Commit Graph

320 Commits

Author SHA1 Message Date
Mike Jolley 975f9d8c2d Remove nonce on cancel order URL
Nonces are invalid if the user ID changes during checkout e.g. through
registration. Cancel links are invalid.

cc @claudiosmweb

Fixes #10605
2016-03-30 12:45:25 +01:00
Justin Shreve ffc80ccd15 Start updating some usage, and start implementing the actual CRUD functions, and some new get/setters for username, email, etc. 2016-03-17 09:41:12 -07:00
Claudio Sanches ffd150d4df Coding standards 2016-03-08 15:54:19 -03:00
Justin Shreve 31bae0c19e Hook up the tokenization API to the "add payment method" button in my account settings. 2016-03-01 11:49:41 -08:00
Mike Jolley 8a9060d1c4 Clean/trim values when validating account form
Fixes #10324
2016-02-11 14:21:46 +00:00
Dev49.net c3202298c0 moved actions after order key verification
Use case described in Issue #10276
2016-02-05 19:44:55 +01:00
Dev49.net dcbb17a99d added actions before and after payment
Issue #10276
2016-02-05 01:44:19 +01:00
Mike Jolley 6050b204fc Support qty display in cart messages
Closes #10114
2016-01-20 11:32:49 +00:00
Mike Jolley b5d7f1de10 [2.5] Only show payment method button when needed, and check for required fields
Fixes #10112

@thenbrent @claudiosmweb
2016-01-20 10:47:36 +00:00
Mike Jolley ef98a2d79c Compare type 2015-12-03 10:51:07 +00:00
Claudio Sanches ee30b5b308 Fixed php docs standards 2015-11-03 11:31:20 -02:00
Claudio Sanches 3ab4e76cd0 Replaed old WC_Cart methods to the new functions 2015-10-28 15:56:31 -02:00
Florian Ludwig b549c73dea Fixed bug where customer couldn't log in because of whitespace after mail address 2015-10-20 21:20:50 +02:00
Mike Jolley 277dbeb029 Merge branch 'WPprodigy-patch-2' 2015-10-06 12:33:55 +01:00
Mike Jolley 5ec400e514 Validate terms and conditions and improve templates 2015-10-06 12:33:45 +01:00
Claudio Sanches 605db1cf3a hijax for variations on frontend 2015-09-22 13:22:12 -03:00
Akeda Bagus 82a7c70334 Don't show undo link if removed item product is out of stock. 2015-09-11 15:22:09 +07:00
Mike Jolley 38a5d04c53 woocommerce_save_account_details_required_fields hook
Closes #9056
2015-09-07 15:21:57 +01:00
Kevin Hagerty 164b39ea42 Use the needs_payment function
Instead of checking against a list of valid order statuses, use the needs_payment function which already checks against those statuses
2015-09-05 08:09:47 -04:00
Mike Jolley a07824e8a7 Ensure product exists in add cart handler
Closes #8937
2015-08-24 15:28:57 +01:00
Mike Jolley 170737b4e8 Remove purchasable check completely
Not required as the cart class checks this later on. Was originally
added for #7220. Later changed to support admin buying private products
https://github.com/woothemes/woocommerce/commit/9ed36d4b0104e77ede338862
b67a99d0a243aac8

Fixes #8908
2015-08-20 23:43:39 +01:00
Mike Jolley 80b6c0f541 Refactor add_to_cart_action by splitting product type methods 2015-08-20 23:41:56 +01:00
Mike Jolley 9ed36d4b01 In add_to_cart_action, check is_purchasable rather than post status. 2015-08-20 10:39:38 +01:00
Mike Jolley ad691fe916 save_account_details should check display name of current user.
Fixes #8856
2015-08-17 12:02:16 +01:00
Mike Jolley 060fb16e2e Move Pre 2.4 handling for attributes - DRY
@claudiosmweb @franticpsyx
2015-07-28 16:20:51 +01:00
Mike Jolley 8bf4469178 woocommerce_save_account_details_errors action
Closes #8532
2015-07-10 11:11:51 +01:00
Mike Jolley ea82ce9f06 Tweak display name to only change if set to an email
#8532
2015-07-10 11:09:14 +01:00
Gerhard 230301e6da Don't reveal username when login failed on valid email login 2015-06-26 14:15:31 +02:00
Mike Jolley 622b11ae9f Add version check to prevent pre-2.4 logic kicking in when not needed
@claudiosmweb
2015-06-16 15:10:53 +01:00
Mike Jolley 89f7e15052 Save full version of text based attributes when dealing with variations 2015-06-11 14:43:02 +01:00
mehulkaklotar 05d5b421d6 filter when cart item remove notice item title, issue : #8204 2015-05-22 14:15:11 +05:30
Nikki DelRosso 940c2369b0 Added method to check if cart is empty 2015-05-14 14:18:53 -07:00
roykho a23142423c fixed on password change, password 1 field can be skipped closes #8079 2015-04-29 22:07:34 -07:00
Nicola Mustone d2af01df5b scrutinizer suggested tweaks 2015-03-27 16:15:40 +01:00
Mike Jolley 4171a20e29 Order again with custom attributes.
Fixes #7601
2015-03-09 15:50:13 +00:00
Mike Jolley 5cbd02fef2 Improved message when variation attributes are missing.
Closes #7670
2015-03-09 13:14:05 +00:00
Nicola Mustone 0fc973b5aa undefined wc_error_count fix 2015-02-26 16:18:11 +01:00
Mike Jolley 542dfe7ce4 Add additional error handling to remove_item handler
Closes #7415
2015-02-16 11:31:38 +00:00
Paul Wilde c913316f8b Introduce wc_get_page_permalink. 2015-02-15 19:13:22 +00:00
Mike Jolley d93d00271d Use WP hook so we have access to query vars
Fixes #7341
2015-02-10 12:23:15 +00:00
Mike Jolley 3691a8fdfb Fix thumbnail notice
Closes #7292
2015-02-04 14:04:02 +00:00
Mike Jolley 03cf7fa572 Fix potential notice 2015-02-03 14:57:04 +00:00
Claudio Sanches d3ac28fbb3 Check if product is published, closes #7220 2015-01-29 16:30:07 -02:00
Mike Jolley e3b360c138 Tweak to process_reset_password 2015-01-21 14:59:44 +00:00
Mike Jolley 204d1ae166 2 empties as PHP < 5.5 doens't like the join 2015-01-21 14:25:59 +00:00
Mike Jolley 10dac6fedd process_lost_password/process_reset_password 2015-01-21 14:15:52 +00:00
Mike Jolley 51c6f7f670 Clean up process_registration() 2015-01-20 16:05:08 +00:00
Claudio Sanches 3228fc0e67 Initial remove and restore cart methods 2015-01-07 16:52:17 -02:00
Mike Jolley 1c696a10d3 Dev - Moved WC_Cart::get_cart_from_session() to a later hook (was init, now wp_loaded).
Closes #6873
2015-01-05 14:43:04 +00:00
Mike Jolley c3fb83d443 Append query string when removing item from cart to bust cache
Closes #6544
2014-11-26 10:56:51 +00:00
claudiosmweb 744f80e0c6 Fixed password reset handler 2014-11-19 16:57:26 -02:00
Nicola Mustone 5d30109ab6 Handle cart item undo 2014-11-18 17:31:06 +01:00
Mike Jolley ccdacb76b7 Fire all form handlers priority 20
Closes #6706
2014-11-12 16:43:29 +00:00
Mike Jolley b5f359b22a Merge pull request #6717 from bryceadams/master
Add filter for registration auth cookie #6707
2014-11-11 03:44:54 -08:00
Mike Jolley f6fbdcd0ec Merge pull request #6704 from helgatheviking/update_cart_action
move $cart_updated inside $passed_validation IF statement. #6703
2014-11-11 02:05:12 -08:00
Marin Atanasov cce13abc06 checking _wpnonce before using it in WC_Form_Handler::process_registration() 2014-11-09 17:14:55 +02:00
Bryce f489739349 Add filter for registration auth cookie #6707 2014-11-08 14:30:18 -08:00
Kathy Darling 5a2c9a3ed2 move $cart_updated inside $passed_validation IF statement. #6703 2014-11-07 11:16:37 +01:00
Mike Jolley f4556fe710 [2.2] Fixed nonce check in form handler 2014-10-28 09:40:50 +00:00
Mike Jolley 06aca23919 Enforce slug format of translated edit-address-slugs.
Fixes issues with addresses not loading correctly in edit account.
2014-10-22 11:26:09 +01:00
Mike Jolley b09f1062da Merge pull request #6579 from woothemes/hotfix-unqiue-nonce-edit-details
[2.2] Make edit account details nonce unique to customer.
2014-10-21 13:17:36 +01:00
Gerhard 045046492f Fix nonce check on edit address. 2014-10-21 13:24:01 +02:00
Gerhard a08b501ebc Propper verify nonce use on edit account. 2014-10-21 08:53:54 +02:00
Gerhard 817e23a807 Propper verfiy nonce use on edit address. 2014-10-21 08:52:19 +02:00
Gerhard 36ae6b8876 remove more debug info. 2014-10-21 08:51:35 +02:00
Gerhard 9b7fd195a7 remove debug info. 2014-10-21 08:51:00 +02:00
Gerhard 1c46b7324a Register nonce used same name as register form button. 2014-10-21 08:50:23 +02:00
Gerhard 9f438edfa0 Correctly use verify nonce on register 2014-10-21 08:41:52 +02:00
Gerhard f2e65f0857 Propper verify_nonce use on reset password functionality. 2014-10-21 08:39:16 +02:00
Gerhard 1bc74317df Use wp_verify_nonce correctly in process_login 2014-10-21 08:33:48 +02:00
Gerhard 1fd61e6d75 Use wp_verify_nonce correctly in save_account_details. 2014-10-21 08:31:48 +02:00
Mike Jolley 6f7ff36940 Prefix filter names #6576 2014-10-20 16:12:35 +01:00
Gerhard 1fdff91114 Make edit account details nonce unique to customer. 2014-10-20 09:35:54 +02:00
Kathy Darling 41c5b18659 add custom add to cart handler. update for #5923 2014-10-17 17:26:50 +02:00
Mike Jolley 5e07ec0382 $cart_totals should be checked to see if its an array
Closes #6496
2014-10-09 16:50:42 +01:00
Illimar Tambek 97ccd7c50f Do not escape redirect url in form handler 2014-10-01 21:26:35 +03:00
Ryan Stock 4998f88dc5 Fix infinite redirect loop on cart page
Fix for issue #6319:
https://github.com/woothemes/woocommerce/issues/6319
2014-09-19 13:24:31 +10:00
claudiosmweb 063d1eb349 fixed the access permissions 2014-09-01 12:44:51 -03:00
Barry Kooij 94365791af Changed all use of get_product to wc_get_product 2014-08-19 12:09:29 +02:00
Barry Kooij 6655188f0b Changed use of get_order with wc_get_order 2014-08-15 14:29:21 +02:00
Mike Jolley 1b41eef5f6 Ensure add-to-cart is not present when redirecting after a deletion.
Fixes #5645
2014-07-29 15:25:43 +01:00
Coen Jacobs 86a4add087 Merge remote-tracking branch 'upstream/master' into order-factory-refactor
Conflicts:
	includes/class-wc-order.php
2014-07-03 13:38:55 +02:00
Mike Jolley 50a4c5bd23 Merge branch 'variation-stock-management'
Conflicts:
	includes/class-wc-product-variation.php
2014-06-27 11:15:42 +01:00
Mike Jolley 0f6f04e017 Added wc_stock_amount() core function and replaced intval
#4612
2014-06-25 11:25:28 +01:00
Mike Jolley f1a10c2e70 Fix incorrect variable check when editing address 2014-06-25 11:06:42 +01:00
Mike Jolley 8834679d93 Don't validate empty fields 2014-06-20 10:28:04 +01:00
Coen Jacobs 89ea6c46ab Replace new WC_Order calls with get_order 2014-06-13 15:24:51 +02:00
Coen Jacobs 3ad8935b20 Removed ununsed global variables in local scopes 2014-06-08 22:33:11 +02:00
Mike Jolley 309f700283 has_status 2014-06-03 10:45:33 +01:00
Mike Jolley e0a74fffc4 implement is_status() 2014-05-30 17:43:21 +01:00
Mike Jolley fca32a98de Implement is_status functions and update_status 2014-05-30 17:16:22 +01:00
Mike Jolley e198ee517a Made stateless classes static to allow unhooking of hooks
Closes #5151
2014-05-28 14:52:50 +01:00
claudiosmweb 79a8986f06 added the possibility to translate the edit-address endpoint slugs, closes #4820 2014-04-24 18:18:41 -03:00
Mike Jolley c09f710775 Merge pull request #5334 from ragulka/valid-order-statuses-improvements
Valid order statuses improvements
2014-04-23 15:07:15 +01:00
splashingpixels fde72164a4 added a check for current password on password change closes #5177 2014-04-22 12:01:57 -07:00
Illimar Tambek cbfd17437c Use `woocommerce_valid_order_statuses_for_payment` in `pay_action` too
Even though it was possible to filter the statuses in my-order.php and other places,
it was not possible in the actual pay action.
2014-04-17 19:27:39 +03:00
splashingpixels cc86fcc775 removed wc_clean/sanitize_text_field not needed. handled by wp core functions fixes #5318 2014-04-13 23:29:22 -07:00
Coen Jacobs 4afeb7926c Merge branch 'refs/heads/2.1'
Conflicts:
	i18n/languages/woocommerce-admin.pot
	i18n/languages/woocommerce.pot
	includes/class-wc-form-handler.php
	package.json
	readme.txt
	templates/checkout/form-shipping.php
	templates/emails/email-addresses.php
	woocommerce.php
2014-04-10 16:42:08 +02:00
splashingpixels afc17dad40 myaccount registration added check for auto generate password option 2014-04-10 13:47:34 +01:00
Andrew Benbow 92a62c4ae4 Resolve conflict 2014-04-10 13:34:46 +01:00
splashingpixels ff5384714f myaccount registration added check for auto generate password option 2014-04-01 19:45:25 -07:00
Andrew Benbow e8bc26f51c Update class-wc-form-handler.php
Updated as per comments
2014-03-26 09:58:51 +00:00
Andrew Benbow d6782567a2 Order cancelled tweaks
Add filters for order cancelled message, change message class from
success to info and allow to be filtered
2014-03-25 12:10:08 +00:00
Mike Jolley e2ea31fc94 pedantic nonce checking 2014-03-06 16:26:47 +01:00
Mike Jolley c3d5111c8d Check existence of nonce Closes #5050 2014-03-06 16:26:47 +01:00
Mike Jolley a553fd4956 pedantic nonce checking 2014-03-06 13:11:20 +00:00
Mike Jolley d42bb7a285 Check existence of nonce Closes #5050 2014-03-06 11:37:48 +00:00
Mike Jolley f44a4bc9d9 Made woocommerce_update_cart_action_cart_updated a filter which can return true or false to recalc totals Closes #4905
Conflicts:
	includes/class-wc-form-handler.php
2014-03-05 11:04:14 +01:00
Mike Jolley 48ebfae145 Made woocommerce_update_cart_action_cart_updated a filter which can return true or false to recalc totals Closes #4905 2014-03-03 15:15:32 +00:00
Mike Jolley 6e00477fd6 Tweak where message is added during reset to avoid needing a session Closes #4908 2014-02-27 15:45:47 +01:00
Mike Jolley cb4031f0c3 cancel_order - take no action if already cancelled. 2014-02-27 15:30:18 +01:00
Mike Jolley b06e0bb19e Tweak where message is added during reset to avoid needing a session Closes #4908 2014-02-26 13:13:53 +00:00
Mike Jolley 4c5f1952c7 If the cart is updated only, trigger action and recalc totals Closes #4905 2014-02-26 12:14:50 +00:00
Mike Jolley f09db7a537 cancel_order - take no action if already cancelled. 2014-02-24 10:39:43 +00:00
Mike Jolley 5564e49b15 woocommerce_get_username_from_email filter for login Closes #4791 2014-02-14 12:52:39 +01:00
Mike Jolley e667d41497 woocommerce_get_username_from_email filter for login Closes #4791 2014-02-14 11:47:12 +00:00
claudiosmweb d3f09d45b0 fixed some coding standards in includes/class-wc-form-handler.php 2014-02-07 16:35:30 -02:00
claudiosmweb e0b729d273 fixed the indentation in includes/class-wc-form-handler.php 2014-02-07 16:27:07 -02:00
claudiosmweb 0f5faa4a77 fixed undefined username variable in myaccount register using registration generate username as true 2014-02-07 16:26:51 -02:00
toddlahman 2725527d4a Removed urldecode from $_GET and $_REQUEST
The superglobals $_GET and $_REQUEST are already decoded. Using
urldecode() on an element in $_GET or $_REQUEST could have unexpected
and dangerous results.

See Notes:

http://us1.php.net/manual/en/function.urldecode.php
2014-01-26 01:19:17 -08:00
Mike Jolley f36d67fa69 Merge pull request #4445 from toddlahman/master
improved ob_end_clean for download handler
2014-01-07 07:40:56 -08:00
toddlahman 6456b8d299 fix register nonce and register catch errors 2014-01-03 03:06:28 -08:00
Mike Jolley 18ffbdb82b Tweak form handlers since they are the same form - removed empty coupon message as a result. Closes #4362 2013-12-31 14:02:50 +00:00
Mike Jolley 8eb77f783d Merge pull request #4429 from toddlahman/master
Registration error handler and my_account_message hook
2013-12-31 04:38:05 -08:00
Mike Jolley cdb1ad5e9e On cancel, use cart page unless otherwise defined. Closes #4375 2013-12-30 14:09:50 +00:00
toddlahman 6f76d1941c Registration error handler and my_account_message hook
To block registration spam, and authenticate the $_POST values, a
woocommerce_process_registration_errors filter hook is needed.

WordPress has a login_message filter, which causes a duplicate message
on the My Account login page since WC uses the same filter hook name. A
different filter hook name, such as my_account_message, would eliminate
this issue.
2013-12-29 05:11:54 -08:00
Mike Jolley 53b56250f4 Clean up cancel_order and filter cancelable order status Closes #4257 2013-12-03 14:07:15 +00:00
Mike Jolley e9234e8d63 Removed a stray var dump and added braces 2013-12-02 11:09:33 +00:00
Mike Jolley 6db8ac6f6f Made error counts work with new notices api Closes #4201 2013-11-27 16:15:53 +00:00
Scott Basgaard 2885da4581 "Order again" doesn't work. Proposed pass at fix. 2013-11-26 17:48:39 +01:00
Coen Jacobs 4afbd0b556 Merge branch 'function-call-refactor'
Conflicts:
	includes/admin/post-types/meta-boxes/class-wc-meta-box-order-data.php
	includes/shortcodes/class-wc-shortcode-cart.php
	includes/wc-template-functions.php
2013-11-25 15:42:26 +01:00
Coen Jacobs 47ae00be28 Page functions woocommerce to wc refactor 2013-11-25 15:07:22 +01:00
Mike Jolley 51ba9c393f WC globals 2013-11-25 14:01:38 +00:00
Coen Jacobs c1a439eb99 Formatting functions woocommerce to wc refactor 2013-11-25 14:34:21 +01:00
Coen Jacobs 1663eafb68 Customer functions woocommerce to wc refactor 2013-11-25 13:52:53 +01:00
Coen Jacobs b0e3802b5b Refactor cart functions in core 2013-11-25 13:44:32 +01:00
Mike Jolley 26cf2e0669 Isset, not empty for 0 values. Closes #4127 2013-11-18 13:35:38 +00:00
Coen Jacobs 90008d7143 Merge remote-tracking branch 'thenbrent/new_notice_api'
Conflicts:
	includes/shortcodes/class-wc-shortcode-cart.php
	includes/wc-message-functions.php
	woocommerce-ajax.php
2013-11-18 12:44:22 +01:00
Coen Jacobs f0adcb65b7 Merge remote-tracking branch 'thenbrent/add_payment_method_issue_3396' 2013-11-18 12:33:23 +01:00
Mike Jolley 2c25568e21 Filter for adding login erorrs #4059 2013-11-13 12:12:27 +00:00
thenbrent e14e3842b0 Update calls to wc_error_count() function
Part of #4034
2013-11-12 20:59:39 -08:00
thenbrent fe44f020e3 Update calls to wc_add_message() function
Part of #4034
2013-11-12 20:59:39 -08:00
thenbrent 0d45e19fcf Update calls to wc_add_error() function
Part of #4034
2013-11-12 20:59:39 -08:00
thenbrent 09e182f358 Allow gateways to specify redirect URL
Part of #3396
2013-11-04 20:54:18 -08:00
thenbrent a1ca487e73 Add a notice that payment method has been added
Part of #3396
2013-11-03 16:54:07 -08:00
thenbrent 1e0cf3087e Redirect to My Account page after adding method
Part of #3396
2013-11-03 16:54:07 -08:00
thenbrent 0e4cd125c5 Call add_payment_method_action()
Part of #3396
2013-11-03 16:54:07 -08:00
thenbrent 237b5778a3 Add add_payment_method_action() handler
Part of #3396
2013-11-03 16:53:24 -08:00
Mike Jolley f742a91435 Rejig login form closes #4005 2013-10-25 16:10:13 +01:00
Mike Jolley e143d344e5 Constants 2013-10-24 19:36:22 +01:00
Bernard Peh 943327dcb6 since we are running our own passwd reset facility, we should allow other plugins to validate the password before resetting it. 2013-10-18 12:24:06 +11:00
Mike Jolley 4cabf24422 needs_payment for 2.1 #3928 2013-10-16 14:14:15 +01:00
Mike Jolley 9a98be6a15 WOOCOMMERCE_DELIMITER constant. Closes #3476. 2013-09-24 12:24:26 +01:00
Mike Jolley 06ef44c9df Pass args to variation forms from cart page. Closes #3568 2013-09-23 15:47:47 +01:00
Mike Jolley 5954619e02 Set session when removing last item. Closes #3739 2013-09-23 14:01:17 +01:00
Mike Jolley 3ee6e2fa22 Validate rules, instead of doing it by key. Closes #3792. 2013-09-19 14:39:53 +01:00
Mike Jolley edbe9b5fa2 Redirect to myaccount. Closes #3740
@coenjacobs .15
2013-09-13 16:37:26 +01:00
Mike Jolley 5f741819b9 Merge pull request #3757 from ragulka/address-hooks
Allow using custom address types
2013-09-13 08:03:55 -07:00
Mike Jolley 9e30ebbaa9 Merge pull request #3741 from ragulka/security-improvements
Frontend security improvements
2013-09-13 03:33:09 -07:00
Mike Jolley 355dd16962 Removed @coenjacobs helpers and cleaned up main clas 2013-09-12 14:41:02 +01:00
Illimar Tambek e4147bf1b7 Fix missing question mark 2013-09-10 16:35:34 +03:00
Illimar Tambek d6ba711f56 Allow saving custom address types. Add address type to woocommerce_customer_save_address action 2013-09-10 16:31:13 +03:00
Illimar Tambek 7ec8a687f6 Check if user is allowed to cancel and order an order again. Use current_user_can() checks instead of hardcoded user_id comparisons to determine if user can view, pay, order again or cancel an order. 2013-09-06 17:39:45 +03:00
Mike Jolley f0853d5208 Pass text attributes when ordering again Fixes #3422 2013-08-20 12:17:56 +01:00
Mike Jolley 44b9c72651 Improve cart update performance. Closes #3495. 2013-08-19 15:19:51 +01:00
Mike Jolley 9a7580ff1e dumps 2013-08-17 01:44:56 +01:00
Mike Jolley 7cd4e46846 Cleaner orders items, and show meta in text until editing.
@coenjacobs this commit has the urldecode fix. Will move it over to
master/.14 later
2013-08-15 16:49:09 +01:00
Mike Jolley e01df544ec Reworked total templates to support coupon lines, and started support for multiple shipping methods per order.
@todo store shipping methods in the order
@todo test with PP shipping real world

cc @coe
2013-08-14 21:00:34 +01:00
Dominic cfbbaa4b5e Filter Request: Login Credentials
I'm trying to add a "remember me" option to my login form. WordPress
supports this, but it's hardcoded to always on in the WC form handler.
Since you can't tell a difference in PHP between an unchecked checkbox
and no checkbox at all, this seems like the simplest alternative that
maintains backwards compatibility. Thanks.
2013-08-10 12:31:17 -07:00
Mike Jolley 57157db9bf Function refactoring. 2013-08-09 17:11:21 +01:00