WordPress

mirror of https://github.com/WordPress/WordPress.git synced 2024-07-07 04:05:13 +02:00

Author	SHA1	Message	Date
Gary Pendergast	e8042cfef7	REST API: Merge similar strings in a comments endpoint parameter description. Props ramiy. Fixes #39036. Built from https://develop.svn.wordpress.org/trunk@39457 git-svn-id: http://core.svn.wordpress.org/trunk@39397 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-12-03 04:21:39 +00:00
Rachel Baker	179e9f20b6	REST API: Fix bug where comment author and author email could be an empty string when creating a comment. If the `require_name_email` option is true, creating a comment with an empty string for the author name or email should not be accepted. Both values can be an empty string on update. Props flixos90, hnle, dd32, rachelbaker, jnylen0, ChopinBach, joehoyle, pento. Fixes #38971. Built from https://develop.svn.wordpress.org/trunk@39444 git-svn-id: http://core.svn.wordpress.org/trunk@39384 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-12-02 22:44:42 +00:00
Joe Hoyle	6f189ddbc8	REST API: Add support for comments of password-protected posts. Core requires the post password to view and create comments on password protected posts, so we must support a “password” param on the comments endpoint when fetch comments for a specific post and creating a comment on a password protected post. Props flixos90, jnylen0. Fixes #38692. Built from https://develop.svn.wordpress.org/trunk@39349 git-svn-id: http://core.svn.wordpress.org/trunk@39289 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-23 16:15:31 +00:00
Rachel Baker	a985a4d126	REST API: Always fire the `rest_insert_` actions after the related object is updated or inserted. Brings consistency to the `rest_insert_` actions. Also includes some shuffling and clean-up as well including: - Ensure we are passing the most current `$post` and `$user` objects to the `update_additional_fields_for_object()` callbacks. - Changes the function signature of `handle_status_param()` in the Comments controller to accept just the comment_id as the 2nd parameter, instead of a full WP_Comment object. Only the comment_id is needed in the method, this avoids having to include another `get_comment()` call. - Renames a variable in the `create_item()` method of the Posts controller from `$post` -> `$prepared_post` to be more explicit. - Minor fixes/clarifications to the rest_insert_* hook docs Props rachelbaker, joehoyle Fixes #38905. Built from https://develop.svn.wordpress.org/trunk@39348 git-svn-id: http://core.svn.wordpress.org/trunk@39288 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-23 15:33:31 +00:00
Joe Hoyle	d711f2c18d	REST API: Update “resource” strings to use the appropriate nouns. Props ramiy. Fixes #38811. Built from https://develop.svn.wordpress.org/trunk@39342 git-svn-id: http://core.svn.wordpress.org/trunk@39282 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-23 02:42:30 +00:00
Rachel Baker	d87fe366a9	REST API: Set the comment `type` to a readonly property in the schema. Document the type property as `readonly` and remove the default value. After #38820 it is no longer possible to set the type property on a comment to anything a custom type. Props jnylen0, rachelbaker. Fixes #38886. Built from https://develop.svn.wordpress.org/trunk@39337 git-svn-id: http://core.svn.wordpress.org/trunk@39277 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-21 22:56:30 +00:00
Ryan McCue	4e05ff6a11	REST API: Disable anonymous commenting by default. Adding a brand new anonymous comment method is a potential conduit for spam. Since it's still useful functionality, we're now hiding it behind a filter to allow plugins and themes to turn it on if they do want it. Props helen, rachelbaker, joehoyle. Fixes #38855. Built from https://develop.svn.wordpress.org/trunk@39327 git-svn-id: http://core.svn.wordpress.org/trunk@39267 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-21 05:32:33 +00:00
Sergey Biryukov	9b23ccfc29	REST API: Update error messages in `WP_REST_Comments_Controller` to use the common text for permission errors. Props ramiy. Fixes #38875. Built from https://develop.svn.wordpress.org/trunk@39321 git-svn-id: http://core.svn.wordpress.org/trunk@39261 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-20 11:46:34 +00:00
Sergey Biryukov	a1f285641f	REST API: After [39306], move `author_ip` argument to the correct place. See #38822. Built from https://develop.svn.wordpress.org/trunk@39310 git-svn-id: http://core.svn.wordpress.org/trunk@39250 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-19 01:51:30 +00:00
Sergey Biryukov	5ded4db04c	REST API: Merge and clarify some permission error strings. Fixes #38857. Built from https://develop.svn.wordpress.org/trunk@39309 git-svn-id: http://core.svn.wordpress.org/trunk@39249 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-19 01:46:32 +00:00
Sergey Biryukov	4afa19184a	REST API: After [39302], clarify `author_ip` parameter in error message. Properties of objects should not be translated, and therefore are pulled out of the translation strings. Props ramiy. Fixes #38822. Built from https://develop.svn.wordpress.org/trunk@39306 git-svn-id: http://core.svn.wordpress.org/trunk@39246 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-19 01:06:30 +00:00
Sergey Biryukov	0f31b1da72	REST API: Merge two similar permission error strings in `class-wp-rest-comments-controller.php`. We're checking if `current_user_can( 'moderate_comments' )` here, not the specific comment permissions. See #38857. Built from https://develop.svn.wordpress.org/trunk@39305 git-svn-id: http://core.svn.wordpress.org/trunk@39245 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-19 00:10:31 +00:00
Rachel Baker	0fdb955ce8	REST API: On Comment create, limit the ability to set the `author_ip` value directly. Users without the moderate_comments capability can no longer set the `author_ip` property directly, and instead receive a `WP_Error` if they attempt to do so. Otherwise, the `author_ip property` is populated from `$_SERVER['REMOTE_ADDR']` if present and a valid IP value. Finally, fallback to 127.0.0.1 as a last resort. Props dd32, rachelbaker, joehoyle. Fixes #38819. Built from https://develop.svn.wordpress.org/trunk@39302 git-svn-id: http://core.svn.wordpress.org/trunk@39242 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 21:13:32 +00:00
Joe Hoyle	0c14c16ced	REST API: Clarify parameters when used in error strings. Properties of objects should not be translated, and therefore are pulled out of the translation strings. Props ocean90, ramiy, danielbachhuber. Fixes #38822. Built from https://develop.svn.wordpress.org/trunk@39298 git-svn-id: http://core.svn.wordpress.org/trunk@39238 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 20:20:32 +00:00
Joe Hoyle	a38b863ae4	REST API: Change “ipv4” types to “ip” to support ipv6. Stop presuming IP address are IPv4, instead make the type “ip” to be agnostic of IP version. This fixes requests with ipv6 addresses for comments in core. Props dd32, schlessera, danielbachhuber. Fixes #38818. Built from https://develop.svn.wordpress.org/trunk@39296 git-svn-id: http://core.svn.wordpress.org/trunk@39236 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 19:33:31 +00:00
Joe Hoyle	81c5b03029	REST API: Check read permissions on posts when viewing comments. With a few tests for getting / creating comments to reflect core behaviour. Props timmyc. Built from https://develop.svn.wordpress.org/trunk@39295 git-svn-id: http://core.svn.wordpress.org/trunk@39235 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 19:07:30 +00:00
Rachel Baker	3f6131c2e6	REST API: Remove the `karma` property and query parameter from the Comments endpoints. WordPress has not used the `karma` property internally for the past 8 years. There is no need to expose it in the REST API endpoints. Sites that use `karma` can include it using the `register_rest_field()` function. Props dd32, danielbachhuber. Fixes #38821. Built from https://develop.svn.wordpress.org/trunk@39292 git-svn-id: http://core.svn.wordpress.org/trunk@39232 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 18:53:29 +00:00
Rachel Baker	191e085fa3	REST API: On comment create, return an error if the `type` property is set to anything other than `comment`. Of the default comment_types, only comments are expected to be created via the REST API endpoint. Comments do not have registered types the way that Posts do, so we do not have a method to accurately check permissions for arbitrary comment types. Props dd32, boonebgorges, rachelbaker. Fixes #38820. Built from https://develop.svn.wordpress.org/trunk@39290 git-svn-id: http://core.svn.wordpress.org/trunk@39230 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 18:37:30 +00:00
Rachel Baker	735fa34d42	REST API: On comment create, return an error if the `post` parameter does not relate to a valid WP_Post object. Return a `WP_Error` object for attempts to create a comment without an empty or invalid `post` ID. Props dd32, jnylen0, rachelbaker. Fixes #38816. Built from https://develop.svn.wordpress.org/trunk@39288 git-svn-id: http://core.svn.wordpress.org/trunk@39228 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 16:56:30 +00:00
Rachel Baker	10bddfac39	REST API: On comment create, fallback to the `user_agent` header value. If a user-agent is not explicitly provided in the `author_user_agent` parameter, fallback to the `user_agent` value in the request header. Props dd32, jnylen0, rachelbaker. Fixes #38817. Built from https://develop.svn.wordpress.org/trunk@39287 git-svn-id: http://core.svn.wordpress.org/trunk@39227 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-18 16:22:33 +00:00
Sergey Biryukov	acc30b09d7	Text Changes: Merge some duplicate strings with the same meaning in error messages, adjust some other strings for consistency and accuracy. Props ramiy, SergeyBiryukov. Fixes #38808. Built from https://develop.svn.wordpress.org/trunk@39278 git-svn-id: http://core.svn.wordpress.org/trunk@39218 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-17 15:53:33 +00:00
Sergey Biryukov	b92266a72b	REST API: After [39252] and [39264], uppercase some more 'ID' references in translatable strings. See #38791. Built from https://develop.svn.wordpress.org/trunk@39266 git-svn-id: http://core.svn.wordpress.org/trunk@39206 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-16 13:28:37 +00:00
Sergey Biryukov	ce74afdae2	REST API: Uppercase 'ID' in endpoint descriptions and error messages for consistency with other strings. See #38791. Built from https://develop.svn.wordpress.org/trunk@39264 git-svn-id: http://core.svn.wordpress.org/trunk@39204 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-16 12:18:33 +00:00
Sergey Biryukov	74c9f82ef2	REST API: Unify some more permission error messages. Props ramiy. Fixes #38803. Built from https://develop.svn.wordpress.org/trunk@39259 git-svn-id: http://core.svn.wordpress.org/trunk@39199 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 23:36:31 +00:00
Sergey Biryukov	07cf16f7ba	REST API: Unify permission error messages. Props ramiy. Fixes #38803. Built from https://develop.svn.wordpress.org/trunk@39257 git-svn-id: http://core.svn.wordpress.org/trunk@39197 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 22:23:30 +00:00
Sergey Biryukov	9c2ea0b8c7	REST API: Remove two duplicate strings, use the ones we already have. See #38791. Built from https://develop.svn.wordpress.org/trunk@39252 git-svn-id: http://core.svn.wordpress.org/trunk@39192 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 20:40:29 +00:00
Joe Hoyle	d049f72459	REST API: Clean up argument and property types. There's a couple of places where we were missing type notes for arguments, which mainly affects documentation. Props jnylen0. Fixes #38792. Built from https://develop.svn.wordpress.org/trunk@39250 git-svn-id: http://core.svn.wordpress.org/trunk@39190 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 18:16:30 +00:00
Ryan McCue	0f5a44e093	REST API: Move translator comments to preceding line. Inline translator comments break POT file generation. Props dd32. See #38791. Built from https://develop.svn.wordpress.org/trunk@39239 git-svn-id: http://core.svn.wordpress.org/trunk@39179 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 05:39:32 +00:00
Ryan McCue	705f17cea2	REST API: Add translator comments to text with placeholders. Props dimadin. Fixes #38791. Built from https://develop.svn.wordpress.org/trunk@39238 git-svn-id: http://core.svn.wordpress.org/trunk@39178 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-15 04:28:31 +00:00
Joe Hoyle	a4fa8c528f	REST API: Make all collection params filterable. For developers wanting to add their own registered collection parameters, they can now use the `rest_$type_collection_params` filter. This brings consistency with the already existing `rest_$post_type_collection_params`. Fixes #38710. Props jnylen0. Built from https://develop.svn.wordpress.org/trunk@39223 git-svn-id: http://core.svn.wordpress.org/trunk@39163 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-14 16:42:31 +00:00
Joe Hoyle	f325af9caa	REST API: Allow updating a comment without the content present. For all resources in the REST API, sending partial updates is supported. This fixes needing to _always_ specify comment content. Props jnylen. Fixes #38720. Built from https://develop.svn.wordpress.org/trunk@39196 git-svn-id: http://core.svn.wordpress.org/trunk@39136 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-10 03:35:30 +00:00
Ryan McCue	3a449ea543	Roles/Capabilities: Add meta-caps for comment, term, and user meta. Additionally, use these meta-caps in the REST API endpoints. Previously, register_meta()'s auth_callback had no effect for non-post meta. This introduces `{add,edit,delete}_{comment,term,user}_meta` meta-caps to match the existing post meta capabilities. These are currently only used in the REST API. Props tharsheblows, boonebgorges. Fixes #38303, fixes #38412. Built from https://develop.svn.wordpress.org/trunk@39179 git-svn-id: http://core.svn.wordpress.org/trunk@39119 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-09 03:42:30 +00:00
Joe Hoyle	8de95582e2	REST API: Remove rest_get_post filter and `get_post` abstraction. This filter was originally introduced in https://github.com/WP-API/WP-API/pull/2535 to support Customizer Changesets (née Transactions). This is a super broad filter and doesn't really fit with the design of the API, nor is it (arguably) the right level to do this. Props rmccue. Fixes #38701. Built from https://develop.svn.wordpress.org/trunk@39161 git-svn-id: http://core.svn.wordpress.org/trunk@39101 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-08 13:09:33 +00:00
Ryan McCue	caabc52753	REST API: Respect unfiltered_html for HTML comment fields. Same as [39155], but for comments, natch. Props jnylen0. Fixes #38704, see #38609. Built from https://develop.svn.wordpress.org/trunk@39157 git-svn-id: http://core.svn.wordpress.org/trunk@39097 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-08 06:36:31 +00:00
Rachel Baker	5564716a07	REST API: Modify the structure of our DELETE responses to be more explicit. Add the `deleted` property to the root of the Response object to communicate if the delete action was successful. Move the state of the resource prior to the delete request under a new `previous` property. As a result DELETE responses are now structured like so: `{ deleted: true, previous: { ... } }` Also includes helpful information to DELETE requests for resources that are not trashable. Props timmydcrawford, rmccue, jnylen0. Fixes #38494. Built from https://develop.svn.wordpress.org/trunk@39126 git-svn-id: http://core.svn.wordpress.org/trunk@39066 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-04 17:11:29 +00:00
Joe Hoyle	d544c6ddd0	REST API: Switch to stable version of JSON Schema. Props danielbachhuber. Fixes #38635. Built from https://develop.svn.wordpress.org/trunk@39106 git-svn-id: http://core.svn.wordpress.org/trunk@39048 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-03 02:22:29 +00:00
Rachel Baker	dcb12c35cf	REST API: Clean-up our validation callbacks and add missing array `items` properties in our endpoint schemas. Props joehoyle, jnylen0. Fixes #38617. Built from https://develop.svn.wordpress.org/trunk@39105 git-svn-id: http://core.svn.wordpress.org/trunk@39047 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-03 02:18:29 +00:00
Rachel Baker	94ab2f9b16	REST API: Return an error when the length of a comment field is too long. Introduces `wp_check_comment_data_max_lengths()` which allows both the REST API comments endpoints and `wp_handle_comment_submission()` to check the length of the comment content, author name, author url, and author email fields against their respective database columns. Props rachelbaker, mangeshp, salcode, pento. Fixes #38477. Built from https://develop.svn.wordpress.org/trunk@39101 git-svn-id: http://core.svn.wordpress.org/trunk@39043 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-03 01:12:31 +00:00
Ryan McCue	a911bf7e2c	REST API: Avoid default sanitization for polymorphic params. Some parameters (`title`, `content`, etc) are objects in the output, but allow objects or strings to be sent in updates for a more ergonomic interface. This is pretty weird behaviour, so the default sanitisation doesn't handle this. We instead handle this ourselves in the preparation. Props joehoyle, rachelbaker. Fixes #38529. Built from https://develop.svn.wordpress.org/trunk@39089 git-svn-id: http://core.svn.wordpress.org/trunk@39031 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-11-02 06:02:29 +00:00
Drew Jaynes	e2e47a192d	Docs: Add much more complete and syntactically correct documentation throughout the `WP_REST_Comments_Controller` class. Props Soean, mrahmadawais, flixos90. See #38398. Built from https://develop.svn.wordpress.org/trunk@39015 git-svn-id: http://core.svn.wordpress.org/trunk@38957 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-10-30 06:55:30 +00:00
Rachel Baker	cdce9d5dac	REST API: Allow comments to be created setting the user_agent parameter. As of WordPress 4.3 the `wp_new_comment()` function has been updated to allow the comment_agent value to be set when a comment is created. The comments API endpoint now allows the comment author's user agent to be set when creating a comment. Also, the `readonly` property on the `author_user_agent` parameter in the schema was removed. Props rabmalin for the initial patch. Fixes #38425. Built from https://develop.svn.wordpress.org/trunk@38864 git-svn-id: http://core.svn.wordpress.org/trunk@38807 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-10-21 18:28:32 +00:00
Rachel Baker	e4a7c0a397	REST API: Introduce the Content API endpoints. REST API endpoints for your WordPress content. These endpoints provide machine-readable external access to your WordPress site with a clear, standards-driven interface, allowing new and innovative apps for interacting with your site. These endpoints support all of the following: - Posts: Read and write access to all post data, for all types of post-based data, including pages and media. - Comments: Read and write access to all comment data. This includes pingbacks and trackbacks. - Terms: Read and write access to all term data. - Users: Read and write access to all user data. This includes public access to some data for post authors. - Meta: Read and write access to metadata for posts, comments, terms, and users, on an opt-in basis from plugins. - Settings: Read and write access to settings, on an opt-in basis from plugins and core. This enables API management of key site content values that are technically stored in options, such as site title and byline. Love your REST API, WordPress! The infrastructure says, "Let's do lunch!" but the content API endpoints say, "You're paying!" Props rmccue, rachelbaker, danielbachhuber, joehoyle, adamsilverstein, afurculita, ahmadawais, airesvsg, alisspers, antisilent, apokalyptik, artoliukkonen, attitude, boonebgorges, bradyvercher, brianhogg, caseypatrickdriscoll, chopinbach, chredd, christianesperar, chrisvanpatten, claudiolabarbera, claudiosmweb, cmmarslender, codebykat, coderkevin, codfish, codonnell822, daggerhart, danielpunkass, davidbhayes, delphinus, desrosj, dimadin, dotancohen, DrewAPicture, Dudo1985, duncanjbrown, eherman24, eivhyl, eliorivero, elyobo, en-alis, ericandrewlewis, ericpedia, evansobkowicz, fjarrett, frozzare, georgestephanis, greatislander, guavaworks, hideokamoto, hkdobrev, hubdotcom, hurtige, iandunn, ircrash, ironpaperweight, iseulde, Japh, jaredcobb, JDGrimes, jdolan, jdoubleu, jeremyfelt, jimt, jjeaton, jmusal, jnylen0, johanmynhardt, johnbillion, jonathanbardo, jorbin, joshkadis, JPry, jshreve, jtsternberg, JustinSainton, kacperszurek, kadamwhite, kalenjohnson, kellbot, kjbenk, kokarn, krogsgard, kuchenundkakao, kuldipem, kwight, lgedeon, lukepettway, mantismamita, markoheijnen, matrixik, mattheu, mauteri, maxcutler, mayukojpn, michael-arestad, miyauchi, mjbanks, modemlooper, mrbobbybryant, NateWr, nathanrice, netweb, NikV, nullvariable, oskosk, oso96_2000, oxymoron, pcfreak30, pento, peterwilsoncc, Pezzab, phh, pippinsplugins, pjgalbraith, pkevan, pollyplummer, pushred, quasel, QWp6t, schlessera, schrapel, Shelob9, shprink, simonlampen, Soean, solal, tapsboy, tfrommen, tharsheblows, thenbrent, tierra, tlovett1, tnegri, tobych, Toddses, toro_unit, traversal, vanillalounge, vishalkakadiya, wanecek, web2style, webbgaraget, websupporter, westonruter, whyisjake, wonderboymusic, wpsmith, xknown, zyphonic. Fixes #38373. Built from https://develop.svn.wordpress.org/trunk@38832 git-svn-id: http://core.svn.wordpress.org/trunk@38775 1a063a9b-81f0-0310-95a4-ce76da25c4cd	2016-10-20 02:55:32 +00:00

42 Commits