PageRenderTime 26ms CodeModel.GetById 23ms RepoModel.GetById 1ms app.codeStats 0ms

/wp-content/plugins/ecwid-shopping-cart/includes/class-ecwid-oauth.php

https://gitlab.com/oresticouci/ablSportsConsulting
PHP | 351 lines | 269 code | 80 blank | 2 comment | 50 complexity | 749b234d936c475749a8749b59fde11f MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. include ECWID_PLUGIN_DIR . "lib/phpseclib/AES.php";
    4. 

  4. require_once ECWID_PLUGIN_DIR . 'lib/ecwid_api_v3.php';
    5. 

  5. 

  6. class Ecwid_OAuth {
    7. 

  7. 

  8. 	const MODE_CONNECT = 'connect';
    9. 

  9. 	const MODE_RECONNECT = 'reconnect';
    10. 

  10. 

  11. 	protected $state;
    12. 

  12. 

  13. 	protected $api;
    14. 

  14. 

  15. 	public function __construct()
    16. 

  16. 	{
    17. 

  17. 		add_action('admin_post_ecwid_oauth', array($this, 'process_authorization'));
    18. 

  18. 		add_action('admin_post_ecwid_oauth_reconnect', array($this, 'process_authorization'));
    19. 

  19. 		add_action('admin_post_ecwid_disconnect', array($this, 'disconnect_store'));
    20. 

  20. 		add_action('admin_post_ecwid_show_reconnect', array($this, 'show_reconnect'));
    21. 

  21. 

  22. 		$this->_load_state();
    23. 

  23. 

  24. 		$this->api = new Ecwid_Api_V3();
    25. 

  25. 	}
    26. 

  26. 

  27. 	public function show_reconnect()
    28. 

  28. 	{
    29. 

  29. 		$ecwid_oauth = $this;
    30. 

  30. 		require_once(ECWID_PLUGIN_DIR . 'templates/reconnect.php');
    31. 

  31. 	}
    32. 

  32. 

  33. 	public function test_post()
    34. 

  34. 	{
    35. 

  35. 		$return = EcwidPlatform::http_post_request($this->get_test_post_url());
    36. 

  36. 

  37. 		return is_array($return);
    38. 

  38. 	}
    39. 

  39. 

  40. 	public function get_test_post_url()
    41. 

  41. 	{
    42. 

  42. 		return 'https://my.ecwid.com/api/oauth/token';
    43. 

  43. 	}
    44. 

  44. 

  45. 

  46. 	public function get_auth_dialog_url( )
    47. 

  47. 	{
    48. 

  48. 		$action = 'ecwid_oauth';
    49. 

  49. 		if ( $this->_is_reconnect()  ) {
    50. 

  50. 			$action = 'ecwid_oauth_reconnect';
    51. 

  51. 		}
    52. 

  52. 

  53. 		$redirect_uri = 'admin-post.php?action=' . $action;
    54. 

  54. 

  55. 		return $this->api->get_oauth_dialog_url(
    56. 

  56. 			admin_url( $redirect_uri ),
    57. 

  57. 			implode(' ', $this->_get_scope() )
    58. 

  58. 		);
    59. 

  59. 	}
    60. 

  60. 

  61. 	public function get_sso_reconnect_dialog_url()
    62. 

  62. 	{
    63. 

  63. 		$redirect_uri = 'admin-post.php?action=ecwid_oauth_reconnect';
    64. 

  64. 

  65. 		$scope = $this->_get_scope();
    66. 

  66. 

  67. 		if (!in_array('create_customers', $scope)) {
    68. 

  68. 			$scope[] = 'create_customers';
    69. 

  69. 		}
    70. 

  70. 

  71. 		return $this->api->get_oauth_dialog_url(
    72. 

  72. 			admin_url( $redirect_uri ),
    73. 

  73. 			implode(' ', $scope )
    74. 

  74. 		);
    75. 

  75. 	}
    76. 

  76. 

  77. 	public function process_authorization()
    78. 

  78. 	{
    79. 

  79. 		$reconnect = $_REQUEST['action'] == 'ecwid_oauth_reconnect';
    80. 

  80. 

  81. 		if ( isset( $_REQUEST['error'] ) || !isset( $_REQUEST['code'] ) ) {
    82. 

  82. 			if ($reconnect) {
    83. 

  83. 				$this->update_state(array('mode' => self::MODE_RECONNECT, 'error' => 'cancelled'));
    84. 

  84. 			} else {
    85. 

  85. 				$this->update_state(array('mode' => self::MODE_CONNECT, 'error' => 'cancelled'));
    86. 

  86. 			}
    87. 

  87. 

  88. 			wp_redirect('admin.php?page=ecwid&connection_error' . ($reconnect ? '&reconnect' : ''));
    89. 

  89. 			exit;
    90. 

  90. 		}
    91. 

  91. 

  92. 		$base_admin_url = 'admin-post.php?action=ecwid_oauth' . ($reconnect ? '_reconnect' : '');
    93. 

  93. 

  94. 		$params['code'] = $_REQUEST['code'];
    95. 

  95. 		$params['client_id'] = Ecwid_Api_V3::CLIENT_ID;
    96. 

  96. 		$params['client_secret'] = Ecwid_Api_V3::CLIENT_SECRET;
    97. 

  97. 		$params['redirect_uri'] = admin_url( $base_admin_url );
    98. 

  98. 

  99. 		$params['grant_type'] = 'authorization_code';
    100. 

  100. 

  101. 		$request = Ecwid_HTTP::create_post( 'oauth_authorize', 'https://my.ecwid.com/api/oauth/token', array(
    102. 

  102. 			Ecwid_HTTP::POLICY_RETURN_VERBOSE
    103. 

  103. 		));
    104. 

  104. 

  105. 		$return = $request->do_request(array('body' => $params));
    106. 

  106. 

  107. 		if (is_array($return) && isset($return['data'])) {
    108. 

  108. 			$result = json_decode($return['data']);
    109. 

  109. 		}
    110. 

  110. 

  111. 		if (
    112. 

  112. 			!is_array($return)
    113. 

  113. 			|| !isset( $result->store_id )
    114. 

  114. 			|| !isset( $result->scope )
    115. 

  115. 			|| !isset( $result->access_token )
    116. 

  116. 			|| ( $result->token_type != 'Bearer' )
    117. 

  117. 		) {
    118. 

  118. 			ecwid_log_error(var_export($return, true));
    119. 

  119. 			return $this->trigger_auth_error($reconnect ? 'reconnect' : 'default');
    120. 

  120. 		}
    121. 

  121. 

  122. 		Ecwid_Kissmetrics::record( $reconnect ? 'accountReconnected' : 'accountConnected' );
    123. 

  123. 		update_option( 'ecwid_store_id', $result->store_id );
    124. 

  124. 		update_option( 'ecwid_oauth_scope', $result->scope );
    125. 

  125. 		update_option( 'ecwid_api_check_time', 0 );
    126. 

  126. 		EcwidPlatform::cache_reset( 'all_categories' );
    127. 

  127. 		$this->api->save_token($result->access_token);
    128. 

  128. 

  129. 		// Reset "Create store cookie" set previously to display the landing page
    130. 

  130. 		//in "Connect" mode rather than "Create" mode
    131. 

  131. 		setcookie('ecwid_create_store_clicked', null, strtotime('-1 day'), ADMIN_COOKIE_PATH, COOKIE_DOMAIN);
    132. 

  132. 

  133. 		if ( isset( $this->state->return_url ) && !empty( $this->state->return_url ) ) {
    134. 

  134. 			wp_redirect( admin_url( $this->state->return_url ) );
    135. 

  135. 		} else {
    136. 

  136. 			$url = '';
    137. 

  137. 			if ($reconnect) {
    138. 

  138. 				$url = 'admin.php?page=ecwid&setting-updated=true';
    139. 

  139. 			} else {
    140. 

  140. 				$url = 'admin.php?page=ecwid';
    141. 

  141. 			}
    142. 

  142. 			wp_redirect( $url );
    143. 

  143. 		}
    144. 

  144. 		exit;
    145. 

  145. 	}
    146. 

  146. 

  147. 	public function disconnect_store()
    148. 

  148. 	{
    149. 

  149. 		update_option( 'ecwid_store_id', ECWID_DEMO_STORE_ID );
    150. 

  150. 		$this->api->save_token( '' );
    151. 

  151. 		update_option( 'ecwid_is_api_enabled', 'off' );
    152. 

  152. 		update_option( 'ecwid_api_check_time', 0 );
    153. 

  153. 

  154. 		wp_redirect('admin.php?page=ecwid');
    155. 

  155. 		exit;
    156. 

  156. 	}
    157. 

  157. 

  158.     public function get_safe_scopes_array($scopes)
    159. 

  159.     {
    160. 

  160.         if (!isset($scopes) || empty($scopes)) {
    161. 

  161.             return $this->_get_default_scopes_array();
    162. 

  162.         }
    163. 

  163. 

  164.         if (!empty($scopes)) {
    165. 

  165.             $scopes_array = explode(' ', $scopes);
    166. 

  166. 

  167.             foreach ($scopes_array as $key => $scope) {
    168. 

  168.                 if (!preg_match('/^[a-z_]+$/', $scope)) {
    169. 

  169.                     unset($scopes_array[$key]);
    170. 

  170.                 }
    171. 

  171.             }
    172. 

  172.         }
    173. 

  173. 

  174.         return $scopes_array;
    175. 

  175.     }
    176. 

  176. 

  177. 	public function has_scope( $scope ) {
    178. 

  178. 		$stored_scope = get_option( 'ecwid_oauth_scope' );
    179. 

  179. 		if (empty($stored_scope)) {
    180. 

  180. 			$stored_scope = 'read_store_profile read_catalog';
    181. 

  181. 		}
    182. 

  182. 

  183. 		return in_array( $scope, explode(' ', $stored_scope) );
    184. 

  184. 	}
    185. 

  185. 

  186. 	protected function _get_default_scopes_array() {
    187. 

  187. 		return array( 'read_store_profile', 'read_catalog', 'allow_sso', 'create_customers' );
    188. 

  188. 	}
    189. 

  189. 

  190. 	protected function trigger_auth_error($mode = 'default')
    191. 

  191. 	{
    192. 

  192. 		update_option('ecwid_last_oauth_fail_time', time());
    193. 

  193. 

  194. 		$logs = get_option('ecwid_error_log');
    195. 

  195. 

  196. 		if ($logs) {
    197. 

  197. 			$logs = json_decode($logs);
    198. 

  198. 		}
    199. 

  199. 

  200. 		if (is_array($logs) && count($logs) > 0) {
    201. 

  201. 			$entry = $logs[count($logs) - 1];
    202. 

  202. 			if (isset($entry->message)) {
    203. 

  203. 				$last_error = $entry->message;
    204. 

  204. 			}
    205. 

  205. 		}
    206. 

  206. 

  207. 		if ( $mode == self::MODE_RECONNECT ) {
    208. 

  208. 			$this->update_state(array(
    209. 

  209. 				'mode' => 'reconnect',
    210. 

  210. 				'error' => 'other'
    211. 

  211. 			));
    212. 

  212. 		}
    213. 

  213. 

  214. 		if (isset($last_error)) {
    215. 

  215. 			EcwidPlatform::report_error($last_error);
    216. 

  216. 		}
    217. 

  217. 

  218. 		wp_redirect('admin.php?page=ecwid&connection_error' . ($mode == self::MODE_RECONNECT ? '&reconnect' : ''));
    219. 

  219. 		exit;
    220. 

  220. 	}
    221. 

  221. 

  222. 	protected function _get_scope() {
    223. 

  223. 		$default = $this->_get_default_scopes_array();
    224. 

  224. 

  225. 		$scopes = array();
    226. 

  226. 		if ( $this->_is_reconnect() ) {
    227. 

  227. 			$scopes = isset($this->state->reconnect_scopes) && is_array($this->state->reconnect_scopes)
    228. 

  228. 				? $this->state->reconnect_scopes
    229. 

  229. 				: array();
    230. 

  230. 		}
    231. 

  231. 

  232. 		$scopes = array_merge($scopes, $default);
    233. 

  233. 

  234. 		return $scopes;
    235. 

  235.  	}
    236. 

  236. 

  237. 	public function get_sso_admin_link() {
    238. 

  238. 		$url = 'https://my.ecwid.com/api/v3/%s/sso?token=%s&timestamp=%s&signature=%s&inline=true';
    239. 

  239. 

  240. 		$store_id = get_ecwid_store_id();
    241. 

  241. 

  242. 		$token = $this->api->get_token();
    243. 

  243. 

  244. 		$timestamp = time();
    245. 

  245. 		$signature = hash('sha256', $store_id . $token . $timestamp . Ecwid_Api_V3::CLIENT_SECRET);
    246. 

  246. 

  247. 		$url = sprintf(
    248. 

  248. 			$url,
    249. 

  249. 			$store_id,
    250. 

  250. 			$token,
    251. 

  251. 			$timestamp,
    252. 

  252. 			$signature
    253. 

  253. 		);
    254. 

  254. 

  255. 		return $url;
    256. 

  256. 	}
    257. 

  257. 

  258. 	protected function _load_state() {
    259. 

  259. 		if (isset($_COOKIE['ecwid_oauth_state'])) {
    260. 

  260. 			$this->state = @json_decode( $_COOKIE['ecwid_oauth_state'] );
    261. 

  261. 

  262. 		}
    263. 

  263. 

  264. 		if (!is_object($this->state)) {
    265. 

  265. 			$this->state = new stdClass();
    266. 

  266. 			$this->state->reconnect_scopes = array();
    267. 

  267. 			$this->state->reconnect_error = '';
    268. 

  268. 			$this->state->return_url = '';
    269. 

  269. 			$this->state->reason = '';
    270. 

  270. 			$this->state->mode = self::MODE_CONNECT;
    271. 

  271. 		}
    272. 

  272. 

  273. 		if (isset($_COOKIE['ecwid_create_store_clicked'])) {
    274. 

  274. 			$this->state->create_store_clicked = $_COOKIE['ecwid_create_store_clicked'];
    275. 

  275. 		}
    276. 

  276. 	}
    277. 

  277. 

  278. 	public function get_state() {
    279. 

  279. 		return $this->state;
    280. 

  280. 	}
    281. 

  281. 

  282. 	public function was_create_store_clicked() {
    283. 

  283. 		return $this->state->create_store_clicked;
    284. 

  284. 	}
    285. 

  285. 

  286. 	protected function _save_state() {
    287. 

  287. 		setcookie('ecwid_oauth_state', json_encode($this->state), strtotime('+1 day'), ADMIN_COOKIE_PATH, COOKIE_DOMAIN);
    288. 

  288. 	}
    289. 

  289. 

  290. 	public function get_reconnect_error() {
    291. 

  291. 		return $this->state->reconnect_error;
    292. 

  292. 	}
    293. 

  293. 

  294. 	public function update_state($params) {
    295. 

  295. 

  296. 		if (isset($params['mode'])) {
    297. 

  297. 			$this->state->mode = $params['mode'] == self::MODE_RECONNECT ? self::MODE_RECONNECT : self::MODE_CONNECT;
    298. 

  298. 		}
    299. 

  299. 

  300. 		if ( $this->_is_reconnect() ) {
    301. 

  301. 			if ( isset( $params['scope'] ) ) {
    302. 

  302. 				$this->state->reconnect_scopes = $this->get_safe_scopes_array( @$params['scope'] );
    303. 

  303. 			}
    304. 

  304. 			if ( isset( $params['return_url'] ) ) {
    305. 

  305. 				$this->state->return_url = $params['return_url'];
    306. 

  306. 			}
    307. 

  307. 

  308. 			if ( isset( $params['error'] ) ) {
    309. 

  309. 				$this->state->reconnect_error = $params['error'];
    310. 

  310. 			}
    311. 

  311. 

  312. 			if ( isset( $params['reason'] ) ) {
    313. 

  313. 				$this->state->reason = $params['reason'];
    314. 

  314. 			}
    315. 

  315. 		}
    316. 

  316. 

  317. 		$this->_save_state();
    318. 

  318. 	}
    319. 

  319. 

  320. 	public function get_error() {
    321. 

  321. 

  322. 		if ($this->_is_reconnect()) {
    323. 

  323. 			return $this->state->reconnect_error;
    324. 

  324. 		} else {
    325. 

  325. 			return $this->state->error;
    326. 

  326. 		}
    327. 

  327. 	}
    328. 

  328. 

  329. 	public function get_reconnect_message() {
    330. 

  330. 		$reconnect_message = '';
    331. 

  331. 

  332. 		if (isset($this->state->reason)) {
    333. 

  333. 			switch ( $this->state->reason ) {
    334. 

  334. 				case '1':
    335. 

  335. 					$reconnect_message = "Message 1";
    336. 

  336. 					break;
    337. 

  337. 				case '2':
    338. 

  338. 					$reconnect_message = "Message 2";
    339. 

  339. 					break;
    340. 

  340. 			}
    341. 

  341. 		}
    342. 

  342. 

  343. 		return $reconnect_message;
    344. 

  344. 	}
    345. 

  345. 

  346. 	protected function _is_reconnect() {
    347. 

  347. 		return @$this->state->mode == self::MODE_RECONNECT;
    348. 

  348. 	}
    349. 

  349. }
    350. 

  350. 

  351. $ecwid_oauth = new Ecwid_OAuth();
    352. 

  352.