is_api_keys_settings_page() ) { // WPCS: input var okay, CSRF ok. $keys_table_list = new WC_Admin_API_Keys_Table_List(); // Add screen option. add_screen_option( 'per_page', array( 'default' => 10, 'option' => 'woocommerce_keys_per_page', ) ); } } /** * Table list output. */ private static function table_list_output() { global $wpdb, $keys_table_list; echo '

' . esc_html__( 'REST API', 'woocommerce' ) . ' ' . esc_html__( 'Add key', 'woocommerce' ) . '

'; // Get the API keys count. $count = $wpdb->get_var( "SELECT COUNT(key_id) FROM {$wpdb->prefix}woocommerce_api_keys WHERE 1 = 1;" ); if ( absint( $count ) && $count > 0 ) { $keys_table_list->prepare_items(); echo ''; echo ''; echo ''; $keys_table_list->views(); $keys_table_list->search_box( __( 'Search key', 'woocommerce' ), 'key' ); $keys_table_list->display(); } else { echo '
'; ?>

0, 'user_id' => '', 'description' => '', 'permissions' => '', 'truncated_key' => '', 'last_access' => '', ); if ( 0 === $key_id ) { return $empty; } $key = $wpdb->get_row( $wpdb->prepare( "SELECT key_id, user_id, description, permissions, truncated_key, last_access FROM {$wpdb->prefix}woocommerce_api_keys WHERE key_id = %d", $key_id ), ARRAY_A ); if ( is_null( $key ) ) { return $empty; } return $key; } /** * API Keys admin actions. */ public function actions() { if ( $this->is_api_keys_settings_page() ) { // Revoke key. if ( isset( $_REQUEST['revoke-key'] ) ) { // WPCS: input var okay, CSRF ok. $this->revoke_key(); } // Bulk actions. if ( isset( $_REQUEST['action'] ) && isset( $_REQUEST['key'] ) ) { // WPCS: input var okay, CSRF ok. $this->bulk_actions(); } } } /** * Notices. */ public static function notices() { if ( isset( $_GET['revoked'] ) && 1 === $_GET['revoked'] ) { // WPCS: input var okay, CSRF ok. WC_Admin_Settings::add_message( __( 'API key revoked successfully.', 'woocommerce' ) ); } } /** * Revoke key. */ private function revoke_key() { check_admin_referer( 'revoke' ); if ( isset( $_REQUEST['revoke-key'] ) ) { // WPCS: input var okay, CSRF ok. $key_id = absint( $_REQUEST['revoke-key'] ); // WPCS: input var okay, CSRF ok. if ( $key_id ) { $this->remove_key( $key_id ); } } wp_redirect( esc_url_raw( add_query_arg( array( 'revoked' => 1 ), admin_url( 'admin.php?page=wc-settings&tab=advanced§ion=keys' ) ) ) ); exit(); } /** * Bulk actions. */ private function bulk_actions() { check_admin_referer( 'woocommerce-settings' ); if ( ! current_user_can( 'manage_woocommerce' ) ) { wp_die( esc_html__( 'You do not have permission to edit API Keys', 'woocommerce' ) ); } if ( isset( $_REQUEST['action'] ) ) { // WPCS: input var okay, CSRF ok. $action = sanitize_text_field( wp_unslash( $_REQUEST['action'] ) ); // WPCS: input var okay, CSRF ok. $keys = isset( $_REQUEST['key'] ) ? array_map( 'absint', (array) $_REQUEST['key'] ) : array(); // WPCS: input var okay, CSRF ok. if ( 'revoke' === $action ) { $this->bulk_revoke_key( $keys ); } } } /** * Bulk revoke key. * * @param array $keys API Keys. */ private function bulk_revoke_key( $keys ) { foreach ( $keys as $key_id ) { $this->remove_key( $key_id ); } } /** * Remove key. * * @param int $key_id API Key ID. * @return bool */ private function remove_key( $key_id ) { global $wpdb; $delete = $wpdb->delete( $wpdb->prefix . 'woocommerce_api_keys', array( 'key_id' => $key_id ), array( '%d' ) ); return $delete; } } new WC_Admin_API_Keys();