Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3049510

Timestamp:

03/12/2024 06:07:25 AM (22 months ago)

Author:

iqbalrony

Message:

Releasing version 1.0.5

Location:

wp-user-switch

Files:

: 21 added
: 6 edited

tags/1.0.5 (added)
tags/1.0.5/README.md (added)
tags/1.0.5/assets (added)
tags/1.0.5/assets/css (added)
tags/1.0.5/assets/css/admin-main.css (added)
tags/1.0.5/assets/css/main.css (added)
tags/1.0.5/assets/images (added)
tags/1.0.5/assets/images/front-icon.png (added)
tags/1.0.5/assets/images/icon.png (added)
tags/1.0.5/assets/js (added)
tags/1.0.5/assets/js/main.js (added)
tags/1.0.5/inc (added)
tags/1.0.5/inc/enqueue_scripts.php (added)
tags/1.0.5/inc/functions.php (added)
tags/1.0.5/inc/user-switch.php (added)
tags/1.0.5/index.php (added)
tags/1.0.5/readme.txt (added)
tags/1.0.5/templates (added)
tags/1.0.5/templates/admin.php (added)
tags/1.0.5/templates/settings.php (added)
tags/1.0.5/wp-user-switch.php (added)
trunk/inc/enqueue_scripts.php (modified) (2 diffs)
trunk/inc/functions.php (modified) (1 diff)
trunk/inc/user-switch.php (modified) (2 diffs)
trunk/readme.txt (modified) (2 diffs)
trunk/templates/settings.php (modified) (2 diffs)
trunk/wp-user-switch.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

wp-user-switch/trunk/inc/enqueue_scripts.php

-                      r2921182
+                      r3049510
 add_action('admin_enqueue_scripts', 'wpus_admin_scripts');
 function wpus_admin_scripts() {
+    wp_enqueue_style('wpus-admin-main-css', wpus_plugin_url('/assets/css/admin-main.css'), '', '');
+    wp_enqueue_style(
+        'wpus-admin-main-css',
+        wpus_plugin_url('/assets/css/admin-main.css'),
+        [],
+        WP_USERSWITCH_VERSION
+    );
+    wp_localize_script('jquery','wpus_localize',array(
+        'wpus_nonce' => wp_create_nonce(),
+    ));
+    wp_localize_script(
+        'jquery',
+        'wpus_localize',
+        [
+            'wpus_nonce' => wp_create_nonce(),
+        ]
+    );
+}
 …
 add_action('wp_enqueue_scripts', 'wpus_scripts');
 function wpus_scripts() {
+    wp_enqueue_style('wpus-main-css', wpus_plugin_url('/assets/css/main.css'), '', '');
+    wp_enqueue_script('wpus-main-js', wpus_plugin_url('/assets/js/main.js'), array('jquery'), '', true);
+    wp_enqueue_style(
+        'wpus-main-css',
+        wpus_plugin_url('/assets/css/main.css'),
+        [],
+        WP_USERSWITCH_VERSION
+    );
+    wp_enqueue_script(
+        'wpus-main-js',
+        wpus_plugin_url('/assets/js/main.js'),
+        ['jquery'],
+        WP_USERSWITCH_VERSION,
+        true
+    );
+}

wp-user-switch/trunk/inc/functions.php

r2936894	r3049510
91	91	?>
92	92	<li>
93		<a href="<?php echo esc_url( $switch_url ); ?>"><?php e~~sc_html_e~~( $user->data->display_name ); ?></a>
	93	<a href="<?php echo esc_url( $switch_url ); ?>"><?php echo esc_html( $user->data->display_name ); ?></a>
94	94	</li>
95	95	<?php

wp-user-switch/trunk/inc/user-switch.php

-                      r2936894
+                      r3049510
      */
     public function user_switch () {
+        if ( is_user_logged_in() ) {
+        if ( is_user_logged_in() && wpus_allow_user_to_admin_bar_menu() != false ) {
             if ( isset( $_REQUEST['wpus_username'] ) && ! empty( $_REQUEST['wpus_username'] ) && isset( $_REQUEST['wpus_userid'] ) && ! empty( $_REQUEST['wpus_userid'] ) ) {
+                if ( empty( $_REQUEST['wpus_nonce'] ) ) return;
+                if ( ! wp_verify_nonce( $_REQUEST['wpus_nonce'], 'wp_user_switch_req' ) ) return;
                 $username = sanitize_user( $_REQUEST['wpus_username'] );
                 $userid = esc_html( $_REQUEST['wpus_userid'] );
 …
                 if ( $userid != $user_id ) return;
-                if ( empty( $_REQUEST['wpus_nonce'] ) ) return;
-                if ( ! wp_verify_nonce( $_REQUEST['wpus_nonce'], 'wp_user_switch_req' ) ) return;
                 wp_set_current_user( $user_id, $username );
                 wp_set_auth_cookie( $user_id );

wp-user-switch/trunk/readme.txt

-                      r2936894
+                      r3049510
 Plugin Name: WP User Switch
 Contributors: iqbalrony
 Version: 1.0.4
+Version: 1.0.5
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 == Changelog ==
+= 1.0.5
+- Fix: Security improvement and bug fixing
 = 1.0.4

wp-user-switch/trunk/templates/settings.php

-                      r2936894
+                      r3049510
     die;
+}
 if ( isset( $_POST['wpus_allow_users_submit'] ) && $_POST['wpus_allow_users_submit'] && wp_verify_nonce( $_POST['wpus_allow_users_nonce'], 'wpus_allow_users_nonce' ) ) {
+if ( isset( $_POST['wpus_allow_users_nonce'] ) && wp_verify_nonce( $_POST['wpus_allow_users_nonce'], 'wpus_allow_users_nonce' ) && isset( $_POST['wpus_allow_users_submit'] ) && $_POST['wpus_allow_users_submit'] ) {
     if ( isset( $_POST['wpus_allow_users'] ) && ! empty( $_POST['wpus_allow_users'] ) && is_array( $_POST['wpus_allow_users'] ) ) {
             $allow_users = array();
 …
                                      <label>
                                      <span class="username">
+                                         <input type="checkbox" name="wpus_allow_users[<?php echo $i; ?>]"
+                                                value="<?php echo sanitize_user( $user->data->user_login ); ?>" <?php echo in_array( $user->data->user_login, $role ) == true ? __( 'checked', 'user-switch' ) : ''; ?>><?php echo sanitize_user( $user->data->user_login ); ?>
+                                         <input type="checkbox" name="wpus_allow_users[<?php echo esc_html($i); ?>]"
+                                                value="<?php echo sanitize_user( $user->data->user_login ); ?>" <?php echo in_array( $user->data->user_login, $role ) == true ? esc_html( 'checked' ) : ''; ?>>
+                                                <?php echo sanitize_user( $user->data->user_login ); ?>
                                      </span>
                                      </label>

wp-user-switch/trunk/wp-user-switch.php

-                      r2936894
+                      r3049510
  * Author: IqbalRony
  * Author URI: http://www.iqbalrony.com
  * Version: 1.0.4
+ * Version: 1.0.5
  * License: GPLv2 or later
  * License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 if (!defined('ABSPATH')) {
     die;
+}
+/**
+ * Define plugin version
+ */
+if (!defined('WP_USERSWITCH_VERSION')) {
+    define('WP_USERSWITCH_VERSION', '1.0.5');
+}
 /**

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 3049510

Legend:

wp-user-switch/trunk/inc/enqueue_scripts.php

wp-user-switch/trunk/inc/functions.php

wp-user-switch/trunk/inc/user-switch.php

wp-user-switch/trunk/readme.txt

wp-user-switch/trunk/templates/settings.php

wp-user-switch/trunk/wp-user-switch.php

Download in other formats: