Merge pull request #1463 from abantecart/1.3.0

1.3.0

Author: abantecart

public_html/admin/controller/api/common/access.php

@@ -5,7 +5,7 @@
   AbanteCart, Ideal OpenSource Ecommerce Solution
   http://www.AbanteCart.com
 
-  Copyright 2011-2020 Belavier Commerce LLC
+  Copyright 2011-2021 Belavier Commerce LLC
 
   This source file is subject to Open Software License (OSL 3.0)
   License details is bundled with this package in the file LICENSE.txt.
@@ -65,6 +65,10 @@ public function login()
         //allow access to listed controllers with no login
         if (isset($request['rt']) && !isset($request['token'])) {
             $route = '';
+            //remove controller type prefixes
+            $request['rt'] = ltrim($request['rt'], 'a/');
+            $request['rt'] = ltrim($request['rt'], 'r/');
+            $request['rt'] = ltrim($request['rt'], 'p/');
             $part = explode('/', $request['rt']);
 
             if (isset($part[0])) {
@@ -73,13 +77,13 @@ public function login()
             if (isset($part[1])) {
                 $route .= '/'.$part[1];
             }
-            $ignore = array(
+            $ignore = [
                 'api/index/login',
                 'api/common/access',
                 'api/error/not_found',
                 'api/error/no_access',
                 'api/error/no_permission',
-            );
+            ];
 
             if (!in_array($route, $ignore)) {
                 return $this->dispatch('api/index/login');
@@ -89,6 +93,7 @@ public function login()
                 return $this->dispatch('api/index/login');
             }
         }
+        return null;
     }
 
     public function permission()
@@ -101,6 +106,10 @@ public function permission()
 
         if (isset($request['rt'])) {
             $route = '';
+            //remove controller type prefixes
+            $request['rt'] = ltrim($request['rt'], 'a/');
+            $request['rt'] = ltrim($request['rt'], 'r/');
+            $request['rt'] = ltrim($request['rt'], 'p/');
             $part = explode('/', $request['rt']);
 
             if (isset($part[0])) {
@@ -109,13 +118,13 @@ public function permission()
             if (isset($part[1])) {
                 $route .= '/'.$part[1];
             }
-            $ignore = array(
+            $ignore = [
                 'api/index/login',
                 'api/common/access',
                 'api/error/not_found',
                 'api/error/no_access',
                 'api/error/no_permission',
-            );
+            ];
 
             if (!in_array($route, $ignore)) {
                 if (!$this->user->canAccess($route)) {

public_html/admin/controller/common/ant.php

@@ -1,11 +1,12 @@
 <?php
+
 /*------------------------------------------------------------------------------
   $Id$
 
   AbanteCart, Ideal OpenSource Ecommerce Solution
   http://www.AbanteCart.com
 
-  Copyright © 2011-2020 Belavier Commerce LLC
+  Copyright © 2011-2021 Belavier Commerce LLC
 
   This source file is subject to Open Software License (OSL 3.0)
   License details is bundled with this package in the file LICENSE.txt.
@@ -30,9 +31,8 @@ class ControllerCommonANT extends AController
 
     public function main()
     {
-
         // disable for login-logout pages
-        if (in_array($this->request->get['rt'], array('index/logout', 'index/login'))) {
+        if (in_array($this->request->get['rt'], ['index/logout', 'index/login'])) {
             unset($this->session->data['ant_messages']);
             return null;
         }
@@ -42,8 +42,9 @@ public function main()
         }
 
         // prevent repeats of requests or if last update older then 24hours
-        if (has_value($this->session->data['ant_messages']) && (time() - $this->session->data['ant_messages']['date_modified'] < 86400)) {
-           return null;
+        if (has_value($this->session->data['ant_messages'])
+            && (time() - $this->session->data['ant_messages']['date_modified'] < 86400)) {
+            return null;
         }
 
         //init controller data
@@ -70,13 +71,13 @@ public function main()
         }
 
         //do connect without any http-redirects
-        $connect = new AConnect (true, true);
+        $connect = new AConnect (true);
         $result = $connect->getResponseSecure($url);
-        $this->session->data ['ant_messages'] = array(); // prevent requests in future at this session
+        $this->session->data ['ant_messages'] = []; // prevent requests in future at this session
         // insert new messages in database
         if ($result && is_array($result)) {
             //set array for check response
-            $check_array = array(
+            $check_array = [
                 'message_id',
                 'type',
                 'date_added',
@@ -92,10 +93,10 @@ public function main()
                 'url',
                 'published',
                 'language_code',
-            );
-            $banners = array();
+            ];
+            $banners = [];
             foreach ($result as $notify) {
-                $tmp = array();
+                $tmp = [];
                 foreach ($notify as $key => $value) {
                     if (!in_array($key, $check_array)) {
                         continue;
@@ -128,6 +129,6 @@ public function main()
 
         // check for extensions updates
         $this->loadModel('tool/updater');
-        $this->model_tool_updater->check4updates();
+        $this->model_tool_updater->check4updates(true);
     }
 }

public_html/admin/controller/common/footer.php

@@ -1,11 +1,12 @@
 <?php
+
 /*------------------------------------------------------------------------------
   $Id$
 
   AbanteCart, Ideal OpenSource Ecommerce Solution
   http://www.AbanteCart.com
 
-  Copyright © 2011-2020 Belavier Commerce LLC
+  Copyright © 2011-2021 Belavier Commerce LLC
 
   This source file is subject to Open Software License (OSL 3.0)
   License details is bundled with this package in the file LICENSE.txt.
@@ -25,12 +26,11 @@ class ControllerCommonFooter extends AController
 {
     public function main()
     {
-
         //init controller data
         $this->extensions->hk_InitData($this, __FUNCTION__);
         $this->loadLanguage('common/header');
 
-        $menu = new AMenu('admin', 'menu');
+        $menu = new AMenu('admin');
         $documentation = $menu->getMenuItem('documentation');
         $support = $menu->getMenuItem('support');
         $mp = $menu->getMenuItem('marketplace');
@@ -46,17 +46,27 @@ public function main()
         $this->view->assign('text_footer_left', sprintf($this->language->get('text_footer_left'), date('Y')));
         $this->view->assign('text_footer', sprintf($this->language->get('text_footer'), date('Y')).' '.VERSION);
 
-        if (!$this->user->isLogged() || !isset($this->request->get['token']) || !isset($this->session->data['token']) || ($this->request->get['token'] != $this->session->data['token'])) {
+        if (!$this->user->isLogged()
+            || !isset($this->request->get['token'])
+            || !isset($this->session->data['token'])
+            || ($this->request->get['token'] != $this->session->data['token'])
+        ) {
             $this->view->assign('logged', '');
             $this->view->assign('home', $this->html->getSecureURL('index/login', '', true));
         } else {
             $this->view->assign('logged', sprintf($this->language->get('text_logged'), $this->user->getUserName()));
             $this->view->assign('avatar', $this->user->getAvatar());
             $this->view->assign('username', $this->user->getUserName());
             if ($this->user->getLastLogin()) {
-                $this->view->assign('last_login', sprintf($this->language->get('text_last_login'), $this->user->getLastLogin()));
+                $this->view->assign(
+                    'last_login',
+                    sprintf($this->language->get('text_last_login'), $this->user->getLastLogin())
+                );
             } else {
-                $this->view->assign('last_login', sprintf($this->language->get('text_welcome'), $this->user->getUserName()));
+                $this->view->assign(
+                    'last_login',
+                    sprintf($this->language->get('text_welcome'), $this->user->getUserName())
+                );
             }
             $this->view->assign('account_edit', $this->html->getSecureURL('index/edit_details', '', true));
         }

public_html/admin/controller/common/head.php

@@ -1,11 +1,13 @@
 <?php
+/** @noinspection PhpUndefinedClassInspection */
+
 /*------------------------------------------------------------------------------
   $Id$
 
   AbanteCart, Ideal OpenSource Ecommerce Solution
   http://www.AbanteCart.com
 
-  Copyright © 2011-2020 Belavier Commerce LLC
+  Copyright © 2011-2021 Belavier Commerce LLC
 
   This source file is subject to Open Software License (OSL 3.0)
   License details is bundled with this package in the file LICENSE.txt.
@@ -21,13 +23,12 @@
     header('Location: static_pages/');
 }
 
-class ControllerCommonHead extends AController
+class  ControllerCommonHead extends AController
 {
-    public $data = array();
+    public $data = [];
 
     public function main()
     {
-
         //use to init controller data
         $this->extensions->hk_InitData($this, __FUNCTION__);
 
@@ -51,21 +52,26 @@ public function main()
         $retina = $this->config->get('config_retina_enable');
         $this->data['retina'] = $retina;
         //remove cookie for retina
-        if (!$retina) {
+        if (!$retina && isset($this->request->cookie['HTTP_IS_RETINA'])) {
             $this->request->deleteCookie('HTTP_IS_RETINA');
         }
 
         $this->data['message_manager_url'] = $message_link;
 
-        if ($this->session->data['checkupdates']) {
+        if ($this->session->data['checkupdates'] ?? false) {
             $this->data['check_updates_url'] = $this->html->getSecureURL('r/common/common/checkUpdates');
         }
+        if (is_numeric($this->config->get('config_icon'))) {
+            $r = new AResource('image');
+            $resourceInfo = $r->getResource($this->config->get('config_icon'), $this->language->getLanguageID());
+            if ($resourceInfo) {
+                $this->data['icon'] = $resourceInfo['type_dir'].$resourceInfo['resource_path'];
+            }
+        } else {
+            $this->data['icon'] = $this->config->get('config_icon');
+        }
 
-        $this->data['icon'] = $this->config->get('config_icon');
-
-        if (isset($this->request->server['HTTPS'])
-            && (($this->request->server['HTTPS'] == 'on') || ($this->request->server['HTTPS'] == '1'))
-        ) {
+        if (HTTPS === true) {
             $this->data['ssl'] = 1;
         }