Use WordPress Nonce an object oriented way
"spock/wp-nonce-wrapper": "0.4"
to your composer.json file and run a composer update
Or
composer require spock/wp-nonce-wrapper
Get Nonce with expiry:
use spock\helper\Nonce_Wrapper;
$nonce_obj = new Nonce_Wrapper('doing_some_form_job', 60*60); // 60 sec * 60 min = 1hr; Note: default is 1 day.
$nonce = $nonce_obj->create_nonce();
Verify Nonce:
$nonce = $_REQUEST['nonce'];
$nonce_obj = new Nonce_Wrapper('doing_some_form_job');
if ( $nonce_obj->verify_nonce( $nonce ) )
//Verified Source
else
// Unknown Source
Create nonce input field:
//This will echo input field
$nonce_obj->create_nonce_field();
Create nonce url
$url = $nonce_obj->create_nonce_url( 'http://w.org' );
Check user is coming from another admin page.
// This will check current url
if ($nonce_obj->check_admin_referral())
//doing it right
else
//doing it wrong
- Remove php magic method usage
- Refactor code
- Improved documentation
- Nonce expire control added
- Added missing nonce function
- Nonce field support
- Nonce url support
- Check user is coming from admin referral
- Initial basic functionality