kompass/modules/firstusage/classes/Security.class.php

<?php
namespace Bdp\Modules\Security;


use ZipArchive;


class Security
{
    public const required_security_plugins = [];


    public const delete_plugins = [
        'akismet/akismet.php',
        'hello.php',
	    'limit-login-attempts-reloaded',
	    'wps-hide-login/wps-hide-login.php'
    ];

    public static function setup()
    {
	    self::deletePlugins();
	    foreach (self::required_security_plugins as $pluginSlug => $pluginData) {
		    if (!is_dir(WP_PLUGIN_DIR . '/' . $pluginSlug)) {
			    self::installSecurityPlugin($pluginSlug, $pluginData['downloadUrl']);
		    }
	    }

	    $loginUrl = get_option('whl_page', null) ?? 'bdp-login';
	    enable_option_rewrite_url($loginUrl);
	    enable_option_disable_xmlrpc();
	    enable_option_block_authorscan();
	    enable_option_block_execution_in_uploads();
	    enable_option_prohibit_special_files();
	    enable_option_file_editor();
	    enable_option_disable_conatenation();
	    enable_option_secure_include_dir();
	    enable_option_prohibit_bot_access();
	    enable_option_block_directory_listing();

    }

    public static function deletePlugins() {
        deactivate_plugins(self::delete_plugins);
        delete_plugins(self::delete_plugins);
    }


    public static function installSecurityPlugin(string $pluginSlug, string $downloadUrl) : bool
    {
        $ch = curl_init();
        $source = $downloadUrl;
        curl_setopt($ch, CURLOPT_URL, $source);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        $data = curl_exec ($ch);
        curl_close ($ch);

        $destination = WP_PLUGIN_DIR . '/' . $pluginSlug . '.zip';
        $file = fopen($destination, "w+");
        fputs($file, $data);
        fclose($file);

        $zip = new ZipArchive();
        $zip->open($destination);
        $zip->extractTo(WP_PLUGIN_DIR);
        $zip->close();
        unlink($destination);

        $pluginInfos = get_plugins( '/'.$pluginSlug );
        $installfile = $pluginSlug . '/';
        if( ! empty( $pluginInfos ) ) {
            foreach ($pluginInfos as $file => $info) :
                $installfile .= $file;
            endforeach;
        }


        $result = activate_plugin($installfile);

        return $result === null;
    }
}
Basic release 2023-12-30 14:28:21 +01:00			`<?php`
			`namespace Bdp\Modules\Security;`


			`use ZipArchive;`



			`class Security`
			`{`
Update in code structure 2024-02-21 21:41:11 +01:00			`public const required_security_plugins = [];`
Basic release 2023-12-30 14:28:21 +01:00

			`public const delete_plugins = [`
			`'akismet/akismet.php',`
Design updates 2024-02-21 16:07:03 +01:00			`'hello.php',`
Update in code structure 2024-02-21 21:41:11 +01:00			`'limit-login-attempts-reloaded',`
			`'wps-hide-login/wps-hide-login.php'`
Basic release 2023-12-30 14:28:21 +01:00			`];`

			`public static function setup()`
			`{`
Update in code structure 2024-02-21 21:41:11 +01:00			`self::deletePlugins();`
			`foreach (self::required_security_plugins as $pluginSlug => $pluginData) {`
			`if (!is_dir(WP_PLUGIN_DIR . '/' . $pluginSlug)) {`
			`self::installSecurityPlugin($pluginSlug, $pluginData['downloadUrl']);`
			`}`
			`}`

			`$loginUrl = get_option('whl_page', null) ?? 'bdp-login';`
			`enable_option_rewrite_url($loginUrl);`
			`enable_option_disable_xmlrpc();`
			`enable_option_block_authorscan();`
			`enable_option_block_execution_in_uploads();`
			`enable_option_prohibit_special_files();`
			`enable_option_file_editor();`
			`enable_option_disable_conatenation();`
			`enable_option_secure_include_dir();`
			`enable_option_prohibit_bot_access();`
			`enable_option_block_directory_listing();`
Basic release 2023-12-30 14:28:21 +01:00
			`}`

			`public static function deletePlugins() {`
			`deactivate_plugins(self::delete_plugins);`
			`delete_plugins(self::delete_plugins);`
			`}`


			`public static function installSecurityPlugin(string $pluginSlug, string $downloadUrl) : bool`
			`{`
			`$ch = curl_init();`
			`$source = $downloadUrl;`
			`curl_setopt($ch, CURLOPT_URL, $source);`
			`curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);`
			`$data = curl_exec ($ch);`
			`curl_close ($ch);`

			`$destination = WP_PLUGIN_DIR . '/' . $pluginSlug . '.zip';`
			`$file = fopen($destination, "w+");`
			`fputs($file, $data);`
			`fclose($file);`

			`$zip = new ZipArchive();`
			`$zip->open($destination);`
			`$zip->extractTo(WP_PLUGIN_DIR);`
			`$zip->close();`
			`unlink($destination);`

			`$pluginInfos = get_plugins( '/'.$pluginSlug );`
			`$installfile = $pluginSlug . '/';`
			`if( ! empty( $pluginInfos ) ) {`
			`foreach ($pluginInfos as $file => $info) :`
			`$installfile .= $file;`
			`endforeach;`
			`}`



			`$result = activate_plugin($installfile);`

			`return $result === null;`
			`}`
			`}`