<?php
-/* vim: set ts=4 tw=4 sw=4 noet: */
+/* vim: set ts=4 tw=0 sw=4 noet: */
require_once 'Mail/mimeDecode.php';
require_once 'config.php';
require_once $CFG->root . 'lib/db_factory.php';
$id = $_GET['id'];
$id = urldecode($id);
+ $mail = unserialize($_SESSION['mailInfo'][$id]);
+
+ if (! is_object($mail) || false == $util->authorized($mail->recipient)) {
+ header('Location: qtadmin.php');
+ exit;
+ }
+
$util->setHeading("Message ID : $id");
echo $util->getHeader();
echo $util->getHeading();
- $mail = unserialize($_SESSION['mailInfo'][$id]);
-
$row = $DB->getMail($id);
$string = $row->mail_text;
$sa_tests = null;
onclick="javascript: history.back();"/></td>';
echo '</tr></table>';
- echo '<table><tr>';
+ echo '<table>';
$from = $headers['from'];
$from = str_replace("<", "<", $from);
$from = str_replace(">", ">", $from);
echo '</td></tr></table>';
echo $util->getFooter();
} else if ($loggedIn) {
- header('Location: index.php');
+ header('Location: qtadmin.php');
} else {
header('Location: auth.php');
}