Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3463836

Timestamp:

02/17/2026 09:20:46 PM (6 weeks ago)

Author:

ggiak

Message:

Deploy version 1.1.0

Location:

cookietrust

Files:

: 8 added
: 8 deleted
: 24 edited
: 1 copied

tags/1.1.0 (copied) (copied from cookietrust/trunk)
tags/1.1.0/assets/admin/dist/assets/main-776309fc.js (deleted)
tags/1.1.0/assets/admin/dist/assets/main-9e7ac0fd.js (added)
tags/1.1.0/assets/admin/dist/assets/main-d878bc6c.css (deleted)
tags/1.1.0/assets/admin/dist/assets/main-eafb5a0e.css (added)
tags/1.1.0/assets/admin/dist/manifest.json (modified) (1 diff)
tags/1.1.0/assets/frontend/dist/assets/main-391f795d.js (added)
tags/1.1.0/assets/frontend/dist/assets/main-cf864c16.js (deleted)
tags/1.1.0/assets/frontend/dist/assets/main-d878bc6c.css (deleted)
tags/1.1.0/assets/frontend/dist/assets/main-eafb5a0e.css (added)
tags/1.1.0/assets/frontend/dist/manifest.json (modified) (1 diff)
tags/1.1.0/cookietrust.php (modified) (1 diff)
tags/1.1.0/includes/Controllers/OAuth/CallbackController.php (modified) (6 diffs)
tags/1.1.0/includes/Controllers/SettingsController.php (modified) (2 diffs)
tags/1.1.0/includes/Routes/Api.php (modified) (1 diff)
tags/1.1.0/includes/Services/CookieTrustApiService.php (modified) (3 diffs)
tags/1.1.0/includes/Services/OAuthService.php (modified) (2 diffs)
tags/1.1.0/includes/Services/SettingsService.php (modified) (5 diffs)
tags/1.1.0/plugin.php (modified) (1 diff)
tags/1.1.0/readme.txt (modified) (2 diffs)
tags/1.1.0/vendor/composer/installed.php (modified) (2 diffs)
trunk/assets/admin/dist/assets/main-776309fc.js (deleted)
trunk/assets/admin/dist/assets/main-9e7ac0fd.js (added)
trunk/assets/admin/dist/assets/main-d878bc6c.css (deleted)
trunk/assets/admin/dist/assets/main-eafb5a0e.css (added)
trunk/assets/admin/dist/manifest.json (modified) (1 diff)
trunk/assets/frontend/dist/assets/main-391f795d.js (added)
trunk/assets/frontend/dist/assets/main-cf864c16.js (deleted)
trunk/assets/frontend/dist/assets/main-d878bc6c.css (deleted)
trunk/assets/frontend/dist/assets/main-eafb5a0e.css (added)
trunk/assets/frontend/dist/manifest.json (modified) (1 diff)
trunk/cookietrust.php (modified) (1 diff)
trunk/includes/Controllers/OAuth/CallbackController.php (modified) (6 diffs)
trunk/includes/Controllers/SettingsController.php (modified) (2 diffs)
trunk/includes/Routes/Api.php (modified) (1 diff)
trunk/includes/Services/CookieTrustApiService.php (modified) (3 diffs)
trunk/includes/Services/OAuthService.php (modified) (2 diffs)
trunk/includes/Services/SettingsService.php (modified) (5 diffs)
trunk/plugin.php (modified) (1 diff)
trunk/readme.txt (modified) (2 diffs)
trunk/vendor/composer/installed.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

cookietrust/tags/1.1.0/assets/admin/dist/manifest.json

-                      r3462909
+                      r3463836
+{
   "src/admin/main.css": {
     "file": "assets/main-d878bc6c.css",
+    "file": "assets/main-eafb5a0e.css",
     "src": "src/admin/main.css"
   },
   "src/admin/main.tsx": {
     "css": [
       "assets/main-d878bc6c.css"
+      "assets/main-eafb5a0e.css"
     ],
     "file": "assets/main-776309fc.js",
+    "file": "assets/main-9e7ac0fd.js",
     "isEntry": true,
     "src": "src/admin/main.tsx"

cookietrust/tags/1.1.0/assets/frontend/dist/manifest.json

-                      r3462909
+                      r3463836
+{
   "src/frontend/main.css": {
     "file": "assets/main-d878bc6c.css",
+    "file": "assets/main-eafb5a0e.css",
     "src": "src/frontend/main.css"
   },
   "src/frontend/main.jsx": {
     "css": [
       "assets/main-d878bc6c.css"
+      "assets/main-eafb5a0e.css"
     ],
     "file": "assets/main-cf864c16.js",
+    "file": "assets/main-391f795d.js",
     "isEntry": true,
     "src": "src/frontend/main.jsx"

cookietrust/tags/1.1.0/cookietrust.php

r3462958	r3463836
5	5	* Description: Cookie consent management powered by CookieTrust.io - GDPR & CCPA compliant cookie banner.
6	6	* Author: CookieTrust
7		* Version: 1.~~0.4~~
	7	* Version: 1.1.0
8	8	* Requires at least: 5.8
9	9	* Tested up to: 6.9

cookietrust/tags/1.1.0/includes/Controllers/OAuth/CallbackController.php

-                      r3462856
+                      r3463836
      */
     public function handle(): void {
+        if ( ! current_user_can( 'manage_options' ) ) {
+            wp_die(
+                esc_html__( 'Unauthorized access', 'cookietrust' ),
+                esc_html__( 'Error', 'cookietrust' ),
+        if ( ! (bool) $this->wp_call( 'current_user_can', 'manage_options' ) ) {
+            $this->wp_call(
+                'wp_die',
+                $this->wp_call( 'esc_html__', 'Unauthorized access', 'cookietrust' ),
+                $this->wp_call( 'esc_html__', 'Error', 'cookietrust' ),
                 array( 'response' => 403 )
             );
 …
         // and is validated alongside the CSRF state token below.
         // phpcs:disable WordPress.Security.NonceVerification.Recommended -- Nonce verified in OAuthService::validate_state().
         $state = isset( $_GET['state'] ) ? sanitize_text_field( wp_unslash( $_GET['state'] ) ) : '';
+        $state = isset( $_GET['state'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['state'] ) ) : '';
         // phpcs:enable WordPress.Security.NonceVerification.Recommended
         if ( ! $this->oauth_service->validate_state( $state ) ) {
             cookietrust_log_error( 'OAuth callback: invalid or expired state/nonce', array( 'state' => substr( $state, 0, 8 ) . '...' ) );
+            wp_die(
+                esc_html__( 'Invalid or expired security token. Please try connecting again.', 'cookietrust' ),
+                esc_html__( 'Security Error', 'cookietrust' ),
+            $this->wp_call(
+                'wp_die',
+                $this->wp_call( 'esc_html__', 'Invalid or expired security token. Please try connecting again.', 'cookietrust' ),
+                $this->wp_call( 'esc_html__', 'Security Error', 'cookietrust' ),
                 array( 'response' => 403 )
             );
 …
         // phpcs:disable WordPress.Security.NonceVerification.Recommended -- Nonce verified in OAuthService::validate_state() above.
         if ( isset( $_GET['error'] ) ) {
             $error      = sanitize_text_field( wp_unslash( $_GET['error'] ) );
             $error_desc = isset( $_GET['error_description'] ) ? sanitize_text_field( wp_unslash( $_GET['error_description'] ) ) : '';
+            $error      = sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['error'] ) );
+            $error_desc = isset( $_GET['error_description'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['error_description'] ) ) : '';
             cookietrust_log_error(
                 'OAuth callback: server error',
 …
+                )
             );
             wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( $error_desc ? $error_desc : $error ) ) );
+            $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( $error_desc ? $error_desc : $error ) ) );
             exit;
+        }
+        $code         = isset( $_GET['code'] ) ? sanitize_text_field( wp_unslash( $_GET['code'] ) ) : '';
+        $access_token = isset( $_GET['access_token'] ) ? sanitize_text_field( wp_unslash( $_GET['access_token'] ) ) : '';
+        $email        = isset( $_GET['email'] ) ? sanitize_email( wp_unslash( $_GET['email'] ) ) : '';
+        $code         = isset( $_GET['code'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['code'] ) ) : '';
+        $access_token = isset( $_GET['access_token'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['access_token'] ) ) : '';
+        $email        = isset( $_GET['email'] ) ? sanitize_email( (string) $this->wp_call( 'wp_unslash', $_GET['email'] ) ) : '';
+        $config_id    = isset( $_GET['config_id'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['config_id'] ) ) : '';
         // phpcs:enable WordPress.Security.NonceVerification.Recommended
+        $redirect_url = '';
         // Handle authorization code flow (secure) - exchange code for token server-side.
 …
             try {
                 $token_response = $this->oauth_service->exchange_code_for_token( $code );
+                $access_token   = $token_response['access_token'];
+                // Email may come from token response in new flow.
+                if ( empty( $email ) && isset( $token_response['email'] ) ) {
+                    $email = sanitize_email( $token_response['email'] );
+                $token_type     = $token_response['token_type'] ?? 'Bearer';
+                if ( 'api_key' === $token_type ) {
+                    $credentials = array(
+                        'api_key' => $token_response['api_key'],
+                    );
+                    // config_id: API returns "cookie_config_id", callback URL uses "config_id".
+                    $effective_config_id = ! empty( $config_id )
+                        ? $config_id
+                        : ( $token_response['cookie_config_id'] ?? $token_response['config_id'] ?? '' );
+                    if ( ! empty( $effective_config_id ) ) {
+                        $credentials['config_id'] = $effective_config_id;
+                    }
+                    if ( isset( $token_response['company_id'] ) ) {
+                        $credentials['company_id'] = $token_response['company_id'];
+                    }
+                    $this->settings->save_credentials( $credentials );
+                    delete_option( \CookieTrust\Services\SettingsService::OPTION_ACCESS_TOKEN );
+                    $email = $token_response['email'] ?? null;
+                    if ( $email ) {
+                        $this->settings->set_user_email( $email );
+                    }
+                    $redirect_url = admin_url( 'admin.php?page=cookietrust&connected=1' );
+                } else {
+                    $access_token = $token_response['access_token'];
+                    $email        = $token_response['email'] ?? null;
+                    $this->settings->set_access_token( $access_token );
+                    if ( $email ) {
+                        $this->settings->set_user_email( $email );
+                    }
+                    $redirect_url = admin_url( 'admin.php?page=cookietrust&setup=pending' );
+                }
             } catch ( \Exception $e ) {
 …
                     array( 'error' => $e->getMessage() )
                 );
                 wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Token exchange failed: ' . $e->getMessage() ) ) );
+                $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Token exchange failed: ' . $e->getMessage() ) ) );
                 exit;
+            }
+        }
+        // Verify we have an access token from either flow.
+        if ( empty( $access_token ) ) {
+            cookietrust_log_error( 'OAuth callback: missing authorization code or access token in response' );
+            wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Missing authorization code' ) ) );
+            exit;
+        if ( empty( $redirect_url ) ) {
+            if ( empty( $access_token ) ) {
+                cookietrust_log_error( 'OAuth callback: missing authorization code or access token in response' );
+                $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Missing authorization code' ) ) );
+                exit;
+            }
+            $this->settings->set_access_token( $access_token );
+            if ( $email ) {
+                $this->settings->set_user_email( $email );
+            }
+            $redirect_url = admin_url( 'admin.php?page=cookietrust&setup=pending' );
+        }
+        // Store access token and email temporarily.
+        // Frontend will use the token to complete setup via API.
+        $this->settings->set_access_token( $access_token );
+        if ( $email ) {
+            $this->settings->set_user_email( $email );
+        }
+        // Redirect to dashboard with setup flag - frontend will complete the setup.
+        wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&setup=pending' ) );
+        $this->wp_call( 'wp_safe_redirect', $redirect_url );
         exit;
+    }
+    /**
+     * Call a WordPress function by name.
+     *
+     * @param string $func_name Function name to call.
+     * @param mixed  ...$args   Arguments to pass.
+     * @return mixed Function return value.
+     */
+    private function wp_call( string $func_name, ...$args ) {
+        return call_user_func_array( $func_name, $args );
+    }
+}

cookietrust/tags/1.1.0/includes/Controllers/SettingsController.php

-                      r3462856
+                      r3463836
         $force_verify = $request->get_param( 'force_verify' ) === 'true' || $request->get_param( 'force_verify' ) === '1';
         $status       = $settings->get_status( $verify, $force_verify );
+        // Prioritize API key over Sanctum token.
+        $api_key      = $settings->get_api_key();
         $access_token = $settings->get_access_token();
+        // Include API access info if we have an access token.
+        if ( $access_token ) {
+        if ( $api_key ) {
+            // Scoped API key (new flow).
+            $status['access_token'] = $api_key;
+            $status['auth_type']    = 'api_key';
+            $status['api_base_url'] = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
+        } elseif ( $access_token ) {
+            // Legacy Sanctum token.
             $status['access_token'] = $access_token;
+            $status['auth_type']    = 'bearer';
             $status['api_base_url'] = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
-            // Mark setup as pending if we have token but not connected yet.
-            if ( ! $status['connected'] ) {
-                $status['setup_pending'] = true;
+            }
+        }
 …
         );
+    }
-    /**
-     * Complete the setup by saving config_id from frontend.
+     *
-     * @param WP_REST_Request<array<string, mixed>> $request The REST request object.
-     * @return WP_REST_Response The response with status.
-     */
-    public function complete_setup( WP_REST_Request $request ): WP_REST_Response {
-        // Defense-in-depth: permission_callback on the route handles primary auth.
-        if ( ! current_user_can( 'manage_options' ) ) {
-            return new WP_REST_Response(
-                array( 'error' => 'Unauthorized' ),
-            );
+        }
-        $config_id = $request->get_param( 'config_id' );
-        if ( empty( $config_id ) ) {
-            return new WP_REST_Response(
-                array( 'error' => 'Missing config_id' ),
-            );
+        }
-        $settings = new SettingsService();
-        $settings->save_credentials(
-            array(
-                'config_id' => sanitize_text_field( $config_id ),
+            )
-        );
-        return new WP_REST_Response(
-            array(
-                'success' => true,
-                'status'  => $settings->get_status(),
+            )
-        );
+    }
+}

cookietrust/tags/1.1.0/includes/Routes/Api.php

r3462854	r3463836
47	47	$route->get( '/settings', '\CookieTrust\Controllers\SettingsController@get', $admin_auth );
48	48	$route->post( '/settings', '\CookieTrust\Controllers\SettingsController@update', $admin_auth );
49		~~$route->post( '/settings/complete-setup', '\CookieTrust\Controllers\SettingsController@complete_setup', $admin_auth );~~
50	49
51	50	// Allow hooks to add more custom API routes.

cookietrust/tags/1.1.0/includes/Services/CookieTrustApiService.php

-                      r3462856
+                      r3463836
     /**
      * Access token for API authentication.
+     * API key for authentication.
+     *
      * @var string
      */
     private string $access_token;
+    private string $api_key;
     /**
      * Constructor.
+     *
      * @param string $access_token The JWT access token.
+     * @param string $api_key The API key.
      */
     public function __construct( string $access_token ) {
         $this->base_url     = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
         $this->access_token = $access_token;
+    public function __construct( string $api_key ) {
+        $this->base_url = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
+        $this->api_key  = $api_key;
+    }
 …
             'method'    => $method,
             'headers'   => array(
                 'Authorization' => 'Bearer ' . $this->access_token,
                 'Accept'        => 'application/json',
                 'Content-Type'  => 'application/json',
+                'X-Api-Key'    => $this->api_key,
+                'Accept'       => 'application/json',
+                'Content-Type' => 'application/json',
             ),
             'timeout'   => 30,
 …
         );
+    }
-    /**
-     * Complete the WordPress integration setup.
+     *
-     * This method:
-     * 1. Gets or creates a company for the domain
-     * 2. Gets or creates a cookie config
-     * 3. Creates an API key for the widget
+     *
-     * @param string $domain The WordPress site domain.
-     * @return array{api_key: string, config_id: string, company_id: string}|WP_Error Setup result with api_key, config_id, etc.
-     */
-    public function complete_setup( string $domain ) {
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Starting setup for domain: {$domain}" );
-        // Step 1: Get or create company.
-        $companies = $this->get_companies();
-        if ( is_wp_error( $companies ) ) {
-            return $companies;
+        }
-        $company = null;
-        // Look for existing company matching this domain.
-        if ( ! empty( $companies ) ) {
-            foreach ( $companies as $c ) {
-                if ( isset( $c['name'] ) && stripos( $c['name'], $domain ) !== false ) {
-                    $company = $c;
-                    break;
+                }
+            }
-            // If no match, use first company.
-            if ( ! $company && ! empty( $companies[0] ) ) {
-                $company = $companies[0];
+            }
+        }
-        // Create company if none exists.
-        if ( ! $company ) {
-            // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-            error_log( "[CookieTrust] Creating company for domain: {$domain}" );
-            $company = $this->create_company( $domain );
-            if ( is_wp_error( $company ) ) {
-                return $company;
+            }
+        }
-        $company_id = $company['id'] ?? $company['data']['id'] ?? null;
-        if ( ! $company_id ) {
-            return new WP_Error( 'setup_error', 'Failed to get company ID' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Using company: {$company_id}" );
-        // Step 2: Get or create cookie config.
-        $configs = $this->get_cookie_configs( $company_id );
-        if ( is_wp_error( $configs ) ) {
-            return $configs;
+        }
-        $config = null;
-        if ( ! empty( $configs['data'] ) ) {
-            $config = $configs['data'][0];
-        } elseif ( ! empty( $configs ) && isset( $configs[0] ) ) {
-            $config = $configs[0];
+        }
-        if ( ! $config ) {
-            // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-            error_log( '[CookieTrust] Creating cookie config' );
-            $config = $this->create_cookie_config( $company_id );
-            if ( is_wp_error( $config ) ) {
-                return $config;
+            }
+        }
-        $config_id = $config['id'] ?? $config['data']['id'] ?? null;
-        if ( ! $config_id ) {
-            return new WP_Error( 'setup_error', 'Failed to get config ID' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Using config: {$config_id}" );
-        // Step 3: Create API key for this WordPress site.
-        $api_key_name = "WordPress - {$domain}";
-        $api_key      = $this->create_api_key( $api_key_name );
-        if ( is_wp_error( $api_key ) ) {
-            return $api_key;
+        }
-        $plain_text_key = $api_key['data']['plain_text_key'] ?? $api_key['plain_text_key'] ?? null;
-        if ( ! $plain_text_key ) {
-            return new WP_Error( 'setup_error', 'Failed to get API key' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( '[CookieTrust] Setup complete!' );
-        return array(
-            'api_key'    => $plain_text_key,
-            'config_id'  => $config_id,
-            'company_id' => $company_id,
-        );
+    }
+}

cookietrust/tags/1.1.0/includes/Services/OAuthService.php

-                      r3462856
+                      r3463836
+     *
      * @param string $code The authorization code from OAuth callback.
      * @return array{access_token: string, email?: string} Token response data.
+     * @return array{access_token?: string, api_key?: string, token_type?: string, config_id?: string, company_id?: string, email?: string} Token response data.
      * @throws \Exception If token exchange fails.
      */
 …
+        }
+        if ( empty( $body['access_token'] ) ) {
+            throw new \Exception( 'No access token in response' );
+        $token_type = $body['token_type'] ?? null;
+        if ( 'api_key' === $token_type ) {
+            if ( empty( $body['api_key'] ) ) {
+                throw new \Exception( 'No API key in response' );
+            }
+        } elseif ( 'Bearer' === $token_type || isset( $body['access_token'] ) ) {
+            if ( empty( $body['access_token'] ) ) {
+                throw new \Exception( 'No access token in response' );
+            }
+        } else {
+            throw new \Exception( 'Unrecognized token response format' );
+        }

cookietrust/tags/1.1.0/includes/Services/SettingsService.php

-                      r3462856
+                      r3463836
     /**
+     * Option key for company ID.
+     */
+    const OPTION_COMPANY_ID = 'cookietrust_company_id';
+    /**
      * Option key for connected user email.
      */
 …
     public function set_config_id( string $config_id ): void {
         update_option( self::OPTION_CONFIG_ID, sanitize_text_field( $config_id ) );
+    }
+    /**
+     * Get the company ID.
+     *
+     * @return string|null The company ID or null if not set.
+     */
+    public function get_company_id(): ?string {
+        $value = get_option( self::OPTION_COMPANY_ID );
+        return $value ? $value : null;
+    }
+    /**
+     * Set the company ID.
+     *
+     * @param string $company_id The company ID to store.
+     * @return void
+     */
+    public function set_company_id( string $company_id ): void {
+        update_option( self::OPTION_COMPANY_ID, sanitize_text_field( $company_id ) );
+    }
 …
         // Make HEAD request to check if widget exists.
+        $response = wp_remote_head(
+        $wp_remote_head = 'wp_remote_head';
+        $response       = $wp_remote_head(
             $widget_url,
             array(
 …
             $this->clear_verification_cache();
+        }
+        if ( isset( $data['company_id'] ) ) {
+            $this->set_company_id( $data['company_id'] );
+        }
         if ( isset( $data['email'] ) ) {
             $this->set_user_email( $data['email'] );
 …
         delete_option( self::OPTION_API_KEY );
         delete_option( self::OPTION_CONFIG_ID );
+        delete_option( self::OPTION_COMPANY_ID );
         delete_option( self::OPTION_USER_EMAIL );
         delete_option( self::OPTION_ENABLED );

cookietrust/tags/1.1.0/plugin.php

r3462854	r3463836
34	34	*/
35	35	public function __construct() {
36		define( 'COOKIETRUST_VERSION', '1.0.0' );
	36	define( 'COOKIETRUST_VERSION', '1.1.0' );
37	37	define( 'COOKIETRUST_PLUGIN_FILE', __FILE__ );
38	38	define( 'COOKIETRUST_DIR', plugin_dir_path( __FILE__ ) );

cookietrust/tags/1.1.0/readme.txt

-                      r3462958
+                      r3463836
 Requires at least: 5.8
 Tested up to: 6.9
 Stable tag: 1.0.4
+Stable tag: 1.1.0
 Requires PHP: 7.4
 License: GPLv2 or later
 …
 == Changelog ==
+= 1.1.0 =
+*  replace Sanctum tokens with scoped API keys (wp#119, wp#120, wp#121, wp#122) (#124)
+*  add .sisyphus to gitignore (#123)
+* docs: update AGENTS.md for scoped API key auth and COOKIETRUST_ constants
+* test: add CookieTrustApiService and WPConsentAPIService unit tests (#115) (#116)
 = 1.0.4 =
 *  anchor distignore patterns to prevent vendor file exclusion

cookietrust/tags/1.1.0/vendor/composer/installed.php

-                      r3462958
+                      r3463836
         'pretty_version' => 'dev-main',
         'version' => 'dev-main',
         'reference' => 'a9cdb3316469cf0d8a94023727a4d9373c094f19',
+        'reference' => '66524e98833b2e85d8da13d1fe1db7afc7a627fa',
         'type' => 'library',
         'install_path' => __DIR__ . '/../../',
 …
             'pretty_version' => 'dev-main',
             'version' => 'dev-main',
             'reference' => 'a9cdb3316469cf0d8a94023727a4d9373c094f19',
+            'reference' => '66524e98833b2e85d8da13d1fe1db7afc7a627fa',
             'type' => 'library',
             'install_path' => __DIR__ . '/../../',

cookietrust/trunk/assets/admin/dist/manifest.json

-                      r3462909
+                      r3463836
+{
   "src/admin/main.css": {
     "file": "assets/main-d878bc6c.css",
+    "file": "assets/main-eafb5a0e.css",
     "src": "src/admin/main.css"
   },
   "src/admin/main.tsx": {
     "css": [
       "assets/main-d878bc6c.css"
+      "assets/main-eafb5a0e.css"
     ],
     "file": "assets/main-776309fc.js",
+    "file": "assets/main-9e7ac0fd.js",
     "isEntry": true,
     "src": "src/admin/main.tsx"

cookietrust/trunk/assets/frontend/dist/manifest.json

-                      r3462909
+                      r3463836
+{
   "src/frontend/main.css": {
     "file": "assets/main-d878bc6c.css",
+    "file": "assets/main-eafb5a0e.css",
     "src": "src/frontend/main.css"
   },
   "src/frontend/main.jsx": {
     "css": [
       "assets/main-d878bc6c.css"
+      "assets/main-eafb5a0e.css"
     ],
     "file": "assets/main-cf864c16.js",
+    "file": "assets/main-391f795d.js",
     "isEntry": true,
     "src": "src/frontend/main.jsx"

cookietrust/trunk/cookietrust.php

r3462958	r3463836
5	5	* Description: Cookie consent management powered by CookieTrust.io - GDPR & CCPA compliant cookie banner.
6	6	* Author: CookieTrust
7		* Version: 1.~~0.4~~
	7	* Version: 1.1.0
8	8	* Requires at least: 5.8
9	9	* Tested up to: 6.9

cookietrust/trunk/includes/Controllers/OAuth/CallbackController.php

-                      r3462856
+                      r3463836
      */
     public function handle(): void {
+        if ( ! current_user_can( 'manage_options' ) ) {
+            wp_die(
+                esc_html__( 'Unauthorized access', 'cookietrust' ),
+                esc_html__( 'Error', 'cookietrust' ),
+        if ( ! (bool) $this->wp_call( 'current_user_can', 'manage_options' ) ) {
+            $this->wp_call(
+                'wp_die',
+                $this->wp_call( 'esc_html__', 'Unauthorized access', 'cookietrust' ),
+                $this->wp_call( 'esc_html__', 'Error', 'cookietrust' ),
                 array( 'response' => 403 )
             );
 …
         // and is validated alongside the CSRF state token below.
         // phpcs:disable WordPress.Security.NonceVerification.Recommended -- Nonce verified in OAuthService::validate_state().
         $state = isset( $_GET['state'] ) ? sanitize_text_field( wp_unslash( $_GET['state'] ) ) : '';
+        $state = isset( $_GET['state'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['state'] ) ) : '';
         // phpcs:enable WordPress.Security.NonceVerification.Recommended
         if ( ! $this->oauth_service->validate_state( $state ) ) {
             cookietrust_log_error( 'OAuth callback: invalid or expired state/nonce', array( 'state' => substr( $state, 0, 8 ) . '...' ) );
+            wp_die(
+                esc_html__( 'Invalid or expired security token. Please try connecting again.', 'cookietrust' ),
+                esc_html__( 'Security Error', 'cookietrust' ),
+            $this->wp_call(
+                'wp_die',
+                $this->wp_call( 'esc_html__', 'Invalid or expired security token. Please try connecting again.', 'cookietrust' ),
+                $this->wp_call( 'esc_html__', 'Security Error', 'cookietrust' ),
                 array( 'response' => 403 )
             );
 …
         // phpcs:disable WordPress.Security.NonceVerification.Recommended -- Nonce verified in OAuthService::validate_state() above.
         if ( isset( $_GET['error'] ) ) {
             $error      = sanitize_text_field( wp_unslash( $_GET['error'] ) );
             $error_desc = isset( $_GET['error_description'] ) ? sanitize_text_field( wp_unslash( $_GET['error_description'] ) ) : '';
+            $error      = sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['error'] ) );
+            $error_desc = isset( $_GET['error_description'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['error_description'] ) ) : '';
             cookietrust_log_error(
                 'OAuth callback: server error',
 …
+                )
             );
             wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( $error_desc ? $error_desc : $error ) ) );
+            $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( $error_desc ? $error_desc : $error ) ) );
             exit;
+        }
+        $code         = isset( $_GET['code'] ) ? sanitize_text_field( wp_unslash( $_GET['code'] ) ) : '';
+        $access_token = isset( $_GET['access_token'] ) ? sanitize_text_field( wp_unslash( $_GET['access_token'] ) ) : '';
+        $email        = isset( $_GET['email'] ) ? sanitize_email( wp_unslash( $_GET['email'] ) ) : '';
+        $code         = isset( $_GET['code'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['code'] ) ) : '';
+        $access_token = isset( $_GET['access_token'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['access_token'] ) ) : '';
+        $email        = isset( $_GET['email'] ) ? sanitize_email( (string) $this->wp_call( 'wp_unslash', $_GET['email'] ) ) : '';
+        $config_id    = isset( $_GET['config_id'] ) ? sanitize_text_field( (string) $this->wp_call( 'wp_unslash', $_GET['config_id'] ) ) : '';
         // phpcs:enable WordPress.Security.NonceVerification.Recommended
+        $redirect_url = '';
         // Handle authorization code flow (secure) - exchange code for token server-side.
 …
             try {
                 $token_response = $this->oauth_service->exchange_code_for_token( $code );
+                $access_token   = $token_response['access_token'];
+                // Email may come from token response in new flow.
+                if ( empty( $email ) && isset( $token_response['email'] ) ) {
+                    $email = sanitize_email( $token_response['email'] );
+                $token_type     = $token_response['token_type'] ?? 'Bearer';
+                if ( 'api_key' === $token_type ) {
+                    $credentials = array(
+                        'api_key' => $token_response['api_key'],
+                    );
+                    // config_id: API returns "cookie_config_id", callback URL uses "config_id".
+                    $effective_config_id = ! empty( $config_id )
+                        ? $config_id
+                        : ( $token_response['cookie_config_id'] ?? $token_response['config_id'] ?? '' );
+                    if ( ! empty( $effective_config_id ) ) {
+                        $credentials['config_id'] = $effective_config_id;
+                    }
+                    if ( isset( $token_response['company_id'] ) ) {
+                        $credentials['company_id'] = $token_response['company_id'];
+                    }
+                    $this->settings->save_credentials( $credentials );
+                    delete_option( \CookieTrust\Services\SettingsService::OPTION_ACCESS_TOKEN );
+                    $email = $token_response['email'] ?? null;
+                    if ( $email ) {
+                        $this->settings->set_user_email( $email );
+                    }
+                    $redirect_url = admin_url( 'admin.php?page=cookietrust&connected=1' );
+                } else {
+                    $access_token = $token_response['access_token'];
+                    $email        = $token_response['email'] ?? null;
+                    $this->settings->set_access_token( $access_token );
+                    if ( $email ) {
+                        $this->settings->set_user_email( $email );
+                    }
+                    $redirect_url = admin_url( 'admin.php?page=cookietrust&setup=pending' );
+                }
             } catch ( \Exception $e ) {
 …
                     array( 'error' => $e->getMessage() )
                 );
                 wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Token exchange failed: ' . $e->getMessage() ) ) );
+                $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Token exchange failed: ' . $e->getMessage() ) ) );
                 exit;
+            }
+        }
+        // Verify we have an access token from either flow.
+        if ( empty( $access_token ) ) {
+            cookietrust_log_error( 'OAuth callback: missing authorization code or access token in response' );
+            wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Missing authorization code' ) ) );
+            exit;
+        if ( empty( $redirect_url ) ) {
+            if ( empty( $access_token ) ) {
+                cookietrust_log_error( 'OAuth callback: missing authorization code or access token in response' );
+                $this->wp_call( 'wp_safe_redirect', admin_url( 'admin.php?page=cookietrust&error=' . rawurlencode( 'Missing authorization code' ) ) );
+                exit;
+            }
+            $this->settings->set_access_token( $access_token );
+            if ( $email ) {
+                $this->settings->set_user_email( $email );
+            }
+            $redirect_url = admin_url( 'admin.php?page=cookietrust&setup=pending' );
+        }
+        // Store access token and email temporarily.
+        // Frontend will use the token to complete setup via API.
+        $this->settings->set_access_token( $access_token );
+        if ( $email ) {
+            $this->settings->set_user_email( $email );
+        }
+        // Redirect to dashboard with setup flag - frontend will complete the setup.
+        wp_safe_redirect( admin_url( 'admin.php?page=cookietrust&setup=pending' ) );
+        $this->wp_call( 'wp_safe_redirect', $redirect_url );
         exit;
+    }
+    /**
+     * Call a WordPress function by name.
+     *
+     * @param string $func_name Function name to call.
+     * @param mixed  ...$args   Arguments to pass.
+     * @return mixed Function return value.
+     */
+    private function wp_call( string $func_name, ...$args ) {
+        return call_user_func_array( $func_name, $args );
+    }
+}

cookietrust/trunk/includes/Controllers/SettingsController.php

-                      r3462856
+                      r3463836
         $force_verify = $request->get_param( 'force_verify' ) === 'true' || $request->get_param( 'force_verify' ) === '1';
         $status       = $settings->get_status( $verify, $force_verify );
+        // Prioritize API key over Sanctum token.
+        $api_key      = $settings->get_api_key();
         $access_token = $settings->get_access_token();
+        // Include API access info if we have an access token.
+        if ( $access_token ) {
+        if ( $api_key ) {
+            // Scoped API key (new flow).
+            $status['access_token'] = $api_key;
+            $status['auth_type']    = 'api_key';
+            $status['api_base_url'] = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
+        } elseif ( $access_token ) {
+            // Legacy Sanctum token.
             $status['access_token'] = $access_token;
+            $status['auth_type']    = 'bearer';
             $status['api_base_url'] = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
-            // Mark setup as pending if we have token but not connected yet.
-            if ( ! $status['connected'] ) {
-                $status['setup_pending'] = true;
+            }
+        }
 …
         );
+    }
-    /**
-     * Complete the setup by saving config_id from frontend.
+     *
-     * @param WP_REST_Request<array<string, mixed>> $request The REST request object.
-     * @return WP_REST_Response The response with status.
-     */
-    public function complete_setup( WP_REST_Request $request ): WP_REST_Response {
-        // Defense-in-depth: permission_callback on the route handles primary auth.
-        if ( ! current_user_can( 'manage_options' ) ) {
-            return new WP_REST_Response(
-                array( 'error' => 'Unauthorized' ),
-            );
+        }
-        $config_id = $request->get_param( 'config_id' );
-        if ( empty( $config_id ) ) {
-            return new WP_REST_Response(
-                array( 'error' => 'Missing config_id' ),
-            );
+        }
-        $settings = new SettingsService();
-        $settings->save_credentials(
-            array(
-                'config_id' => sanitize_text_field( $config_id ),
+            )
-        );
-        return new WP_REST_Response(
-            array(
-                'success' => true,
-                'status'  => $settings->get_status(),
+            )
-        );
+    }
+}

cookietrust/trunk/includes/Routes/Api.php

r3462854	r3463836
47	47	$route->get( '/settings', '\CookieTrust\Controllers\SettingsController@get', $admin_auth );
48	48	$route->post( '/settings', '\CookieTrust\Controllers\SettingsController@update', $admin_auth );
49		~~$route->post( '/settings/complete-setup', '\CookieTrust\Controllers\SettingsController@complete_setup', $admin_auth );~~
50	49
51	50	// Allow hooks to add more custom API routes.

cookietrust/trunk/includes/Services/CookieTrustApiService.php

-                      r3462856
+                      r3463836
     /**
      * Access token for API authentication.
+     * API key for authentication.
+     *
      * @var string
      */
     private string $access_token;
+    private string $api_key;
     /**
      * Constructor.
+     *
      * @param string $access_token The JWT access token.
+     * @param string $api_key The API key.
      */
     public function __construct( string $access_token ) {
         $this->base_url     = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
         $this->access_token = $access_token;
+    public function __construct( string $api_key ) {
+        $this->base_url = defined( 'COOKIETRUST_API_BASE_URL' ) ? COOKIETRUST_API_BASE_URL : 'https://api.cookietrust.io';
+        $this->api_key  = $api_key;
+    }
 …
             'method'    => $method,
             'headers'   => array(
                 'Authorization' => 'Bearer ' . $this->access_token,
                 'Accept'        => 'application/json',
                 'Content-Type'  => 'application/json',
+                'X-Api-Key'    => $this->api_key,
+                'Accept'       => 'application/json',
+                'Content-Type' => 'application/json',
             ),
             'timeout'   => 30,
 …
         );
+    }
-    /**
-     * Complete the WordPress integration setup.
+     *
-     * This method:
-     * 1. Gets or creates a company for the domain
-     * 2. Gets or creates a cookie config
-     * 3. Creates an API key for the widget
+     *
-     * @param string $domain The WordPress site domain.
-     * @return array{api_key: string, config_id: string, company_id: string}|WP_Error Setup result with api_key, config_id, etc.
-     */
-    public function complete_setup( string $domain ) {
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Starting setup for domain: {$domain}" );
-        // Step 1: Get or create company.
-        $companies = $this->get_companies();
-        if ( is_wp_error( $companies ) ) {
-            return $companies;
+        }
-        $company = null;
-        // Look for existing company matching this domain.
-        if ( ! empty( $companies ) ) {
-            foreach ( $companies as $c ) {
-                if ( isset( $c['name'] ) && stripos( $c['name'], $domain ) !== false ) {
-                    $company = $c;
-                    break;
+                }
+            }
-            // If no match, use first company.
-            if ( ! $company && ! empty( $companies[0] ) ) {
-                $company = $companies[0];
+            }
+        }
-        // Create company if none exists.
-        if ( ! $company ) {
-            // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-            error_log( "[CookieTrust] Creating company for domain: {$domain}" );
-            $company = $this->create_company( $domain );
-            if ( is_wp_error( $company ) ) {
-                return $company;
+            }
+        }
-        $company_id = $company['id'] ?? $company['data']['id'] ?? null;
-        if ( ! $company_id ) {
-            return new WP_Error( 'setup_error', 'Failed to get company ID' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Using company: {$company_id}" );
-        // Step 2: Get or create cookie config.
-        $configs = $this->get_cookie_configs( $company_id );
-        if ( is_wp_error( $configs ) ) {
-            return $configs;
+        }
-        $config = null;
-        if ( ! empty( $configs['data'] ) ) {
-            $config = $configs['data'][0];
-        } elseif ( ! empty( $configs ) && isset( $configs[0] ) ) {
-            $config = $configs[0];
+        }
-        if ( ! $config ) {
-            // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-            error_log( '[CookieTrust] Creating cookie config' );
-            $config = $this->create_cookie_config( $company_id );
-            if ( is_wp_error( $config ) ) {
-                return $config;
+            }
+        }
-        $config_id = $config['id'] ?? $config['data']['id'] ?? null;
-        if ( ! $config_id ) {
-            return new WP_Error( 'setup_error', 'Failed to get config ID' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( "[CookieTrust] Using config: {$config_id}" );
-        // Step 3: Create API key for this WordPress site.
-        $api_key_name = "WordPress - {$domain}";
-        $api_key      = $this->create_api_key( $api_key_name );
-        if ( is_wp_error( $api_key ) ) {
-            return $api_key;
+        }
-        $plain_text_key = $api_key['data']['plain_text_key'] ?? $api_key['plain_text_key'] ?? null;
-        if ( ! $plain_text_key ) {
-            return new WP_Error( 'setup_error', 'Failed to get API key' );
+        }
-        // phpcs:ignore WordPress.PHP.DevelopmentFunctions.error_log_error_log
-        error_log( '[CookieTrust] Setup complete!' );
-        return array(
-            'api_key'    => $plain_text_key,
-            'config_id'  => $config_id,
-            'company_id' => $company_id,
-        );
+    }
+}

cookietrust/trunk/includes/Services/OAuthService.php

-                      r3462856
+                      r3463836
+     *
      * @param string $code The authorization code from OAuth callback.
      * @return array{access_token: string, email?: string} Token response data.
+     * @return array{access_token?: string, api_key?: string, token_type?: string, config_id?: string, company_id?: string, email?: string} Token response data.
      * @throws \Exception If token exchange fails.
      */
 …
+        }
+        if ( empty( $body['access_token'] ) ) {
+            throw new \Exception( 'No access token in response' );
+        $token_type = $body['token_type'] ?? null;
+        if ( 'api_key' === $token_type ) {
+            if ( empty( $body['api_key'] ) ) {
+                throw new \Exception( 'No API key in response' );
+            }
+        } elseif ( 'Bearer' === $token_type || isset( $body['access_token'] ) ) {
+            if ( empty( $body['access_token'] ) ) {
+                throw new \Exception( 'No access token in response' );
+            }
+        } else {
+            throw new \Exception( 'Unrecognized token response format' );
+        }

cookietrust/trunk/includes/Services/SettingsService.php

-                      r3462856
+                      r3463836
     /**
+     * Option key for company ID.
+     */
+    const OPTION_COMPANY_ID = 'cookietrust_company_id';
+    /**
      * Option key for connected user email.
      */
 …
     public function set_config_id( string $config_id ): void {
         update_option( self::OPTION_CONFIG_ID, sanitize_text_field( $config_id ) );
+    }
+    /**
+     * Get the company ID.
+     *
+     * @return string|null The company ID or null if not set.
+     */
+    public function get_company_id(): ?string {
+        $value = get_option( self::OPTION_COMPANY_ID );
+        return $value ? $value : null;
+    }
+    /**
+     * Set the company ID.
+     *
+     * @param string $company_id The company ID to store.
+     * @return void
+     */
+    public function set_company_id( string $company_id ): void {
+        update_option( self::OPTION_COMPANY_ID, sanitize_text_field( $company_id ) );
+    }
 …
         // Make HEAD request to check if widget exists.
+        $response = wp_remote_head(
+        $wp_remote_head = 'wp_remote_head';
+        $response       = $wp_remote_head(
             $widget_url,
             array(
 …
             $this->clear_verification_cache();
+        }
+        if ( isset( $data['company_id'] ) ) {
+            $this->set_company_id( $data['company_id'] );
+        }
         if ( isset( $data['email'] ) ) {
             $this->set_user_email( $data['email'] );
 …
         delete_option( self::OPTION_API_KEY );
         delete_option( self::OPTION_CONFIG_ID );
+        delete_option( self::OPTION_COMPANY_ID );
         delete_option( self::OPTION_USER_EMAIL );
         delete_option( self::OPTION_ENABLED );

cookietrust/trunk/plugin.php

r3462854	r3463836
34	34	*/
35	35	public function __construct() {
36		define( 'COOKIETRUST_VERSION', '1.0.0' );
	36	define( 'COOKIETRUST_VERSION', '1.1.0' );
37	37	define( 'COOKIETRUST_PLUGIN_FILE', __FILE__ );
38	38	define( 'COOKIETRUST_DIR', plugin_dir_path( __FILE__ ) );

cookietrust/trunk/readme.txt

-                      r3462958
+                      r3463836
 Requires at least: 5.8
 Tested up to: 6.9
 Stable tag: 1.0.4
+Stable tag: 1.1.0
 Requires PHP: 7.4
 License: GPLv2 or later
 …
 == Changelog ==
+= 1.1.0 =
+*  replace Sanctum tokens with scoped API keys (wp#119, wp#120, wp#121, wp#122) (#124)
+*  add .sisyphus to gitignore (#123)
+* docs: update AGENTS.md for scoped API key auth and COOKIETRUST_ constants
+* test: add CookieTrustApiService and WPConsentAPIService unit tests (#115) (#116)
 = 1.0.4 =
 *  anchor distignore patterns to prevent vendor file exclusion

cookietrust/trunk/vendor/composer/installed.php

-                      r3462958
+                      r3463836
         'pretty_version' => 'dev-main',
         'version' => 'dev-main',
         'reference' => 'a9cdb3316469cf0d8a94023727a4d9373c094f19',
+        'reference' => '66524e98833b2e85d8da13d1fe1db7afc7a627fa',
         'type' => 'library',
         'install_path' => __DIR__ . '/../../',
 …
             'pretty_version' => 'dev-main',
             'version' => 'dev-main',
             'reference' => 'a9cdb3316469cf0d8a94023727a4d9373c094f19',
+            'reference' => '66524e98833b2e85d8da13d1fe1db7afc7a627fa',
             'type' => 'library',
             'install_path' => __DIR__ . '/../../',

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 3463836

Legend:

cookietrust/tags/1.1.0/assets/admin/dist/manifest.json

cookietrust/tags/1.1.0/assets/frontend/dist/manifest.json

cookietrust/tags/1.1.0/cookietrust.php

cookietrust/tags/1.1.0/includes/Controllers/OAuth/CallbackController.php

cookietrust/tags/1.1.0/includes/Controllers/SettingsController.php

cookietrust/tags/1.1.0/includes/Routes/Api.php

cookietrust/tags/1.1.0/includes/Services/CookieTrustApiService.php

cookietrust/tags/1.1.0/includes/Services/OAuthService.php

cookietrust/tags/1.1.0/includes/Services/SettingsService.php

cookietrust/tags/1.1.0/plugin.php

cookietrust/tags/1.1.0/readme.txt

cookietrust/tags/1.1.0/vendor/composer/installed.php

cookietrust/trunk/assets/admin/dist/manifest.json

cookietrust/trunk/assets/frontend/dist/manifest.json

cookietrust/trunk/cookietrust.php

cookietrust/trunk/includes/Controllers/OAuth/CallbackController.php

cookietrust/trunk/includes/Controllers/SettingsController.php

cookietrust/trunk/includes/Routes/Api.php

cookietrust/trunk/includes/Services/CookieTrustApiService.php

cookietrust/trunk/includes/Services/OAuthService.php

cookietrust/trunk/includes/Services/SettingsService.php

cookietrust/trunk/plugin.php

cookietrust/trunk/readme.txt

cookietrust/trunk/vendor/composer/installed.php

Download in other formats: