Support featured media in REST attachment controller #4645
Conversation
| $post = get_post( $attachment_id ); | ||
|
|
||
| if ( ! $post instanceof WP_Post || 'attachment' !== $post->post_type ) { | ||
| return; | ||
| } |
There was a problem hiding this comment.
Use $this->get_post and return WP_Error.
| _doing_it_wrong( | ||
| $method, | ||
| sprintf( | ||
| /* translators: %s: attachment mime type */ | ||
| __( 'This site does not support post thumbnails on attachments with MIME type %s.' ), | ||
| $post->post_mime_type | ||
| ), | ||
| '6.2.0' | ||
| ); |
There was a problem hiding this comment.
Can you explain more? Why return a WP_Error here?
| * @param int $attachment_id Attachment ID. | ||
| * @param string $method Method name. | ||
| */ | ||
| private function maybe_did_featured_media_wrong( $attachment_id, $method ) { |
There was a problem hiding this comment.
This method is responsible for determining whether a created or updated attachment supports featured images. If an attachment is created or updated via the API with a featured image, but the attachment has a MIME type that doesn't support featured images, this method sends a _doing_it_wrong().
There was a problem hiding this comment.
Doing it wrong is not how the REST API handles errors. I don't think this method is a good idea.
| $this->handle_featured_media( $request['featured_media'], $attachment_id ); | ||
| $this->maybe_did_featured_media_wrong( $attachment_id, __METHOD__ ); |
There was a problem hiding this comment.
| $this->handle_featured_media( $request['featured_media'], $attachment_id ); | |
| $this->maybe_did_featured_media_wrong( $attachment_id, __METHOD__ ); | |
| $update_media = $this->handle_featured_media( $request['featured_media'], $attachment_id ); | |
| if ( is_wp_error( $update_media ) ) { | |
| return $update_media; | |
| } |
| $this->handle_featured_media( $request['featured_media'], $data['id'] ); | ||
| $this->maybe_did_featured_media_wrong( $data['id'], __METHOD__ ); |
There was a problem hiding this comment.
| $this->handle_featured_media( $request['featured_media'], $data['id'] ); | |
| $this->maybe_did_featured_media_wrong( $data['id'], __METHOD__ ); | |
| $update_media = $this->handle_featured_media( $request['featured_media'], $attachment_id ); | |
| if ( is_wp_error( $update_media ) ) { | |
| return $update_media; | |
| } |
| * @param int $attachment_id Attachment ID. | ||
| * @param string $method Method name. | ||
| */ | ||
| private function maybe_did_featured_media_wrong( $attachment_id, $method ) { |
There was a problem hiding this comment.
Instead of this method, let's extend handle_featured_media. Something like this.
protected function handle_featured_media( $featured_media, $post_id ) {
if ( wp_attachment_is( 'audio', $post_id ) && post_type_supports( 'attachment:audio', 'thumbnail' ) || current_theme_supports( 'post-thumbnails', 'attachment:audio' ) ) {
return parent::handle_featured_media( $featured_media, $post_id );
} else if ( wp_attachment_is( 'video', $post_id ) && post_type_supports( 'attachment:video', 'thumbnail' ) || current_theme_supports( 'post-thumbnails', 'attachment:video' ) ) {
return parent::handle_featured_media( $featured_media, $post_id );
}
return new WP_Error( 'rest_feature_meta_update',
sprintf(
/* translators: %s: attachment mime type */
__( 'This site does not support post thumbnails on attachments with MIME type %s.' ),
$post->post_mime_type
),
array( 'status' => rest_authorization_required_code() )
);
}
There was a problem hiding this comment.
I'm concerned that returning an error in this case will lead to a poor developer experience for a few reasons.
- Unless more code is added to roll back the work done by the method up to this point, the attachment will be left in an partially created or partially updated state in the database.
- An error will be returned to the client, but, again, the attachment will have been partially created or updated. For a create operation, if the client tries to correct the request and send it again, a second attachment will be created.
- The punishment of an error seems to me to not really fit the crime. Is setting the featured image on the wrong MIME type that big a deal?
- There is some precedent for a
_doing_it_wrong(), for example .
For these reasons, if _doing_it_wrong() isn't going to work in this case, I think my next move would be to skip the error altogether rather than halt processing.
What do you think?
There was a problem hiding this comment.
I don't agree. When update of meta data fails, it returns a WP_Error. Returning errors, allows user of the rest api, maybe not even have access to WP and the error log, to error that the request failed. You have to opt-in to send the featured media id to see this error. If you dont that, you need to know what you are doing.
|
I agree using Another approach is to do this validation earlier which is what I'd prefer. We can add a |
Is there prior art for determining the MIME type-to-be of a new attachment that can be checked for support? |
That is a good point. We can easily check / know the mime type of the attachment on create endpoint. So we can't use |
|
@TimothyBJacobs @dlh01 As a talking point, I put together a PR for this #4682 |
|
We have the full request object, so we should be able to detect the mime type. I think we could use |
OK, that's a path I can look into, but probably not in time for 6.3 at this point. I'll also say up-front that I don't have the experience with media component to be able to think in detail about any security risks that might come with attempting to analyze a file before it's been accepted into the media library, so any guidance about that (now or when the PR is updated) would be appreciated. |
|
Committed in https://core.trac.wordpress.org/changeset/57603 |
Trac ticket: https://core.trac.wordpress.org/ticket/41692