PluginProbe ʕ •ᴥ•ʔ
Tutor LMS – eLearning and online course solution / 2.2.0
Tutor LMS – eLearning and online course solution v2.2.0
3.9.14 3.9.13 3.9.12 3.9.11 trunk 1.0.0 1.0.0-alpha 1.0.1 1.0.2 1.0.3 1.0.4 1.0.5 1.0.6 1.0.7 1.0.8 1.0.9 1.1.0 1.1.1 1.2.0 1.2.1 1.2.11 1.2.12 1.2.13 1.2.20 1.3.0 1.3.1 1.3.2 1.3.3 1.3.4 1.3.5 1.3.6 1.3.7 1.3.8 1.3.9 1.4.0 1.4.1 1.4.2 1.4.3 1.4.4 1.4.5 1.4.6 1.4.7 1.4.8 1.4.9 1.5.0 1.5.1 1.5.2 1.5.3 1.5.4 1.5.5 1.5.6 1.5.7 1.5.8 1.5.9 1.6.0 1.6.1 1.6.2 1.6.3 1.6.4 1.6.5 1.6.6 1.6.7 1.6.8 1.6.9 1.7.0 1.7.1 1.7.2 1.7.3 1.7.4 1.7.5 1.7.6 1.7.7 1.7.8 1.7.9 1.8.0 1.8.1 1.8.10 1.8.2 1.8.3 1.8.4 1.8.5 1.8.6 1.8.7 1.8.8 1.8.9 1.9.0 1.9.1 1.9.10 1.9.11 1.9.12 1.9.13 1.9.14 1.9.15 1.9.16 1.9.2 1.9.3 1.9.4 1.9.5 1.9.6 1.9.7 1.9.8 1.9.9 2.0.0 2.0.1 2.0.10 2.0.2 2.0.3 2.0.4 2.0.5 2.0.6 2.0.7 2.0.8 2.0.9 2.1.0 2.1.1 2.1.10 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.1.9 2.2.0 2.2.1 2.2.2 2.2.3 2.2.4 2.3.0 2.4.0 2.5.0 2.6.0 2.6.1 2.6.2 2.7.0 2.7.1 2.7.2 2.7.3 2.7.4 2.7.5 2.7.6 2.7.7 3.0.0 3.0.1 3.0.2 3.1.0 3.2.0 3.2.1 3.2.2 3.2.3 3.3.0 3.3.1 3.4.0 3.4.1 3.4.2 3.5.0 3.6.0 3.6.1 3.6.2 3.6.3 3.6.4 3.7.0 3.7.1 3.7.2 3.7.3 3.7.4 3.8.0 3.8.1 3.8.2 3.8.3 3.9.0 3.9.1 3.9.10 3.9.2 3.9.3 3.9.4 3.9.5 3.9.6 3.9.7 3.9.8 3.9.9
tutor / classes / FormHandler.php
tutor / classes Last commit date
Addons.php 3 years ago Admin.php 3 years ago Ajax.php 3 years ago Announcements.php 3 years ago Assets.php 3 years ago Backend_Page_Trait.php 3 years ago Course.php 3 years ago Course_Embed.php 3 years ago Course_Filter.php 3 years ago Course_List.php 3 years ago Course_Settings_Tabs.php 3 years ago Course_Widget.php 3 years ago Custom_Validation.php 3 years ago Dashboard.php 3 years ago FormHandler.php 3 years ago Frontend.php 3 years ago Gutenberg.php 3 years ago Input.php 3 years ago Instructor.php 3 years ago Instructors_List.php 3 years ago Lesson.php 3 years ago Options_V2.php 3 years ago Post_types.php 3 years ago Private_Course_Access.php 3 years ago Q_and_A.php 3 years ago Question_Answers_List.php 3 years ago Quiz.php 3 years ago Quiz_Attempts_List.php 3 years ago RestAPI.php 3 years ago Reviews.php 3 years ago Rewrite_Rules.php 3 years ago Shortcode.php 3 years ago Student.php 3 years ago Students_List.php 3 years ago Taxonomies.php 3 years ago Template.php 3 years ago Theme_Compatibility.php 3 years ago Tools.php 3 years ago Tools_V2.php 3 years ago Tutor.php 3 years ago TutorEDD.php 3 years ago Tutor_Base.php 3 years ago Tutor_Setup.php 3 years ago Upgrader.php 3 years ago User.php 3 years ago Utils.php 3 years ago Video_Stream.php 3 years ago Withdraw.php 3 years ago Withdraw_Requests_List.php 3 years ago WooCommerce.php 3 years ago
FormHandler.php
260 lines
1 <?php
2 /**
3 * Manage Form
4 *
5 * @package Tutor
6 * @author Themeum <support@themeum.com>
7 * @link https://themeum.com
8 * @since 1.4.3
9 */
10
11 namespace TUTOR;
12
13 if ( ! defined( 'ABSPATH' ) ) {
14 exit;
15 }
16
17 /**
18 * FormHandler class
19 *
20 * @since 1.4.3
21 */
22 class FormHandler {
23
24 /**
25 * Constructor
26 *
27 * @since 1.4.3
28 * @return void
29 */
30 public function __construct() {
31 add_action( 'tutor_action_tutor_retrieve_password', array( $this, 'tutor_retrieve_password' ) );
32 add_action( 'tutor_action_tutor_process_reset_password', array( $this, 'tutor_process_reset_password' ) );
33
34 add_action( 'tutor_reset_password_notification', array( $this, 'reset_password_notification' ), 10, 2 );
35 add_filter( 'tutor_lostpassword_url', array( $this, 'lostpassword_url' ) );
36 add_filter( 'lostpassword_url', array( $this, 'lostpassword_url' ), 99 );
37 }
38
39 /**
40 * Retrieve Password
41 *
42 * @since 1.4.3
43 * @return void|bool
44 */
45 public function tutor_retrieve_password() {
46 tutils()->checking_nonce();
47
48 /**
49 * To check spam or other logic before form process.
50 *
51 * @since 2.1.10
52 */
53 $before_form_process = apply_filters( 'tutor_before_retrieve_password_form_process', null );
54 if ( is_wp_error( $before_form_process ) ) {
55 tutor_flash_set( 'danger', $before_form_process->get_error_message() );
56 return false;
57 }
58
59 //phpcs:ignore WordPress.Security.NonceVerification.Missing
60 $login = sanitize_user( tutils()->array_get( 'user_login', $_POST ) );
61
62 if ( empty( $login ) ) {
63 tutor_flash_set( 'danger', __( 'Enter a username or email address.', 'tutor' ) );
64 return false;
65 } else {
66 // Check on username first, as customers can use emails as usernames.
67 $user_data = get_user_by( 'login', $login );
68 }
69
70 // If no user found, check if it login is email and lookup user based on email.
71 if ( ! $user_data && is_email( $login ) && apply_filters( 'tutor_get_username_from_email', true ) ) {
72 $user_data = get_user_by( 'email', $login );
73 }
74
75 $errors = new \WP_Error();
76
77 do_action( 'lostpassword_post', $errors );
78
79 if ( $errors->get_error_code() ) {
80 tutor_flash_set( 'danger', $errors->get_error_message() );
81 return false;
82 }
83
84 if ( ! $user_data ) {
85 tutor_flash_set( 'danger', __( 'Invalid username or email.', 'tutor' ) );
86 return false;
87 }
88
89 if ( is_multisite() && ! is_user_member_of_blog( $user_data->ID, get_current_blog_id() ) ) {
90 tutor_flash_set( 'danger', __( 'Invalid username or email.', 'tutor' ) );
91 return false;
92 }
93
94 // Redefining user_login ensures we return the right case in the email.
95 $user_login = $user_data->user_login;
96
97 do_action( 'retrieve_password', $user_login );
98
99 $allow = apply_filters( 'allow_password_reset', true, $user_data->ID );
100
101 if ( ! $allow ) {
102 tutor_flash_set( 'danger', __( 'Password reset is not allowed for this user', 'tutor' ) );
103 return false;
104 } elseif ( is_wp_error( $allow ) ) {
105 tutor_flash_set( 'danger', $allow->get_error_message() );
106 return false;
107 }
108
109 // Get password reset key (function introduced in WordPress 4.4).
110 $key = get_password_reset_key( $user_data );
111
112 // Send email notification.
113 do_action( 'tutor_reset_password_notification', $user_login, $key );
114 }
115
116 /**
117 * Send notification for rest password
118 *
119 * @since 1.4.3
120 *
121 * @param string $user_login username.
122 * @param string $reset_key reset key.
123 *
124 * @return void
125 */
126 public function reset_password_notification( $user_login = '', $reset_key = '' ) {
127 $this->send_notification( $user_login, $reset_key );
128
129 $html = '<h3>' . __( 'Check your E-Mail', 'tutor' ) . '</h3>';
130 $html .= '<p> ' . __( "We've sent an email to this account's email address. Click the link in the email to reset your password.", 'tutor' ) . '</p>';
131 $html .= '<p>' . __( " If you don't see the email, check other places it might be, like your junk, spam, social, promotion or others folders.", 'tutor' ) . '</p>';
132 tutor_flash_set( 'success', $html );
133 }
134
135 /**
136 * Get lost password URL
137 *
138 * @since 1.4.3
139 *
140 * @param string $url URL.
141 * @return string
142 */
143 public function lostpassword_url( $url ) {
144 return tutils()->tutor_dashboard_url( 'retrieve-password' );
145 }
146
147 /**
148 * Handle reset password request
149 *
150 * @since 1.4.3
151 * @return void|bool
152 */
153 public function tutor_process_reset_password() {
154 tutils()->checking_nonce();
155
156 $reset_key = Input::post( 'reset_key' );
157 $user_id = Input::post( 'user_id', 0, Input::TYPE_INT );
158 $password = Input::post( 'password' );
159 $confirm_password = Input::post( 'confirm_password' );
160
161 $user = get_user_by( 'ID', $user_id );
162 $user = check_password_reset_key( $reset_key, $user->user_login );
163
164 if ( is_wp_error( $user ) ) {
165 tutor_flash_set( 'danger', __( 'This key is invalid or has already been used. Please reset your password again if needed.', 'tutor' ) );
166 return false;
167 }
168
169 if ( $user instanceof \WP_User ) {
170 if ( ! $password ) {
171 tutor_flash_set( 'danger', __( 'Please enter your password.', 'tutor' ) );
172 return false;
173 }
174
175 if ( $password !== $confirm_password ) {
176 tutor_flash_set( 'danger', __( 'Passwords do not match.', 'tutor' ) );
177 return false;
178 }
179
180 tutils()->reset_password( $user, $password );
181
182 do_action( 'tutor_user_reset_password', $user );
183
184 // Perform the login.
185 $creds = array(
186 'user_login' => $user->user_login,
187 'user_password' => $password,
188 'remember' => true,
189 );
190 $user = wp_signon( apply_filters( 'tutor_login_credentials', $creds ), is_ssl() );
191
192 do_action( 'tutor_user_reset_password_login', $user );
193
194 wp_safe_redirect( tutor_utils()->tutor_dashboard_url() );
195 exit;
196 }
197 }
198
199 /**
200 * Send Password Reset E-Mail to user.
201 * We are sending directly right now, later we will introduce centralised E-Mail notification System...
202 *
203 * @since 1.4.3
204 *
205 * @param string $user_login login username.
206 * @param string $reset_key password reset key.
207 *
208 * @return void
209 */
210 public function send_notification( $user_login, $reset_key ) {
211
212 $user_data = get_user_by( 'login', $user_login );
213
214 $variable = array(
215 'user_login' => $user_login,
216 'reset_key' => $reset_key,
217 'user_id' => $user_data->ID,
218 );
219
220 $html = tutor_get_template_html( 'email.send-reset-password', $variable );
221 /* translators: %s: site name */
222 $subject = sprintf( __( 'Password Reset Request for %s', 'tutor' ), get_option( 'blogname' ) );
223
224 $header = 'Content-Type: text/html' . "\r\n";
225
226 add_filter( 'wp_mail_from', array( $this, 'get_from_address' ) );
227 add_filter( 'wp_mail_from_name', array( $this, 'get_from_name' ) );
228
229 wp_mail( $user_data->user_email, $subject, $html, $header );
230
231 remove_filter( 'wp_mail_from', array( $this, 'get_from_address' ) );
232 remove_filter( 'wp_mail_from_name', array( $this, 'get_from_name' ) );
233 }
234
235 /**
236 * Get e-mail from address
237 *
238 * @since 1.4.3
239 * @return string
240 */
241 public function get_from_address() {
242 $from_address = get_tutor_option( 'email_from_address' );
243 $default = ! $from_address ? get_option( 'admin_email' ) : $from_address;
244 return apply_filters( 'tutor_email_from_address', $default );
245 }
246
247 /**
248 * Get e-mail from name
249 *
250 * @since 1.4.3
251 * @return string
252 */
253 public function get_from_name() {
254 $from_name = get_tutor_option( 'email_from_name' );
255 $default = ! $from_name ? get_option( 'blogname' ) : $from_name;
256 return apply_filters( 'tutor_email_from_name', $default );
257 }
258
259 }
260