prefix . 'cookie_consent_logs'); $rate_limit_count = $wpdb->get_var($wpdb->prepare( "SELECT rate_limit_count FROM $table_name WHERE user_ip = %s", $ip )); if (!$rate_limit_count) { return true; // No rate limit set, allow request } $time_window = 10; // Time window in seconds as of now we are checking for 10 seconds, we can pass this value as function's paramater as well. $transient_key = 'rate_limit_' . md5($ip); $requests = get_transient($transient_key); if (!$requests) { $requests = []; } $current_time = time(); $requests = array_filter($requests, function($timestamp) use ($current_time, $time_window) { return ($current_time - $timestamp) < $time_window; }); if (count($requests) >= $rate_limit_count) { return false; //Too many requests } $requests[] = $current_time; set_transient($transient_key, $requests, $time_window); return true; //Request allowed } // TODO static function get_location_details($ip){ global $cookieadmin; $return = array(); $api_url = cookieadmin_pro_api_url(-1, 'softwp'); $url = $api_url.'ipinfo.php?ip='.rawurlencode($ip).'&license='.$cookieadmin['license']['license'].'&url='.rawurlencode(site_url()); $response = wp_remote_get($url); if(is_wp_error($response)){ return $return; } $body = wp_remote_retrieve_body($response); $data = json_decode($body, true); if(empty($data)){ return $return; } return $data; } static function consent_exists($consent_id){ global $wpdb; $table_name = esc_sql($wpdb->prefix . 'cookieadmin_consents'); $result = $wpdb->get_var( $wpdb->prepare("SELECT id FROM $table_name WHERE consent_id = %s", $consent_id) ); return !empty($result); } static function anonymize_ip($ip) { if (filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV4)) { // Replace last octet with 0 return preg_replace('/\.\d+$/', '.0', $ip); } elseif (filter_var($ip, FILTER_VALIDATE_IP, FILTER_FLAG_IPV6)) { // Replace last segment with :: return preg_replace('/:[0-9a-fA-F]+$/', '::', $ip); } return $ip; // fallback if invalid IP } static function generate_consent_id() { return sprintf( '%04x%04x-%04x-%04x-%04x-%04x%04x%04x', wp_rand(0, 0xffff), wp_rand(0, 0xffff), wp_rand(0, 0xffff), wp_rand(0, 0x0fff) | 0x4000, // version 4 wp_rand(0, 0x3fff) | 0x8000, // variant wp_rand(0, 0xffff), wp_rand(0, 0xffff), wp_rand(0, 0xffff) ); } static function save_consent(){ global $wpdb; if(empty($_POST['cookieadmin_preference'])){ exit(1); } $default_prefrencs = array('accept', 'reject', 'functional', 'analytics', 'marketing', 'respect_gpc', 'override_gpc'); $prefrnc = json_decode(sanitize_text_field(wp_unslash($_POST['cookieadmin_preference']))); foreach($prefrnc as $k => $preff){ if(!in_array($preff, $default_prefrencs)){ array_splice($prefrnc, $k, 1); } } $prefrnc = json_encode($prefrnc, true); $user_ip = isset( $_SERVER['REMOTE_ADDR'] ) ? sanitize_text_field( wp_unslash( $_SERVER['REMOTE_ADDR'] ) ) : ''; $location = \CookieAdminPro\Enduser::get_location_details($user_ip); $masked_user_ip = \CookieAdminPro\Enduser::anonymize_ip($user_ip); $country = !empty($location['country']) ? sanitize_text_field($location['country']) : ''; $browser = isset($_SERVER['HTTP_USER_AGENT']) ? sanitize_text_field(wp_unslash($_SERVER['HTTP_USER_AGENT'])) : ''; $domain = wp_parse_url(home_url())['host']; $table_name = esc_sql($wpdb->prefix . 'cookieadmin_consents'); $consent_id = !empty($_POST['cookieadmin_consent_id']) ? sanitize_text_field(wp_unslash($_POST['cookieadmin_consent_id'])) : ''; $data = array( 'user_ip' => inet_pton($masked_user_ip), 'consent_time' => time(), 'country' => $country, 'browser' => $browser, 'domain' => $domain, 'consent_status' => $prefrnc ); //Save consent in DB if(!empty($consent_id) && \CookieAdminPro\Enduser::consent_exists($consent_id)){ $format = array('%s', '%d', '%s', '%s', '%s', '%s'); $where = array('consent_id' => $consent_id); $where_format = array('%s'); $inserted = $wpdb->update($table_name, $data, $where, $format, $where_format); }else{ $consent_id = \CookieAdminPro\Enduser::generate_consent_id(); $data['consent_id'] = $consent_id; $format = array('%s', '%d', '%s', '%s', '%s', '%s', '%s'); $inserted = $wpdb->insert($table_name, $data, $format); } if (false === $inserted) { wp_send_json_error(array('response' => 'Error saving consent data.')); } else { wp_send_json_success(array('response' => $consent_id)); } } static function wp_head() { $policy = cookieadmin_load_policy(); $law = get_option('cookieadmin_law', 'cookieadmin_gdpr'); $cookieadmin_default_allowed = (!empty($policy[$law]['preload']) ? $policy[$law]['preload'] : []); $cookieadmin_default_categories = ['functional', 'analytics', 'marketing', 'accept', 'reject']; $cookieadmin_js_preferences = []; foreach ($cookieadmin_default_categories as $category) { $cookieadmin_js_preferences[$category] = (!empty($cookieadmin_default_allowed) && in_array($category, $cookieadmin_default_allowed) ? true : false); } $cookieadmin_js_preferences_json = json_encode($cookieadmin_js_preferences); ?> prefix.'cookieadmin_cookies'); $scanned_cookies = $wpdb->get_results("SELECT * FROM {$table_name}"); // group cookies by category $grouped_cookies = array(); foreach($scanned_cookies as $cookie){ $category = !empty($cookie->category) ? $cookie->category : 'Unknown'; if(!empty($show_category) && !in_array(strtolower($category), $show_category)){ continue; } $grouped_cookies[$category][] = $cookie; } $cookiedata = '
'; $cookiedata .= '
'; $cookiedata .= ' '; foreach($grouped_cookies as $category => $cookies){ $cookiedata .= ' '; foreach($cookies as $value){ $timestamp = strtotime($value->expires); $expiry = (!empty($timestamp) && $timestamp > 0) ? round(($timestamp - time()) / 86400).' '.esc_html__('days', 'cookieadmin') : __('Session', 'cookieadmin'); $cookiedata .= ' '; } } $cookiedata .= '
'.esc_html__('Name', 'cookieadmin').' '.esc_html__('Description', 'cookieadmin').' '.esc_html__('Expiry', 'cookieadmin').'
'.esc_html__($category, 'cookieadmin').'
'.esc_html($value->cookie_name).' '.(!empty($value->description) ? esc_html__($value->description, 'cookieadmin') : esc_html__('Not Available', 'cookieadmin')).' '.esc_html($expiry).'
'; return $cookiedata; } static function show_cookie_preference($type = '', $name = '', $cust_classes = ''){ $name = !empty($name) ? $name : __('Customize Cookies Preference', 'cookieadmin'); if($type == 'button'){ return ''; }else{ //send link return ''.esc_html($name).''; } } static function powered_by($html){ global $cookieadmin_settings; if(!empty($cookieadmin_settings['hide_powered_by'])){ return ''; } return $html; } static function privacy_policy_links($html, $policy){ $_html = ''; if(!empty($policy['cookieadmin_privacy_policy'])){ $_html .= ''.__('Privacy Policy', 'cookieadmin').''; } if(!empty($policy['cookieadmin_cookie_policy'])){ $_html .= ''.__('Cookie Policy', 'cookieadmin').''; } if(!empty($policy['cookieadmin_privacy_policy_banner'])){ $html['banner'] = '
' . wp_kses_post($_html) . '
'; } if(!empty($policy['cookieadmin_privacy_policy_pref'])){ $html['modal'] = '
' . wp_kses_post($_html) . '
'; } return $html; } // filter handler for reconsent icon URL placeholder static function reconsent_icon_url($url, $policy){ if(!empty($policy['cookieadmin_reconsent_img_url'])){ return esc_url($policy['cookieadmin_reconsent_img_url']); } $icon_name = !empty($policy['cookieadmin_reconsent_icon']) ? $policy['cookieadmin_reconsent_icon'] : 'cookieadmin.svg'; return COOKIEADMIN_PRO_PLUGIN_URL . '/assets/images/re-consent-icons/' . $icon_name; } }