Context Navigation

Changeset 2123362

Timestamp:

07/15/2019 04:58:54 PM (7 years ago)

Author:

sovstack

Message:

Version 2.1.1

Location:

security-safe/trunk

Files:

-                      r2123215
+                      r2123362
 == Changelog ==
+= 2.1.1 (Medium Priority) =
+*Release Date - 15 July 2019*
+* Bug Fix: Session handling conflicted with some admin features in oddball scenarios
+* Improvement: Fixed a PHP Warning
 = 2.1.0 (Medium Priority) =
 *Release Date - 15 July 2019*

-                      r2123215
+                      r2123362
             // Get user once
+            $session['user'] = wp_get_current_user();
+            // Set values as keys
+            $session['user']->roles = array_combine( $session['user']->roles, $session['user']->roles );
+            if ( is_super_admin() ) {
+                // Get super admin once
+                $session['user']->roles['super_admin'] = true;
+            }
+            $user = wp_get_current_user();
+            $new_roles = array_combine( $user->roles, $user->roles );
+            // Cache roles
+            $session['user']['roles'] = $new_roles;
+        }
 …
                 // Only Super Admin has the power
                 $admin_user = ( isset( $session->user->roles['super_admin'] ) ) ? true : false;
+                $admin_user = ( isset( $session['user']['roles']['super_admin'] ) ) ? true : false;
             } else {
                 $admin_user = ( isset( $session->user->roles['administror'] ) || current_user_can( 'manage_options' ) ) ? true : false;
+                $admin_user = ( isset( $session['user']['roles']['administror'] ) || current_user_can( 'manage_options' ) ) ? true : false;
+            }

-                      r2123215
+                      r2123362
     public static function log_activity( $args = [] ) {
+        global $SecuritySafe;
+        // Get Current Session
+        $SecuritySafe->logged_in = is_user_logged_in();
+        $SecuritySafe->user = wp_get_current_user();
+        $user = wp_get_current_user();
         // Log Actual Activity
 …
         $args['threats'] = '0';
         $args['user_agent'] = Yoda::get_user_agent();
         $args['username'] = ( isset( $SecuritySafe->user->user_login ) ) ? $SecuritySafe->user->user_login : 'unknown';
+        $args['username'] = ( isset( $user->user_login ) ) ? $user->user_login : 'unknown';
         $args['ip'] = Yoda::get_ip();
         $args['status'] = ( defined( 'DOING_CRON' ) ) ? 'automatic' : 'unknown';
         $args['status'] = ( $args['status'] == 'unknown' && isset( $SecuritySafe->user->user_login ) ) ? 'manual' : $args['status'];
+        $args['status'] = ( $args['status'] == 'unknown' && isset( $user->user_login ) ) ? 'manual' : $args['status'];
         Self::add_entry( $args );

r2123215	r2123362
197	197
198	198	if ( $settings['on'] == "1" ) {
199		if ( isset( $this->user~~->roles['author'] ) \|\| isset( $this->user->roles['editor'] ) \|\| isset( $this->user->roles['administror'] ) \|\| isset( $this->user->roles~~['super_admin'] ) ) {
	199	if ( isset( $this->user['roles']['author'] ) \|\| isset( $this->user['roles']['editor'] ) \|\| isset( $this->user['roles']['administror'] ) \|\| isset( $this->user['roles']['super_admin'] ) ) {
200	200	// Skip Conditional Policies
201	201	$skip = true;

-                      r2123215
+                      r2123362
     die;
+}
 define( 'SECSAFE_VERSION', '2.1.0' );
+define( 'SECSAFE_VERSION', '2.1.1' );
 define( 'SECSAFE_DEBUG', false );
 define( 'SECSAFE_TIME_START', microtime( true ) );
 …
  * @wordpress-plugin
  * Plugin Name: WP Security Safe
  * Version:     2.1.0
+ * Version:     2.1.1
  * Plugin URI: https://sovstack.com/security-safe
  * Description: WP Security Safe - Firewall, Security Hardening, Auditing & Privacy

Note: See TracChangeset for help on using the changeset viewer.