WordPress Archives | Page 6 of 11 | portalZINE NMN

25. June 2015

WPLMS – secure translation files from updates / using Poedit

WPLMS is a Learning Management System for WordPress. Translation files in WPLMS are located in

/wp-content/themes/wplms/languages/
/wp-content/plugins/vibe-course-module/languages/
/wp-content/plugins/vibe-customtypes/languages/
/wp-content/plugins/vibe-shortcodes/languages/
/wp-content/plugins/wplms-assignments/languages/
/wp-content/plugins/wplms-dashboard/languages/
/wp-content/plugins/wplms-events/languages/
/wp-content/plugins/wplms-front-end/languages/

These language files will be overwritten with new files on every update, destroying any custom translation changes.

THE THEME

Move your theme into a child theme and translate your theme there (/wp-content/themes/your-child-theme/languages/).

Make sure that language files are loaded from your child theme. Add the following action to your functions.php and use “vibe” as the domain, not the actual theme name.

add_action( 'after_setup_theme', 'my_child_theme_setup' );

function my_child_theme_setup() {
 load_child_theme_textdomain( 'vibe', get_stylesheet_directory() . "/languages" );
}

add_action( 'after_setup_theme', 'my_child_theme_setup' );

function my_child_theme_setup() {

load_child_theme_textdomain( 'vibe', get_stylesheet_directory() . "/languages" );

}

THE PLUGINS

Use the global language folder for the WPLMS plugin translations. The WPLMS plugin loader checks, if a global language file actually exists :)

 if ( file_exists( $mofile_global ) ) {
        load_textdomain( 'vibe', $mofile_global );
    } else {
        load_textdomain( 'vibe', $mofile_local );
    }

if ( file_exists( $mofile_global ) ) {

load_textdomain( 'vibe', $mofile_global );

} else {

load_textdomain( 'vibe', $mofile_local );

}

/wp-content/languages/plugins/vibe-de_DE.mo
/wp-content/languages/plugins/vibe-customtypes-de_DE.mo
/wp-content/languages/plugins/wplms-assignments-de_DE.mo
/wp-content/languages/plugins/wplms-dashboard-de_DE.mo
/wp-content/languages/plugins/wplms-events-de_DE.mo
/wp-content/languages/plugins/wplms-front-end-de_DE.mo
+++

POEDIT

I suggest using Poedit, as it allows you to do the translation on the Desktop. It also offers options to update your file with an updated WPLMS language file, allowing you to add new translation strings if needed :)

PREPARE

A. Create the structure for the update and download new PO files from WPLMS

/wp-content/themes/wplms/languages/
/wp-content/plugins/vibe-course-module/languages/
/wp-content/plugins/vibe-customtypes/languages/
/wp-content/plugins/vibe-shortcodes/languages/
/wp-content/plugins/wplms-assignments/languages/
/wp-content/plugins/wplms-dashboard/languages/
/wp-content/plugins/wplms-events/languages/
/wp-content/plugins/wplms-front-end/languages/

B. The target structure / your current language files

/wp-content/themes/your-child-theme/languages/de_DE.mo /.po
/wp-content/languages/plugins/vibe-de_DE.mo /.po
/wp-content/languages/plugins/vibe-customtypes-de_DE.mo /.po
/wp-content/languages/plugins/wplms-assignments-de_DE.mo /.po
/wp-content/languages/plugins/wplms-dashboard-de_DE.mo /.po
/wp-content/languages/plugins/wplms-events-de_DE.mo /.po
/wp-content/languages/plugins/wplms-front-end-de_DE.mo /.po
+++

C. Open your current .PO file from target structure

D. Update with new and matching .PO file from A. (Catalog -> Update from POT file)

This will check for new or obsolete strings and update your language file.

E. New strings added

F. Obsolete strings removed

G. Save and upload updated .PO + .MO files from target structure to server.

Again, make sure to use the global language folder and the child theme languages folder !

Panic time after updates is over :)

Enjoy coding ….

18. June 2015

Regular Expression with TWIG / Timber to check for sticky post

TWIG allows you to use regular expressions within its templates, this makes it possible to easily check if a post is sticky in Timber for WordPress.

TWIG MATCHES OPERATOR

Comparisons in TWIG

{% if findme matches '/^[\\d\\.]+$/' %}
{% endif %}

1 2	{% if findme matches '/^[\\d\\.]+$/' %} {% endif %}

TIMBER TEASE-POST.TWIG

This is the template that is called within the loop on the index.twig to show each post.

{% extends "tease.twig" %}
{% block content %}
<div class="{% if post.class matches '/sticky/' %}col-md-12{% else %}col-md-6{% endif %}">
 <!--Your content -->
</div>
{% endblock %}

{% extends "tease.twig" %}

{% block content %}

</div>

{% endblock %}

The post.class holds the full set of classes assigned to a post, which includes the class “sticky”. We do the match magic and you can use that to style your sticky posts differently ;)

WHAT IS TIMBER?

“Timber helps you create fully-customized WordPress themes faster with more sustainable code. With Timber, you write your HTML using the Twig Template Engine separate from your PHP files.

This cleans-up your theme code so, for example, your php file can focus on being the data/logic, while your twig file can focus 100% on the HTML and display.”

WHAT IS TWIG?

Twig is a modern template engine for PHP

Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum.
Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a template language for applications where users may modify the template design.
Flexible: Twig is powered by a flexible lexer and parser. This allows the developer to define its own custom tags and filters, and create its own DSL.

Enjoy coding …

9. June 2015

Saving files in WordPress using the Filesystem_API

When building plugins or addons, sometimes we need to save custom files within WordPress.

These can be custom JavaScript or CSS files that a user edited and are loaded to override core functionality.

In most cases inline styles and scripts are an option, but not always the most elegant way. Everyone has to decide that for themselves. (wp_add_inline_style) Not talking about performance between inline and external files here :)

Another option is the wp_head action:

add_action('wp_head','hook_css');

function hook_css(){
$output="<style> .wp_head_example { background-color : #f1f1f1; } </style>";
echo $output;
}

add_action('wp_head','hook_css');

function hook_css(){

$output="<style> .wp_head_example { background-color : #f1f1f1; } </style>";

echo $output;

}

WHERE

Many ask where can or should I save files created within a plugin.

In the plugin folder ? Bad idea, as that folder will be deleted on each upgrade of the plugin.
In a separate plugin, just for those extra files. That is an option, but many webmasters prevent writing to any other folder than the upload folder. Also adding a blank plugin to just add upload folders is not really optimal.
In the upload folder itself. Just like the name says, its the main folder to upload files to!

SECURITY

When dealing with file creation and uploads, security is always important. That relates to any other platform doing similar operations. A folder created within a plugin directory is not less or more secure than a folder created in the upload directory.

Its important to have the correct file and folder permissions set:

Files should have permissions not higher than 664 (start at 644)
Directories should have permissions not higher than 755 (start at 744) Try what works. The lower the more secure :)

There is a detailed article about permissions over at WordPress as well.

When it comes to creating files in PHP the term cross-site-scripting often comes up. When the system creates a file it is owned by the webserver and on a shared hosting account those files could be altered by another user on the same webserver. This could allow them to inject malicious code and compromise your sever.

That is why the WP_Filesystem was created, to make things more secure and make sure that the owner of files is correct.

CREATING FILES

WordPress provides a nice clean interface to create folders and save files to the upload folder. Here a simple example from one of my current projects.

Prepare the filesystem

require_once( ABSPATH . 'wp-admin/includes/file.php' );
global $wp_filesystem;

1 2	require_once( ABSPATH . 'wp-admin/includes/file.php' ); global $wp_filesystem;

Get upload dir information and prepare directory to save to

$upload_dir = wp_upload_dir();

$dir = trailingslashit( $upload_dir['basedir'] ) . 'your folder/';

$upload_dir = wp_upload_dir();

$dir = trailingslashit( $upload_dir['basedir'] ) . 'your folder/';

Check if file exists, create folder, delete similar and save.
In my case I am adding a custom key and the page id to the file.

$key = md5($js);

if (!is_file($dir."/subfolder/yourfile_" . get_the_ID() . "_" . $key . ".js")) {				
    
    WP_Filesystem(); 
    // Create main folder within upload if not exist
    if(!$wp_filesystem->is_dir($dir) )
    {
        $wp_filesystem->mkdir( $dir ); 
    }
    // Create a subfolder in my new folder if not exist
    if(!$wp_filesystem->is_dir($dir."/subfolder") )
    {
        $wp_filesystem->mkdir( $dir."/subfolder" ); 
    }
    // Delete similar files, might not apply to you
     foreach (glob($dir . "/subfolder/yourfile_" . get_the_ID() . "_*.*") as $filename) {
        unlink($filename);
    }   
    // Save file and set permission to 0644
    $wp_filesystem->put_contents( $dir."/subfolder/yourfile_" . get_the_ID() . "_" . $key . ".js", $js, 0644 ); 
    
}

$key = md5($js);

if (!is_file($dir."/subfolder/yourfile_" . get_the_ID() . "_" . $key . ".js")) {

WP_Filesystem();

// Create main folder within upload if not exist

if(!$wp_filesystem->is_dir($dir) )

{

$wp_filesystem->mkdir( $dir );

}

// Create a subfolder in my new folder if not exist

if(!$wp_filesystem->is_dir($dir."/subfolder") )

{

$wp_filesystem->mkdir( $dir."/subfolder" );

}

// Delete similar files, might not apply to you

foreach (glob($dir . "/subfolder/yourfile_" . get_the_ID() . "_*.*") as $filename) {

unlink($filename);

}

// Save file and set permission to 0644

$wp_filesystem->put_contents( $dir."/subfolder/yourfile_" . get_the_ID() . "_" . $key . ".js", $js, 0644 );

}

If the direct way is not possible, you can also use or force the FTP approach
(request_filesystem_credentials).

This will check for the ftp credentials and request them with a form if needed.

if ( ! WP_Filesystem($creds) ) {
      request_filesystem_credentials($url, $method, true, false, $form_fields);
    return true;
}

if ( ! WP_Filesystem($creds) ) {

request_filesystem_credentials($url, $method, true, false, $form_fields);

return true;

}

This is just a very rough outline of how to do it, but should get you started.

Enjoy coding …

9. June 2015

Your own custom maintenance mode for WordPress

The custom maintenance mode message in WordPress, during upgrades and installs, is far from beautiful :) Time to change that!

You can do your own page by adding a pure PHP maintenance.php into your /wp-content folder.

Now go and build a nice page !

<?php
function site_protocol() {
    if(isset($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] == 'on' || $_SERVER['HTTPS'] == 1) || isset($_SERVER['HTTP_X_FORWARDED_PROTO']) &&  $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https')  return $protocol = 'https://'; else return $protocol = 'http://';
}
/* Redirect if no maintenance */
if(!file_exists(realpath ($_SERVER['DOCUMENT_ROOT'] )."/.maintenance")){
	header("location: ".site_protocol().$_SERVER['HTTP_HOST']);
	exit;
}
$protocol = $_SERVER["SERVER_PROTOCOL"];
if ( 'HTTP/1.1' != $protocol && 'HTTP/1.0' != $protocol )
        $protocol = 'HTTP/1.0';
header( "$protocol 503 Service Unavailable", true, 503 );
header( 'Content-Type: text/html; charset=utf-8' );
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <title>Maintenance</title> 
</head>
<body>
    <h1>Do some magic</h1>
</body>
</html>
<?php die(); ?>

<?php

function site_protocol() {

if(isset($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] == 'on' || $_SERVER['HTTPS'] == 1) || isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https') return $protocol = 'https://'; else return $protocol = 'http://';

}

/* Redirect if no maintenance */

if(!file_exists(realpath ($_SERVER['DOCUMENT_ROOT'] )."/.maintenance")){

header("location: ".site_protocol().$_SERVER['HTTP_HOST']);

exit;

}

$protocol = $_SERVER["SERVER_PROTOCOL"];

if ( 'HTTP/1.1' != $protocol && 'HTTP/1.0' != $protocol )

$protocol = 'HTTP/1.0';

header( "$protocol 503 Service Unavailable", true, 503 );

header( 'Content-Type: text/html; charset=utf-8' );

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<head>

<title>Maintenance</title>

</head>

<body>

<h1>Do some magic</h1>

</body>

</html>

<?php die(); ?>

Just remember that during maintenance no WordPress functionality is available!

Enjoy coding …

8. June 2015

Override WPLMS author-course.php / author.php in child theme

The files author-course.php and author.php can not be overwritten in a WPLMS child theme directly. The only way is to override the filter in the child theme functions.php:

add_filter( 'template_include', 'override_check_instructing_courses_endpoint',99);

function override_check_instructing_courses_endpoint($template){
  if(!is_author())
    return $template;
  global $wp_query;
  $instructing_courses=apply_filters('wplms_instructing_courses_endpoint','instructing-courses');
  if ( !isset( $wp_query->query_vars[$instructing_courses] ) ){
     $wp_query->set( 'post_type', array('post') );
     return get_stylesheet_directory().'author.php';
  }else{
  
    $wp_query->set( 'post_type', array('course') );
    return get_stylesheet_directory().'author-course.php';
  }
}

add_filter( 'template_include', 'override_check_instructing_courses_endpoint',99);

function override_check_instructing_courses_endpoint($template){

if(!is_author())

return $template;

global $wp_query;

$instructing_courses=apply_filters('wplms_instructing_courses_endpoint','instructing-courses');

if ( !isset( $wp_query->query_vars[$instructing_courses] ) ){

$wp_query->set( 'post_type', array('post') );

return get_stylesheet_directory().'author.php';

}else{

$wp_query->set( 'post_type', array('course') );

return get_stylesheet_directory().'author-course.php';

}

“WPLMS is a Learning Management System for WordPress. It is an e-learning WordPress theme for course management, instructor and student management using which you can create and sell your courses online. “

4. June 2015

Visual Composer – Fixing icon bleeding to child elements in admin

When mapping shortcodes using vc_map, you can assign icons to your new Visual Composer element.

If you created a container element, that wraps around other elements, the child element icon will currently be overwritten with the parent icon. A fix is apparently on its way :)

Currently the only way is to skip the icon option completely and use pure CSS for that.

You can enqueue a CSSs file for the admin through a vc_map option “admin_enqueue_css“.

.wpb_vc_your_element > .wpb_element_wrapper > .wpb_element_title i, 
#vc_your_element i.vc_element-icon {
	background-position: 0 0;
	background-image: url(/path_to_images/vc_your_element.png)!important;
	-webkit-background-size: contain;
	-moz-background-size: contain;
	-ms-background-size: contain;
	-o-background-size: contain;
	background-size: contain;
}

.wpb_vc_your_element > .wpb_element_wrapper > .wpb_element_title i,

#vc_your_element i.vc_element-icon {

background-position: 0 0;

background-image: url(/path_to_images/vc_your_element.png)!important;

-webkit-background-size: contain;

-moz-background-size: contain;

-ms-background-size: contain;

-o-background-size: contain;

background-size: contain;

}

The CSS targets the icon of the displayed element in the editor and the icon when adding new elements to the layout.

Enjoy coding …

3. June 2015

Fullpage.js Addon for Visual Composer – Video Preview (Update 07.03.2016)

This video should give you a good idea what the addon can actually do.

In my last article I gave you a rough overview of the features & requirements. Here some more details and additions:

Added the fixed header & footer container to the admin interface. You can add special padding, to the top and bottom, through the fullpage settings and make room for them. These are standard content containers, that can hold any Visual Composer content or row setup.
Added automatic menu, which adds links to each section as they are created. Link title matches the section title.
Define section and slide anchors, which are reflected in the browser history.
Sections and Slides can have different backgrounds, providing nice effect options. I added an image background to Section 1 and semi-transparent background colors to the Slides.
Fullpage.js configuration is fully integrated and working. The system sets defaults for a quick start.
Fullpage.js CSS override has been added, but is not complete yet. Added code editor.
Fullpage.js Events have been added and are fully functional. These events are triggered after load, after slide load, after leaving a slide and other events.
iScroll can be seen in Section 2. Added resize handling and configuration options. Still need to do some minor tweaks.
iScroll custom scrollbars are on my list, but not sure I will add these yet.
Prebuild Templates will be added, so that you can quickstart your design. Visual Composer 4.5+ provides some nice new options.
Visual Composer requirement will be 4.5+.
The admin provides a nice color separation for all components and count for slides & sections.

The addon is mostly done. I am finalizing the main admin area this week and will do a final cleanup next week, for the first beta release.

Many people have asked me for a release date. I currently plan to have a fully working Beta in the next 2-3 weeks. Will offer the Addon to a small closed group of customers first, before I think about other release options. I think I will offer between 20-30 slots for the beta run. If you are interested let me know.

Regards
Alexander

Updates

Quickly choose which section / slide to load, when the page is opened.
The addon is injecting its own page template, to make sure that the main container is clear of any theme related margins or padding. As soon as the Fullpage container is added to the layout, the template gets selected dynamically.
21.06.2015 – updating to latest fullPage.js version (2.6.6) and adding new options and changes
13.08.2015
– beta has been delayed due to my vacation & an accident I am recovering from. This is still just a side project ;)
– updating to latest fullPage.js version and adding new options to admin
– updating to latest Visual Composer version
03.09.2015
– moving to Visual Composer 4.7
– finalizing the admin area
14.01.2016
– moving to Visual Composer 4.9x
– fullpage.js version update
– iScroll update
– admin /front-end cleanup … getting close :)
17.02.2016
– works pretty flawless by now
– plugins are updated
– admin complete, working on some minor cosmetics
– not sure yet about distribution :) … my current projects come first!
07.03.2016
– adding version / requirement checks for all linked libs
– moved to VisualComposer 4.10
– fullPage.js version bumped to 2.7.8
– final cleanup of all areas on the way

28. May 2015

Fullpage.js Addon for Visual Composer – Admin Preview

Update: Video Preview

I am still busy finalizing the Fullpage.js Addon for Visual Composer. Hope to have some more images or even a video next week :)

Some requirements for the Visual Composer Addon:

PHP 5.4+, as I am using traits and advanced autoloading.
Timber (TWIG for WordPress), for current and future templating. Currently mostly used for the main administration of the core module handler.
iScroller for overflowing content (will be part of the package)
Otherwise the default Fullpage.js restrictions apply

The Addon will ease Fullpage.js integration immensely, but for a more advanced integration some CSS / JavaScript knowledge will always be needed. Do checkout the main Fullpage.js documentation for more information.

: Arrange sections & slides, numbering updates

: Configuration (almost there)

: Custom CSS (override default). I will also add an option for all JS events

: Sections (basic options)

: Slides (basic options)

22. May 2015

Remove WordPress CSS / JS / Fonts website clutter

WordPress is fun, but many of my clients take the plugin fun to new levels :)

Depending on how well plugins / shortcodes have been integrated, linked JavaScript & CSS files can clutter up your pages really fast.

The problem is that many plugins do not load external files on demand. Same applies for WebFonts that have been added to the system.

THE HUNT

Its no fun hunting down all those resources and slim down pages manually, but sometimes there is no way around it.

In WordPress CSS & JavaScript files are enqueued by plugins / themes.

THE QUEUE

CSS / JavaScript

wp_enqueue_style(
    'my-extension',
    get_template_directory_uri() . '/css/my-extension.css',
    array( 'bootstrap' ),// an array of dependent styles   
    '1.2', // version number
    'screen', // CSS media type
);

wp_enqueue_style(

'my-extension',

get_template_directory_uri() . '/css/my-extension.css',

array( 'bootstrap' ),// an array of dependent styles

'1.2', // version number

'screen', // CSS media type

);

wp_enqueue_script( 'my-extension-script', 
get_template_directory_uri() . '/js/my-extension.js', 
array(), // Scripts your extension depends on
'1.0.0', 
true // Place in footer 
);

wp_enqueue_script( 'my-extension-script',

get_template_directory_uri() . '/js/my-extension.js',

array(), // Scripts your extension depends on

'1.0.0',

true // Place in footer

);

CLEANUP

To remove files from pages you need to unregister (CSS / JavaScript) those files using their specific handle. This also allows you to replace a specific file with your own version.

wp_deregister_style( 'my-extension' );

wp_deregister_script( 'my-extension-script' );

wp_deregister_style( 'my-extension' );

wp_deregister_script( 'my-extension-script' );

DO YOU HAVE A NAME?

The big problem is finding the names of the enqueued files, their handles. They are often hidden deep in the plugins. But if they are registered somewhere, you should be able to find them somewhere :)

global $wp_styles;
print_r($wp_styles);

1 2	global $wp_styles; print_r($wp_styles);

Add this to your functions.php and you will get a nice overview of all the styles and their handles registered. You can do the same for the registered scripts.

global $wp_scripts;
print_r($wp_scripts)

1 2	global $wp_scripts; print_r($wp_scripts)

This will get you an overview of all the registered files. Now its only a matter of doing the unregister operation with some simple WordPress conditional logic.

add_action( 'some-extension', 'some_mextension', 100 );
function my_extension() {
if ( !is_page('Home') ) {
wp_deregister_script( 'some-extension' );
}
}

add_action( 'some-extension', 'some_mextension', 100 );

function my_extension() {

if ( !is_page('Home') ) {

wp_deregister_script( 'some-extension' );

}

IS THERE A PLUGIN FOR THAT?

Yes there is and it is called “Asset Queue Manager” …

“This tool allows you to monitor, dequeue and requeue scripts and styles that are enqueued on your site. It is designed for frontend performance engineers who want to view and manage all assets enqueued on any page and control the minification and concatenation themselves.”

BREAKING STUFF

Messing with styles can be ugly, but often wont break things completely. Messing with JavaScript includes can cripple a setup badly. So you should be really sure which scripts / styles can be deactivated on specific pages. Please do not experiment on a live website … I warned you ! :)

… enjoy coding

20. May 2015

WordPress as a development platform & the JSON evolution

Many developers hesitate to call WordPress a PHP development platform. I know what I am talking about, as I developed a platform of my own. PHP platforms normally only provide a skeleton and we need to

Decide on a database schema
Create the database
Setup backends and dashboards
Design the presentation layer
Implement user-level authentication and similar

THE FRONTEND EXPERIENCE

With WordPress you get most of this out-of-the-box, with some predefined structures.

Having a flexible administration backend in place makes it easy to concentrate on the things that matter for a project, which is designing a frontend experience.

JSON MATTERS

And especially with the JSON REST API finding its way into the core slowly, you are completely free when it comes to using the stored data in your frontend designs.

Sure that was possible before, just with some more work on our side ;)

But WordPress embracing the “freeing of data” through JSON, shows us where the ride is going.

THE NEW SINGLE APP UNIVERSE

There has not been a single project of mine in the past year, that has not used the REST API in some way. And all of this fits perfectly into the new single page app universe.

WordPress interfaces with your javascript framework setup (client side templating, DOM manipulation, data binding, routing …) and frees you from any design handcuffs.

It has become much easier and faster over the past 2 years to say “YES” to many of my clients wishes.

Its nice to finally see data flow from the server to the client and back that easily.

If you are not exited about this … I am :)

THE THEME

THE PLUGINS

POEDIT

PREPARE

Enjoy coding ….

TWIG MATCHES OPERATOR

TIMBER TEASE-POST.TWIG

WHAT IS TIMBER?

WHAT IS TWIG?

Enjoy coding …

WHERE

SECURITY

CREATING FILES

Enjoy coding …

Enjoy coding …

Enjoy coding …

Updates

THE HUNT

THE QUEUE

CLEANUP

DO YOU HAVE A NAME?

IS THERE A PLUGIN FOR THAT?

BREAKING STUFF

… enjoy coding

THE FRONTEND EXPERIENCE

JSON MATTERS

THE NEW SINGLE APP UNIVERSE

…enjoy coding