I am writing a small php file that is called via ajax from a plugin's js file to update a user's role. The file looks like this...
include "../../../../wp-includes/pluggable.php";
global $current_user;
get_currentuserinfo();
$u = new WP_User( $current_user->ID );
$u->add_role( 'trainer3' );
pluggable is the module that contains the get_currentuser() function. But I am getting additional errors (is_ssl() not found). What other Wordpress modules do I need to include to gain access to the current user object? The plugin I am using is not one that I wrote. It appears as though they did not include any Wordpress hooks. This code works fine in other plugins such as woocommerce.
Thanks!
Include wp-load.php instead or, preferably, use the Wordpress ajax actions
http://codex.wordpress.org/AJAX_in_Plugins
Related
I have a custom PHP file on which I want to use some WordPress functions such as wp_get_current_user(). I've tried requiring wp-load.php, but that increases the load time significantly as it loads all WP functions.
Is there anyway I can use only the functions I need from WP?
Thanks, Emir
You can create page template or plugin then you able to access wp_get_currunt_user() function in you template file or plugin file
I want to write a plugin so that I can connect to it with an app bot, and store information inside the database.
Note that because I directly connect to php file inside this plugin, the public WordPress values like $wpdb are not known.
And how can i access to wp functions? such as get_option,...
thanks for your help.
Maybe this helps you
require_once( 'path to wordpress project root'. '/wp-load.php' );
// Set up the WordPress query.
wp();
For example if you want to create plugin with name - test
You need to create a directory with name 'test' inside plugin directory wp-content/plugins/test
Then you need to create file test.php - it is the main file of your plugin
Then you need to add at beginning of your test.php file after comments require wp-load if WordPress environment is not included (it is your case when you call your file directly)
For example, your plugin main file is wp-content/plugins/test/test.php starts with this snippet and before this snippet, you need to place your plugin metadata like name - description and so on. I recommend to download WordPress and see default plugins meta in wp-content/plugins/askimet/askimet.php and wp-content/plugins/hello.php.
if ( !defined('ABSPATH') ) {
/** Set up WordPress environment */
require_once( '../../wp-load.php' );
}
then you can use get_option() $wpdb and other wp functions.
wp() function in my previous answer need for initializing global wp query. It is not necessary. You can create your own wp query by using WP_Query class.
https://codex.wordpress.org/Class_Reference/WP_Query - there is description with examples how to use WP_Query.
Then You can write your plugin in OOP or functional style. You can write your plugin analogically to Askimet for example or with boilerplates. This is the question about plugin development. Hope this question helps you achieve your purpose.
https://wordpress.stackexchange.com/questions/85486/is-there-any-plugin-development-framework
Hope this help you
I know PHP but not much WordPress, and I need to upload a collection of files into my client's WP site. I'm wanting something a little different from what is being asked in this SO post.
I need to upload a collection of totally custom files, including PHP, html, js, and css files. Ideally I'd love to upload a zip with my collection of web files, with folder structure maintained. These files have nothing to do with the WP site, in that they don't need to hook in to the menuing/plugins/themes, etc. They are standalone files with custom functionality, I just need to launch my "main" page when a certain WP button is clicked.
Is there a way to upload a zip file through the WP admin interface and have it extract my files into a safe/isolated location?
How will I know the absolute or relative URL to my main page, after this upload occurs?
If 1 and 2 above are impossible, what's the best approach to get my files up there, in some kind of isolated folder? (I really don't want to create/modify themes or plugins if possible, I just literally want to dump some files onto the server and then know how to access them via URL.)
Note: If I had access to FTP on my client's server, that would be the easiest approach by far, but that is not an option, and my only doorway is the WP admin interface. This is a hosted wordpress site (version 4.7), hosted by Wordpress.com, and it's the Business Plan.
EDIT:
Here is Zero Gravity Payment Module.php:
<?php
/**
* #package ZeroGravityPaymentModule
* #version 1.0
*/
/*
Plugin Name: Zero Gravity Payment Module
Plugin URI: https://www.zerogravpro.com/CCPayment/
Description: Advanced Authorize.Net credit card payment form built by Zero Gravity Programming.
Author: Nate Jensen
Version: 1.0
Author URI: https://www.zerogravpro.com/
Text Domain: hello-dolly
*/
?>
And here is installer.php:
<?php
$destinationDir = $_SERVER['DOCUMENT_ROOT'] . '/' . 'ZeroGravityPaymentModule';
mkdir($destinationDir);
$zip = new ZipArchive;
$zip->open('ZeroGravityPaymentModule.zip');
$zip->extractTo($destinationDir);
$zip->close();
?>
I was able to upload my "plugin", but now cannot seem to find my php files via absolute url. I have tried the following locations:
https://[actualdomain]/wp-content/plugins/Zero%20Gravity%20Payment%20Module/installer.php
https://wordpress.com/view/[actualdomain]/wp-content/plugins/Zero%20Gravity%20Payment%20Module/installer.php
I have tested this answer end to end and it works. However, it now transpires that this question relates to Wordpress.com which provides modified/restricted versions of Wordpress - see edit at bottom of answer.
It can all be done with 2 miniscule scripts.
i: "mydummy.php" contains just a single comment on its own line (necessary to "fool" WP into uploading your actual script and archive file).
<?php
/* Plugin Name: mydummy */
?>
ii: "myinstaller.php" e.g.
<?php
$destinationDir = $_SERVER['DOCUMENT_ROOT'] . '/' . 'myparentdir';
mkdir( $destinationDir, 0775); // 0755 whatever
$zip = new ZipArchive;
$zip->open('myarchive.zip');
$zip->extractTo($destinationDir); // creates dirs and files below as per archive structure
$zip->close();
?>
Tested and works. Add your own error handling & info/progress msgs as required (you are familiar with php).
To upload and run:
Create a zip (e.g. myarchive.zip) of the directories and contained files you want to place on your server.
Place this zip and the 2 script files above in a folder called "mydummy".
Zip the "mydummy" folder" (the result should be "mydummy.zip" containing folder "mydummy" with your archive, myinstaller.php & dummy.php in it.
upload mydummy.zip via Wordpress admin: Plugins->Add New->Upload File. Dont bother activating. Your script and archive are now uploaded to (/maybe-path-to) /wp-content/plugins/mydummy.
run your script http://example.com/wp-content/plugins/mydummy/myinstaller.php JOB DONE
delete plugin, scripts and archive: via Wordpress admin: Plugins find "mydummy" and click its delete link
File perms shouldn't be a problem (I assume server will ensure files are 644 by default etc) the owner will obviously be the same as Wordpress - this should not be a problem for browser access.
Edit:
A common response to Wordpress.com questions is to advise contacting their support; and on a paid plan I would hope you get better answers from them than here. My knowledge of this host is near zero - I vaguely recollect its sites use a restricted variant of Wordpress and that on some(?) plans only specified plugins can be used.
You will need to build it as a WordPress plugin. Otherwise, it won't
work inside WordPress.com's structure.
If they mean the upload will only take place if there is a functioning plugin then try replacing the empty dummy plugin in my first answer with this:
<?php
/* Plugin Name: mydummy
Plugin URI: http://example.com
Description: do nothing plugin
Author: me
Version: 1.0.0
Author URI: http://example.com/
*/
$donothing = 0;
?>:
However; if they mean scripts will only execute if called by "Wordpress" you need to add extract code to plugin but ensure extract only occurs once not every time someone visits the site. In plugin, replace $donothing = 0 with:
function site_perm_function() {
// your code to create html string of dirs (e.g. root and current) + their permissions
// return permission string
}
add_shortcode( 'display_my_site_perms', 'site_perm_function' );
function install_function() {
// your code from myinstaller.php above with code to build message string from statement errors/results
// return message string
}
add_shortcode( 'myinstaller', 'install_function' );
Create a new zip and try installing and ACTIVATING plugin and. If OK:
Open the post editor to create a dummy post.
In the post editor insert the shortcode [display_my_site_perms] then preview the post - this should display permissions.
If permissions look OK for unarchiving then add shortcode [myinstaller] to the post and preview again - this should do the install.
Hopefully it will work, but not tested and I have zero knowledge of Wordpress.com.
In my projects, there are many links of forms, certificates. If suppose client want to migrate the project from one domain to another, automatically links should be updated. For that purpose, I have used Insert php plugin in wordpress. Also I have activated that plugin as per the given instructions. Unfortunately shortcode is also displaying in frontend. How should i get homeurl in frontend using this plugin.
Please don't use this plugin. I think enabling PHP in WordPress content is a high security risk. If the only thing you need is the home url, we you don't user relative paths? Then you are using always the right URL.
If that is not an option, consider creating a shortcode for replacing it with the home url.
//[home_url]
function home_url_shortcode( $atts ){
return home_url();
}
add_shortcode( 'home_url', 'home_url_shortcode' );
Place this in your themes functions.php and use it with [home_url]
Besides the solution of the above. If you migrate a WordPress project you should run a search/replace on the database for the old and the new domain. WordPress uses the full domain on multiple occasions. So this is not a solid solution.
https://wordpress.org/plugins/wp-migrate-db/
https://deliciousbrains.com/wp-migrate-db-pro/
I am trying to access a plugin file directly in the browser, so i can run a cron.
When i go to the correct url, i am getting a page not found error.
Does wordpress by default prevent you from accessing this directly? Is it maybe something to do with the .htaccess, or should i be able to view this directly?
I am trying to access the file located like this (just an example):
http://mywebsite.com/wp-content/plugins/askimet/askimet.php
Any help would be greatly appreciated!
WordPress does not prevent you from accessing PHP files directly. However, the PHP files themselves usually do. This basically makes sure WordPress is loaded.
In your example, akismet.php has the following
// Make sure we don't expose any info if called directly
if ( !function_exists( 'add_action' ) ) {
echo 'Hi there! I\'m just a plugin, not much I can do when called directly.';
exit;
}
You probably do want WordPress to be loaded for your plugin, though.
Instead, you need to make your plugin know of a URL construct which you can detect and intercept. For example, say you visit the page example.org/?my-plugin-action. Your plugin should check for this on normal page requests (such as init or template_redirect) and if it is found, call your PHP script, then call exit; so WordPress does not try to load a page.
function my_plugin_action() {
if ( !isset($_GET['my-plugin-action']) ) return;
echo 'Run cron task here.';
exit;
}
add_action( 'init', 'my_plugin_action' );
To recap: Don't call your plugin directly. Make a URL that displays your content, then exit the script before WordPress tries to display the default page.
There is no such restriction by default in WordPress. You can access a file directly in WordPress if you want to.
See if the file code contains something like below -
if ( ! defined( 'ABSPATH' ) )
//some action if accessed directly
Otherwise, check back the URL and make sure your path is correct.
One more thing, if you will access the plugin file directly and it contains any WordPress core function, it will give error since in that case, WordPress core doesn't get loaded.
However, there are some non recommended ways to load WordPress core.