salman/igny8
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

wp plugin loaded

Browse Source
This commit is contained in:
alorig
2025-11-21 19:18:24 +05:00
parent 4a39c349f6
commit 1eba4a4e15
35 changed files with 11730 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

298
igny8-wp-integration-plugin/docs/PHASE_6_IMPLEMENTATION_SUMMARY.md Normal file
View File

@@ -0,0 +1,298 @@
# Phase 6 Implementation Summary
## Overview
Phase 6 implementation adds webhook support and remote control capabilities, allowing IGNY8 SaaS to send events to WordPress.
## Implemented Features
### 6.1 REST Route Registration with Shared Secret ✅
**Files Created:**
- `includes/class-igny8-webhooks.php` - Main webhook handler class
**Features:**
- **REST Endpoint**: `/wp-json/igny8/v1/event` (POST)
- **Shared Secret Authentication**: HMAC-SHA256 signature verification
- **Connection Check**: All webhook handlers verify `igny8_is_connection_enabled()` before processing
**Security:**
- Webhook secret stored in WordPress options (auto-generated on first use)
- Signature verification via `X-IGNY8-Signature` header
- Secret can be regenerated from settings page
- Failed authentication attempts are logged
**Functions:**
- `igny8_get_webhook_secret()` - Get or generate webhook secret
- `igny8_regenerate_webhook_secret()` - Regenerate secret
---
### 6.2 SaaS Event Handlers ✅
**Event Types Supported:**
#### 1. Task Published (`task_published`, `task_completed`)
- Creates or updates WordPress post from IGNY8 task
- Fetches full task data from Writer API
- Respects enabled post types
- Updates post status if task is completed
#### 2. Link Recommendation (`link_recommendation`, `insert_link`)
- Queues link insertion for processing
- Validates required parameters (post_id, target_url, anchor)
- Respects Linker module toggle
- Processes links asynchronously via cron
#### 3. Optimizer Request (`optimizer_request`, `optimizer_job_completed`)
- Updates optimizer job status
- Stores score changes and recommendations
- Updates post meta with optimizer data
- Respects Optimizer module toggle
**Event Handler Flow:**
1. Verify connection is enabled
2. Verify module is enabled (if applicable)
3. Validate event data
4. Process event
5. Log activity
6. Return unified JSON response
---
### 6.3 Webhook Activity Logging ✅
**Files Created:**
- `includes/class-igny8-webhook-logs.php` - Logging functions
**Features:**
- **Log Storage**: WordPress options (last 500 logs)
- **Log Fields**:
- Event type
- Event data
- IP address
- User agent
- Status (received, processed, failed)
- Response data
- Timestamps (received_at, processed_at)
- Error messages
**Functions:**
- `igny8_log_webhook_activity()` - Log webhook receipt
- `igny8_update_webhook_log()` - Update log with processing result
- `igny8_get_webhook_logs()` - Retrieve logs with filtering
- `igny8_clear_old_webhook_logs()` - Cleanup old logs
**UI Display:**
- Recent webhook activity table in settings page
- Shows last 10 webhook events
- Displays event type, status, and timestamp
---
### Link Queue System ✅
**Files Created:**
- `includes/class-igny8-link-queue.php` - Link insertion queue
**Features:**
- **Queue Storage**: WordPress options
- **Queue Processing**: Cron-based (processes 10 items per run)
- **Retry Logic**: Up to 3 attempts per link
- **Status Tracking**: pending, completed, failed
**Link Insertion Logic:**
1. Finds anchor text in post content
2. Wraps anchor with link tag
3. Avoids duplicate links
4. Falls back to appending link if anchor not found
**Queue Management:**
- Automatic processing via cron
- Manual trigger available
- Queue size limit (1000 items)
- Status tracking per item
---
## Connection Checks
**All handlers check connection status:**
**Webhook Handler** (`verify_webhook_secret`)
- Checks `igny8_is_connection_enabled()` before allowing webhook
**Event Handlers** (`handle_webhook`, `handle_task_published`, etc.)
- Double-checks connection enabled before processing
- Returns error if connection disabled
**Link Queue** (`igny8_queue_link_insertion`, `igny8_process_link_queue`)
- Checks connection enabled before queuing/processing
**REST API Endpoints** (existing endpoints)
- Updated to check connection enabled
- Returns 403 if connection disabled
---
## Settings UI Enhancements
**New Sections Added:**
1. **Webhook Configuration**
- Webhook URL display with copy button
- Webhook secret display with copy button
- Regenerate secret button
2. **Link Queue**
- Shows pending links count
- Displays queue table (last 10 items)
- Shows post ID, anchor, target URL, status
3. **Recent Webhook Activity**
- Shows last 10 webhook events
- Displays event type, status, timestamp
- Color-coded status badges
---
## Security Features
1. **HMAC Signature Verification**
- Uses SHA-256 HMAC
- Compares request body signature
- Prevents replay attacks
2. **Connection Toggle Protection**
- All endpoints check connection status
- Webhooks rejected if connection disabled
- Clear error messages
3. **Module Toggle Respect**
- Events only processed if module enabled
- Graceful error responses
4. **Input Validation**
- All parameters sanitized
- Required fields validated
- Type checking
---
## API Response Format
All webhook responses follow unified JSON format:
**Success:**
```json
{
"success": true,
"message": "Event processed",
"data": { ... }
}
```
**Error:**
```json
{
"success": false,
"error": "Error message",
"code": "error_code"
}
```
---
## Integration Points
### Modified Files:
- `igny8-bridge.php` - Added webhook classes loading
- `includes/functions.php` - Added webhook secret functions
- `includes/class-igny8-rest-api.php` - Added connection checks
- `admin/settings.php` - Added webhook UI sections
- `admin/class-admin.php` - Added secret regeneration handler
### New Dependencies:
- None (uses existing WordPress functions)
---
## Testing Checklist
- [ ] Webhook endpoint accessible at `/wp-json/igny8/v1/event`
- [ ] Signature verification works correctly
- [ ] Invalid signatures are rejected
- [ ] Connection disabled blocks webhooks
- [ ] Task published event creates/updates posts
- [ ] Link recommendation queues links
- [ ] Link queue processes links correctly
- [ ] Optimizer events update post meta
- [ ] Webhook logs are created and updated
- [ ] Settings UI displays webhook info
- [ ] Secret regeneration works
- [ ] All events respect module toggles
- [ ] All events respect connection toggle
---
## Notes
1. **Webhook Secret**: Auto-generated on first use. Must be configured in IGNY8 SaaS app.
2. **Link Queue**: Processes 10 items per cron run to prevent timeouts. Can be adjusted.
3. **Log Retention**: Keeps last 500 logs. Older logs can be cleared manually.
4. **Signature Header**: IGNY8 SaaS must send `X-IGNY8-Signature` header with HMAC-SHA256 signature of request body.
5. **Connection Toggle**: All webhook handlers check connection status before processing. This ensures no data is processed when connection is disabled.
6. **Module Toggles**: Each event type checks if its module is enabled before processing.
---
## Webhook Payload Examples
### Task Published
```json
{
"event": "task_published",
"data": {
"task_id": 123,
"status": "completed"
}
}
```
### Link Recommendation
```json
{
"event": "link_recommendation",
"data": {
"post_id": 456,
"target_url": "https://example.com/page",
"anchor": "example link",
"priority": "normal"
}
}
```
### Optimizer Request
```json
{
"event": "optimizer_job_completed",
"data": {
"post_id": 456,
"job_id": 789,
"status": "completed",
"score_changes": { ... },
"recommendations": [ ... ]
}
}
```
---
## Next Steps
Phase 6 is complete. All webhook functionality is implemented with proper security, logging, and connection checks.