Changeset 3442632

Timestamp:

01/19/2026 02:49:27 PM (9 days ago)

Author:

finalpos

Message:

1.3.7

• Fixed critical error when deleting plugin
• Improved plugin lifecycle management (activation, deactivation, uninstall)
• Enhanced data cleanup following WordPress best practices
• PHPCS security compliance improvements

Location:

finalpos/trunk

Files:

• finalpos.php (modified) (2 diffs)
• includes/admin/class-finalpos-admin-assets.php (modified) (2 diffs)
• includes/admin/dashboard/class-finalpos-dashboard.php (modified) (2 diffs)
• includes/admin/wizard/class-finalpos-wizard.php (modified) (1 diff)
• includes/admin/wizard/views/activation-form.php (modified) (1 diff)
• includes/admin/wizard/views/settings-form.php (modified) (1 diff)
• includes/common-functions.php (modified) (5 diffs)
• includes/lifecycle.php (modified) (12 diffs)
• integrations/readonly-orders.php (modified) (1 diff)
• readme.txt (modified) (2 diffs)
• uninstall.php (modified) (1 diff)

finalpos/trunk/finalpos.php

@@ -5 +5 @@
  * Author: FinalPOS
  * Author URI: https://finalpos.com
- * version: 1.3.6
+ * version: 1.3.7
  * License: GPLv2 or later
  * License URI: http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
@@ -23 +23 @@
 
 // Define plugin constants.
-define( 'FINALPOS_VERSION', '1.3.6' );
+define( 'FINALPOS_VERSION', '1.3.7' );
 define( 'FINALPOS_PLUGIN_DIR', plugin_dir_path( __FILE__ ) );
 define( 'FINALPOS_PLUGIN_URL', plugin_dir_url( __FILE__ ) );

finalpos/trunk/includes/admin/class-finalpos-admin-assets.php

@@ -89 +89 @@
 
         // Load specific styles for wizard page.
-        if ( isset( $_GET['page'] ) && $_GET['page'] === FINALPOS_PAGE_SETUP ) {
+        // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Reading page parameter for asset loading.
+        $current_page = isset( $_GET['page'] ) ? sanitize_text_field( wp_unslash( $_GET['page'] ) ) : '';
+
+        if ( $current_page === FINALPOS_PAGE_SETUP ) {
             wp_enqueue_style( FINALPOS_HANDLE_WIZARD );
 
@@ -101 +104 @@
 
         // Load specific styles for dashboard page.
-        if ( isset( $_GET['page'] ) && $_GET['page'] === FINALPOS_PAGE_DASHBOARD ) {
+        if ( $current_page === FINALPOS_PAGE_DASHBOARD ) {
             wp_enqueue_style( FINALPOS_HANDLE_DASHBOARD );
         }

finalpos/trunk/includes/admin/dashboard/class-finalpos-dashboard.php

@@ -9 +9 @@
 class FinalPOS_Dashboard {
     public static function init() {
-        if ( isset( $_POST['action'] ) && $_POST['action'] === FINALPOS_ACTION_DISCONNECT ) {
+        // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Nonce is verified in handle_disconnect().
+        if ( isset( $_POST['action'] ) && sanitize_text_field( wp_unslash( $_POST['action'] ) ) === FINALPOS_ACTION_DISCONNECT ) {
             self::handle_disconnect();
         }
@@ -16 +17 @@
 
     private static function handle_disconnect() {
-        // Verify nonce
-        if ( ! isset( $_POST['finalpos_disconnect_nonce'] ) || ! wp_verify_nonce( $_POST['finalpos_disconnect_nonce'], FINALPOS_NONCE_DISCONNECT ) ) {
+        // Verify nonce.
+        if ( ! isset( $_POST['finalpos_disconnect_nonce'] ) ||
+            ! wp_verify_nonce( sanitize_text_field( wp_unslash( $_POST['finalpos_disconnect_nonce'] ) ), FINALPOS_NONCE_DISCONNECT ) ) {
             wp_die( 'Security check failed.' );
         }

finalpos/trunk/includes/admin/wizard/class-finalpos-wizard.php

@@ -35 +35 @@
         }
 
-        // Check if there's a stage parameter in the URL
-        if ( isset( $_GET['stage'] ) && in_array( $_GET['stage'], array( 'auth_key', 'settings' ) ) ) {
-            $requested_stage = sanitize_text_field( $_GET['stage'] );
-
-            // Only allow moving to settings if we have required data
+        // Check if there's a stage parameter in the URL.
+        // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Stage parameter controls navigation; sensitive operations use custom nonce below.
+        if ( isset( $_GET['stage'] ) && in_array( sanitize_text_field( wp_unslash( $_GET['stage'] ) ), array( 'auth_key', 'settings' ), true ) ) {
+            // phpcs:ignore WordPress.Security.NonceVerification.Recommended
+            $requested_stage = sanitize_text_field( wp_unslash( $_GET['stage'] ) );
+
+            // Only allow moving to settings if we have required data.
             if ( $requested_stage === 'settings' ) {
-                // If this is a redirect from WooCommerce auth with nonce, verify it
+                // If this is a redirect from WooCommerce auth with nonce, verify it.
+                // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Custom nonce verification follows.
                 if ( isset( $_GET['finalpos_nonce'] ) ) {
-                    $nonce          = sanitize_text_field( $_GET['finalpos_nonce'] );
+                    // phpcs:ignore WordPress.Security.NonceVerification.Recommended
+                    $nonce          = sanitize_text_field( wp_unslash( $_GET['finalpos_nonce'] ) );
                     $transient_name = 'finalpos_auth_nonce_' . $nonce;
 

finalpos/trunk/includes/admin/wizard/views/activation-form.php

@@ -92 +92 @@
                 <?php
                 $error_message = get_transient( 'finalpos_setup_error' );
+                // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Display-only page showing redirect messages.
                 if ( isset( $_GET['error'] ) ) :
                     ?>
-                    <p class="finalpos-error-message"><?php echo esc_html( wp_unslash( $_GET['error'] ) ); ?></p>
+                    <p class="finalpos-error-message"><?php echo esc_html( sanitize_text_field( wp_unslash( $_GET['error'] ) ) ); ?></p>
+                <?php // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Display-only page showing redirect messages. ?>
                 <?php elseif ( isset( $_GET['message'] ) ) : ?>
-                    <p class="finalpos-success-message"><?php echo esc_html( wp_unslash( $_GET['message'] ) ); ?></p>
+                    <p class="finalpos-success-message"><?php echo esc_html( sanitize_text_field( wp_unslash( $_GET['message'] ) ) ); ?></p>
                 <?php elseif ( $error_message ) : ?>
                     <p class="finalpos-error-message"><?php echo esc_html( $error_message ); ?></p>

finalpos/trunk/includes/admin/wizard/views/settings-form.php

@@ -39 +39 @@
     endif;
 
-    // Display error message if present.
+    // Display error message if present (passed via redirect from admin-post.php).
+    // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- This is a display-only page showing redirect error messages.
     if ( isset( $_GET['error'] ) ) {
-        $error_message = urldecode( wp_unslash( $_GET['error'] ) );
+        // phpcs:ignore WordPress.Security.NonceVerification.Recommended
+        $error_message = sanitize_text_field( wp_unslash( $_GET['error'] ) );
         echo '<div class="notice notice-error"><p>' . esc_html( $error_message ) . '</p></div>';
     }

finalpos/trunk/includes/common-functions.php

@@ -216 +216 @@
      * Disconnect the plugin by cleaning up all plugin data
      *
+     * Following WordPress best practices for data cleanup:
+     * - Delete all plugin options
+     * - Delete all plugin transients
+     * - Clean up WooCommerce API keys and webhooks
+     * - Clear object cache
+     *
      * @return void
      */
     public static function disconnect_plugin(): void {
-        // Delete all plugin options
+        // Delete all plugin options.
         $options = array(
             FINALPOS_OPTION_CURRENT_STAGE,
@@ -230 +236 @@
             FINALPOS_OPTION_LAST_NONCE,
             FINALPOS_OPTION_LAST_NONCE_TIME,
+            FINALPOS_OPTION_REACTIVATION_ERROR,
         );
 
@@ -236 +243 @@
         }
 
+        // Delete plugin transients.
+        delete_transient( FINALPOS_TRANSIENT_ACTIVATION_REDIRECT );
+
+        // Clean up any auth nonce transients (they use a prefix pattern).
         global $wpdb;
 
-        // Remove API keys
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
         $wpdb->query(
             $wpdb->prepare(
-                'DELETE FROM `' . $wpdb->prefix . 'woocommerce_api_keys` WHERE `description` LIKE "%s"',
+                "DELETE FROM {$wpdb->options} WHERE option_name LIKE %s OR option_name LIKE %s",
+                '_transient_' . FINALPOS_TRANSIENT_AUTH_NONCE_PREFIX . '%',
+                '_transient_timeout_' . FINALPOS_TRANSIENT_AUTH_NONCE_PREFIX . '%'
+            )
+        );
+
+        // Remove FinalPOS API keys from WooCommerce.
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "DELETE FROM {$wpdb->prefix}woocommerce_api_keys WHERE description LIKE %s",
                 FINALPOS_API_DESCRIPTION_PATTERN
             )
         );
 
-        // Remove webhooks
+        // Remove FinalPOS webhooks from WooCommerce.
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
         $wpdb->query(
             $wpdb->prepare(
-                'DELETE FROM `' . $wpdb->prefix . 'wc_webhooks` WHERE `name` LIKE "%s"',
+                "DELETE FROM {$wpdb->prefix}wc_webhooks WHERE name LIKE %s",
                 FINALPOS_WEBHOOK_NAME_PATTERN
             )
         );
+
+        // Clear object cache to ensure clean state.
+        wp_cache_flush();
     }
 
@@ -340 +365 @@
      * Check if REST API is available
      *
-     * Tests internal REST API availability by making a request to the WooCommerce REST API.
+     * Tests internal REST API availability using WordPress internal REST infrastructure.
+     * This avoids external HTTP requests which can fail in tunneled environments (ngrok, DDEV share, etc.).
      *
      * @return array Array with 'available' boolean and 'message' string
@@ -346 +372 @@
     public static function is_rest_api_available(): array {
 
-        // Try to make an internal REST API request to verify it's working.
-        $rest_url = rest_url( 'wc/v3' );
-        $response = wp_remote_get(
-            $rest_url,
-            array(
-                'timeout'   => 10,
-                'sslverify' => false,
-                'cookies'   => $_COOKIE, // Pass current cookies for authentication.
-            )
-        );
-
-        if ( is_wp_error( $response ) ) {
+        // First check if REST API is disabled via filters.
+        if ( ! apply_filters( 'rest_enabled', true ) ) {
+            return array(
+                'available' => false,
+                'message'   => __( 'REST API is disabled. Please check your WordPress configuration or plugins that might be disabling the REST API.', 'finalpos' ),
+            );
+        }
+
+        // Check if WooCommerce REST API namespace is registered.
+        $rest_server = rest_get_server();
+        $namespaces  = $rest_server->get_namespaces();
+
+        if ( ! in_array( 'wc/v3', $namespaces, true ) ) {
+            return array(
+                'available' => false,
+                'message'   => __( 'WooCommerce REST API (wc/v3) is not available. Please ensure WooCommerce is properly installed and activated.', 'finalpos' ),
+            );
+        }
+
+        // Use internal REST request to avoid loopback/tunnel issues (ngrok, DDEV share, etc.).
+        $request  = new WP_REST_Request( 'GET', '/wc/v3' );
+        $response = rest_do_request( $request );
+
+        if ( $response->is_error() ) {
+            $error       = $response->as_error();
+            $status_code = $response->get_status();
+
+            // 401 Unauthorized is OK - it means the API is working but requires authentication.
+            if ( 401 === $status_code ) {
+                return array(
+                    'available' => true,
+                    'message'   => '',
+                );
+            }
+
+            // 403 Forbidden might indicate a Coming Soon plugin blocking access.
+            if ( 403 === $status_code ) {
+                return array(
+                    'available' => false,
+                    'message'   => __( 'REST API access is forbidden (403). This is usually caused by a Coming Soon plugin, maintenance mode, or security plugin blocking API access. Please disable any such plugins before connecting.', 'finalpos' ),
+                );
+            }
+
+            // 503 Service Unavailable usually means maintenance mode.
+            if ( 503 === $status_code ) {
+                return array(
+                    'available' => false,
+                    'message'   => __( 'REST API returned Service Unavailable (503). Your site appears to be in maintenance mode. Please disable maintenance mode before connecting.', 'finalpos' ),
+                );
+            }
+
+            // Other errors.
             return array(
                 'available' => false,
                 'message'   => sprintf(
                     /* translators: %s: Error message */
-                    __( 'REST API is not accessible: %s. This may be caused by a Coming Soon plugin, security plugin, or server configuration.', 'finalpos' ),
-                    $response->get_error_message()
-                ),
-            );
-        }
-
-        $status_code = wp_remote_retrieve_response_code( $response );
-
-        // 401 Unauthorized is OK - it means the API is working but requires authentication.
-        // 200 OK is also fine.
-        // 403 Forbidden might indicate a Coming Soon plugin blocking access.
-        if ( 403 === $status_code ) {
-            return array(
-                'available' => false,
-                'message'   => __( 'REST API access is forbidden (403). This is usually caused by a Coming Soon plugin, maintenance mode, or security plugin blocking API access. Please disable any such plugins before connecting.', 'finalpos' ),
-            );
-        }
-
-        // 503 Service Unavailable usually means maintenance mode.
-        if ( 503 === $status_code ) {
-            return array(
-                'available' => false,
-                'message'   => __( 'REST API returned Service Unavailable (503). Your site appears to be in maintenance mode. Please disable maintenance mode before connecting.', 'finalpos' ),
-            );
-        }
-
-        // Check for unexpected status codes.
-        if ( $status_code >= 500 ) {
-            return array(
-                'available' => false,
-                'message'   => sprintf(
-                    /* translators: %d: HTTP status code */
-                    __( 'REST API returned server error (%d). Please check your server configuration and error logs.', 'finalpos' ),
-                    $status_code
+                    __( 'REST API error: %s', 'finalpos' ),
+                    $error->get_error_message()
                 ),
             );

finalpos/trunk/includes/lifecycle.php

@@ -3 +3 @@
  * FinalPOS Plugin Lifecycle Management
  *
- * Handles plugin activation, deactivation, and uninstallation
+ * Handles plugin activation, deactivation, and uninstallation.
+ * Following WordPress best practices:
+ * - Activation: Set up initial state, redirect to setup
+ * - Deactivation: Pause integrations, clean temp data, preserve user settings
+ * - Uninstallation: Full cleanup (handled in uninstall.php)
+ *
+ * @package FinalPOS
  */
 
@@ -10 +16 @@
 }
 
+/**
+ * Class FinalPOS_Lifecycle
+ *
+ * Manages plugin lifecycle events.
+ */
 class FinalPOS_Lifecycle {
     /**
@@ -34 +45 @@
      */
     private function __construct() {
-        // Hook into admin notices to display reactivation errors
+        // Hook into admin notices to display reactivation errors.
         add_action( 'admin_notices', array( $this, 'display_reactivation_error' ) );
     }
 
     /**
-     * Handles plugin activation
+     * Handles plugin activation.
+     *
+     * Sets up initial state and schedules redirect to setup wizard.
+     *
+     * @return void
      */
     public static function activate() {
@@ -46 +61 @@
 
     /**
-     * Restore the WooCommerce API key to read-write, activate all webhooks, and reinitiate sync on reactivation
+     * Restore the WooCommerce API key to read-write, activate all webhooks, and reinitiate sync on reactivation.
+     *
+     * This is the reverse of deactivate() - restores full functionality.
+     *
+     * @return void
      */
     public static function reactivate() {
-        // Only proceed if we're reactivating after a deactivation
-        // (not first-time activation)
-
+        // Only proceed if we're reactivating after a deactivation (not first-time activation).
         if ( ! get_option( FINALPOS_OPTION_JWT_TOKEN ) ) {
             return;
@@ -58 +75 @@
         global $wpdb;
 
-        // Restore API key to read-write
-        $wpdb->query(
-            $wpdb->prepare(
-                "UPDATE `{$wpdb->prefix}woocommerce_api_keys` 
-            SET `permissions` = %s 
-            WHERE `description` LIKE %s",
+        // Restore API key to read-write.
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "UPDATE {$wpdb->prefix}woocommerce_api_keys SET permissions = %s WHERE description LIKE %s",
                 'read_write',
                 FINALPOS_API_DESCRIPTION_PATTERN
@@ -69 +85 @@
         );
 
-        // Restore all webhooks to active
-        $wpdb->query(
-            $wpdb->prepare(
-                "UPDATE `{$wpdb->prefix}wc_webhooks` 
-            SET `status` = %s 
-            WHERE `name` LIKE %s",
+        // Restore all webhooks to active.
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "UPDATE {$wpdb->prefix}wc_webhooks SET status = %s WHERE name LIKE %s",
                 'active',
                 FINALPOS_WEBHOOK_NAME_PATTERN
@@ -80 +95 @@
         );
 
-        // Only attempt sync if wizard was previously completed
+        // Only attempt sync if wizard was previously completed.
         if ( get_option( FINALPOS_OPTION_CURRENT_STAGE ) === FINALPOS_STAGE_COMPLETE ) {
 
@@ -115 +130 @@
                 }
             } catch ( Exception $e ) {
-                // Store the error state
+                // Store the error state for display on next admin page load.
                 update_option( FINALPOS_OPTION_REACTIVATION_ERROR, true );
             }
@@ -123 +138 @@
     /**
      * Display reactivation error notice if it exists
+     *
+     * @return void
      */
     public function display_reactivation_error() {
@@ -131 +148 @@
             </div>
             <?php
-            // Clear the error state after displaying
+            // Clear the error state after displaying.
             delete_option( FINALPOS_OPTION_REACTIVATION_ERROR );
         }
@@ -137 +154 @@
 
     /**
-     * Make the WooCommerce API key read-only and pause all webhooks on deactivation
+     * Handle plugin deactivation.
+     *
+     * Following WordPress best practices:
+     * - Pause external integrations (webhooks)
+     * - Restrict API permissions (read-only)
+     * - Clean up temporary transients
+     * - Preserve user settings (for potential reactivation)
+     *
+     * This is reversible - reactivate() restores full functionality.
+     *
+     * @return void
      */
     public static function deactivate() {
         global $wpdb;
 
-        // Make API key read-only
-        $wpdb->query(
-            $wpdb->prepare(
-                "UPDATE `{$wpdb->prefix}woocommerce_api_keys` 
-            SET `permissions` = %s 
-            WHERE `description` LIKE %s",
+        // Make API key read-only (prevents write operations while plugin is inactive).
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "UPDATE {$wpdb->prefix}woocommerce_api_keys SET permissions = %s WHERE description LIKE %s",
                 'read',
                 FINALPOS_API_DESCRIPTION_PATTERN
@@ -153 +179 @@
         );
 
-        // Pause all webhooks
-        $wpdb->query(
-            $wpdb->prepare(
-                "UPDATE `{$wpdb->prefix}wc_webhooks` 
-            SET `status` = %s 
-            WHERE `name` LIKE %s",
+        // Pause all webhooks (stops webhook deliveries while plugin is inactive).
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "UPDATE {$wpdb->prefix}wc_webhooks SET status = %s WHERE name LIKE %s",
                 'paused',
                 FINALPOS_WEBHOOK_NAME_PATTERN
             )
         );
+
+        // Clean up temporary transients (not needed while plugin is inactive).
+        delete_transient( FINALPOS_TRANSIENT_ACTIVATION_REDIRECT );
+
+        // Clean up any pending auth nonce transients.
+        // phpcs:ignore WordPress.DB.DirectDatabaseQuery.DirectQuery, WordPress.DB.DirectDatabaseQuery.NoCaching
+        $wpdb->query(
+            $wpdb->prepare(
+                "DELETE FROM {$wpdb->options} WHERE option_name LIKE %s OR option_name LIKE %s",
+                '_transient_' . FINALPOS_TRANSIENT_AUTH_NONCE_PREFIX . '%',
+                '_transient_timeout_' . FINALPOS_TRANSIENT_AUTH_NONCE_PREFIX . '%'
+            )
+        );
+
+        // Note: We intentionally DO NOT delete user options/settings here.
+        // User data is preserved for potential reactivation.
+        // Full cleanup only happens on uninstall (see uninstall.php).
     }
 }

finalpos/trunk/integrations/readonly-orders.php

@@ -339 +339 @@
  */
 function finalpos_disable_bulk_actions_for_readonly( $actions ) {
-    // Only disable bulk actions on the edit order screen when viewing a specific read-only order
-    if ( isset( $_GET['post'] ) && is_numeric( $_GET['post'] ) && finalpos_is_order_readonly( $_GET['post'] ) ) {
+    // Only disable bulk actions on the edit order screen when viewing a specific read-only order.
+    // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Reading URL parameter for display logic.
+    $post_id = isset( $_GET['post'] ) && is_numeric( $_GET['post'] ) ? absint( $_GET['post'] ) : 0;
+
+    if ( $post_id && finalpos_is_order_readonly( $post_id ) ) {
         if ( isset( $actions['trash'] ) ) {
             unset( $actions['trash'] );

finalpos/trunk/readme.txt

@@ -7 +7 @@
 Tested up to: 6.8.3
 Requires PHP: 7.4
-Stable tag: 1.3.6
+Stable tag: 1.3.7
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0
@@ -93 +93 @@
 
 == Changelog ==
+= 1.3.7 =
+* Fixed critical error when deleting plugin
+* Improved plugin lifecycle management (activation, deactivation, uninstall)
+* Enhanced data cleanup following WordPress best practices
+* PHPCS security compliance improvements
+
 = 1.3.6 =
 * Support for coming soon mode

finalpos/trunk/uninstall.php

@@ -13 +13 @@
 }
 
+// Include constants file first (required for disconnect_plugin method).
+require_once plugin_dir_path( __FILE__ ) . 'includes/constants.php';
+
 // Include the common functions file to access disconnect_plugin method.
 require_once plugin_dir_path( __FILE__ ) . 'includes/common-functions.php';