Merge pull request #614 from CleanTalk/ee-shotrcode-to-exclude.ag

ee-shotrcode-to-exclude.ag

Author: alexandergull

lib/Cleantalk/Antispam/EmailEncoder.php …k/Antispam/EmailEncoder/EmailEncoder.phplib/Cleantalk/Antispam/EmailEncoder.php renamed to lib/Cleantalk/Antispam/EmailEncoder/EmailEncoder.php lib/Cleantalk/Antispam/EmailEncoder.php renamed to lib/Cleantalk/Antispam/EmailEncoder/EmailEncoder.php

@@ -0,0 +1,156 @@
+<?php
+
+namespace Cleantalk\Antispam\EmailEncoder;
+
+/**
+ * Exclusions to use on content during modification chunks.
+ */
+class EmailEncoderHelper
+{
+    /**
+     * Attribute names to skip content encoding contains them. Keep arrays of tag=>[attributes].
+     * @var array[]
+     */
+    private $attribute_exclusions_signs = array(
+        'input' => array('placeholder', 'value'),
+        'img' => array('alt', 'title'),
+        'div' => array('data-et-multi-view'),
+    );
+
+    /**
+     * Checking if the string contains mailto: link
+     *
+     * @param string $string
+     *
+     * @return bool
+     */
+    public function isMailto($string)
+    {
+        return strpos($string, 'mailto:') !== false;
+    }
+
+    /**
+     * Checking if the string contains tel: link
+     *
+     * @param string $string
+     *
+     * @return bool
+     */
+    public function isTelTag($string)
+    {
+        return strpos($string, 'tel:') !== false;
+    }
+
+    /**
+     * Checking if the string contains mailto: link
+     *
+     * @param array $match
+     * @param string $content
+     *
+     * @return bool
+     */
+    public function isMailtoAdditionalCopy($match, $content)
+    {
+        $position = isset($match[1]) ? (int)$match[1] : null;
+
+        if (null === $position) {
+            return false;
+        }
+
+        $cc_position = strrpos(substr($content, 0, $position), 'cc=');
+        if ( $cc_position !== false && $cc_position + 3 == $position ) {
+            return true;
+        }
+
+        $bcc_position = strrpos(substr($content, 0, $position), 'bcc=');
+        if ( $bcc_position !== false && $bcc_position + 4 == $position ) {
+            return true;
+        }
+
+        return false;
+    }
+
+    /**
+     * Checking if email in link
+     *
+     * @param array $matches
+     * @param string $content
+     *
+     * @return bool
+     */
+    public function isEmailInLink($matches, $content)
+    {
+        $email = isset($matches[0]) && is_string($matches[0]) ? $matches[0] : null;
+        $position = isset($matches[1]) ? (int)$matches[1] : null;
+
+        if (null === $position || null === $email) {
+            return false;
+        }
+
+        $href_position = strrpos(substr($content, 0, $position), 'href=');
+
+        if ( $href_position !== false && $href_position + 6 == $position ) {
+            return true;
+        }
+
+        return strpos($email, 'mailto:') !== false;
+    }
+
+    /**
+     * Check if the given email is inside a script tag
+     * @param string $email The email to check
+     * @param string $content The full content
+     * @return bool
+     */
+    public function isInsideScriptTag($email, $content)
+    {
+        // Find position of the email in content
+        $pos = strpos($content, $email);
+        if ($pos === false) {
+            return false;
+        }
+
+        // Find the last script opening tag before the email
+        $last_script_start = strrpos(substr($content, 0, $pos), '<script');
+        if ($last_script_start === false) {
+            return false;
+        }
+
+        // Find the first script closing tag after the last opening tag
+        $script_end = strpos($content, '</script>', $last_script_start);
+        if ($script_end === false) {
+            return false;
+        }
+
+        // The email is inside a script tag if its position is between the opening and closing tags
+        return ($pos > $last_script_start && $pos < $script_end);
+    }
+
+    /**
+     * Check if email is placed in the tag that has attributes of exclusions.
+     * @param string $email_match - email
+     * @param string $temp_content - email
+     * @return bool
+     */
+    public function hasAttributeExclusions($email_match, $temp_content)
+    {
+        $email_match = preg_quote($email_match);
+        foreach ( $this->attribute_exclusions_signs as $tag => $array_of_attributes ) {
+            foreach ( $array_of_attributes as $attribute ) {
+                //do not remove IDE highlighted unnecessary escape!
+                $pattern = '/<'
+                           . $tag
+                           . '+\s+[^>]*\b'
+                           . $attribute
+                           . '=((\\\')|")?[^"]*\b'
+                           . $email_match
+                           . '\b[^"]*((\\\')|")?"[^>]*>/';
+                preg_match($pattern, $temp_content, $attr_match);
+                if ( !empty($attr_match) ) {
+                    return true;
+                }
+            }
+        }
+        return false;
+    }
+}

lib/Cleantalk/Antispam/EmailEncoder/EmailEncoderHelper.php

@@ -1,6 +1,6 @@
 <?php
 
-namespace Cleantalk\Antispam;
+namespace Cleantalk\Antispam\EmailEncoder;
 
 class Encoder
 {

lib/Cleantalk/Antispam/Encoder.php …antalk/Antispam/EmailEncoder/Encoder.phplib/Cleantalk/Antispam/Encoder.php renamed to lib/Cleantalk/Antispam/EmailEncoder/Encoder.php lib/Cleantalk/Antispam/Encoder.php renamed to lib/Cleantalk/Antispam/EmailEncoder/Encoder.php

@@ -0,0 +1,230 @@
+<?php
+
+namespace Cleantalk\Antispam\EmailEncoder;
+
+use Cleantalk\ApbctWP\State;
+use Cleantalk\ApbctWP\Variables\Cookie;
+use Cleantalk\ApbctWP\Variables\Post;
+use Cleantalk\ApbctWP\Variables\Server;
+use Cleantalk\Common\TT;
+
+class ExclusionsService
+{
+    /**
+     * Keep arrays of exclusion signs in the array
+     * @var array
+     */
+    private $content_exclusions_signs = array(
+        //divi contact forms additional emails
+        array('_unique_id', 'et_pb_contact_form'),
+        //divi builder contact forms
+        array('_builder_version', 'custom_contact_email'),
+        //ninja form noscript content exclusion
+        array('ninja-forms-noscript-message'),
+        //enfold theme contact form content exclusion - this fired during buffer interception
+        array('av_contact', 'email', 'from_email'),
+        // Stylish Cost Calculator
+        array('scc-form-field-item'),
+        // Exclusion of maps from leaflet
+        array('leaflet'),
+        // prevent broking elementor swiper gallery
+        array('class', 'elementor-swiper', 'elementor-testimonial', 'swiper-pagination'),
+        // ics-calendar
+        array('ics_calendar'),
+    );
+
+    /**
+     * @return string|false
+     * @psalm-suppress PossiblyUnusedReturnValue
+     */
+    public function doSkipBeforeAnything()
+    {
+        global $apbct;
+        if ( $this->byAccessKeyFail($apbct) ) {
+            return 'byAccessKeyFail';
+        }
+
+        return false;
+    }
+
+    /**
+     * @return string|false
+     * @psalm-suppress PossiblyUnusedReturnValue
+     */
+    public function doSkipBeforeModifyingHooksAdded()
+    {
+        global $apbct;
+
+        if ( $this->byPluginSetting($apbct) ) {
+            return 'byPluginSetting';
+        }
+
+        // Excluded request
+        if ( $this->byServerVars() ) {
+            return 'byServerVars';
+        }
+
+        return false;
+    }
+
+    /**
+     * @param $content
+     *
+     * @return string|false
+     * @psalm-suppress PossiblyUnusedReturnValue
+     * @psalm-suppress PossiblyUnusedMethod
+     */
+    public function doReturnContentBeforeModify($content)
+    {
+        global $apbct;
+
+        if ( !(bool)$apbct->settings['data__email_decoder_encode_email_addresses'] && !(bool)$apbct->settings['data__email_decoder_encode_phone_numbers'] ) {
+            return 'globallyDisabledBothEncoding';
+        }
+
+        if ( $this->byLoggedIn() ) {
+            return 'byLoggedIn';
+        }
+
+        //skip empty or invalid content
+        if ( $this->byEmptyContent($content) ) {
+            return 'byEmptyContent';
+        }
+
+        if ( $this->byUrlOnHooks() ) {
+            return 'byUrlOnHooks';
+        }
+
+        if ( $this->byContentSigns($content) ) {
+            return 'byContentSigns';
+        }
+
+        return false;
+    }
+
+    /**
+     * Excluded requests
+     * @return bool
+     */
+    private function byServerVars()
+    {
+        // Excluded request by alt cookie
+        $apbct_email_encoder_passed = Cookie::get('apbct_email_encoder_passed');
+        if ( $apbct_email_encoder_passed === apbct_get_email_encoder_pass_key() ) {
+            return true;
+        }
+
+        if (
+            apbct_is_plugin_active('ultimate-member/ultimate-member.php') &&
+            isset($_POST['um_request']) &&
+            array_key_exists('REQUEST_METHOD', $_SERVER) &&
+            strtoupper($_SERVER['REQUEST_METHOD']) === 'POST' &&
+            empty(Post::get('encodedEmail'))
+        ) {
+            return true;
+        }
+
+        return false;
+    }
+
+    /**
+     * @param State $apbct
+     *
+     * @return bool
+     */
+    private function byPluginSetting($apbct)
+    {
+        return ! $apbct->settings['data__email_decoder'];
+    }
+
+    /**
+     * @param State $apbct
+     *
+     * @return bool
+     */
+    private function byAccessKeyFail($apbct)
+    {
+        return !$apbct->key_is_ok || ! apbct_api_key__is_correct();
+    }
+
+    /**
+     * Check content if it contains exclusions from exclusion list
+     * @param $content - content to check
+     * @return bool - true if exclusions found, else - false
+     */
+    private function byContentSigns($content)
+    {
+        if ( is_array($this->content_exclusions_signs) ) {
+            foreach ( array_values($this->content_exclusions_signs) as $_signs_array => $signs ) {
+                //process each of subarrays of signs
+                $signs_found_count = 0;
+                if ( isset($signs) && is_array($signs) ) {
+                    //chek all the signs in the sub-array
+                    foreach ( $signs as $sign ) {
+                        if ( is_string($sign) ) {
+                            if ( strpos($content, $sign) === false ) {
+                                continue;
+                            } else {
+                                $signs_found_count++;
+                            }
+                        }
+                    }
+                    //if each of signs in the sub-array are found return true
+                    if ( $signs_found_count === count($signs) ) {
+                        if (in_array('et_pb_contact_form', $signs) && !is_admin()) {
+                            return false;
+                        }
+                        return true;
+                    }
+                }
+            }
+        }
+        //no signs found
+        return false;
+    }
+
+    /**
+     * @param string $content
+     *
+     * @return bool
+     */
+    private function byEmptyContent($content)
+    {
+        //skip empty or invalid content
+        return empty($content) || !is_string($content);
+    }
+
+    /**
+     * @return bool
+     */
+    private function byLoggedIn()
+    {
+        return apbct_is_user_logged_in() && !apbct_is_in_uri('options-general.php?page=cleantalk');
+    }
+
+    /**
+     * Skip encoder run on hooks.
+     *
+     * 1. Applies filter "apbct_hook_skip_email_encoder_on_url_list" to get modified list of URI chunks that needs to skip.
+     * @return bool
+     */
+    private function byUrlOnHooks()
+    {
+        $skip_encode = false;
+        $url_chunk_list = array();
+
+        // Apply filter "apbct_hook_skip_email_encoder_on_url_list" to get the URI chunk list.
+        $url_chunk_list = apply_filters('apbct_skip_email_encoder_on_uri_chunk_list', $url_chunk_list);
+
+        if ( !empty($url_chunk_list) && is_array($url_chunk_list) ) {
+            foreach ($url_chunk_list as $chunk) {
+                if (is_string($chunk) && strpos(TT::toString(Server::get('REQUEST_URI')), $chunk) !== false) {
+                    $skip_encode = true;
+                    break;
+                }
+            }
+        }
+
+        return $skip_encode;
+    }
+}