forked from wp-plugins/powerpress
-
Notifications
You must be signed in to change notification settings - Fork 0
/
powerpress-feed-auth.php
97 lines (83 loc) · 3.17 KB
/
powerpress-feed-auth.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
<?php
// powerpress-feed-auth.php
function powerpress_feed_auth($feed_slug)
{
// See if a filter exists to perform the authentication...
$authenticated = apply_filters('powerpress_feed_auth', false, 'channel', $feed_slug);
if( !$authenticated )
{
$FeedSettings = get_option('powerpress_feed_'.$feed_slug);
/*
* php-cgi under Apache does not pass HTTP Basic user/pass to PHP by default
* For this workaround to work, add this line to your .htaccess file:
* RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
*/
// Workaround for HTTP Authentication with PHP running as CGI
if ( !isset($_SERVER['PHP_AUTH_USER']) && isset($_SERVER['HTTP_AUTHORIZATION'])) {
$ha = base64_decode( substr($_SERVER['HTTP_AUTHORIZATION'],6) ); // Chop off 'basic ' from the beginning of the value
if( strstr($ha, ':') ) { // Colon found, lets split it for user:password
list($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) = explode(':', $ha);
}
unset($ha);
}
if( !isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW']) ) {
powerpress_feed_auth_basic( $FeedSettings['title'] );
exit;
}
$user = $_SERVER['PHP_AUTH_USER'];
$password = $_SERVER['PHP_AUTH_PW'];
$userObj = wp_authenticate($user, $password);
if( !is_wp_error($userObj) )
{
$pilotpress = new PilotPress;
$pilotpress->load_settings();
$prolevel = 'COW Pro'; // Need them to be "COW Pro" user level
$_POST["wp-submit"] = 'jls';
$pilotpress->user_login($user, $password);
// Check membership level
if(isset( $_SESSION["user_levels"] ) && in_array( $prolevel, $_SESSION["user_levels"])) {
return; // Nice, let's continue
}
// Check capability...
//if( $userObj->has_cap( $FeedSettings['premium'] ) )
// return; // Nice, let us continue...
powerpress_feed_auth_basic( $FeedSettings['title'], __('Access Denied', 'powerpress') );
exit;
}
// If we made it this far, then there was a wp_authenticate error...
powerpress_feed_auth_basic( $FeedSettings['title'], $userObj );
exit;
}
}
function powerpress_feed_auth_basic($realm_name, $error = false )
{
if( !defined('POWERPRESS_FEED_AUTH_PRINT_WP_ERRORS') && is_wp_error($error) ) {
$error = __('Unauthorized', 'powerpress');
}
if( empty($error) ) {
$error = __('Unauthorized', 'powerpress');
}
$error_heading = (is_wp_error($error)? __('Unauthorized', 'powerpress') : $error);
$error_message = (is_wp_error($error)?$error->get_error_message(): htmlspecialchars($error) );
if( !$error )
$error = __('Unauthorized', 'powerpress');
header('HTTP/1.0 401 Unauthorized');
header('Content-Type: text/html');
header('WWW-Authenticate: Basic realm="'. str_replace('"', '', $realm_name).'"');
echo '<!DOCTYPE html>'; // HTML5!
echo "\n";
?>
<html>
<head>
<meta http-equiv="Content-Type" content="<?php bloginfo('html_type'); ?>; charset=<?php bloginfo('charset'); ?>" />
<meta name="robots" content="noindex" />
<title><?php echo htmlspecialchars($error_heading); ?></title>
</head>
<body>
<p><?php echo $error_message; ?></p>
</body>
</html>
<?php
exit;
}
// eof