Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3387000

Timestamp:

10/30/2025 10:57:00 AM (5 months ago)

Author:

publirump

Message:

Version 1.3.0 – Added display name and improved form and security handling.

Location:

publir-ump/trunk

Files:

: 7 edited

Readme.txt (modified) (1 diff)
assets/css/admin-ump.css (modified) (3 diffs)
assets/js/ump.js (modified) (1 diff)
functions.php (modified) (2 diffs)
options.php (modified) (1 diff)
ump-page-template.php (modified) (1 diff)
ump.php (modified) (10 diffs)

Legend:

: Unmodified
: Added
: Removed

publir-ump/trunk/Readme.txt

r3380069	r3387000
5	5	Tested up to: 6.8.3
6	6	Requires PHP: 5.2.4
7		Stable tag: 1.~~2.8~~
	7	Stable tag: 1.3.0
8	8	License: GNU 2.0
9	9	License URI: https://www.gnu.org/licenses/old-licenses/gpl-2.0.en.html

publir-ump/trunk/assets/css/admin-ump.css

-                      r2732984
+                      r3387000
   padding: 0 !important;
   border-color: #ccc !important;
   background-color: transparent; !important;
+  background-color: transparent !important;
   vertical-align: middle;
+}
 …
   transition: border-color .15s ease-in-out,box-shadow .15s ease-in-out;
+}
 .publir-tabset .#payBtn { margin-top: 0; }
+.publir-tabset #payBtn { margin-top: 0; }
 .publirump-login-response p,.publir-signup-response p,.pblr-reset-response p,
 .pblr-update-response p,.pblr-cancel-response p{
 …
   display: none;
+}
 .publir-update-pass,.publir-cancel-form{
+.publir-update-pass,.publir-cancel-form, .publir-update-displayname{
   margin-bottom: 20px;
   margin-top: 15px !important;

publir-ump/trunk/assets/js/ump.js

-                      r3080232
+                      r3387000
     ***/
+    /***
+    * Upadte Display Name Ajax
+    ***/
+    jQuery('#update-displayname').submit(function(e){
+        e.preventDefault();
+        var update_pass = jQuery('#update-displayname');
+        //Validation
+        jQuery('.publir-update-displayname-img').show();
+        jQuery('input[type="submit"]').prop('disabled', true);
+        if(!jQuery("#ump-display-name").val()){
+            jQuery('.publir-update-displayname-img').hide();
+            jQuery('input[type="submit"]').prop('disabled', false);
+            jQuery("#ump-display-name").addClass('error');
+            jQuery(".pblr-update-displayname-response").addClass("error");
+            jQuery(".pblr-update-displayname-response").html('<p>Display Name field required</p>');
+            return false;
+        } else{
+            jQuery(".pblr-update-displayname-response").removeClass("error");
+            jQuery(".pblr-update-displayname-response").html('<p></p>');
+            jQuery("#ump-display-name").removeClass('error');
+        }
+        //ajax submit form
+        jQuery('.publir-update-displayname-img').show();
+        jQuery.ajax({
+            type: "POST",
+            url:update_pass.attr('action'),
+            data: update_pass.serialize(), // serializes the form's elements.
+            success: function(response) {
+                jQuery('.publir-update-displayname-img').hide();
+                if( jQuery.trim(response)  != "" ) {
+                    var data = JSON.parse(response);
+                    if(data.type == 'success' ){
+                        jQuery('.pblr-update-displayname-response').removeClass('error');
+                        jQuery('.pblr-update-displayname-response').html('<p>'+data.message+'</p>');
+                        jQuery('.pblr-update-displayname-response').show();
+                        setTimeout(function(){
+                          location.reload();
+                      }, 2000);
+                    } else {
+                        jQuery(".pblr-update-displayname-response").addClass("error");
+                        jQuery('.pblr-update-displayname-response').html('<p>'+data.message+'</p>');
+                        jQuery('.pblr-update-displayname-response').show();
+                    }
+                } else {
+                    jQuery(".pblr-update-displayname-response").addClass("error");
+                    jQuery('.pblr-update-displayname-response').html('<p>Connection error occured. Please try agin after some time or do refresh page.</p>');
+                    jQuery('.pblr-update-displayname-response').show();
+                }
+            },
+            error: function (jqXHR, exception) {
+                jQuery('.publir-update-displayname-img').hide();
+                var msg = '';
+                if (jqXHR.status === 0) {
+                    msg = 'Not connect.\n Verify Network.';
+                } else if (jqXHR.status == 404) {
+                    msg = 'Requested page not found.';
+                } else if (jqXHR.status == 500) {
+                    msg = 'Internal Server Error';
+                } else if (exception === 'parsererror') {
+                    msg = 'Requested JSON parse failed.';
+                } else if (exception === 'timeout') {
+                    msg = 'Time out error.';
+                } else if (exception === 'abort') {
+                    msg = 'Ajax request aborted.';
+                } else {
+                    msg = 'Uncaught Error.\n';// + jqXHR.responseText;
+                }
+                jQuery(".pblr-update-displayname-response").addClass("error");
+                jQuery('.pblr-update-displayname-response').html('<p>'+msg+' Try page reload</p>');
+                jQuery('.pblr-update-displayname-response').show();
+            }
+        });
+        jQuery('input[type="submit"]').prop('disabled', false);
+    });
+    /***
+    * Upadte Display Name Ajax Completed
+    ***/
     /***
     * Password reset Ajax

publir-ump/trunk/functions.php

-                      r3080232
+                      r3387000
                 }else{
                     $post_id = wp_insert_post($my_post,true);
                     update_post_meta( $post_id, '_wp_page_template', plugin_dir_path( __FILE__ ) . '/ump-page-template.php' );
+                    update_post_meta( $post_id, '_wp_page_template','ump-page-template.php' );
+                }
+            }
 …
+}
 add_filter( 'template_include', 'publir_change_page_template', 99 );
+add_filter( 'template_include', 'publir_change_page_template', 1 );
+if ( ! function_exists( 'publir_change_page_template' ) )  {
+    /**
+    * Sets up theme defaults and registers support for various WordPress features
+    *
+    *  It is important to set up these functions before the init hook so that none of these
+    *  features are lost.
+    */
+function publir_change_page_template($template)
+{
+    $options = get_option('publir_wp_options');
+    $page_name = $options['setting_page_id'];
+    function publir_change_page_template($template)
+    {
+        $options = get_option('publir_wp_options');
+        $page_name = $options['setting_page_id'];
+        if (get_the_title(get_the_ID()) == $page_name) {
+            $meta = get_post_meta(get_the_ID());
+            if (!empty($meta['_wp_page_template'][0]) && $meta['_wp_page_template'][0] != $template) {
+                $template = $meta['_wp_page_template'][0];
+            }
+        }
+        return $template;
+    }
+    if (get_the_title(get_the_ID()) == $page_name) {
+        $meta = get_post_meta(get_the_ID());
+        $selected_template = $meta['_wp_page_template'][0] ?? '';
+        if ($selected_template === 'ump-page-template.php') {
+            $plugin_template = plugin_dir_path(__FILE__) . 'ump-page-template.php';
+            if (file_exists($plugin_template)) {
+                return $plugin_template;
+            } else {
+                error_log('Publir UMP: Template not found at ' . $plugin_template);
+            }
+        }
+        if (!empty($selected_template) && file_exists($selected_template)) {
+            return $selected_template;
+        }
+    }
+    return $template;
+}
+add_action('wp_body_open', function () {
+    if (is_singular()) {
+        global $post;
+        $selected_template = get_post_meta($post->ID, '_wp_page_template', true);
+        if ($selected_template === 'ump-page-template.php') {
+            ?>
+            <script>
+                document.addEventListener('DOMContentLoaded', function () {
+                    document.body.id = 'publir-subscribe';
+                });
+            </script>
+            <?php
+        }
+    }
+});

publir-ump/trunk/options.php

r3380069	r3387000
208	208
209	209	// Build full template path
210		$template_path = ~~plugin_dir_path( __FILE__ ) .~~ 'ump-page-template.php';
	210	$template_path = 'ump-page-template.php';
211	211
212	212	// Get current meta

publir-ump/trunk/ump-page-template.php

r3080232	r3387000
108	108	<br>
109	109	<?php
	110	_e(do_shortcode('[publir_update_display_name]') );
110	111	_e(do_shortcode('[publir_update_password]') );
111	112	_e(do_shortcode('[publir_update_card]'));

publir-ump/trunk/ump.php

-                      r3380069
+                      r3387000
  * Plugin URI: https://www.publir.com/wordpress-plugin/ump
  * Description: Manage your Publir settings from this page.
  * Version: 1.2.8
+ * Version: 1.3.0
  * Author: Publir
  * Author URI: https://www.publir.com
 …
                         <input class="publirump-login-button button" type="submit" name="change-password" value="Change Password" />
                         <div class="publir-update-pass-img"  style="display: none">
+                            <img src="<?php _e( esc_url_raw($loaderUrl) ); ?>" />
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </form>
+        <?php
+        return ob_get_clean();
+    }
+}
+add_shortcode('publir_update_display_name','publir_update_display_name_value');
+if ( ! function_exists( 'publir_update_display_name_value' ) )  {
+    function publir_update_display_name_value(){
+        ob_start();
+        $loaderUrl = plugin_dir_url( __FILE__ ). 'assets/loader.gif';
+        ?>
+        <h6 class="publirump-pb-15">Update Account</h6>
+        <b class="publirump-pb-15">Update Display Name</b>
+        <form id="update-displayname" class="publir-update-displayname" action="<?php _e(esc_url(admin_url( 'admin-ajax.php' ))); ?>" method="post" >
+            <?php wp_nonce_field( "publr-updatedisplayname-form" ); ?>
+            <input type="hidden" name="action" value="publir_display_name_action">
+            <div class="login publir-row">
+                <div class="publirump-login password">
+                    <input id="ump-display-name" type="text" name="display_name" placeholder="Enter Display Name" />
+                </div>
+                <div class="publir-row">
+                    <div class="publir-row pblr-update-displayname-response"></div>
+                    <div class="publir-row">
+                        <input class="publirump-login-button button" type="submit" name="change-display-name" value="Update Display Name" />
+                        <div class="publir-update-displayname-img"  style="display: none">
                             <img src="<?php _e( esc_url_raw($loaderUrl) ); ?>" />
                         </div>
 …
                 </div>
                 <div class="form-group">
+                    <label>Display Name</label>
+                    <input type="text" name="display_name" id="display_name" class="field autoDisable" placeholder="Display Name" autofocus="">
+                </div>
+                <div class="form-group">
                     <label>Email</label>
                     <input type="email" name="email" id="email" class="field autoDisable" placeholder="Enter Email">
 …
         $siteSubData = publir_get_site_subs_data();
         ?>
         <div class="panel container publir-entry-content">
+        <div class="publir-entry-content">
             <div class="publirump-pb-15">
                 <b class="">Update Card</b>
 …
             "siteName"              => $siteName
         );
+        if (!empty($_SERVER['HTTP_CF_CONNECTING_IP'])) {
+            $user_ip = $_SERVER['HTTP_CF_CONNECTING_IP'];
+        } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
+            $user_ip = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR'])[0];
+        } else {
+            $user_ip = $_SERVER['REMOTE_ADDR'];
+        }
+        $user_agent  = $_SERVER['HTTP_USER_AGENT'];
         $args = array(
             'method'      => 'POST',
 …
                 'Accept' => 'application/json',
                 'Content-Type'  => 'application/json',
+                "X-Forwarded-For" => $user_ip,
+                "User-Agent" => $user_agent
             ),
             'body'        => json_encode($body),
 …
             setcookie('publir_subs_log', $serialized_data, time() + 300, "/", false, false, false);
+            setcookie('publir_subscriber_status', $response['sid'], time() + (86400 * 1), "/", false,false,false);
+            $payloadPubToken = 'PUBTOKEN' . $response['sid'].$response['site_id'];
+            $encodedSid = base64_encode($payloadPubToken);
+            setcookie('publir_subscriber_status', $encodedSid,  time() + (86400 * 365 * 1), "/", false,false,false);
+            $encodedDisplayName = base64_encode($response['display_name']);
+            setcookie('publir_subscriber_dn', $encodedDisplayName,  time() + (86400 * 365 * 1), "/", false,false,false);
             $return = json_encode(array('message'=>'Login Successful!','status_code'=>200));
 …
         $fixedJSON = publir_fix_json_response($response);
+        wp_send_json(  $fixedJSON );
+        wp_die();
+    }
+}
+//Update Display Name with ajax function
+add_action( 'wp_ajax_publir_display_name_action', 'publir_display_name_action' );
+add_action( 'wp_ajax_nopriv_publir_display_name_action', 'publir_display_name_action' );
+if ( ! function_exists( 'publir_display_name_action' ) )  {
+    function publir_display_name_action() {
+        $options = get_option('publir_wp_options');
+        $site_id = sanitize_text_field($options['publir_site_id']);
+        $publir_secret_key = sanitize_text_field($options['publir_secret_key']);
+        $email = '';
+        if (isset($_COOKIE['publir_subs_log'])) {
+            $pubCookieData = getCookieData();
+            if(!empty($pubCookieData)){
+                $email = custom_decrypt($pubCookieData['ehash'], $publir_secret_key);
+            }
+        }
+        if(empty($email)){
+            $return = json_encode(array('message'=>'Your session has expired. Please log in to continue where you left off.','status_code'=>401));
+            wp_send_json(  $return );
+            wp_die();
+        }
+        if( empty($site_id) ) {
+            $return = json_encode(array('message'=>'Site id is empty','status_code'=>201));
+            wp_send_json(  $return );
+            wp_die();
+        }
+        $url  = 'https://subs-api.publir.com/publirsubscriptionsapi-dev-hello';
+        if( empty($_POST['display_name'])) {
+            $return = json_encode(array('message'=>'Display Name Field can\'t empty','status_code'=>201));
+            wp_send_json(  $return );
+            wp_die();
+        }
+        else  {
+            $display_name = sanitize_text_field($_POST['display_name']);
+        }
+        $siteName = get_bloginfo( 'name');
+        $body = array(
+            "publir_method"     => "update_display_name",
+            "display_name"       => $display_name,
+            "email"             => $email,
+            "siteId"            => $site_id,
+            "siteName"          => $siteName
+        );
+        $args = array(
+            "method"      => "POST",
+            "timeout"     => 45,
+            "sslverify"   => false,
+            "headers"     => array(
+                "Accept" => "application/json",
+                "Content-Type"  => "application/json",
+            ),
+            "body"        => json_encode($body),
+        );
+        $request = wp_remote_post( $url, $args );
+        $response = wp_remote_retrieve_body( $request );
+        $fixedJSON = publir_fix_json_response($response);
+        $response = json_decode($fixedJSON, true);
+        if ($response['type'] == 'success') {
+            $encodedDisplayName = base64_encode($display_name);
+            setcookie('publir_subscriber_dn', $encodedDisplayName,  time() + (86400 * 365 * 1), "/", false,false,false);
+        }
         wp_send_json(  $fixedJSON );
         wp_die();
 …
+        }
         $name = sanitize_text_field($_POST['name']);
+        if( empty($name) ) {
+            $return = json_encode(array('message'=>'Name is required.','status_code'=>201));
+            wp_send_json( $return  );
+            wp_die();
+        }
+        $display_name = sanitize_text_field($_POST['display_name']);
+        if( empty($display_name) ) {
+            $return = json_encode(array('message'=>'Display Name is required.','status_code'=>201));
+            wp_send_json( $return  );
+            wp_die();
+        }
         $stripeToken = '';
         if( empty($_POST['stripeToken']) && $plan != "Free" ) {
 …
             "siteName"          => $siteName,
             "fullName"          => $name,
+            "display_name"      => $display_name,
             "plan"              => $plan,
             "siteMode"          => $siteSubData['siteMode'],

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Download in other formats: