libs update

Lib/CaptchaLib.php

@@ -2,7 +2,7 @@
 
 App::uses('Security', 'Utility');
 if (!defined('FORMAT_DB_DATE')) {
-	define('FORMAT_DB_DATE', 'Y-m-d');
+	define('FORMAT_DB_DATETIME', 'Y-m-d H:i:s');
 }
 
 /**
@@ -32,8 +32,11 @@ class CaptchaLib {
 	
 	
 	/**
-	 * @param array $data
-	 * @param array $options
+	 * @param array $data:
+	 * - captcha_time, result/captcha
+	 * @param array $options:
+	 * - salt (required)
+	 * - checkSession, checkIp, hashType (all optional)
 	 * 2011-06-11 ms 
 	 */
 	public static function buildHash($data, $options, $init = false) {
@@ -42,7 +45,7 @@ class CaptchaLib {
 			$data['captcha'] = $data['result'];
 		}
 		
-		$hashValue = date(FORMAT_DB_DATE, (int)$data['captcha_time']).'_';
+		$hashValue = date(FORMAT_DB_DATETIME, (int)$data['captcha_time']).'_';
 		$hashValue .= ($options['checkSession'])?session_id().'_' : '';
 		$hashValue .= ($options['checkIp'])?env('REMOTE_ADDR').'_' : '';
 		$hashValue .= $data['captcha'];
@@ -50,96 +53,4 @@ class CaptchaLib {
 		return Security::hash($hashValue, isset($options['hashType']) ? $options['hashType'] : null, $options['salt']);
 	}
 
-}
-
-
-	/*
-	public function captcha_generate() {
-		// First of all we are going to set up an array with the text equivalents of all the numbers we will be using.
-		$captcha_number_convert = array(0=>'zero', 1=>'one', 2=>'two', 3=>'three', 4=>'four', 5=>'five', 6=>'six', 7=>'seven', 8=>'eight', 9=>'nine', 10=>'ten');
-		// Choose the first number randomly between 6 and 10. This is to stop the answer being negative.
-		$captcha_number_first = mt_rand(6, 10);
-		// Choose the second number randomly between 0 and 5.
-		$captcha_number_second = mt_rand(0, 5);
-		// Set up an array with the operators that we want to use. At this stage it is only subtraction and addition.
-		$captcha_operator_convert = array(0=>'+', 1=>'-');
-		// Choose the operator randomly from the array.
-		$captcha_operator = $captcha_operator_convert[mt_rand(0, 1)];
-		// Get the equation in textual form to show to the user.
-		$captcha_return = (mt_rand(0, 1) == 1 ? __($captcha_number_convert[$captcha_number_first]) : $captcha_number_first) . ' ' . $captcha_operator . ' ' . (mt_rand(0, 1) == 1 ? __($captcha_number_convert[$captcha_number_second]) : $captcha_number_second);
-		// Evaluate the equation and get the result.
-		eval('$captcha_result = ' . $captcha_number_first . ' ' . $captcha_operator . ' ' . $captcha_number_second . ';');
-		// Store the result in a session key.
-		$_SESSION['main_captcha'] = $captcha_result;
-		// Return the question so we can use it in our image.
-		return $captcha_return;
-	}
-
-
-	// DEPRECATED
-	public function captchas() {
-		// First off, we start by generating our math problem using the code we created in part one. This also does all the work of storing it in the session.
-		$captcha_code = $this->captcha_generate();
-
-		// Here are some user defined variables that you can set.
-		// This is the size of the font in points.
-		$captcha_font_size = 32;
-		// The dimensions of the image. Pretty simple, really! =]
-		$captcha_width = 480;
-		$captcha_height = 40;
-		// The possible angle of the characters in the word. If you do not want any rotation on the letters change it to 0, however 20 looks best in my opinion.
-		$captcha_angle = 20;
-
-		// Create an image object using the dimensions you entered above.
-		$captcha_image = imagecreate(480, 40);
-
-		// This is where we set the colours for each part of the captcha. The values are random so that bots cannot look at the same colour and develop a reading technique.
-		// This is the background colour, which always white.
-		$captcha_background_color = imagecolorallocate($captcha_image, 255, 255, 255);
-		// This is the text colour, which has random R, G and B values between 50 and 150.
-		$captcha_text_color = imagecolorallocate($captcha_image, mt_rand(50, 150), mt_rand(50, 150), mt_rand(50, 150));
-		// And finally, this is the colour of the background noise, which is once again random between 150 and 200 for R, G and B values.
-		$captcha_noise_color = imagecolorallocate($captcha_image, mt_rand(150, 200), mt_rand(150, 200), mt_rand(150, 200));
-
-		// This is a loop in which we add a whole bunch of random dots into the background. This is to generate the noise which makes it hard for bots to read.
-		for($i = 0; $i < 1600; $i++)
-		{
-			imagefilledellipse($captcha_image, mt_rand(0, $captcha_width), mt_rand(0, $captcha_height), 1, 1, $captcha_noise_color);
-		}
-
-		// And this is a look which adds a bunch of random lines in the background, which once again makes it hard for bots to try and read the captcha.
-		for($i = 0; $i < 32; $i++)
-		{
-			imageline($captcha_image, mt_rand(0, $captcha_width), mt_rand(0, $captcha_height), mt_rand(0, $captcha_width), mt_rand(0, $captcha_height), $captcha_noise_color);
-		}
-
-		// Okay, now for the part where we print the text onto the image.
-		// First, we make an array which contains each seperate chracter of the math problem.
-		$captcha_code_array = str_split($captcha_code);
-		// Now we calculate the dimensions of the captcha code in the right font size so we know where to position it on the canvas.
-		$captcha_textbox = imagettfbbox($captcha_font_size, 0, 'main_captcha_font.ttf', $captcha_code);
-		// Using those dimensions, we calculate the co-ordinates of the top left point of where we want to place our text, and we work from there.
-		// This is the x co-ordinate...
-		$captcha_x = ($captcha_width - $captcha_textbox[4]) / 2;
-		// ...And this is the y co-ordinate.
-		$captcha_y = ($captcha_height - $captcha_textbox[5]) / 2;
-
-		// Now for another loop. This time, this look prints each character one at a time onto the canvas.
-		for($i = 0; $i < count($captcha_code_array); $i++)
-		{
-			// We calculate the position of the character on the canvas, relative to the top left co-ordinate of the text box that we calculated before.
-			$captcha_item = (($captcha_x / strlen($captcha_code)) * $i) + ($captcha_width / 3);
-			// And now we draw it onto the canvas, with a random rotation between that which is specified at the top of this class.
-			imagettftext($captcha_image, $captcha_font_size, mt_rand(-$captcha_angle, $captcha_angle), $captcha_item, $captcha_y, $captcha_text_color, 'main_captcha_font.ttf', $captcha_code_array[$i]);
-		}
-
-		// Alright now that is all done, this is where we decide what type of image we want to output. The default in this script is PNG, but just swap the word png with gif or jpeg wherever it occurs in the next two lines of code.
-		// This is the header with the content type.
-		header('Content-Type: image/png');
-		// And this is the function that tells PHP to output out created image.
-		imagepng($captcha_image);
-
-		// Whatever the case, we want to destroy this image from the memory, or else PHP will hang onto it and start to eat up RAM.
-		imagedestroy($captcha_image);
-	}
-	*/
+}

Lib/DangerLib.php

@@ -0,0 +1,106 @@
+<?php
+
+App::uses('Xml', 'Utility');
+
+/**
+ * get dangerous strings for various security checks
+ * 
+ * used in configurations controller + debug helper
+ * 2010-07-30 ms
+ */
+class DangerLib {
+
+	const URL = 'http://ha.ckers.org/xssAttacks.xml';
+
+
+	/**
+	 * get dangerous sql strings to test with
+	 * @return array
+	 * @static
+	 * 2010-07-31 ms
+	 **/
+	public function sqlStrings($veryDangerousToo = false) {
+		/*
+		$res = array(
+			"SELECT * FROM users WHERE email = 'x'; INSERT INTO users ('username', 'password') VALUES ('x', 'y');--"
+		);
+		$veryDangerous = array(
+			"SELECT * FROM users WHERE email = 'x'; DROP TABLE users; --';  -- Boom!"
+		);
+		*/
+		$strings = array(
+			"x'; INSERT INTO users ('username', 'password') VALUES ('x', 'y')",
+		);
+
+		$veryDangerous = array(
+			"x'; DROP TABLE users; --",
+		);
+		if ($veryDangerousToo) {
+			$strings = array_merge($strings, $veryDangerous);
+		}
+		return $strings;
+	}
+
+
+	/**
+	 * get dangerous php strings to test with
+	 * @return array
+	 * @static
+	 * 2010-07-31 ms
+	 **/
+	public function phpStrings() {
+		$res = array(
+			'a:100000000:{}', # serialized objects run the magic _ _wakeup() function when they're unserialized
+			':3:"PDO":0:{}' # If the PDO extension is enabled -- and it is by default in PHP 5 -- you can cause a fatal error
+		);
+		return $res;
+	}
+
+
+	/**
+	 * get dangerous html strings to test with
+	 * @return array
+	 * @static
+	 * 2010-07-31 ms
+	 **/
+	public function xssStrings($cache = true) {
+		if ($cache) {
+			$texts = Cache::read('security_lib_texts');
+		}
+		if (empty($texts)) {
+			$texts = array();
+			$contents =  $this->_parseXml(self::URL);
+			foreach ($contents as $content) {
+				$texts[] = $content['code'];
+			}
+			if (empty($texts)) {
+				trigger_error('ha.ckers.org FAILED - XML not available', E_WARNING);
+				return array();
+			}
+			if ($cache) {
+				Cache::write('security_lib_texts', $texts);
+			}
+
+		}
+		return $texts;
+	}
+
+
+	/**
+	 * parse xml
+	 * 2010-02-07 ms
+	 */
+	public function _parseXml($file) {
+		$xml = Xml::build($file);
+		$res = Xml::toArray($xml);
+
+		if (!empty($res['xss']['attack'])) {
+			return (array)$res['xss']['attack'];
+		}
+
+		return array();
+	}
+
+}
+
+

Lib/ImapLib.php

@@ -0,0 +1,764 @@
+<?php
+/** 
+ * LICENSE: The MIT License 
+ * Copyright (c) 2010 Chris Nizzardini (http://www.cnizz.com)
+ */
+
+/**
+ * basic idea from
+ * http://www.phpclasses.org/package/6256-PHP-Retrieve-messages-from-an-IMAP-server.html
+ * added enhancements
+ * 
+ * @modified 2011-11-13 Mark Scherer
+ * @php 5
+ * @cakephp 2.0
+ * 
+ * ImapLib for accessing IMAP and POP email accounts 
+ * 2011-10-11 ms
+ */
+class ImapLib {
+
+	const S_MAILBOX = 'mailbox';
+	const S_SERVER = 'server';
+	const S_PORT = 'port';
+	const S_SERVICE = 'service';
+	const S_USER = 'user';
+	const S_PASSWORD = 'password';
+	const S_AUTHUSER = 'authuser';
+	const S_DEBUG = 'debug';
+	const S_SECURE = 'secure';
+	const S_NORSH = 'norsa';
+	const S_SSL = 'ssl';
+	const S_VALIDATECERT = 'validatecert';
+	const S_TLS = 'tls';
+	const S_NOTLS = 'notls';
+	const S_READONLY = 'readonly';
+
+	public $stream;
+
+	public $settings = array(
+		self::S_MAILBOX => 'INBOX',
+		self::S_SERVER => '',
+		self::S_PORT => '',
+		self::S_SERVICE => 'imap',
+		self::S_USER => false,
+		self::S_PASSWORD => '',
+		self::S_AUTHUSER => false,
+		self::S_DEBUG => false,
+		self::S_SECURE => false,
+		self::S_NORSH => false,
+		self::S_SSL => false,
+		self::S_VALIDATECERT => false,
+		self::S_TLS => false,
+		self::S_NOTLS => false,
+		self::S_READONLY => false
+	);
+
+	public $currentSettings = array();
+	public $currentRef = '';
+
+	public function buildConnector($data = array()) {
+		$data = array_merge($this->settings, $data);
+		$string = '{';
+		$string .= $data[self::S_SERVER];
+		if ($data[self::S_PORT]) {
+			$string .= ':' . $data[self::S_PORT];
+		}
+		if ($data[self::S_SERVICE]) {
+			$string .= '/service=' . $data[self::S_SERVICE];
+		}
+		if ($data[self::S_USER]) {
+			$string .= '/user=' . $data[self::S_USER];
+		} else {
+			$string .= '/anonymous';
+		}
+		if ($data[self::S_AUTHUSER]) {
+			$string .= '/authuser=' . $data[self::S_AUTHUSER];
+		}
+		if ($data[self::S_DEBUG]) {
+			$string .= '/debug';
+		}
+		if ($data[self::S_SECURE]) {
+			$string .= '/secure';
+		}
+		if ($data[self::S_NORSH]) {
+			$string .= '/norsh';
+		}
+		if ($data[self::S_SSL]) {
+			$string .= '/ssl';
+		}
+		if ($data[self::S_VALIDATECERT]) {
+			$string .= '/validate-cert';
+		} else {
+			$string .= '/novalidate-cert';
+		}
+		if ($data[self::S_TLS]) {
+			$string .= '/tls';
+		}
+		if ($data[self::S_NOTLS]) {
+			$string .= '/notls';
+		}
+		if ($data[self::S_READONLY]) {
+			$string .= '/readonly';
+		}
+		$string .= '}';
+
+		$string .= $data[self::S_MAILBOX];
+
+		$this->currentRef = $string;
+		$this->currentSettings = $data;
+		return $string;
+	}
+
+	public function set($key, $value) {
+		return $this->settings[$key] = $value;
+	}
+
+	public function lastError() {
+		return imap_last_error();
+	}
+
+	/**
+	 * @return bool $success
+	 * 2011-10-25 ms
+	 */
+	public function connect($user, $pass, $server, $port = null) {
+		if (!$this->dependenciesMatches()) {
+			return false;
+		}
+
+		$this->settings[self::S_SERVER] = $server;
+		if ($port || !$port && $this->settings[self::S_SERVICE] == 'imap') {
+			$this->settings[self::S_PORT] = $port;
+		}
+		$this->settings[self::S_USER] = $user;
+		$this->settings[self::S_PASSWORD] = $pass;
+		$connector = $this->buildConnector();
+		//die($connector);
+		$this->stream = @imap_open($connector, $user, $pass);
+		if (false === $this->stream) {
+			return false;
+		}
+		return true;
+	}
+
+	public function checkConnection() {
+		if ($this->stream) {
+			return $this->lastError();
+		}
+		return false;
+	}
+
+	public function msgCount() {
+		if ($error = $this->checkConnection()) {
+			return $error;
+		}
+		return imap_num_msg($this->stream);
+	}
+
+	public function listMailboxes($current = true) {
+		if ($error = $this->checkConnection()) {
+			return $error;
+		}
+		if (is_bool($current)) {
+			if ($current) {
+				$current = '%';
+			} else {
+				$current = '*';
+			}
+		}
+		return imap_list($this->stream, $this->currentRef, $current);
+	}
+
+
+	public function getFolder() {
+		return new ImapFolderLib($this);
+	}
+
+	public function expunge() {
+		if ($error = $this->checkConnection()) {
+			return $error;
+		}
+		return imap_expunge($this->stream);
+	}
+
+	public function close($expunge = false) {
+		if ($error = $this->checkConnection()) {
+			return $error;
+		}
+		if ($expunge) {
+			return @imap_close($this->stream, CL_EXPUNGE);
+		} else {
+			return @imap_close($this->stream);
+		}
+	}
+
+	public function __destruct() {
+		$this->close();
+	}
+
+	/**
+	 * main listing of messages
+	 * - body, structure, attachments
+	 * 2011-11-17 ms
+	 */
+	public function msgList($msg_list = array()) {
+		if ($this->stream) {
+			$return = array();
+
+			if (is_array($msg_list) or count($msg_list) == 0) {
+				$count = $this->msgCount();
+				for ($i = 1; $i <= $count; $i++) {
+					$header = imap_headerinfo($this->stream, $i);
+					foreach ($header as $id => $value) {
+						// Simple array
+						if (!is_array($value)) {
+							$return[$header->Msgno][$id] = $value;
+						} else {
+							foreach ($value as $newid => $array_value) {
+								foreach ($value[0] as $key => $aValue) {
+									$return[$header->Msgno][$id][$key] = quoted_printable_decode($aValue);
+								}
+							}
+						}
+						// Let's add the body
+						$return[$header->Msgno]['body'] = imap_fetchbody($this->stream, $header->Msgno, 1);
+
+						//lets add attachments
+						$return[$header->Msgno]['structure'] = imap_fetchstructure($this->stream, $header->Msgno, 1);
+						$return[$header->Msgno]['attachments'] = $this->attachments($header);
+					}
+				}
+			}
+			// We want to search a specific array of messages
+			else {
+				foreach ($msg_list as $i) {
+					$header = imap_headerinfo($this->stream, $i);
+					foreach ($header as $id => $value) {
+						// Simple array
+						if (!is_array($value)) {
+							$return[$header->Msgno][$id] = $value;
+						} else {
+							foreach ($value as $newid => $array_value) {
+								foreach ($value[0] as $key => $aValue) {
+									$return[$header->Msgno][$id][$key] = $this->_quoted_printable_encode($aValue);
+								}
+							}
+						}
+						// Let's add the body too!
+						$return[$header->Msgno]['body'] = imap_fetchbody($this->stream, $header->Msgno, 0);
+						$return[$header->Msgno]['structure'] = imap_fetchstructure($this->stream, $header->Msgno);
+						$return[$header->Msgno]['attachments'] = $this->attachments($header);
+					}
+				}
+			}
+
+			#$return['num_of_msgs'] = count($return);
+			return $return;
+		}
+
+		return imap_last_error();
+	}
+
+	/**
+	 * @see http://www.nerdydork.com/download-pop3imap-email-attachments-with-php.html
+	 * 2011-09-02 ms
+	 */
+	public function attachments($header) {
+		$structure = imap_fetchstructure($this->stream, $header->Msgno, FT_UID);
+		$parts = $structure->parts;
+		$fpos = 2;
+		$message = array();
+		$message["attachment"]["type"][0] = "text";
+		$message["attachment"]["type"][1] = "multipart";
+		$message["attachment"]["type"][2] = "message";
+		$message["attachment"]["type"][3] = "application";
+		$message["attachment"]["type"][4] = "audio";
+		$message["attachment"]["type"][5] = "image";
+		$message["attachment"]["type"][6] = "video";
+		$message["attachment"]["type"][7] = "other";
+
+		$attachments = array();
+		for ($i = 1; $i < count($parts); $i++) {
+			$attachment = array();
+			$part = $parts[$i];
+			if (isset($part->disposition) && $part->disposition == "ATTACHMENT") {
+				$attachment["pid"] = $i;
+				$attachment["type"][$i] = $message["attachment"]["type"][$part->type] . "/" . strtolower($part->subtype);
+				$attachment["subtype"][$i] = strtolower($part->subtype);
+				$ext = $part->subtype;
+				$params = $part->dparameters;
+
+				$mege = "";
+				$data = "";
+				$mege = imap_fetchbody($this->stream, $header->Msgno, $fpos);
+				$attachment['filename'] = $part->dparameters[0]->value;
+				$attachment['data'] = $this->_getDecodedValue($mege, $part->type);
+				$attachment['filesize'] = strlen($attachment['data']);
+
+				$fpos++;
+				$attachments[] = $attachment;
+			}
+		}
+		return $attachments;
+	}
+
+	/**
+	 * @see http://www.nerdydork.com/download-pop3imap-email-attachments-with-php.html
+	 * 2011-09-02 ms
+	 */
+	public function _getDecodedValue($message, $coding) {
+		if ($coding == 0) {
+			$message = imap_8bit($message);
+		} elseif ($coding == 1) {
+			$message = imap_8bit($message);
+		} elseif ($coding == 2) {
+			$message = imap_binary($message);
+		} elseif ($coding == 3) {
+			$message = imap_base64($message);
+		} elseif ($coding == 4) {
+			$message = imap_qprint($message);
+		} elseif ($coding == 5) {
+			$message = imap_base64($message);
+		}
+		return $message;
+	}
+
+	public function search($params) {
+		if ($this->stream) {
+			if (is_array($params)) {
+				$search_string = '';
+				foreach ($params as $field => $value) {
+					if (is_numeric($field)) {
+						// Make sure the value is uppercase
+						$search_string .= strtoupper($value) . ' ';
+					} else {
+						$search_string .= strtoupper($field) . ' "' . $value . '" ';
+					}
+				}
+
+				// Perform the search
+				#echo "'$search_string'";
+				return imap_search($this->stream, $search_string);
+			} else {
+				return imap_last_error();
+			}
+		}
+
+		return imap_last_error();
+	}
+
+	public function flag($flag) {
+		return imap_setflag_full($this->ImapFolder->Imap->stream, $this->uid, $flag, ST_UID);
+	}
+
+	/** testing only **/
+	public function delete($emails, $delete = false) {
+		$emails = (array )$emails;
+		foreach ($emails as $email) {
+			if ($delete) {
+				imap_delete($this->stream, (int)$email);
+			} else {
+				imap_mail_move($this->stream, (int)$email, "Inbox/Trash");
+			}
+		}
+		return imap_expunge($this->stream);
+	}
+
+	/**
+	 * deprecated
+	 */
+	public function delx($emails, $delete = false) {
+		if (!$this->stream) {
+			return false;
+		}
+		$emails = (array )$emails;
+		foreach ($emails as $key => $val) {
+			$emails[$key] = (int)$val;
+		}
+
+		// Let's delete multiple emails
+		if (count($emails) > 0) {
+			$delete_string = '';
+			$email_error = array();
+			foreach ($emails as $email) {
+				if ($delete) {
+					if (!imap_delete($this->stream, $email)) {
+						$email_error[] = $email;
+					}
+				}
+			}
+			if (!$delete) {
+				// Need to take the last comma out!
+				$delete_string = implode(',', $emails);
+				echo $delete_string;
+				imap_mail_move($this->stream, $delete_string, "Inbox/Trash");
+				//imap_expunge($this->stream);
+			} else {
+				// NONE of the emails were deleted
+				//imap_expunge($this->stream);
+
+				if (count($email_error) === count($emails)) {
+					return imap_last_error();
+				} else {
+					$return['status'] = false;
+					$return['not_deleted'] = $email_error;
+					return $return;
+				}
+			}
+		}
+		// Not connected
+		return imap_last_error();
+	}
+
+	public function switch_mailbox($mailbox = '') {
+		if ($this->stream) {
+			$this->mbox = '{' . $this->server;
+
+			if ($this->port) {
+				$this->mbox .= ':' . $this->port;
+			}
+
+			if ($this->flags) {
+				$this->mbox .= $this->flags;
+			}
+
+			$this->mbox .= '/user="' . $this->user . '"';
+			$this->mbox .= '}';
+			$this->mbox .= $this->default_mailbox;
+
+			if ($mailbox) {
+				$this->mbox .= '.' . $mailbox;
+			}
+
+			return @imap_reopen($this->stream, $this->mbox);
+		}
+
+		// Not connected
+		return imap_last_error();
+	}
+
+	public function current_mailbox() {
+		if ($this->stream) {
+			$info = imap_mailboxmsginfo($this->stream);
+			if ($info) {
+				return $info->Mailbox;
+			} else {
+				// There was an error
+				return imap_last_error();
+			}
+		}
+
+		// Not connected
+		return imap_last_error();
+	}
+
+	public function mailbox_info($type = 'obj') {
+		if ($this->stream) {
+			$info = imap_mailboxmsginfo($this->stream);
+			if ($info) {
+				if ($type == 'array') {
+					$info_array = get_object_vars($info);
+					return $info_array;
+				} else {
+					return $info;
+				}
+			} else {
+				// There was an error
+				return imap_last_error();
+			}
+		}
+
+		// Not connected
+		return imap_last_error();
+	}
+
+	/**
+	 * makes sure imap_open is available etc
+	 * @return bool $success
+	 * 2011-10-25 ms
+	 */
+	public function dependenciesMatches() {
+		if (!function_exists('imap_open')) {
+			trigger_error('imap_open not available. Please install extension/module.');
+			return false;
+		}
+		return true;
+	}
+
+
+}
+
+
+/**
+ * IMAP Postf�cher mit CakePHP abfragen
+ * @see http://www.interaktionsdesigner.de/2009/05/11/imap-postfacher-mit-cakephp-abfragen/
+ * 
+ * $this->Imap->connect();
+ * Der R�ckgabewert dieser Funktion ist negativ wenn es nicht funktioniert hat.
+ * 
+ * Eine gute Hilfe gegen verr�ckte Sonderzeichen und Kodierungen ist die Kombination von utf8_encode und quoted_printable_decode. Damit werden die meisten Umlaute richtig dargestellt.
+ * F�r den Text der Mail w�re das dann innerhalb der foreach-Schleife:
+ * debug(utf8_encode(quoted_printable_decode($message['body'])));
+ * 
+ * fixes: pop3 connect etc
+ * 2011-09-02 ms
+ */
+class ImapMessageInfoLib {
+
+	const BS = "\\";
+
+	public $ImapFolder;
+	public $ImapMessage;
+
+	public $subject;
+	public $from;
+	public $to;
+	public $date;
+	public $message_id;
+	public $references;
+	public $in_reply_to;
+	public $size;
+	public $uid;
+	public $msgno;
+	public $recent;
+	public $flagged;
+	public $answered;
+	public $deleted;
+	public $seen;
+	public $draft;
+
+	public function __construct($ImapFolder, $data) {
+		if (!is_object($data)) {
+			$list = new ImapMessagesListLib($ImapFolder, array($data));
+			$list = $list->overview(false);
+			$data = $list[0];
+		}
+		foreach ($data as $key => $value) {
+			$this->{$key} = $value;
+		}
+		$this->ImapFolder = $ImapFolder;
+	}
+
+	public function messageObject() {
+		if (!isset($this->ImapMessage)) {
+			return $this->ImapMessage = new ImapMessageLib($this->ImapFolder, $this->uid, $this);
+		} else {
+			return $this->ImapMessage;
+		}
+	}
+
+	public function flag($flag) {
+		return imap_setflag_full($this->ImapFolder->Imap->stream, $this->uid, $flag, ST_UID);
+	}
+
+	public function unFlag($flag) {
+		return imap_clearflag_full($this->ImapFolder->Imap->stream, $this->uid, $flag, ST_UID);
+	}
+
+	public function seen($set = null) {
+		if ($set === null) {
+			return $this->seen;
+		} elseif ($set) {
+			return $this->flag(self::BS . 'Seen');
+		} else {
+			return $this->unFlag(self::BS . 'Seen');
+		}
+	}
+
+	public function answered($set = null) {
+		if ($set === null) {
+			return $this->answered;
+		} elseif ($set) {
+			return $this->flag(self::BS . 'Answered');
+		} else {
+			return $this->unFlag(self::BS . 'Answered');
+		}
+	}
+
+	public function flagged($set = null) {
+		if ($set === null) {
+			return $this->flagged;
+		} elseif ($set) {
+			return $this->flag(self::BS . 'Flagged');
+		} else {
+			return $this->unFlag(self::BS . 'Flagged');
+		}
+	}
+
+	public function deleted($set = null) {
+		if ($set === null) {
+			return $this->deleted;
+		} elseif ($set) {
+			return $this->flag(self::BS . 'Deleted');
+		} else {
+			return $this->unFlag(self::BS . 'Deleted');
+		}
+	}
+
+	public function draft($set = null) {
+		if ($set === null) {
+			return $this->draft;
+		} elseif ($set) {
+			return $this->flag(self::BS . 'Draft');
+		} else {
+			return $this->unFlag(self::BS . 'Draft');
+		}
+	}
+
+}
+
+class ImapMessageLib {
+
+	public $ImapFolder;
+	public $MessageInfo;
+	public $uid;
+
+	public function __construct($ImapFolder, $uid, $ImapMessageInfo = null) {
+		$this->ImapFolder = $ImapFolder;
+		if ($ImapMessageInfo === null) {
+			$this->MessageInfo = new ImapMessageInfoLib($this->ImapFolder, $uid);
+		} else {
+			$this->MessageInfo = $ImapMessageInfo;
+		}
+		$this->MessageInfo->ImapMessage = $this;
+		$this->uid = $uid;
+	}
+
+	public function move($folder) {
+
+	}
+
+	public function id() {
+		//CHANGE DIR TO CURRENT
+		return imap_msgno($this->ImapFolder->Imap->stream, $this->uid);
+	}
+
+	public function uid($ID) {
+		return $this->uid;
+	}
+
+	public function fetchstructure() {
+		return imap_fetchstructure($this->ImapFolder->Imap->stream, $this->uid, FT_UID);
+	}
+
+	public function fetchbody($section = 0) {
+		return imap_fetchbody($this->ImapFolder->Imap->stream, $this->uid, $section, (FT_UID + FT_PEEK));
+	}
+
+}
+
+class ImapMessagesListLib {
+
+	public $ImapFolder;
+	public $messageUIDs = array();
+
+	public function __construct($ImapFolder, $messageUIDs) {
+		$this->ImapFolder = $ImapFolder;
+		$this->messageUIDs = $messageUIDs;
+	}
+
+	public function messgageObject($id) {
+		if (isset($this->messageUIDs[$id])) {
+			if (is_object($this->messageUIDs[$id])) {
+				return $this->messageUIDs[$id];
+			} else {
+				return $this->messageUIDs[$id] = new ImapMessageLib($this->ImapFolder, $this->messageUIDs[$id]);
+			}
+		}
+		return false;
+	}
+
+	public function count() {
+		return count($this->messageUIDs);
+	}
+
+	public function overview($returnInfo = true) {
+		//CHANGE DIR TO CURRENT
+		$overview = imap_fetch_overview($this->ImapFolder->Imap->stream, implode(',', $this->messageUIDs), FT_UID);
+		if ($returnInfo) {
+			$msgObjs = array();
+			foreach ($overview as $info) {
+				$msgObjs[] = new ImapMessageInfoLib($this->ImapFolder, $info);
+			}
+			return $msgObjs;
+		} else {
+			return $overview;
+		}
+	}
+
+}
+
+
+class ImapFolderLib {
+
+	const S_ALL = 'ALL';
+	const S_ANSWERED = 'ANSWERED';
+	const S_BCC = 'BCC';
+	const S_BEFORE = 'BEFORE';
+	const S_BODY = 'BODY';
+	const S_CC = 'CC';
+	const S_DELETED = 'DELETED';
+	const S_FLAGGED = 'FLAGGED';
+	const S_FROM = 'FROM';
+	const S_KEYWORD = 'KEYWORD';
+	const S_NEW = 'NEW';
+	const S_OLD = 'OLD';
+	const S_ON = 'ON';
+	const S_RECENT = 'RECENT';
+	const S_SEEN = 'SEEN';
+	const S_SINCE = 'SINCE';
+	const S_SUBJECT = 'SUBJECT';
+	const S_TEXT = 'TEXT';
+	const S_TO = 'TO';
+	const S_UNANSWERED = 'UNANSWERED';
+	const S_UNDELETED = 'UNDELETED';
+	const S_UNFLAGGED = 'UNFLAGGED';
+	const S_UNKEYWORD = 'UNKEYWORD';
+	const S_UNSEEN = 'UNSEEN';
+
+
+	public $Imap;
+	public $currentRef = '';
+
+
+	public function __construct($Imap) {
+		$this->Imap = $Imap;
+		$this->currentRef = $this->Imap->currentRef;
+	}
+
+	public function listFolder() {
+
+	}
+
+	public function searchMessages($options = array(self::ALL)) {
+		$optionstring = '';
+		foreach ($options as $key => $value) {
+			if (is_int($key)) {
+				$key = $value;
+				$value = null;
+			}
+			switch ($key) {
+				case self::S_FROM:
+					$param = '"' . $value . '" ';
+					break;
+				default:
+					$param = '';
+					break;
+			}
+			$optionstring .= $key . ' ' . $param;
+		}
+		//CHANGE DIR TO CURRENT
+		$msg = imap_search($this->Imap->stream, $optionstring, SE_UID);
+		if ($msg !== false) {
+			return new ImapMessagesListLib($this, $msg);
+		}
+		return false;
+	}
+
+	public function allMessages() {
+		return $this->searchMessages();
+	}
+
+
+}

Test/Case/Lib/CaptchaLibTest.php

@@ -0,0 +1,37 @@
+<?php
+
+App::uses('CaptchaLib', 'Tools.Lib');
+App::uses('File', 'Utility');
+App::uses('MyCakeTestCase', 'Tools.Lib');
+
+/**
+ * 2010-09-10 ms
+ */
+class CaptchaLibTest extends MyCakeTestCase {
+
+	public function setUp() {
+		$this->Brita = new CaptchaLib();
+	}
+
+	public function tearDown() {
+		unset($this->Brita);
+	}
+
+	public function testBuildHash() {
+		$data = array(
+			'captcha_time' => time(),
+			'captcha' => '2'
+		);
+		$options = array(
+			'salt' => 'xyz',
+			'checkIp' => true,
+			'checkSession' => true
+		);
+		$res = CaptchaLib::buildHash($data, $options);
+		pr($res);	
+		$this->assertTrue(strlen($res) == 40);
+	}
+
+
+
+}

Test/Case/Lib/DangerLibTest.php

@@ -0,0 +1,59 @@
+<?php
+
+App::uses('DangerLib', 'Tools.Lib');
+
+class DangerLibTest extends CakeTestCase {
+
+
+	public function setUp() {
+		$this->DangerLib = new DangerLib();
+	}
+
+
+	/**
+	 * 2010-02-07 ms
+	 */
+	public function _testParse() {
+
+		$is = $this->DangerLib->_parseXml(DangerLib::URL);
+		pr(h($is));
+		$this->assertTrue(!empty($is));
+		$this->assertEqual(count($is), 113);
+	}
+
+
+	/**
+	 * 2010-02-07 ms
+	 */
+	public function testXssStrings() {
+
+		$is = $this->DangerLib->xssStrings(false);
+		pr(h($is));
+		$this->assertTrue(!empty($is));
+
+		# cached
+		Cache::delete('security_lib_texts');
+
+		$is = $this->DangerLib->xssStrings();
+		pr(h($is));
+		$this->assertTrue(!empty($is) && count($is), 113);
+
+		$is = $this->DangerLib->xssStrings();
+		pr(h($is));
+		$this->assertTrue(!empty($is) && count($is), 113);
+
+	}
+	
+	public function testPhp() {
+		$is = $this->DangerLib->phpStrings();
+		pr(h($is));
+	}
+	
+	public function testSql() {
+		$is = $this->DangerLib->sqlStrings();
+		pr(h($is));
+	}
+
+
+}
+

Test/Case/Lib/ImapLibTest.php

@@ -0,0 +1,24 @@
+<?php
+
+App::uses('ImapLib', 'Tools.Lib');
+App::uses('MyCakeTestCase', 'Tools.Lib');
+
+class ImapLibTest extends MyCakeTestCase {
+	
+	public function setUp() {
+		$this->ImapLib = new ImapLib();
+	}
+	
+	public function tearDown() {
+		
+	}
+	
+	public function testObject() {
+		$this->assertTrue(is_a($this->ImapLib, 'ImapLib'));
+	}
+		
+	public function testX() {
+		//TODO
+	}
+	
+}