Lubuntu/lubuntu.me
8
0
Fork 0
mirror of https://github.com/lubuntu-team/lubuntu.me.git synced 2025-02-24 00:31:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
lubuntu.me/plugins/all-in-one-wp-security-and-firewall/classes/wp-security-user-registration.php

118 lines
6.2 KiB
PHP
Raw Normal View History

initial commit
2016-11-28 21:52:15 -08:00
<?php
class AIOWPSecurity_User_Registration
{
function __construct()
{
global $aio_wp_security;
add_action('user_register', array(&$this, 'aiowps_user_registration_action_handler'));
if($aio_wp_security->configs->get_value('aiowps_enable_registration_page_captcha') == '1'){
add_filter('registration_errors', array(&$this, 'aiowps_validate_registration_with_captcha'), 10, 3);
add_filter('woocommerce_process_registration_errors', array(&$this, 'aiowps_validate_woo_registration_with_captcha'), 10, 4);
}
}
/*
* This function will add a special meta string in the users table
* Meta field name: 'aiowps_account_status'
* Meta field value: 'pending'
*/
function aiowps_user_registration_action_handler($user_id)
{
global $wpdb, $aio_wp_security;
//Check if auto pending new account status feature is enabled
if ($aio_wp_security->configs->get_value('aiowps_enable_manual_registration_approval') == '1')
{
update plugins and theme
2018-01-26 15:50:15 +01:00
if ( isset($_REQUEST['action']) && 'createuser' == $_REQUEST['action'] ) {
return; //if the user has been added from admin side don't put in pending state
}
initial commit
2016-11-28 21:52:15 -08:00
$res = add_user_meta($user_id, 'aiowps_account_status', 'pending');
if (!$res){
$aio_wp_security->debug_logger->log_debug("aiowps_user_registration_action_handler: Error adding user meta data: aiowps_account_status",4);
}
$user_ip_address = AIOWPSecurity_Utility_IP::get_user_ip_address();
$res = add_user_meta($user_id, 'aiowps_registrant_ip', $user_ip_address);
if (!$res){
$aio_wp_security->debug_logger->log_debug("aiowps_user_registration_action_handler: Error adding user meta data: aiowps_registrant_ip",4);
}
}
}
/*
* This function will set the special meta string in the usermeta table so that the account becomes active
* Meta field name: 'aiowps_account_status'
* Meta field values: 'active', 'pending', etc
*/
function aiowps_set_user_account_status($user_id, $status)
{
global $wpdb, $aio_wp_security;
$res = update_user_meta($user_id, 'aiowps_account_status', $status);
if (!$res){
$aio_wp_security->debug_logger->log_debug("aiowps_set_user_account_status: Error updating user meta data: aiowps_account_status",4);
}
}
function aiowps_validate_registration_with_captcha($errors, $sanitized_user_login, $user_email)
{
global $aio_wp_security;
$locked = $aio_wp_security->user_login_obj->check_locked_user();
if($locked == null){
//user is not locked continue
}else{
$errors->add('authentication_failed', __('<strong>ERROR</strong>: You are not allowed to register because your IP address is currently locked!', 'all-in-one-wp-security-and-firewall'));
return $errors;
}
if (array_key_exists('aiowps-captcha-answer', $_POST)) //If the register form with captcha was submitted then do some processing
{
isset($_POST['aiowps-captcha-answer'])?$captcha_answer = strip_tags(trim($_POST['aiowps-captcha-answer'])): $captcha_answer = '';
$captcha_secret_string = $aio_wp_security->configs->get_value('aiowps_captcha_secret_key');
$submitted_encoded_string = base64_encode($_POST['aiowps-captcha-temp-string'].$captcha_secret_string.$captcha_answer);
$trans_handle = sanitize_text_field($_POST['aiowps-captcha-string-info']);
$captcha_string_info_trans = (AIOWPSecurity_Utility::is_multisite_install() ? get_site_transient('aiowps_captcha_string_info_'.$trans_handle) : get_transient('aiowps_captcha_string_info_'.$trans_handle));
if($submitted_encoded_string !== $captcha_string_info_trans)
{
//This means a wrong answer was entered
//return new WP_Error('authentication_failed', __('<strong>ERROR</strong>: Your answer was incorrect - please try again.', 'all-in-one-wp-security-and-firewall'));
$errors->add('authentication_failed', __('<strong>ERROR</strong>: Your answer was incorrect - please try again.', 'all-in-one-wp-security-and-firewall'));
return $errors;
}
}
return $errors;
}
function aiowps_validate_woo_registration_with_captcha($errors, $username, $password, $email)
{
global $aio_wp_security;
$locked = $aio_wp_security->user_login_obj->check_locked_user();
if($locked == null){
//user is not locked continue
}else{
$errors->add('authentication_failed', __('<strong>ERROR</strong>: You are not allowed to register because your IP address is currently locked!', 'all-in-one-wp-security-and-firewall'));
return $errors;
}
if (array_key_exists('aiowps-captcha-answer', $_POST)) //If the register form with captcha was submitted then do some processing
{
isset($_POST['aiowps-captcha-answer'])?$captcha_answer = strip_tags(trim($_POST['aiowps-captcha-answer'])): $captcha_answer = '';
$captcha_secret_string = $aio_wp_security->configs->get_value('aiowps_captcha_secret_key');
$submitted_encoded_string = base64_encode($_POST['aiowps-captcha-temp-string'].$captcha_secret_string.$captcha_answer);
$trans_handle = sanitize_text_field($_POST['aiowps-captcha-string-info']);
$captcha_string_info_trans = (AIOWPSecurity_Utility::is_multisite_install() ? get_site_transient('aiowps_captcha_string_info_'.$trans_handle) : get_transient('aiowps_captcha_string_info_'.$trans_handle));
if($submitted_encoded_string !== $captcha_string_info_trans)
{
//This means a wrong answer was entered
$errors->add('authentication_failed', __('<strong>ERROR</strong>: Your answer was incorrect - please try again.', 'all-in-one-wp-security-and-firewall'));
return $errors;
}
}
return $errors;
}
}
Reference in New Issue Copy Permalink