Changeset 2038744

Timestamp:

02/25/2019 10:56:24 AM (7 years ago)

Author:

themexa

Message:

Version 2.0 - User Role wise Permission Feature Added

Location:

secure-file-manager

Files:

• assets/screenshot-3.png (modified) (previous)
• trunk/assets/admin/css/cosmostrap.css (modified) (2 diffs)
• trunk/includes/activation.php (modified) (1 diff)
• trunk/includes/admin.php (modified) (8 diffs)
• trunk/readme.txt (modified) (3 diffs)
• trunk/secure-file-manager.php (modified) (3 diffs)

secure-file-manager/trunk/assets/admin/css/cosmostrap.css

@@ -1591 +1591 @@
 .tx_wrap .form-check-label {
   margin-bottom: 0;
+  margin-left: 20px;
 }
 .tx_wrap .form-check-inline {
@@ -7320 +7321 @@
   height: auto;
   width: auto;
+  margin-left: 0px;
 }
 .tx_wrap input[type=radio] {

secure-file-manager/trunk/includes/activation.php

@@ -3 +3 @@
  * Execute the following code during plugin activation
  *
- * @since      1.0
+ * @since      2.0
  * @package    Secure File Manager
  * @author     Themexa
  */
+
+if ( empty( get_option( 'sfm_auth_roles' ) ) ) {
+    update_option ( 'sfm_auth_roles', explode( ',', 'administrator' ) );
+}

secure-file-manager/trunk/includes/admin.php

@@ -3 +3 @@
  * Code for Admin Options
  *
- * @since      1.0
+ * @since      2.0
  * @package    Secure File Manager
  * @author     Themexa
@@ -12 +12 @@
     $page_title = __( 'Secure File Manager', 'secure-file-manager' );
     $menu_title = __( 'Secure File Manager', 'secure-file-manager' );
-    $capability = 'manage_options';
+    $capability = 'read';
     $menu_slug = 'sfm_file_manager';
     $function = 'sfm_file_manager_display';
@@ -26 +26 @@
         __( 'Settings', 'secure-file-manager' ),
         __( 'Settings', 'secure-file-manager' ),
-        'manage_options',
+        'read',
         'sfm_settings',
         'sfm_settings_display'
@@ -34 +34 @@
 function sfm_file_manager_display() {
 
-    if ( ! current_user_can( 'manage_options' ) ) {
-        wp_die( 'Unauthorized user' );
-    } elseif ( get_option( 'scp_auth_user' ) ) {
-        $userID = intval( get_option( 'scp_auth_user' ) );
+    if ( get_option( 'sfm_auth_user' ) ) {
         $currentUser = get_current_user_id();
-        if ( $currentUser != $userID ) {
+        $currentUserRole = wp_get_current_user();
+        $roles = ( array ) $currentUserRole->roles;
+
+        if ( ! (current_user_can('update_core') || in_array( $currentUser, get_option( 'sfm_auth_user' ) ) || array_intersect( get_option( 'sfm_auth_roles' ), $roles ) ) ) {
             wp_die( '<h1>Unauthorized Access. Please contact Site Administrator.</h1>' );
         }
     }
-
 
 ?>
@@ -50 +49 @@
             <div class="row">
                 <div class="col-lg-12">
-                    <div class="jumbotron" style="background-image: url(<?php echo plugin_dir_url( dirname( __FILE__ ) ); ?>assets/images/tinypixi_pluginman_head.png); ">
+                    <div class="jumbotron" style="background-image: url( <?php echo plugin_dir_url( dirname( __FILE__ ) ); ?>assets/images/tinypixi_pluginman_head.png ); ">
                         <h1 class="display-3"><?php _e( 'Secure File Manager', 'secure-file-manager' ); ?></h1>
                         <p class="lead"><?php _e( 'WordPress file editing made easy (and secure)', 'bwpse' ); ?></p>
@@ -67 +66 @@
 
     if ( ! current_user_can( 'manage_options' ) ) {
-        wp_die( 'Unauthorized user' );
-    } elseif ( get_option( 'scp_auth_user' ) ) {
-        $userID = intval( get_option( 'scp_auth_user' ) );
-        $currentUser = get_current_user_id();
-        if ( $currentUser != $userID ) {
-            wp_die( '<h1>Unauthorized Access. Please contact Site Administrator.</h1>' );
-        }
+        wp_die( '<h1>Unauthorized Access. Please contact Site Administrator.</h1>' );
     }
 
@@ -82 +75 @@
             <div class="row">
                 <div class="col-lg-12">
-                    <div class="jumbotron" style="background-image: url(<?php echo plugin_dir_url( dirname( __FILE__ ) ); ?>assets/images/tinypixi_pluginman_head.png); ">
+                    <div class="jumbotron" style="background-image: url( <?php echo plugin_dir_url( dirname( __FILE__ ) ); ?>assets/images/tinypixi_pluginman_head.png ); ">
                         <h1 class="display-3"><?php _e( 'Secure File Manager', 'secure-file-manager' ); ?></h1>
                         <p class="lead"><?php _e( 'Settings', 'bwpse' ); ?></p>
@@ -88 +81 @@
                 </div>
             </div>
-            <form method="post">
-                <h1><?php _e( 'Security', 'secure-file-manager' ); ?></h1>
-                <fieldset id="scp_auth_user">
-                    <div class="form-group">
-                        <?php
-                            if ( isset( $_POST[ 'scp_auth_user' ] ) ) {
-                                update_option( 'scp_auth_user', intval($_POST['scp_auth_user']) );
-                            }
-                        ?>
-                        <label><?php _e( 'Which user should have access to the File Manager?', 'secure-file-manager' ); ?></label>
-                        <input type="number" name="scp_auth_user" id="scp_auth_user" placeholder="e.g. 1" class="form-control" value="<?php echo get_option( 'scp_auth_user' ); ?>">
-                        <small class="form-text text-muted"><?php _e( 'Enter specific user ID', 'secure-file-manager' ); ?></small>
-                    </div>
-                </fieldset>
-                <fieldset>
-                    <input type="hidden" name="action" value="update" />
-                    <?php wp_nonce_field('scp_update_action'); ?>
-                    <button type="submit" class="btn btn-primary"><?php _e( 'Save Changes', 'secure-file-manager' ); ?></button>
-                </fieldset>
-            </form>
+            <div class="row">
+                <div class="col-md-6">
+                    <form method="post">
+                        <h1><?php _e( 'Limit with User ID(s)', 'secure-file-manager' ); ?></h1>
+                        <fieldset id="sfm_auth_user">
+                            <div class="form-group">
+                                <?php
+                                    if ( isset( $_POST[ 'sfm_auth_user' ] ) ) {
+                                        update_option( 'sfm_auth_user', preg_replace( array( '/[^\d,]/', '/(?<=,),+/', '/^,+/', '/,+$/' ), '', explode( ',', $_POST[ 'sfm_auth_user' ] ) ) );
+                                    }
+                                ?>
+                                <strong><label><?php _e( 'Which user should have access to the File Manager?', 'secure-file-manager' ); ?></label></strong>
+                                <input type="text" name="sfm_auth_user" id="sfm_auth_user" placeholder="e.g. 1, 2, 3" class="form-control" value="<?php echo implode(', ',get_option( 'sfm_auth_user' )); ?>">
+                                <small class="form-text text-muted"><?php _e( 'Enter specific user ID. Enter comma ( , ) between IDs if there are more than one.', 'secure-file-manager' ); ?></small>
+                            </div>
+                        </fieldset>
+                        <fieldset>
+                            <input type="hidden" name="action" value="update" />
+                            <?php wp_nonce_field('sfm_update_action'); ?>
+                            <button type="submit" class="btn btn-primary"><?php _e( 'Save Changes', 'secure-file-manager' ); ?></button>
+                        </fieldset>
+                    </form>
+                </div>
+                <div class="col-md-5 offset-md-1">
+                    <form method="post">
+                        <fieldset id="sfm_auth_roles">
+                            <?php
+                                if( isset( $_POST[ 'sfm_auth_roles' ] ) ) {
+                                    update_option ( 'sfm_auth_roles', $_POST[ 'sfm_auth_roles' ]);
+                                }
+                            ?>
+                            <h1><?php _e( 'Specify User Role(s)', 'secure-file-manager' ); ?></h1>
+                            <strong><label><?php _e( 'Which user role(s) should have access to the File Manager?', 'secure-file-manager' ); ?></label></strong>
+                            <p></p>
+                            <div class="row">
+                                <?php foreach ( get_editable_roles() as $role_name => $role_info ): ?>
+                                    <div class="form-group col-md-6">
+                                        <input class="form-check-input" type="checkbox" value="<?php echo $role_name; ?>" id="<?php echo $role_name; ?>" name="sfm_auth_roles[]" <?php echo in_array( $role_name, get_option( 'sfm_auth_roles' ) ) ? 'checked' : ''; ?> >
+                                        <label class="form-check-label" for="<?php echo $role_name; ?>"><span class="checkbox_role"><?php echo $role_info['name']; ?></span></label>
+                                    </div>
+                                <?php endforeach; ?>
+                            </div>
+                        </fieldset>
+                        <fieldset>
+                            <input type="hidden" name="action" value="update" />
+                            <?php wp_nonce_field( 'sfm_update_action' ); ?>
+                            <button type="submit" class="btn btn-primary"><?php _e( 'Save Changes', 'secure-file-manager' ); ?></button>
+                        </fieldset>
+                    </form>
+                </div>
+            </div>
+            <div>
+
+            </div>
         </div>
     </div>

secure-file-manager/trunk/readme.txt

@@ -6 +6 @@
 Tested up to: 5.1
 Requires PHP: 5.6
-Stable tag: 1.3
+Stable tag: 2.0
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 
-Highly Secure and Powerful WordPress File Manage with Multiple Stunning Designs. You can Create, Delete, Edit, Download, Upload, Compress (Zip) files without any FTP software. You can also connect remove FTP location and copy files/folders from there to your server without any trouble.
+Highly Secure and Powerful WordPress File Manager with Multiple Stunning Designs. You can Create, Delete, Edit, Download, Upload, Compress (Zip) files without any FTP software. You can also connect remove FTP location and copy files/folders from there to your server without any trouble.
 
 == Description ==
@@ -58 +58 @@
 YES! Your server files are your property. So is this plugin after you install it.
 
+= Can I allow users with specific Role(s)? =
+YES! Now you can select the roles who will 
+
 = Can I get support for this plugin? =
 Definitely! We provide support for anything related to WordPress.
 
 = Can I change file manager design easily? ==
-Yes! Simply go to plugin settings and select the design you want and save. That\'s it!
+Yes! Simply go to plugin settings and select the design you want and save. That's it!
 
 = Can I set custom path to start? =
@@ -86 +89 @@
 * WordPress 5.1 Compatibility.
 
+= 2.0 =
+* Restrict with User Role Feature Added.
+
 == Upgrade Notice ==
 = 1.0 =

secure-file-manager/trunk/secure-file-manager.php

@@ -3 +3 @@
 /**
  * @package Secure File Manager
- * @version 1.1
+ * @version 2.0
  */
 
@@ -11 +11 @@
 Description: Most Beautiful and Secure WordPress File Manager
 Author: Themexa
-Version: 1.3
+Version: 2.0
 Author URI: https://www.themexa.com
 License: GPL2
@@ -25 +25 @@
  * Current plugin version.
  */
-define( 'secure-file-manager', '1.0' );
+define( 'secure-file-manager', '2.0' );
 
 /**