Add module to notify-privileged-activity

Author: kat3samsin

.wpvip/vip-dev-env.yml.ejs

@@ -9,7 +9,7 @@ multisite: true
 phpmyadmin: true
 elasticsearch: false
 xdebug: true
-mailpit: false
+mailpit: true
 photon: false
 cron: false
 overrides: |

modules/notify-privileged-activity/class-notify-privileged-activity.php

@@ -0,0 +1,44 @@
+<?php
+namespace Automattic\VIP\Security\PrivilegedActivityNotifier;
+
+class Notify_Privileged_Activity {
+	public static function init() {
+		add_action( 'user_register', [ __CLASS__, 'notify_admin_user_creation' ] );
+	}
+
+	/**
+	 * Handle new user creation.
+	 *
+	 * @param int $user_id The ID of the newly registered user.
+	 */
+	public static function notify_admin_user_creation( $user_id ) {
+		$user = get_userdata( $user_id );
+		if ( ! $user ) {
+			return;
+		}
+
+		if ( in_array( 'administrator', (array) $user->roles, true ) ) {
+			$admin_email = get_option( 'admin_email' );
+
+			if ( empty( $admin_email ) || ! is_email( $admin_email ) ) {
+				return;
+			}
+
+			$subject = sprintf( __( '[%s] New Administrator User Created', 'wpvip' ),
+				get_bloginfo( 'name' )
+			);
+
+			$message = sprintf(
+				/* Translators: %1$s is the username, %2$s is the user email. */
+				__( 'A new user with administrator privileges has been created:\nUsername: %1$s\nEmail: %2$s', 'wpvip' ),
+				$user->user_login,
+				$user->user_email
+			);
+
+			wp_mail( $admin_email, $subject, $message );
+		}
+	}
+}
+
+
+Notify_Privileged_Activity::init();

utils/dev-env.php

@@ -3,9 +3,10 @@
 namespace Automattic\VIP\Security\Utils;
 
 function load_integration_configs_from_url() {
-	if ( defined( 'WP_CLI' ) && constant( 'WP_CLI' ) ) {
-		return;
-	}
+	// Removed for testing user creation (i.e. notify-privileged-activity)
+	// if ( defined( 'WP_CLI' ) && constant( 'WP_CLI' ) ) {
+	//  return;
+	// }
 
 	$config_api_url = vip_get_env_var( 'VIP_CONFIG_API_URL', getenv( 'VIP_CONFIG_API_URL' ) );