WC_API_Webhooks::validate_request( string|int $id, string $type, string $context )

Validate the request by checking:

Contents

Description Description

1) the ID is a valid integer. 2) the ID returns a valid post object and matches the provided post type. 3) the current user has the proper permissions to read/edit/delete the post.

Parameters Parameters

$id

(Required) The post ID

$type

(Required) The post type, either shop_order, shop_coupon, or product.

$context

(Required) The context of the request, either read, edit or delete.

Top ↑

Return Return

(int|WP_Error) Valid post ID or WP_Error if any of the checks fails.

Top ↑

Source Source

File: includes/legacy/api/v2/class-wc-api-webhooks.php 

	protected function validate_request( $id, $type, $context ) {
		$id = absint( $id );

		// Validate ID.
		if ( empty( $id ) ) {
			return new WP_Error( "woocommerce_api_invalid_webhook_id", sprintf( __( 'Invalid %s ID', 'woocommerce' ), $type ), array( 'status' => 404 ) );
		}

		$webhook = wc_get_webhook( $id );

		if ( null === $webhook ) {
			return new WP_Error( "woocommerce_api_no_webhook_found", sprintf( __( 'No %1$s found with the ID equal to %2$s', 'woocommerce' ), 'webhook', $id ), array( 'status' => 404 ) );
		}

		// Validate permissions.
		switch ( $context ) {

			case 'read':
				if ( ! current_user_can( 'manage_woocommerce' ) ) {
					return new WP_Error( "woocommerce_api_user_cannot_read_webhook", sprintf( __( 'You do not have permission to read this %s', 'woocommerce' ), 'webhook' ), array( 'status' => 401 ) );
				}
				break;

			case 'edit':
				if ( ! current_user_can( 'manage_woocommerce' ) ) {
					return new WP_Error( "woocommerce_api_user_cannot_edit_webhook", sprintf( __( 'You do not have permission to edit this %s', 'woocommerce' ), 'webhook' ), array( 'status' => 401 ) );
				}
				break;

			case 'delete':
				if ( ! current_user_can( 'manage_woocommerce' ) ) {
					return new WP_Error( "woocommerce_api_user_cannot_delete_webhook", sprintf( __( 'You do not have permission to delete this %s', 'woocommerce' ), 'webhook' ), array( 'status' => 401 ) );
				}
				break;
		}

		return $id;
	}

Expand full source code Collapse full source code

Top ↑

Changelog Changelog

Changelog
Version Description
3.3.0 Introduced.

Top ↑

Top ↑

Used By Used By

Used By
Used By Description
includes/legacy/api/v2/class-wc-api-webhooks.php: WC_API_Webhooks::get_webhook_deliveries()

Get deliveries for a webhook
includes/legacy/api/v2/class-wc-api-webhooks.php: WC_API_Webhooks::get_webhook_delivery()

Get the delivery log for the given webhook ID and delivery ID
includes/legacy/api/v2/class-wc-api-webhooks.php: WC_API_Webhooks::get_webhook()

Get the webhook for the given ID
includes/legacy/api/v2/class-wc-api-webhooks.php: WC_API_Webhooks::edit_webhook()

Edit a webhook
includes/legacy/api/v2/class-wc-api-webhooks.php: WC_API_Webhooks::delete_webhook()

Delete a webhook

Top ↑

User Contributed Notes User Contributed Notes

You must log in before being able to contribute a note or feedback.