My Private Site - Version 2.8

Version Description

  • Add Prefix option to Always Visible URLs
  • Automatically use mb_ Multi-Byte string functions, if available
Download this release

Release Info

Developer dgewirtz
Plugin Icon 128x128 My Private Site
Version 2.8
Comparing to
See all releases

Version 2.8

includes/admin-settings.php ADDED
@@ -0,0 +1,693 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Initiated when in the Admin panels.
4
+ Used to create the Settings page for the plugin.
5
+ */
6
+
7
+ // Exit if .php file accessed directly
8
+ if ( !defined( 'ABSPATH' ) ) exit;
9
+
10
+ DEFINE( 'JR_PS_BELOW_FIELDS', '<br /> &nbsp; ' );
11
+
12
+ require_once( jr_ps_path() . 'includes/functions-admin.php' );
13
+
14
+ add_action( 'admin_menu', 'jr_ps_admin_hook' );
15
+ // Runs just before admin_init (below)
16
+
17
+ /**
18
+ * Add Admin Menu item for plugin
19
+ *
20
+ * Plugin needs its own Page in the Settings section of the Admin menu.
21
+ *
22
+ */
23
+ function jr_ps_admin_hook() {
24
+ // Add Settings Page for this Plugin
25
+ global $jr_ps_plugin_data;
26
+ add_users_page( $jr_ps_plugin_data['Name'], 'Private Site', 'add_users', 'jr_ps_settings', 'jr_ps_settings_page' );
27
+ add_options_page( $jr_ps_plugin_data['Name'], 'Private Site', 'manage_options', 'jr_ps_settings', 'jr_ps_settings_page' );
28
+ }
29
+
30
+ /**
31
+ * Settings page for plugin
32
+ *
33
+ * Display and Process Settings page for this plugin.
34
+ *
35
+ */
36
+ function jr_ps_settings_page() {
37
+ global $jr_ps_plugin_data;
38
+ add_thickbox();
39
+ echo '<div class="wrap">';
40
+ echo '<h2>' . $jr_ps_plugin_data['Name'] . '</h2>';
41
+
42
+ // Required because it is only called automatically for Admin Pages in the Settings section
43
+ settings_errors( 'jr_ps_settings' );
44
+
45
+ echo '<h3>Overview</h3><p>';
46
+ $settings = get_option( 'jr_ps_settings' );
47
+ if ( $settings['private_site'] ) {
48
+ echo 'This';
49
+ } else {
50
+ echo 'If you click the <b>Private Site</b> checkbox below, this';
51
+ }
52
+ ?>
53
+ Plugin creates a Private Site,
54
+ by ensuring that site visitors login
55
+ before viewing your web site.
56
+ The only things visible to anyone not logged in, including Search Engines, are:
57
+ <ul>
58
+ <li>
59
+ &raquo; Your site's WordPress Login page;
60
+ </li>
61
+ <li>
62
+ &raquo; Any selections in the
63
+ <b>
64
+ Visible Exclusions
65
+ </b>
66
+ section (below);
67
+ </li>
68
+ <li>
69
+ &raquo; Any non-WordPress components of your web site, such as HTML, PHP, ASP or other non-WordPress web page files;
70
+ </li>
71
+ <li>
72
+ &raquo; Images and other media and text files, but only when accessed directly by their URL,
73
+ or from a browser's directory view, if available.
74
+ </li>
75
+ </ul>
76
+ Other means are available to hide most of the files mentioned above.
77
+ </p>
78
+ <p>
79
+ To see your site, each visitor will need to be registered as a User on your WordPress site.
80
+ They will also have to enter their Username and Password on the WordPress login screen.
81
+ </p>
82
+ <p>
83
+ You can choose what they see after they login by selecting a <b>Landing Location</b> in the section below.
84
+ </p>
85
+ <form action="options.php" method="POST">
86
+ <?php
87
+ // Plugin Settings are displayed and entered here:
88
+ settings_fields( 'jr_ps_settings' );
89
+ do_settings_sections( 'jr_ps_settings_page' );
90
+ echo '<p><input name="save" type="submit" value="Save Changes" class="button-primary" /></p></form>';
91
+
92
+ /* Turn off Warning about Private Site defaulting to OFF
93
+ once Admin has seen Settings page.
94
+ */
95
+ $internal_settings = get_option( 'jr_ps_internal_settings' );
96
+ if ( isset( $internal_settings['warning_privacy'] ) ) {
97
+ unset( $internal_settings['warning_privacy'] );
98
+ update_option( 'jr_ps_internal_settings', $internal_settings );
99
+ }
100
+ }
101
+
102
+ add_action( 'admin_init', 'jr_ps_admin_init' );
103
+
104
+ /**
105
+ * Register and define the settings
106
+ *
107
+ * Everything to be stored and/or can be set by the user
108
+ *
109
+ */
110
+ function jr_ps_admin_init() {
111
+ register_setting( 'jr_ps_settings', 'jr_ps_settings', 'jr_ps_validate_settings' );
112
+ add_settings_section( 'jr_ps_private_settings_section',
113
+ 'Make Site Private',
114
+ 'jr_ps_private_settings_expl',
115
+ 'jr_ps_settings_page'
116
+ );
117
+ add_settings_field( 'private_site',
118
+ 'Private Site',
119
+ 'jr_ps_echo_private_site',
120
+ 'jr_ps_settings_page',
121
+ 'jr_ps_private_settings_section'
122
+ );
123
+ add_settings_section( 'jr_ps_self_registration_section',
124
+ 'Allow Self-Registration',
125
+ 'jr_ps_self_registration_expl',
126
+ 'jr_ps_settings_page'
127
+ );
128
+ if ( is_multisite() ) {
129
+ /* Clone Network Admin panels: Settings-Network Settings-Registration Settings-Allow new registrations.
130
+ It will be Read-Only except for Super Administrators.
131
+ */
132
+ add_settings_field( 'registrations',
133
+ 'Allow new registrations',
134
+ 'jr_ps_echo_registrations',
135
+ 'jr_ps_settings_page',
136
+ 'jr_ps_self_registration_section'
137
+ );
138
+ } else {
139
+ /* Clone Site Admin panels: Settings-General Settings-Membership
140
+ */
141
+ add_settings_field( 'membership',
142
+ 'Membership',
143
+ 'jr_ps_echo_membership',
144
+ 'jr_ps_settings_page',
145
+ 'jr_ps_self_registration_section'
146
+ );
147
+ }
148
+ add_settings_field( 'reveal_registration',
149
+ 'Reveal Registration Page',
150
+ 'jr_ps_echo_reveal_registration',
151
+ 'jr_ps_settings_page',
152
+ 'jr_ps_self_registration_section'
153
+ );
154
+ add_settings_section( 'jr_ps_landing_settings_section',
155
+ 'Landing Location',
156
+ 'jr_ps_landing_settings_expl',
157
+ 'jr_ps_settings_page'
158
+ );
159
+ add_settings_field( 'landing',
160
+ 'Where to after Login?',
161
+ 'jr_ps_echo_landing',
162
+ 'jr_ps_settings_page',
163
+ 'jr_ps_landing_settings_section'
164
+ );
165
+ add_settings_field( 'specific_url',
166
+ 'Specific URL',
167
+ 'jr_ps_echo_specific_url',
168
+ 'jr_ps_settings_page',
169
+ 'jr_ps_landing_settings_section'
170
+ );
171
+ add_settings_section( 'jr_ps_custom_login_section',
172
+ 'Custom Login',
173
+ 'jr_ps_custom_login_expl',
174
+ 'jr_ps_settings_page'
175
+ );
176
+ add_settings_field( 'custom_login',
177
+ 'Custom Login page?',
178
+ 'jr_ps_echo_custom_login',
179
+ 'jr_ps_settings_page',
180
+ 'jr_ps_custom_login_section'
181
+ );
182
+ add_settings_field( 'login_url',
183
+ 'Custom Login URL',
184
+ 'jr_ps_echo_login_url',
185
+ 'jr_ps_settings_page',
186
+ 'jr_ps_custom_login_section'
187
+ );
188
+ add_settings_section( 'jr_ps_exclusions_section',
189
+ 'Visible Exclusions',
190
+ 'jr_ps_exclusions_expl',
191
+ 'jr_ps_settings_page'
192
+ );
193
+ add_settings_field( 'excl_home',
194
+ 'Site Home Always Visible?<br /><code>' . get_home_url() . '</code>',
195
+ 'jr_ps_echo_excl_home',
196
+ 'jr_ps_settings_page',
197
+ 'jr_ps_exclusions_section'
198
+ );
199
+ add_settings_field( 'excl_url_add',
200
+ 'Add URL to be Always Visible',
201
+ 'jr_ps_echo_excl_url_add',
202
+ 'jr_ps_settings_page',
203
+ 'jr_ps_exclusions_section'
204
+ );
205
+ add_settings_field( 'excl_url_is_prefix',
206
+ 'Select here if URL is a Prefix',
207
+ 'jr_ps_echo_excl_url_is_prefix',
208
+ 'jr_ps_settings_page',
209
+ 'jr_ps_exclusions_section'
210
+ );
211
+ add_settings_field( 'excl_url_del',
212
+ 'Current Visible URL Entries',
213
+ 'jr_ps_echo_excl_url_del',
214
+ 'jr_ps_settings_page',
215
+ 'jr_ps_exclusions_section'
216
+ );
217
+ }
218
+
219
+ /**
220
+ * Section text for Section1
221
+ *
222
+ * Display an explanation of this Section
223
+ *
224
+ */
225
+ function jr_ps_private_settings_expl() {
226
+ ?>
227
+ <p>
228
+ You will only have a Private Site if the checkbox just below is checked.
229
+ This allows you to disable the Private Site functionality
230
+ without deactivating the Plugin.
231
+ </p>
232
+ <?php
233
+ }
234
+
235
+ function jr_ps_echo_private_site() {
236
+ $settings = get_option( 'jr_ps_settings' );
237
+ echo '<input type="checkbox" id="private_site" name="jr_ps_settings[private_site]" value="true"'
238
+ . checked( TRUE, $settings['private_site'], FALSE ) . ' />';
239
+ echo ' (This plugin is currently ';
240
+ if ( $settings['private_site'] ) {
241
+ echo 'enabled; click checkbox to disable)';
242
+ } else {
243
+ echo 'disabled; click checkbox to enable)';
244
+ }
245
+ }
246
+
247
+ /**
248
+ * Section text for Section2
249
+ *
250
+ * Display an explanation of this Section
251
+ *
252
+ */
253
+ function jr_ps_self_registration_expl() {
254
+ echo '
255
+ <p>
256
+ If you want Users to be able to Register themselves on a Private Site,
257
+ there are two Settings involved.
258
+ First
259
+ is the WordPress Setting that actually allows new Users to self-register.
260
+ It is shown here as a convenience,
261
+ but:
262
+ <ol>
263
+ <li>This is the same
264
+ ';
265
+ if ( is_multisite() ) {
266
+ echo '<b>Allow New Registrations</b> field displayed on the <b>Network Settings</b> Admin panel;</li>';
267
+ } else {
268
+ echo '<b>Membership</b> field displayed on the <b>General Settings</b> Admin panel;</li>';
269
+ }
270
+ if ( is_multisite() && !is_super_admin() ) {
271
+ echo '<li>The field is greyed out below because only Super Administrators can change this field.';
272
+ } else {
273
+ echo '<li>Clicking the Save Changes button will update its value.';
274
+ }
275
+ echo '
276
+ </li>
277
+ </ol>
278
+ </p>
279
+ <p>
280
+ Second, is a Setting
281
+ (Reveal Registration Page)
282
+ for this plugin,
283
+ to make the WordPress User Registration page visible to Visitors who are not logged on.
284
+ Since Users cannot log on until they are Registered,
285
+ this Setting must be selected (check mark) for Self-Registration.
286
+ </p>
287
+ ';
288
+ }
289
+
290
+ function jr_ps_echo_registrations() {
291
+ $setting = get_site_option( 'registration' );
292
+ foreach ( array(
293
+ 'none' => 'Registration is disabled.',
294
+ 'user' => 'User accounts may be registered.',
295
+ 'blog' => 'Logged in users may register new sites.',
296
+ 'all' => 'Both sites and user accounts can be registered.'
297
+ ) as $value => $description ) {
298
+ echo '<input type="radio" id="registrations" name="jr_ps_settings[registrations]" '
299
+ . checked( $value, $setting, FALSE )
300
+ . ' value="' . $value . '" '
301
+ . disabled( is_super_admin(), FALSE, FALSE )
302
+ . ' /> ' . $description . '<br />';
303
+ }
304
+ }
305
+
306
+ function jr_ps_echo_membership() {
307
+ echo '<input type="checkbox" id="membership" name="jr_ps_settings[membership]" value="1" '
308
+ . checked( '1', get_option( 'users_can_register' ), FALSE ) . ' /> Anyone can register';
309
+ }
310
+
311
+ function jr_ps_echo_reveal_registration() {
312
+ $settings = get_option( 'jr_ps_settings' );
313
+ echo '<input type="checkbox" id="reveal_registration" name="jr_ps_settings[reveal_registration]" value="true"'
314
+ . checked( TRUE, $settings['reveal_registration'], FALSE ) . ' />';
315
+ echo ' Do not block WordPress standard User Registration page (Advanced Setting: a check mark in this checkbox is recommended)';
316
+ }
317
+
318
+ /**
319
+ * Section text for Section3
320
+ *
321
+ * Display an explanation of this Section
322
+ *
323
+ */
324
+ function jr_ps_landing_settings_expl() {
325
+ ?>
326
+ <p>
327
+ What do you want your visitors to see immediately after they login?
328
+ For most Private Sites, the default
329
+ <b>Return to same URL</b>
330
+ setting works best,
331
+ as it takes visitors to where they would have been had they already been logged on when they clicked a link or entered a URL,
332
+ just as if they hit the browser's Back button twice and then the Refresh button after logging in.
333
+ </p>
334
+ <p>
335
+ <b>Specific URL</b> only applies when <b>Go to specific URL</b> is selected.
336
+ </p>
337
+ <?php
338
+ }
339
+
340
+ function jr_ps_echo_landing() {
341
+ $settings = get_option( 'jr_ps_settings' );
342
+ $first = TRUE;
343
+ foreach ( array(
344
+ 'return' => 'Return to same URL',
345
+ 'home' => 'Go to Site Home',
346
+ 'admin' => 'Go to WordPress Admin Dashboard',
347
+ 'omit' => 'Omit <code>?redirect_to=</code> from URL (a check mark in this checkbox is recommended for Custom Login pages)',
348
+ 'url' => 'Go to Specific URL'
349
+ ) as $val => $desc ) {
350
+ if ( $first ) {
351
+ $first = FALSE;
352
+ } else {
353
+ echo '<br />';
354
+ }
355
+ echo '<input type="radio" id="landing" name="jr_ps_settings[landing]" '
356
+ . checked( $val, $settings['landing'], FALSE )
357
+ . ' value="' . $val . '" /> ' . $desc;
358
+ }
359
+ }
360
+
361
+ function jr_ps_echo_specific_url() {
362
+ $settings = get_option( 'jr_ps_settings' );
363
+ echo '<input type="text" id="specific_url" name="jr_ps_settings[specific_url]" size="100" maxlength="256" value="';
364
+ echo esc_url( $settings['specific_url'] )
365
+ . '" />'
366
+ . JR_PS_BELOW_FIELDS
367
+ . '(cut and paste URL here of Page, Post or other)'
368
+ . JR_PS_BELOW_FIELDS
369
+ . 'URL must begin with <code>'
370
+ . trim( get_home_url(), '\ /' )
371
+ . '/</code>';
372
+ }
373
+
374
+ /**
375
+ * Section text for Section4
376
+ *
377
+ * Display an explanation of this Section
378
+ *
379
+ */
380
+ function jr_ps_custom_login_expl() {
381
+ echo '<p>If you have a Custom Login page at a different URL than the standard WordPress Login <code>'
382
+ . wp_login_url()
383
+ . '</code>, then you will need to specify it here. Otherwise, visitors will be redirected to the standard WordPress Login.</p>';
384
+ echo '<p>If the Custom Login page is not based on the standard WordPress Login page, it may not accept the <code>?redirect_to=http://landingurl</code> Query that is automatically added to the URL of the Custom Login page. Select Omit for "Where to after Login?" in the Landing Location section to remove the <code>redirect_to</code> Query.</p>';
385
+ echo '<p>Even with the Custom Login page selected, the standard WordPress login page will still appear in certain circumstances, such as logging into the Admin panels.<p>';
386
+ }
387
+
388
+ function jr_ps_echo_custom_login() {
389
+ $settings = get_option( 'jr_ps_settings' );
390
+ echo '<input type="checkbox" id="custom_login" name="jr_ps_settings[custom_login]" value="true" '
391
+ . checked( TRUE, $settings['custom_login'], FALSE )
392
+ . ' />';
393
+ }
394
+
395
+ function jr_ps_echo_login_url() {
396
+ $settings = get_option( 'jr_ps_settings' );
397
+ echo '<input type="text" id="login_url" name="jr_ps_settings[login_url]" size="100" maxlength="256" value="'
398
+ . esc_url( $settings['login_url'] )
399
+ . '" />'
400
+ . JR_PS_BELOW_FIELDS
401
+ . '(cut and paste Custom Login URL here; leave blank otherwise)'
402
+ . JR_PS_BELOW_FIELDS
403
+ . 'URL must begin with <code>'
404
+ . trim( get_home_url(), '\ /' )
405
+ . '/</code>';
406
+ }
407
+
408
+ /**
409
+ * Section text for Section5
410
+ *
411
+ * Display an explanation of this Section
412
+ *
413
+ */
414
+ function jr_ps_exclusions_expl() {
415
+ ?>
416
+ <p>
417
+ If you want to use your Site Home to interest visitors in registering for your site so they can see the rest of your site,
418
+ you obviously need Site Home visible to everyone.
419
+ </p><p>
420
+ You can add additional Visible site URLs,
421
+ one entry at a time,
422
+ in the
423
+ <b>
424
+ Add URL to be Always Visible
425
+ </b>
426
+ field.
427
+ </p><p>
428
+ The
429
+ <b>
430
+ Select here if URL is a Prefix
431
+ </b>
432
+ option allows you to specify a portion of a URL,
433
+ which will match, and make visible, all URLs that begin with that specified portion ("URL Prefix").
434
+ </p>
435
+ <?php
436
+ }
437
+
438
+ function jr_ps_echo_excl_home() {
439
+ $settings = get_option( 'jr_ps_settings' );
440
+ echo '<input type="checkbox" id="excl_home" name="jr_ps_settings[excl_home]" value="true"'
441
+ . checked( TRUE, $settings['excl_home'], FALSE ) . ' /> Site Home is visible to everyone?';
442
+ }
443
+
444
+ function jr_ps_echo_excl_url_add() {
445
+ echo '<input id="excl_url_add" name="jr_ps_settings[excl_url_add]" type="text" size="100" maxlength="256" value="" />'
446
+ . JR_PS_BELOW_FIELDS
447
+ . '(cut and paste URL here of Page, Post or other)'
448
+ . JR_PS_BELOW_FIELDS
449
+ . 'URL must begin with <code>'
450
+ . trim( get_home_url(), '\ /' )
451
+ . '/</code>';
452
+ }
453
+
454
+ function jr_ps_echo_excl_url_is_prefix() {
455
+ ?>
456
+ <input type="checkbox" id="excl_url_is_prefix" name="jr_ps_settings[excl_url_is_prefix]" value="true" /> Anything that begins with this URL Prefix will be Always Visible
457
+ <?php
458
+ }
459
+
460
+ function jr_ps_echo_excl_url_del() {
461
+ $settings = get_option( 'jr_ps_settings' );
462
+ if ( empty( $settings['excl_url'] ) && empty( $settings['excl_url_prefix'] ) ) {
463
+ echo 'None. To add a Visible URL Entry, fill in the fields above.<br />The Custom Login URL, if specified, is always Visible.';
464
+ } else {
465
+ $first = TRUE;
466
+ foreach ( array( 'url' => 'URL', 'url_prefix' => 'Prefix' ) as $key => $description ) {
467
+ foreach ( $settings["excl_$key"] as $index => $arr ) {
468
+ if ( $first ) {
469
+ $first = FALSE;
470
+ } else {
471
+ echo '<br />';
472
+ }
473
+ $display_url = $arr[0];
474
+ echo 'Delete <input type="checkbox" id="excl_' . $key . '_del" name="jr_ps_settings[excl_' . $key . '_del][]"'
475
+ . " value='$index' /> $description=<a href='$display_url' target='_blank'>$display_url</a>";
476
+ }
477
+ }
478
+ echo '<br />In addition, the Custom Login URL, if specified, is always Visible.';
479
+ }
480
+ }
481
+
482
+ function jr_ps_validate_settings( $input ) {
483
+ $valid = array();
484
+ $settings = get_option( 'jr_ps_settings' );
485
+
486
+ if ( isset( $input['private_site'] ) && ( $input['private_site'] === 'true' ) ) {
487
+ $valid['private_site'] = TRUE;
488
+ } else {
489
+ $valid['private_site'] = FALSE;
490
+ }
491
+
492
+ if ( isset( $input['reveal_registration'] ) && ( $input['reveal_registration'] === 'true' ) ) {
493
+ $valid['reveal_registration'] = TRUE;
494
+ } else {
495
+ $valid['reveal_registration'] = FALSE;
496
+ }
497
+
498
+ $url = jr_v1_sanitize_url( $input['specific_url'] );
499
+ if ( '' !== $url ) {
500
+ if ( FALSE === $url ) {
501
+ /* Reset to previous URL value and generate an error message.
502
+ */
503
+ $url = $settings['specific_url'];
504
+ add_settings_error(
505
+ 'jr_ps_settings',
506
+ 'jr_ps_urlerror',
507
+ 'Landing Location URL is not a valid URL<br /><code>'
508
+ . sanitize_text_field( $input['specific_url'] ) . '</code>',
509
+ 'error'
510
+ );
511
+ } else {
512
+ if ( !jr_ps_site_url( $url ) ) {
513
+ /* Reset to previous URL value and generate an error message.
514
+ */
515
+ $url = $settings['specific_url'];
516
+ add_settings_error(
517
+ 'jr_ps_settings',
518
+ 'jr_ps_urlerror',
519
+ 'Error in Landing Location URL. It must point to someplace on this WordPress web site<br /><code>'
520
+ . sanitize_text_field( $input['specific_url'] ) . '</code>',
521
+ 'error'
522
+ );
523
+ }
524
+ }
525
+ }
526
+ $valid['specific_url'] = $url;
527
+
528
+ if ( 'url' === $input['landing'] ) {
529
+ if ( '' === $valid['specific_url'] ) {
530
+ add_settings_error(
531
+ 'jr_ps_settings',
532
+ 'jr_ps_nourlerror',
533
+ 'Error in Landing Location: <i>Go to Specific URL</i> selected but no URL specified. Set to default <i>Return to same URL</i>.',
534
+ 'error'
535
+ );
536
+ $valid['landing'] = 'return';
537
+ } else {
538
+ $valid['landing'] = 'url';
539
+ }
540
+ } else {
541
+ if ( '' !== $valid['specific_url'] ) {
542
+ add_settings_error(
543
+ 'jr_ps_settings',
544
+ 'jr_ps_nourlerror',
545
+ 'Error in Landing Location: URL specified when not valid. URL deleted.',
546
+ 'error'
547
+ );
548
+ $valid['specific_url'] = '';
549
+ }
550
+ $valid['landing'] = $input['landing'];
551
+ }
552
+
553
+ $url = jr_v1_sanitize_url( $input['login_url'] );
554
+ if ( '' !== $url ) {
555
+ if ( FALSE === $url ) {
556
+ /* Reset to previous URL value and generate an error message.
557
+ */
558
+ $url = $settings['login_url'];
559
+ add_settings_error(
560
+ 'jr_ps_settings',
561
+ 'jr_ps_urlerror',
562
+ 'Custom Login URL is not a valid URL<br /><code>'
563
+ . sanitize_text_field( $input['login_url'] ) . '</code>',
564
+ 'error'
565
+ );
566
+ } else {
567
+ if ( !jr_ps_site_url( $url ) ) {
568
+ /* Reset to previous URL value and generate an error message.
569
+ */
570
+ $url = $settings['login_url'];
571
+ add_settings_error(
572
+ 'jr_ps_settings',
573
+ 'jr_ps_urlerror',
574
+ 'Error in Custom Login URL. It must point to someplace on this WordPress web site<br /><code>'
575
+ . sanitize_text_field( $input['login_url'] ) . '</code>',
576
+ 'error'
577
+ );
578
+ }
579
+ }
580
+ }
581
+ $valid['login_url'] = $url;
582
+
583
+ if ( isset( $input['custom_login'] ) && ( $input['custom_login'] === 'true' ) ) {
584
+ if ( '' === $valid['login_url'] ) {
585
+ add_settings_error(
586
+ 'jr_ps_settings',
587
+ 'jr_ps_nourlerror',
588
+ 'Error in Custom Login: <i>Custom Login page?</i> checkbox selected but no URL specified. Checkbox deselected.',
589
+ 'error'
590
+ );
591
+ $valid['custom_login'] = FALSE;
592
+ } else {
593
+ $valid['custom_login'] = TRUE;
594
+ /* Was Custom Login just turned on?
595
+ If so, be sure Landing Location is set to Omit.
596
+ */
597
+ if ( !$setting['custom_login'] && ( 'omit' !== $valid['landing'] ) ) {
598
+ $valid['landing'] = 'omit';
599
+ add_settings_error(
600
+ 'jr_ps_settings',
601
+ 'jr_ps_setomit',
602
+ 'Landing Location changed to "Omit", recommended for Custom Login pages.',
603
+ 'updated'
604
+ );
605
+ }
606
+ }
607
+ } else {
608
+ $valid['custom_login'] = FALSE;
609
+ }
610
+
611
+ if ( isset( $input['excl_home'] ) && ( $input['excl_home'] === 'true' ) ) {
612
+ $valid['excl_home'] = TRUE;
613
+ } else {
614
+ $valid['excl_home'] = FALSE;
615
+ }
616
+
617
+ if ( is_multisite() ) {
618
+ if ( is_super_admin() ) {
619
+ if ( isset( $input['registrations'] ) ) {
620
+ update_site_option( 'registration', $input['registrations'] );
621
+ }
622
+ }
623
+ } else {
624
+ if ( isset( $input['membership'] ) ) {
625
+ $mem = $input['membership'];
626
+ } else {
627
+ $mem = '0';
628
+ }
629
+ update_option( 'users_can_register', $mem );
630
+ }
631
+
632
+ foreach ( array( 'excl_url', 'excl_url_prefix' ) as $key ) {
633
+ if ( isset( $settings[$key] ) ) {
634
+ $valid[$key] = $settings[$key];
635
+ } else {
636
+ $valid[$key] = array();
637
+ }
638
+
639
+ /* Delete URLs to Exclude from Privacy.
640
+ */
641
+ if ( isset ( $input[$key . '_del'] ) ) {
642
+ foreach ( $input[$key . '_del'] as $excl_url_del ) {
643
+ unset( $valid[$key][$excl_url_del] );
644
+ }
645
+ }
646
+ }
647
+
648
+ /* Add a URL to Exclude from Privacy.
649
+ */
650
+ $url = jr_v1_sanitize_url( $input['excl_url_add'] );
651
+ if ( '' !== $url ) {
652
+ if ( FALSE === $url ) {
653
+ add_settings_error(
654
+ 'jr_ps_settings',
655
+ 'jr_ps_urlerror',
656
+ 'Always Visible URL is not a valid URL<br /><code>'
657
+ . sanitize_text_field( $input['excl_url_add'] ) . '</code>',
658
+ 'error'
659
+ );
660
+ } else {
661
+ if ( jr_ps_site_url( $url ) ) {
662
+ if ( isset ( $input['excl_url_is_prefix'] ) && ( 'true' === $input['excl_url_is_prefix'] ) ) {
663
+ $key = 'excl_url_prefix';
664
+ } else {
665
+ $key = 'excl_url';
666
+ }
667
+ $valid[$key][] = array( $url, jr_v1_prep_url( $url ) );
668
+ } else {
669
+ add_settings_error(
670
+ 'jr_ps_settings',
671
+ 'jr_ps_urlerror',
672
+ 'Error in Always Visible URL. It must point to someplace on this WordPress web site<br /><code>'
673
+ . sanitize_text_field( $input['excl_url_add'] ) . '</code>',
674
+ 'error'
675
+ );
676
+ }
677
+ }
678
+ }
679
+
680
+ $errors = get_settings_errors();
681
+ if ( empty( $errors ) ) {
682
+ add_settings_error(
683
+ 'jr_ps_settings',
684
+ 'jr_ps_saved',
685
+ 'Settings Saved',
686
+ 'updated'
687
+ );
688
+ }
689
+
690
+ return $valid;
691
+ }
692
+
693
+ ?>
includes/all-admin.php ADDED
@@ -0,0 +1,29 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Loaded for all Admin panels.
4
+ */
5
+
6
+ // Exit if .php file accessed directly
7
+ if ( !defined( 'ABSPATH' ) ) exit;
8
+
9
+ $internal_settings = get_option( 'jr_ps_internal_settings' );
10
+ if ( isset( $internal_settings['warning_privacy'] ) ) {
11
+ add_action( 'all_admin_notices', 'jr_ps_warning_privacy' );
12
+ /**
13
+ * Warn that Private Site is turned OFF by default
14
+ *
15
+ * Put Warning on top of every Admin page (visible to Admins only)
16
+ * until Admin visits plugin's Settings page.
17
+ *
18
+ */
19
+ function jr_ps_warning_privacy() {
20
+ global $jr_ps_plugin_data;
21
+ if ( current_user_can( 'manage_options' ) ) {
22
+ echo '<div class="updated"><p><b>Private Site is currently turned off on ' . $jr_ps_plugin_data['Name'] . ' plugin <a href="'
23
+ . admin_url( 'options-general.php?page=jr_ps_settings' )
24
+ . '">Settings page</a>.</b></p></div>';
25
+ }
26
+ }
27
+ }
28
+
29
+ ?>
includes/common-functions.php ADDED
@@ -0,0 +1,363 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /* jonradio Common Functions,
3
+ intended for use in more than one jonradio plugin,
4
+ and others are encouraged to use for their own purposes.
5
+ See details below license.
6
+ */
7
+
8
+ /* Copyright 2014 jonradio (email : info@zatz.com)
9
+
10
+ This program is free software; you can redistribute it and/or modify
11
+ it under the terms of the GNU General Public License as published by
12
+ the Free Software Foundation; either version 2 of the License, or
13
+ (at your option) any later version.
14
+
15
+ This program is distributed in the hope that it will be useful,
16
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
17
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18
+ GNU General Public License for more details.
19
+
20
+ You should have received a copy of the GNU General Public License
21
+ along with this program; if not, write to the Free Software
22
+ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
23
+ */
24
+
25
+ /* Concept and Usage
26
+ Each function name is prefixed with jr_v followed by a Version Number (integer) then another underscore
27
+ then the function name.
28
+ Each function is preceded by a check for previous existence,
29
+ so that multiple plugins can use the same function without generating duplicate function definition errors.
30
+ By incorporating the Version Number into the function name, there is no danger of a plugin using the wrong version.
31
+ Standard usage is to have all these functions stored in each plugin's folder as /includes/common-functions.php
32
+ Each function has its own Version Number, which only increases when the function actually changes;
33
+ which means that common-functions.php will normally include many different version numbers in its functions;
34
+ i.e. - the version number applies independently to each function, not to the common-functions.php file as a whole.
35
+ */
36
+
37
+ // Exit if .php file accessed directly
38
+ if ( !defined( 'ABSPATH' ) ) exit;
39
+
40
+ /**
41
+ * Check for missing Settings and set them to defaults
42
+ *
43
+ * Ensures that the Named Setting exists, and populates it with defaults for any missing values.
44
+ * Safe to use on every execution of a plugin because it only does an expensive Database Write
45
+ * when it finds missing Settings.
46
+ *
47
+ * @param string $name Name of Settings as looked up with get_option()
48
+ * @param array $defaults Each default Settings value in [key] => value format
49
+ * @return bool/Null Return value from update_option(), or NULL if update_option() not called
50
+ */
51
+ if ( !function_exists( 'jr_v1_validate_settings' ) ) {
52
+ function jr_v1_validate_settings( $name, $defaults ) {
53
+ $updated = FALSE;
54
+ if ( FALSE === ( $settings = get_option( $name ) ) ) {
55
+ $settings = $defaults;
56
+ $updated = TRUE;
57
+ } else {
58
+ foreach ( $defaults as $key => $value ) {
59
+ if ( !isset( $settings[$key] ) ) {
60
+ $settings[$key] = $value;
61
+ $updated = TRUE;
62
+ }
63
+ }
64
+ }
65
+ if ( $updated ) {
66
+ $return = update_option( $name, $settings );
67
+ } else {
68
+ $return = NULL;
69
+ }
70
+ return $return;
71
+ }
72
+ }
73
+
74
+ /* As well as dealing with the low probability that a single mb_ function has been disabled in a php.ini,
75
+ this also supports older versions of PHP as mb_ functions were introduced one by one over a number of php versions.
76
+ */
77
+ if ( function_exists( 'mb_substr' ) ) {
78
+ function jr_v1_substr() {
79
+ $args = func_get_args();
80
+ if ( isset( $args[2] ) ) {
81
+ return mb_substr( $args[0], $args[1], $args[2] );
82
+ } else {
83
+ return mb_substr( $args[0], $args[1] );
84
+ }
85
+ }
86
+ } else {
87
+ function jr_v1_substr() {
88
+ $args = func_get_args();
89
+ if ( isset( $args[2] ) ) {
90
+ return substr( $args[0], $args[1], $args[2] );
91
+ } else {
92
+ return substr( $args[0], $args[1] );
93
+ }
94
+ }
95
+ }
96
+ if ( function_exists( 'mb_strlen' ) ) {
97
+ function jr_v1_strlen( $string ) {
98
+ return mb_strlen( $string );
99
+ }
100
+ } else {
101
+ function jr_v1_strlen( $string ) {
102
+ return strlen( $string );
103
+ }
104
+ }
105
+ if ( function_exists( 'mb_strtolower' ) ) {
106
+ function jr_v1_strtolower( $string ) {
107
+ return mb_strtolower( $string );
108
+ }
109
+ } else {
110
+ function jr_v1_strtolower( $string ) {
111
+ return strtolower( $string );
112
+ }
113
+ }
114
+ if ( function_exists( 'mb_stripos' ) ) {
115
+ function jr_v1_stripos( $string, $find, $offset = 0 ) {
116
+ return mb_stripos( $string, $find, $offset );
117
+ }
118
+ } else {
119
+ function jr_v1_stripos( $string, $find, $offset = 0 ) {
120
+ return stripos( $string, $find, $offset );
121
+ }
122
+ }
123
+ if ( function_exists( 'mb_strpos' ) ) {
124
+ function jr_v1_strpos( $string, $find, $offset = 0 ) {
125
+ return mb_strpos( $string, $find, $offset );
126
+ }
127
+ } else {
128
+ function jr_v1_strpos( $string, $find, $offset = 0 ) {
129
+ return strpos( $string, $find, $offset );
130
+ }
131
+ }
132
+
133
+ /**
134
+ * Do two URLs point at the same location on a web site?
135
+ *
136
+ * Preps URL, if string
137
+ *
138
+ * @param string/array $url1 URL to compare, a string, or an array in special format created by companion function
139
+ * @param string/array $url2 URL to compare, a string, or an array in special format created by companion function
140
+ * @return bool bool TRUE if URL matches prefix; FALSE otherwise
141
+ */
142
+ if ( !function_exists( 'jr_v1_same_url' ) ) {
143
+ function jr_v1_same_url( $url1, $url2 ) {
144
+ if ( is_string( $url1 ) ) {
145
+ $url1 = jr_v1_prep_url( $url1 );
146
+ }
147
+ if ( is_string( $url2 ) ) {
148
+ $url2 = jr_v1_prep_url( $url2 );
149
+ }
150
+ return ( $url1 == $url2 );
151
+ }
152
+ }
153
+
154
+ /**
155
+ * Does a specified Prefix URL match the given URL?
156
+ *
157
+ * Preps URL, if string
158
+ *
159
+ * @param string/array $prefix front part of a URL to compare, a string, or an array in special format created by companion function
160
+ * @param string/array $url full URL to compare, a string, or an array in special format created by companion function
161
+ * @return bool bool TRUE if Prefix matches first part of URL; FALSE otherwise
162
+ */
163
+ if ( !function_exists( 'jr_v1_same_prefix_url' ) ) {
164
+ function jr_v1_same_prefix_url( $prefix, $url ) {
165
+ if ( is_string( $prefix ) ) {
166
+ $prefix = jr_v1_prep_url( $prefix );
167
+ }
168
+ if ( is_string( $url ) ) {
169
+ $url = jr_v1_prep_url( $url );
170
+ }
171
+ if ( $url['host'] === $prefix['host'] ) {
172
+ if ( $url['path'] === $prefix['path'] ) {
173
+ /* Host and Path both exactly match for URL and Prefix specified.
174
+ */
175
+ if ( array() === $prefix['query'] ) {
176
+ $match = TRUE;
177
+ } else {
178
+ /* Now the hard part: determining a legitimate prefix match for Query
179
+ */
180
+ foreach ( $prefix['query'] as $prefix_keyword => $prefix_value ) {
181
+ $one_match = FALSE;
182
+ foreach ( $url['query'] as $url_keyword => $url_value ) {
183
+ if ( $prefix_keyword === jr_v1_substr( $url_keyword, 0, jr_v1_strlen( $prefix_keyword ) ) ) {
184
+ if ( $prefix_value === jr_v1_substr( $url_value, 0, jr_v1_strlen( $prefix_value ) ) ) {
185
+ $one_match = TRUE;
186
+ }
187
+ }
188
+ }
189
+ /* All Prefix Queries must match.
190
+ */
191
+ if ( FALSE === $one_match ) {
192
+ return FALSE;
193
+ }
194
+ }
195
+ $match = TRUE;
196
+ }
197
+ } else {
198
+ /* Paths must exactly match if Prefix specifies Query
199
+ */
200
+ if ( array() === $prefix['query'] ) {
201
+ /* No Query in Prefix, so check Path for Prefix match
202
+ */
203
+ $match = ( $prefix['path'] === jr_v1_substr( $url['path'], 0, jr_v1_strlen( $prefix['path'] ) ) );
204
+ } else {
205
+ $match = FALSE;
206
+ }
207
+ }
208
+ } else {
209
+ if ( ( '' === $prefix['path'] ) && ( array() === $prefix['query'] ) ) {
210
+ /* No Path or Query in Prefix, so check Host for Prefix match
211
+ */
212
+ $match = ( $prefix['host'] === jr_v1_substr( $url['host'], 0, jr_v1_strlen( $prefix['host'] ) ) );
213
+ } else {
214
+ /* Hosts must exactly match if Prefix specifies Path or Query
215
+ */
216
+ $match = FALSE;
217
+ }
218
+ }
219
+ return $match;
220
+ }
221
+ }
222
+
223
+ /**
224
+ * Standardize a URL into an array of values that can be accurately compared with another
225
+ *
226
+ * Preps URL, by removing any UTF Left-to-right Mark (LRM), usually found as a suffix,
227
+ * translating the URL to lower-case, removing prefix http[s]//:[www.],
228
+ * any embedded index.php and any trailing slash or #bookmark,
229
+ * and breaks up ?keyword=value queries into array elements.
230
+ *
231
+ * Structure/Elements of Array returned:
232
+ * [host] - domain.com - www. is removed, but all other subdomains are included
233
+ * [path] - /dir/file.ext
234
+ * [query] - any Queries (e.g. - "?kw=val&kw2=val2") broken up as follows:
235
+ * [$keyword] => $value with preceding equals sign, only if equals sign was present
236
+ * To simplify processing of this Array, zero length strings and empty arrays are used,
237
+ * rather than NULL entries or missing array elements.
238
+ *
239
+ * @param string $url URL to create an array from, in special format for accurate comparison
240
+ * @return array array of standardized attributes of the URL (see structure above)
241
+ */
242
+ if ( !function_exists( 'jr_v1_prep_url' ) ) {
243
+ function jr_v1_prep_url( $url ) {
244
+ /* Handle troublesome %E2%80%8E UTF Left-to-right Mark (LRM) suffix first.
245
+ */
246
+ if ( FALSE === jr_v1_stripos( $url, '%E2%80%8E' ) ) {
247
+ if ( FALSE === jr_v1_stripos( rawurlencode( $url ), '%E2%80%8E' ) ) {
248
+ $url_clean = $url;
249
+ } else {
250
+ $url_clean = rawurldecode( str_ireplace( '%E2%80%8E', '', rawurlencode( $url ) ) );
251
+ /* mb_str_ireplace() does not exist because str_ireplace() is binary-safe.
252
+ */
253
+ }
254
+ } else {
255
+ $url_clean = str_ireplace( '%E2%80%8E', '', $url );
256
+ }
257
+ $url_clean = trim( $url_clean );
258
+
259
+ /* parse_url(), especially before php Version 5.4.7,
260
+ has a history of problems when Scheme is not present,
261
+ especially for LocalHost as a Host,
262
+ so add a prefix of http:// if :// is not found
263
+ */
264
+ if ( FALSE === jr_v1_strpos( $url_clean, '://' ) ) {
265
+ $url_clean = "http://$url_clean";
266
+ }
267
+
268
+ $parse_array = parse_url( jr_v1_strtolower( $url_clean ) );
269
+ /* Get rid of URL components that do not matter to us in our comparison of URLs
270
+ */
271
+ foreach ( array( 'scheme', 'port', 'user', 'pass', 'fragment' ) as $component ) {
272
+ unset ( $parse_array[$component] );
273
+ }
274
+ /* Remove www. from host
275
+ */
276
+ if ( 'www.' === jr_v1_substr( $parse_array['host'], 0, 4 ) ) {
277
+ $parse_array['host'] = jr_v1_substr( $parse_array['host'], 4 );
278
+ }
279
+ if ( isset( $parse_array['path'] ) ) {
280
+ /* Remove any index.php occurences in path, since these can be spurious in IIS
281
+ and perhaps other environments.
282
+ */
283
+ $parse_array['path'] = str_replace( 'index.php', '', $parse_array['path'] );
284
+ /* Remove leading and trailing slashes from path
285
+ */
286
+ $parse_array['path'] = trim( $parse_array['path'], "/\\" );
287
+ } else {
288
+ $parse_array['path'] = '';
289
+ }
290
+ /* Take /?keyword=value&keyword=value URL query parameters
291
+ and break them up into array( keyword => value, keyword => value )
292
+ */
293
+ if ( isset( $parse_array['query'] ) ) {
294
+ $parms = explode( '&', $parse_array['query'] );
295
+ $parse_array['query'] = array();
296
+ foreach( $parms as $parm ) {
297
+ if ( FALSE === ( $cursor = jr_v1_strpos( $parm, '=', 1 ) ) ) {
298
+ $parse_array['query'][$parm] = '';
299
+ } else {
300
+ /* Include the Equals Sign ("=") as the first character of the Query Value
301
+ to differentiate between a URL Prefix with a Query Keyword followed by
302
+ an Equals Sign, and one without. For example, "address" would match
303
+ address2=abc, while "address=" would not.
304
+ */
305
+ $parse_array['query'][jr_v1_substr( $parm, 0, $cursor + 1 )] = jr_v1_substr( $parm, $cursor + 1 );
306
+ }
307
+ }
308
+ } else {
309
+ $parse_array['query'] = array();
310
+ }
311
+ return $parse_array;
312
+ }
313
+ }
314
+
315
+ /**
316
+ * Sanitize a URL
317
+ *
318
+ * Preps URL, by removing any UTF Left-to-right Mark (LRM), usually found as a suffix,
319
+ * and then checks if URL is blank.
320
+ *
321
+ * @param string $url URL
322
+ * @return string/bool Sanitized URL; bool FALSE if invalid URL;
323
+ * zero length string if URL not specified
324
+ */
325
+ if ( !function_exists( 'jr_v1_sanitize_url' ) ) {
326
+ function jr_v1_sanitize_url( $url ) {
327
+ /* Handle troublesome %E2%80%8E UTF Left-to-right Mark (LRM) suffix first.
328
+ */
329
+ if ( FALSE === stripos( $url, '%E2%80%8E' ) ) {
330
+ if ( FALSE === stripos( rawurlencode( $url ), '%E2%80%8E' ) ) {
331
+ $url_clean = $url;
332
+ } else {
333
+ $url_clean = rawurldecode( str_ireplace( '%E2%80%8E', '', rawurlencode( $url ) ) );
334
+ }
335
+ } else {
336
+ $url_clean = str_ireplace( '%E2%80%8E', '', $url );
337
+ }
338
+ $url_clean = trim( $url_clean );
339
+ if ( empty( $url_clean ) ) {
340
+ return '';
341
+ }
342
+ /* Add a prefix of http:// if :// is not found
343
+ and be sure scheme is http: or https:
344
+ */
345
+ if ( FALSE === strpos( $url_clean, '://' ) ) {
346
+ if ( is_ssl()
347
+ || ( isset( $_SERVER['HTTP_X_FORWARDED_PROTO'] )
348
+ && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' ) ) {
349
+ $s = 's';
350
+ } else {
351
+ $s = '';
352
+ }
353
+ $url_clean = "http$s://$url_clean";
354
+ } else {
355
+ if ( !in_array( strtolower( parse_url( $url_clean, PHP_URL_SCHEME ) ), array( 'http', 'https' ) ) ) {
356
+ return FALSE;
357
+ }
358
+ }
359
+ return $url_clean;
360
+ }
361
+ }
362
+
363
+ ?>
includes/functions-admin.php ADDED
@@ -0,0 +1,49 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+
3
+ /**
4
+ * Is the URL on the current WordPress web site?
5
+ *
6
+ * Checks if URL begins with Site Home URL.
7
+ * Strip http[s]://[www.] and leading and trailing blanks and convert to lower-case before comparing,
8
+ * to allow http, etc. to be omitted on entry
9
+ *
10
+ * @param string $url URL to be checked to be sure it is "on" the current WordPress web site
11
+ * @return bool bool TRUE if URL is on current WordPress web site; FALSE otherwise
12
+ */
13
+ function jr_ps_site_url( $url ) {
14
+ $site_home = jr_ps_urlcompare_prep( get_home_url() );
15
+ return ( substr( jr_ps_urlcompare_prep( $url ), 0, strlen( $site_home ) ) === $site_home );
16
+ }
17
+
18
+ /**
19
+ * Prepare a URL for comparison with another URL
20
+ *
21
+ * Strip [http[s]://][www.] and leading and trailing blanks, and convert to lower-case,
22
+ * to:
23
+ * (1) permit comparison of "synonym" URLs; and
24
+ * (2) allow http to be omitted when inputting a URL
25
+ *
26
+ * @param string $url URL to be prepped for comparison
27
+ * @return string URL prepped for comparison
28
+ */
29
+ function jr_ps_urlcompare_prep( $url ) {
30
+ $prep_url = strtolower( trim( $url ) );
31
+ if ( 'http' === substr( $prep_url, 0, 4 ) ) {
32
+ if ( 's' === substr( $prep_url, 4, 1 ) ) {
33
+ $cursor = 5; // Next character to look at in URL
34
+ } else {
35
+ $cursor = 4;
36
+ }
37
+ if ( '://' === substr( $prep_url, $cursor, 3 ) ) {
38
+ $cursor = $cursor + 3;
39
+ }
40
+ } else {
41
+ $cursor = 0;
42
+ }
43
+ if ( 'www.' === substr( $prep_url, $cursor, 4 ) ) {
44
+ $cursor = $cursor + 4;
45
+ }
46
+ return substr( $prep_url, $cursor );
47
+ }
48
+
49
+ ?>
includes/index.html ADDED
File without changes
includes/installed-plugins.php ADDED
@@ -0,0 +1,91 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Initiated when in the Admin panels.
4
+ Used to handle the plugin's entry on the Install Plugins page.
5
+ */
6
+
7
+ /* Support WordPress Version 3.0.x before is_network_admin() existed
8
+ */
9
+ if ( function_exists( 'is_network_admin' ) && is_network_admin() ) {
10
+ // Add Link to the plugin's entry on the Network Admin "Plugins" Page, for easy access
11
+ add_filter( 'network_admin_plugin_action_links_' . jr_ps_plugin_basename(), 'jr_ps_plugin_network_action_links', 10, 1 );
12
+
13
+ /**
14
+ * Creates Settings link right on the Network Plugins Page entry.
15
+ *
16
+ * Helps the user understand where to go immediately upon Activation of the Plugin
17
+ * by creating entries on the Plugins page, right beside Deactivate and Edit.
18
+ *
19
+ * @param array $links Existing links for our Plugin, supplied by WordPress
20
+ * @param string $file Name of Plugin currently being processed
21
+ * @return string $links Updated set of links for our Plugin
22
+ */
23
+ function jr_ps_plugin_network_action_links( $links ) {
24
+ // The "page=" query string value must be equal to the slug
25
+ // of the Settings admin page.
26
+ array_push( $links, '<a href="' . get_bloginfo('wpurl') . '/wp-admin/network/settings.php?page=jr_ps_network_settings' . '">Settings</a>' );
27
+ return $links;
28
+ }
29
+ } else {
30
+ // Add Link to the plugin's entry on the Admin "Plugins" Page, for easy access
31
+ add_filter( 'plugin_action_links_' . jr_ps_plugin_basename(), 'jr_ps_plugin_action_links', 10, 1 );
32
+
33
+ if ( function_exists( 'is_plugin_active_for_network' ) && is_plugin_active_for_network( jr_ps_plugin_basename() ) ) {
34
+ // Add entry for the plugin on the each site's Admin "Plugins" Page, when Network Activated and not normally shown
35
+ add_action( 'pre_current_active_plugins', 'jr_ps_show_plugin' );
36
+
37
+ function jr_ps_show_plugin() {
38
+ global $wp_list_table;
39
+ global $jr_ps_path;
40
+ $wp_list_table->items[jr_ps_plugin_basename()] = get_plugin_data( $jr_ps_path . basename( jr_ps_plugin_basename() ) );
41
+ uasort( $wp_list_table->items, 'jr_ps_sort_plugins' );
42
+ return;
43
+ }
44
+
45
+ function jr_ps_sort_plugins( $a, $b ) {
46
+ return strcasecmp( $a['Name'], $b['Name'] );
47
+ }
48
+
49
+ /**
50
+ * Creates Settings entry right on the Plugins Page entry.
51
+ *
52
+ * Helps the user understand where to go immediately upon Activation of the Plugin
53
+ * by creating entries on the Plugins page, right beside Deactivate and Edit.
54
+ *
55
+ * @param array $links Existing links for our Plugin, supplied by WordPress
56
+ * @param string $file Name of Plugin currently being processed
57
+ * @return string $links Updated set of links for our Plugin
58
+ */
59
+ function jr_ps_plugin_action_links( $links ) {
60
+ /* Delete existing Links and replace with "Network Activated" (not a link)
61
+ and "Settings" as a link to Plugin Settings page.
62
+ The "page=" query string value must be equal to the slug
63
+ of the Settings admin page.
64
+ */
65
+ return array( 'Network Activated',
66
+ '<a href="' . get_bloginfo('wpurl') . '/wp-admin/admin.php?page=jr_ps_settings' . '">Settings</a>'
67
+ );
68
+ }
69
+ } else {
70
+ /**
71
+ * Creates Settings entry right on the Plugins Page entry.
72
+ *
73
+ * Helps the user understand where to go immediately upon Activation of the Plugin
74
+ * by creating entries on the Plugins page, right beside Deactivate and Edit.
75
+ *
76
+ * @param array $links Existing links for our Plugin, supplied by WordPress
77
+ * @param string $file Name of Plugin currently being processed
78
+ * @return string $links Updated set of links for our Plugin
79
+ */
80
+ function jr_ps_plugin_action_links( $links ) {
81
+ /* Add "Settings" to the end of existing Links
82
+ The "page=" query string value must be equal to the slug
83
+ of the Settings admin page.
84
+ */
85
+ array_push( $links, '<a href="' . get_bloginfo('wpurl') . '/wp-admin/admin.php?page=jr_ps_settings' . '">Settings</a>' );
86
+ return $links;
87
+ }
88
+ }
89
+ }
90
+
91
+ ?>
includes/net-settings.php ADDED
@@ -0,0 +1,61 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Initiated when in the Network Admin panels.
4
+ Used to create the Settings page for the plugin.
5
+ */
6
+
7
+ add_action( 'network_admin_menu', 'jr_ps_network_admin_hook' );
8
+ // Runs just after admin_init
9
+
10
+ /**
11
+ * Add Network Admin Menu item for plugin
12
+ *
13
+ * Plugin needs its own Page in the Settings section of the Network Admin menu.
14
+ *
15
+ */
16
+ function jr_ps_network_admin_hook() {
17
+ // Add Network Settings Page for this Plugin
18
+ global $jr_ps_plugin_data;
19
+ add_submenu_page( 'settings.php', $jr_ps_plugin_data['Name'], 'Private Sites', 'manage_network_options', 'jr_ps_network_settings', 'jr_ps_network_settings_page' );
20
+ }
21
+
22
+ /**
23
+ * Network Settings page for plugin
24
+ *
25
+ * Display and Process Settings page for this plugin.
26
+ *
27
+ */
28
+ function jr_ps_network_settings_page() {
29
+ global $jr_ps_plugin_data;
30
+ add_thickbox();
31
+ echo '<div class="wrap">';
32
+ screen_icon( 'plugins' );
33
+ echo '<h2>' . $jr_ps_plugin_data['Name'] . '</h2>';
34
+ ?>
35
+ <p>
36
+ This Plugin has been <b>Network Activated</b> in a WordPress Multisite ("Network") installation.
37
+ Since all of this plugin's Settings can be specified separately for each individual WordPress site,
38
+ you will need to go to the Admin pages for each Site,
39
+ and review the plugin's Settings page,
40
+ making changes appropriate for that Site.
41
+ The plugin's Settings page can be found by opening the <b>Settings</b> submenu on the left sidebar of each Admin page for the Site
42
+ and selecting <b>Private Site</b>.
43
+ Or from the <b>Settings</b> link in the plugin's entry on the <b>Installed Plugins</b> page for the Site
44
+ <i>(WordPress does not list Network Activated plugins on each Site's Installed Plugins page,
45
+ but this plugin has added its own entry for your convenience)</i>.
46
+ </p>
47
+ <p>
48
+ Alternatively, you can <b>Network Deactivate</b> this plugin
49
+ and <b>Activate</b> it individually on each Site where you wish to use it.
50
+ </p>
51
+ <p>
52
+ If you would prefer, when this plugin is Network Activated,
53
+ to have a single set of Settings that would apply to all Sites in a WordPress network,
54
+ and/or be able to view and change all of the Settings for all Sites from this one Network Settings page that you are now viewing,
55
+ <a href="http://zatzlabs.com/contact-us/">please contact the Plugin author</a>
56
+ and this will be added to a future version of this plugin if there is enough interest expressed by webmasters such as you.
57
+ </p>
58
+ <?php
59
+ }
60
+
61
+ ?>
includes/public.php ADDED
@@ -0,0 +1,170 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Initiated when on the "public" web site,
4
+ i.e. - not an Admin panel.
5
+ */
6
+
7
+ // Exit if .php file accessed directly
8
+ if ( !defined( 'ABSPATH' ) ) exit;
9
+
10
+ add_action( 'login_init', 'jr_ps_login' );
11
+ add_action( 'wp', 'jr_ps_force_login' );
12
+
13
+ /**
14
+ * Login Detection
15
+ *
16
+ * Set a global variable, $jr_ps_is_login, whenever a login occurs
17
+ *
18
+ * @return NULL Nothing is returned
19
+ */
20
+ function jr_ps_login() {
21
+ global $jr_ps_is_login;
22
+ $jr_ps_is_login = TRUE;
23
+ }
24
+
25
+ /**
26
+ * Present a login screen to anyone not logged in
27
+ *
28
+ * Check for already logged in or just logged in.
29
+ * Only called when is_admin() is FALSE
30
+ *
31
+ * @return NULL Nothing is returned
32
+ */
33
+ function jr_ps_force_login() {
34
+ global $jr_ps_is_login;
35
+ if ( is_user_logged_in() || isset( $jr_ps_is_login ) ) {
36
+ return;
37
+ }
38
+
39
+ $settings = get_option( 'jr_ps_settings' );
40
+ /* URL of current page without http://, i.e. - starting with domain
41
+ */
42
+ $current_url = $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
43
+ if ( $settings['excl_home'] && jr_v1_same_url( get_home_url(), $current_url ) ) {
44
+ return;
45
+ }
46
+ if ( $settings['custom_login'] && !empty( $settings['login_url'] ) && jr_v1_same_url( $settings['login_url'], $current_url ) ) {
47
+ return;
48
+ }
49
+ if ( isset( $settings['excl_url'] ) ) {
50
+ foreach ( $settings['excl_url'] as $arr ) {
51
+ /* Test the pre-parsed URL in the URL Exclusion list
52
+ */
53
+ if ( jr_v1_same_url( $arr[1], $current_url ) ) {
54
+ return;
55
+ }
56
+ }
57
+ }
58
+ if ( isset( $settings['excl_url_prefix'] ) ) {
59
+ foreach ( $settings['excl_url_prefix'] as $arr ) {
60
+ /* Test the pre-parsed URL in the Prefix URL Exclusion list
61
+ */
62
+ if ( jr_v1_same_prefix_url( $arr[1], $current_url ) ) {
63
+ return;
64
+ }
65
+ }
66
+ }
67
+
68
+ if ( $settings['reveal_registration'] ) {
69
+ $buddypress_path = 'buddypress/bp-loader.php';
70
+ $buddypress_active = is_plugin_active( $buddypress_path );
71
+ /* URL of Registration Page varies between Multisite (Network)
72
+ and Single Site WordPress.
73
+ Plus, wp_registration_url function was introduced in
74
+ WordPress Version 3.6.
75
+ */
76
+ if ( is_multisite() ) {
77
+ $reg_url = get_site_url( 0, 'wp-signup.php' );
78
+ $buddypress_active = $buddypress_active || is_plugin_active_for_network( $buddypress_path );
79
+ } else {
80
+ if ( function_exists( 'wp_registration_url' ) ) {
81
+ $reg_url = wp_registration_url();
82
+ } else {
83
+ $reg_url = get_site_url( 0, 'wp-login.php?action=register' );
84
+ }
85
+ }
86
+ if ( jr_v1_same_url( $reg_url, $current_url )
87
+ || ( $buddypress_active
88
+ && ( jr_v1_same_url( get_site_url( 0, 'register' ), $current_url )
89
+ || jr_v1_same_url( get_site_url( 0, 'activate' ),
90
+ parse_url( $current_url, PHP_URL_HOST )
91
+ . parse_url( $current_url, PHP_URL_PATH ) ) ) ) ) {
92
+ /* BuddyPress plugin redirects Registration URL to
93
+ either {current site}/register/ or {main site}/register/
94
+ and has its own Activation at /activate/?key=...
95
+ */
96
+ return;
97
+ }
98
+ }
99
+
100
+ /* Must exclude all of the pages generated by the Theme My Login plugin
101
+ */
102
+ $theme_my_login_path = 'theme-my-login/theme-my-login.php';
103
+ $theme_my_login_active = is_plugin_active( $theme_my_login_path );
104
+ if ( is_multisite() ) {
105
+ $theme_my_login_active = $theme_my_login_active || is_plugin_active_for_network( $theme_my_login_path );
106
+ }
107
+ if ( $theme_my_login_active ) {
108
+ if ( NULL !== ( $page = get_post( $null = NULL ) ) ) {
109
+ /* Some Versions of WordPress required that get_post() have a parameter
110
+ */
111
+ if ( ( 'page' === $page->post_type )
112
+ && in_array( $page->post_name, array( 'login', 'logout', 'lostpassword', 'register', 'resetpass' ) )
113
+ && stripos( $page->post_content, 'theme-my-login' ) ) {
114
+ return;
115
+ }
116
+ }
117
+ }
118
+
119
+ switch ( $settings['landing'] ) {
120
+ case 'return':
121
+ // $_SERVER['HTTPS'] can be off in IIS
122
+ if ( empty( $_SERVER['HTTPS'] ) || ( $_SERVER['HTTPS'] == 'off' ) ) {
123
+ $http = 'http://';
124
+ } else {
125
+ $http = 'https://';
126
+ }
127
+ $after_login_url = $http . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'];
128
+ break;
129
+ case 'home':
130
+ $after_login_url = get_home_url();
131
+ break;
132
+ case 'admin':
133
+ $after_login_url = get_admin_url();
134
+ break;
135
+ case 'url':
136
+ $after_login_url = trim( $settings['specific_url'] );
137
+ break;
138
+ case 'omit':
139
+ $after_login_url = '';
140
+ break;
141
+ }
142
+
143
+ if ( $settings['custom_login'] && !empty( $settings['login_url'] ) ) {
144
+ if ( empty( $after_login_url ) ) {
145
+ $url = $settings['login_url'];
146
+ } else {
147
+ $url = add_query_arg( 'redirect_to', $after_login_url, $settings['login_url'] );
148
+ }
149
+ } else {
150
+ /* Avoid situations where specific URL is requested,
151
+ but URL is blank.
152
+ */
153
+ if ( empty( $after_login_url ) ) {
154
+ $url = wp_login_url();
155
+ } else {
156
+ $url = wp_login_url( $after_login_url );
157
+ }
158
+ }
159
+
160
+ /* Next line:
161
+ wp_redirect( $url ) goes to $url right after exit on the line that follows;
162
+ wp_login_url() returns the standard WordPress login URL;
163
+ $after_login_url is the URL passed to the standard WordPress login URL,
164
+ via the ?redirect_to= URL query parameter, to go to after login is complete.
165
+ */
166
+ wp_redirect( $url );
167
+ exit;
168
+ }
169
+
170
+ ?>
index.html ADDED
File without changes
jonradio-private-site.php ADDED
@@ -0,0 +1,188 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ /*
3
+ Plugin Name: jonradio Private Site
4
+ Plugin URI: http://zatzlabs.com/plugins/
5
+ Description: Creates a Private Site by allowing only those logged on to view the WordPress web site. Settings select the initial destination after login.
6
+ Version: 2.8
7
+ Author: David Gewirtz
8
+ Author URI: http://zatzlabs.com/plugins/
9
+ License: GPLv2
10
+ */
11
+
12
+ /* Copyright 2014 jonradio (email : info@zatz.com)
13
+
14
+ This program is free software; you can redistribute it and/or modify
15
+ it under the terms of the GNU General Public License as published by
16
+ the Free Software Foundation; either version 2 of the License, or
17
+ (at your option) any later version.
18
+
19
+ This program is distributed in the hope that it will be useful,
20
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
21
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22
+ GNU General Public License for more details.
23
+
24
+ You should have received a copy of the GNU General Public License
25
+ along with this program; if not, write to the Free Software
26
+ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
27
+ */
28
+
29
+ /* Exit if .php file accessed directly
30
+ */
31
+ if ( !defined( 'ABSPATH' ) ) exit;
32
+
33
+ global $jr_ps_path;
34
+ $jr_ps_path = plugin_dir_path( __FILE__ );
35
+ /**
36
+ * Return Plugin's full directory path with trailing slash
37
+ *
38
+ * Local XAMPP install might return:
39
+ * C:\xampp\htdocs\wpbeta\wp-content\plugins\jonradio-private-site/
40
+ *
41
+ */
42
+ function jr_ps_path() {
43
+ global $jr_ps_path;
44
+ return $jr_ps_path;
45
+ }
46
+
47
+ global $jr_ps_plugin_basename;
48
+ $jr_ps_plugin_basename = plugin_basename( __FILE__ );
49
+ /**
50
+ * Return Plugin's Basename
51
+ *
52
+ * For this plugin, it would be:
53
+ * jonradio-multiple-themes/jonradio-multiple-themes.php
54
+ *
55
+ */
56
+ function jr_ps_plugin_basename() {
57
+ global $jr_ps_plugin_basename;
58
+ return $jr_ps_plugin_basename;
59
+ }
60
+
61
+ if ( !function_exists( 'get_plugin_data' ) ) {
62
+ require_once( ABSPATH . 'wp-admin/includes/plugin.php' );
63
+ }
64
+
65
+ global $jr_ps_plugin_data;
66
+ $jr_ps_plugin_data = get_plugin_data( __FILE__ );
67
+ $jr_ps_plugin_data['slug'] = basename( dirname( __FILE__ ) );
68
+
69
+ /* Detect initial activation or a change in plugin's Version number
70
+
71
+ Sometimes special processing is required when the plugin is updated to a new version of the plugin.
72
+ Also used in place of standard activation and new site creation exits provided by WordPress.
73
+ Once that is complete, update the Version number in the plugin's Network-wide settings.
74
+ */
75
+
76
+ if ( ( FALSE === ( $internal_settings = get_option( 'jr_ps_internal_settings' ) ) )
77
+ || empty( $internal_settings['version'] ) )
78
+ {
79
+ /* Plugin is either:
80
+ - updated from a version so old that Version was not yet stored in the plugin's settings, or
81
+ - first use after install:
82
+ - first time ever installed, or
83
+ - installed previously and properly uninstalled (data deleted)
84
+ */
85
+
86
+ $old_version = '0.1';
87
+ } else {
88
+ $old_version = $internal_settings['version'];
89
+ }
90
+
91
+ if ( version_compare( $old_version, $jr_ps_plugin_data['Version'], '!=' ) ) {
92
+ /* Create, if internal settings do not exist; update if they do exist
93
+ */
94
+ $internal_settings['version'] = $jr_ps_plugin_data['Version'];
95
+ if ( version_compare( $old_version, '2', '<' ) ) {
96
+ /* Previous versions turned Privacy on at Activation;
97
+ Now it is a Setting on the Settings page,
98
+ so warn Admin.
99
+ */
100
+ $internal_settings['warning_privacy'] = TRUE;
101
+ }
102
+ update_option( 'jr_ps_internal_settings', $internal_settings );
103
+ }
104
+
105
+ require_once( jr_ps_path() . 'includes/common-functions.php' );
106
+ jr_v1_validate_settings( 'jr_ps_settings',
107
+ array(
108
+ 'private_site' => FALSE,
109
+ 'reveal_registration' => TRUE,
110
+ 'landing' => 'return',
111
+ 'specific_url' => '',
112
+ 'custom_login' => FALSE,
113
+ 'login_url' => '',
114
+ 'excl_url' => array(),
115
+ 'excl_url_prefix' => array(),
116
+ 'excl_home' => FALSE
117
+ )
118
+ );
119
+ $settings = get_option( 'jr_ps_settings' );
120
+ if ( is_admin() ) {
121
+ require_once( jr_ps_path() . 'includes/all-admin.php' );
122
+ /* Support WordPress Version 3.0.x before is_network_admin() existed
123
+ */
124
+ if ( function_exists( 'is_network_admin' ) && is_network_admin() ) {
125
+ // Network Admin pages in Network/Multisite install
126
+ if ( function_exists( 'is_plugin_active_for_network' ) && is_plugin_active_for_network( jr_ps_plugin_basename() ) ) {
127
+ // Network Admin Settings page for Plugin
128
+ require_once( jr_ps_path() . 'includes/net-settings.php' );
129
+ }
130
+ } else {
131
+ // Regular (non-Network) Admin pages
132
+ // Settings page for Plugin
133
+ require_once( jr_ps_path() . 'includes/admin-settings.php' );
134
+ }
135
+ // All changes to all Admin-Installed Plugins pages
136
+ require_once( jr_ps_path() . 'includes/installed-plugins.php' );
137
+ } else {
138
+ /* Public WordPress content, i.e. - not Admin pages
139
+ Do nothing if Private Site setting not set by Administrator
140
+ */
141
+ if ( $settings['private_site'] ) {
142
+ // Private Site code
143
+ require_once( jr_ps_path() . 'includes/public.php' );
144
+ }
145
+ }
146
+
147
+ /* Documentation of Research Done for this Plugin:
148
+ Registration URL (based on a root install in http://localhost):
149
+ WordPress 3.6.1 without jonradio Private Site installed
150
+ Single Site - not a network
151
+ http://localhost/wp-login.php?action=register
152
+ Primary Site of a Network
153
+ http://localhost/wp-signup.php
154
+ Secondary Site of a Network
155
+ http://localhost/wp-signup.php
156
+ This last URL needs a lot of thought because it means that what begins on one site ends up on another.
157
+
158
+ WordPress 3.7-beta without jonradio Private Site installed
159
+ Single Site - not a network
160
+ http://localhost/wp-login.php?action=register
161
+ Primary Site of a Network
162
+ http://localhost/wp-signup.php
163
+ Secondary Site of a Network
164
+ http://localhost/wp-signup.php
165
+
166
+ WordPress 3.0.0 without jonradio Private Site installed
167
+ Single Site - not a network
168
+ http://localhost/wp-login.php?action=register
169
+ Primary Site of a Network
170
+ http://localhost/wp-signup.php
171
+ Secondary Site of a Network
172
+ http://localhost/wp-signup.php
173
+
174
+ wp_registration_url() was not available prior to WordPress Version 3.6.0
175
+
176
+ Self-Registration allows potential Users to Register their own ID and Password without Administrator intervention or knowledge.
177
+ It is controlled by:
178
+ get_option( 'users_can_register' ) - non-Network
179
+ '1' - allows Self-Registration
180
+ '0' - no Self-Registration
181
+ get_site_option( 'registration' ) - Network (Multisite)
182
+ 'user' - allows Self-Registration
183
+ 'none' - no Self-Registration
184
+ 'blog' - Users can create new Sites in a Network
185
+ 'all' - allows Self-Registration and the creation of new Sites in a Network
186
+ */
187
+
188
+ ?>
readme.txt ADDED
@@ -0,0 +1,157 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ === jonradio Private Site ===
2
+ Contributors: dgewirtz
3
+ Donate link: http://zatzlabs.com/plugins/
4
+ Tags: login, visibility, private, security, plugin, pages, page, posts, post
5
+ Requires at least: 3.0
6
+ Tested up to: 3.8
7
+ Stable tag: 2.8
8
+ License: GPLv2 or later
9
+ License URI: http://www.gnu.org/licenses/gpl-2.0.html
10
+
11
+ Create a Private Site visible only to your registered users.
12
+
13
+ == Description ==
14
+
15
+ Allows the Administrator to restrict a WordPress-based web site to viewing only by registered users who are logged on. Any attempt, by anyone not logged, to view any Page, Post or other part of the site will display a WordPress login screen.
16
+
17
+ Login prompts are provided whenever a non-logged in user ("site visitor") attempts to access any URL controlled by WordPress on the web site. This plugin does not control non-WordPress web pages, such as .html and .php files created by hand or by other software products. Or images and other media and text files directly accessed by their URL, or from a browser's directory view, if available.
18
+
19
+ Features and Settings:
20
+
21
+ * Supports WordPress Networks ("Multisite"), with Network-wide Settings planned for a future version
22
+ * Visible Exclusions settings allow the entry of a list of URLs that will always be visible, and never be hidden by the plugin; a separate Setting is provided for hiding or revealing Site Home without the need to enter its URL
23
+ * A URL Prefix option in Visible Exclusions, matches, and makes visible, all URLs that begin with the one or more partial URLs entered
24
+ * Supports Custom Login and Registration pages at URLs different than the standard WordPress Login and Registration URLs
25
+ * Landing Location settings determine what the User sees after successfully logging in
26
+ * User Self-Registration settings (varies between Network and Non-Network WordPress) are presented on the plugin's Settings page for easy access
27
+ * No known Theme incompatibilities, and only known Plugin incompatibility is with the A5 Custom Login plugin
28
+ * Special functionality is included to not hide Login- and Registration-related URLs used by BuddyPress and Theme My Login plugins
29
+ * Remember Me improvements at Login via free companion plugin, jonradio Remember Me, which can be downloaded separately from the WordPress Plugin Repository
30
+ * Overrides WordPress hiding of Network Activated plugins, just for itself; tp provide this feature for all plugins, use the free companion plugin, jonradio Reveal Network Activated Plugins, which can be downloaded separately from the WordPress Plugin Repository
31
+ * Setting to disable the plugin so that other plugin Settings can be changed when the Site is not set to Private
32
+
33
+ If you allow Self-Registration, where new Users can Register themselves, you will need to select the "Reveal User Registration Page" setting or new Users will be blocked from seeing the WordPress Registration screen (on WordPress Networks, turning off the Reveal User Registration Page setting on the "Main Site" will prevent Registration from all Sites). For convenience, the WordPress Setting that controls Self-Registration of Users has been added to the Plugin's Settings page.
34
+
35
+ Another Setting allows the Private Site feature to be turned off. When the plugin is installed and activated, the Private Site feature is set off by default, to allow the Administrator an opportunity to become familiarized with the plugin's features and to set the desired settings. A warning that the site is not private appears after first activation of the plugin until the Administrator visits the plugin's Settings page.
36
+
37
+ If a WordPress Network is defined, the plugin can be activated individually for select sites. Or Network Activated. In either case, each site will have its own Settings page where the Private Site feature can be turned off (default) or on for just the one site, and a Landing Location defined for each site.
38
+
39
+ Yes, there are other plugins that hide some or all WordPress content for any site visitor who is not logged on. But when I was searching for a solution for one of the web sites I support, I decided to "write my own" because I knew how it worked and felt comfortable that there would be no way for anyone not logged in to view the site, including Search Engines.
40
+
41
+ == Installation ==
42
+
43
+ This section describes how to install the *jonradio Private Site* plugin and get it working.
44
+
45
+ 1. Use **Add Plugin** within the WordPress Admin panel to download and install this *jonradio Private Site* plugin from the WordPress.org plugin repository (preferred method). Or download and unzip this plugin, then upload the `/jonradio-private-site/` directory to your WordPress web site's `/wp-content/plugins/` directory
46
+ 1. Activate the *jonradio Private Site* plugin through the **Installed Plugins** Admin panel in WordPress. If you have a WordPress Network ("Multisite"), you can either **Network Activate** this plugin, or Activate it individually on the sites where you wish to use it.
47
+ 1. Go to the plugin's Settings page to make the Site **Private**, and set where the user ends up after logging in: the **Landing Location**.
48
+ 1. If you allow Self-Registration, where new Users can set up their own User Name on your WordPress site or Network, you will want to select **Reveal User Registration Page** on the plugin's Settings page.
49
+
50
+ == Frequently Asked Questions ==
51
+
52
+ = How do I fix Redirect Loops (browser cycles for a long time then gives up)? =
53
+
54
+ By far, the most common way to create a Redirect Loop on your browser with this *jonradio Private Site* plugin is to specify both Custom Login page and Landing Location on the plugin's Settings page. Simply setting "Where to after Login?" in the Landing Location section to "Omit ?redirect_to= from URL" should correct the problem.
55
+
56
+ This problem has been observed when the URL of the Custom Login page is a WordPress Page. It occurs because, for Page URLs, WordPress uses the ?redirect_to= Query keyword for purposes other than a Landing Location.
57
+
58
+ = What happened? I changed my Permalinks and now some things don't work. =
59
+
60
+ Whenever you change your WordPress Permalinks (Settings-Permalinks in Admin panels), this *jonradio Private Site* plugin does **not** automatically change any URLs you have entered in the plugin's Settings. You will therefore want to make changes to URLs in the plugin's Settings whenever you change Permalinks.
61
+
62
+ == Changelog ==
63
+
64
+ = 2.8 =
65
+ * Add Prefix option to Always Visible URLs
66
+ * Automatically use mb_ Multi-Byte string functions, if available
67
+
68
+ = 2.7 =
69
+ * Add Custom Login URL setting
70
+
71
+ = 2.6.1 =
72
+ * Older versions of WordPress require a parameter be passed to get_post()
73
+
74
+ = 2.6 =
75
+ * Detect and make visible Login-associated Pages created by the Theme My Login plugin
76
+
77
+ = 2.5 =
78
+ * Allow other URLs to be Always Visible with new Setting
79
+
80
+ = 2.4.2 =
81
+ * Reveal BuddyPress /activate/ Activation page when Reveal Registration selected
82
+
83
+ = 2.4.1 =
84
+ * Fix bug in URL matching for Root, where one URL has a trailing slash and the other does not
85
+
86
+ = 2.4 =
87
+ * Handle BuddyPress' redirection of Register URL in Reveal Registration
88
+
89
+ = 2.3 =
90
+ * Add Setting to Reveal Home Page on a Private Site
91
+ * Fixed Problems with wp_registration_url function in WordPress prior to Version 3.6
92
+
93
+ = 2.2 =
94
+ * Add the WordPress User Self-Registration field to the plugin's Settings page
95
+ * Add the Settings page to the User submenu of Admin panel, too
96
+
97
+ = 2.1 =
98
+ * Add a settings checkbox to reveal the Register page for User Self-Registration
99
+
100
+ = 2.0 =
101
+ * Add Settings page, specifying Landing Location and turning Private Site off and on
102
+ * Warning for new default of OFF for Private Site until Settings are first viewed
103
+ * Add Networking Settings information page
104
+ * Track plugin version number in internal settings
105
+ * Replace WordPress Activation/Deactivation hooks with Version checking code from jonradio Multiple Themes
106
+ * Add Plugin entry on individual sites when plugin is Network Activated, and Settings link on all Plugin entries
107
+
108
+ = 1.1 =
109
+ * Change Action Hook to 'wp' from 'wp_head' to avoid Modify Header errors when certain other plugins are present
110
+
111
+ = 1.0 =
112
+ * Add readme.txt and screenshots
113
+ * Add in-line documentation for php functions
114
+
115
+ == Upgrade Notice ==
116
+
117
+ = 2.8 =
118
+ Support Prefix URL for Always Visible pages
119
+
120
+ = 2.7 =
121
+ Support Custom Login page
122
+
123
+ = 2.6.1 =
124
+ Support Theme My Login plugin with older versions of WordPress
125
+
126
+ = 2.6 =
127
+ Support Theme My Login plugin
128
+
129
+ = 2.5 =
130
+ Allow many Always Visible pages
131
+
132
+ = 2.4.2 =
133
+ Reveal BuddyPress Activation page
134
+
135
+ = 2.4.1 =
136
+ Home Page better URL matching for Root Home Pages
137
+
138
+ = 2.4 =
139
+ Support BuddyPress
140
+
141
+ = 2.3 =
142
+ New Setting to display Home Page on a Private Site.
143
+
144
+ = 2.2 =
145
+ Display WordPress Self-Registration field on plugin Settings page.
146
+
147
+ = 2.1 =
148
+ Allow User Self-Registration by "revealing" the Register page to those not logged in.
149
+
150
+ = 2.0 =
151
+ Create a Settings page that defines where the user ends up after logging in
152
+
153
+ = 1.1 =
154
+ Should eliminate Modify Header errors due to conflict with other plugins
155
+
156
+ = 1.0 =
157
+ Production version, updated to meet WordPress Repository standards
uninstall.php ADDED
@@ -0,0 +1,19 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+ // Ensure call comes from WordPress, not a hacker or anyone else trying direct access.
3
+ if ( !defined( 'WP_UNINSTALL_PLUGIN' ) )
4
+ exit ();
5
+
6
+
7
+ /* Remove any tables, options, and such created by this Plugin */
8
+ if ( function_exists('is_multisite') && is_multisite() ) {
9
+ global $wpdb, $site_id;
10
+ $blogs = $wpdb->get_results( "SELECT blog_id FROM {$wpdb->blogs} WHERE site_id = $site_id" );
11
+ foreach ($blogs as $blog_obj) {
12
+ delete_blog_option( $blog_obj->blog_id, 'jr_ps_settings' );
13
+ delete_blog_option( $blog_obj->blog_id, 'jr_ps_internal_settings' );
14
+ }
15
+ } else {
16
+ delete_option( 'jr_ps_settings' );
17
+ delete_option( 'jr_ps_internal_settings' );
18
+ }
19
+ ?>