PluginProbe ʕ •ᴥ•ʔ
GiveWP – Donation Plugin and Fundraising Platform / 2.1.2
GiveWP – Donation Plugin and Fundraising Platform v2.1.2
4.16.3 4.16.2 4.16.1 4.16.0 4.15.5 4.15.4 4.15.3 4.15.2 4.15.1 4.15.0 2.3.0 2.3.1 2.3.2 2.30.0 2.31.0 2.31.1 2.32.0 2.33.0 2.33.1 2.33.2 2.33.3 2.33.4 2.33.5 2.4.0 2.4.1 2.4.2 2.4.3 2.4.4 2.4.5 2.4.6 2.4.7 2.5.0 2.5.1 2.5.10 2.5.11 2.5.12 2.5.13 2.5.2 2.5.3 2.5.4 2.5.5 2.5.6 2.5.7 2.5.8 2.5.9 2.6.0 2.6.1 2.6.2 2.6.3 2.7.0 2.7.1 2.7.2 2.7.3 2.7.4 2.7.5 2.8.0 2.8.1 2.9.0 2.9.1 2.9.2 2.9.3 2.9.4 2.9.5 2.9.6 2.9.7 3.0.0 3.0.1 3.0.2 3.0.3 3.0.4 3.1.0 3.1.1 3.1.2 3.10.0 3.11.0 3.12.0 3.12.1 3.12.2 3.12.3 3.13.0 3.14.0 3.14.1 3.14.2 3.15.0 3.15.1 3.16.0 3.16.1 3.16.2 3.16.3 3.16.4 3.16.5 3.17.0 3.17.1 3.17.2 3.18.0 3.19.0 3.19.1 3.19.2 3.19.3 3.19.4 3.2.0 3.2.1 3.2.2 3.20.0 3.21.0 3.21.1 3.22.0 3.22.1 3.22.2 3.3.0 3.3.1 3.4.0 3.4.1 3.4.2 3.5.0 3.5.1 3.6.0 3.6.1 3.6.2 3.7.0 3.8.0 3.9.0 4.0.0 4.1.0 4.1.1 4.10.0 4.10.1 4.11.0 4.12.0 4.13.0 4.13.1 4.13.2 4.14.0 4.14.1 4.14.2 4.14.3 4.14.4 4.14.5 4.14.6 4.2.0 4.2.1 4.3.0 4.3.1 4.3.2 4.4.0 4.5.0 4.6.1 4.7.0 4.7.1 4.8.0 4.8.1 4.9.0 trunk 1.9.0 2.0.0 2.0.1 2.0.2 2.0.3 2.0.4 2.0.5 2.0.6 2.0.7 2.1.0 2.1.1 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.10.0 2.10.1 2.10.2 2.10.3 2.10.4 2.11.0 2.11.1 2.11.2 2.11.3 2.12.0 2.12.1 2.12.2 2.12.3 2.13.0 2.13.1 2.13.2 2.13.3 2.13.4 2.14.0 2.15.0 2.16.0 2.16.1 2.17.0 2.17.1 2.17.3 2.18.0 2.18.1 2.19.1 2.19.2 2.19.3 2.19.4 2.19.5 2.19.6 2.19.7 2.19.8 2.2.0 2.2.1 2.2.2 2.2.3 2.2.4 2.2.5 2.2.6 2.20.0 2.20.1 2.20.2 2.21.0 2.21.1 2.21.2 2.21.3 2.21.4 2.22.0 2.22.1 2.22.2 2.22.3 2.23.0 2.23.1 2.23.2 2.24.0 2.24.1 2.24.2 2.25.0 2.25.1 2.25.2 2.25.3 2.26.0 2.27.0 2.27.1 2.27.2 2.27.3 2.28.0 2.29.0 2.29.1 2.29.2
give / includes / api / class-give-api.php
give / includes / api Last commit date
class-give-api-v1.php 8 years ago class-give-api-v2.php 8 years ago class-give-api.php 8 years ago
class-give-api.php
2116 lines
1 <?php
2 /**
3 * Give API
4 *
5 * A front-facing JSON/XML API that makes it possible to query donation data.
6 *
7 * @package Give
8 * @subpackage Classes/API
9 * @copyright Copyright (c) 2016, WordImpress
10 * @license https://opensource.org/licenses/gpl-license GNU Public License
11 * @since 1.1
12 */
13
14 // Exit if accessed directly.
15 if ( ! defined( 'ABSPATH' ) ) {
16 exit;
17 }
18
19 /**
20 * Give_API Class
21 *
22 * Renders API returns as a JSON/XML array
23 *
24 * @since 1.1
25 */
26 class Give_API {
27
28 /**
29 * Latest API Version
30 */
31 const VERSION = 1;
32
33 /**
34 * Pretty Print?
35 *
36 * @var bool
37 * @access private
38 * @since 1.1
39 */
40 private $pretty_print = false;
41
42 /**
43 * Log API requests?
44 *
45 * @var bool
46 * @access public
47 * @since 1.1
48 */
49 public $log_requests = true;
50
51 /**
52 * Is this a valid request?
53 *
54 * @var bool
55 * @access private
56 * @since 1.1
57 */
58 private $is_valid_request = false;
59
60 /**
61 * User ID Performing the API Request
62 *
63 * @var int
64 * @access public
65 * @since 1.1
66 */
67 public $user_id = 0;
68
69 /**
70 * Instance of Give Stats class
71 *
72 * @var object
73 * @access private
74 * @since 1.1
75 */
76 private $stats;
77
78 /**
79 * Response data to return
80 *
81 * @var array
82 * @access private
83 * @since 1.1
84 */
85 private $data = array();
86
87 /**
88 * Whether or not to override api key validation.
89 *
90 * @var bool
91 * @access public
92 * @since 1.1
93 */
94 public $override = true;
95
96 /**
97 * Version of the API queried
98 *
99 * @var string
100 * @access public
101 * @since 1.1
102 */
103 private $queried_version;
104
105 /**
106 * All versions of the API
107 *
108 * @var array
109 * @access protected
110 * @since 1.1
111 */
112 protected $versions = array();
113
114 /**
115 * Queried endpoint
116 *
117 * @var string
118 * @access private
119 * @since 1.1
120 */
121 private $endpoint;
122
123 /**
124 * Endpoints routes
125 *
126 * @var object
127 * @access private
128 * @since 1.1
129 */
130 private $routes;
131
132 /**
133 * Setup the Give API
134 *
135 * @since 1.1
136 * @access public
137 */
138 public function __construct() {
139
140 $this->versions = array(
141 'v1' => 'GIVE_API_V1',
142 );
143
144 foreach ( $this->get_versions() as $version => $class ) {
145 require_once GIVE_PLUGIN_DIR . 'includes/api/class-give-api-' . $version . '.php';
146 }
147
148 add_action( 'init', array( $this, 'add_endpoint' ) );
149 add_action( 'wp', array( $this, 'process_query' ), - 1 );
150 add_filter( 'query_vars', array( $this, 'query_vars' ) );
151 add_action( 'show_user_profile', array( $this, 'user_key_field' ) );
152 add_action( 'edit_user_profile', array( $this, 'user_key_field' ) );
153 add_action( 'personal_options_update', array( $this, 'generate_api_key' ) );
154 add_action( 'edit_user_profile_update', array( $this, 'generate_api_key' ) );
155 add_action( 'give_process_api_key', array( $this, 'process_api_key' ) );
156
157 // Setup a backwards compatibility check for user API Keys
158 add_filter( 'get_user_metadata', array( $this, 'api_key_backwards_compat' ), 10, 4 );
159
160 // Determine if JSON_PRETTY_PRINT is available
161 $this->pretty_print = defined( 'JSON_PRETTY_PRINT' ) ? JSON_PRETTY_PRINT : null;
162
163 // Allow API request logging to be turned off
164 $this->log_requests = apply_filters( 'give_api_log_requests', $this->log_requests );
165
166 // Setup Give_Payment_Stats instance
167 $this->stats = new Give_Payment_Stats();
168
169 }
170
171 /**
172 * There are certain responsibility of this function:
173 * 1. handle backward compatibility for deprecated functions
174 *
175 * @since 2.0
176 *
177 * @param $name
178 * @param $arguments
179 *
180 * @return mixed
181 */
182 public function __call( $name, $arguments ) {
183 $deprecated_function_arr = array(
184 'get_customers',
185 );
186
187 if ( in_array( $name, $deprecated_function_arr, true ) ) {
188 switch ( $name ) {
189 case 'get_customers':
190 $args = ! empty( $arguments[0] ) ? $arguments[0] : array();
191
192 return $this->get_donors( $args );
193 }
194 }
195 }
196
197 /**
198 * Registers a new rewrite endpoint for accessing the API
199 *
200 * @access public
201 *
202 * @since 1.1
203 */
204 public function add_endpoint() {
205 add_rewrite_endpoint( 'give-api', EP_ALL );
206 }
207
208 /**
209 * Registers query vars for API access
210 *
211 * @access public
212 * @since 1.1
213 *
214 * @param array $vars Query vars
215 *
216 * @return string[] $vars New query vars
217 */
218 public function query_vars( $vars ) {
219
220 $vars[] = 'token';
221 $vars[] = 'key';
222 $vars[] = 'query';
223 $vars[] = 'type';
224 $vars[] = 'form';
225 $vars[] = 'number';
226 $vars[] = 'date';
227 $vars[] = 'startdate';
228 $vars[] = 'enddate';
229 $vars[] = 'donor';
230 $vars[] = 'format';
231 $vars[] = 'id';
232 $vars[] = 'purchasekey';
233 $vars[] = 'email';
234
235 return $vars;
236 }
237
238 /**
239 * Retrieve the API versions
240 *
241 * @access public
242 * @since 1.1
243 * @return array
244 */
245 public function get_versions() {
246 return $this->versions;
247 }
248
249 /**
250 * Retrieve the API version that was queried
251 *
252 * @access public
253 * @since 1.1
254 * @return string
255 */
256 public function get_queried_version() {
257 return $this->queried_version;
258 }
259
260 /**
261 * Retrieves the default version of the API to use
262 *
263 * @access public
264 * @since 1.1
265 * @return string
266 */
267 public function get_default_version() {
268
269 $version = get_option( 'give_default_api_version' );
270
271 if ( defined( 'GIVE_API_VERSION' ) ) {
272 $version = GIVE_API_VERSION;
273 } elseif ( ! $version ) {
274 $version = 'v1';
275 }
276
277 return $version;
278 }
279
280 /**
281 * Sets the version of the API that was queried.
282 *
283 * Falls back to the default version if no version is specified
284 *
285 * @access private
286 * @since 1.1
287 */
288 private function set_queried_version() {
289
290 global $wp_query;
291
292 $version = $wp_query->query_vars['give-api'];
293
294 if ( strpos( $version, '/' ) ) {
295
296 $version = explode( '/', $version );
297 $version = strtolower( $version[0] );
298
299 $wp_query->query_vars['give-api'] = str_replace( $version . '/', '', $wp_query->query_vars['give-api'] );
300
301 if ( array_key_exists( $version, $this->versions ) ) {
302
303 $this->queried_version = $version;
304
305 } else {
306
307 $this->is_valid_request = false;
308 $this->invalid_version();
309 }
310 } else {
311
312 $this->queried_version = $this->get_default_version();
313
314 }
315
316 }
317
318 /**
319 * Validate the API request
320 *
321 * Checks for the user's public key and token against the secret key.
322 *
323 * @access private
324 * @global object $wp_query WordPress Query
325 * @uses Give_API::get_user()
326 * @uses Give_API::invalid_key()
327 * @uses Give_API::invalid_auth()
328 * @since 1.1
329 * @return bool
330 */
331 private function validate_request() {
332 global $wp_query;
333
334 $this->override = false;
335
336 // Make sure we have both user and api key
337 if ( ! empty( $wp_query->query_vars['give-api'] ) && ( $wp_query->query_vars['give-api'] !== 'forms' || ! empty( $wp_query->query_vars['token'] ) ) ) {
338
339 if ( empty( $wp_query->query_vars['token'] ) || empty( $wp_query->query_vars['key'] ) ) {
340 $this->missing_auth();
341
342 return false;
343 }
344
345 // Retrieve the user by public API key and ensure they exist
346 if ( ! ( $user = $this->get_user( $wp_query->query_vars['key'] ) ) ) {
347
348 $this->invalid_key();
349
350 return false;
351
352 } else {
353
354 $token = urldecode( $wp_query->query_vars['token'] );
355 $secret = $this->get_user_secret_key( $user );
356 $public = urldecode( $wp_query->query_vars['key'] );
357
358 if ( hash_equals( md5( $secret . $public ), $token ) ) {
359 $this->is_valid_request = true;
360 } else {
361 $this->invalid_auth();
362
363 return false;
364 }
365
366 }
367 } elseif ( ! empty( $wp_query->query_vars['give-api'] ) && $wp_query->query_vars['give-api'] === 'forms' ) {
368 $this->is_valid_request = true;
369 $wp_query->set( 'key', 'public' );
370 }
371 }
372
373 /**
374 * Retrieve the user ID based on the public key provided
375 *
376 * @access public
377 * @since 1.1
378 * @global WPDB $wpdb Used to query the database using the WordPress
379 * Database API
380 *
381 * @param string $key Public Key
382 *
383 * @return bool if user ID is found, false otherwise
384 */
385 public function get_user( $key = '' ) {
386 global $wpdb, $wp_query;
387
388 if ( empty( $key ) ) {
389 $key = urldecode( $wp_query->query_vars['key'] );
390 }
391
392 if ( empty( $key ) ) {
393 return false;
394 }
395
396 $user = Give_Cache::get( md5( 'give_api_user_' . $key ), true );
397
398 if ( false === $user ) {
399 $user = $wpdb->get_var( $wpdb->prepare( "SELECT user_id FROM $wpdb->usermeta WHERE meta_key = %s LIMIT 1", $key ) );
400 Give_Cache::set( md5( 'give_api_user_' . $key ), $user, DAY_IN_SECONDS, true );
401 }
402
403 if ( $user != null ) {
404 $this->user_id = $user;
405
406 return $user;
407 }
408
409 return false;
410 }
411
412 /**
413 * Get user public key.
414 *
415 * @param int $user_id
416 *
417 * @return mixed|null|string
418 */
419 public function get_user_public_key( $user_id = 0 ) {
420 global $wpdb;
421
422 if ( empty( $user_id ) ) {
423 return '';
424 }
425
426 $cache_key = md5( 'give_api_user_public_key' . $user_id );
427 $user_public_key = Give_Cache::get( $cache_key, true );
428
429 if ( empty( $user_public_key ) ) {
430 $user_public_key = $wpdb->get_var( $wpdb->prepare( "SELECT meta_key FROM $wpdb->usermeta WHERE meta_value = 'give_user_public_key' AND user_id = %d", $user_id ) );
431 Give_Cache::set( $cache_key, $user_public_key, HOUR_IN_SECONDS, true );
432 }
433
434 return $user_public_key;
435 }
436
437 /**
438 * Get user secret key.
439 *
440 * @param int $user_id
441 *
442 * @return mixed|null|string
443 */
444 public function get_user_secret_key( $user_id = 0 ) {
445 global $wpdb;
446
447 if ( empty( $user_id ) ) {
448 return '';
449 }
450
451 $cache_key = md5( 'give_api_user_secret_key' . $user_id );
452 $user_secret_key = Give_Cache::get( $cache_key, true );
453
454 if ( empty( $user_secret_key ) ) {
455 $user_secret_key = $wpdb->get_var( $wpdb->prepare( "SELECT meta_key FROM $wpdb->usermeta WHERE meta_value = 'give_user_secret_key' AND user_id = %d", $user_id ) );
456 Give_Cache::set( $cache_key, $user_secret_key, HOUR_IN_SECONDS, true );
457 }
458
459 return $user_secret_key;
460 }
461
462 /**
463 * Displays a missing authentication error if all the parameters are not met.
464 * provided
465 *
466 * @access private
467 * @uses Give_API::output()
468 * @since 1.1
469 */
470 private function missing_auth() {
471 $error = array();
472 $error['error'] = __( 'You must specify both a token and API key.', 'give' );
473
474 $this->data = $error;
475 $this->output( 401 );
476 }
477
478 /**
479 * Displays an authentication failed error if the user failed to provide valid
480 * credentials
481 *
482 * @access private
483 * @since 1.1
484 * @uses Give_API::output()
485 * @return void
486 */
487 private function invalid_auth() {
488 $error = array();
489 $error['error'] = __( 'Your request could not be authenticated.', 'give' );
490
491 $this->data = $error;
492 $this->output( 403 );
493 }
494
495 /**
496 * Displays an invalid API key error if the API key provided couldn't be
497 * validated
498 *
499 * @access private
500 * @since 1.1
501 * @uses Give_API::output()
502 * @return void
503 */
504 private function invalid_key() {
505 $error = array();
506 $error['error'] = __( 'Invalid API key.', 'give' );
507
508 $this->data = $error;
509 $this->output( 403 );
510 }
511
512 /**
513 * Displays an invalid version error if the version number passed isn't valid
514 *
515 * @access private
516 * @since 1.1
517 * @uses Give_API::output()
518 * @return void
519 */
520 private function invalid_version() {
521 $error = array();
522 $error['error'] = __( 'Invalid API version.', 'give' );
523
524 $this->data = $error;
525 $this->output( 404 );
526 }
527
528 /**
529 * Listens for the API and then processes the API requests
530 *
531 * @access public
532 * @global $wp_query
533 * @since 1.1
534 * @return void
535 */
536 public function process_query() {
537
538 global $wp_query;
539
540 // Start logging how long the request takes for logging
541 $before = microtime( true );
542
543 // Check for give-api var. Get out if not present
544 if ( empty( $wp_query->query_vars['give-api'] ) ) {
545 return;
546 }
547
548 // Determine which version was queried
549 $this->set_queried_version();
550
551 // Determine the kind of query
552 $this->set_query_mode();
553
554 // Check for a valid user and set errors if necessary
555 $this->validate_request();
556
557 // Only proceed if no errors have been noted
558 if ( ! $this->is_valid_request ) {
559 return;
560 }
561
562 if ( ! defined( 'GIVE_DOING_API' ) ) {
563 define( 'GIVE_DOING_API', true );
564 }
565
566 $data = array();
567 $this->routes = new $this->versions[$this->get_queried_version()];
568 $this->routes->validate_request();
569
570 switch ( $this->endpoint ) :
571
572 case 'stats' :
573
574 $data = $this->routes->get_stats( array(
575 'type' => isset( $wp_query->query_vars['type'] ) ? $wp_query->query_vars['type'] : null,
576 'form' => isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null,
577 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
578 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
579 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
580 ) );
581
582 break;
583
584 case 'forms' :
585
586 $form = isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null;
587
588 $data = $this->routes->get_forms( $form );
589
590 break;
591
592 case 'donors' :
593
594 $donor = isset( $wp_query->query_vars['donor'] ) ? $wp_query->query_vars['donor'] : null;
595
596 $data = $this->routes->get_donors( $donor );
597
598 break;
599
600 case 'donations' :
601
602 /**
603 * Call to get recent donations
604 *
605 * @params text date | today, yesterday or range
606 * @params date startdate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
607 * @params date enddate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
608 */
609 $data = $this->routes->get_recent_donations( array(
610 'id' => isset( $wp_query->query_vars['id'] ) ? $wp_query->query_vars['id'] : null,
611 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
612 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
613 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
614 ) );
615
616 break;
617
618 endswitch;
619
620 // Allow extensions to setup their own return data
621 $this->data = apply_filters( 'give_api_output_data', $data, $this->endpoint, $this );
622
623 $after = microtime( true );
624 $request_time = ( $after - $before );
625 $this->data['request_speed'] = $request_time;
626
627 // Log this API request, if enabled. We log it here because we have access to errors.
628 $this->log_request( $this->data );
629
630 // Send out data to the output function
631 $this->output();
632 }
633
634 /**
635 * Returns the API endpoint requested
636 *
637 * @access public
638 * @since 1.1
639 * @return string $query Query mode
640 */
641 public function get_query_mode() {
642
643 return $this->endpoint;
644 }
645
646 /**
647 * Determines the kind of query requested and also ensure it is a valid query
648 *
649 * @access public
650 * @since 1.1
651 * @global $wp_query
652 */
653 public function set_query_mode() {
654
655 global $wp_query;
656
657 // Whitelist our query options
658 $accepted = apply_filters( 'give_api_valid_query_modes', array(
659 'stats',
660 'forms',
661 'donors',
662 'donations',
663 ) );
664
665 $query = isset( $wp_query->query_vars['give-api'] ) ? $wp_query->query_vars['give-api'] : null;
666 $query = str_replace( $this->queried_version . '/', '', $query );
667
668 $error = array();
669
670 // Make sure our query is valid
671 if ( ! in_array( $query, $accepted ) ) {
672 $error['error'] = __( 'Invalid query.', 'give' );
673
674 $this->data = $error;
675 // 400 is Bad Request
676 $this->output( 400 );
677 }
678
679 $this->endpoint = $query;
680 }
681
682 /**
683 * Get page number
684 *
685 * @access public
686 * @since 1.1
687 * @global $wp_query
688 * @return int $wp_query->query_vars['page'] if page number returned (default: 1)
689 */
690 public function get_paged() {
691 global $wp_query;
692
693 return isset( $wp_query->query_vars['page'] ) ? $wp_query->query_vars['page'] : 1;
694 }
695
696
697 /**
698 * Number of results to display per page
699 *
700 * @access public
701 * @since 1.1
702 * @global $wp_query
703 * @return int $per_page Results to display per page (default: 10)
704 */
705 public function per_page() {
706 global $wp_query;
707
708 $per_page = isset( $wp_query->query_vars['number'] ) ? $wp_query->query_vars['number'] : 10;
709
710 if ( $per_page < 0 && $this->get_query_mode() == 'donors' ) {
711 $per_page = 99999999;
712 } // End if().
713
714 return apply_filters( 'give_api_results_per_page', $per_page );
715 }
716
717 /**
718 * Sets up the dates used to retrieve earnings/donations
719 *
720 * @access public
721 * @since 1.2
722 *
723 * @param array $args Arguments to override defaults
724 *
725 * @return array $dates
726 */
727 public function get_dates( $args = array() ) {
728 $dates = array();
729
730 $defaults = array(
731 'type' => '',
732 'form' => null,
733 'date' => null,
734 'startdate' => null,
735 'enddate' => null,
736 );
737
738 $args = wp_parse_args( $args, $defaults );
739
740 $current_time = current_time( 'timestamp' );
741
742 if ( 'range' === $args['date'] ) {
743 $startdate = strtotime( $args['startdate'] );
744 $enddate = strtotime( $args['enddate'] );
745 $dates['day_start'] = date( 'd', $startdate );
746 $dates['day_end'] = date( 'd', $enddate );
747 $dates['m_start'] = date( 'n', $startdate );
748 $dates['m_end'] = date( 'n', $enddate );
749 $dates['year'] = date( 'Y', $startdate );
750 $dates['year_end'] = date( 'Y', $enddate );
751 } else {
752 // Modify dates based on predefined ranges
753 switch ( $args['date'] ) :
754
755 case 'this_month' :
756 $dates['day'] = null;
757 $dates['m_start'] = date( 'n', $current_time );
758 $dates['m_end'] = date( 'n', $current_time );
759 $dates['year'] = date( 'Y', $current_time );
760 break;
761
762 case 'last_month' :
763 $dates['day'] = null;
764 $dates['m_start'] = date( 'n', $current_time ) == 1 ? 12 : date( 'n', $current_time ) - 1;
765 $dates['m_end'] = $dates['m_start'];
766 $dates['year'] = date( 'n', $current_time ) == 1 ? date( 'Y', $current_time ) - 1 : date( 'Y', $current_time );
767 break;
768
769 case 'today' :
770 $dates['day'] = date( 'd', $current_time );
771 $dates['m_start'] = date( 'n', $current_time );
772 $dates['m_end'] = date( 'n', $current_time );
773 $dates['year'] = date( 'Y', $current_time );
774 break;
775
776 case 'yesterday' :
777
778 $year = date( 'Y', $current_time );
779 $month = date( 'n', $current_time );
780 $day = date( 'd', $current_time );
781
782 if ( $month == 1 && $day == 1 ) {
783
784 $year -= 1;
785 $month = 12;
786 $day = cal_days_in_month( CAL_GREGORIAN, $month, $year );
787
788 } elseif ( $month > 1 && $day == 1 ) {
789
790 $month -= 1;
791 $day = cal_days_in_month( CAL_GREGORIAN, $month, $year );
792
793 } else {
794
795 $day -= 1;
796
797 }
798
799 $dates['day'] = $day;
800 $dates['m_start'] = $month;
801 $dates['m_end'] = $month;
802 $dates['year'] = $year;
803
804 break;
805
806 case 'this_quarter' :
807 $month_now = date( 'n', $current_time );
808
809 $dates['day'] = null;
810
811 if ( $month_now <= 3 ) {
812
813 $dates['m_start'] = 1;
814 $dates['m_end'] = 3;
815 $dates['year'] = date( 'Y', $current_time );
816
817 } elseif ( $month_now <= 6 ) {
818
819 $dates['m_start'] = 4;
820 $dates['m_end'] = 6;
821 $dates['year'] = date( 'Y', $current_time );
822
823 } elseif ( $month_now <= 9 ) {
824
825 $dates['m_start'] = 7;
826 $dates['m_end'] = 9;
827 $dates['year'] = date( 'Y', $current_time );
828
829 } else {
830
831 $dates['m_start'] = 10;
832 $dates['m_end'] = 12;
833 $dates['year'] = date( 'Y', $current_time );
834
835 }
836 break;
837
838 case 'last_quarter' :
839 $month_now = date( 'n', $current_time );
840
841 $dates['day'] = null;
842
843 if ( $month_now <= 3 ) {
844
845 $dates['m_start'] = 10;
846 $dates['m_end'] = 12;
847 $dates['year'] = date( 'Y', $current_time ) - 1; // Previous year
848
849 } elseif ( $month_now <= 6 ) {
850
851 $dates['m_start'] = 1;
852 $dates['m_end'] = 3;
853 $dates['year'] = date( 'Y', $current_time );
854
855 } elseif ( $month_now <= 9 ) {
856
857 $dates['m_start'] = 4;
858 $dates['m_end'] = 6;
859 $dates['year'] = date( 'Y', $current_time );
860
861 } else {
862
863 $dates['m_start'] = 7;
864 $dates['m_end'] = 9;
865 $dates['year'] = date( 'Y', $current_time );
866
867 }
868 break;
869
870 case 'this_year' :
871 $dates['day'] = null;
872 $dates['m_start'] = null;
873 $dates['m_end'] = null;
874 $dates['year'] = date( 'Y', $current_time );
875 break;
876
877 case 'last_year' :
878 $dates['day'] = null;
879 $dates['m_start'] = null;
880 $dates['m_end'] = null;
881 $dates['year'] = date( 'Y', $current_time ) - 1;
882 break;
883
884 endswitch;
885 }// End if().
886
887 /**
888 * Returns the filters for the dates used to retrieve earnings.
889 *
890 * @since 1.2
891 *
892 * @param array $dates The dates used for retrieving earnings.
893 */
894 return apply_filters( 'give_api_stat_dates', $dates );
895 }
896
897 /**
898 * Process Get Donors API Request.
899 *
900 * @access public
901 * @since 1.1
902 * @global WPDB $wpdb Used to query the database using the WordPress Database API.
903 *
904 * @param int $donor Donor ID
905 *
906 * @return array $donors Multidimensional array of the donors.
907 */
908 public function get_donors( $donor = null ) {
909
910 $donors = array();
911 $error = array();
912 if ( ! user_can( $this->user_id, 'view_give_sensitive_data' ) && ! $this->override ) {
913 return $donors;
914 }
915
916 $paged = $this->get_paged();
917 $per_page = $this->per_page();
918 $offset = $per_page * ( $paged - 1 );
919
920 if ( is_numeric( $donor ) ) {
921 $field = 'id';
922 } else {
923 $field = 'email';
924 }
925
926 $donor_query = Give()->donors->get_donors( array(
927 'number' => $per_page,
928 'offset' => $offset,
929 $field => $donor,
930 ) );
931 $donor_count = 0;
932
933 if ( $donor_query ) {
934
935 foreach ( $donor_query as $donor_obj ) {
936
937 $names = explode( ' ', $donor_obj->name );
938 $first_name = ! empty( $names[0] ) ? $names[0] : '';
939 $last_name = '';
940 if ( ! empty( $names[1] ) ) {
941 unset( $names[0] );
942 $last_name = implode( ' ', $names );
943 }
944
945 $donors['donors'][ $donor_count ]['info']['user_id'] = '';
946 $donors['donors'][ $donor_count ]['info']['username'] = '';
947 $donors['donors'][ $donor_count ]['info']['display_name'] = '';
948 $donors['donors'][ $donor_count ]['info']['donor_id'] = $donor_obj->id;
949 $donors['donors'][ $donor_count ]['info']['first_name'] = $first_name;
950 $donors['donors'][ $donor_count ]['info']['last_name'] = $last_name;
951 $donors['donors'][ $donor_count ]['info']['email'] = $donor_obj->email;
952
953 if ( ! empty( $donor_obj->user_id ) ) {
954
955 $user_data = get_userdata( $donor_obj->user_id );
956
957 // Donor with registered account.
958 $donors['donors'][ $donor_count ]['info']['user_id'] = $donor_obj->user_id;
959 $donors['donors'][ $donor_count ]['info']['username'] = $user_data->user_login;
960 $donors['donors'][ $donor_count ]['info']['display_name'] = $user_data->display_name;
961
962 }
963
964 $donors['donors'][ $donor_count ]['stats']['total_donations'] = $donor_obj->purchase_count;
965 $donors['donors'][ $donor_count ]['stats']['total_spent'] = $donor_obj->purchase_value;
966
967 /** @var $donor \Give_Donor */
968 $donor = new Give_Donor( $donor_obj->id );
969
970 // Get donor's addresses.
971 $donors['donors'][ $donor_count ]['address'] = $donor->address;
972
973 $donor_count ++;
974
975 }
976 } elseif ( $donor ) {
977
978 $error['error'] = sprintf( /* translators: %s: donor */
979 __( 'Donor %s not found.', 'give' ), $donor );
980
981 return $error;
982
983 } else {
984
985 $error['error'] = __( 'No donors found.', 'give' );
986
987 return $error;
988
989 }// End if().
990
991 return $donors;
992 }
993
994 /**
995 * Process Get Donation Forms API Request
996 *
997 * @access public
998 * @since 1.1
999 *
1000 * @param int $form Give Form ID.
1001 *
1002 * @return array $donors Multidimensional array of the forms.
1003 */
1004 public function get_forms( $form = null ) {
1005
1006 $forms = array();
1007 $error = array();
1008
1009 if ( $form == null ) {
1010 $forms['forms'] = array();
1011
1012 $form_list = get_posts( array(
1013 'post_type' => 'give_forms',
1014 'posts_per_page' => $this->per_page(),
1015 'suppress_filters' => true,
1016 'paged' => $this->get_paged(),
1017 ) );
1018
1019 if ( $form_list ) {
1020 $i = 0;
1021 foreach ( $form_list as $form_info ) {
1022 $forms['forms'][ $i ] = $this->get_form_data( $form_info );
1023 $i ++;
1024 }
1025 }
1026 } else {
1027 if ( get_post_type( $form ) == 'give_forms' ) {
1028 $form_info = get_post( $form );
1029
1030 $forms['forms'][0] = $this->get_form_data( $form_info );
1031
1032 } else {
1033 $error['error'] = sprintf( /* translators: %s: form */
1034 __( 'Form %s not found.', 'give' ), $form );
1035
1036 return $error;
1037 }
1038 }
1039
1040 return $forms;
1041 }
1042
1043 /**
1044 * Given a give_forms post object, generate the data for the API output
1045 *
1046 * @since 1.1
1047 *
1048 * @param object $form_info The Give Form's Post Object.
1049 *
1050 * @return array Array of post data to return back in the API.
1051 */
1052 private function get_form_data( $form_info ) {
1053
1054 $form = array();
1055
1056 $form['info']['id'] = $form_info->ID;
1057 $form['info']['slug'] = $form_info->post_name;
1058 $form['info']['title'] = $form_info->post_title;
1059 $form['info']['create_date'] = $form_info->post_date;
1060 $form['info']['modified_date'] = $form_info->post_modified;
1061 $form['info']['status'] = $form_info->post_status;
1062 $form['info']['link'] = html_entity_decode( $form_info->guid );
1063 $form['info']['content'] = give_get_meta( $form_info->ID, '_give_form_content', true );
1064 $form['info']['thumbnail'] = wp_get_attachment_url( get_post_thumbnail_id( $form_info->ID ) );
1065
1066 if ( give_is_setting_enabled( give_get_option( 'categories', 'disabled' ) ) ) {
1067 $form['info']['category'] = get_the_terms( $form_info, 'give_forms_category' );
1068 $form['info']['tags'] = get_the_terms( $form_info, 'give_forms_tag' );
1069 }
1070 if ( give_is_setting_enabled( give_get_option( 'tags', 'disabled' ) ) ) {
1071 $form['info']['tags'] = get_the_terms( $form_info, 'give_forms_tag' );
1072 }
1073
1074 // Check whether any goal is to be achieved for the donation form.
1075 $goal_option = give_get_meta( $form_info->ID, '_give_goal_option', true );
1076 $goal_amount = give_get_meta( $form_info->ID, '_give_set_goal', true );
1077 if ( give_is_setting_enabled( $goal_option ) && $goal_amount ) {
1078 $total_income = give_get_form_earnings_stats( $form_info->ID );
1079 $goal_percentage_completed = ( $total_income < $goal_amount ) ? round( ( $total_income / $goal_amount ) * 100, 2 ) : 100;
1080 $form['goal']['amount'] = isset( $goal_amount ) ? $goal_amount : '';
1081 $form['goal']['percentage_completed'] = isset( $goal_percentage_completed ) ? $goal_percentage_completed : '';
1082 }
1083
1084 if ( user_can( $this->user_id, 'view_give_reports' ) || $this->override ) {
1085 $form['stats']['total']['donations'] = give_get_form_sales_stats( $form_info->ID );
1086 $form['stats']['total']['earnings'] = give_get_form_earnings_stats( $form_info->ID );
1087 $form['stats']['monthly_average']['donations'] = give_get_average_monthly_form_sales( $form_info->ID );
1088 $form['stats']['monthly_average']['earnings'] = give_get_average_monthly_form_earnings( $form_info->ID );
1089 }
1090
1091 $counter = 0;
1092 if ( give_has_variable_prices( $form_info->ID ) ) {
1093 foreach ( give_get_variable_prices( $form_info->ID ) as $price ) {
1094 $counter ++;
1095 // multi-level item
1096 $level = isset( $price['_give_text'] ) ? $price['_give_text'] : 'level-' . $counter;
1097 $form['pricing'][ sanitize_key( $level ) ] = $price['_give_amount'];
1098
1099 }
1100 } else {
1101 $form['pricing']['amount'] = give_get_form_price( $form_info->ID );
1102 }
1103
1104 if ( user_can( $this->user_id, 'view_give_sensitive_data' ) || $this->override ) {
1105
1106 /**
1107 * Fires when generating API sensitive data.
1108 *
1109 * @since 1.1
1110 */
1111 do_action( 'give_api_sensitive_data' );
1112
1113 }
1114
1115 return apply_filters( 'give_api_forms_form', $form );
1116
1117 }
1118
1119 /**
1120 * Process Get Stats API Request
1121 *
1122 * @since 1.1
1123 *
1124 * @global WPDB $wpdb Used to query the database using the WordPress.
1125 *
1126 * @param array $args Arguments provided by API Request.
1127 *
1128 * @return array
1129 */
1130 public function get_stats( $args = array() ) {
1131 $defaults = array(
1132 'type' => null,
1133 'form' => null,
1134 'date' => null,
1135 'startdate' => null,
1136 'enddate' => null,
1137 );
1138
1139 $args = wp_parse_args( $args, $defaults );
1140
1141 $dates = $this->get_dates( $args );
1142
1143 $stats = array();
1144 $earnings = array(
1145 'earnings' => array(),
1146 );
1147 $donations = array(
1148 'donations' => array(),
1149 );
1150 $error = array();
1151
1152 if ( ! user_can( $this->user_id, 'view_give_reports' ) && ! $this->override ) {
1153 return $stats;
1154 }
1155
1156 if ( $args['type'] == 'donations' ) {
1157
1158 if ( $args['form'] == null ) {
1159 if ( $args['date'] == null ) {
1160 $donations = $this->get_default_sales_stats();
1161 } elseif ( $args['date'] === 'range' ) {
1162 // Return donations for a date range.
1163 // Ensure the end date is later than the start date.
1164 if ( $args['enddate'] < $args['startdate'] ) {
1165 $error['error'] = __( 'The end date must be later than the start date.', 'give' );
1166 }
1167
1168 // Ensure both the start and end date are specified
1169 if ( empty( $args['startdate'] ) || empty( $args['enddate'] ) ) {
1170 $error['error'] = __( 'Invalid or no date range specified.', 'give' );
1171 }
1172
1173 $total = 0;
1174
1175 // Loop through the years
1176 $y = $dates['year'];
1177 while ( $y <= $dates['year_end'] ) :
1178
1179 if ( $dates['year'] == $dates['year_end'] ) {
1180 $month_start = $dates['m_start'];
1181 $month_end = $dates['m_end'];
1182 } elseif ( $y == $dates['year'] && $dates['year_end'] > $dates['year'] ) {
1183 $month_start = $dates['m_start'];
1184 $month_end = 12;
1185 } elseif ( $y == $dates['year_end'] ) {
1186 $month_start = 1;
1187 $month_end = $dates['m_end'];
1188 } else {
1189 $month_start = 1;
1190 $month_end = 12;
1191 }
1192
1193 $i = $month_start;
1194 while ( $i <= $month_end ) :
1195
1196 if ( $i == $dates['m_start'] ) {
1197 $d = $dates['day_start'];
1198 } else {
1199 $d = 1;
1200 }
1201
1202 if ( $i == $dates['m_end'] ) {
1203 $num_of_days = $dates['day_end'];
1204 } else {
1205 $num_of_days = cal_days_in_month( CAL_GREGORIAN, $i, $y );
1206 }
1207
1208 while ( $d <= $num_of_days ) :
1209 $sale_count = give_get_sales_by_date( $d, $i, $y );
1210 $date_key = date( 'Ymd', strtotime( $y . '/' . $i . '/' . $d ) );
1211 if ( ! isset( $donations['sales'][ $date_key ] ) ) {
1212 $donations['sales'][ $date_key ] = 0;
1213 }
1214 $donations['sales'][ $date_key ] += $sale_count;
1215 $total += $sale_count;
1216 $d ++;
1217 endwhile;
1218 $i ++;
1219 endwhile;
1220
1221 $y ++;
1222 endwhile;
1223
1224 $donations['totals'] = $total;
1225 } else {
1226 if ( $args['date'] == 'this_quarter' || $args['date'] == 'last_quarter' ) {
1227 $donations_count = 0;
1228
1229 // Loop through the months
1230 $month = $dates['m_start'];
1231
1232 while ( $month <= $dates['m_end'] ) :
1233 $donations_count += give_get_sales_by_date( null, $month, $dates['year'] );
1234 $month ++;
1235 endwhile;
1236
1237 $donations['donations'][ $args['date'] ] = $donations_count;
1238 } else {
1239 $donations['donations'][ $args['date'] ] = give_get_sales_by_date( $dates['day'], $dates['m_start'], $dates['year'] );
1240 }
1241 }// End if().
1242 } elseif ( $args['form'] == 'all' ) {
1243 $forms = get_posts( array(
1244 'post_type' => 'give_forms',
1245 'nopaging' => true,
1246 ) );
1247 $i = 0;
1248 foreach ( $forms as $form_info ) {
1249 $donations['donations'][ $i ] = array(
1250 $form_info->post_name => give_get_form_sales_stats( $form_info->ID ),
1251 );
1252 $i ++;
1253 }
1254 } else {
1255 if ( get_post_type( $args['form'] ) == 'give_forms' ) {
1256 $form_info = get_post( $args['form'] );
1257 $donations['donations'][0] = array(
1258 $form_info->post_name => give_get_form_sales_stats( $args['form'] ),
1259 );
1260 } else {
1261 $error['error'] = sprintf( /* translators: %s: form */
1262 __( 'Form %s not found.', 'give' ), $args['form'] );
1263 }
1264 }// End if().
1265
1266 if ( ! empty( $error ) ) {
1267 return $error;
1268 }
1269
1270 return $donations;
1271
1272 } elseif ( $args['type'] == 'earnings' ) {
1273 if ( $args['form'] == null ) {
1274 if ( $args['date'] == null ) {
1275 $earnings = $this->get_default_earnings_stats();
1276 } elseif ( $args['date'] === 'range' ) {
1277 // Return sales for a date range
1278 // Ensure the end date is later than the start date
1279 if ( $args['enddate'] < $args['startdate'] ) {
1280 $error['error'] = __( 'The end date must be later than the start date.', 'give' );
1281 }
1282
1283 // Ensure both the start and end date are specified
1284 if ( empty( $args['startdate'] ) || empty( $args['enddate'] ) ) {
1285 $error['error'] = __( 'Invalid or no date range specified.', 'give' );
1286 }
1287
1288 $total = (float) 0.00;
1289
1290 // Loop through the years
1291 $y = $dates['year'];
1292 if ( ! isset( $earnings['earnings'] ) ) {
1293 $earnings['earnings'] = array();
1294 }
1295 while ( $y <= $dates['year_end'] ) :
1296
1297 if ( $dates['year'] == $dates['year_end'] ) {
1298 $month_start = $dates['m_start'];
1299 $month_end = $dates['m_end'];
1300 } elseif ( $y == $dates['year'] && $dates['year_end'] > $dates['year'] ) {
1301 $month_start = $dates['m_start'];
1302 $month_end = 12;
1303 } elseif ( $y == $dates['year_end'] ) {
1304 $month_start = 1;
1305 $month_end = $dates['m_end'];
1306 } else {
1307 $month_start = 1;
1308 $month_end = 12;
1309 }
1310
1311 $i = $month_start;
1312 while ( $i <= $month_end ) :
1313
1314 if ( $i == $dates['m_start'] ) {
1315 $d = $dates['day_start'];
1316 } else {
1317 $d = 1;
1318 }
1319
1320 if ( $i == $dates['m_end'] ) {
1321 $num_of_days = $dates['day_end'];
1322 } else {
1323 $num_of_days = cal_days_in_month( CAL_GREGORIAN, $i, $y );
1324 }
1325
1326 while ( $d <= $num_of_days ) :
1327 $earnings_stat = give_get_earnings_by_date( $d, $i, $y );
1328 $date_key = date( 'Ymd', strtotime( $y . '/' . $i . '/' . $d ) );
1329 if ( ! isset( $earnings['earnings'][ $date_key ] ) ) {
1330 $earnings['earnings'][ $date_key ] = 0;
1331 }
1332 $earnings['earnings'][ $date_key ] += $earnings_stat;
1333 $total += $earnings_stat;
1334 $d ++;
1335 endwhile;
1336
1337 $i ++;
1338 endwhile;
1339
1340 $y ++;
1341 endwhile;
1342
1343 $earnings['totals'] = $total;
1344 } else {
1345 if ( $args['date'] == 'this_quarter' || $args['date'] == 'last_quarter' ) {
1346 $earnings_count = (float) 0.00;
1347
1348 // Loop through the months
1349 $month = $dates['m_start'];
1350
1351 while ( $month <= $dates['m_end'] ) :
1352 $earnings_count += give_get_earnings_by_date( null, $month, $dates['year'] );
1353 $month ++;
1354 endwhile;
1355
1356 $earnings['earnings'][ $args['date'] ] = $earnings_count;
1357 } else {
1358 $earnings['earnings'][ $args['date'] ] = give_get_earnings_by_date( $dates['day'], $dates['m_start'], $dates['year'] );
1359 }
1360 }// End if().
1361 } elseif ( $args['form'] == 'all' ) {
1362 $forms = get_posts( array(
1363 'post_type' => 'give_forms',
1364 'nopaging' => true,
1365 ) );
1366
1367 $i = 0;
1368 foreach ( $forms as $form_info ) {
1369 $earnings['earnings'][ $i ] = array(
1370 $form_info->post_name => give_get_form_earnings_stats( $form_info->ID ),
1371 );
1372 $i ++;
1373 }
1374 } else {
1375 if ( get_post_type( $args['form'] ) == 'give_forms' ) {
1376 $form_info = get_post( $args['form'] );
1377 $earnings['earnings'][0] = array(
1378 $form_info->post_name => give_get_form_earnings_stats( $args['form'] ),
1379 );
1380 } else {
1381 $error['error'] = sprintf( /* translators: %s: form */
1382 __( 'Form %s not found.', 'give' ), $args['form'] );
1383 }
1384 }// End if().
1385
1386 if ( ! empty( $error ) ) {
1387 return $error;
1388 }
1389
1390 return $earnings;
1391 } elseif ( $args['type'] == 'donors' ) {
1392 $donors = new Give_DB_Donors();
1393 $stats['donations']['total_donors'] = $donors->count();
1394
1395 return $stats;
1396
1397 } elseif ( empty( $args['type'] ) ) {
1398 $stats = array_merge( $stats, $this->get_default_sales_stats() );
1399 $stats = array_merge( $stats, $this->get_default_earnings_stats() );
1400
1401 return array(
1402 'stats' => $stats,
1403 );
1404 }// End if().
1405 }
1406
1407 /**
1408 * Retrieves Recent Donations
1409 *
1410 * @access public
1411 * @since 1.1
1412 *
1413 * @param $args array
1414 *
1415 * @return array
1416 */
1417 public function get_recent_donations( $args = array() ) {
1418 global $wp_query;
1419
1420 $defaults = array(
1421 'id' => null,
1422 'date' => null,
1423 'startdate' => null,
1424 'enddate' => null,
1425 );
1426
1427 $args = wp_parse_args( $args, $defaults );
1428
1429 $donations = array();
1430
1431 if ( ! user_can( $this->user_id, 'view_give_reports' ) && ! $this->override ) {
1432 return $donations;
1433 }
1434
1435 if ( isset( $wp_query->query_vars['id'] ) ) {
1436 $query = array();
1437 $query[] = new Give_Payment( $wp_query->query_vars['id'] );
1438 } elseif ( isset( $wp_query->query_vars['purchasekey'] ) ) {
1439 $query = array();
1440 $query[] = give_get_payment_by( 'key', $wp_query->query_vars['purchasekey'] );
1441 } elseif ( isset( $wp_query->query_vars['email'] ) ) {
1442 $args = array(
1443 'fields' => 'ids',
1444 'meta_key' => '_give_payment_donor_email',
1445 'meta_value' => $wp_query->query_vars['email'],
1446 'number' => $this->per_page(),
1447 'page' => $this->get_paged(),
1448 );
1449 $query = give_get_payments( $args );
1450 } elseif ( isset( $wp_query->query_vars['date'] ) ) {
1451
1452 $current_time = current_time( 'timestamp' );
1453 $dates = $this->get_dates( $args );
1454 $start_date = '';
1455 $end_date = '';
1456
1457 /**
1458 * Switch case for date query argument
1459 *
1460 * @since 1.8.8
1461 *
1462 * @params text date | today, yesterday or range
1463 * @params date startdate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
1464 * @params date enddate | required when date = range and format to be YYYYMMDD (i.e. 20170524)
1465 */
1466 switch ( $wp_query->query_vars['date'] ) {
1467
1468 case 'today':
1469
1470 // Set and Format Start and End Date to be date of today.
1471 $start_date = $end_date = date( 'Y/m/d', $current_time );
1472
1473 break;
1474
1475 case 'yesterday':
1476
1477 // Set and Format Start and End Date to be date of yesterday.
1478 $start_date = $end_date = date( 'Y/m', $current_time ) . '/' . ( date( 'd', $current_time ) - 1 );
1479
1480 break;
1481
1482 case 'range':
1483
1484 // Format Start Date and End Date for filtering payment based on date range.
1485 $start_date = $dates['year'] . '/' . $dates['m_start'] . '/' . $dates['day_start'];
1486 $end_date = $dates['year_end'] . '/' . $dates['m_end'] . '/' . $dates['day_end'];
1487
1488 break;
1489
1490 }
1491
1492 $args = array(
1493 'fields' => 'ids',
1494 'start_date' => $start_date,
1495 'end_date' => $end_date,
1496 'number' => $this->per_page(),
1497 'page' => $this->get_paged(),
1498 );
1499
1500 $query = give_get_payments( $args );
1501 } else {
1502 $args = array(
1503 'fields' => 'ids',
1504 'number' => $this->per_page(),
1505 'page' => $this->get_paged(),
1506 );
1507 $query = give_get_payments( $args );
1508 }// End if().
1509
1510 if ( $query ) {
1511 $i = 0;
1512 foreach ( $query as $payment ) {
1513
1514 if ( is_numeric( $payment ) ) {
1515 $payment = new Give_Payment( $payment );
1516 $payment_meta = $payment->get_meta();
1517 $user_info = $payment->user_info;
1518 }
1519
1520 $payment_meta = $payment->get_meta();
1521 $user_info = $payment->user_info;
1522
1523 $first_name = isset( $user_info['first_name'] ) ? $user_info['first_name'] : '';
1524 $last_name = isset( $user_info['last_name'] ) ? $user_info['last_name'] : '';
1525
1526 $donations['donations'][ $i ]['ID'] = $payment->ID;
1527 $donations['donations'][ $i ]['number'] = $payment->number;
1528 $donations['donations'][ $i ]['transaction_id'] = $payment->transaction_id;
1529 $donations['donations'][ $i ]['key'] = $payment->key;
1530 $donations['donations'][ $i ]['total'] = $payment->total;
1531 $donations['donations'][ $i ]['status'] = give_get_payment_status( $payment, true );
1532 $donations['donations'][ $i ]['gateway'] = $payment->gateway;
1533 $donations['donations'][ $i ]['name'] = $first_name . ' ' . $last_name;
1534 $donations['donations'][ $i ]['fname'] = $first_name;
1535 $donations['donations'][ $i ]['lname'] = $last_name;
1536 $donations['donations'][ $i ]['email'] = $payment->email;
1537 $donations['donations'][ $i ]['date'] = $payment->date;
1538 $donations['donations'][ $i ]['payment_meta'] = array();
1539
1540 $form_id = isset( $payment_meta['form_id'] ) ? $payment_meta['form_id'] : $payment_meta;
1541 $price = isset( $payment_meta['form_id'] ) ? give_get_form_price( $payment_meta['form_id'] ) : false;
1542 $price_id = isset( $payment_meta['price_id'] ) ? $payment_meta['price_id'] : null;
1543
1544 $donations['donations'][ $i ]['form']['id'] = $form_id;
1545 $donations['donations'][ $i ]['form']['name'] = get_the_title( $payment_meta['form_id'] );
1546 $donations['donations'][ $i ]['form']['price'] = $price;
1547
1548 if ( give_has_variable_prices( $form_id ) ) {
1549 if ( isset( $payment_meta['price_id'] ) ) {
1550 $price_name = give_get_price_option_name( $form_id, $payment_meta['price_id'], $payment->ID );
1551 $donations['donations'][ $i ]['form']['price_name'] = $price_name;
1552 $donations['donations'][ $i ]['form']['price_id'] = $price_id;
1553 $donations['donations'][ $i ]['form']['price'] = give_get_price_option_amount( $form_id, $price_id );
1554
1555 }
1556 }
1557
1558 if( ! empty( $payment_meta ) ) {
1559 // Add custom meta to API
1560 foreach ( $payment_meta as $meta_key => $meta_value ) {
1561
1562 $exceptions = array(
1563 'form_title',
1564 'form_id',
1565 'price_id',
1566 'user_info',
1567 'key',
1568 'email',
1569 'date',
1570 );
1571
1572 // Don't clutter up results with dupes
1573 if ( in_array( $meta_key, $exceptions ) ) {
1574 continue;
1575 }
1576
1577 $donations['donations'][ $i ]['payment_meta'][ $meta_key ] = $meta_value;
1578
1579 }
1580 }
1581
1582 $i ++;
1583 }// End foreach().
1584 }// End if().
1585
1586 return apply_filters( 'give_api_donations_endpoint', $donations );
1587 }
1588
1589 /**
1590 * Retrieve the output format.
1591 *
1592 * Determines whether results should be displayed in XML or JSON.
1593 *
1594 * @since 1.1
1595 * @access public
1596 *
1597 * @return mixed
1598 */
1599 public function get_output_format() {
1600 global $wp_query;
1601
1602 $format = isset( $wp_query->query_vars['format'] ) ? $wp_query->query_vars['format'] : 'json';
1603
1604 return apply_filters( 'give_api_output_format', $format );
1605 }
1606
1607
1608 /**
1609 * Log each API request, if enabled.
1610 *
1611 * @access private
1612 * @since 1.1
1613 *
1614 * @global WP_Query $wp_query
1615 *
1616 * @param array $data
1617 *
1618 * @return void
1619 */
1620 private function log_request( $data = array() ) {
1621 if ( ! $this->log_requests ) {
1622 return;
1623 }
1624
1625 /**
1626 * @var WP_Query $wp_query
1627 */
1628 global $wp_query;
1629
1630 $query = array(
1631 'give-api' => $wp_query->query_vars['give-api'],
1632 'key' => isset( $wp_query->query_vars['key'] ) ? $wp_query->query_vars['key'] : null,
1633 'token' => isset( $wp_query->query_vars['token'] ) ? $wp_query->query_vars['token'] : null,
1634 'query' => isset( $wp_query->query_vars['query'] ) ? $wp_query->query_vars['query'] : null,
1635 'type' => isset( $wp_query->query_vars['type'] ) ? $wp_query->query_vars['type'] : null,
1636 'form' => isset( $wp_query->query_vars['form'] ) ? $wp_query->query_vars['form'] : null,
1637 'donor' => isset( $wp_query->query_vars['donor'] ) ? $wp_query->query_vars['donor'] : null,
1638 'date' => isset( $wp_query->query_vars['date'] ) ? $wp_query->query_vars['date'] : null,
1639 'startdate' => isset( $wp_query->query_vars['startdate'] ) ? $wp_query->query_vars['startdate'] : null,
1640 'enddate' => isset( $wp_query->query_vars['enddate'] ) ? $wp_query->query_vars['enddate'] : null,
1641 'id' => isset( $wp_query->query_vars['id'] ) ? $wp_query->query_vars['id'] : null,
1642 'purchasekey' => isset( $wp_query->query_vars['purchasekey'] ) ? $wp_query->query_vars['purchasekey'] : null,
1643 'email' => isset( $wp_query->query_vars['email'] ) ? $wp_query->query_vars['email'] : null,
1644 );
1645
1646 $log_data = array(
1647 'log_type' => 'api_request',
1648 'post_excerpt' => http_build_query( $query ),
1649 'post_content' => ! empty( $data['error'] ) ? $data['error'] : '',
1650 );
1651
1652 $log_meta = array(
1653 'api_query' => http_build_query( $query ),
1654 'request_ip' => give_get_ip(),
1655 'user' => $this->user_id,
1656 'key' => isset( $wp_query->query_vars['key'] ) ? $wp_query->query_vars['key'] : null,
1657 'token' => isset( $wp_query->query_vars['token'] ) ? $wp_query->query_vars['token'] : null,
1658 'time' => $data['request_speed'],
1659 'version' => $this->get_queried_version(),
1660 );
1661
1662 Give()->logs->insert_log( $log_data, $log_meta );
1663 }
1664
1665
1666 /**
1667 * Retrieve the output data.
1668 *
1669 * @access public
1670 * @since 1.1
1671 * @return array
1672 */
1673 public function get_output() {
1674 return $this->data;
1675 }
1676
1677 /**
1678 * Output Query in either JSON/XML.
1679 * The query data is outputted as JSON by default.
1680 *
1681 * @since 1.1
1682 * @global WP_Query $wp_query
1683 *
1684 * @param int $status_code
1685 */
1686 public function output( $status_code = 200 ) {
1687
1688 $format = $this->get_output_format();
1689
1690 status_header( $status_code );
1691
1692 /**
1693 * Fires before outputting the API.
1694 *
1695 * @since 1.1
1696 *
1697 * @param array $data Response data to return.
1698 * @param Give_API $this The Give_API object.
1699 * @param string $format Output format, XML or JSON. Default is JSON.
1700 */
1701 do_action( 'give_api_output_before', $this->data, $this, $format );
1702
1703 switch ( $format ) :
1704
1705 case 'xml' :
1706
1707 require_once GIVE_PLUGIN_DIR . 'includes/libraries/array2xml.php';
1708 $xml = Array2XML::createXML( 'give', $this->data );
1709 echo $xml->saveXML();
1710
1711 break;
1712
1713 case 'json' :
1714
1715 header( 'Content-Type: application/json' );
1716 if ( ! empty( $this->pretty_print ) ) {
1717 echo json_encode( $this->data, $this->pretty_print );
1718 } else {
1719 echo json_encode( $this->data );
1720 }
1721
1722 break;
1723
1724 default :
1725
1726 /**
1727 * Fires by the API while outputting other formats.
1728 *
1729 * @since 1.1
1730 *
1731 * @param array $data Response data to return.
1732 * @param Give_API $this The Give_API object.
1733 */
1734 do_action( "give_api_output_{$format}", $this->data, $this );
1735
1736 break;
1737
1738 endswitch;
1739
1740 /**
1741 * Fires after outputting the API.
1742 *
1743 * @since 1.1
1744 *
1745 * @param array $data Response data to return.
1746 * @param Give_API $this The Give_API object.
1747 * @param string $format Output format, XML or JSON. Default is JSON.
1748 */
1749 do_action( 'give_api_output_after', $this->data, $this, $format );
1750
1751 give_die();
1752 }
1753
1754 /**
1755 * Modify User Profile
1756 *
1757 * Modifies the output of profile.php to add key generation/revocation.
1758 *
1759 * @access public
1760 * @since 1.1
1761 *
1762 * @param object $user Current user info
1763 *
1764 * @return void
1765 */
1766 function user_key_field( $user ) {
1767
1768 if ( ( give_get_option( 'api_allow_user_keys', false ) || current_user_can( 'manage_give_settings' ) ) && current_user_can( 'edit_user', $user->ID ) ) {
1769
1770 $user = get_userdata( $user->ID );
1771 ?>
1772 <table class="form-table">
1773 <tbody>
1774 <tr>
1775 <th>
1776 <?php _e( 'Give API Keys', 'give' ); ?>
1777 </th>
1778 <td>
1779 <?php
1780 $public_key = $this->get_user_public_key( $user->ID );
1781 $secret_key = $this->get_user_secret_key( $user->ID );
1782 ?>
1783 <?php if ( empty( $user->give_user_public_key ) ) { ?>
1784 <input name="give_set_api_key" type="checkbox" id="give_set_api_key" />
1785 <span class="description"><?php _e( 'Generate API Key', 'give' ); ?></span>
1786 <?php } else { ?>
1787 <strong style="display:inline-block; width: 125px;"><?php _e( 'Public key:', 'give' ); ?>
1788 &nbsp;</strong>
1789 <input type="text" disabled="disabled" class="regular-text" id="publickey" value="<?php echo esc_attr( $public_key ); ?>" />
1790 <br />
1791 <strong style="display:inline-block; width: 125px;"><?php _e( 'Secret key:', 'give' ); ?>
1792 &nbsp;</strong>
1793 <input type="text" disabled="disabled" class="regular-text" id="privatekey" value="<?php echo esc_attr( $secret_key ); ?>" />
1794 <br />
1795 <strong style="display:inline-block; width: 125px;"><?php _e( 'Token:', 'give' ); ?>
1796 &nbsp;</strong>
1797 <input type="text" disabled="disabled" class="regular-text" id="token" value="<?php echo esc_attr( $this->get_token( $user->ID ) ); ?>" />
1798 <br />
1799 <input name="give_revoke_api_key" type="checkbox" id="give_revoke_api_key" />
1800 <span class="description"><label for="give_revoke_api_key"><?php _e( 'Revoke API Keys', 'give' ); ?></label></span>
1801 <?php } ?>
1802 </td>
1803 </tr>
1804 </tbody>
1805 </table>
1806 <?php }// End if().
1807 }
1808
1809 /**
1810 * Process an API key generation/revocation
1811 *
1812 * @access public
1813 * @since 1.1
1814 *
1815 * @param array $args
1816 *
1817 * @return void
1818 */
1819 public function process_api_key( $args ) {
1820
1821 if ( ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'give-api-nonce' ) ) {
1822 wp_die( __( 'Nonce verification failed.', 'give' ), __( 'Error', 'give' ), array(
1823 'response' => 403,
1824 ) );
1825 }
1826
1827 if ( empty( $args['user_id'] ) ) {
1828 wp_die( __( 'User ID Required.', 'give' ), __( 'Error', 'give' ), array(
1829 'response' => 401,
1830 ) );
1831 }
1832
1833 if ( is_numeric( $args['user_id'] ) ) {
1834 $user_id = isset( $args['user_id'] ) ? absint( $args['user_id'] ) : get_current_user_id();
1835 } else {
1836 $userdata = get_user_by( 'login', $args['user_id'] );
1837 $user_id = $userdata->ID;
1838 }
1839 $process = isset( $args['give_api_process'] ) ? strtolower( $args['give_api_process'] ) : false;
1840
1841 if ( $user_id == get_current_user_id() && ! give_get_option( 'allow_user_api_keys' ) && ! current_user_can( 'manage_give_settings' ) ) {
1842 wp_die( sprintf( /* translators: %s: process */
1843 __( 'You do not have permission to %s API keys for this user.', 'give' ), $process ), __( 'Error', 'give' ), array(
1844 'response' => 403,
1845 ) );
1846 } elseif ( ! current_user_can( 'manage_give_settings' ) ) {
1847 wp_die( sprintf( /* translators: %s: process */
1848 __( 'You do not have permission to %s API keys for this user.', 'give' ), $process ), __( 'Error', 'give' ), array(
1849 'response' => 403,
1850 ) );
1851 }
1852
1853 switch ( $process ) {
1854 case 'generate':
1855 if ( $this->generate_api_key( $user_id ) ) {
1856 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1857 wp_redirect( add_query_arg( 'give-message', 'api-key-generated', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1858 exit();
1859 } else {
1860 wp_redirect( add_query_arg( 'give-message', 'api-key-failed', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1861 exit();
1862 }
1863 break;
1864 case 'regenerate':
1865 $this->generate_api_key( $user_id, true );
1866 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1867 wp_redirect( add_query_arg( 'give-message', 'api-key-regenerated', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1868 exit();
1869 break;
1870 case 'revoke':
1871 $this->revoke_api_key( $user_id );
1872 Give_Cache::delete( Give_Cache::get_key( 'give_total_api_keys' ) );
1873 wp_redirect( add_query_arg( 'give-message', 'api-key-revoked', 'edit.php?post_type=give_forms&page=give-tools&tab=api' ) );
1874 exit();
1875 break;
1876 default;
1877 break;
1878 }
1879 }
1880
1881 /**
1882 * Generate new API keys for a user
1883 *
1884 * @param int $user_id User ID the key is being generated for.
1885 * @param boolean $regenerate Regenerate the key for the user.
1886 *
1887 * @access public
1888 * @since 1.1
1889 *
1890 * @return boolean True if (re)generated successfully, false otherwise.
1891 */
1892 public function generate_api_key( $user_id = 0, $regenerate = false ) {
1893
1894 // Bail out, if user doesn't exists.
1895 if ( empty( $user_id ) ) {
1896 return false;
1897 }
1898
1899 $user = get_userdata( $user_id );
1900
1901 // Bail Out, if user object doesn't exists.
1902 if ( ! $user ) {
1903 return false;
1904 }
1905
1906 $new_public_key = '';
1907 $new_secret_key = '';
1908
1909 if( ! empty( $_POST['from'] ) && 'profile' === $_POST['from'] ) {
1910 // For User Profile Page.
1911 if( ! empty( $_POST['give_set_api_key'] ) ) {
1912 // Generate API Key from User Profile page.
1913 $new_public_key = $this->generate_public_key( $user->user_email );
1914 $new_secret_key = $this->generate_private_key( $user->ID );
1915 } elseif ( ! empty( $_POST['give_revoke_api_key'] ) ) {
1916 // Revoke API Key from User Profile page.
1917 $this->revoke_api_key( $user->ID );
1918 } else {
1919 return false;
1920 }
1921 } else {
1922 // For Tools > API page.
1923 $public_key = $this->get_user_public_key( $user_id );
1924
1925 if ( empty( $public_key ) && ! $regenerate ) {
1926 // Generating API for first time.
1927 $new_public_key = $this->generate_public_key( $user->user_email );
1928 $new_secret_key = $this->generate_private_key( $user->ID );
1929 } elseif ( $public_key && $regenerate ) {
1930 // API Key already exists and Regenerating API Key.
1931 $this->revoke_api_key( $user->ID );
1932 $new_public_key = $this->generate_public_key( $user->user_email );
1933 $new_secret_key = $this->generate_private_key( $user->ID );
1934 } elseif ( ! empty( $public_key ) && ! $regenerate ) {
1935 // Doing nothing, when API Key exists but still try to generate again instead of regenerating.
1936 return false;
1937 } else {
1938 // Revoke API Key.
1939 $this->revoke_api_key( $user->ID );
1940 }
1941 }
1942
1943 update_user_meta( $user_id, $new_public_key, 'give_user_public_key' );
1944 update_user_meta( $user_id, $new_secret_key, 'give_user_secret_key' );
1945
1946 return true;
1947 }
1948
1949 /**
1950 * Revoke a users API keys
1951 *
1952 * @access public
1953 * @since 1.1
1954 *
1955 * @param int $user_id User ID of user to revoke key for
1956 *
1957 * @return bool
1958 */
1959 public function revoke_api_key( $user_id = 0 ) {
1960
1961 if ( empty( $user_id ) ) {
1962 return false;
1963 }
1964
1965 $user = get_userdata( $user_id );
1966
1967 if ( ! $user ) {
1968 return false;
1969 }
1970
1971 $public_key = $this->get_user_public_key( $user_id );
1972 $secret_key = $this->get_user_secret_key( $user_id );
1973 if ( ! empty( $public_key ) ) {
1974 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_' . $public_key ) ) );
1975 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_public_key' . $user_id ) ) );
1976 Give_Cache::delete( Give_Cache::get_key( md5( 'give_api_user_secret_key' . $user_id ) ) );
1977 delete_user_meta( $user_id, $public_key );
1978 delete_user_meta( $user_id, $secret_key );
1979 } else {
1980 return false;
1981 }
1982
1983 return true;
1984 }
1985
1986 public function get_version() {
1987 return self::VERSION;
1988 }
1989
1990 /**
1991 * Generate the public key for a user
1992 *
1993 * @access private
1994 * @since 1.1
1995 *
1996 * @param string $user_email
1997 *
1998 * @return string
1999 */
2000 private function generate_public_key( $user_email = '' ) {
2001 $auth_key = defined( 'AUTH_KEY' ) ? AUTH_KEY : '';
2002 $public = hash( 'md5', $user_email . $auth_key . date( 'U' ) );
2003
2004 return $public;
2005 }
2006
2007 /**
2008 * Generate the secret key for a user
2009 *
2010 * @access private
2011 * @since 1.1
2012 *
2013 * @param int $user_id
2014 *
2015 * @return string
2016 */
2017 private function generate_private_key( $user_id = 0 ) {
2018 $auth_key = defined( 'AUTH_KEY' ) ? AUTH_KEY : '';
2019 $secret = hash( 'md5', $user_id . $auth_key . date( 'U' ) );
2020
2021 return $secret;
2022 }
2023
2024 /**
2025 * Retrieve the user's token
2026 *
2027 * @access private
2028 * @since 1.1
2029 *
2030 * @param int $user_id
2031 *
2032 * @return string
2033 */
2034 public function get_token( $user_id = 0 ) {
2035 return hash( 'md5', $this->get_user_secret_key( $user_id ) . $this->get_user_public_key( $user_id ) );
2036 }
2037
2038 /**
2039 * Generate the default donation stats returned by the 'stats' endpoint
2040 *
2041 * @access private
2042 * @since 1.1
2043 * @return array default sales statistics
2044 */
2045 private function get_default_sales_stats() {
2046
2047 // Default sales return
2048 $donations = array();
2049 $donations['donations']['today'] = $this->stats->get_sales( 0, 'today' );
2050 $donations['donations']['current_month'] = $this->stats->get_sales( 0, 'this_month' );
2051 $donations['donations']['last_month'] = $this->stats->get_sales( 0, 'last_month' );
2052 $donations['donations']['totals'] = give_get_total_donations();
2053
2054 return $donations;
2055 }
2056
2057 /**
2058 * Generate the default earnings stats returned by the 'stats' endpoint
2059 *
2060 * @access private
2061 * @since 1.1
2062 * @return array default earnings statistics
2063 */
2064 private function get_default_earnings_stats() {
2065
2066 // Default earnings return
2067 $earnings = array();
2068 $earnings['earnings']['today'] = $this->stats->get_earnings( 0, 'today' );
2069 $earnings['earnings']['current_month'] = $this->stats->get_earnings( 0, 'this_month' );
2070 $earnings['earnings']['last_month'] = $this->stats->get_earnings( 0, 'last_month' );
2071 $earnings['earnings']['totals'] = give_get_total_earnings();
2072
2073 return $earnings;
2074 }
2075
2076 /**
2077 * API Key Backwards Compatibility
2078 *
2079 * A Backwards Compatibility call for the change of meta_key/value for users API Keys.
2080 *
2081 * @since 1.3.6
2082 *
2083 * @param string $check Whether to check the cache or not
2084 * @param int $object_id The User ID being passed
2085 * @param string $meta_key The user meta key
2086 * @param bool $single If it should return a single value or array
2087 *
2088 * @return string The API key/secret for the user supplied
2089 */
2090 public function api_key_backwards_compat( $check, $object_id, $meta_key, $single ) {
2091
2092 if ( $meta_key !== 'give_user_public_key' && $meta_key !== 'give_user_secret_key' ) {
2093 return $check;
2094 }
2095
2096 $return = $check;
2097
2098 switch ( $meta_key ) {
2099 case 'give_user_public_key':
2100 $return = Give()->api->get_user_public_key( $object_id );
2101 break;
2102 case 'give_user_secret_key':
2103 $return = Give()->api->get_user_secret_key( $object_id );
2104 break;
2105 }
2106
2107 if ( ! $single ) {
2108 $return = array( $return );
2109 }
2110
2111 return $return;
2112
2113 }
2114
2115 }
2116