enmi-conf.org: wp/wp-admin/authorize-application.php@48c4eec2b7e6 (annotated)

18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	2	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	3	* Authorize Application Screen
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	4	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	5	* @package WordPress
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	6	* @subpackage Administration
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	7	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	8
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	9	/** WordPress Administration Bootstrap */
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	10	require_once __DIR__ . '/admin.php';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	11
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	12	$error = null;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	13	$new_password = '';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	14
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	15	// This is the no-js fallback script. Generally this will all be handled by `auth-app.js`.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	16	if ( isset( $_POST['action'] ) && 'authorize_application_password' === $_POST['action'] ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	17	check_admin_referer( 'authorize_application_password' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	18
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	19	$success_url = $_POST['success_url'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	20	$reject_url = $_POST['reject_url'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	21	$app_name = $_POST['app_name'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	22	$app_id = $_POST['app_id'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	23	$redirect = '';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	24
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	25	if ( isset( $_POST['reject'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	26	if ( $reject_url ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	27	$redirect = $reject_url;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	28	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	29	$redirect = admin_url();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	30	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	31	} elseif ( isset( $_POST['approve'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	32	$created = WP_Application_Passwords::create_new_application_password(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	33	get_current_user_id(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	34	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	35	'name' => $app_name,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	36	'app_id' => $app_id,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	37	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	38	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	39
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	40	if ( is_wp_error( $created ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	41	$error = $created;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	42	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	43	list( $new_password ) = $created;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	44
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	45	if ( $success_url ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	46	$redirect = add_query_arg(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	47	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	48	'site_url' => urlencode( site_url() ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	49	'user_login' => urlencode( wp_get_current_user()->user_login ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	50	'password' => urlencode( $new_password ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	51	),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	52	$success_url
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	53	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	54	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	55	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	56	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	57
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	58	if ( $redirect ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	59	// Explicitly not using wp_safe_redirect b/c sends to arbitrary domain.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	60	wp_redirect( $redirect );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	61	exit;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	62	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	63	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	64
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	65	// Used in the HTML title tag.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	66	$title = __( 'Authorize Application' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	67
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	68	$app_name = ! empty( $_REQUEST['app_name'] ) ? $_REQUEST['app_name'] : '';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	69	$app_id = ! empty( $_REQUEST['app_id'] ) ? $_REQUEST['app_id'] : '';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	70	$success_url = ! empty( $_REQUEST['success_url'] ) ? $_REQUEST['success_url'] : null;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	71
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	72	if ( ! empty( $_REQUEST['reject_url'] ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	73	$reject_url = $_REQUEST['reject_url'];
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	74	} elseif ( $success_url ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	75	$reject_url = add_query_arg( 'success', 'false', $success_url );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	76	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	77	$reject_url = null;
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	78	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	79
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	80	$user = wp_get_current_user();
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	81
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	82	$request = compact( 'app_name', 'app_id', 'success_url', 'reject_url' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	83	$is_valid = wp_is_authorize_application_password_request_valid( $request, $user );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	84
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	85	if ( is_wp_error( $is_valid ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	86	wp_die(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	87	__( 'The Authorize Application request is not allowed.' ) . ' ' . implode( ' ', $is_valid->get_error_messages() ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	88	__( 'Cannot Authorize Application' )
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	89	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	90	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	91
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	92	if ( wp_is_site_protected_by_basic_auth( 'front' ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	93	wp_die(
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	94	__( 'Your website appears to use Basic Authentication, which is not currently compatible with application passwords.' ),
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	95	__( 'Cannot Authorize Application' ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	96	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	97	'response' => 501,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	98	'link_text' => __( 'Go Back' ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	99	'link_url' => $reject_url ? add_query_arg( 'error', 'disabled', $reject_url ) : admin_url(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	100	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	101	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	102	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	103
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	104	if ( ! wp_is_application_passwords_available_for_user( $user ) ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	105	if ( wp_is_application_passwords_available() ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	106	$message = __( 'Application passwords are not available for your account. Please contact the site administrator for assistance.' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	107	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	108	$message = __( 'Application passwords are not available.' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	109	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	110
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	111	wp_die(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	112	$message,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	113	__( 'Cannot Authorize Application' ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	114	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	115	'response' => 501,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	116	'link_text' => __( 'Go Back' ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	117	'link_url' => $reject_url ? add_query_arg( 'error', 'disabled', $reject_url ) : admin_url(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	118	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	119	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	120	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	121
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	122	wp_enqueue_script( 'auth-app' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	123	wp_localize_script(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	124	'auth-app',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	125	'authApp',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	126	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	127	'site_url' => site_url(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	128	'user_login' => $user->user_login,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	129	'success' => $success_url,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	130	'reject' => $reject_url ? $reject_url : admin_url(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	131	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	132	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	133
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	134	require_once ABSPATH . 'wp-admin/admin-header.php';
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	135
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	136	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	137	<div class="wrap">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	138	<h1><?php echo esc_html( $title ); ?></h1>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	139
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	140	<?php
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	141	if ( is_wp_error( $error ) ) {
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	142	wp_admin_notice(
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	143	$error->get_error_message(),
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	144	array(
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	145	'type' => 'error',
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	146	)
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	147	);
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	148	}
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	149	?>
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	150
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	151	<div class="card auth-app-card">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	152	<h2 class="title"><?php _e( 'An application would like to connect to your account.' ); ?></h2>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	153	<?php if ( $app_name ) : ?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	154	<p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	155	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	156	printf(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	157	/* translators: %s: Application name. */
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	158	__( 'Would you like to give the application identifying itself as %s access to your account? You should only do this if you trust the application in question.' ),
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	159	'<strong>' . esc_html( $app_name ) . '</strong>'
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	160	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	161	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	162	</p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	163	<?php else : ?>
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	164	<p><?php _e( 'Would you like to give this application access to your account? You should only do this if you trust the application in question.' ); ?></p>
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	165	<?php endif; ?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	166
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	167	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	168	if ( is_multisite() ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	169	$blogs = get_blogs_of_user( $user->ID, true );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	170	$blogs_count = count( $blogs );
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	171
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	172	if ( $blogs_count > 1 ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	173	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	174	<p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	175	<?php
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	176	/* translators: 1: URL to my-sites.php, 2: Number of sites the user has. */
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	177	$message = _n(
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	178	'This will grant access to <a href="%1$s">the %2$s site in this installation that you have permissions on</a>.',
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	179	'This will grant access to <a href="%1$s">all %2$s sites in this installation that you have permissions on</a>.',
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	180	$blogs_count
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	181	);
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	182
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	183	if ( is_super_admin() ) {
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	184	/* translators: 1: URL to my-sites.php, 2: Number of sites the user has. */
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	185	$message = _n(
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	186	'This will grant access to <a href="%1$s">the %2$s site on the network as you have Super Admin rights</a>.',
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	187	'This will grant access to <a href="%1$s">all %2$s sites on the network as you have Super Admin rights</a>.',
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	188	$blogs_count
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	189	);
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	190	}
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	191
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	192	printf(
3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	193	$message,
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	194	admin_url( 'my-sites.php' ),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	195	number_format_i18n( $blogs_count )
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	196	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	197	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	198	</p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	199	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	200	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	201	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	202	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	203
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	204	<?php
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	205	if ( $new_password ) :
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	206	$message = '<p class="application-password-display">
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	207	<label for="new-application-password-value">' . sprintf(
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	208	/* translators: %s: Application name. */
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	209	esc_html__( 'Your new password for %s is:' ),
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	210	'<strong>' . esc_html( $app_name ) . '</strong>'
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	211	) . '
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	212	</label>
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	213	<input id="new-application-password-value" type="text" class="code" readonly="readonly" value="' . esc_attr( WP_Application_Passwords::chunk_password( $new_password ) ) . '" />
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	214	</p>
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	215	<p>' . __( 'Be sure to save this in a safe location. You will not be able to retrieve it.' ) . '</p>';
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	216	$args = array(
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	217	'type' => 'success',
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	218	'additional_classes' => array( 'notice-alt', 'below-h2' ),
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	219	'paragraph_wrap' => false,
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	220	);
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	221	wp_admin_notice( $message, $args );
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	222
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	223	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	224	* Fires in the Authorize Application Password new password section in the no-JS version.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	225	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	226	* In most cases, this should be used in combination with the {@see 'wp_application_passwords_approve_app_request_success'}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	227	* action to ensure that both the JS and no-JS variants are handled.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	228	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	229	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	230	* @since 5.6.1 Corrected action name and signature.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	231	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	232	* @param string $new_password The newly generated application password.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	233	* @param array $request The array of request data. All arguments are optional and may be empty.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	234	* @param WP_User $user The user authorizing the application.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	235	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	236	do_action( 'wp_authorize_application_password_form_approved_no_js', $new_password, $request, $user );
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	237	else :
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	238	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	239	<form action="<?php echo esc_url( admin_url( 'authorize-application.php' ) ); ?>" method="post" class="form-wrap">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	240	<?php wp_nonce_field( 'authorize_application_password' ); ?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	241	<input type="hidden" name="action" value="authorize_application_password" />
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	242	<input type="hidden" name="app_id" value="<?php echo esc_attr( $app_id ); ?>" />
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	243	<input type="hidden" name="success_url" value="<?php echo esc_url( $success_url ); ?>" />
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	244	<input type="hidden" name="reject_url" value="<?php echo esc_url( $reject_url ); ?>" />
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	245
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	246	<div class="form-field">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	247	<label for="app_name"><?php _e( 'New Application Password Name' ); ?></label>
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	248	<input type="text" id="app_name" name="app_name" value="<?php echo esc_attr( $app_name ); ?>" required />
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	249	</div>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	250
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	251	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	252	/**
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	253	* Fires in the Authorize Application Password form before the submit buttons.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	254	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	255	* @since 5.6.0
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	256	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	257	* @param array $request {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	258	* The array of request data. All arguments are optional and may be empty.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	259	*
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	260	* @type string $app_name The suggested name of the application.
21 48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	261	* @type string $success_url The URL the user will be redirected to after approving the application.
48c4eec2b7e6 Add CLAUDE.md documentation and sync WordPress core files ymh <ymh.work@gmail.com> parents: 19 diff changeset	262	* @type string $reject_url The URL the user will be redirected to after rejecting the application.
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	263	* }
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	264	* @param WP_User $user The user authorizing the application.
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	265	*/
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	266	do_action( 'wp_authorize_application_password_form', $request, $user );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	267	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	268
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	269	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	270	submit_button(
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	271	__( 'Yes, I approve of this connection' ),
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	272	'primary',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	273	'approve',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	274	false,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	275	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	276	'aria-describedby' => 'description-approve',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	277	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	278	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	279	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	280	<p class="description" id="description-approve">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	281	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	282	if ( $success_url ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	283	printf(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	284	/* translators: %s: The URL the user is being redirected to. */
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	285	__( 'You will be sent to %s' ),
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	286	'<strong><code>' . esc_html(
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	287	add_query_arg(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	288	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	289	'site_url' => site_url(),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	290	'user_login' => $user->user_login,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	291	'password' => '[------]',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	292	),
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	293	$success_url
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	294	)
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	295	) . '</code></strong>'
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	296	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	297	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	298	_e( 'You will be given a password to manually enter into the application in question.' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	299	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	300	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	301	</p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	302
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	303	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	304	submit_button(
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	305	__( 'No, I do not approve of this connection' ),
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	306	'secondary',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	307	'reject',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	308	false,
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	309	array(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	310	'aria-describedby' => 'description-reject',
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	311	)
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	312	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	313	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	314	<p class="description" id="description-reject">
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	315	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	316	if ( $reject_url ) {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	317	printf(
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	318	/* translators: %s: The URL the user is being redirected to. */
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	319	__( 'You will be sent to %s' ),
19 3d72ae0968f4 upgrade wordpress to 6.0.2 ymh <ymh.work@gmail.com> parents: 18 diff changeset	320	'<strong><code>' . esc_html( $reject_url ) . '</code></strong>'
18 be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	321	);
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	322	} else {
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	323	_e( 'You will be returned to the WordPress Dashboard, and no changes will be made.' );
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	324	}
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	325	?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	326	</p>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	327	</form>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	328	<?php endif; ?>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	329	</div>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	330	</div>
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	331	<?php
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	332
be944660c56a Site enmi version 09/2022 ymh <ymh.work@gmail.com> parents: diff changeset	333	require_once ABSPATH . 'wp-admin/admin-footer.php';

author	ymh <ymh.work@gmail.com>
	Fri, 05 Sep 2025 18:40:08 +0200
changeset 21	48c4eec2b7e6
parent 19	3d72ae0968f4
permissions	-rw-r--r--