PageRenderTime 66ms CodeModel.GetById 34ms RepoModel.GetById 1ms app.codeStats 0ms

/wp-content/plugins/jetpack/json-endpoints/jetpack/class.jetpack-json-api-plugins-endpoint.php

https://gitlab.com/chernushov881/charity-fund
PHP | 362 lines | 284 code | 59 blank | 19 comment | 55 complexity | 4c42a89b67d49fde26f321029c2a776b MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. use Automattic\Jetpack\Constants;
    4. 

  4. use Automattic\Jetpack\Sync\Functions;
    5. 

  5. 

  6. /**
    7. 

  7.  * Base class for working with plugins.
    8. 

  8.  */
    9. 

  9. abstract class Jetpack_JSON_API_Plugins_Endpoint extends Jetpack_JSON_API_Endpoint {
    10. 

  10. 

  11. 	protected $plugins = array();
    12. 

  12. 

  13. 	protected $network_wide = false;
    14. 

  14. 

  15. 	protected $bulk = true;
    16. 

  16. 	protected $log;
    17. 

  17. 

  18. 	static $_response_format = array(
    19. 

  19. 		'id'              => '(safehtml)  The plugin\'s ID',
    20. 

  20. 		'slug'            => '(safehtml)  The plugin\'s .org slug',
    21. 

  21. 		'active'          => '(boolean) The plugin status.',
    22. 

  22. 		'update'          => '(object)  The plugin update info.',
    23. 

  23. 		'name'            => '(safehtml)  The name of the plugin.',
    24. 

  24. 		'plugin_url'      => '(url)  Link to the plugin\'s web site.',
    25. 

  25. 		'version'         => '(safehtml)  The plugin version number.',
    26. 

  26. 		'description'     => '(safehtml)  Description of what the plugin does and/or notes from the author',
    27. 

  27. 		'author'          => '(safehtml)  The author\'s name',
    28. 

  28. 		'author_url'      => '(url)  The authors web site address',
    29. 

  29. 		'network'         => '(boolean) Whether the plugin can only be activated network wide.',
    30. 

  30. 		'autoupdate'      => '(boolean) Whether the plugin is automatically updated',
    31. 

  31. 		'autoupdate_translation' => '(boolean) Whether the plugin is automatically updating translations',
    32. 

  32. 		'next_autoupdate' => '(string) Y-m-d H:i:s for next scheduled update event',
    33. 

  33. 		'log'             => '(array:safehtml) An array of update log strings.',
    34. 

  34. 		'uninstallable'   => '(boolean) Whether the plugin is unistallable.',
    35. 

  35. 		'action_links'    => '(array) An array of action links that the plugin uses.',
    36. 

  36. 	);
    37. 

  37. 

  38. 	static $_response_format_v1_2 = array(
    39. 

  39. 		'slug'            => '(safehtml) The plugin\'s .org slug',
    40. 

  40. 		'active'          => '(boolean) The plugin status.',
    41. 

  41. 		'update'          => '(object) The plugin update info.',
    42. 

  42. 		'name'            => '(safehtml) The plugin\'s ID',
    43. 

  43. 		'display_name'    => '(safehtml) The name of the plugin.',
    44. 

  44. 		'version'         => '(safehtml) The plugin version number.',
    45. 

  45. 		'description'     => '(safehtml) Description of what the plugin does and/or notes from the author',
    46. 

  46. 		'author'          => '(safehtml) The author\'s name',
    47. 

  47. 		'author_url'      => '(url) The authors web site address',
    48. 

  48. 		'plugin_url'      => '(url) Link to the plugin\'s web site.',
    49. 

  49. 		'network'         => '(boolean) Whether the plugin can only be activated network wide.',
    50. 

  50. 		'autoupdate'      => '(boolean) Whether the plugin is automatically updated',
    51. 

  51. 		'autoupdate_translation' => '(boolean) Whether the plugin is automatically updating translations',
    52. 

  52. 		'uninstallable'   => '(boolean) Whether the plugin is unistallable.',
    53. 

  53. 		'action_links'    => '(array) An array of action links that the plugin uses.',
    54. 

  54. 		'log'             => '(array:safehtml) An array of update log strings.',
    55. 

  55. 	);
    56. 

  56. 

  57. 	protected function result() {
    58. 

  58. 

  59. 		$plugins = $this->get_plugins();
    60. 

  60. 

  61. 		if ( ! $this->bulk && ! empty( $plugins ) ) {
    62. 

  62. 			return array_pop( $plugins );
    63. 

  63. 		}
    64. 

  64. 

  65. 		return array( 'plugins' => $plugins );
    66. 

  66. 

  67. 	}
    68. 

  68. 

  69. 	protected function validate_input( $plugin ) {
    70. 

  70. 

  71. 		if ( is_wp_error( $error = parent::validate_input( $plugin ) ) ) {
    72. 

  72. 			return $error;
    73. 

  73. 		}
    74. 

  74. 

  75. 		if ( is_wp_error( $error = $this->validate_network_wide() ) ) {
    76. 

  76. 			return $error;
    77. 

  77. 		}
    78. 

  78. 

  79. 		$args = $this->input();
    80. 

  80. 		// find out what plugin, or plugins we are dealing with
    81. 

  81. 		// validate the requested plugins
    82. 

  82. 		if ( ! isset( $plugin ) || empty( $plugin ) ) {
    83. 

  83. 			if ( ! $args['plugins'] || empty( $args['plugins'] ) ) {
    84. 

  84. 				return new WP_Error( 'missing_plugin', __( 'You are required to specify a plugin.', 'jetpack' ), 400 );
    85. 

  85. 			}
    86. 

  86. 			if ( is_array( $args['plugins'] ) ) {
    87. 

  87. 				$this->plugins = $args['plugins'];
    88. 

  88. 			} else {
    89. 

  89. 				$this->plugins[] = $args['plugins'];
    90. 

  90. 			}
    91. 

  91. 		} else {
    92. 

  92. 			$this->bulk = false;
    93. 

  93. 			$this->plugins[] = urldecode( $plugin );
    94. 

  94. 		}
    95. 

  95. 

  96. 		if ( is_wp_error( $error = $this->validate_plugins() ) ) {
    97. 

  97. 			return $error;
    98. 

  98. 		};
    99. 

  99. 

  100. 		return true;
    101. 

  101. 	}
    102. 

  102. 

  103. 	/**
    104. 

  104. 	 * Walks through submitted plugins to make sure they are valid
    105. 

  105. 	 * @return bool|WP_Error
    106. 

  106. 	 */
    107. 

  107. 	protected function validate_plugins() {
    108. 

  108. 		if ( empty( $this->plugins ) || ! is_array( $this->plugins ) ) {
    109. 

  109. 			return new WP_Error( 'missing_plugins', __( 'No plugins found.', 'jetpack' ));
    110. 

  110. 		}
    111. 

  111. 		foreach( $this->plugins as $index => $plugin ) {
    112. 

  112. 			if ( ! preg_match( "/\.php$/", $plugin ) ) {
    113. 

  113. 				$plugin =  $plugin . '.php';
    114. 

  114. 				$this->plugins[ $index ] = $plugin;
    115. 

  115. 			}
    116. 

  116. 			$valid = $this->validate_plugin( urldecode( $plugin ) ) ;
    117. 

  117. 			if ( is_wp_error( $valid ) ) {
    118. 

  118. 				return $valid;
    119. 

  119. 			}
    120. 

  120. 		}
    121. 

  121. 

  122. 		return true;
    123. 

  123. 	}
    124. 

  124. 

  125. 	protected function format_plugin( $plugin_file, $plugin_data ) {
    126. 

  126. 		if ( version_compare( $this->min_version, '1.2', '>=' ) ) {
    127. 

  127. 			return $this->format_plugin_v1_2( $plugin_file, $plugin_data );
    128. 

  128. 		}
    129. 

  129. 		$plugin = array();
    130. 

  130. 		$plugin['id']              = preg_replace("/(.+)\.php$/", "$1", $plugin_file );
    131. 

  131. 		$plugin['slug']            = Jetpack_Autoupdate::get_plugin_slug( $plugin_file );
    132. 

  132. 		$plugin['active']          = Jetpack::is_plugin_active( $plugin_file );
    133. 

  133. 		$plugin['name']            = $plugin_data['Name'];
    134. 

  134. 		$plugin['plugin_url']      = $plugin_data['PluginURI'];
    135. 

  135. 		$plugin['version']         = $plugin_data['Version'];
    136. 

  136. 		$plugin['description']     = $plugin_data['Description'];
    137. 

  137. 		$plugin['author']          = $plugin_data['Author'];
    138. 

  138. 		$plugin['author_url']      = $plugin_data['AuthorURI'];
    139. 

  139. 		$plugin['network']         = $plugin_data['Network'];
    140. 

  140. 		$plugin['update']          = $this->get_plugin_updates( $plugin_file );
    141. 

  141. 		$plugin['next_autoupdate'] = date( 'Y-m-d H:i:s', wp_next_scheduled( 'wp_maybe_auto_update' ) );
    142. 

  142. 		$action_link = $this->get_plugin_action_links( $plugin_file );
    143. 

  143. 		if ( ! empty( $action_link ) ) {
    144. 

  144. 			$plugin['action_links'] = $action_link;
    145. 

  145. 		}
    146. 

  146. 

  147. 		$plugin['plugin'] = $plugin_file;
    148. 

  148. 		if ( ! class_exists( 'WP_Automatic_Updater' ) ) {
    149. 

  149. 			require_once ABSPATH . 'wp-admin/includes/class-wp-upgrader.php';
    150. 

  150. 		}
    151. 

  151. 		$autoupdate           = ( new WP_Automatic_Updater() )->should_update( 'plugin', (object) $plugin, WP_PLUGIN_DIR );
    152. 

  152. 		$plugin['autoupdate'] = $autoupdate;
    153. 

  153. 

  154. 		$autoupdate_translation = in_array( $plugin_file, Jetpack_Options::get_option( 'autoupdate_plugins_translations', array() ) );
    155. 

  155. 		$plugin['autoupdate_translation'] = $autoupdate || $autoupdate_translation || Jetpack_Options::get_option( 'autoupdate_translations', false );
    156. 

  156. 

  157. 		$plugin['uninstallable']   = is_uninstallable_plugin( $plugin_file );
    158. 

  158. 

  159. 		if ( is_multisite() ) {
    160. 

  160. 			$plugin['network_active'] = is_plugin_active_for_network( $plugin_file );
    161. 

  161. 		}
    162. 

  162. 

  163. 		if ( ! empty ( $this->log[ $plugin_file ] ) ) {
    164. 

  164. 			$plugin['log'] = $this->log[ $plugin_file ];
    165. 

  165. 		}
    166. 

  166. 		return $plugin;
    167. 

  167. 	}
    168. 

  168. 

  169. 	protected function format_plugin_v1_2( $plugin_file, $plugin_data ) {
    170. 

  170. 		$plugin = array();
    171. 

  171. 		$plugin['slug']            = Jetpack_Autoupdate::get_plugin_slug( $plugin_file );
    172. 

  172. 		$plugin['active']          = Jetpack::is_plugin_active( $plugin_file );
    173. 

  173. 		$plugin['name']            = preg_replace("/(.+)\.php$/", "$1", $plugin_file );
    174. 

  174. 		$plugin['display_name']	   = $plugin_data['Name'];
    175. 

  175. 		$plugin['plugin_url']      = $plugin_data['PluginURI'];
    176. 

  176. 		$plugin['version']         = $plugin_data['Version'];
    177. 

  177. 		$plugin['description']     = $plugin_data['Description'];
    178. 

  178. 		$plugin['author']          = $plugin_data['Author'];
    179. 

  179. 		$plugin['author_url']      = $plugin_data['AuthorURI'];
    180. 

  180. 		$plugin['network']         = $plugin_data['Network'];
    181. 

  181. 		$plugin['update']          = $this->get_plugin_updates( $plugin_file );
    182. 

  182. 		$action_link = $this->get_plugin_action_links( $plugin_file );
    183. 

  183. 		if ( ! empty( $action_link ) ) {
    184. 

  184. 			$plugin['action_links'] = $action_link;
    185. 

  185. 		}
    186. 

  186. 

  187. 		$plugin['plugin'] = $plugin_file;
    188. 

  188. 		if ( ! class_exists( 'WP_Automatic_Updater' ) ) {
    189. 

  189. 			require_once ABSPATH . 'wp-admin/includes/class-wp-upgrader.php';
    190. 

  190. 		}
    191. 

  191. 		$autoupdate           = ( new WP_Automatic_Updater() )->should_update( 'plugin', (object) $plugin, WP_PLUGIN_DIR );
    192. 

  192. 		$plugin['autoupdate'] = $autoupdate;
    193. 

  193. 

  194. 		$autoupdate_translation = $this->plugin_has_translations_autoupdates_enabled( $plugin_file );
    195. 

  195. 		$plugin['autoupdate_translation'] = $autoupdate || $autoupdate_translation || Jetpack_Options::get_option( 'autoupdate_translations', false );
    196. 

  196. 		$plugin['uninstallable']   = is_uninstallable_plugin( $plugin_file );
    197. 

  197. 

  198. 		if ( is_multisite() ) {
    199. 

  199. 			$plugin['network_active'] = is_plugin_active_for_network( $plugin_file );
    200. 

  200. 		}
    201. 

  201. 

  202. 		if ( ! empty ( $this->log[ $plugin_file ] ) ) {
    203. 

  203. 			$plugin['log'] = $this->log[ $plugin_file ];
    204. 

  204. 		}
    205. 

  205. 

  206. 		return $plugin;
    207. 

  207. 	}
    208. 

  208. 

  209. 	protected function plugin_has_translations_autoupdates_enabled( $plugin_file ) {
    210. 

  210. 		return (bool) in_array( $plugin_file, Jetpack_Options::get_option( 'autoupdate_plugins_translations', array() ) );
    211. 

  211. 	}
    212. 

  212. 

  213. 	protected function get_file_mod_capabilities() {
    214. 

  214. 		$reasons_can_not_autoupdate = array();
    215. 

  215. 		$reasons_can_not_modify_files = array();
    216. 

  216. 

  217. 		$has_file_system_write_access = Functions::file_system_write_access();
    218. 

  218. 		if ( ! $has_file_system_write_access ) {
    219. 

  219. 			$reasons_can_not_modify_files['has_no_file_system_write_access'] =  __( 'The file permissions on this host prevent editing files.', 'jetpack' );
    220. 

  220. 		}
    221. 

  221. 

  222. 		$disallow_file_mods = Constants::get_constant('DISALLOW_FILE_MODS' );
    223. 

  223. 		if ( $disallow_file_mods ) {
    224. 

  224. 			$reasons_can_not_modify_files['disallow_file_mods'] =  __( 'File modifications are explicitly disabled by a site administrator.', 'jetpack' );
    225. 

  225. 		}
    226. 

  226. 

  227. 		$automatic_updater_disabled = Constants::get_constant( 'AUTOMATIC_UPDATER_DISABLED' );
    228. 

  228. 		if ( $automatic_updater_disabled ) {
    229. 

  229. 			$reasons_can_not_autoupdate['automatic_updater_disabled'] = __( 'Any autoupdates are explicitly disabled by a site administrator.', 'jetpack' );
    230. 

  230. 		}
    231. 

  231. 

  232. 		if ( is_multisite() ) {
    233. 

  233. 			// is it the main network ? is really is multi network
    234. 

  234. 			if ( Jetpack::is_multi_network() ) {
    235. 

  235. 				$reasons_can_not_modify_files['is_multi_network'] =  __( 'Multi network install are not supported.', 'jetpack' );
    236. 

  236. 			}
    237. 

  237. 			// Is the site the main site here.
    238. 

  238. 			if ( ! is_main_site() ) {
    239. 

  239. 				$reasons_can_not_modify_files['is_sub_site'] =  __( 'The site is not the main network site', 'jetpack' );
    240. 

  240. 			}
    241. 

  241. 		}
    242. 

  242. 

  243. 		$file_mod_capabilities = array(
    244. 

  244. 			'modify_files' => (bool) empty( $reasons_can_not_modify_files ), // install, remove, update
    245. 

  245. 			'autoupdate_files' => (bool) empty( $reasons_can_not_modify_files ) && empty( $reasons_can_not_autoupdate ), // enable autoupdates
    246. 

  246. 		);
    247. 

  247. 

  248. 		if ( ! empty( $reasons_can_not_modify_files ) ) {
    249. 

  249. 			$file_mod_capabilities['reasons_modify_files_unavailable'] = $reasons_can_not_modify_files;
    250. 

  250. 		}
    251. 

  251. 

  252. 		if ( ! $file_mod_capabilities['autoupdate_files'] ) {
    253. 

  253. 			$file_mod_capabilities['reasons_autoupdate_unavailable'] = array_merge( $reasons_can_not_autoupdate, $reasons_can_not_modify_files );
    254. 

  254. 		}
    255. 

  255. 		return $file_mod_capabilities;
    256. 

  256. 	}
    257. 

  257. 

  258. 	protected function get_plugins() {
    259. 

  259. 		$plugins = array();
    260. 

  260. 		/** This filter is documented in wp-admin/includes/class-wp-plugins-list-table.php */
    261. 

  261. 		$installed_plugins = apply_filters( 'all_plugins', get_plugins() );
    262. 

  262. 		foreach ( $this->plugins as $plugin ) {
    263. 

  263. 			if ( ! isset( $installed_plugins[ $plugin ] ) ) {
    264. 

  264. 				continue;
    265. 

  265. 			}
    266. 

  266. 

  267. 			$formatted_plugin = $this->format_plugin( $plugin, $installed_plugins[ $plugin ] );
    268. 

  268. 

  269. 			// If this endpoint accepts site based authentication and a blog token is used, skip capabilities check.
    270. 

  270. 			if ( $this->accepts_site_based_authentication() ) {
    271. 

  271. 				$plugins[] = $formatted_plugin;
    272. 

  272. 				continue;
    273. 

  273. 			}
    274. 

  274. 

  275. 			/*
    276. 

  276. 			 * Do not show network-active plugins
    277. 

  277. 			 * to folks who do not have the permission to see them.
    278. 

  278. 			 */
    279. 

  279. 			if (
    280. 

  280. 				/** This filter is documented in src/wp-admin/includes/class-wp-plugins-list-table.php */
    281. 

  281. 				! apply_filters( 'show_network_active_plugins', current_user_can( 'manage_network_plugins' ) )
    282. 

  282. 				&& ! empty( $formatted_plugin['network_active'] )
    283. 

  283. 				&& true === $formatted_plugin['network_active']
    284. 

  284. 			) {
    285. 

  285. 				continue;
    286. 

  286. 			}
    287. 

  287. 

  288. 			$plugins[] = $formatted_plugin;
    289. 

  289. 		}
    290. 

  290. 		$args = $this->query_args();
    291. 

  291. 

  292. 		if ( isset( $args['offset'] ) ) {
    293. 

  293. 			$plugins = array_slice( $plugins, (int) $args['offset'] );
    294. 

  294. 		}
    295. 

  295. 		if ( isset( $args['limit'] ) ) {
    296. 

  296. 			$plugins = array_slice( $plugins, 0, (int) $args['limit'] );
    297. 

  297. 		}
    298. 

  298. 

  299. 		return $plugins;
    300. 

  300. 	}
    301. 

  301. 

  302. 	protected function validate_network_wide() {
    303. 

  303. 		$args = $this->input();
    304. 

  304. 

  305. 		if ( isset( $args['network_wide'] ) && $args['network_wide'] ) {
    306. 

  306. 			$this->network_wide = true;
    307. 

  307. 		}
    308. 

  308. 

  309. 		// If this endpoint accepts site based authentication and a blog token is used, skip capabilities check.
    310. 

  310. 		if ( $this->accepts_site_based_authentication() ) {
    311. 

  311. 			return true;
    312. 

  312. 		}
    313. 

  313. 

  314. 		if ( $this->network_wide && ! current_user_can( 'manage_network_plugins' ) ) {
    315. 

  315. 			return new WP_Error( 'unauthorized', __( 'This user is not authorized to manage plugins network wide.', 'jetpack' ), 403 );
    316. 

  316. 		}
    317. 

  317. 

  318. 		return true;
    319. 

  319. 	}
    320. 

  320. 

  321. 

  322. 	protected function validate_plugin( $plugin ) {
    323. 

  323. 		if ( ! isset( $plugin) || empty( $plugin ) ) {
    324. 

  324. 			return new WP_Error( 'missing_plugin', __( 'You are required to specify a plugin to activate.', 'jetpack' ), 400 );
    325. 

  325. 		}
    326. 

  326. 

  327. 		if ( is_wp_error( $error = validate_plugin( $plugin ) ) ) {
    328. 

  328. 			return new WP_Error( 'unknown_plugin', $error->get_error_messages() , 404 );
    329. 

  329. 		}
    330. 

  330. 

  331. 		return true;
    332. 

  332. 	}
    333. 

  333. 

  334. 	protected function get_plugin_updates( $plugin_file ) {
    335. 

  335. 		$plugin_updates = get_plugin_updates();
    336. 

  336. 		if ( isset( $plugin_updates[ $plugin_file ] ) ) {
    337. 

  337. 			$update = $plugin_updates[ $plugin_file ]->update;
    338. 

  338. 			$cleaned_update = array();
    339. 

  339. 			foreach( (array) $update as $update_key => $update_value ) {
    340. 

  340. 				switch ( $update_key ) {
    341. 

  341. 					case 'id':
    342. 

  342. 					case 'slug':
    343. 

  343. 					case 'plugin':
    344. 

  344. 					case 'new_version':
    345. 

  345. 					case 'tested':
    346. 

  346. 						$cleaned_update[ $update_key ] = wp_kses( $update_value, array() );
    347. 

  347. 						break;
    348. 

  348. 					case 'url':
    349. 

  349. 					case 'package':
    350. 

  350. 						$cleaned_update[ $update_key ] = esc_url( $update_value );
    351. 

  351. 						break;
    352. 

  352. 				}
    353. 

  353. 			}
    354. 

  354. 			return (object) $cleaned_update;
    355. 

  355. 		}
    356. 

  356. 		return null;
    357. 

  357. 	}
    358. 

  358. 

  359. 	protected function get_plugin_action_links( $plugin_file ) {
    360. 

  360. 		return Functions::get_plugins_action_links( $plugin_file );
    361. 

  361. 	}
    362. 

  362. }
    363. 

  363.