Issues in class-wc-settings-shipping.php (master) - Issues in master - woocommerce/woocommerce - Measure and Improve Code Quality continuously with Scrutinizer

Issues (942)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

admin/settings/class-wc-settings-shipping.php (1 issue)

Labels

Unused Code 1

Severity

Major 1

Rodrigo Primo 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/**
 * WooCommerce Shipping Settings
 *
 * @package     WooCommerce/Admin
 * @version     2.6.0
 */

defined( 'ABSPATH' ) || exit;

if ( class_exists( 'WC_Settings_Shipping', false ) ) {
	return new WC_Settings_Shipping();
}

/**
 * WC_Settings_Shipping.
 */
class WC_Settings_Shipping extends WC_Settings_Page {

	/**
	 * Constructor.
	 */
	public function __construct() {
		$this->id    = 'shipping';
		$this->label = __( 'Shipping', 'woocommerce' );

		parent::__construct();
	}

	/**
	 * Add this page to settings.
	 *
	 * @param array $pages Current pages.
	 * @return array|mixed
	 */
	public function add_settings_page( $pages ) {
		return wc_shipping_enabled() ? parent::add_settings_page( $pages ) : $pages;
	}

	/**
	 * Get sections.
	 *
	 * @return array
	 */
	public function get_sections() {
		$sections = array(
			''        => __( 'Shipping zones', 'woocommerce' ),
			'options' => __( 'Shipping options', 'woocommerce' ),
			'classes' => __( 'Shipping classes', 'woocommerce' ),
		);

		if ( ! defined( 'WC_INSTALLING' ) ) {
			// Load shipping methods so we can show any global options they may have.
			$shipping_methods = WC()->shipping()->load_shipping_methods();

			foreach ( $shipping_methods as $method ) {
				if ( ! $method->has_settings() ) {
					continue;
				}
				$title                                 = empty( $method->method_title ) ? ucfirst( $method->id ) : $method->method_title;
				$sections[ strtolower( $method->id ) ] = esc_html( $title );
			}
		}

		return apply_filters( 'woocommerce_get_sections_' . $this->id, $sections );
	}

	/**
	 * Get settings array.
	 *
	 * @param string $current_section Current section.
	 * @return array
	 */
	public function get_settings( $current_section = '' ) {
		$settings = array();

		if ( '' === $current_section ) {
			$settings = apply_filters(
				'woocommerce_shipping_settings',
				array(
					array(
						'title' => __( 'Shipping options', 'woocommerce' ),
						'type'  => 'title',
						'id'    => 'shipping_options',
					),

					array(
						'title'         => __( 'Calculations', 'woocommerce' ),
						'desc'          => __( 'Enable the shipping calculator on the cart page', 'woocommerce' ),
						'id'            => 'woocommerce_enable_shipping_calc',
						'default'       => 'yes',
						'type'          => 'checkbox',
						'checkboxgroup' => 'start',
						'autoload'      => false,
					),

					array(
						'desc'          => __( 'Hide shipping costs until an address is entered', 'woocommerce' ),
						'id'            => 'woocommerce_shipping_cost_requires_address',
						'default'       => 'no',
						'type'          => 'checkbox',
						'checkboxgroup' => 'end',
					),

					array(
						'title'           => __( 'Shipping destination', 'woocommerce' ),
						'desc'            => __( 'This controls which shipping address is used by default.', 'woocommerce' ),
						'id'              => 'woocommerce_ship_to_destination',
						'default'         => 'billing',
						'type'            => 'radio',
						'options'         => array(
							'shipping'     => __( 'Default to customer shipping address', 'woocommerce' ),
							'billing'      => __( 'Default to customer billing address', 'woocommerce' ),
							'billing_only' => __( 'Force shipping to the customer billing address', 'woocommerce' ),
						),
						'autoload'        => false,
						'desc_tip'        => true,
						'show_if_checked' => 'option',
					),

					array(
						'title'    => __( 'Debug mode', 'woocommerce' ),
						'desc'     => __( 'Enable debug mode', 'woocommerce' ),
						'desc_tip' => __( 'Enable shipping debug mode to show matching shipping zones and to bypass shipping rate cache.', 'woocommerce' ),
						'id'       => 'woocommerce_shipping_debug_mode',
						'default'  => 'no',
						'type'     => 'checkbox',
					),

					array(
						'type' => 'sectionend',
						'id'   => 'shipping_options',
					),

				)
			);
		}

		return apply_filters( 'woocommerce_get_settings_' . $this->id, $settings, $current_section );
	}

	/**
	 * Output the settings.
	 */
	public function output() {
		global $current_section, $hide_save_button;

		// Load shipping methods so we can show any global options they may have.
		$shipping_methods = WC()->shipping()->load_shipping_methods();

		if ( '' === $current_section ) {
			$this->output_zones_screen();
		} elseif ( 'options' === $current_section ) {
			$settings = $this->get_settings();
			WC_Admin_Settings::output_fields( $settings );
		} elseif ( 'classes' === $current_section ) {
			$hide_save_button = true;
			$this->output_shipping_class_screen();
		} else {
			$is_shipping_method = false;
			foreach ( $shipping_methods as $method ) {
				if ( in_array( $current_section, array( $method->id, sanitize_title( get_class( $method ) ) ), true ) && $method->has_settings() ) {
					$is_shipping_method = true;
					$method->admin_options();
				}
			}
			if ( ! $is_shipping_method ) {
				$settings = $this->get_settings();
				$settings = apply_filters( 'woocommerce_get_settings_' . $this->id, $settings, $current_section );
				WC_Admin_Settings::output_fields( $settings );
			}
		}
	}

	/**
	 * Save settings.
	 */
	public function save() {
		global $current_section;

		switch ( $current_section ) {
			case 'options':
				WC_Admin_Settings::save_fields( $this->get_settings() );
				do_action( 'woocommerce_update_options_' . $this->id . '_options' );
				break;
			case 'classes':
				do_action( 'woocommerce_update_options_' . $this->id . '_classes' );
				break;
			case '':
				break;
			default:
				$wc_shipping        = WC_Shipping::instance();
				$is_shipping_method = false;

				foreach ( $wc_shipping->get_shipping_methods() as $method_id => $method ) {
					if ( in_array( $current_section, array( $method->id, sanitize_title( get_class( $method ) ) ), true ) ) {
						$is_shipping_method = true;
						do_action( 'woocommerce_update_options_' . $this->id . '_' . $method->id );
					}
				}
				if ( ! $is_shipping_method ) {
					WC_Admin_Settings::save_fields( $this->get_settings( $current_section ) );
				}
				break;
		}

		// Increments the transient version to invalidate cache.
		WC_Cache_Helper::get_transient_version( 'shipping', true );
	}

	/**
	 * Handles output of the shipping zones page in admin.
	 */
	protected function output_zones_screen() {
		global $hide_save_button;

		if ( isset( $_REQUEST['zone_id'] ) ) { // WPCS: input var ok, CSRF ok.
			$hide_save_button = true;
			$this->zone_methods_screen( wc_clean( wp_unslash( $_REQUEST['zone_id'] ) ) ); // WPCS: input var ok, CSRF ok.
		} elseif ( isset( $_REQUEST['instance_id'] ) ) {
			$this->instance_settings_screen( absint( wp_unslash( $_REQUEST['instance_id'] ) ) ); // WPCS: input var ok, CSRF ok.
		} else {
			$hide_save_button = true;
			$this->zones_screen();
		}
	}

	/**
	 * Show method for a zone
	 *
	 * @param int $zone_id Zone ID.
	 */
	protected function zone_methods_screen( $zone_id ) {
		if ( 'new' === $zone_id ) {
			$zone = new WC_Shipping_Zone();
		} else {
			$zone = WC_Shipping_Zones::get_zone( absint( $zone_id ) );
		}

		if ( ! $zone ) {
			wp_die( esc_html__( 'Zone does not exist!', 'woocommerce' ) );
		}

		$allowed_countries   = WC()->countries->get_shipping_countries();
		$shipping_continents = WC()->countries->get_shipping_continents();

		// Prepare locations.
		$locations = array();
		$postcodes = array();

		foreach ( $zone->get_zone_locations() as $location ) {
			if ( 'postcode' === $location->type ) {
				$postcodes[] = $location->code;
			} else {
				$locations[] = $location->type . ':' . $location->code;
			}
		}

		wp_localize_script(
			'wc-shipping-zone-methods',
			'shippingZoneMethodsLocalizeScript',
			array(
				'methods'                 => $zone->get_shipping_methods( false, 'json' ),
				'zone_name'               => $zone->get_zone_name(),
				'zone_id'                 => $zone->get_id(),
				'wc_shipping_zones_nonce' => wp_create_nonce( 'wc_shipping_zones_nonce' ),
				'strings'                 => array(
					'unload_confirmation_msg' => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
					'save_changes_prompt'     => __( 'Do you wish to save your changes first? Your changed data will be discarded if you choose to cancel.', 'woocommerce' ),
					'save_failed'             => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
					'add_method_failed'       => __( 'Shipping method could not be added. Please retry.', 'woocommerce' ),
					'yes'                     => __( 'Yes', 'woocommerce' ),
					'no'                      => __( 'No', 'woocommerce' ),
					'default_zone_name'       => __( 'Zone', 'woocommerce' ),
				),
			)
		);
		wp_enqueue_script( 'wc-shipping-zone-methods' );

		include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zone-methods.php';
	}

	/**
	 * Show zones
	 */
	protected function zones_screen() {
		$method_count = wc_get_shipping_method_count();

		wp_localize_script(
			'wc-shipping-zones',
			'shippingZonesLocalizeScript',
			array(
				'zones'                   => WC_Shipping_Zones::get_zones( 'json' ),
				'default_zone'            => array(
					'zone_id'    => 0,
					'zone_name'  => '',
					'zone_order' => null,
				),
				'wc_shipping_zones_nonce' => wp_create_nonce( 'wc_shipping_zones_nonce' ),
				'strings'                 => array(
					'unload_confirmation_msg'     => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
					'delete_confirmation_msg'     => __( 'Are you sure you want to delete this zone? This action cannot be undone.', 'woocommerce' ),
					'save_failed'                 => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
					'no_shipping_methods_offered' => __( 'No shipping methods offered to this zone.', 'woocommerce' ),
				),
			)
		);
		wp_enqueue_script( 'wc-shipping-zones' );

		include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zones.php';
	}

	/**
	 * Show instance settings
	 *
	 * @param int $instance_id Shipping instance ID.
	 */
	protected function instance_settings_screen( $instance_id ) {
		$zone            = WC_Shipping_Zones::get_zone_by( 'instance_id', $instance_id );
		$shipping_method = WC_Shipping_Zones::get_shipping_method( $instance_id );

		if ( ! $shipping_method ) {
			wp_die( esc_html__( 'Invalid shipping method!', 'woocommerce' ) );
		}
		if ( ! $zone ) {
			wp_die( esc_html__( 'Zone does not exist!', 'woocommerce' ) );
		}
		if ( ! $shipping_method->has_settings() ) {
			wp_die( esc_html__( 'This shipping method does not have any settings to configure.', 'woocommerce' ) );
		}

		if ( ! empty( $_POST['save'] ) ) { // WPCS: input var ok, sanitization ok.

			if ( empty( $_REQUEST['_wpnonce'] ) || ! wp_verify_nonce( wp_unslash( $_REQUEST['_wpnonce'] ), 'woocommerce-settings' ) ) { // WPCS: input var ok, sanitization ok.
				echo '<div class="updated error"><p>' . esc_html__( 'Edit failed. Please try again.', 'woocommerce' ) . '</p></div>';
			}

			$shipping_method->process_admin_options();
			$shipping_method->display_errors();
		}

		include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zones-instance.php';
	}

	/**
	 * Handles output of the shipping class settings screen.
	 */
	protected function output_shipping_class_screen() {
		$wc_shipping = WC_Shipping::instance();
		wp_localize_script(
			'wc-shipping-classes',
			'shippingClassesLocalizeScript',
			array(
				'classes'                   => $wc_shipping->get_shipping_classes(),
				'default_shipping_class'    => array(
					'term_id'     => 0,
					'name'        => '',
					'description' => '',
				),
				'wc_shipping_classes_nonce' => wp_create_nonce( 'wc_shipping_classes_nonce' ),
				'strings'                   => array(
					'unload_confirmation_msg' => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
					'save_failed'             => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
				),
			)
		);
		wp_enqueue_script( 'wc-shipping-classes' );

		// Extendable columns to show on the shipping classes screen.
		$shipping_class_columns = apply_filters(
$myVar = 'Value';
$higher = false;

if (rand(1, 6) > 3) {
    $higher = true;
} else {
    $higher = false;
}
			'woocommerce_shipping_classes_columns',
			array(
				'wc-shipping-class-name'        => __( 'Shipping class', 'woocommerce' ),
				'wc-shipping-class-slug'        => __( 'Slug', 'woocommerce' ),
				'wc-shipping-class-description' => __( 'Description', 'woocommerce' ),
				'wc-shipping-class-count'       => __( 'Product count', 'woocommerce' ),
			)
		);

		include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-classes.php';
	}
}

return new WC_Settings_Shipping();


1			<?php
2			/**
3			* WooCommerce Shipping Settings
4			*
5			* @package WooCommerce/Admin
6			* @version 2.6.0
7			*/
8
9			defined( 'ABSPATH' ) \|\| exit;
10
11			if ( class_exists( 'WC_Settings_Shipping', false ) ) {
12			return new WC_Settings_Shipping();
13			}
14
15			/**
16			* WC_Settings_Shipping.
17			*/
18			class WC_Settings_Shipping extends WC_Settings_Page {
19
20			/**
21			* Constructor.
22			*/
23			public function __construct() {
24			$this->id = 'shipping';
25			$this->label = __( 'Shipping', 'woocommerce' );
26
27			parent::__construct();
28			}
29
30			/**
31			* Add this page to settings.
32			*
33			* @param array $pages Current pages.
34			* @return array\|mixed
35			*/
36			public function add_settings_page( $pages ) {
37			return wc_shipping_enabled() ? parent::add_settings_page( $pages ) : $pages;
38			}
39
40			/**
41			* Get sections.
42			*
43			* @return array
44			*/
45	2		public function get_sections() {
46			$sections = array(
47	2		'' => __( 'Shipping zones', 'woocommerce' ),
48	2		'options' => __( 'Shipping options', 'woocommerce' ),
49	2		'classes' => __( 'Shipping classes', 'woocommerce' ),
50			);
51
52	2		if ( ! defined( 'WC_INSTALLING' ) ) {
53			// Load shipping methods so we can show any global options they may have.
54			$shipping_methods = WC()->shipping()->load_shipping_methods();
55
56		View Code Duplication	foreach ( $shipping_methods as $method ) {
57			if ( ! $method->has_settings() ) {
58			continue;
59			}
60			$title = empty( $method->method_title ) ? ucfirst( $method->id ) : $method->method_title;
61			$sections[ strtolower( $method->id ) ] = esc_html( $title );
62			}
63			}
64
65	2		return apply_filters( 'woocommerce_get_sections_' . $this->id, $sections );
66			}
67
68			/**
69			* Get settings array.
70			*
71			* @param string $current_section Current section.
72			* @return array
73			*/
74	2		public function get_settings( $current_section = '' ) {
75	2		$settings = array();
76
77	2		if ( '' === $current_section ) {
78	2		$settings = apply_filters(
79	2		'woocommerce_shipping_settings',
80			array(
81			array(
82	2		'title' => __( 'Shipping options', 'woocommerce' ),
83	2		'type' => 'title',
84	2		'id' => 'shipping_options',
85			),
86
87			array(
88	2		'title' => __( 'Calculations', 'woocommerce' ),
89	2		'desc' => __( 'Enable the shipping calculator on the cart page', 'woocommerce' ),
90	2		'id' => 'woocommerce_enable_shipping_calc',
91	2		'default' => 'yes',
92	2		'type' => 'checkbox',
93	2		'checkboxgroup' => 'start',
94			'autoload' => false,
95			),
96
97			array(
98	2		'desc' => __( 'Hide shipping costs until an address is entered', 'woocommerce' ),
99	2		'id' => 'woocommerce_shipping_cost_requires_address',
100	2		'default' => 'no',
101	2		'type' => 'checkbox',
102	2		'checkboxgroup' => 'end',
103			),
104
105			array(
106	2		'title' => __( 'Shipping destination', 'woocommerce' ),
107	2		'desc' => __( 'This controls which shipping address is used by default.', 'woocommerce' ),
108	2		'id' => 'woocommerce_ship_to_destination',
109	2		'default' => 'billing',
110	2		'type' => 'radio',
111			'options' => array(
112	2		'shipping' => __( 'Default to customer shipping address', 'woocommerce' ),
113	2		'billing' => __( 'Default to customer billing address', 'woocommerce' ),
114	2		'billing_only' => __( 'Force shipping to the customer billing address', 'woocommerce' ),
115			),
116			'autoload' => false,
117			'desc_tip' => true,
118	2		'show_if_checked' => 'option',
119			),
120
121			array(
122	2		'title' => __( 'Debug mode', 'woocommerce' ),
123	2		'desc' => __( 'Enable debug mode', 'woocommerce' ),
124	2		'desc_tip' => __( 'Enable shipping debug mode to show matching shipping zones and to bypass shipping rate cache.', 'woocommerce' ),
125	2		'id' => 'woocommerce_shipping_debug_mode',
126	2		'default' => 'no',
127	2		'type' => 'checkbox',
128			),
129
130			array(
131			'type' => 'sectionend',
132			'id' => 'shipping_options',
133			),
134
135			)
136			);
137			}
138
139	2		return apply_filters( 'woocommerce_get_settings_' . $this->id, $settings, $current_section );
140			}
141
142			/**
143			* Output the settings.
144			*/
145			public function output() {
146			global $current_section, $hide_save_button;
147
148			// Load shipping methods so we can show any global options they may have.
149			$shipping_methods = WC()->shipping()->load_shipping_methods();
150
151			if ( '' === $current_section ) {
152			$this->output_zones_screen();
153			} elseif ( 'options' === $current_section ) {
154			$settings = $this->get_settings();
155			WC_Admin_Settings::output_fields( $settings );
156			} elseif ( 'classes' === $current_section ) {
157			$hide_save_button = true;
158			$this->output_shipping_class_screen();
159			} else {
160			$is_shipping_method = false;
161		View Code Duplication	foreach ( $shipping_methods as $method ) {
162			if ( in_array( $current_section, array( $method->id, sanitize_title( get_class( $method ) ) ), true ) && $method->has_settings() ) {
163			$is_shipping_method = true;
164			$method->admin_options();
165			}
166			}
167			if ( ! $is_shipping_method ) {
168			$settings = $this->get_settings();
169			$settings = apply_filters( 'woocommerce_get_settings_' . $this->id, $settings, $current_section );
170			WC_Admin_Settings::output_fields( $settings );
171			}
172			}
173			}
174
175			/**
176			* Save settings.
177			*/
178			public function save() {
179			global $current_section;
180
181			switch ( $current_section ) {
182			case 'options':
183			WC_Admin_Settings::save_fields( $this->get_settings() );
184			do_action( 'woocommerce_update_options_' . $this->id . '_options' );
185			break;
186			case 'classes':
187			do_action( 'woocommerce_update_options_' . $this->id . '_classes' );
188			break;
189			case '':
190			break;
191			default:
192			$wc_shipping = WC_Shipping::instance();
193			$is_shipping_method = false;
194
195			foreach ( $wc_shipping->get_shipping_methods() as $method_id => $method ) {
196			if ( in_array( $current_section, array( $method->id, sanitize_title( get_class( $method ) ) ), true ) ) {
197			$is_shipping_method = true;
198			do_action( 'woocommerce_update_options_' . $this->id . '_' . $method->id );
199			}
200			}
201			if ( ! $is_shipping_method ) {
202			WC_Admin_Settings::save_fields( $this->get_settings( $current_section ) );
203			}
204			break;
205			}
206
207			// Increments the transient version to invalidate cache.
208			WC_Cache_Helper::get_transient_version( 'shipping', true );
209			}
210
211			/**
212			* Handles output of the shipping zones page in admin.
213			*/
214			protected function output_zones_screen() {
215			global $hide_save_button;
216
217			if ( isset( $_REQUEST['zone_id'] ) ) { // WPCS: input var ok, CSRF ok.
218			$hide_save_button = true;
219			$this->zone_methods_screen( wc_clean( wp_unslash( $_REQUEST['zone_id'] ) ) ); // WPCS: input var ok, CSRF ok.
220			} elseif ( isset( $_REQUEST['instance_id'] ) ) {
221			$this->instance_settings_screen( absint( wp_unslash( $_REQUEST['instance_id'] ) ) ); // WPCS: input var ok, CSRF ok.
222			} else {
223			$hide_save_button = true;
224			$this->zones_screen();
225			}
226			}
227
228			/**
229			* Show method for a zone
230			*
231			* @param int $zone_id Zone ID.
232			*/
233			protected function zone_methods_screen( $zone_id ) {
234			if ( 'new' === $zone_id ) {
235			$zone = new WC_Shipping_Zone();
236			} else {
237			$zone = WC_Shipping_Zones::get_zone( absint( $zone_id ) );
238			}
239
240			if ( ! $zone ) {
241			wp_die( esc_html__( 'Zone does not exist!', 'woocommerce' ) );
242			}
243
244			$allowed_countries = WC()->countries->get_shipping_countries();
245			$shipping_continents = WC()->countries->get_shipping_continents();
246
247			// Prepare locations.
248			$locations = array();
249			$postcodes = array();
250
251			foreach ( $zone->get_zone_locations() as $location ) {
252			if ( 'postcode' === $location->type ) {
253			$postcodes[] = $location->code;
254			} else {
255			$locations[] = $location->type . ':' . $location->code;
256			}
257			}
258
259			wp_localize_script(
260			'wc-shipping-zone-methods',
261			'shippingZoneMethodsLocalizeScript',
262			array(
263			'methods' => $zone->get_shipping_methods( false, 'json' ),
264			'zone_name' => $zone->get_zone_name(),
265			'zone_id' => $zone->get_id(),
266			'wc_shipping_zones_nonce' => wp_create_nonce( 'wc_shipping_zones_nonce' ),
267			'strings' => array(
268			'unload_confirmation_msg' => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
269			'save_changes_prompt' => __( 'Do you wish to save your changes first? Your changed data will be discarded if you choose to cancel.', 'woocommerce' ),
270			'save_failed' => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
271			'add_method_failed' => __( 'Shipping method could not be added. Please retry.', 'woocommerce' ),
272			'yes' => __( 'Yes', 'woocommerce' ),
273			'no' => __( 'No', 'woocommerce' ),
274			'default_zone_name' => __( 'Zone', 'woocommerce' ),
275			),
276			)
277			);
278			wp_enqueue_script( 'wc-shipping-zone-methods' );
279
280			include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zone-methods.php';
281			}
282
283			/**
284			* Show zones
285			*/
286			protected function zones_screen() {
287			$method_count = wc_get_shipping_method_count();
288
289			wp_localize_script(
290			'wc-shipping-zones',
291			'shippingZonesLocalizeScript',
292			array(
293			'zones' => WC_Shipping_Zones::get_zones( 'json' ),
294			'default_zone' => array(
295			'zone_id' => 0,
296			'zone_name' => '',
297			'zone_order' => null,
298			),
299			'wc_shipping_zones_nonce' => wp_create_nonce( 'wc_shipping_zones_nonce' ),
300			'strings' => array(
301			'unload_confirmation_msg' => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
302			'delete_confirmation_msg' => __( 'Are you sure you want to delete this zone? This action cannot be undone.', 'woocommerce' ),
303			'save_failed' => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
304			'no_shipping_methods_offered' => __( 'No shipping methods offered to this zone.', 'woocommerce' ),
305			),
306			)
307			);
308			wp_enqueue_script( 'wc-shipping-zones' );
309
310			include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zones.php';
311			}
312
313			/**
314			* Show instance settings
315			*
316			* @param int $instance_id Shipping instance ID.
317			*/
318			protected function instance_settings_screen( $instance_id ) {
319			$zone = WC_Shipping_Zones::get_zone_by( 'instance_id', $instance_id );
320			$shipping_method = WC_Shipping_Zones::get_shipping_method( $instance_id );
321
322			if ( ! $shipping_method ) {
323			wp_die( esc_html__( 'Invalid shipping method!', 'woocommerce' ) );
324			}
325			if ( ! $zone ) {
326			wp_die( esc_html__( 'Zone does not exist!', 'woocommerce' ) );
327			}
328			if ( ! $shipping_method->has_settings() ) {
329			wp_die( esc_html__( 'This shipping method does not have any settings to configure.', 'woocommerce' ) );
330			}
331
332			if ( ! empty( $_POST['save'] ) ) { // WPCS: input var ok, sanitization ok.
333
334			if ( empty( $_REQUEST['_wpnonce'] ) \|\| ! wp_verify_nonce( wp_unslash( $_REQUEST['_wpnonce'] ), 'woocommerce-settings' ) ) { // WPCS: input var ok, sanitization ok.
335			echo '<div class="updated error"><p>' . esc_html__( 'Edit failed. Please try again.', 'woocommerce' ) . '</p></div>';
336			}
337
338			$shipping_method->process_admin_options();
339			$shipping_method->display_errors();
340			}
341
342			include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-zones-instance.php';
343			}
344
345			/**
346			* Handles output of the shipping class settings screen.
347			*/
348			protected function output_shipping_class_screen() {
349			$wc_shipping = WC_Shipping::instance();
350			wp_localize_script(
351			'wc-shipping-classes',
352			'shippingClassesLocalizeScript',
353			array(
354			'classes' => $wc_shipping->get_shipping_classes(),
355			'default_shipping_class' => array(
356			'term_id' => 0,
357			'name' => '',
358			'description' => '',
359			),
360			'wc_shipping_classes_nonce' => wp_create_nonce( 'wc_shipping_classes_nonce' ),
361			'strings' => array(
362			'unload_confirmation_msg' => __( 'Your changed data will be lost if you leave this page without saving.', 'woocommerce' ),
363			'save_failed' => __( 'Your changes were not saved. Please retry.', 'woocommerce' ),
364			),
365			)
366			);
367			wp_enqueue_script( 'wc-shipping-classes' );
368
369			// Extendable columns to show on the shipping classes screen.
370			$shipping_class_columns = apply_filters(
			0 ignored issues – show Unused Code introduced 2018-03-05 20:33 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$shipping_class_columns` is not used, you could remove the assignment. This check looks for variable assignements that are either overwritten by other assignments or where the variable is not used subsequently. $myVar = 'Value'; $higher = false; if (rand(1, 6) > 3) { $higher = true; } else { $higher = false; } Both the `$myVar` assignment in line 1 and the `$higher` assignment in line 2 are dead. The first because `$myVar` is never used and the second because `$higher` is always overwritten for every possible time line. Loading history...
371			'woocommerce_shipping_classes_columns',
372			array(
373			'wc-shipping-class-name' => __( 'Shipping class', 'woocommerce' ),
374			'wc-shipping-class-slug' => __( 'Slug', 'woocommerce' ),
375			'wc-shipping-class-description' => __( 'Description', 'woocommerce' ),
376			'wc-shipping-class-count' => __( 'Product count', 'woocommerce' ),
377			)
378			);
379
380			include_once dirname( __FILE__ ) . '/views/html-admin-page-shipping-classes.php';
381			}
382			}
383
384			return new WC_Settings_Shipping();
385

woocommerce / woocommerce

Issues (942)

Security Analysis not enabled

admin/settings/class-wc-settings-shipping.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like