Privacy: Use relative paths for exported personal data.
Ensures back-compat while moving to paths off of the `/exports` directory. Fixes: #44038. Props: allendav, mrTall, desrosj, garrett-eclipse, cameronamcintyre, nmenescardi, xkon, whyisjake. git-svn-id: https://develop.svn.wordpress.org/trunk@48087 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
parent
a1fd329682
commit
634a3542d1
@ -469,16 +469,46 @@ function wp_privacy_generate_personal_data_export_file( $request_id ) {
|
|||||||
* via email.
|
* via email.
|
||||||
*/
|
*/
|
||||||
$error = false;
|
$error = false;
|
||||||
|
|
||||||
|
// This postmeta is used from version 5.4.
|
||||||
|
$archive_filename = get_post_meta( $request_id, '_export_file_name', true );
|
||||||
|
|
||||||
|
// These are used for backwards compatibility.
|
||||||
$archive_url = get_post_meta( $request_id, '_export_file_url', true );
|
$archive_url = get_post_meta( $request_id, '_export_file_url', true );
|
||||||
$archive_pathname = get_post_meta( $request_id, '_export_file_path', true );
|
$archive_pathname = get_post_meta( $request_id, '_export_file_path', true );
|
||||||
|
|
||||||
if ( empty( $archive_pathname ) || empty( $archive_url ) ) {
|
// If archive_filename exists make sure to remove deprecated postmeta.
|
||||||
$archive_filename = $file_basename . '.zip';
|
if ( ! empty( $archive_filename ) ) {
|
||||||
$archive_pathname = $exports_dir . $archive_filename;
|
$archive_pathname = $exports_dir . $archive_filename;
|
||||||
$archive_url = $exports_url . $archive_filename;
|
$archive_url = $exports_url . $archive_filename;
|
||||||
|
|
||||||
update_post_meta( $request_id, '_export_file_url', $archive_url );
|
// Remove the deprecated postmeta.
|
||||||
update_post_meta( $request_id, '_export_file_path', wp_normalize_path( $archive_pathname ) );
|
delete_post_meta( $request_id, '_export_file_url' );
|
||||||
|
delete_post_meta( $request_id, '_export_file_path' );
|
||||||
|
} elseif ( ! empty( $archive_pathname ) ) {
|
||||||
|
// Check if archive_pathname exists create the new postmeta and remove the deprecated.
|
||||||
|
|
||||||
|
$archive_filename = basename( $archive_pathname );
|
||||||
|
$archive_url = $exports_url . $archive_filename;
|
||||||
|
|
||||||
|
// Add the new postmeta that is used since version 5.4.
|
||||||
|
update_post_meta( $request_id, '_export_file_name', wp_normalize_path( $archive_filename ) );
|
||||||
|
|
||||||
|
// Remove the deprecated postmeta.
|
||||||
|
delete_post_meta( $request_id, '_export_file_url' );
|
||||||
|
delete_post_meta( $request_id, '_export_file_path' );
|
||||||
|
} else {
|
||||||
|
// If there's no archive_filename or archive_pathname create a new one.
|
||||||
|
$archive_filename = $file_basename . '.zip';
|
||||||
|
$archive_url = $exports_url . $archive_filename;
|
||||||
|
$archive_pathname = $exports_dir . $archive_filename;
|
||||||
|
|
||||||
|
// Add the new postmeta that is used since version 5.4.
|
||||||
|
update_post_meta( $request_id, '_export_file_name', wp_normalize_path( $archive_filename ) );
|
||||||
|
|
||||||
|
// Remove the deprecated postmeta.
|
||||||
|
delete_post_meta( $request_id, '_export_file_url' );
|
||||||
|
delete_post_meta( $request_id, '_export_file_path' );
|
||||||
}
|
}
|
||||||
|
|
||||||
if ( ! empty( $archive_pathname ) && file_exists( $archive_pathname ) ) {
|
if ( ! empty( $archive_pathname ) && file_exists( $archive_pathname ) ) {
|
||||||
@ -539,6 +569,10 @@ function wp_privacy_send_personal_data_export_email( $request_id ) {
|
|||||||
// Get the request.
|
// Get the request.
|
||||||
$request = wp_get_user_request( $request_id );
|
$request = wp_get_user_request( $request_id );
|
||||||
|
|
||||||
|
// Get the export file URL.
|
||||||
|
$exports_url = wp_privacy_exports_url();
|
||||||
|
$export_file_name = get_post_meta( $request_id, '_export_file_name', true );
|
||||||
|
|
||||||
if ( ! $request || 'export_personal_data' !== $request->action_name ) {
|
if ( ! $request || 'export_personal_data' !== $request->action_name ) {
|
||||||
return new WP_Error( 'invalid_request', __( 'Invalid request ID when sending personal data export email.' ) );
|
return new WP_Error( 'invalid_request', __( 'Invalid request ID when sending personal data export email.' ) );
|
||||||
}
|
}
|
||||||
@ -556,7 +590,7 @@ function wp_privacy_send_personal_data_export_email( $request_id ) {
|
|||||||
$expiration = apply_filters( 'wp_privacy_export_expiration', 3 * DAY_IN_SECONDS );
|
$expiration = apply_filters( 'wp_privacy_export_expiration', 3 * DAY_IN_SECONDS );
|
||||||
$expiration_date = date_i18n( get_option( 'date_format' ), time() + $expiration );
|
$expiration_date = date_i18n( get_option( 'date_format' ), time() + $expiration );
|
||||||
|
|
||||||
$export_file_url = get_post_meta( $request_id, '_export_file_url', true );
|
$export_file_url = $exports_url . $export_file_name;
|
||||||
$site_name = wp_specialchars_decode( get_option( 'blogname' ), ENT_QUOTES );
|
$site_name = wp_specialchars_decode( get_option( 'blogname' ), ENT_QUOTES );
|
||||||
$site_url = home_url();
|
$site_url = home_url();
|
||||||
|
|
||||||
@ -820,7 +854,10 @@ function wp_privacy_process_personal_data_export_page( $response, $exporter_inde
|
|||||||
_wp_privacy_completed_request( $request_id );
|
_wp_privacy_completed_request( $request_id );
|
||||||
} else {
|
} else {
|
||||||
// Modify the response to include the URL of the export file so the browser can fetch it.
|
// Modify the response to include the URL of the export file so the browser can fetch it.
|
||||||
$export_file_url = get_post_meta( $request_id, '_export_file_url', true );
|
$exports_url = wp_privacy_exports_url();
|
||||||
|
$export_file_name = get_post_meta( $request_id, '_export_file_name', true );
|
||||||
|
$export_file_url = $exports_url . $export_file_name;
|
||||||
|
|
||||||
if ( ! empty( $export_file_url ) ) {
|
if ( ! empty( $export_file_url ) ) {
|
||||||
$response['url'] = $export_file_url;
|
$response['url'] = $export_file_url;
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user