rest_sanitize_value_from_schema( mixed $value, array $args )

Sanitize a value based on a schema.

Contents

Description Description

Parameters Parameters

$value

(mixed) (Required) The value to sanitize.

$args

(array) (Required) Schema array to use for sanitization.

Top ↑

Return Return

(true|WP_Error)

Top ↑

Source Source

File: wp-includes/rest-api.php 

function rest_sanitize_value_from_schema( $value, $args ) {
	if ( is_array( $args['type'] ) ) {
		// Determine which type the value was validated against, and use that type when performing sanitization
		$validated_type = '';

		foreach ( $args['type'] as $type ) {
			$type_args         = $args;
			$type_args['type'] = $type;

			if ( ! is_wp_error( rest_validate_value_from_schema( $value, $type_args ) ) ) {
				$validated_type = $type;
				break;
			}
		}

		if ( ! $validated_type ) {
			return null;
		}

		$args['type'] = $validated_type;
	}

	if ( 'array' === $args['type'] ) {
		if ( empty( $args['items'] ) ) {
			return (array) $value;
		}
		$value = wp_parse_list( $value );
		foreach ( $value as $index => $v ) {
			$value[ $index ] = rest_sanitize_value_from_schema( $v, $args['items'] );
		}
		// Normalize to numeric array so nothing unexpected
		// is in the keys.
		$value = array_values( $value );
		return $value;
	}

	if ( 'object' === $args['type'] ) {
		if ( $value instanceof stdClass ) {
			$value = (array) $value;
		}

		if ( $value instanceof JsonSerializable ) {
			$value = $value->jsonSerialize();
		}

		if ( ! is_array( $value ) ) {
			return array();
		}

		foreach ( $value as $property => $v ) {
			if ( isset( $args['properties'][ $property ] ) ) {
				$value[ $property ] = rest_sanitize_value_from_schema( $v, $args['properties'][ $property ] );
			} elseif ( isset( $args['additionalProperties'] ) ) {
				if ( false === $args['additionalProperties'] ) {
					unset( $value[ $property ] );
				} elseif ( is_array( $args['additionalProperties'] ) ) {
					$value[ $property ] = rest_sanitize_value_from_schema( $v, $args['additionalProperties'] );
				}
			}
		}

		return $value;
	}

	if ( 'null' === $args['type'] ) {
		return null;
	}

	if ( 'integer' === $args['type'] ) {
		return (int) $value;
	}

	if ( 'number' === $args['type'] ) {
		return (float) $value;
	}

	if ( 'boolean' === $args['type'] ) {
		return rest_sanitize_boolean( $value );
	}

	if ( isset( $args['format'] ) ) {
		switch ( $args['format'] ) {
			case 'date-time':
				return sanitize_text_field( $value );

			case 'email':
				/*
				 * sanitize_email() validates, which would be unexpected.
				 */
				return sanitize_text_field( $value );

			case 'uri':
				return esc_url_raw( $value );

			case 'ip':
				return sanitize_text_field( $value );
		}
	}

	if ( 'string' === $args['type'] ) {
		return strval( $value );
	}

	return $value;
}

Expand full source code Collapse full source code View on Trac

Top ↑

Changelog Changelog

Changelog
Version Description
4.7.0 Introduced.

Top ↑

Top ↑

Uses Uses

Uses
Uses Description
wp-includes/functions.php: wp_parse_list()

Cleans up an array, comma- or space-separated list of scalar values.
wp-includes/rest-api.php: rest_sanitize_value_from_schema()

Sanitize a value based on a schema.
wp-includes/rest-api.php: rest_validate_value_from_schema()

Validate a value based on a schema.
wp-includes/rest-api.php: rest_sanitize_boolean()

Changes a boolean-like value into the proper boolean value.
wp-includes/formatting.php: sanitize_text_field()

Sanitizes a string from user input or from the database.
wp-includes/formatting.php: esc_url_raw()

Performs esc_url() for database usage.
wp-includes/load.php: is_wp_error()

Check whether variable is a WordPress Error.
Show 2 more uses Hide more uses

Top ↑

Used By Used By

Used By
Used By Description
wp-includes/widgets/class-wp-widget-media.php: WP_Widget_Media::update()

Sanitizes the widget form values as they are saved.
wp-includes/rest-api.php: rest_sanitize_value_from_schema()

Sanitize a value based on a schema.
wp-includes/rest-api.php: rest_sanitize_request_arg()

Sanitize a request argument based on details registered to the route.
wp-includes/rest-api/fields/class-wp-rest-meta-fields.php: WP_REST_Meta_Fields::prepare_value()

Prepares a meta value for output.
wp-includes/rest-api/fields/class-wp-rest-meta-fields.php: WP_REST_Meta_Fields::update_value()

Updates meta values.
wp-includes/rest-api/endpoints/class-wp-rest-settings-controller.php: WP_REST_Settings_Controller::prepare_value()

Prepares a value for output based off a schema array.
Show 1 more used by Hide more used by

Top ↑

User Contributed Notes User Contributed Notes

You must log in before being able to contribute a note or feedback.