<?php

defined('ABSPATH') or die("you do not have access to this page!");

if ( ! class_exists( 'rsssl_multisite' ) ) {
  class rsssl_multisite {
    private static $_this;

    public $option_group = "rsssl_network_options";
    public $page_slug = "really-simple-ssl";
    public $section = "rsssl_network_options_section";
    public $ssl_enabled_networkwide;
    public $selected_networkwide_or_per_site;

    public $wp_redirect;
    public $htaccess_redirect;
    public $do_not_edit_htaccess;
    public $autoreplace_mixed_content;
    public $javascript_redirect;
    public $hsts;
    public $mixed_content_admin;
    public $cert_expiration_warning;
    public $hide_menu_for_subsites;

    private $pro_url = "https://www.really-simple-ssl.com/pro-multisite";

  function __construct() {
    if ( isset( self::$_this ) )
        wp_die( sprintf( __( '%s is a singleton class and you cannot create a second instance.','really-simple-ssl' ), get_class( $this ) ) );

    self::$_this = $this;

    $this->load_options();
    register_activation_hook(  dirname( __FILE__ )."/".rsssl_plugin, array($this,'activate') );

    /*filters to make sure WordPress returns the correct protocol */
    add_filter("admin_url", array($this, "check_admin_protocol"), 20, 3 );
    add_filter('home_url', array($this, 'check_site_protocol') , 20,4);
    add_filter('site_url', array($this, 'check_site_protocol') , 20,4);

    add_action("plugins_loaded", array($this, "process_networkwide_choice"), 10, 0);
    add_action("plugins_loaded", array($this, "networkwide_choice_notice"), 20, 0);

    add_action('network_admin_menu', array( &$this, 'add_multisite_menu' ) );
    add_action('network_admin_edit_rsssl_update_network_settings',  array($this,'update_network_options'));

    if (is_network_admin()) {
      add_action('network_admin_notices', array($this, 'show_notices'), 10);
      add_action('admin_print_footer_scripts', array($this, 'insert_dismiss_success'));
    }

    add_action('wp_ajax_dismiss_success_message_multisite', array($this,'dismiss_success_message_callback') );

    add_action('wp_ajax_rsssl_pro_dismiss_pro_option_notice', array($this,'dismiss_pro_option_notice') );
    add_action("network_admin_notices", array($this, 'show_pro_option_notice'));

    add_action("rsssl_show_network_tab_settings", array($this, 'settings_tab'));

    add_action( 'wpmu_new_blog', array($this, 'maybe_activate_ssl_in_new_blog'), 10, 6 );

  }

  static function this() {
    return self::$_this;
  }

  /*

      When a new site is added, maybe activate SSL as well.

  */

  public function maybe_activate_ssl_in_new_blog( $blog_id, $user_id, $domain, $path, $site_id, $meta ) {
    if ($this->ssl_enabled_networkwide) {
        $site = get_blog_details($blog_id);
        $this->switch_to_blog_bw_compatible($site);
        RSSSL()->really_simple_ssl->activate_ssl();
        restore_current_blog(); //switches back to previous blog, not current, so we have to do it each loop
      }
  }




  public function networkwide_choice_notice(){

    if ($this->plugin_network_wide_active() && !$this->selected_networkwide_or_per_site) {
      add_action('network_admin_notices', array($this, 'show_notice_activate_networkwide'), 10);
    }
  }

  public function load_options(){
    $options = get_site_option('rlrsssl_network_options');
    $this->selected_networkwide_or_per_site = isset($options["selected_networkwide_or_per_site"]) ? $options["selected_networkwide_or_per_site"] : false;
    $this->ssl_enabled_networkwide = isset($options["ssl_enabled_networkwide"]) ? $options["ssl_enabled_networkwide"] : false;
    $this->wp_redirect  = isset($options["wp_redirect"]) ? $options["wp_redirect"] : false;
    $this->htaccess_redirect = isset($options["htaccess_redirect"]) ? $options["htaccess_redirect"] : false;
    $this->do_not_edit_htaccess = isset($options["do_not_edit_htaccess"]) ? $options["do_not_edit_htaccess"] : false;
    $this->autoreplace_mixed_content = isset($options["autoreplace_mixed_content"]) ? $options["autoreplace_mixed_content"] : false;
    $this->javascript_redirect = isset($options["javascript_redirect"]) ? $options["javascript_redirect"] : false;
    $this->hsts = isset($options["hsts"]) ? $options["hsts"] : false;
    $this->mixed_content_admin = isset($options["mixed_content_admin"]) ? $options["mixed_content_admin"] : false;
    $this->cert_expiration_warning = isset($options["cert_expiration_warning"]) ? $options["cert_expiration_warning"] : false;
    $this->hide_menu_for_subsites = isset($options["hide_menu_for_subsites"]) ? $options["hide_menu_for_subsites"] : false;
  }


  /**
   * On plugin activation, we can check if it is networkwide or not.
   *
   * @since  2.1
   *
   * @access public
   *
   */

  public function activate($networkwide) {
    //if networkwide, we ask, if not, we set it as selected.
    if (!$networkwide) {
        $this->selected_networkwide_or_per_site = true;
        $this->ssl_enabled_networkwide = false;
        $this->save_options();
    }

  }

  /*

      Add network menu for SSL
      Only when plugin is network activated.

  */

  public function add_multisite_menu(){
    if (!$this->plugin_network_wide_active()) return;

    register_setting( $this->option_group, 'rsssl_options');
    add_settings_section('rsssl_network_settings', __("Settings","really-simple-ssl"), array($this,'section_text'), $this->page_slug);
    
    //if (RSSSL()->really_simple_ssl->site_has_ssl) {
        add_settings_field('id_ssl_enabled_networkwide', __("Enable SSL", "really-simple-ssl"), array($this,'get_option_enable_multisite'), $this->page_slug, 'rsssl_network_settings');
        //if ($this->selected_networkwide_or_per_site) {
        RSSSL()->rsssl_network_admin_page = add_submenu_page('settings.php', "SSL", "SSL", 'manage_options', $this->page_slug, array( &$this, 'multisite_menu_page' ) );
        //}
     // }
    }

  /*
      Shows the content of the multisite menu page
  */

  public function section_text(){
    if (!RSSSL()->really_simple_ssl->site_has_ssl) {
      ?>
      <p>
        <?php _e("No SSL was detected. If you do have an SSL certificate, try to reload this page over https by clicking this link:","really-simple-ssl");?>&nbsp;<a href="<?php echo $current_url?>"><?php _e("reload over https.","really-simple-ssl");?></a>
        <?php _e("You can check your certificate on","really-simple-ssl");?>&nbsp;<a target="_blank" href="https://www.ssllabs.com/ssltest/">Qualys SSL Labs</a>
      </p>
      <?php
    } else {
      _e("Below you can set the multisite options for Really Simple SSL","really-simple-ssl");
    }
  }

  public function get_option_enable_multisite(){
      ?>
      <select name="rlrsssl_network_options[ssl_enabled_networkwide]">
        <?php if (!$this->selected_networkwide_or_per_site) {?>
        <option value="-1" <?php if (!$this->selected_networkwide_or_per_site) echo "selected";?>><?php _e("No selection was made", "really-simple-ssl")?>
        <?php }?>
        <option value="1" <?php if ($this->ssl_enabled_networkwide) echo "selected";?>><?php _e("networkwide", "really-simple-ssl")?>
        <option value="0" <?php if (!$this->ssl_enabled_networkwide) echo "selected";?>><?php _e("per site", "really-simple-ssl")?>
      </select>
      <?php

      //echo '<input id="rlrsssl_options" name="rlrsssl_network_options[ssl_enabled_networkwide]" size="40" type="checkbox" value="1"' . checked( 1, $this->ssl_enabled_networkwide, false ) ." />";
      rsssl_help::this()->get_help_tip(__("Select to enable SSL networkwide or per site.", "really-simple-ssl"));
  }


/**
 * Displays the options page. The big difference here is where you post the data
 * because, unlike for normal option pages, there is nowhere to process it by
 * default so we have to create our own hook to process the saving of our options.
 */

 public function multisite_menu_page() {
   $tab = "settings";
  if ( isset ( $_GET['tab'] ) ) $tab = $_GET['tab'];
  $this->admin_tabs($tab);

  do_action("rsssl_show_network_tab_{$tab}");
}


public function settings_tab(){
  if (isset($_GET['updated'])): ?>
   <div id="message" class="updated notice is-dismissible"><p><?php _e('Options saved.', 'really-simple-ssl') ?></p></div>
  <?php endif; ?>
  <div class="wrap">
    <h1><?php _e('Really Simple SSL multisite options', 'really-simple-ssl'); ?></h1>
    <form method="POST" action="edit.php?action=rsssl_update_network_settings">
      <?php

          settings_fields($this->option_group);
          do_settings_sections($this->page_slug);
          submit_button();
      ?>
    </form>
  </div>
  <?php
}


/**
 * Save network settings
 */

 public function update_network_options() {
  check_admin_referer($this->option_group.'-options');

  if (isset($_POST["rlrsssl_network_options"])) {
    $prev_ssl_enabled_networkwide = $this->ssl_enabled_networkwide;
    $options = array_map(array($this, "sanitize_boolean"), $_POST["rlrsssl_network_options"]);
    $options["selected_networkwide_or_per_site"] = true;

    $this->ssl_enabled_networkwide = isset($options["ssl_enabled_networkwide"]) ? $options["ssl_enabled_networkwide"] : false;

    $this->wp_redirect  = isset($options["wp_redirect"]) ? $options["wp_redirect"] : false;
    $this->htaccess_redirect = isset($options["htaccess_redirect"]) ? $options["htaccess_redirect"] : false;

    $this->do_not_edit_htaccess = isset($options["do_not_edit_htaccess"]) ? $options["do_not_edit_htaccess"] : false;
    $this->autoreplace_mixed_content = isset($options["autoreplace_mixed_content"]) ? $options["autoreplace_mixed_content"] : false;
    $this->javascript_redirect = isset($options["javascript_redirect"]) ? $options["javascript_redirect"] : false;
    $this->hsts = isset($options["hsts"]) ? $options["hsts"] : false;
    $this->mixed_content_admin = isset($options["mixed_content_admin"]) ? $options["mixed_content_admin"] : false;
    $this->cert_expiration_warning = isset($options["cert_expiration_warning"]) ? $options["cert_expiration_warning"] : false;
    $this->hide_menu_for_subsites = isset($options["hide_menu_for_subsites"]) ? $options["hide_menu_for_subsites"] : false;


    $this->selected_networkwide_or_per_site = isset($options["selected_networkwide_or_per_site"]) ? $options["selected_networkwide_or_per_site"] : false;
  }

  $this->save_options();

  if ($this->ssl_enabled_networkwide) {
    //enable SSL on all  sites on the network
    $this->activate_ssl_networkwide();
  } elseif ($prev_ssl_enabled_networkwide!=$this->ssl_enabled_networkwide) {
    //if we switch to per page, we deactivate SSL on all pages first, but only if the setting was changed.
    $sites = $this->get_sites_bw_compatible();
    foreach ( $sites as $site ) {
      $this->switch_to_blog_bw_compatible($site);
      RSSSL()->really_simple_ssl->deactivate_ssl();
      restore_current_blog(); //switches back to previous blog, not current, so we have to do it each loop
    }
  }


  // At last we redirect back to our options page.
  wp_redirect(add_query_arg(array('page' => $this->page_slug, 'updated' => 'true'), network_admin_url('settings.php')));
  exit;
}

  public function sanitize_boolean($value)
{
  if ($value == true) {
    return true;
  } else {
    return false;
  }
}


/**
 * Give the user an option to activate network wide or not.
 * Needs to be called after detect_configuration function
 *
 * @since  2.3
 *
 * @access public
 *
 */

 public function show_notice_activate_networkwide(){
  //if no SSL was detected, don't activate it yet.
  if (!RSSSL()->really_simple_ssl->site_has_ssl) {
    global $wp;
    $current_url = "https://".$_SERVER["HTTP_HOST"].$_SERVER["REQUEST_URI"]
    ?>
    <div id="message" class="error fade notice activate-ssl">
    <p><?php _e("No SSL was detected. If you do have an SSL certificate, try to reload this page over https by clicking this link:","really-simple-ssl");?>&nbsp;<a href="<?php echo $current_url?>"><?php _e("reload over https.","really-simple-ssl");?></a>
      <?php _e("You can check your certificate on","really-simple-ssl");?>&nbsp;<a target="_blank" href="https://www.ssllabs.com/ssltest/">Qualys SSL Labs</a>
    </p>
  </div>
  <?php } ?>

  <?php if (RSSSL()->really_simple_ssl->site_has_ssl) {
    if (is_main_site(get_current_blog_id()) && RSSSL()->really_simple_ssl->wpconfig_ok()) {
      ?>
      <div id="message" class="updated fade notice activate-ssl">
        <h1><?php _e("Choose your preferred setup","really-simple-ssl");?></h1>
        <?php _e("Some things can't be done automatically. Before you migrate, please check for: ",'really-simple-ssl');?>
        <p>
          <ul>
            <li><?php _e('Http references in your .css and .js files: change any http:// into //','really-simple-ssl');?></li>
            <li><?php _e('Images, stylesheets or scripts from a domain without an SSL certificate: remove them or move to your own server.','really-simple-ssl');?></li>
          </ul>
        </p>
        <?php $this->show_pro(); ?>
      <p>
        <form action="" method="post">
          <?php wp_nonce_field( 'rsssl_nonce', 'rsssl_nonce' );?>
          <input type="submit" class='button button-primary' value="<?php _e("Activate SSL networkwide","really-simple-ssl");?>" id="rsssl_do_activate_ssl_networkwide" name="rsssl_do_activate_ssl_networkwide">
          <input type="submit" class='button button-primary' value="<?php _e("Activate SSL per site","really-simple-ssl");?>" id="rsssl_do_activate_ssl_per_site" name="rsssl_do_activate_ssl_per_site">
        </form>
      </p>
      <p>
        <?php _e("Networkwide activation does not check if a site has an SSL certificate. It just migrates all sites to SSL.","really-simple-ssl");?>
      </p>
      </div>
      <?php
    }
  }
}
/**
  * @since 2.3
  * Shows option to buy pro

*/

  public function show_pro(){
    ?>
    <p><?php _e('You can also let the automatic scan of the pro version handle this for you, and get premium support and increased security with HSTS included.','really-simple-ssl');?>&nbsp;<a target="_blank" href="<?php echo $this->pro_url;?>"><?php _e("Check out Really Simple SSL Premium","really-simple-ssl");?></a></p>
    <?php
  }



/*

    Check if the plugin is network activated.

*/


    public function plugin_network_wide_active(){
      if ( ! function_exists( 'is_plugin_active_for_network' ) )
        require_once( ABSPATH . '/wp-admin/includes/plugin.php' );

      if ( is_plugin_active_for_network(rsssl_plugin) ){
        return true;
      } else {
        return false;
      }
    }



  public function process_networkwide_choice(){

    if (!$this->plugin_network_wide_active()) return;


    if ( isset($_POST['rsssl_do_activate_ssl_networkwide'])) {

      $this->selected_networkwide_or_per_site = true;
      $this->ssl_enabled_networkwide = true;
      $this->wp_redirect = true;
      $this->save_options();

      //enable SSL on all sites on the network
      $this->activate_ssl_networkwide();

    }

    if (isset($_POST['rsssl_do_activate_ssl_per_site'])) {

      $this->selected_networkwide_or_per_site = true;
      $this->ssl_enabled_networkwide = false;
      $this->save_options();
    }

  }


  public function save_options(){
    $options = get_site_option("rlrsssl_network_options");
    if (!is_array($options)) $options = array();

    $options["selected_networkwide_or_per_site"] = $this->selected_networkwide_or_per_site;
    $options["ssl_enabled_networkwide"] = $this->ssl_enabled_networkwide;
    $options["wp_redirect"] = $this->wp_redirect;
    $options["htaccess_redirect"] = $this->htaccess_redirect;
    $options["do_not_edit_htaccess"] = $this->do_not_edit_htaccess;
    $options["autoreplace_mixed_content"] = $this->autoreplace_mixed_content;
    $options["javascript_redirect"] = $this->javascript_redirect;
    $options["hsts"] = $this->hsts;
    $options["mixed_content_admin"] = $this->mixed_content_admin;
    $options["cert_expiration_warning"] = $this->cert_expiration_warning;
    $options["hide_menu_for_subsites"] = $this->hide_menu_for_subsites;

    update_site_option("rlrsssl_network_options", $options);
  }


  public function activate_ssl_networkwide(){

    //set all sites as enabled
    $sites = $this->get_sites_bw_compatible();

    foreach ( $sites as $site ) {
      $this->switch_to_blog_bw_compatible($site);
      RSSSL()->really_simple_ssl->activate_ssl();
      restore_current_blog(); //switches back to previous blog, not current, so we have to do it each loop
    }

  }




  //change deprecated function depending on version.

  public function get_sites_bw_compatible(){
    global $wp_version;
    $sites = ($wp_version >= 4.6 ) ? get_sites() : wp_get_sites();
    return $sites;
  }

  /*
        The new get_sites function returns an object.

  */

  public function switch_to_blog_bw_compatible($site){
    global $wp_version;
    if ($wp_version >= 4.6 ) {
      switch_to_blog( $site->blog_id );
    } else {
      switch_to_blog( $site[ 'blog_id' ] );
    }
  }

  public function deactivate(){

    $options = get_site_option("rlrsssl_network_options");
    $options["selected_networkwide_or_per_site"] = false;
    $options["wp_redirect"] = false;
    $options["htaccess_redirect"] = false;
    $options["do_not_edit_htaccess"] = false;
    $options["autoreplace_mixed_content"] = false;
    $options["javascript_redirect"] = false;
    $options["hsts"] = false;
    $options["mixed_content_admin"] = false;
    $options["cert_expiration_warning"] = false;
    $options["hide_menu_for_subsites"] = false;

    unset($options["ssl_enabled_networkwide"]);
    update_site_option("rlrsssl_network_options", $options);

    $sites = $this->get_sites_bw_compatible();
    foreach ( $sites as $site ) {
      $this->switch_to_blog_bw_compatible($site);
      RSSSL()->really_simple_ssl->deactivate_ssl();
      restore_current_blog(); //switches back to previous blog, not current, so we have to do it each loop
    }

}


/**
* filters the get_admin_url function to correct the false https urls wordpress returns for non SSL websites.
*
* @since 2.3.10
*
*/

public function check_admin_protocol($url, $path, $blog_id){
  if (!$blog_id) $blog_id = get_current_blog_id();

  //if the force_ssl_admin is defined, the admin_url should not be forced back to http: all admin panels should be https.
  if (defined('FORCE_SSL_ADMIN')) return $url;

  //do not force to http if the request is made for an url of the current blog.
  //if a site is loaded over https, it should return https links, unless the url is requested for another blog.
  //In that case, we only return a https link if the site_url is https, and http otherwise.
  if (get_current_blog_id()==$blog_id) return $url;

  //now check if the blog is http or https, and change the url accordingly
  if (!$this->ssl_enabled_networkwide) {
    $home_url = get_blog_option($blog_id, 'home');
    if (strpos($home_url, "https://")===false) {
      $url = str_replace("https://","http://",$url);
    }
  }


  return $url;
}

/**
* filters the home_url and/or site_url function to correct the false https urls wordpress returns for non SSL websites.
*
* @since 2.3.17
*
*/

public function check_site_protocol($url, $path, $orig_scheme, $blog_id){
  if (!$blog_id) $blog_id = get_current_blog_id();

  if (get_current_blog_id()==$blog_id) return $url;

  if (!$this->ssl_enabled_networkwide) {
    $home_url = get_blog_option($blog_id, 'home');
    if (strpos($home_url, "https://")===false) {
      $url = str_replace("https://","http://",$url);
    }
  }
  return $url;
}



/*
 * Checks if we are on a subfolder install. (domain.com/site1 )
 *
 * @since  2.2
 *
 * @access public
 *
 **/

public function is_multisite_subfolder_install() {
  if (!is_multisite()) return FALSE;
  //we check this manually, as the SUBDOMAIN_INSTALL constant of wordpress might return false for domain mapping configs
  $is_subfolder = FALSE;
  $sites = $this->get_sites_bw_compatible();
  foreach ( $sites as $site ) {
    $this->switch_to_blog_bw_compatible($site);
    if ($this->is_subfolder(home_url())) {
      $is_subfolder=TRUE;
    }
    restore_current_blog(); //switches back to previous blog, not current, so we have to do it each loop
    if ($is_subfolder) return true;
  }

  return $is_subfolder;
}

/**
 * Test if a domain has a subfolder structure
 *
 * @since  2.2
 *
 * @param string $domain
 *
 * @access private
 *
 */

public function is_subfolder($domain) {

    //remove slashes of the http(s)
    $domain = preg_replace("/(http:\/\/|https:\/\/)/","",$domain);
    if (strpos($domain,"/")!==FALSE) {
      return true;
    }
    return false;
}

public function is_per_site_activated_multisite_subfolder_install() {
  if (is_multisite() && $this->is_multisite_subfolder_install() && !$this->ssl_enabled_networkwide){
    return true;
  }

  return false;
}

  /**
   * Show notices
   *
   * @since  2.0
   *
   * @access public
   *
   */

public function show_notices()
{

  if (isset(RSSSL()->really_simple_ssl->errors["DEACTIVATE_FILE_NOT_RENAMED"])) {
    ?>
    <div id="message" class="error fade notice is-dismissible rlrsssl-fail">
      <h1>
        <?php _e("Major security issue!","really-simple-ssl");?>
      </h1>
      <p>
    <?php _e("The 'force-deactivate.php' file has to be renamed to .txt. Otherwise your ssl can be deactived by anyone on the internet.","really-simple-ssl");?>
    </p>
    <a href="options-general.php?page=rlrsssl_really_simple_ssl"><?php echo __("Check again","really-simple-ssl");?></a>
    </div>
    <?php
  }

  /*
      SSL success message
  */

  if ($this->selected_networkwide_or_per_site && !get_site_option("rsssl_success_message_shown")) {

        ?>
        <div id="message" class="updated fade notice is-dismissible rlrsssl-multisite-success">
          <p>
            <?php _e("SSL activated!","really-simple-ssl");?>&nbsp;
            <?php
              if ($this->ssl_enabled_networkwide)
                _e("SSL was activated on your entire network.", "really-simple-ssl");
              else
                _e("SSL was activated per site.", "really-simple-ssl");
              ?>
            <?php _e("Don't forget to change your settings in Google Analytics and Webmaster tools.","really-simple-ssl");?>&nbsp;
            <a target="_blank" href="https://really-simple-ssl.com/knowledge-base/how-to-setup-google-analytics-and-google-search-consolewebmaster-tools/"><?php _e("More info.","really-simple-ssl");?></a>
          </p>
        </div>
        <?php
  }

  if (!$this->ssl_enabled_networkwide && $this->selected_networkwide_or_per_site && $this->is_multisite_subfolder_install()) {
    //with no server variables, the website could get into a redirect loop.
    if (RSSSL()->really_simple_ssl->no_server_variable) {
      ?>
        <div id="message" class="error fade notice">
          <p>
            <?php _e('You run a Multisite installation with subfolders, which prevents this plugin from fixing your missing server variable in the wp-config.php.','really-simple-ssl');?>
            <?php _e('Because the $_SERVER["HTTPS"] variable is not set, your website may experience redirect loops.','really-simple-ssl');?>
            <?php _e('Activate networkwide to fix this.','really-simple-ssl');?>
          </p>
        </div>
      <?php
    }
  }
}


/**
 * Insert some ajax script to dismis the SSL success message, and stop nagging about it
 *
 * @since  2.0
 *
 * @access public
 *
 */

public function insert_dismiss_success() {
if ($this->selected_networkwide_or_per_site && !get_site_option("rsssl_success_message_shown")) {
$ajax_nonce = wp_create_nonce( "really-simple-ssl-dismiss" );
?>
<script type='text/javascript'>
  jQuery(document).ready(function($) {
    $(".rlrsssl-multisite-success.notice.is-dismissible").on("click", ".notice-dismiss", function(event){

          var data = {
            'action': 'dismiss_success_message_multisite',
            'security': '<?php echo $ajax_nonce; ?>'
          };

          $.post(ajaxurl, data, function(response) {

          });
      });
  });
</script>
<?php
}
}

/**
 * Process the ajax dismissal of the success message.
 *
 * @since  2.0
 *
 * @access public
 *
 */

public function dismiss_success_message_callback() {
//nonce check fails if url is changed to SSL.
//check_ajax_referer( 'really-simple-ssl-dismiss', 'security' );
update_site_option("rsssl_success_message_shown", true);
wp_die();
}


public function dismiss_pro_option_notice() {
	check_ajax_referer( 'rsssl-pro-dismiss-pro-option-notice', 'nonce' );
	update_option( 'rsssl_pro_pro_option_notice_dismissed', true);
	wp_die();
}

public function dismiss_pro_option_script() {
  $ajax_nonce = wp_create_nonce( "rsssl-pro-dismiss-pro-option-notice" );
  ?>
  <script type='text/javascript'>
    jQuery(document).ready(function($) {

      $(".rsssl-pro-dismiss-notice.notice.is-dismissible").on("click", ".notice-dismiss", function(event){
            var data = {
              'action': 'rsssl_pro_dismiss_pro_option_notice',
              'nonce': '<?php echo $ajax_nonce; ?>'
            };

            $.post(ajaxurl, data, function(response) {

            });
        });
    });
  </script>
  <?php
}


public function show_pro_option_notice(){
  if (!$this->is_settings_page()) return;

  $dismissed	= get_option( 'rsssl_pro_pro_option_notice_dismissed' );
  if (!$dismissed) {

   if (defined('rsssl_pro_version')) {
     if (!defined('rsssl_pro_ms_version')) {
       add_action('admin_print_footer_scripts', array($this, 'dismiss_pro_option_script'));
           ?>
           <div id="message" class="updated fade notice is-dismissible rsssl-pro-dismiss-notice">
             <p>
               <?php echo sprintf( __( 'You are running Really Simple SSL pro. A dedicated add-on for multisite has been released. If you want more options to have full control over your multisite network, you can ask for a discount code to %supgrade%s your license to a multisite license.', 'really-simple-ssl' ), '<a href="https://really-simple-ssl.com/contact" title="Really Simple SSL">', '</a>' )?>
             </p>
           </p></div>
           <?php
           }
   } else {
     ?>
     <div id="message" class="updated fade notice is-dismissible rsssl-pro-dismiss-notice">
       <p>
         <?php echo sprintf( __( 'If you want more options to have full control over your multisite network, you can %supgrade%s your license to a multisite license, or dismiss this message', 'really-simple-ssl' ), '<a href="https://really-simple-ssl.com/pro-multisite" title="Really Simple SSL">', '</a>' )?>
       </p>
     </p></div>
     <?php
   }
  }
}

public function is_settings_page(){
  return ( isset( $_GET['page'] ) && $_GET['page'] == 'really-simple-ssl' ) ? true : false;
}



/**
 * Create tabs on the settings page
 *
 * @since  1.0.0
 *
 * @access public
 *
 */

public function admin_tabs( $current = 'settings' ) {
    $tabs = array(
      'settings'=>__("Settings","really-simple-ssl"),
    );

    $tabs = apply_filters("rsssl_network_tabs", $tabs);

    if (count($tabs)>1) {
      echo '<h2 class="nav-tab-wrapper">';

      foreach( $tabs as $tab => $name ){
          $class = ( $tab == $current ) ? ' nav-tab-active' : '';
          echo "<a class='nav-tab$class' href='?page=really-simple-ssl&tab=$tab'>$name</a>";
      }
      echo '</h2>';
    }
}

} //class closure
}