mirrors
/
redmine
mirror of https://github.com/redmine/redmine.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 199 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17238 Commits
33 Branches
Tree: ce622c428e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ce622c428e'
${ noResults }
redmine/app/controllers/mail_handler_controller.rb

mail_handler_controller.rb 2.1KB
Raw Blame History

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273 
  1. # frozen_string_literal: true

  2. 

  3. # Redmine - project management software

  4. # Copyright (C) 2006-2022  Jean-Philippe Lang

  5. #

  6. # This program is free software; you can redistribute it and/or

  7. # modify it under the terms of the GNU General Public License

  8. # as published by the Free Software Foundation; either version 2

  9. # of the License, or (at your option) any later version.

  10. #

  11. # This program is distributed in the hope that it will be useful,

  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  14. # GNU General Public License for more details.

  15. #

  16. # You should have received a copy of the GNU General Public License

  17. # along with this program; if not, write to the Free Software

  18. # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19. 

  20. class MailHandlerController < ActionController::Base

  21.   include ActiveSupport::SecurityUtils

  22. 

  23.   before_action :check_credential

  24. 

  25.   # Displays the email submission form

  26.   def new

  27.   end

  28. 

  29.   # Submits an incoming email to MailHandler

  30.   def index

  31.     # MailHandlerController#index should permit all options set by

  32.     # RedmineMailHandler#submit in rdm-mailhandler.rb.

  33.     # It must be kept in sync.

  34.     options = params.permit(

  35.       :key,

  36.       :email,

  37.       :allow_override,

  38.       :unknown_user,

  39.       :default_group,

  40.       :no_account_notice,

  41.       :no_notification,

  42.       :no_permission_check,

  43.       :project_from_subaddress,

  44.       {

  45.         issue: [

  46.           :project,

  47.           :status,

  48.           :tracker,

  49.           :category,

  50.           :priority,

  51.           :assigned_to,

  52.           :fixed_version,

  53.           :is_private

  54.         ]

  55.       }

  56.     ).to_h

  57.     email = options.delete(:email)

  58.     if MailHandler.safe_receive(email, options)

  59.       head :created

  60.     else

  61.       head :unprocessable_entity

  62.     end

  63.   end

  64. 

  65.   private

  66. 

  67.   def check_credential

  68.     User.current = nil

  69.     unless Setting.mail_handler_api_enabled? && secure_compare(params[:key].to_s, Setting.mail_handler_api_key.to_s)

  70.       render :plain => 'Access denied. Incoming emails WS is disabled or key is invalid.', :status => 403

  71.     end

  72.   end

  73. end