Changeset 7086

Timestamp:

05/28/2020 03:38:54 PM (6 years ago)

Author:

johnjamesjacoby

Message:

Signups: Ensure that the dynamic role exists before setting it.

This commit introduces several new helper functions for validating Forum roles before saving & assigning them to new user accounts.

It also adds relevant capability checks to prevent unauthorized users from performing role assignments.

In trunk, for 2.7.0.

See #3157.

Location:

trunk/src/includes

Files:

• core/actions.php (modified) (1 diff)
• users/capabilities.php (modified) (4 diffs)
• users/signups.php (modified) (6 diffs)

trunk/src/includes/core/actions.php

@@ -408 +408 @@
 add_action( 'clean_post_cache', 'bbp_clean_post_cache', 10, 2 );
 
-// User Creation
+// User Registration
+add_action( 'added_existing_user', 'bbp_user_add_role_on_register', 10, 1 );
+add_action( 'bbp_user_register',   'bbp_user_add_role_on_register', 10, 1 );
+
+// Invite a New User
 add_action( 'invite_user',         'bbp_user_add_role_on_invite',   10, 3 );
+
+// Multisite Activation (does not work in wp-activate.php)
 add_action( 'wpmu_activate_user',  'bbp_user_add_role_on_activate', 10, 3 );
-add_action( 'bbp_user_register',   'bbp_user_add_role_on_register', 10, 1 );
-add_action( 'added_existing_user', 'bbp_user_add_role_on_register', 10, 1 );
-add_action( 'register_new_user',   'bbp_user_add_role_on_register', 10, 1 );
 
 /**

trunk/src/includes/users/capabilities.php

@@ -149 +149 @@
  * @param int $user_id
  *
- * @return string
+ * @return mixed False if no change. String of new role if changed.
  */
 function bbp_set_user_role( $user_id = 0, $new_role = '' ) {
@@ -160 +160 @@
     if ( ! empty( $user ) ) {
 
-        // Get users forum role
+        // Get user forum role
         $role = bbp_get_user_role( $user_id );
 
@@ -167 +167 @@
             $new_role = false;
 
-        // Users role is different than the new role
-        } else {
+        // User role is different than the new (valid) role
+        } elseif ( bbp_is_valid_role( $new_role ) ) {
 
             // Remove the old role
@@ -305 +305 @@
     // Set the new forums role
     bbp_set_user_role( $user_id, $new_role );
+}
+
+/**
+ * Check if a role ID is valid
+ *
+ * This helper function accepts a role ID as a string, and compares it against
+ * the array of registered dynamic roles.
+ *
+ * Use this function anytime you are manually attempting to set a user role
+ * without using the bbp_set_user_role() function, or if you need to halt
+ * additional processing during role validation.
+ *
+ * @since 2.6.5
+ *
+ * @param string $role A well-formed (string) role ID to validate
+ *
+ * @return bool True if role is valid. False if role is not valid.
+ */
+function bbp_is_valid_role( $role = '' ) {
+
+    // Default return value
+    $retval = false;
+
+    // Skip if no role to check
+    if ( ! empty( $role ) && is_string( $role ) ) {
+
+        // Get the dynamic role IDs
+        $roles = array_keys( bbp_get_dynamic_roles() );
+
+        // Skip if no known role IDs
+        if ( ! empty( $roles ) ) {
+
+            // Is role in dynamic roles array?
+            $retval = in_array( $role, $roles, true );
+        }
+    }
+
+    // Filter & return
+    return (bool) apply_filters( 'bbp_is_valid_role', $retval, $role );
 }
 

trunk/src/includes/users/signups.php

@@ -20 +20 @@
  */
 function bbp_add_user_form_role_field() {
-?>
+
+    // Bail if current user cannot promote users
+    if ( ! current_user_can( 'promote_users' ) ) {
+        return;
+    } ?>
 
     <table class="form-table">
@@ -67 +71 @@
 function bbp_user_add_role_to_signup_meta( $meta = array() ) {
 
-    // Posted role
-    $forum_role = isset( $_POST['bbp-forums-role'] )
+    // Bail if already added
+    if ( ! empty( $meta['bbp_new_role'] ) ) {
+        return $meta;
+    }
+
+    // Role to validate
+    $to_validate = ! empty( $_POST['bbp-forums-role'] ) && is_string( $_POST['bbp-forums-role'] )
         ? sanitize_key( $_POST['bbp-forums-role'] )
-        : bbp_get_default_role();
-
-    // Role keys
-    $roles = array_keys( bbp_get_dynamic_roles() );
-
-    // Bail if posted role is not in dynamic roles
-    if ( empty( $forum_role ) || ! in_array( $forum_role, $roles, true ) ) {
+        : '';
+
+    // Validate the signup role
+    $valid_role = bbp_validate_registration_role( $to_validate );
+
+    // Bail if errors
+    if ( bbp_has_errors() ) {
         return $meta;
     }
 
     // Add role to meta
-    $meta['bbp_new_role'] = $forum_role;
+    $meta['bbp_new_role'] = $valid_role;
 
     // Return meta
@@ -95 +104 @@
  * @param array  $role        The role of invited user.
  * @param string $newuser_key The key of the invitation.
+ *
+ * @return void
  */
 function bbp_user_add_role_on_invite( $user_id = '', $role = '', $newuser_key = '' ) {
 
-    // Posted role
-    $forum_role = isset( $_POST['bbp-forums-role'] )
+    // Role to validate
+    $to_validate = ! empty( $_POST['bbp-forums-role'] ) && is_string( $_POST['bbp-forums-role'] )
         ? sanitize_key( $_POST['bbp-forums-role'] )
-        : bbp_get_default_role();
-
-    // Role keys
-    $roles = array_keys( bbp_get_dynamic_roles() );
-
-    // Bail if posted role is not in dynamic roles
-    if ( empty( $forum_role ) || ! in_array( $forum_role, $roles, true ) ) {
+        : '';
+
+    // Validate the signup role
+    $valid_role = bbp_validate_registration_role( $to_validate );
+
+    // Bail if errors
+    if ( bbp_has_errors() ) {
+        return;
+    }
+
+    // Bail if malformed user key
+    if ( empty( $newuser_key ) || ! is_string( $newuser_key ) ) {
         return;
     }
@@ -118 +134 @@
 
     // Add the new role
-    $user_option['bbp_new_role'] = $forum_role;
+    $user_option['bbp_new_role'] = $valid_role;
 
     // Update the invitation
@@ -130 +146 @@
  *
  * @param int $user_id
+ *
+ * @return void
  */
 function bbp_user_add_role_on_register( $user_id = '' ) {
 
-    // Posted role
-    $forum_role = isset( $_POST['bbp-forums-role'] )
+    // Role to validate
+    $to_validate = ! empty( $_POST['bbp-forums-role'] ) && is_string( $_POST['bbp-forums-role'] )
         ? sanitize_key( $_POST['bbp-forums-role'] )
-        : bbp_get_default_role();
-
-    // Role keys
-    $roles = array_keys( bbp_get_dynamic_roles() );
-
-    // Bail if posted role is not in dynamic roles
-    if ( empty( $forum_role ) || ! in_array( $forum_role, $roles, true ) ) {
+        : '';
+
+    // Validate the signup role
+    $valid_role = bbp_validate_registration_role( $to_validate );
+
+    // Bail if errors
+    if ( bbp_has_errors() ) {
         return;
     }
 
     // Set the user role
-    bbp_set_user_role( $user_id, $forum_role );
+    bbp_set_user_role( $user_id, $valid_role );
 }
 
@@ -155 +173 @@
  * @since 2.6.0 bbPress (r6674)
  *
- * @param int $user_id User ID.
+ * @param int    $user_id  User ID
+ * @param string $password User password
+ * @param array  $meta     Array of metadata
+ *
+ * @return void
  */
 function bbp_user_add_role_on_activate( $user_id = 0, $password = '', $meta = array() ) {
 
-    // Posted role
-    $forum_role = isset( $meta['bbp_new_role'] )
+    // Role to validate
+    $to_validate = ! empty( $meta['bbp_new_role'] ) && is_string( $meta['bbp_new_role'] )
         ? sanitize_key( $meta['bbp_new_role'] )
-        : bbp_get_default_role();
-
-    // Sanitize role
-    $roles = array_keys( bbp_get_dynamic_roles() );
-
-    // Bail if posted role is not in dynamic roles
-    if ( empty( $forum_role ) || ! in_array( $forum_role, $roles, true ) ) {
+        : '';
+
+    // Validate the signup role
+    $valid_role = bbp_validate_activation_role( $to_validate );
+
+    // Bail if errors
+    if ( bbp_has_errors() ) {
         return;
     }
 
     // Set the user role
-    bbp_set_user_role( $user_id, $forum_role );
-}
+    bbp_set_user_role( $user_id, $valid_role );
+}
+
+/** Validators ****************************************************************/
+
+/**
+ * Validate the Forum role during signup
+ *
+ * This helper function performs a number of generic checks, and encapsulates
+ * the logic used to validate if a Forum Role is valid, typically during new
+ * user registration, but also when adding an existing user to a site in
+ * Multisite installations.
+ *
+ * @since 2.6.5
+ *
+ * @param string $to_validate A role ID to validate
+ *
+ * @return string A valid role ID, or empty string on error
+ */
+function bbp_validate_signup_role( $to_validate = '' ) {
+
+    // Default return value
+    $retval = '';
+
+    // Add error if role is empty
+    if ( empty( $to_validate ) ) {
+        bbp_add_error( 'bbp_signup_role_empty', __( '<strong>ERROR</strong>: Empty role.', 'bbpress' ) );
+    }
+
+    // Add error if posted role is not a valid role
+    if ( ! bbp_is_valid_role( $to_validate ) ) {
+        bbp_add_error( 'bbp_signup_role_invalid', __( '<strong>ERROR</strong>: Invalid role.', 'bbpress' ) );
+    }
+
+    // If no errors, set return value to the role to validate
+    if ( ! bbp_has_errors() ) {
+        $retval = $to_validate;
+    }
+
+    // Filter & return
+    return (string) apply_filters( 'bbp_validate_signup_role', $retval, $to_validate );
+}
+
+/**
+ * Validate the Forum role during the registration process
+ *
+ * @since 2.6.5
+ *
+ * @param string $to_validate A role ID to validate
+ *
+ * @return string A valid role ID, or empty string on error
+ */
+function bbp_validate_registration_role( $to_validate = '' ) {
+
+    // Default return value
+    $retval = bbp_get_default_role();
+
+    /**
+     * Conditionally accept admin-area posted values for capable users. This is
+     * to allow for Site/Network Admins to assign a default role when inviting
+     * or creating a new User account.
+     */
+    if ( is_admin() && current_user_can( 'create_users' ) ) {
+        $retval = $to_validate;
+    }
+
+    // Validate & return
+    return bbp_validate_signup_role( $retval );
+}
+
+/**
+ * Validate the Forum role during multisite activation
+ *
+ * This function exists simply for parity with registrations, and to maintain an
+ * intentional layer of abstraction from the more generic function it uses.
+ *
+ * Note: this will not fire inside of wp-activate.php unless it is hooked in
+ * during sunrise.php, and is considered an advanced use-case.
+ *
+ * @since 2.6.5
+ *
+ * @param string $to_validate A role ID to validate
+ *
+ * @return string A valid role ID, or empty string on error
+ */
+function bbp_validate_activation_role( $to_validate = '' ) {
+
+    // Validate & return
+    return bbp_validate_signup_role( $to_validate );
+}