Sid Gifari File Manager
🏠 Root
/
home2
/
iuywvcmy
/
public_html
/
aliki
/
wp-content
/
plugins
/
wp-google-map-plugin
/
core
/
Editing: class.tabular.php
<?php /* phpcs:disable WordPress.WP.AlternativeFunctions */ /** * FlipperCode_List_Table_Helper Class File. * * @package Core * @author Flipper Code <hello@flippercode.com> */ if ( ! class_exists( 'FlipperCode_List_Table_Helper' ) ) { /** * Include the main wp-list-table file. */ if ( ! class_exists( 'WP_List_Table' ) ) { require_once ABSPATH . 'wp-admin/includes/class-wp-list-table.php'; } /** * Extend WP_LIST_TABLE to simplify table listing. * * @package Core * @author Flipper Code <hello@flippercode.com> */ class FlipperCode_List_Table_Helper extends WP_List_Table { /** * Table name. * * @var string */ var $table; /** * Custom SQL Query to fetch records. * * @var string */ var $sql; /** * Action over records. * * @var array */ var $actions = array( 'edit', 'delete' ); /** * Text Domain for multilingual. * * @var string */ var $textdomain; /** * Singular label. * * @var string */ var $singular_label; /** * Plural label. * * @var string */ var $plural_label; /** * Show add navigation at the top. * * @var boolean */ var $show_add_button = true; /** * Ajax based listing * * @var boolean */ var $ajax = false; /** * Columns to be displayed. * * @var array */ var $columns; /** * Columns to be sortable. * * @var array */ var $sortable; /** * Fields to be hide. * * @var array */ var $hidden; /** * Records per page. * * @var integer */ var $per_page = 10; /** * Slug for the manage page. * * @var string */ var $admin_listing_page_name; /** * Slug for the add or edit page. * * @var string */ var $admin_add_page_name; /** * Response * * @var string */ var $response; /** * Display string at the top of the table. * * @var string */ var $toptext; /** * Display string at the bottom of the table. * * @var [type] */ var $bottomtext; /** * Primary column of the table. * * @var string */ var $primary_col; /** * Column where to display actions navigation. * * @var string */ var $col_showing_links; /** * Call external function when actions executed. * * @var array */ var $extra_processing_on_actions; /** * Current action name. * * @var string */ var $now_action; /** * Table prefix. * * @var string */ var $prefix; /** * Current page's records. * * @var array */ var $found_data; /** * Total # of records. * * @var int */ var $items; /** * All Records. * * @var array */ var $data; /** * Columns to be excluded in search. * * @var array */ var $searchExclude; /** * Actions executed in bulk action. * * @var array */ var $bulk_actions; /* Show header. * @var bool */ var $no_header = false; var $translation = array(); var $form_id; var $form_class; var $optionName; var $keyForUpdate; var $external; var $doing_bulk_action; var $noSql = false; /** * Constructer method * * @param array $tableinfo Listing configurations. */ public function __construct( $tableinfo ) { global $wpdb; if(is_admin()){ global $current_screen; } $this->prefix = $wpdb->prefix; foreach ( $tableinfo as $key => $value ) { // Initialise constuctor based provided values to class variables. $this->$key = $tableinfo[ $key ]; } if( (is_admin()) && !empty($current_screen->id)){ $this->columns = apply_filters('fc_tabular_'.$current_screen->id.'_columns',$this->columns); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound } if( (is_admin()) && !empty($current_screen->id)){ $this->searchExclude = apply_filters('fc_tabular_searchExclude',$this->searchExclude); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound } if( empty($this->table) && empty($this->sql)) $this->noSql = true; parent::__construct( array( 'singular' => $this->singular_label, 'plural' => $this->plural_label, 'ajax' => $this->ajax, ) ); $this->init_listing(); } /** * Initialize table listing. */ public function init_listing() { $this->prepare_items(); if ( isset( $_GET['doaction'] ) ) { $doaction = sanitize_text_field( wp_unslash( $_GET['doaction'] ) ); } else { $doaction = ''; } if ( isset( $_GET[ $this->primary_col ] ) ) { $id = intval( wp_unslash( $_GET[ $this->primary_col ] ) ); } else { $id = ''; } if ( ! empty( $doaction ) && ! empty( $id ) ) { $this->now_action = $function_name = $doaction; if ( false != strpos( $doaction, '-' ) ) { $function_name = str_replace( '-', '', $function_name ); } $this->$function_name(); } else { $this->listing(); } } public function authenticate_action_requests(){ //Authentication if( !is_user_logged_in() ) wp_die( 'You are not allowed to save changes!' ); //Authorization if ( ! current_user_can( $this->fc_get_current_page_capability() ) ) wp_die( 'You are not allowed to save changes!' ); //Nonce Verification Bulk Action if( isset($this->doing_bulk_action) && $this->current_action() == 'delete' ) { if(!isset( $_REQUEST['_wpnonce'] ) || empty($_REQUEST['_wpnonce']) ) wp_die('You are not allowed to save changes!'); if( !wp_verify_nonce( $_REQUEST['_wpnonce'], 'bulk-'.$this->_args['plural'] ) ) wp_die('You are not allowed to save changes!'); } //Nonce Verification Custom Action if( isset($_GET['doaction']) && !empty($_GET['doaction']) && isset($_GET['ca']) && $_GET['ca']=='yes' ){ if( !wp_verify_nonce( $_REQUEST['_wpnonce'], 'action-'.sanitize_text_field( wp_unslash( $_GET['doaction'] ) ) ) ) wp_die('You are not allowed to save changes!'); } } private function fc_get_current_page_capability(){ $capability_to_check = (is_admin()) ? sanitize_text_field($_GET['page']) : sanitize_text_field($_GET['cap']); if( strpos( $capability_to_check, 'overview' ) !== false ) $capability_to_check = str_replace('view', 'admin', $capability_to_check); $capability_to_check = apply_filters('fc_tabular_action_cap',$capability_to_check); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound return $capability_to_check; } /** * Edit action. */ public function edit() {} /** * Delete action. */ public function delete() { global $wpdb; $this->authenticate_action_requests(); if ( isset( $_GET[ $this->primary_col ] ) && isset( $_GET['doaction'] ) && ($_GET['doaction'] == 'delete') ) { $id = intval( wp_unslash( $_GET[ $this->primary_col ] ) ); $wpdb->delete( $this->table, array( $this->primary_col => $id ), array( '%d' ) ); $this->prepare_items(); $this->response['success'] = $this->translation['delete_msg']; } $this->listing(); } /** * Display records listing. */ public function listing() { ?> <div class="fc-content-area"> <div class="wpgmp_menu_title"> <h4 class="fc-title-blue"><?php echo esc_html( $this->translation['manage_heading'] ); ?> <span><a class="fa fc-new-link" target="_blank" href="<?php echo esc_url( admin_url( 'admin.php?page=' . $this->admin_add_page_name ) ); ?>"><?php echo esc_html( $this->translation['add_button'] ); ?></a> </span> </h4> </div> <div class="wpgmp-overview"> <?php $this->show_notification( $this->response ); ?> <fieldset> <form method="post" action="<?php echo esc_url( admin_url( 'admin.php?page=' . $this->admin_listing_page_name ) ); ?>" <?php if ( ! empty( $this->form_id ) ) : ?> id="<?php echo esc_attr( $this->form_id ); ?>" <?php endif; ?> <?php if ( ! empty( $this->form_class ) ) : ?> class="<?php echo esc_attr( 'wpgmp_manage_form ' . $this->form_class ); ?>" <?php endif; ?> > <?php $search_text = isset($this->translation['search_text']) ? $this->translation['search_text'] : 'Search'; $this->search_box( $search_text, 'search_id' ); $this->display(); ?> <input type="hidden" name="row_id" value="" /> <input type="hidden" name="operation" value="" /> <?php wp_nonce_field( 'wpgmp-nonce', '_wpnonce', true, true ); ?> </form> </fieldset> </div> </div> <?php } /** * Reset primary column ID. */ public function unset_id_field() { if ( array_key_exists( $this->primary_col, $this->columns ) ) { unset( $this->columns[ $this->primary_col ] ); } } /** * Get sortable columns. * * @return array Sortable columns names. */ function get_sortable_columns() { if ( empty( $this->sortable ) ) { $sortable_columns[ $this->primary_col ] = array( $this->primary_col, false ); } else { foreach ( $this->sortable as $sortable ) { $sortable_columns[ $sortable ] = array( $sortable, false ); } } return $sortable_columns; } /** * Get columns to be displayed. * * @return array Columns names. */ function get_columns() { global $wpdb; $columns = array( 'cb' => '<input type="checkbox" />' ); if ( ! empty( $this->sql ) ) { // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->sql is internally generated and safe $results = $wpdb->get_results( $this->sql ); if ( is_array( $results ) && ! empty( $results ) ) { foreach ( $results[0] as $column_name => $column_value ) { // Get all columns by provided returned by sql query(Preparing Columns Array). if ( array_key_exists( $column_name, $this->columns ) ) { $this->columns[ $column_name ] = $this->columns[ $column_name ]; } else { $this->columns[ $column_name ] = $column_name; } } } } else { if ( empty( $this->columns ) ) { global $wpdb; // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->table is internally generated and safe foreach ( $wpdb->get_col( 'DESC ' . $this->table, 0 ) as $column_name ) { // Query all column name usind DESC (Preparing Columns Array). $this->columns[ $column_name ] = $column_name; } } } $this->unset_id_field(); // Preventing Id field to showup in Listing. // This is how we initialise all columns dynamically instead of statically (normally we write each column name here) in get_columns function definition :). foreach ( $this->columns as $dbcolname => $collabel ) { $columns[ $dbcolname ] = $collabel; } return $columns; } /** * Column where to display actions. * * @param array $item Record. * @param string $column_name Column name. * @return string Column output. */ function column_default( $item, $column_name ) { $return =''; if ( $column_name == $this->col_showing_links ) { $actions = array(); foreach ( $this->actions as $action ) { $action_slug = sanitize_title( $action ); $action_label = ucwords( $action ); if ( 'delete' == $action_slug ) { $actions[ $action_slug ] = sprintf( '<a href="" class="delete_fc_record" data-item-id="' . $item->{$this->primary_col} . '" data-page-slug="'.$this->admin_listing_page_name.'" data-record-type="'.$this->primary_col.'" data-action="delete" data-target="#delete_fc_record">' . $action_label . '<span class="delete_icon"></span></a>', $item->{$this->primary_col} ); } elseif ( 'edit' == $action_slug ) { $actions[ $action_slug ] = sprintf( '<a href="?page=%s&doaction=%s&' . $this->primary_col . '=%s">' . $action_label . '<span class="edit_icon"></span></a>', $this->admin_add_page_name, $action_slug, $item->{$this->primary_col} ); } else if('copy' == $action_slug) { $actions[ $action_slug ] = sprintf( '<a href="?page=%s&doaction=%s&' . $this->primary_col . '=%s">' . $action_label . '<span class="copy_icon"></span></a>', $this->admin_listing_page_name, $action_slug, $item->{$this->primary_col} ); } else { $actions[ $action_slug ] = sprintf( '<a href="?page=%s&doaction=%s&' . $this->primary_col . '=%s">' . $action_label . '</a>', $this->admin_listing_page_name, $action_slug, $item->{$this->primary_col} ); } } $return = sprintf( '%1$s %2$s', $item->{$this->col_showing_links}, $this->row_actions( $actions ) ); } else { if(!empty($item->$column_name)){ $return = $item->$column_name; } } return apply_filters('fc_tabular_column_value',$return,$column_name,$item); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound } /** * Checkbox for each record. * * @param array $item Record. * @return string Checkbox Element. */ function column_cb( $item ) { if(isset($item->{$this->primary_col})) return sprintf( '<input type="checkbox" name="id[]" value="%s" />', $item->{$this->primary_col} ); else if(isset($item[$this->primary_col])) return sprintf( '<input type="checkbox" name="id[]" value="%s" />', $item[$this->primary_col] ); else return sprintf( '<input type="checkbox" name="id[]" value="%s" />', $item ); } /** * Sorting Order * * @param string $a First element. * @param string $b Second element. * @return string Winner element. */ function usort_reorder( $a, $b ) { $orderby = ( ! empty( $_GET['orderby'] ) ) ? sanitize_text_field( wp_unslash( $_GET['orderby'] ) ) : ''; $order = ( ! empty( $_GET['order'] ) ) ? sanitize_text_field( wp_unslash( $_GET['order'] ) ) : 'asc'; $result = strcmp( $a[ $orderby ], $b[ $orderby ] ); return ( 'asc' == $order ) ? $result : -$result; } /** * Get bulk actions. * * @return array Bulk action listing. */ function get_bulk_actions() { $actions = (array) $this->bulk_actions; return $actions; } /** * Get records from ids. * * @return array Records ID. */ function get_user_selected_records() { $ids = isset( $_REQUEST['id'] ) ? wp_unslash( $_REQUEST['id'] ) : array(); if ( is_array( $ids ) ) { $ids = implode( ',', $ids ); } if ( ! empty( $ids ) ) { return $ids; } } function no_items(){ if(!empty($this->translation['no_records_found'])) echo esc_html($this->translation['no_records_found']); else echo 'No items found.'; } /** * Process bulk actions. */ function process_bulk_action() { global $wpdb; $this->now_action = $this->current_action(); $ids = $this->get_user_selected_records(); if ( '' == $this->current_action() && !empty($_POST['action']) && ($_POST['action'] == '-1' || $_POST['action2'] == '-1' ) && empty($ids) && $_POST['operation'] != '' ) { $this->response['error'] = $this->translation['no_records_selected_for_bulk']; } else if ( 'delete' === $this->current_action() && ! empty( $ids ) ) { $ids = explode( ',', $ids ); $recordsCount = count( $ids ); $recordsPlaceholders = array_fill( 0, $recordsCount, '%d' ); $placeholdersForRecords = implode( ',', $recordsPlaceholders ); // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->table and $this->primary_col are internal class properties $del = $wpdb->query( $wpdb->prepare( "DELETE FROM {$this->table} WHERE {$this->primary_col} IN ( $placeholdersForRecords )", $ids ) ); if( method_exists( $this, 'post_bulk_delete') ){ $this->post_bulk_delete(); } if( isset($this->translation['bulk_delete_msg']) && !empty($this->translation['bulk_delete_msg']) && ( count($_POST['id'] ) >= 1 ) ){ $this->response['success'] = $this->translation['bulk_delete_msg']; }else{ $this->response['success'] = $this->translation['delete_msg']; } } else if ( 'delete' === $this->current_action() && empty( $ids ) ) { $this->response['error'] = $this->translation['no_records_selected']; } else if ( 'export_csv' === $this->current_action() ) { ob_clean(); global $wpdb; $ids = $this->get_user_selected_records(); $ids = explode(',',$ids); $exportCount = count($ids); $columns = array_keys( $this->columns ); $columns = ( count( $columns ) == 0 ) ? $columns[0] : implode( ',', $columns ); if(empty( $this->sql )){ if ( ! empty( $ids ) ) { $stringPlaceholders = array_fill(0, $exportCount, '%s'); $placeholdersForIds = implode(', ', $stringPlaceholders); $query = $wpdb->prepare( // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->table and $this->primary_col are internal class properties "SELECT $columns FROM " . $this->table . " WHERE " . $this->primary_col . " IN ($placeholdersForIds) ORDER BY " . $this->primary_col . " DESC", $ids ); } else { // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->table and $this->primary_col are internal class properties $query = "SELECT $columns FROM " . $this->table . " ORDER BY " . $this->primary_col . " DESC"; } // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $query is safely prepared $data = $wpdb->get_results( $query, ARRAY_A ); } else { // CORRECTED: If $this->sql is safe and internally generated, add comment to suppress warning // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- SQL is internally generated and safe $data = $wpdb->get_results( $this->sql, ARRAY_A ); } $tablerecords = array(); if ( ! empty( $this->sql ) ) { $col_key_value = array(); foreach ( $data[0] as $key => $val ) { // Make csv's first row column heading according to columns selected in custom sql. $col_key_value[ $key ] = $key; } $tablerecords[] = $col_key_value; } else { $tablerecords[] = $this->columns; // Make csv's first row column heading according automatic detected columns. } foreach ( $data as $entry ) { if ( array_key_exists( $this->primary_col, $entry ) ) { unset( $entry[ $this->primary_col ] ); } $tablerecords[] = $entry; } header( 'Content-Type: application/csv' ); header( "Content-Disposition: attachment; filename=\"{$this->plural_label}-Records.csv\";" ); header( 'Pragma: no-cache' ); $fp = fopen( 'php://output', 'w' ); foreach ( $tablerecords as $record ) { fputcsv( $fp, $record ); } fclose( $fp ); // phpcs:ignore WordPress.WP.AlternativeFunctions.file_system_read_fclose exit; } } /** * Show notification message based on response. * * @param array $response Response. */ public function show_notification( $response ) { if ( ! empty( $response['error'] ) ) { $this->show_message( $response['error'], true ); } elseif ( ! empty( $response['success'] ) ) { $this->show_message( $response['success'] ); }elseif ( ! empty( $response['notify'] ) ) { $this->show_message( $response['notify'],false,true ); } } /** * Message html element. * * @param string $message Message. * @param boolean $errormsg Error or not. * @return string Message element. */ public function show_message( $message, $errormsg = false , $notifymsg = false) { if ( empty( $message ) ) return; if ( $errormsg ) { echo "<div class='fc-alert fc-alert-danger'>".esc_html($message)."</div>"; } else if ( $notifymsg ) { echo "<div class='fc-alert fc-alert-info'>".esc_html($message)."</div>"; } else { echo "<div class='fc-alert fc-alert-success'>".esc_html($message)."</div>"; } } /** * Prepare records before print. */ function prepare_items() { global $wpdb; $columns = $this->get_columns(); $hidden = array(); $sortable = $this->get_sortable_columns(); $this->_column_headers = array( $columns, $hidden, $sortable ); $this->process_bulk_action(); $query = ( empty( $this->sql ) ) ? 'SELECT * FROM ' . $this->table : $this->sql; if( isset( $_GET['page'] ) && !empty( $_GET['page'] ) ){ $query = apply_filters('fc_manage_page_basic_query', $query , sanitize_text_field( wp_unslash( $_GET['page'] ) ) ); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound } if ( isset( $_GET['page'] ) && isset( $_REQUEST['s'] ) ) { $page = sanitize_text_field( wp_unslash( $_GET['page'] ) ); $search = sanitize_text_field( wp_unslash( $_REQUEST['s'] ) ); } else { $page = ''; $search = ''; } if(!$this->noSql){ if ( $this->admin_listing_page_name == $page && '' != $search ) { $s = $search; $first_column = ''; $remaining_columns = array(); $prepare_query_with_placeholders = ''; $prepare_args_values = array(); foreach ( $this->columns as $column_name => $columnlabel ) { if ( "{$this->primary_col}" == $column_name ) { continue; } else { if ( empty( $first_column ) ) { $first_column = $column_name; $prepare_args_values[] = $wpdb->esc_like($s); $prepare_query_with_placeholders = " WHERE {$column_name} LIKE '%%%s%%'"; } else { $remaining_columns[] = $column_name; if ( isset($this->searchExclude) && !empty($this->searchExclude) && !in_array( $column_name, $this->searchExclude ) ) { $prepare_args_values[] = $wpdb->esc_like($s); $prepare_query_with_placeholders .= " or {$column_name} LIKE '%%%s%%'"; } if(!isset($this->searchExclude) ){ $prepare_args_values[] = $wpdb->esc_like($s); $prepare_query_with_placeholders .= " or {$column_name} LIKE '%%%s%%'"; } } } } // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $this->table and $this->primary_col are internal class properties $this->data = $wpdb->get_results( $wpdb->prepare( 'SELECT * FROM '.$this->table. $prepare_query_with_placeholders. ' order by '.$this->primary_col.' desc', $prepare_args_values ) ); } else if ( isset($_GET['orderby']) && ! empty( $_GET['orderby'] ) && isset($_GET['order']) && ! empty( $_GET['order'] ) ) { $_GET['orderby'] = sanitize_text_field( $_GET['orderby'] ); $_GET['order'] = sanitize_text_field( $_GET['order'] ); $orderby = ( !empty( $_GET['orderby'] ) ) ? wp_unslash( $_GET['orderby'] ) : $this->primary_col; $order = ( !empty( $_GET['order'] ) ) ? wp_unslash( $_GET['order'] ) : 'asc'; $query_to_run = $query; $query_to_run .= " order by {$orderby} {$order}"; // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $query_to_run is safe $this->data = $wpdb->get_results( $query_to_run ); } else { $query_to_run = $query; $query_to_run .= " order by {$this->primary_col} desc"; $query_to_run = apply_filters('fc_manage_page_default_query', $query_to_run , sanitize_text_field( wp_unslash( $_GET['page'] ) ) ); // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound // phpcs:ignore WordPress.DB.PreparedSQL.NotPrepared -- $query_to_run is safe $this->data = $wpdb->get_results( $query_to_run ); } }else{ if(isset($this->external) && !empty($this->external)){ $this->data = $this->external; } } $current_page = apply_filters('fc_tabular_set_pagination_page',$this->get_pagenum()) ; // phpcs:ignore WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound $total_items = count( $this->data ); if ( is_array( $this->data ) && ! empty( $this->data ) ) { $this->found_data = @array_slice( $this->data, ( ( $current_page - 1 ) * $this->per_page ), $this->per_page ); } else { $this->found_data = array(); } $p_data = array( 'total_items' => $total_items, 'per_page' => $this->per_page ); $this->set_pagination_args($p_data); $this->items = $this->found_data; } } } /* phpcs:enable WordPress.WP.AlternativeFunctions */
Save
Cancel
