Project-Pro/krolewskie-miody.pl
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
krolewskie-miody.pl/wp-content/plugins/woocommerce-services/classes/class-wc-connect-functions.php
Jacek Pyziak a95acc355b first commit
2026-04-28 15:13:50 +02:00

401 lines
12 KiB
PHP
Raw Permalink Blame History

<?php
if ( ! class_exists( 'WC_Connect_Functions' ) ) {
class WC_Connect_Functions {
/**
* Checks if the potentially expensive Shipping/Tax API requests should be sent
* based on the context in which they are initialized.
*
* @return bool true if the request can be sent, false otherwise
*/
public static function should_send_cart_api_request() {
// Allow if this is an API call to store/cart endpoint. Provides compatibility with WooCommerce Blocks.
return self::is_store_api_call() || ! (
// Skip for carts loaded from session in the dashboard.
( is_admin() && did_action( 'woocommerce_cart_loaded_from_session' ) ) ||
// Skip during Jetpack API requests.
( ! empty( $_SERVER['REQUEST_URI'] ) && false !== strpos( $_SERVER['REQUEST_URI'], 'jetpack/v4/' ) ) || // phpcs:ignore WordPress.Security.ValidatedSanitizedInput
// Skip during REST API or XMLRPC requests.
( defined( 'REST_REQUEST' ) || defined( 'REST_API_REQUEST' ) || defined( 'XMLRPC_REQUEST' ) ) ||
// Skip during Jetpack REST API proxy requests.
( isset( $_GET['rest_route'] ) && isset( $_GET['_for'] ) && ( 'jetpack' === $_GET['_for'] ) )
);
}
/**
* Get the WC Helper authorization information to use with WC Connect Server requests( e.g. site ID, access token).
*
* @return array|WP_Error
*/
public static function get_wc_helper_auth_info() {
if ( class_exists( 'WC_Helper_Options' ) && is_callable( 'WC_Helper_Options::get' ) ) {
$helper_auth_data = WC_Helper_Options::get( 'auth' );
}
// It's possible for WC_Helper_Options::get() to return false, throw error if this is the case.
if ( ! $helper_auth_data ) {
return new WP_Error(
'missing_wccom_auth',
__( 'WooCommerce Helper auth is missing', 'woocommerce-services' )
);
}
return $helper_auth_data;
}
/**
* Check if we are currently in Rest API request for the wc/store/cart or wc/store/checkout API call.
*
* @return bool
*/
public static function is_store_api_call() {
if ( ! WC()->is_rest_api_request() && empty( $GLOBALS['wp']->query_vars['rest_route'] ) ) {
return false;
}
$rest_route = $GLOBALS['wp']->query_vars['rest_route'];
// Use regex to check any route that has "wc/store" with any of these text : "cart", "checkout", or "batch"
// Example : wc/store/v3/batch
preg_match( '/wc\/store\/v[0-9]{1,}\/(batch|cart|checkout)/', $rest_route, $route_matches, PREG_OFFSET_CAPTURE );
return ( ! empty( $route_matches ) );
}
/**
* Check if current page is a cart page or has woocommerce cart block.
*
* @return bool
*/
public static function is_cart() {
if ( is_cart() || self::has_cart_block() ) {
return true;
}
return false;
}
/**
* Check if current page is a checkout page or has woocommerce checkout block.
*
* @return bool
*/
public static function is_checkout() {
if ( is_checkout() || self::has_checkout_block() ) {
return true;
}
return false;
}
/**
* Check if current page has woocommerce cart block.
*
* @return bool
*/
public static function has_cart_block() {
// To support WP < 5.0.0, we need to check if `has_block` exists first as has_block only being introduced on WP 5.0.0.
if ( function_exists( 'has_block' ) ) {
return has_block( 'woocommerce/cart' );
}
return false;
}
/**
* Check if current page has woocommerce checkout block.
*
* @return bool
*/
public static function has_checkout_block() {
// To support WP < 5.0.0, we need to check if `has_block` exists first as has_block only being introduced on WP 5.0.0.
if ( function_exists( 'has_block' ) ) {
return has_block( 'woocommerce/checkout' );
}
return false;
}
/**
* Check if current page has woocommerce cart or checkout block.
*
* @return bool
*/
public static function has_cart_or_checkout_block() {
if ( self::has_checkout_block() || self::has_cart_block() ) {
return true;
}
return false;
}
/**
* Checks whether the current user has permissions to manage shipping labels.
*
* @return boolean
*/
public static function user_can_manage_labels() {
/**
* @since 1.25.14
*/
return apply_filters( 'wcship_user_can_manage_labels', current_user_can( 'manage_woocommerce' ) || current_user_can( 'wcship_manage_labels' ) );
}
/**
* Exports existing tax rates to a CSV and clears the table.
*
* Ported from TaxJar's plugin.
* See: https://github.com/taxjar/taxjar-woocommerce-plugin/blob/42cd4cd0/taxjar-woocommerce.php#L75
*
* @return boolean
*/
public static function backup_existing_tax_rates() {
global $wpdb;
// Export Tax Rates
$rates = $wpdb->get_results(
$wpdb->prepare(
"SELECT * FROM {$wpdb->prefix}woocommerce_tax_rates
ORDER BY tax_rate_order
LIMIT %d, %d
",
0,
10000
)
);
if ( empty( $rates ) ) {
return false;
}
ob_start();
$header =
__( 'Country Code', 'woocommerce' ) . ',' .
__( 'State Code', 'woocommerce' ) . ',' .
__( 'ZIP/Postcode', 'woocommerce' ) . ',' .
__( 'City', 'woocommerce' ) . ',' .
__( 'Rate %', 'woocommerce' ) . ',' .
__( 'Tax Name', 'woocommerce' ) . ',' .
__( 'Priority', 'woocommerce' ) . ',' .
__( 'Compound', 'woocommerce' ) . ',' .
__( 'Shipping', 'woocommerce' ) . ',' .
__( 'Tax Class', 'woocommerce' ) . "\n";
echo $header; // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped
foreach ( $rates as $rate ) {
if ( $rate->tax_rate_country ) {
echo esc_attr( $rate->tax_rate_country );
} else {
echo '*';
}
echo ',';
if ( $rate->tax_rate_state ) {
echo esc_attr( $rate->tax_rate_state );
} else {
echo '*';
}
echo ',';
$locations = $wpdb->get_col( $wpdb->prepare( "SELECT location_code FROM {$wpdb->prefix}woocommerce_tax_rate_locations WHERE location_type='postcode' AND tax_rate_id = %d ORDER BY location_code", $rate->tax_rate_id ) );
if ( $locations ) {
echo esc_attr( implode( '; ', $locations ) );
} else {
echo '*';
}
echo ',';
$locations = $wpdb->get_col( $wpdb->prepare( "SELECT location_code FROM {$wpdb->prefix}woocommerce_tax_rate_locations WHERE location_type='city' AND tax_rate_id = %d ORDER BY location_code", $rate->tax_rate_id ) );
if ( $locations ) {
echo esc_attr( implode( '; ', $locations ) );
} else {
echo '*';
}
echo ',';
if ( $rate->tax_rate ) {
echo esc_attr( $rate->tax_rate );
} else {
echo '0';
}
echo ',';
if ( $rate->tax_rate_name ) {
echo esc_attr( $rate->tax_rate_name );
} else {
echo '*';
}
echo ',';
if ( $rate->tax_rate_priority ) {
echo esc_attr( $rate->tax_rate_priority );
} else {
echo '1';
}
echo ',';
if ( $rate->tax_rate_compound ) {
echo esc_attr( $rate->tax_rate_compound );
} else {
echo '0';
}
echo ',';
if ( $rate->tax_rate_shipping ) {
echo esc_attr( $rate->tax_rate_shipping );
} else {
echo '0';
}
echo ',';
echo "\n";
} // End foreach().
$csv = ob_get_clean();
$upload_dir = wp_upload_dir();
$backup_dir = $upload_dir['basedir'] . '/woocommerce_uploads/taxes';
// Create the protected backup directory if it doesn't exist.
if ( ! file_exists( $backup_dir ) ) {
if ( ! wp_mkdir_p( $backup_dir ) ) {
// Directory could not be created; fall back to the uploads root.
$backup_dir = $upload_dir['basedir'];
} else {
self::protect_backup_directory( $backup_dir );
}
} elseif ( ! file_exists( $backup_dir . '/.htaccess' ) ) {
// Re-create protection files if they were removed.
self::protect_backup_directory( $backup_dir );
}
// Build filename with wp_hash() suffix to prevent URL guessing (same pattern as WC log files).
$base_name = 'taxjar-wc_tax_rates-' . gmdate( 'Y-m-d' ) . '-' . time();
$hash_suffix = wp_hash( $base_name );
$backed_up = file_put_contents( $backup_dir . '/' . $base_name . '-' . $hash_suffix . '.csv', $csv ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_operations_file_put_contents
return (bool) $backed_up;
}
/**
* Creates protection files in the backup directory to prevent direct HTTP access.
*
* Follows the same pattern used by WooCommerce's ReportCSVExporter::maybe_create_directory().
*
* @param string $dir The directory to protect.
*/
private static function protect_backup_directory( $dir ) {
$files = array(
array(
'base' => $dir,
'file' => '.htaccess',
'content' => 'DirectoryIndex index.php index.html' . PHP_EOL . 'deny from all',
),
array(
'base' => $dir,
'file' => 'index.html',
'content' => '',
),
array(
'base' => $dir,
'file' => 'index.php',
'content' => '<?php' . PHP_EOL . '// Silence is golden.',
),
);
foreach ( $files as $file ) {
if ( ! file_exists( trailingslashit( $file['base'] ) . $file['file'] ) ) {
$file_handle = @fopen( trailingslashit( $file['base'] ) . $file['file'], 'wb' ); // phpcs:ignore WordPress.PHP.NoSilencedErrors.Discouraged, WordPress.WP.AlternativeFunctions.file_system_read_fopen
if ( $file_handle ) {
fwrite( $file_handle, $file['content'] ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_read_fwrite
fclose( $file_handle ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_read_fclose
}
}
}
}
/**
* Search the uploads directory and return all backed up
* tax rate files.
*
* @return array|false
*/
public static function get_backed_up_tax_rate_files() {
$upload_dir = wp_upload_dir();
$backup_dir = $upload_dir['basedir'] . '/woocommerce_uploads/taxes';
// Attempt to migrate legacy files from the public uploads root into the protected directory.
if ( ! get_option( 'wcs_tax_backup_files_migrated' ) ) {
$old_files = glob( $upload_dir['basedir'] . '/taxjar-wc_tax_rates-*.csv' );
if ( ! empty( $old_files ) ) {
$dir_ready = file_exists( $backup_dir );
if ( ! $dir_ready ) {
$dir_ready = wp_mkdir_p( $backup_dir );
if ( $dir_ready ) {
self::protect_backup_directory( $backup_dir );
}
}
if ( $dir_ready ) {
foreach ( $old_files as $old_file ) {
$old_basename = pathinfo( $old_file, PATHINFO_FILENAME );
// Add wp_hash() suffix if the file doesn't already have one (32-char hex at the end).
if ( ! preg_match( '/-[0-9a-f]{32}$/', $old_basename ) ) {
$hash_suffix = wp_hash( $old_basename );
$new_filename = $old_basename . '-' . $hash_suffix . '.csv';
} else {
$new_filename = basename( $old_file );
}
$dest = $backup_dir . '/' . $new_filename;
if ( ! file_exists( $dest ) ) {
rename( $old_file, $dest ); // phpcs:ignore WordPress.WP.AlternativeFunctions.rename_rename
} else {
wp_delete_file( $old_file );
}
}
}
// If $dir_ready is false, legacy files remain in place and are picked up below.
}
// Mark migration complete only when no old files remain, so it retries if rename() failed.
// Check for false explicitly: glob() returns false on filesystem error (not just an empty
// array), and empty(false) would be true, prematurely marking migration as complete and
// leaving old publicly-accessible files in the uploads root permanently.
$remaining_old_files = glob( $upload_dir['basedir'] . '/taxjar-wc_tax_rates-*.csv' );
if ( false !== $remaining_old_files && empty( $remaining_old_files ) ) {
update_option( 'wcs_tax_backup_files_migrated', true, false );
}
}
// Collect files from the protected directory and, if migration was not possible, the uploads root.
$found_files = array_merge(
glob( $backup_dir . '/taxjar-wc_tax_rates-*.csv' ) ?: array(),
glob( $upload_dir['basedir'] . '/taxjar-wc_tax_rates-*.csv' ) ?: array()
);
if ( empty( $found_files ) ) {
return false;
}
$files = array();
foreach ( $found_files as $file ) {
$files[] = basename( $file );
}
return $files;
}
}
}
Reference in New Issue View Git Blame Copy Permalink