Freemius_Api::ThrowCloudFlareDDoSException() - Code Metrics - Inspection of "Freemius added." - WPTie/CF7Customizer - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( e12db8...fe8184 )

by Ahmad

created 2015-11-26 00:02 UTC

Freemius_Api::ThrowCloudFlareDDoSException() A

↳ Parent: Freemius_Api

Complexity

Conditions	1
Paths	1

Size

Total Lines	10
Code Lines	7

Duplication

Lines	0
Ratio	0 %

Metric	Value
dl	0
loc	10
rs	9.4286
nc	1
cc	1
eloc	7
nop	1

<?php

	/**
	 * Copyright 2014 Freemius, Inc.
	 *
	 * Licensed under the GPL v2 (the "License"); you may
	 * not use this file except in compliance with the License. You may obtain
	 * a copy of the License at
	 *
	 *     http://choosealicense.com/licenses/gpl-v2/
	 *
	 * Unless required by applicable law or agreed to in writing, software
	 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
	 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	 * License for the specific language governing permissions and limitations
	 * under the License.
	 */

	require_once( dirname( __FILE__ ) . '/FreemiusBase.php' );

	define( 'FS_SDK__USER_AGENT', 'fs-php-' . Freemius_Api_Base::VERSION );

	if ( ! defined( 'FS_SDK__SIMULATE_NO_CURL' ) ) {
		define( 'FS_SDK__SIMULATE_NO_CURL', false );
	}

	if ( ! defined( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE' ) ) {
		define( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE', false );
	}

	if ( ! defined( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL' ) ) {
		define( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL', false );
	}

	define( 'FS_SDK__HAS_CURL', ! FS_SDK__SIMULATE_NO_CURL && function_exists( 'curl_version' ) );

	if ( ! FS_SDK__HAS_CURL ) {
		$curl_version = array( 'version' => '7.0.0' );
	} else {
		$curl_version = curl_version();
	}

	define( 'FS_API__PROTOCOL', version_compare( $curl_version['version'], '7.37', '>=' ) ? 'https' : 'http' );

	if ( ! defined( 'FS_API__ADDRESS' ) ) {
		define( 'FS_API__ADDRESS', '://api.freemius.com' );
	}
	if ( ! defined( 'FS_API__SANDBOX_ADDRESS' ) ) {
		define( 'FS_API__SANDBOX_ADDRESS', '://sandbox-api.freemius.com' );
	}

	class Freemius_Api extends Freemius_Api_Base {
		/**
		 * Default options for curl.
		 */
		public static $CURL_OPTS = array(
			CURLOPT_CONNECTTIMEOUT => 10,
			CURLOPT_RETURNTRANSFER => true,
			CURLOPT_TIMEOUT        => 60,
			CURLOPT_USERAGENT      => FS_SDK__USER_AGENT,
		);

		/**
		 * @param string      $pScope   'app', 'developer', 'user' or 'install'.
		 * @param number      $pID      Element's id.
		 * @param string      $pPublic  Public key.
		 * @param string|bool $pSecret  Element's secret key.
		 * @param bool        $pSandbox Whether or not to run API in sandbox mode.
		 */
		public function __construct( $pScope, $pID, $pPublic, $pSecret = false, $pSandbox = false ) {
			// If secret key not provided, use public key encryption.
			if ( is_bool( $pSecret ) ) {
				$pSecret = $pPublic;
			}

			parent::Init( $pScope, $pID, $pPublic, $pSecret, $pSandbox );
class Daddy
{
    protected function getFirstName()
    {
        return "Eidur";
    }

    protected function getSurName()
    {
        return "Gudjohnsen";
    }
}

class Son
{
    public function getFirstName()
    {
        return parent::getSurname();
    }
}
		}

		public function GetUrl( $pCanonizedPath = '' ) {
			$address = ( $this->_sandbox ? FS_API__SANDBOX_ADDRESS : FS_API__ADDRESS );

			if ( ':' === $address[0] ) {
				$address = self::$_protocol . $address;
			}

			return $address . $pCanonizedPath;
		}

		/**
		 * @var int Clock diff in seconds between current server to API server.
		 */
		private static $_clock_diff = 0;

		/**
		 * Set clock diff for all API calls.
		 *
		 * @since 1.0.3
		 *
		 * @param $pSeconds
		 */
		public static function SetClockDiff( $pSeconds ) {
			self::$_clock_diff = $pSeconds;
		}

		/**
		 * @var string http or https
		 */
		private static $_protocol = FS_API__PROTOCOL;

		/**
		 * Set API connection protocol.
		 *
		 * @since 1.0.4
		 */
		public static function SetHttp() {
			self::$_protocol = 'http';
		}

		/**
		 * @since 1.0.4
		 *
		 * @return bool
		 */
		public static function IsHttps() {
			return ( 'https' === self::$_protocol );
		}

		/**
		 * Sign request with the following HTTP headers:
		 *      Content-MD5: MD5(HTTP Request body)
		 *      Date: Current date (i.e Sat, 14 Feb 2015 20:24:46 +0000)
		 *      Authorization: FS {scope_entity_id}:{scope_entity_public_key}:base64encode(sha256(string_to_sign,
		 *      {scope_entity_secret_key}))
		 *
		 * @param string $pResourceUrl
		 * @param array  $opts
		 */
		protected function SignRequest( $pResourceUrl, &$opts ) {
			$eol          = "\n";
			$content_md5  = '';
			$now          = ( time() - self::$_clock_diff );
			$date         = date( 'r', $now );
			$content_type = '';

			if ( isset( $opts[ CURLOPT_POST ] ) && 0 < $opts[ CURLOPT_POST ] ) {
				$content_md5                  = md5( $opts[ CURLOPT_POSTFIELDS ] );
				$opts[ CURLOPT_HTTPHEADER ][] = 'Content-MD5: ' . $content_md5;
				$content_type                 = 'application/json';
			}

			$opts[ CURLOPT_HTTPHEADER ][] = 'Date: ' . $date;

			$string_to_sign = implode( $eol, array(
				$opts[ CURLOPT_CUSTOMREQUEST ],
				$content_md5,
				$content_type,
				$date,
				$pResourceUrl
			) );

			// If secret and public keys are identical, it means that
			// the signature uses public key hash encoding.
			$auth_type = ( $this->_secret !== $this->_public ) ? 'FS' : 'FSP';

			// Add authorization header.
			$opts[ CURLOPT_HTTPHEADER ][] = 'Authorization: ' .
			                                $auth_type . ' ' .
			                                $this->_id . ':' .
			                                $this->_public . ':' .
			                                self::Base64UrlEncode(
				                                hash_hmac( 'sha256', $string_to_sign, $this->_secret )
			                                );
		}

		/**
		 * Get API request URL signed via query string.
		 *
		 * @param string $pPath
		 *
		 * @throws Freemius_Exception
		 *
		 * @return string
		 */
		function GetSignedUrl( $pPath ) {

			$resource     = explode( '?', $this->CanonizePath( $pPath ) );
			$pResourceUrl = $resource[0];

			$eol          = "\n";
			$content_md5  = '';
			$content_type = '';
			$now          = ( time() - self::$_clock_diff );
			$date         = date( 'r', $now );

			$string_to_sign = implode( $eol, array(
				'GET',
				$content_md5,
				$content_type,
				$date,
				$pResourceUrl
			) );

			// If secret and public keys are identical, it means that
			// the signature uses public key hash encoding.
			$auth_type = ( $this->_secret !== $this->_public ) ? 'FS' : 'FSP';

			return $this->GetUrl(
				$pResourceUrl . '?' .
				( 1 < count( $resource ) && ! empty( $resource[1] ) ? $resource[1] . '&' : '' ) .
				http_build_query( array(
					'auth_date'     => $date,
					'authorization' => $auth_type . ' ' . $this->_id . ':' .
					                   $this->_public . ':' .
					                   self::Base64UrlEncode( hash_hmac(
						                   'sha256', $string_to_sign, $this->_secret
					                   ) )
				) ) );
		}

		/**
		 * Makes an HTTP request. This method can be overridden by subclasses if
		 * developers want to do fancier things or use something other than curl to
		 * make the request.
		 *
		 * @param string        $pCanonizedPath The URL to make the request to
		 * @param string        $pMethod        HTTP method
		 * @param array         $params         The parameters to use for the POST body
		 * @param null|resource $ch             Initialized curl handle
		 *
		 * @return object[]|object|null
		 *
		 * @throws Freemius_Exception
		 */
		public function MakeRequest( $pCanonizedPath, $pMethod = 'GET', $params = array(), $ch = null ) {
			if ( !FS_SDK__HAS_CURL ) {
				$this->ThrowNoCurlException();
			}

			// Connectivity errors simulation.
			if ( FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE ) {
				$this->ThrowCloudFlareDDoSException();
			} else if ( FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL ) {
				$this->ThrowSquidAclException();
			}

			if ( ! $ch ) {
				$ch = curl_init();
			}

			$opts = self::$CURL_OPTS;

			if ( ! isset( $opts[ CURLOPT_HTTPHEADER ] ) || ! is_array( $opts[ CURLOPT_HTTPHEADER ] ) ) {
				$opts[ CURLOPT_HTTPHEADER ] = array();
			}

			if ( 'POST' === $pMethod || 'PUT' === $pMethod ) {
				if ( is_array( $params ) && 0 < count( $params ) ) {
					$opts[ CURLOPT_HTTPHEADER ][] = 'Content-Type: application/json';
					$opts[ CURLOPT_POST ]         = count( $params );
					$opts[ CURLOPT_POSTFIELDS ]   = json_encode( $params );
				}

				$opts[ CURLOPT_RETURNTRANSFER ] = true;
			}

			$opts[ CURLOPT_URL ]           = $this->GetUrl( $pCanonizedPath );
			$opts[ CURLOPT_CUSTOMREQUEST ] = $pMethod;

			$resource = explode( '?', $pCanonizedPath );

			// Only sign request if not ping.json connectivity test.
			if ( '/v1/ping.json' !== strtolower( substr( $resource[0], - strlen( '/v1/ping.json' ) ) ) ) {
				$this->SignRequest( $resource[0], $opts );
			}

			// disable the 'Expect: 100-continue' behaviour. This causes CURL to wait
			// for 2 seconds if the server does not support this header.
			$opts[ CURLOPT_HTTPHEADER ][] = 'Expect:';

			if ( 'https' === substr( strtolower( $pCanonizedPath ), 0, 5 ) ) {
				$opts[ CURLOPT_SSL_VERIFYHOST ] = false;
				$opts[ CURLOPT_SSL_VERIFYPEER ] = false;
			}

			curl_setopt_array( $ch, $opts );
			$result = curl_exec( $ch );

			/*if (curl_errno($ch) == 60) // CURLE_SSL_CACERT

			{
				self::errorLog('Invalid or no certificate authority found, using bundled information');
				curl_setopt($ch, CURLOPT_CAINFO,
				dirname(__FILE__) . '/fb_ca_chain_bundle.crt');
				$result = curl_exec($ch);
			}*/

			// With dual stacked DNS responses, it's possible for a server to
			// have IPv6 enabled but not have IPv6 connectivity.  If this is
			// the case, curl will try IPv4 first and if that fails, then it will
			// fall back to IPv6 and the error EHOSTUNREACH is returned by the
			// operating system.
			if ( false === $result && empty( $opts[ CURLOPT_IPRESOLVE ] ) ) {
				$matches = array();
				$regex   = '/Failed to connect to ([^:].*): Network is unreachable/';
				if ( preg_match( $regex, curl_error( $ch ), $matches ) ) {
					if ( strlen( @inet_pton( $matches[1] ) ) === 16 ) {
//						self::errorLog('Invalid IPv6 configuration on server, Please disable or get native IPv6 on your server.');

						self::$CURL_OPTS[ CURLOPT_IPRESOLVE ] = CURL_IPRESOLVE_V4;
						curl_setopt( $ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 );
						$result = curl_exec( $ch );
					}
				}
			}

			if ( $result === false ) {
				$e = new Freemius_Exception( array(
					'error' => array(
						'code'    => curl_errno( $ch ),
						'message' => curl_error( $ch ),
						'type'    => 'CurlException',
					),
				) );

				curl_close( $ch );
				throw $e;
			}

			curl_close( $ch );

			if (empty($result))
				return null;

			$decoded = json_decode( $result );

			if ( is_null( $decoded ) ) {
				if ( preg_match( '/Please turn JavaScript on/i', $result ) &&
				     preg_match( '/text\/javascript/', $result )
				) {
					$this->ThrowCloudFlareDDoSException( $result );
				} else if ( preg_match( '/Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect./', $result ) &&
				            preg_match( '/squid/', $result )
				) {
					$this->ThrowSquidAclException( $result );
				} else {
					$decoded = (object) array(
						'error' => (object) array(
							'type'    => 'Unknown',
							'message' => $result,
							'code'    => 'unknown',
							'http'    => 402
						)
					);
				}
			}

			return $decoded;
		}

		/**
		 * @param string $pResult
		 *
		 * @throws Freemius_Exception
		 */
		private function ThrowNoCurlException( $pResult = '' ) {
			throw new Freemius_Exception( array(
				'error' => (object) array(
					'type'    => 'cUrlMissing',
					'message' => $pResult,
					'code'    => 'curl_missing',
					'http'    => 402
				)
			) );
		}

		/**
		 * @param string $pResult
		 *
		 * @throws Freemius_Exception
		 */
		private function ThrowCloudFlareDDoSException( $pResult = '' ) {
			throw new Freemius_Exception( array(
				'error' => (object) array(
					'type'    => 'CloudFlareDDoSProtection',
					'message' => $pResult,
					'code'    => 'cloudflare_ddos_protection',
					'http'    => 402
				)
			) );
		}

		/**
		 * @param string $pResult
		 *
		 * @throws Freemius_Exception
		 */
		private function ThrowSquidAclException( $pResult = '' ) {
			throw new Freemius_Exception( array(
				'error' => (object) array(
					'type'    => 'SquidCacheBlock',
					'message' => $pResult,
					'code'    => 'squid_cache_block',
					'http'    => 402
				)
			) );
		}
	}

1			<?php
			0 ignored issues – show Coding Style Compatibility introduced 2015-11-26 00:05 UTC by Report Bug Copy Issue Report For compatibility and reusability of your code, PSR1 recommends that a file should introduce either new symbols (like classes, functions, etc.) or have side-effects (like outputting something, or including other files), but not both at the same time. The first symbol is defined on line 20 and the first side effect is on line 18. The PSR-1: Basic Coding Standard recommends that a file should either introduce new symbols, that is classes, functions, constants or similar, or have side effects. Side effects are anything that executes logic, like for example printing output, changing ini settings or writing to a file. The idea behind this recommendation is that merely auto-loading a class should not change the state of an application. It also promotes a cleaner style of programming and makes your code less prone to errors, because the logic is not spread out all over the place. To learn more about the PSR-1, please see the PHP-FIG site on the PSR-1. Loading history...
2			/**
3			* Copyright 2014 Freemius, Inc.
4			*
5			* Licensed under the GPL v2 (the "License"); you may
6			* not use this file except in compliance with the License. You may obtain
7			* a copy of the License at
8			*
9			* http://choosealicense.com/licenses/gpl-v2/
10			*
11			* Unless required by applicable law or agreed to in writing, software
12			* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
13			* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
14			* License for the specific language governing permissions and limitations
15			* under the License.
16			*/
17
18			require_once( dirname( __FILE__ ) . '/FreemiusBase.php' );
19
20			define( 'FS_SDK__USER_AGENT', 'fs-php-' . Freemius_Api_Base::VERSION );
21
22			if ( ! defined( 'FS_SDK__SIMULATE_NO_CURL' ) ) {
23			define( 'FS_SDK__SIMULATE_NO_CURL', false );
24			}
25
26			if ( ! defined( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE' ) ) {
27			define( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE', false );
28			}
29
30			if ( ! defined( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL' ) ) {
31			define( 'FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL', false );
32			}
33
34			define( 'FS_SDK__HAS_CURL', ! FS_SDK__SIMULATE_NO_CURL && function_exists( 'curl_version' ) );
35
36			if ( ! FS_SDK__HAS_CURL ) {
37			$curl_version = array( 'version' => '7.0.0' );
38			} else {
39			$curl_version = curl_version();
40			}
41
42			define( 'FS_API__PROTOCOL', version_compare( $curl_version['version'], '7.37', '>=' ) ? 'https' : 'http' );
43
44			if ( ! defined( 'FS_API__ADDRESS' ) ) {
45			define( 'FS_API__ADDRESS', '://api.freemius.com' );
46			}
47			if ( ! defined( 'FS_API__SANDBOX_ADDRESS' ) ) {
48			define( 'FS_API__SANDBOX_ADDRESS', '://sandbox-api.freemius.com' );
49			}
50
51			class Freemius_Api extends Freemius_Api_Base {
52			/**
53			* Default options for curl.
54			*/
55			public static $CURL_OPTS = array(
56			CURLOPT_CONNECTTIMEOUT => 10,
57			CURLOPT_RETURNTRANSFER => true,
58			CURLOPT_TIMEOUT => 60,
59			CURLOPT_USERAGENT => FS_SDK__USER_AGENT,
60			);
61
62			/**
63			* @param string $pScope 'app', 'developer', 'user' or 'install'.
64			* @param number $pID Element's id.
65			* @param string $pPublic Public key.
66			* @param string\|bool $pSecret Element's secret key.
67			* @param bool $pSandbox Whether or not to run API in sandbox mode.
68			*/
69			public function __construct( $pScope, $pID, $pPublic, $pSecret = false, $pSandbox = false ) {
70			// If secret key not provided, use public key encryption.
71			if ( is_bool( $pSecret ) ) {
72			$pSecret = $pPublic;
73			}
74
75			parent::Init( $pScope, $pID, $pPublic, $pSecret, $pSandbox );
			0 ignored issues – show Comprehensibility Bug introduced 2015-11-26 00:05 UTC by Report Bug Copy Issue Report It seems like you call parent on a different method (`Init()` instead of `__construct()`). Are you sure this is correct? If so, you might want to change this to `$this->Init()`. This check looks for a call to a parent method whose name is different than the method from which it is called. Consider the following code: class Daddy { protected function getFirstName() { return "Eidur"; } protected function getSurName() { return "Gudjohnsen"; } } class Son { public function getFirstName() { return parent::getSurname(); } } The `getFirstName()` method in the `Son` calls the wrong method in the parent class. Loading history...
76			}
77
78			public function GetUrl( $pCanonizedPath = '' ) {
79			$address = ( $this->_sandbox ? FS_API__SANDBOX_ADDRESS : FS_API__ADDRESS );
80
81			if ( ':' === $address[0] ) {
82			$address = self::$_protocol . $address;
83			}
84
85			return $address . $pCanonizedPath;
86			}
87
88			/**
89			* @var int Clock diff in seconds between current server to API server.
90			*/
91			private static $_clock_diff = 0;
92
93			/**
94			* Set clock diff for all API calls.
95			*
96			* @since 1.0.3
97			*
98			* @param $pSeconds
99			*/
100			public static function SetClockDiff( $pSeconds ) {
101			self::$_clock_diff = $pSeconds;
102			}
103
104			/**
105			* @var string http or https
106			*/
107			private static $_protocol = FS_API__PROTOCOL;
108
109			/**
110			* Set API connection protocol.
111			*
112			* @since 1.0.4
113			*/
114			public static function SetHttp() {
115			self::$_protocol = 'http';
116			}
117
118			/**
119			* @since 1.0.4
120			*
121			* @return bool
122			*/
123			public static function IsHttps() {
124			return ( 'https' === self::$_protocol );
125			}
126
127			/**
128			* Sign request with the following HTTP headers:
129			* Content-MD5: MD5(HTTP Request body)
130			* Date: Current date (i.e Sat, 14 Feb 2015 20:24:46 +0000)
131			* Authorization: FS {scope_entity_id}:{scope_entity_public_key}:base64encode(sha256(string_to_sign,
132			* {scope_entity_secret_key}))
133			*
134			* @param string $pResourceUrl
135			* @param array $opts
136			*/
137			protected function SignRequest( $pResourceUrl, &$opts ) {
138			$eol = "\n";
139			$content_md5 = '';
140			$now = ( time() - self::$_clock_diff );
141			$date = date( 'r', $now );
142			$content_type = '';
143
144			if ( isset( $opts[ CURLOPT_POST ] ) && 0 < $opts[ CURLOPT_POST ] ) {
145			$content_md5 = md5( $opts[ CURLOPT_POSTFIELDS ] );
146			$opts[ CURLOPT_HTTPHEADER ][] = 'Content-MD5: ' . $content_md5;
147			$content_type = 'application/json';
148			}
149
150			$opts[ CURLOPT_HTTPHEADER ][] = 'Date: ' . $date;
151
152			$string_to_sign = implode( $eol, array(
153			$opts[ CURLOPT_CUSTOMREQUEST ],
154			$content_md5,
155			$content_type,
156			$date,
157			$pResourceUrl
158			) );
159
160			// If secret and public keys are identical, it means that
161			// the signature uses public key hash encoding.
162			$auth_type = ( $this->_secret !== $this->_public ) ? 'FS' : 'FSP';
163
164			// Add authorization header.
165			$opts[ CURLOPT_HTTPHEADER ][] = 'Authorization: ' .
166			$auth_type . ' ' .
167			$this->_id . ':' .
168			$this->_public . ':' .
169			self::Base64UrlEncode(
170			hash_hmac( 'sha256', $string_to_sign, $this->_secret )
171			);
172			}
173
174			/**
175			* Get API request URL signed via query string.
176			*
177			* @param string $pPath
178			*
179			* @throws Freemius_Exception
180			*
181			* @return string
182			*/
183			function GetSignedUrl( $pPath ) {
			0 ignored issues – show Best Practice introduced 2015-11-26 00:05 UTC by Report Bug Copy Issue Report It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
184			$resource = explode( '?', $this->CanonizePath( $pPath ) );
185			$pResourceUrl = $resource[0];
186
187			$eol = "\n";
188			$content_md5 = '';
189			$content_type = '';
190			$now = ( time() - self::$_clock_diff );
191			$date = date( 'r', $now );
192
193			$string_to_sign = implode( $eol, array(
194			'GET',
195			$content_md5,
196			$content_type,
197			$date,
198			$pResourceUrl
199			) );
200
201			// If secret and public keys are identical, it means that
202			// the signature uses public key hash encoding.
203			$auth_type = ( $this->_secret !== $this->_public ) ? 'FS' : 'FSP';
204
205			return $this->GetUrl(
206			$pResourceUrl . '?' .
207			( 1 < count( $resource ) && ! empty( $resource[1] ) ? $resource[1] . '&' : '' ) .
208			http_build_query( array(
209			'auth_date' => $date,
210			'authorization' => $auth_type . ' ' . $this->_id . ':' .
211			$this->_public . ':' .
212			self::Base64UrlEncode( hash_hmac(
213			'sha256', $string_to_sign, $this->_secret
214			) )
215			) ) );
216			}
217
218			/**
219			* Makes an HTTP request. This method can be overridden by subclasses if
220			* developers want to do fancier things or use something other than curl to
221			* make the request.
222			*
223			* @param string $pCanonizedPath The URL to make the request to
224			* @param string $pMethod HTTP method
225			* @param array $params The parameters to use for the POST body
226			* @param null\|resource $ch Initialized curl handle
227			*
228			* @return object[]\|object\|null
229			*
230			* @throws Freemius_Exception
231			*/
232			public function MakeRequest( $pCanonizedPath, $pMethod = 'GET', $params = array(), $ch = null ) {
233			if ( !FS_SDK__HAS_CURL ) {
234			$this->ThrowNoCurlException();
235			}
236
237			// Connectivity errors simulation.
238			if ( FS_SDK__SIMULATE_NO_API_CONNECTIVITY_CLOUDFLARE ) {
239			$this->ThrowCloudFlareDDoSException();
240			} else if ( FS_SDK__SIMULATE_NO_API_CONNECTIVITY_SQUID_ACL ) {
241			$this->ThrowSquidAclException();
242			}
243
244			if ( ! $ch ) {
245			$ch = curl_init();
246			}
247
248			$opts = self::$CURL_OPTS;
249
250			if ( ! isset( $opts[ CURLOPT_HTTPHEADER ] ) \|\| ! is_array( $opts[ CURLOPT_HTTPHEADER ] ) ) {
251			$opts[ CURLOPT_HTTPHEADER ] = array();
252			}
253
254			if ( 'POST' === $pMethod \|\| 'PUT' === $pMethod ) {
255			if ( is_array( $params ) && 0 < count( $params ) ) {
256			$opts[ CURLOPT_HTTPHEADER ][] = 'Content-Type: application/json';
257			$opts[ CURLOPT_POST ] = count( $params );
258			$opts[ CURLOPT_POSTFIELDS ] = json_encode( $params );
259			}
260
261			$opts[ CURLOPT_RETURNTRANSFER ] = true;
262			}
263
264			$opts[ CURLOPT_URL ] = $this->GetUrl( $pCanonizedPath );
265			$opts[ CURLOPT_CUSTOMREQUEST ] = $pMethod;
266
267			$resource = explode( '?', $pCanonizedPath );
268
269			// Only sign request if not ping.json connectivity test.
270			if ( '/v1/ping.json' !== strtolower( substr( $resource[0], - strlen( '/v1/ping.json' ) ) ) ) {
271			$this->SignRequest( $resource[0], $opts );
272			}
273
274			// disable the 'Expect: 100-continue' behaviour. This causes CURL to wait
275			// for 2 seconds if the server does not support this header.
276			$opts[ CURLOPT_HTTPHEADER ][] = 'Expect:';
277
278			if ( 'https' === substr( strtolower( $pCanonizedPath ), 0, 5 ) ) {
279			$opts[ CURLOPT_SSL_VERIFYHOST ] = false;
280			$opts[ CURLOPT_SSL_VERIFYPEER ] = false;
281			}
282
283			curl_setopt_array( $ch, $opts );
284			$result = curl_exec( $ch );
285
286			/*if (curl_errno($ch) == 60) // CURLE_SSL_CACERT
			0 ignored issues – show Unused Code Comprehensibility introduced 2015-11-26 00:05 UTC by Report Bug Copy Issue Report `58%` of this comment could be valid code. Did you maybe forget this after debugging? Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it. The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production. This check looks for comments that seem to be mostly valid code and reports them. Loading history...
287			{
288			self::errorLog('Invalid or no certificate authority found, using bundled information');
289			curl_setopt($ch, CURLOPT_CAINFO,
290			dirname(__FILE__) . '/fb_ca_chain_bundle.crt');
291			$result = curl_exec($ch);
292			}*/
293
294			// With dual stacked DNS responses, it's possible for a server to
295			// have IPv6 enabled but not have IPv6 connectivity. If this is
296			// the case, curl will try IPv4 first and if that fails, then it will
297			// fall back to IPv6 and the error EHOSTUNREACH is returned by the
298			// operating system.
299			if ( false === $result && empty( $opts[ CURLOPT_IPRESOLVE ] ) ) {
300			$matches = array();
301			$regex = '/Failed to connect to ([^:].*): Network is unreachable/';
302			if ( preg_match( $regex, curl_error( $ch ), $matches ) ) {
303			if ( strlen( @inet_pton( $matches[1] ) ) === 16 ) {
304			// self::errorLog('Invalid IPv6 configuration on server, Please disable or get native IPv6 on your server.');
			0 ignored issues – show Unused Code Comprehensibility introduced 2015-11-26 00:05 UTC by Report Bug Copy Issue Report `75%` of this comment could be valid code. Did you maybe forget this after debugging? Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it. The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production. This check looks for comments that seem to be mostly valid code and reports them. Loading history...
305			self::$CURL_OPTS[ CURLOPT_IPRESOLVE ] = CURL_IPRESOLVE_V4;
306			curl_setopt( $ch, CURLOPT_IPRESOLVE, CURL_IPRESOLVE_V4 );
307			$result = curl_exec( $ch );
308			}
309			}
310			}
311
312			if ( $result === false ) {
313			$e = new Freemius_Exception( array(
314			'error' => array(
315			'code' => curl_errno( $ch ),
316			'message' => curl_error( $ch ),
317			'type' => 'CurlException',
318			),
319			) );
320
321			curl_close( $ch );
322			throw $e;
323			}
324
325			curl_close( $ch );
326
327			if (empty($result))
328			return null;
329
330			$decoded = json_decode( $result );
331
332			if ( is_null( $decoded ) ) {
333			if ( preg_match( '/Please turn JavaScript on/i', $result ) &&
334			preg_match( '/text\/javascript/', $result )
335			) {
336			$this->ThrowCloudFlareDDoSException( $result );
337			} else if ( preg_match( '/Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect./', $result ) &&
338			preg_match( '/squid/', $result )
339			) {
340			$this->ThrowSquidAclException( $result );
341			} else {
342			$decoded = (object) array(
343			'error' => (object) array(
344			'type' => 'Unknown',
345			'message' => $result,
346			'code' => 'unknown',
347			'http' => 402
348			)
349			);
350			}
351			}
352
353			return $decoded;
354			}
355
356			/**
357			* @param string $pResult
358			*
359			* @throws Freemius_Exception
360			*/
361			private function ThrowNoCurlException( $pResult = '' ) {
362			throw new Freemius_Exception( array(
363			'error' => (object) array(
364			'type' => 'cUrlMissing',
365			'message' => $pResult,
366			'code' => 'curl_missing',
367			'http' => 402
368			)
369			) );
370			}
371
372			/**
373			* @param string $pResult
374			*
375			* @throws Freemius_Exception
376			*/
377			private function ThrowCloudFlareDDoSException( $pResult = '' ) {
378			throw new Freemius_Exception( array(
379			'error' => (object) array(
380			'type' => 'CloudFlareDDoSProtection',
381			'message' => $pResult,
382			'code' => 'cloudflare_ddos_protection',
383			'http' => 402
384			)
385			) );
386			}
387
388			/**
389			* @param string $pResult
390			*
391			* @throws Freemius_Exception
392			*/
393			private function ThrowSquidAclException( $pResult = '' ) {
394			throw new Freemius_Exception( array(
395			'error' => (object) array(
396			'type' => 'SquidCacheBlock',
397			'message' => $pResult,
398			'code' => 'squid_cache_block',
399			'http' => 402
400			)
401			) );
402			}
403			}

WPTie / CF7Customizer

Push — master ( e12db8...fe8184 )

Freemius_Api::ThrowCloudFlareDDoSException() A

Complexity

Size

Duplication

Duplication Side-by-Side

Filter issues like