p_is_local_html_output( wp_remote_retrieve_body( $response ) ) ) { $support_errors->add( 'bad_response_source', __( 'It looks like the response did not come from this site.' ) ); } } return $support_errors->errors; } /** * Checks whether a given HTML string is likely an output from this WordPress site. * * This function attempts to check for various common WordPress patterns whether they are included in the HTML string. * Since any of these actions may be disabled through third-party code, this function may also return null to indicate * that it was not possible to determine ownership. * * @since 5.7.0 * @access private * * @param string $html Full HTML output string, e.g. from a HTTP response. * @return bool|null True/false for whether HTML was generated by this site, null if unable to determine. */ function wp_is_local_html_output( $html ) { // 1. Check if HTML includes the site's Really Simple Discovery link. if ( has_action( 'wp_head', 'rsd_link' ) ) { $pattern = preg_replace( '#^https?:(?=//)#', '', esc_url( site_url( 'xmlrpc.php?rsd', 'rpc' ) ) ); // See rsd_link(). return str_contains( $html, $pattern ); } // 2. Check if HTML includes the site's REST API link. if ( has_action( 'wp_head', 'rest_output_link_wp_head' ) ) { // Try both HTTPS and HTTP since the URL depends on context. $pattern = preg_replace( '#^https?:(?=//)#', '', esc_url( get_rest_url() ) ); // See rest_output_link_wp_head(). return str_contains( $html, $pattern ); } // Otherwise the result cannot be determined. return null; } gistration ) { $value = $this->settings_proxy->is_enabled( new Everybody_Else( $this->repository ), $registration ); if ( $value ) { $this->settings_proxy->set_enabled( $user_group, $registration ); } } } /** * Fires when the "1" user ID has been changed. * * @param int $new_id The new user ID. * @param \WP_User $old_user The old user object. */ public function on_change_admin_user_id( $new_id, $old_user ) { if ( ! $new_user = get_userdata( $new_id ) ) { return; } foreach ( $this->repository->all() as $group ) { foreach ( $group->get_users() as $user ) { if ( $user->ID === 1 ) { $group->add_user( $new_user ); $group->remove_user( $old_user ); $this->repository->persist( $group ); } } } } /** * Registers the "Add User Groups" action. * * @param array $schema * * @return array */ public function add_user_actions( $schema ) { $schema['properties']['actions']['properties']['add-user-groups'] = [ 'type' => 'array', 'items' => [ 'type' => 'string', 'format' => 'uuid', ], ]; return $schema; } /** * Applies the "Add User Groups" action to the selected user. * * @param \WP_User $user * @param \WP_User $requested_by * @param array $uuids * * @return void */ public function apply_add_user_groups_action( \WP_User $user, \WP_User $requested_by, array $uuids ) { foreach ( $uuids as $uuid ) { try { $user_group = $this->repository->get( $uuid ); if ( ! $user_group->matches( Match_Target::for_user( $user ) ) ) { $user_group->add_user( $user ); $this->repository->persist( $user_group ); } } catch ( \Throwable $e ) { // There isn't any way for the user to action this. For now we'll swallow it. } } } public function add_site_health_info( $info ) { $settings = $this->settings_registry->get_settings(); $user_groups = array_map( function ( User_Group $group ) use ( $settings ) { $enabled = array_filter( $settings, function ( Settings_Registration $setting ) use ( $group ) { $groups = \ITSEC_Modules::get_setting( $setting->get_module(), $setting->get_setting() ); return is_array( $groups ) && in_array( $group->get_id(), $groups, true ); } ); return [ 'roles' => $group->get_roles(), 'canonical' => $group->get_canonical_roles(), 'users' => count( $group->get_users() ), 'settings' => array_map( function ( Settings_Registration $setting ) { return $setting->get_module() . '.' . $setting->get_setting(); }, array_values( $enabled ) ), ]; }, $this->repository->all() ); $info['solid-security']['fields']['user_groups'] = [ 'label' => __( 'User Groups', 'better-wp-security' ), 'value' => count( $user_groups ), 'debug' => new Stringable_Json( array_values( $user_groups ) ), ]; return $info; } public function get_export_slug(): string { return 'user-groups'; } public function get_export_title(): string { return __( 'User Groups', 'better-wp-security' ); } public function get_export_description(): string { return __( 'List of created User Groups', 'better-wp-security' ); } public function get_export_options_schema(): array { return []; } public function get_export_schema(): array { return [ 'type' => 'array', 'items' => [ 'type' => 'object', 'properties' => [ 'id' => [ 'type' => 'string', ], 'label' => [ 'type' => 'string', ], 'users' => [ 'type' => 'array', 'items' => [ '$ref' => '#/definitions/user', ], ], 'roles' => [ 'type' => 'array', 'items' => [ '$ref' => '#/definitions/role', ], ], 'canonical' => [ 'type' => 'array', 'items' => [ 'type' => 'string', ], ], 'min_role' => [ 'type' => 'string', ], ], ], ]; } public function get_transformations(): array { return [ new class implements Transformation { public function transform( Export $export, Import_Context $context ): Export { $data = $export->get_data( 'user-groups' ); foreach ( $data as &$user_group ) { $user_group['users'] = $context->map_user_list( $user_group['users'] ); $user_group['roles'] = $context->map_role_list( $user_group['roles'] ); } return $export->with_data( 'user-groups', $data ); } public function get_user_paths(): array { return [ '*.users' ]; } public function get_role_paths(): array { return [ '*.roles' ]; } } ]; } public function export( $options ): Result { return Result::success( array_map( static function ( User_Group $group ) { return [ 'id' => $group->get_id(), 'label' => $group->get_label(), 'users' => array_map( [ Export::class, 'format_user' ], $group->get_users() ), 'roles' => array_map( [ Export::class, 'format_role' ], $group->get_roles() ), 'canonical' => $group->get_canonical_roles(), 'min_role' => $group->get_min_role(), ]; }, $this->repository->all() ) ); } public function import( Export $from, Import_Context $context ): Result { array_map( [ $this->repository, 'delete' ], $this->repository->all() ); $result = Result::success(); foreach ( $from->get_data( $this->get_export_slug() ) as $config ) { $user_group = new User_Group( $config['id'] ); $user_group->set_label( $config['label'] ); $user_group->set_canonical_roles( $config['canonical'] ); $user_group->set_min_role( $config['min_role'] ); foreach ( $config['roles'] as $role ) { $user_group->add_role( $role['slug'] ); } foreach ( $config['users'] as $user ) { if ( $user = get_userdata( $user['id'] ) ) { $user_group->add_user( $user ); } } try { $this->repository->persist( $user_group ); } catch ( \Exception $e ) { $result->add_warning_message( sprintf( __( 'Could not import \'%1$s\' User Group: %2$s', 'better-wp-security' ), $config['label'], $e->getMessage() ) ); } } return $result; } }