mirror of
https://github.com/WordPress/WordPress.git
synced 2025-01-11 10:59:07 +01:00
REST API: Return a WP_Error
if meta
property is not an array.
Fixes bug where a PHP Warning is currently thrown if a client sends a request where `meta` is not an array value. Props timmydcrawford, jnylen0, rachelbaker, pento. Fixes #38989. Built from https://develop.svn.wordpress.org/trunk@39436 git-svn-id: http://core.svn.wordpress.org/trunk@39376 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
01fe6a2fac
commit
08b7e8adaf
@ -117,15 +117,15 @@ abstract class WP_REST_Meta_Fields {
|
|||||||
* @since 4.7.0
|
* @since 4.7.0
|
||||||
* @access public
|
* @access public
|
||||||
*
|
*
|
||||||
* @param WP_REST_Request $request Full details about the request.
|
* @param array $meta Array of meta parsed from the request.
|
||||||
* @param int $object_id Object ID to fetch meta for.
|
* @param int $object_id Object ID to fetch meta for.
|
||||||
* @return WP_Error|null WP_Error if one occurs, null on success.
|
* @return WP_Error|null WP_Error if one occurs, null on success.
|
||||||
*/
|
*/
|
||||||
public function update_value( $request, $object_id ) {
|
public function update_value( $meta, $object_id ) {
|
||||||
$fields = $this->get_registered_fields();
|
$fields = $this->get_registered_fields();
|
||||||
foreach ( $fields as $meta_key => $args ) {
|
foreach ( $fields as $meta_key => $args ) {
|
||||||
$name = $args['name'];
|
$name = $args['name'];
|
||||||
if ( ! array_key_exists( $name, $request ) ) {
|
if ( ! array_key_exists( $name, $meta ) ) {
|
||||||
continue;
|
continue;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -133,7 +133,7 @@ abstract class WP_REST_Meta_Fields {
|
|||||||
* A null value means reset the field, which is essentially deleting it
|
* A null value means reset the field, which is essentially deleting it
|
||||||
* from the database and then relying on the default value.
|
* from the database and then relying on the default value.
|
||||||
*/
|
*/
|
||||||
if ( is_null( $request[ $name ] ) ) {
|
if ( is_null( $meta[ $name ] ) ) {
|
||||||
$result = $this->delete_meta_value( $object_id, $meta_key, $name );
|
$result = $this->delete_meta_value( $object_id, $meta_key, $name );
|
||||||
if ( is_wp_error( $result ) ) {
|
if ( is_wp_error( $result ) ) {
|
||||||
return $result;
|
return $result;
|
||||||
@ -141,13 +141,13 @@ abstract class WP_REST_Meta_Fields {
|
|||||||
continue;
|
continue;
|
||||||
}
|
}
|
||||||
|
|
||||||
$is_valid = rest_validate_value_from_schema( $request[ $name ], $args['schema'], 'meta.' . $name );
|
$is_valid = rest_validate_value_from_schema( $meta[ $name ], $args['schema'], 'meta.' . $name );
|
||||||
if ( is_wp_error( $is_valid ) ) {
|
if ( is_wp_error( $is_valid ) ) {
|
||||||
$is_valid->add_data( array( 'status' => 400 ) );
|
$is_valid->add_data( array( 'status' => 400 ) );
|
||||||
return $is_valid;
|
return $is_valid;
|
||||||
}
|
}
|
||||||
|
|
||||||
$value = rest_sanitize_value_from_schema( $request[ $name ], $args['schema'] );
|
$value = rest_sanitize_value_from_schema( $meta[ $name ], $args['schema'] );
|
||||||
|
|
||||||
if ( $args['single'] ) {
|
if ( $args['single'] ) {
|
||||||
$result = $this->update_meta_value( $object_id, $meta_key, $name, $value );
|
$result = $this->update_meta_value( $object_id, $meta_key, $name, $value );
|
||||||
@ -391,6 +391,10 @@ abstract class WP_REST_Meta_Fields {
|
|||||||
'type' => 'object',
|
'type' => 'object',
|
||||||
'context' => array( 'view', 'edit' ),
|
'context' => array( 'view', 'edit' ),
|
||||||
'properties' => array(),
|
'properties' => array(),
|
||||||
|
'arg_options' => array(
|
||||||
|
'sanitize_callback' => null,
|
||||||
|
'validate_callback' => array( $this, 'check_meta_is_array' ),
|
||||||
|
),
|
||||||
);
|
);
|
||||||
|
|
||||||
foreach ( $fields as $args ) {
|
foreach ( $fields as $args ) {
|
||||||
@ -444,4 +448,23 @@ abstract class WP_REST_Meta_Fields {
|
|||||||
|
|
||||||
return $value;
|
return $value;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Check the 'meta' value of a request is an associative array.
|
||||||
|
*
|
||||||
|
* @since 4.7.0
|
||||||
|
* @access public
|
||||||
|
*
|
||||||
|
* @param mixed $value The meta value submitted in the request.
|
||||||
|
* @param WP_REST_Request $request Full details about the request.
|
||||||
|
* @param string $param The parameter name.
|
||||||
|
* @return WP_Error|string The meta array, if valid, otherwise an error.
|
||||||
|
*/
|
||||||
|
public function check_meta_is_array( $value, $request, $param ) {
|
||||||
|
if ( ! is_array( $value ) ) {
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
return $value;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
@ -4,7 +4,7 @@
|
|||||||
*
|
*
|
||||||
* @global string $wp_version
|
* @global string $wp_version
|
||||||
*/
|
*/
|
||||||
$wp_version = '4.8-alpha-39434';
|
$wp_version = '4.8-alpha-39436';
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.
|
* Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.
|
||||||
|
Loading…
Reference in New Issue
Block a user