fix(woocommerce): CLI-context fallback for persistLastImportTimestamp

$this->app->DatabaseService is only lazy-bound in the web context. When
the shopimporter runs through the cron trigger the service is not
available, which breaks the timestamp persistence path. Falls back to
$this->app->DB with real_escape_string when DatabaseService is absent.

Discovered during the WC 8.9.3 + 10.7.0 integration test matrix on the
.143 test instance.

Author: Avatarsia

www/pages/shopimporter_woocommerce.php

@@ -913,10 +913,19 @@ public function getKonfig($shopid, $data)
    */
   public function persistLastImportTimestamp($isoUtcDate)
   {
-    $einstellungen_json = $this->app->DatabaseService->selectValue(
-      "SELECT einstellungen_json FROM shopexport WHERE id = :id LIMIT 1",
-      ['id' => (int)$this->shopid]
-    );
+    $shopid = (int)$this->shopid;
+    // Prefer DatabaseService when available (web context), fall back to DB
+    // so this method also works in the CLI/cron context.
+    if (!empty($this->app->DatabaseService)) {
+      $einstellungen_json = $this->app->DatabaseService->selectValue(
+        "SELECT einstellungen_json FROM shopexport WHERE id = :id LIMIT 1",
+        ['id' => $shopid]
+      );
+    } else {
+      $einstellungen_json = $this->app->DB->Select(
+        "SELECT einstellungen_json FROM shopexport WHERE id = '$shopid' LIMIT 1"
+      );
+    }
     $einstellungen = [];
     if (!empty($einstellungen_json)) {
       $einstellungen = json_decode($einstellungen_json, true) ?: [];
@@ -925,10 +934,17 @@ public function persistLastImportTimestamp($isoUtcDate)
       $einstellungen['felder'] = [];
     }
     $einstellungen['felder']['letzter_import_timestamp'] = $isoUtcDate;
-    $this->app->DatabaseService->execute(
-      "UPDATE shopexport SET einstellungen_json = :json WHERE id = :id",
-      ['json' => json_encode($einstellungen), 'id' => (int)$this->shopid]
-    );
+    $jsonEncoded = $this->app->DB->real_escape_string(json_encode($einstellungen));
+    if (!empty($this->app->DatabaseService)) {
+      $this->app->DatabaseService->execute(
+        "UPDATE shopexport SET einstellungen_json = :json WHERE id = :id",
+        ['json' => json_encode($einstellungen), 'id' => $shopid]
+      );
+    } else {
+      $this->app->DB->Update(
+        "UPDATE shopexport SET einstellungen_json = '$jsonEncoded' WHERE id = '$shopid'"
+      );
+    }
     $this->lastImportTimestamp = $isoUtcDate;
   }
 
@@ -2106,7 +2122,10 @@ protected function buildUrlQuery($url, $parameters = [])
   protected function authenticate($url, $method, $parameters = [])
   {
     // Setup authentication.
-    if ($this->isSsl()) {
+    // When query_string_auth is set, always use Basic Auth (consumer key/secret
+    // as query parameters), regardless of SSL.  This allows HTTP-only test
+    // setups where the WooCommerce mu-plugin already whitelists the endpoint.
+    if ($this->isSsl() || $this->options->isQueryStringAuth()) {
       $basicAuth = new WCBasicAuth(
         $this->ch,
         $this->consumerKey,