WordPress-C
/
WordPress
mirror of https://github.com/WordPress/WordPress.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

REST API: Support querying for multiple post statuses. 

Multiple post statuses can be specified by the usual CSV or array-propper format.

Props jnylen0, kadamwhite, websupporter.
Fixes #38420.

Built from https://develop.svn.wordpress.org/trunk@39104


git-svn-id: http://core.svn.wordpress.org/trunk@39046 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
Joe Hoyle 2016-11-03 01:46:29 +00:00
parent 676ae9fc2b
commit 901c4ed17a
4 changed files with 43 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
wp-includes/rest-api/class-wp-rest-server.php
View File

@ -1183,6 +1183,12 @@ class WP_REST_Server {
if ( isset( $opts['description'] ) ) { if ( isset( $opts['description'] ) ) {
$arg_data['description'] = $opts['description']; $arg_data['description'] = $opts['description'];
} }
if ( isset( $opts['type'] ) ) {
$arg_data['type'] = $opts['type'];
}
if ( isset( $opts['items'] ) ) {
$arg_data['items'] = $opts['items'];
}
$endpoint_data['args'][ $key ] = $arg_data; $endpoint_data['args'][ $key ] = $arg_data;
} }
} }

4
wp-includes/rest-api/endpoints/class-wp-rest-attachments-controller.php
View File

@ -30,7 +30,7 @@ class WP_REST_Attachments_Controller extends WP_REST_Posts_Controller {
protected function prepare_items_query( $prepared_args = array(), $request = null ) { protected function prepare_items_query( $prepared_args = array(), $request = null ) {
$query_args = parent::prepare_items_query( $prepared_args, $request ); $query_args = parent::prepare_items_query( $prepared_args, $request );
if ( empty( $query_args['post_status'] ) || ! in_array( $query_args['post_status'], array( 'inherit', 'private', 'trash' ), true ) ) { if ( empty( $query_args['post_status'] ) ) {
$query_args['post_status'] = 'inherit'; $query_args['post_status'] = 'inherit';
} }
@ -586,7 +586,7 @@ class WP_REST_Attachments_Controller extends WP_REST_Posts_Controller {
public function get_collection_params() { public function get_collection_params() {
$params = parent::get_collection_params(); $params = parent::get_collection_params();
$params['status']['default'] = 'inherit'; $params['status']['default'] = 'inherit';
$params['status']['enum'] = array( 'inherit', 'private', 'trash' ); $params['status']['items']['enum'] = array( 'inherit', 'private', 'trash' );
$media_types = $this->get_media_types(); $media_types = $this->get_media_types();
$params['media_type'] = array( $params['media_type'] = array(

52
wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php
View File

@ -2120,11 +2120,13 @@ class WP_REST_Posts_Controller extends WP_REST_Controller {
$params['status'] = array( $params['status'] = array(
'default' => 'publish', 'default' => 'publish',
'description' => __( 'Limit result set to posts assigned a specific status; can be comma-delimited list of status types.' ), 'description' => __( 'Limit result set to posts assigned one or more statuses.' ),
'enum' => array_merge( array_keys( get_post_stati() ), array( 'any' ) ), 'type' => 'array',
'sanitize_callback' => 'sanitize_key', 'items' => array(
'type' => 'string', 'enum' => array_merge( array_keys( get_post_stati() ), array( 'any' ) ),
'validate_callback' => array( $this, 'validate_user_can_query_private_statuses' ), 'type' => 'string',
),
'sanitize_callback' => array( $this, 'sanitize_post_statuses' ),
); );
$taxonomies = wp_list_filter( get_object_taxonomies( $this->post_type, 'objects' ), array( 'show_in_rest' => true ) ); $taxonomies = wp_list_filter( get_object_taxonomies( $this->post_type, 'objects' ), array( 'show_in_rest' => true ) );
@ -2152,27 +2154,41 @@ class WP_REST_Posts_Controller extends WP_REST_Controller {
} }
/** /**
* Validates whether the user can query private statuses. * Sanitizes and validates the list of post statuses, including whether the
* user can query private statuses.
* *
* @since 4.7.0 * @since 4.7.0
* @access public * @access public
* *
* @param mixed $value Post status. * @param string|array $statuses One or more post statuses.
* @param WP_REST_Request $request Full details about the request. * @param WP_REST_Request $request Full details about the request.
* @param string $parameter Additional parameter to pass to validation. * @param string $parameter Additional parameter to pass to validation.
* @return bool|WP_Error Whether the request can query private statuses, otherwise WP_Error object. * @return array|WP_Error A list of valid statuses, otherwise WP_Error object.
*/ */
public function validate_user_can_query_private_statuses( $value, $request, $parameter ) { public function sanitize_post_statuses( $statuses, $request, $parameter ) {
if ( 'publish' === $value ) { $statuses = wp_parse_slug_list( $statuses );
return rest_validate_request_arg( $value, $request, $parameter );
// The default status is different in WP_REST_Attachments_Controller
$attributes = $request->get_attributes();
$default_status = $attributes['args']['status']['default'];
foreach ( $statuses as $status ) {
if ( $status === $default_status ) {
continue;
}
$post_type_obj = get_post_type_object( $this->post_type );
if ( current_user_can( $post_type_obj->cap->edit_posts ) ) {
$result = rest_validate_request_arg( $status, $request, $parameter );
if ( is_wp_error( $result ) ) {
return $result;
}
} else {
return new WP_Error( 'rest_forbidden_status', __( 'Status is forbidden.' ), array( 'status' => rest_authorization_required_code() ) );
}
} }
$post_type_obj = get_post_type_object( $this->post_type ); return $statuses;
if ( current_user_can( $post_type_obj->cap->edit_posts ) ) {
return rest_validate_request_arg( $value, $request, $parameter );
}
return new WP_Error( 'rest_forbidden_status', __( 'Status is forbidden.' ), array( 'status' => rest_authorization_required_code() ) );
} }
} }

2
wp-includes/version.php
View File

@ -4,7 +4,7 @@
* *
* @global string $wp_version * @global string $wp_version
*/ */
$wp_version = '4.7-beta1-39103'; $wp_version = '4.7-beta1-39104';
/** /**
* Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema. * Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.