Is anyone using BoltWire for newsletters and the like? I find it's mailing list capabilities quite good (esp with the newsletter plugin), but I just discovered a way to improve it.
I was researching how to get the Return-Path header correct. Easy enough. In the process, I noticed how easy it would be to send CC and BCC emails. For example, suppose you used the logging function to allow members to add their email address (from their profile) to a list somewhere. Then in the mail function you simply do BCC=some.list. Automatic, instant sending out to everyone on the list. Or better still, how about group=editor, and your email goes to automatically (BCC) to everyone in the editors group. For the latter, you just need to retrieve each email from their profile. The code is trivial. The problem is security. How do I limit this kind of functionality? One idea is to only allow admins access to the group or CC/BCC functions. Or we could rely on current authorizations controls, perhaps with an added site.auth.email.cc or site.auth.email.bcc. Perhaps a config flag that has to be flipped on to allow. Or should it be left strictly for a plugin--perhaps via a simple hook? For that matter, should the newsletter plugin be modified somehow so it has an option to send out bulk email much faster. IE, 25 BCC at a shot, rather than one at a time. The mail merge is nice, but not critical usually. Just thinking out loud, But the possibilities excite me. I do a lot of stuff with emails and groups (classes) and newsletters and the like. So while really simple in terms of code, it's a pretty big breakthrough for me. Feedback on the security issue is welcome. Cheers, Dan --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "BoltWire" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/boltwire?hl=en -~----------~----~----~----~------~----~------~--~---
