loop
/
alps
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
A webmail client. Forked from https://git.sr.ht/~migadu/alps
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
344 Commits
1 Branch
708 KiB
 
 
 
 
Tree: 8cc742f45d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8cc742f45d'
${ noResults }
alps/plugins/base/routes.go

1221 lines
31 KiB
Raw Blame History 

  1. package alpsbase

  2. 

  3. import (

  4. 	"bytes"

  5. 	"fmt"

  6. 	"io"

  7. 	"io/ioutil"

  8. 	"mime"

  9. 	"net/http"

  10. 	"net/textproto"

  11. 	"net/url"

  12. 	"strconv"

  13. 	"strings"

  14. 

  15. 	"git.sr.ht/~emersion/alps"

  16. 	"github.com/emersion/go-imap"

  17. 	"github.com/emersion/go-message"

  18. 	"github.com/emersion/go-message/mail"

  19. 	"github.com/emersion/go-smtp"

  20. 	"github.com/labstack/echo/v4"

  21. 	"jaytaylor.com/html2text"

  22. 	imapclient "github.com/emersion/go-imap/client"

  23. 	imapmove "github.com/emersion/go-imap-move"

  24. )

  25. 

  26. func registerRoutes(p *alps.GoPlugin) {

  27. 	p.GET("/", func(ctx *alps.Context) error {

  28. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  29. 	})

  30. 

  31. 	p.GET("/mailbox/:mbox", handleGetMailbox)

  32. 	p.POST("/mailbox/:mbox", handleGetMailbox)

  33. 

  34. 	p.GET("/new-mailbox", handleNewMailbox)

  35. 	p.POST("/new-mailbox", handleNewMailbox)

  36. 

  37. 	p.GET("/delete-mailbox/:mbox", handleDeleteMailbox)

  38. 	p.POST("/delete-mailbox/:mbox", handleDeleteMailbox)

  39. 

  40. 	p.GET("/message/:mbox/:uid", func(ctx *alps.Context) error {

  41. 		return handleGetPart(ctx, false)

  42. 	})

  43. 	p.GET("/message/:mbox/:uid/raw", func(ctx *alps.Context) error {

  44. 		return handleGetPart(ctx, true)

  45. 	})

  46. 

  47. 	p.GET("/login", handleLogin)

  48. 	p.POST("/login", handleLogin)

  49. 

  50. 	p.GET("/logout", handleLogout)

  51. 

  52. 	p.GET("/compose", handleComposeNew)

  53. 	p.POST("/compose", handleComposeNew)

  54. 

  55. 	p.POST("/compose/attachment", handleComposeAttachment)

  56. 	p.POST("/compose/attachment/:uuid/remove", handleCancelAttachment)

  57. 

  58. 	p.GET("/message/:mbox/:uid/reply", handleReply)

  59. 	p.POST("/message/:mbox/:uid/reply", handleReply)

  60. 

  61. 	p.GET("/message/:mbox/:uid/forward", handleForward)

  62. 	p.POST("/message/:mbox/:uid/forward", handleForward)

  63. 

  64. 	p.GET("/message/:mbox/:uid/edit", handleEdit)

  65. 	p.POST("/message/:mbox/:uid/edit", handleEdit)

  66. 

  67. 	p.POST("/message/:mbox/move", handleMove)

  68. 

  69. 	p.POST("/message/:mbox/delete", handleDelete)

  70. 

  71. 	p.POST("/message/:mbox/flag", handleSetFlags)

  72. 

  73. 	p.GET("/settings", handleSettings)

  74. 	p.POST("/settings", handleSettings)

  75. }

  76. 

  77. type IMAPBaseRenderData struct {

  78. 	alps.BaseRenderData

  79. 	CategorizedMailboxes CategorizedMailboxes

  80. 	Mailboxes            []MailboxInfo

  81. 	Mailbox              *MailboxStatus

  82. 	Inbox                *MailboxStatus

  83. }

  84. 

  85. type MailboxRenderData struct {

  86. 	IMAPBaseRenderData

  87. 	Messages             []IMAPMessage

  88. 	PrevPage, NextPage   int

  89. 	Query                string

  90. }

  91. 

  92. // Organizes mailboxes into common/uncommon categories

  93. type CategorizedMailboxes struct {

  94. 	Common struct {

  95. 		Inbox   *MailboxInfo

  96. 		Drafts  *MailboxInfo

  97. 		Sent    *MailboxInfo

  98. 		Junk    *MailboxInfo

  99. 		Trash   *MailboxInfo

  100. 		Archive *MailboxInfo

  101. 	}

  102. 	Additional []*MailboxInfo

  103. }

  104. 

  105. func newIMAPBaseRenderData(ctx *alps.Context,

  106. 	base *alps.BaseRenderData) (*IMAPBaseRenderData, error) {

  107. 

  108. 	mboxName, err := url.PathUnescape(ctx.Param("mbox"))

  109. 	if err != nil {

  110. 		return nil, echo.NewHTTPError(http.StatusBadRequest, err)

  111. 	}

  112. 

  113. 	var mailboxes []MailboxInfo

  114. 	var active, inbox *MailboxStatus

  115. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  116. 		var err error

  117. 		if mailboxes, err = listMailboxes(c); err != nil {

  118. 			return err

  119. 		}

  120. 		if mboxName != "" {

  121. 			if active, err = getMailboxStatus(c, mboxName); err != nil {

  122. 				return echo.NewHTTPError(http.StatusNotFound, err)

  123. 			}

  124. 		}

  125. 		if mboxName == "INBOX" {

  126. 			inbox = active

  127. 		} else {

  128. 			if inbox, err = getMailboxStatus(c, "INBOX"); err != nil {

  129. 				return err

  130. 			}

  131. 		}

  132. 		return nil

  133. 	})

  134. 	if err != nil {

  135. 		return nil, err

  136. 	}

  137. 

  138. 	var categorized CategorizedMailboxes

  139. 	mmap := map[string]**MailboxInfo{

  140. 		"INBOX": &categorized.Common.Inbox,

  141. 		"Drafts": &categorized.Common.Drafts,

  142. 		"Sent": &categorized.Common.Sent,

  143. 		"Junk": &categorized.Common.Junk,

  144. 		"Trash": &categorized.Common.Trash,

  145. 		"Archive": &categorized.Common.Archive,

  146. 	}

  147. 

  148. 	for i, _ := range mailboxes {

  149. 		// Populate unseen & active states

  150. 		if active != nil && mailboxes[i].Name == active.Name {

  151. 			mailboxes[i].Unseen = int(active.Unseen)

  152. 			mailboxes[i].Total = int(active.Messages)

  153. 			mailboxes[i].Active = true

  154. 		}

  155. 		if mailboxes[i].Name == inbox.Name {

  156. 			mailboxes[i].Unseen = int(inbox.Unseen)

  157. 			mailboxes[i].Total = int(inbox.Messages)

  158. 		}

  159. 

  160. 		if ptr, ok := mmap[mailboxes[i].Name]; ok {

  161. 			*ptr = &mailboxes[i]

  162. 		} else {

  163. 			categorized.Additional = append(

  164. 				categorized.Additional, &mailboxes[i])

  165. 		}

  166. 	}

  167. 

  168. 	return &IMAPBaseRenderData{

  169. 		BaseRenderData:       *base,

  170. 		CategorizedMailboxes: categorized,

  171. 		Mailboxes:            mailboxes,

  172. 		Inbox:                inbox,

  173. 		Mailbox:              active,

  174. 	}, nil

  175. }

  176. 

  177. func handleGetMailbox(ctx *alps.Context) error {

  178. 	ibase, err := newIMAPBaseRenderData(ctx, alps.NewBaseRenderData(ctx))

  179. 	if err != nil {

  180. 		return err

  181. 	}

  182. 

  183. 	mbox := ibase.Mailbox

  184. 	title := mbox.Name

  185. 	if title == "INBOX" {

  186. 		title = "Inbox"

  187. 	}

  188. 	if mbox.Unseen > 0 {

  189. 		title = fmt.Sprintf("(%d) %s", mbox.Unseen, title)

  190. 	}

  191. 	ibase.BaseRenderData.WithTitle(title)

  192. 

  193. 	page := 0

  194. 	if pageStr := ctx.QueryParam("page"); pageStr != "" {

  195. 		var err error

  196. 		if page, err = strconv.Atoi(pageStr); err != nil || page < 0 {

  197. 			return echo.NewHTTPError(http.StatusBadRequest, "invalid page index")

  198. 		}

  199. 	}

  200. 

  201. 	settings, err := loadSettings(ctx.Session.Store())

  202. 	if err != nil {

  203. 		return err

  204. 	}

  205. 	messagesPerPage := settings.MessagesPerPage

  206. 

  207. 	query := ctx.QueryParam("query")

  208. 

  209. 	var (

  210. 		msgs  []IMAPMessage

  211. 		total int

  212. 	)

  213. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  214. 		var err  error

  215. 		if query != "" {

  216. 			msgs, total, err = searchMessages(c, mbox.Name, query, page, messagesPerPage)

  217. 		} else {

  218. 			msgs, err = listMessages(c, mbox, page, messagesPerPage)

  219. 		}

  220. 		if err != nil {

  221. 			return err

  222. 		}

  223. 		return nil

  224. 	})

  225. 	if err != nil {

  226. 		return err

  227. 	}

  228. 

  229. 	prevPage, nextPage := -1, -1

  230. 	if query != "" {

  231. 		if page > 0 {

  232. 			prevPage = page - 1

  233. 		}

  234. 		if (page+1)*messagesPerPage <= total {

  235. 			nextPage = page + 1

  236. 		}

  237. 	} else {

  238. 		if page > 0 {

  239. 			prevPage = page - 1

  240. 		}

  241. 		if (page+1)*messagesPerPage < int(mbox.Messages) {

  242. 			nextPage = page + 1

  243. 		}

  244. 	}

  245. 

  246. 	return ctx.Render(http.StatusOK, "mailbox.html", &MailboxRenderData{

  247. 		IMAPBaseRenderData:  *ibase,

  248. 		Messages:             msgs,

  249. 		PrevPage:             prevPage,

  250. 		NextPage:             nextPage,

  251. 		Query:                query,

  252. 	})

  253. }

  254. 

  255. type NewMailboxRenderData struct {

  256. 	IMAPBaseRenderData

  257. 	Error string

  258. }

  259. 

  260. func handleNewMailbox(ctx *alps.Context) error {

  261. 	ibase, err := newIMAPBaseRenderData(ctx, alps.NewBaseRenderData(ctx))

  262. 	if err != nil {

  263. 		return err

  264. 	}

  265. 	ibase.BaseRenderData.WithTitle("Create new folder")

  266. 

  267. 	if ctx.Request().Method == http.MethodPost {

  268. 		name := ctx.FormValue("name")

  269. 		if name == "" {

  270. 			return ctx.Render(http.StatusOK, "new-mailbox.html", &NewMailboxRenderData{

  271. 				IMAPBaseRenderData: *ibase,

  272. 				Error: "Name is required",

  273. 			})

  274. 		}

  275. 

  276. 		err := ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  277. 			return c.Create(name)

  278. 		})

  279. 

  280. 		if err != nil {

  281. 			return ctx.Render(http.StatusOK, "new-mailbox.html", &NewMailboxRenderData{

  282. 				IMAPBaseRenderData: *ibase,

  283. 				Error: err.Error(),

  284. 			})

  285. 		}

  286. 

  287. 		return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%s", url.PathEscape(name)))

  288. 	}

  289. 

  290. 	return ctx.Render(http.StatusOK, "new-mailbox.html", &NewMailboxRenderData{

  291. 		IMAPBaseRenderData: *ibase,

  292. 		Error: "",

  293. 	})

  294. }

  295. 

  296. func handleDeleteMailbox(ctx *alps.Context) error {

  297. 	ibase, err := newIMAPBaseRenderData(ctx, alps.NewBaseRenderData(ctx))

  298. 	if err != nil {

  299. 		return err

  300. 	}

  301. 

  302. 	mbox := ibase.Mailbox

  303. 	ibase.BaseRenderData.WithTitle("Delete folder '" + mbox.Name + "'")

  304. 

  305. 	if ctx.Request().Method == http.MethodPost {

  306. 		ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  307. 			return c.Delete(mbox.Name)

  308. 		})

  309. 		ctx.Session.PutNotice("Mailbox deleted.")

  310. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  311. 	}

  312. 

  313. 	return ctx.Render(http.StatusOK, "delete-mailbox.html", ibase)

  314. }

  315. 

  316. func handleLogin(ctx *alps.Context) error {

  317. 	username := ctx.FormValue("username")

  318. 	password := ctx.FormValue("password")

  319. 	remember := ctx.FormValue("remember-me")

  320. 

  321. 	renderData := struct {

  322. 		alps.BaseRenderData

  323. 		CanRememberMe bool

  324. 	}{

  325. 		BaseRenderData: *alps.NewBaseRenderData(ctx),

  326. 		CanRememberMe:  ctx.Server.Options.LoginKey != nil,

  327. 	}

  328. 

  329. 	if username == "" && password == "" {

  330. 		username, password = ctx.GetLoginToken()

  331. 	}

  332. 

  333. 	if username != "" && password != "" {

  334. 		s, err := ctx.Server.Sessions.Put(username, password)

  335. 		if err != nil {

  336. 			if _, ok := err.(alps.AuthError); ok {

  337. 				return ctx.Render(http.StatusOK, "login.html", &renderData)

  338. 			}

  339. 			return fmt.Errorf("failed to put connection in pool: %v", err)

  340. 		}

  341. 		ctx.SetSession(s)

  342. 

  343. 		if remember == "on" {

  344. 			ctx.SetLoginToken(username, password)

  345. 		}

  346. 

  347. 		if path := ctx.QueryParam("next"); path != "" && path[0] == '/' && path != "/login" {

  348. 			return ctx.Redirect(http.StatusFound, path)

  349. 		}

  350. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  351. 	}

  352. 

  353. 	return ctx.Render(http.StatusOK, "login.html", &renderData)

  354. }

  355. 

  356. func handleLogout(ctx *alps.Context) error {

  357. 	ctx.Session.Close()

  358. 	ctx.SetSession(nil)

  359. 	ctx.SetLoginToken("", "")

  360. 	return ctx.Redirect(http.StatusFound, "/login")

  361. }

  362. 

  363. type MessageRenderData struct {

  364. 	IMAPBaseRenderData

  365. 	Message     *IMAPMessage

  366. 	Part        *IMAPPartNode

  367. 	View        interface{}

  368. 	MailboxPage int

  369. 	Flags       map[string]bool

  370. }

  371. 

  372. func handleGetPart(ctx *alps.Context, raw bool) error {

  373. 	_, uid, err := parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  374. 	ibase, err := newIMAPBaseRenderData(ctx, alps.NewBaseRenderData(ctx))

  375. 	if err != nil {

  376. 		return err

  377. 	}

  378. 	mbox := ibase.Mailbox

  379. 

  380. 	partPath, err := parsePartPath(ctx.QueryParam("part"))

  381. 	if err != nil {

  382. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  383. 	}

  384. 

  385. 	settings, err := loadSettings(ctx.Session.Store())

  386. 	if err != nil {

  387. 		return err

  388. 	}

  389. 	messagesPerPage := settings.MessagesPerPage

  390. 

  391. 	var msg *IMAPMessage

  392. 	var part *message.Entity

  393. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  394. 		var err error

  395. 		if msg, part, err = getMessagePart(c, mbox.Name, uid, partPath); err != nil {

  396. 			return err

  397. 		}

  398. 		return nil

  399. 	})

  400. 	if err != nil {

  401. 		return err

  402. 	}

  403. 

  404. 	mimeType, _, err := part.Header.ContentType()

  405. 	if err != nil {

  406. 		return fmt.Errorf("failed to parse part Content-Type: %v", err)

  407. 	}

  408. 	if len(partPath) == 0 {

  409. 		if ctx.QueryParam("plain") == "1" {

  410. 			mimeType = "text/plain"

  411. 		} else {

  412. 			mimeType = "message/rfc822"

  413. 		}

  414. 	}

  415. 

  416. 	if raw {

  417. 		ctx.Response().Header().Set("Content-Type", mimeType)

  418. 

  419. 		disp, dispParams, _ := part.Header.ContentDisposition()

  420. 		filename := dispParams["filename"]

  421. 		if len(partPath) == 0 {

  422. 			filename = msg.Envelope.Subject + ".eml"

  423. 		}

  424. 

  425. 		// TODO: set Content-Length if possible

  426. 

  427. 		// Be careful not to serve types like text/html as inline

  428. 		if !strings.EqualFold(mimeType, "text/plain") || strings.EqualFold(disp, "attachment") {

  429. 			dispParams := make(map[string]string)

  430. 			if filename != "" {

  431. 				dispParams["filename"] = filename

  432. 			}

  433. 			disp := mime.FormatMediaType("attachment", dispParams)

  434. 			ctx.Response().Header().Set("Content-Disposition", disp)

  435. 		}

  436. 

  437. 		if len(partPath) == 0 {

  438. 			return part.WriteTo(ctx.Response())

  439. 		} else {

  440. 			return ctx.Stream(http.StatusOK, mimeType, part.Body)

  441. 		}

  442. 	}

  443. 

  444. 	view, err := viewMessagePart(ctx, msg, part)

  445. 	if err == ErrViewUnsupported {

  446. 		view = nil

  447. 	}

  448. 

  449. 	flags := make(map[string]bool)

  450. 	for _, f := range mbox.PermanentFlags {

  451. 		f = imap.CanonicalFlag(f)

  452. 		if f == imap.TryCreateFlag {

  453. 			continue

  454. 		}

  455. 		flags[f] = msg.HasFlag(f)

  456. 	}

  457. 

  458. 	ibase.BaseRenderData.WithTitle(msg.Envelope.Subject)

  459. 

  460. 	return ctx.Render(http.StatusOK, "message.html", &MessageRenderData{

  461. 		IMAPBaseRenderData: *ibase,

  462. 		Message:            msg,

  463. 		Part:               msg.PartByPath(partPath),

  464. 		View:               view,

  465. 		MailboxPage:        int(mbox.Messages-msg.SeqNum) / messagesPerPage,

  466. 		Flags:              flags,

  467. 	})

  468. }

  469. 

  470. type ComposeRenderData struct {

  471. 	IMAPBaseRenderData

  472. 	Message *OutgoingMessage

  473. }

  474. 

  475. type messagePath struct {

  476. 	Mailbox string

  477. 	Uid     uint32

  478. }

  479. 

  480. type composeOptions struct {

  481. 	Draft     *messagePath

  482. 	Forward   *messagePath

  483. 	InReplyTo *messagePath

  484. }

  485. 

  486. // Send message, append it to the Sent mailbox, mark the original message as

  487. // answered

  488. func submitCompose(ctx *alps.Context, msg *OutgoingMessage, options *composeOptions) error {

  489. 	err := ctx.Session.DoSMTP(func (c *smtp.Client) error {

  490. 		return sendMessage(c, msg)

  491. 	})

  492. 	if err != nil {

  493. 		if _, ok := err.(alps.AuthError); ok {

  494. 			return echo.NewHTTPError(http.StatusForbidden, err)

  495. 		}

  496. 		return fmt.Errorf("failed to send message: %v", err)

  497. 	}

  498. 

  499. 	if inReplyTo := options.InReplyTo; inReplyTo != nil {

  500. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  501. 			return markMessageAnswered(c, inReplyTo.Mailbox, inReplyTo.Uid)

  502. 		})

  503. 		if err != nil {

  504. 			return fmt.Errorf("failed to mark original message as answered: %v", err)

  505. 		}

  506. 	}

  507. 

  508. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  509. 		if _, err := appendMessage(c, msg, mailboxSent); err != nil {

  510. 			return err

  511. 		}

  512. 		if draft := options.Draft; draft != nil {

  513. 			if err := deleteMessage(c, draft.Mailbox, draft.Uid); err != nil {

  514. 				return err

  515. 			}

  516. 		}

  517. 		return nil

  518. 	})

  519. 	if err != nil {

  520. 		return fmt.Errorf("failed to save message to Sent mailbox: %v", err)

  521. 	}

  522. 

  523. 	ctx.Session.PutNotice("Message sent.")

  524. 	return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  525. }

  526. 

  527. func handleCompose(ctx *alps.Context, msg *OutgoingMessage, options *composeOptions) error {

  528. 	ibase, err := newIMAPBaseRenderData(ctx, alps.NewBaseRenderData(ctx))

  529. 	if err != nil {

  530. 		return err

  531. 	}

  532. 

  533. 	if msg.From == "" && strings.ContainsRune(ctx.Session.Username(), '@') {

  534. 		settings, err := loadSettings(ctx.Session.Store())

  535. 		if err != nil {

  536. 			return err

  537. 		}

  538. 		if settings.From != "" {

  539. 			addr := mail.Address{

  540. 				Name: settings.From,

  541. 				Address: ctx.Session.Username(),

  542. 			}

  543. 			msg.From = addr.String()

  544. 		} else {

  545. 			msg.From = ctx.Session.Username()

  546. 		}

  547. 	}

  548. 

  549. 	if ctx.Request().Method == http.MethodPost {

  550. 		formParams, err := ctx.FormParams()

  551. 		if err != nil {

  552. 			return fmt.Errorf("failed to parse form: %v", err)

  553. 		}

  554. 		_, saveAsDraft := formParams["save_as_draft"]

  555. 

  556. 		msg.From = ctx.FormValue("from")

  557. 		msg.To = parseAddressList(ctx.FormValue("to"))

  558. 		msg.Subject = ctx.FormValue("subject")

  559. 		msg.Text = ctx.FormValue("text")

  560. 		msg.InReplyTo = ctx.FormValue("in_reply_to")

  561. 		msg.MessageID = ctx.FormValue("message_id")

  562. 

  563. 		form, err := ctx.MultipartForm()

  564. 		if err != nil {

  565. 			return fmt.Errorf("failed to get multipart form: %v", err)

  566. 		}

  567. 

  568. 		// Fetch previous attachments from original message

  569. 		var original *messagePath

  570. 		if options.Draft != nil {

  571. 			original = options.Draft

  572. 		} else if options.Forward != nil {

  573. 			original = options.Forward

  574. 		}

  575. 		if original != nil {

  576. 			for _, s := range form.Value["prev_attachments"] {

  577. 				path, err := parsePartPath(s)

  578. 				if err != nil {

  579. 					return fmt.Errorf("failed to parse original attachment path: %v", err)

  580. 				}

  581. 

  582. 				var part *message.Entity

  583. 				err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  584. 					var err error

  585. 					_, part, err = getMessagePart(c, original.Mailbox, original.Uid, path)

  586. 					return err

  587. 				})

  588. 				if err != nil {

  589. 					return fmt.Errorf("failed to fetch attachment from original message: %v", err)

  590. 				}

  591. 

  592. 				var buf bytes.Buffer

  593. 				if _, err := io.Copy(&buf, part.Body); err != nil {

  594. 					return fmt.Errorf("failed to copy attachment from original message: %v", err)

  595. 				}

  596. 

  597. 				h := mail.AttachmentHeader{part.Header}

  598. 				mimeType, _, _ := h.ContentType()

  599. 				filename, _ := h.Filename()

  600. 				msg.Attachments = append(msg.Attachments, &imapAttachment{

  601. 					Mailbox: original.Mailbox,

  602. 					Uid:     original.Uid,

  603. 					Node: &IMAPPartNode{

  604. 						Path:     path,

  605. 						MIMEType: mimeType,

  606. 						Filename: filename,

  607. 					},

  608. 					Body: buf.Bytes(),

  609. 				})

  610. 			}

  611. 		} else if len(form.Value["prev_attachments"]) > 0 {

  612. 			return fmt.Errorf("previous attachments specified but no original message available")

  613. 		}

  614. 

  615. 		for _, fh := range form.File["attachments"] {

  616. 			msg.Attachments = append(msg.Attachments, &formAttachment{fh})

  617. 		}

  618. 

  619. 		uuids := ctx.FormValue("attachment-uuids")

  620. 		for _, uuid := range strings.Split(uuids, ",") {

  621. 			if uuid == "" {

  622. 				continue

  623. 			}

  624. 

  625. 			attachment := ctx.Session.PopAttachment(uuid)

  626. 			if attachment == nil {

  627. 				return fmt.Errorf("Unable to retrieve message attachment %s from session", uuid)

  628. 			}

  629. 			msg.Attachments = append(msg.Attachments,

  630. 				&formAttachment{attachment.File})

  631. 			defer attachment.Form.RemoveAll()

  632. 		}

  633. 

  634. 		if saveAsDraft {

  635. 			var (

  636. 				drafts *MailboxInfo

  637. 				uid    uint32

  638. 			)

  639. 			err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  640. 				drafts, err = appendMessage(c, msg, mailboxDrafts)

  641. 				if err != nil {

  642. 					return err

  643. 				}

  644. 

  645. 				if draft := options.Draft; draft != nil {

  646. 					if err := deleteMessage(c, draft.Mailbox, draft.Uid); err != nil {

  647. 						return err

  648. 					}

  649. 				}

  650. 

  651. 				criteria := &imap.SearchCriteria{

  652. 					Header: make(textproto.MIMEHeader),

  653. 				}

  654. 				criteria.Header.Add("Message-Id", msg.MessageID)

  655. 				if uids, err := c.UidSearch(criteria); err != nil {

  656. 					return err

  657. 				} else {

  658. 					if len(uids) != 1 {

  659. 						panic(fmt.Errorf("Duplicate message ID"))

  660. 					}

  661. 					uid = uids[0]

  662. 				}

  663. 				return nil

  664. 			})

  665. 			if err != nil {

  666. 				return fmt.Errorf("failed to save message to Draft mailbox: %v", err)

  667. 			}

  668. 			ctx.Session.PutNotice("Message saved as draft.")

  669. 			return ctx.Redirect(http.StatusFound, fmt.Sprintf(

  670. 				"/message/%s/%d/edit?part=1", drafts.Name, uid))

  671. 		} else {

  672. 			return submitCompose(ctx, msg, options)

  673. 		}

  674. 	}

  675. 

  676. 	return ctx.Render(http.StatusOK, "compose.html", &ComposeRenderData{

  677. 		IMAPBaseRenderData: *ibase,

  678. 		Message:            msg,

  679. 	})

  680. }

  681. 

  682. func handleComposeNew(ctx *alps.Context) error {

  683. 	text := ctx.QueryParam("body")

  684. 	settings, err := loadSettings(ctx.Session.Store())

  685. 	if err != nil {

  686. 		return nil

  687. 	}

  688. 	if text == "" && settings.Signature != "" {

  689. 		text = "\n\n\n-- \n" + settings.Signature

  690. 	}

  691. 

  692. 	// These are common mailto URL query parameters

  693. 	// TODO: cc, bcc

  694. 	var hdr mail.Header

  695. 	hdr.GenerateMessageID()

  696. 	mid, _ := hdr.MessageID()

  697. 	return handleCompose(ctx, &OutgoingMessage{

  698. 		To:        strings.Split(ctx.QueryParam("to"), ","),

  699. 		Subject:   ctx.QueryParam("subject"),

  700. 		MessageID: "<" + mid + ">",

  701. 		InReplyTo: ctx.QueryParam("in-reply-to"),

  702. 		Text:      text,

  703. 	}, &composeOptions{})

  704. }

  705. 

  706. func handleComposeAttachment(ctx *alps.Context) error {

  707. 	reader, err := ctx.Request().MultipartReader()

  708. 	if err != nil {

  709. 		return ctx.JSON(http.StatusBadRequest, map[string]string{

  710. 			"error": "Invalid request",

  711. 		})

  712. 	}

  713. 	form, err := reader.ReadForm(32 << 20) // 32 MB

  714. 	if err != nil {

  715. 		return ctx.JSON(http.StatusBadRequest, map[string]string{

  716. 			"error": "Invalid request",

  717. 		})

  718. 	}

  719. 

  720. 	var uuids []string

  721. 	for _, fh := range form.File["attachments"] {

  722. 		uuid, err := ctx.Session.PutAttachment(fh, form)

  723. 		if err == alps.ErrAttachmentCacheSize {

  724. 			form.RemoveAll()

  725. 			return ctx.JSON(http.StatusBadRequest, map[string]string{

  726. 				"error": "Your attachments exceed the maximum file size. Remove some and try again.",

  727. 			})

  728. 		} else if err != nil {

  729. 			form.RemoveAll()

  730. 			ctx.Logger().Printf("PutAttachment: %v\n", err)

  731. 			return ctx.JSON(http.StatusBadRequest, map[string]string{

  732. 				"error": "failed to store attachment",

  733. 			})

  734. 		}

  735. 		uuids = append(uuids, uuid)

  736. 	}

  737. 

  738. 	return ctx.JSON(http.StatusOK, &uuids)

  739. }

  740. 

  741. func handleCancelAttachment(ctx *alps.Context) error {

  742. 	uuid := ctx.Param("uuid")

  743. 	a := ctx.Session.PopAttachment(uuid)

  744. 	if a != nil {

  745. 		a.Form.RemoveAll()

  746. 	}

  747. 	return ctx.JSON(http.StatusOK, nil)

  748. }

  749. 

  750. func unwrapIMAPAddressList(addrs []*imap.Address) []string {

  751. 	l := make([]string, len(addrs))

  752. 	for i, addr := range addrs {

  753. 		l[i] = addr.Address()

  754. 	}

  755. 	return l

  756. }

  757. 

  758. func handleReply(ctx *alps.Context) error {

  759. 	var inReplyToPath messagePath

  760. 	var err error

  761. 	inReplyToPath.Mailbox, inReplyToPath.Uid, err = parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  762. 	if err != nil {

  763. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  764. 	}

  765. 

  766. 	var msg OutgoingMessage

  767. 	if ctx.Request().Method == http.MethodGet {

  768. 		// Populate fields from original message

  769. 		partPath, err := parsePartPath(ctx.QueryParam("part"))

  770. 		if err != nil {

  771. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  772. 		}

  773. 

  774. 		var inReplyTo *IMAPMessage

  775. 		var part *message.Entity

  776. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  777. 			var err error

  778. 			inReplyTo, part, err = getMessagePart(c, inReplyToPath.Mailbox, inReplyToPath.Uid, partPath)

  779. 			return err

  780. 		})

  781. 		if err != nil {

  782. 			return err

  783. 		}

  784. 

  785. 		mimeType, _, err := part.Header.ContentType()

  786. 		if err != nil {

  787. 			return fmt.Errorf("failed to parse part Content-Type: %v", err)

  788. 		}

  789. 

  790. 		if mimeType == "text/plain" {

  791. 			msg.Text, err = quote(part.Body)

  792. 			if err != nil {

  793. 				return err

  794. 			}

  795. 		} else if mimeType == "text/html" {

  796. 			text, err := html2text.FromReader(part.Body, html2text.Options{})

  797. 			if err != nil {

  798. 				return err

  799. 			}

  800. 			msg.Text, err = quote(strings.NewReader(text))

  801. 			if err != nil {

  802. 				return nil

  803. 			}

  804. 		} else {

  805. 			err := fmt.Errorf("cannot forward %q part", mimeType)

  806. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  807. 		}

  808. 

  809. 		var hdr mail.Header

  810. 		hdr.GenerateMessageID()

  811. 		mid, _ := hdr.MessageID()

  812. 		msg.MessageID = "<" + mid + ">"

  813. 		msg.InReplyTo = inReplyTo.Envelope.MessageId

  814. 		// TODO: populate From from known user addresses and inReplyTo.Envelope.To

  815. 		replyTo := inReplyTo.Envelope.ReplyTo

  816. 		if len(replyTo) == 0 {

  817. 			replyTo = inReplyTo.Envelope.From

  818. 		}

  819. 		msg.To = unwrapIMAPAddressList(replyTo)

  820. 		msg.Subject = inReplyTo.Envelope.Subject

  821. 		if !strings.HasPrefix(strings.ToLower(msg.Subject), "re:") {

  822. 			msg.Subject = "Re: " + msg.Subject

  823. 		}

  824. 	}

  825. 

  826. 	return handleCompose(ctx, &msg, &composeOptions{InReplyTo: &inReplyToPath})

  827. }

  828. 

  829. func handleForward(ctx *alps.Context) error {

  830. 	var sourcePath messagePath

  831. 	var err error

  832. 	sourcePath.Mailbox, sourcePath.Uid, err = parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  833. 	if err != nil {

  834. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  835. 	}

  836. 

  837. 	var msg OutgoingMessage

  838. 	if ctx.Request().Method == http.MethodGet {

  839. 		// Populate fields from original message

  840. 		partPath, err := parsePartPath(ctx.QueryParam("part"))

  841. 		if err != nil {

  842. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  843. 		}

  844. 

  845. 		var source *IMAPMessage

  846. 		var part *message.Entity

  847. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  848. 			var err error

  849. 			source, part, err = getMessagePart(c, sourcePath.Mailbox, sourcePath.Uid, partPath)

  850. 			return err

  851. 		})

  852. 		if err != nil {

  853. 			return err

  854. 		}

  855. 

  856. 		mimeType, _, err := part.Header.ContentType()

  857. 		if err != nil {

  858. 			return fmt.Errorf("failed to parse part Content-Type: %v", err)

  859. 		}

  860. 

  861. 		if mimeType == "text/plain" {

  862. 			msg.Text, err = quote(part.Body)

  863. 			if err != nil {

  864. 				return err

  865. 			}

  866. 		} else if mimeType == "text/html" {

  867. 			msg.Text, err = html2text.FromReader(part.Body, html2text.Options{})

  868. 			if err != nil {

  869. 				return err

  870. 			}

  871. 		} else {

  872. 			err := fmt.Errorf("cannot forward %q part", mimeType)

  873. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  874. 		}

  875. 

  876. 		var hdr mail.Header

  877. 		hdr.GenerateMessageID()

  878. 		mid, _ := hdr.MessageID()

  879. 		msg.MessageID = "<" + mid + ">"

  880. 		msg.Subject = source.Envelope.Subject

  881. 		if !strings.HasPrefix(strings.ToLower(msg.Subject), "fwd:") &&

  882. 			!strings.HasPrefix(strings.ToLower(msg.Subject), "fw:") {

  883. 			msg.Subject = "Fwd: " + msg.Subject

  884. 		}

  885. 		msg.InReplyTo = source.Envelope.InReplyTo

  886. 

  887. 		attachments := source.Attachments()

  888. 		for i := range attachments {

  889. 			// No need to populate attachment body here, we just need the

  890. 			// metadata

  891. 			msg.Attachments = append(msg.Attachments, &imapAttachment{

  892. 				Mailbox: sourcePath.Mailbox,

  893. 				Uid:     sourcePath.Uid,

  894. 				Node:    &attachments[i],

  895. 			})

  896. 		}

  897. 	}

  898. 

  899. 	return handleCompose(ctx, &msg, &composeOptions{Forward: &sourcePath})

  900. }

  901. 

  902. func handleEdit(ctx *alps.Context) error {

  903. 	var sourcePath messagePath

  904. 	var err error

  905. 	sourcePath.Mailbox, sourcePath.Uid, err = parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  906. 	if err != nil {

  907. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  908. 	}

  909. 

  910. 	// TODO: somehow get the path to the In-Reply-To message (with a search?)

  911. 

  912. 	var msg OutgoingMessage

  913. 	if ctx.Request().Method == http.MethodGet {

  914. 		// Populate fields from source message

  915. 		partPath, err := parsePartPath(ctx.QueryParam("part"))

  916. 		if err != nil {

  917. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  918. 		}

  919. 

  920. 		var source *IMAPMessage

  921. 		var part *message.Entity

  922. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  923. 			var err error

  924. 			source, part, err = getMessagePart(c, sourcePath.Mailbox, sourcePath.Uid, partPath)

  925. 			return err

  926. 		})

  927. 		if err != nil {

  928. 			return err

  929. 		}

  930. 

  931. 		mimeType, _, err := part.Header.ContentType()

  932. 		if err != nil {

  933. 			return fmt.Errorf("failed to parse part Content-Type: %v", err)

  934. 		}

  935. 

  936. 		if !strings.EqualFold(mimeType, "text/plain") {

  937. 			err := fmt.Errorf("cannot edit %q part", mimeType)

  938. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  939. 		}

  940. 

  941. 		b, err := ioutil.ReadAll(part.Body)

  942. 		if err != nil {

  943. 			return fmt.Errorf("failed to read part body: %v", err)

  944. 		}

  945. 		msg.Text = string(b)

  946. 

  947. 		if len(source.Envelope.From) > 0 {

  948. 			msg.From = source.Envelope.From[0].Address()

  949. 		}

  950. 		msg.To = unwrapIMAPAddressList(source.Envelope.To)

  951. 		msg.Subject = source.Envelope.Subject

  952. 		msg.InReplyTo = source.Envelope.InReplyTo

  953. 		msg.MessageID = source.Envelope.MessageId

  954. 

  955. 		attachments := source.Attachments()

  956. 		for i := range attachments {

  957. 			// No need to populate attachment body here, we just need the

  958. 			// metadata

  959. 			msg.Attachments = append(msg.Attachments, &imapAttachment{

  960. 				Mailbox: sourcePath.Mailbox,

  961. 				Uid:     sourcePath.Uid,

  962. 				Node:    &attachments[i],

  963. 			})

  964. 		}

  965. 	}

  966. 

  967. 	return handleCompose(ctx, &msg, &composeOptions{Draft: &sourcePath})

  968. }

  969. 

  970. func formOrQueryParam(ctx *alps.Context, k string) string {

  971. 	if v := ctx.FormValue(k); v != "" {

  972. 		return v

  973. 	}

  974. 	return ctx.QueryParam(k)

  975. }

  976. 

  977. func handleMove(ctx *alps.Context) error {

  978. 	mboxName, err := url.PathUnescape(ctx.Param("mbox"))

  979. 	if err != nil {

  980. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  981. 	}

  982. 

  983. 	formParams, err := ctx.FormParams()

  984. 	if err != nil {

  985. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  986. 	}

  987. 	uids, err := parseUidList(formParams["uids"])

  988. 	if err != nil {

  989. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  990. 	}

  991. 

  992. 	to := formOrQueryParam(ctx, "to")

  993. 	if to == "" {

  994. 		return echo.NewHTTPError(http.StatusBadRequest, "missing 'to' form parameter")

  995. 	}

  996. 

  997. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  998. 		mc := imapmove.NewClient(c)

  999. 

  1000. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  1001. 			return err

  1002. 		}

  1003. 

  1004. 		var seqSet imap.SeqSet

  1005. 		seqSet.AddNum(uids...)

  1006. 		if err := mc.UidMoveWithFallback(&seqSet, to); err != nil {

  1007. 			return fmt.Errorf("failed to move message: %v", err)

  1008. 		}

  1009. 

  1010. 		// TODO: get the UID of the message in the destination mailbox with UIDPLUS

  1011. 		return nil

  1012. 	})

  1013. 	if err != nil {

  1014. 		return err

  1015. 	}

  1016. 

  1017. 	ctx.Session.PutNotice("Message(s) moved.")

  1018. 	if path := formOrQueryParam(ctx, "next"); path != "" {

  1019. 		return ctx.Redirect(http.StatusFound, path)

  1020. 	}

  1021. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%v", url.PathEscape(mboxName)))

  1022. }

  1023. 

  1024. func handleDelete(ctx *alps.Context) error {

  1025. 	mboxName, err := url.PathUnescape(ctx.Param("mbox"))

  1026. 	if err != nil {

  1027. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1028. 	}

  1029. 

  1030. 	formParams, err := ctx.FormParams()

  1031. 	if err != nil {

  1032. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1033. 	}

  1034. 	uids, err := parseUidList(formParams["uids"])

  1035. 	if err != nil {

  1036. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1037. 	}

  1038. 

  1039. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  1040. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  1041. 			return err

  1042. 		}

  1043. 

  1044. 		var seqSet imap.SeqSet

  1045. 		seqSet.AddNum(uids...)

  1046. 

  1047. 		item := imap.FormatFlagsOp(imap.AddFlags, true)

  1048. 		flags := []interface{}{imap.DeletedFlag}

  1049. 		if err := c.UidStore(&seqSet, item, flags, nil); err != nil {

  1050. 			return fmt.Errorf("failed to add deleted flag: %v", err)

  1051. 		}

  1052. 

  1053. 		if err := c.Expunge(nil); err != nil {

  1054. 			return fmt.Errorf("failed to expunge mailbox: %v", err)

  1055. 		}

  1056. 

  1057. 		// Deleting a message invalidates our cached message count

  1058. 		// TODO: listen to async updates instead

  1059. 		if _, err := c.Select(mboxName, false); err != nil {

  1060. 			return fmt.Errorf("failed to select mailbox: %v", err)

  1061. 		}

  1062. 

  1063. 		return nil

  1064. 	})

  1065. 	if err != nil {

  1066. 		return err

  1067. 	}

  1068. 

  1069. 	ctx.Session.PutNotice("Message(s) deleted.")

  1070. 	if path := formOrQueryParam(ctx, "next"); path != "" {

  1071. 		return ctx.Redirect(http.StatusFound, path)

  1072. 	}

  1073. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%v", url.PathEscape(mboxName)))

  1074. }

  1075. 

  1076. func handleSetFlags(ctx *alps.Context) error {

  1077. 	mboxName, err := url.PathUnescape(ctx.Param("mbox"))

  1078. 	if err != nil {

  1079. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1080. 	}

  1081. 

  1082. 	formParams, err := ctx.FormParams()

  1083. 	if err != nil {

  1084. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1085. 	}

  1086. 

  1087. 	uids, err := parseUidList(formParams["uids"])

  1088. 	if err != nil {

  1089. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  1090. 	}

  1091. 

  1092. 	flags, ok := formParams["flags"]

  1093. 	if !ok {

  1094. 		flagsStr := ctx.QueryParam("to")

  1095. 		if flagsStr == "" {

  1096. 			return echo.NewHTTPError(http.StatusBadRequest, "missing 'flags' form parameter")

  1097. 		}

  1098. 		flags = strings.Fields(flagsStr)

  1099. 	}

  1100. 

  1101. 	actionStr := ctx.FormValue("action")

  1102. 	if actionStr == "" {

  1103. 		actionStr = ctx.QueryParam("action")

  1104. 	}

  1105. 

  1106. 	var op imap.FlagsOp

  1107. 	switch actionStr {

  1108. 	case "", "set":

  1109. 		op = imap.SetFlags

  1110. 	case "add":

  1111. 		op = imap.AddFlags

  1112. 	case "remove":

  1113. 		op = imap.RemoveFlags

  1114. 	default:

  1115. 		return echo.NewHTTPError(http.StatusBadRequest, "invalid 'action' value")

  1116. 	}

  1117. 

  1118. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  1119. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  1120. 			return err

  1121. 		}

  1122. 

  1123. 		var seqSet imap.SeqSet

  1124. 		seqSet.AddNum(uids...)

  1125. 

  1126. 		storeItems := make([]interface{}, len(flags))

  1127. 		for i, f := range flags {

  1128. 			storeItems[i] = f

  1129. 		}

  1130. 

  1131. 		item := imap.FormatFlagsOp(op, true)

  1132. 		if err := c.UidStore(&seqSet, item, storeItems, nil); err != nil {

  1133. 			return fmt.Errorf("failed to add deleted flag: %v", err)

  1134. 		}

  1135. 

  1136. 		return nil

  1137. 	})

  1138. 	if err != nil {

  1139. 		return err

  1140. 	}

  1141. 

  1142. 	if path := formOrQueryParam(ctx, "next"); path != "" {

  1143. 		return ctx.Redirect(http.StatusFound, path)

  1144. 	}

  1145. 	if len(uids) != 1 || (op == imap.RemoveFlags && len(flags) == 1 && flags[0] == imap.SeenFlag) {

  1146. 		// Redirecting to the message view would mark the message as read again

  1147. 		return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%v", url.PathEscape(mboxName)))

  1148. 	}

  1149. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/message/%v/%v", url.PathEscape(mboxName), uids[0]))

  1150. }

  1151. 

  1152. const settingsKey = "base.settings"

  1153. const maxMessagesPerPage = 100

  1154. 

  1155. type Settings struct {

  1156. 	MessagesPerPage int

  1157. 	Signature       string

  1158. 	From            string

  1159. }

  1160. 

  1161. func loadSettings(s alps.Store) (*Settings, error) {

  1162. 	settings := &Settings{

  1163. 		MessagesPerPage: 50,

  1164. 	}

  1165. 	if err := s.Get(settingsKey, settings); err != nil && err != alps.ErrNoStoreEntry {

  1166. 		return nil, err

  1167. 	}

  1168. 	if err := settings.check(); err != nil {

  1169. 		return nil, err

  1170. 	}

  1171. 	return settings, nil

  1172. }

  1173. 

  1174. func (s *Settings) check() error {

  1175. 	if s.MessagesPerPage <= 0 || s.MessagesPerPage > maxMessagesPerPage {

  1176. 		return fmt.Errorf("messages per page out of bounds: %v", s.MessagesPerPage)

  1177. 	}

  1178. 	if len(s.Signature) > 2048 {

  1179. 		return fmt.Errorf("Signature must be 2048 characters or fewer")

  1180. 	}

  1181. 	if len(s.From) > 512 {

  1182. 		return fmt.Errorf("Full name must be 512 characters or fewer")

  1183. 	}

  1184. 	return nil

  1185. }

  1186. 

  1187. type SettingsRenderData struct {

  1188. 	alps.BaseRenderData

  1189. 	Settings *Settings

  1190. }

  1191. 

  1192. func handleSettings(ctx *alps.Context) error {

  1193. 	settings, err := loadSettings(ctx.Session.Store())

  1194. 	if err != nil {

  1195. 		return fmt.Errorf("failed to load settings: %v", err)

  1196. 	}

  1197. 

  1198. 	if ctx.Request().Method == http.MethodPost {

  1199. 		settings.MessagesPerPage, err = strconv.Atoi(ctx.FormValue("messages_per_page"))

  1200. 		if err != nil {

  1201. 			return echo.NewHTTPError(http.StatusBadRequest, "invalid messages per page: %v", err)

  1202. 		}

  1203. 		settings.Signature = ctx.FormValue("signature")

  1204. 		settings.From = ctx.FormValue("from")

  1205. 

  1206. 		if err := settings.check(); err != nil {

  1207. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  1208. 		}

  1209. 		if err := ctx.Session.Store().Put(settingsKey, settings); err != nil {

  1210. 			return fmt.Errorf("failed to save settings: %v", err)

  1211. 		}

  1212. 

  1213. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  1214. 	}

  1215. 

  1216. 	return ctx.Render(http.StatusOK, "settings.html", &SettingsRenderData{

  1217. 		BaseRenderData: *alps.NewBaseRenderData(ctx),

  1218. 		Settings:       settings,

  1219. 	})

  1220. }