WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content - Version 5.7.11

Version Description

  • Important: Logic correction for HTTP based domain verification
Download this release

Release Info

Developer gowebsmarty
Plugin Icon wp plugin WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content
Version 5.7.11
Comparing to
See all releases

Code changes from version 5.7.10 to 5.7.11

Files changed (3) hide show
  1. admin/le_admin.php +44 -44
  2. readme.txt +10 -8
  3. wp-letsencrypt.php +2 -2
admin/le_admin.php CHANGED
@@ -165,7 +165,7 @@ class WPLE_Admin
165
  update_option( 'wple_version', WPLE_PLUGIN_VERSION );
166
  } else {
167
 
168
- if ( version_compare( get_option( 'wple_version' ), '5.7.2', '<=' ) ) {
169
  delete_option( 'wple_plan_choose' );
170
  update_option( 'wple_version', WPLE_PLUGIN_VERSION );
171
  }
@@ -1290,36 +1290,39 @@ class WPLE_Admin
1290
  $ch['value'],
1291
  true
1292
  );
1293
- if ( $check == 200 ) {
1294
- if ( file_exists( $fpath . $ch['file'] ) ) {
1295
- $check = 2;
1296
- }
1297
- }
1298
 
1299
- if ( $check == false ) {
 
 
1300
 
1301
- if ( FALSE === $counter ) {
1302
- update_option( 'wple_failed_verification', 1 );
1303
  } else {
1304
- update_option( 'wple_failed_verification', $counter + 1 );
1305
- }
1306
-
1307
- WPLE_Trait::wple_logger(
1308
- "HTTP challenge file (" . $domain . "/.well-known/acme-challenge/" . $ch['file'] . ") checked locally - found invalid",
1309
- 'success',
1310
- 'a',
1311
- false
1312
- );
1313
- WPLE_Trait::wple_send_log_data();
1314
- $ledebug = WPLE_Trait::wple_lets_debug( 'http-01' );
1315
-
1316
- if ( $ledebug != false ) {
1317
- echo $ledebug ;
 
 
 
 
 
 
 
 
1318
  exit;
1319
  }
1320
-
1321
- echo 'fail' ;
1322
- exit;
1323
  }
1324
 
1325
  }
@@ -1775,28 +1778,25 @@ class WPLE_Admin
1775
  /**
1776
  * Make verificiation possible with broken cert
1777
  *
 
1778
  * @return void
1779
  */
1780
  public function wple_wellknown_htaccess()
1781
  {
1782
- $dir = ABSPATH . '.well-known/acme-challenge/.htaccess';
1783
-
1784
- if ( !file_exists( $dir ) ) {
1785
- $file = @touch( $dir );
1786
- } else {
1787
- $file = true;
1788
- }
1789
-
1790
-
1791
- if ( is_writable( $dir ) && $file !== FALSE ) {
1792
- $ruleset = "<IfModule mod_rewrite.c>" . "\n";
1793
- $ruleset .= "RewriteEngine on" . "\n";
1794
- $ruleset .= "RewriteCond %{HTTPS} =on [NC]" . "\n";
1795
- $ruleset .= "RewriteRule ^(.*)\$ http://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]" . "\n";
1796
- $ruleset .= "</IfModule>" . "\n";
1797
- insert_with_markers( $dir, 'WP_Encryption', $ruleset );
1798
- }
1799
-
1800
  }
1801
 
1802
  /**
165
  update_option( 'wple_version', WPLE_PLUGIN_VERSION );
166
  } else {
167
 
168
+ if ( version_compare( get_option( 'wple_version' ), '5.7.10', '<=' ) ) {
169
  delete_option( 'wple_plan_choose' );
170
  update_option( 'wple_version', WPLE_PLUGIN_VERSION );
171
  }
1290
  $ch['value'],
1291
  true
1292
  );
 
 
 
 
 
1293
 
1294
+ if ( $check === true ) {
1295
+ //skip
1296
+ } else {
1297
 
1298
+ if ( $check == 200 && file_exists( $fpath . $ch['file'] ) ) {
1299
+ $check = 2;
1300
  } else {
1301
+
1302
+ if ( FALSE === $counter ) {
1303
+ update_option( 'wple_failed_verification', 1 );
1304
+ } else {
1305
+ update_option( 'wple_failed_verification', $counter + 1 );
1306
+ }
1307
+
1308
+ WPLE_Trait::wple_logger(
1309
+ "HTTP challenge file (" . $domain . "/.well-known/acme-challenge/" . $ch['file'] . ") checked locally - found invalid",
1310
+ 'success',
1311
+ 'a',
1312
+ false
1313
+ );
1314
+ WPLE_Trait::wple_send_log_data();
1315
+ $ledebug = WPLE_Trait::wple_lets_debug( 'http-01' );
1316
+
1317
+ if ( $ledebug != false ) {
1318
+ echo $ledebug ;
1319
+ exit;
1320
+ }
1321
+
1322
+ echo 'fail' ;
1323
  exit;
1324
  }
1325
+
 
 
1326
  }
1327
 
1328
  }
1778
  /**
1779
  * Make verificiation possible with broken cert
1780
  *
1781
+ * commented out to avoid redirection loops
1782
  * @return void
1783
  */
1784
  public function wple_wellknown_htaccess()
1785
  {
1786
+ // $dir = ABSPATH . '.well-known/acme-challenge/.htaccess';
1787
+ // if (!file_exists($dir)) {
1788
+ // $file = @touch($dir);
1789
+ // } else {
1790
+ // $file = true;
1791
+ // }
1792
+ // if (is_writable($dir) && $file !== FALSE) {
1793
+ // $ruleset = "<IfModule mod_rewrite.c>" . "\n";
1794
+ // $ruleset .= "RewriteEngine on" . "\n";
1795
+ // $ruleset .= "RewriteCond %{HTTPS} =on [NC]" . "\n";
1796
+ // $ruleset .= "RewriteRule ^(.*)\$ http://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]" . "\n";
1797
+ // $ruleset .= "</IfModule>" . "\n";
1798
+ // insert_with_markers($dir, 'WP_Encryption', $ruleset);
1799
+ // }
 
 
 
 
1800
  }
1801
 
1802
  /**
readme.txt CHANGED
@@ -1,17 +1,17 @@
1
  === WP Encryption - One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content ===
2
  Contributors: gowebsmarty, gwsharsha
3
- Tags: ssl,https redirect,ssl certificate,free ssl,https,add ssl,install ssl,force https,mixed content,insecure content,enable ssl
4
  Requires at least: 4.2
5
  License: GPL3
6
  Tested up to: 5.9
7
  Requires PHP: 5.4
8
- Stable tag: 5.7.10
9
 
10
  SSL for lifetime - Install free SSL certificate & enable SSL / HTTPS, secure mail w/ HTTPS, HTTPS redirect, fix SSL errors, SSL score, insecure content scanner, download SSL certificate, know your active SSL details.
11
 
12
  == Description ==
13
 
14
- ### 1M+ SSL certificates generated -- Switch to HTTPS easily ###
15
 
16
  https://youtu.be/aKvvVlAlZ14
17
 
@@ -47,8 +47,6 @@ PHP 5.4 & tested upto PHP 8.0, Linux hosting, OpenSSL, CURL, allow_url_fopen sho
47
 
48
  11. Automatic email notification prior to SSL certificate expiration
49
 
50
- 12. Incompatible SSL plugins detection
51
-
52
  (Optional) Running WordPress on a specialized VPS/Dedicated server without cPanel? You can download the generated SSL certificate files easily via "Download SSL Certificates" page and install it on your server by modifying server config file via SSH access as explained in our [DOCS](https://wpencryption.com/docs/).
53
 
54
  == PRO FEATURES WORTH UPGRADING ==
@@ -86,6 +84,7 @@ https://youtu.be/jrkFwFH7r6o
86
  * SSL encryption ensures protection against man-in-middle attacks by securely encrypting the data transfer between client and your server.
87
 
88
  == Why does My WordPress site need SSL? ==
 
89
  1. SEO Benefit: Major search engines like Google ranks SSL enabled sites higher compared to non SSL sites. Thus bringing more organic traffic for your site.
90
 
91
  2. Data Encryption: Data transmission between server and visitor are securely encrypted on a SSL site thus avoiding any data hijacks in-between the transmission(Ex: personal information, credit card information).
@@ -128,9 +127,6 @@ define("WPLE_DISABLE_HTTPS");
128
  = I already have SSL certificate installed, how to activate HTTPS? =
129
  If you already have SSL certificate installed, You can use WP Encryption plugin purely for HTTPS redirection & SSL enforcing purpose. All you need to do is enable "Force HTTPS" feature in this plugin.
130
 
131
- = SSL on my site is showing as expired =
132
- Please use the RESET option of WP Encryption once and run the SSL install form to re-generate new SSL certificate. Then you can install the new SSL certificate onto your cPanel / Server.
133
-
134
  = Secure webmail & email server with an SSL/TLS Certificate =
135
  Starting from WP Encryption v5.4.8, you can now secure your webmail & incoming/outgoing email server [following this guide](https://wpencryption.com/secure-webmail-with-https/)
136
 
@@ -190,6 +186,12 @@ Security is an important subject regarding SSL/TLS certificates, of course. It i
190
 
191
  == Changelog ==
192
 
 
 
 
 
 
 
193
  = 5.7.9 =
194
  * Improved HTTP challenge verification
195
 
1
  === WP Encryption - One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content ===
2
  Contributors: gowebsmarty, gwsharsha
3
+ Tags: ssl,https redirect,force ssl,ssl certificate,https,free ssl,force https,add ssl,install ssl,mixed content,insecure content,enable ssl
4
  Requires at least: 4.2
5
  License: GPL3
6
  Tested up to: 5.9
7
  Requires PHP: 5.4
8
+ Stable tag: 5.7.11
9
 
10
  SSL for lifetime - Install free SSL certificate & enable SSL / HTTPS, secure mail w/ HTTPS, HTTPS redirect, fix SSL errors, SSL score, insecure content scanner, download SSL certificate, know your active SSL details.
11
 
12
  == Description ==
13
 
14
+ ### 1M+ SSL certificates generated -- Force HTTPS easily ###
15
 
16
  https://youtu.be/aKvvVlAlZ14
17
 
47
 
48
  11. Automatic email notification prior to SSL certificate expiration
49
 
 
 
50
  (Optional) Running WordPress on a specialized VPS/Dedicated server without cPanel? You can download the generated SSL certificate files easily via "Download SSL Certificates" page and install it on your server by modifying server config file via SSH access as explained in our [DOCS](https://wpencryption.com/docs/).
51
 
52
  == PRO FEATURES WORTH UPGRADING ==
84
  * SSL encryption ensures protection against man-in-middle attacks by securely encrypting the data transfer between client and your server.
85
 
86
  == Why does My WordPress site need SSL? ==
87
+
88
  1. SEO Benefit: Major search engines like Google ranks SSL enabled sites higher compared to non SSL sites. Thus bringing more organic traffic for your site.
89
 
90
  2. Data Encryption: Data transmission between server and visitor are securely encrypted on a SSL site thus avoiding any data hijacks in-between the transmission(Ex: personal information, credit card information).
127
  = I already have SSL certificate installed, how to activate HTTPS? =
128
  If you already have SSL certificate installed, You can use WP Encryption plugin purely for HTTPS redirection & SSL enforcing purpose. All you need to do is enable "Force HTTPS" feature in this plugin.
129
 
 
 
 
130
  = Secure webmail & email server with an SSL/TLS Certificate =
131
  Starting from WP Encryption v5.4.8, you can now secure your webmail & incoming/outgoing email server [following this guide](https://wpencryption.com/secure-webmail-with-https/)
132
 
186
 
187
  == Changelog ==
188
 
189
+ = 5.7.11 =
190
+ * Important: Logic correction for HTTP based domain verification
191
+
192
+ = 5.7.10 =
193
+ * SDK update
194
+
195
  = 5.7.9 =
196
  * Improved HTTP challenge verification
197
 
wp-letsencrypt.php CHANGED
@@ -7,7 +7,7 @@
7
  * Plugin Name: WP Encryption - One Click SSL & Force HTTPS
8
  * Plugin URI: https://wpencryption.com
9
  * Description: Secure your WordPress site with free SSL certificate and force HTTPS throughout the site. Just activating this plugin won't help! - Please run the SSL install form of WP Encryption found on left panel.
10
- * Version: 5.7.10
11
  * Author: Go Web Smarty
12
  * Author URI: https://wpencryption.com
13
  * License: GNU General Public License v3.0
@@ -33,7 +33,7 @@ if ( !defined( 'ABSPATH' ) ) {
33
  /**
34
  * Definitions
35
  */
36
- define( 'WPLE_PLUGIN_VERSION', '5.7.10' );
37
  define( 'WPLE_BASE', plugin_basename( __FILE__ ) );
38
  define( 'WPLE_DIR', plugin_dir_path( __FILE__ ) );
39
  define( 'WPLE_URL', plugin_dir_url( __FILE__ ) );
7
  * Plugin Name: WP Encryption - One Click SSL & Force HTTPS
8
  * Plugin URI: https://wpencryption.com
9
  * Description: Secure your WordPress site with free SSL certificate and force HTTPS throughout the site. Just activating this plugin won't help! - Please run the SSL install form of WP Encryption found on left panel.
10
+ * Version: 5.7.11
11
  * Author: Go Web Smarty
12
  * Author URI: https://wpencryption.com
13
  * License: GNU General Public License v3.0
33
  /**
34
  * Definitions
35
  */
36
+ define( 'WPLE_PLUGIN_VERSION', '5.7.11' );
37
  define( 'WPLE_BASE', plugin_basename( __FILE__ ) );
38
  define( 'WPLE_DIR', plugin_dir_path( __FILE__ ) );
39
  define( 'WPLE_URL', plugin_dir_url( __FILE__ ) );