Issue 1364: Improved "Error isolation" view #1446
Conversation
The design for this is very similar to the error URL index page (Errors by URL, /wp-admin/edit.php...) So use the same template from that page: edit.php.
| add_filter( 'handle_bulk_actions-edit-' . self::POST_TYPE_SLUG, array( __CLASS__, 'handle_bulk_action' ), 10, 3 ); | ||
| add_filter( 'handle_bulk_actions-edit-' . self::POST_TYPE_SLUG, array( | ||
| __CLASS__, | ||
| 'handle_bulk_action', |
There was a problem hiding this comment.
These can be kept on the same line as in the other examples here, no?
| $description = json_decode( $error->description, true ); | ||
| $sanitization = \AMP_Validation_Error_Taxonomy::get_validation_error_sanitization( $description ); | ||
| $status_text = \AMP_Validation_Error_Taxonomy::get_status_text_with_icon( $sanitization['term_status'], $sanitization['forced'] ); | ||
| $error_title = \AMP_Validation_Error_Taxonomy::get_error_title_from_code( $description['code'] ); |
There was a problem hiding this comment.
Good. We need to do more of this. Centralizing how we convert errors into human-readable representations.
| wp_kses_post( $output ) | ||
| ); | ||
|
|
||
| $error_id = sanitize_text_field( wp_unslash( $_GET[ \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ] ) ); // WPCS: CSRF OK. |
There was a problem hiding this comment.
This can be sanitize_key instead of sanitize_text_field, since it is an md5 hash.
| ?> | ||
| <script type="text/javascript"> | ||
| jQuery( document ).ready(function() { | ||
| jQuery( 'h1.wp-heading-inline' ).html( '<?php echo wp_kses_post( $heading ); ?>' ); |
There was a problem hiding this comment.
'<?php echo wp_kses_post( $heading ); ?>' should instead be:
<?php echo wp_json_encode( $heading ); ?>
This will add the quote marks for you and escape at the same time.
| * Bulk Accept Reject Single Error | ||
| * This adds functionality to the single error page where there are two buttons which allow accepting or rejecting an error. | ||
| */ | ||
| public static function bulk_accept_reject_single_error() { |
There was a problem hiding this comment.
I don't think we need this method as we can re-use another. There is already an action for accepting or rejecting a term. For example, the row actions for a term:
Accept: https://src.wordpress-develop.test/wp-admin/edit-tags.php?taxonomy=amp_validation_error&post_type=amp_invalid_url&action=amp_validation_error_accept&term_id=1292&_wpnonce=cac5f31fb4
Reject: https://src.wordpress-develop.test/wp-admin/edit-tags.php?taxonomy=amp_validation_error&post_type=amp_invalid_url&action=amp_validation_error_reject&term_id=1292&_wpnonce=8001418580
Links generated here:
And handled here:
So I suggest adding to handle_validation_error_update whatever is missing, and remove bulk_accept_reject_single_error. There may not be any changes needed because that method already redirects to the referrer.
| * 2. Notice with accept and reject buttons. | ||
| */ | ||
| if ( ! empty( $_GET[ \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ] ) && isset( $_GET['post_type'] ) && self::POST_TYPE_SLUG === $_GET['post_type'] ) { // WPCS: CSRF OK. | ||
| $error_id = sanitize_text_field( wp_unslash( $_GET[ \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ] ) ); // WPCS: CSRF OK. |
There was a problem hiding this comment.
This should be sanitize_key instead, since it is an md5 hash.
| */ | ||
| if ( ! empty( $_GET[ \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ] ) && isset( $_GET['post_type'] ) && self::POST_TYPE_SLUG === $_GET['post_type'] ) { // WPCS: CSRF OK. | ||
| $error_id = sanitize_text_field( wp_unslash( $_GET[ \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ] ) ); // WPCS: CSRF OK. | ||
| $error = get_term_by( 'slug', $error_id, \AMP_Validation_Error_Taxonomy::TAXONOMY_SLUG ); |
| return; | ||
| } | ||
|
|
||
| $description = json_decode( $error->description, true ); |
There was a problem hiding this comment.
| @@ -588,6 +587,7 @@ public static function add_admin_hooks() { | |||
| add_filter( 'posts_where', array( __CLASS__, 'filter_posts_where_for_validation_error_status' ), 10, 2 ); | |||
| add_filter( 'handle_bulk_actions-edit-' . self::TAXONOMY_SLUG, array( __CLASS__, 'handle_validation_error_update' ), 10, 3 ); | |||
| add_action( 'load-edit-tags.php', array( __CLASS__, 'handle_inline_edit_request' ) ); | |||
| add_action( 'parse_query', array( __CLASS__, 'parse_term_php_query' ) ); | |||
There was a problem hiding this comment.
I believe this is dead code.
| @@ -631,6 +631,10 @@ public static function add_admin_hooks() { | |||
|
|
|||
| // Override the columns displayed for the validation error terms. | |||
| add_filter( 'manage_edit-' . self::TAXONOMY_SLUG . '_columns', function( $old_columns ) { | |||
| if ( 'term' === get_current_screen()->base ) { | |||
There was a problem hiding this comment.
I believe this is dead code.
| ); | ||
| ?> | ||
| <script type="text/javascript"> | ||
| jQuery( document ).ready(function() { |
There was a problem hiding this comment.
Not a big deal, but there is a more idiomatic way to write this:
jQuery( function( $ ) {
$( 'h1.wp-heading-inline' ).html( <?php echo wp_json_encode( $heading ); ?> );
} );
|
@jacobschweitzer It's still failing here:
|
* Hide buttons entirely if sanitization is forced. * Use flexbox to lay out the buttons. * Add more information to explain what accept/reject mean.
Fixes #1364.
Details collapsed:
Details expanded: