Server : Apache System : Linux pod-100823:apache2_74:v0.5.7 5.4.0-1138-gcp #147~18.04.1-Ubuntu SMP Mon Oct 7 21:46:26 UTC 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.33.7 Disable Function : apache_child_terminate,apache_get_modules,apache_get_version,apache_getenv,apache_note,apache_setenv,disk_free_space,disk_total_space,diskfreespace,dl,exec,fastcgi_finish_request,link,opcache_compile_file,opcache_get_configuration,opcache_invalidate,opcache_is_script_cached,opcache_reset,passthru,pclose,pcntl_exec,popen,posix_getpid,posix_getppid,posix_getpwuid,posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid,posix_setpgid,posix_setsid,posix_setuid,posix_uname,proc_close,proc_get_status,proc_nice,proc_open,proc_terminate,realpath_cache_get,shell_exec,show_source,symlink,system Directory :  /nas/content/live/attorneyexperi/wp-content/plugins/ugslot/MWP/Security/

Upload File : current_dir [ Writeable ] document_root [ Writeable ]

<?php
/*
 * This file is part of the ManageWP Worker plugin.
 *
 * (c) ManageWP LLC <contact@managewp.com>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

class MWP_Security_NonceManager
{

    private $context;

    private $nonceValidFor;

    private $nonceBlacklistedFor;

    /**
     * @param MWP_WordPress_Context $context
     * @param int                   $nonceValidFor       How long (in seconds) is the nonce valid since its issue time.
     * @param int                   $nonceBlacklistedFor How long (in seconds) to keep used nonce in storage.
     */
    public function __construct(MWP_WordPress_Context $context, $nonceValidFor = 43200, $nonceBlacklistedFor = 86400)
    {
        if ($nonceBlacklistedFor < $nonceValidFor) {
            throw new LogicException('Nonce blacklist time must be higher than nonce lifetime.');
        }

        $this->context             = $context;
        $this->nonceValidFor       = $nonceValidFor;
        $this->nonceBlacklistedFor = $nonceBlacklistedFor;
    }

    /**
     * @param string $nonce
     *
     * @throws MWP_Security_Exception_NonceFormatInvalid
     * @throws MWP_Security_Exception_NonceExpired
     * @throws MWP_Security_Exception_NonceAlreadyUsed
     */
    public function useNonce($nonce)
    {
        $parts = explode('_', $nonce);

        if (count($parts) !== 2) {
            throw new MWP_Security_Exception_NonceFormatInvalid();
        }

        list($nonceValue, $issuedAt) = $parts;
        $issuedAt = (int) $issuedAt;

        if (!$nonceValue || !$issuedAt) {
            throw new MWP_Security_Exception_NonceFormatInvalid();
        }

        if ($issuedAt + $this->nonceValidFor < time()) {
            throw new MWP_Security_Exception_NonceExpired();
        }

        // There was a bug where the generated nonce was 42 characters long.
        $transientKey = substr('n_'.$nonceValue, 0, 40);
        $nonceUsed    = $this->context->transientGet($transientKey);

        if ($nonceUsed !== false) {
            throw new MWP_Security_Exception_NonceAlreadyUsed();
        }

        $this->context->transientSet($transientKey, $issuedAt, $this->nonceBlacklistedFor);
    }
}