enmi-conf.org: wp/wp-includes/class-wp-application-passwords.php@48c4eec2b7e6 (annotated)

18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	2	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	3	* WP_Application_Passwords class
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	4	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	5	* @package WordPress
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	6	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	7	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	8
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	9	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	10	* Class for displaying, modifying, and sanitizing application passwords.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	11	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	12	* @package WordPress
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	13	*/
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	14	#[AllowDynamicProperties]
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	15	class WP_Application_Passwords {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	16
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	17	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	18	* The application passwords user meta key.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	19	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	20	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	21	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	22	* @var string
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	23	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	24	const USERMETA_KEY_APPLICATION_PASSWORDS = '_application_passwords';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	25
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	26	/**
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	27	* The option name used to store whether application passwords are in use.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	28	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	29	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	30	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	31	* @var string
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	32	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	33	const OPTION_KEY_IN_USE = 'using_application_passwords';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	34
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	35	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	36	* The generated application password length.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	37	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	38	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	39	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	40	* @var int
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	41	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	42	const PW_LENGTH = 24;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	43
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	44	/**
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	45	* Checks if application passwords are being used by the site.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	46	*
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	47	* This returns true if at least one application password has ever been created.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	48	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	49	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	50	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	51	* @return bool
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	52	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	53	public static function is_in_use() {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	54	$network_id = get_main_network_id();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	55	return (bool) get_network_option( $network_id, self::OPTION_KEY_IN_USE );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	56	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	57
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	58	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	59	* Creates a new application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	60	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	61	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	62	* @since 5.7.0 Returns WP_Error if application name already exists.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	63	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	64	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	65	* @param array $args {
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	66	* Arguments used to create the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	67	*
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	68	* @type string $name The name of the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	69	* @type string $app_id A UUID provided by the application to uniquely identify it.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	70	* }
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	71	* @return array\|WP_Error {
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	72	* Application password details, or a WP_Error instance if an error occurs.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	73	*
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	74	* @type string $0 The unhashed generated application password.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	75	* @type array $1 {
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	76	* The details about the created password.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	77	*
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	78	* @type string $uuid The unique identifier for the application password.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	79	* @type string $app_id A UUID provided by the application to uniquely identify it.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	80	* @type string $name The name of the application password.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	81	* @type string $password A one-way hash of the password.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	82	* @type int $created Unix timestamp of when the password was created.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	83	* @type null $last_used Null.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	84	* @type null $last_ip Null.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	85	* }
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	86	* }
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	87	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	88	public static function create_new_application_password( $user_id, $args = array() ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	89	if ( ! empty( $args['name'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	90	$args['name'] = sanitize_text_field( $args['name'] );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	91	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	92
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	93	if ( empty( $args['name'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	94	return new WP_Error( 'application_password_empty_name', __( 'An application name is required to create an application password.' ), array( 'status' => 400 ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	95	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	96
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	97	if ( self::application_name_exists_for_user( $user_id, $args['name'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	98	return new WP_Error( 'application_password_duplicate_name', __( 'Each application name should be unique.' ), array( 'status' => 409 ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	99	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	100
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	101	$new_password = wp_generate_password( static::PW_LENGTH, false );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	102	$hashed_password = wp_hash_password( $new_password );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	103
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	104	$new_item = array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	105	'uuid' => wp_generate_uuid4(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	106	'app_id' => empty( $args['app_id'] ) ? '' : $args['app_id'],
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	107	'name' => $args['name'],
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	108	'password' => $hashed_password,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	109	'created' => time(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	110	'last_used' => null,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	111	'last_ip' => null,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	112	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	113
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	114	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	115	$passwords[] = $new_item;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	116	$saved = static::set_user_application_passwords( $user_id, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	117
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	118	if ( ! $saved ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	119	return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	120	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	121
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	122	$network_id = get_main_network_id();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	123	if ( ! get_network_option( $network_id, self::OPTION_KEY_IN_USE ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	124	update_network_option( $network_id, self::OPTION_KEY_IN_USE, true );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	125	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	126
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	127	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	128	* Fires when an application password is created.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	129	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	130	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	131	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	132	* @param int $user_id The user ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	133	* @param array $new_item {
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	134	* The details about the created password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	135	*
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	136	* @type string $uuid The unique identifier for the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	137	* @type string $app_id A UUID provided by the application to uniquely identify it.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	138	* @type string $name The name of the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	139	* @type string $password A one-way hash of the password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	140	* @type int $created Unix timestamp of when the password was created.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	141	* @type null $last_used Null.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	142	* @type null $last_ip Null.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	143	* }
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	144	* @param string $new_password The unhashed generated application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	145	* @param array $args {
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	146	* Arguments used to create the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	147	*
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	148	* @type string $name The name of the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	149	* @type string $app_id A UUID provided by the application to uniquely identify it.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	150	* }
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	151	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	152	do_action( 'wp_create_application_password', $user_id, $new_item, $new_password, $args );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	153
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	154	return array( $new_password, $new_item );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	155	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	156
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	157	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	158	* Gets a user's application passwords.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	159	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	160	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	161	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	162	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	163	* @return array {
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	164	* The list of app passwords.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	165	*
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	166	* @type array ...$0 {
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	167	* @type string $uuid The unique identifier for the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	168	* @type string $app_id A UUID provided by the application to uniquely identify it.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	169	* @type string $name The name of the application password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	170	* @type string $password A one-way hash of the password.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	171	* @type int $created Unix timestamp of when the password was created.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	172	* @type int\|null $last_used The Unix timestamp of the GMT date the application password was last used.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	173	* @type string\|null $last_ip The IP address the application password was last used by.
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	174	* }
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	175	* }
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	176	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	177	public static function get_user_application_passwords( $user_id ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	178	$passwords = get_user_meta( $user_id, static::USERMETA_KEY_APPLICATION_PASSWORDS, true );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	179
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	180	if ( ! is_array( $passwords ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	181	return array();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	182	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	183
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	184	$save = false;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	185
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	186	foreach ( $passwords as $i => $password ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	187	if ( ! isset( $password['uuid'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	188	$passwords[ $i ]['uuid'] = wp_generate_uuid4();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	189	$save = true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	190	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	191	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	192
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	193	if ( $save ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	194	static::set_user_application_passwords( $user_id, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	195	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	196
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	197	return $passwords;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	198	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	199
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	200	/**
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	201	* Gets a user's application password with the given UUID.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	202	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	203	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	204	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	205	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	206	* @param string $uuid The password's UUID.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	207	* @return array\|null The application password if found, null otherwise.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	208	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	209	public static function get_user_application_password( $user_id, $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	210	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	211
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	212	foreach ( $passwords as $password ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	213	if ( $password['uuid'] === $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	214	return $password;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	215	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	216	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	217
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	218	return null;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	219	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	220
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	221	/**
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	222	* Checks if an application password with the given name exists for this user.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	223	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	224	* @since 5.7.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	225	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	226	* @param int $user_id User ID.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	227	* @param string $name Application name.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	228	* @return bool Whether the provided application name exists.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	229	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	230	public static function application_name_exists_for_user( $user_id, $name ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	231	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	232
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	233	foreach ( $passwords as $password ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	234	if ( strtolower( $password['name'] ) === strtolower( $name ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	235	return true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	236	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	237	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	238
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	239	return false;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	240	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	241
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	242	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	243	* Updates an application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	244	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	245	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	246	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	247	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	248	* @param string $uuid The password's UUID.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	249	* @param array $update Information about the application password to update.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	250	* @return true\|WP_Error True if successful, otherwise a WP_Error instance is returned on error.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	251	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	252	public static function update_application_password( $user_id, $uuid, $update = array() ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	253	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	254
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	255	foreach ( $passwords as &$item ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	256	if ( $item['uuid'] !== $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	257	continue;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	258	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	259
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	260	if ( ! empty( $update['name'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	261	$update['name'] = sanitize_text_field( $update['name'] );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	262	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	263
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	264	$save = false;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	265
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	266	if ( ! empty( $update['name'] ) && $item['name'] !== $update['name'] ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	267	$item['name'] = $update['name'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	268	$save = true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	269	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	270
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	271	if ( $save ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	272	$saved = static::set_user_application_passwords( $user_id, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	273
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	274	if ( ! $saved ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	275	return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	276	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	277	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	278
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	279	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	280	* Fires when an application password is updated.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	281	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	282	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	283	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	284	* @param int $user_id The user ID.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	285	* @param array $item The updated app password details.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	286	* @param array $update The information to update.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	287	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	288	do_action( 'wp_update_application_password', $user_id, $item, $update );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	289
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	290	return true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	291	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	292
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	293	return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	294	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	295
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	296	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	297	* Records that an application password has been used.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	298	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	299	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	300	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	301	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	302	* @param string $uuid The password's UUID.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	303	* @return true\|WP_Error True if the usage was recorded, a WP_Error if an error occurs.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	304	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	305	public static function record_application_password_usage( $user_id, $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	306	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	307
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	308	foreach ( $passwords as &$password ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	309	if ( $password['uuid'] !== $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	310	continue;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	311	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	312
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	313	// Only record activity once a day.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	314	if ( $password['last_used'] + DAY_IN_SECONDS > time() ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	315	return true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	316	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	317
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	318	$password['last_used'] = time();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	319	$password['last_ip'] = $_SERVER['REMOTE_ADDR'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	320
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	321	$saved = static::set_user_application_passwords( $user_id, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	322
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	323	if ( ! $saved ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	324	return new WP_Error( 'db_error', __( 'Could not save application password.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	325	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	326
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	327	return true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	328	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	329
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	330	// Specified application password not found!
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	331	return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	332	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	333
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	334	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	335	* Deletes an application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	336	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	337	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	338	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	339	* @param int $user_id User ID.
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	340	* @param string $uuid The password's UUID.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	341	* @return true\|WP_Error Whether the password was successfully found and deleted, a WP_Error otherwise.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	342	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	343	public static function delete_application_password( $user_id, $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	344	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	345
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	346	foreach ( $passwords as $key => $item ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	347	if ( $item['uuid'] === $uuid ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	348	unset( $passwords[ $key ] );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	349	$saved = static::set_user_application_passwords( $user_id, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	350
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	351	if ( ! $saved ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	352	return new WP_Error( 'db_error', __( 'Could not delete application password.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	353	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	354
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	355	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	356	* Fires when an application password is deleted.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	357	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	358	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	359	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	360	* @param int $user_id The user ID.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	361	* @param array $item The data about the application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	362	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	363	do_action( 'wp_delete_application_password', $user_id, $item );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	364
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	365	return true;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	366	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	367	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	368
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	369	return new WP_Error( 'application_password_not_found', __( 'Could not find an application password with that id.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	370	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	371
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	372	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	373	* Deletes all application passwords for the given user.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	374	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	375	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	376	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	377	* @param int $user_id User ID.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	378	* @return int\|WP_Error The number of passwords that were deleted or a WP_Error on failure.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	379	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	380	public static function delete_all_application_passwords( $user_id ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	381	$passwords = static::get_user_application_passwords( $user_id );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	382
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	383	if ( $passwords ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	384	$saved = static::set_user_application_passwords( $user_id, array() );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	385
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	386	if ( ! $saved ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	387	return new WP_Error( 'db_error', __( 'Could not delete application passwords.' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	388	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	389
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	390	foreach ( $passwords as $item ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	391	/** This action is documented in wp-includes/class-wp-application-passwords.php */
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	392	do_action( 'wp_delete_application_password', $user_id, $item );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	393	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	394
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	395	return count( $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	396	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	397
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	398	return 0;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	399	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	400
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	401	/**
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	402	* Sets a user's application passwords.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	403	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	404	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	405	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	406	* @param int $user_id User ID.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	407	* @param array $passwords Application passwords.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	408	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	409	* @return bool
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	410	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	411	protected static function set_user_application_passwords( $user_id, $passwords ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	412	return update_user_meta( $user_id, static::USERMETA_KEY_APPLICATION_PASSWORDS, $passwords );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	413	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	414
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	415	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	416	* Sanitizes and then splits a password into smaller chunks.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	417	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	418	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	419	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	420	* @param string $raw_password The raw application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	421	* @return string The chunked password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	422	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	423	public static function chunk_password( $raw_password ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	424	$raw_password = preg_replace( '/[^a-z\d]/i', '', $raw_password );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	425
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	426	return trim( chunk_split( $raw_password, 4, ' ' ) );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	427	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	428	}

author	ymh <ymh.work@gmail.com>
	Fri, 05 Sep 2025 18:40:08 +0200
changeset 21	48c4eec2b7e6
parent 19	3d72ae0968f4
child 22	8c2e4d02f4ef
permissions	-rw-r--r--