Changeset 4964
- Timestamp:
- 02/20/2017 11:49:01 PM (9 years ago)
- Location:
- sites/trunk/common/includes/wporg-sso
- Files:
-
- 2 edited
-
class-wporg-sso.php (modified) (5 diffs)
-
wp-plugin.php (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
sites/trunk/common/includes/wporg-sso/class-wporg-sso.php
r4960 r4964 2 2 if ( ! class_exists( 'WPOrg_SSO' ) ) { 3 3 /** 4 * Single Sign-On (SSO) handling for WordPress/bbPress /GlotPressinstances under *.wordpress.org.4 * Single Sign-On (SSO) handling for WordPress/bbPress instances under *.wordpress.org. 5 5 * 6 6 * @author stephdau … … 51 51 52 52 // If we got a host by now, it's a safe wordpress.org-based one, add it to the list of allowed redirects 53 if ( ! empty( $host ) && ! in_array( $host, $hosts ) ) {53 if ( ! empty( $host ) && ! in_array( $host, $hosts ) ) { 54 54 $hosts[] = $host; 55 55 } … … 81 81 82 82 } 83 84 83 85 84 /** … … 114 113 $redirect_to = $redirect_to_referrer; 115 114 } 116 } else {115 } else { 117 116 // Otherwise, attempt to guess the parent dir of where they came from and validate that. 118 117 $redirect_to_source_parent = preg_replace( '/\/[^\/]+\.php\??.*$/', '/', "https://{$this->host}{$_SERVER['REQUEST_URI']}" ); … … 153 152 * Validates if target URL is within our bounds, then redirects to it if so, or to WP.org homepage (returns if headers already sent). 154 153 * 155 * @param string $to Destination URL 156 * @param number $status HTTP redirect status, defaults to 302 154 * @note: using our own over wp_safe_redirect(), etc, because not all targeted platforms (WP/BB/GP/etc) implement an equivalent, we run early, etc. 157 155 * 158 * @note: using our own over wp_safe_redirect(), etc, because not all targeted platforms (WP/BB/GP/etc) implement an equivalent, we run early, etc. 156 * @param string $to Destination URL 157 * @param int $status HTTP redirect status, defaults to 302 159 158 */ 160 159 protected function _safe_redirect( $to, $status = 302 ) { -
sites/trunk/common/includes/wporg-sso/wp-plugin.php
r4963 r4964 147 147 148 148 // Add our host to the list of allowed ones. 149 add_filter( 'allowed_redirect_hosts', array( &$this, 'add_allowed_redirect_host' ) );149 add_filter( 'allowed_redirect_hosts', array( $this, 'add_allowed_redirect_host' ) ); 150 150 151 151 // Replace some URLs by our own. 152 add_filter( 'lostpassword_url', array( &$this, 'lostpassword_url' ), 20, 2 );152 add_filter( 'lostpassword_url', array( $this, 'lostpassword_url' ), 20, 2 ); 153 153 add_filter( 'site_url', array( $this, 'login_post_url' ), 20, 3 ); 154 154 add_filter( 'register_url', array( $this, 'register_url' ), 20 ); … … 216 216 } else { 217 217 if ( empty( $_GET['screen'] ) ) { 218 add_filter( 'login_form_defaults', array( &$this, 'login_form_defaults' ) );218 add_filter( 'login_form_defaults', array( $this, 'login_form_defaults' ) ); 219 219 } 220 220 } … … 241 241 } else { 242 242 // if on login screen, filter network_site_url to make sure our forms go to the SSO host, not wordpress.org 243 add_action( 'network_site_url', array( &$this, 'login_network_site_url' ), 10, 3 );243 add_action( 'network_site_url', array( $this, 'login_network_site_url' ), 10, 3 ); 244 244 } 245 245 } … … 255 255 * @return string 256 256 * 257 * @example add_action( 'network_site_url', array( &$this, 'login_network_site_url' ), 10, 3 );257 * @example add_action( 'network_site_url', array( $this, 'login_network_site_url' ), 10, 3 ); 258 258 */ 259 259 public function login_network_site_url( $url, $path, $scheme ) {
Note: See TracChangeset
for help on using the changeset viewer.