shell bypass 403
<?php
/**
* Happy Addons widget base
*
* @package Happy_Addons
*/
namespace Happy_Addons\Elementor\Widget;
use Elementor\Widget_Base;
// use Elementor\Controls_Stack;
defined('ABSPATH') || die();
abstract class Base extends Widget_Base {
/**
* Get widget name.
*
* @since 1.0.0
* @access public
*
* @return string Widget name.
*/
public function get_name() {
/**
* Automatically generate widget name from class
*
* Card will be card
* Blog_Card will be blog-card
*/
$name = str_replace(strtolower(__NAMESPACE__), '', strtolower($this->get_class_name()));
$name = str_replace('_', '-', $name);
$name = ltrim($name, '\\');
return 'ha-' . $name;
}
/**
* Get widget categories.
*
* @since 1.0.0
* @access public
*
* @return array Widget categories.
*/
public function get_categories() {
return ['happy_addons_category'];
}
protected function is_dynamic_content(): bool {
return true;
}
public function has_widget_inner_wrapper(): bool {
return ! ha_elementor()->experiments->is_feature_active( 'e_optimized_markup' );
}
/**
* Override from addon to add custom wrapper class.
*
* @return string
*/
protected function get_custom_wrapper_class() {
return '';
}
/**
* Overriding default function to add custom html class.
*
* @return string
*/
public function get_html_wrapper_class() {
$html_class = parent::get_html_wrapper_class();
$html_class .= ' happy-addon';
$html_class .= ' ' . $this->get_name();
$html_class .= ' ' . $this->get_custom_wrapper_class();
return rtrim($html_class);
}
/**
* Register widget controls
*/
protected function register_controls() {
do_action( 'happyaddons_start_register_controls', $this );
$this->register_content_controls();
do_action( 'happyaddons_after_register_content_controls', $this );
$this->register_style_controls();
do_action('happyaddons_end_register_controls', $this);
}
/**
* Register content controls
*
* @return void
*/
abstract protected function register_content_controls();
/**
* Register style controls
*
* @return void
*/
abstract protected function register_style_controls();
/**
* Fix for 2.6.*
*
* In 2.6.0 Elementor removed render_edit_tools method.
*/
protected function render_edit_tools() {
if (ha_is_elementor_version('<=', '2.5.16')) {
parent::render_edit_tools();
}
}
/**
* Overriding the parent method
*
* Add inline editing attributes.
*
* Define specific area in the element to be editable inline. The element can have several areas, with this method
* you can set the area inside the element that can be edited inline. You can also define the type of toolbar the
* user will see, whether it will be a basic toolbar or an advanced one.
*
* Note: When you use wysiwyg control use the advanced toolbar, with textarea control use the basic toolbar. Text
* control should not have toolbar.
*
* PHP usage (inside `Widget_Base::render()` method):
*
* $this->add_inline_editing_attributes( 'text', 'advanced' );
* echo '<div ' . $this->get_render_attribute_string( 'text' ) . '>' . $this->get_settings( 'text' ) . '</div>';
*
* @since 1.8.0
* @access public
*
* @param string $key Element key.
* @param string $toolbar Optional. Toolbar type. Accepted values are `advanced`, `basic` or `none`. Default is
* `basic`.
* @param string $setting_key Additional settings key in case $key != $setting_key
*/
public function add_inline_editing_attributes($key, $toolbar = 'basic', $setting_key = '') {
if (!ha_elementor()->editor->is_edit_mode()) {
return;
}
if (empty($setting_key)) {
$setting_key = $key;
}
$this->add_render_attribute($key, [
'class' => 'elementor-inline-editing',
'data-elementor-setting-key' => $setting_key,
]);
if ('basic' !== $toolbar) {
$this->add_render_attribute($key, [
'data-elementor-inline-editing-toolbar' => $toolbar,
]);
}
}
/**
* Add link render attributes.
*
* Used to add link tag attributes to a specific HTML element.
*
* The HTML link tag is represented by the element parameter. The `url_control` parameter
* needs to be an array of link settings in the same format they are set by Elementor's URL control.
*
* Example usage:
*
* `$this->add_link_attributes( 'button', $settings['link'] );`
*
* @since 2.8.0
* @access public
*
* @param array|string $element The HTML element.
* @param array $url_control Array of link settings.
* @param bool $overwrite Optional. Whether to overwrite existing
* attribute. Default is false, not to overwrite.
*
* @return \Elementor\Element_Base instance
*/
public function add_link_attributes($element, array $url_control, $overwrite = false) {
/**
* add_link_attributes is only available form 2.8.0
*/
if (ha_is_elementor_version('>=', '2.8.0')) {
return parent::add_link_attributes($element, $url_control, $overwrite);
}
$attributes = [];
if (!empty($url_control['url'])) {
$attributes['href'] = $url_control['url'];
}
if (!empty($url_control['is_external'])) {
$attributes['target'] = '_blank';
}
if (!empty($url_control['nofollow'])) {
$attributes['rel'] = 'nofollow';
}
if (!empty($url_control['custom_attributes'])) {
// Custom URL attributes should come as a string of comma-delimited key|value pairs
$custom_attributes = explode(',', $url_control['custom_attributes']);
$blacklist = ['onclick', 'onfocus', 'onblur', 'onchange', 'onresize', 'onmouseover', 'onmouseout', 'onkeydown', 'onkeyup'];
foreach ($custom_attributes as $attribute) {
// Trim in case users inserted unwanted spaces
list($attr_key, $attr_value) = explode('|', $attribute);
// Cover cases where key/value have spaces both before and/or after the actual value
$attr_key = trim($attr_key);
$attr_value = trim($attr_value);
// Implement attribute blacklist
if (!in_array(strtolower($attr_key), $blacklist, true)) {
$attributes[$attr_key] = $attr_value;
}
}
}
if ($attributes) {
$this->add_render_attribute($element, $attributes, $overwrite);
}
return $this;
}
}