PageRenderTime 45ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-content/plugins/s2member/includes/classes/pages.inc.php

https://gitlab.com/Gashler/sg
PHP | 109 lines | 68 code | 12 blank | 29 comment | 81 complexity | fc4318344fdac01b90dc025b48314721 MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * s2Member's Page protection routines *(for current Page)*.
    4. 

  4.  *
    5. 

  5.  * Copyright: © 2009-2011
    6. 

  6.  * {@link http://www.websharks-inc.com/ WebSharks, Inc.}
    7. 

  7.  * (coded in the USA)
    8. 

  8.  *
    9. 

  9.  * Released under the terms of the GNU General Public License.
    10. 

  10.  * You should have received a copy of the GNU General Public License,
    11. 

  11.  * along with this software. In the main directory, see: /licensing/
    12. 

  12.  * If not, see: {@link http://www.gnu.org/licenses/}.
    13. 

  13.  *
    14. 

  14.  * @package s2Member\Pages
    15. 

  15.  * @since 3.5
    16. 

  16.  */
    17. 

  17. if(!defined('WPINC')) // MUST have WordPress.
    18. 

  18. 	exit('Do not access this file directly.');
    19. 

  19. 

  20. if(!class_exists('c_ws_plugin__s2member_pages'))
    21. 

  21. {
    22. 

  22. 	/**
    23. 

  23. 	 * s2Member's Page protection routines *(for current Page)*.
    24. 

  24. 	 *
    25. 

  25. 	 * @package s2Member\Pages
    26. 

  26. 	 * @since 3.5
    27. 

  27. 	 */
    28. 

  28. 	class c_ws_plugin__s2member_pages
    29. 

  29. 	{
    30. 

  30. 		/**
    31. 

  31. 		 * Handles Page Level Access permissions *(for current Page)*.
    32. 

  32. 		 *
    33. 

  33. 		 * @package s2Member\Pages
    34. 

  34. 		 * @since 3.5
    35. 

  35. 		 *
    36. 

  36. 		 * @return null Or exits script execution after redirection.
    37. 

  37. 		 */
    38. 

  38. 		public static function check_page_level_access()
    39. 

  39. 		{
    40. 

  40. 			global $post; // ``get_the_ID()`` unavailable outside The Loop.
    41. 

  41. 

  42. 			do_action('ws_plugin__s2member_before_check_page_level_access', get_defined_vars());
    43. 

  43. 

  44. 			$ci       = $GLOBALS['WS_PLUGIN__']['s2member']['o']['ruris_case_sensitive'] ? '' : 'i';
    45. 

  45. 			$excluded = apply_filters('ws_plugin__s2member_check_page_level_access_excluded', FALSE, get_defined_vars());
    46. 

  46. 

  47. 			if(!$excluded && is_page() && is_object($post) && !empty($post->ID) && ($page_id = (int)$post->ID) && $GLOBALS['WS_PLUGIN__']['s2member']['o']['membership_options_page'])
    48. 

  48. 			{
    49. 

  49. 				if(!c_ws_plugin__s2member_systematics::is_wp_systematic_use_page()) // Do NOT touch WordPress Systematics. This excludes all WordPress Systematics.
    50. 

  50. 				{
    51. 

  51. 					$user = (is_user_logged_in() && is_object($user = wp_get_current_user()) && !empty($user->ID)) ? $user : FALSE; // Current User's object.
    52. 

  52. 

  53. 					if($GLOBALS['WS_PLUGIN__']['s2member']['o']['login_welcome_page'] && $page_id === (int)$GLOBALS['WS_PLUGIN__']['s2member']['o']['login_welcome_page'] && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level0')) && $page_id !== (int)$GLOBALS['WS_PLUGIN__']['s2member']['o']['membership_options_page'])
    54. 

  54. 						c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', 0, $_SERVER['REQUEST_URI'], 'sys').exit ();
    55. 

  55. 

  56. 					else if($GLOBALS['WS_PLUGIN__']['s2member']['o']['login_redirection_override'] && ($login_redirection_uri = c_ws_plugin__s2member_login_redirects::login_redirection_uri($user, 'root-returns-false')) && preg_match('/^'.preg_quote($login_redirection_uri, '/').'$/'.$ci, $_SERVER['REQUEST_URI']) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level0')) && $page_id !== (int)$GLOBALS['WS_PLUGIN__']['s2member']['o']['membership_options_page'])
    57. 

  57. 						c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', 0, $_SERVER['REQUEST_URI'], 'sys').exit ();
    58. 

  58. 

  59. 					else if($GLOBALS['WS_PLUGIN__']['s2member']['o']['file_download_limit_exceeded_page'] && $page_id === (int)$GLOBALS['WS_PLUGIN__']['s2member']['o']['file_download_limit_exceeded_page'] && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level0')) && $page_id !== (int)$GLOBALS['WS_PLUGIN__']['s2member']['o']['membership_options_page'])
    60. 

  60. 						c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', 0, $_SERVER['REQUEST_URI'], 'sys').exit ();
    61. 

  61. 

  62. 					else if(!c_ws_plugin__s2member_systematics::is_systematic_use_page()) // Never restrict Systematics. However, there are 3 exceptions above.
    63. 

  63. 					{
    64. 

  64. 						for($n = $GLOBALS['WS_PLUGIN__']['s2member']['c']['levels']; $n >= 0; $n--) // Page Level restrictions. Go through each Level.
    65. 

  65. 						{
    66. 

  66. 							if($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_pages'] === 'all' && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    67. 

  67. 								c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI']).exit ();
    68. 

  68. 

  69. 							else if(strpos($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_posts'], 'all-') && (in_array('all-page', preg_split('/['."\r\n\t".'\s;,]+/', $GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_posts'])) || in_array('all-pages', preg_split('/['."\r\n\t".'\s;,]+/', $GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_posts']))) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    70. 

  70. 								c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI'], 'post').exit ();
    71. 

  71. 

  72. 							else if($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_pages'] && in_array($page_id, preg_split('/['."\r\n\t".'\s;,]+/', $GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_pages'])) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    73. 

  73. 								c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI']).exit ();
    74. 

  74. 						}
    75. 

  75. 						if(has_tag()) // Here we take a look to see if this Page has any Tags. If so, we need to run the full set of routines against Tags also.
    76. 

  76. 						{
    77. 

  77. 							for($n = $GLOBALS['WS_PLUGIN__']['s2member']['c']['levels']; $n >= 0; $n--) // Tag Level restrictions (possibly through Page Tagger). Go through each Level.
    78. 

  78. 							{
    79. 

  79. 								if($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_ptags'] === 'all' && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    80. 

  80. 									c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI'], 'ptag').exit ();
    81. 

  81. 

  82. 								else if($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_ptags'] && has_tag(preg_split('/['."\r\n\t".';,]+/', $GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_ptags'])) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    83. 

  83. 									c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI'], 'ptag').exit ();
    84. 

  84. 							}
    85. 

  85. 						}
    86. 

  86. 						for($n = $GLOBALS['WS_PLUGIN__']['s2member']['c']['levels']; $n >= 0; $n--) // URIs. Go through each Level.
    87. 

  87. 						{
    88. 

  88. 							if($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_ruris']) // URIs configured at this Level?
    89. 

  89. 

  90. 								foreach(preg_split('/['."\r\n\t".']+/', c_ws_plugin__s2member_ruris::fill_ruri_level_access_rc_vars($GLOBALS['WS_PLUGIN__']['s2member']['o']['level'.$n.'_ruris'], $user)) as $str)
    91. 

  91. 									if($str && preg_match('/'.preg_quote($str, '/').'/'.$ci, $_SERVER['REQUEST_URI']) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && (!$user || !$user->has_cap('access_s2member_level'.$n)))
    92. 

  92. 										c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'level', $n, $_SERVER['REQUEST_URI'], 'ruri').exit ();
    93. 

  93. 						}
    94. 

  94. 						if(is_array($ccaps_req = get_post_meta($page_id, 's2member_ccaps_req', TRUE)) && !empty($ccaps_req) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted'))
    95. 

  95. 						{
    96. 

  96. 							foreach($ccaps_req as $ccap) // The ``$user`` MUST satisfy ALL Custom Capability requirements. Stored as an array of Custom Capabilities.
    97. 

  97. 								if(strlen($ccap) && (!$user || !$user->has_cap('access_s2member_ccap_'.$ccap)) /* Does this ``$user``, have this Custom Capability? */)
    98. 

  98. 									c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'ccap', $ccap, $_SERVER['REQUEST_URI'], 'ccap').exit ();
    99. 

  99. 						}
    100. 

  100. 						if($GLOBALS['WS_PLUGIN__']['s2member']['o']['specific_ids'] && in_array($page_id, preg_split('/['."\r\n\t".'\s;,]+/', $GLOBALS['WS_PLUGIN__']['s2member']['o']['specific_ids'])) && c_ws_plugin__s2member_no_cache::no_cache_constants('restricted') && !c_ws_plugin__s2member_sp_access::sp_access($page_id))
    101. 

  101. 							c_ws_plugin__s2member_mo_page::wp_redirect_w_mop_vars('page', $page_id, 'sp', $page_id, $_SERVER['REQUEST_URI'], 'sp').exit ();
    102. 

  102. 					}
    103. 

  103. 					do_action('ws_plugin__s2member_during_check_page_level_access', get_defined_vars());
    104. 

  104. 				}
    105. 

  105. 			}
    106. 

  106. 			do_action('ws_plugin__s2member_after_check_page_level_access', get_defined_vars());
    107. 

  107. 		}
    108. 

  108. 	}
    109. 

  109. }
    110.