Changeset 3286707

Timestamp:

05/03/2025 11:00:37 AM (11 months ago)

Author:

th23

Message:

v3.1.3 release

• fix: upgrade to th23 Admin class 1.7.0, removing some inconsistencies regarding own updater incl removal of option to chose update source and ensure proper escaping of all output

Location:

th23-contact/tags/3.1.3

Files:

• . (copied) (copied from th23-contact/trunk)
• img (copied) (copied from th23-contact/trunk/img)
• inc (copied) (copied from th23-contact/trunk/inc)
• inc/th23-admin-class.css (copied) (copied from th23-contact/trunk/inc/th23-admin-class.css) (1 diff)
• inc/th23-admin-class.js (copied) (copied from th23-contact/trunk/inc/th23-admin-class.js)
• inc/th23-admin-class.php (copied) (copied from th23-contact/trunk/inc/th23-admin-class.php) (9 diffs)
• lang (copied) (copied from th23-contact/trunk/lang)
• readme.txt (copied) (copied from th23-contact/trunk/readme.txt) (3 diffs)
• th23-contact-admin.php (copied) (copied from th23-contact/trunk/th23-contact-admin.php) (2 diffs)
• th23-contact-block-editor.js (copied) (copied from th23-contact/trunk/th23-contact-block-editor.js)
• th23-contact-upgrade.php (copied) (copied from th23-contact/trunk/th23-contact-upgrade.php)
• th23-contact.css (copied) (copied from th23-contact/trunk/th23-contact.css)
• th23-contact.js (copied) (copied from th23-contact/trunk/th23-contact.js)
• th23-contact.php (copied) (copied from th23-contact/trunk/th23-contact.php) (2 diffs)

th23-contact/tags/3.1.3/inc/th23-admin-class.css

@@ -100 +100 @@
   margin-left: 64px;
 }
+@media screen and (min-width: 782px) {
+  div.th23-admin-about .floating-right {
+    float: right;
+  }
+  div.th23-admin-about .floating-right .separator-left {
+    display: none;
+  }
+}
+div.th23-admin-about .update-url {
+  cursor: pointer;
+}
 div.th23-admin-about a {
   text-decoration: none;

th23-contact/tags/3.1.3/inc/th23-admin-class.php

@@ -1 +1 @@
 <?php
 /*
-th23 Admin (adjusted for WP.org)
+th23 Admin
 Basic admin functionality
-Version: 1.6.2-wp
+Version: 1.7.0
 
 Coded 2024-2025 by Thorsten Hartmann (th23)
@@ -16 +16 @@
 }
 
-if(!class_exists('th23_admin_v162wp')) {
-    class th23_admin_v162wp {
+if(!class_exists('th23_admin_v170')) {
+    class th23_admin_v170 {
 
         private $parent;
@@ -51 +51 @@
             add_filter('plugin_row_meta', array(&$this, 'contact_link'), 10, 2);
 
+            // Handle plugin repository for plugin info and update for non-WP.org hosted plugin
+            // note: "update_url" and main filter for site_transient... have to be set by the plugin admin script
+            if(!empty($this->parent->plugin['update_url'])) {
+                // replace plugin row info / links to ensure detailed info from alternative source is available
+                // note: hook early to allow other modifications based on this eg adding support link and requirement notices
+                add_filter('plugin_row_meta', array(&$this, 'update_details'), 1, 4);
+                add_filter('plugins_api', array(&$this, 'update_info'), 20, 3);
+                add_action('upgrader_process_complete', array(&$this, 'update_cache'), 10, 2);
+            }
+
             // Add settings page and JS/ CSS
             if(!empty($this->parent->plugin['settings'])) {
@@ -105 +115 @@
             }
             return $links;
+        }
+
+        // Set plugin repository for plugin info and update
+        // Replace plugin row info / links to ensure detailed info from alternative source is available
+        function update_details($links, $file, $data, $status) {
+            if($this->parent->plugin['basename'] == $file) {
+                $links = array();
+                // replicate default version and author
+                if(!empty($data['Version'])) {
+                    /* translators: parses in plugin version number */
+                    $links[] = sprintf($this->__('Version %s'), $data['Version']);
+                }
+                if(!empty($data['Author'])) {
+                    $author = $data['Author'];
+                    if(!empty($data['AuthorURI'])) {
+                        $author = '<a href="' . $data['AuthorURI'] . '">' . $data['Author'] . '</a>';
+                    }
+                    /* translators: parses in plugin author name / link */
+                    $links[] = sprintf($this->__('By %s'), $author);
+                }
+                // add detailed info independed from source - original code only focuses on WP.org repository
+                if(current_user_can('install_plugins')) {
+                    $links[] = '<a href="' . esc_url(network_admin_url('plugin-install.php?tab=plugin-information&plugin=' . $this->parent->plugin['slug'] . '&TB_iframe=true&width=600&height=550')) . '" class="thickbox open-plugin-details-modal" data-title="' . esc_attr($data['Name']) . '">' . $this->__('View details') . '</a>';
+                }
+                elseif(!empty($data['PluginURI'])) {
+                    $links[] = '<a href="' . esc_url($data['PluginURI']) . '">' . $this->__('Visit plugin site') . '</a>';
+                }
+            }
+            return $links;
+        }
+
+        // Get plugin (update) information
+        function update_info($res, $action, $args) {
+            // no action, if no plugin information request for this plugin
+            if('plugin_information' !== $action || $this->parent->plugin['slug'] !== $args->slug) {
+                return $res;
+            }
+            // note: returning $res defaults to WP.org repo, if exists and alternative is unreachable - nevertheless return error message, as versions might differ
+            if(empty($remote = $this->update_request()) || !is_array($remote)) {
+                $res = new stdClass();
+                $res->slug = $this->parent->plugin['slug'];
+                $res->name = $this->parent->plugin['data']['Name'];
+                /* translators: parses in plugin information source url */
+                $res->sections = array('other_notes' => '<div class="notice notice-error"><p>' . sprintf($this->__('Failed to load plugin information from %s'), '<code>' . $this->parent->plugin['update_url'] . '</code>') . '</p></div>');
+                return $res;
+            }
+            // convert top array from response to class structure
+            $res = new stdClass();
+            foreach($remote as $id => $content) {
+                $res->$id = $content;
+            }
+            return $res;
+        }
+
+        // Retrieve plugin (update) information from cache or download from repository
+        function update_request() {
+            $json = get_transient($this->parent->plugin['slug'] . '_update_cache');
+            if(false === $json) {
+                $remote = wp_remote_get($this->parent->plugin['update_url'], array('timeout' => 10, 'headers' => array('Accept' => 'application/json')));
+                if(is_wp_error($remote) || 200 !== wp_remote_retrieve_response_code($remote) || empty($json = wp_remote_retrieve_body($remote))) {
+                    return false;
+                }
+                $json = json_decode($json, true);
+                set_transient($this->parent->plugin['slug'] . '_update_cache', $json, DAY_IN_SECONDS);
+            }
+            return $json;
+        }
+
+        // Insert plugin (update) information into data passed to wp updater
+        function update_download($transient) {
+            // plugin has own update url and participates in update checks
+            if(empty($this->parent->plugin['update_url']) || empty($transient->checked[$this->parent->plugin['basename']])) {
+                return $transient;
+            }
+            // ignore responses from default Wordpress repository
+            unset($transient->response[$this->parent->plugin['basename']]);
+            unset($transient->no_update[$this->parent->plugin['basename']]);
+            // not yet checked during current page load - check if update available
+            if(empty($this->data['update_cache'])) {
+                $this->data['update_cache'] = array();
+                // update server contacted and valid response received
+                if(!empty($plugin = $this->update_request()) && is_array($plugin)) {
+                    $res = new stdClass();
+                    $res->id = $this->parent->plugin['slug'];
+                    $res->slug = $this->parent->plugin['slug'];
+                    $res->plugin = $this->parent->plugin['basename'];
+                    $res->url = $plugin['homepage'];
+                    $res->new_version = $plugin['version'];
+                    $res->package = $plugin['download_link'];
+                    $res->requires_php = $plugin['requires_php'];
+                    $res->requires = $plugin['requires'];
+                    $res->tested = $plugin['tested'];
+                    $res->icons = (!empty($plugin['icons'])) ? $plugin['icons'] : array();
+                    $res->banners = (!empty($plugin['banners'])) ? $plugin['banners'] : array();
+                    $this->data['update_cache']['plugin_info'] = $res;
+                    // newer version available and required wp and php versions are met
+                    if(version_compare($this->parent->plugin['version'], $plugin['version'], '<') && version_compare($plugin['requires'], get_bloginfo('version'), '<=') && version_compare($plugin['requires_php'], PHP_VERSION, '<')) {
+                        $this->data['update_cache']['status'] = 'update_available';
+                    }
+                    else {
+                        $this->data['update_cache']['status'] = 'no_update';
+                    }
+                }
+            }
+            // (re-)add plugin to transient based on update availability (see above or cached)
+            if(!empty($this->data['update_cache']['plugin_info'])) {
+                if('update_available' == $this->data['update_cache']['status']) {
+                    $transient->response[$this->parent->plugin['basename']] = $this->data['update_cache']['plugin_info'];
+                }
+                else {
+                    $transient->no_update[$this->parent->plugin['basename']] = $this->data['update_cache']['plugin_info'];
+                }
+            }
+            return $transient;
+        }
+
+        // Clear plugin (update) information from cache upon installation of new version
+        function update_cache($upgrader, $options){
+            if('update' === $options['action'] && 'plugin' === $options['type'] && in_array($this->parent->plugin['basename'], $options['plugins'])) {
+                delete_transient($this->parent->plugin['slug'] . '_update_cache');
+            }
         }
 
@@ -184 +315 @@
         // update user preference for screen options via AJAX
         function set_screen_options() {
-            if(!empty($_POST['nonce']) && wp_verify_nonce($_POST['nonce'], 'th23-admin-screen-options-nonce')) {
+            if(!empty($_POST['nonce']) && wp_verify_nonce(sanitize_text_field(wp_unslash($_POST['nonce'])), 'th23-admin-screen-options-nonce') && !empty($_POST['plugin'])) {
                 $screen_options = $this->get_screen_options();
                 $new = array();
@@ -270 +401 @@
                             // html input
                             elseif($html_input) {
-                                if(isset($_POST['input_' . $option . '_' . $element . '_' . $sub_option])) {
-                                    // if only single value allowed, only take first element from value array for validation
-                                    if($sub_type == 'single' && is_array($_POST['input_' . $option . '_' . $element . '_' . $sub_option])) {
-                                        $value = sanitize_text_field(wp_unslash(reset($_POST['input_' . $option . '_' . $element . '_' . $sub_option])));
+                                $html_input_name = 'input_' . $option . '_' . $element . '_' . $sub_option;
+                                if(isset($_POST[$html_input_name])) {
+                                    // for textarea preserve linebreaks
+                                    if(!empty($sub_option_details['element']) && 'textarea' == $sub_option_details['element']) {
+                                        $value = sanitize_textarea_field(wp_unslash($_POST[$html_input_name]));
                                     }
                                     else {
-                                        $value = sanitize_text_field(wp_unslash($_POST['input_' . $option . '_' . $element . '_' . $sub_option]));
+                                        $value = (is_array($_POST[$html_input_name])) ? array_map('sanitize_text_field', wp_unslash($_POST[$html_input_name])) : sanitize_text_field(wp_unslash($_POST[$html_input_name]));
+                                        // if only single value allowed, only take first element from value array for validation
+                                        if($type == 'single' && is_array($value)) {
+                                            $value = reset($value);
+                                        }
                                     }
                                 }
@@ -320 +456 @@
                     if($html_input) {
                         if(isset($_POST['input_' . $option])) {
-                            // if only single value allowed, only take first element from value array for validation
-                            if($type == 'single' && is_array($_POST['input_' . $option])) {
-                                $value = sanitize_text_field(wp_unslash(reset($_POST['input_' . $option])));
-                            }
-                            elseif($type == 'multiple' && is_array($_POST['input_' . $option])) {
-                                $value = array();
-                                foreach($_POST['input_' . $option] as $key => $val) {
-                                    $value[$key] = sanitize_text_field(wp_unslash($val));
+                            // for textarea preserve linebreaks
+                            if(!empty($option_details['element']) && 'textarea' == $option_details['element']) {
+                                $value = sanitize_textarea_field(wp_unslash($_POST['input_' . $option]));
+                            }
+                            else {
+                                $value = (is_array($_POST['input_' . $option])) ? array_map('sanitize_text_field', wp_unslash($_POST['input_' . $option])) : sanitize_text_field(wp_unslash($_POST['input_' . $option]));
+                                // if only single value allowed, only take first element from value array for validation
+                                if($type == 'single' && is_array($value)) {
+                                    $value = reset($value);
                                 }
-                            }
-                            // for textarea preserve linebreaks
-                            elseif(!empty($option_details['element']) && 'textarea' == $option_details['element']) {
-                                $value = sanitize_textarea_field(wp_unslash($_POST['input_' . $option]));
-                            }
-                            else {
-                                $value = sanitize_text_field(wp_unslash($_POST['input_' . $option]));
                             }
                         }
@@ -432 +562 @@
                     }
                     elseif(!empty($value)) {
-                        $form_classes[] = 'th23-admin-screen-option-' . $option . '-' . str_replace(' ', '_', $value);
+                        $form_classes[] = 'th23-admin-screen-option-' . $option . '-' . esc_attr(str_replace(' ', '_', $value));
                     }
                 }
@@ -727 +857 @@
                 echo ' | <a href="' . esc_url($this->parent->plugin['data']['PluginURI']) . '">' . esc_html($this->__('Visit plugin site')) . '</a>';
             }
+            if(!empty($this->parent->plugin['update_url'])) {
+                $update_parsed = parse_url($this->parent->plugin['update_url']);
+                /* translators: parses in host / domain part of repository url for non-WP.org hosted plugin */
+                echo '<span class="floating-right"><span class="separator-left"> | </span>' . sprintf(esc_html($this->__('Updated via %s')), '<span class="update-url" title="' . esc_attr($this->parent->plugin['update_url']) . '">' . esc_html($update_parsed['host']) . '</span>') . '</span>';
+            }
             echo '</p></div>';
 

th23-contact/tags/3.1.3/readme.txt

@@ -4 +4 @@
 Tags: contact, form, block, shortcode
 Requires at least: 4.2
-Tested up to: 6.8
-Stable tag: 3.1.2
+Tested up to: 6.8.1
+Stable tag: 3.1.3
 Requires PHP: 8.0
 License: GPL-3.0
@@ -81 +81 @@
 == Changelog ==
 
-= v3.1.2 =
+= v3.1.3 =
 
-* fix: ensure WP specific th23 Admin class is loaded
+* fix: upgrade to th23 Admin class 1.7.0, removing some inconsistencies regarding own updater incl removal of option to chose update source and ensure proper escaping of all output
 
 = v3.1.1 =
@@ -128 +128 @@
 == Upgrade Notice ==
 
-= v3.1.2 =
+= v3.1.3 =
 
 * n/a

th23-contact/tags/3.1.3/th23-contact-admin.php

@@ -22 +22 @@
             'permission' => 'manage_options',
         );
-        // icon: "square" 48 x 48px (footer) / "horizontal" 36px height (header, width irrelevant) / both (resized if larger)
+        // icons "square" 48 x 48px (footer) and "horizontal" 36px height (header, width irrelevant) / both (resized if larger)
         $this->plugin['icon'] = array('square' => 'img/icon-square.png', 'horizontal' => 'img/icon-horizontal.png');
         $this->plugin['support_url'] = 'https://github.com/th23x/th23-contact/issues';
         $this->plugin['requirement_notices'] = array();
-        // update: alternative update source
-        $this->plugin['update_url'] = 'https://github.com/th23x/th23-contact/releases/latest/download/update.json';
 
         // Load and setup required th23 Admin class
         if(file_exists($this->plugin['dir_path'] . '/inc/th23-admin-class.php')) {
             require($this->plugin['dir_path'] . '/inc/th23-admin-class.php');
-            $this->admin = new th23_admin_v162wp($this);
+            $this->admin = new th23_admin_v170($this);
         }
         if(!empty($this->admin)) {
             add_action('init', array(&$this, 'setup_admin_class'));
+            // alternative update source for non-WP.org hosted plugin
+            // important: remove following two lines for WP.org-hosted plugin
+            // ... removed
         }
         else {
@@ -74 +75 @@
         // note: need to populate $this->i18n earliest at init hook to get user locale
         $this->i18n = array(
-            'Plugin' => __('Plugin', 'th23-specials'),
-            'Settings' => __('Settings', 'th23-contact'),
-            /* translators: parses in plugin version number */
-            'Version %s' => __('Version %s', 'th23-contact'),
+            // reviewer: to keep consistency some admin language strings are used in sync with core
+            'Settings' => __('Settings'),
+            /* translators: parses in version number */
+            'Version %s' => __('Version %s'),
             /* translators: parses in plugin name */
             'Copy from %s' => __('Copy from %s', 'th23-contact'),
-            'Support' => __('Support', 'th23-contact'),
-            'Done' => __('Done', 'th23-contact'),
-            'Settings saved.' => __('Settings saved.', 'th23-contact'),
-            '+' => __('+', 'th23-contact'),
-            '-' => __('-', 'th23-contact'),
-            'Save Changes' => __('Save Changes', 'th23-contact'),
-            /* translators: parses in plugin author name / link */
-            'By %s' => __('By %s', 'th23-contact'),
-            'View details' => __('View details', 'th23-specials'),
-            'Visit plugin site' => __('Visit plugin site', 'th23-contact'),
-            'Error' => __('Error', 'th23-contact'),
+            'Support' => __('Support'),
+            'Done' => __('Done'),
+            'Settings saved.' => __('Settings saved.'),
+            '+' => __('+'),
+            '-' => __('-'),
+            'Save Changes' => __('Save Changes'),
+            /* translators: parses in author */
+            'By %s' => __('By %s'),
+            'View details' => __('View details'),
+            'Visit plugin site' => __('Visit plugin site'),
+            'Error' => __('Error'),
             /* translators: 1: option name, 2: opening a tag of link to support/ plugin page, 3: closing a tag of link */
             'Invalid combination of input field and default value for "%1$s" - please %2$scontact the plugin author%3$s' => __('Invalid combination of input field and default value for "%1$s" - please %2$scontact the plugin author%3$s', 'th23-contact'),
-            'Updates' => __('Updates', 'th23-contact'),
-            'If disabled or unreachable, updates will use default WordPress repository' => __('If disabled or unreachable, updates will use default WordPress repository', 'th23-contact'),
-            /* translators: parses in repository url */
-            'Update from %s' => __('Update from %s', 'th23-contact'),
+            /* translators: parses in repository url for non-WP.org hosted plugin */
+            'Updated via %s' => __('Updated via %s', 'th23-contact'),
+            /* translators: parses in plugin information source url */
+            'Failed to load plugin information from %s' => __('Failed to load plugin information from %s', 'th23-contact'),
         );
 

th23-contact/tags/3.1.3/th23-contact.php

@@ -13 +13 @@
 License URI: https://github.com/th23x/th23-contact/blob/main/LICENSE
 
-Version: 3.1.2
+Version: 3.1.3
 
 Requires at least: 4.2
-Tested up to: 6.8
+Tested up to: 6.8.1
 Requires PHP: 8.0
 
@@ -42 +42 @@
         $this->plugin['basename'] = plugin_basename($this->plugin['file']);
         $this->plugin['dir_url'] = plugin_dir_url($this->plugin['file']);
-        $this->plugin['version'] = '3.1.2';
+        $this->plugin['version'] = '3.1.3';
 
         // Load plugin options