Changeset 1917973

Timestamp:

08/01/2018 05:54:10 AM (8 years ago)

Author:

vaptcha

Message:

Update 1.2.0

Location:

vaptcha/trunk

Files:

• VaptchaPlugin.php (modified) (11 diffs)
• js/init-vaptcha.js (modified) (1 diff)
• languages/vaptcha-en_US.mo (modified) (previous)
• languages/vaptcha-en_US.po (modified) (2 diffs)
• lib/Vaptcha.class.php (modified) (2 diffs)
• lib/config.php (modified) (1 diff)
• options.php (modified) (2 diffs)
• readme.txt (modified) (1 diff)
• uninstall.php (modified) (1 diff)
• vaptcha.php (modified) (1 diff)

vaptcha/trunk/VaptchaPlugin.php

@@ -21 +21 @@
     private function get_captcha($form, $btn) {
         $script =  plugins_url( 'js/init-vaptcha.js', __FILE__ );
+        $vid = get_option('vaptcha_options')['vaptcha_vid'];
         $lang = get_option('vaptcha_options')['vaptcha_lang'];
         $ai = get_option('vaptcha_options')['vaptcha_ai'];
@@ -29 +30 @@
         $https = get_option('vaptcha_options')['https'];
         $type = get_option('vaptcha_options')['type'];
+        $height = $height ? $height : '36px';
+        $options = json_encode(Array(
+            "vid" => $vid,
+            "type" => $type,
+            "lang" => $lang,
+            "style" => $style,
+            "https" => $https,
+            "color" => $color,
+        ));
         return <<<HTML
         <style>
-            #wpVaptchaConatiner{
+            .vaptcha-container{
                 height: $height;
                 width: $width;
@@ -69 +79 @@
             }
         </style>
-        <div id="wpVaptchaConatiner">
+        <div class="vaptcha-container" data-config='$options'>
             <div class="vaptcha-init-main">
                 <div class="vaptcha-init-loading">
@@ -77 +87 @@
             </div>
         </div>
-        <input type="hidden" name="vaptcha_challenge"/>
-        <input type="hidden" name="vaptcha_token"/>
-        <script type="text/javascript" src="https://cdn.vaptcha.com/v.js"></script>
         <script type="text/javascript" src="$script"></script>
-        <script>
-        (function(){
-            var vp = document.getElementById('wpVaptchaConatiner');
-            var form = document.getElementById('$form');
-            form.insertBefore(vp, form.getElementsByClassName('$btn')[0]);
-            initVaptcha({
-                container: vp,
-                type: '$type',
-                lang: '$lang',
-                style: '$style',
-                https: $https,
-                color: '$color',
-                ai: $ai,
-                outage: '/wp-json/vaptcha/downtime',
-                success: function (token, challenge) {
-                    var inputs = form.getElementsByTagName('input');
-                    inputs['vaptcha_challenge'].value = challenge;
-                    inputs['vaptcha_token'].value = token;
-                    inputs['is_success'] && (inputs['is_success'].value = 'yes');
-                }
-            });
-        })()
-        </script>
 HTML;
     }
@@ -113 +97 @@
         if($this->options['vaptcha_comment'] == 0) return ;
         echo $this->get_captcha('commentform', 'form-submit');
+        echo <<<HTML
+        <script>
+            var btn = document.getElementsByClassName('vaptcha-container')[0]
+            var form = document.getElementById('commentform')
+            form.insertBefore(btn, document.getElementsByClassName('form-submit')[0])
+        </script>
+HTML;
     }
     
@@ -120 +111 @@
         $token = $_POST['vaptcha_token'];
         if (!$token || !$this->vaptcha->validate($challenge, $token)) {
-            wp_die(__("人机验证未通过"));
+            wp_die(__('人机验证未通过', 'vaptcha'));
         }
         return $comment_data;        
@@ -138 +129 @@
         $token = $_POST['vaptcha_token'];
         if (!$token || !$this->vaptcha->validate($challenge, $token)) {
-            return  new WP_Error('broke', __("人机验证未通过"));
+            return  new WP_Error('broke', __('人机验证未通过', 'vaptcha'));
         }
         return $user;  
@@ -153 +144 @@
         $token = $_POST['vaptcha_token'];
         if (!$token || !$this->vaptcha->validate($challenge, $token)) {
-            $errors->add('captcha_wrong', "<strong>ERROR</strong>：".__('人机验证未通过'));   
+            $errors->add('captcha_wrong', "<strong>ERROR</strong>：".__('人机验证未通过', 'vaptcha'));   
         }
         return $errors;
@@ -225 +216 @@
         return json_decode($this->vaptcha->downTime($_GET['data']));
     }
+
+    function captcha_in_woocommerce() {
+        echo $this->get_captcha('woocommerce-form-register', 'submit');
+    }
+
+    function captcha_validate_woocommerce($errors) {
+        $token = $_POST['vaptcha_token'];
+        if (!$token || !$this->vaptcha->validate($challenge, $token)) {
+            $errors->add('captcha_wrong', __('人机验证未通过', 'vaptcha'));   
+        }
+        return $errors;
+    }
+
+    function captcha_validate_woocommerce_allow($data) {
+        $token = $_POST['vaptcha_token'];
+        if (!$token || !$this->vaptcha->validate($challenge, $token)) {
+            return new WP_Error('captcha_wrong', __('人机验证未通过', 'vaptcha'));
+        }
+        return $data;
+    }
     
     function init_add_actions() {
@@ -233 +244 @@
         add_action('admin_init', array($this, 'vaptcha_settings_init'));
         add_action('admin_menu', array($this, 'vaptcha_options_page'));
+
+        add_action('woocommerce_login_form', array($this, 'captcha_in_woocommerce'));
+        add_action('woocommerce_register_form', array($this, 'captcha_in_woocommerce'));
+        add_action('woocommerce_lostpassword_form', array($this, 'captcha_in_woocommerce'));
 
         //api
@@ -249 +264 @@
         add_filter('wp_authenticate_user', array($this, 'captcha_validate_login'),100,1);
         add_filter('registration_errors', array($this, 'captcha_validate_register'),100,1);
+
+        // add_filter('woocommerce_process_login_errors', array($this, 'captcha_validate_woocommerce'),100,1);
+        add_filter('woocommerce_process_registration_errors', array($this, 'captcha_validate_woocommerce'),100,1);
+        add_filter('lostpassword_post', array($this, 'captcha_validate_woocommerce'),100,1);
     }
 

vaptcha/trunk/js/init-vaptcha.js

@@ -1 @@
-var initVaptcha = function (options) {
-    var xmlHttp;
-    function createxmlHttpRequest() {
-        if (window.ActiveXObject) {
-            xmlHttp = new ActiveXObject("Microsoft.XMLHTTP");
-        } else if (window.XMLHttpRequest) {
-            xmlHttp = new XMLHttpRequest();
+(function(){
+    function loadVaptcha() {
+        var script = document.getElementById('vaptcha_v_js');
+        if (script && window.vaptcha && script.loaded) {
+        } else {
+            script = document.createElement('script');
+            protocol = 'https'; //options.https ? 'https' : 'http';
+            script.src = protocol + '://cdn.vaptcha.com/v2.js';
+            script.id = 'vaptcha_v_js';
+            script.async = true
+            script.onload = script.onreadystatechange = function () {
+                if (!this.readyState || this.readyState == 'loaded' || this.readyState == 'complete') {
+                    script.loaded = true;
+                    script.onload = script.onreadystatechange = null;
+                }
+            };
+            document.getElementsByTagName("head")[0].appendChild(script);
         }
     }
-    
-    createxmlHttpRequest();
-    xmlHttp.open("GET", "/wp-json/vaptcha/getchallenge?t=" + Date.now());
-    xmlHttp.send(null);
-    xmlHttp.onreadystatechange = function (result) {
-        if ((xmlHttp.readyState === 4) && (xmlHttp.status === 200)) {
-            var data = JSON.parse(xmlHttp.responseText);
-            options.vid = data.vid;
-            options.challenge = data.challenge;
-            window.vaptcha(options, function (obj) {
-                vaptcha_obj = obj;
-                //执行初始化
-                vaptcha_obj.init();
-            });
-        }
-    }
-}
+    loadVaptcha()
+}())

vaptcha/trunk/languages/vaptcha-en_US.po

@@ -2 +2 @@
 msgstr ""
 "Project-Id-Version: VAPTCHA\n"
-"POT-Creation-Date: 2017-12-18 14:42+0800\n"
-"PO-Revision-Date: 2017-12-18 14:42+0800\n"
+"POT-Creation-Date: 2018-07-24 14:35+0800\n"
+"PO-Revision-Date: 2018-07-24 14:38+0800\n"
 "Last-Translator: \n"
 "Language-Team: \n"
@@ -21 +21 @@
 "X-Poedit-SearchPathExcluded-0: *.js\n"
 
-#: VaptchaPlugin.php:122 VaptchaPlugin.php:140 VaptchaPlugin.php:155
+#: VaptchaPlugin.php:130 VaptchaPlugin.php:148 VaptchaPlugin.php:163
+#: VaptchaPlugin.php:244 VaptchaPlugin.php:252
 msgid "人机验证未通过"
-msgstr " man-machine validation failed"
+msgstr "man-machine validation failed"
 
 #: options.php:14

vaptcha/trunk/lib/Vaptcha.class.php

@@ -81 +81 @@
     public function validate($challenge, $token, $sceneId = "")
     {
-        if ($this->isDown || !$challenge)
+        if ($this->isDown)
             return $this->downTimeValidate($token);
         else
@@ -172 +172 @@
     private function normalValidate($challenge, $token, $sceneId)
     {
-        if (!$token || !$challenge || $token != md5($this->key.'vaptcha'.$challenge))
+        if (!$token)
             return false;
-        $url = $this->config['API_URL'].$this->config['VALIDATE_URL'];
-        $now = $this->getCurrentTime();
-        $query = "id=$this->vid&scene=$sceneId&token=$token&time=$now&version=".$this->config['VERSION'].'&sdklang='.$this->config['SDK_LANG'];
-        $signature = $this->HMACSHA1($this->key, $query);
-        $response = self::postValidate($url, array(
+        $url = $this->config[API_URL].$this->config[VALIDATE_URL];
+        $now = $this->getCurrentTime();
+        // $query = "id=$this->vid&scene=$sceneId&secretkey=$this->key&token=$token&ip=$_SERVER[REMOTE_ADDR]";
+        $response = json_decode(self::postValidate($url, array(
             'id' => $this->vid,
             'scene' => $sceneId,
-            'token' => $token,
-            'time' => $now,
-            'version' => $this->config['VERSION'],
-            'sdklang' => $this->config['SDK_LANG'], 
-            'signature' => $signature
-        ));
-        return 'success' == $response;
+            'secretkey' => $this->key,
+            'token' => $token, 
+            'ip' => $_SERVER[REMOTE_ADDR]
+        )));
+        return $response->success == 1;
     }
 

vaptcha/trunk/lib/config.php

@@ -11 +11 @@
     'VERSION' => '1.1.0',
     'SDK_LANG' => 'php',
-    'API_URL' => 'http://api.vaptcha.com',
+    'API_URL' => 'http://api.vaptcha.com/v2',
     'GET_CHALLENGE_URL' => '/challenge',
     'VALIDATE_URL' => '/validate',

vaptcha/trunk/options.php

@@ -59 +59 @@
             </th>
         </tr>
-        <tr>
+        <!-- <tr>
             <th><label for="tag_base"><?php _e('智能检测', 'vaptcha') ?></label></th>
             <td> 
@@ -68 +68 @@
             </td>
             <td> <?php _e('如果开启，高风险操作或者客户端在验证时需要进行手势验证，无风险客户端则可以一键通过验证，大幅提升用户体验', 'vaptcha') ?> </td>
-        </tr>
+        </tr> -->
         <tr>
             <th><label for="tag_base"><?php _e('HTTPS', 'vaptcha') ?></label></th>

vaptcha/trunk/readme.txt

@@ -61 +61 @@
 * Add the button style options, you can choose dark, light color.
 * Update VAPTCHA SDK.
+
+= 1.2.0
+* Update VAPTCHA v2.0

vaptcha/trunk/uninstall.php

@@ -20 +20 @@
  *
  * @link       https://www.vaptcha.com
- * @since      1.0.0
+ * @since      1.2.0
  *
  * @package    vaptcha

vaptcha/trunk/vaptcha.php

@@ -4 +4 @@
 Plugin URI: https://www.vaptcha.com
 Description: VAPTCHA是”Variation Analysis - based Public Turing Test to Tell Computers and Humans Apart ”的简称，也叫手势验证。一种通过用户鼠标手势即可完成人机验证的图灵测试程序。VAPTCHA更加简单和安全，是目前传统验证码的最佳替代方案。VAPTCHA不仅大幅节省了用户在使用互联网服务时在人机验证上面的耗时，平均通过时间不超过1秒，同时也是目前世界上最不可能被破解的验证系统。
-Version: 1.1.0
+Version: 1.2.0
 Author: vaptcha
 Text Domain: vaptcha