index of /home/thefkyzp/hulmvisaadvisor.com/wp-content/plugins/presto-player/inc/

File: /home/thefkyzp/hulmvisaadvisor.com/wp-content/plugins/presto-player/inc/Files.php
<?php

namespace PrestoPlayer;

use PrestoPlayer\Attachment;

class Files {

	/**
	 * Allowed ip addresses to private folder
	 *
	 * @var array
	 */
	protected $allowed_ips = array();

	/**
	 * Privat folder name
	 *
	 * @var string
	 */
	protected $private_folder = 'presto-player-private';

	/**
	 * Store allowed ips and let user filter private folder
	 */
	public function __construct() {
		$this->allowed_ips    = include PRESTO_PLAYER_PLUGIN_DIR . '/inc/Libraries/BunnyCDNIPs.php';
		$this->private_folder = apply_filters( 'presto_player_private_foldername', $this->private_folder );
	}

	public function getAllowedIPs() {
		return $this->allowed_ips;
	}

	/**
	 * Register actions and filters
	 *
	 * @return void
	 */
	public function register() {
		add_filter( 'upload_dir', array( $this, 'mediaUploadFolder' ) );
		add_filter( 'wp_prepare_attachment_for_js', array( $this, 'galleryLabel' ) );
		add_filter( 'wp_generate_attachment_metadata', array( $this, 'privateMeta' ), 10, 2 );
		add_action( 'ajax_query_attachments_args', array( $this, 'hidePrivate' ) );

		return $this;
	}

	/**
	 * Gets a public or private type
	 *
	 * @return string
	 */
	public function getVideoType() {
		$query = array();
		$url   = wp_get_raw_referer();
		$parts = parse_url( $url );
		isset( $parts['query'] ) ? parse_str( $parts['query'], $query ) : '';
		return isset( $query['presto_video_type'] ) ? $query['presto_video_type'] : '';
	}

	/**
	 * Hides external attachment items from ajax query
	 *
	 * @param array $query
	 * @return array
	 */
	public function hideAjaxExternalVideos( $query ) {
		$query['meta_query'] = array(
			'relation' => 'OR',
			array(
				'key'     => 'presto_external_id',
				'compare' => 'NOT EXISTS', // works!
			),
		);

		return $query;
	}

	/**
	 * Hide external videos on attachment page
	 *
	 * @param \WP_Query $query
	 * @return void
	 */
	public function hideExternalVideos( $query ) {
		global $pagenow;

		// disable on uploads page
		if ( $pagenow !== 'upload.php' ) {
			return;
		}

		// allow filter to fetch
		if ( apply_filters( 'presto_player_get_external_attachments', false ) ) {
			return;
		}

		$query->set(
			'meta_query',
			array(
				'relation' => 'OR',
				array(
					'key'     => 'presto_external_id',
					'compare' => 'NOT EXISTS', // works!
					'value'   => '', // This is ignored, but is necessary...
				),
			)
		);
	}

	/**
	 * Hides private/public items based on video type query
	 *
	 * @param array $query
	 * @return array
	 */
	public function hidePrivate( $query ) {
		$type = $this->getVideoType();

		switch ( $type ) {
			case 'public': // public only, dont show private
				$query['meta_query'] = array(
					array(
						'relation' => 'AND',
						array(
							'key'     => 'presto_external_id',
							'compare' => 'NOT EXISTS', // works!
							'value'   => '', // This is ignored, but is necessary...
						),
						array(
							'relation' => 'OR',
							array(
								'key'     => 'presto-private-video',
								'compare' => 'NOT EXISTS', // works!
								'value'   => '', // This is ignored, but is necessary...
							),
							array(
								'key'   => 'presto-private-video',
								'value' => false,
							),
						),
					),
				);
				break;
			case 'private': // private only
				$query['meta_query'] = array(
					array(
						'relation' => 'AND',
						array(
							'key'     => 'presto_external_id',
							'compare' => 'NOT EXISTS', // works!
							'value'   => '', // This is ignored, but is necessary...
						),
						array(
							'key'   => 'presto-private-video',
							'value' => true,
						),
					),
				);
				break;
		}

		return $query;
	}

	/**
	 * Add meta data to attachment so WP knows it's private
	 *
	 * @param array $data
	 * @return void
	 */
	public function privateMeta( $data, $id ) {
		if ( Attachment::isPrivate( $id ) ) {
			update_post_meta( $id, 'presto-private-video', true );
		}

		return $data;
	}


	/**
	 * Change media uploader folder only in case of private files
	 *
	 * @param array $data
	 * @return array
	 */
	public function mediaUploadFolder( $data ) {
		if ( $this->getVideoType() === 'private' ) {
			$data['path']   = $data['basedir'] . '/' . $this->private_folder;
			$data['url']    = $data['baseurl'] . '/' . $this->private_folder;
			$data['subdir'] = $this->private_folder;
		}

		return $data;
	}

	/**
	 * If the media is into private folder change response to show
	 */
	public function galleryLabel( $response ) {
		if ( strpos( $response['url'], $this->private_folder ) !== false || strpos( $response['url'], 'video-src' ) !== false || strpos( $response['url'], 'presto-player-token' ) !== false ) {
			$response['filename'] = __( 'Private: ', 'presto-player' ) . $response['filename'];
		}

		return $response;
	}

	/**
	 * Adds the private folder
	 *
	 * @return void
	 */
	public function addPrivateFolder() {
		\WP_Filesystem();
		global $wp_filesystem;

		$private_folder = $this->makeFolder( $wp_filesystem, apply_filters( 'presto_player_private_folder_name', $this->private_folder ) );
		$this->setHtaccess( $wp_filesystem, $private_folder );

		if ( ! empty( $wp_filesystem->errors->errors ) ) {
			add_action( 'admin_notices', array( $this, 'errorNotice' ) );
		}
	}

	/**
	 * Show an error notice if we can't create the priate folder
	 *
	 * @return void
	 */
	public function errorNotice() {
		$class   = 'notice notice-error';
		$message = __( 'Irks! Error when creating a new private folder for private media', 'presto-player' );

		printf( '<div class="%1$s"><p>%2$s</p></div>', esc_attr( $class ), esc_html( $message ) );
	}

	/**
	 * Makes our custom folder in the .htaccess directory
	 *
	 * @param \WP_Filesystem $wp_filesystem
	 * @param string         $folder_name
	 * @return void
	 */
	private function makeFolder( $wp_filesystem, $folder_name ) {
		$wp_upload_dir  = wp_upload_dir();
		$private_folder = trailingslashit( $wp_upload_dir['basedir'] ) . $folder_name;
		$wp_filesystem->mkdir( $private_folder );

		return $private_folder;
	}

	/**
	 * Sets htaccess rules in the new private folder
	 *
	 * @param \WP_Filesystem $wp_filesystem
	 * @param string         $private_folder
	 * @return void
	 */
	private function setHtaccess( $wp_filesystem, $private_folder ) {
		$file = trailingslashit( $private_folder ) . '.htaccess';
		$wp_filesystem->put_contents( $file, $this->return_htaccess_file_content(), FS_CHMOD_FILE );
	}

	public function makeIPWhiteList() {
		$out = '';
		foreach ( $this->allowed_ips as $ip ) {
			$out .= "allow from $ip \n";
		}
		return $out;
	}

	/**
	 * Htaccess configuration
	 *
	 * @return string (heredoc)
	 */
	private function return_htaccess_file_content() {
		$list = $this->makeIPWhitelist();
		return <<<END
# Deny access to everything by default
Order Deny,Allow
deny from all
$list
# Deny access to sub directory
<Files subdirectory/*>
    deny from all
    $list
</Files>
END;
	}
}