Context Navigation

← Previous Changeset
Next Changeset →

Changeset 2579465

Timestamp:

08/06/2021 05:24:08 PM (5 years ago)

Author:

wpsecuredcom

Message:

Adding first version of my plugin

Location:

secured-wp

Files:

: 11 edited
: 7 copied

tags/1.5 (copied) (copied from secured-wp/trunk)
tags/1.5/classes/Controllers/User.php (copied) (copied from secured-wp/trunk/classes/Controllers/User.php) (2 diffs)
tags/1.5/classes/Helpers/AjaxRequests.php (modified) (7 diffs)
tags/1.5/classes/Helpers/NotifyAdmin.php (modified) (1 diff)
tags/1.5/classes/Helpers/OutOfBondEmail.php (modified) (1 diff)
tags/1.5/classes/Secured.php (modified) (4 diffs)
tags/1.5/classes/Views/LoginForms.php (copied) (copied from secured-wp/trunk/classes/Views/LoginForms.php)
tags/1.5/classes/Views/UserProfile.php (modified) (5 diffs)
tags/1.5/classes/Views/UsersList.php (copied) (copied from secured-wp/trunk/classes/Views/UsersList.php)
tags/1.5/constants.php (copied) (copied from secured-wp/trunk/constants.php)
tags/1.5/readme.txt (copied) (copied from secured-wp/trunk/readme.txt)
tags/1.5/secured-wp.php (copied) (copied from secured-wp/trunk/secured-wp.php)
trunk/classes/Controllers/User.php (modified) (2 diffs)
trunk/classes/Helpers/AjaxRequests.php (modified) (7 diffs)
trunk/classes/Helpers/NotifyAdmin.php (modified) (1 diff)
trunk/classes/Helpers/OutOfBondEmail.php (modified) (1 diff)
trunk/classes/Secured.php (modified) (4 diffs)
trunk/classes/Views/UserProfile.php (modified) (5 diffs)

Legend:

: Unmodified
: Added
: Removed

secured-wp/tags/1.5/classes/Controllers/User.php

-                      r2578505
+                      r2579465
         /**
          * Unlocks the user
+         * Unlocks the user and clears the login attempts
+         *
          * @since 1.0.0
 …
                 self::getLockedTransientPrefix() . self::$user->ID
             );
+            LoginAttempts::clearLoginAttempts( $user );
+        }

secured-wp/tags/1.5/classes/Helpers/AjaxRequests.php

-                      r2576070
+                      r2579465
 use WPSEC\Controllers\User;
+use WPSEC\Validators\Validator;
 defined( 'ABSPATH' ) || exit; // Exit if accessed directly.
 …
             \add_action( 'wp_ajax_logged_device_delete', [ __CLASS__, 'deleteRememberMeDevice' ] );
             // delete all logged in device for user.
             \add_action( 'wp_ajax_nopriv_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevice' ] );
             \add_action( 'wp_ajax_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevice' ] );
+            // delete all logged in devices for user.
+            \add_action( 'wp_ajax_nopriv_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevices' ] );
+            \add_action( 'wp_ajax_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevices' ] );
+            // delete all logged in devices for user.
+            \add_action( 'wp_ajax_nopriv_wps_delete_qr', [ __CLASS__, 'deleteQRCodeForUser' ] );
+            \add_action( 'wp_ajax_wps_delete_qr', [ __CLASS__, 'deleteQRCodeForUser' ] );
+        }
 …
+            }
             if ( empty( $device ) ) {
                 $device = base64_decode( $_POST['device'] );
+            if ( empty( $device ) && isset( $_POST['device'] ) && ! empty( $_POST['device'] ) ) {
+                $device = base64_decode( \sanitize_text_field( \wp_unslash( $_POST['device'] ) ) );
+            }
+            if ( User::deleteLoggedInDevice( $device, $user ) ) {
+                echo \json_encode( [ 'result' => 'success' ] );
+            } else {
+                echo \json_encode( [ 'result' => 'failed' ] );
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                if ( User::deleteLoggedInDevice( $device, \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) ) ) {
+                    echo \json_encode( [ 'result' => 'success' ] );
+                } else {
+                    echo \json_encode( [ 'result' => 'failed' ] );
+                }
+            }
 …
+         *
          * ! WP do_action sends first empty parameter if there are no parameters
+         * @param [type] $user - WP user for which remember me device must be deleted.
+         * TODO: extend this and the method above so it can recieves parameters as well
+         * @param mixed $user - WP user for which remember me device must be deleted.
+         *
          * @return void
 …
          * @SuppressWarnings(PHPMD.Superglobals)
          */
         public static function deleteAllRememberMeDevice( $user = null ) {
+        public static function deleteAllRememberMeDevices( $user = null ) {
             if ( ! isset( $_POST['nonce'] ) ||
                 empty( $_POST['nonce'] ) ||
 …
+            }
+            if ( User::deleteAllLoggedInDevices( $user ) ) {
+                echo \json_encode( [ 'result' => 'success' ] );
+            } else {
+                echo \json_encode( [ 'result' => 'failed' ] );
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                if ( User::deleteAllLoggedInDevices( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) ) ) {
+                    echo \json_encode( [ 'result' => 'success' ] ); // @codingStandardsIgnoreLine
+                } else {
+                    echo \json_encode( [ 'result' => 'failed' ] ); // @codingStandardsIgnoreLine
+                }
+            }
 …
+        }
+        /**
+         * Deletes QR code for the given user
+         *
+         * @return void
+         *
+         * @since 1.5
+         *
+         * @SuppressWarnings(PHPMD.ExitExpressions)
+         * @SuppressWarnings(PHPMD.Superglobals)
+         */
+        public static function deleteQRCodeForUser() {
+            if ( ! isset( $_POST['nonce'] ) ||
+                empty( $_POST['nonce'] ) ||
+                ! \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['nonce'] ) ), 'wp-secured-wps_delete_qr-ajax-nonce' ) ) {
+                die();
+            }
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                User::deleteUserTotp( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) );
+                echo \json_encode( [ 'result' => 'success' ] );
+            }
+            die();
+        }
+    }
+}

secured-wp/tags/1.5/classes/Helpers/NotifyAdmin.php

-                      r2577925
+                      r2579465
             $message = \sprintf(
+                /*
+                 translators: %1$s: Name of the user */
+                /*
+                 translators: %2$s: Url of the site */
+                /* translators: %3$s: Number of the login attempts */
+                /* translators: %1$s: Name of the user, %2$s: Url of the site, %3$s: Number of the login attempts */
                 __( 'User %1$s has tried to log in with an unsuitable password too many times to your site %2$s.\nThe system has identified %3$s unsuccessful login attempts.', 'ws-secured' ),
                 $user->display_name,

secured-wp/tags/1.5/classes/Helpers/OutOfBondEmail.php

-                      r2576070
+                      r2579465
             $message = \sprintf(
+                /*
+                 translators: %1$s: Name of the user */
+                /*
+                 translators: %2$s: Url of the site */
+                /* translators: %3$s: Number of the login attempts */
+                /* translators: %1$s: Name of the user, %2$s: Url of the site, %3$s: Number of the login attempts */
                 __( 'Hello %1$s,<br>Use the following link to login to site %2$s.<br>If not you who is trying to login, please contact the administrator immediately.<br>Click on the following link to login: %3$s', 'ws-secured' ),
                 User::getUser( $userId )->display_name,

secured-wp/tags/1.5/classes/Secured.php

-                      r2577925
+                      r2579465
                 <?php
                 echo \sprintf(
                     /* translators: %1$s: PHP version */
+                /* translators: %1$s: PHP version */
                     \esc_html__( 'You need to update your PHP version to %1s.', 'secured-wp' ),
                     WPSEC_REQUIRED_PHP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
 …
                 <?php
                 echo \sprintf(
                     /* translators: %1$s: WP version */
+                /* translators: %1$s: WP version */
                     \esc_html__( 'You need to update your WP version to %1s.', 'secured-wp' ),
                     WPSEC_REQUIRED_WP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
+                WPSEC_REQUIRED_WP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
                 );
                 ?>
 …
                     'renderPluginSettingsPage',
                 ],
                 'data:image/svg+xml;base64,' . \base64_encode( \file_get_contents( WPSEC_PLUGIN_SECURED_PATH . 'assets/images/the-logo.svg' ) ), // @codingStandardsIgnoreLine - :) well that one is necessary
+            'data:image/svg+xml;base64,' . \base64_encode( \file_get_contents( WPSEC_PLUGIN_SECURED_PATH . 'assets/images/the-logo.svg' ) ), // @codingStandardsIgnoreLine - :) well that one is necessary
             );
 …
+                }
+            }
+            /**
+             * If user is logged in and there is woocommerce installed and the method is enabled,
+             * we gona need the AJAX methods available.
+             */
+            if ( User::isCurrentlyLogged() ) {
+                if ( class_exists( 'WooCommerce' ) ) {
+                    if ( ! (bool) \WPSEC\Controllers\Modules\TwoFASettings::getGlobalSettingsValue() ) {
+                        // AJAX request for the user - do we need this globally for the Admin Part of the WP ?.
+                        AjaxRequests::initAdmin();
+                    }
+                }
+            }
+        }

secured-wp/tags/1.5/classes/Views/UserProfile.php

-                      r2577925
+                      r2579465
                 <?php
+                \submit_button(
+                    __( 'Regenerate QR code', 'secured-wp' ),
+                    'delete',
+                    'regenerate-qr-code',
+                    false
+                );
+                if ( function_exists( 'submit_button' ) ) {
+                    \submit_button(
+                        \__( 'Regenerate QR code', 'secured-wp' ),
+                        'delete',
+                        'regenerate-qr-code',
+                        false
+                    );
+                } else {
+                    ?>
+                <input type="submit" name="regenerate-qr-code" id="regenerate-qr-code" class="button delete" value="Regenerate QR code">
+                    <?php
+                    self::deleteQRCodeJS();
+                }
                 ?>
                 </div>
 …
             if ( \current_user_can( 'edit_user', $userId ) ) {
                 if ( isset( $_POST['qr-nonce'] ) &&
                     \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['qr-nonce'] ) ), self::$qrNoncePrefix . $userId ) &&
                     isset( $_POST['regenerate-qr-code'] ) ) {
                         User::deleteUserTotp( $userId );
+                \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['qr-nonce'] ) ), self::$qrNoncePrefix . $userId ) &&
+                isset( $_POST['regenerate-qr-code'] ) ) {
+                    User::deleteUserTotp( $userId );
+                }
+            }
 …
                         'action': 'logged_device_delete',
                         'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-delete_device-ajax-nonce' ) ); ?>',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
                         'device': jQuery(this).data('device')      // We pass php values differently!
                     };
 …
                     var deleteData = {
                         'action': 'all_logged_device_delete',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
                         'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-delete_all_device-ajax-nonce' ) ); ?>',
                     };
 …
             <?php
+        }
+        /**
+         * Javascript for qr code deletion
+         *
+         * @since 1.0.0
+         *
+         * @return void
+         */
+        private static function deleteQRCodeJS() {
+            ?>
+        <script>
+            ( function( jQuery ) {
+                jQuery('.alignleft').on('click', '#regenerate-qr-code', function(e) {
+                    e.preventDefault();
+                    var ajaxurl = "<?php echo \esc_url( admin_url( 'admin-ajax.php' ) ); ?>"
+                    var deleteData = {
+                        'action': 'wps_delete_qr',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
+                        'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-wps_delete_qr-ajax-nonce' ) ); ?>',
+                    };
+                    let that = this;
+                    jQuery.ajax({
+                        type: "post",
+                        dataType: "json",
+                        url: ajaxurl,
+                        data: deleteData,
+                        success: function( msg ) {
+                            if ( 'success' == msg['result'] ) {
+                                location.reload(); ;
+                            }
+                        }
+                    });
+                });
+            }( jQuery ) );
+        </script>
+            <?php
+        }
+    }
+}

secured-wp/trunk/classes/Controllers/User.php

-                      r2578505
+                      r2579465
         /**
          * Unlocks the user
+         * Unlocks the user and clears the login attempts
+         *
          * @since 1.0.0
 …
                 self::getLockedTransientPrefix() . self::$user->ID
             );
+            LoginAttempts::clearLoginAttempts( $user );
+        }

secured-wp/trunk/classes/Helpers/AjaxRequests.php

-                      r2576070
+                      r2579465
 use WPSEC\Controllers\User;
+use WPSEC\Validators\Validator;
 defined( 'ABSPATH' ) || exit; // Exit if accessed directly.
 …
             \add_action( 'wp_ajax_logged_device_delete', [ __CLASS__, 'deleteRememberMeDevice' ] );
             // delete all logged in device for user.
             \add_action( 'wp_ajax_nopriv_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevice' ] );
             \add_action( 'wp_ajax_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevice' ] );
+            // delete all logged in devices for user.
+            \add_action( 'wp_ajax_nopriv_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevices' ] );
+            \add_action( 'wp_ajax_all_logged_device_delete', [ __CLASS__, 'deleteAllRememberMeDevices' ] );
+            // delete all logged in devices for user.
+            \add_action( 'wp_ajax_nopriv_wps_delete_qr', [ __CLASS__, 'deleteQRCodeForUser' ] );
+            \add_action( 'wp_ajax_wps_delete_qr', [ __CLASS__, 'deleteQRCodeForUser' ] );
+        }
 …
+            }
             if ( empty( $device ) ) {
                 $device = base64_decode( $_POST['device'] );
+            if ( empty( $device ) && isset( $_POST['device'] ) && ! empty( $_POST['device'] ) ) {
+                $device = base64_decode( \sanitize_text_field( \wp_unslash( $_POST['device'] ) ) );
+            }
+            if ( User::deleteLoggedInDevice( $device, $user ) ) {
+                echo \json_encode( [ 'result' => 'success' ] );
+            } else {
+                echo \json_encode( [ 'result' => 'failed' ] );
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                if ( User::deleteLoggedInDevice( $device, \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) ) ) {
+                    echo \json_encode( [ 'result' => 'success' ] );
+                } else {
+                    echo \json_encode( [ 'result' => 'failed' ] );
+                }
+            }
 …
+         *
          * ! WP do_action sends first empty parameter if there are no parameters
+         * @param [type] $user - WP user for which remember me device must be deleted.
+         * TODO: extend this and the method above so it can recieves parameters as well
+         * @param mixed $user - WP user for which remember me device must be deleted.
+         *
          * @return void
 …
          * @SuppressWarnings(PHPMD.Superglobals)
          */
         public static function deleteAllRememberMeDevice( $user = null ) {
+        public static function deleteAllRememberMeDevices( $user = null ) {
             if ( ! isset( $_POST['nonce'] ) ||
                 empty( $_POST['nonce'] ) ||
 …
+            }
+            if ( User::deleteAllLoggedInDevices( $user ) ) {
+                echo \json_encode( [ 'result' => 'success' ] );
+            } else {
+                echo \json_encode( [ 'result' => 'failed' ] );
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                if ( User::deleteAllLoggedInDevices( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) ) ) {
+                    echo \json_encode( [ 'result' => 'success' ] ); // @codingStandardsIgnoreLine
+                } else {
+                    echo \json_encode( [ 'result' => 'failed' ] ); // @codingStandardsIgnoreLine
+                }
+            }
 …
+        }
+        /**
+         * Deletes QR code for the given user
+         *
+         * @return void
+         *
+         * @since 1.5
+         *
+         * @SuppressWarnings(PHPMD.ExitExpressions)
+         * @SuppressWarnings(PHPMD.Superglobals)
+         */
+        public static function deleteQRCodeForUser() {
+            if ( ! isset( $_POST['nonce'] ) ||
+                empty( $_POST['nonce'] ) ||
+                ! \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['nonce'] ) ), 'wp-secured-wps_delete_qr-ajax-nonce' ) ) {
+                die();
+            }
+            if ( ! isset( $_POST['user'] ) || empty( $_POST['user'] ) ) {
+                die();
+            }
+            if ( Validator::filterValidate( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ), 'int' ) ) {
+                User::deleteUserTotp( \sanitize_text_field( \wp_unslash( $_POST['user'] ) ) );
+                echo \json_encode( [ 'result' => 'success' ] );
+            }
+            die();
+        }
+    }
+}

secured-wp/trunk/classes/Helpers/NotifyAdmin.php

-                      r2577925
+                      r2579465
             $message = \sprintf(
+                /*
+                 translators: %1$s: Name of the user */
+                /*
+                 translators: %2$s: Url of the site */
+                /* translators: %3$s: Number of the login attempts */
+                /* translators: %1$s: Name of the user, %2$s: Url of the site, %3$s: Number of the login attempts */
                 __( 'User %1$s has tried to log in with an unsuitable password too many times to your site %2$s.\nThe system has identified %3$s unsuccessful login attempts.', 'ws-secured' ),
                 $user->display_name,

secured-wp/trunk/classes/Helpers/OutOfBondEmail.php

-                      r2576070
+                      r2579465
             $message = \sprintf(
+                /*
+                 translators: %1$s: Name of the user */
+                /*
+                 translators: %2$s: Url of the site */
+                /* translators: %3$s: Number of the login attempts */
+                /* translators: %1$s: Name of the user, %2$s: Url of the site, %3$s: Number of the login attempts */
                 __( 'Hello %1$s,<br>Use the following link to login to site %2$s.<br>If not you who is trying to login, please contact the administrator immediately.<br>Click on the following link to login: %3$s', 'ws-secured' ),
                 User::getUser( $userId )->display_name,

secured-wp/trunk/classes/Secured.php

-                      r2577925
+                      r2579465
                 <?php
                 echo \sprintf(
                     /* translators: %1$s: PHP version */
+                /* translators: %1$s: PHP version */
                     \esc_html__( 'You need to update your PHP version to %1s.', 'secured-wp' ),
                     WPSEC_REQUIRED_PHP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
 …
                 <?php
                 echo \sprintf(
                     /* translators: %1$s: WP version */
+                /* translators: %1$s: WP version */
                     \esc_html__( 'You need to update your WP version to %1s.', 'secured-wp' ),
                     WPSEC_REQUIRED_WP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
+                WPSEC_REQUIRED_WP_VERSION // @codingStandardsIgnoreLine - that is defined constatnt no need to escape it
                 );
                 ?>
 …
                     'renderPluginSettingsPage',
                 ],
                 'data:image/svg+xml;base64,' . \base64_encode( \file_get_contents( WPSEC_PLUGIN_SECURED_PATH . 'assets/images/the-logo.svg' ) ), // @codingStandardsIgnoreLine - :) well that one is necessary
+            'data:image/svg+xml;base64,' . \base64_encode( \file_get_contents( WPSEC_PLUGIN_SECURED_PATH . 'assets/images/the-logo.svg' ) ), // @codingStandardsIgnoreLine - :) well that one is necessary
             );
 …
+                }
+            }
+            /**
+             * If user is logged in and there is woocommerce installed and the method is enabled,
+             * we gona need the AJAX methods available.
+             */
+            if ( User::isCurrentlyLogged() ) {
+                if ( class_exists( 'WooCommerce' ) ) {
+                    if ( ! (bool) \WPSEC\Controllers\Modules\TwoFASettings::getGlobalSettingsValue() ) {
+                        // AJAX request for the user - do we need this globally for the Admin Part of the WP ?.
+                        AjaxRequests::initAdmin();
+                    }
+                }
+            }
+        }

secured-wp/trunk/classes/Views/UserProfile.php

-                      r2577925
+                      r2579465
                 <?php
+                \submit_button(
+                    __( 'Regenerate QR code', 'secured-wp' ),
+                    'delete',
+                    'regenerate-qr-code',
+                    false
+                );
+                if ( function_exists( 'submit_button' ) ) {
+                    \submit_button(
+                        \__( 'Regenerate QR code', 'secured-wp' ),
+                        'delete',
+                        'regenerate-qr-code',
+                        false
+                    );
+                } else {
+                    ?>
+                <input type="submit" name="regenerate-qr-code" id="regenerate-qr-code" class="button delete" value="Regenerate QR code">
+                    <?php
+                    self::deleteQRCodeJS();
+                }
                 ?>
                 </div>
 …
             if ( \current_user_can( 'edit_user', $userId ) ) {
                 if ( isset( $_POST['qr-nonce'] ) &&
                     \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['qr-nonce'] ) ), self::$qrNoncePrefix . $userId ) &&
                     isset( $_POST['regenerate-qr-code'] ) ) {
                         User::deleteUserTotp( $userId );
+                \wp_verify_nonce( \sanitize_text_field( \wp_unslash( $_POST['qr-nonce'] ) ), self::$qrNoncePrefix . $userId ) &&
+                isset( $_POST['regenerate-qr-code'] ) ) {
+                    User::deleteUserTotp( $userId );
+                }
+            }
 …
                         'action': 'logged_device_delete',
                         'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-delete_device-ajax-nonce' ) ); ?>',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
                         'device': jQuery(this).data('device')      // We pass php values differently!
                     };
 …
                     var deleteData = {
                         'action': 'all_logged_device_delete',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
                         'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-delete_all_device-ajax-nonce' ) ); ?>',
                     };
 …
             <?php
+        }
+        /**
+         * Javascript for qr code deletion
+         *
+         * @since 1.0.0
+         *
+         * @return void
+         */
+        private static function deleteQRCodeJS() {
+            ?>
+        <script>
+            ( function( jQuery ) {
+                jQuery('.alignleft').on('click', '#regenerate-qr-code', function(e) {
+                    e.preventDefault();
+                    var ajaxurl = "<?php echo \esc_url( admin_url( 'admin-ajax.php' ) ); ?>"
+                    var deleteData = {
+                        'action': 'wps_delete_qr',
+                        'user': '<?php echo \esc_attr( User::getUser()->ID ); ?>',
+                        'nonce': '<?php echo \esc_attr( \wp_create_nonce( 'wp-secured-wps_delete_qr-ajax-nonce' ) ); ?>',
+                    };
+                    let that = this;
+                    jQuery.ajax({
+                        type: "post",
+                        dataType: "json",
+                        url: ajaxurl,
+                        data: deleteData,
+                        success: function( msg ) {
+                            if ( 'success' == msg['result'] ) {
+                                location.reload(); ;
+                            }
+                        }
+                    });
+                });
+            }( jQuery ) );
+        </script>
+            <?php
+        }
+    }
+}

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory