<?php class OsAuthHelper { public static ?\LatePoint\Misc\User $current_user = null; public static $logged_in_customer_id = false; public static function set_current_user() { if ( \OsWpUserHelper::is_user_logged_in() ) { // if wp user is logged in - load from it self::$current_user = \LatePoint\Misc\User::load_from_wp_user( \OsWpUserHelper::get_current_user() ); } else { self::$current_user = new \LatePoint\Misc\User(); } $customer = self::get_logged_in_customer(); if ( $customer ) { self::$current_user->customer = $customer; } } public static function get_current_user(): \LatePoint\Misc\User { if ( ! self::$current_user ) { self::set_current_user(); } return self::$current_user; } public static function get_highest_current_user_id() { $user_id = false; switch ( self::get_highest_current_user_type() ) { case LATEPOINT_USER_TYPE_ADMIN: case LATEPOINT_USER_TYPE_CUSTOM: $user_id = self::get_logged_in_wp_user_id(); break; case LATEPOINT_USER_TYPE_AGENT: $user_id = self::get_logged_in_agent_id(); break; case LATEPOINT_USER_TYPE_CUSTOMER: $user_id = self::get_logged_in_customer_id(); break; } return $user_id; } public static function get_admin_or_agent_avatar_url() { $avatar_url = LATEPOINT_DEFAULT_AVATAR_URL; if ( self::is_agent_logged_in() ) { $agent = self::get_logged_in_agent(); $avatar_url = $agent->get_avatar_url(); } elseif ( self::get_logged_in_wp_user_id() ) { $wp_user = self::get_logged_in_wp_user(); $avatar_url = get_avatar_url( $wp_user->user_email ); } return $avatar_url; } public static function get_highest_current_user_type() { // check if WP admin is logged in $user_type = false; if ( self::get_current_user()->backend_user_type ) { // backend user, admin, agent or custom role return self::get_current_user()->backend_user_type; } elseif ( self::get_current_user()->customer ) { // customer return LATEPOINT_USER_TYPE_CUSTOMER; } return $user_type; } public static function login_wp_user( $user ) { clean_user_cache( $user->ID ); wp_set_current_user( $user->ID ); wp_set_auth_cookie( $user->ID ); update_user_caches( $user ); } public static function login_customer( $contact_value, $password, $contact_type = 'email' ) { if ( empty( $contact_value ) || empty( $password ) || !in_array($contact_type, self::get_enabled_contact_types_for_customer_auth()) ) { return false; } $available_contact_types = OsAuthHelper::get_available_contact_types_for_customer_auth(); if(!isset($available_contact_types[$contact_type])){ return false; } if ( self::can_wp_users_login_as_customers() ) { // if WP users enabled - customers can only login using existing password of the wordpress account $wp_user_id = false; if($contact_type == 'email'){ $email = sanitize_email( $contact_value ); $wp_user_id = email_exists( $email ); }elseif($contact_type == 'phone'){ $phone = OsUtilHelper::sanitize_phone_number( $contact_value ); // find latepoint customer by phone because wp users don't have a phone field $customer = new OsCustomerModel(); $customer = $customer->where( array( 'phone' => $phone ) )->set_limit( 1 )->get_results_as_models(); if($customer){ $email = $customer->email; if($customer->wordpress_user_id){ $wp_user_id = $customer->wordpress_user_id; }else{ $wp_user_id = email_exists( $customer->email ); } } } if($wp_user_id && !empty($email) && !empty($password)){ $wp_user = wp_signon( [ 'user_login' => $email, 'user_password' => $password ] ); if ( ! is_wp_error( $wp_user ) ) { // successfully logged into wp user // check if latepoint customer exists in db for this wp user wp_set_current_user( $wp_user->ID ); $customer = OsCustomerHelper::get_customer_for_wp_user( $wp_user ); if ( $customer->id ) { return $customer; } else { OsDebugHelper::log( 'Can not login because can not create LatePoint Customer from WP User', 'customer_login_error', $customer->get_error_messages() ); return false; } } else { return false; } }else{ return false; } } else { $customer = new OsCustomerModel(); if($contact_type == 'email'){ $email = sanitize_email( $contact_value ); $customer = $customer->where( array( 'email' => $email ) )->set_limit( 1 )->get_results_as_models(); }elseif($contact_type == 'phone'){ $phone = OsUtilHelper::sanitize_phone_number( $contact_value ); $customer = $customer->where( array( 'phone' => $phone ) )->set_limit( 1 )->get_results_as_models(); } if ( $customer && OsAuthHelper::verify_password( $password, $customer->password ) ) { OsAuthHelper::authorize_customer( $customer->id ); return $customer; } else { return false; } } } public static function can_wp_users_login_as_customers() : bool { return OsSettingsHelper::is_on( 'wp_users_as_customers', false ); } // CUSTOMERS // --------------- public static function logout_customer() { if ( self::can_wp_users_login_as_customers() ) { wp_logout(); } else { OsSessionsHelper::destroy_customer_session_cookie(); } } public static function authorize_customer( $customer_id ) : bool { $customer = new OsCustomerModel(); $customer = $customer->where( [ 'id' => $customer_id ] )->set_limit( 1 )->get_results_as_models(); if ( empty( $customer ) ) { OsDebugHelper::log( 'Tried to authorize customer with invalid ID', 'customer_authorization', [ 'customer_id' => $customer_id ] ); return false; } if ( self::can_wp_users_login_as_customers() ) { if ( $customer->wordpress_user_id ) { $wp_user = get_user_by( 'id', $customer->wordpress_user_id ); // check if WP User exists, if not - create new one and get ID, otherwise get ID from customer record, since its valid $wordpress_user_id = ( $wp_user ) ? $customer->wordpress_user_id : OsCustomerHelper::create_wp_user_for_customer( $customer ); } else { $wordpress_user_id = OsCustomerHelper::create_wp_user_for_customer( $customer ); } if ( $wordpress_user_id ) { $wp_user = get_user_by( 'id', $wordpress_user_id ); if ( $wp_user ) { self::login_wp_user( $wp_user ); } else { OsDebugHelper::log( 'WordPress user ID for customer is not found or can not be created.', 'customer_create_error', [ 'customer_id' => $customer_id, 'wordpress_user_id' => $wordpress_user_id ] ); return false; } } else { OsDebugHelper::log( 'WordPress user ID for customer is not found or can not be created.', 'customer_create_error', [ 'customer_id' => $customer_id ] ); return false; } } OsSessionsHelper::start_or_use_session_for_customer( $customer_id ); OsStepsHelper::$customer_object = $customer; return true; } public static function get_logged_in_customer_uuid() { $customer = self::get_logged_in_customer(); if($customer){ return $customer->get_uuid(); }else{ return false; } } public static function get_logged_in_customer_id() { if ( OsAuthHelper::is_customer_auth_disabled() ) { return false; } if ( self::can_wp_users_login_as_customers() ) { // using wp users as customers if ( OsWpUserHelper::is_user_logged_in() ) { $wp_user = wp_get_current_user(); // search connected latepoint customer $customer = OsCustomerHelper::get_customer_for_wp_user( $wp_user ); if ( $customer->id ) { return $customer->id; } else { OsDebugHelper::log( 'Can not create LatePoint Customer from WP User', 'customer_create_error', $customer->get_error_messages() ); return false; } } else { return false; } } else { if ( self::$logged_in_customer_id ) { return self::$logged_in_customer_id; } $customer_id = OsSessionsHelper::get_customer_id_from_session(); // make sure customer with this ID exists in database $customer = new OsCustomerModel( $customer_id ); if ( ! $customer->is_new_record() ) { self::$logged_in_customer_id = $customer_id; return self::$logged_in_customer_id; } else { // customer not found, destroy this invalid customer ID in session cookie OsSessionsHelper::destroy_customer_session_cookie(); return false; } } } public static function is_customer_logged_in() { return self::get_logged_in_customer_id(); } public static function get_logged_in_customer() { $customer = false; if ( self::is_customer_logged_in() ) { $customer = new OsCustomerModel( self::get_logged_in_customer_id() ); if ( $customer->is_new_record() ) { $customer = false; } } return $customer; } // AGENTS // ------------- public static function get_logged_in_agent_id() { $agent_id = false; if ( self::is_agent_logged_in() ) { if ( self::get_current_user()->agent && self::get_current_user()->agent->id ) { $agent_id = self::get_current_user()->agent->id; } } return $agent_id; } public static function is_agent_logged_in() { return ( self::get_current_user()->backend_user_type == LATEPOINT_USER_TYPE_AGENT ); } public static function get_logged_in_agent() { $agent = false; if ( self::is_agent_logged_in() ) { $agent = new OsAgentModel(); $agent = $agent->where( [ 'wp_user_id' => self::get_logged_in_wp_user_id() ] )->set_limit( 1 )->get_results_as_models(); } return $agent; } public static function is_custom_backend_user_logged_in() { return ( self::get_current_user()->backend_user_type == LATEPOINT_USER_TYPE_CUSTOM ); } public static function is_admin_logged_in() { return ( self::get_current_user()->backend_user_type == LATEPOINT_USER_TYPE_ADMIN ); } public static function get_logged_in_admin_user() { $admin_user = false; if ( self::is_admin_logged_in() ) { $admin_user = self::get_logged_in_wp_user(); } return $admin_user; } public static function get_logged_in_admin_user_id() { $admin_id = false; if ( self::is_admin_logged_in() ) { $admin_id = self::get_logged_in_wp_user_id(); } return $admin_id; } public static function get_logged_in_custom_user_id() { $admin_id = false; if ( self::is_custom_backend_user_logged_in() ) { $admin_id = self::get_logged_in_wp_user_id(); } return $admin_id; } public static function get_default_customer_authentication_method() : string { $method = OsSettingsHelper::get_settings_value( 'default_customer_authentication_method', 'password' ); $enabled_auth_methods = self::get_enabled_customer_authentication_methods(); if(empty($enabled_auth_methods)){ $method = ''; }elseif(count($enabled_auth_methods) == 1){ $method = $enabled_auth_methods[0]; }else{ $method = in_array($method, $enabled_auth_methods) ? $method : reset($enabled_auth_methods); } /** * Default auth method * * @since 5.2.0 * @hook latepoint_default_contact_type_for_customer_auth * * @param {string} $method default auth method value * @returns {string} The filtered auth method value */ return apply_filters( 'latepoint_default_contact_type_for_customer_auth', $method ); } public static function get_available_customer_authentication_methods() : array { $methods = ['password' => __('Password', 'latepoint'), 'otp' => __('One-time code', 'latepoint')]; /** * Enabled auth method * * @since 5.2.0 * @hook latepoint_get_available_customer_authentication_methods * * @param {array} $methods available auth methods * @returns {array} The filtered array of available auth methods */ return apply_filters( 'latepoint_get_available_customer_authentication_methods', $methods ); } public static function get_enabled_customer_authentication_methods() : array { $selected_method = OsSettingsHelper::get_settings_value('selected_customer_authentication_method', 'password'); switch($selected_method){ case 'password': $auth_methods = ['password']; break; case 'otp': $auth_methods = ['otp']; break; case 'password_or_otp': $auth_methods = ['password', 'otp']; break; default: $auth_methods = ['password']; } /** * Enabled auth method * * @since 5.2.0 * @hook latepoint_get_enabled_customer_authentication_methods * * @param {array} $auth_methods enabled auth methods * @returns {array} The filtered array of enabled auth methods */ return apply_filters( 'latepoint_get_enabled_customer_authentication_methods', $auth_methods ); } public static function get_selected_customer_authentication_method() : string { $via = OsSettingsHelper::get_settings_value('selected_customer_authentication_method', 'password'); if(in_array($via, self::get_enabled_customer_authentication_methods(true))){ return $via; }else{ OsSettingsHelper::save_setting_by_name('selected_customer_authentication_method', 'password'); return 'password'; } } public static function get_customer_authentication_method_options($keys_only = false) : array{ $options = [ 'password' => __('Password', 'latepoint'), 'otp' => __('One-time code', 'latepoint')]; return $keys_only ? array_keys( $options ) : $options; } public static function get_default_contact_type_for_customer_auth() : string { $method = OsSettingsHelper::get_settings_value( 'default_contact_type_for_customer_auth', 'email' ); $enabled_contact_types = self::get_enabled_contact_types_for_customer_auth(); if(empty($enabled_contact_types)){ $method = ''; }elseif(count($enabled_contact_types) == 1){ $method = $enabled_contact_types[0]; }else{ $method = in_array($method, $enabled_contact_types) ? $method : reset($enabled_contact_types); } /** * Default auth method * * @since 5.2.0 * @hook latepoint_default_contact_type_for_customer_auth * * @param {string} $method default auth method value * @returns {string} The filtered auth method value */ return apply_filters( 'latepoint_default_contact_type_for_customer_auth', $method ); } public static function get_available_contact_types_for_customer_auth() : array { $contact_types = ['email' => __('Email Address', 'latepoint'), 'phone' => __('Phone Number', 'latepoint')]; /** * Enabled auth method * * @since 5.2.0 * @hook latepoint_get_available_contact_types_for_customer_auth * * @param {array} $contact_types available contact types * @returns {array} The filtered array of available contact types */ return apply_filters( 'latepoint_get_available_contact_types_for_customer_auth', $contact_types ); } public static function get_enabled_contact_types_for_customer_auth() : array { $customer_authentication_field_type = OsSettingsHelper::get_settings_value('selected_customer_authentication_field_type', 'email'); switch($customer_authentication_field_type){ case 'email': $contact_types = ['email']; break; case 'phone': $contact_types = ['phone']; break; case 'email_or_phone': $contact_types = ['email', 'phone']; break; case 'disabled': $contact_types = []; break; default: $contact_types = ['email']; } /** * Enabled auth method * * @since 5.2.0 * @hook latepoint_get_enabled_contact_types_for_customer_auth * * @param {array} $contact_types enabled contact types * @returns {array} The filtered array of enabled contact types */ return apply_filters( 'latepoint_get_enabled_contact_types_for_customer_auth', $contact_types ); } public static function is_customer_auth_enabled() : bool{ return (self::get_selected_customer_authentication_field_type() != 'disabled'); } public static function is_customer_auth_disabled() : bool{ return !self::is_customer_auth_enabled(); } public static function get_selected_customer_authentication_field_type() : string { $via = OsSettingsHelper::get_settings_value('selected_customer_authentication_field_type'); if(empty($via)){ // load from legacy setting if(OsSettingsHelper::is_on('steps_hide_login_register_tabs')){ OsSettingsHelper::save_setting_by_name('selected_customer_authentication_field_type', 'disabled'); return 'disabled'; }else{ OsSettingsHelper::save_setting_by_name('selected_customer_authentication_field_type', 'email'); return 'email'; } } if(in_array($via, self::get_customer_authentication_field_type_options(true))){ return $via; }else{ OsSettingsHelper::save_setting_by_name('selected_customer_authentication_field_type', 'email'); return 'email'; } } public static function get_customer_authentication_field_type_options($keys_only = false) : array{ $options = [ 'email' => __('Email Address', 'latepoint'), 'phone' => __('Phone Number', 'latepoint'), 'disabled' => __('Disable ability to login', 'latepoint')]; return $keys_only ? array_keys( $options ) : $options; } public static function is_classic_auth_flow() : bool{ return (OsSettingsHelper::get_settings_value('modern_auth_flow_for_customers', LATEPOINT_VALUE_OFF) == LATEPOINT_VALUE_OFF); } public static function is_otp_auth_enabled() : bool{ return in_array('otp', self::get_enabled_customer_authentication_methods()); } public static function get_default_delivery_method_for_customer_auth_contact_type(string $contact_type){ $delivery_method = 'email'; switch($contact_type){ case 'email': $delivery_method = 'email'; break; case 'phone': $delivery_method = 'sms'; break; } /** * Get default delivery method for auth contact type * * @since 5.2.0 * @hook latepoint_get_default_delivery_method_for_customer_auth * * @param {string} $delivery_method delivery method (email, sms, whatsapp) * @param {string} $contact_type contact type selected for auth (email, phone) * * @returns {string} Filtered delivery method */ return apply_filters('latepoint_get_default_delivery_method_for_customer_auth', $delivery_method, $contact_type); } public static function auth_form_html($is_classic, OsCustomerModel $customer, string $selected_contact_type_for_auth = '', $selected_delivery_method = '') : string{ if(empty($selected_contact_type_for_auth)){ $selected_contact_type_for_auth = OsAuthHelper::get_default_contact_type_for_customer_auth(); } if(empty($selected_delivery_method)){ $selected_delivery_method = self::get_default_delivery_method_for_customer_auth_contact_type($selected_contact_type_for_auth); } $enabled_contact_types_for_customer_auth = OsAuthHelper::get_enabled_contact_types_for_customer_auth(); $otp_allowed = self::is_otp_auth_enabled(); $multiple_auth_methods_enabled = (count(self::get_enabled_customer_authentication_methods()) > 1); $html = ''; if(!$is_classic){ $html.='<div class="latepoint-customer-auth-wrapper">'; $html.='<div class="latepoint-customer-otp-request-wrapper hide-when-entering-otp">'; // NEW STYLE SHOWING JUST THE AUTH OPTIONS FIRST if(in_array('email', $enabled_contact_types_for_customer_auth)){ $html.='<div data-login-method="email" class="customer-login-method-wrapper '.($selected_contact_type_for_auth == 'email' ? '' : 'os-hidden').'">'; $html.=OsFormHelper::text_field('auth[email]', __('Your Email Address', 'latepoint'), $customer->email, array('validate' => $customer->get_validations_for_property('email'), 'class' => 'required')); $html.='</div>'; } if(in_array('phone', $enabled_contact_types_for_customer_auth)){ $html.='<div data-login-method="phone" class="customer-login-method-wrapper '.($selected_contact_type_for_auth == 'phone' ? '' : 'os-hidden').'">'; $html.=OsFormHelper::phone_number_field('auth[phone]', __('Your Phone Number', 'latepoint'), $customer->phone, array('validate' => $customer->get_validations_for_property('phone'), 'class' => 'required', 'theme' => 'simple')); $html.='</div>'; } $html.='<a tabindex="0" class="latepoint-btn latepoint-btn-block latepoint-btn-primary latepoint-request-otp-button" data-otp-request-route="'.OsRouterHelper::build_route_name('auth', 'request_otp').'"><span>'.__('Continue', 'latepoint').'</span></a>'; $html.='</div>'; $html.='</div>'; }else{ ob_start(); ?> <div class="os-customer-login-w os-customer-wrapped-box os-unwrapped"> <?php if(count($enabled_contact_types_for_customer_auth) > 1){ ?> <div class="login-options-wrapper"> <div class="latepoint-customer-box-title"><?php _e('Sign in', 'latepoint'); ?></div> <?php if(in_array('email', $enabled_contact_types_for_customer_auth) && in_array('phone', $enabled_contact_types_for_customer_auth)){ ?> <div class="login-options-col login-options-via"> <div class="login-options-via-wrapper"> <div data-login-method="email" data-is-otp-enabled="<?php echo OsOTPHelper::is_otp_enabled_for_contact_type('email', 'email') ? 'yes' : 'no'; ?>" data-otp-delivery-method="email" class="login-option <?php echo $selected_contact_type_for_auth == 'email' ? 'os-selected os-default' : ''; ?>"><?php _e('Email', 'latepoint'); ?></div> <div data-login-method="phone" data-is-otp-enabled="<?php echo OsOTPHelper::is_otp_enabled_for_contact_type('phone', 'sms') ? 'yes' : 'no'; ?>" data-otp-delivery-method="sms" class="login-option <?php echo $selected_contact_type_for_auth == 'phone' ? 'os-selected os-default' : ''; ?>"><?php _e('Phone', 'latepoint'); ?></div> </div> </div> <?php } ?> </div> <?php } ?> <?php if(in_array('email', $enabled_contact_types_for_customer_auth)){ echo '<div data-login-method="email" class="customer-login-method-wrapper '.($selected_contact_type_for_auth == 'email' ? '' : 'os-hidden').'">'; echo OsFormHelper::text_field('auth[email]', __('Your Email Address', 'latepoint'), ''); echo '</div>'; } ?> <?php if(in_array('phone', $enabled_contact_types_for_customer_auth)){ echo '<div data-login-method="phone" class="customer-login-method-wrapper '.($selected_contact_type_for_auth == 'phone' ? '' : 'os-hidden').'">'; echo OsFormHelper::phone_number_field('auth[phone]', __('Your Phone Number', 'latepoint'), ''); echo '</div>'; } ?> <div class="os-customer-login-password-fields-w" <?php echo (OsAuthHelper::get_default_customer_authentication_method() == 'otp') ? 'style="display:none;"' : ''; ?>> <?php echo OsFormHelper::password_field('auth[password]', __('Your Password', 'latepoint'), '', array('class' => 'required')); ?> <a href="#" class="latepoint-btn latepoint-btn-primary latepoint-btn-link step-forgot-password-btn" data-os-action="<?php echo esc_attr(OsRouterHelper::build_route_name('customer_cabinet', 'request_password_reset_token')); ?>" data-os-output-target=".os-password-reset-form-holder" data-os-after-call="latepoint_reset_password_from_booking_init" data-os-params="<?php echo esc_attr(OsUtilHelper::build_os_params(['from_booking' => true])); ?>"><span><?php esc_html_e('Forgot?', 'latepoint'); ?></span></a> </div> <?php if($otp_allowed){ ?> <div class="os-customer-otp-notice" <?php echo (OsAuthHelper::get_default_customer_authentication_method() == 'otp') ? '' : 'style="display:none;"'; ?>> <?php _e('You will receive a 6-digit code to log in.', 'latepoint'); ?> </div> <?php } ?> <div class="os-customer-login-buttons"> <?php if($multiple_auth_methods_enabled){ ?> <div class="login-options-col"> <div class="latepoint-customer-otp-option"> <?php if(OsAuthHelper::get_default_customer_authentication_method() == 'otp'){ ?> <label><input type="checkbox" name="auth[via]" value="password" class="login-with-password-toggle os-opposite"><span><?php _e('Use password instead', 'latepoint'); ?></span></label> <?php }else{ ?> <label><input type="checkbox" name="auth[via]" value="otp" class="login-with-password-toggle"><span><?php _e('Send me a sign-in code', 'latepoint'); ?></span></label> <?php } ?> </div> </div> <?php }else{ echo OsFormHelper::hidden_field('auth[via]', OsAuthHelper::get_default_customer_authentication_method()); }?> <a data-otp-request-route="<?php echo esc_attr(OsRouterHelper::build_route_name('auth', 'request_otp')); ?>" data-password-login-route="<?php echo esc_attr(OsRouterHelper::build_route_name('auth', 'login_customer')); ?>" href="#" class="latepoint-btn latepoint-btn-primary step-login-existing-customer-btn <?php echo $multiple_auth_methods_enabled ? '' : 'latepoint-btn-block'; ?>"><span><?php esc_html_e('Continue', 'latepoint'); ?></span></a> </div> </div> <?php $html = ob_get_clean(); } $html.= OsFormHelper::hidden_field( 'auth[contact_type]', $selected_contact_type_for_auth ); $html.= OsFormHelper::hidden_field( 'auth[delivery_method]', $selected_delivery_method ); $html.= OsFormHelper::hidden_field( 'auth[action]', 'register' ); $html.= wp_nonce_field( 'auth_nonce', 'auth[nonce]', true, false ); return $html; } // WP USER public static function get_logged_in_wp_user_id() { return OsWpUserHelper::get_current_user_id(); } public static function get_logged_in_wp_user() { return OsWpUserHelper::get_current_user(); } // UTILS public static function hash_password( $password ) { return password_hash( $password, PASSWORD_DEFAULT ); } public static function verify_password( $password, $hash ) { return password_verify( $password, $hash ); } }