public function test_file_read_adds_error() { $_FILES['sso_idp']['tmp_name'] = tempnam(sys_get_temp_dir(), "TEST"); list($options, $errors) = $this->admin->check_option($this->options); $this->assertNotEmpty($errors, "No errors when error was expected"); $this->assertStringStartsWith("TRANSLATED [The SSO Profile file provided had an error being parsed]: Could not load given string as XML into DOMDocument", $errors[0]); unlink($_FILES['sso_idp']['tmp_name']); }
/** * @dataProvider provider_implementation_types_that_require_private_key * * @param $implementation_type */ public function test_no_private_key_errors_for_implementation_types_that_require_private_key($implementation_type) { $this->options[LaunchKey_WP_Options::OPTION_PRIVATE_KEY] = null; $this->options[LaunchKey_WP_Options::OPTION_IMPLEMENTATION_TYPE] = LaunchKey_WP_Implementation_Type::OAUTH; list($actual, $errors) = $this->client->check_option(array('implementation_type' => $implementation_type)); $this->assertContains('TRANSLATED [Private Key is required]', $errors); $this->assertEquals($implementation_type, $actual[LaunchKey_WP_Options::OPTION_IMPLEMENTATION_TYPE], 'check_option returned and unexpected implementation type'); }
/** * Compile the data that will be used by the front end to generate a QR Code for WordPress auto-config. * @since 1.4.0 */ public function wizard_easy_setup_qr_code() { if (isset($_POST['nonce'])) { if ($this->wp_facade->wp_verify_nonce($_POST['nonce'], static::WIZARD_NONCE_KEY) && $this->wp_facade->current_user_can('manage_options')) { $lk_nonce = $this->launchkey_client->auth()->nonce(); $this->update_option(static::EASY_SETUP_OPTION, array('nonce' => $lk_nonce, 'username' => $this->wp_facade->wp_get_current_user()->user_login)); $payload = json_encode(array('nonce' => $lk_nonce->getNonce(), 'payload' => array('callback_url' => $this->admin->get_callback_url(), 'rocket_name' => $this->wp_facade->get_bloginfo('name')))); $qr_data = base64_encode($payload); $response['nonce'] = $this->wp_facade->wp_create_nonce(static::WIZARD_NONCE_KEY); $response['qr_code'] = $qr_data; } else { $response['errors'] = $this->wp_facade->__("An error occurred submitting the page. Please refresh the page and submit again."); } $this->wp_facade->wp_send_json($response); } }
public function wizard_submit_ajax() { if (isset($_POST['nonce'])) { if ($this->wp_facade->wp_verify_nonce($_POST['nonce'], static::WIZARD_NONCE_KEY)) { list($options, $errors) = $this->admin->check_option($_POST); if ($errors) { $response["errors"] = $errors; } else { $this->wp_facade->update_option(LaunchKey_WP_Admin::OPTION_KEY, $options); } $response['nonce'] = $this->wp_facade->wp_create_nonce(static::WIZARD_NONCE_KEY); } else { $response["errors"] = $this->wp_facade->__("An error occurred submitting the page. Please refresh the page and submit again."); } $this->wp_facade->wp_send_json($response); } }
public function test_register_actions_registers_add_launchkey_network_admin_menus_method_for_admin_menu_when_multi_site1() { $admin = new LaunchKey_WP_Admin($this->facade, $this->template, $this->language_domain, true); $admin->register_actions(); Phake::verify($this->facade)->add_action('network_admin_menu', array($admin, 'add_launchkey_network_admin_menus')); }
/** * Initialize LaunchKey WordPress Plugin * * This function will perform the entire initialization for the plugin. The initialization is encapsulated into * a funciton to protect against global variable collision. * * @since 1.0.0 * Enclose plug-in initialization to protect against global variable corruption */ function launchkey_plugin_init() { global $wpdb; /** * Register activation hooks for the plugin * @since 1.1.0 */ register_activation_hook(__FILE__, 'launchkey_create_tables'); /** * Remove the scheduled cron * @since 1.1.0 */ register_deactivation_hook(__FILE__, 'launchkey_cron_remove'); /** * @since 1.1.0 * Add the cron hook and schedule if not scheduled */ add_action('launchkey_cron_hook', 'launchkey_cron'); if (!wp_next_scheduled('launchkey_cron_hook')) { wp_schedule_event(time(), 'hourly', 'launchkey_cron_hook'); } /** * Language domain for the plugin */ $language_domain = 'launchkey'; /** * Register plugin text domain with language files * * @see load_plugin_textdomain * @link https://developer.wordpress.org/reference/hooks/plugins_loaded/ */ add_action('plugins_loaded', function () use($language_domain) { load_plugin_textdomain($language_domain, false, plugin_basename(__FILE__) . '/languages/'); }); /** * Create an AES encryption class for encryption/decryption of the secret options * @link https://docs.launchkey.com/glossary.html#term-aes */ $crypt_aes = new \phpseclib\Crypt\AES(); /** * Use an MD5 hash of the auth key as the crypto key. The crypto key is used as it would normally affect all auth * procedures as it is used as a salt for passwords. An md5 hash is used as it will be a constant value based on * the AUTH_KEY but guaranteed to be exactly thirty-two (32) characters as is needed by AES encryption. */ $crypt_aes->setKey(md5(AUTH_KEY)); // Create an options handler that will encrypt and decrypt the plugin options as necessary $options_handler = new LaunchKey_WP_Options($crypt_aes); /** * The pre_update_option_launchkey filter will process the "launchkey" option directly * before updating the data in the database. * * @since 1.0.0 * @link https://developer.wordpress.org/reference/hooks/pre_update_option_option/ * @see LaunchKey_WP_Options::pre_update_option_filter */ add_filter('pre_update_option_launchkey', array($options_handler, 'pre_update_option_filter')); add_filter('pre_update_site_option_launchkey', array($options_handler, 'pre_update_option_filter')); /** * The pre_update_option_filter filter will process the "launchkey" option directly * before adding the data in the database. * * @since 1.0.0 * @link https://developer.wordpress.org/reference/hooks/pre_update_option_option/ * @see LaunchKey_WP_Options::pre_update_option_filter */ add_filter('pre_add_option_launchkey', array($options_handler, 'pre_update_option_filter')); add_filter('pre_add_site_option_launchkey', array($options_handler, 'pre_update_option_filter')); /** * The option_launchkey filter will process the "launchkey" option directly * after retrieving the data from the database. * * @since 1.0.0 * @link https://developer.wordpress.org/reference/hooks/option_option/ * @see LaunchKey_WP_Options::post_get_option_filter */ add_filter('option_launchkey', array($options_handler, 'post_get_option_filter')); add_filter('site_option_launchkey', array($options_handler, 'post_get_option_filter')); $is_multi_site = is_multisite() && is_plugin_active_for_network(plugin_basename(__FILE__)); $options = $is_multi_site ? get_site_option(LaunchKey_WP_Admin::OPTION_KEY) : get_option(LaunchKey_WP_Admin::OPTION_KEY); /** * Handle upgrades if in the admin and not the latest version */ if (is_admin() && launchkey_is_activated() && $options && $options[LaunchKey_WP_Options::OPTION_VERSION] < 1.1) { launchkey_create_tables(); } /** * If the pre-1.0.0 option style was already used, create a 1.0.0 option and remove the old options. They are * removed as the secret_key was stored plain text in the database. * * @since 1.0.0 */ if (get_option('launchkey_app_key') || get_option('launchkey_secret_key')) { $launchkey_options[LaunchKey_WP_Options::OPTION_ROCKET_KEY] = get_option('launchkey_app_key'); $launchkey_options[LaunchKey_WP_Options::OPTION_SECRET_KEY] = get_option('launchkey_secret_key'); $launchkey_options[LaunchKey_WP_Options::OPTION_SSL_VERIFY] = defined('LAUNCHKEY_SSLVERIFY') && LAUNCHKEY_SSLVERIFY || true; $launchkey_options[LaunchKey_WP_Options::OPTION_IMPLEMENTATION_TYPE] = LaunchKey_WP_Implementation_Type::OAUTH; $launchkey_options[LaunchKey_WP_Options::OPTION_LEGACY_OAUTH] = true; $updated = $is_multi_site ? update_network_option(LaunchKey_WP_Admin::OPTION_KEY, $launchkey_options) : update_option(LaunchKey_WP_Admin::OPTION_KEY, $launchkey_options); if ($updated) { delete_option('launchkey_app_key'); delete_option('launchkey_secret_key'); } else { throw new RuntimeException('Unable to upgrade LaunchKey meta-data. Failed to save setting ' . LaunchKey_WP_Admin::OPTION_KEY); } } elseif (!$options) { $is_multi_site ? add_site_option(LaunchKey_WP_Admin::OPTION_KEY, array()) : add_option(LaunchKey_WP_Admin::OPTION_KEY, array()); $options = $is_multi_site ? get_site_option(LaunchKey_WP_Admin::OPTION_KEY) : get_option(LaunchKey_WP_Admin::OPTION_KEY); } /** * Get the WP global facade * @see LaunchKey_WP_Global_Facade */ $facade = new LaunchKey_WP_Global_Facade(); /** * Create a templating object and point it at the correct directory for template files. * * @see LaunchKey_WP_Template */ $template = new LaunchKey_WP_Template(__DIR__ . '/templates', $facade, $language_domain); // Prevent XXE Processing Vulnerability libxml_disable_entity_loader(true); // Get the plugin options to determine which authentication implementation should be utilized $logger = new LaunchKey_WP_Logger($facade); $launchkey_client = null; $client = null; // Only register the pieces that need to interact with LaunchKey if it's been configured if (LaunchKey_WP_Implementation_Type::SSO === $options[LaunchKey_WP_Options::OPTION_IMPLEMENTATION_TYPE] && !empty($options[LaunchKey_WP_Options::OPTION_SSO_ENTITY_ID])) { $container = new LaunchKey_WP_SAML2_Container($logger); SAML2_Compat_ContainerSingleton::setContainer($container); $securityKey = new XMLSecurityKey(XMLSecurityKey::RSA_SHA1, array('type' => 'public')); $securityKey->loadKey($options[LaunchKey_WP_Options::OPTION_SSO_CERTIFICATE], false, true); $saml_response_service = new LaunchKey_WP_SAML2_Response_Service($securityKey, $facade); $saml_request_service = new LaunchKey_WP_SAML2_Request_Service($securityKey); $client = new LaunchKey_WP_SSO_Client($facade, $template, $options[LaunchKey_WP_Options::OPTION_SSO_ENTITY_ID], $saml_response_service, $saml_request_service, $wpdb, $options[LaunchKey_WP_Options::OPTION_SSO_LOGIN_URL], $options[LaunchKey_WP_Options::OPTION_SSO_LOGOUT_URL], $options[LaunchKey_WP_Options::OPTION_SSO_ERROR_URL], $is_multi_site); } elseif (LaunchKey_WP_Implementation_Type::OAUTH === $options[LaunchKey_WP_Options::OPTION_IMPLEMENTATION_TYPE] && !empty($options[LaunchKey_WP_Options::OPTION_SECRET_KEY])) { /** * If the implementation type is OAuth, use the OAuth client * @see LaunchKey_WP_OAuth_Client */ $client = new LaunchKey_WP_OAuth_Client($facade, $template, $is_multi_site); } elseif (!empty($options[LaunchKey_WP_Options::OPTION_SECRET_KEY])) { $launchkey_client = \LaunchKey\SDK\Client::wpFactory($options[LaunchKey_WP_Options::OPTION_ROCKET_KEY], $options[LaunchKey_WP_Options::OPTION_SECRET_KEY], $options[LaunchKey_WP_Options::OPTION_PRIVATE_KEY], $options[LaunchKey_WP_Options::OPTION_SSL_VERIFY]); $client = new LaunchKey_WP_Native_Client($launchkey_client, $facade, $template, $language_domain, $is_multi_site); add_filter('init', function () use($facade) { wp_enqueue_script('launchkey-script', plugins_url('/public/launchkey-login.js', __FILE__), array('jquery'), '1.1.1', true); }); } if ($client) { /** * Register the non-admin actions for authentication client. These actions will handle all of the * authentication work for the plugin. * * @see LaunchKey_WP_Client::register_actions * @see LaunchKey_WP_OAuth_Client::register_actions * @see LaunchKey_WP_Native_Client::register_actions */ $client->register_actions(); /** * Create the a user profile object and register its actions. These actions will handle all functionality * related to a user customizing their authentication related options. * * @see LaunchKey_WP_User_Profile */ $profile = new LaunchKey_WP_User_Profile($facade, $template, $language_domain, $is_multi_site); $profile->register_actions(); /** * Hideous workaround for the wp-login.php page not printing styles in the header like it should. * * @since 1.0.0 */ if (!has_action('login_enqueue_scripts', 'wp_print_styles')) { add_action('login_enqueue_scripts', 'wp_print_styles', 11); } } if (is_admin() || $is_multi_site && is_network_admin()) { /** * If we are in the admin, create an admin object and register its actions. These actions * will manage setting of options and user management for the plugin. * * @see is_admin * @see LaunchKey_WP_Admin */ $launchkey_admin = new LaunchKey_WP_Admin($facade, $template, $language_domain, $is_multi_site); $launchkey_admin->register_actions(); $config_wizard = new LaunchKey_WP_Configuration_Wizard($facade, $launchkey_admin, $is_multi_site, $launchkey_client); $config_wizard->register_actions(); } /** * Add a filter to enqueue styles for the plugin * * @since 1.0.0 * * @see add_filter * @see wp_enqueue_style * @link https://developer.wordpress.org/reference/functions/add_filter/ * @link https://developer.wordpress.org/reference/functions/wp_enqueue_style/ */ add_filter('init', function () use($facade) { wp_enqueue_style('launchkey-style', plugins_url('/public/launchkey.css', __FILE__), array(), '1.0.1', false); }); /** * Handle activation when a "must use" plugin */ if (launchkey_is_mu_plugin()) { $mu_activated_option = "launchkey_activated"; if (!get_option($mu_activated_option)) { do_action("activate_" . plugin_basename(__FILE__)); add_option($mu_activated_option, true); } } }
public function test_add_action_links_removes_link_for_edit() { $standard_links = array('edit' => '<a href="plugin-editor.php?file=akismet/akismet.php" title="Open this file in the Plugin Editor" class="edit">Edit</a>'); $actual = $this->admin->add_action_links($standard_links); $this->assertArrayNotHasKey('edit', $actual); }