discourse/app/controllers/admin/email_controller.rb

# frozen_string_literal: true

class Admin::EmailController < Admin::AdminController

  def index
    data = { delivery_method: delivery_method, settings: delivery_settings }
    render_json_dump(data)
  end

  def test
    params.require(:email_address)
    begin
      message = TestMailer.send_test(params[:email_address])
      Email::Sender.new(message, :test_message).send

      render json: { sent_test_email_message: I18n.t("admin.email.sent_test") }
    rescue => e
      render json: { errors: [e.message] }, status: 422
    end
  end

  def sent
    email_logs = EmailLog.joins(<<~SQL)
      LEFT JOIN post_reply_keys
      ON post_reply_keys.post_id = email_logs.post_id
      AND post_reply_keys.user_id = email_logs.user_id
    SQL

    email_logs = filter_logs(email_logs, params)

    if (reply_key = params[:reply_key]).present?
      email_logs =
        if reply_key.length == 32
          email_logs.where("post_reply_keys.reply_key = ?", reply_key)
        else
          email_logs.where(
            "replace(post_reply_keys.reply_key::VARCHAR, '-', '') ILIKE ?",
            "%#{reply_key}%"
          )
        end
    end

    email_logs = email_logs.to_a

    tuples = email_logs.map do |email_log|
      [email_log.post_id, email_log.user_id]
    end

    reply_keys = {}

    if tuples.present?
      PostReplyKey
        .where(
          "(post_id,user_id) IN (#{(['(?)'] * tuples.size).join(', ')})",
          *tuples
        )
        .pluck(:post_id, :user_id, "reply_key::text")
        .each do |post_id, user_id, key|
          reply_keys[[post_id, user_id]] = key
        end
    end

    render_serialized(email_logs, EmailLogSerializer, reply_keys: reply_keys)
  end

  def skipped
    skipped_email_logs = filter_logs(SkippedEmailLog, params)
    render_serialized(skipped_email_logs, SkippedEmailLogSerializer)
  end

  def bounced
    email_logs = filter_logs(EmailLog.bounced, params)
    render_serialized(email_logs, EmailLogSerializer)
  end

  def received
    incoming_emails = filter_incoming_emails(IncomingEmail, params)
    render_serialized(incoming_emails, IncomingEmailSerializer)
  end

  def rejected
    incoming_emails = filter_incoming_emails(IncomingEmail.errored, params)
    render_serialized(incoming_emails, IncomingEmailSerializer)
  end

  def preview_digest
    params.require(:last_seen_at)
    params.require(:username)
    user = User.find_by_username(params[:username])
    raise Discourse::InvalidParameters unless user

    renderer = Email::Renderer.new(UserNotifications.digest(user, since: params[:last_seen_at]))
    render json: MultiJson.dump(html_content: renderer.html, text_content: renderer.text)
  end

  def advanced_test
    params.require(:email)

    receiver = Email::Receiver.new(params['email'])
    text, elided, format = receiver.select_body

    render json: success_json.merge!(
      text: text,
      elided: elided,
      format: format
    )
  end

  def send_digest
    params.require(:last_seen_at)
    params.require(:username)
    params.require(:email)
    user = User.find_by_username(params[:username])

    message, skip_reason = UserNotifications.public_send(:digest, user,
      since: params[:last_seen_at]
    )

    if message
      message.to = params[:email]
      begin
        Email::Sender.new(message, :digest).send
        render json: success_json
      rescue => e
        render json: { errors: [e.message] }, status: 422
      end
    else
      render json: { errors: skip_reason }
    end
  end

  def smtp_should_reject
    params.require(:from)
    params.require(:to)
    # These strings aren't localized; they are sent to an anonymous SMTP user.
    if !User.with_email(Email.downcase(params[:from])).exists? && !SiteSetting.enable_staged_users
      render json: { reject: true, reason: "Mail from your address is not accepted. Do you have an account here?" }
    elsif Email::Receiver.check_address(Email.downcase(params[:to])).nil?
      render json: { reject: true, reason: "Mail to this address is not accepted. Check the address and try to send again?" }
    else
      render json: { reject: false }
    end
  end

  def handle_mail
    params.require(:email)
    retry_count = 0

    begin
      Jobs.enqueue(:process_email, mail: params[:email], retry_on_rate_limit: true, source: :handle_mail)
    rescue JSON::GeneratorError => e
      if retry_count == 0
        params[:email] = params[:email].force_encoding('iso-8859-1').encode("UTF-8")
        retry_count += 1
        retry
      else
        raise e
      end
    end

    render plain: "email has been received and is queued for processing"
  end

  def raw_email
    params.require(:id)
    incoming_email = IncomingEmail.find(params[:id].to_i)
    text, html = Email.extract_parts(incoming_email.raw)
    render json: { raw_email: incoming_email.raw, text_part: text, html_part: html }
  end

  def incoming
    params.require(:id)
    incoming_email = IncomingEmail.find(params[:id].to_i)
    serializer = IncomingEmailDetailsSerializer.new(incoming_email, root: false)
    render_json_dump(serializer)
  end

  def incoming_from_bounced
    params.require(:id)

    begin
      email_log = EmailLog.find_by(id: params[:id].to_i, bounced: true)
      raise Discourse::InvalidParameters if email_log&.bounce_key.blank?

      if Email::Sender.bounceable_reply_address?
        bounced_to_address = Email::Sender.bounce_address(email_log.bounce_key)
        incoming_email = IncomingEmail.find_by(to_addresses: bounced_to_address)
      end

      if incoming_email.nil?
        email_local_part, email_domain = SiteSetting.notification_email.split('@')
        bounced_to_address = "#{email_local_part}+verp-#{email_log.bounce_key}@#{email_domain}"
        incoming_email = IncomingEmail.find_by(to_addresses: bounced_to_address)
      end

      raise Discourse::NotFound if incoming_email.nil?

      serializer = IncomingEmailDetailsSerializer.new(incoming_email, root: false)
      render_json_dump(serializer)
    rescue => e
      render json: { errors: [e.message] }, status: 404
    end
  end

  private

  def filter_logs(logs, params)
    table_name = logs.table_name

    logs = logs.includes(:user, post: :topic)
      .references(:user)
      .order(created_at: :desc)
      .offset(params[:offset] || 0)
      .limit(50)

    logs = logs.where("users.username ILIKE ?", "%#{params[:user]}%") if params[:user].present?
    logs = logs.where("#{table_name}.to_address ILIKE ?", "%#{params[:address]}%") if params[:address].present?
    logs = logs.where("#{table_name}.email_type ILIKE ?", "%#{params[:type]}%") if params[:type].present?
    logs
  end

  def filter_incoming_emails(incoming_emails, params)
    incoming_emails = incoming_emails.includes(:user, post: :topic)
      .order(created_at: :desc)
      .offset(params[:offset] || 0)
      .limit(50)

    incoming_emails = incoming_emails.where("from_address ILIKE ?", "%#{params[:from]}%") if params[:from].present?
    incoming_emails = incoming_emails.where("to_addresses ILIKE :to OR cc_addresses ILIKE :to", to: "%#{params[:to]}%") if params[:to].present?
    incoming_emails = incoming_emails.where("subject ILIKE ?", "%#{params[:subject]}%") if params[:subject].present?
    incoming_emails = incoming_emails.where("error ILIKE ?", "%#{params[:error]}%") if params[:error].present?

    incoming_emails
  end

  def delivery_settings
    action_mailer_settings
      .reject { |k, _| k == :password }
      .map    { |k, v| { name: k, value: v } }
  end

  def delivery_method
    ActionMailer::Base.delivery_method
  end

  def action_mailer_settings
    ActionMailer::Base.public_send "#{delivery_method}_settings"
  end
end
DEV: add a few frozen string literals 2019-05-02 02:57:12 -04:00			`# frozen_string_literal: true`

Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`class Admin::EmailController < Admin::AdminController`

			`def index`
FEATURE: add filters on email logs 2014-02-14 18:50:08 -05:00			`data = { delivery_method: delivery_method, settings: delivery_settings }`
			`render_json_dump(data)`
Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`end`

			`def test`
			`params.require(:email_address)`
FEATURE: show exact error for test email 2014-11-19 10:49:12 -05:00			`begin`
FIX: Prevent critical emails bypassing disable, and improve email test logic - The test_email job is removed, because it was always being run synchronously (not in sidekiq) - 34b29f62 added a bypass for critical emails, to match the spec. This removes the bypass, and removes the spec. - This adapts the specs for 72ffabf6, so that they check for emails being sent - This reimplements c2797921, allowing test emails to be sent even when emails are disabled 2019-03-21 17:57:09 -04:00			`message = TestMailer.send_test(params[:email_address])`
			`Email::Sender.new(message, :test_message).send`

			`render json: { sent_test_email_message: I18n.t("admin.email.sent_test") }`
FEATURE: show exact error for test email 2014-11-19 10:49:12 -05:00			`rescue => e`
			`render json: { errors: [e.message] }, status: 422`
			`end`
Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`end`

FEATURE: add filters on email logs 2014-02-14 18:50:08 -05:00			`def sent`
Drop `reply_key`, `skipped` and `skipped_reason` from `email_logs`. 2018-07-27 00:32:07 -04:00			`email_logs = EmailLog.joins(<<~SQL)`
			`LEFT JOIN post_reply_keys`
			`ON post_reply_keys.post_id = email_logs.post_id`
			`AND post_reply_keys.user_id = email_logs.user_id`
			`SQL`
PERF: Move `EmailLog#reply_key` into new `post_reply_keys` table. 2018-07-18 04:28:44 -04:00
			`email_logs = filter_logs(email_logs, params)`

Revert "FIX: Partial reply key search in email sent logs." This reverts commit e9b2018bc8bc1254075bec597ce30a84f38b456e. 2019-01-09 20:56:03 -05:00			`if (reply_key = params[:reply_key]).present?`
			`email_logs =`
			`if reply_key.length == 32`
			`email_logs.where("post_reply_keys.reply_key = ?", reply_key)`
			`else`
			`email_logs.where(`
			`"replace(post_reply_keys.reply_key::VARCHAR, '-', '') ILIKE ?",`
			`"%#{reply_key}%"`
			`)`
			`end`
PERF: Move `EmailLog#reply_key` into new `post_reply_keys` table. 2018-07-18 04:28:44 -04:00			`end`

			`email_logs = email_logs.to_a`

			`tuples = email_logs.map do \|email_log\|`
			`[email_log.post_id, email_log.user_id]`
			`end`

			`reply_keys = {}`

			`if tuples.present?`
			`PostReplyKey`
			`.where(`
			`"(post_id,user_id) IN (#{(['(?)'] * tuples.size).join(', ')})",`
			`*tuples`
			`)`
			`.pluck(:post_id, :user_id, "reply_key::text")`
Make rubocop happy. 2019-01-09 21:52:15 -05:00			`.each do \|post_id, user_id, key\|`
			`reply_keys[[post_id, user_id]] = key`
PERF: Move `EmailLog#reply_key` into new `post_reply_keys` table. 2018-07-18 04:28:44 -04:00			`end`
			`end`

			`render_serialized(email_logs, EmailLogSerializer, reply_keys: reply_keys)`
Log when and why an email was not sent in email_logs 2014-02-14 13:06:21 -05:00			`end`

			`def skipped`
PERF: Split skipped email logs into a seperate table. 2018-07-24 00:55:43 -04:00			`skipped_email_logs = filter_logs(SkippedEmailLog, params)`
			`render_serialized(skipped_email_logs, SkippedEmailLogSerializer)`
Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`end`

FEATURE: handle bounced emails 2016-05-02 17:15:32 -04:00			`def bounced`
PERF: Split skipped email logs into a seperate table. 2018-07-24 00:55:43 -04:00			`email_logs = filter_logs(EmailLog.bounced, params)`
FEATURE: handle bounced emails 2016-05-02 17:15:32 -04:00			`render_serialized(email_logs, EmailLogSerializer)`
			`end`

FEATURE: better email in support FEATURE: new incoming_email model FEATURE: infinite scrolling in emails admin FEATURE: new 'emails:import' rake task 2016-01-18 18:57:55 -05:00			`def received`
			`incoming_emails = filter_incoming_emails(IncomingEmail, params)`
			`render_serialized(incoming_emails, IncomingEmailSerializer)`
			`end`

			`def rejected`
			`incoming_emails = filter_incoming_emails(IncomingEmail.errored, params)`
			`render_serialized(incoming_emails, IncomingEmailSerializer)`
			`end`

Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`def preview_digest`
			`params.require(:last_seen_at)`
filter by username in email digest preview adds a user prompt on the email digest preview page to generate a preview for a particular user also fixes some broken styling on the page 2015-10-30 14:05:54 -04:00			`params.require(:username)`
			`user = User.find_by_username(params[:username])`
FIX: Return 400 when username params is invalid. 2019-01-30 03:04:47 -05:00			`raise Discourse::InvalidParameters unless user`

filter by username in email digest preview adds a user prompt on the email digest preview page to generate a preview for a particular user also fixes some broken styling on the page 2015-10-30 14:05:54 -04:00			`renderer = Email::Renderer.new(UserNotifications.digest(user, since: params[:last_seen_at]))`
Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`render json: MultiJson.dump(html_content: renderer.html, text_content: renderer.text)`
			`end`

FEATURE: Add 'Advanced Test' for admin panel. 2018-11-28 18:03:50 -05:00			`def advanced_test`
			`params.require(:email)`

			`receiver = Email::Receiver.new(params['email'])`
			`text, elided, format = receiver.select_body`

			`render json: success_json.merge!(`
			`text: text,`
			`elided: elided,`
			`format: format`
			`)`
			`end`

FEATURE: send digest preview to an email address 2016-11-23 17:46:57 -05:00			`def send_digest`
			`params.require(:last_seen_at)`
			`params.require(:username)`
			`params.require(:email)`
			`user = User.find_by_username(params[:username])`
DEV: Prefer `public_send` over `send`. 2019-05-06 21:27:05 -04:00
			`message, skip_reason = UserNotifications.public_send(:digest, user,`
			`since: params[:last_seen_at]`
			`)`

FEATURE: send digest preview to an email address 2016-11-23 17:46:57 -05:00			`if message`
			`message.to = params[:email]`
			`begin`
			`Email::Sender.new(message, :digest).send`
fix success response handling of sending digest preview email 2016-11-24 15:05:33 -05:00			`render json: success_json`
FEATURE: send digest preview to an email address 2016-11-23 17:46:57 -05:00			`rescue => e`
			`render json: { errors: [e.message] }, status: 422`
			`end`
			`else`
			`render json: { errors: skip_reason }`
			`end`
			`end`

Added an API to ask if an incoming email should be dropped at the SMTP level. This lets an SMTP server optionally decide if it should reject a mail without passing it on to Discourse at all, possibly before even reading the email's payload, to prevent spam-induced backscatter and save resources. This just does the bare minimum sanity checking that could prevent obvious backscatter. For legit errors from legit users, Discourse will still send a much more pleasant reply email. 2017-04-05 02:32:50 -04:00			`def smtp_should_reject`
			`params.require(:from)`
			`params.require(:to)`
			`# These strings aren't localized; they are sent to an anonymous SMTP user.`
FEATURE: phase 1 of supporting multiple email addresses 2017-04-26 14:47:36 -04:00			`if !User.with_email(Email.downcase(params[:from])).exists? && !SiteSetting.enable_staged_users`
Corrected indentation. 2017-04-06 01:49:34 -04:00			`render json: { reject: true, reason: "Mail from your address is not accepted. Do you have an account here?" }`
Make Email::Receiver.check_address() into a class method. 2017-04-05 12:45:58 -04:00			`elsif Email::Receiver.check_address(Email.downcase(params[:to])).nil?`
Corrected indentation. 2017-04-06 01:49:34 -04:00			`render json: { reject: true, reason: "Mail to this address is not accepted. Check the address and try to send again?" }`
Added an API to ask if an incoming email should be dropped at the SMTP level. This lets an SMTP server optionally decide if it should reject a mail without passing it on to Discourse at all, possibly before even reading the email's payload, to prevent spam-induced backscatter and save resources. This just does the bare minimum sanity checking that could prevent obvious backscatter. For legit errors from legit users, Discourse will still send a much more pleasant reply email. 2017-04-05 02:32:50 -04:00			`else`
Corrected indentation. 2017-04-06 01:49:34 -04:00			`render json: { reject: false }`
Added an API to ask if an incoming email should be dropped at the SMTP level. This lets an SMTP server optionally decide if it should reject a mail without passing it on to Discourse at all, possibly before even reading the email's payload, to prevent spam-induced backscatter and save resources. This just does the bare minimum sanity checking that could prevent obvious backscatter. For legit errors from legit users, Discourse will still send a much more pleasant reply email. 2017-04-05 02:32:50 -04:00			`end`
			`end`

FEATURE: add handle_mail admin route you can post full email payloads to this endpoint /admin/email/handle_mail 2015-10-18 17:33:24 -04:00			`def handle_mail`
			`params.require(:email)`
FIX: Force the right encoding when handling email. 2017-04-27 04:49:21 -04:00			`retry_count = 0`

			`begin`
DEV: Add created_via column to IncomingEmail (#11751) This should make it easier to track down how the incoming email was created, which is one of four locations: The POP3 poller (which picks up reply via email replies) The admin email controller #handle_mail (which is where hosted mail is sent) The IMAP sync tool The group SMTP mailer, which sends emails when replying to IMAP topics, pre-emptively creating IncomingEmail records to avoid double syncing 2021-01-19 22:22:41 -05:00			`Jobs.enqueue(:process_email, mail: params[:email], retry_on_rate_limit: true, source: :handle_mail)`
FIX: Force the right encoding when handling email. 2017-04-27 04:49:21 -04:00			`rescue JSON::GeneratorError => e`
			`if retry_count == 0`
			`params[:email] = params[:email].force_encoding('iso-8859-1').encode("UTF-8")`
			`retry_count += 1`
			`retry`
			`else`
			`raise e`
			`end`
			`end`

FIX: Processing incoming email should be done in a background job. 2017-04-24 00:06:28 -04:00			`render plain: "email has been received and is queued for processing"`
FEATURE: add handle_mail admin route you can post full email payloads to this endpoint /admin/email/handle_mail 2015-10-18 17:33:24 -04:00			`end`

FEATURE: new 'raw email' modal when listing rejected emails 2016-02-01 15:41:49 -05:00			`def raw_email`
			`params.require(:id)`
			`incoming_email = IncomingEmail.find(params[:id].to_i)`
UX: display text & html parts alongside raw email in incoming email modal 2017-03-08 17:15:42 -05:00			`text, html = Email.extract_parts(incoming_email.raw)`
			`render json: { raw_email: incoming_email.raw, text_part: text, html_part: html }`
FEATURE: new 'raw email' modal when listing rejected emails 2016-02-01 15:41:49 -05:00			`end`

FEATURE: new incoming email details modal 2016-02-10 16:00:27 -05:00			`def incoming`
			`params.require(:id)`
			`incoming_email = IncomingEmail.find(params[:id].to_i)`
			`serializer = IncomingEmailDetailsSerializer.new(incoming_email, root: false)`
			`render_json_dump(serializer)`
			`end`

FEATURE: Allow checking the raw response of a bounced email 2017-02-22 12:51:33 -05:00			`def incoming_from_bounced`
			`params.require(:id)`

Handle invalid parameters and missing bounced emails 2017-03-02 18:37:28 -05:00			`begin`
FIX: Failed to show details about some bounced emails Bounces sent to reply_by_email_address could not be found. 2019-03-26 12:59:56 -04:00			`email_log = EmailLog.find_by(id: params[:id].to_i, bounced: true)`
			`raise Discourse::InvalidParameters if email_log&.bounce_key.blank?`
FEATURE: Allow checking the raw response of a bounced email 2017-02-22 12:51:33 -05:00
FIX: Failed to show details about some bounced emails Bounces sent to reply_by_email_address could not be found. 2019-03-26 12:59:56 -04:00			`if Email::Sender.bounceable_reply_address?`
			`bounced_to_address = Email::Sender.bounce_address(email_log.bounce_key)`
			`incoming_email = IncomingEmail.find_by(to_addresses: bounced_to_address)`
			`end`

			`if incoming_email.nil?`
			`email_local_part, email_domain = SiteSetting.notification_email.split('@')`
			`bounced_to_address = "#{email_local_part}+verp-#{email_log.bounce_key}@#{email_domain}"`
			`incoming_email = IncomingEmail.find_by(to_addresses: bounced_to_address)`
			`end`
Handle invalid parameters and missing bounced emails 2017-03-02 18:37:28 -05:00
			`raise Discourse::NotFound if incoming_email.nil?`

			`serializer = IncomingEmailDetailsSerializer.new(incoming_email, root: false)`
			`render_json_dump(serializer)`
			`rescue => e`
			`render json: { errors: [e.message] }, status: 404`
			`end`
FEATURE: Allow checking the raw response of a bounced email 2017-02-22 12:51:33 -05:00			`end`

Do not return mail password in EmailController 2013-06-11 19:00:13 -04:00			`private`

PERF: Split skipped email logs into a seperate table. 2018-07-24 00:55:43 -04:00			`def filter_logs(logs, params)`
			`table_name = logs.table_name`

			`logs = logs.includes(:user, post: :topic)`
FEATURE: better email in support FEATURE: new incoming_email model FEATURE: infinite scrolling in emails admin FEATURE: new 'emails:import' rake task 2016-01-18 18:57:55 -05:00			`.references(:user)`
			`.order(created_at: :desc)`
			`.offset(params[:offset] \|\| 0)`
			`.limit(50)`

PERF: Split skipped email logs into a seperate table. 2018-07-24 00:55:43 -04:00			`logs = logs.where("users.username ILIKE ?", "%#{params[:user]}%") if params[:user].present?`
			`logs = logs.where("#{table_name}.to_address ILIKE ?", "%#{params[:address]}%") if params[:address].present?`
			`logs = logs.where("#{table_name}.email_type ILIKE ?", "%#{params[:type]}%") if params[:type].present?`
			`logs`
FEATURE: better email in support FEATURE: new incoming_email model FEATURE: infinite scrolling in emails admin FEATURE: new 'emails:import' rake task 2016-01-18 18:57:55 -05:00			`end`

			`def filter_incoming_emails(incoming_emails, params)`
			`incoming_emails = incoming_emails.includes(:user, post: :topic)`
			`.order(created_at: :desc)`
			`.offset(params[:offset] \|\| 0)`
			`.limit(50)`

			`incoming_emails = incoming_emails.where("from_address ILIKE ?", "%#{params[:from]}%") if params[:from].present?`
FIX: searching received emails for TO was broken 2016-07-13 16:43:25 -04:00			`incoming_emails = incoming_emails.where("to_addresses ILIKE :to OR cc_addresses ILIKE :to", to: "%#{params[:to]}%") if params[:to].present?`
FEATURE: better email in support FEATURE: new incoming_email model FEATURE: infinite scrolling in emails admin FEATURE: new 'emails:import' rake task 2016-01-18 18:57:55 -05:00			`incoming_emails = incoming_emails.where("subject ILIKE ?", "%#{params[:subject]}%") if params[:subject].present?`
			`incoming_emails = incoming_emails.where("error ILIKE ?", "%#{params[:error]}%") if params[:error].present?`

			`incoming_emails`
FEATURE: add filters on email logs 2014-02-14 18:50:08 -05:00			`end`

Do not return mail password in EmailController 2013-06-11 19:00:13 -04:00			`def delivery_settings`
			`action_mailer_settings`
Not initializing variable for looping if unused in loop 2014-08-14 17:54:55 -04:00			`.reject { \|k, _\| k == :password }`
Do not return mail password in EmailController 2013-06-11 19:00:13 -04:00			`.map { \|k, v\| { name: k, value: v } }`
			`end`

			`def delivery_method`
			`ActionMailer::Base.delivery_method`
			`end`

			`def action_mailer_settings`
			`ActionMailer::Base.public_send "#{delivery_method}_settings"`
			`end`
Better HTML emails, smarter email digests, new email section in admin with digest preview 2013-06-03 16:12:24 -04:00			`end`