Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add user_select field #614

Merged
merged 14 commits into from Jun 7, 2016
Merged

Add user_select field #614

merged 14 commits into from Jun 7, 2016

Conversation

dashaluna
Copy link
Contributor

No description provided.

dashaluna and others added 10 commits May 31, 2016 17:51
@dashaluna
Initial code for User Select field
00935df
@dashaluna
Add 'number' query arg set to 10 by default - needed for pagination a…
71c0d26 
…nd WP_User_Query doesn't set default. Move default user shortcode args, so they can be overwritten by values in shorcode setup
@dashaluna
Add * to search string, so it converts to % in SQL query and searcher…
55e502d 
…s for partial match
@dashaluna
Merge branch 'master' into user-select
471afc4
@dashaluna
Updated readme with new minor version, contributor name and descripti…
d5967a3 
…on of an update
@mattheu
Fix init selection for user select
a077c94
@mattheu
Add users field to dev
e2b9c7a
@dashaluna
Merge pull request #2 from humanmade/user-select
ce078fb 
User select
@mattheu
Merge branch 'master' of github.com:wp-shortcake/shortcake into hm-ma…
19c9d3c 
…ster

# Conflicts:
#	dev.php
@mattheu
Fix version numbers
7a3aea0
@mattheu
Copy link
Contributor

mattheu commented Jun 2, 2016

Happy to merge. These version numbers have gotten in a muddle, but they'll get sorted out in the next proper release.

westonruter
westonruter reviewed Jun 2, 2016
View reviewed changes
inc/fields/class-field-user-select.php

$nonce = isset( $_GET['nonce'] ) ? sanitize_text_field( $_GET['nonce'] ) : null;
$requested_shortcode = isset( $_GET['shortcode'] ) ? sanitize_text_field( $_GET['shortcode'] ) : null;
$requested_attr = isset( $_GET['attr'] ) ? sanitize_text_field( $_GET['attr'] ) : null;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Each of the $_GET references should have wp_unslash() before any sanitization is done.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@westonruter could you explain a bit more why we need wp_unslash(). Still learning :) Thank you!

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dashaluna sure, WordPress has an unfortunately legacy back-compat feature where it will force all of the input vars like $_GET and $_POST to be “slashed”. So for example, if you put in a search for “I'm happy”, then if you look at $_GET['s'] it will actually be I\'m happy.

For more information, see https://core.trac.wordpress.org/ticket/18322

@dashaluna
Copy link
Contributor Author

@mattheu @westonruter alright, this should do it :) Over to you guys

@mattheu
Copy link
Contributor

mattheu commented Jun 7, 2016

Looks great @dashaluna Thanks!

@mattheu mattheu merged commit d25d4c9 into wp-shortcake:master Jun 7, 2016
derpaschi added a commit to derpaschi/shortcake that referenced this pull request Jun 13, 2016
@derpaschi
Merge remote-tracking branch 'upstream/master'
14677f2 
* upstream/master: (30 commits)
  Update notice text
  Update docs and revert some other modifications
  Remove loading of scripts from core WP. Grunt task to update.
  log path location
  Check for wp-includes and not just that the abspath directory exists
  Revert adding double tests
  Update Jasmine
  Update dev path logic and error if not found
  Add user_select field (wp-shortcake#614)
  Update dev examples (wp-shortcake#613)
  Term select fix (wp-shortcake#612)
  update pot file (wp-shortcake#596)
  Create translation file for Japanese (wp-shortcake#594)
  Add Term Select (wp-shortcake#604)
  pass correct path to WP
  update readme
  Throw fatal if running tests and test install not found
  Fix JS error
  If no abspath provided, read from environment variable
  Allow passing abspath as an option
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@dashaluna @mattheu @westonruter