| [ Index ] |
PHP Cross Reference of WordPress Trunk (Updated Daily) |
[Summary view] [Print] [Text view]
1 <?php 2 /** 3 * Administration: Community Events class. 4 * 5 * @package WordPress 6 * @subpackage Administration 7 * @since 4.8.0 8 */ 9 10 /** 11 * Class WP_Community_Events. 12 * 13 * A client for api.wordpress.org/events. 14 * 15 * @since 4.8.0 16 */ 17 #[AllowDynamicProperties] 18 class WP_Community_Events { 19 /** 20 * ID for a WordPress user account. 21 * 22 * @since 4.8.0 23 * 24 * @var int 25 */ 26 protected $user_id = 0; 27 28 /** 29 * Stores location data for the user. 30 * 31 * @since 4.8.0 32 * 33 * @var false|array 34 */ 35 protected $user_location = false; 36 37 /** 38 * Constructor for WP_Community_Events. 39 * 40 * @since 4.8.0 41 * 42 * @param int $user_id WP user ID. 43 * @param false|array $user_location { 44 * Stored location data for the user. false to pass no location. 45 * 46 * @type string $description The name of the location 47 * @type string $latitude The latitude in decimal degrees notation, without the degree 48 * symbol. e.g.: 47.615200. 49 * @type string $longitude The longitude in decimal degrees notation, without the degree 50 * symbol. e.g.: -122.341100. 51 * @type string $country The ISO 3166-1 alpha-2 country code. e.g.: BR 52 * } 53 */ 54 public function __construct( $user_id, $user_location = false ) { 55 $this->user_id = absint( $user_id ); 56 $this->user_location = $user_location; 57 } 58 59 /** 60 * Gets data about events near a particular location. 61 * 62 * Cached events will be immediately returned if the `user_location` property 63 * is set for the current user, and cached events exist for that location. 64 * 65 * Otherwise, this method sends a request to the w.org Events API with location 66 * data. The API will send back a recognized location based on the data, along 67 * with nearby events. 68 * 69 * The browser's request for events is proxied with this method, rather 70 * than having the browser make the request directly to api.wordpress.org, 71 * because it allows results to be cached server-side and shared with other 72 * users and sites in the network. This makes the process more efficient, 73 * since increasing the number of visits that get cached data means users 74 * don't have to wait as often; if the user's browser made the request 75 * directly, it would also need to make a second request to WP in order to 76 * pass the data for caching. Having WP make the request also introduces 77 * the opportunity to anonymize the IP before sending it to w.org, which 78 * mitigates possible privacy concerns. 79 * 80 * @since 4.8.0 81 * @since 5.5.2 Response no longer contains formatted date field. They're added 82 * in `wp.communityEvents.populateDynamicEventFields()` now. 83 * 84 * @param string $location_search Optional. City name to help determine the location. 85 * e.g., "Seattle". Default empty string. 86 * @param string $timezone Optional. Timezone to help determine the location. 87 * Default empty string. 88 * @return array|WP_Error A WP_Error on failure; an array with location and events on 89 * success. 90 */ 91 public function get_events( $location_search = '', $timezone = '' ) { 92 $cached_events = $this->get_cached_events(); 93 94 if ( ! $location_search && $cached_events ) { 95 return $cached_events; 96 } 97 98 // Include an unmodified $wp_version. 99 require ABSPATH . WPINC . '/version.php'; 100 101 $api_url = 'http://api.wordpress.org/events/1.0/'; 102 $request_args = $this->get_request_args( $location_search, $timezone ); 103 $request_args['user-agent'] = 'WordPress/' . $wp_version . '; ' . home_url( '/' ); 104 105 if ( wp_http_supports( array( 'ssl' ) ) ) { 106 $api_url = set_url_scheme( $api_url, 'https' ); 107 } 108 109 $response = wp_remote_get( $api_url, $request_args ); 110 $response_code = wp_remote_retrieve_response_code( $response ); 111 $response_body = json_decode( wp_remote_retrieve_body( $response ), true ); 112 $response_error = null; 113 114 if ( is_wp_error( $response ) ) { 115 $response_error = $response; 116 } elseif ( 200 !== $response_code ) { 117 $response_error = new WP_Error( 118 'api-error', 119 /* translators: %d: Numeric HTTP status code, e.g. 400, 403, 500, 504, etc. */ 120 sprintf( __( 'Invalid API response code (%d).' ), $response_code ) 121 ); 122 } elseif ( ! isset( $response_body['location'], $response_body['events'] ) ) { 123 $response_error = new WP_Error( 124 'api-invalid-response', 125 isset( $response_body['error'] ) ? $response_body['error'] : __( 'Unknown API error.' ) 126 ); 127 } 128 129 if ( is_wp_error( $response_error ) ) { 130 return $response_error; 131 } else { 132 $expiration = false; 133 134 if ( isset( $response_body['ttl'] ) ) { 135 $expiration = $response_body['ttl']; 136 unset( $response_body['ttl'] ); 137 } 138 139 /* 140 * The IP in the response is usually the same as the one that was sent 141 * in the request, but in some cases it is different. In those cases, 142 * it's important to reset it back to the IP from the request. 143 * 144 * For example, if the IP sent in the request is private (e.g., 192.168.1.100), 145 * then the API will ignore that and use the corresponding public IP instead, 146 * and the public IP will get returned. If the public IP were saved, though, 147 * then get_cached_events() would always return `false`, because the transient 148 * would be generated based on the public IP when saving the cache, but generated 149 * based on the private IP when retrieving the cache. 150 */ 151 if ( ! empty( $response_body['location']['ip'] ) ) { 152 $response_body['location']['ip'] = $request_args['body']['ip']; 153 } 154 155 /* 156 * The API doesn't return a description for latitude/longitude requests, 157 * but the description is already saved in the user location, so that 158 * one can be used instead. 159 */ 160 if ( $this->coordinates_match( $request_args['body'], $response_body['location'] ) && empty( $response_body['location']['description'] ) ) { 161 $response_body['location']['description'] = $this->user_location['description']; 162 } 163 164 /* 165 * Store the raw response, because events will expire before the cache does. 166 * The response will need to be processed every page load. 167 */ 168 $this->cache_events( $response_body, $expiration ); 169 170 $response_body['events'] = $this->trim_events( $response_body['events'] ); 171 172 return $response_body; 173 } 174 } 175 176 /** 177 * Builds an array of args to use in an HTTP request to the w.org Events API. 178 * 179 * @since 4.8.0 180 * 181 * @param string $search Optional. City search string. Default empty string. 182 * @param string $timezone Optional. Timezone string. Default empty string. 183 * @return array The request args. 184 */ 185 protected function get_request_args( $search = '', $timezone = '' ) { 186 $args = array( 187 'number' => 5, // Get more than three in case some get trimmed out. 188 'ip' => self::get_unsafe_client_ip(), 189 ); 190 191 /* 192 * Include the minimal set of necessary arguments, in order to increase the 193 * chances of a cache-hit on the API side. 194 */ 195 if ( empty( $search ) && isset( $this->user_location['latitude'], $this->user_location['longitude'] ) ) { 196 $args['latitude'] = $this->user_location['latitude']; 197 $args['longitude'] = $this->user_location['longitude']; 198 } else { 199 $args['locale'] = get_user_locale( $this->user_id ); 200 201 if ( $timezone ) { 202 $args['timezone'] = $timezone; 203 } 204 205 if ( $search ) { 206 $args['location'] = $search; 207 } 208 } 209 210 // Wrap the args in an array compatible with the second parameter of `wp_remote_get()`. 211 return array( 212 'body' => $args, 213 ); 214 } 215 216 /** 217 * Determines the user's actual IP address and attempts to partially 218 * anonymize an IP address by converting it to a network ID. 219 * 220 * Geolocating the network ID usually returns a similar location as the 221 * actual IP, but provides some privacy for the user. 222 * 223 * $_SERVER['REMOTE_ADDR'] cannot be used in all cases, such as when the user 224 * is making their request through a proxy, or when the web server is behind 225 * a proxy. In those cases, $_SERVER['REMOTE_ADDR'] is set to the proxy address rather 226 * than the user's actual address. 227 * 228 * Modified from https://stackoverflow.com/a/2031935/450127, MIT license. 229 * Modified from https://github.com/geertw/php-ip-anonymizer, MIT license. 230 * 231 * SECURITY WARNING: This function is _NOT_ intended to be used in 232 * circumstances where the authenticity of the IP address matters. This does 233 * _NOT_ guarantee that the returned address is valid or accurate, and it can 234 * be easily spoofed. 235 * 236 * @since 4.8.0 237 * 238 * @return string|false The anonymized address on success; the given address 239 * or false on failure. 240 */ 241 public static function get_unsafe_client_ip() { 242 $client_ip = false; 243 244 // In order of preference, with the best ones for this purpose first. 245 $address_headers = array( 246 'HTTP_CLIENT_IP', 247 'HTTP_X_FORWARDED_FOR', 248 'HTTP_X_FORWARDED', 249 'HTTP_X_CLUSTER_CLIENT_IP', 250 'HTTP_FORWARDED_FOR', 251 'HTTP_FORWARDED', 252 'REMOTE_ADDR', 253 ); 254 255 foreach ( $address_headers as $header ) { 256 if ( array_key_exists( $header, $_SERVER ) ) { 257 /* 258 * HTTP_X_FORWARDED_FOR can contain a chain of comma-separated 259 * addresses. The first one is the original client. It can't be 260 * trusted for authenticity, but we don't need to for this purpose. 261 */ 262 $address_chain = explode( ',', $_SERVER[ $header ] ); 263 $client_ip = trim( $address_chain[0] ); 264 265 break; 266 } 267 } 268 269 if ( ! $client_ip ) { 270 return false; 271 } 272 273 $anon_ip = wp_privacy_anonymize_ip( $client_ip, true ); 274 275 if ( '0.0.0.0' === $anon_ip || '::' === $anon_ip ) { 276 return false; 277 } 278 279 return $anon_ip; 280 } 281 282 /** 283 * Test if two pairs of latitude/longitude coordinates match each other. 284 * 285 * @since 4.8.0 286 * 287 * @param array $a The first pair, with indexes 'latitude' and 'longitude'. 288 * @param array $b The second pair, with indexes 'latitude' and 'longitude'. 289 * @return bool True if they match, false if they don't. 290 */ 291 protected function coordinates_match( $a, $b ) { 292 if ( ! isset( $a['latitude'], $a['longitude'], $b['latitude'], $b['longitude'] ) ) { 293 return false; 294 } 295 296 return $a['latitude'] === $b['latitude'] && $a['longitude'] === $b['longitude']; 297 } 298 299 /** 300 * Generates a transient key based on user location. 301 * 302 * This could be reduced to a one-liner in the calling functions, but it's 303 * intentionally a separate function because it's called from multiple 304 * functions, and having it abstracted keeps the logic consistent and DRY, 305 * which is less prone to errors. 306 * 307 * @since 4.8.0 308 * 309 * @param array $location Should contain 'latitude' and 'longitude' indexes. 310 * @return string|false Transient key on success, false on failure. 311 */ 312 protected function get_events_transient_key( $location ) { 313 $key = false; 314 315 if ( isset( $location['ip'] ) ) { 316 $key = 'community-events-' . md5( $location['ip'] ); 317 } elseif ( isset( $location['latitude'], $location['longitude'] ) ) { 318 $key = 'community-events-' . md5( $location['latitude'] . $location['longitude'] ); 319 } 320 321 return $key; 322 } 323 324 /** 325 * Caches an array of events data from the Events API. 326 * 327 * @since 4.8.0 328 * 329 * @param array $events Response body from the API request. 330 * @param int|false $expiration Optional. Amount of time to cache the events. Defaults to false. 331 * @return bool true if events were cached; false if not. 332 */ 333 protected function cache_events( $events, $expiration = false ) { 334 $set = false; 335 $transient_key = $this->get_events_transient_key( $events['location'] ); 336 $cache_expiration = $expiration ? absint( $expiration ) : HOUR_IN_SECONDS * 12; 337 338 if ( $transient_key ) { 339 $set = set_site_transient( $transient_key, $events, $cache_expiration ); 340 } 341 342 return $set; 343 } 344 345 /** 346 * Gets cached events. 347 * 348 * @since 4.8.0 349 * @since 5.5.2 Response no longer contains formatted date field. They're added 350 * in `wp.communityEvents.populateDynamicEventFields()` now. 351 * 352 * @return array|false An array containing `location` and `events` items 353 * on success, false on failure. 354 */ 355 public function get_cached_events() { 356 $transient_key = $this->get_events_transient_key( $this->user_location ); 357 if ( ! $transient_key ) { 358 return false; 359 } 360 361 $cached_response = get_site_transient( $transient_key ); 362 if ( isset( $cached_response['events'] ) ) { 363 $cached_response['events'] = $this->trim_events( $cached_response['events'] ); 364 } 365 366 return $cached_response; 367 } 368 369 /** 370 * Adds formatted date and time items for each event in an API response. 371 * 372 * This has to be called after the data is pulled from the cache, because 373 * the cached events are shared by all users. If it was called before storing 374 * the cache, then all users would see the events in the localized data/time 375 * of the user who triggered the cache refresh, rather than their own. 376 * 377 * @since 4.8.0 378 * @deprecated 5.6.0 No longer used in core. 379 * 380 * @param array $response_body The response which contains the events. 381 * @return array The response with dates and times formatted. 382 */ 383 protected function format_event_data_time( $response_body ) { 384 _deprecated_function( 385 __METHOD__, 386 '5.5.2', 387 'This is no longer used by core, and only kept for backward compatibility.' 388 ); 389 390 if ( isset( $response_body['events'] ) ) { 391 foreach ( $response_body['events'] as $key => $event ) { 392 $timestamp = strtotime( $event['date'] ); 393 394 /* 395 * The `date_format` option is not used because it's important 396 * in this context to keep the day of the week in the formatted date, 397 * so that users can tell at a glance if the event is on a day they 398 * are available, without having to open the link. 399 */ 400 /* translators: Date format for upcoming events on the dashboard. Include the day of the week. See https://www.php.net/manual/datetime.format.php */ 401 $formatted_date = date_i18n( __( 'l, M j, Y' ), $timestamp ); 402 $formatted_time = date_i18n( get_option( 'time_format' ), $timestamp ); 403 404 if ( isset( $event['end_date'] ) ) { 405 $end_timestamp = strtotime( $event['end_date'] ); 406 $formatted_end_date = date_i18n( __( 'l, M j, Y' ), $end_timestamp ); 407 408 if ( 'meetup' !== $event['type'] && $formatted_end_date !== $formatted_date ) { 409 /* translators: Upcoming events month format. See https://www.php.net/manual/datetime.format.php */ 410 $start_month = date_i18n( _x( 'F', 'upcoming events month format' ), $timestamp ); 411 $end_month = date_i18n( _x( 'F', 'upcoming events month format' ), $end_timestamp ); 412 413 if ( $start_month === $end_month ) { 414 $formatted_date = sprintf( 415 /* translators: Date string for upcoming events. 1: Month, 2: Starting day, 3: Ending day, 4: Year. */ 416 __( '%1$s %2$d–%3$d, %4$d' ), 417 $start_month, 418 /* translators: Upcoming events day format. See https://www.php.net/manual/datetime.format.php */ 419 date_i18n( _x( 'j', 'upcoming events day format' ), $timestamp ), 420 date_i18n( _x( 'j', 'upcoming events day format' ), $end_timestamp ), 421 /* translators: Upcoming events year format. See https://www.php.net/manual/datetime.format.php */ 422 date_i18n( _x( 'Y', 'upcoming events year format' ), $timestamp ) 423 ); 424 } else { 425 $formatted_date = sprintf( 426 /* translators: Date string for upcoming events. 1: Starting month, 2: Starting day, 3: Ending month, 4: Ending day, 5: Year. */ 427 __( '%1$s %2$d – %3$s %4$d, %5$d' ), 428 $start_month, 429 date_i18n( _x( 'j', 'upcoming events day format' ), $timestamp ), 430 $end_month, 431 date_i18n( _x( 'j', 'upcoming events day format' ), $end_timestamp ), 432 date_i18n( _x( 'Y', 'upcoming events year format' ), $timestamp ) 433 ); 434 } 435 436 $formatted_date = wp_maybe_decline_date( $formatted_date, 'F j, Y' ); 437 } 438 } 439 440 $response_body['events'][ $key ]['formatted_date'] = $formatted_date; 441 $response_body['events'][ $key ]['formatted_time'] = $formatted_time; 442 } 443 } 444 445 return $response_body; 446 } 447 448 /** 449 * Prepares the event list for presentation. 450 * 451 * Discards expired events, and makes WordCamps "sticky." Attendees need more 452 * advanced notice about WordCamps than they do for meetups, so camps should 453 * appear in the list sooner. If a WordCamp is coming up, the API will "stick" 454 * it in the response, even if it wouldn't otherwise appear. When that happens, 455 * the event will be at the end of the list, and will need to be moved into a 456 * higher position, so that it doesn't get trimmed off. 457 * 458 * @since 4.8.0 459 * @since 4.9.7 Stick a WordCamp to the final list. 460 * @since 5.5.2 Accepts and returns only the events, rather than an entire HTTP response. 461 * @since 6.0.0 Decode HTML entities from the event title. 462 * 463 * @param array $events The events that will be prepared. 464 * @return array The response body with events trimmed. 465 */ 466 protected function trim_events( array $events ) { 467 $future_events = array(); 468 469 foreach ( $events as $event ) { 470 /* 471 * The API's `date` and `end_date` fields are in the _event's_ local timezone, but UTC is needed so 472 * it can be converted to the _user's_ local time. 473 */ 474 $end_time = (int) $event['end_unix_timestamp']; 475 476 if ( time() < $end_time ) { 477 // Decode HTML entities from the event title. 478 $event['title'] = html_entity_decode( $event['title'], ENT_QUOTES, 'UTF-8' ); 479 480 array_push( $future_events, $event ); 481 } 482 } 483 484 $future_wordcamps = array_filter( 485 $future_events, 486 static function ( $wordcamp ) { 487 return 'wordcamp' === $wordcamp['type']; 488 } 489 ); 490 491 $future_wordcamps = array_values( $future_wordcamps ); // Remove gaps in indices. 492 $trimmed_events = array_slice( $future_events, 0, 3 ); 493 $trimmed_event_types = wp_list_pluck( $trimmed_events, 'type' ); 494 495 // Make sure the soonest upcoming WordCamp is pinned in the list. 496 if ( $future_wordcamps && ! in_array( 'wordcamp', $trimmed_event_types, true ) ) { 497 array_pop( $trimmed_events ); 498 array_push( $trimmed_events, $future_wordcamps[0] ); 499 } 500 501 return $trimmed_events; 502 } 503 504 /** 505 * Logs responses to Events API requests. 506 * 507 * @since 4.8.0 508 * @deprecated 4.9.0 Use a plugin instead. See #41217 for an example. 509 * 510 * @param string $message A description of what occurred. 511 * @param array $details Details that provide more context for the 512 * log entry. 513 */ 514 protected function maybe_log_events_response( $message, $details ) { 515 _deprecated_function( __METHOD__, '4.9.0' ); 516 517 if ( ! WP_DEBUG_LOG ) { 518 return; 519 } 520 521 error_log( 522 sprintf( 523 '%s: %s. Details: %s', 524 __METHOD__, 525 trim( $message, '.' ), 526 wp_json_encode( $details ) 527 ) 528 ); 529 } 530 }
title
Description
Body
title
Description
Body
title
Description
Body
title
Body
| Generated : Wed Apr 24 08:20:01 2024 | Cross-referenced by PHPXref |