File Manager

✏️ Edit File: /home/mklsvubc/netecfwd.co.uk/wp-content/plugins/sureforms/inc/export.php

<?php
/**
 * Sureforms export.
 *
 * @package sureforms.
 * @since 0.0.1
 */

namespace SRFM\Inc;

use SRFM\Inc\Traits\Get_Instance;

if ( ! defined( 'ABSPATH' ) ) {
	exit; // Exit if accessed directly.
}

/**
 * Load Defaults Class.
 *
 * @since 0.0.1
 */
class Export {
	use Get_Instance;

/**
	 * Unserialized post metas.
	 *
	 * @var array<string>
	 */
	public $unserialized_post_metas = [
		'_srfm_conditional_logic',
		'_srfm_email_notification',
		'_srfm_form_confirmation',
		'_srfm_compliance',
		'_srfm_forms_styling',
		'_srfm_integrations_webhooks',
		'_srfm_instant_form_settings',
		'_srfm_page_break_settings',
		'_srfm_conversational_form',
		'_srfm_premium_common',
		'_srfm_forms_styling_starter',
		'_srfm_user_registration_settings',
	];

/**
	 * Constructor
	 *
	 * @since  0.0.1
	 */
	public function __construct() {
		// Modern REST API endpoints are registered in rest-api.php.
	}

/**
	 * Get unserialized post meta keys.
	 *
	 * Retrieves the list of post meta keys that need to be unserialized during export.
	 * Allows filtering of meta keys via 'srfm_export_and_import_post_meta_keys' filter.
	 *
	 * @since 1.9.0
	 * @return array<string> Array of post meta keys to unserialize.
	 */
	public function get_unserialized_post_metas() {
		return Helper::apply_filters_as_array( 'srfm_export_and_import_post_meta_keys', $this->unserialized_post_metas );
	}

/**
	 * Get forms with meta by post IDs.
	 * Uses:
	 *     - On websitedemos.net, for exporting the Spectra Block Patterns & Pages with SureForms form.
	 *
	 * @since 1.13.0
	 * @param array<int,string>|array<int, int> $post_ids Array of post IDs to retrieve forms for.
	 * @return array Array of forms with their post data and meta data.
	 */
	public function get_forms_with_meta( $post_ids = [] ) {
		$posts = [];

foreach ( $post_ids as $post_id ) {
			$post_id   = intval( $post_id );
			$post      = get_post( $post_id );
			$post_meta = get_post_meta( $post_id );
			$posts[]   = [
				'post'      => $post,
				'post_meta' => $post_meta,
			];
		}

// Unserialize the post metas that are serialized.
		// This is needed because the post metas are serialized before saving.
		foreach ( $posts as $key => $post ) {
			$post_metas = isset( $post['post_meta'] ) && is_array( $post['post_meta'] ) ? $post['post_meta'] : [];

foreach ( $this->get_unserialized_post_metas() as $meta_key ) {
				if ( isset( $post_metas[ $meta_key ] ) && is_array( $post_metas[ $meta_key ] ) ) {
					$post_metas[ $meta_key ] = maybe_unserialize( $post_metas[ $meta_key ][0] );
				}
			}
			$posts[ $key ]['post_meta'] = $post_metas;
		}

return $posts;
	}

/**
	 * Handle Export form via REST API
	 *
	 * @param \WP_REST_Request $request Full details about the request.
	 * @since 2.0.0
	 * @return \WP_REST_Response|\WP_Error
	 */
	public function handle_export_form_rest( $request ) {
		$nonce = sanitize_text_field( Helper::get_string_value( $request->get_header( 'X-WP-Nonce' ) ) );

if ( ! wp_verify_nonce( $nonce, 'wp_rest' ) ) {
			return new \WP_Error(
				'invalid_nonce',
				__( 'Nonce verification failed.', 'sureforms' ),
				[ 'status' => 403 ]
			);
		}

$params   = $request->get_params();
		$post_ids = [];

// Handle post_ids parameter - can be array or comma-separated string.
		if ( isset( $params['post_ids'] ) ) {
			if ( is_array( $params['post_ids'] ) ) {
				$post_ids = array_map( 'intval', $params['post_ids'] );
			} else {
				$post_ids = array_map( 'intval', explode( ',', sanitize_text_field( Helper::get_string_value( $params['post_ids'] ) ) ) );
			}
		}

// Validate that all post IDs are valid sureforms_form posts.
		$validated_post_ids = [];
		foreach ( $post_ids as $post_id ) {
			$post = get_post( $post_id );
			if ( $post && 'sureforms_form' === $post->post_type ) {
				$validated_post_ids[] = $post_id;
			}
		}

if ( empty( $validated_post_ids ) ) {
			return new \WP_Error(
				'no_valid_forms',
				__( 'No valid forms found for export.', 'sureforms' ),
				[ 'status' => 400 ]
			);
		}

$posts = $this->get_forms_with_meta( $validated_post_ids );

return new \WP_REST_Response(
			[
				'success' => true,
				'data'    => $posts,
				'count'   => count( $posts ),
			]
		);
	}

/**
	 * Handle Import form via REST API
	 *
	 * @param \WP_REST_Request $request Full details about the request.
	 * @since 2.0.0
	 * @return \WP_REST_Response|\WP_Error
	 */
	public function handle_import_form_rest( $request ) {
		$nonce = sanitize_text_field( Helper::get_string_value( $request->get_header( 'X-WP-Nonce' ) ) );

if ( ! wp_verify_nonce( $nonce, 'wp_rest' ) ) {
			return new \WP_Error(
				'invalid_nonce',
				__( 'Nonce verification failed.', 'sureforms' ),
				[ 'status' => 403 ]
			);
		}

$params = $request->get_params();

// Get forms data from the request.
		$forms_data     = isset( $params['forms_data'] ) && is_array( $params['forms_data'] ) ? $params['forms_data'] : [];
		$default_status = isset( $params['default_status'] ) ? sanitize_text_field( Helper::get_string_value( $params['default_status'] ) ) : 'draft';

if ( empty( $forms_data ) ) {
			return new \WP_Error(
				'no_forms_data',
				__( 'No forms data provided for import.', 'sureforms' ),
				[ 'status' => 400 ]
			);
		}

// Validate forms data structure.
		foreach ( $forms_data as $form_data ) {
			if ( ! is_array( $form_data ) || ! isset( $form_data['post'] ) || ! isset( $form_data['post_meta'] ) ) {
				return new \WP_Error(
					'invalid_form_data',
					__( 'Invalid form data structure provided.', 'sureforms' ),
					[ 'status' => 400 ]
				);
			}
		}

$result = $this->import_forms_with_meta( $forms_data, $default_status );

if ( is_wp_error( $result ) ) {
			return $result;
		}

return new \WP_REST_Response(
			[
				'success'        => true,
				'message'        => __( 'Forms imported successfully!', 'sureforms' ),
				'forms_mapping'  => $result,
				'imported_count' => count( $result ),
			]
		);
	}

/**
	 * Import Forms with Meta
	 * Uses:
	 *     - In Design Library for importing the Spectra Block Patterns and Pages with SureForms form.
	 *
	 * @param array<array<array<string>>> $data           Form data to import.
	 * @param string                      $default_status Default post status for imported forms. Default is 'draft'.
	 *
	 * @since 1.13.0
	 * @return array<int, int>|\WP_Error Returns mapping array on success, WP_Error on failure.
	 */
	public function import_forms_with_meta( $data, $default_status = 'draft' ) {
		$forms_mapping = [];
		foreach ( $data as $form_data ) {
			// sanitize the data before saving.
			$old_id       = intval( $form_data['post']['ID'] );
			$post_content = wp_kses_post( $form_data['post']['post_content'] );
			$post_title   = sanitize_text_field( $form_data['post']['post_title'] );
			$post_meta    = $form_data['post_meta'];
			$post_type    = sanitize_text_field( $form_data['post']['post_type'] );

// Remove percent-encoded slugs from imported form content.
			// Non-Latin labels produce broken slugs like %e3%83%95%e3%83%aa
			// via sanitize_title(). Clearing them lets process_blocks()
			// regenerate clean block-name-based slugs on save.
			$cleaned_content = preg_replace(
				'/"slug":"(%[a-fA-F0-9]{2}[^"]*)"/',
				'"slug":""',
				$post_content
			);
			if ( is_string( $cleaned_content ) ) {
				$post_content = $cleaned_content;
			}

$post_content = wp_slash( $post_content );

// Check if sureforms/form exists in post_content.
			if ( 'sureforms_form' === $post_type ) {
				$new_post = [
					'post_title'  => $post_title,
					'post_status' => $default_status,
					'post_type'   => 'sureforms_form',
				];

$post_id = wp_insert_post( $new_post );

// Update the post content formId to the new post id.
				$post_content = str_replace(
					'\"formId\":' . intval( $form_data['post']['ID'] ),
					'\"formId\":' . intval( $post_id ),
					$post_content
				);

// update the post content.
				wp_update_post(
					[
						'ID'           => $post_id,
						'post_content' => $post_content,
					]
				);

if ( ! $post_id ) {
					return new \WP_Error( 'import_forms_failed', __( 'Unable to import form.', 'sureforms' ) );
				}

$forms_mapping[ $old_id ] = $post_id;

// Update post meta.
				$allowed_keys           = $this->get_allowed_import_meta_keys();
				$unserialized_meta_keys = $this->get_unserialized_post_metas();
				$registered             = get_registered_meta_keys( 'post', SRFM_FORMS_POST_TYPE );
				foreach ( $post_meta as $meta_key => $meta_value ) {
					// 1. Whitelist check — skip unknown keys from crafted import files.
					if ( ! in_array( $meta_key, $allowed_keys, true ) ) {
						continue;
					}

// Note: add_post_meta() internally runs wp_unslash() on the value before
					// invoking the registered sanitize_callback. Imported values are unslashed,
					// so without re-slashing, backslashes are stripped — corrupting JSON-string
					// metas (e.g. _srfm_save_resume, _srfm_conditional_confirmation) whose escaped
					// quotes (\") then fail json_decode() in their sanitizers, wiping the value to
					// an empty string. wp_slash() pre-escapes so wp_unslash() restores the original.
					if ( in_array( $meta_key, $unserialized_meta_keys, true ) ) {
						// Complex array metas — sanitize_callback registered via register_post_meta()
						// is automatically invoked by add_post_meta() → update_metadata() pipeline.
						// When Pro is inactive, some keys may lack a registered callback — apply fallback.
						if ( empty( $registered[ $meta_key ]['sanitize_callback'] ) ) {
							$meta_value = Helper::sanitize_by_type( $meta_value );
						}
						add_post_meta( $post_id, $meta_key, wp_slash( $meta_value ) );
					} else {
						// Scalar metas — unwrap single-element arrays produced by get_post_meta().
						$raw_value = is_array( $meta_value ) && isset( $meta_value[0] ) ? $meta_value[0] : $meta_value;
						// Fallback sanitization — skip when a registered callback already handles it.
						if ( is_string( $raw_value ) && empty( $registered[ $meta_key ]['sanitize_callback'] ) ) {
							$raw_value = sanitize_text_field( $raw_value );
						}
						add_post_meta( $post_id, $meta_key, wp_slash( $raw_value ) );
					}
				}
			} else {
				return new \WP_Error( 'import_forms_invalid_post_type', __( 'Unable to import form.', 'sureforms' ) );
			}
		}

return $forms_mapping;
	}

/**
	 * Get the list of meta keys allowed during import.
	 *
	 * Only meta keys present in this list will be written to the DB during import.
	 * Unknown keys from crafted import files are silently ignored.
	 *
	 * @since 2.8.0
	 * @return array<string>
	 */
	private function get_allowed_import_meta_keys(): array {
		$scalar_metas = [
			'_srfm_additional_classes',
			'_srfm_bg_color',
			'_srfm_bg_image',
			'_srfm_bg_type',
			'_srfm_button_border_radius',
			'_srfm_captcha_security_type',
			'_srfm_cover_image',
			'_srfm_form_container_width',
			'_srfm_form_custom_css',
			'_srfm_form_recaptcha',
			'_srfm_form_restriction',
			'_srfm_inherit_theme_button',
			'_srfm_instant_form',
			'_srfm_is_ai_generated',
			'_srfm_is_inline_button',
			'_srfm_single_page_form_title',
			'_srfm_submit_alignment',
			'_srfm_submit_alignment_backend',
			'_srfm_submit_button_text',
			'_srfm_submit_type',
			'_srfm_submit_width',
			'_srfm_submit_width_backend',
			'_srfm_use_label_as_placeholder',
		];

/**
		 * Filter the list of scalar meta keys allowed during import.
		 *
		 * Pro and other extensions can hook into this to add their own scalar meta keys.
		 *
		 * @since 2.8.0
		 * @param array<string> $scalar_metas List of scalar meta keys.
		 */
		$scalar_metas = apply_filters( 'srfm_import_scalar_meta_keys', $scalar_metas );

// Ensure filter consumers cannot inject non-SureForms meta keys.
		$scalar_metas = array_filter(
			$scalar_metas,
			static function ( $key ) {
				return str_starts_with( $key, '_srfm_' );
			}
		);

return array_merge( $this->get_unserialized_post_metas(), $scalar_metas );
	}

}

Batal

⬅ Naik ke sureforms 41 item

Nama	Tipe	Ukuran	Diubah	Aksi
📁abilities	dir	—	2026-06-25 16:24	📂 Buka
📁admin	dir	—	2026-06-25 16:24	📂 Buka
📁ai-form-builder	dir	—	2026-06-25 16:24	📂 Buka
📁blocks	dir	—	2026-06-25 16:24	📂 Buka
📁compatibility	dir	—	2026-06-25 16:24	📂 Buka
📁database	dir	—	2026-06-25 16:24	📂 Buka
📁email	dir	—	2026-06-25 16:24	📂 Buka
📁fields	dir	—	2026-06-25 16:24	📂 Buka
📁global-settings	dir	—	2026-06-25 16:24	📂 Buka
📁lib	dir	—	2026-06-25 16:24	📂 Buka
📁migrator	dir	—	2026-06-25 16:24	📂 Buka
📁page-builders	dir	—	2026-06-25 16:24	📂 Buka
📁payments	dir	—	2026-06-25 16:24	📂 Buka
📁single-form-settings	dir	—	2026-06-25 16:24	📂 Buka
📁traits	dir	—	2026-06-25 16:24	📂 Buka
🐘activator.php	php	1 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘admin-ajax.php	php	13.4 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘background-process.php	php	4.8 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘create-new-form.php	php	4.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘duplicate-form.php	php	8.4 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘entries.php	php	24.3 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘events-scheduler.php	php	1.3 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘export.php	php	11.8 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘field-validation.php	php	22.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘form-restriction.php	php	11.2 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘form-styling.php	php	7 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘form-submit.php	php	55.7 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘forms-data.php	php	7.1 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘frontend-assets.php	php	16.3 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘generate-form-markup.php	php	49.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘gutenberg-hooks.php	php	10.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘helper.php	php	92.4 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘learn.php	php	13.5 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘onboarding.php	php	3.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘post-types.php	php	48.4 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘rest-api.php	php	56.7 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘smart-tags.php	php	28.1 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘submit-token.php	php	4.6 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘translatable.php	php	5.9 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘updater-callbacks.php	php	3.3 KB	2026-06-25 16:24	✏️ Edit 👁️ View
🐘updater.php	php	5.1 KB	2026-06-25 16:24	✏️ Edit 👁️ View