git.admin/roi-theme
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit inicial - WordPress Análisis de Precios Unitarios

Browse Source 
- WordPress core y plugins
- Tema Twenty Twenty-Four configurado
- Plugin allow-unfiltered-html.php simplificado
- .gitignore configurado para excluir wp-config.php y uploads

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
root
2025-11-03 21:04:30 -06:00
commit a22573bf0b
24068 changed files with 4993111 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

649
wp-content/plugins/remove-dashboard-access-for-non-admins/inc/class.rda-options.php Executable file
View File

@@ -0,0 +1,649 @@
<?php
// Bail if called directly.
if ( ! defined( 'ABSPATH' ) ) {
exit;
}
if ( class_exists( 'RDA_Options' ) ) {
return;
}
/**
* Remove Dashboard Access Options Class
*
* @since 1.0
*/
class RDA_Options {
/**
* Static instance to make removing actions and filters modular.
*
* @var $instance RDA_Options
* @since 1.1
* @access public
* @static
*/
public static $instance;
/**
* @var $settings array rda-settings options array
*
* @since 1.0
* @access public
*/
public $settings = array();
/**
* Init
*
* @since 1.0
* @access public
*/
public function __construct() {
self::$instance = $this;
self::$instance->setup();
}
/**
* Set up various actions, filters, and other items.
*
* @since 1.1
* @access public
*/
public function setup() {
$this->maybe_map_old_settings();
$this->settings = array(
'access_switch' => get_option( 'rda_access_switch', 'manage_options' ),
'access_cap' => get_option( 'rda_access_cap', 'manage_options' ),
'enable_profile' => get_option( 'rda_enable_profile', 1 ),
'redirect_url' => get_option( 'rda_redirect_url', home_url() ),
'login_message' => get_option( 'rda_login_message', esc_html__( 'This site is in maintenance mode.', 'remove_dashboard_access' ) ),
);
// Translation.
add_action( 'init', array( $this, 'load_textdomain' ) );
// Settings.
add_action( 'admin_menu', array( $this, 'options_page' ) );
add_action( 'admin_init', array( $this, 'settings' ) );
add_action( 'admin_head-settings_page_dashboard-access', array( $this, 'access_switch_js' ) );
// Settings link in plugins list.
add_filter( 'plugin_action_links', array( $this, 'settings_link' ), 10, 2 );
// Login message.
add_filter( 'login_message', array( $this, 'output_login_message' ) );
}
/**
* Load the plugin text domain for translation.
*
* @since 1.2.1
*/
public function load_textdomain() {
load_plugin_textdomain( 'remove_dashboard_access', false, dirname( plugin_basename( __FILE__ ) ) . '/languages/' );
}
/**
* (maybe) Map old settings (1.0-) to the new ones (1.1+).
*
* @since 1.1
* @access public
*/
public function maybe_map_old_settings() {
// If the settings aren't there, bail.
if ( false == $old_settings = get_option( 'rda-settings' ) ) {
return;
}
$new_settings = array();
if ( ! empty( $old_settings ) && is_array( $old_settings ) ) {
// Access Switch.
$new_settings['rda_access_switch'] = empty( $old_settings['access_switch'] ) ? 'manage_options' : $old_settings['access_switch'];
// Access Cap.
$new_settings['rda_access_cap'] = ( 'capability' == $new_settings['access_switch'] ) ? 'manage_options' : $new_settings['rda_access_switch'];
// Redirect URL.
$new_settings['rda_redirect_url'] = empty( $old_settings['redirect_url'] ) ? home_url() : $old_settings['redirect_url'];
// Enable Profile.
$new_settings['rda_enable_profile'] = empty( $old_settings['enable_profile'] ) ? true : $old_settings['enable_profile'];
// Login Message.
$new_settings['rda_login_message'] = '';
}
foreach ( $new_settings as $key => $value ) {
update_option( $key, $value );
}
delete_option( 'rda-settings' );
}
/**
* Activation Hook.
*
* Setup default options on activation.
*
* @since 1.0
* @access public
*
* @see $this->setup()
*/
public function activate() {
$settings = array(
'rda_access_switch' => 'manage_options',
'rda_access_cap' => 'manage_options',
'rda_redirect_url' => home_url(),
'rda_enable_profile' => 1,
'rda_login_message' => '',
);
foreach ( $settings as $key => $value ) {
add_option( $key, $value );
}
}
/**
* Options page: Remove Access
*
* @since 1.1.1
*
* @uses add_options_page() to add a sub-menu under 'Settings'
*/
function options_page() {
add_options_page(
esc_html__( 'Dashboard Access Settings', 'remove_dashboard_access' ),
esc_html__( 'Dashboard Access', 'remove_dashboard_access' ),
'manage_options',
'dashboard-access',
array( $this, 'options_page_cb' )
);
}
/**
* Options page: callback
*
* Outputs the form for the 'Remove Access' submenu
*
* @since 1.1.1
*/
function options_page_cb() {
?>
<div class="wrap">
<h2><?php esc_html_e( 'Dashboard Access Settings', 'remove_dashboard_access' ); ?></h2>
<form action="options.php" method="POST" id="rda-options-form">
<?php
settings_fields( 'dashboard-access' );
do_settings_sections( 'dashboard-access' );
submit_button();
?>
</form>
</div><!-- .wrap -->
<?php
}
/**
* Register settings and settings sections.
*
* @since 1.0
* @access public
*
* @see $this->setup()
*/
public function settings() {
// Dashboard Access Controls section.
add_settings_section( 'rda_options', esc_html__( 'Dashboard Access Controls', 'remove_dashbord_access' ), array( $this, 'settings_section' ), 'dashboard-access' );
// Settings.
$sets = array(
'rda_access_switch' => array(
'label' => esc_html__( 'Dashboard User Access:', 'remove_dashboard_access' ),
'callback' => 'access_switch_cb',
),
'rda_access_cap' => array(
'label' => '',
'callback' => 'access_cap_dropdown',
),
'rda_redirect_url' => array(
'label' => esc_html__( 'Redirect URL:', 'remove_dashboard_access' ),
'callback' => 'url_redirect_cb',
),
'rda_enable_profile' => array(
'label' => esc_html__( 'User Profile Access:', 'remove_dashboard_access' ),
'callback' => 'profile_enable_cb',
),
'rda_login_message' => array(
'label' => esc_html__( 'Login Message', 'remove_dashboard_access' ),
'callback' => 'login_message_cb',
),
);
foreach ( $sets as $id => $settings ) {
add_settings_field( $id, $settings['label'], array( $this, $settings['callback'] ), 'dashboard-access', 'rda_options' );
// Pretty lame that we need separate sanitize callbacks for everything.
$sanitize_callback = str_replace( 'rda', 'sanitize', $id );
register_setting( 'dashboard-access', $id, array( $this, $sanitize_callback ) );
};
// Debug info "setting".
if ( ! empty( $_GET['rda_debug'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification
add_settings_field( 'rda_debug_mode', esc_html__( 'Debug Info', 'remove_dashboard_access' ), array( $this, '_debug_mode' ), 'dashboard-access', 'rda_options' );
}
}
/**
* Dashboard Access Controls display callback.
*
* @since 1.1
* @access public
*/
public function settings_section() {
esc_html_e( 'Dashboard access can be restricted to users of certain roles only or users with a specific capability.', 'remove_dashboard_access' );
}
/**
* Access Controls 2 of 2.
*
* Output the capability drop-down.
*
* @since 1.1
* @access public
*/
public function access_cap_dropdown() {
$switch = $this->settings['access_switch'];
?>
<p><label>
<input name="rda_access_switch" type="radio" value="capability" class="tag" <?php checked( 'capability', esc_attr( $switch ) ); ?> />
<?php echo wp_kses( __( '<strong>Advanced</strong>: Limit by capability:', 'remove_dashboard_access' ), array( 'strong' => array() ) ); ?>
</label><?php $this->_output_caps_dropdown(); ?></p>
<p>
<?php printf( esc_html__( 'You can find out more about specific %s in the Codex.', 'remove_dashboard_access' ),
sprintf( '<a href="%1$s" target="_new">%2$s</a>',
esc_url( 'http://codex.wordpress.org/Roles_and_Capabilities' ),
esc_html__( 'Roles &amp; Capabilities', 'remove_dashboard_access' )
)
); ?>
</p>
<?php
}
/**
* Capability-type radio switch jQuery script.
*
* When the 'Limit by capability' radio option is selected the script.
* enables the capabilities drop-down. Default state is disabled.
*
* @since 1.0
* @access public
*
* @see $this->setup()
*/
public function access_switch_js() {
wp_enqueue_script( 'rda-settings', plugin_dir_url( __FILE__ ) . 'js/settings.js', array( 'jquery' ), '1.0' );
}
/**
* Enable/Disable radio toggle display callback.
*
* @since 1.1
* @access public
*
* @see $this->options_setup()
*/
public function plugin_toggle_cb() {
printf( '<input name="rda_toggle_plugin_off" type="checkbox" value="1" class="code" %1$s/>%2$s',
checked( esc_attr( $this->settings['toggle_plugin_off'] ), true, false ),
esc_html__( ' Disable access controls and redirection', 'remove_dashboard_access' )
);
}
/**
* Capability-type radio switch display callback.
*
* Displays the radio button switch for choosing which
* capability users need to access the Dashboard. Mimics
* 'Page on front' UI in options-reading.php for a more
* integrated feel.
*
* @since 1.0
* @access public
*
* @see $this->caps_dropdown()
*/
public function access_switch_cb() {
echo '<a id="dashboard-access"></a>';
$switch = $this->settings['access_switch'];
/**
* Filter the capability defaults for admins, editors, and authors.
*
* @since 1.1
*
* @param array $capabilities {
* Default capabilities for various roles.
*
* @type string $admin Capability to use for administrators only. Default 'manage_options'.
* @type string $editor Capability to use for admins + editors. Default 'edit_others_posts'.
* @type string $author Capability to use for admins + editors + authors. Default 'publish_posts'.
* }
*/
$defaults = apply_filters( 'rda_default_caps_for_role', array(
'admin' => 'manage_options',
'editor' => 'edit_others_posts',
'author' => 'publish_posts',
) );
?>
<p><label>
<input name="rda_access_switch" type="radio" value="<?php echo esc_attr( $defaults['admin'] ); ?>" class="tag" <?php checked( $defaults['admin'], esc_attr( $switch ) ); ?> />
<?php esc_html_e( 'Administrators only', 'remove_dashboard_access' ); ?>
</label></p>
<p><label>
<input name="rda_access_switch" type="radio" value="<?php echo esc_attr( $defaults['editor'] ); ?>" class="tag" <?php checked( $defaults['editor'], esc_attr( $switch ) ); ?> />
<?php esc_html_e( 'Editors and Administrators', 'remove_dashboard_access' ); ?>
</label></p>
<p><label>
<input name="rda_access_switch" type="radio" value="<?php echo esc_attr( $defaults['author'] ); ?>" class="tag" <?php checked( $defaults['author'], esc_attr( $switch ) ); ?> />
<?php esc_html_e( 'Authors, Editors, and Administrators', 'remove_dashboard_access' ); ?>
</label></p>
<?php
}
/**
* Capability-type switch drop-down.
*
* @since 1.0
* @access private
*
* @see $this->access_switch_cb()
*/
private function _output_caps_dropdown() {
/** @global WP_Roles $wp_roles */
global $wp_roles;
$capabilities = array();
foreach ( $wp_roles->role_objects as $key => $role ) {
if ( is_array( $role->capabilities ) ) {
foreach ( $role->capabilities as $cap => $grant )
$capabilities[$cap] = $cap;
}
}
// Gather legacy user levels.
$levels = array(
'level_0','level_1', 'level_2', 'level_3',
'level_4', 'level_5', 'level_6', 'level_7',
'level_8', 'level_9', 'level_10',
);
// Remove levels from caps array (Thank you Justin Tadlock).
$capabilities = array_diff( $capabilities, $levels );
// Remove # capabilities (maybe from some plugin, perhaps?).
for ( $i = 0; $i < 12; $i++ ) {
unset( $capabilities[$i] );
}
// Alphabetize for nicer display.
ksort( $capabilities );
if ( ! empty( $capabilities ) ) {
// Start <select> element.
print( '<select name="rda_access_cap">' );
// Default first option.
printf( '<option selected="selected" value="manage_options">%s</option>', esc_html__( '--- Select a Capability ---', 'removed_dashboard_access' ) );
// Build capabilities dropdown.
foreach ( $capabilities as $capability => $value ) {
printf( '<option value="%1$s" %2$s>%3$s</option>', esc_attr( $value ), selected( $this->settings['access_cap'], $value ), esc_html( $capability ) );
}
print( '</select>' );
}
}
/**
* Enable profile access checkbox display callback.
*
* @since 1.0
* @access public
*
* @see $this->options_setup()
*
* @uses checked() Outputs the checked attribute when the option is enabled.
*/
public function profile_enable_cb() {
printf( '<label><input name="rda_enable_profile" type="checkbox" value="1" class="code" %1$s/>%2$s</label>',
checked( esc_attr( $this->settings['enable_profile'] ), true, false ),
/* Translators: The leading space is intentional to space the text away from the checkbox */
esc_html__( ' Allow all users to edit their profiles in the dashboard.', 'remove_dashboard_access' )
);
}
/**
* Redirect URL display callback.
*
* Default value is home_url(). $this->sanitize_option() handles validation and escaping.
*
* @since 1.0
* @access public
*
* @see $this->options_setup()
*/
public function url_redirect_cb() {
?>
<p><label>
<?php esc_html_e( 'Redirect disallowed users to:', 'remove_dashboard_access' ); ?>
<input name="rda_redirect_url" class="regular-text" type="text" value="<?php echo esc_attr( $this->settings['redirect_url'] ); ?>" placeholder="<?php printf( esc_attr__( 'Default: %s', 'remove_dashboard_access' ), home_url() ); ?>" />
</label></p>
<?php
}
/**
* Login Message display callback.
*
* @since 1.1
* @access public
*/
public function login_message_cb() {
?>
<p><label>
<?php esc_html_e( 'Display this message to users above the login form:', 'remove_dashboard_access' ); ?>
<input name="rda_login_message" class="widefat" type="text" value="<?php echo esc_attr( $this->settings['login_message'] ); ?>" placeholder="<?php esc_attr_e( '(Disabled when empty)', 'remove_dashboard_access' ); ?>" />
</label>
</p>
<p class="howto">
<span class="howto"><?php
// translators: %s is replaced with the default login message
echo sprintf(
esc_html__( 'Leave blank to not show a message. This message will only be shown on the %1$sLog In screen%2$s, not in embedded Login/Logout blocks.', 'remove_dashboard_access' ),
'<a href="' . esc_url( wp_login_url() ) . '" target="_blank">',
'<span class="screen-reader-text"> ' . esc_html__( '(This link opens in a new window.)' ) . '</span></a>'
);
?></span>
</p>
<?php
}
/**
* Login Message option callback.
*
* @since 1.1
* @access public
*/
public function output_login_message( $message ) {
if ( ! empty( $this->settings['login_message'] ) ) {
$message .= '<p class="message">' . esc_html( $this->settings['login_message'] ) . '</p>';
}
return $message;
}
/**
* Access Switch sanitize callback.
*
* @since 1.1
* @access public
*
* @param string $option Access switch capability.
* @return string Sanitized capability.
*/
public function sanitize_access_switch( $option ) {
return $option;
}
/**
* Access capability sanitize callback.
*
* @since 1.1
* @access public
*
* @param string $option Access capability.
* @return string Sanitized capability. If the option is empty, default to the value of
* 'rda_access_switch'.
*/
public function sanitize_access_cap( $option ) {
return empty( $option ) ? get_option( 'rda_access_switch' ) : $option;
}
/**
* Redirect URL sanitize callback.
*
* @since 1.1
* @access public
*
* @param string $option Redirect URL.
* @return string If empty, defaults to home_url(). Otherwise sanitized URL.
*/
public function sanitize_redirect_url( $option ) {
return empty( $option ) ? home_url() : esc_url_raw( $option );
}
/**
* Enable Profile sanitize callback.
*
* @since 1.1
* @access public
*
* @param bool $option Whether to enable all users to edit their profiles.
* @return bool Whether all users will be able to edit their profiles.
*/
public function sanitize_enable_profile( $option ) {
return (bool) empty( $option ) ? false : true;
}
/**
* Login Message sanitize callback.
*
* @since 1.1
* @access public
*
* @param string $option Login message.
* @return string Sanitized login message.
*/
public function sanitize_login_message( $option ) {
return sanitize_text_field( $option );
}
/**
* Required capability for Dashboard access.
*
* @since 1.0
* @access public
*
* @return string $this->settings['access_cap'] if set, otherwise, 'manage_options' (filterable).
*/
public function capability() {
/**
* Filter the access capability.
*
* @since 1.1
*
* @param string $capability Capability needed to access the Dashboard.
*/
return apply_filters( 'rda_access_capability', $this->settings['access_cap'] );
}
/**
* Plugins list 'Settings' row link.
*
* @since 1.0
*
* @see $this->setup()
*
* @param array $links Row links array to filter.
* @return array $links Filtered links array.
*/
public function settings_link( $links, $file ) {
// WordPress.org slug.
if ( 'remove-dashboard-access-for-non-admins/remove-dashboard-access.php' == $file
// GitHub slug
|| 'remove-dashboard-access/remove-dashboard-access.php' == $file
) {
array_unshift( $links, sprintf( '<a href="%1$s">%2$s</a>',
esc_url( admin_url( 'options-general.php?page=dashboard-access' ) ),
esc_html__( 'Settings', 'remove_dashboard_access' )
) );
}
return $links;
}
/**
* Debug mode output.
*
* When rda_debug=1 is passed via the query string, displays a table with all the raw
* option values for debugging purposes.
*
* @since 1.1
* @access public
*/
public function _debug_mode() {
?>
<style type="text/css">
table.rda_debug {
width: 400px;
border: 1px solid #222;
}
.rda_debug th {
text-align: center;
}
.rda_debug th,
.rda_debug td {
width: 50%;
padding: 15px 10px;
border: 1px solid #222;
}
</style>
<table class="rda_debug">
<tbody>
<tr>
<th><?php esc_html_e( 'Setting', 'remove_dashboard_access' ); ?></th>
<th><?php esc_html_e( 'Value', 'remove_dashboard_access' ); ?></th>
</tr>
<?php foreach ( $this->settings as $key => $value ) :
$value = empty( $value ) ? esc_html__( 'empty', 'remove_dashboard_access' ) : $value;
?>
<tr>
<td><?php echo esc_html( $key ); ?></td>
<td><?php echo esc_html( $value ); ?></td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
<?php
}
} // RDA_Options

280
wp-content/plugins/remove-dashboard-access-for-non-admins/inc/class.rda-remove-access.php Executable file
View File

@@ -0,0 +1,280 @@
<?php
/**
* Remove Dashboard Access Class
*
* @since 1.0
*/
// Bail if called directly.
if ( ! defined( 'ABSPATH' ) ) {
exit;
}
if ( ! class_exists( 'RDA_Remove_Access' ) ) {
class RDA_Remove_Access {
/**
* @var string $capability
*
* String with capability passed from RDA_Options{}
*
* @since 1.0
*/
var $capability;
/**
* @var array $settings
*
* Array of settings passed from RDA_Options{}
*
* @since 1.0
*/
var $settings = array();
/**
* RDA Remove Access Init
*
* @since 1.0
* @since 1.1.3 Moved `is_user_allowed()` to the {@see 'init'} hook.
*
* @param string $capability Capability passed from RDA_Options instance.
* @param array $settings Settings array passed from RDA_Options instance.
*/
function __construct( $capability, $settings ) {
if ( empty( $capability ) ) {
return; // Bail
} else {
$this->capability = $capability;
}
$this->settings = $settings;
add_action( 'init', array( $this, 'is_user_allowed' ) );
}
/**
* Determine if user is allowed to access the Dashboard.
*
* @since 1.0
*
* @uses current_user_can() Checks whether the current user has the specified capability.
* @return null Bail if the current user has the requisite capability.
*/
function is_user_allowed() {
if ( $this->capability && ! current_user_can( $this->capability ) && ! defined( 'DOING_AJAX' ) ) {
$this->lock_it_up();
} else {
return; // Bail
}
}
/**
* "Lock it up" Hooks.
*
* dashboard_redirect - Handles redirecting disallowed users.
* hide_menus - Hides the admin menus.
* hide_toolbar_items - Hides various Toolbar items on front and back-end.
*
* @since 1.0
*/
function lock_it_up() {
add_action( 'admin_init', array( $this, 'dashboard_redirect' ) );
add_action( 'admin_head', array( $this, 'hide_menus' ) );
add_action( 'admin_bar_menu', array( $this, 'hide_toolbar_items' ), 999 );
}
/**
* Hide menus other than profile.php.
*
* @since 1.1
*/
public function hide_menus() {
/** @global array $menu */
global $menu;
if ( ! $menu || ! is_array( $menu ) ) {
return;
}
// Gather menu IDs (minus profile.php).
foreach ( $menu as $index => $values ) {
if ( isset( $values[2] ) ) {
if ( 'profile.php' == $values[2] ) {
continue;
}
// Remove menu pages.
remove_menu_page( $values[2] );
}
}
}
/**
* Dashboard Redirect.
*
* @since 0.1
*
* @see wp_redirect() Used to redirect disallowed users to chosen URL.
*/
function dashboard_redirect() {
/** @global string $pagenow */
global $pagenow;
if ( $this->is_allowed_page() ) {
return;
}
if ( ( $pagenow && 'profile.php' !== $pagenow ) || ( defined( 'IS_PROFILE_PAGE' ) && ! IS_PROFILE_PAGE ) || ! $this->settings['enable_profile'] ) {
wp_redirect( $this->settings['redirect_url'] );
exit;
}
}
/**
* Returns an array of admin pages that are allowed.
*
* @since 1.2
*
* @return array Allowlist of admin pages.
*/
private function get_allowlist() {
$allowlist = array(
'admin.php' => array(
array(
'page' => 'WFLS', // Wordfence Login Security 2FA
),
),
);
/**
* Filter the allowlist of admin pages.
* The function returns an associative array with $pagenow as the key and a nested array of key => value pairs
* where the key is the $_GET variable and the value is the allowed value.
*
* Example: To allow the Wordfence Login Security 2FA page, with a URL of admin.php?page=WFLS, the array would be:
*
* array(
* 'admin.php' => array(
* array(
* 'page' => 'WFLS',
* ),
* ),
* );
*
* You can also allow relative paths to be defined as either the key or value.
*
* Example: To allow the Wordfence Login Security 2FA page, with a URL of admin.php?page=WFLS, the array would be:
*
* array(
* 'admin.php?page=WFLS' => array(),
* );
*
* @param array $allowlist The allowlist of admin pages.
*/
$allowlist = apply_filters( 'rda_allowlist', $allowlist );
return $allowlist;
}
/**
* Checks if the current page is allowed.
*
* @since 1.2
*
* @return bool True if the current page is in the allowlist, false otherwise.
*/
private function is_allowed_page() {
$allowlist = $this->get_allowlist();
// Allow full URLs to be defined as either the key or value.
foreach ( $allowlist as $allowed_url_key => $allowed_url_value ) {
if ( empty( $_SERVER['REQUEST_URI'] ) ) {
continue;
}
if ( $allowed_url_key === $_SERVER['REQUEST_URI'] ) {
return true;
}
if ( $allowed_url_value === $_SERVER['REQUEST_URI'] ) {
return true;
}
}
/** @global string $pagenow */
global $pagenow;
if ( empty( $pagenow ) ) {
return false;
}
if ( ! array_key_exists( $pagenow, $allowlist ) ) {
return false;
}
// Iterate over each set of allowed GET parameters for the current page.
foreach ( $allowlist[ $pagenow ] as $allowed_params_set ) {
if ( $this->is_params_set_allowed( $allowed_params_set ) ) {
return true;
}
}
return false;
}
/**
* Checks if a set of parameters matches the current $_GET parameters.
*
* @since 1.2
*
* @param array $allowed_params_set A set of allowed GET parameters.
* @return bool True if the current $_GET parameters match the allowed set, false otherwise.
*/
private function is_params_set_allowed( $allowed_params_set ) {
if ( ! is_array( $_GET ) || ! is_array( $allowed_params_set ) ) {
return false;
}
// Check if the number of parameters in both arrays is the same. This prevents sub-pages from being allowed,
// e.g. admin.php?page=example&subpage=secure-thing.
if ( count( $_GET ) !== count( $allowed_params_set ) ) {
return false;
}
foreach ( $allowed_params_set as $param_key => $param_value ) {
if ( ! isset( $_GET[ $param_key ] ) || $_GET[ $param_key ] !== $param_value ) {
return false;
}
}
return true;
}
/**
* Hide Toolbar Items.
*
* @since 1.0
*
* @param WP_Admin_Bar $wp_admin_bar For remove_node() method access.
*/
function hide_toolbar_items( $wp_admin_bar ) {
$edit_profile = ! $this->settings['enable_profile'] ? 'edit-profile' : '';
if ( is_admin() ) {
$ids = array( 'about', 'comments', 'new-content', $edit_profile );
$nodes = apply_filters( 'rda_toolbar_nodes', $ids );
} else {
$ids = array( 'about', 'dashboard', 'comments', 'new-content', 'edit', $edit_profile );
$nodes = apply_filters( 'rda_frontend_toolbar_nodes', $ids );
}
foreach ( $nodes as $id ) {
$wp_admin_bar->remove_menu( $id );
}
}
} // RDA_Remove_Access
} // class_exists

1
wp-content/plugins/remove-dashboard-access-for-non-admins/inc/index.php Executable file
View File

@@ -0,0 +1 @@
<?php // Silence is golden

1
wp-content/plugins/remove-dashboard-access-for-non-admins/inc/js/index.php Executable file
View File

@@ -0,0 +1 @@
<?php // Silence is golden

13
wp-content/plugins/remove-dashboard-access-for-non-admins/inc/js/settings.js Executable file
View File

@@ -0,0 +1,13 @@
/**
* Mimic WordPress Core's front-page dropdown toggle control.
*/
jQuery( document ).ready( function( $ ) {
var section = $( '.form-table' ),
capType = section.find( 'input:radio[value="capability"]' ),
selects = section.find( 'select' ),
check_disabled = function() {
selects.prop( 'disabled', ! capType.prop( 'checked' ) );
};
check_disabled();
section.find( 'input:radio' ).change( check_disabled );
} );