Ubuntu

modulenow = isset( $_GET['module'] ) ? $_GET['module'] : 'welcome'; $this->modulenow = array_key_exists( $this->modulenow, static::get_modules() ) && file_exists( SECUPRESS_MODULES_PATH . $this->modulenow . '/settings.php' ) ? $this->modulenow : 'welcome'; return $this; } /** Getters ================================================================================= */ /** * Set the modules infos. * * @since 1.0 * * @return (array) The modules. */ final public static function get_modules() { if ( empty( static::$modules ) ) { static::set_modules(); } return static::$modules; } /** * Get a module title. * * @since 1.0 * * @param (string) $module The desired module. * * @return (string) */ final public function get_module_title( $module = false ) { $modules = static::get_modules(); $module = $module ? $module : $this->modulenow; if ( ! empty( $modules[ $module ]['title'] ) ) { return $modules[ $module ]['title']; } return ''; } /** * Get a module descriptions. * * @since 1.0 * * @param (string) $module The desired module. * * @return (array) */ final public function get_module_descriptions( $module = false ) { $modules = static::get_modules(); $module = $module ? $module : $this->modulenow; if ( ! empty( $modules[ $module ]['description'] ) ) { return (array) $modules[ $module ]['description']; } return array(); } /** * Get a module summary. * * @since 1.0 * * @param (string) $module The desired module. * @param (string) $size The desired size: small|normal. * * @return (string) */ final public function get_module_summary( $module = false, $size = 'normal' ) { $modules = static::get_modules(); $module = $module ? $module : $this->modulenow; if ( ! empty( $modules[ $module ]['summaries'][ $size ] ) ) { return $modules[ $module ]['summaries'][ $size ]; } return ''; } /** * Get a module icon. * * @since 1.0 * @author Geoffrey * * @param (string) $module The desired module. * * @return (string) */ final public function get_module_icon( $module = false ) { $modules = static::get_modules(); $module = $module ? $module : $this->modulenow; if ( ! empty( $modules[ $module ]['icon'] ) ) { return $modules[ $module ]['icon']; } return ''; } /** * Tells if the reset box should be displayed for a specific module. * * @since 1.0 * * @param (string) $module The desired module. * * @return (bool) */ final public function display_module_reset_box( $module = false ) { $modules = static::get_modules(); $module = $module ? $module : $this->modulenow; return isset( $modules[ $module ]['with_reset_box'] ) ? (bool) $modules[ $module ]['with_reset_box'] : true; } /** Init ==================================================================================== */ /** * Init: this method is required by the class `SecuPress_Singleton`. * * @since 1.0 */ protected function _init() { parent::_init(); $modules = static::get_modules(); $this->with_form = ! ( isset( $modules[ $this->modulenow ]['with_form'] ) && false === $modules[ $this->modulenow ]['with_form'] ); if ( secupress_is_pro() ) { require_once( SECUPRESS_PRO_ADMIN_PATH . 'settings.php' ); } } /** Main template tags ====================================================================== */ /** * Print the page content. * * @since 1.0 */ public function print_page() { $secupress_has_sideads = apply_filters( 'secupress.no_sidebar', true ) && apply_filters( 'secupress.no_sideads', true ); ?>

print_current_module(); ?>

print_sideads(); ?>

$module ) { $icon = isset( $module['icon'] ) ? $module['icon'] : 'secupress-simple'; $class = $this->get_current_module() === $key ? 'active' : ''; $class .= ! empty( $module['mark_as_pro'] ) ? ' secupress-pro-module' : ''; ?>

'; } /** * Print the current module. * * @since 1.0 */ protected function print_current_module() { ?>

print_module_title(); ?>

get_with_form() ) { $this->print_open_form_tag(); } ?>

load_module_settings(); $this->print_module_reset_box(); ?>

get_with_form() ) { $this->print_close_form_tag(); } } /** * Print a box allowing to reset the current module settings. * * @since 1.0 */ protected function print_module_reset_box() { if ( ! $this->display_module_reset_box() ) { return; } // //// Todo save settings with history. $this->set_current_section( 'reset' ); $this->set_section_description( __( 'When you need to reset this module’s settings to the default.', 'secupress' ) ); // For now, remove the reset button since settings are linked to module activation, I don't want to deactivate all in one click :s // $this->add_section( __( 'Module settings', 'secupress' ), array( 'with_save_button' => false ) ); $this->set_current_plugin( 'reset' ); $this->add_field( array( 'name' => 'reset', 'field_type' => 'field_button', 'style' => 'small', 'class' => 'secupress-button-secondary', 'url' => wp_nonce_url( admin_url( 'admin-post.php?action=secupress_reset_settings&module=' . $this->get_current_module() ), 'secupress_reset_' . $this->get_current_module() ), 'label' => sprintf( __( 'Reset the %s’s settings', 'secupress' ), $this->get_module_title() ), ) ); $this->do_sections(); } /** * Print the module title. * * @since 1.0 * * @param (string) $tag The title tag to use. * * @return (object) The class instance. */ protected function print_module_title( $tag = 'h2' ) { echo "<$tag class=\"secupress-tc-title\">"; $this->print_module_icon(); echo $this->get_module_title(); echo "\n"; return $this; } /** * Print the module descriptions. * * @since 1.0 * * @return (object) The class instance. */ protected function print_module_description() { if ( $this->get_module_descriptions() ) { echo '

' . implode( "

", $this->get_module_descriptions() ) . "

\n"; } return $this; } /** * Print the module icon. * * @since 1.0 * @author Geoffrey * * @return (object) The class instance. */ protected function print_module_icon() { if ( $this->get_module_icon() ) { echo '' . "\n"; } return $this; } /** Specific fields ========================================================================= */ /** * Non login time slot field. * The field is hidden in the free version. * * @since 1.0 * * @param (array) $args An array of parameters. See `::field()`. */ protected function countries( $args ) {} /** * Non login time slot field. * The field is hidden in the free version. * * @since 1.0 * * @param (array) $args An array of parameters. See `::field()`. */ protected function non_login_time_slot( $args ) {} /** * Displays the scheduled backups. * * @since 1.0 */ protected function scheduled_backups() { echo '' . __( 'Learn more about SecuPress Pro', 'secupress' ) . ''; _e( 'This feature is available in SecuPress Pro', 'secupress' ); } /** * Displays the scheduled scan. * * @since 1.0 */ protected function scheduled_scan() { echo '' . __( 'Learn more about SecuPress Pro', 'secupress' ) . ''; _e( 'This feature is available in SecuPress Pro', 'secupress' ); } /** * Displays the scheduled file monitoring. * * @since 1.0 */ protected function scheduled_monitoring() { echo '' . __( 'Learn more about SecuPress Pro', 'secupress' ) . ''; _e( 'This feature is available in SecuPress Pro', 'secupress' ); } /** * Displays the banned IPs and add actions to delete them or add new ones. * * @since 1.0 */ protected function blacklist_ips() { $ban_ips = get_site_option( SECUPRESS_BAN_IP ); $ban_ips = is_array( $ban_ips ) ? $ban_ips : []; $offset = get_option( 'gmt_offset' ) * HOUR_IN_SECONDS; $page_url = secupress_admin_url( 'modules', 'logs' ); $referer_arg = '&_wp_http_referer=' . urlencode( esc_url_raw( $page_url ) ); $is_search = false; $search_val = ''; $empty_list_message = __( 'Empty disallowed IP list', 'secupress' ); // Ban form. echo '\n"; // Search. if ( $ban_ips && ! empty( $_POST['secupress-search-banned-ip'] ) ) { // WPCS: CSRF ok. $search_val = urldecode( trim( $_POST['secupress-search-banned-ip'] ) ); // WPCS: CSRF ok. $is_search = true; $search_val = preg_quote( $search_val, '~' ); $found_ips = preg_grep('~' . $search_val . '~', array_keys( $ban_ips ) ); $found_ips = array_flip( $found_ips ); $ban_ips = array_intersect_key( $ban_ips, $found_ips ); if ( empty( $ban_ips ) ) { $empty_list_message = __( 'IP not found.', 'secupress' ); } } // Search form. echo '\n"; // Slice the list a bit: limit last results. /** * How many IP max to display * * @param (int) $limit 50 by default */ $limit = apply_filters( 'secupress.ip_list.limit_max', 50 ); $count_ips = count( $ban_ips ); if ( $count_ips > $limit ) { $ban_ips = array_slice( $ban_ips, - $limit ); echo '

' . sprintf( __( 'Last %1$s/%2$s disallowed IPs:', 'secupress' ), number_format_i18n( $limit ), $count_ips ) . '

' . "\n"; } // Display the list. echo '

'; $format = __( 'M jS Y', 'secupress' ) . ' ' . __( 'G:i', 'secupress' ); $time = date_i18n( $format, $time + $offset ); $href = wp_nonce_url( admin_url( 'admin-post.php?action=secupress-unban-ip&ip=' . esc_attr( $ip ) . $referer_arg ), 'secupress-unban-ip_' . $ip ); printf( __( '%s (Banned until %s)', 'secupress' ), esc_html( $ip ), $time ); printf( '%s ', esc_url( $href ), __( 'Remove', 'secupress' ) ); echo "
' . __( 'Do a search to find more.', 'secupress' ) . '
' . $empty_list_message . '

\n"; // Actions. echo '

'; // Display a button to unban all IPs. $clear_href = wp_nonce_url( admin_url( 'admin-post.php?action=secupress-clear-ips' . $referer_arg ), 'secupress-clear-ips' ); echo '' . __( 'Clear all IPs', 'secupress' ) . "\n"; echo ''; // For JS: ban a IP. echo '\n"; echo ''; echo "

\n"; } /** * Displays the textarea that lists the IP addresses not to ban. * * @since 1.0 * * @param (array) $args An array of parameters. See `::field()`. */ protected function whitelist_ips( $args ) { $ban_ips = get_site_option( SECUPRESS_WHITE_IP ); $ban_ips = is_array( $ban_ips ) ? $ban_ips : []; $offset = get_option( 'gmt_offset' ) * HOUR_IN_SECONDS; $page_url = secupress_admin_url( 'modules', 'logs' ); $referer_arg = '&_wp_http_referer=' . urlencode( esc_url_raw( $page_url ) ); $is_search = false; $search_val = ''; $empty_list_message = __( 'Empty allowed IP list', 'secupress' ); // Ban form. echo '\n"; // Search. if ( $ban_ips && ! empty( $_POST['secupress-search-whitelist-ip'] ) ) { // WPCS: CSRF ok. $search_val = urldecode( trim( $_POST['secupress-search-whitelist-ip'] ) ); // WPCS: CSRF ok. $is_search = true; $search_val = preg_quote( $search_val, '~' ); $found_ips = preg_grep('~' . $search_val . '~', array_keys( $ban_ips ) ); $found_ips = array_flip( $found_ips ); $ban_ips = array_intersect_key( $ban_ips, $found_ips ); if ( empty( $ban_ips ) ) { $empty_list_message = __( 'IP not found.', 'secupress' ); } } // Search form. echo '\n"; // Slice the list a bit: limit last results. /** * How many IP max to display * * @param (int) $limit 50 by default */ $limit = apply_filters( 'secupress.ip_list.limit_max', 50 ); $count_ips = count( $ban_ips ); if ( $count_ips > $limit ) { $ban_ips = array_slice( $ban_ips, - $limit ); echo '

' . sprintf( __( 'Last %1$s/%2$s allowed IPs:', 'secupress' ), number_format_i18n( $limit ), $count_ips ) . '

' . "\n"; } // Display the list. echo '

'; $href = wp_nonce_url( admin_url( 'admin-post.php?action=secupress-unwhitelist-ip&ip=' . esc_attr( $ip ) . $referer_arg ), 'secupress-unwhitelist-ip_' . $ip ); printf( '%s', esc_html( $ip ) ); printf( '%s ', esc_url( $href ), __( 'Remove', 'secupress' ) ); echo "
' . __( 'Do a search to find more.', 'secupress' ) . '
' . $empty_list_message . '

\n"; // Actions. echo '

'; // Display a button to unban all IPs. $clear_href = wp_nonce_url( admin_url( 'admin-post.php?action=secupress-clear-whitelist-ips' . $referer_arg ), 'secupress-clear-whitelist-ips' ); echo '' . __( 'Clear all IPs', 'secupress' ) . "\n"; echo ''; // For JS: ban a IP. echo '\n"; echo ''; echo "

\n"; } /** * Displays the checkbox to activate the "action" Logs. * * @since 1.0 * * @param (array) $args An array of parameters. See `::field()`. */ protected function activate_action_logs( $args ) { $name_attribute = 'secupress-plugin-activation[' . $args['name'] . ']'; $disabled = ! empty( $args['disabled'] ) || static::is_pro_feature( $args['name'] ); $disabled = $disabled ? ' disabled="disabled"' : ''; $value = (int) secupress_is_submodule_active( 'logs', 'action-logs' ); // Labels. $label_open = ''; $label_close = ''; if ( '' !== $args['label_before'] || '' !== $args['label'] || '' !== $args['label_after'] ) { $label_open = ''; $label_close = ''; } ?> '; $label_close = ''; } ?>

modulenow . '/settings.php'; if ( file_exists( $module_file ) ) { require_once( $module_file ); } return $this; } /** * Include a plugin settings file. Also, automatically set the current module and print the sections. * * @since 1.0 * * @param (string) $plugin The plugin. * * @return (object) The class instance. */ final protected function load_plugin_settings( $plugin ) { /** * Give the possibility to hide a full block of options * * @since 1.4 * * @param (bool) false by default */ if ( false !== apply_filters( 'secupress.settings.load_plugin.' . $plugin, false ) ) { return; } $plugin_file = SECUPRESS_MODULES_PATH . $this->modulenow . '/settings/' . $plugin . '.php'; return $this->require_settings_file( $plugin_file, $plugin ); } /** Other =================================================================================== */ /** * Filter the arguments passed to the section submit button and disable it. * * @since 1.0.6 * @author Grégory Viguier * * @param (array) $args An array of arguments passed to the `submit_button()` method. * * @return (array) */ public function disable_sumit_buttons( $args ) { $wrap = isset( $args['wrap'] ) ? $args['wrap'] : true; $atts = array(); $atts = isset( $args['other_attributes'] ) && is_array( $args['other_attributes'] ) ? $args['other_attributes'] : array(); $atts = array_merge( $atts, array( 'disabled' => 'disabled', 'aria-disabled' => 'true', ) ); return array_merge( $args, array( 'wrap' => $wrap, 'other_attributes' => $atts, ) ); } }