Skip to content

[READ ONLY] Subtree split of the snicco/wp-capability-middleware package (see snicco/snicco).

License

Notifications You must be signed in to change notification settings

snicco/wp-capability-middleware

Repository files navigation

WordPress capability middleware for snicco/http-routing

codecov Psalm Type-Coverage Psalm level PhpMetrics - Static Analysis PHP-Versions

This middleware checks if the currently logged-in WordPress user has a specified capability and will throw a 403 HTTPExcetion if that's not the case.

Installation

composer require snicco/wp-capability-middleware

Usage

This middleware should be added on a per-route basis.

If the currently authenticated WordPress user does not have the specified capability this middleware will throw an exception. Otherwise, the next middleware will be called.

use Snicco\Middleware\WPCap\AuthorizeWPCap;

$configurator->get('route1', '/route1', SomeController::class)
             ->middleware(AuthorizeWPCap::class.':manage_options');

// Optionally, a resource ID can be specified.
$configurator->get('route1', '/route1', SomeController::class)
             ->middleware(AuthorizeWPCap::class.':edit_post,1');

Contributing

This repository is a read-only split of the development repo of the Snicco project.

This is how you can contribute.

Reporting issues and sending pull requests

Please report issues in the Snicco monorepo.

Security

If you discover a security vulnerability, please follow our disclosure procedure.

About

[READ ONLY] Subtree split of the snicco/wp-capability-middleware package (see snicco/snicco).

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages