Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3183506

Timestamp:

11/07/2024 04:41:43 AM (17 months ago)

Author:

alphanetbd

Message:

added otp session timeout checking, fixed submit btn style

Location:

alpha-sms

Files:

: 47 added
: 5 edited

tags/1.0.10 (added)
tags/1.0.10/LICENSE.txt (added)
tags/1.0.10/README.txt (added)
tags/1.0.10/admin (added)
tags/1.0.10/admin/class-alpha_sms-admin.php (added)
tags/1.0.10/admin/css (added)
tags/1.0.10/admin/css/alpha_sms-admin.css (added)
tags/1.0.10/admin/index.php (added)
tags/1.0.10/admin/js (added)
tags/1.0.10/admin/js/alpha_sms-admin.js (added)
tags/1.0.10/admin/partials (added)
tags/1.0.10/admin/partials/alpha_sms-admin-display_campaign.php (added)
tags/1.0.10/admin/partials/alpha_sms-admin-display_settings.php (added)
tags/1.0.10/alpha_sms.php (added)
tags/1.0.10/assets (added)
tags/1.0.10/assets/banner-1544x500.png (added)
tags/1.0.10/assets/banner-772x250.png (added)
tags/1.0.10/assets/icon-128x128.png (added)
tags/1.0.10/assets/icon-256x256.png (added)
tags/1.0.10/assets/screenshot-1.jpg (added)
tags/1.0.10/assets/screenshot-2.jpg (added)
tags/1.0.10/assets/smsBanner.ai (added)
tags/1.0.10/includes (added)
tags/1.0.10/includes/class-alpha_sms-activator.php (added)
tags/1.0.10/includes/class-alpha_sms-deactivator.php (added)
tags/1.0.10/includes/class-alpha_sms-i18n.php (added)
tags/1.0.10/includes/class-alpha_sms-loader.php (added)
tags/1.0.10/includes/class-alpha_sms.php (added)
tags/1.0.10/includes/index.php (added)
tags/1.0.10/includes/sms.class.php (added)
tags/1.0.10/index.php (added)
tags/1.0.10/languages (added)
tags/1.0.10/languages/alpha_sms.pot (added)
tags/1.0.10/public (added)
tags/1.0.10/public/class-alpha_sms-public.php (added)
tags/1.0.10/public/css (added)
tags/1.0.10/public/css/alpha_sms-public.css (added)
tags/1.0.10/public/css/otp-login-form.css (added)
tags/1.0.10/public/index.php (added)
tags/1.0.10/public/js (added)
tags/1.0.10/public/js/alpha_sms-public.js (added)
tags/1.0.10/public/js/otp-login-form.js (added)
tags/1.0.10/public/partials (added)
tags/1.0.10/public/partials/add-otp-checkout-form.php (added)
tags/1.0.10/public/partials/add-otp-on-login-form.php (added)
tags/1.0.10/public/partials/add-otp-on-wc-reg-form.php (added)
tags/1.0.10/uninstall.php (added)
trunk/README.txt (modified) (1 diff)
trunk/alpha_sms.php (modified) (2 diffs)
trunk/public/class-alpha_sms-public.php (modified) (7 diffs)
trunk/public/js/alpha_sms-public.js (modified) (3 diffs)
trunk/public/partials/add-otp-checkout-form.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

alpha-sms/trunk/README.txt

-                      r3028026
+                      r3183506
 Tags: order notification, order SMS, woocommerce sms integration, sms plugin, mobile verification, OTP, SMS notifications, two-step verification, OTP verification, SMS, signup security, user verification, user security, SMS gateway, order SMS, order notifications, WordPress OTP, 2FA, login OTP, WP SMS
 Requires at least: 3.5
 Tested up to: 6.2
+Tested up to: 6.6.2
 Requires PHP: 5.6
 Stable tag: 1.0.9
+Stable tag: 1.0.10
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html

alpha-sms/trunk/alpha_sms.php

-                      r3028026
+                      r3183506
  * Plugin URI:        https://sms.net.bd/plugins/wordpress
  * Description:       WP 2FA Login. SMS OTP Verification for Registration and Login forms, WooCommerce SMS Notification for your shop orders.
  * Version:           1.0.9
+ * Version:           1.0.10
  * Author:            Alpha Net
  * Author URI:        https://sms.net.bd/
 …
  * Rename this for your plugin and update it as you release new versions.
  */
 define('ALPHA_SMS_VERSION', '1.0.9');
+define('ALPHA_SMS_VERSION', '1.0.10');
 // plugin constants

alpha-sms/trunk/public/class-alpha_sms-public.php

-                      r3028026
+                      r3183506
+    }
     /**
+        /**
      * @return void
      * @since 1.0.0
 …
+    }
     /**
      * Register the stylesheets for the public-facing side of the site.
 …
     public function send_otp_for_reg()
+    {
         $user_phone = $user_email = '';
         if (isset($_POST['billing_phone'], $_POST['email'])) {
+        $user_phone = '';
+        if (isset($_POST['billing_phone'])) {
             $user_phone = $this->validateNumber(sanitize_text_field($_POST['billing_phone']));
-            $user_email = sanitize_text_field($_POST['email']);
+        }
-        if (!$user_email && !empty($_POST['billing_email'])) {
-            $user_email = sanitize_text_field($_POST['billing_email']);
+        }
-        if (!filter_var($user_email, FILTER_VALIDATE_EMAIL)) {
-            $response = ['status' => 400, 'message' => __('The email address you entered is not valid!')];
-            echo wp_kses_post(json_encode($response));
-            wp_die();
-            exit;
+        }
 …
             exit;
+        }
+        // check for already send otp by checking expiration
+        $otp_expires = WC()->session->get('alpha_sms_expires');
+        if (!empty($otp_expires) && strtotime($otp_expires) > strtotime(ALPHA_SMS_TIMESTAMP)) {
+            $response = [
+                'status'  => 400,
+                'message' => 'OTP already sent to a phone number. Please try again after ' . date('i:s', strtotime($otp_expires) - strtotime(ALPHA_SMS_TIMESTAMP) . ' min'),
+            ];
+            echo wp_kses_post(json_encode($response));
+            wp_die();
+            exit;
+        }
         //we will send sms
 …
     ) {
         $dateTime = new DateTime(ALPHA_SMS_TIMESTAMP);
+        $dateTime->modify('+2 minutes');
+        $_SESSION['alpha_sms_otp_code'] = $otp_code;
+        $_SESSION['alpha_sms_expires']  = $dateTime->format('Y-m-d H:i:s');
+        if (!empty($_SESSION['alpha_sms_otp_code'])) {
+        $dateTime->modify('+3 minutes');
+        WC()->session->set('alpha_sms_otp_phone', $mobile_phone);
+        WC()->session->set('alpha_sms_otp_code', $otp_code);
+        WC()->session->set('alpha_sms_expires', $dateTime->format('Y-m-d H:i:s'));
+        if(WC()->session->get('alpha_sms_otp_code')) {
             return true;
+        }
 …
     public function authenticate_otp($otp_code)
+    {
+        if (!empty($_SESSION['alpha_sms_otp_code']) && !empty($_SESSION['alpha_sms_expires'])) {
             if (strtotime($_SESSION['alpha_sms_expires']) > strtotime(ALPHA_SMS_TIMESTAMP)) {
                 if ($otp_code === $_SESSION['alpha_sms_otp_code']) {
+        $otp_code_session = WC()->session->get('alpha_sms_otp_code');
+        $otp_expires_session = WC()->session->get('alpha_sms_expires');
+        if (!empty($otp_code_session) && !empty($otp_expires_session)) {
+            if (strtotime($otp_expires_session) > strtotime(ALPHA_SMS_TIMESTAMP)) {
+                if ($otp_code === $otp_code_session) {
                     return true;
+                }
 …
     public function deletePastData()
+    {
+        if (isset($_SESSION['alpha_sms_otp_code'], $_SESSION['alpha_sms_expires'])) {
+            unset($_SESSION['alpha_sms_otp_code'], $_SESSION['alpha_sms_expires']);
+        if (WC()->session->get('alpha_sms_otp_code') || WC()->session->get('alpha_sms_expires')) {
+            WC()->session->__unset('alpha_sms_otp_code');
+            WC()->session->__unset('alpha_sms_expires');
+        }
+    }

alpha-sms/trunk/public/js/alpha_sms-public.js

-                      r2812471
+                      r3183506
       checkout_form = $('#alpha_sms_otp_checkout').parents('form.checkout.woocommerce-checkout').eq(0);
       $(document).on('click', '#place_order2', WC_Checkout_SendOtp);
+   }
 });
 …
    alert_wrapper.html('');
-   let firstName = checkout_form.find('#billing_first_name').val();
-   let lastName = checkout_form.find('#billing_last_name').val();
-   let country = checkout_form.find('#billing_country').val();
-   let address = checkout_form.find('#billing_address_1').val();
-   let city = checkout_form.find('#billing_city').val();
-   let state = checkout_form.find('#billing_state').val();
    let phone = checkout_form.find('#billing_phone').val();
-   let email = checkout_form.find('#billing_email').val();
    if (
+      !firstName ||
+      !lastName ||
+      !country ||
+      !address ||
+      !city ||
+      !state ||
+      !phone ||
+      !email
+      !phone
    ) {
       checkout_form
 …
       action: 'wc_send_otp', //calls wp_ajax_nopriv_wc_send_otp
       billing_phone: checkout_form.find('#billing_phone').val(),
-      email: checkout_form.find('#billing_email').val(),
       action_type: checkout_form.find('#action_type').val()
    };

alpha-sms/trunk/public/partials/add-otp-checkout-form.php

-                      r2627862
+                      r3183506
 <?php
 // If this file is called directly, abort.
 if ( ! defined( 'WPINC' ) ) {
     die;
+if (! defined('WPINC')) {
+  die;
+}
 ?>
 …
     <label for="otp_code" class="d-inline-block">OTP Code</label>
     <div id="wc_checkout_resend_otp" class="float-right"></div>
     <input type="number" class="input" id="otp_code" name="otp_code" />
+    <input type="number" class="input-text" id="otp_code" name="otp_code" />
   </div>
 </div>
 <button type="button" class="button alt" name="woocommerce_checkout_place_order" id="place_order2">Place order</button>
+<button type="button" class="alt button wp-element-button" name="woocommerce_checkout_place_order" id="place_order2">Place order</button>
 <style>
 button#place_order {
   display: none;
+}
+  button#place_order {
+    display: none;
+  }
 </style>
+<script>
+  $(document).ready(function() {
+    // Get computed styles of #place_order
+    const placeOrderStyles = window.getComputedStyle(document.getElementById('place_order'));
+    $.each(placeOrderStyles, function(i, propertyName) {
+      if (propertyName === 'display') return; // Skip display property if needed
+      $('#place_order2').css(propertyName, placeOrderStyles.getPropertyValue(propertyName));
+    });
+  });
+</script>

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory