wpmu_validate_blog_signup() WordPress Function

The wpmu_validate_blog_signup() function is used to validate a new blog signup on a WordPress Multisite installation. This function will check the submitted data for errors, and if any are found, it will return an error message. Otherwise, it will return the new blog data, which can then be used to create the new blog.

wpmu_validate_blog_signup( string $blogname, string $blog_title, WP_User|string $user = '' ) #

Processes new site registrations.

Contents

Description

Checks the data provided by the user during blog signup. Verifies the validity and uniqueness of blog paths and domains.

This function prevents the current user from registering a new site with a blogname equivalent to another user’s login name. Passing the $user parameter to the function, where $user is the other user, is effectively an override of this limitation.

Filter ‘wpmu_validate_blog_signup’ if you want to modify the way that WordPress validates new site signups.

Top ↑

Parameters

$blogname

(string)(Required)The blog name provided by the user. Must be unique.

$blog_title

(string)(Required)The blog title provided by the user.

$user

(WP_User|string)(Optional) The user object to check against the new site name.

Default value: ''

Top ↑

Return

(array) Array of domain, path, blog name, blog title, user and error messages.

  • 'domain'
    (string) Domain for the site.
  • 'path'
    (string) Path for the site. Used in subdirectory installations.
  • 'blogname'
    (string) The unique site name (slug).
  • 'blog_title'
    (string) Blog title.
  • 'user'
    (string|WP_User) By default, an empty string. A user object if provided.
  • 'errors'
    (WP_Error) WP_Error containing any errors found.

Top ↑

Source

File: wp-includes/ms-functions.php

function wpmu_validate_blog_signup( $blogname, $blog_title, $user = '' ) {
	global $wpdb, $domain;

	$current_network = get_network();
	$base            = $current_network->path;

	$blog_title = strip_tags( $blog_title );

	$errors        = new WP_Error();
	$illegal_names = get_site_option( 'illegal_names' );
	if ( false == $illegal_names ) {
		$illegal_names = array( 'www', 'web', 'root', 'admin', 'main', 'invite', 'administrator' );
		add_site_option( 'illegal_names', $illegal_names );
	}

	/*
	 * On sub dir installations, some names are so illegal, only a filter can
	 * spring them from jail.
	 */
	if ( ! is_subdomain_install() ) {
		$illegal_names = array_merge( $illegal_names, get_subdirectory_reserved_names() );
	}

	if ( empty( $blogname ) ) {
		$errors->add( 'blogname', __( 'Please enter a site name.' ) );
	}

	if ( preg_match( '/[^a-z0-9]+/', $blogname ) ) {
		$errors->add( 'blogname', __( 'Site names can only contain lowercase letters (a-z) and numbers.' ) );
	}

	if ( in_array( $blogname, $illegal_names, true ) ) {
		$errors->add( 'blogname', __( 'That name is not allowed.' ) );
	}

	/**
	 * Filters the minimum site name length required when validating a site signup.
	 *
	 * @since 4.8.0
	 *
	 * @param int $length The minimum site name length. Default 4.
	 */
	$minimum_site_name_length = apply_filters( 'minimum_site_name_length', 4 );

	if ( strlen( $blogname ) < $minimum_site_name_length ) {
		/* translators: %s: Minimum site name length. */
		$errors->add( 'blogname', sprintf( _n( 'Site name must be at least %s character.', 'Site name must be at least %s characters.', $minimum_site_name_length ), number_format_i18n( $minimum_site_name_length ) ) );
	}

	// Do not allow users to create a site that conflicts with a page on the main blog.
	if ( ! is_subdomain_install() && $wpdb->get_var( $wpdb->prepare( 'SELECT post_name FROM ' . $wpdb->get_blog_prefix( $current_network->site_id ) . "posts WHERE post_type = 'page' AND post_name = %s", $blogname ) ) ) {
		$errors->add( 'blogname', __( 'Sorry, you may not use that site name.' ) );
	}

	// All numeric?
	if ( preg_match( '/^[0-9]*$/', $blogname ) ) {
		$errors->add( 'blogname', __( 'Sorry, site names must have letters too!' ) );
	}

	/**
	 * Filters the new site name during registration.
	 *
	 * The name is the site's subdomain or the site's subdirectory
	 * path depending on the network settings.
	 *
	 * @since MU (3.0.0)
	 *
	 * @param string $blogname Site name.
	 */
	$blogname = apply_filters( 'newblogname', $blogname );

	$blog_title = wp_unslash( $blog_title );

	if ( empty( $blog_title ) ) {
		$errors->add( 'blog_title', __( 'Please enter a site title.' ) );
	}

	// Check if the domain/path has been used already.
	if ( is_subdomain_install() ) {
		$mydomain = $blogname . '.' . preg_replace( '|^www\.|', '', $domain );
		$path     = $base;
	} else {
		$mydomain = $domain;
		$path     = $base . $blogname . '/';
	}
	if ( domain_exists( $mydomain, $path, $current_network->id ) ) {
		$errors->add( 'blogname', __( 'Sorry, that site already exists!' ) );
	}

	/*
	 * Do not allow users to create a site that matches an existing user's login name,
	 * unless it's the user's own username.
	 */
	if ( username_exists( $blogname ) ) {
		if ( ! is_object( $user ) || ( is_object( $user ) && ( $user->user_login != $blogname ) ) ) {
			$errors->add( 'blogname', __( 'Sorry, that site is reserved!' ) );
		}
	}

	// Has someone already signed up for this domain?
	// TODO: Check email too?
	$signup = $wpdb->get_row( $wpdb->prepare( "SELECT * FROM $wpdb->signups WHERE domain = %s AND path = %s", $mydomain, $path ) );
	if ( $signup instanceof stdClass ) {
		$diff = time() - mysql2date( 'U', $signup->registered );
		// If registered more than two days ago, cancel registration and let this signup go through.
		if ( $diff > 2 * DAY_IN_SECONDS ) {
			$wpdb->delete(
				$wpdb->signups,
				array(
					'domain' => $mydomain,
					'path'   => $path,
				)
			);
		} else {
			$errors->add( 'blogname', __( 'That site is currently reserved but may be available in a couple days.' ) );
		}
	}

	$result = array(
		'domain'     => $mydomain,
		'path'       => $path,
		'blogname'   => $blogname,
		'blog_title' => $blog_title,
		'user'       => $user,
		'errors'     => $errors,
	);

	/**
	 * Filters site details and error messages following registration.
	 *
	 * @since MU (3.0.0)
	 *
	 * @param array $result {
	 *     Array of domain, path, blog name, blog title, user and error messages.
	 *
	 *     @type string         $domain     Domain for the site.
	 *     @type string         $path       Path for the site. Used in subdirectory installations.
	 *     @type string         $blogname   The unique site name (slug).
	 *     @type string         $blog_title Blog title.
	 *     @type string|WP_User $user       By default, an empty string. A user object if provided.
	 *     @type WP_Error       $errors     WP_Error containing any errors found.
	 * }
	 */
	return apply_filters( 'wpmu_validate_blog_signup', $result );
}

Expand full source codeCollapse full source codeView on TracView on GitHub

Top ↑

Top ↑

Uses

Uses
UsesDescription
wp-includes/ms-functions.php:minimum_site_name_length

Filters the minimum site name length required when validating a site signup.

wp-includes/ms-network.php:get_network()

Retrieves network data given a network ID or network object.

wp-includes/ms-functions.php:get_subdirectory_reserved_names()

Retrieves a list of reserved site on a sub-directory Multisite installation.

wp-includes/l10n.php:__()

Retrieve the translation of $text.

wp-includes/l10n.php:_n()

Translates and retrieves the singular or plural form based on the supplied number.

wp-includes/formatting.php:wp_unslash()

Removes slashes from a string or recursively removes slashes from strings within an array.

wp-includes/functions.php:number_format_i18n()

Convert float number to format based on the locale.

wp-includes/functions.php:mysql2date()

Convert given MySQL date string into a different format.

wp-includes/plugin.php:apply_filters()

Calls the callback functions that have been added to a filter hook.

wp-includes/option.php:add_site_option()

Adds a new option for the current network.

wp-includes/option.php:get_site_option()

Retrieve an option value for the current network based on name of option.

wp-includes/user.php:username_exists()

Determines whether the given username exists.

wp-includes/ms-functions.php:domain_exists()

Checks whether a site name is already taken.

wp-includes/ms-functions.php:newblogname

Filters the new site name during registration.

wp-includes/ms-functions.php:wpmu_validate_blog_signup

Filters site details and error messages following registration.

wp-includes/ms-load.php:is_subdomain_install()

Whether a subdomain configuration is enabled.

wp-includes/wp-db.php:wpdb::get_var()

Retrieves one variable from the database.

wp-includes/wp-db.php:wpdb::get_row()

Retrieves one row from the database.

wp-includes/wp-db.php:wpdb::delete()

Deletes a row in the table.

wp-includes/wp-db.php:wpdb::prepare()

Prepares a SQL query for safe execution.

wp-includes/wp-db.php:wpdb::get_blog_prefix()

Gets blog prefix.

wp-includes/class-wp-error.php:WP_Error::__construct()

Initializes the error.

Show 17 more usesHide more uses

Top ↑

Changelog

Changelog
VersionDescription
MU (3.0.0)Introduced.
Download the latest version of WordPress from https://wordpress.org/

The content displayed on this page has been created in part by processing WordPress source code files which are made available under the GPLv2 (or a later version) license by theĀ Free Software Foundation. In addition to this, the content includes user-written examples and information. All material is subject to review and curation by the WPPaste.com community.

Show More