Implemented echoarea/filearea security

app/Notifications/Netmails/EchoareaNoWrite.php

@@ -0,0 +1,74 @@
+<?php
+
+namespace App\Notifications\Netmails;
+
+use Carbon\Carbon;
+use Illuminate\Support\Facades\Log;
+
+use App\Classes\FTN\Message;
+use App\Notifications\Netmails;
+use App\Models\{Netmail,System};
+use App\Traits\{MessagePath,PageTemplate};
+
+class EchoareaNoWrite extends Netmails
+{
+	use MessagePath,PageTemplate;
+
+	private const LOGKEY = 'NNW';
+
+	private Message $mo;
+
+	/**
+	 * Send a sysop a message if they attempt to write to an area that they dont have permission.
+	 *
+	 * @param Message $mo
+	 */
+	public function __construct(Message $mo)
+	{
+		parent::__construct();
+
+		$this->mo = $mo;
+	}
+
+	/**
+	 * Get the mail representation of the notification.
+	 *
+	 * @param System $so
+	 * @param mixed $notifiable
+	 * @return Netmail
+	 * @throws \Exception
+	 */
+	public function toNetmail(System $so,object $notifiable): Netmail
+	{
+		$o = $this->setupNetmail($so,$notifiable);
+		$ao = $notifiable->routeNotificationFor(static::via);
+
+		Log::info(sprintf('%s:+ Creating ECHOMAIL NO WRITE netmail to [%s]',self::LOGKEY,$ao->ftn));
+
+		$o->subject = 'Echomail rejected - '.$this->mo->msgid;
+
+		// Message
+		$msg = $this->page(FALSE,'nowrite');
+
+		$msg->addText(
+			sprintf("Your echomail with ID [%s] to [%s] here was received here on [%s] and it looks like you sent it on [%s].\r\r",
+				$this->mo->msgid,
+				$this->mo->user_to,
+				Carbon::now()->utc()->toDateTimeString(),
+				$this->mo->date->utc()->toDateTimeString(),
+			)
+		);
+
+		$msg->addText("It appears that you do not have permission to post in this echoarea, so the message from your system was rejected.\r\r");
+		$msg->addText("Please contact the ZC if you think this is a mistake.\r\r");
+
+		$msg->addText($this->message_path($this->mo));
+
+		$o->msg = $msg->render();
+		$o->tagline = 'See something wrong? Do something right.';
+
+		$o->save();
+
+		return $o;
+	}
+}