Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3427655

Timestamp:

12/26/2025 11:24:15 AM (3 months ago)

Author:

rijensky

Message:

Update to version 2.3.9

Location:

Files:

: 2 added
: 7 edited

assets/js/integrations/otppal-login.js (modified) (2 diffs)
assets/js/otppal-lightbox.js (modified) (5 diffs)
data (added)
data/country-dial-codes.php (added)
includes/class-otppal-api.php (modified) (1 diff)
includes/class-otppal-user-lookup.php (modified) (6 diffs)
otppal.php (modified) (1 diff)
public/class-otppal-public.php (modified) (4 diffs)
readme.txt (modified) (7 diffs)

Legend:

: Unmodified
: Added
: Removed

otppal/trunk/assets/js/integrations/otppal-login.js

-                      r3427485
+                      r3427655
         const redirectTo = currentRedirectUrl || (typeof otppalLogin !== 'undefined' ? otppalLogin.redirectTo : '');
+        // Get country code from login lightbox if available
+        let countryCode = null;
+        if (loginLightbox && loginLightbox.countryCode) {
+            countryCode = loginLightbox.countryCode;
+        }
         $.ajax({
             url: apiUrl,
 …
                 hash: hash,
                 otp: otpCode,
+                redirect_to: redirectTo
+                redirect_to: redirectTo,
+                country_code: countryCode
             }),
             success: function(response) {

otppal/trunk/assets/js/otppal-lightbox.js

-                      r3427485
+                      r3427655
         this.otpHash = null;
         this.phoneNumber = '';
+        this.countryCode = null;
         this.isLoadingOTP = false;
         this.$modal = null;
 …
+            }
+            // Get country code from phone input
+            let countryCode = null;
+            if (this.phoneInput && this.phoneInput.countrySelect) {
+                countryCode = this.phoneInput.countrySelect.find(':selected').val();
+            }
             // Use local WordPress REST API endpoint (proxies to server)
             const apiUrl = (typeof otppalConfig !== 'undefined' && otppalConfig.restUrl)
 …
                 },
                 data: JSON.stringify({
+                    phone
+                    phone: phone,
+                    country_code: countryCode
                 }),
                 success: function(response) {
 …
+                    }
+                    if (response.success && response.hash) {
+                        self.otpHash = response.hash;
+                    // Check for hash in response (handle different response formats)
+                    const hash = response.hash || (response.data && response.data.hash);
+                    const isSuccess = response.success !== false && hash; // Treat as success if hash exists and success is not explicitly false
+                    if (hash) {
+                        self.otpHash = hash;
                         self.phoneNumber = phone;
+                        self.countryCode = countryCode;
                         // Move to OTP state (whether from loading or phone state)
                         self.setState('otp');
 …
+                            }
+                        }
+                        self.setError(response.message || __('Failed to send OTP. Please try again.', 'otppal'));
+                        // Extract error message from various possible response formats
+                        const errorMsg = response.message
+                            || (response.data && response.data.message)
+                            || (response.data && response.data.data && response.data.data.message)
+                            || __('Failed to send OTP. Please try again.', 'otppal');
+                        self.setError(errorMsg);
+                    }
                 },

otppal/trunk/includes/class-otppal-api.php

r3427485	r3427655
30	30	public function send_otp($phone)
31	31	{
32		~~return new WP_Error('otppal_not_configured', $this->api_key);~~
33	32	if (empty($this->api_key)) {
34	33	return new WP_Error('otppal_not_configured', 'OtpPal API key must be configured.');

otppal/trunk/includes/class-otppal-user-lookup.php

-                      r3423725
+                      r3427655
+    {
         /**
+         * Cached country dial codes array
+         * Loaded from data/country-dial-codes.php file
+         */
+        private static $country_dial_codes = null;
+        /**
          * Normalize phone number for comparison
          * Removes all non-digit characters
 …
         /**
+         * Get dial code for a country code
+         * Loads country codes from the dedicated file
+         *
+         * @param string $country_code ISO country code (e.g., 'IL', 'US', 'il', 'us')
+         * @return string|null Dial code (e.g., '972', '1') or null if not found
+         */
+        private static function get_dial_code($country_code)
+        {
+            if (empty($country_code)) {
+                return null;
+            }
+            // Load country codes file if not already loaded
+            if (self::$country_dial_codes === null) {
+                $codes_file = OTPPAL_PATH . 'data/country-dial-codes.php';
+                if (file_exists($codes_file)) {
+                    self::$country_dial_codes = require $codes_file;
+                } else {
+                    self::$country_dial_codes = array();
+                }
+            }
+            // Convert to lowercase for lookup (file uses lowercase keys)
+            $country_code_lower = strtolower($country_code);
+            if (isset(self::$country_dial_codes[$country_code_lower])) {
+                return self::$country_dial_codes[$country_code_lower];
+            }
+            return null;
+        }
+        /**
          * Find user by phone number
          * Searches in WooCommerce billing_phone and custom otppal_phone meta
+         *
          * @param string $phone Phone number (will be normalized)
+         * @param string|null $country_code ISO country code (e.g., 'IL', 'US') for better format matching
          * @return int|null User ID if found, null otherwise
          */
         public static function find_user_by_phone($phone)
+        public static function find_user_by_phone($phone, $country_code = null)
+        {
             if (empty($phone)) {
 …
             // First, try WooCommerce billing_phone if WooCommerce is active
             if (class_exists('WooCommerce') || function_exists('wc_get_customer')) {
                 $user_id = self::find_user_by_meta('billing_phone', $normalized_phone);
+                $user_id = self::find_user_by_meta('billing_phone', $normalized_phone, $country_code);
                 if ($user_id) {
                     return $user_id;
+                }
+                // Also check shipping_phone (WooCommerce stores phone in both locations)
+                $user_id = self::find_user_by_meta('shipping_phone', $normalized_phone, $country_code);
+                if ($user_id) {
+                    return $user_id;
+                }
+            }
             // Fallback to custom otppal_phone meta
             $user_id = self::find_user_by_meta('otppal_phone', $normalized_phone);
+            $user_id = self::find_user_by_meta('otppal_phone', $normalized_phone, $country_code);
             if ($user_id) {
                 return $user_id;
 …
          * @param string $meta_key Meta key to search
          * @param string $phone Phone number (already normalized)
+         * @param string|null $country_code ISO country code for generating correct format variations
          * @return int|null User ID if found, null otherwise
          */
         private static function find_user_by_meta($meta_key, $normalized_phone)
+        private static function find_user_by_meta($meta_key, $normalized_phone, $country_code = null)
+        {
             global $wpdb;
 …
+            }
+            // Generate alternative formats to try
+            // If phone starts with country code (e.g., 972), also try without it
+            // If phone doesn't start with 0, try with leading 0
+            $formats_to_try = array($normalized_phone);
+            // If international format (starts with country code like 972), try without country code
+            if (strlen($normalized_phone) > 9 && (substr($normalized_phone, 0, 3) === '972' || substr($normalized_phone, 0, 2) === '1')) {
+                // Remove country code and try
+                if (substr($normalized_phone, 0, 3) === '972') {
+                    $formats_to_try[] = substr($normalized_phone, 3); // Remove 972
+                    $formats_to_try[] = '0' . substr($normalized_phone, 3); // Add leading 0
+                } elseif (substr($normalized_phone, 0, 2) === '1') {
+                    $formats_to_try[] = substr($normalized_phone, 1); // Remove 1
+                }
+            } else {
+                // If national format (starts with 0), try with country code
+                if (substr($normalized_phone, 0, 1) === '0') {
+                    $formats_to_try[] = substr($normalized_phone, 1); // Remove leading 0
+                    $formats_to_try[] = '972' . substr($normalized_phone, 1); // Add country code (Israel)
+                } else {
+                    // No leading 0, try adding it
+                    $formats_to_try[] = '0' . $normalized_phone;
+                    $formats_to_try[] = '972' . $normalized_phone; // Add country code
+                }
+            }
+            // Generate format variations for the search phone
+            $search_formats = self::generate_phone_formats($normalized_phone, $country_code);
             // Compare normalized phone numbers
             foreach ($results as $row) {
                 $stored_phone = self::normalize_phone($row->meta_value);
+                // Try exact match first
+                if (in_array($stored_phone, $formats_to_try, true)) {
+                    return (int) $row->user_id;
+                }
+                // Also try comparing stored phone in different formats
+                $stored_formats = array($stored_phone);
+                if (strlen($stored_phone) > 9 && substr($stored_phone, 0, 3) === '972') {
+                    $stored_formats[] = substr($stored_phone, 3);
+                    $stored_formats[] = '0' . substr($stored_phone, 3);
+                } elseif (substr($stored_phone, 0, 1) === '0') {
+                    $stored_formats[] = substr($stored_phone, 1);
+                    $stored_formats[] = '972' . substr($stored_phone, 1);
+                }
+                // Generate format variations for the stored phone
+                $stored_formats = self::generate_phone_formats($stored_phone, $country_code);
                 // Check if any format matches
                 foreach ($formats_to_try as $format) {
                     if (in_array($format, $stored_formats, true)) {
+                foreach ($search_formats as $search_format) {
+                    if (in_array($search_format, $stored_formats, true)) {
                         return (int) $row->user_id;
+                    }
 …
             return null;
+        }
+        /**
+         * Generate all possible phone number format variations for comparison
+         * Handles international (with country code), national (with leading 0), and local formats
+         *
+         * @param string $phone Normalized phone (digits only)
+         * @param string|null $country_code ISO country code (e.g., 'IL', 'US')
+         * @return array Array of all possible format variations
+         */
+        private static function generate_phone_formats($phone, $country_code = null)
+        {
+            $formats = array($phone); // Always include original
+            $dial_code = null;
+            if ($country_code) {
+                $dial_code = self::get_dial_code($country_code);
+            }
+            // If country code provided and we have dial code
+            if ($dial_code) {
+                $dial_code_digits = $dial_code;
+                $dial_code_length = strlen($dial_code_digits);
+                // Check if phone starts with dial code
+                if (substr($phone, 0, $dial_code_length) === $dial_code_digits) {
+                    // Phone has dial code - generate formats without it
+                    $without_dial = substr($phone, $dial_code_length);
+                    $formats[] = $without_dial;
+                    $formats[] = '0' . $without_dial; // Add leading 0
+                } else {
+                    // Phone doesn't have dial code - generate formats with it
+                    $formats[] = $dial_code_digits . $phone; // Add dial code
+                    // If phone starts with 0, also try without 0 and with dial code
+                    if (substr($phone, 0, 1) === '0') {
+                        $without_zero = substr($phone, 1);
+                        $formats[] = $without_zero;
+                        $formats[] = $dial_code_digits . $without_zero;
+                    } else {
+                        // No leading 0, try adding it
+                        $formats[] = '0' . $phone;
+                    }
+                }
+            } else {
+                // No country code provided - fall back to common patterns
+                // Try to detect if phone starts with common dial codes
+                $common_dial_codes = array('972', '1', '44', '33', '49', '39', '34', '7', '81', '86', '91');
+                foreach ($common_dial_codes as $code) {
+                    $code_length = strlen($code);
+                    if (substr($phone, 0, $code_length) === $code) {
+                        // Phone starts with this dial code
+                        $without_code = substr($phone, $code_length);
+                        $formats[] = $without_code;
+                        $formats[] = '0' . $without_code;
+                        break;
+                    }
+                }
+                // If phone starts with 0, generate formats without it
+                if (substr($phone, 0, 1) === '0') {
+                    $without_zero = substr($phone, 1);
+                    $formats[] = $without_zero;
+                    // Try adding common dial codes
+                    foreach ($common_dial_codes as $code) {
+                        $formats[] = $code . $without_zero;
+                    }
+                } else {
+                    // No leading 0, try adding it
+                    $formats[] = '0' . $phone;
+                    // Try adding common dial codes
+                    foreach ($common_dial_codes as $code) {
+                        $formats[] = $code . $phone;
+                    }
+                }
+            }
+            // Remove duplicates and return
+            return array_unique($formats);
+        }

otppal/trunk/otppal.php

r3427485	r3427655
21	21	// Define plugin constants
22	22	if (!defined('OTPPAL_VERSION')) {
23		define('OTPPAL_VERSION', '2.3.8');
	23	define('OTPPAL_VERSION', '2.3.9');
24	24	}
25	25	if (!defined('OTPPAL_PATH')) {

otppal/trunk/public/class-otppal-public.php

-                      r3423725
+                      r3427655
             $phone = $request->get_param('phone');
+            $country_code = $request->get_param('country_code');
             if (empty($phone)) {
                 return new WP_Error(
 …
             // If OTP login is enabled, check user existence before sending OTP
             if (get_option('otppal_enable_otp_login', '0') === '1') {
                 // Check if user exists with this phone number
                 $user_id = OtpPal_User_Lookup::find_user_by_phone($phone);
+                // Check if user exists with this phone number, passing country code for better matching
+                $user_id = OtpPal_User_Lookup::find_user_by_phone($phone, $country_code);
                 if (!$user_id) {
 …
             $hash = $request->get_param('hash');
             $otp = $request->get_param('otp');
+            $country_code = $request->get_param('country_code');
             // Validate required parameters
 …
+            }
             // Find user by phone number
             $user_id = OtpPal_User_Lookup::find_user_by_phone($phone);
+            // Find user by phone number, passing country code for better matching
+            $user_id = OtpPal_User_Lookup::find_user_by_phone($phone, $country_code);
             if (!$user_id) {

otppal/trunk/readme.txt

-                      r3427485
+                      r3427655
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 2.3.8
+Stable tag: 2.3.9
 License: GPL2
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 Client-side plugin for OtpPal Server – Send and verify OTP messages via WhatsApp.
+Client-side plugin for OtpPal – Send and verify OTPs via WhatsApp.
 == Description ==
 OtpPal is a client-side WordPress plugin that connects to your OtpPal Server installation to send and verify OTP (One-Time Password) messages via WhatsApp. This plugin enables secure phone number verification for your WordPress forms, helping prevent spam and ensuring legitimate user submissions.
+OtpPal is a client-side WordPress plugin that connects to otppal.com to send and verify OTP (One-Time Password) messages via WhatsApp. This plugin enables secure phone number verification for your WordPress forms, helping prevent spam and ensuring legitimate user submissions.
 **Key Features:**
 …
 * **Easy Configuration**: Simple setup through WordPress admin panel
 * **Secure Verification**: Server-side validation ensures secure OTP verification
 * **Rate Limiting**: Built-in protection against abuse (handled by OtpPal Server)
+* **Rate Limiting**: Built-in protection against abuse (OtpPal.com)
 * **Customizable UI**: Clean, responsive lightbox interface for OTP input
 …
 . Upload the plugin files to `/wp-content/plugins/otppal` directory, or install through the WordPress plugins screen directly
 . Activate the plugin through the 'Plugins' menu in WordPress
+. Ensure you have an active OtpPal Server installation
+. Go to OtpPal > Settings in WordPress admin to configure the plugin
+. Enter your OtpPal Server URL and API key
+. Configure phone format preferences (international or national)
+. Go to OtpPal > Settings in WordPress admin to configure the plugin
+. Enter your API key (get it at https://otppal.com)
+. Configure phone format preferences (international or national)
 == Configuration ==
 . Navigate to **OtpPal > Settings** in your WordPress admin panel
+. Enter your **OtpPal Server URL** (e.g., https://otppal.com or your server URL)
+. Enter your **API key** from the OtpPal Server
+. Choose your preferred **Phone Format**:
+. Enter your OtpPal **API key**
+. Choose your preferred **Phone Format**:
    * International: Users enter phone numbers with country code (e.g., +1234567890)
    * National: Users enter phone numbers without country code (e.g., 1234567890)
 . If using National format, select a **Default Country** for phone number validation
 . Click **Save Settings**
+. If using National format, select a **Default Country** for phone number validation
+. Click **Save Settings**
 == Usage ==
 …
 **Note:** `[otppal_verify]` and `[otppal_phone]` cannot be used together in the same form.
 **WPForms, Gravity Forms, Fluent Forms, Ninja Forms, Formidable Forms, SureForms:**
+**WPForms, Gravity Forms, Fluent Forms, Ninja Forms, Formidable Forms, SureForms, Elementor Pro:**
 For these builders, OtpPal uses CSS classes on existing fields instead of custom shortcodes:
 …
 == Frequently Asked Questions ==
 = Do I need an OtpPal Server installation? =
 Yes, this plugin requires a separate OtpPal Server installation. This plugin is the client-side component that communicates with your server.
+= Does this plugin enable OTP login for my users?
+Yes! with a fully customizable login button. Just enable it in the settings, and use the shortcode to embed it anywhere on your site.
 = How do I get an API key? =
 You can obtain an API key from your OtpPal Server installation. Check your server's documentation for API key generation.
+You can obtain an API key from OtpPal at https://otppal.com.
 = Does this work with other form plugins? =
 Currently, OtpPal supports Contact Form 7. Support for other form plugins may be added in future versions.
+OtpPal supports many different integrations including Contact Form 7, Elementor Pro, WPForms, Gravity Forms, Fluent Forms, Ninja Forms, Formidable Forms, and SureForms. See otppal.com for more information.
 = What phone formats are supported? =
 The plugin supports both international format (with country code) and national format (without country code). You can configure this in the plugin settings.
+The plugin supports both international format (with country code) and national format (without country code). You can configure this in the plugin settings. When using international format, the plugin automatically detects the user's country based on their IP address for a better user experience.
 = Is my data secure? =
 Yes. The plugin uses secure REST API communication with your OtpPal Server. API keys are stored securely in WordPress options and never exposed to the frontend.
+Yes. The plugin uses secure REST API communication with the OtpPal Servers. Phone numbers aren't saved anywhere.
 = Can I customize the OTP verification interface? =
 …
 == Changelog ==
+= 2.3.9 =
+* Enhanced phone number lookup to support both billing and shipping phone fields
+* Improved OTP lightbox state transitions after errors
+* Fixed compatibility issues with WooCommerce admin classes
+= 2.3.8 =
+* Stability improvements
+= 2.3.7 =
+* Stability improvements
+= 2.3.6 =
+* Country autodetect on international format
+= 2.3.5 =
+* Security and UI enhancements
+= 2.3.4 =
+* Security enhancements
+= 2.3.3 =
+* Security enhancements
+= 2.3.2 =
+* Javascript improvements
+= 2.3.1 =
+* Stability improvements
+= 2.3.0 =
+* Rebuild user lookup
+= 2.2.0 =
+* Rebuild plugin to server authentication
+= 2.1.0 =
+* Add customization options
+= 2.0.0 =
+* Improve security
+* Add OTP login
+= 1.0.3 =
+* Add form plugin integrations
+= 1.0.2 =
+* Add form plugin integrations
+= 1.0.1 =
+* Stability improvements
 = 1.0.0 =
 …
 * OTP verification via WhatsApp
 * Admin settings page
 * REST API integration with OtpPal Server
+* REST API integration with the OtpPal server
 == Upgrade Notice ==
+= 2.3.9 =
+Enhanced phone number matching and improved error handling in OTP verification flow.
+= 2.3.8 =
+Rebuild plugin with security enhancements and new json api url structure
 = 1.0.0 =
 Initial release of OtpPal client plugin. Requires OtpPal Server installation.
+Initial release of OtpPal client plugin.
 == Support ==
 For support, please visit the plugin's support forum or contact the plugin author. For issues related to OtpPal Server, please refer to your server's documentation.
+For support, please visit the plugin's support forum or contact the plugin author.

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Download in other formats: