Chris@1494: issue = Issue.new(:author => user, :project => project) Chris@1494: issue.safe_attributes = issue_attributes_from_keywords(issue) Chris@1494: issue.safe_attributes = {'custom_field_values' => custom_field_values_from_keywords(issue)} Chris@1494: issue.subject = cleaned_up_subject Chris@1494: if issue.subject.blank? Chris@1494: issue.subject = '(no subject)' Chris@1494: end Chris@1494: issue.description = cleaned_up_text_body Chris@1494: Chris@1494: # add To and Cc as watchers before saving so the watchers can reply to Redmine Chris@1494: add_watchers(issue) Chris@1494: issue.save! Chris@1494: add_attachments(issue) Chris@1494: logger.info "MailHandler: issue ##{issue.id} created by #{user}" if logger Chris@1494: issue Chris@1494: end Chris@1494: Chris@1494: # Adds a note to an existing issue Chris@1494: def receive_issue_reply(issue_id, from_journal=nil) Chris@1494: issue = Issue.find_by_id(issue_id) Chris@1494: return unless issue Chris@1494: # check permission Chris@1494: unless @@handler_options[:no_permission_check] Chris@1494: unless user.allowed_to?(:add_issue_notes, issue.project) || Chris@1494: user.allowed_to?(:edit_issues, issue.project) Chris@1494: raise UnauthorizedAction Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # ignore CLI-supplied defaults for new issues Chris@1494: @@handler_options[:issue].clear Chris@1494: Chris@1494: journal = issue.init_journal(user) Chris@1494: if from_journal && from_journal.private_notes? Chris@1494: # If the received email was a reply to a private note, make the added note private Chris@1494: issue.private_notes = true Chris@1494: end Chris@1494: issue.safe_attributes = issue_attributes_from_keywords(issue) Chris@1494: issue.safe_attributes = {'custom_field_values' => custom_field_values_from_keywords(issue)} Chris@1494: journal.notes = cleaned_up_text_body Chris@1494: add_attachments(issue) Chris@1494: issue.save! Chris@1494: if logger Chris@1494: logger.info "MailHandler: issue ##{issue.id} updated by #{user}" Chris@1494: end Chris@1494: journal Chris@1494: end Chris@1494: Chris@1494: # Reply will be added to the issue Chris@1494: def receive_journal_reply(journal_id) Chris@1494: journal = Journal.find_by_id(journal_id) Chris@1494: if journal && journal.journalized_type == 'Issue' Chris@1494: receive_issue_reply(journal.journalized_id, journal) Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Receives a reply to a forum message Chris@1494: def receive_message_reply(message_id) Chris@1494: message = Message.find_by_id(message_id) Chris@1494: if message Chris@1494: message = message.root Chris@1494: Chris@1494: unless @@handler_options[:no_permission_check] Chris@1494: raise UnauthorizedAction unless user.allowed_to?(:add_messages, message.project) Chris@1494: end Chris@1494: Chris@1494: if !message.locked? Chris@1494: reply = Message.new(:subject => cleaned_up_subject.gsub(%r{^.*msg\d+\]}, '').strip, Chris@1494: :content => cleaned_up_text_body) Chris@1494: reply.author = user Chris@1494: reply.board = message.board Chris@1494: message.children << reply Chris@1494: add_attachments(reply) Chris@1494: reply Chris@1494: else Chris@1494: if logger Chris@1494: logger.info "MailHandler: ignoring reply from [#{sender_email}] to a locked topic" Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: def add_attachments(obj) Chris@1494: if email.attachments && email.attachments.any? Chris@1494: email.attachments.each do |attachment| Chris@1494: next unless accept_attachment?(attachment) Chris@1494: obj.attachments << Attachment.create(:container => obj, Chris@1494: :file => attachment.decoded, Chris@1494: :filename => attachment.filename, Chris@1494: :author => user, Chris@1494: :content_type => attachment.mime_type) Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Returns false if the +attachment+ of the incoming email should be ignored Chris@1494: def accept_attachment?(attachment) Chris@1494: @excluded ||= Setting.mail_handler_excluded_filenames.to_s.split(',').map(&:strip).reject(&:blank?) Chris@1494: @excluded.each do |pattern| Chris@1494: regexp = %r{\A#{Regexp.escape(pattern).gsub("\\*", ".*")}\z}i Chris@1494: if attachment.filename.to_s =~ regexp Chris@1494: logger.info "MailHandler: ignoring attachment #{attachment.filename} matching #{pattern}" Chris@1494: return false Chris@1494: end Chris@1494: end Chris@1494: true Chris@1494: end Chris@1494: Chris@1494: # Adds To and Cc as watchers of the given object if the sender has the Chris@1494: # appropriate permission Chris@1494: def add_watchers(obj) Chris@1494: if user.allowed_to?("add_#{obj.class.name.underscore}_watchers".to_sym, obj.project) Chris@1494: addresses = [email.to, email.cc].flatten.compact.uniq.collect {|a| a.strip.downcase} Chris@1494: unless addresses.empty? Chris@1494: watchers = User.active.where('LOWER(mail) IN (?)', addresses).all Chris@1494: watchers.each {|w| obj.add_watcher(w)} Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: def get_keyword(attr, options={}) Chris@1494: @keywords ||= {} Chris@1494: if @keywords.has_key?(attr) Chris@1494: @keywords[attr] Chris@1494: else Chris@1494: @keywords[attr] = begin Chris@1494: if (options[:override] || @@handler_options[:allow_override].include?(attr.to_s)) && Chris@1494: (v = extract_keyword!(plain_text_body, attr, options[:format])) Chris@1494: v Chris@1494: elsif !@@handler_options[:issue][attr].blank? Chris@1494: @@handler_options[:issue][attr] Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Destructively extracts the value for +attr+ in +text+ Chris@1494: # Returns nil if no matching keyword found Chris@1494: def extract_keyword!(text, attr, format=nil) Chris@1494: keys = [attr.to_s.humanize] Chris@1494: if attr.is_a?(Symbol) Chris@1494: if user && user.language.present? Chris@1494: keys << l("field_#{attr}", :default => '', :locale => user.language) Chris@1494: end Chris@1494: if Setting.default_language.present? Chris@1494: keys << l("field_#{attr}", :default => '', :locale => Setting.default_language) Chris@1494: end Chris@1494: end Chris@1494: keys.reject! {|k| k.blank?} Chris@1494: keys.collect! {|k| Regexp.escape(k)} Chris@1494: format ||= '.+' Chris@1494: keyword = nil Chris@1494: regexp = /^(#{keys.join('|')})[ \t]*:[ \t]*(#{format})\s*$/i Chris@1494: if m = text.match(regexp) Chris@1494: keyword = m[2].strip Chris@1494: text.gsub!(regexp, '') Chris@1494: end Chris@1494: keyword Chris@1494: end Chris@1494: Chris@1494: def target_project Chris@1494: # TODO: other ways to specify project: Chris@1494: # * parse the email To field Chris@1494: # * specific project (eg. Setting.mail_handler_target_project) Chris@1494: target = Project.find_by_identifier(get_keyword(:project)) Chris@1494: if target.nil? Chris@1494: # Invalid project keyword, use the project specified as the default one Chris@1494: default_project = @@handler_options[:issue][:project] Chris@1494: if default_project.present? Chris@1494: target = Project.find_by_identifier(default_project) Chris@1494: end Chris@1494: end Chris@1494: raise MissingInformation.new('Unable to determine target project') if target.nil? Chris@1494: target Chris@1494: end Chris@1494: Chris@1494: # Returns a Hash of issue attributes extracted from keywords in the email body Chris@1494: def issue_attributes_from_keywords(issue) Chris@1494: assigned_to = (k = get_keyword(:assigned_to, :override => true)) && find_assignee_from_keyword(k, issue) Chris@1494: Chris@1494: attrs = { Chris@1494: 'tracker_id' => (k = get_keyword(:tracker)) && issue.project.trackers.named(k).first.try(:id), Chris@1494: 'status_id' => (k = get_keyword(:status)) && IssueStatus.named(k).first.try(:id), Chris@1494: 'priority_id' => (k = get_keyword(:priority)) && IssuePriority.named(k).first.try(:id), Chris@1494: 'category_id' => (k = get_keyword(:category)) && issue.project.issue_categories.named(k).first.try(:id), Chris@1494: 'assigned_to_id' => assigned_to.try(:id), Chris@1494: 'fixed_version_id' => (k = get_keyword(:fixed_version, :override => true)) && Chris@1494: issue.project.shared_versions.named(k).first.try(:id), Chris@1494: 'start_date' => get_keyword(:start_date, :override => true, :format => '\d{4}-\d{2}-\d{2}'), Chris@1494: 'due_date' => get_keyword(:due_date, :override => true, :format => '\d{4}-\d{2}-\d{2}'), Chris@1494: 'estimated_hours' => get_keyword(:estimated_hours, :override => true), Chris@1494: 'done_ratio' => get_keyword(:done_ratio, :override => true, :format => '(\d|10)?0') Chris@1494: }.delete_if {|k, v| v.blank? } Chris@1494: Chris@1494: if issue.new_record? && attrs['tracker_id'].nil? Chris@1494: attrs['tracker_id'] = issue.project.trackers.first.try(:id) Chris@1494: end Chris@1494: Chris@1494: attrs Chris@1494: end Chris@1494: Chris@1494: # Returns a Hash of issue custom field values extracted from keywords in the email body Chris@1494: def custom_field_values_from_keywords(customized) Chris@1494: customized.custom_field_values.inject({}) do |h, v| Chris@1494: if keyword = get_keyword(v.custom_field.name, :override => true) Chris@1494: h[v.custom_field.id.to_s] = v.custom_field.value_from_keyword(keyword, customized) Chris@1494: end Chris@1494: h Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Returns the text/plain part of the email Chris@1494: # If not found (eg. HTML-only email), returns the body with tags removed Chris@1494: def plain_text_body Chris@1494: return @plain_text_body unless @plain_text_body.nil? Chris@1494: Chris@1494: parts = if (text_parts = email.all_parts.select {|p| p.mime_type == 'text/plain'}).present? Chris@1494: text_parts Chris@1494: elsif (html_parts = email.all_parts.select {|p| p.mime_type == 'text/html'}).present? Chris@1494: html_parts Chris@1494: else Chris@1494: [email] Chris@1494: end Chris@1494: Chris@1494: parts.reject! do |part| Chris@1494: part.header[:content_disposition].try(:disposition_type) == 'attachment' Chris@1494: end Chris@1494: Chris@1494: @plain_text_body = parts.map {|p| Redmine::CodesetUtil.to_utf8(p.body.decoded, p.charset)}.join("\r\n") Chris@1494: Chris@1494: # strip html tags and remove doctype directive Chris@1494: if parts.any? {|p| p.mime_type == 'text/html'} Chris@1494: @plain_text_body = strip_tags(@plain_text_body.strip) Chris@1494: @plain_text_body.sub! %r{^$/) Chris@1494: addr, name = m[2], m[1] Chris@1494: end Chris@1494: if addr.present? Chris@1494: user = self.class.new_user_from_attributes(addr, name) Chris@1494: if @@handler_options[:no_notification] Chris@1494: user.mail_notification = 'none' Chris@1494: end Chris@1494: if user.save Chris@1494: user Chris@1494: else Chris@1494: logger.error "MailHandler: failed to create User: #{user.errors.full_messages}" if logger Chris@1494: nil Chris@1494: end Chris@1494: else Chris@1494: logger.error "MailHandler: failed to create User: no FROM address found" if logger Chris@1494: nil Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Adds the newly created user to default group Chris@1494: def add_user_to_group(default_group) Chris@1494: if default_group.present? Chris@1494: default_group.split(',').each do |group_name| Chris@1494: if group = Group.named(group_name).first Chris@1494: group.users << @user Chris@1494: elsif logger Chris@1494: logger.warn "MailHandler: could not add user to [#{group_name}], group not found" Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: end Chris@1494: Chris@1494: # Removes the email body of text after the truncation configurations. Chris@1494: def cleanup_body(body) Chris@1494: delimiters = Setting.mail_handler_body_delimiters.to_s.split(/[\r\n]+/).reject(&:blank?).map {|s| Regexp.escape(s)} Chris@1494: unless delimiters.empty? Chris@1494: regex = Regexp.new("^[> ]*(#{ delimiters.join('|') })\s*[\r\n].*", Regexp::MULTILINE) Chris@1494: body = body.gsub(regex, '') Chris@1494: end Chris@1494: body.strip Chris@1494: end Chris@1494: Chris@1494: def find_assignee_from_keyword(keyword, issue) Chris@1494: keyword = keyword.to_s.downcase Chris@1494: assignable = issue.assignable_users Chris@1494: assignee = nil Chris@1494: assignee ||= assignable.detect {|a| Chris@1494: a.mail.to_s.downcase == keyword || Chris@1494: a.login.to_s.downcase == keyword Chris@1494: } Chris@1494: if assignee.nil? && keyword.match(/ /) Chris@1494: firstname, lastname = *(keyword.split) # "First Last Throwaway" Chris@1494: assignee ||= assignable.detect {|a| Chris@1494: a.is_a?(User) && a.firstname.to_s.downcase == firstname && Chris@1494: a.lastname.to_s.downcase == lastname Chris@1494: } Chris@1494: end Chris@1494: if assignee.nil? Chris@1494: assignee ||= assignable.detect {|a| a.name.downcase == keyword} Chris@1494: end Chris@1494: assignee Chris@1494: end Chris@1494: end