Untitled

<?php
/*
 Plugin Name: New User Approve
 Plugin URI: http://www.picklewagon.com/wordpress/new-user-approve/
 Description: Allow administrators to approve users once they register. Only approved users will be allowed to access the site. For support, please go to the <a href="http://wordpress.org/support/plugin/new-user-approve">support forums</a> on wordpress.org.
 Author: Josh Harrison
 Version: 1.7.5
 Author URI: http://picklewagon.com/
 */

class pw_new_user_approve {

    /**
     * The only instance of pw_new_user_approve.
     *
     * @var pw_new_user_approve
     */
    private static $instance;

    /**
     * Returns the main instance.
     *
     * @return pw_new_user_approve
     */
    public static function instance() {
        if ( !isset( self::$instance ) ) {
            self::$instance = new pw_new_user_approve();

            self::$instance->includes();
            self::$instance->email_tags = new NUA_Email_Template_Tags();
        }
        return self::$instance;
    }

    private function __construct() {
        // Load up the localization file if we're using WordPress in a different language
        // Just drop it in this plugin's "localization" folder and name it "new-user-approve-[value in wp-config].mo"
        load_plugin_textdomain( 'new-user-approve', false, dirname( plugin_basename( __FILE__ ) ) . '/localization' );

        register_activation_hook( __FILE__, array( $this, 'activation' ) );
        register_deactivation_hook( __FILE__, array( $this, 'deactivation' ) );

        // Actions
        add_action( 'wp_loaded', array( $this, 'admin_loaded' ) );
        add_action( 'rightnow_end', array( $this, 'dashboard_stats' ) );
        add_action( 'user_register', array( $this, 'delete_new_user_approve_transient' ), 11 );
        add_action( 'new_user_approve_approve_user', array( $this, 'delete_new_user_approve_transient' ), 11 );
        add_action( 'new_user_approve_deny_user', array( $this, 'delete_new_user_approve_transient' ), 11 );
        add_action( 'deleted_user', array( $this, 'delete_new_user_approve_transient' ) );
        //add_action( 'register_post', array( $this, 'request_admin_approval_email' ), 10, 3 );
        add_action( 'register_post', array( $this, 'create_new_user' ), 10, 3 );
        add_action( 'lostpassword_post', array( $this, 'lost_password' ) );
        add_action( 'user_register', array( $this, 'add_user_status' ) );
        add_action( 'user_register', array( $this, 'request_admin_approval_email_2' ) );
        add_action( 'new_user_approve_approve_user', array( $this, 'approve_user' ) );
        add_action( 'new_user_approve_deny_user', array( $this, 'deny_user' ) );
        add_action( 'new_user_approve_deny_user', array( $this, 'update_deny_status' ) );
        add_action( 'admin_init', array( $this, 'verify_settings' ) );
        add_action( 'wp_login', array( $this, 'login_user' ), 10, 2 );

        // Filters
        add_filter( 'wp_authenticate_user', array( $this, 'authenticate_user' ) );
        add_filter( 'registration_errors', array( $this, 'show_user_pending_message' ) );
        add_filter( 'login_message', array( $this, 'welcome_user' ) );
        add_filter( 'new_user_approve_validate_status_update', array( $this, 'validate_status_update' ), 10, 3 );
        add_filter( 'shake_error_codes', array( $this, 'failure_shake' ) );
    }

    public function get_plugin_url() {
        return plugin_dir_url( __FILE__ );
    }

    public function get_plugin_dir() {
        return plugin_dir_path( __FILE__ );
    }

    /**
     * Include required files
     *
     * @access private
     * @since 1.4
     * @return void
     */
    private function includes() {
        require_once( $this->get_plugin_dir() . 'includes/email-tags.php' );
        require_once( $this->get_plugin_dir() . 'includes/messages.php' );
    }

    /**
     * Require a minimum version of WordPress on activation
     *
     * @uses register_activation_hook
     */
    public function activation() {
        global $wp_version;

        $min_wp_version = '3.5.1';
        $exit_msg = sprintf( __( 'New User Approve requires WordPress %s or newer.', 'new-user-approve' ), $min_wp_version );
        if ( version_compare( $wp_version, $min_wp_version, '<' ) ) {
            exit( $exit_msg );
        }

        // since the right version of WordPress is being used, run a hook
        do_action( 'new_user_approve_activate' );
    }

    /**
     * @uses register_deactivation_hook
     */
    public function deactivation() {
        do_action( 'new_user_approve_deactivate' );
    }

    /**
     * Verify settings upon activation
     *
     * @uses admin_init
     */
    public function verify_settings() {
        // make sure the membership setting is turned on
        if ( get_option( 'users_can_register' ) != 1 ) {
            add_action( 'admin_notices', array( $this, 'admin_notices' ) );
        }
    }

    /**
     * Show admin notice if the membership setting is turned off.
     */
    public function admin_notices() {
        $user_id = get_current_user_id();

        // if the user isn't an admin, definitely don't show the notice
        if ( ! current_user_can( 'manage_options' ) ) {
            return;
        }

        // update the setting for the current user
        if ( isset( $_GET['new-user-approve-settings-notice'] ) && '1' == $_GET['new-user-approve-settings-notice'] ) {
            add_user_meta( $user_id, 'pw_new_user_approve_settings_notice', '1', true );
        }

        $show_notice = get_user_meta( $user_id, 'pw_new_user_approve_settings_notice' );

        // one last chance to show the update
        $show_notice = apply_filters( 'new_user_approve_show_membership_notice', $show_notice, $user_id );

        // Check that the user hasn't already clicked to ignore the message
        if ( ! $show_notice ) {
            echo '<div class="error"><p>';
            printf( __( 'The Membership setting must be turned on in order for the New User Approve to work correctly. <a href="%1$s">Update in settings</a>. | <a href="%2$s">Hide Notice</a>', 'new-user-approve' ), admin_url( 'options-general.php' ), add_query_arg( array( 'new-user-approve-settings-notice' => 1 ) ) );
            echo "</p></div>";
        }
    }

    /**
     * Makes it possible to disable the user admin integration. Must happen after
     * WordPress is loaded.
     *
     * @uses wp_loaded
     */
    public function admin_loaded() {
        $user_admin_integration = apply_filters( 'new_user_approve_user_admin_integration', true );
        if ( $user_admin_integration ) {
            require_once( dirname( __FILE__ ) . '/includes/user-list.php' );
        }

        $legacy_panel = apply_filters( 'new_user_approve_user_admin_legacy', true );
        if ( $legacy_panel ) {
            require_once( dirname( __FILE__ ) . '/includes/admin-approve.php' );
        }
    }

    /**
     * Get the status of a user.
     *
     * @param int $user_id
     * @return string the status of the user
     */
    public function get_user_status( $user_id ) {
        $user_status = get_user_meta( $user_id, 'pw_user_status', true );

        if ( empty( $user_status ) ) {
            $user_status = 'approved';
        }

        return $user_status;
    }

    /**
     * Update the status of a user. The new status must be either 'approve' or 'deny'.
     *
     * @param int $user
     * @param string $status
     *
     * @return boolean
     */
    public function update_user_status( $user, $status ) {
        $user_id = absint( $user );
        if ( !$user_id ) {
            return false;
        }

        if ( !in_array( $status, array( 'approve', 'deny' ) ) ) {
            return false;
        }

        $do_update = apply_filters( 'new_user_approve_validate_status_update', true, $user_id, $status );
        if ( !$do_update ) {
            return false;
        }

        // where it all happens
        do_action( 'new_user_approve_' . $status . '_user', $user_id );
        do_action( 'new_user_approve_user_status_update', $user_id, $status );

        return true;
    }

    /**
     * Get the valid statuses. Anything outside of the returned array is an invalid status.
     *
     * @return array
     */
    public function get_valid_statuses() {
        return array( 'pending', 'approved', 'denied' );
    }

    /**
     * Only validate the update if the status has been updated to prevent unnecessary update
     * and especially emails.
     *
     * @param bool $do_update
     * @param int $user_id
     * @param string $status either 'approve' or 'deny'
     */
    public function validate_status_update( $do_update, $user_id, $status ) {
        $current_status = pw_new_user_approve()->get_user_status( $user_id );

        if ( $status == 'approve' ) {
            $new_status = 'approved';
        } else {
            $new_status = 'denied';
        }

        if ( $current_status == $new_status ) {
            $do_update = false;
        }

        return $do_update;
    }

    /**
     * The default message that is shown to a user depending on their status
     * when trying to sign in.
     *
     * @return string
     */
    public function default_authentication_message( $status ) {
        $message = '';

        if ( $status == 'pending' ) {
            $message = __( '<strong>ERROR</strong>: Your account is still pending approval.', 'new-user-approve' );
            $message = apply_filters( 'new_user_approve_pending_error', $message );
        } else if ( $status == 'denied' ) {
            $message = __( '<strong>ERROR</strong>: Your account has been denied access to this site.', 'new-user-approve' );
            $message = apply_filters( 'new_user_approve_denied_error', $message );
        }

        $message = apply_filters( 'new_user_approve_default_authentication_message', $message, $status );

        return $message;
    }

    /**
     * Determine if the user is good to sign in based on their status.
     *
     * @uses wp_authenticate_user
     * @param array $userdata
     */
    public function authenticate_user( $userdata ) {
        $status = $this->get_user_status( $userdata->ID );

        if ( empty( $status ) ) {
            // the user does not have a status so let's assume the user is good to go
            return $userdata;
        }

        $message = false;
        switch ( $status ) {
            case 'pending':
                $pending_message = $this->default_authentication_message( 'pending' );
                $message = new WP_Error( 'pending_approval', $pending_message );
                break;
            case 'denied':
                $denied_message = $this->default_authentication_message( 'denied' );
                $message = new WP_Error( 'denied_access', $denied_message );
                break;
            case 'approved':
                $message = $userdata;
                break;
        }

        return $message;
    }

    public function _get_user_statuses($count = true) {
        $statuses = array();

        foreach ( $this->get_valid_statuses() as $status ) {
            // Query the users table
            if ( $status != 'approved' ) {
                // Query the users table
                $query = array(
                    'meta_key' => 'pw_user_status',
                    'meta_value' => $status,
                    'count_total' => true,
                    'number' => 1,
                );
            } else {
                // get all approved users and any user without a status
                $query = array(
                    'meta_query' => array(
                        'relation' => 'OR',
                        array(
                            'key' => 'pw_user_status',
                            'value' => 'approved',
                            'compare' => '=',
                        ),
                        array(
                            'key' => 'pw_user_status',
                            'value' => '',
                            'compare' => 'NOT EXISTS',
                        ),
                    ),
                    'count_total' => true,
                    'number' => 1,
                );
            }

            if ($count === false) {
                unset($query['count_total']);
                unset($query['number']);
            }
            $wp_user_search = new WP_User_Query( $query );

            if ($count === true) {
                $statuses[$status] = $wp_user_search->get_total();
            } else {
                $statuses[$status] = $wp_user_search->get_results();
            }
        }

        return $statuses;
    }

    /**
     * Get a list of statuses with a count of users with that status and save them using a transient
     */
    public function get_count_of_user_statuses() {
        $user_statuses = get_transient( 'new_user_approve_user_statuses_count' );

        if ( false === $user_statuses ) {
            $user_statuses = $this->_get_user_statuses();
            set_transient( 'new_user_approve_user_statuses_count', $user_statuses );
        }

        return $user_statuses;
    }

    public function get_user_statuses() {
        $user_statuses = get_transient( 'new_user_approve_user_statuses' );

        if ( false === $user_statuses ) {
            $user_statuses = $this->_get_user_statuses(false);
            set_transient( 'new_user_approve_user_statuses', $user_statuses );
        }

        foreach ( $this->get_valid_statuses() as $status ) {
            $user_statuses[$status] = apply_filters( 'new_user_approve_user_status', $user_statuses[$status], $status );
        }

        return $user_statuses;
    }

    /**
     * Delete the transient storing all of the user statuses.
     *
     * @uses user_register
     * @uses deleted_user
     * @uses new_user_approve_approve_user
     * @uses new_user_approve_deny_user
     */
    public function delete_new_user_approve_transient() {
        delete_transient( 'new_user_approve_user_statuses' );
    }

    /**
     * Display the stats on the WP dashboard. Will show 1 line with a count
     * of users and their status.
     *
     * @uses rightnow_end
     */
    public function dashboard_stats() {
        $user_status = $this->get_count_of_user_statuses();
        ?>
        <div>
            <p>
                <span style="font-weight:bold;">
                    <a href="<?php echo apply_filters( 'new_user_approve_dashboard_link', 'users.php' ); ?>"><?php _e( 'Users', 'new-user-approve' ); ?></a>
                </span>:
                <?php foreach ( $user_status as $status => $count ) :
                    print __( ucwords($status), 'new-user-approve' ) . "(" .$count . ")&nbsp;&nbsp;&nbsp;";
                endforeach; ?>
            </p>
        </div>
    <?php
    }

    /**
     * Send email to admin requesting approval.
     *
     * @param $user_login username
     * @param $user_email email address of the user
     */
    public function admin_approval_email( $user_login, $user_email, $user_id ) {

    $user_id = get_current_user_id();
        $default_admin_url = admin_url( 'user-edit.php?user_id=' . $user_id . 'test' );
        $admin_url = apply_filters( 'new_user_approve_admin_link', $default_admin_url );

        /* send email to admin for approval */
        $message = apply_filters( 'new_user_approve_request_approval_message_default', nua_default_notification_message() );

        $message = nua_do_email_tags( $message, array(
            'context' => 'request_admin_approval_email',
            'user_login' => $user_login,
            'user_email' => $user_email,
            'admin_url' => $admin_url,
        ) );
        $message = apply_filters( 'new_user_approve_request_approval_message', $message, $user_login, $user_email );

        $subject = sprintf( __( '[%s] User Approval', 'new-user-approve' ), wp_specialchars_decode( get_option( 'blogname' ), ENT_QUOTES ) );
        $subject = apply_filters( 'new_user_approve_request_approval_subject', $subject );

        $to = apply_filters( 'new_user_approve_email_admins', array( get_option( 'admin_email' ) ) );
        $to = array_unique( $to );

        // send the mail
        wp_mail( $to, $subject, $message, $this->email_message_headers() );
    }

    /**
     * Send an email to the admin to request approval. If there are already errors,
     * just go back and let core do it's thing.
     *
     * @uses register_post
     * @param string $user_login
     * @param string $user_email
     * @param object $errors
     */
    public function request_admin_approval_email( $user_login, $user_email, $errors ) {
        if ( $errors->get_error_code() ) {
            return;
        }

        $this->admin_approval_email( $user_login, $user_email );
    }

    /**
     * Send an email to the admin to request approval.
     *
     * @uses user_register
     * @param int $user_id
     */
    public function request_admin_approval_email_2( $user_id ) {
        $user = new WP_User( $user_id );

        $user_login = stripslashes( $user->data->user_login );
        $user_email = stripslashes( $user->data->user_email );

        $this->admin_approval_email( $user_login, $user_email );
    }

    /**
     * Create a new user after the registration has been validated. Normally,
     * when a user registers, an email is sent to the user containing their
     * username and password. The email does not get sent to the user until
     * the user is approved when using the default behavior of this plugin.
     *
     * @uses register_post
     * @param string $user_login
     * @param string $user_email
     * @param object $errors
     */
    public function create_new_user( $user_login, $user_email, $errors ) {
        if ( $errors->get_error_code() ) {
            return;
        }

        // create the user
        $user_pass = wp_generate_password( 12, false );
        $user_id = wp_create_user( $user_login, $user_pass, $user_email );
        if ( !$user_id ) {
            $errors->add( 'registerfail', sprintf( __( '<strong>ERROR</strong>: Couldn&#8217;t register you... please contact the <a href="mailto:%s">webmaster</a> !' ), get_option( 'admin_email' ) ) );
        }
    }

    /**
     * Determine whether a password needs to be reset.
     *
     * password should only be reset for users that:
     * * have never logged in
     * * are just approved for the first time
     *
     * @return boolean
     */
    public function do_password_reset( $user_id ) {
        // Default behavior is to reset password
        $do_password_reset = true;

        // Get the current user status. By default each user is given a pending
        // status when the user is created (with this plugin activated). If the
        // user was created while this plugin was not active, the user will not
        // have a status set.
        $user_status = get_user_meta( $user_id, 'pw_user_status' );

        // if no status is set, don't reset password
        if ( empty( $user_status ) ) {
            $do_password_reset = false;
        }

        // if user has signed in, don't reset password
        $user_has_signed_in = get_user_meta( $user_id, 'pw_new_user_approve_has_signed_in' );
        if ( $user_has_signed_in ) {
            $do_password_reset = false;
        }

        // for backward compatability
        $bypass_password_reset = apply_filters( 'new_user_approve_bypass_password_reset', !$do_password_reset );

        return apply_filters( 'new_user_approve_do_password_reset', !$bypass_password_reset );
    }

    /**
     * Admin approval of user
     *
     * @uses new_user_approve_approve_user
     */
    public function approve_user( $user_id ) {
        $user = new WP_User( $user_id );

        wp_cache_delete( $user->ID, 'users' );
        wp_cache_delete( $user->data->user_login, 'userlogins' );

        // send email to user telling of approval
        $user_login = stripslashes( $user->data->user_login );
        $user_email = stripslashes( $user->data->user_email );

        // format the message
        $message = nua_default_approve_user_message();

        $message = nua_do_email_tags( $message, array(
            'context' => 'approve_user',
            'user' => $user,
            'user_login' => $user_login,
            'user_email' => $user_email,
        ) );
        $message = apply_filters( 'new_user_approve_approve_user_message', $message, $user );

        $subject = sprintf( __( '[%s] Registration Approved', 'new-user-approve' ), get_option( 'blogname' ) );
        $subject = apply_filters( 'new_user_approve_approve_user_subject', $subject );

        // send the mail
        wp_mail( $user_email, $subject, $message, $this->email_message_headers() );

        // change usermeta tag in database to approved
        update_user_meta( $user->ID, 'pw_user_status', 'approved' );

        do_action( 'new_user_approve_user_approved', $user );
    }

    /**
     * Send email to notify user of denial.
     *
     * @uses new_user_approve_deny_user
     */
    public function deny_user( $user_id ) {
        $user = new WP_User( $user_id );

        // send email to user telling of denial
        $user_email = stripslashes( $user->user_email );

        // format the message
        $message = nua_default_deny_user_message();
        $message = nua_do_email_tags( $message, array(
            'context' => 'deny_user',
        ) );
        $message = apply_filters( 'new_user_approve_deny_user_message', $message, $user );

        $subject = sprintf( __( '[%s] Registration Denied', 'new-user-approve' ), get_option( 'blogname' ) );
        $subject = apply_filters( 'new_user_approve_deny_user_subject', $subject );

        // send the mail
        wp_mail( $user_email, $subject, $message, $this->email_message_headers() );
    }

    /**
     * Update user status when denying user.
     *
     * @uses new_user_approve_deny_user
     */
    public function update_deny_status( $user_id ) {
        $user = new WP_User( $user_id );

        // change usermeta tag in database to denied
        update_user_meta( $user->ID, 'pw_user_status', 'denied' );

        do_action( 'new_user_approve_user_denied', $user );
    }

    public function email_message_headers() {
        $admin_email = get_option( 'admin_email' );
        if ( empty( $admin_email ) ) {
            $admin_email = 'support@' . $_SERVER['SERVER_NAME'];
        }

        $from_name = get_option( 'blogname' );

        $headers = array(
            "From: \"{$from_name}\" <{$admin_email}>\n",
        );

        $headers = apply_filters( 'new_user_approve_email_header', $headers );

        return $headers;
    }

    /**
     * Display a message to the user after they have registered
     *
     * @uses registration_errors
     */
    public function show_user_pending_message( $errors ) {
        if ( !empty( $_POST['redirect_to'] ) ) {
            // if a redirect_to is set, honor it
            wp_safe_redirect( $_POST['redirect_to'] );
            exit();
        }

        // if there is an error already, let it do it's thing
        if ( $errors->get_error_code() ) {
            return $errors;
        }

        $message = nua_default_registration_complete_message();
        $message = nua_do_email_tags( $message, array(
            'context' => 'pending_message',
        ) );
        $message = apply_filters( 'new_user_approve_pending_message', $message );

        $errors->add( 'registration_required', $message, 'message' );

        $success_message = __( 'Registration successful.', 'new-user-approve' );
        $success_message = apply_filters( 'new_user_approve_registration_message', $success_message );

        login_header( __( 'Pending Approval', 'new-user-approve' ), '<p class="message register">' . $success_message . '</p>', $errors );
        login_footer();

        // an exit is necessary here so the normal process for user registration doesn't happen
        exit();
    }

    /**
     * Only give a user their password if they have been approved
     *
     * @uses lostpassword_post
     */
    public function lost_password() {
        $is_email = strpos( $_POST['user_login'], '@' );
        if ( $is_email === false ) {
            $username = sanitize_user( $_POST['user_login'] );
            $user_data = get_user_by( 'login', trim( $username ) );
        } else {
            $email = is_email( $_POST['user_login'] );
            $user_data = get_user_by( 'email', $email );
        }

        if ( $user_data->pw_user_status && $user_data->pw_user_status != 'approved' ) {
            wp_redirect( 'wp-login.php' );
            exit();
        }
    }

    /**
     * Add message to login page saying registration is required.
     *
     * @uses login_message
     * @param string $message
     * @return string
     */
    public function welcome_user( $message ) {
        if ( !isset( $_GET['action'] ) ) {
            $welcome = nua_default_welcome_message();
            $welcome = nua_do_email_tags( $welcome, array(
                'context' => 'welcome_message',
            ) );
            $welcome = apply_filters( 'new_user_approve_welcome_message', $welcome );

            if ( !empty( $welcome ) ) {
                $message .= '<p class="message register">' . $welcome . '</p>';
            }
        }

        if ( isset( $_GET['action'] ) && $_GET['action'] == 'register' && !$_POST ) {
            $instructions = nua_default_registration_message();
            $instructions = nua_do_email_tags( $instructions, array(
                'context' => 'registration_message',
            ) );
            $instructions = apply_filters( 'new_user_approve_register_instructions', $instructions );

            if ( !empty( $instructions ) ) {
                $message .= '<p class="message register">' . $instructions . '</p>';
            }
        }

        return $message;
    }

    /**
     * Give the user a status
     *
     * @uses user_register
     * @param int $user_id
     */
    public function add_user_status( $user_id ) {
        $status = 'pending';

        // This check needs to happen when a user is created in the admin
        if ( isset( $_REQUEST['action'] ) && 'createuser' == $_REQUEST['action'] ) {
            $status = 'approved';
        }

        $status = apply_filters( 'new_user_approve_default_status', $status, $user_id );

        update_user_meta( $user_id, 'pw_user_status', $status );
    }

    /**
     * Add error codes to shake the login form on failure
     *
     * @uses shake_error_codes
     * @param $error_codes
     * @return array
     */
    public function failure_shake( $error_codes ) {
        $error_codes[] = 'pending_approval';
        $error_codes[] = 'denied_access';

        return $error_codes;
    }

    /**
     * After a user successfully logs in, record in user meta. This will only be recorded
     * one time. The password will not be reset after a successful login.
     *
     * @uses wp_login
     * @param $user_login
     * @param $user
     */
    public function login_user( $user_login, $user = null ) {
        if ( $user != null && is_object( $user ) ) {
            if ( ! get_user_meta( $user->ID, 'pw_new_user_approve_has_signed_in' ) ) {
                add_user_meta( $user->ID, 'pw_new_user_approve_has_signed_in', time() );
            }
        }
    }
} // End Class

function pw_new_user_approve() {
    return pw_new_user_approve::instance();
}

pw_new_user_approve();