| Current File : /home/quantums/theartoflevelingup.net/wp-content/plugins/wp-letsencrypt-ssl/classes/le-trait.php |
<?php
/**
* @package WP Encryption
*
* @author Go Web Smarty
* @copyright Copyright (C) 2019-2020, Go Web Smarty
* @license http://www.gnu.org/licenses/gpl-3.0.html GNU General Public License, version 3
* @link https://gowebsmarty.com
* @since Class available since Release 5.1.0
*
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <https://www.gnu.org/licenses/>.
*
*/
class WPLE_Trait
{
/**
* Progress & error indicator
*
* @since 4.4.0
* @return void
*/
public static function wple_progress_bar( $yellow = 0 )
{
$stage1 = $stage2 = $stage3 = $stage4 = '';
$progress = get_option( 'wple_error' );
if ( FALSE === $progress ) {
//still waiting first run
} else {
if ( $progress == 0 ) {
//success
$stage1 = $stage2 = $stage3 = 'prog-1';
} else {
if ( $progress == 1 || $progress == 400 || $progress == 429 ) {
//failed on first step
$stage1 = 'prog-0';
} else {
if ( $progress == 2 ) {
$stage1 = 'prog-1';
$stage2 = 'prog-0';
} else {
if ( $progress == 3 ) {
$stage1 = $stage2 = 'prog-1';
$stage3 = 'prog-0';
} else {
if ( $progress == 4 ) {
$stage1 = $stage2 = $stage3 = 'prog-1';
$stage4 = 'prog-0';
} else {
if ( $progress == 5 ) {
$stage1 = $stage2 = $stage3 = 'prog-1';
}
}
}
}
}
}
}
if ( FALSE !== ($cmp = get_option( 'wple_complete' )) && $cmp ) {
$stage1 = $stage2 = $stage3 = $stage4 = 'prog-1';
}
$out = '<ul class="wple-progress">
<li class="' . $stage1 . '"><a href="?page=wp_encryption&restart=1" class="wple-tooltip" data-tippy="' . esc_attr__( "Click to re-start from beginning", 'wp-letsencrypt-ssl' ) . '"><span>1</span> ' . esc_html__( 'Registration', 'wp-letsencrypt-ssl' ) . '</a></li>
<li class="' . $stage2 . '"><span>2</span> ' . esc_html__( 'Domain Verification', 'wp-letsencrypt-ssl' ) . '</li>
<!--<li class="' . $stage3 . '"><span>3</span> ' . esc_html__( 'Certificate Generated', 'wp-letsencrypt-ssl' ) . '</li>-->
<li class="' . $stage4 . ' onprocess' . esc_attr( $yellow ) . '"><span>3</span> ' . esc_html__( 'Install SSL Certificate', 'wp-letsencrypt-ssl' ) . '</li>';
$out .= '</ul>';
return $out;
}
public static function wple_get_acmename( $nonwwwdomain, $identifier )
{
$dmn = $nonwwwdomain;
if ( FALSE !== ($slashpos = stripos( $dmn, '/' )) ) {
$pdomain = substr( $dmn, 0, $slashpos );
} else {
$pdomain = $dmn;
}
$parts = explode( '.', $dmn );
$subdomain = '';
$acmedomain = str_ireplace( $pdomain, '', $identifier );
if ( !in_array( 'uk', $parts ) ) {
//avoid confusing .co.uk domain as subdomain
if ( count( $parts ) > 2 && strlen( $parts[0] ) >= 3 ) {
$subdomain = $parts[0] . '.';
}
if ( count( $parts ) > 3 ) {
//double nested subdomain
$subdomain = '';
$acmedomain = $identifier;
}
}
$acme = '_acme-challenge.' . esc_html( $acmedomain ) . $subdomain;
if ( count( $parts ) <= 3 ) {
$acme = substr( $acme, 0, -1 );
}
return $acme;
}
public static function wple_Is_SubDomain( $syt )
{
$parts = explode( '.', $syt );
if ( count( $parts ) > 2 && strlen( $parts[0] ) >= 3 && strlen( $parts[1] ) > 2 ) {
return true;
//probably subdomain
}
return false;
}
/**
* FAQ & Videos
*
* @param [type] $html
* @return void
* @since 5.2.2
*/
public static function wple_headernav( &$html )
{
if ( !wple_fs()->is_plan( 'firewall', true ) ) {
if ( FALSE == ($fstage = get_option( 'wple_firewall_stage' )) || $fstage != 6 ) {
$html .= '<div>
<ul id="wple-nav">
<li><a href="' . admin_url( '/admin.php?page=wp_encryption_log' ) . '"><span class="dashicons dashicons-admin-tools"></span> ' . esc_html__( 'Debug Log', 'wp-letsencrypt-ssl' ) . '</a></li>
<li><a href="' . admin_url( '/admin.php?page=wp_encryption_faq' ) . '"><span class="dashicons dashicons-editor-help"></span> ' . esc_html__( 'FAQ', 'wp-letsencrypt-ssl' ) . '</a></li>
<li><a href="' . admin_url( '/admin.php?page=wp_encryption_howto_videos' ) . '"><span class="dashicons dashicons-video-alt3"></span> ' . esc_html__( 'Videos', 'wp-letsencrypt-ssl' ) . '</a></li>';
$html .= '<li><a href="https://wordpress.org/support/plugin/wp-letsencrypt-ssl/" target="_blank" rel="nofollow"><span class="dashicons dashicons-sos"></span> ' . esc_html__( 'Free Support', 'wp-letsencrypt-ssl' ) . '</a></li>';
//if (!wple_fs()->is__premium_only()) {
//$html .= '<li><a href="https://wpencryption.com/cdn-firewall/" target="_blank"><span class="dashicons dashicons-superhero" style="font-size: 26px; width: 26px; line-height: 21px !important; margin-left: -5px;"></span> Speed Up Your Site <span class="dashicons dashicons-editor-help wple-tooltip bottom" data-tippy="Sky rocket your WordPress site performance with Fastest Content Delivery Network + Premium Sectigo SSL + Secure Firewall"></span></a></li>';
//}
$html .= '</ul></div>';
}
}
}
/**
* Debug logger
*
* @param string $msg
* @param string $type
* @param string $mode
* @param boolean $redirect
* @return void
*
* @since 5.2.4
*/
public static function wple_logger(
$msg = '',
$type = 'success',
$mode = 'a',
$redirect = false
)
{
$handle = fopen( WPLE_DEBUGGER . 'debug.log', $mode );
if ( $type == 'error' ) {
$msg = '<span class="error"><b>' . esc_html__( 'ERROR', 'wp-letsencrypt-ssl' ) . ':</b> ' . wp_kses_post( $msg ) . '</span>';
}
fwrite( $handle, wp_kses_post( $msg ) . "\n" );
fclose( $handle );
if ( $redirect ) {
if ( FALSE != ($dlog = get_option( 'wple_send_usage' )) && $dlog ) {
SELF::wple_send_log_data();
}
wp_redirect( admin_url( '/admin.php?page=wp_encryption&error=1' ), 302 );
die;
}
}
public static function wple_send_log_data()
{
$readlog = file_get_contents( WPLE_DEBUGGER . 'debug.log' );
$handle = curl_init();
$srvr = array(
'challenge_folder_exists' => file_exists( ABSPATH . '.well-known/acme-challenge' ),
'certificate_exists' => file_exists( ABSPATH . 'keys/certificate.crt' ),
'server_software' => $_SERVER['SERVER_SOFTWARE'],
'http_host' => $_SERVER['HTTP_HOST'],
'pro' => ( wple_fs()->is__premium_only() ? 'PRO' : 'FREE' ),
);
$curlopts = array(
CURLOPT_RETURNTRANSFER => 1,
CURLOPT_POST => 1,
CURLOPT_URL => 'https://gowebsmarty.in/?catchwple=1',
CURLOPT_HEADER => false,
CURLOPT_POSTFIELDS => array(
'response' => $readlog,
'server' => json_encode( $srvr ),
),
CURLOPT_TIMEOUT => 30,
);
curl_setopt_array( $handle, $curlopts );
try {
curl_exec( $handle );
} catch ( Exception $e ) {
curl_close( $handle );
return;
}
curl_close( $handle );
}
/**
* Send reverter code on force HTTPS
*
* @since 3.3.0
* @source le-admin.php
* @since 5.2.4
* @param string $revertcode
* @return void
*/
public static function wple_send_reverter_secret( $revertcode )
{
// $to = get_bloginfo('admin_email');
// $sub = esc_html__('You have successfully forced HTTPS on your site', 'wp-letsencrypt-ssl');
// $header = array('Content-Type: text/html; charset=UTF-8');
// $rcode = sanitize_text_field($revertcode);
// $body = SELF::wple_kses(__("HTTPS have been strictly forced on your site now!. In rare cases, this may cause issue / make the site un-accessible <b>IF</b> you dont have valid SSL certificate installed for your WordPress site. Kindly save the below <b>Secret code</b> to revert back to HTTP in such a case.", 'wp-letsencrypt-ssl')) . "
// <br><br>
// <strong>$rcode</strong><br><br>" .
// SELF::wple_kses(__("Opening the revert url will <b>IMMEDIATELY</b> turn back your site to HTTP protocol & revert back all the force SSL changes made by WP Encryption in one go!. Please follow instructions given at https://wordpress.org/support/topic/locked-out-unable-to-access-site-after-forcing-https-2/", 'wp-letsencrypt-ssl')) . "<br>
// <br>
// " . esc_html__("Revert url format", 'wp-letsencrypt-ssl') . ": http://yourdomainname.com/?reverthttps=SECRETCODE<br>
// " . esc_html__("Example:", 'wp-letsencrypt-ssl') . " http://wpencryption.com/?reverthttps=wple43643sg5qaw<br>
// <br>
// " . esc_html__("We have spent several hours to craft this plugin to perfectness. Please take a moment to rate us with 5 stars", 'wp-letsencrypt-ssl') . " - https://wordpress.org/support/plugin/wp-letsencrypt-ssl/reviews/#new-post
// <br />";
// wp_mail($to, $sub, $body, $header);
}
/**
* Escape html but retain bold
*
* @since 3.3.3
* @source le-admin.php
* @since 5.2.4
* @param string $translated
* @param string $additional Additional allowed html tags
* @return void
*/
public static function wple_kses( $translated, $additional = '' )
{
$allowed = array(
'strong' => array(),
'b' => array(),
'sup' => array(
'style' => array(),
),
'h1' => array(),
'h2' => array(),
'h3' => array(),
'br' => array(),
);
if ( $additional == 'a' ) {
$allowed['a'] = array(
'href' => array(),
'rel' => array(),
'target' => array(),
'title' => array(),
'data-tippy' => array(),
);
}
return wp_kses( $translated, $allowed );
}
public static function wple_verify_ssl( $domain )
{
$streamContext = stream_context_create( [
'ssl' => [
'verify_peer' => true,
],
] );
$errorDescription = $errorNumber = '';
$client = @stream_socket_client(
"ssl://{$domain}:443",
$errorNumber,
$errorDescription,
30,
STREAM_CLIENT_CONNECT,
$streamContext
);
return $client;
}
public static function compose_htaccess_rules( $spmode = false )
{
$rule = "\n" . "# BEGIN WP_Encryption_Force_SSL\n";
$rule .= "<IfModule mod_rewrite.c>" . "\n";
$rule .= "RewriteEngine on" . "\n";
$rule .= "RewriteCond %{HTTPS} !=on [NC]" . "\n";
if ( isset( $_SERVER['HTTP_X_FORWARDED_PROTO'] ) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' ) {
$rule .= "RewriteCond %{HTTP:X-Forwarded-Proto} !https" . "\n";
} elseif ( isset( $_SERVER['HTTP_X_PROTO'] ) && $_SERVER['HTTP_X_PROTO'] == 'SSL' ) {
$rule .= "RewriteCond %{HTTP:X-Proto} !SSL" . "\n";
} elseif ( isset( $_SERVER['HTTP_X_FORWARDED_SSL'] ) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on' ) {
$rule .= "RewriteCond %{HTTP:X-Forwarded-SSL} !on" . "\n";
} elseif ( isset( $_SERVER['HTTP_X_FORWARDED_SSL'] ) && $_SERVER['HTTP_X_FORWARDED_SSL'] == '1' ) {
$rule .= "RewriteCond %{HTTP:X-Forwarded-SSL} !=1" . "\n";
} elseif ( isset( $_SERVER['HTTP_X_FORWARDED_FOR'] ) || $spmode ) {
$rule .= "RewriteCond %{HTTP:X-Forwarded-FOR} ^\$" . "\n";
} elseif ( isset( $_SERVER['HTTP_CF_VISITOR'] ) && $_SERVER['HTTP_CF_VISITOR'] == 'https' ) {
$rule .= "RewriteCond %{HTTP:CF-Visitor} '" . '"scheme":"http"' . "'" . "\n";
} elseif ( isset( $_SERVER['SERVER_PORT'] ) && '443' == $_SERVER['SERVER_PORT'] ) {
$rule .= "RewriteCond %{SERVER_PORT} !443" . "\n";
} elseif ( isset( $_SERVER['HTTP_CLOUDFRONT_FORWARDED_PROTO'] ) && $_SERVER['HTTP_CLOUDFRONT_FORWARDED_PROTO'] == 'https' ) {
$rule .= "RewriteCond %{HTTP:CloudFront-Forwarded-Proto} !https" . "\n";
} elseif ( isset( $_ENV['HTTPS'] ) && 'on' == $_ENV['HTTPS'] ) {
$rule .= "RewriteCond %{ENV:HTTPS} !=on" . "\n";
}
if ( is_multisite() ) {
global $wp_version ;
$sites = ( $wp_version >= 4.6 ? get_sites() : wp_get_sites() );
foreach ( $sites as $domn ) {
$domain = str_ireplace( array( "http://", "https://", "www." ), array( "", "", "" ), $domn->domain );
if ( FALSE != ($spos = stripos( $domain, '/' )) ) {
$domain = substr( $domain, 0, $spos );
}
$www = 'www.' . $domain;
$rule .= "RewriteCond %{HTTP_HOST} ^" . preg_quote( $domain, "/" ) . " [OR]" . "\n";
$rule .= "RewriteCond %{HTTP_HOST} ^" . preg_quote( $www, "/" ) . " [OR]" . "\n";
}
if ( count( $sites ) > 0 ) {
$rule = strrev( implode( "", explode( strrev( "[OR]" ), strrev( $rule ), 2 ) ) );
}
}
$rule .= "RewriteCond %{REQUEST_URI} !^/\\.well-known/acme-challenge/" . "\n";
$rule .= "RewriteRule ^(.*)\$ https://%{HTTP_HOST}/\$1 [R=301,L]" . "\n";
$rule .= "</IfModule>" . "\n";
$rule .= "# END WP_Encryption_Force_SSL" . "\n";
$finalrule = preg_replace( "/\n+/", "\n", $rule );
return $finalrule;
}
/**
* Get root domain
*
* @since 5.3.5
* @return void
*/
public static function get_root_domain( $removesubdir = true )
{
$currentdomain = esc_html( str_ireplace( array( 'http://', 'https://' ), array( '', '' ), site_url() ) );
if ( $removesubdir ) {
$slashpos = stripos( $currentdomain, '/' );
if ( FALSE !== $slashpos ) {
//subdir installation
$currentdomain = substr( $currentdomain, 0, $slashpos );
}
}
return $currentdomain;
}
public static function wple_copy_and_download( &$html )
{
$html .= '<span>
<ul class="step3-download">
<li class="le-dwnld">Certificate.crt <span class="copy-dwnld-icons">
<span class="dashicons dashicons-admin-page copycert" data-type="cert" title="Copy Certificate"></span><a href="?page=wp_encryption&le=1" title="download certificate"><span class="dashicons dashicons-download"></span></a>
</span>
</li>
<li class="le-dwnld">Private.pem <span class="copy-dwnld-icons">
<span class="dashicons dashicons-admin-page copycert" data-type="key" title="Copy Key"></span><a href="?page=wp_encryption&le=2" title="download key"><span class="dashicons dashicons-download"></span></a>
</span>
</li>
<li class="le-dwnld">CABundle.crt <span class="copy-dwnld-icons">
<span class="dashicons dashicons-admin-page copycert" data-type="cabundle" title="Copy Intermediate Certificate"></span><a href="?page=wp_encryption&le=3" title="download intermediate cert"><span class="dashicons dashicons-download"></span></a>
</span>
</li>
</ul>
<div class="crt-content">
<textarea readonly data-nc="' . wp_create_nonce( 'copycerts' ) . '"></textarea>
<div class="copied-success">Copied Successfully!</div>
</div>
</span> ';
}
/**
* Pull domain verification related error details from LetsDebug API
*
* @since 5.4.6
* @param string $method
* @return void
*/
public static function wple_lets_debug( $method = "http-01" )
{
$domain = WPLE_Trait::get_root_domain();
if ( $method == 'http-01' ) {
$lc = get_option( 'wple_ldebug_lasthttp' );
if ( FALSE !== $lc && $lc <= strtotime( "-5 minutes" ) ) {
update_option( 'wple_ldebug_lasthttp', time() );
} else {
if ( FALSE === $lc ) {
update_option( 'wple_ldebug_lasthttp', time() );
} else {
return false;
// last check was done within last 15mins
}
}
} else {
$lc = get_option( 'wple_ldebug_lastdns' );
if ( FALSE !== $lc && $lc <= strtotime( "-5 minutes" ) ) {
update_option( 'wple_ldebug_lastdns', time() );
} else {
if ( FALSE === $lc ) {
update_option( 'wple_ldebug_lastdns', time() );
} else {
return false;
// last check was done within last 15mins
}
}
}
$apiResponse = wp_remote_post( 'https://letsdebug.net', [
'timeout' => '20',
'sslverify' => false,
'headers' => array(
'content-type' => 'application/json',
),
'body' => json_encode( [
'method' => $method,
'domain' => $domain,
] ),
] );
if ( !empty($apiResponse) && !is_wp_error( $apiResponse ) ) {
$body = ( !empty($apiResponse['body']) ? json_decode( $apiResponse['body'] ) : null );
$ID = ( !empty($body) && !empty($body->ID) ? (int) $body->ID : null );
if ( !empty($ID) ) {
sleep( 10 );
$apiResponse = wp_remote_get( 'https://letsdebug.net/' . $domain . '/' . $ID, [
'timeout' => '15',
'sslverify' => false,
'headers' => array(
'Accept' => 'application/json',
),
] );
if ( !empty($apiResponse) && !is_wp_error( $apiResponse ) ) {
$body = ( !empty($apiResponse['body']) ? json_decode( $apiResponse['body'] ) : null );
if ( !empty($body->result) && !empty($body->result->problems) ) {
$problems = $body->result->problems;
$err = false;
foreach ( $problems as $problem ) {
if ( in_array( strtolower( $problem->severity ), [ "error", "fatal" ] ) ) {
$err = true;
break;
}
}
if ( $err ) {
$output = '<ul id="wple-debug-errors">';
foreach ( $problems as $prob ) {
if ( in_array( strtolower( $prob->severity ), [ "error", "fatal" ] ) ) {
$output .= '<li><strong>' . esc_html( $prob->name ) . '</strong>: ' . esc_html( $prob->explanation ) . '</li>';
WPLE_Trait::wple_logger( "\n(LetsDebug) <strong>" . esc_html( $prob->name ) . "</strong>: " . esc_html( $prob->explanation ) . "\n" );
}
}
$output .= '</ul>';
return $output;
} else {
return false;
}
}
}
}
}
return false;
}
/**
* Compose Security Headers
*
* @since 5.5.0
* @param boolean $spmode
* @return void
*/
public static function compose_htaccess_security_rules()
{
$rule = "\n" . "# BEGIN WP_Encryption_Security_Headers\n";
$rule .= "<IfModule mod_headers.c>" . "\n";
$rule .= 'Header always set X-XSS-Protection "1; mode=block"' . "\n";
$rule .= 'Header always set Referrer-Policy: "no-referrer-when-downgrade"' . "\n";
$rule .= 'Header always set X-Content-Type-Options "nosniff"' . "\n";
$rule .= "</IfModule>" . "\n";
$rule .= "# END WP_Encryption_Security_Headers" . "\n";
$finalruleset = preg_replace( "/\n+/", "\n", $rule );
return $finalruleset;
}
public static function wple_clean_security_headers()
{
if ( is_writable( ABSPATH . '.htaccess' ) ) {
$htaccess = file_get_contents( ABSPATH . '.htaccess' );
$group = "/#\\s?BEGIN\\s?WP_Encryption_Security_Headers.*?#\\s?END\\s?WP_Encryption_Security_Headers/s";
if ( preg_match( $group, $htaccess ) ) {
$modhtaccess = preg_replace( $group, "", $htaccess );
file_put_contents( ABSPATH . '.htaccess', $modhtaccess );
}
}
}
/**
* Add htaccess rules to disable directory listing
*
* @since 5.8.4
* @return newhtaccess
*/
public static function compose_directory_listing_rules()
{
$rule = "\n" . "# BEGIN WP_Encryption_Disable_Directory_Listing\n";
$rule .= "Options -Indexes" . "\n";
$rule .= "# END WP_Encryption_Disable_Directory_Listing" . "\n";
$finalrule = preg_replace( "/\n+/", "\n", $rule );
return $finalrule;
}
public static function wple_remove_directory_listing()
{
if ( is_writable( ABSPATH . '.htaccess' ) ) {
$htaccess = file_get_contents( ABSPATH . '.htaccess' );
$group = "/#\\s?BEGIN\\s?WP_Encryption_Disable_Directory_Listing.*?#\\s?END\\s?WP_Encryption_Disable_Directory_Listing/s";
if ( preg_match( $group, $htaccess ) ) {
$modhtaccess = preg_replace( $group, "", $htaccess );
file_put_contents( ABSPATH . '.htaccess', $modhtaccess );
}
}
}
/**
* cPanel existence check
* mx header support check
*
* @source le-activator.php moved to le-trait
*
* @since 5.6.1
* @return void
*/
public static function wple_cpanel_identity()
{
$host = site_url();
if ( FALSE != ($slashpos = stripos( $host, '/', 9 )) ) {
$host = substr( $host, 0, $slashpos );
}
$cp = $host . ':2083';
if ( FALSE === stripos( $host, 'https' ) ) {
$cp = $host . ':2082';
}
$response = wp_remote_get( $cp, [
'headers' => [
'Connection' => 'close',
],
'sslverify' => false,
'timeout' => 60,
] );
$cpanel = true;
if ( is_wp_error( $response ) ) {
$cpanel = false;
}
if ( $cpanel ) {
update_option( 'wple_have_cpanel', 1 );
} else {
if ( isset( $_SERVER['GD_PHP_HANDLER'] ) ) {
if ( $_SERVER['SERVER_SOFTWARE'] == 'Apache' && isset( $_SERVER['GD_PHP_HANDLER'] ) && $_SERVER['DOCUMENT_ROOT'] == '/var/www' ) {
update_option( 'wple_no_pricing', 1 );
}
}
update_option( 'wple_have_cpanel', 0 );
}
}
public static function wple_mx_support()
{
$mxpost = wp_remote_post( site_url( '/', 'https' ), array(
'headers' => 'Content-Type: application/csp-report',
) );
if ( is_wp_error( $mxpost ) || isset( $mxpost['response'] ) && isset( $mxpost['response']['code'] ) && $mxpost['response']['code'] != 200 ) {
update_option( 'wple_mx', 0 );
} else {
update_option( 'wple_mx', 1 );
}
}
public static function wple_active_ssl_info()
{
$html = '';
$context = stream_context_create( array(
"ssl" => array(
"capture_peer_cert" => true,
),
) );
$rootdomain = WPLE_Trait::get_root_domain( true );
//$rootdomain = 'wpencryption.com';
$errno = $errstr = '';
$getssl = stream_socket_client(
"ssl://{$rootdomain}:443",
$errno,
$errstr,
30,
STREAM_CLIENT_CONNECT,
$context
);
if ( !$getssl ) {
$html = '<div class="wple-active-ssl">
<h2>SSL INFO</h2>
<strong>We could not find any VALID SSL certificate installed on your domain.</strong><br><br>
</div>';
return $html;
}
$params = stream_context_get_params( $getssl );
$activecert = openssl_x509_parse( $params['options']['ssl']['peer_certificate'] );
$altnames = str_replace( 'DNS:', '', $activecert['extensions']['subjectAltName'] );
$altnames = explode( ',', $altnames );
$html = '<div class="wple-active-ssl">
<h2>SSL INFO</h2>
<p>Details of <b>ACTIVE</b> SSL installed & running on your site.</p>
<b>Issued To</b>: ' . esc_html( $activecert['subject']['CN'] ) . '<br><br>';
$html .= '<b>Issuer</b>: ' . esc_html( $activecert['issuer']['O'] ) . '<br><br>';
$html .= '<b>Alternative Names Covered</b>: <br>';
foreach ( $altnames as $domain ) {
$html .= esc_html( $domain ) . '<br>';
}
$from = date( 'd-m-Y', $activecert['validFrom_time_t'] );
$to = date( 'd-m-Y', $activecert['validTo_time_t'] );
$html .= '<br><b>Valid From</b>: ' . esc_html( $from ) . '<br><br>';
$html .= '<b>Valid Till</b>: ' . esc_html( $to ) . '<br><br>';
//5.8.4 - reschedule reminder based on installed SSL instead of LE cert generated
if ( wp_next_scheduled( 'wple_ssl_reminder_notice' ) ) {
wp_clear_scheduled_hook( 'wple_ssl_reminder_notice' );
}
wp_schedule_single_event( strtotime( '-10 day', strtotime( $to ) ), 'wple_ssl_reminder_notice' );
$html .= '</div>';
return $html;
}
/**
* Local check all DNS records
*
* @since 5.7.16
* @return boolean
*/
public static function wple_verify_dns_records( $opts = array() )
{
$toVerify = ( count( $opts ) > 0 ? $opts : get_option( 'wple_opts' ) );
if ( array_key_exists( 'dns_challenges', $toVerify ) && !empty($toVerify['dns_challenges']) ) {
$toVerify = $dnspendings = $toVerify['dns_challenges'];
//array
foreach ( $toVerify as $index => $item ) {
$domain_code = explode( '||', $item );
$acme = '_acme-challenge.' . esc_html( $domain_code[0] );
$requestURL = 'https://dns.google.com/resolve?name=' . addslashes( $acme ) . '&type=TXT';
$handle = curl_init();
curl_setopt( $handle, CURLOPT_URL, $requestURL );
curl_setopt( $handle, CURLOPT_RETURNTRANSFER, true );
curl_setopt( $handle, CURLOPT_FOLLOWLOCATION, true );
$response = json_decode( trim( curl_exec( $handle ) ) );
if ( $response->Status === 0 && isset( $response->Answer ) ) {
//if ($answer->type == 16) {
$found = 'Pending';
foreach ( $response->Answer as $answer ) {
$livecode = str_ireplace( '"', '', $answer->data );
if ( $livecode == $domain_code[1] ) {
unset( $dnspendings[$index] );
$found = 'OK';
}
}
WPLE_Trait::wple_logger( "\n" . esc_html( $requestURL . ' should return ' . $domain_code[1] . ' -> ' . $found ) . "\n" );
} else {
$ledebug = WPLE_Trait::wple_lets_debug( 'dns-01' );
WPLE_Trait::wple_logger( $ledebug );
return false;
}
}
if ( empty($dnspendings) ) {
WPLE_Trait::wple_logger(
"Local check - All DNS challenges verified\n",
'success',
'a',
false
);
return true;
} else {
$ledebug = WPLE_Trait::wple_lets_debug( 'dns-01' );
WPLE_Trait::wple_logger( $ledebug );
return false;
}
} else {
if ( empty($toVerify['dns_challenges']) ) {
WPLE_Trait::wple_logger(
"Local check - DNS challenges empty\n",
'success',
'a',
false
);
return false;
}
}
return false;
}
/**
* Check out our plugins
*
* @since 5.8.5
* @return html
*/
public static function wple_other_plugins( $sslhealthpage = false )
{
$action = 'install-plugin';
$cklsslug = 'cookieless-analytics';
$cklspluginstallURL = wp_nonce_url( add_query_arg( array(
'action' => $action,
'plugin' => $cklsslug,
), admin_url( 'update.php' ) ), $action . '_' . $cklsslug );
$baboslug = 'backup-bolt';
$babopluginstallURL = wp_nonce_url( add_query_arg( array(
'action' => $action,
'plugin' => $baboslug,
), admin_url( 'update.php' ) ), $action . '_' . $baboslug );
$utmsource = ( $sslhealthpage ? 'sslhealth' : 'footerlink' );
$html = '<div id="ourotherplugin">
<h4>Check out our awesome plugins</h4>
<ul>
<li><a href="https://wordpress.org/plugins/cookieless-analytics/" target="_blank"><img src="' . WPLE_URL . 'admin/assets/cookieless-analytics.png"/> - Privacy friendly WordPress Analytics</a><span class="otherplugs"><a href="' . esc_url( $cklspluginstallURL ) . '">Install Plugin</a></span></li>
<li><a href="https://oneclickplugins.com/go-viral/?utc_campaign=wordpress&utm_source=' . $utmsource . '&utm_medium=wpadmin" target="_blank"><img src="' . WPLE_URL . 'admin/assets/goviral-logo.png"/> - All in one social toolkit</a><span class="otherplugs"><a href="https://oneclickplugins.com/go-viral/?utc_campaign=wordpress&utm_source=' . $utmsource . '&utm_medium=wpadmin" target="_blank">View details</a></span></li>
<li><a href="https://wordpress.org/plugins/backup-bolt/" target="_blank"><img src="' . WPLE_URL . 'admin/assets/backup-bolt.png"/> - One click backups</a><span class="otherplugs"><a href="' . esc_url( $babopluginstallURL ) . '">Install Plugin</a></span></li>
</ul>
</div>';
return $html;
}
}