woocommerce/includes/admin/class-wc-admin-api-keys.php

<?php
/**
 * WooCommerce Admin API Keys Class
 *
 * @author   WooThemes
 * @category Admin
 * @package  WooCommerce/Admin
 * @version  2.4.0
 */

if ( ! defined( 'ABSPATH' ) ) {
	exit;
}

/**
 * WC_Admin_API_Keys.
 */
class WC_Admin_API_Keys {

	/**
	 * Initialize the API Keys admin actions.
	 */
	public function __construct() {
		add_action( 'admin_init', array( $this, 'actions' ) );
	}

	/**
	 * Check if is API Keys settings page.
	 * @return bool
	 */
	private function is_api_keys_settings_page() {
		return isset( $_GET['page'] )
			&& 'wc-settings' === $_GET['page']
			&& isset( $_GET['tab'] )
			&& 'api' === $_GET['tab']
			&& isset( $_GET['section'] )
			&& 'keys' === $_GET['section'];
	}

	/**
	 * Page output.
	 */
	public static function page_output() {
		// Hide the save button
		$GLOBALS['hide_save_button'] = true;

		if ( isset( $_GET['create-key'] ) || isset( $_GET['edit-key'] ) ) {
			$key_id   = isset( $_GET['edit-key'] ) ? absint( $_GET['edit-key'] ) : 0;
			$key_data = self::get_key_data( $key_id );

			include( 'settings/views/html-keys-edit.php' );
		} else {
			self::table_list_output();
		}
	}

	/**
	 * Table list output.
	 */
	private static function table_list_output() {

		global $wpdb;

		echo '<h2>' . __( 'Keys/Apps', 'woocommerce' ) . ' <a href="' . esc_url( admin_url( 'admin.php?page=wc-settings&tab=api&section=keys&create-key=1' ) ) . '" class="add-new-h2">' . __( 'Add key', 'woocommerce' ) . '</a></h2>';

		// Get the API keys count
		$count = $wpdb->get_var( "SELECT COUNT(key_id) FROM {$wpdb->prefix}woocommerce_api_keys WHERE 1 = 1;" );

		if ( absint( $count ) && $count > 0 ) {
			$keys_table_list = new WC_Admin_API_Keys_Table_List();
			$keys_table_list->prepare_items();

			echo '<input type="hidden" name="page" value="wc-settings" />';
			echo '<input type="hidden" name="tab" value="api" />';
			echo '<input type="hidden" name="section" value="keys" />';

			$keys_table_list->views();
			$keys_table_list->search_box( __( 'Search key', 'woocommerce' ), 'key' );
			$keys_table_list->display();
		} else {
			echo '<div class="woocommerce-BlankState woocommerce-BlankState--api">';
			?>
			<h2 class="woocommerce-BlankState-message"><?php _e( 'The WooCommerce REST API allows external apps to view and manage store data. Access is granted only to those with valid API keys.', 'woocommerce' ); ?></h2>
			<a class="woocommerce-BlankState-cta button-primary button" href="<?php echo esc_url( admin_url( 'admin.php?page=wc-settings&tab=api&section=keys&create-key=1' ) ); ?>"><?php _e( 'Create an API key', 'woocommerce' ); ?></a>

			<?php echo '<style type="text/css">#posts-filter .wp-list-table, #posts-filter .tablenav.top, .tablenav.bottom .actions  { display: none; } </style></div>';
		}
	}

	/**
	 * Get key data.
	 *
	 * @param  int $key_id
	 * @return array
	 */
	private static function get_key_data( $key_id ) {
		global $wpdb;

		$empty = array(
			'key_id'        => 0,
			'user_id'       => '',
			'description'   => '',
			'permissions'   => '',
			'truncated_key' => '',
			'last_access'   => '',
		);

		if ( 0 == $key_id ) {
			return $empty;
		}

		$key = $wpdb->get_row( $wpdb->prepare( "
			SELECT key_id, user_id, description, permissions, truncated_key, last_access
			FROM {$wpdb->prefix}woocommerce_api_keys
			WHERE key_id = %d
		", $key_id ), ARRAY_A );

		if ( is_null( $key ) ) {
			return $empty;
		}

		return $key;
	}

	/**
	 * API Keys admin actions.
	 */
	public function actions() {
		if ( $this->is_api_keys_settings_page() ) {
			// Revoke key
			if ( isset( $_GET['revoke-key'] ) ) {
				$this->revoke_key();
			}

			// Bulk actions
			if ( isset( $_GET['action'] ) && isset( $_GET['key'] ) ) {
				$this->bulk_actions();
			}
		}
	}

	/**
	 * Notices.
	 */
	public static function notices() {
		if ( isset( $_GET['revoked'] ) && 1 == $_GET['revoked'] ) {
			WC_Admin_Settings::add_message( __( 'API key revoked successfully.', 'woocommerce' ) );
		}
	}

	/**
	 * Revoke key.
	 */
	private function revoke_key() {
		if ( empty( $_REQUEST['_wpnonce'] ) || ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'revoke' ) ) {
			wp_die( __( 'Action failed. Please refresh the page and retry.', 'woocommerce' ) );
		}

		$key_id = absint( $_GET['revoke-key'] );
		$this->remove_key( $key_id );

		wp_redirect( esc_url_raw( add_query_arg( array( 'revoked' => 1 ), admin_url( 'admin.php?page=wc-settings&tab=api&section=keys' ) ) ) );
		exit();
	}

	/**
	 * Bulk actions.
	 */
	private function bulk_actions() {
		if ( empty( $_REQUEST['_wpnonce'] ) || ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'woocommerce-settings' ) ) {
			wp_die( __( 'Action failed. Please refresh the page and retry.', 'woocommerce' ) );
		}

		$keys = array_map( 'absint', (array) $_GET['key'] );

		if ( 'revoke' == $_GET['action'] ) {
			$this->bulk_revoke_key( $keys );
		}
	}

	/**
	 * Bulk revoke key.
	 *
	 * @param array $keys
	 */
	private function bulk_revoke_key( $keys ) {
		foreach ( $keys as $key_id ) {
			$this->remove_key( $key_id );
		}
	}

	/**
	 * Remove key.
	 *
	 * @param  int $key_id
	 * @return bool
	 */
	private function remove_key( $key_id ) {
		global $wpdb;

		$delete = $wpdb->delete( $wpdb->prefix . 'woocommerce_api_keys', array( 'key_id' => $key_id ), array( '%d' ) );

		return $delete;
	}
}

new WC_Admin_API_Keys();
Created api keys table list 2015-05-16 02:03:24 +00:00			`<?php`
			`/**`
Removed period for file headers 2015-11-03 13:53:50 +00:00			`* WooCommerce Admin API Keys Class`
Created api keys table list 2015-05-16 02:03:24 +00:00			`*`
			`* @author WooThemes`
			`* @category Admin`
			`* @package WooCommerce/Admin`
			`* @version 2.4.0`
			`*/`

			`if ( ! defined( 'ABSPATH' ) ) {`
			`exit;`
			`}`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* WC_Admin_API_Keys.`
Created api keys table list 2015-05-16 02:03:24 +00:00			`*/`
			`class WC_Admin_API_Keys {`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Initialize the API Keys admin actions.`
Created api keys table list 2015-05-16 02:03:24 +00:00			`*/`
			`public function __construct() {`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`add_action( 'admin_init', array( $this, 'actions' ) );`
			`}`
Created api keys table list 2015-05-16 02:03:24 +00:00
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Check if is API Keys settings page.`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`* @return bool`
			`*/`
			`private function is_api_keys_settings_page() {`
			`return isset( $_GET['page'] )`
literal check 2016-06-14 10:10:13 +00:00			`&& 'wc-settings' === $_GET['page']`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`&& isset( $_GET['tab'] )`
literal check 2016-06-14 10:10:13 +00:00			`&& 'api' === $_GET['tab']`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`&& isset( $_GET['section'] )`
literal check 2016-06-14 10:10:13 +00:00			`&& 'keys' === $_GET['section'];`
Created api keys table list 2015-05-16 02:03:24 +00:00			`}`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Page output.`
Created api keys table list 2015-05-16 02:03:24 +00:00			`*/`
			`public static function page_output() {`
			`// Hide the save button`
			`$GLOBALS['hide_save_button'] = true;`

			`if ( isset( $_GET['create-key'] ) \|\| isset( $_GET['edit-key'] ) ) {`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`$key_id = isset( $_GET['edit-key'] ) ? absint( $_GET['edit-key'] ) : 0;`
			`$key_data = self::get_key_data( $key_id );`

Created api keys table list 2015-05-16 02:03:24 +00:00			`include( 'settings/views/html-keys-edit.php' );`
			`} else {`
			`self::table_list_output();`
			`}`
			`}`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Table list output.`
Created api keys table list 2015-05-16 02:03:24 +00:00			`*/`
			`private static function table_list_output() {`
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00
			`global $wpdb;`

Fix strings case (#12069) * Fixed case for all _e, esc_attr_e and esc_html_e strings * Fixed case for all _n_noop strings * Fixed case for all _x strings * Fixed case for all __, esc_html__ and esc_attr__ strings * Fixed a few more strings * Fixed strings in unit tests * Fix PayPal Standard case. * Save Order text 2016-10-12 10:16:30 +00:00			`echo '<h2>' . __( 'Keys/Apps', 'woocommerce' ) . ' <a href="' . esc_url( admin_url( 'admin.php?page=wc-settings&tab=api&section=keys&create-key=1' ) ) . '" class="add-new-h2">' . __( 'Add key', 'woocommerce' ) . '</a></h2>';`
Created api keys table list 2015-05-16 02:03:24 +00:00
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00			`// Get the API keys count`
			`$count = $wpdb->get_var( "SELECT COUNT(key_id) FROM {$wpdb->prefix}woocommerce_api_keys WHERE 1 = 1;" );`

			`if ( absint( $count ) && $count > 0 ) {`
			`$keys_table_list = new WC_Admin_API_Keys_Table_List();`
			`$keys_table_list->prepare_items();`
Created api keys table list 2015-05-16 02:03:24 +00:00
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00			`echo '<input type="hidden" name="page" value="wc-settings" />';`
			`echo '<input type="hidden" name="tab" value="api" />';`
			`echo '<input type="hidden" name="section" value="keys" />';`
Created api keys table list 2015-05-16 02:03:24 +00:00
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00			`$keys_table_list->views();`
			`$keys_table_list->search_box( __( 'Search key', 'woocommerce' ), 'key' );`
			`$keys_table_list->display();`
			`} else {`
Add icons and fix links 2017-04-27 11:23:16 +00:00			`echo '<div class="woocommerce-BlankState woocommerce-BlankState--api">';`
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00			`?>`
Add icons and fix links 2017-04-27 11:23:16 +00:00			`<h2 class="woocommerce-BlankState-message"><?php _e( 'The WooCommerce REST API allows external apps to view and manage store data. Access is granted only to those with valid API keys.', 'woocommerce' ); ?></h2>`
			`<a class="woocommerce-BlankState-cta button-primary button" href="<?php echo esc_url( admin_url( 'admin.php?page=wc-settings&tab=api&section=keys&create-key=1' ) ); ?>"><?php _e( 'Create an API key', 'woocommerce' ); ?></a>`
Add maybe blank check for API keys & webhooks For consistency purpose in the way we display empty data (like orders or coupons), the maybe blank check replaces the default empty table by a more friendly message explaining the purpose of API keys and webhooks. Results: ![](http://cld.wthms.co/cEF9+) 2017-03-17 22:49:19 +00:00
			`<?php echo '<style type="text/css">#posts-filter .wp-list-table, #posts-filter .tablenav.top, .tablenav.bottom .actions { display: none; } </style></div>';`
			`}`
Created api keys table list 2015-05-16 02:03:24 +00:00			`}`
Created page to edit and create keys 2015-05-16 03:09:29 +00:00
			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Get key data.`
Created page to edit and create keys 2015-05-16 03:09:29 +00:00			`*`
			`* @param int $key_id`
			`* @return array`
			`*/`
			`private static function get_key_data( $key_id ) {`
			`global $wpdb;`

			`$empty = array(`
Added truncated consumer key and last access fields in woocommerce_api_keys table 2015-07-16 18:42:00 +00:00			`'key_id' => 0,`
			`'user_id' => '',`
			`'description' => '',`
			`'permissions' => '',`
			`'truncated_key' => '',`
last item in a multiline-array should end in a comma 2016-08-27 01:46:45 +00:00			`'last_access' => '',`
Created page to edit and create keys 2015-05-16 03:09:29 +00:00			`);`

			`if ( 0 == $key_id ) {`
			`return $empty;`
			`}`

			`$key = $wpdb->get_row( $wpdb->prepare( "`
Added truncated consumer key and last access fields in woocommerce_api_keys table 2015-07-16 18:42:00 +00:00			`SELECT key_id, user_id, description, permissions, truncated_key, last_access`
Created page to edit and create keys 2015-05-16 03:09:29 +00:00			`FROM {$wpdb->prefix}woocommerce_api_keys`
			`WHERE key_id = %d`
			`", $key_id ), ARRAY_A );`

			`if ( is_null( $key ) ) {`
			`return $empty;`
			`}`

			`return $key;`
			`}`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00
			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* API Keys admin actions.`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`*/`
			`public function actions() {`
			`if ( $this->is_api_keys_settings_page() ) {`
Added method to revoke api keys 2015-05-18 18:46:16 +00:00			`// Revoke key`
			`if ( isset( $_GET['revoke-key'] ) ) {`
			`$this->revoke_key();`
			`}`

Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`// Bulk actions`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`if ( isset( $_GET['action'] ) && isset( $_GET['key'] ) ) {`
			`$this->bulk_actions();`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`}`
			`}`
			`}`

			`/**`
			`* Notices.`
			`*/`
			`public static function notices() {`
Added new api key generation methods 2015-06-08 22:41:35 +00:00			`if ( isset( $_GET['revoked'] ) && 1 == $_GET['revoked'] ) {`
Fix strings case (#12069) * Fixed case for all _e, esc_attr_e and esc_html_e strings * Fixed case for all _n_noop strings * Fixed case for all _x strings * Fixed case for all __, esc_html__ and esc_attr__ strings * Fixed a few more strings * Fixed strings in unit tests * Fix PayPal Standard case. * Save Order text 2016-10-12 10:16:30 +00:00			`WC_Admin_Settings::add_message( __( 'API key revoked successfully.', 'woocommerce' ) );`
Added methods to generate and edit API keys 2015-05-18 18:23:05 +00:00			`}`
			`}`
Added method to revoke api keys 2015-05-18 18:46:16 +00:00
			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Revoke key.`
Added method to revoke api keys 2015-05-18 18:46:16 +00:00			`*/`
			`private function revoke_key() {`
			`if ( empty( $_REQUEST['_wpnonce'] ) \|\| ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'revoke' ) ) {`
			`wp_die( __( 'Action failed. Please refresh the page and retry.', 'woocommerce' ) );`
			`}`

			`$key_id = absint( $_GET['revoke-key'] );`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`$this->remove_key( $key_id );`
Added method to revoke api keys 2015-05-18 18:46:16 +00:00
Added new api key generation methods 2015-06-08 22:41:35 +00:00			`wp_redirect( esc_url_raw( add_query_arg( array( 'revoked' => 1 ), admin_url( 'admin.php?page=wc-settings&tab=api&section=keys' ) ) ) );`
Added method to revoke api keys 2015-05-18 18:46:16 +00:00			`exit();`
			`}`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00
			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Bulk actions.`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`*/`
			`private function bulk_actions() {`
			`if ( empty( $_REQUEST['_wpnonce'] ) \|\| ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'woocommerce-settings' ) ) {`
			`wp_die( __( 'Action failed. Please refresh the page and retry.', 'woocommerce' ) );`
			`}`

			`$keys = array_map( 'absint', (array) $_GET['key'] );`

			`if ( 'revoke' == $_GET['action'] ) {`
			`$this->bulk_revoke_key( $keys );`
			`}`
			`}`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Bulk revoke key.`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`*`
Updated the auth endpoint to works with the new woocommerce_api_keys database 2015-05-18 19:46:52 +00:00			`* @param array $keys`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`*/`
			`private function bulk_revoke_key( $keys ) {`
			`foreach ( $keys as $key_id ) {`
			`$this->remove_key( $key_id );`
			`}`
			`}`

			`/**`
Fixed some coding standards for docblocks 2015-11-03 12:28:01 +00:00			`* Remove key.`
Created bulk revoke keys 2015-05-18 19:12:47 +00:00			`*`
			`* @param int $key_id`
			`* @return bool`
			`*/`
			`private function remove_key( $key_id ) {`
			`global $wpdb;`

			`$delete = $wpdb->delete( $wpdb->prefix . 'woocommerce_api_keys', array( 'key_id' => $key_id ), array( '%d' ) );`

			`return $delete;`
			`}`
Created api keys table list 2015-05-16 02:03:24 +00:00			`}`

			`new WC_Admin_API_Keys();`