PluginProbe ʕ •ᴥ•ʔ
JetFormBuilder — Dynamic Blocks Form Builder / 2.1.4
JetFormBuilder — Dynamic Blocks Form Builder v2.1.4
3.6.3.1 3.6.3 3.6.2.2 3.6.2.1 3.6.2 3.6.1.1 3.6.1 3.6.0.1 trunk 1.0.0 1.0.1 1.0.2 1.0.3 1.1.0 1.1.1 1.1.2 1.1.3 1.1.4 1.1.5 1.1.6 1.1.7 1.2.0 1.2.1 1.2.2 1.2.3 1.2.4 1.2.5 1.2.6 1.2.7 1.3.0 1.3.1 1.3.2 1.3.3 1.4.0 1.4.1 1.4.2 1.4.3 1.5.0 1.5.1 1.5.2 1.5.3 1.5.4 1.5.5 2.0.0 2.0.1 2.0.2 2.0.3 2.0.4 2.0.5 2.0.6 2.1.0 2.1.1 2.1.10 2.1.11 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.1.9 3.0.0 3.0.0.1 3.0.0.2 3.0.0.3 3.0.1 3.0.1.1 3.0.2 3.0.3 3.0.4 3.0.5 3.0.6 3.0.7 3.0.8 3.0.9 3.1.0 3.1.0.1 3.1.1 3.1.2 3.1.3 3.1.4 3.1.5 3.1.6 3.1.7 3.1.8 3.1.9 3.2.0 3.2.1 3.2.2 3.2.3 3.3.0 3.3.1 3.3.2 3.3.3 3.3.3.1 3.3.4 3.3.4.1 3.3.4.2 3.4.0 3.4.1 3.4.2 3.4.3 3.4.4 3.4.5 3.4.5.1 3.4.5.2 3.4.6 3.4.7 3.4.7.1 3.5.0 3.5.1 3.5.1.1 3.5.1.2 3.5.2 3.5.2.1 3.5.3 3.5.4 3.5.5 3.5.6 3.5.6.1 3.5.6.2 3.5.6.3 3.6.0
jetformbuilder / includes / classes / security / wp-nonce-tools.php
jetformbuilder / includes / classes / security Last commit date
csrf-token-model.php 3 years ago csrf-token-view.php 3 years ago csrf-tools.php 3 years ago wp-nonce-tools.php 3 years ago
wp-nonce-tools.php
54 lines
1 <?php
2
3
4 namespace Jet_Form_Builder\Classes\Security;
5
6 use Jet_Form_Builder\Exceptions\Request_Exception;
7
8 class Wp_Nonce_Tools {
9
10 const KEY = '_wpnonce';
11
12 public static function register() {
13 add_filter(
14 'jet-form-builder/request-handler/request',
15 array( static::class, 'handle_request' )
16 );
17 }
18
19 public static function get_nonce_id(): string {
20 $form_id = jet_fb_live_args()->form_id;
21
22 return "jet-form-builder-wp-nonce-{$form_id}";
23 }
24
25 public static function get_nonce_field(): string {
26 if ( ! jet_fb_live_args()->is_use_nonce() ) {
27 return '';
28 }
29
30 return wp_nonce_field( static::get_nonce_id(), self::KEY, true, false );
31 }
32
33 public static function verify( $nonce ): bool {
34 return ( ! jet_fb_live_args()->is_use_nonce() || wp_verify_nonce( $nonce, static::get_nonce_id() ) );
35 }
36
37 /**
38 * @param array $request
39 *
40 * @return array
41 * @throws Request_Exception
42 */
43 public static function handle_request( array $request ): array {
44 $nonce = $request[ self::KEY ] ?? '';
45
46 if ( ! self::verify( $nonce ) ) {
47 throw ( new Request_Exception( 'Invalid nonce.' ) )->dynamic_error();
48 }
49
50 return $request;
51 }
52
53 }
54