160 lines
4.2 KiB
PHP
160 lines
4.2 KiB
PHP
<?php
|
|
class PostmanLogFields {
|
|
|
|
private $fields = array(
|
|
'success' => 'sanitize_text_field',
|
|
'solution' => [ 'PostmanLogFields', 'sanitize_message' ],
|
|
'from_header' => [ 'PostmanLogFields', 'email_header_sanitize' ],
|
|
'to_header' => [ 'PostmanLogFields', 'email_header_sanitize' ],
|
|
'cc_header' => [ 'PostmanLogFields', 'email_header_sanitize' ],
|
|
'bcc_header' => [ 'PostmanLogFields', 'email_header_sanitize' ],
|
|
'reply_to_header' => [ 'PostmanLogFields', 'email_header_sanitize' ],
|
|
'transport_uri' => 'sanitize_text_field',
|
|
'original_to' => 'sanitize_text_field',
|
|
'original_subject' => 'sanitize_text_field',
|
|
'original_message' => '', // only sent to viewed
|
|
'original_headers' => '', // only sent to viewed
|
|
'session_transcript' => '', // escaped when viewed
|
|
);
|
|
|
|
/**
|
|
* Exclude from Getting and Setting in JSON fromat
|
|
*
|
|
* @since 2.1
|
|
*/
|
|
private $exclude_json = array(
|
|
'original_headers'
|
|
);
|
|
|
|
private static $instance = null;
|
|
|
|
public static function get_instance() {
|
|
if ( ! self::$instance ) {
|
|
self::$instance = new static();
|
|
}
|
|
|
|
return self::$instance;
|
|
}
|
|
|
|
private function __construct()
|
|
{
|
|
|
|
}
|
|
|
|
public function get( $post_id ) {
|
|
$data = [];
|
|
foreach ( $this->fields as $key => $sanitize_callback ) {
|
|
|
|
$meta = get_post_meta( $post_id, $key, true );
|
|
|
|
if( in_array( $key, $this->exclude_json ) )
|
|
$data[$key][] = $meta;
|
|
else
|
|
$data[$key][] = $this->maybe_json( $meta );
|
|
|
|
}
|
|
|
|
return $data;
|
|
}
|
|
|
|
public function get_fields() {
|
|
return $this->fields;
|
|
}
|
|
|
|
/**
|
|
* Update log entry
|
|
*
|
|
* @since 2.1 removed `$this->encode()` was breaking data
|
|
*/
|
|
public function update( $post_id, $key, $value ) {
|
|
|
|
if( in_array( $key, $this->exclude_json ) )
|
|
$sanitized = $value;
|
|
else
|
|
$sanitized = $this->sanitize( $key, $value );
|
|
|
|
update_post_meta( $post_id, $key, $sanitized );
|
|
|
|
}
|
|
|
|
/**
|
|
* If json return decoded json
|
|
*
|
|
* @since 2.1 removed json_decode and maybe_serialize
|
|
*/
|
|
private function maybe_json( $json ) {
|
|
|
|
if ( is_array( $json ) ) {
|
|
return implode( ',', $json );
|
|
}
|
|
|
|
return $json;
|
|
}
|
|
|
|
private function sanitize( $key, $value ) {
|
|
|
|
$callback = is_array( $value ) ? 'array_map' : 'call_user_func';
|
|
|
|
if ( ! empty( $this->fields[$key] ) ) {
|
|
return $callback( $this->fields[$key], $value );
|
|
}
|
|
|
|
return $value;
|
|
}
|
|
|
|
private function sanitize_message( $message ) {
|
|
$allowed_tags = wp_kses_allowed_html( 'post' );
|
|
$allowed_tags['style'] = array();
|
|
|
|
return wp_kses( $message, $allowed_tags );
|
|
}
|
|
|
|
private function sanitize_html( $value ) {
|
|
$allowed_html = array(
|
|
'a' => array(
|
|
'href' => array(),
|
|
),
|
|
'br' => array(),
|
|
);
|
|
|
|
return wp_kses( $value, $allowed_html );
|
|
}
|
|
|
|
public function get_string_between($string, $start, $end){
|
|
$string = ' ' . $string;
|
|
$ini = strpos($string, $start);
|
|
|
|
if ($ini == 0) {
|
|
return '';
|
|
}
|
|
|
|
$ini += strlen($start);
|
|
$len = strpos($string, $end, $ini) - $ini;
|
|
|
|
return substr($string, $ini, $len);
|
|
}
|
|
|
|
public function email_header_sanitize($value) {
|
|
|
|
$parts = explode( ',', $value );
|
|
|
|
$sanitized = [];
|
|
foreach ( $parts as $part ) {
|
|
|
|
if ( strpos( $part, '<' ) !== false ) {
|
|
$email = $this->get_string_between( $part, '<', '>' );
|
|
$clean_email = $this->sanitize_email($email);
|
|
preg_match('/(.*)</', $part, $output_array);
|
|
$name = sanitize_text_field( trim( $output_array[1] ) );
|
|
|
|
$sanitized[] = "{$name} <{$clean_email}>";
|
|
}
|
|
}
|
|
|
|
return ! empty( $sanitized ) ? implode( ',', $sanitized ) : implode( ',', array_map( [ $this, 'sanitize_email'], $parts ) );
|
|
}
|
|
|
|
public function sanitize_email( $email ) {
|
|
return filter_var( $email, FILTER_SANITIZE_EMAIL );
|
|
}
|
|
} |