Created
November 29, 2017 19:35
-
-
Save martijn94/e06c4831a9d266079c420777eed2b765 to your computer and use it in GitHub Desktop.
edit-profile.php
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| /* Recheck if user is logged in just to be sure, this should have been done already */ | |
| if( !is_user_logged_in() ) { | |
| wp_redirect( home_url() ); | |
| exit; | |
| } | |
| if ( $_SERVER['REQUEST_METHOD'] == 'POST' && !empty( $_POST['action'] ) && $_POST['action'] == 'update-user' ) { | |
| $current_user = wp_get_current_user(); | |
| /* Check nonce first to see if this is a legit request */ | |
| if( !isset( $_POST['_wpnonce'] ) || !wp_verify_nonce( $_POST['_wpnonce'], 'update-user' ) ) { | |
| wp_redirect( get_permalink() . '?validation=unknown' ); | |
| exit; | |
| } | |
| /* Check honeypot for autmated requests */ | |
| if( !empty($_POST['honey-name']) ) { | |
| wp_redirect( get_permalink() . '?validation=unknown' ); | |
| exit; | |
| } | |
| /* Update profile fields */ | |
| if ( !empty( $_POST['email'] ) ){ | |
| $posted_email = esc_attr( $_POST['email'] ); | |
| if ( !is_email( $posted_email ) ) { | |
| wp_redirect( get_permalink() . '?validation=emailnotvalid' ); | |
| exit; | |
| } elseif( email_exists( $posted_email ) && ( email_exists( $posted_email ) != $current_user->ID ) ) { | |
| wp_redirect( get_permalink() . '?validation=emailexists' ); | |
| exit; | |
| } else{ | |
| wp_update_user( array ('ID' => $current_user->ID, 'user_email' => $posted_email ) ); | |
| } | |
| } | |
| if ( !empty($_POST['pass1'] ) || !empty( $_POST['pass2'] ) ) { | |
| if ( $_POST['pass1'] == $_POST['pass2'] ) { | |
| wp_update_user( array( 'ID' => $current_user->ID, 'user_pass' => esc_attr( $_POST['pass1'] ) ) ); | |
| } | |
| else { | |
| wp_redirect( get_permalink() . '?validation=passwordmismatch' ); | |
| exit; | |
| } | |
| } | |
| if ( !empty( $_POST['first-name'] ) ) { | |
| $display_name = esc_attr( $_POST['first-name'] ); | |
| update_user_meta( $current_user->ID, 'first_name', esc_attr( $_POST['first-name'] ) ); | |
| } | |
| if ( !empty( $_POST['last-name'] ) ) { | |
| $display_name .= ' ' . esc_attr( $_POST['last-name'] ); | |
| update_user_meta( $current_user->ID, 'last_name', esc_attr( $_POST['last-name'] ) ); | |
| } | |
| if ( $display_name ) { | |
| wp_update_user( array ('ID' => $current_user->ID, 'display_name' => esc_attr( $display_name ) ) ); | |
| } | |
| if ( !empty( $_POST['phone_number'] ) ) { | |
| update_user_meta( $current_user->ID, 'phone_number', esc_attr( $_POST['phone_number'] ) ); | |
| } | |
| if ( !empty( $_POST['user_specialisation'] ) ) { | |
| update_user_meta( $current_user->ID, 'specialisation', esc_attr( $_POST['user_specialisation'] ) ); | |
| } | |
| if ( !empty( $_POST['location'] ) ) { | |
| update_user_meta( $current_user->ID, 'location', esc_attr( $_POST['location'] ) ); | |
| } | |
| /* Let plugins hook in, like ACF who is handling the profile picture all by itself. Got to love the Elliot */ | |
| do_action('edit_user_profile_update', $current_user->ID); | |
| /* We got here, assuming everything went OK */ | |
| wp_redirect( get_permalink() . '?updated=true' ); | |
| exit; | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment