request = $_REQUEST; if($this->isLoggedIn()){ $this->user = wp_get_current_user(); } } public static function boot(){ $class = self::getClassName(); $action = new $class; $action->run(); if($action->has('href')){ wp_redirect($action->get('href')); }else{ if(isset($_SERVER['HTTP_REFERER'])) { header('Location: '. $_SERVER['HTTP_REFERER']); } else { //it was not sent, perform your default actions here } } die; } public static function listen($public = TRUE){ $actionName = self::getActionName(); $className = self::getClassName(); add_action("wp_ajax_{$actionName}", array($className, 'boot')); if($public){ add_action("wp_ajax_nopriv_{$actionName}", array($className, 'boot')); } } // ----------------------------------------------------- // UTILITY METHODS // ----------------------------------------------------- public static function getClassName(){ return get_called_class(); } public static function formURL(){ return admin_url('/admin-ajax.php'); } public static function getActionName(){ $class = self::getClassName(); $reflection = new ReflectionClass($class); $action = $reflection->newInstanceWithoutConstructor(); if(!isset($action->action)){ throw new Exception(__("Public property \$action not provied", 'shapepress-dsgvo')); } return $action->action; } public function requireAdmin(){ if(!current_user_can('administrator')){ echo '0'; die; } } public function checkCSRF(){ if(!$this->has('CSRF')){ echo '1. CSRF ERROR'; die; } if(!$this->user instanceof WP_User){ echo '2. CSRF ERROR'; die; } if($this->get('CSRF', '') !== get_user_meta($this->user->ID, 'sp_dsgvo_CSRF_token', TRUE)){ echo '3. CSRF ERROR'; die; } update_user_meta($this->user->ID, 'sp_dsgvo_CSRF_token', wp_generate_password(20, FALSE, FALSE)); return TRUE; } public function error($message){ echo $message; die(); } // ----------------------------------------------------- // JSONResponse // ----------------------------------------------------- public function JSONResponse($response){ wp_send_json($response); } // ----------------------------------------------------- // Helpers // ----------------------------------------------------- public static function ajaxURL(){ ?> (new static())->action, ), $params)); return admin_url('/admin-ajax.php') .'?'. $params; } public function isLoggedIn(){ return is_user_logged_in(); } public function has($key){ if(isset($this->request[$key])){ return TRUE; } return FALSE; } /** * Get parameter from $_REQUEST array * @param string $key key * @param string $default default string * @return mixed */ public function get($key, $default = NULL, $stripslashes = TRUE){ if($this->has($key)){ if(is_array($this->request[$key])){ return $this->request[$key]; } if($stripslashes){ return stripslashes($this->request[$key]); } return $this->request[$key]; } return $default; } public function returnBack(){ if(isset($_SERVER['HTTP_REFERER'])){ header('Location: '. $_SERVER['HTTP_REFERER']); die(); } return FALSE; } public function returnRedirect($url, $params = array()){ $url .= '?'. http_build_query($params); header('Location: '. $url); die(); } /** * @param string|array $type The type of request you want to check. If an array * this method will return true if the request matches any type. * @return [type] [description] */ public function requestType($requestType = NULL){ if(!is_null($requestType)){ if(is_array($requestType)){ return in_array($_SERVER['REQUEST_METHOD'], array_map('strtoupper', $requestType)); } return ($_SERVER['REQUEST_METHOD'] === strtoupper($requestType)); } return $_SERVER['REQUEST_METHOD']; } }