WPSDK/v-wordpress-plugin-updater
0
0
Fork 0
mirror of https://gh.wpcy.net/https://github.com/djav1985/v-wordpress-plugin-updater.git synced 2026-04-27 07:58:24 +08:00
Code Issues Packages Activity Actions
v-wordpress-plugin-updater/v-update-api/app/Models/HostsModel.php
Nikolai X. Shadeauxs 8fc3bc20ad
Some checks failed
CI & Security / CI Scan (push) Failing after 9s
Details
CI & Security / CodeQL (JavaScript) (push) Failing after 6s
Details
CI & Security / Semgrep (PHP) (push) Failing after 8s
Details
modified: .github/copilot-instructions.md 
modified:   CHANGELOG.md
	modified:   README.md
2026-04-06 14:39:21 -04:00

133 lines
4.2 KiB
PHP
Raw Permalink Blame History

<?php
// phpcs:ignoreFile PSR1.Files.SideEffects.FoundWithSymbols
/**
* Project: UpdateAPI
* Author: Vontainment <services@vontainment.com>
* License: https://opensource.org/licenses/MIT MIT License
* Link: https://vontainment.com
* Version: 4.5.0
*
* File: HostsModel.php
* Description: WordPress Update API
*/
namespace App\Models;
use App\Core\DatabaseManager;
use App\Helpers\EncryptionHelper;
class HostsModel
{
/**
* Return encrypted host key for a domain, or null when not found.
*
* @param string $domain Domain name.
* @return string|null Encrypted API key or null if not found.
*/
public static function getEncryptedKeyByDomain(string $domain): ?string
{
$row = DatabaseManager::connection()->fetchAssociative('SELECT key FROM hosts WHERE domain = ?', [$domain]);
if ($row === false || !isset($row['key'])) {
return null;
}
return (string) $row['key'];
}
/**
* Return all host entries.
*
* @return array<int, array{domain: string, key: string}> Array of host entries.
*/
public static function getEntries(): array
{
$rows = DatabaseManager::connection()->fetchAllAssociative('SELECT domain, key FROM hosts ORDER BY domain');
return array_map(
fn (array $row): array => [
'domain' => (string) $row['domain'],
'key' => (string) $row['key'],
],
$rows
);
}
/**
* Return all hosts (domain only).
*
* @return array<int, string> Array of domain names.
*/
public static function getHosts(): array
{
$rows = DatabaseManager::connection()->fetchAllAssociative('SELECT domain FROM hosts ORDER BY domain');
$hosts = [];
foreach ($rows as $row) {
$hosts[] = $row['domain'];
}
return $hosts;
}
/**
* Add an entry to the hosts table.
*
* @param string $domain Domain name.
* @param string $key API key to encrypt and store.
* @return bool True if added successfully, false otherwise.
*/
public static function addEntry(string $domain, string $key): bool
{
$encrypted = EncryptionHelper::encrypt($key);
return DatabaseManager::connection()->executeStatement('INSERT INTO hosts (domain, key) VALUES (?, ?)', [$domain, $encrypted]) > 0;
}
/**
* Update an entry in the hosts table.
*
* @param string $domain Domain name.
* @param string $key New API key to encrypt and store.
* @return bool True if updated successfully, false otherwise.
*/
public static function updateEntry(string $domain, string $key): bool
{
$encrypted = EncryptionHelper::encrypt($key);
return DatabaseManager::connection()->executeStatement('UPDATE hosts SET key = ? WHERE domain = ?', [$encrypted, $domain]) > 0;
}
/**
* Re-encrypt a host's key with AEAD if it is still stored with the legacy CBC scheme.
* Safe to call on every read; no-ops when the key is already AEAD-encrypted.
*
* @param string $domain The host domain used as the primary key.
* @param string $encryptedKey The currently stored (possibly legacy) ciphertext.
* @param string $plainKey The already-decrypted plain-text key.
* @return void
*/
public static function migrateLegacyKey(string $domain, string $encryptedKey, string $plainKey): void
{
if (!EncryptionHelper::needsMigration($encryptedKey)) {
return;
}
DatabaseManager::connection()->executeStatement(
'UPDATE hosts SET key = ? WHERE domain = ?',
[EncryptionHelper::encrypt($plainKey), $domain]
);
}
/**
* Delete an entry from the hosts table.
*
* @param string $domain Domain name to delete.
* @return bool True if deleted successfully, false otherwise.
*/
public static function deleteEntry(string $domain): bool
{
$result = DatabaseManager::connection()->executeStatement('DELETE FROM hosts WHERE domain = ?', [$domain]) > 0;
if ($result) {
DatabaseManager::connection()->executeStatement('DELETE FROM logs WHERE domain = ?', [$domain]);
}
return $result;
}
}
Reference in a new issue View git blame Copy permalink