/classes/class-s2-frontend.php

<?php 
class s2_frontend extends s2class { 
  /** 
  Load all our strings 
  */ 
  function load_strings() { 
      $this->please_log_in = "<p class=\"s2_message\">" . sprintf(__('To manage your subscription options please <a href="%1$s">login.</a>', 'subscribe2'), get_option('siteurl') . '/wp-login.php') . "</p>"; 
 
      $this->profile = "<p class=\"s2_message\">" . sprintf(__('You may manage your subscription options from your <a href="%1$s">profile</a>', 'subscribe2'), get_option('siteurl') . "/wp-admin/admin.php?page=s2") . "</p>"; 
      if ( $this->s2_mu === true ) { 
          global $blog_id; 
          $user_ID = get_current_user_id(); 
          if ( !is_user_member_of_blog($user_ID, $blog_id) ) { 
              // if we are on multisite and the user is not a member of this blog change the link 
              $this->profile = "<p class=\"s2_message\">" . sprintf(__('<a href="%1$s">Subscribe</a> to email notifications when this blog posts new content.', 'subscribe2'), get_option('siteurl') . "/wp-admin/?s2mu_subscribe=" . $blog_id) . "</p>"; 
          } 
      } 
 
      $this->confirmation_sent = "<p class=\"s2_message\">" . __('A confirmation message is on its way!', 'subscribe2') . "</p>"; 
 
      $this->already_subscribed = "<p class=\"s2_error\">" . __('That email address is already subscribed.', 'subscribe2') . "</p>"; 
 
      $this->not_subscribed = "<p class=\"s2_error\">" . __('That email address is not subscribed.', 'subscribe2') . "</p>"; 
 
      $this->not_an_email = "<p class=\"s2_error\">" . __('Sorry, but that does not look like an email address to me.', 'subscribe2') . "</p>"; 
 
      $this->barred_domain = "<p class=\"s2_error\">" . __('Sorry, email addresses at that domain are currently barred due to spam, please use an alternative email address.', 'subscribe2') . "</p>"; 
 
      $this->error = "<p class=\"s2_error\">" . __('Sorry, there seems to be an error on the server. Please try again later.', 'subscribe2') . "</p>"; 
 
      // confirmation messages 
      $this->no_such_email = "<p class=\"s2_error\">" . __('No such email address is registered.', 'subscribe2') . "</p>"; 
 
      $this->added = "<p class=\"s2_message\">" . __('You have successfully subscribed!', 'subscribe2') . "</p>"; 
 
      $this->deleted = "<p class=\"s2_message\">" . __('You have successfully unsubscribed.', 'subscribe2') . "</p>"; 
 
      /**/$this->subscribe = __('subscribe', 'subscribe2'); //ACTION replacement in subscribing confirmation email 
 
      /**/$this->unsubscribe = __('unsubscribe', 'subscribe2'); //ACTION replacement in unsubscribing in confirmation email 
  } // end load_strings() 
 
/** ===== template and filter functions ===== */ 
  /** 
  Display our form; also handles (un)subscribe requests 
  */ 
  function shortcode($atts) { 
      extract(shortcode_atts(array( 
          'hide' => '',  
          'id' => '',  
          'nojs' => 'false',  
          'noantispam' => 'false',  
          'link' => '',  
          'size' => 20,  
          'wrap' => 'true' 
 ), $atts)); 
 
      // if link is true return a link to the page with the ajax class 
      if ( $link !== '' && !is_user_logged_in() ) { 
          $hide_id = ($hide === '') ? "": " id=\"" . strtolower($hide) . "\""; 
          $this->s2form = "<a href=\"" . get_permalink($this->subscribe2_options['s2page']) . "\" class=\"s2popup\"" . $hide_id . ">" . $link . "</a>\r\n"; 
          return $this->s2form; 
      } 
 
      // Apply filters to button text 
      $unsubscribe_button_value = apply_filters('s2_unsubscribe_button', __('Unsubscribe', 'subscribe2')); 
      $subscribe_button_value = apply_filters('s2_subscribe_button', __('Subscribe', 'subscribe2')); 
 
      // if a button is hidden, show only other 
      if ( strtolower($hide) == 'subscribe' ) { 
          $this->input_form_action = "<input type=\"submit\" name=\"unsubscribe\" value=\"" . esc_attr($unsubscribe_button_value) . "\" />"; 
      } elseif ( strtolower($hide) == 'unsubscribe' ) { 
          $this->input_form_action = "<input type=\"submit\" name=\"subscribe\" value=\"" . esc_attr($subscribe_button_value) . "\" />"; 
      } else { 
          // both form input actions 
          $this->input_form_action = "<input type=\"submit\" name=\"subscribe\" value=\"" . esc_attr($subscribe_button_value) . "\" /> <input type=\"submit\" name=\"unsubscribe\" value=\"" . esc_attr($unsubscribe_button_value) . "\" />"; 
      } 
 
      // if ID is provided, get permalink 
      $action = ''; 
      if ( is_numeric($id) ) { 
          $action = " action=\"" . get_permalink( $id ) . "\""; 
      } elseif ( $id === 'home' ) { 
          $action = " action=\"" . get_site_url() . "\""; 
      } elseif ( $id === 'self' ) { 
          $action = ''; 
      } elseif ( $this->subscribe2_options['s2page'] > 0 ) { 
          $action = " action=\"" . get_permalink( $this->subscribe2_options['s2page'] ) . "\""; 
      } 
 
      // allow remote setting of email in form 
      if ( isset($_REQUEST['email']) && is_email($_REQUEST['email']) ) { 
          $value = $this->sanitize_email($_REQUEST['email']); 
      } elseif ( strtolower($nojs) == 'true' ) { 
          $value = ''; 
      } else { 
          $value = __('Enter email address...', 'subscribe2'); 
      } 
 
      // if wrap is true add paragraph html tags 
      $wrap_text = ''; 
      if ( strtolower($wrap) == 'true' ) { 
          $wrap_text = '</p><p>'; 
      } 
 
      // deploy some anti-spam measures 
      $antispam_text = ''; 
      if ( strtolower($noantispam) != 'true' ) { 
          $antispam_text = "<span style=\"display:none !important\">"; 
          $antispam_text .= "<label for=\"name\">Leave Blank:</label><input type=\"text\" id=\"name\" name=\"name\" />"; 
          $antispam_text .= "<label for=\"uri\">Do Not Change:</label><input type=\"text\" id=\"uri\" name=\"uri\" value=\"http://\" />"; 
          $antispam_text .= "</span>"; 
      } 
 
      // build default form 
      if ( strtolower($nojs) == 'true' ) { 
          $this->form = "<form method=\"post\"" . $action . "><input type=\"hidden\" name=\"ip\" value=\"" . $_SERVER['REMOTE_ADDR'] . "\" />" . $antispam_text . "<p><label for=\"s2email\">" . __('Your email:', 'subscribe2') . "</label><br /><input type=\"text\" name=\"email\" id=\"s2email\" value=\"" . $value . "\" size=\"" . $size . "\" />" . $wrap_text . $this->input_form_action . "</p></form>"; 
      } else { 
          $this->form = "<form method=\"post\"" . $action . "><input type=\"hidden\" name=\"ip\" value=\"" . $_SERVER['REMOTE_ADDR'] . "\" />" . $antispam_text . "<p><label for=\"s2email\">" . __('Your email:', 'subscribe2') . "</label><br /><input type=\"text\" name=\"email\" id=\"s2email\" value=\"" . $value . "\" size=\"" . $size . "\" onfocus=\"if (this.value == '" . $value . "') {this.value = '';}\" onblur=\"if (this.value == '') {this.value = '" . $value . "';}\" />" . $wrap_text . $this->input_form_action . "</p></form>\r\n"; 
      } 
      $this->s2form = apply_filters('s2_form', $this->form); 
 
      global $user_ID; 
      get_currentuserinfo(); 
      if ( $user_ID ) { 
          $this->s2form = $this->profile; 
      } 
      if ( isset($_POST['subscribe']) || isset($_POST['unsubscribe']) ) { 
          // anti spam sign up measure 
          if ( $_POST['name'] != '' || $_POST['uri'] != 'http://' ) { 
              // looks like some invisible-to-user fields were changed; falsely report success 
              return $this->confirmation_sent; 
          } 
          global $wpdb, $user_email; 
          $this->email = $this->sanitize_email($_POST['email']); 
          if ( !is_email($this->email) ) { 
              $this->s2form = $this->form . $this->not_an_email; 
          } elseif ( $this->is_barred($this->email) ) { 
              $this->s2form = $this->form . $this->barred_domain; 
          } else { 
              $this->ip = $_POST['ip']; 
              if ( is_int($this->lockout) && $this->lockout > 0 ) { 
                  $date = date('H:i:s.u', $this->lockout); 
                  $ips = $wpdb->get_col($wpdb->prepare("SELECT ip FROM $this->public WHERE date = CURDATE() AND time > SUBTIME(CURTIME(), %s)", $date)); 
                  if ( in_array($this->ip, $ips) ) { 
                      return __('Slow down, you move too fast.', 'subscribe2'); 
                  } 
              } 
              // does the supplied email belong to a registered user? 
              $check = $wpdb->get_var($wpdb->prepare("SELECT user_email FROM $wpdb->users WHERE user_email = %s", $this->email)); 
              if ( '' != $check ) { 
                  // this is a registered email 
                  $this->s2form = $this->please_log_in; 
              } else { 
                  // this is not a registered email 
                  // what should we do? 
                  if ( isset($_POST['subscribe']) ) { 
                      // someone is trying to subscribe 
                      // lets see if they've tried to subscribe previously 
                      if ( '1' !== $this->is_public($this->email) ) { 
                          // the user is unknown or inactive 
                          $this->add($this->email); 
                          $status = $this->send_confirm('add'); 
                          // set a variable to denote that we've already run, and shouldn't run again 
                          $this->filtered = 1; 
                          if ( $status ) { 
                              $this->s2form = $this->confirmation_sent; 
                          } else { 
                              $this->s2form = $this->error; 
                          } 
                      } else { 
                          // they're already subscribed 
                          $this->s2form = $this->already_subscribed; 
                      } 
                      $this->action = 'subscribe'; 
                  } elseif ( isset($_POST['unsubscribe']) ) { 
                      // is this email a subscriber? 
                      if ( false == $this->is_public($this->email) ) { 
                          $this->s2form = $this->form . $this->not_subscribed; 
                      } else { 
                          $status = $this->send_confirm('del'); 
                          // set a variable to denote that we've already run, and shouldn't run again 
                          $this->filtered = 1; 
                          if ( $status ) { 
                              $this->s2form = $this->confirmation_sent; 
                          } else { 
                              $this->s2form = $this->error; 
                          } 
                      } 
                      $this->action = 'unsubscribe'; 
                  } 
              } 
          } 
      } 
      return $this->s2form; 
  } // end shortcode() 
 
  /** 
  Display form when deprecated <!--subscribe2--> is used 
  */ 
  function filter($content = '') { 
      if ( '' == $content || !strstr($content, '<!--subscribe2-->') ) { return $content; } 
 
      return preg_replace('|(<p>)?(\n)*<!--subscribe2-->(\n)*(</p>)?|', do_shortcode( '[subscribe2]' ), $content); 
  } // end filter() 
 
  /** 
  Overrides the default query when handling a (un)subscription confirmation 
  This is basically a trick: if the s2 variable is in the query string, just grab the first 
  static page and override it's contents later with title_filter() 
  */ 
  function query_filter() { 
      // don't interfere if we've already done our thing 
      if ( 1 == $this->filtered ) { return; } 
 
      global $wpdb; 
 
      // brute force Simple Facebook Connect to bypass compatiblity issues 
      $priority = has_filter('wp_head', 'sfc_base_meta'); 
      if ( $priority !== false ) { 
          remove_action('wp_head', 'sfc_base_meta', $priority); 
      } 
 
      if ( 0 != $this->subscribe2_options['s2page'] ) { 
          return array('page_id' => $this->subscribe2_options['s2page']); 
      } else { 
          $id = $wpdb->get_var("SELECT ID FROM $wpdb->posts WHERE post_type='page' AND post_status='publish' LIMIT 1"); 
          if ( $id ) { 
              return array('page_id' => $id); 
          } else { 
              return array('showposts' => 1); 
          } 
      } 
  } // end query_filter() 
 
  /** 
  Overrides the page title 
  */ 
  function title_filter($title) { 
      // don't interfere if we've already done our thing 
      if ( in_the_loop() ) { 
          $code = $_GET['s2']; 
          $action = intval(substr($code, 0, 1)); 
          if ( $action == '1' ) { 
              return __('Subscription Confirmation', 'subscribe2'); 
          } else { 
              return __('Unsubscription Confirmation', 'subscribe2'); 
          } 
      } else { 
          return $title; 
      } 
  } // end title_filter() 
 
  /** 
  Confirm request from the link emailed to the user and email the admin 
  */ 
  function confirm($content = '') { 
      global $wpdb; 
 
      if ( 1 == $this->filtered ) { return $content; } 
 
      $code = $_GET['s2']; 
      $action = intval(substr($code, 0, 1)); 
      $hash = substr($code, 1, 32); 
      $id = intval(substr($code, 33)); 
      if ( $id ) { 
          $this->email = $this->sanitize_email($this->get_email($id)); 
          if ( !$this->email || $hash !== wp_hash($this->email) ) { 
              return $this->no_such_email; 
          } 
      } else { 
          return $this->no_such_email; 
      } 
 
      // get current status of email so messages are only sent once per emailed link 
      $current = $this->is_public($this->email); 
 
      if ( '1' == $action ) { 
          // make this subscription active 
          $this->message = apply_filters('s2_subscribe_confirmed', $this->added); 
          if ( '1' != $current ) { 
              $this->ip = $_SERVER['REMOTE_ADDR']; 
              $this->toggle($this->email); 
              if ( $this->subscribe2_options['admin_email'] == 'subs' || $this->subscribe2_options['admin_email'] == 'both' ) { 
                  ( '' == get_option('blogname') ) ? $subject = "" : $subject = "[" . stripslashes(html_entity_decode(get_option('blogname'), ENT_QUOTES)) . "] "; 
                  $subject .= __('New Subscription', 'subscribe2'); 
                  $subject = html_entity_decode($subject, ENT_QUOTES); 
                  $message = $this->email . " " . __('subscribed to email notifications!', 'subscribe2'); 
                  $role = array('fields' => array('user_email'), 'role' => 'administrator'); 
                  $wp_user_query = get_users( $role ); 
                  foreach ($wp_user_query as $user) { 
                      $recipients[] = $user->user_email; 
                  } 
                  $recipients = apply_filters('s2_admin_email', $recipients, 'subscribe'); 
                  $headers = $this->headers(); 
                  // send individual emails so we don't reveal admin emails to each other 
                  foreach ( $recipients as $recipient ) { 
                      @wp_mail($recipient, $subject, $message, $headers); 
                  } 
              } 
          } 
          $this->filtered = 1; 
      } elseif ( '0' == $action ) { 
          // remove this subscriber 
          $this->message = apply_filters('s2_unsubscribe_confirmed', $this->deleted); 
          if ( '0' != $current ) { 
              $this->delete($this->email); 
              if ( $this->subscribe2_options['admin_email'] == 'unsubs' || $this->subscribe2_options['admin_email'] == 'both' ) { 
                  ( '' == get_option('blogname') ) ? $subject = "" : $subject = "[" . stripslashes(html_entity_decode(get_option('blogname'), ENT_QUOTES)) . "] "; 
                  $subject .= __('New Unsubscription', 'subscribe2'); 
                  $subject = html_entity_decode($subject, ENT_QUOTES); 
                  $message = $this->email . " " . __('unsubscribed from email notifications!', 'subscribe2'); 
                  $role = array('fields' => array('user_email'), 'role' => 'administrator'); 
                  $wp_user_query = get_users( $role ); 
                  foreach ($wp_user_query as $user) { 
                      $recipients[] = $user->user_email; 
                  } 
                  $recipients = apply_filters('s2_admin_email', $recipients, 'unsubscribe'); 
                  $headers = $this->headers(); 
                  // send individual emails so we don't reveal admin emails to each other 
                  foreach ( $recipients as $recipient ) { 
                      @wp_mail($recipient, $subject, $message, $headers); 
                  } 
              } 
          } 
          $this->filtered = 1; 
      } 
 
      if ( '' != $this->message ) { 
          return $this->message; 
      } 
  } // end confirm() 
 
  /** 
  Add hook for Minimeta Widget plugin 
  */ 
  function add_minimeta() { 
      if ( $this->subscribe2_options['s2page'] != 0 ) { 
          echo "<li><a href=\"" . get_permalink($this->subscribe2_options['s2page']) . "\">" . __('[Un]Subscribe to Posts', 'subscribe2') . "</a></li>\r\n"; 
      } 
  } // end add_minimeta() 
 
  /** 
  Add jQuery code and CSS to front pages for ajax form 
  */ 
  function add_ajax() { 
      // enqueue the jQuery script we need and let WordPress handle the dependencies 
      wp_enqueue_script('jquery-ui-dialog'); 
      $css = 'http://ajax.googleapis.com/ajax/libs/jqueryui/1.10.3/themes/ui-darkness/jquery-ui.css'; 
      if ( is_ssl() ) { 
          $css = str_replace('http:', 'https:', $css); 
      } 
      wp_register_style('jquery-ui-style', apply_filters('s2_jqueryui_css', $css)); 
      wp_enqueue_style('jquery-ui-style'); 
  } // end add_ajax() 
 
  /** 
  Write Subscribe2 form js code dynamically so we can pull WordPress functions 
  */ 
  function add_s2_ajax() { 
      echo "<script type=\"text/javascript\">\r\n"; 
      echo "//<![CDATA[\r\n"; 
      echo "var s2jQuery = jQuery.noConflict();\r\n"; 
      echo "s2jQuery(document).ready(function() {\r\n"; 
      echo "    var dialog = s2jQuery('<div></div>');\r\n"; 
      echo "    if (s2jQuery('a.s2popup').attr('id') === 'unsubscribe') {\r\n"; 
      echo "        dialog.html('" . do_shortcode('[subscribe2 nojs="true" hide="unsubscribe"]') . "');\r\n"; 
      echo "    } else if (s2jQuery('a.s2popup').attr('id') === 'subscribe') {\r\n"; 
      echo "        dialog.html('" . do_shortcode('[subscribe2 nojs="true" hide="subscribe"]') . "');\r\n"; 
      echo "    } else {\r\n"; 
      echo "        dialog.html('" . do_shortcode('[subscribe2 nojs="true"]') . "');\r\n"; 
      echo "    }\r\n"; 
      if ( $this->s2form != $this->form && !is_user_logged_in() ) { 
          echo "    dialog.dialog({modal: true, zIndex: 10000, title: '" . __('Subscribe to this blog', 'subscribe2') . "'});\r\n"; 
      } else { 
          echo "    dialog.dialog({autoOpen: false, modal: true, zIndex: 10000, title: '" . __('Subscribe to this blog', 'subscribe2') . "'});\r\n"; 
      } 
      echo "    s2jQuery('a.s2popup').click(function() {\r\n"; 
      echo "        dialog.dialog('open');\r\n"; 
      echo "        return false;\r\n"; 
      echo "    });\r\n"; 
      echo "});\r\n"; 
      echo "//]]>\r\n"; 
      echo "</script>\r\n"; 
  } // end add_s2_ajax() 
 
  /** 
  Check email is not from a barred domain 
  */ 
  function is_barred($email = '') { 
      if ( '' == $email ) { return false; } 
 
      $bar_check = false; 
      list($user, $domain) = explode('@', $email, 2); 
      foreach ( preg_split("|[\s, ]+|", $this->subscribe2_options['barred']) as $barred_domain ) { 
          if ( strtolower($domain) === strtolower(trim($barred_domain)) ) { 
              $bar_check = true; 
          } 
      } 
      return $bar_check; 
  } // end is_barred() 
} 
?>