/
home
/
assocoweys
/
comgk
/
wp-content
/
plugins
/
defender-security
/
src
/
integrations
/
Upload File
HOME
<?php /** * Handles interactions with AntiBot Global Firewall API. * * @package WP_Defender\Integrations */ namespace WP_Defender\Integrations; if ( ! defined( 'ABSPATH' ) ) { die; } use WP_Error; use WP_Defender\Traits\Defender_Dashboard_Client; /** * AntiBot Global Firewall API client. * * @since 4.7.1 */ class Antibot_Global_Firewall_Client { use Defender_Dashboard_Client; /** * The base URL of the AntiBot Global Firewall API service. * * @var string */ private $base_url; /** * Class construct. * * @param string|null $base_url Optional. If not provided, fallback to default or constant. */ public function __construct( ?string $base_url = null ) { if ( $base_url ) { $this->base_url = $base_url; } elseif ( defined( 'ANTIBOT_GLOBAL_FIREWALL_CUSTOM_API_SERVER' ) && ANTIBOT_GLOBAL_FIREWALL_CUSTOM_API_SERVER ) { $this->base_url = ANTIBOT_GLOBAL_FIREWALL_CUSTOM_API_SERVER; } else { $this->base_url = 'https://api.blocklist-service.com'; } } /** * Get the base URL of the AntiBot Global Firewall API service. * * @return string */ private function get_base_url(): string { return $this->base_url . '/api'; } /** * Send firewall logs to AntiBot Global Firewall API. * * @param array $data The firewall logs. * * @return array|WP_Error */ public function send_reports( $data ) { return $this->make_request( 'POST', '/report', $data ); } /** * Get the blocklist download URL and hashes. * * @param string $mode The mode for fetching the blocklist. * * @since 4.8.0 * @return array|WP_Error */ public function get_blocklist_download( $mode ) { $path = '/download/' . rawurlencode( $mode ); return $this->make_request( 'GET', $path ); } /** * Get Blocklist Statistics. * * @return array|\WP_Error */ public function get_blocklist_stats() { $response = $this->make_request( 'GET', '/stats' ); if ( is_wp_error( $response ) ) { return $response; } return isset( $response['data'] ) && is_array( $response['data'] ) ? $response['data'] : array(); } /** * Make a request to the AntiBot Global Firewall API service. * * @param string $method The HTTP method to use. * @param string $endpoint The API endpoint to request. * @param array $data The data to send with the request or query variables. * * @return array|WP_Error */ private function make_request( $method, $endpoint, $data = array() ) { $apikey = $this->get_api_key(); if ( '' === $apikey ) { return new WP_Error( 'no_api_key', 'No API key provided' ); } // Check length. if ( 40 !== strlen( $apikey ) ) { return new WP_Error( 'invalid_api_key', 'Invalid API key length' ); } // Check characters. preg_match( '/[a-f0-9]{40}/', $apikey, $matches ); if ( ! isset( $matches[0] ) ) { return new WP_Error( 'invalid_api_key', 'Invalid API key format' ); } $base_url = $this->get_base_url(); // Combine Url. $url = $base_url . $endpoint; $args = array( 'method' => $method, 'headers' => array( 'x-blocklist-auth' => $apikey, ), ); if ( 'POST' === $method ) { $args['headers']['Content-Type'] = 'application/json'; $args['body'] = wp_json_encode( $data ); } elseif ( 'GET' === $method ) { $url = add_query_arg( $data, $url ); } $response = wp_remote_request( $url, $args ); if ( is_wp_error( $response ) ) { return $response; } $status_code = wp_remote_retrieve_response_code( $response ); $body = json_decode( wp_remote_retrieve_body( $response ), true ); if ( $status_code >= 400 ) { $error_message = isset( $body['message'] ) ? $body['message'] : wp_remote_retrieve_response_message( $response ); $error_code = isset( $body['status'] ) ? $body['status'] : 'http_error_' . $status_code; return new WP_Error( $error_code, $error_message, array( 'status_code' => $status_code ) ); } return $body; } }