Ubuntu
������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
api_client = $api_client;
$this->cdn_options = $cdn_options;
$this->options = $options;
$this->options_api = $options_api;
$this->user_client = $user_client;
}
/**
* {@inheritdoc}
*/
public static function get_subscribed_events() {
return [
'admin_init' => [
[ 'handle_rocketcdn_checkout_parameter' ],
[ 'maybe_retry_activation' ],
],
'wp_ajax_save_rocketcdn_token' => 'update_user_token',
'wp_ajax_rocketcdn_enable' => 'enable',
'wp_ajax_rocketcdn_disable' => 'disable',
'wp_ajax_rocketcdn_process_set' => 'set_process_status',
'wp_ajax_rocketcdn_process_status' => 'get_process_status',
'wp_ajax_rocketcdn_validate_token_cname' => 'validate_token_cname',
self::CRON_EVENT => 'maybe_disable_cdn',
'wp_rocket_upgrade' => [ 'refresh_cdn_cname', 10, 2 ],
];
}
/**
* Updates the RocketCDN user token value
*
* @since 3.5
*
* @return void
*/
public function update_user_token() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
if ( ! current_user_can( 'rocket_manage_options' ) ) {
wp_send_json_error( 'unauthorized_user' );
}
if ( empty( $_POST['value'] ) ) {
delete_option( 'rocketcdn_user_token' );
wp_send_json_success( 'user_token_deleted' );
}
if ( ! is_string( $_POST['value'] ) ) {
wp_send_json_error( 'invalid_token' );
}
$token = sanitize_key( $_POST['value'] );
if ( 40 !== strlen( $token ) ) {
wp_send_json_error( 'invalid_token_length' );
}
update_option( 'rocketcdn_user_token', $token );
wp_send_json_success( 'user_token_saved' );
}
/**
* Handles the rocketcdn_checkout URL parameter after express checkout.
*
* Detects the URL parameter, refreshes user data to get new RocketCDN credentials,
* enables RocketCDN, and redirects to clean URL.
*
* @since 3.20.5
*
* @return void
*/
public function handle_rocketcdn_checkout_parameter(): void {
// phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Checking URL parameter for redirect, not processing form data.
if ( ! isset( $_GET['rocketcdn_checkout'] ) ) {
return;
}
if ( ! current_user_can( 'rocket_manage_options' ) ) {
return;
}
// Refresh user data to get fresh RocketCDN credentials.
$this->user_client->flush_cache();
$user_data = $this->user_client->get_user_data();
if ( false === $user_data || empty( $user_data->rocketcdn->cdn_token ) || empty( $user_data->rocketcdn->cdn_url ) || empty( $user_data->rocketcdn->rocketcdn_website_id ) ) {
$this->remove_query_parameter_and_redirect();
return;
}
// Sanitize and store values to avoid multiple sanitization.
$token = sanitize_key( $user_data->rocketcdn->cdn_token );
$cdn_url = esc_url_raw( $user_data->rocketcdn->cdn_url );
$website_id = (int) $user_data->rocketcdn->rocketcdn_website_id;
// Validate token length (must be 40 characters).
if ( 40 !== strlen( $token ) ) {
$this->remove_query_parameter_and_redirect();
return;
}
// Activate the subscription via RocketCDN API.
$activation_result = $this->api_client->activate_subscription( $token, $website_id );
// Save token and enable CDN.
$this->cdn_options->save_token( $token );
$this->cdn_options->enable( $cdn_url );
// Schedule subscription check.
$subscription = $this->api_client->get_subscription_data();
$this->schedule_subscription_check( $subscription );
$this->remove_query_parameter_and_redirect();
}
/**
* Removes the query parameter and redirects to clean URL.
*
* @since 3.20.5
*
* @return void
*/
private function remove_query_parameter_and_redirect(): void {
$redirect_url = remove_query_arg( 'rocketcdn_checkout' );
wp_safe_redirect( $redirect_url );
rocket_get_constant( 'WP_ROCKET_IS_TESTING', false ) ? wp_die() : exit;
}
/**
* Ajax callback to enable RocketCDN
*
* @since 3.5
*
* @return void
*/
public function enable() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
$data = [
'process' => 'subscribe',
];
if ( ! current_user_can( 'rocket_manage_options' ) ) {
$data['message'] = 'unauthorized_user';
wp_send_json_error( $data );
}
if ( empty( $_POST['cdn_url'] ) ) {
$data['message'] = 'cdn_url_empty';
wp_send_json_error( $data );
}
$cdn_url = filter_var( wp_unslash( $_POST['cdn_url'] ), FILTER_VALIDATE_URL );
if ( ! $cdn_url ) {
$data['message'] = 'cdn_url_invalid_format';
wp_send_json_error( $data );
}
$this->cdn_options->enable( esc_url_raw( $cdn_url ) );
$subscription = $this->api_client->get_subscription_data();
$this->schedule_subscription_check( $subscription );
$this->delete_process();
$data['message'] = 'rocketcdn_enabled';
wp_send_json_success( $data );
}
/**
* AJAX callback to disable RocketCDN
*
* @since 3.5
*
* @return void
*/
public function disable() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
$data = [
'process' => 'unsubscribe',
];
if ( ! current_user_can( 'rocket_manage_options' ) ) {
$data['message'] = 'unauthorized_user';
wp_send_json_error( $data );
}
$this->cdn_options->disable();
$timestamp = wp_next_scheduled( self::CRON_EVENT );
if ( $timestamp ) {
wp_unschedule_event( $timestamp, self::CRON_EVENT );
}
$this->delete_process();
$data['message'] = 'rocketcdn_disabled';
wp_send_json_success( $data );
}
/**
* Delete the option tracking the RocketCDN process state
*
* @since 3.5
*
* @return void
*/
private function delete_process() {
delete_option( 'rocketcdn_process' );
}
/**
* Set the RocketCDN subscription process status
*
* @since 3.5
*
* @return void
*/
public function set_process_status() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
if ( ! current_user_can( 'rocket_manage_options' ) ) {
return;
}
if ( empty( $_POST['status'] ) ) {
return;
}
$status = filter_var( $_POST['status'], FILTER_VALIDATE_BOOLEAN ); // phpcs:ignore WordPress.Security.ValidatedSanitizedInput.MissingUnslash -- Used as a boolean.
if ( false === $status ) {
delete_option( 'rocketcdn_process' );
return;
}
update_option( 'rocketcdn_process', $status );
}
/**
* Check for RocketCDN subscription process status
*
* @since 3.5
*
* @return void
*/
public function get_process_status() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
if ( ! current_user_can( 'rocket_manage_options' ) ) {
wp_send_json_error();
}
if ( get_option( 'rocketcdn_process' ) ) {
wp_send_json_success();
}
wp_send_json_error();
}
/**
* Cron job to disable CDN if the subscription expired
*
* @since 3.5
*
* @return void
*/
public function maybe_disable_cdn() {
delete_transient( 'rocketcdn_status' );
$subscription = $this->api_client->get_subscription_data();
if ( rocket_get_constant( 'WP_ROCKET_IS_TESTING', false ) ) {
$subscription = apply_filters( 'rocket_pre_get_subscription_data', $subscription );
}
if ( 'running' === $subscription['subscription_status'] ) {
$this->schedule_subscription_check( $subscription );
return;
}
$this->cdn_options->disable();
}
/**
* Validates and updates the token and cname from RocketCDN Iframe.
*
* @return void
*/
public function validate_token_cname() {
check_ajax_referer( 'rocket-ajax', 'nonce', true );
$data = [];
if ( ! current_user_can( 'rocket_manage_options' ) ) {
$data['message'] = 'unauthorized_user';
wp_send_json_error( $data );
}
if ( empty( $_POST['cdn_url'] ) || empty( $_POST['cdn_token'] ) ) {
$data['message'] = 'cdn_values_empty';
wp_send_json_error( $data );
}
$token = sanitize_key( $_POST['cdn_token'] );
$cdn_url = filter_var( wp_unslash( $_POST['cdn_url'] ), FILTER_VALIDATE_URL );
if ( ! $cdn_url ) {
$data['message'] = 'cdn_url_invalid_format';
wp_send_json_error( $data );
}
if ( 40 !== strlen( $token ) ) {
$data['message'] = 'invalid_token_length';
wp_send_json_error( $data );
}
$current_token = get_option( 'rocketcdn_user_token' );
$current_cname = $this->cdn_options->get_cdn_cnames();
if ( ! empty( $current_token ) ) {
$data['message'] = 'token_already_set';
wp_send_json_error( $data );
}
update_option( 'rocketcdn_user_token', $token );
$this->cdn_options->enable( esc_url_raw( $cdn_url ) );
$data['message'] = 'token_updated_successfully';
wp_send_json_success( $data );
}
/**
* Schedule the next cron subscription check
*
* @since 3.5
*
* @param array $subscription Array containing the subscription data.
* @return void
*/
private function schedule_subscription_check( $subscription ) {
$timestamp = strtotime( $subscription['subscription_next_date_update'] ) + strtotime( '+2 days' );
if ( ! wp_next_scheduled( self::CRON_EVENT ) ) {
wp_schedule_single_event( $timestamp, self::CRON_EVENT );
}
}
/**
* Retries RocketCDN activation when subscription is inactive but has a cdn_url.
*
* This handles the case where site activation failed after checkout.
* When is_active is false but cdn_url is not empty, it means the subscription
* exists but this website isn't activated. We retry the activation automatically.
*
* @return void
*/
public function maybe_retry_activation(): void {
if ( ! current_user_can( 'rocket_manage_options' ) ) {
return;
}
$token = get_option( 'rocketcdn_user_token' );
// If token is not saved locally, try to get it from user endpoint.
if ( empty( $token ) ) {
$user_data = $this->user_client->get_user_data();
if ( false === $user_data || empty( $user_data->rocketcdn->cdn_token ) ) {
return;
}
$token = sanitize_key( $user_data->rocketcdn->cdn_token );
}
// Validate token length (should be exactly 40 chars).
if ( 40 !== strlen( (string) $token ) ) {
return;
}
// Check cached subscription data first to avoid unnecessary API calls.
$subscription_data = $this->api_client->get_subscription_data();
// Only retry when: is_active is false AND cdn_url is not empty.
if ( $subscription_data['is_active'] || empty( $subscription_data['cdn_url'] ) ) {
return;
}
if ( empty( $subscription_data['id'] ) ) {
return;
}
// Retry the activation.
$activation_result = $this->api_client->activate_subscription( $token, $subscription_data['id'] );
if ( is_wp_error( $activation_result ) ) {
return;
}
// Refresh subscription data after successful activation.
delete_transient( 'rocketcdn_status' );
$subscription = $this->api_client->get_subscription_data();
// Guard: only enable CDN and schedule check when subscription is active with a valid CDN URL.
if ( empty( $subscription['is_active'] ) || empty( $subscription['cdn_url'] ) ) {
return;
}
// Save token if not already saved (handles case where token came from user endpoint).
$saved_token = get_option( 'rocketcdn_user_token' );
if ( empty( $saved_token ) ) {
$this->cdn_options->save_token( $token );
}
// Enable CDN and schedule check.
$this->cdn_options->enable( $subscription['cdn_url'] );
$this->schedule_subscription_check( $subscription );
}
/**
* Upgrade callback.
*
* @param string $new_version Plugin new version.
* @param string $old_version Plugin old version.
* @return void
*/
public function refresh_cdn_cname( $new_version, $old_version ): void {
if ( version_compare( $old_version, '3.17.3', '>=' ) ) {
return;
}
$cdn_cnames = $this->options->get( 'cdn_cnames', [] );
if ( empty( $cdn_cnames ) ) {
return;
}
$subscription_data = $this->api_client->get_subscription_data();
if ( ! $subscription_data['is_active'] || empty( $subscription_data['cdn_url'] ) ) {
return;
}
$cdn_matches = $this->find( 'https:\/\/(?[a-zA-Z0-9]{8})\.rocketcdn\.me', $cdn_cnames[0] );
if ( empty( $cdn_matches ) || empty( $cdn_matches[0]['cdn_id'] ) ) {
return;
}
$this->options_api->set( 'rocketcdn_old_url', $cdn_cnames[0] );
$cdn_cnames[0] = str_replace( $cdn_matches[0]['cdn_id'], $cdn_matches[0]['cdn_id'] . '.delivery', $cdn_cnames[0] );
$this->options->set( 'cdn_cnames', $cdn_cnames );
$this->options_api->set( 'settings', $this->options->get_options() );
}
}