David A. Windham
david
/
wp
1
0
Fork 0
Files Issues 0 Pull Requests 0
Tree: bded2ab4dd
Branches Tags
wp
/
app
/
plugins
/
keyring
/
keyring.php

keyring.php 10 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307 
  1. <?php
    2. 

  2. /*
    3. 

  3. Plugin Name: Keyring
    4. 

  4. Plugin URI: http://dentedreality.com.au/projects/wp-keyring/
    5. 

  5. Description: Keyring helps you manage your keys. It provides a generic, very hookable framework for connecting to remote systems and managing your access tokens, username/password combos etc for those services. On its own it doesn't do much, but it enables other plugins to do things that require authorization to act on your behalf.
    6. 

  6. Version: 1.5.1
    7. 

  7. Author: Beau Lebens
    8. 

  8. Author URI: http://dentedreality.com.au
    9. 

  9. */
    10. 

  10. 

  11. // Define this in your wp-config (and set to true) to enable debugging
    12. 

  12. defined( 'KEYRING__DEBUG_MODE' ) or define( 'KEYRING__DEBUG_MODE', false );
    13. 

  13. 

  14. // The name of a class which extends Keyring_Store to handle storage/manipulation of tokens.
    15. 

  15. // Optionally define this in your wp-config.php or some other global config file.
    16. 

  16. defined( 'KEYRING__TOKEN_STORE' ) or define( 'KEYRING__TOKEN_STORE', 'Keyring_SingleStore' );
    17. 

  17. 

  18. // Keyring can be run in "headless" mode, which just avoids creating any UI, and leaves
    19. 

  19. // that up to you. Defaults to off (provides its own basic UI).
    20. 

  20. defined( 'KEYRING__HEADLESS_MODE' ) or define( 'KEYRING__HEADLESS_MODE', false );
    21. 

  21. 

  22. // Debug/messaging levels. Don't mess with these
    23. 

  23. define( 'KEYRING__DEBUG_NOTICE', 1 );
    24. 

  24. define( 'KEYRING__DEBUG_WARN',   2 );
    25. 

  25. define( 'KEYRING__DEBUG_ERROR',  3 );
    26. 

  26. 

  27. // Indicates Keyring is installed/active so that other plugins can detect it
    28. 

  28. define( 'KEYRING__VERSION', '1.5.1' );
    29. 

  29. 

  30. /**
    31. 

  31.  * Core Keyring class that handles UI and the general flow of requesting access tokens etc
    32. 

  32.  * to manage access to remote services.
    33. 

  33.  *
    34. 

  34.  * @package Keyring
    35. 

  35.  */
    36. 

  36. class Keyring {
    37. 

  37. 	protected $registered_services = array();
    38. 

  38. 	protected $store               = false;
    39. 

  39. 	protected $errors              = array();
    40. 

  40. 	protected $messages            = array();
    41. 

  41. 	var $admin_page                = 'keyring';
    42. 

  42. 

  43. 	function __construct() {
    44. 

  44. 		if ( ! KEYRING__HEADLESS_MODE ) {
    45. 

  45. 			require_once dirname( __FILE__ ) . '/admin-ui.php';
    46. 

  46. 			Keyring_Admin_UI::init();
    47. 

  47. 

  48. 			add_filter( 'keyring_admin_url', function( $url ) {
    49. 

  49. 				return admin_url( 'tools.php?page=' . Keyring::init()->admin_page );
    50. 

  50. 			} );
    51. 

  51. 		}
    52. 

  52. 

  53. 		// This is used internally to create URLs, and also to know when to
    54. 

  54. 		// attach handers. @see admin_url() and request_handlers()
    55. 

  55. 		$this->admin_page = apply_filters( 'keyring_admin_page', 'keyring' );
    56. 

  56. 	}
    57. 

  57. 

  58. 	static function &init( $force_load = false ) {
    59. 

  59. 		static $instance = false;
    60. 

  60. 

  61. 		if ( !$instance ) {
    62. 

  62. 			if ( ! KEYRING__HEADLESS_MODE )
    63. 

  63. 				load_plugin_textdomain( 'keyring', false, dirname( plugin_basename( __FILE__ ) ) . '/languages/' );
    64. 

  64. 			$instance = new Keyring;
    65. 

  65. 

  66. 			// Keyring is being loaded 'late', so we need to do some extra set-up
    67. 

  67. 			if ( did_action( 'init' ) || $force_load ) {
    68. 

  68. 				$instance->plugins_loaded();
    69. 

  69. 				do_action( 'keyring_load_services' );
    70. 

  70. 			}
    71. 

  71. 		} else {
    72. 

  72. 			if ( $force_load ) {
    73. 

  73. 				$instance->plugins_loaded();
    74. 

  74. 				do_action( 'keyring_load_services' );
    75. 

  75. 			}
    76. 

  76. 		}
    77. 

  77. 

  78. 		return $instance;
    79. 

  79. 	}
    80. 

  80. 

  81. 	static function plugins_loaded() {
    82. 

  82. 		// Load stores early so we can confirm they're loaded correctly
    83. 

  83. 		require_once dirname( __FILE__ ) . '/store.php';
    84. 

  84. 		do_action( 'keyring_load_token_stores' );
    85. 

  85. 		if ( !defined( 'KEYRING__TOKEN_STORE' ) || !class_exists( KEYRING__TOKEN_STORE ) || !in_array( 'Keyring_Store', class_parents( KEYRING__TOKEN_STORE ) ) )
    86. 

  86. 			wp_die( sprintf( __( 'Invalid <code>KEYRING__TOKEN_STORE</code> specified. Please make sure <code>KEYRING__TOKEN_STORE</code> is set to a valid classname for handling token storage in <code>%s</code> (or <code>wp-config.php</code>)', 'keyring' ), __FILE__ ) );
    87. 

  87. 

  88. 		// Load base token and service definitions + core services
    89. 

  89. 		require_once dirname( __FILE__ ) . '/token.php';
    90. 

  90. 		require_once dirname( __FILE__ ) . '/service.php'; // Triggers a load of all core + extended service definitions
    91. 

  91. 

  92. 		// Initiate Keyring
    93. 

  93. 		add_action( 'init', array( 'Keyring', 'init' ), 1 );
    94. 

  94. 

  95. 		// Load external Services (plugins etc should hook to this to define new ones/extensions)
    96. 

  96. 		add_action( 'init', function() {
    97. 

  97. 			do_action( 'keyring_load_services' );
    98. 

  98. 		}, 2 );
    99. 

  99. 

  100. 		/**
    101. 

  101. 		 * And trigger request handlers, which plugins and extended Services use to handle UI,
    102. 

  102. 		 * redirects, errors etc.
    103. 

  103. 		 * @see ::request_handlers()
    104. 

  104. 		 */
    105. 

  105. 		add_action( 'admin_init', array( 'Keyring', 'request_handlers' ), 100 );
    106. 

  106. 	}
    107. 

  107. 

  108. 	/**
    109. 

  109. 	 * Core request handler which is the crux of everything. An action is called
    110. 

  110. 	 * here for almost everything Keyring does, so you can use it to intercept
    111. 

  111. 	 * almost everything. Based entirely on $_REQUEST[page|action|service]
    112. 

  112. 	 */
    113. 

  113. 	static function request_handlers() {
    114. 

  114. 		global $current_user;
    115. 

  115. 

  116. 		if ( defined( 'KEYRING__FORCE_USER' ) && KEYRING__FORCE_USER && in_array( $_REQUEST['action'], array( 'request', 'verify' ) ) ) {
    117. 

  117. 			global $current_user;
    118. 

  118. 			$real_user = $current_user->ID;
    119. 

  119. 			wp_set_current_user( KEYRING__FORCE_USER );
    120. 

  120. 		}
    121. 

  121. 

  122. 		if (
    123. 

  123. 				!empty( $_REQUEST['action'] )
    124. 

  124. 			&&
    125. 

  125. 				in_array( $_REQUEST['action'], apply_filters( 'keyring_core_actions', array( 'request', 'verify', 'created', 'delete', 'manage' ) ) )
    126. 

  126. 			&&
    127. 

  127. 				!empty( $_REQUEST['service'] )
    128. 

  128. 			&&
    129. 

  129. 				in_array( $_REQUEST['service'], array_keys( Keyring::get_registered_services() ) )
    130. 

  130. 		) {
    131. 

  131. 			// We have an action here to allow us to do things pre-authorization, just in case
    132. 

  132. 			do_action( "pre_keyring_{$_REQUEST['service']}_{$_REQUEST['action']}", $_REQUEST );
    133. 

  133. 

  134. 			// Core nonce check required for everything. "keyring-ACTION" is the kr_nonce format
    135. 

  135. 			if ( !isset( $_REQUEST['kr_nonce'] ) || !wp_verify_nonce( $_REQUEST['kr_nonce'], 'keyring-' . $_REQUEST['action'] ) ) {
    136. 

  136. 				Keyring::error( __( 'Invalid/missing Keyring core nonce. All core actions require a valid nonce.', 'keyring' ) );
    137. 

  137. 				exit;
    138. 

  138. 			}
    139. 

  139. 

  140. 			Keyring_Util::debug( "keyring_{$_REQUEST['service']}_{$_REQUEST['action']}" );
    141. 

  141. 			Keyring_Util::debug( $_GET );
    142. 

  142. 			do_action( "keyring_{$_REQUEST['service']}_{$_REQUEST['action']}", $_REQUEST );
    143. 

  143. 

  144. 			if ( 'delete' == $_REQUEST['action'] )
    145. 

  145. 				do_action( "keyring_connection_deleted", $_REQUEST['service'], $_REQUEST );
    146. 

  146. 		}
    147. 

  147. 

  148. 		if ( defined( 'KEYRING__FORCE_USER' ) && KEYRING__FORCE_USER && in_array( $_REQUEST['action'], array( 'request', 'verify' ) ) )
    149. 

  149. 			wp_set_current_user( $real_user );
    150. 

  150. 	}
    151. 

  151. 

  152. 	static function register_service( Keyring_Service $service ) {
    153. 

  153. 		if ( Keyring_Util::is_service( $service ) ) {
    154. 

  154. 			Keyring::init()->registered_services[ $service->get_name() ] = $service;
    155. 

  155. 			return true;
    156. 

  156. 		}
    157. 

  157. 		return false;
    158. 

  158. 	}
    159. 

  159. 

  160. 	static function get_registered_services() {
    161. 

  161. 		return Keyring::init()->registered_services;
    162. 

  162. 	}
    163. 

  163. 

  164. 	static function get_service_by_name( $name ) {
    165. 

  165. 		$keyring = Keyring::init();
    166. 

  166. 		if ( !isset( $keyring->registered_services[ $name ] ) )
    167. 

  167. 			return null;
    168. 

  168. 

  169. 		return $keyring->registered_services[ $name ];
    170. 

  170. 	}
    171. 

  171. 

  172. 	static function get_token_store() {
    173. 

  173. 		$keyring = Keyring::init();
    174. 

  174. 

  175. 		if ( !$keyring->store )
    176. 

  176. 			$keyring->store = call_user_func( array( KEYRING__TOKEN_STORE, 'init' ) );
    177. 

  177. 

  178. 		return $keyring->store;
    179. 

  179. 	}
    180. 

  180. 

  181. 	static function message( $str ) {
    182. 

  182. 		$keyring = Keyring::init();
    183. 

  183. 		$keyring->messages[] = $str;
    184. 

  184. 	}
    185. 

  185. 

  186. 	/**
    187. 

  187. 	 * Generic error handler/trigger.
    188. 

  188. 	 * @param  String $str	Informational message (user-readable)
    189. 

  189. 	 * @param  array  $info Additional information relating to the error.
    190. 

  190. 	 */
    191. 

  191. 	static function error( $str, $info = array() ) {
    192. 

  192. 		$keyring = Keyring::init();
    193. 

  193. 		$keyring->errors[] = $str;
    194. 

  194. 		do_action( 'keyring_error', $str, $info, isset( $this ) ? $this : null );
    195. 

  195. 		wp_die( $str, __( 'Keyring Error', 'keyring' ) );
    196. 

  196. 		exit;
    197. 

  197. 	}
    198. 

  198. 

  199. 	function has_errors() {
    200. 

  200. 		return count( $this->errors );
    201. 

  201. 	}
    202. 

  202. 

  203. 	function has_messages() {
    204. 

  204. 		return count( $this->messages );
    205. 

  205. 	}
    206. 

  206. 

  207. 	function get_messages() {
    208. 

  208. 		return $this->messages;
    209. 

  209. 	}
    210. 

  210. 

  211. 	function get_errors() {
    212. 

  212. 		return $this->errors;
    213. 

  213. 	}
    214. 

  214. }
    215. 

  215. 

  216. class Keyring_Util {
    217. 

  217. 	static function debug( $str, $level = KEYRING__DEBUG_NOTICE ) {
    218. 

  218. 		if ( !KEYRING__DEBUG_MODE )
    219. 

  219. 			return;
    220. 

  220. 

  221. 		if ( is_object( $str ) || is_array( $str ) )
    222. 

  222. 			$str = print_r( $str, true );
    223. 

  223. 

  224. 		switch ( $level ) {
    225. 

  225. 		case KEYRING__DEBUG_WARN :
    226. 

  226. 			echo "<div style='border:solid 1px #000; padding: 5px; background: #eee;'>Keyring Warning: $str</div>";
    227. 

  227. 			break;
    228. 

  228. 		case KEYRING__DEBUG_ERROR :
    229. 

  229. 			wp_die( '<h1>Keyring Error:</h1>' . '<p>' . $str . '</p>' );
    230. 

  230. 			exit;
    231. 

  231. 		}
    232. 

  232. 

  233. 		error_log( "Keyring: $str" );
    234. 

  234. 	}
    235. 

  235. 

  236. 	static function is_service( $service ) {
    237. 

  237. 		if ( is_object( $service ) && is_subclass_of( $service, 'Keyring_Service' ) )
    238. 

  238. 			return true;
    239. 

  239. 

  240. 		return false;
    241. 

  241. 	}
    242. 

  242. 

  243. 	static function has_custom_ui( $service, $action ) {
    244. 

  244. 		return has_action( "keyring_{$service}_{$action}_ui" );
    245. 

  245. 	}
    246. 

  246. 

  247. 	/**
    248. 

  248. 	 * Get a URL to the Keyring admin UI, works kinda like WP's admin_url()
    249. 

  249. 	 *
    250. 

  250. 	 * @param string $service Shortname of a specific service.
    251. 

  251. 	 * @return URL to Keyring admin UI (main listing, or specific service verify process)
    252. 

  252. 	 */
    253. 

  253. 	static function admin_url( $service = false, $params = array() ) {
    254. 

  254. 		$url = apply_filters( 'keyring_admin_url', admin_url( '' ) );
    255. 

  255. 

  256. 		if ( $service )
    257. 

  257. 			$url = add_query_arg( array( 'service' => $service ), $url );
    258. 

  258. 

  259. 		if ( count( $params ) )
    260. 

  260. 			$url = add_query_arg( $params, $url );
    261. 

  261. 

  262. 		return $url;
    263. 

  263. 	}
    264. 

  264. 

  265. 	static function connect_to( $service, $for ) {
    266. 

  266. 		Keyring_Util::debug( 'Connect to: ' . $service );
    267. 

  267. 		// Redirect into Keyring's auth handler if a valid service is provided
    268. 

  268. 		$kr_nonce = wp_create_nonce( 'keyring-request' );
    269. 

  269. 		$request_nonce = wp_create_nonce( 'keyring-request-' . $service );
    270. 

  270. 		wp_safe_redirect(
    271. 

  271. 			Keyring_Util::admin_url(
    272. 

  272. 				$service,
    273. 

  273. 				array(
    274. 

  274. 					'action'   => 'request',
    275. 

  275. 					'kr_nonce' => $kr_nonce,
    276. 

  276. 					'nonce'    => $request_nonce,
    277. 

  277. 					'for'      => $for
    278. 

  278. 				)
    279. 

  279. 			)
    280. 

  280. 		);
    281. 

  281. 		exit;
    282. 

  282. 	}
    283. 

  283. 

  284. 	static function token_select_box( $tokens, $name, $create = false ) {
    285. 

  285. 		?><select name="<?php echo esc_attr( $name ); ?>" id="<?php echo esc_attr( $name ); ?>">
    286. 

  286. 		<?php if ( $create ) : ?>
    287. 

  287. 			<option value="new"><?php _e( 'Create a new connection&hellip;', 'keyring' ); ?></option>
    288. 

  288. 		<?php endif; ?>
    289. 

  289. 		<?php foreach ( (array) $tokens as $token ) : ?>
    290. 

  290. 			<option value="<?php echo $token->get_uniq_id(); ?>"><?php echo $token->get_display(); ?></option>
    291. 

  291. 		<?php endforeach; ?>
    292. 

  292. 		</select><?php
    293. 

  293. 	}
    294. 

  294. 

  295. 	static function is_error( $obj ) {
    296. 

  296. 		return is_a( $obj, 'Keyring_Error' );
    297. 

  297. 	}
    298. 

  298. }
    299. 

  299. 

  300. /**
    301. 

  301.  * Stub implementation of an error object. May at some point get custom, but
    302. 

  302.  * treat it like a normal WP_Error for now.
    303. 

  303.  */
    304. 

  304. class Keyring_Error extends WP_Error { }
    305. 

  305. 

  306. // This is the main hook that kicks off everything. Needs to be early so we have time to load everything.
    307. 

  307. add_action( 'plugins_loaded', array( 'Keyring', 'plugins_loaded' ) );
    308.