%1$s
', \__('Consent cannot be saved in the cookie banner: Website visitors (not logged into WordPress) currently cannot save consents in the cookie banner. This may result in the cookie banner being displayed again each time the website visitor visits a page.', RCB_TD)); foreach ($tests as $url => $errors) { $url = \base64_decode($url); $html .= \sprintf('%s
%1$d has been returned by the server. This indicates that the WP REST API may have been proactively blocked.', RCB_TD),
$error[1],
\__('https://devowl.io/knowledge-base/wordpress-rest-api-does-not-respond/#how-can-i-enable-the-wordpress-rest-api-in-my-website', RCB_TD)
);
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_RESPONSE_BODY:
return \sprintf(
// translators:
\__('Response from the server is malformed. This indicates, for example, that another plugin is manipulating the response. In the following, you find the server response:', RCB_TD),
$error[1]
) . \sprintf('%s', \htmlentities($error[1]));
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_NO_COOKIES:
return \sprintf(
// translators:
\__('Cookie with the saved consent (name starts with real_cookie_banner) was not part of the server response. Perhaps you have configured your webserver to drop all cookies before sending the response.', RCB_TD),
\__('https://devowl.io/knowledge-base/cookie-banner-displayed-every-subpage/#cause-4-server-discards-all-cookies', RCB_TD)
);
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_COOKIE_PATH:
return \sprintf(
// translators:
\__('Cookie %1$s with saved consent has been responded by server, but with the invalid cookie path %2$s. You may have an error in your WordPress configuration file.', RCB_TD),
$error[1],
$error[2],
\__('https://devowl.io/knowledge-base/cookie-banner-displayed-every-subpage/#cause-2-incorrect-cookie-path', RCB_TD)
);
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_COOKIE_HTTP_ONLY:
return \sprintf(
// translators:
\__('Cookie %1$s with saved consent has been responded to by the server, but with a HttpOnly flag, which means that the Real Cookie Banner JavaScript does not have permission to read it. You probably have too strict security settings configured in your web server.', RCB_TD),
$error[1],
\__('https://devowl.io/knowledge-base/cookie-banner-displayed-every-subpage/#cause-3-cookie-not-accessible-via-javascript', RCB_TD)
);
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_REDIRECT:
return \sprintf(
// translators:
\__('Response of the server contains a Location header, which leads to a redirection of the save request instead of saving. You probably have an incorrect trailing slash configuration in your web server.', RCB_TD),
$error[1],
\__('https://devowl.io/knowledge-base/wordpress-rest-api-does-not-respond/#i-can-read-data-but-not-write', RCB_TD)
);
case SavingConsentViaRestApiEndpointChecker::ERROR_DIAGNOSTIC_403_FORBIDDEN_HTACCESS_DENY:
return \sprintf(
// translators:
\__('Since the request returned a 403 error, it is possible that the IP of your server has been blocked for internal loopback requests. We have checked the .htaccess file and found that the following line could be the trigger for this, which you should check and remove: %s.', RCB_TD),
$error[1]
);
default:
return \json_encode($error);
}
} else {
return $error;
}
}, $errors)));
}
$html .= \sprintf('%s
', \sprintf( // translators: \__('We have explained typical misconfigurations and solutions for this issue in a detailed article. If you do not know how to solve this problem, please contact the technical contact person for your website!', RCB_TD), \__('https://devowl.io/knowledge-base/cookie-banner-displayed-every-subpage/', RCB_TD) )); $dismissLink = \add_query_arg(self::NOTICE_CHECK_SAVING_CONSENT_VIA_REST_API_ENDPOINT_WORKING, '1', UtilsUtils::isRest() ? Core::getInstance()->getConfigPage()->getUrl() : $_SERVER['REQUEST_URI']); $html .= '' . \__('Check consent storage process again', RCB_TD) . '
'; return $html; } return null; } /** * Get the notice HTML of services and content blockers with a template update. * * @param array $needsUpdate * @param string $context Can be `notice` or `tile-migration` */ public function servicesWithUpdatedTemplatesHtml($needsUpdate, $context = 'notice') { $configPage = Core::getInstance()->getConfigPage(); $configPageUrl = $configPage->getUrl(); $output = $context === 'notice' ? '' . \__('Changes have been made to the templates you use in Real Cookie Banner. You should review the proposed changes and adjust your services and/or content blockers if necessary to be able to remain legally compliant. The following services are affected:', RCB_TD) . '
' . \__('Templates in Real Cookie Banner have been replaced by new templates. You should check whether you want to replace the new service and/or content blocker with the new one in order to remain legally compliant. The following services are affected:', RCB_TD) . '
' . \__('Dismiss notice', RCB_TD) . '
'; return $output; } /** * Get multiple notice HTMLs of services with Google Consent Mode adjustments. * * @param array $adjustments * @return string[] */ public function servicesWithGoogleConsentModeAdjustmentsHtml($adjustments) { $configPage = Core::getInstance()->getConfigPage(); $configPageUrl = UtilsUtils::isRest() ? $configPage->getUrl() : $_SERVER['REQUEST_URI']; $settingsPage = $configPageUrl . '#/settings/gcm'; $activateGcmUrl = \sprintf('%s', $settingsPage, \__('Activate Google Consent Mode', RCB_TD)); $learnMoreUrl = \sprintf('%s', \__('https://devowl.io/knowledge-base/real-cookie-banner-google-consent-mode-setup/', RCB_TD), \__('Learn more', RCB_TD)); $result = []; if (\count($adjustments['missingConsentTypes']) > 0) { $output = '' . \__('You are obtaining consent for Google services and have activated Google Consent Mode at the same time. However, you have not yet specified in the named services which consent types should be requested in accordance with Google Consent Mode. Please add these in the following services:', RCB_TD) . '
' . \__('Dismiss notice', RCB_TD) . '
'; $result['noConsentTypes'] = $output; } if (\count($adjustments['noLegitimateInterest']) > 0) { $output = '' . \__('You have activated Google Consent Mode and agreed to recommendations for the use of Google services without consent. At the same time, you only allow the following services to be loaded after obtaining consent. Please check whether you want to use the following services on your website based on a legitimate interest (even before Google receiving consent into consent types accordance with Google Consent Mode and therefore e.g. not setting advertising cookies):', RCB_TD) . '
' . \__('Dismiss notice', RCB_TD) . '
'; $result['noLegitimateInterest'] = $output; } if (isset($adjustments['requiresGoogleConsentModeGa'])) { $output = \sprintf('' . \__('You obtain consent for Google Analytics 4 using Real Cookie Banner. In order to continue to create audiences in Google Analytics 4, you must have configured Google Consent Mode in your cookie banner as of March 2024.', RCB_TD) . '
%s
', \join(' • ', [$activateGcmUrl, \sprintf('%s', \add_query_arg(self::DISMISS_SERVICES_REQUIRING_GOOGLE_CONSENT_MODE_ACTIVE, 'requiresGoogleConsentModeGa', $configPageUrl), \__('I do not use "Audiences" in Google Analytics 4', RCB_TD)), $learnMoreUrl])); $result['requiresGoogleConsentModeGa'] = $output; } if (isset($adjustments['requiresGoogleConsentModeAdsConversionTracking'])) { $output = \sprintf('' . \__('You obtain consent for Google Ads Conversion Tracking and Remarketing using Real Cookie Banner. From March 2024, conversions will only be processed by Google Ads if consent is obtained using Google Consent Mode. This data is also required in order to be able to continue to run remarketing campaigns in Google Ads.', RCB_TD) . '
%s
', \join(' • ', [$activateGcmUrl, \sprintf('%s', \add_query_arg(self::DISMISS_SERVICES_REQUIRING_GOOGLE_CONSENT_MODE_ACTIVE, 'requiresGoogleConsentModeAdsConversionTracking', $configPageUrl), \__('Ignore', RCB_TD)), $learnMoreUrl])); $result['requiresGoogleConsentModeAdsConversionTracking'] = $output; } return $result; } /** * Read all services and content blockers which have an updated template version. * * @return array */ public function servicesWithUpdatedTemplates() { global $wpdb; $noticeState = $this->getStates()->get(self::NOTICE_SERVICES_WITH_UPDATED_TEMPLATES, null); if (\is_array($noticeState)) { return $noticeState; } $table_name = $this->getTableName(StorageHelper::TABLE_NAME); // Probably refresh template cache $serviceConsumer = TemplateConsumers::getCurrentServiceConsumer(); if ($serviceConsumer->getStorage()->shouldInvalidate()) { $serviceConsumer->retrieve(); } $needsUpdate = $wpdb->get_results( // phpcs:disable WordPress.DB.PreparedSQL $wpdb->prepare("SELECT\n pm.meta_id AS post_version_meta_id,\n pm.post_id,\n pm.meta_value AS post_template_version,\n prid.meta_value AS post_template_identifier,\n p.post_title, p.post_type,\n templates.version as should\n FROM {$wpdb->postmeta} pm\n INNER JOIN {$wpdb->postmeta} prid\n ON prid.post_id = pm.post_id\n INNER JOIN {$wpdb->posts} p\n ON p.ID = pm.post_id\n INNER JOIN {$table_name} templates\n ON BINARY templates.identifier = BINARY prid.meta_value\n AND templates.context = %s\n AND templates.is_outdated = 0\n AND templates.type = (\n CASE\n WHEN p.post_type = %s THEN %s\n ELSE %s\n END\n )\n WHERE pm.meta_key = %s\n AND pm.meta_value > 0\n AND prid.meta_key = %s\n AND p.post_type IN (%s, %s)\n AND p.post_status NOT IN ('trash')\n AND templates.version <> pm.meta_value", TemplateConsumers::getContext(), Cookie::CPT_NAME, StorageHelper::TYPE_SERVICE, StorageHelper::TYPE_BLOCKER, Blocker::META_NAME_PRESET_VERSION, Blocker::META_NAME_PRESET_ID, Blocker::CPT_NAME, Cookie::CPT_NAME) ); // Remove rows of languages other than current and cast to correct types foreach ($needsUpdate as $key => &$row) { $row->post_version_meta_id = \intval($row->post_version_meta_id); $row->post_id = \intval($row->post_id); $row->post_template_version = \intval($row->post_template_version); $row->should = \intval($row->should); if (\intval(Core::getInstance()->getCompLanguage()->getCurrentPostId($row->post_id, $row->post_type)) !== \intval($row->post_id)) { unset($needsUpdate[$key]); } } $result = \array_values($needsUpdate); $this->getStates()->set(self::NOTICE_SERVICES_WITH_UPDATED_TEMPLATES, $result); return $result; } /** * Read all services and content blockers which have an successor. * * @return array */ public function servicesWithSuccessorTemplates() { global $wpdb; $dismissed = $this->getStates()->get(self::DISMISSED_SUCCESSORS, []); $noticeState = $this->getStates()->get(self::NOTICE_SERVICES_WITH_SUCCESSOR_TEMPLATES, null); if (\is_array($noticeState)) { return $noticeState; } $table_name = $this->getTableName(StorageHelper::TABLE_NAME); // Probably refresh template cache $serviceConsumer = TemplateConsumers::getCurrentServiceConsumer(); if ($serviceConsumer->getStorage()->shouldInvalidate()) { $serviceConsumer->retrieve(); } $successors = $wpdb->get_results( // phpcs:disable WordPress.DB $wpdb->prepare("SELECT\n p.post_type,\n successors.identifier AS successor,\n CONCAT(successors.headline, CASE WHEN successors.sub_headline <> '' THEN CONCAT(' (', successors.sub_headline, ')') ELSE '' END) AS successor_name,\n pm.post_id AS replaces_id,\n p.post_title AS replaces_title,\n successors.successor_of_identifiers as successor_json\n FROM {$wpdb->postmeta} pm\n INNER JOIN {$wpdb->postmeta} prid\n ON prid.post_id = pm.post_id\n INNER JOIN {$wpdb->posts} p\n ON p.ID = pm.post_id\n INNER JOIN {$table_name} successors\n ON successors.context = %s\n AND successors.type = (\n CASE\n WHEN p.post_type = %s THEN %s\n ELSE %s\n END\n )\n AND successors.is_outdated = 0\n AND successors.successor_of_identifiers IS NOT NULL\n WHERE pm.meta_key = %s\n AND pm.meta_value > 0\n AND prid.meta_key = %s\n AND p.post_type IN (%s, %s)\n AND p.post_status NOT IN ('trash')\n AND successors.successor_of_identifiers LIKE BINARY CONCAT('%\"', prid.meta_value, '\"%')", TemplateConsumers::getContext(), Cookie::CPT_NAME, StorageHelper::TYPE_SERVICE, StorageHelper::TYPE_BLOCKER, Blocker::META_NAME_PRESET_VERSION, Blocker::META_NAME_PRESET_ID, Blocker::CPT_NAME, Cookie::CPT_NAME) ); // Map to a result grouped by post type (service, content blocker) and successor identifier $result = []; foreach ($successors as $key => $row) { if (\intval(Core::getInstance()->getCompLanguage()->getCurrentPostId($row->replaces_id, $row->post_type)) === \intval($row->replaces_id) && !\in_array($row->successor, $dismissed, \true)) { $result[$row->post_type] = $result[$row->post_type] ?? []; $result[$row->post_type][$row->successor] = $result[$row->post_type][$row->successor] ?? ['name' => $row->successor_name, 'replaces' => []]; $result[$row->post_type][$row->successor]['replaces'][] = [$row->replaces_id, $row->replaces_title]; } } $this->getStates()->set(self::NOTICE_SERVICES_WITH_SUCCESSOR_TEMPLATES, $result); return $result; } /** * Read all services and calculate adjustments which needs to be done when bannerless consent is used. * This includes services which are using bannerless consent for legitimate interest and services without * visual content blockers. * * @return array */ public function servicesWithBannerlessConsentAdjustments() { $dismissedLegInt = $this->getStates()->get(self::DISMISSED_BANNERLESS_CONSENT_LEGINT_SERVICES, []); $dismissedConsentWithoutVisualContentBlocker = $this->getStates()->get(self::DISMISSED_BANNERLESS_CONSENT_SERVICES_WITHOUT_VISUAL_CONTENT_BLOCKER, []); $checks = Consent::getInstance()->calculateBannerlessConsentChecks(); // Remove services which are dismissed foreach ($checks['legalBasisLegitimateInterest'] as $key => $check) { if (\in_array($check['id'], $dismissedLegInt, \true)) { unset($checks['legalBasisLegitimateInterest'][$key]); } } foreach ($checks['legalBasisConsentWithoutVisualContentBlocker'] as $key => $check) { if (\in_array($check['id'], $dismissedConsentWithoutVisualContentBlocker, \true)) { unset($checks['legalBasisConsentWithoutVisualContentBlocker'][$key]); } } return $checks; } /** * Read all services and calculate adjustments which needs to be done when Google Consent Mode is active * or needs to be activated. * * @return array */ public function servicesWithGoogleConsentModeAdjustments() { $dismissedNoConsentTypes = $this->getStates()->get(self::DISMISSED_SERVICES_USING_GOOGLE_CONSENT_MODE_NO_CONSENT_TYPES, \false); $dismissedNoLegitimateInterest = $this->getStates()->get(self::DISMISSED_SERVICES_USING_GOOGLE_CONSENT_MODE_NO_LEGITIMATE_INTEREST, []); $dismissedRequiringGcmActive = $this->getStates()->get(self::DISMISSED_SERVICES_REQUIRING_GOOGLE_CONSENT_MODE_ACTIVE, []); $noticeState = $this->getStates()->get(self::NOTICE_SERVICES_WITH_GOOGLE_CONSENT_MODE_ADJUSTMENTS, null); if (\is_array($noticeState)) { return $noticeState; } $result = Core::getInstance()->getCookieConsentManagement()->getSettings()->getGoogleConsentMode()->calculateRecommandations($dismissedNoConsentTypes, $dismissedNoLegitimateInterest, $dismissedRequiringGcmActive); $this->getStates()->set(self::NOTICE_SERVICES_WITH_GOOGLE_CONSENT_MODE_ADJUSTMENTS, $result); return $result; } /** * Create an admin notice for services without privacy policy set. */ public function admin_notices_services_with_empty_privacy_policy() { if (!\current_user_can(Core::MANAGE_MIN_CAPABILITY) || Core::getInstance()->getConfigPage()->isVisible()) { return; } $html = $this->serviceWithEmptyPrivacyPolicyNoticeHtml(); if (\is_string($html)) { echo \sprintf('%s
%s
%s
', \join(' ', [$text, \count($resultManualTrigger) > 0 ? \sprintf(\__('Start the scanner to check if the service template can be used for your case and will be suggested in the scanner!', RCB_TD)) : '']), \join(' • ', \array_filter([\count($resultManualTrigger) > 0 ? \sprintf('%s', \esc_url($startScannerLink), \__('Start scanner', RCB_TD)) : '', \sprintf('%s', \esc_url($configPageUrl . '#/scanner'), \__('Open scanner', RCB_TD)), \sprintf('%s', \esc_url($dismissLink), \__('Dismiss notice', RCB_TD))]))); } /** * Checks if the notice about services which are processing data in unsafe countries should be shown, * and returns the titles of the services which process data in unsafe countries */ public function servicesDataProcessingInUnsafeCountriesNoticeHtml() { $noticeState = $this->getStates()->get(self::NOTICE_SERVICE_DATA_PROCESSING_IN_UNSAFE_COUNTRIES, null); // Should it be recalculated by metadata change or should it be initially checked? if (($noticeState === \true || $noticeState === null) && !Consent::getInstance()->isDataProcessingInUnsafeCountries()) { $iso3166OneAlpha2 = Iso3166OneAlpha2::getSortedCodes(); $servicesHtml = []; foreach (Core::getInstance()->getCookieConsentManagement()->getSettings()->getConsent()->calculateServicesWithDataProcessingInUnsafeCountries() as $candidate) { $servicesHtml[] = \sprintf( // translators:s \__('%1$s is processing data to %2$s', RCB_TD), \esc_html($candidate['name']), \join(', ', \array_map(function ($country) use($iso3166OneAlpha2) { return $iso3166OneAlpha2[$country] ?? $country; }, $candidate['unsafeCountries'])) ); } if (\count($servicesHtml) > 0) { return \sprintf('%s
%s • %s
%s%s • %s
%s