loop
/
alps
1
0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
A webmail client. Forked from https://git.sr.ht/~migadu/alps
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
144 Commits
1 Branch
708 KiB
 
 
 
 
Tree: d31c56ec98
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'd31c56ec98'
${ noResults }
alps/plugins/base/routes.go

617 regels
16 KiB
Ruw Blame Geschiedenis 

  1. package koushinbase

  2. 

  3. import (

  4. 	"fmt"

  5. 	"io/ioutil"

  6. 	"mime"

  7. 	"net/http"

  8. 	"net/url"

  9. 	"strconv"

  10. 	"strings"

  11. 

  12. 	"git.sr.ht/~emersion/koushin"

  13. 	"github.com/emersion/go-imap"

  14. 	imapmove "github.com/emersion/go-imap-move"

  15. 	imapclient "github.com/emersion/go-imap/client"

  16. 	"github.com/emersion/go-message"

  17. 	"github.com/emersion/go-smtp"

  18. 	"github.com/labstack/echo/v4"

  19. )

  20. 

  21. func registerRoutes(p *koushin.GoPlugin) {

  22. 	p.GET("/", func(ctx *koushin.Context) error {

  23. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  24. 	})

  25. 

  26. 	p.GET("/mailbox/:mbox", handleGetMailbox)

  27. 	p.POST("/mailbox/:mbox", handleGetMailbox)

  28. 

  29. 	p.GET("/message/:mbox/:uid", func(ctx *koushin.Context) error {

  30. 		return handleGetPart(ctx, false)

  31. 	})

  32. 	p.GET("/message/:mbox/:uid/raw", func(ctx *koushin.Context) error {

  33. 		return handleGetPart(ctx, true)

  34. 	})

  35. 

  36. 	p.GET("/login", handleLogin)

  37. 	p.POST("/login", handleLogin)

  38. 

  39. 	p.GET("/logout", handleLogout)

  40. 

  41. 	p.GET("/compose", handleComposeNew)

  42. 	p.POST("/compose", handleComposeNew)

  43. 

  44. 	p.GET("/message/:mbox/:uid/reply", handleReply)

  45. 	p.POST("/message/:mbox/:uid/reply", handleReply)

  46. 

  47. 	p.GET("/message/:mbox/:uid/edit", handleEdit)

  48. 	p.POST("/message/:mbox/:uid/edit", handleEdit)

  49. 

  50. 	p.POST("/message/:mbox/:uid/move", handleMove)

  51. 

  52. 	p.POST("/message/:mbox/:uid/delete", handleDelete)

  53. 

  54. 	p.POST("/message/:mbox/:uid/flag", handleSetFlags)

  55. }

  56. 

  57. type MailboxRenderData struct {

  58. 	koushin.BaseRenderData

  59. 	Mailbox            *imap.MailboxStatus

  60. 	Mailboxes          []*imap.MailboxInfo

  61. 	Messages           []IMAPMessage

  62. 	PrevPage, NextPage int

  63. 	Query              string

  64. }

  65. 

  66. func handleGetMailbox(ctx *koushin.Context) error {

  67. 	mboxName, err := url.PathUnescape(ctx.Param("mbox"))

  68. 	if err != nil {

  69. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  70. 	}

  71. 

  72. 	page := 0

  73. 	if pageStr := ctx.QueryParam("page"); pageStr != "" {

  74. 		var err error

  75. 		if page, err = strconv.Atoi(pageStr); err != nil || page < 0 {

  76. 			return echo.NewHTTPError(http.StatusBadRequest, "invalid page index")

  77. 		}

  78. 	}

  79. 

  80. 	query := ctx.QueryParam("query")

  81. 

  82. 	var mailboxes []*imap.MailboxInfo

  83. 	var msgs []IMAPMessage

  84. 	var mbox *imap.MailboxStatus

  85. 	var total int

  86. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  87. 		var err error

  88. 		if mailboxes, err = listMailboxes(c); err != nil {

  89. 			return err

  90. 		}

  91. 		if query != "" {

  92. 			msgs, total, err = searchMessages(c, mboxName, query, page)

  93. 		} else {

  94. 			msgs, err = listMessages(c, mboxName, page)

  95. 		}

  96. 		if err != nil {

  97. 			return err

  98. 		}

  99. 		mbox = c.Mailbox()

  100. 		return nil

  101. 	})

  102. 	if err != nil {

  103. 		return err

  104. 	}

  105. 

  106. 	prevPage, nextPage := -1, -1

  107. 	if query != "" {

  108. 		if page > 0 {

  109. 			prevPage = page - 1

  110. 		}

  111. 		if (page+1)*messagesPerPage <= total {

  112. 			nextPage = page + 1

  113. 		}

  114. 	} else {

  115. 		if page > 0 {

  116. 			prevPage = page - 1

  117. 		}

  118. 		if (page+1)*messagesPerPage < int(mbox.Messages) {

  119. 			nextPage = page + 1

  120. 		}

  121. 	}

  122. 

  123. 	return ctx.Render(http.StatusOK, "mailbox.html", &MailboxRenderData{

  124. 		BaseRenderData: *koushin.NewBaseRenderData(ctx),

  125. 		Mailbox:        mbox,

  126. 		Mailboxes:      mailboxes,

  127. 		Messages:       msgs,

  128. 		PrevPage:       prevPage,

  129. 		NextPage:       nextPage,

  130. 		Query:          query,

  131. 	})

  132. }

  133. 

  134. func handleLogin(ctx *koushin.Context) error {

  135. 	username := ctx.FormValue("username")

  136. 	password := ctx.FormValue("password")

  137. 	if username != "" && password != "" {

  138. 		s, err := ctx.Server.Sessions.Put(username, password)

  139. 		if err != nil {

  140. 			if _, ok := err.(koushin.AuthError); ok {

  141. 				return ctx.Render(http.StatusOK, "login.html", nil)

  142. 			}

  143. 			return fmt.Errorf("failed to put connection in pool: %v", err)

  144. 		}

  145. 		ctx.SetSession(s)

  146. 

  147. 		if path := ctx.QueryParam("next"); path != "" && path[0] == '/' && path != "/login" {

  148. 			return ctx.Redirect(http.StatusFound, path)

  149. 		}

  150. 		return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  151. 	}

  152. 

  153. 	return ctx.Render(http.StatusOK, "login.html", koushin.NewBaseRenderData(ctx))

  154. }

  155. 

  156. func handleLogout(ctx *koushin.Context) error {

  157. 	ctx.Session.Close()

  158. 	ctx.SetSession(nil)

  159. 	return ctx.Redirect(http.StatusFound, "/login")

  160. }

  161. 

  162. type MessageRenderData struct {

  163. 	koushin.BaseRenderData

  164. 	Mailboxes   []*imap.MailboxInfo

  165. 	Mailbox     *imap.MailboxStatus

  166. 	Message     *IMAPMessage

  167. 	Body        string

  168. 	IsHTML      bool

  169. 	PartPath    string

  170. 	MailboxPage int

  171. 	Flags       map[string]bool

  172. }

  173. 

  174. func handleGetPart(ctx *koushin.Context, raw bool) error {

  175. 	mboxName, uid, err := parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  176. 	if err != nil {

  177. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  178. 	}

  179. 	partPathString := ctx.QueryParam("part")

  180. 	partPath, err := parsePartPath(partPathString)

  181. 	if err != nil {

  182. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  183. 	}

  184. 

  185. 	var mailboxes []*imap.MailboxInfo

  186. 	var msg *IMAPMessage

  187. 	var part *message.Entity

  188. 	var mbox *imap.MailboxStatus

  189. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  190. 		var err error

  191. 		if mailboxes, err = listMailboxes(c); err != nil {

  192. 			return err

  193. 		}

  194. 		if msg, part, err = getMessagePart(c, mboxName, uid, partPath); err != nil {

  195. 			return err

  196. 		}

  197. 		mbox = c.Mailbox()

  198. 		return nil

  199. 	})

  200. 	if err != nil {

  201. 		return err

  202. 	}

  203. 

  204. 	mimeType, _, err := part.Header.ContentType()

  205. 	if err != nil {

  206. 		return fmt.Errorf("failed to parse part Content-Type: %v", err)

  207. 	}

  208. 	if len(partPath) == 0 {

  209. 		mimeType = "message/rfc822"

  210. 	}

  211. 

  212. 	if raw {

  213. 		ctx.Response().Header().Set("Content-Type", mimeType)

  214. 

  215. 		disp, dispParams, _ := part.Header.ContentDisposition()

  216. 		filename := dispParams["filename"]

  217. 		if len(partPath) == 0 {

  218. 			filename = msg.Envelope.Subject + ".eml"

  219. 		}

  220. 

  221. 		// TODO: set Content-Length if possible

  222. 

  223. 		// Be careful not to serve types like text/html as inline

  224. 		if !strings.EqualFold(mimeType, "text/plain") || strings.EqualFold(disp, "attachment") {

  225. 			dispParams := make(map[string]string)

  226. 			if filename != "" {

  227. 				dispParams["filename"] = filename

  228. 			}

  229. 			disp := mime.FormatMediaType("attachment", dispParams)

  230. 			ctx.Response().Header().Set("Content-Disposition", disp)

  231. 		}

  232. 

  233. 		if len(partPath) == 0 {

  234. 			return part.WriteTo(ctx.Response())

  235. 		} else {

  236. 			return ctx.Stream(http.StatusOK, mimeType, part.Body)

  237. 		}

  238. 	}

  239. 

  240. 	var body []byte

  241. 	if strings.HasPrefix(strings.ToLower(mimeType), "text/") {

  242. 		body, err = ioutil.ReadAll(part.Body)

  243. 		if err != nil {

  244. 			return fmt.Errorf("failed to read part body: %v", err)

  245. 		}

  246. 	}

  247. 

  248. 	isHTML := false

  249. 	if strings.EqualFold(mimeType, "text/html") {

  250. 		body, err = sanitizeHTML(body)

  251. 		if err != nil {

  252. 			return fmt.Errorf("failed to sanitize HTML part: %v", err)

  253. 		}

  254. 		isHTML = true

  255. 	}

  256. 

  257. 	flags := make(map[string]bool)

  258. 	for _, f := range mbox.PermanentFlags {

  259. 		f = imap.CanonicalFlag(f)

  260. 		if f == imap.TryCreateFlag {

  261. 			continue

  262. 		}

  263. 		flags[f] = msg.HasFlag(f)

  264. 	}

  265. 

  266. 	return ctx.Render(http.StatusOK, "message.html", &MessageRenderData{

  267. 		BaseRenderData: *koushin.NewBaseRenderData(ctx),

  268. 		Mailboxes:      mailboxes,

  269. 		Mailbox:        mbox,

  270. 		Message:        msg,

  271. 		Body:           string(body),

  272. 		IsHTML:         isHTML,

  273. 		PartPath:       partPathString,

  274. 		MailboxPage:    int(mbox.Messages-msg.SeqNum) / messagesPerPage,

  275. 		Flags:          flags,

  276. 	})

  277. }

  278. 

  279. type ComposeRenderData struct {

  280. 	koushin.BaseRenderData

  281. 	Message *OutgoingMessage

  282. }

  283. 

  284. type messagePath struct {

  285. 	Mailbox string

  286. 	Uid     uint32

  287. }

  288. 

  289. // Send message, append it to the Sent mailbox, mark the original message as

  290. // answered

  291. func submitCompose(ctx *koushin.Context, msg *OutgoingMessage, inReplyTo *messagePath) error {

  292. 	err := ctx.Session.DoSMTP(func(c *smtp.Client) error {

  293. 		return sendMessage(c, msg)

  294. 	})

  295. 	if err != nil {

  296. 		if _, ok := err.(koushin.AuthError); ok {

  297. 			return echo.NewHTTPError(http.StatusForbidden, err)

  298. 		}

  299. 		return fmt.Errorf("failed to send message: %v", err)

  300. 	}

  301. 

  302. 	if inReplyTo != nil {

  303. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  304. 			return markMessageAnswered(c, inReplyTo.Mailbox, inReplyTo.Uid)

  305. 		})

  306. 		if err != nil {

  307. 			return fmt.Errorf("failed to mark original message as answered: %v", err)

  308. 		}

  309. 	}

  310. 

  311. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  312. 		_, err := appendMessage(c, msg, mailboxSent)

  313. 		return err

  314. 	})

  315. 	if err != nil {

  316. 		return fmt.Errorf("failed to save message to Sent mailbox: %v", err)

  317. 	}

  318. 

  319. 	return ctx.Redirect(http.StatusFound, "/mailbox/INBOX")

  320. }

  321. 

  322. func handleCompose(ctx *koushin.Context, msg *OutgoingMessage, source *messagePath, inReplyTo *messagePath) error {

  323. 	if msg.From == "" && strings.ContainsRune(ctx.Session.Username(), '@') {

  324. 		msg.From = ctx.Session.Username()

  325. 	}

  326. 

  327. 	if ctx.Request().Method == http.MethodPost {

  328. 		formParams, err := ctx.FormParams()

  329. 		if err != nil {

  330. 			return fmt.Errorf("failed to parse form: %v", err)

  331. 		}

  332. 		_, saveAsDraft := formParams["save_as_draft"]

  333. 

  334. 		msg.From = ctx.FormValue("from")

  335. 		msg.To = parseAddressList(ctx.FormValue("to"))

  336. 		msg.Subject = ctx.FormValue("subject")

  337. 		msg.Text = ctx.FormValue("text")

  338. 		msg.InReplyTo = ctx.FormValue("in_reply_to")

  339. 

  340. 		form, err := ctx.MultipartForm()

  341. 		if err != nil {

  342. 			return fmt.Errorf("failed to get multipart form: %v", err)

  343. 		}

  344. 		msg.Attachments = form.File["attachments"]

  345. 

  346. 		if saveAsDraft {

  347. 			err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  348. 				copied, err := appendMessage(c, msg, mailboxDrafts)

  349. 				if err != nil {

  350. 					return err

  351. 				}

  352. 				if !copied {

  353. 					return fmt.Errorf("no Draft mailbox found")

  354. 				}

  355. 				return nil

  356. 			})

  357. 			if err != nil {

  358. 				return fmt.Errorf("failed to save message to Draft mailbox: %v", err)

  359. 			}

  360. 		} else {

  361. 			return submitCompose(ctx, msg, inReplyTo)

  362. 		}

  363. 	}

  364. 

  365. 	return ctx.Render(http.StatusOK, "compose.html", &ComposeRenderData{

  366. 		BaseRenderData: *koushin.NewBaseRenderData(ctx),

  367. 		Message:        msg,

  368. 	})

  369. }

  370. 

  371. func handleComposeNew(ctx *koushin.Context) error {

  372. 	// These are common mailto URL query parameters

  373. 	return handleCompose(ctx, &OutgoingMessage{

  374. 		To:        strings.Split(ctx.QueryParam("to"), ","),

  375. 		Subject:   ctx.QueryParam("subject"),

  376. 		Text:      ctx.QueryParam("body"),

  377. 		InReplyTo: ctx.QueryParam("in-reply-to"),

  378. 	}, nil, nil)

  379. }

  380. 

  381. func unwrapIMAPAddressList(addrs []*imap.Address) []string {

  382. 	l := make([]string, len(addrs))

  383. 	for i, addr := range addrs {

  384. 		l[i] = addr.Address()

  385. 	}

  386. 	return l

  387. }

  388. 

  389. func handleReply(ctx *koushin.Context) error {

  390. 	var inReplyToPath messagePath

  391. 	var err error

  392. 	inReplyToPath.Mailbox, inReplyToPath.Uid, err = parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  393. 	if err != nil {

  394. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  395. 	}

  396. 

  397. 	var msg OutgoingMessage

  398. 	if ctx.Request().Method == http.MethodGet {

  399. 		// Populate fields from original message

  400. 		partPath, err := parsePartPath(ctx.QueryParam("part"))

  401. 		if err != nil {

  402. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  403. 		}

  404. 

  405. 		var inReplyTo *IMAPMessage

  406. 		var part *message.Entity

  407. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  408. 			var err error

  409. 			inReplyTo, part, err = getMessagePart(c, inReplyToPath.Mailbox, inReplyToPath.Uid, partPath)

  410. 			return err

  411. 		})

  412. 		if err != nil {

  413. 			return err

  414. 		}

  415. 

  416. 		mimeType, _, err := part.Header.ContentType()

  417. 		if err != nil {

  418. 			return fmt.Errorf("failed to parse part Content-Type: %v", err)

  419. 		}

  420. 

  421. 		if !strings.HasPrefix(strings.ToLower(mimeType), "text/") {

  422. 			err := fmt.Errorf("cannot reply to %q part", mimeType)

  423. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  424. 		}

  425. 

  426. 		// TODO: strip HTML tags if text/html

  427. 		msg.Text, err = quote(part.Body)

  428. 		if err != nil {

  429. 			return err

  430. 		}

  431. 

  432. 		msg.InReplyTo = inReplyTo.Envelope.MessageId

  433. 		// TODO: populate From from known user addresses and inReplyTo.Envelope.To

  434. 		replyTo := inReplyTo.Envelope.ReplyTo

  435. 		if len(replyTo) == 0 {

  436. 			replyTo = inReplyTo.Envelope.From

  437. 		}

  438. 		msg.To = unwrapIMAPAddressList(replyTo)

  439. 		msg.Subject = inReplyTo.Envelope.Subject

  440. 		if !strings.HasPrefix(strings.ToLower(msg.Subject), "re:") {

  441. 			msg.Subject = "Re: " + msg.Subject

  442. 		}

  443. 	}

  444. 

  445. 	return handleCompose(ctx, &msg, nil, &inReplyToPath)

  446. }

  447. 

  448. func handleEdit(ctx *koushin.Context) error {

  449. 	var sourcePath messagePath

  450. 	var err error

  451. 	sourcePath.Mailbox, sourcePath.Uid, err = parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  452. 	if err != nil {

  453. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  454. 	}

  455. 

  456. 	// TODO: somehow get the path to the In-Reply-To message (with a search?)

  457. 

  458. 	var msg OutgoingMessage

  459. 	if ctx.Request().Method == http.MethodGet {

  460. 		// Populate fields from source message

  461. 		partPath, err := parsePartPath(ctx.QueryParam("part"))

  462. 		if err != nil {

  463. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  464. 		}

  465. 

  466. 		var source *IMAPMessage

  467. 		var part *message.Entity

  468. 		err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  469. 			var err error

  470. 			source, part, err = getMessagePart(c, sourcePath.Mailbox, sourcePath.Uid, partPath)

  471. 			return err

  472. 		})

  473. 		if err != nil {

  474. 			return err

  475. 		}

  476. 

  477. 		mimeType, _, err := part.Header.ContentType()

  478. 		if err != nil {

  479. 			return fmt.Errorf("failed to parse part Content-Type: %v", err)

  480. 		}

  481. 

  482. 		if !strings.EqualFold(mimeType, "text/plain") {

  483. 			err := fmt.Errorf("cannot edit %q part", mimeType)

  484. 			return echo.NewHTTPError(http.StatusBadRequest, err)

  485. 		}

  486. 

  487. 		b, err := ioutil.ReadAll(part.Body)

  488. 		if err != nil {

  489. 			return fmt.Errorf("failed to read part body: %v", err)

  490. 		}

  491. 		msg.Text = string(b)

  492. 

  493. 		if len(source.Envelope.From) > 0 {

  494. 			msg.From = source.Envelope.From[0].Address()

  495. 		}

  496. 		msg.To = unwrapIMAPAddressList(source.Envelope.To)

  497. 		msg.Subject = source.Envelope.Subject

  498. 		msg.InReplyTo = source.Envelope.InReplyTo

  499. 		// TODO: preserve Message-Id

  500. 		// TODO: preserve attachments

  501. 	}

  502. 

  503. 	return handleCompose(ctx, &msg, &sourcePath, nil)

  504. }

  505. 

  506. func handleMove(ctx *koushin.Context) error {

  507. 	mboxName, uid, err := parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  508. 	if err != nil {

  509. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  510. 	}

  511. 

  512. 	to := ctx.FormValue("to")

  513. 

  514. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  515. 		mc := imapmove.NewClient(c)

  516. 

  517. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  518. 			return err

  519. 		}

  520. 

  521. 		var seqSet imap.SeqSet

  522. 		seqSet.AddNum(uid)

  523. 		if err := mc.UidMoveWithFallback(&seqSet, to); err != nil {

  524. 			return fmt.Errorf("failed to move message: %v", err)

  525. 		}

  526. 

  527. 		// TODO: get the UID of the message in the destination mailbox with UIDPLUS

  528. 		return nil

  529. 	})

  530. 	if err != nil {

  531. 		return err

  532. 	}

  533. 

  534. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%v", url.PathEscape(to)))

  535. }

  536. 

  537. func handleDelete(ctx *koushin.Context) error {

  538. 	mboxName, uid, err := parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  539. 	if err != nil {

  540. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  541. 	}

  542. 

  543. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  544. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  545. 			return err

  546. 		}

  547. 

  548. 		var seqSet imap.SeqSet

  549. 		seqSet.AddNum(uid)

  550. 

  551. 		item := imap.FormatFlagsOp(imap.AddFlags, true)

  552. 		flags := []interface{}{imap.DeletedFlag}

  553. 		if err := c.UidStore(&seqSet, item, flags, nil); err != nil {

  554. 			return fmt.Errorf("failed to add deleted flag: %v", err)

  555. 		}

  556. 

  557. 		if err := c.Expunge(nil); err != nil {

  558. 			return fmt.Errorf("failed to expunge mailbox: %v", err)

  559. 		}

  560. 

  561. 		// Deleting a message invalidates our cached message count

  562. 		// TODO: listen to async updates instead

  563. 		if _, err := c.Select(mboxName, false); err != nil {

  564. 			return fmt.Errorf("failed to select mailbox: %v", err)

  565. 		}

  566. 

  567. 		return nil

  568. 	})

  569. 	if err != nil {

  570. 		return err

  571. 	}

  572. 

  573. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/mailbox/%v", url.PathEscape(mboxName)))

  574. }

  575. 

  576. func handleSetFlags(ctx *koushin.Context) error {

  577. 	mboxName, uid, err := parseMboxAndUid(ctx.Param("mbox"), ctx.Param("uid"))

  578. 	if err != nil {

  579. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  580. 	}

  581. 

  582. 	form, err := ctx.FormParams()

  583. 	if err != nil {

  584. 		return echo.NewHTTPError(http.StatusBadRequest, err)

  585. 	}

  586. 	flags, ok := form["flags"]

  587. 	if !ok {

  588. 		return echo.NewHTTPError(http.StatusBadRequest, "missing 'flags' form values")

  589. 	}

  590. 

  591. 	err = ctx.Session.DoIMAP(func(c *imapclient.Client) error {

  592. 		if err := ensureMailboxSelected(c, mboxName); err != nil {

  593. 			return err

  594. 		}

  595. 

  596. 		var seqSet imap.SeqSet

  597. 		seqSet.AddNum(uid)

  598. 

  599. 		storeItems := make([]interface{}, len(flags))

  600. 		for i, f := range flags {

  601. 			storeItems[i] = f

  602. 		}

  603. 

  604. 		item := imap.FormatFlagsOp(imap.SetFlags, true)

  605. 		if err := c.UidStore(&seqSet, item, storeItems, nil); err != nil {

  606. 			return fmt.Errorf("failed to add deleted flag: %v", err)

  607. 		}

  608. 

  609. 		return nil

  610. 	})

  611. 	if err != nil {

  612. 		return err

  613. 	}

  614. 

  615. 	return ctx.Redirect(http.StatusFound, fmt.Sprintf("/message/%v/%v", url.PathEscape(mboxName), uid))

  616. }