diff --git a/ajax.php b/ajax.php index 27fd0b9b..fb699daf 100644 --- a/ajax.php +++ b/ajax.php @@ -279,7 +279,7 @@ if (isset($_GET['share_generate_link'])) { } // Insert entry into DB - $sql = mysqli_query($mysqli, "INSERT INTO shared_items SET item_active = 1, item_key = '$item_key', item_type = '$item_type', item_related_id = $item_id, item_encrypted_username = '$item_encrypted_username', item_encrypted_credential = '$item_encrypted_credential', item_note = '$item_note', item_views = 0, item_view_limit = $item_view_limit, item_expire_at = NOW() + INTERVAL + $item_expires, item_client_id = $client_id"); + $sql = mysqli_query($mysqli, "INSERT INTO shared_items SET item_active = 1, item_key = '$item_key', item_type = '$item_type', item_related_id = $item_id, item_encrypted_username = '$item_encrypted_username', item_encrypted_credential = '$item_encrypted_credential', item_note = '$item_note', item_recipient = '$item_email', item_views = 0, item_view_limit = $item_view_limit, item_expire_at = NOW() + INTERVAL + $item_expires, item_client_id = $client_id"); $share_id = $mysqli->insert_id; // Return URL @@ -310,6 +310,9 @@ if (isset($_GET['share_generate_link'])) { } $body = "Hello,

$session_name from $company_name sent you a time sensitive secure link regarding \"$item_name\".

The link will expire in $item_expires_friendly and may only be viewed $item_view_limit times, before the link is destroyed.

Click here to access your secure content

--
$company_name - Support
$config_ticket_from_email
$company_phone"; + // Add the intended recipient disclosure + $body .= "

This email and any attachments are confidential and intended for the specified recipient(s) only. If you are not the intended recipient, please notify the sender and delete this email. Unauthorized use, disclosure, or distribution is prohibited."; + $data = [ [ 'from' => $config_mail_from_email, diff --git a/guest_view_item.php b/guest_view_item.php index 2352dc46..b9c8efda 100644 --- a/guest_view_item.php +++ b/guest_view_item.php @@ -69,10 +69,12 @@ if ($row['item_active'] !== "1" || ($row['item_view_limit'] > 0 && $row['item_vi $item_type = nullable_htmlentities($row['item_type']); $item_related_id = intval($row['item_related_id']); $item_encrypted_credential = nullable_htmlentities($row['item_encrypted_credential']); +$item_recipient = nullable_htmlentities($row['item_recipient']); $item_note = nullable_htmlentities($row['item_note']); $item_views = intval($row['item_views']); +$item_view_limit = intval($row['item_view_limit']); $item_created = nullable_htmlentities($row['item_created_at']); -$item_expire = nullable_htmlentities($row['item_expire_at']); +$item_expire = date('Y-m-d h:i A', strtotime($row['item_expire_at'])); $client_id = intval($row['item_client_id']); ?> @@ -86,8 +88,24 @@ $client_id = intval($row['item_client_id']); ?>
+
+
+
Secure Message intended for:
+
+ +
+
+ $item_view_limit"; ?> +
+
+ $item_expire"; ?> +
+
+
+
+ purify($doc_row['document_content']); - echo "

$doc_title

"; + echo "

$doc_title

"; echo $doc_content; // Update document view count @@ -176,7 +194,7 @@ if ($item_type == "Document") { ?> -

+
@@ -235,6 +253,11 @@ if ($item_type == "Document") { ?> +
+ + This message and any attachments are confidential and intended for the specified recipient(s) only. If you are not the intended recipient, please notify us immediately with the contact info below. Unauthorized use, disclosure, or distribution is prohibited. + +
$company_phone | $company_website"; ?>
URL