Fixed issue #6 which prevents the plugin working on SSL backend.

Author: Eugene Manuilov

classes/Visualizer/Module/Admin.php

@@ -138,7 +138,7 @@ public function setupMediaViewStrings( $strings ) {
 			'library' => array(
 				'filters' => self::_getChartTypesLocalized(),
 			),
-			'nonce'    => Visualizer_Security::createNonce(),
+			'nonce'    => wp_create_nonce(),
 			'buildurl' => add_query_arg( 'action', Visualizer_Plugin::ACTION_CREATE_CHART, admin_url( 'admin-ajax.php' ) ),
 		);
 

classes/Visualizer/Module/Chart.php

@@ -165,7 +165,7 @@ public function deleteChart() {
 		$input_method = $is_post ? INPUT_POST : INPUT_GET;
 
 		$chart_id = $success = false;
-		$nonce = Visualizer_Security::verifyNonce( filter_input( $input_method, 'nonce' ) );
+		$nonce = wp_verify_nonce( filter_input( $input_method, 'nonce' ) );
 		$capable = current_user_can( 'delete_posts' );
 		if ( $nonce && $capable ) {
 			$chart_id = filter_input( $input_method, 'chart', FILTER_VALIDATE_INT, array( 'options' => array( 'min_range' => 1 ) ) );
@@ -261,7 +261,7 @@ public function renderChartPages() {
 	 */
 	private function _handleTypesPage() {
 		// process post request
-		if ( $_SERVER['REQUEST_METHOD'] == 'POST' && Visualizer_Security::verifyNonce( filter_input( INPUT_POST, 'nonce' ) ) ) {
+		if ( $_SERVER['REQUEST_METHOD'] == 'POST' && wp_verify_nonce( filter_input( INPUT_POST, 'nonce' ) ) ) {
 			$type = filter_input( INPUT_POST, 'type' );
 			if ( in_array( $type, Visualizer_Plugin::getChartTypes() ) ) {
 				// save new chart type
@@ -334,7 +334,7 @@ private function _handleDataPage() {
 	 * @access private
 	 */
 	private function _handleSettingsPage() {
-		if ( $_SERVER['REQUEST_METHOD'] == 'POST' && Visualizer_Security::verifyNonce( filter_input( INPUT_GET, 'nonce' ) ) ) {
+		if ( $_SERVER['REQUEST_METHOD'] == 'POST' && wp_verify_nonce( filter_input( INPUT_GET, 'nonce' ) ) ) {
 			if ( $this->_chart->post_status == 'auto-draft' ) {
 				$this->_chart->post_status = 'publish';
 				wp_update_post( $this->_chart->to_array() );
@@ -394,7 +394,7 @@ private function _handleSettingsPage() {
 	 */
 	public function uploadData() {
 		// validate nonce
-		if ( !Visualizer_Security::verifyNonce( filter_input( INPUT_GET, 'nonce' ) ) ) {
+		if ( !wp_verify_nonce( filter_input( INPUT_GET, 'nonce' ) ) ) {
 			status_header( 403 );
 			exit;
 		}
@@ -445,7 +445,7 @@ public function uploadData() {
 	 */
 	public function cloneChart() {
 		$chart_id = $success = false;
-		$nonce = Visualizer_Security::verifyNonce( filter_input( INPUT_GET, 'nonce' ), Visualizer_Plugin::ACTION_CLONE_CHART );
+		$nonce = wp_verify_nonce( filter_input( INPUT_GET, 'nonce' ), Visualizer_Plugin::ACTION_CLONE_CHART );
 		$capable = current_user_can( 'edit_posts' );
 		if ( $nonce && $capable ) {
 			$chart_id = filter_input( INPUT_GET, 'chart', FILTER_VALIDATE_INT, array( 'options' => array( 'min_range' => 1 ) ) );

classes/Visualizer/Render/Library.php

@@ -44,13 +44,13 @@ private function _renderChartBox( $placeholder_id, $chart_id ) {
 
 		$delete_url = add_query_arg( array(
 			'action' => Visualizer_Plugin::ACTION_DELETE_CHART,
-			'nonce'  => Visualizer_Security::createNonce(),
+			'nonce'  => wp_create_nonce(),
 			'chart'  => $chart_id,
 		), $ajax_url );
 
 		$clone_url = add_query_arg( array(
 			'action' => Visualizer_Plugin::ACTION_CLONE_CHART,
-			'nonce'  => Visualizer_Security::createNonce( Visualizer_Plugin::ACTION_CLONE_CHART ),
+			'nonce'  => wp_create_nonce( Visualizer_Plugin::ACTION_CLONE_CHART ),
 			'chart'  => $chart_id,
 			'type'   => $this->type,
 		), $ajax_url );

classes/Visualizer/Render/Page/Data.php

@@ -54,7 +54,7 @@ protected function _renderContent() {
 	protected function _renderSidebarContent() {
 		$upload_link = add_query_arg( array(
 			'action' => Visualizer_Plugin::ACTION_UPLOAD_DATA,
-			'nonce'  => Visualizer_Security::createNonce(),
+			'nonce'  => wp_create_nonce(),
 			'chart'  => $this->chart->ID,
 		), admin_url( 'admin-ajax.php' ) );
 
@@ -80,7 +80,7 @@ protected function _renderSidebarContent() {
 							echo '<input type="file" id="csv-file" class="file" name="local_data">';
 							esc_attr_e( 'From Computer', Visualizer_Plugin::NAME );
 						echo '</div>';
-						
+
 						echo '<div>';
 							echo '<a id="remote-file" class="button" href="javascript:;">', esc_html__( 'From Web', Visualizer_Plugin::NAME ), '</a>';
 						echo '</div>';

classes/Visualizer/Render/Page/Settings.php

@@ -66,7 +66,7 @@ protected function _renderToolbar() {
 	 * @access protected
 	 */
 	protected function _toHTML() {
-		echo '<form id="settings-form" action="', add_query_arg( 'nonce', Visualizer_Security::createNonce() ), '" method="post">';
+		echo '<form id="settings-form" action="', add_query_arg( 'nonce', wp_create_nonce() ), '" method="post">';
 			parent::_toHTML();
 		echo '</form>';
 	}

classes/Visualizer/Render/Page/Types.php

@@ -40,7 +40,7 @@ class Visualizer_Render_Page_Types extends Visualizer_Render_Page {
 	 */
 	protected function _toHTML() {
 		echo '<form method="post">';
-			echo '<input type="hidden" name="nonce" value="', Visualizer_Security::createNonce(), '">';
+			echo '<input type="hidden" name="nonce" value="', wp_create_nonce(), '">';
 			parent::_toHTML();
 		echo '</form>';
 	}