File "redirection-admin.php"
Full Path: /home/refref/public_html/ID3/wordfence/plugins/redirection/redirection-admin.php
File size: 22.75 KB
MIME-type: text/x-php
Charset: utf-8
<?php
require_once __DIR__ . '/models/group.php';
require_once __DIR__ . '/models/monitor.php';
require_once __DIR__ . '/models/file-io.php';
require_once __DIR__ . '/database/database.php';
require_once __DIR__ . '/redirection-capabilities.php';
define( 'RED_DEFAULT_PER_PAGE', 25 );
define( 'RED_MAX_PER_PAGE', 200 );
class Redirection_Admin {
private static $instance = null;
private $monitor;
private $fixit_failed = false;
public static function init() {
if ( is_null( self::$instance ) ) {
self::$instance = new Redirection_Admin();
}
return self::$instance;
}
public function __construct() {
add_action( 'admin_menu', [ $this, 'admin_menu' ] );
add_action( 'admin_notices', [ $this, 'update_nag' ] );
add_filter( 'plugin_action_links_' . basename( dirname( REDIRECTION_FILE ) ) . '/' . basename( REDIRECTION_FILE ), [ $this, 'plugin_settings' ], 10, 4 );
add_filter( 'plugin_row_meta', [ $this, 'plugin_row_meta' ], 10, 4 );
add_filter( 'redirection_save_options', [ $this, 'flush_schedule' ] );
add_filter( 'set-screen-option', [ $this, 'set_per_page' ], 10, 3 );
add_filter( 'set_screen_option_redirection_log_per_page', function( $ignore, $option, $value ) {
return $value;
}, 10, 3 );
add_action( 'redirection_redirect_updated', [ $this, 'set_default_group' ], 10, 2 );
add_action( 'redirection_redirect_updated', [ $this, 'clear_cache' ], 10, 2 );
if ( defined( 'REDIRECTION_FLYING_SOLO' ) && REDIRECTION_FLYING_SOLO ) {
add_filter( 'script_loader_src', [ $this, 'flying_solo' ], 10, 2 );
}
register_deactivation_hook( REDIRECTION_FILE, [ 'Redirection_Admin', 'plugin_deactivated' ] );
register_uninstall_hook( REDIRECTION_FILE, [ 'Redirection_Admin', 'plugin_uninstall' ] );
$this->monitor = new Red_Monitor( red_get_options() );
$this->run_hacks();
}
// These are only called on the single standard site, or in the network admin of the multisite - they run across all available sites
public static function plugin_activated() {
Red_Database::apply_to_sites( function() {
Red_Flusher::clear();
red_set_options();
} );
}
// These are only called on the single standard site, or in the network admin of the multisite - they run across all available sites
public static function plugin_deactivated() {
Red_Database::apply_to_sites( function() {
Red_Flusher::clear();
} );
}
// These are only called on the single standard site, or in the network admin of the multisite - they run across all available sites
public static function plugin_uninstall() {
$database = Red_Database::get_latest_database();
Red_Database::apply_to_sites( function() use ( $database ) {
$database->remove();
} );
}
/**
* Show the database upgrade nag
*
* @return void
*/
public function update_nag() {
$options = red_get_options();
// Is the site configured to upgrade automatically?
if ( $options['plugin_update'] === 'admin' ) {
$this->automatic_upgrade();
return;
}
// Can the user perform a manual database upgrade?
if ( ! Redirection_Capabilities::has_access( Redirection_Capabilities::CAP_OPTION_MANAGE ) ) {
return;
}
// Default manual update, with nag
$status = new Red_Database_Status();
$message = false;
if ( $status->needs_installing() ) {
/* translators: 1: URL to plugin page */
$message = sprintf( __( 'Please complete your <a href="%s">Redirection setup</a> to activate the plugin.', 'redirection' ), esc_url( $this->get_plugin_url() ) );
} elseif ( $status->needs_updating() ) {
/* translators: 1: URL to plugin page, 2: current version, 3: target version */
$message = sprintf( __( 'Redirection\'s database needs to be updated - <a href="%1$1s">click to update</a>.', 'redirection' ), esc_url( $this->get_plugin_url() ) );
}
if ( ! $message || strpos( Redirection_Request::get_request_url(), 'page=redirection.php' ) !== false ) {
return;
}
// Known HTML and so isn't escaped
// phpcs:ignore
echo '<div class="update-nag notice notice-warning" style="width: 95%">' . $message . '</div>';
}
/**
* Perform an automatic DB upgrade
*
* @return void
*/
private function automatic_upgrade() {
$loop = 0;
$status = new Red_Database_Status();
$database = new Red_Database();
// Loop until the DB is upgraded, or until a max is exceeded (just in case)
while ( $loop < 20 ) {
if ( ! $status->needs_updating() ) {
break;
}
$database->apply_upgrade( $status );
if ( $status->is_error() ) {
// If an error occurs then switch to 'prompt' mode and let the user deal with it.
red_set_options( [ 'plugin_update' => 'prompt' ] );
return;
}
$loop++;
}
}
// So it finally came to this... some plugins include their JS in all pages, whether they are needed or not. If there is an error
// then this can prevent Redirection running and it's a little sensitive about that. We use the nuclear option here to disable
// all other JS while viewing Redirection
public function flying_solo( $src, $handle ) {
$request = Redirection_Request::get_request_url();
if ( strpos( $request, 'page=redirection.php' ) !== false ) {
if ( substr( $src, 0, 4 ) === 'http' && $handle !== 'redirection' && strpos( $src, 'plugins' ) !== false ) {
if ( $this->ignore_this_plugin( $src ) ) {
return false;
}
}
}
return $src;
}
private function ignore_this_plugin( $src ) {
$ignore = array(
'mootools',
'wp-seo-',
'authenticate',
'wordpress-seo',
'yikes',
);
foreach ( $ignore as $text ) {
if ( strpos( $src, $text ) !== false ) {
return true;
}
}
return false;
}
public function flush_schedule( $options ) {
Red_Flusher::schedule();
return $options;
}
public function set_per_page( $status, $option, $value ) {
if ( $option === 'redirection_log_per_page' ) {
$value = max( 1, min( intval( $value, 10 ), RED_MAX_PER_PAGE ) );
return $value;
}
return $status;
}
public function plugin_settings( $links ) {
$status = new Red_Database_Status();
if ( $status->needs_updating() ) {
array_unshift( $links, '<a style="color: red" href="' . esc_url( $this->get_plugin_url() ) . '&sub=support">' . __( 'Upgrade Database', 'redirection' ) . '</a>' );
}
array_unshift( $links, '<a href="' . esc_url( $this->get_plugin_url() ) . '&sub=options">' . __( 'Settings', 'redirection' ) . '</a>' );
return $links;
}
public function plugin_row_meta( $plugin_meta, $plugin_file, $plugin_data, $status ) {
if ( $plugin_file === basename( dirname( REDIRECTION_FILE ) ) . '/' . basename( REDIRECTION_FILE ) ) {
$plugin_data['Description'] .= '<p>' . __( 'Please upgrade your database', 'redirection' ) . '</p>';
}
return $plugin_meta;
}
private function get_plugin_url() {
return admin_url( 'tools.php?page=' . basename( REDIRECTION_FILE ) );
}
private function get_first_available_page_url() {
$pages = Redirection_Capabilities::get_available_pages();
if ( count( $pages ) > 0 ) {
return $this->get_plugin_url() . ( $pages[0] === 'redirect' ? '' : '&sub=' . rawurlencode( $pages[0] ) );
}
return admin_url();
}
private function get_query( $name ) {
if ( isset( $_GET[ $name ] ) ) {
return sanitize_text_field( $_GET[ $name ] );
}
return null;
}
public function redirection_head() {
global $wp_version;
// Does user have access to this page?
if ( $this->get_current_page() === false ) {
// Redirect to root plugin page
wp_safe_redirect( $this->get_first_available_page_url() );
die();
}
if ( isset( $_REQUEST['action'] ) && isset( $_REQUEST['_wpnonce'] ) && is_string( $_REQUEST['action'] ) && wp_verify_nonce( $_REQUEST['_wpnonce'], 'wp_rest' ) ) {
$action = sanitize_text_field( $_REQUEST['action'] );
if ( $action === 'fixit' ) {
$this->run_fixit();
} elseif ( $action === 'rest_api' ) {
$this->set_rest_api( intval( $_REQUEST['rest_api'], 10 ) );
}
}
$build = REDIRECTION_VERSION . '-' . REDIRECTION_BUILD;
$preload = $this->get_preload_data();
$options = red_get_options();
$versions = array(
'Plugin: ' . REDIRECTION_VERSION . ' ' . REDIRECTION_DB_VERSION,
'WordPress: ' . $wp_version . ' (' . ( is_multisite() ? 'multi' : 'single' ) . ')',
'PHP: ' . phpversion(),
'Browser: ' . Redirection_Request::get_user_agent(),
'JavaScript: ' . plugin_dir_url( REDIRECTION_FILE ) . 'redirection.js?ver=' . $build,
'REST API: ' . red_get_rest_api(),
);
$this->inject();
// Add contextual help to some pages
if ( in_array( $this->get_current_page(), [ 'redirect', 'log', '404s', 'groups' ], true ) ) {
add_screen_option( 'per_page', array(
/* translators: maximum number of log entries */
'label' => sprintf( __( 'Log entries (%d max)', 'redirection' ), RED_MAX_PER_PAGE ),
'default' => RED_DEFAULT_PER_PAGE,
'option' => 'redirection_log_per_page',
) );
}
if ( defined( 'REDIRECTION_DEV_MODE' ) && REDIRECTION_DEV_MODE ) {
wp_enqueue_script( 'redirection', 'http://localhost:3312/redirection.js', array(), $build, true );
} else {
wp_enqueue_script( 'redirection', plugin_dir_url( REDIRECTION_FILE ) . 'redirection.js', array(), $build, true );
}
wp_enqueue_style( 'redirection', plugin_dir_url( REDIRECTION_FILE ) . 'redirection.css', array(), $build );
$is_new = false;
$major_version = implode( '.', array_slice( explode( '.', REDIRECTION_VERSION ), 0, 2 ) );
if ( $this->get_query( 'page' ) === 'redirection.php' && strpos( REDIRECTION_VERSION, '-beta' ) === false ) {
$is_new = version_compare( $options['update_notice'], $major_version ) < 0;
}
$status = new Red_Database_Status();
$status->check_tables_exist();
// Fix some sites having a version set to +OK - not sure why
if ( isset( $options['database'] ) && $options['database'] === '+OK' ) {
red_set_options( [ 'database' => REDIRECTION_DB_VERSION ] );
$status->stop_update();
}
$translations = $this->get_i18n_data();
wp_localize_script( 'redirection', 'Redirectioni10n', array(
'api' => [
'WP_API_root' => esc_url_raw( red_get_rest_api() ),
'WP_API_nonce' => wp_create_nonce( 'wp_rest' ),
'site_health' => admin_url( 'site-health.php' ),
'current' => $options['rest_api'],
'routes' => [
REDIRECTION_API_JSON => red_get_rest_api( REDIRECTION_API_JSON ),
REDIRECTION_API_JSON_INDEX => red_get_rest_api( REDIRECTION_API_JSON_INDEX ),
REDIRECTION_API_JSON_RELATIVE => red_get_rest_api( REDIRECTION_API_JSON_RELATIVE ),
],
],
'pluginBaseUrl' => plugins_url( '', REDIRECTION_FILE ),
'pluginRoot' => $this->get_plugin_url(),
'per_page' => $this->get_per_page(),
'locale' => implode( '-', array_slice( explode( '-', str_replace( '_', '-', get_locale() ) ), 0, 2 ) ),
'settings' => $options,
'preload' => $preload,
'versions' => implode( "\n", $versions ),
'version' => REDIRECTION_VERSION,
'database' => $status->get_json(),
'caps' => [
'pages' => Redirection_Capabilities::get_available_pages(),
'capabilities' => Redirection_Capabilities::get_all_capabilities(),
],
'update_notice' => $is_new ? $major_version : false,
) );
wp_set_script_translations( 'redirection', 'redirection', plugin_dir_path( __FILE__ ) . 'locale/json/' );
$this->add_help_tab();
}
// Some plugins misbehave, so this attempts to 'fix' them so Redirection can get on with it's work
private function run_hacks() {
add_filter( 'ip-geo-block-admin', array( $this, 'ip_geo_block' ) );
}
/*
* This works around the IP Geo Block plugin being very aggressive and breaking Redirection
*/
public function ip_geo_block( $validate ) {
$url = Redirection_Request::get_request_url();
$override = array(
'tools.php?page=redirection.php',
'action=red_proxy&rest_path=redirection',
);
foreach ( $override as $path ) {
if ( strpos( $url, $path ) !== false ) {
return array(
'result' => 'passed',
'auth' => false,
'asn' => false,
'code' => false,
'ip' => false,
);
}
}
return $validate;
}
private function run_fixit() {
if ( Redirection_Capabilities::has_access( Redirection_Capabilities::CAP_SUPPORT_MANAGE ) ) {
require_once dirname( REDIRECTION_FILE ) . '/models/fixer.php';
$fixer = new Red_Fixer();
$result = $fixer->fix( $fixer->get_status() );
if ( is_wp_error( $result ) ) {
$this->fixit_failed = $result;
}
}
}
private function set_rest_api( $api ) {
if ( $api >= 0 && $api <= REDIRECTION_API_JSON_RELATIVE ) {
red_set_options( array( 'rest_api' => intval( $api, 10 ) ) );
}
}
private function get_preload_data() {
$status = new Red_Database_Status();
if ( $status->needs_installing() ) {
include_once __DIR__ . '/models/importer.php';
return [
'importers' => Red_Plugin_Importer::get_plugins(),
];
}
if ( $this->get_current_page() === 'support' ) {
require_once dirname( REDIRECTION_FILE ) . '/models/fixer.php';
$fixer = new Red_Fixer();
return array(
'pluginStatus' => $fixer->get_json(),
);
}
return [];
}
private function add_help_tab() {
/* translators: URL */
$content = sprintf( __( 'You can find full documentation about using Redirection on the <a href="%s" target="_blank">redirection.me</a> support site.', 'redirection' ), 'https://redirection.me/support/?utm_source=redirection&utm_medium=plugin&utm_campaign=context-help' );
$title = __( 'Redirection Support', 'redirection' );
$current_screen = get_current_screen();
$current_screen->add_help_tab( array(
'id' => 'redirection',
'title' => 'Redirection',
'content' => "<h2>$title</h2><p>$content</p>",
) );
}
private function get_per_page() {
$per_page = intval( get_user_meta( get_current_user_id(), 'redirection_log_per_page', true ), 10 );
return $per_page > 0 ? max( 5, min( $per_page, RED_MAX_PER_PAGE ) ) : RED_DEFAULT_PER_PAGE;
}
private function get_i18n_data() {
$locale = get_locale();
// WP 4.7
if ( function_exists( 'get_user_locale' ) ) {
$locale = get_user_locale();
}
$i18n_json = dirname( REDIRECTION_FILE ) . '/locale/json/redirection-' . $locale . '.json';
if ( is_file( $i18n_json ) && is_readable( $i18n_json ) ) {
// phpcs:ignore
$locale_data = @file_get_contents( $i18n_json );
if ( $locale_data ) {
return json_decode( $locale_data, true );
}
}
// Return empty if we have nothing to return so it doesn't fail when parsed in JS
return array();
}
public function admin_menu() {
$hook = add_management_page( 'Redirection', 'Redirection', Redirection_Capabilities::get_plugin_access(), basename( REDIRECTION_FILE ), [ $this, 'admin_screen' ] );
add_action( 'load-' . $hook, [ $this, 'redirection_head' ] );
}
private function check_minimum_wp() {
$wp_version = get_bloginfo( 'version' );
if ( version_compare( $wp_version, REDIRECTION_MIN_WP, '<' ) ) {
return false;
}
return true;
}
/**
* Update the cache key when updating or creating a redirect
*
* @return void
*/
public function clear_cache() {
$settings = red_get_options();
if ( $settings['cache_key'] > 0 ) {
red_set_options( [ 'cache_key' => time() ] );
}
}
public function set_default_group( $id, $redirect ) {
red_set_options( array( 'last_group_id' => $redirect->get_group_id() ) );
}
public function admin_screen() {
if ( count( Redirection_Capabilities::get_all_capabilities() ) === 0 ) {
die( 'You do not have sufficient permissions to access this page.' );
}
if ( $this->check_minimum_wp() === false ) {
return $this->show_minimum_wordpress();
}
if ( $this->fixit_failed ) {
$this->show_fixit_failed();
}
Red_Flusher::schedule();
$this->show_main();
}
private function show_fixit_failed() {
?>
<div class="notice notice-error">
<h1><?php echo esc_html( $this->fixit_failed->get_error_message() ); ?></h1>
<p><?php echo esc_html( $this->fixit_failed->get_error_data() ); ?></p>
</div>
<?php
}
private function show_minimum_wordpress() {
global $wp_version;
/* translators: 1: Expected WordPress version, 2: Actual WordPress version */
$wp_requirement = sprintf( __( 'Redirection requires WordPress v%1$1s, you are using v%2$2s - please update your WordPress', 'redirection' ), REDIRECTION_MIN_WP, $wp_version );
?>
<div class="react-error">
<h1><?php esc_html_e( 'Unable to load Redirection', 'redirection' ); ?></h1>
<p><?php echo esc_html( $wp_requirement ); ?></p>
</div>
<?php
}
private function show_load_fail() {
?>
<div class="react-error" style="display: none">
<h1><?php esc_html_e( 'Unable to load Redirection ☹️', 'redirection' ); ?> v<?php echo esc_html( REDIRECTION_VERSION ); ?></h1>
<p><?php esc_html_e( "This may be caused by another plugin - look at your browser's error console for more details.", 'redirection' ); ?></p>
<p><?php esc_html_e( 'If you are using a page caching plugin or service (CloudFlare, OVH, etc) then you can also try clearing that cache.', 'redirection' ); ?></p>
<p><?php _e( 'Also check if your browser is able to load <code>redirection.js</code>:', 'redirection' ); ?></p>
<p><code><?php echo esc_html( plugin_dir_url( REDIRECTION_FILE ) . 'redirection.js?ver=' . rawurlencode( REDIRECTION_VERSION ) . '-' . rawurlencode( REDIRECTION_BUILD ) ); ?></code></p>
<p><?php esc_html_e( 'Please note that Redirection requires the WordPress REST API to be enabled. If you have disabled this then you won\'t be able to use Redirection', 'redirection' ); ?></p>
<p><?php _e( 'Please see the <a href="https://redirection.me/support/problems/">list of common problems</a>.', 'redirection' ); ?></p>
<p><?php esc_html_e( 'If you think Redirection is at fault then create an issue.', 'redirection' ); ?></p>
<p class="versions"><?php _e( '<code>Redirectioni10n</code> is not defined. This usually means another plugin is blocking Redirection from loading. Please disable all plugins and try again.', 'redirection' ); ?></p>
<p>
<a class="button-primary" target="_blank" href="https://github.com/johngodley/redirection/issues/new?title=Problem%20starting%20Redirection%20<?php echo esc_attr( REDIRECTION_VERSION ); ?>">
<?php esc_html_e( 'Create Issue', 'redirection' ); ?>
</a>
</p>
</div>
<?php
}
private function show_main() {
?>
<div id="react-modal"></div>
<div id="react-ui">
<div class="react-loading">
<h1><?php esc_html_e( 'Loading, please wait...', 'redirection' ); ?></h1>
<span class="react-loading-spinner"></span>
</div>
<noscript><?php esc_html_e( 'Please enable JavaScript', 'redirection' ); ?></noscript>
<?php $this->show_load_fail(); ?>
</div>
<script>
var prevError = window.onerror;
var errors = [];
var timeout = 0;
var timer = setInterval( function() {
if ( isRedirectionLoaded() ) {
resetAll();
} else if ( errors.length > 0 || timeout++ === 5 ) {
showError();
}
}, 5000 );
function isRedirectionLoaded() {
return typeof redirection !== 'undefined';
}
function showError() {
var errorText = "";
if ( errors.length > 0 ) {
errorText = "```\n" + errors.join( ',' ) + "\n```\n\n";
}
resetAll();
if ( document.querySelector( '.react-loading' ) ) {
document.querySelector( '.react-loading' ).style.display = 'none';
document.querySelector( '.react-error' ).style.display = 'block';
if ( typeof Redirectioni10n !== 'undefined' && Redirectioni10n ) {
document.querySelector( '.versions' ).innerHTML = Redirectioni10n.versions.replace( /\n/g, '<br />' );
document.querySelector( '.react-error .button-primary' ).href += '&body=' + encodeURIComponent( errorText ) + encodeURIComponent( Redirectioni10n.versions );
}
} else {
document.querySelector( '#react-ui' ).innerHTML = '<p>Sorry something went very wrong.</p>';
}
}
function resetAll() {
clearInterval( timer );
window.onerror = prevError;
}
window.onerror = function( error, url, line ) {
console.error( error );
errors.push( error + ' ' + url + ' ' + line );
};
</script>
<?php
}
/**
* Get the current plugin page.
* Uses $_GET['sub'] to determine the current page unless a page is supplied.
*
* @param string $page Current page.
*
* @return string|boolean Current page, or false.
*/
private function get_current_page( $page = false ) {
if ( ! $page ) {
// phpcs:ignore
$page = 'redirect';
if ( $this->get_query( 'sub' ) ) {
$page = $this->get_query( 'sub' );
}
}
// Are we allowed to access this page?
if ( in_array( $page, Redirection_Capabilities::get_available_pages(), true ) ) {
// phpcs:ignore
return $page;
}
return false;
}
private function inject() {
// phpcs:ignore
$page = false;
if ( $this->get_query( 'page' ) ) {
$page = $this->get_query( 'page' );
}
if ( $page && $this->get_current_page() !== 'redirect' && $page === 'redirection.php' ) {
$this->try_export_logs();
$this->try_export_redirects();
$this->try_export_rss();
}
}
public function try_export_rss() {
$token = $this->get_query( 'token' );
$sub = $this->get_query( 'sub' );
if ( $token && $sub === 'rss' && Redirection_Capabilities::has_access( Redirection_Capabilities::CAP_REDIRECT_MANAGE ) ) {
$options = red_get_options();
// phpcs:ignore
if ( $token === $options['token'] && ! empty( $options['token'] ) ) {
$module = $this->get_query( 'module' );
// phpcs:ignore
$items = Red_Item::get_all_for_module( intval( $module, 10 ) );
$exporter = Red_FileIO::create( 'rss' );
$exporter->force_download();
// phpcs:ignore
echo $exporter->get_data( $items, array() );
die();
}
}
}
private function try_export_logs() {
if ( Redirection_Capabilities::has_access( Redirection_Capabilities::CAP_IO_MANAGE ) && isset( $_POST['export-csv'] ) && check_admin_referer( 'wp_rest' ) ) {
if ( $this->get_current_page() === 'log' ) {
Red_Redirect_Log::export_to_csv();
} elseif ( $this->get_current_page() === '404s' ) {
Red_404_Log::export_to_csv();
}
die();
}
}
private function try_export_redirects() {
// phpcs:ignore
$sub = $this->get_query( 'sub' );
if ( $sub !== 'io' ) {
return;
}
$export = $this->get_query( 'export' );
$exporter = $this->get_query( 'exporter' );
if ( Redirection_Capabilities::has_access( Redirection_Capabilities::CAP_IO_MANAGE ) && $export && $exporter && check_admin_referer( 'wp_rest' ) ) {
$export = Red_FileIO::export( $export, $exporter );
if ( $export !== false ) {
$export['exporter']->force_download();
// This data is not displayed and will be downloaded to a file
echo str_replace( '&', '&', wp_kses( $export['data'], 'strip' ) );
die();
}
}
}
}
register_activation_hook( REDIRECTION_FILE, array( 'Redirection_Admin', 'plugin_activated' ) );
add_action( 'init', array( 'Redirection_Admin', 'init' ) );
// This is causing a lot of problems with the REST API - disable qTranslate
add_filter( 'qtranslate_language_detect_redirect', function( $lang, $url ) {
$url = Redirection_Request::get_request_url();
if ( strpos( $url, '/wp-json/' ) !== false || strpos( $url, '?rest_route' ) !== false ) {
return false;
}
return $lang;
}, 10, 2 );