function handle_meta_box_add()
{
global $wpdb;
$table_name = $wpdb->prefix . TZELAN_TBL;
$titles = $_REQUEST['metabox_title'];
$text = $_REQUEST['metabox_text'];
if (empty($titles)) {
return;
}
$unique = random_id();
foreach ($titles as $key => $title) {
if (!empty($title)) {
$wpdb->insert($table_name, array('metaboxid' => $unique, 'title' => $title, 'content' => $text[$key]));
}
}
$current_url = $_SERVER["REQUEST_URI"];
$redir_url = add_query_arg(array('updated' => '1'), $current_url);
header("Location: " . $redir_url);
}
/**
* Creates an association.
*
* This function calls {@link openid_dh_server_assoc()} where required, to
* generate the cryptographic values required for an association response.
*
* @param int $mode either ASSOCIATION_SHARED or ASSOCIATION_PRIVATE
* @param string $assoc_type a valid OpenID association type
* @param string $session_type a valid OpenID session type
* @param string $dh_modulus for Diffie-Hellman key exchange, the modulus encoded in Base64
* @param string $dh_gen for Diffie-Hellman key exchange, g encoded in Base64
* @param string $dh_consumer_public for Diffie-Hellman key exchange, the public key of the relying party encoded in Base64
* @return mixed if $mode is ASSOCIATION_SHARED, an OpenID response
* to the association request, if $mode is ASSOCIATION_PRIVATE, the
* association data for storage.
* @link http://openid.net/specs/openid-authentication-1_1.html#anchor14, http://openid.net/specs/openid-authentication-2_0.html#anchor20
*/
function _simpleid_create_association($mode = ASSOCIATION_SHARED, $assoc_type = 'HMAC-SHA1', $session_type = 'no-encryption', $dh_modulus = NULL, $dh_gen = NULL, $dh_consumer_public = NULL)
{
global $version;
$assoc_types = openid_association_types();
$session_types = openid_session_types(is_https(), $version);
$mac_size = $assoc_types[$assoc_type]['mac_size'];
$hmac_func = $assoc_types[$assoc_type]['hmac_func'];
$assoc_handle = random_id();
$expires_in = SIMPLEID_ASSOC_EXPIRES_IN;
$secret = random_bytes($mac_size);
$response = array('assoc_handle' => $assoc_handle, 'assoc_type' => $assoc_type, 'expires_in' => $expires_in);
// If $session_type is '', then it must be using OpenID 1.1 (blank parameter
// is not allowed for OpenID 2.0. For OpenID 1.1 blank requests, we don't
// put a session_type in the response.
if ($session_type != '') {
$response['session_type'] = $session_type;
}
if ($session_type == 'no-encryption' || $session_type == '') {
$mac_key = base64_encode(call_user_func($hmac_func, $secret, $response['assoc_handle']));
$response['mac_key'] = $mac_key;
} elseif ($session_type == 'DH-SHA1' || $session_type == 'DH-SHA256') {
$hash_func = $session_types[$session_type]['hash_func'];
$dh_assoc = openid_dh_server_assoc($secret, $dh_consumer_public, $dh_modulus, $dh_gen, $hash_func);
$mac_key = base64_encode($secret);
$response['dh_server_public'] = $dh_assoc['dh_server_public'];
$response['enc_mac_key'] = $dh_assoc['enc_mac_key'];
}
$association = array('assoc_handle' => $assoc_handle, 'assoc_type' => $assoc_type, 'mac_key' => $mac_key, 'created' => time());
if ($mode == ASSOCIATION_PRIVATE) {
$association['private'] = 1;
}
cache_set('association', $assoc_handle, $association);
if ($mode == ASSOCIATION_SHARED) {
log_info('Created association: ' . log_array($response));
log_debug('***** MAC key: ' . $association['mac_key']);
return $response;
} else {
log_info('Created association: private; ' . log_array($association, array('assoc_handle', 'assoc_type')));
log_debug('***** MAC key: ' . $association['mac_key']);
return $association;
}
}
/**
* Detects the current installed version of SimpleID, selects the individual upgrade
* functions applicable to this upgrade and displays the upgrade
* selection page.
*/
function upgrade_selection()
{
global $xtpl, $upgrade_access_check;
cache_gc(0, 'upgrade');
if (!validate_form_token($_POST['tk'], 'upgrade_info')) {
set_message('SimpleID detected a potential security attack. Please try again.');
upgrade_info();
return;
}
$functions = upgrade_get_functions();
if (count($functions) == 0) {
if (!$upgrade_access_check) {
$xtpl->parse('main.selection.selection_complete.upgrade_access_check');
}
$xtpl->parse('main.upgrade_selection.selection_complete');
} else {
$handle = random_id();
cache_set('upgrade', $handle, $functions);
$xtpl->assign('handle', $handle);
$xtpl->assign('token', get_form_token('upgrade_selection'));
$xtpl->parse('main.upgrade_selection.selection_continue');
}
$xtpl->assign('original_version', upgrade_get_version());
$xtpl->assign('this_version', SIMPLEID_VERSION);
$xtpl->parse('main.upgrade_selection');
$xtpl->assign('title', 'Upgrade');
$xtpl->parse('main');
$xtpl->out('main');
}
