OwlCyberSecurity - MANAGER

Edit File: settings.php

<?php // Exit if accessed directly defined('ABSPATH') || exit; add_action('admin_init', 'emcs_settings_init'); function emcs_settings_init() { register_setting('emcs', 'emcs_settings', ['sanitize_callback' => 'emcs_sanitize_input']); add_settings_section( 'emcs_api_section', __('Setup Calendly connection', 'embed-calendly-scheduling'), '', 'emcs' ); add_settings_field( 'emcs_v1api_field', __('V1 API Key', 'embed-calendly-scheduling'), 'emcs_api_field_cb', 'emcs', 'emcs_api_section', array( 'label_for' => 'emcs_v1api_key' ) ); add_settings_field( 'emcs_v2api_field', __('V2 API Key', 'embed-calendly-scheduling'), 'emcs_v2api_field_cb', 'emcs', 'emcs_api_section', array( 'label_for' => 'emcs_v2api_key' ) ); } function emcs_v2api_field_cb($args) { $options = get_option('emcs_settings'); ?> <div class="form-row"> <div class="form-group col-md-8"> <input id="<?php echo esc_attr($args['label_for']); ?>" name="emcs_settings[<?php echo esc_attr($args['label_for']); ?>]" placeholder="<?php echo !empty($options[$args['label_for']]) ? '*****************' : ''; ?>" class="form-control" /> <p id="<?php echo esc_attr($args['label_for']); ?>_description"> <?php printf(esc_html__('Generate your personal access token on the %1$sintegerations%2$s page'), '<a href="https://calendly.com/integrations/api_webhooks" target="_blank"><em>', '</em></a>'); ?> </p> </div> </div> <?php } function emcs_api_field_cb($args) { $options = get_option('emcs_settings'); ?> <div class="form-row"> <div class="form-group col-md-8"> <input id="<?php echo esc_attr($args['label_for']); ?>" name="emcs_settings[<?php echo esc_attr($args['label_for']); ?>]" placeholder="<?php echo !empty($options[$args['label_for']]) ? '*****************' : ''; ?>" class="form-control" /> <p id="<?php echo esc_attr($args['label_for']); ?>_description"> <?php printf(esc_html__('Your API Key can be found on Calendly %1$sintegerations%2$s page'), '<a href="https://calendly.com/integrations/api_webhooks" target="_blank"><em>', '</em></a>'); ?> </p> </div> </div> <?php } add_action('admin_menu', 'emcs_settings_page'); function emcs_settings_page() { add_submenu_page( 'emcs-event-types', __('EMC - Settings', 'embed-calendly-scheduling'), __('Settings', 'embed-calendly-scheduling'), 'manage_options', 'emcs-settings', 'emcs_settings_page_html' ); } function emcs_settings_page_html() { // Show the settings page to only admins if (!current_user_can('manage_options')) { return; } // set encryption key if it's not already done $encryption_key = get_option('emcs_encryption_key'); if (!$encryption_key || empty($encryption_key)) { add_option('emcs_encryption_key', bin2hex(openssl_random_pseudo_bytes(10))); } if (isset($_GET['settings-updated'])) { add_settings_error('emcs_messages', 'emcs_message', __('Settings Saved', 'embed-calendly-scheduling'), 'updated'); } ?> <div class="emcs-title"> <img src="<?php echo esc_url(EMCS_URL . 'assets/img/emc-logo.svg') ?>" alt="<?php esc_attr_e('emc logo', 'embed-calendly-scheduling'); ?>" width="200px" /> </div> <div class="emcs-subtitle"><?php esc_html_e('Settings', 'embed-calendly-scheduling'); ?></div> <?php settings_errors('emcs_messages'); ?> <div class="sc-wrapper"> <div class="sc-container"> <div class="row emcs-settings-form"> <div class="col-md-9"> <form action="options.php" method="post"> <?php settings_fields('emcs'); do_settings_sections('emcs'); submit_button(__('Save Settings', 'embed-calendly-scheduling')); ?> </form> </div> <div class="col-md-3 emcs-promotion-container"> <div class="emcs-setting-ratings-section"> <h3><?php esc_html_e('Like this plugin?', 'embed-calendly-scheduling'); ?></h3> <p> <?php esc_html_e('If you find this plugin useful, please show your love and support by rating it', 'embed-calendly-scheduling'); ?> <span class="dashicons dashicons-star-filled emcs-dashicon emcs-dashicon-rating"></span> <span class="dashicons dashicons-star-filled emcs-dashicon emcs-dashicon-rating"></span> <span class="dashicons dashicons-star-filled emcs-dashicon emcs-dashicon-rating"></span> <span class="dashicons dashicons-star-filled emcs-dashicon emcs-dashicon-rating"></span> <span class="dashicons dashicons-star-filled emcs-dashicon emcs-dashicon-rating"></span> <?php printf(esc_html__('on %1$sWordPress.org%2$s - much appreciated!'), '<a href="https://wordpress.org/support/plugin/embed-calendly-scheduling/reviews/#new-post" target="_blank">', '</a>'); ?> </p><br> </div> <div class="emcs-promotion"> <h2><?php esc_html_e('Need Support?', 'embed-calendly-scheduling'); ?></h2> <p> <?php printf(esc_html__('Please use the %1$ssupport%2$s forums on WordPress.org to submit a support ticket or report a bug.', 'embed-calendly-scheduling'), '<a href="https://wordpress.org/support/plugin/embed-calendly-scheduling/" target="_blank">', '</a>'); ?> </p> </div> <div class="emcs-thankyou" id="emcs-thankyou"> <h3><?php esc_html_e('Thank you for downloading EMC Scheduling Manager', 'embed-calendly-scheduling'); ?></h3> <p> <?php esc_html_e('I built this plugin during one of the most challenging times I\'ve been through, I was depressed and I didn\'t feel like my life meant much. So I thought to try out a random personal challenge during a weekend, nothing serious, then I built the plugin. I never expected it to have any downloads at all, but then it started coming in; and the fact that I saw my plugin, something from me, was actively used on 10 websites, then 100, 400, and 1000+, gave me a different perspective about myself, it gave me more meaning and that set me on a path that is changing my life. Thank you very much for your download, I sincerely appreciate it. :)', 'embed-calendly-scheduling'); ?> <span class="emcs-author">- Shycoder</span> </p> </div> </div> </div> </div> </div> <?php } function emcs_sanitize_input($inputs) { $options = get_option('emcs_settings'); $key_fields = [ 'emcs_v1api_key', 'emcs_v2api_key', 'emcp_license_key' ]; $pro_reminder_email_template_field = 'emcp_email_reminder_template'; $sanitized_input = []; foreach ($inputs as $input_key => $input_value) { if (empty($input_value) && isset($options[$input_key])) { $sanitized_input[$input_key] = $options[$input_key]; } else { if (!empty($input_value)) { // we preserve limited set of html tags for the reminder email template field if ($input_key === $pro_reminder_email_template_field) { $input_value = trim(wp_kses_post($input_value)); } else { $input_value = trim(strip_tags(stripslashes($input_value))); $input_value = sanitize_text_field($input_value); } // only perform encryption on fields that store keys if (in_array($input_key, $key_fields)) { $input_value = str_replace(' ', '', $input_value); $sanitized_input[$input_key] = emcs_encrypt_key($input_value); } else { $sanitized_input[$input_key] = $input_value; } } else { $sanitized_input[$input_key] = false; } } } return $sanitized_input; } function emcs_encrypt_key($api_key) { $encryption_key = get_option('emcs_encryption_key'); if (in_array(EMCS_CIPHER, openssl_get_cipher_methods()) && !empty($encryption_key)) { $encryption_key_iv = substr($encryption_key, 0, 16); return base64_encode(openssl_encrypt($api_key, EMCS_CIPHER, $encryption_key, 0, $encryption_key_iv)); } return false; } function emcs_decrypt_key($api_key) { $encryption_key = get_option('emcs_encryption_key'); if (in_array(EMCS_CIPHER, openssl_get_cipher_methods()) && !empty($encryption_key)) { $encryption_key_iv = substr($encryption_key, 0, 16); return openssl_decrypt(base64_decode($api_key), EMCS_CIPHER, $encryption_key, 0, $encryption_key_iv); } return false; }