Changeset 3321920

Timestamp:

07/03/2025 04:57:50 PM (8 months ago)

Author:

alertwise

Message:

Addressed the Violation raised from WordPress.org Plugin Directory

Location:

alertwise/trunk

Files:

• app/Admin.php (modified) (1 diff)
• app/Includes/handlers/SettingsHandler.php (modified) (3 diffs)
• app/Installer.php (modified) (2 diffs)
• app/SendManager.php (modified) (13 diffs)
• app/ServiceWorker.php (modified) (2 diffs)
• app/Utils/Helpers.php (modified) (2 diffs)
• app/Utils/TokenManager.php (modified) (1 diff)
• languages (added)
• main.php (modified) (1 diff)
• readme.txt (modified) (6 diffs)
• vendor/autoload.php (modified) (1 diff)
• vendor/composer/InstalledVersions.php (modified) (5 diffs)
• vendor/composer/installed.php (modified) (2 diffs)
• views/about-us.php (modified) (2 diffs)
• views/dashboard-site-not-connected.php (modified) (6 diffs)
• views/header.php (modified) (1 diff)
• views/settings.php (modified) (3 diffs)

alertwise/trunk/app/Admin.php

@@ -8 +8 @@
 // Exit if accessed directly.
 if ( ! defined( 'ABSPATH' ) ) {
-    exit;
+    exit;
 }
 
 class Admin {
-    /**
-     * Constructor function to register hooks
-     *
-     * @since 4.0.0
-     */
-    public function __construct() {
-        if ( is_admin() && current_user_can( 'manage_options' ) ) {
-            add_action( 'admin_init', array( $this, 'alertwise_plugin_redirect' ), 9999 );
-            add_action( 'admin_enqueue_scripts', array( $this, 'alertwise_hide_admin_notices' ) );
-            add_action( 'admin_notices', array( $this, 'alertwise_display_admin_notices' ) );
-            SettingsHandler::register();
-        }
-    }
+    /**
+     * Constructor function to register hooks
+     *
+     * @since 4.0.0
+     */
+    public function __construct() {
+        if ( is_admin() && current_user_can( 'manage_options' ) ) {
+            add_action( 'admin_init', array( $this, 'alertwise_plugin_redirect' ), 9999 );
+            add_action( 'admin_enqueue_scripts', array( $this, 'alertwise_hide_admin_notices' ) );
+            add_action( 'admin_notices', array( $this, 'alertwise_display_admin_notices' ) );
+            SettingsHandler::register();
+        }
+    }
 
-    /**
-     * Redirect to onboarding screen after activation
-     *
-     * @since 4.0.0
-     */
-    public function alertwise_plugin_redirect() {
-        if ( ! get_transient( 'alertwise_activation_redirect' ) ) {
-            return;
-        }
+    /**
+     * Redirect to onboarding screen after activation
+     *
+     * @since 4.0.0
+     */
+    public function alertwise_plugin_redirect() {
+        if ( ! get_transient( 'alertwise_activation_redirect' ) ) {
+            return;
+        }
 
-        delete_transient( 'alertwise_activation_redirect' );
+        delete_transient( 'alertwise_activation_redirect' );
 
-        // Only do this for single site installs.
-        if ( is_network_admin() || isset( $_GET['activate-multi'] ) ) {
-            return;
-        }
+        // Only do this for single site installs.
+        if ( is_network_admin() || isset( $_GET['activate-multi'] ) ) {
+            return;
+        }
 
-        $url      = 'admin.php?page=';
-        $settings = Options::get_site_settings();
-        if ( ! isset( $settings['alertwise_setting_password'] ) || empty( $settings['alertwise_setting_password'] ) ) {
-            $url .= 'settings.php';
-        }
+        // Nonce verification for redirect (recommended)
+        if ( ! isset( $_GET['_wpnonce'] ) || ! wp_verify_nonce( $_GET['_wpnonce'], 'alertwise_plugin_redirect' ) ) {
+            return;
+        }
 
-        wp_safe_redirect( admin_url( $url ) );
-        exit;
-    }
+        $url      = 'admin.php?page=';
+        $settings = Options::get_site_settings();
+        if ( ! isset( $settings['alertwise_setting_password'] ) || empty( $settings['alertwise_setting_password'] ) ) {
+            $url .= 'settings.php';
+        }
 
-    /**
-     * Remove all admin notices in alertwise plugin page
-     *
-     * @since 4.0.0
-     *
-     * @return void
-     */
-    public function alertwise_hide_admin_notices() {
-        $screen = get_current_screen();
-        if ( 'toplevel_page_alertwise' === $screen->base ) {
-            echo '<style>.update-nag, .updated, .error, .notice, .is-dismissible { display: none !important; }</style>';
-        }
-    }
+        wp_safe_redirect( admin_url( $url ) );
+        exit;
+    }
 
-    /**
-     * Display admin notices if site not connected
-     *
-     * @since 4.0.0
-     *
-     * @return void
-     */
-    public function alertwise_display_admin_notices() {
-        $screen = get_current_screen();
-        // Added filter for site connection notice allowed screens.
-        $allowed_screens = apply_filters(
-            'palertwise_connection_notice_allowed_screens',
-            array(
-                'dashboard',
-                'plugins',
-            )
-        );
-        // Do not display admin notice on AlertWise Plugin page as we hide
-        // the admin notice inside AlertWise Plugin
-        if ( 'toplevel_page_alertwise' === $screen->base || ! in_array( $screen->id, $allowed_screens, true ) ) {
-            return;
-        }
+    /**
+     * Remove all admin notices in alertwise plugin page
+     *
+     * @since 4.0.0
+     *
+     * @return void
+     */
+    public function alertwise_hide_admin_notices() {
+        $screen = get_current_screen();
+        if ( 'toplevel_page_alertwise' === $screen->base ) {
+            echo '<style>.update-nag, .updated, .error, .notice, .is-dismissible { display: none !important; }</style>';
+        }
+    }
 
-        $settings = Options::get_site_settings();
-        $api_key  = ArrayHelper::get( $settings, 'alertwise_setting_password', null );
+    /**
+     * Display admin notices if site not connected
+     *
+     * @since 4.0.0
+     *
+     * @return void
+     */
+    public function alertwise_display_admin_notices() {
+        $screen = get_current_screen();
+        // Added filter for site connection notice allowed screens.
+        $allowed_screens = apply_filters(
+            'alertwise_connection_notice_allowed_screens',
+            array(
+                'dashboard',
+                'plugins',
+            )
+        );
+        // Do not display admin notice on AlertWise Plugin page as we hide
+        // the admin notice inside AlertWise Plugin
+        if ( 'toplevel_page_alertwise' === $screen->base || ! in_array( $screen->id, $allowed_screens, true ) ) {
+            return;
+        }
 
-        if ( ! $api_key ) {
-            Alertwise::output_view( 'site-not-connected.php' );
-        }
-    }
+        $settings = Options::get_site_settings();
+        $api_key  = ArrayHelper::get( $settings, 'alertwise_setting_password', null );
+
+        if ( ! $api_key ) {
+            Alertwise::output_view( 'site-not-connected.php' );
+        }
+    }
 }

alertwise/trunk/app/Includes/handlers/SettingsHandler.php

@@ -25 +25 @@
         }
 
-        $username = sanitize_text_field($_POST['pe_username']);
-        $api_key = sanitize_text_field($_POST['pe_api_key']);
+        $username = isset($_POST['pe_username']) ? sanitize_text_field(wp_unslash($_POST['pe_username'])) : '';
+        $api_key = isset($_POST['pe_api_key']) ? sanitize_text_field(wp_unslash($_POST['pe_api_key'])) : '';
 
         $params = [
@@ -83 +83 @@
                     $settings['alertwise_setting_language'] = $current_app['language'];
                     $settings['alertwise_setting_icon_url'] = $current_app['iconUrl'];
-                    $settings['alertwise_setting_icon_url'] = $current_app['iconUrl'];
                     $settings['alertwise_setting_badge_icon_url'] = $current_app['badgeIconUrl'];
-                    $settings['alertwise_setting_created_at'] = date('Y-m-d H:i:s');
+                    $settings['alertwise_setting_created_at'] = gmdate('Y-m-d H:i:s');
                 } else {
                     AdminNotice::add_notice('No matching app found for this domain.', 'error');
@@ -106 +105 @@
 
         // Redirect back to the settings page
-        wp_redirect(admin_url('admin.php?page=settings.php&updated=true'));
+        wp_redirect(esc_url_raw(admin_url('admin.php?page=settings.php&updated=true')));
         exit;
     }

alertwise/trunk/app/Installer.php

@@ -2 +2 @@
 namespace Alertwise;
 
-//use Alertwise\Upgrade;
 use Alertwise\Utils\Options;
 
 // Exit if accessed directly.
 if ( ! defined( 'ABSPATH' ) ) {
-    exit;
+    exit;
 }
 
 class Installer {
-    /**
-     * Trigger immediately after installing plugin
-     *
-     * @since 4.0.0
-     *
-     * @return void
-     */
-    public static function plugin_install() {
-        $alertwise_settings = Options::get_site_settings();
+    /**
+     * Trigger immediately after installing plugin
+     *
+     * @since 4.0.0
+     *
+     * @return void
+     */
+    public static function plugin_install() {
+        $alertwise_settings = Options::get_site_settings();
 
-        if ( empty( $alertwise_settings ) ) {
-            $alertwise_settings = array(
-                'alertwise_setting_access_token'                        => '',
-                'alertwise_setting_expires_in'                          => '',
-                'alertwise_setting_token_type'                          => '',
-                'alertwise_setting_username'                            => '',
-                'version'                                               => ALERTWISE_VERSION,
-                'alertwise_setting_password'                            => '',
-                'alertwise_setting_owner_id'                            => '',
-                'alertwise_setting_app_id'                              => '',
-                'alertwise_setting_app_url'                             => '',
+        if ( empty( $alertwise_settings ) ) {
+            $alertwise_settings = array(
+                'alertwise_setting_access_token'                        => '',
+                'alertwise_setting_expires_in'                          => '',
+                'alertwise_setting_token_type'                          => '',
+                'alertwise_setting_username'                            => '',
+                'version'                                               => ALERTWISE_VERSION,
+                'alertwise_setting_password'                            => '',
+                'alertwise_setting_owner_id'                            => '',
+                'alertwise_setting_app_id'                              => '',
+                'alertwise_setting_app_url'                             => '',
                 'alertwise_setting_app_name'                            => '',
                 'alertwise_setting_app_server_public_key'               => '',
@@ -38 +37 @@
                 'alertwise_setting_badge_icon_url'                      => '',
                 'alertwise_setting_created_at'                          => '',
-                'misc' => array(
-                    'hideAdminBarMenu'                                  => false,
-                    'hideDashboardWidget'                               => false,
-                ),
-            );
+                'misc' => array(
+                    'hideAdminBarMenu'                                  => false,
+                    'hideDashboardWidget'                               => false,
+                ),
+            );
 
-            add_option( 'alertwise_settings', $alertwise_settings );
-        }
+            add_option( 'alertwise_settings', $alertwise_settings );
+        }
 
-        if ( empty( $alertwise_post_page_settings ) ) {
-            $alertwise_post_page_settings = array(
-                'post_notifications'                                    => true,
-                'page_notifications'                                    => true,
-                'created_at'                                            => date('Y-m-d H:i:s'),
-            );
+        if ( empty( $alertwise_post_page_settings ) ) {
+            $alertwise_post_page_settings = array(
+                'post_notifications'                                    => true,
+                'page_notifications'                                    => true,
+                'created_at'                                            => gmdate('Y-m-d H:i:s'),
+            );
 
-            add_option( 'alertwise_post_page_settings', $alertwise_post_page_settings );
-        }
-    }
+            add_option( 'alertwise_post_page_settings', $alertwise_post_page_settings );
+        }
+    }
 }

alertwise/trunk/app/SendManager.php

@@ -23 +23 @@
 
         // Always add the "site not connected" metabox action
-        // It will only show if credentials are missing.
         add_action('add_meta_boxes', array($this, 'add_alertwise_site_not_connected_metabox'));
 
-
         if (
-            ! empty($alertwise_settings['alertwise_setting_username'])
-            && ! empty($alertwise_settings['alertwise_setting_password'])
+            !empty($alertwise_settings['alertwise_setting_username'])
+            && !empty($alertwise_settings['alertwise_setting_password'])
         ) {
             add_action('add_meta_boxes', [$this, 'add_notification_metabox']);
@@ -69 +67 @@
         $already_sent = get_post_meta($post->ID, '_alertwise_sent', true);
 
-        // Prepare data for view
         $data = [
             'post' => $post,
@@ -78 +75 @@
         ];
 
-        // Use the view loader
         Alertwise::output_view('post-editor-metabox.php', $data);
     }
@@ -93 +89 @@
         }
 
-        // Only validate nonce if it's a real form submission (to avoid failing on cron or API saves)
         if (isset($_POST['alertwise_meta_box_nonce'])) {
             if (!wp_verify_nonce($_POST['alertwise_meta_box_nonce'], 'alertwise_meta_box')) {
@@ -105 +100 @@
 
             if (isset($_POST['alertwise_custom_title'])) {
-                update_post_meta($post_id, '_alertwise_custom_title', sanitize_text_field($_POST['alertwise_custom_title']));
+                update_post_meta(
+                    $post_id,
+                    '_alertwise_custom_title',
+                    sanitize_text_field(wp_unslash($_POST['alertwise_custom_title']))
+                );
                 error_log("[Alertwise] Saved custom title for post ID: $post_id");
             }
             if (isset($_POST['alertwise_custom_msg'])) {
-                update_post_meta($post_id, '_alertwise_custom_msg', sanitize_textarea_field($_POST['alertwise_custom_msg']));
+                update_post_meta(
+                    $post_id,
+                    '_alertwise_custom_msg',
+                    sanitize_textarea_field(wp_unslash($_POST['alertwise_custom_msg']))
+                );
                 error_log("[Alertwise] Saved custom message for post ID: $post_id");
             }
 
-            // --- NEW: Handle scheduling of resend if post is scheduled ---
             $force_resend = isset($_POST['alertwise_force_resend']) && $_POST['alertwise_force_resend'] === '1';
             $post = get_post($post_id);
@@ -119 +121 @@
             if ($force_resend) {
                 if ($post && $post->post_status === 'future') {
-                    // Mark to resend on next publish
                     update_post_meta($post_id, '_alertwise_resend_on_future_publish', '1');
                     error_log("[Alertwise] Will resend notification on future publish for post ID: $post_id");
                 } else {
-                    // If not scheduled, send now
                     $this->auto_send_notification($post_id, $post, true);
                 }
             } else {
-                // If user did not check force_resend, clear the meta
                 delete_post_meta($post_id, '_alertwise_resend_on_future_publish');
             }
         } else {
-            // Not a UI update (e.g. cron), so handle scheduled-resend logic
             $post = get_post($post_id);
             $resend_on_future_publish = get_post_meta($post_id, '_alertwise_resend_on_future_publish', true);
 
-            // If we're being published (by cron) and resend is requested, do it
             if ($post && $post->post_status === 'publish' && $resend_on_future_publish === '1') {
                 error_log("[Alertwise] Scheduled resend on publish for post ID: $post_id");
@@ -143 +140 @@
         }
 
-        // --- Normal auto-send logic if not already sent and not force-resend ---
         $post = get_post($post_id);
         if (!$post) {
@@ -159 +155 @@
     }
 
-    public function auto_send_notification($post_id, $post = null, $force_resend = false)
+    public function auto_send_notification($post_id, $post = null, $force_resend = false): void
     {
         if (defined('DOING_AUTOSAVE') && DOING_AUTOSAVE) return;
@@ -180 +176 @@
         }
 
-        // Optionally, clear sent meta if force_resend
         if ($force_resend) {
             update_post_meta($post_id, '_alertwise_sent', false);
@@ -193 +188 @@
 
         if (empty($message)) {
-            $message = wp_trim_words(strip_tags($post->post_content), 20);
+            $message = wp_trim_words(wp_strip_all_tags($post->post_content), 20);
         }
 
@@ -238 +233 @@
         ];
 
-        // Get a valid (non-expired) token
         $token = TokenManager::get_token();
         if ($token) {
@@ -246 +240 @@
             );
         } else {
-
-            // Remove the credentials keys if they are not empty
             if (
                 !empty($alertwise_settings['alertwise_setting_username']) &&
@@ -259 +251 @@
     }
 
-
-    /**
-     * Add Meta box when AlertWise site is not connected.
-     */
     public function add_alertwise_site_not_connected_metabox()
     {

alertwise/trunk/app/ServiceWorker.php

@@ -42 +42 @@
         // Only output the script if both values are present.
         if (!empty($app_id) && !empty($public_key)) {
-?>
+            ?>
             <script
-                src="<?php echo ALERTWISE_CDN_URL ?><?php echo esc_js($app_id); ?>/integrate/alert-wise.js"></script>
+                    src="<?php echo esc_url(ALERTWISE_CDN_URL . $app_id . '/integrate/alert-wise.js'); ?>"></script>
             <script type="text/javascript">
                 alertwise = window.alertwise || [];
@@ -50 +50 @@
                     appId: "<?php echo esc_js($app_id); ?>",
                     applicationServerPublicKey: "<?php echo esc_js($public_key); ?>",
-                    scope: "<?php echo ALERTWISE_PLUGIN_URL ?>",
-                    alertwiseApiUrl: "<?php echo ALERTWISE_WITHOUT_SLASH_URL ?>",
-                    serviceWorkerUrl: "<?php echo ALERTWISE_SERVICE_WORKER_URL ?>"
+                    scope: "<?php echo esc_js(ALERTWISE_PLUGIN_URL); ?>",
+                    alertwiseApiUrl: "<?php echo esc_js(ALERTWISE_WITHOUT_SLASH_URL); ?>",
+                    serviceWorkerUrl: "<?php echo esc_js(ALERTWISE_SERVICE_WORKER_URL); ?>"
                 }]);
             </script>
-<?php
+            <?php
         } else {
             error_log('app id not found in service worker intialization');

alertwise/trunk/app/Utils/Helpers.php

@@ -7 +7 @@
 // Exit if accessed directly.
 if (! defined('ABSPATH')) {
-    exit;
+    exit;
 }
 
 class Helpers
 {
-    /**
-     * Returns Jed-formatted localization data. Added for backwards-compatibility.
-     *
-     * @since 4.0.0
-     *
-     * @param  string $domain Translation domain.
-     * @return array          The information of the locale.
-     */
-    public static function get_jed_locale_data($domain)
-    {
-        $translations = get_translations_for_domain($domain);
-        $translations2 = get_translations_for_domain('default');
-
-        $locale = array(
-            '' => array(
-                'domain' => $domain,
-                'lang'   => is_admin() && function_exists('get_user_locale') ? get_user_locale() : get_locale(),
-            ),
-        );
-
-        if (! empty($translations->headers['Plural-Forms'])) {
-            $locale['']['plural_forms'] = $translations->headers['Plural-Forms'];
-        }
-
-        foreach ($translations->entries as $msgid => $entry) {
-            $locale[$msgid] = $entry->translations;
-        }
-
-        // If any of the translated strings incorrectly contains HTML line breaks, we need to return or else the admin is no longer accessible.
-        $json = wp_json_encode($locale);
-        if (preg_match('/<br[\s\/\\\\]*>/', $json)) {
-            return array();
-        }
-
-        return $locale;
-    }
-
-    /**
-     * Checks if a plugin is active
-     *
-     * @since 4.0.0
-     *
-     * @param  string  $basename The plugin basename.
-     * @return boolean Whether or not the plugin is active.
-     */
-    public static function is_plugin_active($basename)
-    {
-        $active_plugins = apply_filters('active_plugins', get_option('active_plugins'));
-        return in_array($basename, $active_plugins);
-    }
-
-    /**
-     * Get the active caching plugin details
-     *
-     * @since 4.0.0
-     *
-     * @return array|null   The active active caching plugin details returns null if no caching is active
-     */
-    public static function get_active_caching_plugin()
-    {
-        // Array of popular caching plugin slugs
-        $caching_plugins = array(
-            array(
-                'title' => 'WP Rocket',
-                'basename' => 'wp-rocket/wp-rocket.php',
-            ),
-            array(
-                'title' => 'W3 Super Cache',
-                'basename' => 'wp-super-cache/wp-cache.php',
-            ),
-            array(
-                'title' => 'W3 Total Cache',
-                'basename' => 'w3-total-cache/w3-total-cache.php',
-            ),
-            array(
-                'title' => 'Comet Cache',
-                'basename' => 'comet-cache/comet-cache.php',
-            ),
-            array(
-                'title' => 'WP fastest Cache',
-                'basename' => 'wp-fastest-cache/wpFastestCache.php',
-            ),
-            array(
-                'title' => 'Cache Enabler',
-                'basename' => 'cache-enabler/cache-enabler.php',
-            ),
-            array(
-                'title' => 'Hyper Cache',
-                'basename' => 'hyper-cache/plugin.php',
-            ),
-            array(
-                'title' => 'SiteGround Optimizer',
-                'basename' => 'sg-cachepress/sg-cachepress.php',
-            ),
-        );
-
-        // Loop through each plugin and check if it's active
-        $active_caching_plugin = null;
-        foreach ($caching_plugins as $plugin) {
-            if (self::is_plugin_active($plugin['basename'])) {
-                $active_caching_plugin = $plugin;
-                break;
-            }
-        }
-        return $active_caching_plugin;
-    }
-
-    /**
-     * Checks if the website is using SSl or not.
-     *
-     * @since 4.0.4.1
-     *
-     * @return boolean
-     */
-    public static function is_ssl()
-    {
-        // cloudflare
-        if (! empty($_SERVER['HTTP_CF_VISITOR'])) {
-            $cfo = json_decode($_SERVER['HTTP_CF_VISITOR']);
-            if (isset($cfo->scheme) && 'https' === $cfo->scheme) {
-                return true;
-            }
-        }
-
-        // other proxy
-        if (! empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && 'https' === $_SERVER['HTTP_X_FORWARDED_PROTO']) {
-            return true;
-        }
-
-        return function_exists('is_ssl') ? is_ssl() : false;
-    }
-
-    /**
-     * Returns whether the block editor is loading on the current screen.
-     *
-     * @since 4.0.5.1
-     *
-     * @return boolean|null True if the block editor is being loaded, false if
-     *                      not loading and null if can not determine.
-     */
-    public static function is_block_editor()
-    {
-        $curr_screen = get_current_screen();
-        if (! empty($curr_screen) && method_exists($curr_screen, 'is_block_editor')) {
-            return $curr_screen->is_block_editor();
-        }
-        return null;
-    }
-
-    /**
-     * Determines if given URL is a valid HTTP or HTTPS URLs and length is
-     * less than or equal to max_len.
-     *
-     * @since 4.0.5.1
-     *
-     * @param string $url URL to check.
-     * @param number $max_len Maximum allowed length of the URL.
-     *
-     * @return bool false on failure.
-     */
-    public static function is_http_or_https_url($url, $max_len = 0)
-    {
-        if (empty($url)) {
-            return false;
-        }
-
-        if ('http' === substr($url, 0, 4) || 'https' === substr($url, 0, 5)) {
-            if ($max_len && strlen($url) > $max_len) {
-                return false;
-            }
-            return true;
-        }
-
-        return false;
-    }
-
-
-
-    /**
-     * Decodes JSON string as associative array.
-     *
-     * @param string $data
-     * @return mixed|null
-     */
-    public static function json_decode($data)
-    {
-        $flag = 0;
-        if (defined('JSON_INVALID_UTF8_IGNORE')) {
-            $flag = JSON_INVALID_UTF8_IGNORE | $flag;
-        }
-        return json_decode($data, true, 512, $flag);
-    }
-
-    /**
-     * Convert HTML entities to their corresponding characters
-     *
-     * @since 4.0.6
-     * @param string The input string
-     * @return string The decoded string
-     */
-    public static function decode_entities($string)
-    {
-        $flag = ENT_QUOTES;
-        if (defined('ENT_HTML401')) {
-            $flag = ENT_HTML401 | $flag;
-        }
-        return html_entity_decode(str_replace(array('&apos;', '&#x27;', '&#39;', '&quot;'), '\'', $string), $flag, 'UTF-8');
-    }
-
-
-    /**
-     * Get image from post
-     *
-     * @since 4.0.8
-     *
-     * @param string|int[] $size
-     * @param number $post_id
-     *
-     * @return string
-     */
-    public static function get_post_image($size, $post_id)
-    {
-        $image_url = '';
-
-        if (has_post_thumbnail($post_id)) {
-            $raw_image = wp_get_attachment_image_src(get_post_thumbnail_id($post_id), $size);
-            if (! empty($raw_image)) {
-                $image_url = ! empty($raw_image[0]) ? $raw_image[0] : '';
-            }
-        }
-
-        return $image_url;
-    }
-
-    /**
-     * Decode a JWT token and return the payload as an array.
-     *
-     * @param string $jwt The JWT token
-     * @return array|null Returns the payload as array or null on error
-     */
-    public static function decode($jwt)
-    {
-        if (!is_string($jwt) || empty($jwt)) {
-            return null;
-        }
-
-        $parts = explode('.', $jwt);
-        if (count($parts) !== 3) {
-            return null;
-        }
-
-        list($header, $payload, $signature) = $parts;
-
-        // Decode payload (base64url)
-        $payload = self::base64url_decode($payload);
-
-        if ($payload === false) {
-            return null;
-        }
-
-        $data = json_decode($payload, true);
-
-        return is_array($data) ? $data : null;
-    }
-
-    /**
-     * Base64 URL decode.
-     *
-     * @param string $input
-     * @return string|false
-     */
-    private static function base64url_decode($input)
-    {
-        $remainder = strlen($input) % 4;
-        if ($remainder) {
-            $padlen = 4 - $remainder;
-            $input .= str_repeat('=', $padlen);
-        }
-        $input = strtr($input, '-_', '+/');
-        return base64_decode($input);
-    }
-
-    /**
-     * Get the current app based on the domain from a list of apps.
-     *
-     * @param array $apps List of apps from API response.
-     * @return array|null The app matching the current domain, or null if not found.
-     */
-    public static function get_current_app_from_apps($apps)
-    {
-        $current_url = home_url();
-        $current_domain = parse_url($current_url, PHP_URL_HOST);
+    /**
+     * Returns Jed-formatted localization data. Added for backwards-compatibility.
+     *
+     * @since 4.0.0
+     *
+     * @param  string $domain Translation domain.
+     * @return array          The information of the locale.
+     */
+    public static function get_jed_locale_data($domain)
+    {
+        $translations = get_translations_for_domain($domain);
+        $translations2 = get_translations_for_domain('default');
+
+        $locale = array(
+            '' => array(
+                'domain' => $domain,
+                'lang'   => is_admin() && function_exists('get_user_locale') ? get_user_locale() : get_locale(),
+            ),
+        );
+
+        if (! empty($translations->headers['Plural-Forms'])) {
+            $locale['']['plural_forms'] = $translations->headers['Plural-Forms'];
+        }
+
+        foreach ($translations->entries as $msgid => $entry) {
+            $locale[$msgid] = $entry->translations;
+        }
+
+        // If any of the translated strings incorrectly contains HTML line breaks, we need to return or else the admin is no longer accessible.
+        $json = wp_json_encode($locale);
+        if (preg_match('/<br[\s\/\\\\]*>/', $json)) {
+            return array();
+        }
+
+        return $locale;
+    }
+
+    public static function is_plugin_active($basename)
+    {
+        $active_plugins = apply_filters('active_plugins', get_option('active_plugins'));
+        return in_array($basename, $active_plugins);
+    }
+
+    public static function get_active_caching_plugin()
+    {
+        $caching_plugins = array(
+            array(
+                'title' => 'WP Rocket',
+                'basename' => 'wp-rocket/wp-rocket.php',
+            ),
+            array(
+                'title' => 'W3 Super Cache',
+                'basename' => 'wp-super-cache/wp-cache.php',
+            ),
+            array(
+                'title' => 'W3 Total Cache',
+                'basename' => 'w3-total-cache/w3-total-cache.php',
+            ),
+            array(
+                'title' => 'Comet Cache',
+                'basename' => 'comet-cache/comet-cache.php',
+            ),
+            array(
+                'title' => 'WP fastest Cache',
+                'basename' => 'wp-fastest-cache/wpFastestCache.php',
+            ),
+            array(
+                'title' => 'Cache Enabler',
+                'basename' => 'cache-enabler/cache-enabler.php',
+            ),
+            array(
+                'title' => 'Hyper Cache',
+                'basename' => 'hyper-cache/plugin.php',
+            ),
+            array(
+                'title' => 'SiteGround Optimizer',
+                'basename' => 'sg-cachepress/sg-cachepress.php',
+            ),
+        );
+
+        $active_caching_plugin = null;
+        foreach ($caching_plugins as $plugin) {
+            if (self::is_plugin_active($plugin['basename'])) {
+                $active_caching_plugin = $plugin;
+                break;
+            }
+        }
+        return $active_caching_plugin;
+    }
+
+    public static function is_ssl()
+    {
+        if (! empty($_SERVER['HTTP_CF_VISITOR'])) {
+            $cfo = json_decode($_SERVER['HTTP_CF_VISITOR']);
+            if (isset($cfo->scheme) && 'https' === $cfo->scheme) {
+                return true;
+            }
+        }
+
+        if (! empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && 'https' === $_SERVER['HTTP_X_FORWARDED_PROTO']) {
+            return true;
+        }
+
+        return function_exists('is_ssl') ? is_ssl() : false;
+    }
+
+    public static function is_block_editor()
+    {
+        $curr_screen = get_current_screen();
+        if (! empty($curr_screen) && method_exists($curr_screen, 'is_block_editor')) {
+            return $curr_screen->is_block_editor();
+        }
+        return null;
+    }
+
+    public static function is_http_or_https_url($url, $max_len = 0)
+    {
+        if (empty($url)) {
+            return false;
+        }
+
+        if ('http' === substr($url, 0, 4) || 'https' === substr($url, 0, 5)) {
+            if ($max_len && strlen($url) > $max_len) {
+                return false;
+            }
+            return true;
+        }
+
+        return false;
+    }
+
+    public static function json_decode($data)
+    {
+        $flag = 0;
+        if (defined('JSON_INVALID_UTF8_IGNORE')) {
+            $flag = JSON_INVALID_UTF8_IGNORE | $flag;
+        }
+        return json_decode($data, true, 512, $flag);
+    }
+
+    public static function decode_entities($string)
+    {
+        $flag = ENT_QUOTES;
+        if (defined('ENT_HTML401')) {
+            $flag = ENT_HTML401 | $flag;
+        }
+        return html_entity_decode(str_replace(array('&apos;', '&#x27;', '&#39;', '&quot;'), '\'', $string), $flag, 'UTF-8');
+    }
+
+    public static function get_post_image($size, $post_id)
+    {
+        $image_url = '';
+
+        if (has_post_thumbnail($post_id)) {
+            $raw_image = wp_get_attachment_image_src(get_post_thumbnail_id($post_id), $size);
+            if (! empty($raw_image)) {
+                $image_url = ! empty($raw_image[0]) ? $raw_image[0] : '';
+            }
+        }
+
+        return $image_url;
+    }
+
+    public static function decode($jwt)
+    {
+        if (!is_string($jwt) || empty($jwt)) {
+            return null;
+        }
+
+        $parts = explode('.', $jwt);
+        if (count($parts) !== 3) {
+            return null;
+        }
+
+        list($header, $payload, $signature) = $parts;
+
+        $payload = self::base64url_decode($payload);
+
+        if ($payload === false) {
+            return null;
+        }
+
+        $data = json_decode($payload, true);
+
+        return is_array($data) ? $data : null;
+    }
+
+    private static function base64url_decode($input)
+    {
+        $remainder = strlen($input) % 4;
+        if ($remainder) {
+            $padlen = 4 - $remainder;
+            $input .= str_repeat('=', $padlen);
+        }
+        $input = strtr($input, '-_', '+/');
+        return base64_decode($input);
+    }
+
+    public static function get_current_app_from_apps($apps)
+    {
+        $current_url = home_url();
+        $current_domain = wp_parse_url($current_url, PHP_URL_HOST);
 
         foreach ($apps as $app) {
             if (!empty($app['appUrl'])) {
-                $app_domain = parse_url($app['appUrl'], PHP_URL_HOST);
+                $app_domain = wp_parse_url($app['appUrl'], PHP_URL_HOST);
                 if ($app_domain === $current_domain) {
                     return $app;
@@ -316 +226 @@
     }
 
-    public static function render_header(){
-        Alertwise::output_view('header.php');
-    }
-
-    public static function alertwise_render_not_connected_notice(){
-        Alertwise::output_view('site-not-connected.php');
-    }
+    public static function render_header(){
+        Alertwise::output_view('header.php');
+    }
+
+    public static function alertwise_render_not_connected_notice(){
+        Alertwise::output_view('site-not-connected.php');
+    }
 }

alertwise/trunk/app/Utils/TokenManager.php

@@ -59 +59 @@
             $settings['alertwise_setting_token_type']       = $response['token_type'] ?? 'Bearer';
             $settings['alertwise_setting_expires_in']       = $response['expires_in'] ?? 3600;
-            $settings['alertwise_setting_created_at']       = date('Y-m-d H:i:s');
+            $settings['alertwise_setting_created_at']       = gmdate('Y-m-d H:i:s');
             $settings['alertwise_setting_owner_id']         = (Helpers::decode($response['access_token'])['id'] ?? '');
 

alertwise/trunk/main.php

@@ -8 +8 @@
  * Author URI: https://www.wordpress.org/alertwise
  *
- * Version: 1.0
+ * Version: 1.0.0
  * Requires at least: 4.5.0
  * Requires PHP: 5.6

alertwise/trunk/readme.txt

@@ -1 @@
-=== AlertWise: The Best Mobile & Web Push Notification Service ===
+=== AlertWise: Mobile & Web Push Notification Service ===
 Contributors: alertwise
 Tags: push notifications, web push notifications, desktop notifications, web push, marketing automation
@@ -9 +9 @@
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 
-Send smart, targeted push notifications that drive 10x more repeat traffic and skyrocket conversions. Turn visitors into loyal customers with automated, high-converting campaigns.
+[AlertWise](https://alertwise.net) is a powerful push notification plugin; that helps you engage users in real time.
 
 == Description ==
 
-===  ===
-
-[AlertWise](https://alertwise.net) is a powerful push notification plugin; that helps you engage users in real time.
-
-[AlertWise](https://alertwise.net) is a powerful push notification service that helps you grow your website traffic, boost conversions, and re-engage visitors — all without needing an app. Designed for bloggers, affiliate marketers, eCommerce sellers, and businesses of all sizes, AlertWise offers unlimited campaigns, unlimited websites, advanced segmentation, and real-time delivery on both desktop and mobile.
+AlertWise is a powerful push notification service that helps you grow your website traffic, boost conversions, and re-engage visitors — all without needing an app. Designed for bloggers, affiliate marketers, eCommerce sellers, and businesses of all sizes, AlertWise offers unlimited campaigns, unlimited websites, advanced segmentation, and real-time delivery on both desktop and mobile.
 
 With features like automated drip campaigns, offline notifications, geolocation targeting, customizable prompts, and advanced analytics, AlertWise is your complete marketing automation toolkit — right from your WordPress dashboard.
@@ -39 +35 @@
 
 #### 👥 Unlimited Audience Groups
-From free to premium, you can create **unlimited audience groups** to deliver more relevant and personalized push notifications.
-
-#### ⚡ Fastest Push Notification Delivery
-AlertWise uses **Amazon AWS cloud infrastructure** for **ultra-fast, reliable delivery** across the globe. No delays, no failures — just instant engagement.
+you can create **unlimited audience groups** to deliver more relevant and personalized push notifications.
+
+#### ⚡ High-Speed Notification Delivery
+AlertWise is built on **Amazon AWS cloud infrastructure** to ensure fast and reliable delivery of your push notifications across the globe.
 
 #### 🔔 Offline Notification Support
@@ -56 +52 @@
 - **Geolocation Targeting** – Reach users based on country, region, or city for geo-personalized offers.
 - **Action-Based Grouping** – Group users by subscription date, last sent date, or last click date to personalize your messaging lifecycle.
-- **Advanced Filters** – Use **unlimited AND/OR conditions** to create complex targeting logic that’s easy to manage.
+- **Advanced Filters** – Use **unlimited AND/OR conditions** to create complex targeting logic that’s straightforward to manage.
 
 ---
@@ -198 +194 @@
 
 = Is the AlertWise plugin free to use? =
-Yes! The plugin is free and works with both free and premium plans from AlertWise. You can use it to add unlimited websites, send unlimited campaigns, and access most features even without upgrading.
+Yes! The plugin is free to download and use. It connects your site to your AlertWise account. The alertWise service offers a generous free plan that includes unlimited websites and campaigns, with additional features available in other plans.
 
 = How do I install the plugin? =
@@ -238 +234 @@
 == Screenshots ==
 
-1. Real-time analytics dashboard with campaign and subscriber stats
-2. Create personalized campaigns using advanced segmentation
-3. Customizable popup modal for collecting subscribers
-4. Push notifications with CTA buttons for higher engagement
-5. Notification previews on desktop and mobile browsers
-6. Audience grouping by behavior, device, and location
+1. The real-time analytics dashboard showing campaign and subscriber statistics.
+2. The campaign creation screen with advanced segmentation options.
+3. An example of a customizable popup modal for collecting subscribers.
+4. A push notification with CTA buttons designed for higher engagement.
+5. Previews of how notifications appear on desktop and mobile browsers.
+6. The audience grouping interface, allowing segmentation by behavior, device, and location.
 7. Subscriber details with browser, device, and activity data
 8. 24/7 live support access from the plugin dashboard

alertwise/trunk/vendor/autoload.php

@@ -15 +15 @@
         }
     }
-    trigger_error(
-        $err,
-        E_USER_ERROR
-    );
+    throw new RuntimeException($err);
 }
 

alertwise/trunk/vendor/composer/InstalledVersions.php

@@ -28 +28 @@
 {
     /**
+     * @var string|null if set (by reflection by Composer), this should be set to the path where this class is being copied to
+     * @internal
+     */
+    private static $selfDir = null;
+
+    /**
      * @var mixed[]|null
      * @psalm-var array{root: array{name: string, pretty_version: string, version: string, reference: string|null, type: string, install_path: string, aliases: string[], dev: bool}, versions: array<string, array{pretty_version?: string, version?: string, reference?: string|null, type?: string, install_path?: string, aliases?: string[], dev_requirement: bool, replaced?: string[], provided?: string[]}>}|array{}|null
      */
     private static $installed;
+
+    /**
+     * @var bool
+     */
+    private static $installedIsLocalDir;
 
     /**
@@ -310 +321 @@
         self::$installed = $data;
         self::$installedByVendor = array();
+
+        // when using reload, we disable the duplicate protection to ensure that self::$installed data is
+        // always returned, but we cannot know whether it comes from the installed.php in __DIR__ or not,
+        // so we have to assume it does not, and that may result in duplicate data being returned when listing
+        // all installed packages for example
+        self::$installedIsLocalDir = false;
+    }
+
+    /**
+     * @return string
+     */
+    private static function getSelfDir()
+    {
+        if (self::$selfDir === null) {
+            self::$selfDir = strtr(__DIR__, '\\', '/');
+        }
+
+        return self::$selfDir;
     }
 
@@ -323 +352 @@
 
         $installed = array();
+        $copiedLocalDir = false;
 
         if (self::$canGetVendors) {
+            $selfDir = self::getSelfDir();
             foreach (ClassLoader::getRegisteredLoaders() as $vendorDir => $loader) {
+                $vendorDir = strtr($vendorDir, '\\', '/');
                 if (isset(self::$installedByVendor[$vendorDir])) {
                     $installed[] = self::$installedByVendor[$vendorDir];
@@ -331 +363 @@
                     /** @var array{root: array{name: string, pretty_version: string, version: string, reference: string|null, type: string, install_path: string, aliases: string[], dev: bool}, versions: array<string, array{pretty_version?: string, version?: string, reference?: string|null, type?: string, install_path?: string, aliases?: string[], dev_requirement: bool, replaced?: string[], provided?: string[]}>} $required */
                     $required = require $vendorDir.'/composer/installed.php';
-                    $installed[] = self::$installedByVendor[$vendorDir] = $required;
-                    if (null === self::$installed && strtr($vendorDir.'/composer', '\\', '/') === strtr(__DIR__, '\\', '/')) {
-                        self::$installed = $installed[count($installed) - 1];
+                    self::$installedByVendor[$vendorDir] = $required;
+                    $installed[] = $required;
+                    if (self::$installed === null && $vendorDir.'/composer' === $selfDir) {
+                        self::$installed = $required;
+                        self::$installedIsLocalDir = true;
                     }
+                }
+                if (self::$installedIsLocalDir && $vendorDir.'/composer' === $selfDir) {
+                    $copiedLocalDir = true;
                 }
             }
@@ -351 +388 @@
         }
 
-        if (self::$installed !== array()) {
+        if (self::$installed !== array() && !$copiedLocalDir) {
             $installed[] = self::$installed;
         }

alertwise/trunk/vendor/composer/installed.php

@@ -1 +1 @@
 <?php return array(
     'root' => array(
-        'name' => 'shail/alertwise',
-        'pretty_version' => '1.0.0+no-version-set',
-        'version' => '1.0.0.0',
-        'reference' => null,
+        'name' => 'alertwise/alertwise',
+        'pretty_version' => 'dev-develop',
+        'version' => 'dev-develop',
+        'reference' => '625138d10e8eb52eb6c7616281d8d04df9fb013e',
         'type' => 'wordpress-plugin',
         'install_path' => __DIR__ . '/../../',
@@ -11 +11 @@
     ),
     'versions' => array(
-        'shail/alertwise' => array(
-            'pretty_version' => '1.0.0+no-version-set',
-            'version' => '1.0.0.0',
-            'reference' => null,
+        'alertwise/alertwise' => array(
+            'pretty_version' => 'dev-develop',
+            'version' => 'dev-develop',
+            'reference' => '625138d10e8eb52eb6c7616281d8d04df9fb013e',
             'type' => 'wordpress-plugin',
             'install_path' => __DIR__ . '/../../',

alertwise/trunk/views/about-us.php

@@ -13 +13 @@
 <div class="alertwise-about-container">
     <img src="https://cdn.alertwise.net/alertwise/img/alertwise-logo.svg" alt="Alertwise" class="aboutwise-logo">
-    <span><?php esc_html_e( 'V.'.ALERTWISE_VERSION, 'alertwise' ); ?></span>
+    <span><?php esc_html_e( 'V.', 'alertwise' ); ?><?php echo esc_html( ALERTWISE_VERSION ); ?></span>
     <p>
         <strong>Alertwise</strong> is a push notification service that helps you take your business to the next level and keep your customers engaged. Whether you're a blogger, affiliate marketer, or digital product seller, Alertwise empowers you to grow your audience and connect with new customers. Enjoy real-time engagement, advanced segmentation, and a suite of robust features to enhance your website’s profitability.
@@ -26 +26 @@
         <table>
             <thead>
-                <tr>
-                    <th>Features</th>
-                    <th>Alertwise All Plans</th>
-                    <th>Other Providers</th>
-                </tr>
+            <tr>
+                <th>Features</th>
+                <th>Alertwise All Plans</th>
+                <th>Other Providers</th>
+            </tr>
             </thead>
             <tbody>
-                <tr><td>Number Of Sites/Apps</td><td >✔️ Unlimited</td><td >❌ Not included unless you pay more</td></tr>
-                <tr><td>Campaigns</td><td >✔️ Unlimited</td><td >❌ Limited in basic plans</td></tr>
-                <tr><td>Segmentation</td><td >✔️ Unlimited</td><td >❌ Limited in basic plans</td></tr>
-                <tr><td>Audience Group</td><td >✔️ Unlimited</td><td >❌ Excluded from free/entry plans</td></tr>
-                <tr><td>Advanced Analytics</td><td >✔️ Available</td><td >❌ Limited in basic plans</td></tr>
-                <tr><td>WordPress Plugin</td><td >✔️ Available</td><td >❌ Not in all plans</td></tr>
-                <tr><td>Customer Support</td><td >✔️ 24x7 Available</td><td >❌ Requires upgrade</td></tr>
-                <tr><td>Web SDK</td><td >✔️ Available</td><td >❌ Not in free/basic plans</td></tr>
-                <tr><td>Notification Data Exports (CSV)</td><td >✔️ Available</td><td >❌ Not in free/basic plans</td></tr>
-                <tr><td>Customizable Prompt</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
-                <tr><td>Campaign Report</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
-                <tr><td>Schedule Campaign/Notifications</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
+            <tr><td>Number Of Sites/Apps</td><td >✔️ Unlimited</td><td >❌ Not included unless you pay more</td></tr>
+            <tr><td>Campaigns</td><td >✔️ Unlimited</td><td >❌ Limited in basic plans</td></tr>
+            <tr><td>Segmentation</td><td >✔️ Unlimited</td><td >❌ Limited in basic plans</td></tr>
+            <tr><td>Audience Group</td><td >✔️ Unlimited</td><td >❌ Excluded from free/entry plans</td></tr>
+            <tr><td>Advanced Analytics</td><td >✔️ Available</td><td >❌ Limited in basic plans</td></tr>
+            <tr><td>WordPress Plugin</td><td >✔️ Available</td><td >❌ Not in all plans</td></tr>
+            <tr><td>Customer Support</td><td >✔️ 24x7 Available</td><td >❌ Requires upgrade</td></tr>
+            <tr><td>Web SDK</td><td >✔️ Available</td><td >❌ Not in free/basic plans</td></tr>
+            <tr><td>Notification Data Exports (CSV)</td><td >✔️ Available</td><td >❌ Not in free/basic plans</td></tr>
+            <tr><td>Customizable Prompt</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
+            <tr><td>Campaign Report</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
+            <tr><td>Schedule Campaign/Notifications</td><td >✔️ Available</td><td >❌ Only in premium</td></tr>
             </tbody>
         </table>

alertwise/trunk/views/dashboard-site-not-connected.php

@@ -13 +13 @@
         <img class="alertwise-landing-logo" src="https://cdn.alertwise.net/alertwise/img/alertwise-logo.svg" alt="Alertwise Logo">
         <span class="alertwise-landing-version">
-            V.<?php echo esc_html(ALERTWISE_VERSION); ?>
+            <?php esc_html_e('V.', 'alertwise'); ?><?php echo esc_html(ALERTWISE_VERSION); ?>
         </span>
     </div>
@@ -54 +54 @@
     </div>
     <div class="alertwise-landing-cta">
-        <a href="<?php echo admin_url('admin.php?page=settings.php'); ?>" class="button-main-cta">
+        <a href="<?php echo esc_url(admin_url('admin.php?page=settings.php')); ?>" class="button-main-cta">
             <?php esc_html_e('Connect Your Site Now', 'alertwise'); ?>
         </a>
@@ -66 +66 @@
     <div class="alertwise-cards-section">
         <div class="alertwise-support-section">
-        <div class="alertwise-support-title">
-            <?php esc_html_e('Support & Resources', 'alertwise'); ?>
+            <div class="alertwise-support-title">
+                <?php esc_html_e('Support & Resources', 'alertwise'); ?>
+            </div>
         </div>
-    </div>
         <div class="alertwise-cards">
             <div class="alertwise-card">
                 <span class="alertwise-card-icon">&#128218;</span>
                 <div class="alertwise-card-title"><?php esc_html_e('Documentation', 'alertwise'); ?></div>
-                    <a class="alertwise-card-btn" href="https://documentation.alertwise.net" target="_blank" rel="noopener">
-                        Alertwise Documentation
-                    </a>
+                <a class="alertwise-card-btn" href="https://documentation.alertwise.net" target="_blank" rel="noopener">
+                    Alertwise Documentation
+                </a>
                 <div class="alertwise-card-desc">
                     <?php esc_html_e('Comprehensive guides and API references for all features.', 'alertwise'); ?>
@@ -94 +94 @@
                 <span class="alertwise-card-icon">&#128172;</span>
                 <div class="alertwise-card-title"><?php esc_html_e('Community', 'alertwise'); ?></div>
-                                <a class="alertwise-card-btn" href="https://community.alertwise.net" target="_blank" rel="noopener">
+                <a class="alertwise-card-btn" href="https://community.alertwise.net" target="_blank" rel="noopener">
                     Alertwise Community
                 </a>
@@ -104 +104 @@
                 <span class="alertwise-card-icon">&#128240;</span>
                 <div class="alertwise-card-title"><?php esc_html_e('Blog', 'alertwise'); ?></div>
-                                <a class="alertwise-card-btn" href="https://blog.alertwise.net" target="_blank" rel="noopener">
+                <a class="alertwise-card-btn" href="https://blog.alertwise.net" target="_blank" rel="noopener">
                     Alertwise Blog
                 </a>
@@ -115 +115 @@
     <!-- Footer -->
     <div class="alertwise-footer">
-        &copy; <?php echo date('Y'); ?> Alertwise. 
+        &copy; <?php echo esc_html(gmdate('Y')); ?> Alertwise.
         <?php esc_html_e('All rights reserved.', 'alertwise'); ?>
         &nbsp;|&nbsp;

alertwise/trunk/views/header.php

@@ -24 +24 @@
         <a href="javascript:void(0);" id="alertwise-helpdocs-link"
            style="color: #2271b1; text-decoration: underline; font-size: 1rem; cursor:pointer;">
-           Help Docs
+            Help Docs
         </a>
     </div>
     <div>
-        <p style="font-size: 1rem;">V.<?php esc_html_e(ALERTWISE_VERSION); ?></p>
+        <p style="font-size: 1rem;"><?php esc_html_e('V.', 'alertwise'); ?><?php echo esc_html(ALERTWISE_VERSION); ?></p>
     </div>
 </div>

alertwise/trunk/views/settings.php

@@ -10 +10 @@
 // Exit if accessed directly.
 if ( ! defined( 'ABSPATH' ) ) {
-    exit;
+    exit;
 }
 
@@ -17 +17 @@
 // Get existing settings
 $settings = Options::get_site_settings();
-$stored_email = isset($settings['alertwise_setting_username']) ? esc_attr($settings['alertwise_setting_username']) : '';
-$stored_api_key = isset($settings['alertwise_setting_password']) ? esc_attr($settings['alertwise_setting_password']) : '';
+$stored_email = isset($settings['alertwise_setting_username']) ? $settings['alertwise_setting_username'] : '';
+$stored_api_key = isset($settings['alertwise_setting_password']) ? $settings['alertwise_setting_password'] : '';
 
 $post_page_settings = Options::get_post_page_settings();
@@ -26 +26 @@
 
 <div id="pe-main-wrapper" style="max-width: 600px; margin-top: 30px;">
-  <h1>AlertWise Settings</h1>
+    <h1>AlertWise Settings</h1>
 
-  <form id="alertwise-settings-form" method="post" action="<?php echo esc_url(admin_url('admin-post.php')); ?>">
-    <input type="hidden" name="action" value="alertwise_save_settings">
-    <?php wp_nonce_field('alertwise_save_settings_nonce', 'alertwise_nonce'); ?>
+    <form id="alertwise-settings-form" method="post" action="<?php echo esc_url(admin_url('admin-post.php')); ?>">
+        <input type="hidden" name="action" value="alertwise_save_settings">
+        <?php wp_nonce_field('alertwise_save_settings_nonce', 'alertwise_nonce'); ?>
 
-    <div style="margin-bottom: 20px;">
-      <label for="pe-username" style="display: block; font-weight: bold; margin-bottom: 5px;">Username / Email</label>
-      <input type="text" id="pe-username" name="pe_username" placeholder="Enter your username or email"
-        value="<?php echo $stored_email; ?>"
-        style="width: 100%; padding: 10px; border: 1px solid #ccc; border-radius: 4px;" />
-    </div>
+        <div style="margin-bottom: 20px;">
+            <label for="pe-username" style="display: block; font-weight: bold; margin-bottom: 5px;">Username / Email</label>
+            <input type="text" id="pe-username" name="pe_username" placeholder="Enter your username or email"
+                   value="<?php echo esc_attr($stored_email); ?>"
+                   style="width: 100%; padding: 10px; border: 1px solid #ccc; border-radius: 4px;" />
+        </div>
 
-    <div style="margin-bottom: 20px;">
-      <label for="pe-api-key" style="display: block; font-weight: bold; margin-bottom: 5px;">API Key</label>
-      <input type="text" id="pe-api-key" name="pe_api_key" placeholder="Enter your API key"
-        value="<?php echo $stored_api_key; ?>"
-        style="width: 100%; padding: 10px; border: 1px solid #ccc; border-radius: 4px;" />
-    </div>
+        <div style="margin-bottom: 20px;">
+            <label for="pe-api-key" style="display: block; font-weight: bold; margin-bottom: 5px;">API Key</label>
+            <input type="text" id="pe-api-key" name="pe_api_key" placeholder="Enter your API key"
+                   value="<?php echo esc_attr($stored_api_key); ?>"
+                   style="width: 100%; padding: 10px; border: 1px solid #ccc; border-radius: 4px;" />
+        </div>
 
-    <div style="margin-bottom: 20px;">
-      <label style="font-weight: bold; display: block; margin-bottom: 5px;">Send Auto Notifications on:</label>
-      <input type="checkbox" id="post-notifications" name="post_notifications" value="1" <?php checked($post_notifications); ?> />
-      <label for="post-notifications" style="margin-right: 15px;">Enable notification on post publish/update</label>
-      <input type="checkbox" id="page-notifications" name="page_notifications" value="1" <?php checked($page_notifications); ?> />
-      <label for="page-notifications">Enable notification on page publish/update</label>
-      <p><em>You can change this setting any time.</em></p>
+        <div style="margin-bottom: 20px;">
+            <label style="font-weight: bold; display: block; margin-bottom: 5px;">Send Auto Notifications on:</label>
+            <input type="checkbox" id="post-notifications" name="post_notifications" value="1" <?php checked($post_notifications); ?> />
+            <label for="post-notifications" style="margin-right: 15px;">Enable notification on post publish/update</label>
+            <input type="checkbox" id="page-notifications" name="page_notifications" value="1" <?php checked($page_notifications); ?> />
+            <label for="page-notifications">Enable notification on page publish/update</label>
+            <p><em>You can change this setting any time.</em></p>
 
-  </div>
+        </div>
 
-    <button type="submit"
-      style="background-color: #0073aa; color: #fff; padding: 10px 20px; border: none; border-radius: 4px; cursor: pointer;">
-      Verify & Save Settings
-    </button>
-  </form>
+        <button type="submit"
+                style="background-color: #0073aa; color: #fff; padding: 10px 20px; border: none; border-radius: 4px; cursor: pointer;">
+            Verify & Save Settings
+        </button>
+    </form>
 </div>