props['display_conditions'] ) && ! empty( $element_instance->props['display_conditions'] ); $is_display_conditions_as_base64_empty = 'W10=' === $element_instance->props['display_conditions']; $has_display_conditions = $is_display_conditions_set && ! $is_display_conditions_as_base64_empty; // Check if display_conditions attribute is defined, Decode the data and check if it is displayable. if ( $has_display_conditions ) { $display_conditions_json = base64_decode( $element_instance->props['display_conditions'] ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode -- The returned data is an array and necessary validation checks are performed. } if ( $has_display_conditions && false !== $display_conditions_json ) { $display_conditions = json_decode( $display_conditions_json, true ); $is_displayable = \ET_Builder_Module_Fields_Factory::get( 'DisplayConditions' )->is_displayable( $display_conditions ); } $is_vb_ajax_nonce_valid = isset( $_POST['et_pb_process_computed_property_nonce'] ) && wp_verify_nonce( sanitize_text_field( $_POST['et_pb_process_computed_property_nonce'] ), 'et_pb_process_computed_property_nonce' ); // Check if we're rendering on frontend, Then decide whether to keep the output or erase it. if ( 'render' === $render_method ) { if ( wp_doing_ajax() && $is_vb_ajax_nonce_valid && et_pb_is_pagebuilder_used( get_the_ID() ) ) { // "Blog Module" in VB will be rendered like a normal frontend request not as builder data, Here we retain the output // so it will always be visible in VB ignoring Display Conditions Ref: https://github.com/elegantthemes/Divi/issues/23309, https://github.com/elegantthemes/Divi/issues/25463. $output = $output; } elseif ( 'et_pb_post_content' === $element_instance->slug && ! $is_displayable && et_core_is_fb_enabled() ) { // When VB is loaded and "Post Content" Module is used in TB and it's not displayable, set the correct // output so it'd be displayed in VB and TB respectively Ref: https://github.com/elegantthemes/Divi/issues/23479. $output = $output; } else { // All other scenarios will fall here, Normal frontend request, AJAX frontend request, etc. $output = ( $is_displayable ) ? $output : ''; } } return $output; } /** * Checks if WordPress version is sufficient for "Display Conditions" feature. * * @since 4.13.1 * * @param boolean $is_display_conditions_enabled True if "Display Conditions" functionality is enabled, False if it's disabled. * * @return boolean True if WordPress version is sufficient & "Display Condition" functionality is enabled, False otherwise. */ public function check_if_wp_version_is_sufficient( $is_display_conditions_enabled ) { /** * We intentionally check `$is_display_conditions_enabled` to avoid enabling the functionality if it has been * disabled via `add_filter()` with lower priority sooner. */ return version_compare( get_bloginfo( 'version' ), '5.3', '>=' ) && $is_display_conditions_enabled ? true : false; } /** * Saves Post IDs selected in PageVisit/PostVisit Display Conditions into WP Options. * * This data will be used to only track the Posts which are selected by the user * It is to keep the PageVisit/PostVisit related Cookie minimal and under 4KB limitation. * * @since 4.11.0 * * @param int $post_id Post ID which is being saved. * @param WP_Post $post Post object which is being saved. * @param bool $update Whether this is an existing post being updated. * * @return void */ public function save_tracking_post_ids( $post_id, $post, $update ) { /** * Filters "Display Conditions" functionality to determine whether to enable or disable the functionality or not. * * Useful for disabling/enabling "Display Condition" feature site-wide. * * @since 4.13.1 * * @param boolean True to enable the functionality, False to disable it. */ $is_display_conditions_enabled = apply_filters( 'et_is_display_conditions_functionality_enabled', true ); if ( ! $is_display_conditions_enabled ) { return; } /** * Validation and Security Checks. */ if ( ! $post || ! $post instanceof WP_Post ) { return; } if ( defined( 'DOING_AUTOSAVE' ) && DOING_AUTOSAVE ) { return; } if ( wp_is_post_autosave( $post ) || wp_is_post_revision( $post ) ) { return; } $post_type = get_post_type_object( $post->post_type ); if ( ! $post_type instanceof WP_Post_Type || ! current_user_can( $post_type->cap->edit_post, $post_id ) ) { return; } if ( ! isset( $_POST['et_fb_save_nonce'] ) || ! wp_verify_nonce( sanitize_text_field( $_POST['et_fb_save_nonce'] ), 'et_fb_save_nonce' ) ) { return; } /** * Setup Prerequisites. */ $tracking_post_ids = []; $content = get_the_content( null, false, $post ); $preg_match = preg_match_all( '/display_conditions="[^"]*"/mi', $content, $matches, PREG_SET_ORDER ); // Return format: `display_conditions="base_64_encoded_data"`. $display_conditions_attrs = array_reduce( $matches, 'array_merge', [] ); // Flatten and Store All `display_conditions` attributes found. /** * Decode each `display_conditions` attribute, and store post IDs used in PageVisit/PostVisit conditions. */ foreach ( $display_conditions_attrs as $display_condition_attr ) { $display_condition_base64 = substr( $display_condition_attr, strpos( $display_condition_attr, '"' ), -1 ); $display_conditions = json_decode( base64_decode( $display_condition_base64 ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode -- The returned data is an array and necessary validation checks are performed. if ( ! is_array( $display_conditions ) ) { continue; } foreach ( $display_conditions as $display_condition ) { $condition_name = $display_condition['condition']; $condition_settings = $display_condition['conditionSettings']; if ( 'pageVisit' !== $condition_name && 'postVisit' !== $condition_name ) { continue; } $pages_raw = isset( $condition_settings['pages'] ) ? $condition_settings['pages'] : []; $pages_ids = array_map( function( $item ) { return isset( $item['value'] ) ? (int) $item['value'] : null; }, $pages_raw ); $pages_ids = array_filter( $pages_ids ); $tracking_post_ids = array_merge( $pages_ids, $tracking_post_ids ); } } $tracking_post_ids = array_unique( $tracking_post_ids ); if ( $tracking_post_ids ) { $result = [ (int) $post_id => $tracking_post_ids ]; } else { $result = null; } $wp_option = get_option( 'et_display_conditions_tracking_post_ids', null ); // If option exist, Either update it OR remove from it. if ( is_array( $wp_option ) ) { if ( $result ) { $result = array_replace( $wp_option, $result ); } else { $result = array_filter( $wp_option, function( $key ) use ( $post_id ) { return $key !== $post_id; }, ARRAY_FILTER_USE_KEY ); } } if ( $wp_option === $result ) { return; } update_option( 'et_display_conditions_tracking_post_ids', $result ); } /** * Deletes Post IDs selected in PageVisit/PostVisit Display Conditions from WP Options. * * This data will be used to only track the Posts which are selected by the user * It is to keep the PageVisit/PostVisit related Cookie minimal and under 4KB limitation. * * @since 4.11.0 * * @param int $post_id Post ID which is being deleted. * * @return void */ public function delete_tracking_post_ids( $post_id ) { /** * Filters "Display Conditions" functionality to determine whether to enable or disable the functionality or not. * * Useful for disabling/enabling "Display Condition" feature site-wide. * * @since 4.13.1 * * @param boolean True to enable the functionality, False to disable it. */ $is_display_conditions_enabled = apply_filters( 'et_is_display_conditions_functionality_enabled', true ); if ( ! $is_display_conditions_enabled ) { return; } $post = get_post( $post_id ); $wp_option = get_option( 'et_display_conditions_tracking_post_ids', null ); $is_wp_option_exist = is_array( $wp_option ) && ! empty( $wp_option ); if ( ! $is_wp_option_exist ) { return; } if ( ! $post || ! $post instanceof WP_Post ) { return; } // Get real Post ID if Revision ID is passed, Using `Empty Trash` button will set $post_id to revision id. $revision_parent_id = wp_is_post_revision( $post_id ); if ( $revision_parent_id ) { $post_id = $revision_parent_id; } $post_type = get_post_type_object( $post->post_type ); if ( ! current_user_can( $post_type->cap->delete_post, $post_id ) ) { return; } $result = array_filter( $wp_option, function( $key ) use ( $post_id ) { return (int) $key !== (int) $post_id; }, ARRAY_FILTER_USE_KEY ); if ( $wp_option === $result ) { return; } update_option( 'et_display_conditions_tracking_post_ids', $result ); } /** * Sets a cookie based on page visits so Page/Post Visit Display Conditions would function as expected. * * @since 4.11.0 * * @return void */ public function post_visit_set_cookie() { /** * Filters "Display Conditions" functionality to determine whether to enable or disable the functionality or not. * * Useful for disabling/enabling "Display Condition" feature site-wide. * * @since 4.13.1 * * @param boolean True to enable the functionality, False to disable it. */ $is_display_conditions_enabled = apply_filters( 'et_is_display_conditions_functionality_enabled', true ); if ( ! $is_display_conditions_enabled ) { return; } if ( ! is_singular() ) { return; } $current_post_id = get_queried_object_id(); $new_cookie = []; $has_visited_page_before = false; $wp_option = get_option( 'et_display_conditions_tracking_post_ids', null ); $is_wp_option_exist = is_array( $wp_option ) && ! empty( $wp_option ); $flatten_wp_option = is_array( $wp_option ) ? array_unique( array_reduce( $wp_option, 'array_merge', [] ) ) : []; $is_post_id_in_wp_option = array_search( $current_post_id, $flatten_wp_option, true ) !== false; if ( ! $is_wp_option_exist || ! $is_post_id_in_wp_option ) { return; } if ( isset( $_COOKIE['divi_post_visit'] ) ) { $new_cookie = json_decode( base64_decode( $_COOKIE['divi_post_visit'] ), true ); // phpcs:ignore ET.Sniffs.ValidatedSanitizedInput, WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode -- Cookie is not stored or displayed therefore XSS safe, base64_decode returned data is an array and necessary validation checks are performed. } if ( $new_cookie && is_array( $new_cookie ) ) { $has_visited_page_before = array_search( $current_post_id, array_column( $new_cookie, 'id' ), true ); } if ( false === $has_visited_page_before ) { $new_cookie[] = [ 'id' => $current_post_id, ]; $new_cookie = base64_encode( wp_json_encode( $new_cookie ) ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_encode -- base64_encode data is an array. setrawcookie( 'divi_post_visit', $new_cookie, time() + 3600 * 24 * 365, COOKIEPATH, COOKIE_DOMAIN, is_ssl() ); } } /** * Sets a cookie based on how many times a module is displayed so "Number of Views" Condition would function as expected. * * @since 4.11.0 * * @return void */ public function number_of_views_set_cookie() { /** * Filters "Display Conditions" functionality to determine whether to enable or disable the functionality or not. * * Useful for disabling/enabling "Display Condition" feature site-wide. * * @since 4.13.1 * * @param boolean True to enable the functionality, False to disable it. */ $is_display_conditions_enabled = apply_filters( 'et_is_display_conditions_functionality_enabled', true ); if ( ! $is_display_conditions_enabled ) { return; } // Do not run on VB itself. if ( et_core_is_fb_enabled() ) { return; } /** * This is to ensure that network request such as '/favicon.ico' won't change the cookie * since those requests do trigger these functions to run again without the proper context * resulting updating cookie >=2 times on 1 page load. */ $is_existing_wp_query = ( is_home() || is_404() || is_archive() || is_search() ); if ( get_queried_object_id() === 0 && ! $is_existing_wp_query ) { return; } // Setup prerequisite. $display_conditions_attrs = []; $cookie = []; $entire_page_content = \Feature\ContentRetriever\ET_Builder_Content_Retriever::init()->get_entire_page_content( get_queried_object_id() ); // Find all display conditions used in the page, flat the results, filter to only include NumberOfViews conditions. if ( preg_match_all( '/(?<=display_conditions=")[^"]*/mi', $entire_page_content, $matches, PREG_SET_ORDER ) ) { $display_conditions_attrs = array_reduce( $matches, 'array_merge', [] ); // Flatten and Store All `display_conditions` attributes found. $cookie = $this->number_of_views_process_conditions( $display_conditions_attrs ); if ( false === $cookie ) { return; } } /** * Encode cookie content and set cookie only if quired object id can be retrieved. * `serrawcookie` is used to ignore automatic `urlencode` with `setcookie` since it corrupts base64 data. */ if ( ! empty( $cookie ) ) { $cookie = base64_encode( wp_json_encode( $cookie ) ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_encode -- base64_encode data is an array. setrawcookie( 'divi_module_views', $cookie, time() + 3600 * 24 * 365, COOKIEPATH, COOKIE_DOMAIN ); } } /** * Checks "NumberOFViews" conditions against respective $_COOKIE content and updates/reset the * condition when necessary. * * @since 4.11.0 * * @param array $display_conditions_attrs Array of base64 encoded conditions. * * @return array */ public function number_of_views_process_conditions( $display_conditions_attrs ) { $is_cookie_set = isset( $_COOKIE['divi_module_views'] ); $current_datetime = current_datetime(); $decoded_cookie = $is_cookie_set ? json_decode( base64_decode( $_COOKIE['divi_module_views'] ), true ) : []; // phpcs:ignore ET.Sniffs.ValidatedSanitizedInput, WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode -- Cookie is not stored or displayed therefore XSS safe, The returned data is an array and necessary validation checks are performed. $cookie = is_array( $decoded_cookie ) ? $decoded_cookie : []; // Decode NumberOfViews conditions one by one then set or update cookie. foreach ( $display_conditions_attrs as $condition_base64 ) { $display_conditions = json_decode( base64_decode( $condition_base64 ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode -- The returned data is an array and necessary validation checks are performed. if ( ! is_array( $display_conditions ) ) { continue; } foreach ( $display_conditions as $display_condition ) { $condition_id = $display_condition['id']; $condition_name = $display_condition['condition']; $condition_settings = $display_condition['conditionSettings']; if ( 'numberOfViews' !== $condition_name ) { continue; } $is_reset_on = 'on' === $condition_settings['resetAfterDuration'] ? true : false; $reset_time = $condition_settings['displayAgainAfter'] . ' ' . $condition_settings['displayAgainAfterUnit']; $is_condition_id_in_cookie = array_search( $condition_id, array_column( $cookie, 'id' ), true ) !== false ? true : false; if ( $is_reset_on && $is_cookie_set && isset( $cookie[ $condition_id ] ) ) { $first_visit_timestamp = $cookie[ $condition_id ]['first_visit_timestamp']; $first_visit_datetime = $current_datetime->setTimestamp( $first_visit_timestamp ); $reset_datetime = $first_visit_datetime->modify( $reset_time ); if ( $current_datetime > $reset_datetime ) { $cookie[ $condition_id ]['visit_count'] = 1; $cookie[ $condition_id ]['first_visit_timestamp'] = $current_datetime->getTimestamp(); continue; } } if ( $is_cookie_set && $is_condition_id_in_cookie ) { $cookie[ $condition_id ]['visit_count'] += 1; } else { $cookie[ $condition_id ] = [ 'id' => $condition_id, 'visit_count' => 1, 'first_visit_timestamp' => $current_datetime->getTimestamp(), ]; } } } return $cookie; } } ET_Builder_Display_Conditions::get_instance();