PluginProbe ʕ •ᴥ•ʔ
GiveWP – Donation Plugin and Fundraising Platform / 2.0.2
GiveWP – Donation Plugin and Fundraising Platform v2.0.2
4.16.2 4.16.1 4.16.0 4.15.5 4.15.4 4.15.3 4.15.2 4.15.1 4.15.0 2.3.0 2.3.1 2.3.2 2.30.0 2.31.0 2.31.1 2.32.0 2.33.0 2.33.1 2.33.2 2.33.3 2.33.4 2.33.5 2.4.0 2.4.1 2.4.2 2.4.3 2.4.4 2.4.5 2.4.6 2.4.7 2.5.0 2.5.1 2.5.10 2.5.11 2.5.12 2.5.13 2.5.2 2.5.3 2.5.4 2.5.5 2.5.6 2.5.7 2.5.8 2.5.9 2.6.0 2.6.1 2.6.2 2.6.3 2.7.0 2.7.1 2.7.2 2.7.3 2.7.4 2.7.5 2.8.0 2.8.1 2.9.0 2.9.1 2.9.2 2.9.3 2.9.4 2.9.5 2.9.6 2.9.7 3.0.0 3.0.1 3.0.2 3.0.3 3.0.4 3.1.0 3.1.1 3.1.2 3.10.0 3.11.0 3.12.0 3.12.1 3.12.2 3.12.3 3.13.0 3.14.0 3.14.1 3.14.2 3.15.0 3.15.1 3.16.0 3.16.1 3.16.2 3.16.3 3.16.4 3.16.5 3.17.0 3.17.1 3.17.2 3.18.0 3.19.0 3.19.1 3.19.2 3.19.3 3.19.4 3.2.0 3.2.1 3.2.2 3.20.0 3.21.0 3.21.1 3.22.0 3.22.1 3.22.2 3.3.0 3.3.1 3.4.0 3.4.1 3.4.2 3.5.0 3.5.1 3.6.0 3.6.1 3.6.2 3.7.0 3.8.0 3.9.0 4.0.0 4.1.0 4.1.1 4.10.0 4.10.1 4.11.0 4.12.0 4.13.0 4.13.1 4.13.2 4.14.0 4.14.1 4.14.2 4.14.3 4.14.4 4.14.5 4.14.6 4.2.0 4.2.1 4.3.0 4.3.1 4.3.2 4.4.0 4.5.0 4.6.1 4.7.0 4.7.1 4.8.0 4.8.1 4.9.0 trunk 1.9.0 2.0.0 2.0.1 2.0.2 2.0.3 2.0.4 2.0.5 2.0.6 2.0.7 2.1.0 2.1.1 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.10.0 2.10.1 2.10.2 2.10.3 2.10.4 2.11.0 2.11.1 2.11.2 2.11.3 2.12.0 2.12.1 2.12.2 2.12.3 2.13.0 2.13.1 2.13.2 2.13.3 2.13.4 2.14.0 2.15.0 2.16.0 2.16.1 2.17.0 2.17.1 2.17.3 2.18.0 2.18.1 2.19.1 2.19.2 2.19.3 2.19.4 2.19.5 2.19.6 2.19.7 2.19.8 2.2.0 2.2.1 2.2.2 2.2.3 2.2.4 2.2.5 2.2.6 2.20.0 2.20.1 2.20.2 2.21.0 2.21.1 2.21.2 2.21.3 2.21.4 2.22.0 2.22.1 2.22.2 2.22.3 2.23.0 2.23.1 2.23.2 2.24.0 2.24.1 2.24.2 2.25.0 2.25.1 2.25.2 2.25.3 2.26.0 2.27.0 2.27.1 2.27.2 2.27.3 2.28.0 2.29.0 2.29.1 2.29.2
give / includes / api / class-give-api.php
give / includes / api Last commit date
class-give-api-v1.php 9 years ago class-give-api.php 8 years ago
class-give-api.php
2115 lines
1 <?php
2 /**
3 * Give API
4 *
5 * A front-facing JSON/XML API that makes it possible to query donation data.
6 *
7 * @package Give
8 * @subpackage Classes/API
9 * @copyright Copyright (c) 2016, WordImpress
10 * @license https://opensource.org/licenses/gpl-license GNU Public License
11 * @since 1.1
12 */
13
14 // Exit if accessed directly.
15 if ( ! defined( 'ABSPATH' ) ) {
16 exit;
17 }
18
19 /**
20 * Give_API Class
21 *
22 * Renders API returns as a JSON/XML array
23 *
24 * @since 1.1
25 */
26 class Give_API {
27
28 /**
29 * Latest API Version
30 */
31 const VERSION = 1;
32
33 /**
34 * Pretty Print?
35 *
36 * @var bool
37 * @access private
38 * @since 1.1
39 */
40 private $pretty_print = false;
41
42 /**
43 * Log API requests?
44 *
45 * @var bool
46 * @access public
47 * @since 1.1
48 */
49 public $log_requests = true;
50
51 /**
52 * Is this a valid request?
53 *
54 * @var bool
55 * @access private
56 * @since 1.1
57 */
58 private $is_valid_request = false;
59
60 /**
61 * User ID Performing the API Request
62 *
63 * @var int
64 * @access public
65 * @since 1.1
66 */
67 public $user_id = 0;
68
69 /**
70 * Instance of Give Stats class
71 *
72 * @var object
73 * @access private
74 * @since 1.1
75 */
76 private $stats;
77
78 /**
79 * Response data to return
80 *
81 * @var array
82 * @access private
83 * @since 1.1
84 */
85 private $data = array();
86
87 /**
88 * Whether or not to override api key validation.
89 *
90 * @var bool
91 * @access public
92 * @since 1.1
93 */
94 public $override = true;
95
96 /**
97 * Version of the API queried
98 *
99 * @var string
100 * @access public
101 * @since 1.1
102 */
103 private $queried_version;
104
105 /**
106 * All versions of the API
107 *
108 * @var array
109 * @access protected
110 * @since 1.1
111 */
112 protected $versions = array();
113
114 /**
115 * Queried endpoint
116 *
117 * @var string
118 * @access private
119 * @since 1.1
120 */
121 private $endpoint;
122
123 /**
124 * Endpoints routes
125 *
126 * @var object
127 * @access private
128 * @since 1.1
129 */
130 private $routes;
131
132 /**
133 * Setup the Give API
134 *
135 * @since 1.1
136 * @access public
137 */
138 public function __construct() {
139
140 $this->versions = array(
141 'v1' => 'GIVE_API_V1',
142 );
143
144 foreach ( $this->get_versions() as $version => $class ) {
145 require_once GIVE_PLUGIN_DIR . 'includes/api/class-give-api-' . $version . '.php';
146 }
147
148 add_action( 'init', array( $this, 'add_endpoint' ) );
149 add_action( 'wp', array( $this, 'process_query' ), - 1 );
150 add_filter( 'query_vars', array( $this, 'query_vars' ) );
151 add_action( 'show_user_profile', array( $this, 'user_key_field' ) );
152 add_action( 'edit_user_profile', array( $this, 'user_key_field' ) );
153 add_action( 'personal_options_update', array( $this, 'generate_api_key' ) );
154 add_action( 'edit_user_profile_update', array( $this, 'generate_api_key' ) );
155 add_action( 'give_process_api_key', array( $this, 'process_api_key' ) );
156
157 // Setup a backwards compatibility check for user API Keys
158 add_filter( 'get_user_metadata', array( $this, 'api_key_backwards_compat' ), 10, 4 );
159
160 // Determine if JSON_PRETTY_PRINT is available
161 $this->pretty_print = defined( 'JSON_PRETTY_PRINT' ) ? JSON_PRETTY_PRINT : null;
162
163 // Allow API request logging to be turned off
164 $this->log_requests = apply_filters( 'give_api_log_requests', $this->log_requests );
165
166 // Setup Give_Payment_Stats instance
167 $this->stats = new Give_Payment_Stats();
168
169 }
170
171 /**
172 * There are certain responsibility of this function:
173 * 1. handle backward compatibility for deprecated functions
174 *
175 * @since 2.0
176 *
177 * @param $name
178 * @param $arguments
179 *
180 * @return mixed
181 */
182 public function __call( $name, $arguments ) {
183 $deprecated_function_arr = array(
184 'get_customers',
185 );
186
187 if ( in_array( $name, $deprecated_function_arr, true ) ) {
188 switch ( $name ) {
189 case 'get_customers':
190 $args = ! empty( $arguments[0] ) ? $arguments[0] : array();
191
192 return $this->get_donors( $args );
193 }
194 }
195 }
196
197 /**
198 * Registers a new rewrite endpoint for accessing the API
199 *
200 * @access public
201 *
202 * @since 1.1
203 */
204 public function add_endpoint() {
205 add_rewrite_endpoint( 'give-api', EP_ALL );
206 }
207
208 /**
209 * Registers query vars for API access
210 *
211 * @access public
212 * @since 1.1
213 *
214 * @param array $vars Query vars
215 *
216 * @return string[] $vars New query vars
217 */
218 public function query_vars( $vars ) {
219
220 $vars[] = 'token';
221 $vars[] = 'key';
222 $vars[] = 'query';
223 $vars[] = 'type';
224 $vars[] = 'form';
225 $vars[] = 'number';
226 $vars[] = 'date';
227 $vars[] = 'startdate';
228 $vars[] = 'enddate';
229 $vars[] = 'donor';
230 $vars[] = 'format';
231 $vars[] = 'id';
232 $vars[] = 'purchasekey';
233 $vars[] = 'email';
234
235 return $vars;
236 }
237
238 /**
239 * Retrieve the API versions
240 *
241 * @access public
242 * @since 1.1
243 * @return array
244 */
245 public function get_versions() {
246 return $this->versions;
247 }
248
249 /**
250 * Retrieve the API version that was queried
251 *
252 * @access public
253 * @since 1.1
254 * @return string
255 */
256 public function get_queried_version() {
257 return $this->queried_version;
258 }
259
260 /**
261 * Retrieves the default version of the API to use
262 *
263 * @access public
264 * @since 1.1
265 * @return string
266 */
267 public function get_default_version() {
268
269 $version = get_option( 'give_default_api_version' );
270
271 if ( defined( 'GIVE_API_VERSION' ) ) {
272 $version = GIVE_API_VERSION;
273 } elseif ( ! $version ) {
274 $version = 'v1';
275 }
276
277 return $version;
278 }
279
280 /**
281 * Sets the version of the API that was queried.
282 *
283 * Falls back to the default version if no version is specified
284 *
285 * @access private
286 * @since 1.1
287 */
288 private function set_queried_version() {
289
290 global $wp_query;
291
292 $version = $wp_query->query_vars['give-api'];
293
294 if ( strpos( $version, '/' ) ) {
295
296 $version = explode( '/', $version );
297 $version = strtolower( $version[0] );
298
299 $wp_query->query_vars['give-api'] = str_replace( $version . '/', '', $wp_query->query_vars['give-api'] );
300
301 if ( array_key_exists( $version, $this->versions ) ) {
302
303 $this->queried_version = $version;
304
305 } else {
306
307 $this->is_valid_request = false;
308 $this->invalid_version();
309 }
310 } else {
311
312 $this->queried_version = $this->get_default_version();
313
314 }
315
316 }
317
318 /**
319 * Validate the API request
320 *
321 * Checks for the user's public key and token against the secret key.
322 *
323 * @access private
324 * @global object $wp_query WordPress Query
325 * @uses Give_API::get_user()
326 * @uses Give_API::invalid_key()
327 * @uses Give_API::invalid_auth()
328 * @since 1.1
329 * @return bool
330 */
331 private function validate_request() {
332 global $wp_query;
333
334 $this->override = false;
335
336 // Make sure we have both user and api key
337 if ( ! empty( $wp_query->query_vars['give-api'] ) && ( $wp_query->query_vars['give-api'] !== 'forms' || ! empty( $wp_query->query_vars['token'] ) ) ) {
338
339 if ( empty( $wp_query->query_vars['token'] ) || empty( $wp_query->query_vars['key'] ) ) {
340 $this->missing_auth();
341
342 return false;
343 }
344
345 // Retrieve the user by public API key and ensure they exist
346 if ( ! ( $user = $this->get_user( $wp_query->query_vars['key'] ) ) ) {
347
348 $this->invalid_key();
349
350 return false;
351
352 } else {
353
354 $token = urldecode( $wp_query->query_vars['token'] );
355 $secret = $this->get_user_secret_key( $user );
356 $public = urldecode( $wp_query->query_vars['key'] );
357
358 if ( hash_equals( md5( $secret . $public ), $token ) ) {
359 $this->is_valid_request = true;
360 } else {
361 $this->invalid_auth();
362
363 return false;
364 }
365
366 }
367 } elseif ( ! empty( $wp_query->query_vars['give-api'] ) && $wp_query->query_vars['give-api'] === 'forms' ) {
368 $this->is_valid_request = true;
369 $wp_query->set( 'key', 'public' );
370 }
371 }
372
373 /**
374 * Retrieve the user ID based on the public key provided
375 *
376 * @access public
377 * @since 1.1
378 * @global WPDB $wpdb Used to query the database using the WordPress
379 * Database API
380 *
381 * @param string $key Public Key
382 *
383 * @return bool if user ID is found, false otherwise
384 */
385 public function get_user( $key = '' ) {
386 global $wpdb, $wp_query;
387
388 if ( empty( $key ) ) {
389 $key = urldecode( $wp_query->query_vars['key'] );
390 }
391
392 if ( empty( $key ) ) {
393 return false;
394 }
395
396 $user = Give_Cache::get( md5( 'give_api_user_' . $key ), true );
397
398 if ( false === $user ) {
399 $user = $wpdb->get_var( $wpdb->prepare( "SELECT user_id FROM $wpdb->usermeta WHERE meta_key = %s LIMIT 1", $key ) );
400 Give_Cache::set( md5( 'give_api_user_' . $key ), $user, DAY_IN_SECONDS, true );
401 }
402
403 if ( $user != null ) {
404 $this->user_id = $user;
405
406 return $user;
407 }
408
409 return false;
410 }
411
412 /**
413 * Get user public key.
414 *
415 * @param int $user_id
416 *
417 * @return mixed|null|string
418 */
419 public function get_user_public_key( $user_id = 0 ) {
420 global $wpdb;
421
422 if ( empty( $user_id ) ) {
423 return '';
424 }
425
426 $cache_key = md5( 'give_api_user_public_key' . $user_id );
427 $user_public_key = Give_Cache::get( $cache_key, true );
428
429 if ( empty( $user_public_key ) ) {
430 $user_public_key = $wpdb->get_var( $wpdb->prepare( "SELECT meta_key FROM $wpdb->usermeta WHERE meta_value = 'give_user_public_key' AND user_id = %d", $user_id ) );
431 Give_Cache::set( $cache_key, $user_public_key, HOUR_IN_SECONDS, true );
432 }
433
434 return $user_public_key;
435 }
436
437 /**
438 * Get user secret key.
439 *
440 * @param int $user_id
441 *
442 * @return mixed|null|string
443 */
444 public function get_user_secret_key( $user_id = 0 ) {
445 global $wpdb;
446
447 if ( empty( $user_id ) ) {
448 return '';
449 }
450
451 $cache_key = md5( 'give_api_user_secret_key' . $user_id );
452 $user_secret_key = Give_Cache::get( $cache_key, true );
453
454 if ( empty( $user_secret_key ) ) {
455 $user_secret_key = $wpdb->get_var( $wpdb->prepare( "SELECT meta_key FROM $wpdb->usermeta WHERE meta_value = 'give_user_secret_key' AND user_id = %d", $user_id ) );
456 Give_Cache::set( $cache_key, $user_secret_key, HOUR_IN_SECONDS, true );
457 }
458
459 return $user_secret_key;
460 }
461
462 /**
463 * Displays a missing authentication error if all the parameters are not met.
464 * provided
465 *
466 * @access private
467 * @uses Give_API::output()
468 * @since 1.1
469 */
470 private function missing_auth() {
471 $error = array();
472 $error['error'] = __( 'You must specify both a token and API key.', 'give' );
473
474 $this->data = $error;
475 $this->output( 401 );
476 }
477
478 /**
479 * Displays an authentication failed error if the user failed to provide valid
480 * credentials
481 *
482 * @access private
483 * @since 1.1
484 * @uses Give_API::output()
485 * @return void
486 */
487 private function invalid_auth() {
488 $error = array();
489 $error['error'] = __( 'Your request could not be authenticated.', 'give' );
490
491 $this->data = $error;
492 $this->output( 403 );
493 }
494
495 /**
496 * Displays an invalid API key error if the API key provided couldn't be
497 * validated
498 *
499 * @access private
500 * @since 1.1
501 * @uses Give_API::output()
502 * @return void
503 */
504 private function invalid_key() {
505 $error = array();
506 $error['error'] = __( 'Invalid API key.', 'give' );
507
508 $this->data = $error;
509 $this->output( 403 );
510 }
511
512 /**
513 * Displays an invalid version error if the version number passed isn't valid
514 *
515 * @access private
516 * @since 1.1
517 * @uses Give_API::output()
518 * @return void
519 */
520 private function invalid_version() {
521 $error = array();
522 $error['error'] = __( 'Invalid API version.', 'give' );
523
524 $this->data = $error;
525 $this->output( 404 );
526 }
527
528 /**
529 * Listens for the API and then processes the API requests
530 *
531 * @access public
532 * @global $wp_query
533 * @since 1.1
534 * @return void
535 */
536 public function process_query() {
537
538 global $wp_query;
539
540 // Start logging how long the request takes for logging
541 $before = microtime( true );
542
543 // Check for give-api var. Get out if not present
544 if ( empty( $wp_query->query_vars['give-api'] ) ) {
545 return;
546 }
547
548 // Determine which version was queried
549 $this->set_queried_version();
550
551 // Determine the kind of query
552 $this->set_query_mode();
553
554 // Check for a valid user and set errors if necessary
555 $this->validate_request();
556
557 // Only proceed if no errors have been noted
558 if ( ! $this->is_valid_request ) {
559 return;
560 }
561
562 if ( ! defined( 'GIVE_DOING_API' ) ) {
563 define( 'GIVE_DOING_API', true );
564 }
565
566 $data = array();
567 $this->routes = new $this->versions[$this->get_queried_version()];
568 $this->routes->validate_request();
569
570 switch ( $this->endpoint ) :
571
572 case 'stats' :
573
574 $data = $this->routes->get_stats( array(
575 'type' => isset( $wp_query->query_vars['type'] ) ? $wp_query->query_vars['type'] : null,
576 'form' => isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null,
577 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
578 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
579 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
580 ) );
581
582 break;
583
584 case 'forms' :
585
586 $form = isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null;
587
588 $data = $this->routes->get_forms( $form );
589
590 break;
591
592 case 'donors' :
593
594 $donor = isset( $wp_query->query_vars['donor'] ) ? $wp_query->query_vars['donor'] : null;
595
596 $data = $this->routes->get_donors( $donor );
597
598 break;
599
600 case 'donations' :
601
602 /**
603 * Call to get recent donations
604 *
605 * @params text date | today, yesterday or range
606 * @params date startdate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
607 * @params date enddate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
608 */
609 $data = $this->routes->get_recent_donations( array(
610 'id' => isset( $wp_query->query_vars['id'] ) ? $wp_query->query_vars['id'] : null,
611 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
612 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
613 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
614 ) );
615
616 break;
617
618 endswitch;
619
620 // Allow extensions to setup their own return data
621 $this->data = apply_filters( 'give_api_output_data', $data, $this->endpoint, $this );
622
623 $after = microtime( true );
624 $request_time = ( $after - $before );
625 $this->data['request_speed'] = $request_time;
626
627 // Log this API request, if enabled. We log it here because we have access to errors.
628 $this->log_request( $this->data );
629
630 // Send out data to the output function
631 $this->output();
632 }
633
634 /**
635 * Returns the API endpoint requested
636 *
637 * @access public
638 * @since 1.1
639 * @return string $query Query mode
640 */
641 public function get_query_mode() {
642
643 return $this->endpoint;
644 }
645
646 /**
647 * Determines the kind of query requested and also ensure it is a valid query
648 *
649 * @access public
650 * @since 1.1
651 * @global $wp_query
652 */
653 public function set_query_mode() {
654
655 global $wp_query;
656
657 // Whitelist our query options
658 $accepted = apply_filters( 'give_api_valid_query_modes', array(
659 'stats',
660 'forms',
661 'donors',
662 'donations',
663 ) );
664
665 $query = isset( $wp_query->query_vars['give-api'] ) ? $wp_query->query_vars['give-api'] : null;
666 $query = str_replace( $this->queried_version . '/', '', $query );
667
668 $error = array();
669
670 // Make sure our query is valid
671 if ( ! in_array( $query, $accepted ) ) {
672 $error['error'] = __( 'Invalid query.', 'give' );
673
674 $this->data = $error;
675 // 400 is Bad Request
676 $this->output( 400 );
677 }
678
679 $this->endpoint = $query;
680 }
681
682 /**
683 * Get page number
684 *
685 * @access public
686 * @since 1.1
687 * @global $wp_query
688 * @return int $wp_query->query_vars['page'] if page number returned (default: 1)
689 */
690 public function get_paged() {
691 global $wp_query;
692
693 return isset( $wp_query->query_vars['page'] ) ? $wp_query->query_vars['page'] : 1;
694 }
695
696
697 /**
698 * Number of results to display per page
699 *
700 * @access public
701 * @since 1.1
702 * @global $wp_query
703 * @return int $per_page Results to display per page (default: 10)
704 */
705 public function per_page() {
706 global $wp_query;
707
708 $per_page = isset( $wp_query->query_vars['number'] ) ? $wp_query->query_vars['number'] : 10;
709
710 if ( $per_page < 0 && $this->get_query_mode() == 'donors' ) {
711 $per_page = 99999999;
712 } // End if().
713
714 return apply_filters( 'give_api_results_per_page', $per_page );
715 }
716
717 /**
718 * Sets up the dates used to retrieve earnings/donations
719 *
720 * @access public
721 * @since 1.2
722 *
723 * @param array $args Arguments to override defaults
724 *
725 * @return array $dates
726 */
727 public function get_dates( $args = array() ) {
728 $dates = array();
729
730 $defaults = array(
731 'type' => '',
732 'form' => null,
733 'date' => null,
734 'startdate' => null,
735 'enddate' => null,
736 );
737
738 $args = wp_parse_args( $args, $defaults );
739
740 $current_time = current_time( 'timestamp' );
741
742 if ( 'range' === $args['date'] ) {
743 $startdate = strtotime( $args['startdate'] );
744 $enddate = strtotime( $args['enddate'] );
745 $dates['day_start'] = date( 'd', $startdate );
746 $dates['day_end'] = date( 'd', $enddate );
747 $dates['m_start'] = date( 'n', $startdate );
748 $dates['m_end'] = date( 'n', $enddate );
749 $dates['year'] = date( 'Y', $startdate );
750 $dates['year_end'] = date( 'Y', $enddate );
751 } else {
752 // Modify dates based on predefined ranges
753 switch ( $args['date'] ) :
754
755 case 'this_month' :
756 $dates['day'] = null;
757 $dates['m_start'] = date( 'n', $current_time );
758 $dates['m_end'] = date( 'n', $current_time );
759 $dates['year'] = date( 'Y', $current_time );
760 break;
761
762 case 'last_month' :
763 $dates['day'] = null;
764 $dates['m_start'] = date( 'n', $current_time ) == 1 ? 12 : date( 'n', $current_time ) - 1;
765 $dates['m_end'] = $dates['m_start'];
766 $dates['year'] = date( 'n', $current_time ) == 1 ? date( 'Y', $current_time ) - 1 : date( 'Y', $current_time );
767 break;
768
769 case 'today' :
770 $dates['day'] = date( 'd', $current_time );
771 $dates['m_start'] = date( 'n', $current_time );
772 $dates['m_end'] = date( 'n', $current_time );
773 $dates['year'] = date( 'Y', $current_time );
774 break;
775
776 case 'yesterday' :
777
778 $year = date( 'Y', $current_time );
779 $month = date( 'n', $current_time );
780 $day = date( 'd', $current_time );
781
782 if ( $month == 1 && $day == 1 ) {
783
784 $year -= 1;
785 $month = 12;
786 $day = cal_days_in_month( CAL_GREGORIAN, $month, $year );
787
788 } elseif ( $month > 1 && $day == 1 ) {
789
790 $month -= 1;
791 $day = cal_days_in_month( CAL_GREGORIAN, $month, $year );
792
793 } else {
794
795 $day -= 1;
796
797 }
798
799 $dates['day'] = $day;
800 $dates['m_start'] = $month;
801 $dates['m_end'] = $month;
802 $dates['year'] = $year;
803
804 break;
805
806 case 'this_quarter' :
807 $month_now = date( 'n', $current_time );
808
809 $dates['day'] = null;
810
811 if ( $month_now <= 3 ) {
812
813 $dates['m_start'] = 1;
814 $dates['m_end'] = 3;
815 $dates['year'] = date( 'Y', $current_time );
816
817 } elseif ( $month_now <= 6 ) {
818
819 $dates['m_start'] = 4;
820 $dates['m_end'] = 6;
821 $dates['year'] = date( 'Y', $current_time );
822
823 } elseif ( $month_now <= 9 ) {
824
825 $dates['m_start'] = 7;
826 $dates['m_end'] = 9;
827 $dates['year'] = date( 'Y', $current_time );
828
829 } else {
830
831 $dates['m_start'] = 10;
832 $dates['m_end'] = 12;
833 $dates['year'] = date( 'Y', $current_time );
834
835 }
836 break;
837
838 case 'last_quarter' :
839 $month_now = date( 'n', $current_time );
840
841 $dates['day'] = null;
842
843 if ( $month_now <= 3 ) {
844
845 $dates['m_start'] = 10;
846 $dates['m_end'] = 12;
847 $dates['year'] = date( 'Y', $current_time ) - 1; // Previous year
848
849 } elseif ( $month_now <= 6 ) {
850
851 $dates['m_start'] = 1;
852 $dates['m_end'] = 3;
853 $dates['year'] = date( 'Y', $current_time );
854
855 } elseif ( $month_now <= 9 ) {
856
857 $dates['m_start'] = 4;
858 $dates['m_end'] = 6;
859 $dates['year'] = date( 'Y', $current_time );
860
861 } else {
862
863 $dates['m_start'] = 7;
864 $dates['m_end'] = 9;
865 $dates['year'] = date( 'Y', $current_time );
866
867 }
868 break;
869
870 case 'this_year' :
871 $dates['day'] = null;
872 $dates['m_start'] = null;
873 $dates['m_end'] = null;
874 $dates['year'] = date( 'Y', $current_time );
875 break;
876
877 case 'last_year' :
878 $dates['day'] = null;
879 $dates['m_start'] = null;
880 $dates['m_end'] = null;
881 $dates['year'] = date( 'Y', $current_time ) - 1;
882 break;
883
884 endswitch;
885 }// End if().
886
887 /**
888 * Returns the filters for the dates used to retrieve earnings.
889 *
890 * @since 1.2
891 *
892 * @param array $dates The dates used for retrieving earnings.
893 */
894 return apply_filters( 'give_api_stat_dates', $dates );
895 }
896
897 /**
898 * Process Get Donors API Request.
899 *
900 * @access public
901 * @since 1.1
902 * @global WPDB $wpdb Used to query the database using the WordPress Database API.
903 *
904 * @param int $donor Donor ID
905 *
906 * @return array $donors Multidimensional array of the donors.
907 */
908 public function get_donors( $donor = null ) {
909
910 $donors = array();
911 $error = array();
912 if ( ! user_can( $this->user_id, 'view_give_sensitive_data' ) && ! $this->override ) {
913 return $donors;
914 }
915
916 $paged = $this->get_paged();
917 $per_page = $this->per_page();
918 $offset = $per_page * ( $paged - 1 );
919
920 if ( is_numeric( $donor ) ) {
921 $field = 'id';
922 } else {
923 $field = 'email';
924 }
925
926 $donor_query = Give()->donors->get_donors( array(
927 'number' => $per_page,
928 'offset' => $offset,
929 $field => $donor,
930 ) );
931 $donor_count = 0;
932
933 if ( $donor_query ) {
934
935 foreach ( $donor_query as $donor_obj ) {
936
937 $names = explode( ' ', $donor_obj->name );
938 $first_name = ! empty( $names[0] ) ? $names[0] : '';
939 $last_name = '';
940 if ( ! empty( $names[1] ) ) {
941 unset( $names[0] );
942 $last_name = implode( ' ', $names );
943 }
944
945 $donors['donors'][ $donor_count ]['info']['user_id'] = '';
946 $donors['donors'][ $donor_count ]['info']['username'] = '';
947 $donors['donors'][ $donor_count ]['info']['display_name'] = '';
948 $donors['donors'][ $donor_count ]['info']['donor_id'] = $donor_obj->id;
949 $donors['donors'][ $donor_count ]['info']['first_name'] = $first_name;
950 $donors['donors'][ $donor_count ]['info']['last_name'] = $last_name;
951 $donors['donors'][ $donor_count ]['info']['email'] = $donor_obj->email;
952
953 if ( ! empty( $donor_obj->user_id ) ) {
954
955 $user_data = get_userdata( $donor_obj->user_id );
956
957 // Donor with registered account.
958 $donors['donors'][ $donor_count ]['info']['user_id'] = $donor_obj->user_id;
959 $donors['donors'][ $donor_count ]['info']['username'] = $user_data->user_login;
960 $donors['donors'][ $donor_count ]['info']['display_name'] = $user_data->display_name;
961
962 }
963
964 $donors['donors'][ $donor_count ]['stats']['total_donations'] = $donor_obj->purchase_count;
965 $donors['donors'][ $donor_count ]['stats']['total_spent'] = $donor_obj->purchase_value;
966
967 /** @var $donor \Give_Donor */
968 $donor = new Give_Donor( $donor_obj->id );
969
970 // Get donor's addresses.
971 $donors['donors'][ $donor_count ]['address'] = $donor->address;
972
973 $donor_count ++;
974
975 }
976 } elseif ( $donor ) {
977
978 $error['error'] = sprintf( /* translators: %s: donor */
979 __( 'Donor %s not found.', 'give' ), $donor );
980
981 return $error;
982
983 } else {
984
985 $error['error'] = __( 'No donors found.', 'give' );
986
987 return $error;
988
989 }// End if().
990
991 return $donors;
992 }
993
994 /**
995 * Process Get Donation Forms API Request
996 *
997 * @access public
998 * @since 1.1
999 *
1000 * @param int $form Give Form ID.
1001 *
1002 * @return array $donors Multidimensional array of the forms.
1003 */
1004 public function get_forms( $form = null ) {
1005
1006 $forms = array();
1007 $error = array();
1008
1009 if ( $form == null ) {
1010 $forms['forms'] = array();
1011
1012 $form_list = get_posts( array(
1013 'post_type' => 'give_forms',
1014 'posts_per_page' => $this->per_page(),
1015 'suppress_filters' => true,
1016 'paged' => $this->get_paged(),
1017 ) );
1018
1019 if ( $form_list ) {
1020 $i = 0;
1021 foreach ( $form_list as $form_info ) {
1022 $forms['forms'][ $i ] = $this->get_form_data( $form_info );
1023 $i ++;
1024 }
1025 }
1026 } else {
1027 if ( get_post_type( $form ) == 'give_forms' ) {
1028 $form_info = get_post( $form );
1029
1030 $forms['forms'][0] = $this->get_form_data( $form_info );
1031
1032 } else {
1033 $error['error'] = sprintf( /* translators: %s: form */
1034 __( 'Form %s not found.', 'give' ), $form );
1035
1036 return $error;
1037 }
1038 }
1039
1040 return $forms;
1041 }
1042
1043 /**
1044 * Given a give_forms post object, generate the data for the API output
1045 *
1046 * @since 1.1
1047 *
1048 * @param object $form_info The Give Form's Post Object.
1049 *
1050 * @return array Array of post data to return back in the API.
1051 */
1052 private function get_form_data( $form_info ) {
1053
1054 $form = array();
1055
1056 $form['info']['id'] = $form_info->ID;
1057 $form['info']['slug'] = $form_info->post_name;
1058 $form['info']['title'] = $form_info->post_title;
1059 $form['info']['create_date'] = $form_info->post_date;
1060 $form['info']['modified_date'] = $form_info->post_modified;
1061 $form['info']['status'] = $form_info->post_status;
1062 $form['info']['link'] = html_entity_decode( $form_info->guid );
1063 $form['info']['content'] = give_get_meta( $form_info->ID, '_give_form_content', true );
1064 $form['info']['thumbnail'] = wp_get_attachment_url( get_post_thumbnail_id( $form_info->ID ) );
1065
1066 if ( give_is_setting_enabled( give_get_option( 'categories', 'disabled' ) ) ) {
1067 $form['info']['category'] = get_the_terms( $form_info, 'give_forms_category' );
1068 $form['info']['tags'] = get_the_terms( $form_info, 'give_forms_tag' );
1069 }
1070 if ( give_is_setting_enabled( give_get_option( 'tags', 'disabled' ) ) ) {
1071 $form['info']['tags'] = get_the_terms( $form_info, 'give_forms_tag' );
1072 }
1073
1074 // Check whether any goal is to be achieved for the donation form.
1075 $goal_option = give_get_meta( $form_info->ID, '_give_goal_option', true );
1076 $goal_amount = give_get_meta( $form_info->ID, '_give_set_goal', true );
1077 if ( give_is_setting_enabled( $goal_option ) && $goal_amount ) {
1078 $total_income = give_get_form_earnings_stats( $form_info->ID );
1079 $goal_percentage_completed = ( $total_income < $goal_amount ) ? round( ( $total_income / $goal_amount ) * 100, 2 ) : 100;
1080 $form['goal']['amount'] = isset( $goal_amount ) ? $goal_amount : '';
1081 $form['goal']['percentage_completed'] = isset( $goal_percentage_completed ) ? $goal_percentage_completed : '';
1082 }
1083
1084 if ( user_can( $this->user_id, 'view_give_reports' ) || $this->override ) {
1085 $form['stats']['total']['donations'] = give_get_form_sales_stats( $form_info->ID );
1086 $form['stats']['total']['earnings'] = give_get_form_earnings_stats( $form_info->ID );
1087 $form['stats']['monthly_average']['donations'] = give_get_average_monthly_form_sales( $form_info->ID );
1088 $form['stats']['monthly_average']['earnings'] = give_get_average_monthly_form_earnings( $form_info->ID );
1089 }
1090
1091 $counter = 0;
1092 if ( give_has_variable_prices( $form_info->ID ) ) {
1093 foreach ( give_get_variable_prices( $form_info->ID ) as $price ) {
1094 $counter ++;
1095 // multi-level item
1096 $level = isset( $price['_give_text'] ) ? $price['_give_text'] : 'level-' . $counter;
1097 $form['pricing'][ sanitize_key( $level ) ] = $price['_give_amount'];
1098
1099 }
1100 } else {
1101 $form['pricing']['amount'] = give_get_form_price( $form_info->ID );
1102 }
1103
1104 if ( user_can( $this->user_id, 'view_give_sensitive_data' ) || $this->override ) {
1105
1106 /**
1107 * Fires when generating API sensitive data.
1108 *
1109 * @since 1.1
1110 */
1111 do_action( 'give_api_sensitive_data' );
1112
1113 }
1114
1115 return apply_filters( 'give_api_forms_form', $form );
1116
1117 }
1118
1119 /**
1120 * Process Get Stats API Request
1121 *
1122 * @since 1.1
1123 *
1124 * @global WPDB $wpdb Used to query the database using the WordPress.
1125 *
1126 * @param array $args Arguments provided by API Request.
1127 *
1128 * @return array
1129 */
1130 public function get_stats( $args = array() ) {
1131 $defaults = array(
1132 'type' => null,
1133 'form' => null,
1134 'date' => null,
1135 'startdate' => null,
1136 'enddate' => null,
1137 );
1138
1139 $args = wp_parse_args( $args, $defaults );
1140
1141 $dates = $this->get_dates( $args );
1142
1143 $stats = array();
1144 $earnings = array(
1145 'earnings' => array(),
1146 );
1147 $donations = array(
1148 'donations' => array(),
1149 );
1150 $error = array();
1151
1152 if ( ! user_can( $this->user_id, 'view_give_reports' ) && ! $this->override ) {
1153 return $stats;
1154 }
1155
1156 if ( $args['type'] == 'donations' ) {
1157
1158 if ( $args['form'] == null ) {
1159 if ( $args['date'] == null ) {
1160 $donations = $this->get_default_sales_stats();
1161 } elseif ( $args['date'] === 'range' ) {
1162 // Return donations for a date range.
1163 // Ensure the end date is later than the start date.
1164 if ( $args['enddate'] < $args['startdate'] ) {
1165 $error['error'] = __( 'The end date must be later than the start date.', 'give' );
1166 }
1167
1168 // Ensure both the start and end date are specified
1169 if ( empty( $args['startdate'] ) || empty( $args['enddate'] ) ) {
1170 $error['error'] = __( 'Invalid or no date range specified.', 'give' );
1171 }
1172
1173 $total = 0;
1174
1175 // Loop through the years
1176 $y = $dates['year'];
1177 while ( $y <= $dates['year_end'] ) :
1178
1179 if ( $dates['year'] == $dates['year_end'] ) {
1180 $month_start = $dates['m_start'];
1181 $month_end = $dates['m_end'];
1182 } elseif ( $y == $dates['year'] && $dates['year_end'] > $dates['year'] ) {
1183 $month_start = $dates['m_start'];
1184 $month_end = 12;
1185 } elseif ( $y == $dates['year_end'] ) {
1186 $month_start = 1;
1187 $month_end = $dates['m_end'];
1188 } else {
1189 $month_start = 1;
1190 $month_end = 12;
1191 }
1192
1193 $i = $month_start;
1194 while ( $i <= $month_end ) :
1195
1196 if ( $i == $dates['m_start'] ) {
1197 $d = $dates['day_start'];
1198 } else {
1199 $d = 1;
1200 }
1201
1202 if ( $i == $dates['m_end'] ) {
1203 $num_of_days = $dates['day_end'];
1204 } else {
1205 $num_of_days = cal_days_in_month( CAL_GREGORIAN, $i, $y );
1206 }
1207
1208 while ( $d <= $num_of_days ) :
1209 $sale_count = give_get_sales_by_date( $d, $i, $y );
1210 $date_key = date( 'Ymd', strtotime( $y . '/' . $i . '/' . $d ) );
1211 if ( ! isset( $donations['sales'][ $date_key ] ) ) {
1212 $donations['sales'][ $date_key ] = 0;
1213 }
1214 $donations['sales'][ $date_key ] += $sale_count;
1215 $total += $sale_count;
1216 $d ++;
1217 endwhile;
1218 $i ++;
1219 endwhile;
1220
1221 $y ++;
1222 endwhile;
1223
1224 $donations['totals'] = $total;
1225 } else {
1226 if ( $args['date'] == 'this_quarter' || $args['date'] == 'last_quarter' ) {
1227 $donations_count = 0;
1228
1229 // Loop through the months
1230 $month = $dates['m_start'];
1231
1232 while ( $month <= $dates['m_end'] ) :
1233 $donations_count += give_get_sales_by_date( null, $month, $dates['year'] );
1234 $month ++;
1235 endwhile;
1236
1237 $donations['donations'][ $args['date'] ] = $donations_count;
1238 } else {
1239 $donations['donations'][ $args['date'] ] = give_get_sales_by_date( $dates['day'], $dates['m_start'], $dates['year'] );
1240 }
1241 }// End if().
1242 } elseif ( $args['form'] == 'all' ) {
1243 $forms = get_posts( array(
1244 'post_type' => 'give_forms',
1245 'nopaging' => true,
1246 ) );
1247 $i = 0;
1248 foreach ( $forms as $form_info ) {
1249 $donations['donations'][ $i ] = array(
1250 $form_info->post_name => give_get_form_sales_stats( $form_info->ID ),
1251 );
1252 $i ++;
1253 }
1254 } else {
1255 if ( get_post_type( $args['form'] ) == 'give_forms' ) {
1256 $form_info = get_post( $args['form'] );
1257 $donations['donations'][0] = array(
1258 $form_info->post_name => give_get_form_sales_stats( $args['form'] ),
1259 );
1260 } else {
1261 $error['error'] = sprintf( /* translators: %s: form */
1262 __( 'Form %s not found.', 'give' ), $args['form'] );
1263 }
1264 }// End if().
1265
1266 if ( ! empty( $error ) ) {
1267 return $error;
1268 }
1269
1270 return $donations;
1271
1272 } elseif ( $args['type'] == 'earnings' ) {
1273 if ( $args['form'] == null ) {
1274 if ( $args['date'] == null ) {
1275 $earnings = $this->get_default_earnings_stats();
1276 } elseif ( $args['date'] === 'range' ) {
1277 // Return sales for a date range
1278 // Ensure the end date is later than the start date
1279 if ( $args['enddate'] < $args['startdate'] ) {
1280 $error['error'] = __( 'The end date must be later than the start date.', 'give' );
1281 }
1282
1283 // Ensure both the start and end date are specified
1284 if ( empty( $args['startdate'] ) || empty( $args['enddate'] ) ) {
1285 $error['error'] = __( 'Invalid or no date range specified.', 'give' );
1286 }
1287
1288 $total = (float) 0.00;
1289
1290 // Loop through the years
1291 $y = $dates['year'];
1292 if ( ! isset( $earnings['earnings'] ) ) {
1293 $earnings['earnings'] = array();
1294 }
1295 while ( $y <= $dates['year_end'] ) :
1296
1297 if ( $dates['year'] == $dates['year_end'] ) {
1298 $month_start = $dates['m_start'];
1299 $month_end = $dates['m_end'];
1300 } elseif ( $y == $dates['year'] && $dates['year_end'] > $dates['year'] ) {
1301 $month_start = $dates['m_start'];
1302 $month_end = 12;
1303 } elseif ( $y == $dates['year_end'] ) {
1304 $month_start = 1;
1305 $month_end = $dates['m_end'];
1306 } else {
1307 $month_start = 1;
1308 $month_end = 12;
1309 }
1310
1311 $i = $month_start;
1312 while ( $i <= $month_end ) :
1313
1314 if ( $i == $dates['m_start'] ) {
1315 $d = $dates['day_start'];
1316 } else {
1317 $d = 1;
1318 }
1319
1320 if ( $i == $dates['m_end'] ) {
1321 $num_of_days = $dates['day_end'];
1322 } else {
1323 $num_of_days = cal_days_in_month( CAL_GREGORIAN, $i, $y );
1324 }
1325
1326 while ( $d <= $num_of_days ) :
1327 $earnings_stat = give_get_earnings_by_date( $d, $i, $y );
1328 $date_key = date( 'Ymd', strtotime( $y . '/' . $i . '/' . $d ) );
1329 if ( ! isset( $earnings['earnings'][ $date_key ] ) ) {
1330 $earnings['earnings'][ $date_key ] = 0;
1331 }
1332 $earnings['earnings'][ $date_key ] += $earnings_stat;
1333 $total += $earnings_stat;
1334 $d ++;
1335 endwhile;
1336
1337 $i ++;
1338 endwhile;
1339
1340 $y ++;
1341 endwhile;
1342
1343 $earnings['totals'] = $total;
1344 } else {
1345 if ( $args['date'] == 'this_quarter' || $args['date'] == 'last_quarter' ) {
1346 $earnings_count = (float) 0.00;
1347
1348 // Loop through the months
1349 $month = $dates['m_start'];
1350
1351 while ( $month <= $dates['m_end'] ) :
1352 $earnings_count += give_get_earnings_by_date( null, $month, $dates['year'] );
1353 $month ++;
1354 endwhile;
1355
1356 $earnings['earnings'][ $args['date'] ] = $earnings_count;
1357 } else {
1358 $earnings['earnings'][ $args['date'] ] = give_get_earnings_by_date( $dates['day'], $dates['m_start'], $dates['year'] );
1359 }
1360 }// End if().
1361 } elseif ( $args['form'] == 'all' ) {
1362 $forms = get_posts( array(
1363 'post_type' => 'give_forms',
1364 'nopaging' => true,
1365 ) );
1366
1367 $i = 0;
1368 foreach ( $forms as $form_info ) {
1369 $earnings['earnings'][ $i ] = array(
1370 $form_info->post_name => give_get_form_earnings_stats( $form_info->ID ),
1371 );
1372 $i ++;
1373 }
1374 } else {
1375 if ( get_post_type( $args['form'] ) == 'give_forms' ) {
1376 $form_info = get_post( $args['form'] );
1377 $earnings['earnings'][0] = array(
1378 $form_info->post_name => give_get_form_earnings_stats( $args['form'] ),
1379 );
1380 } else {
1381 $error['error'] = sprintf( /* translators: %s: form */
1382 __( 'Form %s not found.', 'give' ), $args['form'] );
1383 }
1384 }// End if().
1385
1386 if ( ! empty( $error ) ) {
1387 return $error;
1388 }
1389
1390 return $earnings;
1391 } elseif ( $args['type'] == 'donors' ) {
1392 $donors = new Give_DB_Donors();
1393 $stats['donations']['total_donors'] = $donors->count();
1394
1395 return $stats;
1396
1397 } elseif ( empty( $args['type'] ) ) {
1398 $stats = array_merge( $stats, $this->get_default_sales_stats() );
1399 $stats = array_merge( $stats, $this->get_default_earnings_stats() );
1400
1401 return array(
1402 'stats' => $stats,
1403 );
1404 }// End if().
1405 }
1406
1407 /**
1408 * Retrieves Recent Donations
1409 *
1410 * @access public
1411 * @since 1.1
1412 *
1413 * @param $args array
1414 *
1415 * @return array
1416 */
1417 public function get_recent_donations( $args = array() ) {
1418 global $wp_query;
1419
1420 $defaults = array(
1421 'id' => null,
1422 'date' => null,
1423 'startdate' => null,
1424 'enddate' => null,
1425 );
1426
1427 $args = wp_parse_args( $args, $defaults );
1428
1429 $donations = array();
1430
1431 if ( ! user_can( $this->user_id, 'view_give_reports' ) && ! $this->override ) {
1432 return $donations;
1433 }
1434
1435 if ( isset( $wp_query->query_vars['id'] ) ) {
1436 $query = array();
1437 $query[] = new Give_Payment( $wp_query->query_vars['id'] );
1438 } elseif ( isset( $wp_query->query_vars['purchasekey'] ) ) {
1439 $query = array();
1440 $query[] = give_get_payment_by( 'key', $wp_query->query_vars['purchasekey'] );
1441 } elseif ( isset( $wp_query->query_vars['email'] ) ) {
1442 $args = array(
1443 'fields' => 'ids',
1444 'meta_key' => '_give_payment_donor_email',
1445 'meta_value' => $wp_query->query_vars['email'],
1446 'number' => $this->per_page(),
1447 'page' => $this->get_paged(),
1448 );
1449 $query = give_get_payments( $args );
1450 } elseif ( isset( $wp_query->query_vars['date'] ) ) {
1451
1452 $current_time = current_time( 'timestamp' );
1453 $dates = $this->get_dates( $args );
1454 $start_date = '';
1455 $end_date = '';
1456
1457 /**
1458 * Switch case for date query argument
1459 *
1460 * @since 1.8.8
1461 *
1462 * @params text date | today, yesterday or range
1463 * @params date startdate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
1464 * @params date enddate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
1465 */
1466 switch ( $wp_query->query_vars['date'] ) {
1467
1468 case 'today':
1469
1470 // Set and Format Start and End Date to be date of today.
1471 $start_date = $end_date = date( 'Y/m/d', $current_time );
1472
1473 break;
1474
1475 case 'yesterday':
1476
1477 // Set and Format Start and End Date to be date of yesterday.
1478 $start_date = $end_date = date( 'Y/m', $current_time ) . '/' . ( date( 'd', $current_time ) - 1 );
1479
1480 break;
1481
1482 case 'range':
1483
1484 // Format Start Date and End Date for filtering payment based on date range.
1485 $start_date = $dates['year'] . '/' . $dates['m_start'] . '/' . $dates['day_start'];
1486 $end_date = $dates['year_end'] . '/' . $dates['m_end'] . '/' . $dates['day_end'];
1487
1488 break;
1489
1490 }
1491
1492 $args = array(
1493 'fields' => 'ids',
1494 'start_date' => $start_date,
1495 'end_date' => $end_date,
1496 'number' => $this->per_page(),
1497 'page' => $this->get_paged(),
1498 );
1499
1500 $query = give_get_payments( $args );
1501 } else {
1502 $args = array(
1503 'fields' => 'ids',
1504 'number' => $this->per_page(),
1505 'page' => $this->get_paged(),
1506 );
1507 $query = give_get_payments( $args );
1508 }// End if().
1509
1510 if ( $query ) {
1511 $i = 0;
1512 foreach ( $query as $payment ) {
1513
1514 if ( is_numeric( $payment ) ) {
1515 $payment = new Give_Payment( $payment );
1516 $payment_meta = $payment->get_meta();
1517 $user_info = $payment->user_info;
1518 }
1519
1520 $payment_meta = $payment->get_meta();
1521 $user_info = $payment->user_info;
1522
1523 $first_name = isset( $user_info['first_name'] ) ? $user_info['first_name'] : '';
1524 $last_name = isset( $user_info['last_name'] ) ? $user_info['last_name'] : '';
1525
1526 $donations['donations'][ $i ]['ID'] = $payment->number;
1527 $donations['donations'][ $i ]['transaction_id'] = $payment->transaction_id;
1528 $donations['donations'][ $i ]['key'] = $payment->key;
1529 $donations['donations'][ $i ]['total'] = $payment->total;
1530 $donations['donations'][ $i ]['status'] = give_get_payment_status( $payment, true );
1531 $donations['donations'][ $i ]['gateway'] = $payment->gateway;
1532 $donations['donations'][ $i ]['name'] = $first_name . ' ' . $last_name;
1533 $donations['donations'][ $i ]['fname'] = $first_name;
1534 $donations['donations'][ $i ]['lname'] = $last_name;
1535 $donations['donations'][ $i ]['email'] = $payment->email;
1536 $donations['donations'][ $i ]['date'] = $payment->date;
1537 $donations['donations'][ $i ]['payment_meta'] = array();
1538
1539 $form_id = isset( $payment_meta['form_id'] ) ? $payment_meta['form_id'] : $payment_meta;
1540 $price = isset( $payment_meta['form_id'] ) ? give_get_form_price( $payment_meta['form_id'] ) : false;
1541 $price_id = isset( $payment_meta['price_id'] ) ? $payment_meta['price_id'] : null;
1542
1543 $donations['donations'][ $i ]['form']['id'] = $form_id;
1544 $donations['donations'][ $i ]['form']['name'] = get_the_title( $payment_meta['form_id'] );
1545 $donations['donations'][ $i ]['form']['price'] = $price;
1546
1547 if ( give_has_variable_prices( $form_id ) ) {
1548 if ( isset( $payment_meta['price_id'] ) ) {
1549 $price_name = give_get_price_option_name( $form_id, $payment_meta['price_id'], $payment->ID );
1550 $donations['donations'][ $i ]['form']['price_name'] = $price_name;
1551 $donations['donations'][ $i ]['form']['price_id'] = $price_id;
1552 $donations['donations'][ $i ]['form']['price'] = give_get_price_option_amount( $form_id, $price_id );
1553
1554 }
1555 }
1556
1557 if( ! empty( $payment_meta ) ) {
1558 // Add custom meta to API
1559 foreach ( $payment_meta as $meta_key => $meta_value ) {
1560
1561 $exceptions = array(
1562 'form_title',
1563 'form_id',
1564 'price_id',
1565 'user_info',
1566 'key',
1567 'email',
1568 'date',
1569 );
1570
1571 // Don't clutter up results with dupes
1572 if ( in_array( $meta_key, $exceptions ) ) {
1573 continue;
1574 }
1575
1576 $donations['donations'][ $i ]['payment_meta'][ $meta_key ] = $meta_value;
1577
1578 }
1579 }
1580
1581 $i ++;
1582 }// End foreach().
1583 }// End if().
1584
1585 return apply_filters( 'give_api_donations_endpoint', $donations );
1586 }
1587
1588 /**
1589 * Retrieve the output format.
1590 *
1591 * Determines whether results should be displayed in XML or JSON.
1592 *
1593 * @since 1.1
1594 * @access public
1595 *
1596 * @return mixed
1597 */
1598 public function get_output_format() {
1599 global $wp_query;
1600
1601 $format = isset( $wp_query->query_vars['format'] ) ? $wp_query->query_vars['format'] : 'json';
1602
1603 return apply_filters( 'give_api_output_format', $format );
1604 }
1605
1606
1607 /**
1608 * Log each API request, if enabled.
1609 *
1610 * @access private
1611 * @since 1.1
1612 *
1613 * @global WP_Query $wp_query
1614 *
1615 * @param array $data
1616 *
1617 * @return void
1618 */
1619 private function log_request( $data = array() ) {
1620 if ( ! $this->log_requests ) {
1621 return;
1622 }
1623
1624 /**
1625 * @var WP_Query $wp_query
1626 */
1627 global $wp_query;
1628
1629 $query = array(
1630 'give-api' => $wp_query->query_vars['give-api'],
1631 'key' => isset( $wp_query->query_vars['key'] ) ? $wp_query->query_vars['key'] : null,
1632 'token' => isset( $wp_query->query_vars['token'] ) ? $wp_query->query_vars['token'] : null,
1633 'query' => isset( $wp_query->query_vars['query'] ) ? $wp_query->query_vars['query'] : null,
1634 'type' => isset( $wp_query->query_vars['type'] ) ? $wp_query->query_vars['type'] : null,
1635 'form' => isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null,
1636 'donor' => isset( $wp_query->query_vars['donor'] ) ? $wp_query->query_vars['donor'] : null,
1637 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
1638 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
1639 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
1640 'id' => isset( $wp_query->query_vars['id'] ) ? $wp_query->query_vars['id'] : null,
1641 'purchasekey' => isset( $wp_query->query_vars['purchasekey'] ) ? $wp_query->query_vars['purchasekey'] : null,
1642 'email' => isset( $wp_query->query_vars['email'] ) ? $wp_query->query_vars['email'] : null,
1643 );
1644
1645 $log_data = array(
1646 'log_type' => 'api_request',
1647 'post_excerpt' => http_build_query( $query ),
1648 'post_content' => ! empty( $data['error'] ) ? $data['error'] : '',
1649 );
1650
1651 $log_meta = array(
1652 'api_query' => http_build_query( $query ),
1653 'request_ip' => give_get_ip(),
1654 'user' => $this->user_id,
1655 'key' => isset( $wp_query->query_vars['key'] ) ? $wp_query->query_vars['key'] : null,
1656 'token' => isset( $wp_query->query_vars['token'] ) ? $wp_query->query_vars['token'] : null,
1657 'time' => $data['request_speed'],
1658 'version' => $this->get_queried_version(),
1659 );
1660
1661 Give()->logs->insert_log( $log_data, $log_meta );
1662 }
1663
1664
1665 /**
1666 * Retrieve the output data.
1667 *
1668 * @access public
1669 * @since 1.1
1670 * @return array
1671 */
1672 public function get_output() {
1673 return $this->data;
1674 }
1675
1676 /**
1677 * Output Query in either JSON/XML.
1678 * The query data is outputted as JSON by default.
1679 *
1680 * @since 1.1
1681 * @global WP_Query $wp_query
1682 *
1683 * @param int $status_code
1684 */
1685 public function output( $status_code = 200 ) {
1686
1687 $format = $this->get_output_format();
1688
1689 status_header( $status_code );
1690
1691 /**
1692 * Fires before outputting the API.
1693 *
1694 * @since 1.1
1695 *
1696 * @param array $data Response data to return.
1697 * @param Give_API $this The Give_API object.
1698 * @param string $format Output format, XML or JSON. Default is JSON.
1699 */
1700 do_action( 'give_api_output_before', $this->data, $this, $format );
1701
1702 switch ( $format ) :
1703
1704 case 'xml' :
1705
1706 require_once GIVE_PLUGIN_DIR . 'includes/libraries/array2xml.php';
1707 $xml = Array2XML::createXML( 'give', $this->data );
1708 echo $xml->saveXML();
1709
1710 break;
1711
1712 case 'json' :
1713
1714 header( 'Content-Type: application/json' );
1715 if ( ! empty( $this->pretty_print ) ) {
1716 echo json_encode( $this->data, $this->pretty_print );
1717 } else {
1718 echo json_encode( $this->data );
1719 }
1720
1721 break;
1722
1723 default :
1724
1725 /**
1726 * Fires by the API while outputting other formats.
1727 *
1728 * @since 1.1
1729 *
1730 * @param array $data Response data to return.
1731 * @param Give_API $this The Give_API object.
1732 */
1733 do_action( "give_api_output_{$format}", $this->data, $this );
1734
1735 break;
1736
1737 endswitch;
1738
1739 /**
1740 * Fires after outputting the API.
1741 *
1742 * @since 1.1
1743 *
1744 * @param array $data Response data to return.
1745 * @param Give_API $this The Give_API object.
1746 * @param string $format Output format, XML or JSON. Default is JSON.
1747 */
1748 do_action( 'give_api_output_after', $this->data, $this, $format );
1749
1750 give_die();
1751 }
1752
1753 /**
1754 * Modify User Profile
1755 *
1756 * Modifies the output of profile.php to add key generation/revocation.
1757 *
1758 * @access public
1759 * @since 1.1
1760 *
1761 * @param object $user Current user info
1762 *
1763 * @return void
1764 */
1765 function user_key_field( $user ) {
1766
1767 if ( ( give_get_option( 'api_allow_user_keys', false ) || current_user_can( 'manage_give_settings' ) ) && current_user_can( 'edit_user', $user->ID ) ) {
1768
1769 $user = get_userdata( $user->ID );
1770 ?>
1771 <table class="form-table">
1772 <tbody>
1773 <tr>
1774 <th>
1775 <?php _e( 'Give API Keys', 'give' ); ?>
1776 </th>
1777 <td>
1778 <?php
1779 $public_key = $this->get_user_public_key( $user->ID );
1780 $secret_key = $this->get_user_secret_key( $user->ID );
1781 ?>
1782 <?php if ( empty( $user->give_user_public_key ) ) { ?>
1783 <input name="give_set_api_key" type="checkbox" id="give_set_api_key" />
1784 <span class="description"><?php _e( 'Generate API Key', 'give' ); ?></span>
1785 <?php } else { ?>
1786 <strong style="display:inline-block; width: 125px;"><?php _e( 'Public key:', 'give' ); ?>
1787 &nbsp;</strong>
1788 <input type="text" disabled="disabled" class="regular-text" id="publickey" value="<?php echo esc_attr( $public_key ); ?>" />
1789 <br />
1790 <strong style="display:inline-block; width: 125px;"><?php _e( 'Secret key:', 'give' ); ?>
1791 &nbsp;</strong>
1792 <input type="text" disabled="disabled" class="regular-text" id="privatekey" value="<?php echo esc_attr( $secret_key ); ?>" />
1793 <br />
1794 <strong style="display:inline-block; width: 125px;"><?php _e( 'Token:', 'give' ); ?>
1795 &nbsp;</strong>
1796 <input type="text" disabled="disabled" class="regular-text" id="token" value="<?php echo esc_attr( $this->get_token( $user->ID ) ); ?>" />
1797 <br />
1798 <input name="give_revoke_api_key" type="checkbox" id="give_revoke_api_key" />
1799 <span class="description"><label for="give_revoke_api_key"><?php _e( 'Revoke API Keys', 'give' ); ?></label></span>
1800 <?php } ?>
1801 </td>
1802 </tr>
1803 </tbody>
1804 </table>
1805 <?php }// End if().
1806 }
1807
1808 /**
1809 * Process an API key generation/revocation
1810 *
1811 * @access public
1812 * @since 1.1
1813 *
1814 * @param array $args
1815 *
1816 * @return void
1817 */
1818 public function process_api_key( $args ) {
1819
1820 if ( ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'give-api-nonce' ) ) {
1821 wp_die( __( 'Nonce verification failed.', 'give' ), __( 'Error', 'give' ), array(
1822 'response' => 403,
1823 ) );
1824 }
1825
1826 if ( empty( $args['user_id'] ) ) {
1827 wp_die( __( 'User ID Required.', 'give' ), __( 'Error', 'give' ), array(
1828 'response' => 401,
1829 ) );
1830 }
1831
1832 if ( is_numeric( $args['user_id'] ) ) {
1833 $user_id = isset( $args['user_id'] ) ? absint( $args['user_id'] ) : get_current_user_id();
1834 } else {
1835 $userdata = get_user_by( 'login', $args['user_id'] );
1836 $user_id = $userdata->ID;
1837 }
1838 $process = isset( $args['give_api_process'] ) ? strtolower( $args['give_api_process'] ) : false;
1839
1840 if ( $user_id == get_current_user_id() && ! give_get_option( 'allow_user_api_keys' ) && ! current_user_can( 'manage_give_settings' ) ) {
1841 wp_die( sprintf( /* translators: %s: process */
1842 __( 'You do not have permission to %s API keys for this user.', 'give' ), $process ), __( 'Error', 'give' ), array(
1843 'response' => 403,
1844 ) );
1845 } elseif ( ! current_user_can( 'manage_give_settings' ) ) {
1846 wp_die( sprintf( /* translators: %s: process */
1847 __( 'You do not have permission to %s API keys for this user.', 'give' ), $process ), __( 'Error', 'give' ), array(
1848 'response' => 403,
1849 ) );
1850 }
1851
1852 switch ( $process ) {
1853 case 'generate':
1854 if ( $this->generate_api_key( $user_id ) ) {
1855 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1856 wp_redirect( add_query_arg( 'give-message', 'api-key-generated', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1857 exit();
1858 } else {
1859 wp_redirect( add_query_arg( 'give-message', 'api-key-failed', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1860 exit();
1861 }
1862 break;
1863 case 'regenerate':
1864 $this->generate_api_key( $user_id, true );
1865 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1866 wp_redirect( add_query_arg( 'give-message', 'api-key-regenerated', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1867 exit();
1868 break;
1869 case 'revoke':
1870 $this->revoke_api_key( $user_id );
1871 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1872 wp_redirect( add_query_arg( 'give-message', 'api-key-revoked', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1873 exit();
1874 break;
1875 default;
1876 break;
1877 }
1878 }
1879
1880 /**
1881 * Generate new API keys for a user
1882 *
1883 * @param int $user_id User ID the key is being generated for.
1884 * @param boolean $regenerate Regenerate the key for the user.
1885 *
1886 * @access public
1887 * @since 1.1
1888 *
1889 * @return boolean True if (re)generated successfully, false otherwise.
1890 */
1891 public function generate_api_key( $user_id = 0, $regenerate = false ) {
1892
1893 // Bail out, if user doesn't exists.
1894 if ( empty( $user_id ) ) {
1895 return false;
1896 }
1897
1898 $user = get_userdata( $user_id );
1899
1900 // Bail Out, if user object doesn't exists.
1901 if ( ! $user ) {
1902 return false;
1903 }
1904
1905 $new_public_key = '';
1906 $new_secret_key = '';
1907
1908 if( ! empty( $_POST['from'] ) && 'profile' === $_POST['from'] ) {
1909 // For User Profile Page.
1910 if( ! empty( $_POST['give_set_api_key'] ) ) {
1911 // Generate API Key from User Profile page.
1912 $new_public_key = $this->generate_public_key( $user->user_email );
1913 $new_secret_key = $this->generate_private_key( $user->ID );
1914 } elseif ( ! empty( $_POST['give_revoke_api_key'] ) ) {
1915 // Revoke API Key from User Profile page.
1916 $this->revoke_api_key( $user->ID );
1917 } else {
1918 return false;
1919 }
1920 } else {
1921 // For Tools > API page.
1922 $public_key = $this->get_user_public_key( $user_id );
1923
1924 if ( empty( $public_key ) && ! $regenerate ) {
1925 // Generating API for first time.
1926 $new_public_key = $this->generate_public_key( $user->user_email );
1927 $new_secret_key = $this->generate_private_key( $user->ID );
1928 } elseif ( $public_key && $regenerate ) {
1929 // API Key already exists and Regenerating API Key.
1930 $this->revoke_api_key( $user->ID );
1931 $new_public_key = $this->generate_public_key( $user->user_email );
1932 $new_secret_key = $this->generate_private_key( $user->ID );
1933 } elseif ( ! empty( $public_key ) && ! $regenerate ) {
1934 // Doing nothing, when API Key exists but still try to generate again instead of regenerating.
1935 return false;
1936 } else {
1937 // Revoke API Key.
1938 $this->revoke_api_key( $user->ID );
1939 }
1940 }
1941
1942 update_user_meta( $user_id, $new_public_key, 'give_user_public_key' );
1943 update_user_meta( $user_id, $new_secret_key, 'give_user_secret_key' );
1944
1945 return true;
1946 }
1947
1948 /**
1949 * Revoke a users API keys
1950 *
1951 * @access public
1952 * @since 1.1
1953 *
1954 * @param int $user_id User ID of user to revoke key for
1955 *
1956 * @return bool
1957 */
1958 public function revoke_api_key( $user_id = 0 ) {
1959
1960 if ( empty( $user_id ) ) {
1961 return false;
1962 }
1963
1964 $user = get_userdata( $user_id );
1965
1966 if ( ! $user ) {
1967 return false;
1968 }
1969
1970 $public_key = $this->get_user_public_key( $user_id );
1971 $secret_key = $this->get_user_secret_key( $user_id );
1972 if ( ! empty( $public_key ) ) {
1973 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_' . $public_key ) ) );
1974 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_public_key' . $user_id ) ) );
1975 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_secret_key' . $user_id ) ) );
1976 delete_user_meta( $user_id, $public_key );
1977 delete_user_meta( $user_id, $secret_key );
1978 } else {
1979 return false;
1980 }
1981
1982 return true;
1983 }
1984
1985 public function get_version() {
1986 return self::VERSION;
1987 }
1988
1989 /**
1990 * Generate the public key for a user
1991 *
1992 * @access private
1993 * @since 1.1
1994 *
1995 * @param string $user_email
1996 *
1997 * @return string
1998 */
1999 private function generate_public_key( $user_email = '' ) {
2000 $auth_key = defined( 'AUTH_KEY' ) ? AUTH_KEY : '';
2001 $public = hash( 'md5', $user_email . $auth_key . date( 'U' ) );
2002
2003 return $public;
2004 }
2005
2006 /**
2007 * Generate the secret key for a user
2008 *
2009 * @access private
2010 * @since 1.1
2011 *
2012 * @param int $user_id
2013 *
2014 * @return string
2015 */
2016 private function generate_private_key( $user_id = 0 ) {
2017 $auth_key = defined( 'AUTH_KEY' ) ? AUTH_KEY : '';
2018 $secret = hash( 'md5', $user_id . $auth_key . date( 'U' ) );
2019
2020 return $secret;
2021 }
2022
2023 /**
2024 * Retrieve the user's token
2025 *
2026 * @access private
2027 * @since 1.1
2028 *
2029 * @param int $user_id
2030 *
2031 * @return string
2032 */
2033 public function get_token( $user_id = 0 ) {
2034 return hash( 'md5', $this->get_user_secret_key( $user_id ) . $this->get_user_public_key( $user_id ) );
2035 }
2036
2037 /**
2038 * Generate the default donation stats returned by the 'stats' endpoint
2039 *
2040 * @access private
2041 * @since 1.1
2042 * @return array default sales statistics
2043 */
2044 private function get_default_sales_stats() {
2045
2046 // Default sales return
2047 $donations = array();
2048 $donations['donations']['today'] = $this->stats->get_sales( 0, 'today' );
2049 $donations['donations']['current_month'] = $this->stats->get_sales( 0, 'this_month' );
2050 $donations['donations']['last_month'] = $this->stats->get_sales( 0, 'last_month' );
2051 $donations['donations']['totals'] = give_get_total_donations();
2052
2053 return $donations;
2054 }
2055
2056 /**
2057 * Generate the default earnings stats returned by the 'stats' endpoint
2058 *
2059 * @access private
2060 * @since 1.1
2061 * @return array default earnings statistics
2062 */
2063 private function get_default_earnings_stats() {
2064
2065 // Default earnings return
2066 $earnings = array();
2067 $earnings['earnings']['today'] = $this->stats->get_earnings( 0, 'today' );
2068 $earnings['earnings']['current_month'] = $this->stats->get_earnings( 0, 'this_month' );
2069 $earnings['earnings']['last_month'] = $this->stats->get_earnings( 0, 'last_month' );
2070 $earnings['earnings']['totals'] = give_get_total_earnings();
2071
2072 return $earnings;
2073 }
2074
2075 /**
2076 * API Key Backwards Compatibility
2077 *
2078 * A Backwards Compatibility call for the change of meta_key/value for users API Keys.
2079 *
2080 * @since 1.3.6
2081 *
2082 * @param string $check Whether to check the cache or not
2083 * @param int $object_id The User ID being passed
2084 * @param string $meta_key The user meta key
2085 * @param bool $single If it should return a single value or array
2086 *
2087 * @return string The API key/secret for the user supplied
2088 */
2089 public function api_key_backwards_compat( $check, $object_id, $meta_key, $single ) {
2090
2091 if ( $meta_key !== 'give_user_public_key' && $meta_key !== 'give_user_secret_key' ) {
2092 return $check;
2093 }
2094
2095 $return = $check;
2096
2097 switch ( $meta_key ) {
2098 case 'give_user_public_key':
2099 $return = Give()->api->get_user_public_key( $object_id );
2100 break;
2101 case 'give_user_secret_key':
2102 $return = Give()->api->get_user_secret_key( $object_id );
2103 break;
2104 }
2105
2106 if ( ! $single ) {
2107 $return = array( $return );
2108 }
2109
2110 return $return;
2111
2112 }
2113
2114 }
2115