File: /var/www/vhosts/creativefellows.nl/dhwd.creativefellows.nl/pages/handlers/handle.form_default.php
<?php
$security_key = 'akz2TaXRfaZ4dAqEeugt';
require_once "../../includes/main.inc.php";
/*
* get form id
*/
$formid = $_POST["formid"];
$form_referer = explode("?",$_SERVER['HTTP_REFERER']);
/*
* Client setting
*/
$settings = $cassette->getSettings();
/*
* Check scrf and submit
*/
if(is_numeric($formid) && $formid != "" && isset($_POST["csrf"]) && $_POST["csrf"] == $_SESSION["csrf_token"])
{
/*
* Get form
*/
$form = $cassette->getForm($formid,$_POST["csrf"]);
/*
* form settings
*/
$form_name = $form->getName();
$to_client_email = $form->getClientResponseEmail();
$unique_id = $form->getId();
$response = $form->getResponseMessage();
$subject = $form_name ." | ". $settings["bedrijfsnaam"];
$referrer = $_SERVER['HTTP_REFERER'];
$post_to_email = null;
/*
* response field for copy user
*/
$copy_user_arr = $form->response != 0 ? $cassette->get("form_elements","form_element_id",$form["field_response"]) : null;
if($copy_user_arr != null)
{
$postName = preg_replace("/[^0-9a-zA-Z]/","",strtolower($copy_user_arr["form_element_id"].$copy_user_arr["name"]));
$postValue = $_POST[$postName];
if( isset($_POST[$postName]) && $_POST[$postName] != "" ) $post_to_email .= $postValue;
}
/*
* Start HTML
*/
$data = "<html><head></head><body><table cellpadding='5' cellspacing='0' border='0' style='font:12px Helvetica,Arial,sans-serif;' width='600' align='center'>";
$data .= "<tr>";
$data .= "<td colspan='2' style='font-size:14px;font-weight:bold;padding-bottom:15px;'> </td>";
$data .= "</tr>";
/*
* Company logo
*/
$data .= "<tr>";
$data .= "<td colspan='2' style='font-size:14px;font-weight:bold;'><img src='". $cassette->getBaseUrl() . $settings["logo"] ."' style='height:36px;' alt='". $settings["bedrijfsnaam"] ."'/></td>";
$data .= "</tr>";
$data .= "<tr>";
$data .= "<td colspan='2' style='font-size:14px;font-weight:bold;'> </td>";
$data .= "</tr>";
/*
* subject
*/
$data .= "<tr>";
$data .= "<td colspan='2' style='font-size:14px;font-weight:bold;padding-bottom:15px;padding-top:15px;border-bottom:solid 1px #efefef;border-top:solid 1px #efefef;'>". $subject ."</td>";
$data .= "</tr>";
/*
* Form fields
*/
$fields = $form->getFields();
$uid = $form->getUid();
/*
* loop fields
*/
foreach($fields as $f)
{
/*
* Only show visible html fields
*/
if(!$f["elementId"]) continue;
/*
* Read post
*/
$postValue = $_POST[$f["valueName"]];
/*
* Post element is array
*/
if(is_array($postValue)) $postValue = implode(", ",$postValue);
/*
* Form field header
*/
if($f["type"] == "tussenkop"){
$data .= "<tr>";
$data .= "<td colspan=\"2\"> </td>";
$data .= "</tr>";
$data .= "<tr>";
$data .= "<td colspan=\"2\"><strong>". ucfirst($f["name"]) ."</strong></td>";
$data .= "</tr>";
}
else{
$data .= "<tr>";
$data .= "<td style='width:200px;font-weight:;'>".ucfirst($f["name"])."</td><td>".$postValue."</td>";
$data .= "</tr>";
}
/*
* Insert data in DB
*/
$form->insertFormResponse("form_response", array('form_id','uid','field_id','value'), array($formid,$uid,$f["form_element_id"],$postValue));
}
$data .= "</table></body></html>";
/*
* mail headers
*/
$headers = "From: ". $settings["master_email"] ."\n";
$headers .= "Reply-To: ". $settings["master_email"] ."\n";
$headers .= "Return-Path: ". $settings["master_email"] ."\n";
$headers .= "Content-type: text/html; charset=UTF-8\n";
$headers .= "MIME-Version: 1.0\n";
/*
* copy to user
*/
if($post_to_email != null) mail($post_to_email, $subject, $data, $headers);
/*
* submit to form response addresses
*/
if(mail($to_client_email, $subject, $data, $headers))
{
header("Location: ". $form_referer[0] ."?s=1&id=$formid&hash=".md5($security_key));
}
else{
header("Location: ". $form_referer[0] ."?s=0&id=$formid");
}
}
// sending mail failed
else header("Location: ". $form_referer[0] ."?s=0&id=$formid");
?>