PageRenderTime 45ms CodeModel.GetById 11ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-content/plugins/s2member/includes/classes/ssl-in.inc.php

https://gitlab.com/Gashler/sg
PHP | 167 lines | 95 code | 21 blank | 51 comment | 28 complexity | 84b16d5f9bc925ced990c3aef5c37018 MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * SSL routines (inner processing routines).
    4. 

  4.  *
    5. 

  5.  * Copyright: © 2009-2011
    6. 

  6.  * {@link http://www.websharks-inc.com/ WebSharks, Inc.}
    7. 

  7.  * (coded in the USA)
    8. 

  8.  *
    9. 

  9.  * Released under the terms of the GNU General Public License.
    10. 

  10.  * You should have received a copy of the GNU General Public License,
    11. 

  11.  * along with this software. In the main directory, see: /licensing/
    12. 

  12.  * If not, see: {@link http://www.gnu.org/licenses/}.
    13. 

  13.  *
    14. 

  14.  * @package s2Member\SSL
    15. 

  15.  * @since 3.5
    16. 

  16.  */
    17. 

  17. if(!defined('WPINC')) // MUST have WordPress.
    18. 

  18. 	exit('Do not access this file directly.');
    19. 

  19. 

  20. if(!class_exists('c_ws_plugin__s2member_ssl_in'))
    21. 

  21. {
    22. 

  22. 	/**
    23. 

  23. 	 * SSL routines (inner processing routines).
    24. 

  24. 	 *
    25. 

  25. 	 * @package s2Member\SSL
    26. 

  26. 	 * @since 3.5
    27. 

  27. 	 */
    28. 

  28. 	class c_ws_plugin__s2member_ssl_in
    29. 

  29. 	{
    30. 

  30. 		/**
    31. 

  31. 		 * Forces SSL on specific Posts/Pages, or any page for that matter.
    32. 

  32. 		 *
    33. 

  33. 		 * Triggered by Custom Field: `s2member_force_ssl = yes|port#`
    34. 

  34. 		 *
    35. 

  35. 		 * Triggered by: `?s2-ssl` or `?s2-ssl=yes|port#`.
    36. 

  36. 		 *
    37. 

  37. 		 * @package s2Member\SSL
    38. 

  38. 		 * @since 3.5
    39. 

  39. 		 *
    40. 

  40. 		 * @attaches-to ``add_action('init');``
    41. 

  41. 		 * @also-attaches-to ``add_action('wp');``
    42. 

  42. 		 *
    43. 

  43. 		 * @param array $vars From: ``c_ws_plugin__s2member_ssl::check_force_ssl()``.
    44. 

  44. 		 *
    45. 

  45. 		 * @return null Possibly exiting script execution after redirection to SSL variation.
    46. 

  46. 		 *
    47. 

  47. 		 * @todo Add `form` to the array ``$non_ssl_attr_only_tags``?
    48. 

  48. 		 * @todo Cleanup this routine and convert callback functions to static class methods?
    49. 

  49. 		 */
    50. 

  50. 		public static function force_ssl($vars = array()) // Phase 2 of ``c_ws_plugin__s2member_ssl::check_force_ssl()``.
    51. 

  51. 		{
    52. 

  52. 			/**
    53. 

  53. 			 * @var string               $s2_ssl_gv Extracted variable.
    54. 

  54. 			 * @var string|integer|mixed $force_ssl Extracted variable.
    55. 

  55. 			 */
    56. 

  56. 			extract($vars); // From: ``c_ws_plugin__s2member_ssl::check_force_ssl()``.
    57. 

  57. 

  58. 			$force_ssl = !is_string($force_ssl) ? (string)(int)$force_ssl : $force_ssl;
    59. 

  59. 			$force_ssl = is_numeric($force_ssl) && $force_ssl > 1 ? $force_ssl : 'yes';
    60. 

  60. 

  61. 			$ssl_host      = preg_replace('/\:[0-9]+$/', '', $_SERVER['HTTP_HOST']);
    62. 

  62. 			$ssl_port      = (is_numeric($force_ssl) && $force_ssl > 1) ? $force_ssl : FALSE;
    63. 

  63. 			$ssl_host_port = $ssl_host.(($ssl_port) ? ':'.$ssl_port : '');
    64. 

  64. 

  65. 			if(!is_ssl() || !isset($_GET[$s2_ssl_gv]))
    66. 

  66. 			{
    67. 

  67. 				$https                = 'https://'.$ssl_host_port.$_SERVER['REQUEST_URI'];
    68. 

  68. 				$https_with_s2_ssl_gv = add_query_arg($s2_ssl_gv, urlencode($force_ssl), $https);
    69. 

  69. 				wp_redirect($https_with_s2_ssl_gv).exit();
    70. 

  70. 			}
    71. 

  71. 			else // Otherwise, we buffer all output, and switch all content over to `https`.
    72. 

  72. 				// Assume here that other links on the site should NOT be converted to `https`.
    73. 

  73. 			{
    74. 

  74. 				add_filter('redirect_canonical', '__return_false');
    75. 

  75. 

  76. 				define('_ws_plugin__s2member_force_ssl_host', $ssl_host);
    77. 

  77. 				define('_ws_plugin__s2member_force_ssl_port', $ssl_port);
    78. 

  78. 				define('_ws_plugin__s2member_force_ssl_host_port', $ssl_host_port);
    79. 

  79. 

  80. 				// Filter these. Do NOT create a sitewide conversion to `https`.
    81. 

  81. 				add_filter('home_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 3);
    82. 

  82. 				add_filter('network_home_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 3);
    83. 

  83. 

  84. 				// Filter these. Do NOT create a sitewide conversion to `https`.
    85. 

  85. 				add_filter('site_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 3);
    86. 

  86. 				add_filter('network_site_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 3);
    87. 

  87. 

  88. 				// These additional URLs are NOT Filtered by default; but can be if needed. Use these Filters.
    89. 

  89. 				if(apply_filters('_ws_plugin__s2member_force_non_ssl_scheme_plugins_url', FALSE, get_defined_vars()))
    90. 

  90. 					add_filter('plugins_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 2);
    91. 

  91. 

  92. 				// These additional URLs are NOT Filtered by default; but can be if needed. Use these Filters.
    93. 

  93. 				if(apply_filters('_ws_plugin__s2member_force_non_ssl_scheme_content_url', FALSE, get_defined_vars()))
    94. 

  94. 					add_filter('content_url', '_ws_plugin__s2member_force_non_ssl_scheme', 10, 2);
    95. 

  95. 

  96. 				// Now we create various callback functions associated with SSL and non-SSL buffering.
    97. 

  97. 				if(!function_exists('_ws_plugin__s2member_force_ssl_buffer_callback'))
    98. 

  98. 				{
    99. 

  99. 					function _ws_plugin__s2member_force_ssl_buffer_callback($m = FALSE)
    100. 

  100. 					{
    101. 

  101. 						$s = preg_replace('/http\:\/\//i', 'https://', $m[0]);
    102. 

  102. 						if(_ws_plugin__s2member_force_ssl_host && _ws_plugin__s2member_force_ssl_port && _ws_plugin__s2member_force_ssl_host_port)
    103. 

  103. 							$s = preg_replace('/(?:https?\:)?\/\/'.preg_quote(_ws_plugin__s2member_force_ssl_host, '/').'(?:\:[0-9]+)?/i', 'https://'._ws_plugin__s2member_force_ssl_host_port, $s);
    104. 

  104. 						$s = (strtolower($m[1]) === 'link' && preg_match('/(["\'])(?:alternate|profile|pingback|EditURI|wlwmanifest|prev|next)\\1/i', $m[0])) ? $m[0] : $s;
    105. 

  105. 

  106. 						return $s; // Return string with conversions.
    107. 

  107. 					}
    108. 

  108. 				}
    109. 

  109. 				if(!function_exists('_ws_plugin__s2member_force_non_ssl_buffer_callback'))
    110. 

  110. 				{
    111. 

  111. 					function _ws_plugin__s2member_force_non_ssl_buffer_callback($m = FALSE)
    112. 

  112. 					{
    113. 

  113. 						$s = preg_replace('/(?:https?\:)?\/\/'.preg_quote(_ws_plugin__s2member_force_ssl_host_port, '/').'/i', 'http://'._ws_plugin__s2member_force_ssl_host, $m[0]);
    114. 

  114. 						$s = preg_replace('/(?:https?\:)?\/\/'.preg_quote(_ws_plugin__s2member_force_ssl_host, '/').'/i', 'http://'._ws_plugin__s2member_force_ssl_host, $s);
    115. 

  115. 

  116. 						return $s; // Return string with conversions.
    117. 

  117. 					}
    118. 

  118. 				}
    119. 

  119. 				if(!function_exists('_ws_plugin__s2member_force_non_ssl_scheme'))
    120. 

  120. 				{
    121. 

  121. 					function _ws_plugin__s2member_force_non_ssl_scheme($url = FALSE, $path = FALSE, $scheme = FALSE)
    122. 

  122. 					{
    123. 

  123. 						if($scheme === 'relative')
    124. 

  124. 							return $url; // Nothing to do in this case.
    125. 

  125. 

  126. 						if(!in_array($scheme, array('http', 'https'), TRUE)) // If NOT explicitly passed through.
    127. 

  127. 						{
    128. 

  128. 							if(($scheme === 'login_post' || $scheme === 'rpc') && (force_ssl_login() || force_ssl_admin()))
    129. 

  129. 								$scheme = 'https';
    130. 

  130. 

  131. 							else if(($scheme === 'login' || $scheme === 'admin') && force_ssl_admin())
    132. 

  132. 								$scheme = 'https';
    133. 

  133. 

  134. 							else $scheme = 'http'; // Default to non-SSL: `http`.
    135. 

  135. 						}
    136. 

  136. 						return preg_replace('/^(?:https?\:)?\/\//i', $scheme.'://', $url);
    137. 

  137. 					}
    138. 

  138. 				}
    139. 

  139. 				if(!function_exists('_ws_plugin__s2member_force_ssl_buffer'))
    140. 

  140. 				{
    141. 

  141. 					function _ws_plugin__s2member_force_ssl_buffer($buffer = FALSE)
    142. 

  142. 					{
    143. 

  143. 						$o_pcre = @ini_get('pcre.backtrack_limit'); // Record existing backtrack limit.
    144. 

  144. 						@ini_set('pcre.backtrack_limit', 10000000); // Increase PCRE backtrack limit for this routine.
    145. 

  145. 

  146. 						$ssl_entire_tags     = array_unique(array_map('strtolower', apply_filters('_ws_plugin__s2member_force_ssl_buffer_entire_tags', array('script', 'style', 'iframe', 'object', 'embed', 'video'), get_defined_vars())));
    147. 

  147. 						$non_ssl_entire_tags = array_unique(array_map('strtolower', apply_filters('_ws_plugin__s2member_force_non_ssl_buffer_entire_tags', array(), get_defined_vars())));
    148. 

  148. 

  149. 						$ssl_attr_only_tags     = array_unique(array_diff(array_map('strtolower', apply_filters('_ws_plugin__s2member_force_ssl_buffer_attr_only_tags', array('link', 'img', 'form', 'input'), get_defined_vars())), $ssl_entire_tags));
    150. 

  150. 						$non_ssl_attr_only_tags = array_unique(array_diff(array_map('strtolower', apply_filters('_ws_plugin__s2member_force_non_ssl_buffer_attr_only_tags', array('a'), get_defined_vars())), $non_ssl_entire_tags));
    151. 

  151. 

  152. 						$buffer = ($ssl_entire_tags) ? preg_replace_callback('/\<('.implode('|', c_ws_plugin__s2member_utils_strings::preg_quote_deep($ssl_entire_tags, '/')).')(?![a-z_0-9\-])[^\>]*?\>.*?\<\/\\1\>/is', '_ws_plugin__s2member_force_ssl_buffer_callback', $buffer) : $buffer;
    153. 

  153. 						$buffer = ($ssl_attr_only_tags) ? preg_replace_callback('/\<('.implode('|', c_ws_plugin__s2member_utils_strings::preg_quote_deep($ssl_attr_only_tags, '/')).')(?![a-z_0-9\-])[^\>]+?\>/i', '_ws_plugin__s2member_force_ssl_buffer_callback', $buffer) : $buffer;
    154. 

  154. 

  155. 						$buffer = ($non_ssl_entire_tags) ? preg_replace_callback('/\<('.implode('|', c_ws_plugin__s2member_utils_strings::preg_quote_deep($non_ssl_entire_tags, '/')).')(?![a-z_0-9\-])[^\>]*?\>.*?\<\/\\1\>/is', '_ws_plugin__s2member_force_non_ssl_buffer_callback', $buffer) : $buffer;
    156. 

  156. 						$buffer = ($non_ssl_attr_only_tags) ? preg_replace_callback('/\<('.implode('|', c_ws_plugin__s2member_utils_strings::preg_quote_deep($non_ssl_attr_only_tags, '/')).')(?![a-z_0-9\-])[^\>]+?\>/i', '_ws_plugin__s2member_force_non_ssl_buffer_callback', $buffer) : $buffer;
    157. 

  157. 

  158. 						@ini_set('pcre.backtrack_limit', $o_pcre); // Restore original PCRE backtrack limit. This just keeps things tidy; probably NOT necessary.
    159. 

  159. 

  160. 						return apply_filters('_ws_plugin__s2member_force_ssl_buffer', $buffer, get_defined_vars());
    161. 

  161. 					}
    162. 

  162. 				}
    163. 

  163. 				ob_start('_ws_plugin__s2member_force_ssl_buffer');
    164. 

  164. 			}
    165. 

  165. 		}
    166. 

  166. 	}
    167. 

  167. }
    168. 

  168.