Fix. After tests. Removed data rotation because the meta will be deleted on user deletion.

alexandergull · alexandergull · commit a59a296ff570 · 2025-05-23T17:12:54.000+05:00
diff --git a/cleantalk.php b/cleantalk.php
@@ -181,7 +181,7 @@
 function apbct_wp_login_actions($_user_login, $wp_user)
 {
     global $apbct;
-    $apbct->login_ip_keeper->hookSaveLoggedInUserData($wp_user);
+    $apbct->login_ip_keeper->addUserIP($wp_user);
     apbct_add_admin_ip_to_swf_whitelist($wp_user);
 }
 
diff --git a/lib/Cleantalk/ApbctWP/FindSpam/ListTable/BadUsers.php b/lib/Cleantalk/ApbctWP/FindSpam/ListTable/BadUsers.php
@@ -96,7 +96,7 @@ public function column_ct_username($item) // phpcs:ignore PSR1.Methods.CamelCaps
         $column_content .= '<br/>';
 
         // IP
-        $ip_from_keeper = $apbct->login_ip_keeper->getMetaRecordValue($user_obj->ID);
+        $ip_from_keeper = $apbct->login_ip_keeper->getIP($user_obj->ID);
         $ip_from_keeper = null !== $ip_from_keeper
             ? $ip_from_keeper
             : null;
diff --git a/lib/Cleantalk/ApbctWP/FindSpam/ListTable/Users.php b/lib/Cleantalk/ApbctWP/FindSpam/ListTable/Users.php
@@ -121,7 +121,7 @@ public function column_ct_username($item) // phpcs:ignore PSR1.Methods.CamelCaps
         $column_content .= '<br/>';
 
         // IP
-        $ip_from_keeper = $apbct->login_ip_keeper->getMetaRecordValue($user_obj->ID);
+        $ip_from_keeper = $apbct->login_ip_keeper->getIP($user_obj->ID);
         $ip_from_keeper = null !== $ip_from_keeper
             ? $ip_from_keeper
             : null;
diff --git a/lib/Cleantalk/ApbctWP/FindSpam/LoginIPKeeper.php b/lib/Cleantalk/ApbctWP/FindSpam/LoginIPKeeper.php
@@ -2,6 +2,7 @@
 
 namespace Cleantalk\ApbctWP\FindSpam;
 
+use Cleantalk\Common\Helper;
 use Cleantalk\Common\TT;
 
 /**
@@ -16,24 +17,6 @@ class LoginIPKeeper
      * @var string WordPress option name for storing user IP data.
      */
     private static $wp_meta_name = '_cleantalk_ip_keeper_data';
-    /**
-     * @var int Time in seconds after which inactive users are deleted (30 days by default).
-     */
-    private static $user_inactive_time_to_being_deleted = 86400 * 30;
-
-    /**
-     * Hook action.
-     *
-     * @param \WP_User $wp_user WordPress user object.
-     * @return void
-     */
-    public function hookSaveLoggedInUserData($wp_user)
-    {
-        // run rotation on every login event
-        $this->rotateData();
-        // run record adding to user meta
-        $this->addRecord($wp_user);
-    }
 
     /**
      * Save the provided in user's IP and last login from session_tokens.
@@ -42,19 +25,16 @@ public function hookSaveLoggedInUserData($wp_user)
      *
      * @return void
      */
-    public function addRecord($wp_user)
+    public function addUserIP($wp_user)
     {
         // run record adding to user meta
         if ($wp_user instanceof \WP_User && 0 !== $wp_user->ID) {
             $session_tokens = get_user_meta($wp_user->ID, 'session_tokens', true);
             $data = reset($session_tokens);
-            $record = array();
             if ($data) {
-                $record['ip'] = TT::getArrayValueAsString($data, 'ip');
-                $record['last_login'] = TT::getArrayValueAsString($data, 'login');
-                $record = json_encode($record);
-                if (false !== $record) {
-                    $this->updateMetaRecord($wp_user->ID, $record);
+                $ip = TT::getArrayValueAsString($data, 'ip');
+                if ( Helper::ipValidate($ip) ) {
+                    update_user_meta($wp_user->ID, self::$wp_meta_name, $ip);
                 }
             }
         }
@@ -64,90 +44,14 @@ public function addRecord($wp_user)
      * Retrieves data from user meta of a user by his user ID.
      *
      * @param int|string $user_id User ID to search for.
-     * @param string $property ip|last_login, default is ip
      *
      * @return string|null The selected record property value of user meta data.
      * @psalm-suppress PossiblyUnusedMethod
      */
-    public function getMetaRecordValue($user_id, $property = 'ip')
+    public function getIP($user_id)
     {
-        $result = null;
         $user_id = TT::toInt($user_id);
-        $meta = get_user_meta($user_id, self::$wp_meta_name, true);
-        $meta = json_decode($meta, true);
-        if (!empty($meta) && !empty($meta[$property])) {
-            $result = $meta[$property];
-        }
-        return $result;
-    }
-
-    /**
-     * Remove inactive users from the stored data.
-     *
-     * @return void
-     * @psalm-suppress PossiblyUnusedMethod
-     */
-    private function rotateData()
-    {
-        global $wpdb;
-        $meta_values = $wpdb->get_results(
-            $wpdb->prepare(
-                "SELECT user_id, meta_value 
-         FROM {$wpdb->usermeta} 
-         WHERE meta_key = %s",
-                self::$wp_meta_name
-            ),
-            ARRAY_A
-        );
-        foreach ($meta_values as $_meta => $data) {
-            $user_id = isset($data['user_id'])
-                ? $data['user_id']
-                : false;
-            $user_exists = !empty($user_id)
-                ? !empty(get_user_by('ID', $user_id))
-                : false;
-            if ($user_id && (!$user_exists || !$this->isUserAlive($user_id))) {
-                $this->deleteUserMetaRecord($user_id);
-            }
-        }
-    }
-
-    /**
-     * @param int|string $user_id
-     *
-     * @return void
-     */
-    public function deleteUserMetaRecord($user_id)
-    {
-        $user_id = TT::toInt($user_id);
-        delete_user_meta($user_id, self::$wp_meta_name);
-    }
-
-    /**
-     * Adds a new record to the keeper data.
-     *
-     * @param int $user_id User ID.
-     * @param string $record JSON of meta record to add.
-     * @return void
-     */
-    private function updateMetaRecord($user_id, $record)
-    {
-        update_user_meta($user_id, self::$wp_meta_name, $record);
-    }
-
-    /**
-     * Check if IP record meta last login value is lesser than inactivity time.
-     * @param int|string $user_id
-     *
-     * @return bool False if no record found or last login is more that inactivity time, true otherwise.
-     */
-    private function isUserAlive($user_id)
-    {
-        $last_login = $this->getMetaRecordValue($user_id, 'last_login');
-        if ($last_login) {
-            $last_login = TT::toInt($last_login);
-            return time() - $last_login < self::$user_inactive_time_to_being_deleted;
-        }
-        return false;
+        $ip = get_user_meta($user_id, self::$wp_meta_name, true);
+        return Helper::ipValidate($ip) ? $ip : null;
     }
 }
diff --git a/lib/Cleantalk/ApbctWP/FindSpam/UsersChecker.php b/lib/Cleantalk/ApbctWP/FindSpam/UsersChecker.php
@@ -170,7 +170,7 @@ private static function removeUsersWithoutIPEmail(array $users)
                 continue;
             }
 
-            $ip_from_keeper = $apbct->login_ip_keeper->getMetaRecordValue($user->ID);
+            $ip_from_keeper = $apbct->login_ip_keeper->getIP($user->ID);
             $ip_from_keeper = null !== $ip_from_keeper
                 ? $ip_from_keeper
                 : false;
@@ -510,7 +510,7 @@ public static function ctGetCsvFile()
         $u = get_users($params);
         foreach ( $u as $iValue ) {
             // gain IP from keeper
-            $ip_from_keeper = $apbct->login_ip_keeper->getMetaRecordValue($iValue->ID);
+            $ip_from_keeper = $apbct->login_ip_keeper->getIP($iValue->ID);
             $ip_from_keeper = null !== $ip_from_keeper
                 ? $ip_from_keeper
                 : 'N/A';
@@ -590,7 +590,7 @@ public static function ctAjaxInsertUsers()
                 }
 
                 update_user_meta($curr_user->ID, 'session_tokens', array($rnd => array('ip' => $ips[$i])));
-                $apbct->login_ip_keeper->addRecord($curr_user);
+                $apbct->login_ip_keeper->addUserIP($curr_user);
                 if ( is_int($user_id) ) {
                     $inserted++;
                 }
@@ -624,7 +624,6 @@ public static function ctAjaxDeleteAllUsers($count_all = 0)
             if ( $users ) {
                 foreach ( $users as $user ) {
                     wp_delete_user($user->ID);
-                    $apbct->login_ip_keeper->deleteUserMetaRecord($user->ID);
                     usleep(5000);
                 }
             }
diff --git a/tests/ApbctWP/LoginIPKeeperTest.php b/tests/ApbctWP/LoginIPKeeperTest.php
@@ -25,20 +25,17 @@ public function testAddRecord()
         $session_tokens = [
             'token1' => [
                 'ip' => '192.168.1.1',
-                'login' => time(),
             ],
         ];
         update_user_meta($wp_user->ID, 'session_tokens', $session_tokens);
 
         // Call the method
-        $this->loginIPKeeper->addRecord($wp_user);
+        $this->loginIPKeeper->addUserIP($wp_user);
 
         // Assert that the meta record was updated
-        $meta_data = get_user_meta($wp_user->ID, '_cleantalk_ip_keeper_data', true);
-        $meta_data = json_decode($meta_data, true);
+        $ip = get_user_meta($wp_user->ID, '_cleantalk_ip_keeper_data', true);
 
-        $this->assertEquals('192.168.1.1', $meta_data['ip']);
-        $this->assertNotEmpty($meta_data['last_login']);
+        $this->assertEquals('192.168.1.1', $ip);
     }
 
     public function testGetMetaRecordValue()
@@ -47,36 +44,12 @@ public function testGetMetaRecordValue()
         $user_id = wp_create_user('testuser2', 'password', 'testuser2@example.com');
 
         // Set meta data
-        $meta_data = json_encode(['ip' => '192.168.1.1', 'last_login' => 1000000]);
-        update_user_meta($user_id, '_cleantalk_ip_keeper_data', $meta_data);
+        update_user_meta($user_id, '_cleantalk_ip_keeper_data', '192.168.1.1');
 
         // Call the method
-        $result = $this->loginIPKeeper->getMetaRecordValue($user_id, 'ip');
+        $result = $this->loginIPKeeper->getIP($user_id);
 
         // Assert the result
         $this->assertEquals('192.168.1.1', $result);
-
-        // Call the method
-        $result = $this->loginIPKeeper->getMetaRecordValue($user_id, 'last_login');
-
-        // Assert the result
-        $this->assertEquals('1000000', $result);
-    }
-
-    public function testRotateData()
-    {
-        // Create a WordPress user
-        $user_id = wp_create_user('testuser3', 'password', 'testuser3@example.com');
-
-        // Set meta data with an too old last login
-        $meta_data = json_encode(['ip' => '192.168.1.1', 'last_login' => time() - (86400 * 31)]);
-        update_user_meta($user_id, '_cleantalk_ip_keeper_data', $meta_data);
-
-        // Call the method with rotation inside
-        $this->loginIPKeeper->hookSaveLoggedInUserData(null);
-
-        // Assert that the meta record was deleted
-        $meta_data = get_user_meta($user_id, '_cleantalk_ip_keeper_data', true);
-        $this->assertEmpty($meta_data);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -181,7 +181,7 @@`
`181`	`181`	`function apbct_wp_login_actions($_user_login, $wp_user)`
`182`	`182`	`{`
`183`	`183`	`global $apbct;`
`184`		`- $apbct->login_ip_keeper->hookSaveLoggedInUserData($wp_user);`
	`184`	`+ $apbct->login_ip_keeper->addUserIP($wp_user);`
`185`	`185`	`apbct_add_admin_ip_to_swf_whitelist($wp_user);`
`186`	`186`	`}`
`187`	`187`