Changeset 3149586

Timestamp:

09/10/2024 07:19:07 PM (17 months ago)

Author:

falcon13

Message:

Updated validation and filter helper functions, including splitting validation and filter functions into separate helper files.

Location:

business-listing/trunk

Files:

• admin.php (modified) (12 diffs)
• business-listing.css (modified) (2 diffs)
• business-listing.php (modified) (1 diff)
• helpers/filter_helper.php (added)
• helpers/validation_helper.php (modified) (1 diff)
• images/sort_asc.png (deleted)
• images/sort_asc_disabled.png (deleted)
• images/sort_both.png (deleted)
• images/sort_desc.png (deleted)
• images/sort_desc_disabled.png (deleted)
• readme.txt (modified) (3 diffs)
• shortcodes.php (modified) (1 diff)

business-listing/trunk/admin.php

@@ -5 +5 @@
  * @Author          Chris Hood (http://chrishood.me)
  * @Link                https://onthegridwebdesign.com
- * @copyright       (c) 2015-2022, On the Grid Web Design LLC
+ * @copyright       (c) 2015-2024, On the Grid Web Design LLC
  * @created         4/23/15
 */
@@ -21 +21 @@
     $otgblist_Listings_Model = new otgblist_Listings_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -29 +29 @@
         check_admin_referer('list');
         $action = otgblist_get_request_string('action');
-        $bulk_action_list = otgblist_get_bulk_action_list();
+        $bulk_action_list = otgblist_get_request_int_array();
 
         if (empty($bulk_action_list)) {
@@ -93 +93 @@
     $otgblist_Cats_Model = new otgblist_Cats_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -154 +154 @@
     $otgblist_Cats_Model = new otgblist_Cats_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -162 +162 @@
         check_admin_referer('regions');
         $action = otgblist_get_request_string('action');
-        $bulk_action_list = otgblist_get_bulk_action_list();
+        $bulk_action_list = otgblist_get_request_int_array();
         if (empty($bulk_action_list)) {
             $message_list[] = ['Nothing to do that to.', 3, 2];
@@ -233 +233 @@
     $otgblist_Cats_Model = new otgblist_Cats_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -266 +266 @@
     $otgblist_Cats_Model = new otgblist_Cats_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -274 +274 @@
         check_admin_referer('categories');
         $action = otgblist_get_request_string('action');
-        $bulk_action_list = otgblist_get_bulk_action_list();
+        $bulk_action_list = otgblist_get_request_int_array();
 
         if (empty($bulk_action_list)) {
@@ -346 +346 @@
     $otgblist_Cats_Model = new otgblist_Cats_Model();
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();
@@ -377 +377 @@
     // ***** Load Models, Helpers and Libraries *****
     include_once(OTGBLIST_ROOT_PATH . 'helpers/view_helper.php');
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     $message_list = array();    
@@ -417 +417 @@
     wp_enqueue_style('otgcalgs_datatables_css');
     wp_enqueue_script('otgcalgs_datatables', plugins_url('datatables.min.js', __FILE__));
-    include_once(OTGBLIST_ROOT_PATH . 'helpers/validation_helper.php');
+    include_once(OTGBLIST_ROOT_PATH . 'helpers/filter_helper.php');
     
     // ***** wp_enqueue_media Long Form to Go Around Bugs *****

business-listing/trunk/business-listing.css

@@ -4 +4 @@
  * @Author          Chris Hood (http://chrishood.me)
  * @Link                https://onthegridwebdesign.com
- * @copyright       (c) 2015-2022, On the Grid Web Design LLC
+ * @copyright       (c) 2015-2024, On the Grid Web Design LLC
  * @created         4/23/15
 */
@@ -170 +170 @@
 .otgblist_table1 th {
     padding: 6px 12px;
+    text-align: center !important;
 }
 .otgblist_table1 th a {

business-listing/trunk/business-listing.php

@@ -5 +5 @@
   Description: List businesses in tiles with a photo and link in a random order
   Author: Chris Hood, On The Grid Web Design LLC
-  Version: 2.1.2
+  Copyright: (c) 2015-2024, On the Grid Web Design LLC
+  Version: 2.2
   Author URI: https://chrishood.me
-  Updated: 12/9/2022; Created: 4/23/2015
+  Updated: 9/10/2024; Created: 4/23/2015
  */
 

business-listing/trunk/helpers/validation_helper.php

@@ -1 +1 @@
 <?php
-/** Form Validation Helper, OTG WP Plugins Common File
+/** Submitted Data Validation Helper, OTG WP Plugins Common File
  * @Package         com.onthegridwebdesign.wpp-business-listings
  * @File                helpers/validation_helper.php
  * @Author          Chris Hood (https://onthegridwebdesign.com)
  * @Link                https://onthegridwebdesign.com/software
- * @copyright       (c) 2018-2022, On the Grid Web Design LLC
- * @created         2/24/2018
+ * @copyright       (c) 2018-2024, On the Grid Web Design LLC
+ * @created         9/10/2024
 */
 
-/** Gets and Cleans a Post Value
- * @param string $field
- * @param string $default
- * @param boolean $allow_html
- * @return string|null
+/** Cleans and Checks an Email Address
+ * @param string $in
+ * @return array
  */
-function otgblist_get_request_string ($field, $default=null, $allow_html=false) {
-    if (empty($_REQUEST[$field])) {
-        return $default;
+function otgblist_validate_email ($in) {
+    if (empty($in))
+        return ['email' => '', 'valid' => false, 'message' => 'Email address needs to be submitted.'];
+
+    $valid = true;
+    $message = '';
+
+    if (!$email_domain = stristr($in, '@')) {
+        $message = 'Email address needs a "@"!';
+        $valid = false;
+    } elseif (!preg_match("/^([a-zA-Z0-9])+([a-zA-Z0-9\._-]).*@([a-zA-Z0-9_-])+([a-zA-Z0-9\._-]+)+$/", $in)) {
+        $message = 'Email address is missing something!';
+        $valid = false;
+    } elseif (!stristr($email_domain, '.')) {
+        $message = 'Email address domain needs to be valid!';
+        $valid = false;
+    } elseif (!filter_var($in, FILTER_VALIDATE_EMAIL)) {
+        $message = 'Email address needs to be valid!';
+        $valid = false;
+    }
+
+    return ['valid' => $valid, 'message' => $message];
+}
+
+
+/** Verifies a hCaptcha
+ * @return boolean
+ */
+function otgblist_verify_hcaptcha () {
+    $post_data['secret'] = get_option('otgblist_hcaptcha_secret_key');
+    if (empty($post_data['secret'])) return true; // hcaptcha is disabled
+    $post_data['response'] = otgblist_get_request_string('h-captcha-response');
+
+    $curl = curl_init('https://hcaptcha.com/siteverify');
+    curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
+    curl_setopt($curl, CURLOPT_POST, 1);
+    curl_setopt($curl, CURLOPT_POSTFIELDS, $post_data);
+    $response = curl_exec($curl);
+    $response_data = json_decode($response, true);
+
+    /* ***** For Debugging *****
+    $curl_error = curl_error($curl);
+    if (!empty($curl_error)) {
+        error_log('otgblist_verify_hcaptcha Curl Error: ' . print_r($curl_error, true));
+    }
+    $curl_info = curl_getinfo($curl);
+    error_log('otgblist_verify_hcaptcha Curl Info: ' . print_r($curl_info, true));
+    error_log('otgblist_verify_hcaptcha Response: ' . $response);
+    error_log('otgblist_verify_hcaptcha Response Array: ' . print_r($response_data, true));
+    /**/
+
+    if ('true' == $response_data['success']) {
+        return true;
     } else {
-        if ($allow_html)
-            return trim(filter_var(stripslashes_deep($_REQUEST[$field]), FILTER_UNSAFE_RAW, FILTER_FLAG_STRIP_HIGH | FILTER_FLAG_STRIP_LOW));
-        else
-            return trim(filter_var(stripslashes_deep($_REQUEST[$field]), FILTER_SANITIZE_SPECIAL_CHARS));
+        return false;
     }
 }
-
-/** Checks the Variable and Returns It as an Integer or Null
- * @param string $field
- * @param int $default
- * @return int|null
- */
-function otgblist_get_request_int ($field, $default=null) {
-    $value = trim($_REQUEST[$field]);
-    if (!is_numeric($value) && !is_int($value)) {
-        if (is_int($default) || is_numeric($default))
-            $out = $default;
-        else
-            $out = null;
-    } else {
-        $out = (int)$value;
-    }
-    return $out;
-}
-
-/** Gets and Cleans a Email Post Value
- * @param string $field
- * @param string $default
- * @return string|null
- */
-function otgblist_get_request_email ($field, $default=null) {
-    if (empty($_REQUEST[$field])) {
-        return $default;
-    } else {
-        return filter_var(trim($_REQUEST[$field]), FILTER_SANITIZE_EMAIL);
-    }
-}
-
-/** Gets and Cleans a URL Value
- * @param string $field
- * @param string $default
- * @return string|null
- */
-function otgblist_get_request_link ($field, $default = null) {
-    if (empty($_REQUEST[$field])) {
-        return $default;
-    } else {
-        $link = trim(stripslashes_deep($_REQUEST[$field]));
-        if (0 != strncasecmp($link, 'http://', 7) && 0 != strncasecmp($link, 'https://', 8))
-            $link = 'http://' . $link;
-        return filter_var($link, FILTER_SANITIZE_URL);
-    }
-}
-
-/** Gets and Cleans a Textarea Post
- * @param string $field
- * @param string $default
- * @return string|null
- */
-function otgblist_get_request_texarea ($field, $default = null) {
-    if (empty($_REQUEST[$field])) {
-        return $default;
-    } else {
-        return trim(filter_var(stripslashes_deep($_REQUEST[$field]), FILTER_SANITIZE_SPECIAL_CHARS));
-    }
-}
-
-/** Get the Bulk Action List and Only Allows Integers in the List
- * @return array
- */
-function otgblist_get_bulk_action_list () {
-    $bulk_action_list = array();
-    if (!empty($_POST['bulk_action_list'])) foreach ($_POST['bulk_action_list'] as $id) {
-        if (is_int($id) || ctype_digit($id)) {
-            $bulk_action_list[] = (int)$id;
-        }
-    }
-    return $bulk_action_list;
-}
-
-/** Get the Bulk Action List and Only Allows Integers in the List
- * @return array
- */
-function otgblist_get_request_int_array ($field = 'bulk_action_list') {
-    $bulk_action_list = array();
-    if (!empty($_POST[$field])) foreach ($_POST[$field] as $key => $value) {
-        if (is_int($value) || ctype_digit($value)) {
-            $bulk_action_list[$key] = (int)$value;
-        }
-    }
-    return $bulk_action_list;
-}
-
-/** Get the Bulk Action List and Only Allows Integers in the List
- * @param string $field
- * @return array
- */
-function otgblist_get_request_str_array ($field) {
-    $field_array = array();
-    if (!empty($_POST[$field])) foreach ($_POST[$field] as $key => $value) {
-        $field_array[trim(filter_var(stripslashes_deep($key), FILTER_SANITIZE_SPECIAL_CHARS))] = trim(filter_var(stripslashes_deep($value), FILTER_SANITIZE_SPECIAL_CHARS));
-    }
-    return $field_array;
-}
-
-/** Replace Quotes with HTML Entity Names
- * @param string $in
- * @return string
- */
-function otgblist_filter_quotes ($in) {
-    return trim(str_replace(['"', "'"], ['&quot;', '&apos;'], $in));
-}

business-listing/trunk/readme.txt

@@ -4 +4 @@
 Tags: business, listings, shortcode, thumbnail, business directory
 Requires at least: 4.0
-Tested up to: 6.1
+Tested up to: 6.6
 Requires PHP: 5.6
-Stable tag: 2.1.2
+Stable tag: 2.2.0
 License: GPLv3
 
@@ -46 +46 @@
 
 == Changelog ==
+2.2.0 (9/10/2024)
+- Updated validation and filter helper functions, including splitting validation and filter functions into separate helper files.
+
 2.1.2 (12/9/2022)
 - Validation, Filter and View helpers improvements and updates for PHP 8.2.
@@ -73 +76 @@
 
 == Frequently Asked Questions ==
-
 = Can I change the button color? =
 * Right now you have to override the colors by CSS. In a future version it'll be in the options.

business-listing/trunk/shortcodes.php

@@ -76 +76 @@
                 if (empty($listing['link'])) $listing['link'] = '#';
                 $output .= '<a href="' . $listing['link'] . '" target="_blank" rel="noopener" class="otgblist_box_img_outer">';
-                $output .= '<img src="' . esc_url($image_url[0]). '" alt="' . esc_attr($image_alt) . '">';
+                if (!empty($image_url[0])) $output .= '<img src="' . esc_url($image_url[0]). '" alt="' . esc_attr($image_alt) . '">';
                 $output .= '</a>';
             }