WordPress.org
Get WordPress

Plugin Directory

Changeset 3311880


Ignore:
Timestamp:
06/15/2025 11:49:09 AM (10 months ago)
Author:
xssdevelopment
Message:

password-protect-pdf update api endpoint

Location:
password-protect-pdf
Files:
6 edited
1 copied

Legend:

Unmodified
Added
Removed

  • password-protect-pdf/tags/1.0.2/includes/process-machine.php

    r3260525 r3311880  
    1313        'methods' => 'POST',
    1414        'callback' => 'cross_service_solutions_password_protect_pdf_on_submit',
    15         'permission_callback' => '__return_true',
     15        'permission_callback' => 'cross_service_solutions_password_protect_pdf_verify_nonce',
    1616    ));
    1717    register_rest_route('password-protect-pdf/v1', '/status/(?P<id>\d+)', array(
    1818        'methods' => 'GET',
    1919        'callback' => 'cross_service_solutions_password_protect_pdf_check_status',
    20         'permission_callback' => '__return_true',
     20        'permission_callback' => 'cross_service_solutions_password_protect_pdf_verify_nonce',
    2121    ));
    2222}
    2323add_action('rest_api_init', 'cross_service_solutions_password_protect_pdf_register_rest_api');
     24
     25function cross_service_solutions_password_protect_pdf_verify_nonce($request) {
     26    $nonce = $request->get_header('X-WP-Nonce');
     27
     28    // If not in header, try body
     29    if (!$nonce && isset($request['protectPDFFormNonce'])) {
     30        $nonce = sanitize_text_field($request['protectPDFFormNonce']);
     31    }
     32
     33    if (!$nonce || !wp_verify_nonce($nonce, 'password_protect_pdf_form_nonce_action')) {
     34        return false;
     35    }
     36
     37    return true;
     38}
    2439
    2540function cross_service_solutions_test_password_protect_pdf_api_callback() {
     
    2944// Handle form submission, then initiate processing
    3045function cross_service_solutions_password_protect_pdf_on_submit($request) {
    31     // Check if nonce is set and valid
    32     if (!isset($request['protectPDFFormNonce']) ||
    33        !wp_verify_nonce($request['protectPDFFormNonce'], 'password_protect_pdf_form_nonce_action')) {
    34        return new WP_Error('nonce_invalid', 'Nonce verification failed', array('status' => 403, 'message' => $request['protectPDFFormNonce']));
    35     }
    3646
    3747    $api_key = esc_attr(get_option('cross_service_solutions_api_key'));
     
    92102
    93103    // Make the API request using wp_remote_post
    94     $response = wp_remote_post('https://api.process-machine-stage.com/solutions/solutions/wordpress/32', array(
     104    $response = wp_remote_post('https://api.cross-service-solutions.com/solutions/solutions/wordpress/32', array(
    95105        'method'    => 'POST',
    96106        'body'      => $body,
     
    127137// Check status of processing task
    128138function cross_service_solutions_password_protect_pdf_check_status($request) {
    129     $nonce = $request->get_header('X-WP-Nonce');
    130     if (!$nonce || !wp_verify_nonce($nonce, 'password_protect_pdf_form_nonce_action')) {
    131         return new WP_Error('nonce_invalid', 'Nonce verification failed', array(
    132             'status' => 403,
    133             'message' => 'The provided nonce is invalid or expired. Please refresh and try again.'
    134         ));
    135     }
    136139
    137140    $api_key = esc_attr(get_option('cross_service_solutions_api_key'));
    138141    $id = sanitize_text_field($request['id']);
    139142
    140     $response = wp_remote_get("https://api.process-machine-stage.com/solutions/solutions/wordpress/{$id}", array(
     143    $response = wp_remote_get("https://api.cross-service-solutions.com/solutions/solutions/{$id}", array(
    141144        'headers' => array(
    142145            'Authorization' => 'Bearer ' . $api_key

  • password-protect-pdf/tags/1.0.2/includes/verification.php

    r3237558 r3311880  
    1717
    1818        // API request to verify the API Key
    19         $response = wp_remote_get('https://api.process-machine-stage.com/solutions/solutions/wordpress/organization', $args);
     19        $response = wp_remote_get('https://api.cross-service-solutions.com/solutions/solutions/wordpress/organization', $args);
    2020
    2121        if (is_wp_error($response)) {

  • password-protect-pdf/tags/1.0.2/readme.txt

    r3260525 r3311880  
    44Tags: pdf, password, protect pdf, pdf protection
    55Requires at least: 5.0
    6 Tested up to: 6.7
     6Tested up to: 6.8
    77Stable tag: 1.0.1
    88Requires PHP: 7.2
     
    9292== Changelog ==
    9393
     94= 1.0.2 =
     95* Updated verify and polling API endpoints
     96
    9497= 1.0.1 =
    9598* Implemented nonce validation for polling status GET request.

  • password-protect-pdf/trunk/includes/process-machine.php

    r3260525 r3311880  
    1313        'methods' => 'POST',
    1414        'callback' => 'cross_service_solutions_password_protect_pdf_on_submit',
    15         'permission_callback' => '__return_true',
     15        'permission_callback' => 'cross_service_solutions_password_protect_pdf_verify_nonce',
    1616    ));
    1717    register_rest_route('password-protect-pdf/v1', '/status/(?P<id>\d+)', array(
    1818        'methods' => 'GET',
    1919        'callback' => 'cross_service_solutions_password_protect_pdf_check_status',
    20         'permission_callback' => '__return_true',
     20        'permission_callback' => 'cross_service_solutions_password_protect_pdf_verify_nonce',
    2121    ));
    2222}
    2323add_action('rest_api_init', 'cross_service_solutions_password_protect_pdf_register_rest_api');
     24
     25function cross_service_solutions_password_protect_pdf_verify_nonce($request) {
     26    $nonce = $request->get_header('X-WP-Nonce');
     27
     28    // If not in header, try body
     29    if (!$nonce && isset($request['protectPDFFormNonce'])) {
     30        $nonce = sanitize_text_field($request['protectPDFFormNonce']);
     31    }
     32
     33    if (!$nonce || !wp_verify_nonce($nonce, 'password_protect_pdf_form_nonce_action')) {
     34        return false;
     35    }
     36
     37    return true;
     38}
    2439
    2540function cross_service_solutions_test_password_protect_pdf_api_callback() {
     
    2944// Handle form submission, then initiate processing
    3045function cross_service_solutions_password_protect_pdf_on_submit($request) {
    31     // Check if nonce is set and valid
    32     if (!isset($request['protectPDFFormNonce']) ||
    33        !wp_verify_nonce($request['protectPDFFormNonce'], 'password_protect_pdf_form_nonce_action')) {
    34        return new WP_Error('nonce_invalid', 'Nonce verification failed', array('status' => 403, 'message' => $request['protectPDFFormNonce']));
    35     }
    3646
    3747    $api_key = esc_attr(get_option('cross_service_solutions_api_key'));
     
    92102
    93103    // Make the API request using wp_remote_post
    94     $response = wp_remote_post('https://api.process-machine-stage.com/solutions/solutions/wordpress/32', array(
     104    $response = wp_remote_post('https://api.cross-service-solutions.com/solutions/solutions/wordpress/32', array(
    95105        'method'    => 'POST',
    96106        'body'      => $body,
     
    127137// Check status of processing task
    128138function cross_service_solutions_password_protect_pdf_check_status($request) {
    129     $nonce = $request->get_header('X-WP-Nonce');
    130     if (!$nonce || !wp_verify_nonce($nonce, 'password_protect_pdf_form_nonce_action')) {
    131         return new WP_Error('nonce_invalid', 'Nonce verification failed', array(
    132             'status' => 403,
    133             'message' => 'The provided nonce is invalid or expired. Please refresh and try again.'
    134         ));
    135     }
    136139
    137140    $api_key = esc_attr(get_option('cross_service_solutions_api_key'));
    138141    $id = sanitize_text_field($request['id']);
    139142
    140     $response = wp_remote_get("https://api.process-machine-stage.com/solutions/solutions/wordpress/{$id}", array(
     143    $response = wp_remote_get("https://api.cross-service-solutions.com/solutions/solutions/{$id}", array(
    141144        'headers' => array(
    142145            'Authorization' => 'Bearer ' . $api_key

  • password-protect-pdf/trunk/includes/verification.php

    r3237558 r3311880  
    1717
    1818        // API request to verify the API Key
    19         $response = wp_remote_get('https://api.process-machine-stage.com/solutions/solutions/wordpress/organization', $args);
     19        $response = wp_remote_get('https://api.cross-service-solutions.com/solutions/solutions/wordpress/organization', $args);
    2020
    2121        if (is_wp_error($response)) {

  • password-protect-pdf/trunk/readme.txt

    r3260525 r3311880  
    44Tags: pdf, password, protect pdf, pdf protection
    55Requires at least: 5.0
    6 Tested up to: 6.7
     6Tested up to: 6.8
    77Stable tag: 1.0.1
    88Requires PHP: 7.2
     
    9292== Changelog ==
    9393
     94= 1.0.2 =
     95* Updated verify and polling API endpoints
     96
    9497= 1.0.1 =
    9598* Implemented nonce validation for polling status GET request.
Note: See TracChangeset for help on using the changeset viewer.