Fix avatar collision on profile, post and edit screens #996
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
@katag9k, @GaryJones after some more testing it appears that this PR may be missing the condition when the post lock is removed via JS/Ajax. Adding the following appears to resolve it, but the two conditionals could likely be combined. Thoughts? |
|
@katag9k The merge conflict will need addressing please, as well as considering Brooke's comment. |
…mattic/Co-Authors-Plus into fix-takeover-popup-avatar-collision
|
@BrookeDot Thank you, PR updated with the suggested code. @GaryJones We are conflict free. |
GaryJones
reviewed
Sep 16, 2023
| } | ||
|
|
||
| // Do not filter the avatar if this is doing a heartbeat request on WP refresh lock | ||
| if ( wp_doing_ajax() && isset( $_POST['action'] ) && 'heartbeat' === $_POST['action'] ) { |
There was a problem hiding this comment.
Is there a nonce that can be verified here for the heartbeat?
(PHPCS failure)
Co-authored-by: Gary Jones <gary.jones@automattic.com>
Co-authored-by: Gary Jones <gary.jones@automattic.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Fixes filtering issues when a user has the same id as a guest-author post id on the post list screen, profile screen and the post edit takeover pop-up.
Related: #960 #973 #974
Steps to Test
Create a guest user that has the same
post_idas another WPuser_id.In one browser, log in as the WordPress user and edit a post. In another browser login as the guest user. While logged in as a guest user, go to the post list at
/wp-admin/edit.phpthe post will be locked as it's being edited by the WordPress user, however, the incorrect guest user's gravatar will be displayed.Correct avatar should be:
Click edit on the post that is being edited, the warning popup will also have the incorrect gravatar from the guest user.
Correct avatar should be:
Take over the post editing. Go back to the browser where the Guest User was editing the post and wait for the "Somone else has taken over this post" pop-up. The incorrect avatar will be displayed:
The correct avatar should be:
Now log in as the WordPress user and go to the profile page at
/wp-admin/profile.phpthe incorrect gravatar is displayed.The correct avatar for the WordPress user:
